Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

AVG and Emails

Started by dishmunky , May 24 2005 06:48 PM

  • Please log in to reply

#1
dishmunky
Posted 24 May 2005 - 06:48 PM

dishmunky

    Member

  • Member
  • PipPip
  • 24 posts
Hi,

I have AVG 7.0 installed, and I think I have a major problem here....

Everytime I reboot, AVG E-mail Scanner starts up and it appears as though it or something else is sending messages. It says something like: "Connecting to (Some unknown IP Addy)", then "Sending message to [email protected]"

This is not my computer, it's my mother and my sister's but I'm the only one that knows how to take care of it, to an extent... :tazz: I seem to be getting a lot of .exe files in system32 that are spyware - I'm sure those 3 or 4 repeating .exe files have got to go but I thought I should ask first.

Also, when I go to reboot, it says a program called "O" is not responding, I click End Now and it closes...and again with a program something like {-big long number like a registry key-}

Here's my Hijackthis:

Logfile of HijackThis v1.99.1
Scan saved at 9:38:21 PM, on 5/24/2005
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\fxssvc.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe
C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Elaborate Bytes\CloneCD\CloneCDTray.exe
C:\Program Files\Microsoft AntiSpyware\gcasServ.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\WINDOWS\System32\win32.exe
C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\WINDOWS\System32\LVComS.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Logitech\Video\LowLight.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Kathleen.GALLANT-MKYE1XJ\My Documents\hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://abcsearch4u.com/sp.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://abcsearch4u.com/index.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://abcsearch4u.com/sp.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://abcsearch4u.com/index.htm
R3 - Default URLSearchHook is missing
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O3 - Toolbar: (no name) - {86227D9C-0EFE-4f8a-AA55-30386A3F5686} - (no file)
O3 - Toolbar: (no name) - {FAA356E4-D317-42a6-AB41-A3021C6E7D52} - (no file)
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Common Files\Roxio Shared\System\EngUtil.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe
O4 - HKLM\..\Run: [Omnipage] C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [CloneCDElbyCDFL] "C:\Program Files\Elaborate Bytes\CloneCD\ElbyCheck.exe" /L ElbyCDFL
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\Elaborate Bytes\CloneCD\CloneCDTray.exe"
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [JVM0.14] C:\WINDOWS\System32\svgnimz.exe
O4 - HKLM\..\Run: [Tsl2] C:\PROGRA~1\COMMON~1\tsa\tsl2.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O4 - HKLM\..\Run: [Service Host] C:\WINDOWS\System32\Services\{1EB35069-EE92-4C2A-A572-469582FE2D9D}\SVCHOST.EXE
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [mstxega] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [tsbrxpq] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [lrateun] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [isctxdu] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [ucivrdm] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [qshoxwi] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [fdelwwp] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [mnvaxov] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [xbpjdny] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [dsbsykt] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [sfngdtc] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [asqldsg] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [lefxlqd] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [muputft] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [iskkylw] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [efneoja] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [xfxyttq] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [wyxlqdc] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [tuppgqk] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [mahpcny] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [rukeflb] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [crjisqv] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [povdfhr] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [xutknaq] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [tybhwqx] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [wjnnvom] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [utgukqg] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [ewmgbsm] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [atbwtci] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [uvijuck] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [hxyhpir] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [xwwoswj] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [xyunlca] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [yshlcnr] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [mcmgsvb] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [dwrujpv] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [rmhvega] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [yjdbcai] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [oldovfl] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [pwolnqs] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [flquubb] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [vibctcs] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [fappdwi] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [enmllcj] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [smjuspw] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [cgfkvpe] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [rkggpcy] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [ltyfxbh] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [dtadtkw] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [nkhbmdc] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [qknekvw] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [crnujre] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [ngpqwdj] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [iwkinos] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [mgouhao] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [llifktn] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [fipldht] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [ueksafu] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [sllepvu] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [tekomsy] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [qlpvvle] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [ydlmsvk] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [pxdtept] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [vgvhadf] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [hwuxack] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [onbbnjy] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [icpunxu] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [lkntkcl] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [gyqqgjv] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [ilerplu] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [vjsxkqa] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [ctaiqlj] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [vnrglbg] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [nlknqoc] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [twqeauf] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [kwbjilx] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [sorjhoc] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [kicwpsu] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [smximte] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [apffoac] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [gixkdnl] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [etnrxmo] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [ejdltam] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [qmywphv] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [djstegc] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [bjbgnjt] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [wnfjmjd] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [qcavmlp] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [vtvngbj] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [isxudjp] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [fdnobae] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [upvisbw] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [eeqjygy] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [cyfcvsm] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [qlvmwrt] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [hptlylw] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [gbjtqtx] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [qvpbkgw] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [phlowan] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [dirasoo] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [rfkhyts] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [bapwnvt] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [suhaebx] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [peikfbc] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [nhhlifr] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [jpmucja] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [aviavds] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [xgynhlq] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [plskhhr] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [octuuck] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [lpvgasg] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [qafjldp] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [ccmtsvw] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [wybwmjf] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [huqdnlt] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [ejnuamw] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [wdclpgw] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [usqnuiw] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [spgyhqv] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [rpklbsh] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [ssvubtd] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [qcidciu] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [rdxooud] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [rhnyfyj] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [pgsquto] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [kjntria] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [wepuknl] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [lqmeupl] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [irgtsau] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [ylbvqag] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [pvsmgxr] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [hrtlnfm] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [qrnpcqa] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [wupd] C:\WINDOWS\System32\win32.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O15 - Trusted Zone: *.slotchbar.com
O15 - Trusted Zone: *.ysbweb.com
O15 - Trusted Zone: http://ny.contentmatch.net (HKLM)
O15 - Trusted Zone: *.slotchbar.com (HKLM)
O15 - Trusted Zone: *.ysbweb.com (HKLM)
O15 - Trusted IP range: 81.222.131.59
O15 - Trusted IP range: 81.222.131.59 (HKLM)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zon...kr.cab31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zon...nt.cab31267.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zon...er.cab31267.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zon...nt.cab31267.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoft.../as5/asinst.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn...pDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zon...ro.cab32846.cab
O16 - DPF: {DA758BB1-5F89-4465-975F-8D7179A4BCF3} (WheelofFortune Object) - http://messenger.zon...oF.cab31267.cab
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/bin/msnchat45.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zon...wn.cab31267.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{0249969D-32FB-4F9F-A921-FD4DE37583EF}: NameServer = 69.50.176.156 195.225.176.31
O17 - HKLM\System\CCS\Services\Tcpip\..\{50033782-246E-4CF3-ADC4-EF663F9F1209}: NameServer = 69.50.176.156,195.225.176.31
O17 - HKLM\System\CCS\Services\Tcpip\..\{5C00CB7D-47D6-466D-BC96-2EE0CCAAA88B}: NameServer = 69.50.176.156,195.225.176.31
O17 - HKLM\System\CS1\Services\Tcpip\..\{0249969D-32FB-4F9F-A921-FD4DE37583EF}: NameServer = 69.50.176.156 195.225.176.31
O18 - Protocol: bw+0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O21 - SSODL: System - {D7F64ED1-9A5F-4E24-A462-53E47AA0D41D} - vr_sys.dll (file missing)
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe


Thanks a lot
  • 0

Advertisements

#2
Guest_nommork_*
Posted 24 May 2005 - 07:42 PM

Guest_nommork_*
  • Guest
Run at least two of these anti-spyware programs

Make sure all defintion files are up to date for all programs

Microsoft Windows Anti-spyware
http://www.microsoft...re/default.mspx

Ewido
http://www.ewido.net

Ad-aware se
http://www.lavasoft....ftware/adaware/

For Ad-ware se run a Full System Scan and ADS scan

Spysweeper
http://www.webroot.com


Run at least two of the online AV scans:
http://www.trojanhunter.com/ Trojan hunter
http://www.pandasoft...n_principal.htm Panda Active Scan
http://housecall.trendmicro.com/ House Call (Trend Micro)
http://www.bitdefend...can/licence.php BitDefender Free OnlineVirus Scan
http://support.f-sec.../home/ols.shtml F-Secure Free OnlineVirus Scan
http://security.syma...IHKERRDTIPOKYJL Symantec Security Scan & Virus Detection
http://www.ravantivirus.com/scan/ RAV AntiVirus Online VirusScan
http://us.mcafee.com....asp?catid=free McAfee Antivirus scan
http://www.virus112....an_registration Danish Antivirus scan
http://support.f-sec.../home/ols.shtml F-SecureAntivirus scan
  • 0

#3
coachwife6
Posted 25 May 2005 - 04:34 PM

coachwife6

    SuperStar

  • Retired Staff
  • 11,413 posts
Hi dishmunky. Welcome to GTG. I'm going to help you out from here on out. :tazz:

I need you to do something first before we get started.

Please apply Service Pack 1a for Windows XP. Without this update, you're wide open to re-infection, and we're both just wasting our time.
Click here: http://www.microsoft...p1/default.mspx
Apply the update, reboot, and post a fresh Hijack This log.
  • 0

#4
dishmunky
Posted 25 May 2005 - 07:23 PM

dishmunky

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
Hi and thanks for the reply....I'm downloading SP1a right now, but I have dial up so unfortunately I'll have to get back to you on Thursday.

Thanks
  • 0

#5
coachwife6
Posted 25 May 2005 - 07:46 PM

coachwife6

    SuperStar

  • Retired Staff
  • 11,413 posts
I'm sorry. That's the pits. I will work on a fix for you in the meantime. :tazz:
  • 0

#6
coachwife6
Posted 25 May 2005 - 09:42 PM

coachwife6

    SuperStar

  • Retired Staff
  • 11,413 posts
You Have a CoolWebSearch Infection.
Please Download CoolWebShredder, from http://www.geekstogo...=download&id=17 , Extract it & run the program. Click the Next Button & let it scan. Make sure you let it fix all CWS Remnants. Afterwards, Please Post a fresh Hijack This log.
  • 0

#7
dishmunky
Posted 26 May 2005 - 11:50 AM

dishmunky

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
Hi!

I also have ClickSearchClick troubles...I couldn't get the download last night because it was last and my computer rebooted twice...too mad, lol...

I just got CWShredder and I'll try to get SP1a by tonight to post a new log.

Thanks again for helping

*Edit: On the topic of the e-mails that are being sent, there is a virus attached called "teen playground"...I keep getting an undeliverable e-mail message. That may be of some help.

**Edit 2: My new log

Logfile of HijackThis v1.99.1
Scan saved at 3:29:46 PM, on 5/26/2005
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\fxssvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe
C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Elaborate Bytes\CloneCD\CloneCDTray.exe
C:\Program Files\Microsoft AntiSpyware\gcasServ.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\WINDOWS\System32\win32.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\WINDOWS\System32\LVComS.exe
C:\Program Files\Logitech\Video\LowLight.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Kathleen.GALLANT-MKYE1XJ\My Documents\hijackthis\HijackThis.exe
C:\WINDOWS\System32\rasautou.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://abcsearch4u.com/sp.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://abcsearch4u.com/index.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.clicksear...ndex.php?aff=19
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://abcsearch4u.com/sp.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://abcsearch4u.com/index.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R3 - Default URLSearchHook is missing
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O3 - Toolbar: (no name) - {86227D9C-0EFE-4f8a-AA55-30386A3F5686} - (no file)
O3 - Toolbar: (no name) - {FAA356E4-D317-42a6-AB41-A3021C6E7D52} - (no file)
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Common Files\Roxio Shared\System\EngUtil.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe
O4 - HKLM\..\Run: [Omnipage] C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [CloneCDElbyCDFL] "C:\Program Files\Elaborate Bytes\CloneCD\ElbyCheck.exe" /L ElbyCDFL
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\Elaborate Bytes\CloneCD\CloneCDTray.exe"
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [JVM0.14] C:\WINDOWS\System32\svgnimz.exe
O4 - HKLM\..\Run: [Tsl2] C:\PROGRA~1\COMMON~1\tsa\tsl2.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [mstxega] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [tsbrxpq] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [lrateun] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [isctxdu] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [ucivrdm] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [qshoxwi] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [fdelwwp] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [mnvaxov] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [xbpjdny] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [dsbsykt] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [sfngdtc] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [asqldsg] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [lefxlqd] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [muputft] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [iskkylw] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [efneoja] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [xfxyttq] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [wyxlqdc] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [tuppgqk] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [mahpcny] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [rukeflb] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [crjisqv] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [povdfhr] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [xutknaq] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [tybhwqx] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [wjnnvom] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [utgukqg] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [ewmgbsm] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [atbwtci] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [uvijuck] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [hxyhpir] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [xwwoswj] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [xyunlca] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [yshlcnr] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [mcmgsvb] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [dwrujpv] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [rmhvega] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [yjdbcai] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [oldovfl] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [pwolnqs] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [flquubb] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [vibctcs] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [fappdwi] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [enmllcj] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [smjuspw] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [cgfkvpe] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [rkggpcy] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [ltyfxbh] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [dtadtkw] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [nkhbmdc] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [qknekvw] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [crnujre] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [ngpqwdj] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [iwkinos] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [mgouhao] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [llifktn] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [fipldht] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [ueksafu] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [sllepvu] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [tekomsy] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [qlpvvle] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [ydlmsvk] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [pxdtept] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [vgvhadf] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [hwuxack] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [onbbnjy] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [icpunxu] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [lkntkcl] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [gyqqgjv] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [ilerplu] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [vjsxkqa] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [ctaiqlj] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [vnrglbg] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [nlknqoc] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [twqeauf] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [kwbjilx] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [sorjhoc] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [kicwpsu] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [smximte] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [apffoac] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [gixkdnl] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [etnrxmo] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [ejdltam] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [qmywphv] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [djstegc] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [bjbgnjt] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [wnfjmjd] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [qcavmlp] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [vtvngbj] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [isxudjp] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [fdnobae] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [upvisbw] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [eeqjygy] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [cyfcvsm] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [qlvmwrt] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [hptlylw] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [gbjtqtx] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [qvpbkgw] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [phlowan] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [dirasoo] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [rfkhyts] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [bapwnvt] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [suhaebx] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [peikfbc] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [nhhlifr] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [jpmucja] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [aviavds] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [xgynhlq] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [plskhhr] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [octuuck] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [lpvgasg] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [qafjldp] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [ccmtsvw] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [wybwmjf] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [huqdnlt] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [ejnuamw] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [wdclpgw] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [usqnuiw] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [spgyhqv] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [rpklbsh] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [ssvubtd] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [qcidciu] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [rdxooud] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [rhnyfyj] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [pgsquto] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [kjntria] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [wepuknl] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [lqmeupl] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [irgtsau] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [ylbvqag] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [pvsmgxr] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [hrtlnfm] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [qrnpcqa] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [wupd] C:\WINDOWS\System32\win32.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O15 - Trusted Zone: http://ny.contentmatch.net (HKLM)
O15 - Trusted Zone: *.slotchbar.com (HKLM)
O15 - Trusted Zone: *.ysbweb.com (HKLM)
O15 - Trusted IP range: 81.222.131.59 (HKLM)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zon...kr.cab31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zon...nt.cab31267.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zon...er.cab31267.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zon...nt.cab31267.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoft.../as5/asinst.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn...pDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zon...ro.cab32846.cab
O16 - DPF: {DA758BB1-5F89-4465-975F-8D7179A4BCF3} (WheelofFortune Object) - http://messenger.zon...oF.cab31267.cab
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/bin/msnchat45.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zon...wn.cab31267.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{50033782-246E-4CF3-ADC4-EF663F9F1209}: NameServer = 69.50.176.156,195.225.176.31
O17 - HKLM\System\CCS\Services\Tcpip\..\{5C00CB7D-47D6-466D-BC96-2EE0CCAAA88B}: NameServer = 69.50.176.156,195.225.176.31
O18 - Protocol: bw+0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe

Edited by dishmunky, 26 May 2005 - 12:32 PM.

  • 0

#8
coachwife6
Posted 26 May 2005 - 02:47 PM

coachwife6

    SuperStar

  • Retired Staff
  • 11,413 posts
When you get windows updated, post a new log and I'll help you out.
  • 0

#9
dishmunky
Posted 26 May 2005 - 03:36 PM

dishmunky

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
I think I got the right one...the new HJT log is the one I posted above
  • 0

#10
coachwife6
Posted 27 May 2005 - 12:05 AM

coachwife6

    SuperStar

  • Retired Staff
  • 11,413 posts
Spyware multiplies quickly and I need your most recent log showing that you updated windows. Please run a new log. :tazz:
  • 0

Advertisements

#11
dishmunky
Posted 27 May 2005 - 11:53 AM

dishmunky

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
Here ya go:


Logfile of HijackThis v1.99.1
Scan saved at 2:52:33 PM, on 5/27/2005
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\savedump.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\fxssvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe
C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Elaborate Bytes\CloneCD\CloneCDTray.exe
C:\Program Files\Microsoft AntiSpyware\gcasServ.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\LVComS.exe
C:\Program Files\Logitech\Video\LowLight.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\System32\win32.exe
C:\Documents and Settings\Kathleen.GALLANT-MKYE1XJ\My Documents\hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://abcsearch4u.com/sp.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://abcsearch4u.com/index.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://abcsearch4u.com/sp.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://abcsearch4u.com/index.htm
R3 - Default URLSearchHook is missing
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O3 - Toolbar: (no name) - {86227D9C-0EFE-4f8a-AA55-30386A3F5686} - (no file)
O3 - Toolbar: (no name) - {FAA356E4-D317-42a6-AB41-A3021C6E7D52} - (no file)
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Common Files\Roxio Shared\System\EngUtil.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe
O4 - HKLM\..\Run: [Omnipage] C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [CloneCDElbyCDFL] "C:\Program Files\Elaborate Bytes\CloneCD\ElbyCheck.exe" /L ElbyCDFL
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\Elaborate Bytes\CloneCD\CloneCDTray.exe"
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [JVM0.14] C:\WINDOWS\System32\svgnimz.exe
O4 - HKLM\..\Run: [Tsl2] C:\PROGRA~1\COMMON~1\tsa\tsl2.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [mstxega] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [tsbrxpq] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [lrateun] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [isctxdu] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [ucivrdm] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [qshoxwi] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [fdelwwp] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [mnvaxov] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [xbpjdny] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [dsbsykt] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [sfngdtc] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [asqldsg] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [lefxlqd] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [muputft] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [iskkylw] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [efneoja] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [xfxyttq] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [wyxlqdc] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [tuppgqk] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [mahpcny] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [rukeflb] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [crjisqv] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [povdfhr] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [xutknaq] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [tybhwqx] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [wjnnvom] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [utgukqg] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [ewmgbsm] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [atbwtci] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [uvijuck] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [hxyhpir] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [xwwoswj] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [xyunlca] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [yshlcnr] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [mcmgsvb] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [dwrujpv] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [rmhvega] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [yjdbcai] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [oldovfl] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [pwolnqs] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [flquubb] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [vibctcs] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [fappdwi] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [enmllcj] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [smjuspw] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [cgfkvpe] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [rkggpcy] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [ltyfxbh] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [dtadtkw] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [nkhbmdc] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [qknekvw] c:\windows\ybsvjom.exe
O4 - HKCU\..\Run: [crnujre] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [ngpqwdj] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [iwkinos] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [mgouhao] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [llifktn] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [fipldht] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [ueksafu] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [sllepvu] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [tekomsy] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [qlpvvle] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [ydlmsvk] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [pxdtept] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [vgvhadf] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [hwuxack] c:\windows\xdpajts.exe
O4 - HKCU\..\Run: [onbbnjy] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [icpunxu] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [lkntkcl] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [gyqqgjv] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [ilerplu] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [vjsxkqa] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [ctaiqlj] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [vnrglbg] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [nlknqoc] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [twqeauf] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [kwbjilx] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [sorjhoc] c:\windows\gvmmamc.exe
O4 - HKCU\..\Run: [kicwpsu] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [smximte] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [apffoac] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [gixkdnl] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [etnrxmo] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [ejdltam] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [qmywphv] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [djstegc] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [bjbgnjt] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [wnfjmjd] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [qcavmlp] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [vtvngbj] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [isxudjp] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [fdnobae] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [upvisbw] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [eeqjygy] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [cyfcvsm] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [qlvmwrt] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [hptlylw] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [gbjtqtx] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [qvpbkgw] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [phlowan] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [dirasoo] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [rfkhyts] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [bapwnvt] c:\windows\norkcdi.exe
O4 - HKCU\..\Run: [suhaebx] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [peikfbc] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [nhhlifr] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [jpmucja] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [aviavds] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [xgynhlq] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [plskhhr] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [octuuck] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [lpvgasg] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [qafjldp] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [ccmtsvw] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [wybwmjf] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [huqdnlt] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [ejnuamw] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [wdclpgw] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [usqnuiw] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [spgyhqv] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [rpklbsh] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [ssvubtd] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [qcidciu] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [rdxooud] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [rhnyfyj] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [pgsquto] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [kjntria] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [wepuknl] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [lqmeupl] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [irgtsau] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [ylbvqag] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [pvsmgxr] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [hrtlnfm] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [qrnpcqa] c:\windows\rcijjoy.exe
O4 - HKCU\..\Run: [wupd] C:\WINDOWS\System32\win32.exe
O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O15 - Trusted Zone: http://ny.contentmatch.net (HKLM)
O15 - Trusted Zone: *.slotchbar.com (HKLM)
O15 - Trusted Zone: *.ysbweb.com (HKLM)
O15 - Trusted IP range: 81.222.131.59 (HKLM)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zon...kr.cab31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zon...nt.cab31267.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zon...er.cab31267.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai...all/xscan53.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zon...nt.cab31267.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoft.../as5/asinst.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn...pDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zon...ro.cab32846.cab
O16 - DPF: {DA758BB1-5F89-4465-975F-8D7179A4BCF3} (WheelofFortune Object) - http://messenger.zon...oF.cab31267.cab
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/bin/msnchat45.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zon...wn.cab31267.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{0249969D-32FB-4F9F-A921-FD4DE37583EF}: NameServer = 69.50.176.156 195.225.176.31
O17 - HKLM\System\CCS\Services\Tcpip\..\{50033782-246E-4CF3-ADC4-EF663F9F1209}: NameServer = 69.50.176.156,195.225.176.31
O17 - HKLM\System\CCS\Services\Tcpip\..\{5C00CB7D-47D6-466D-BC96-2EE0CCAAA88B}: NameServer = 69.50.176.156,195.225.176.31
O17 - HKLM\System\CS1\Services\Tcpip\..\{0249969D-32FB-4F9F-A921-FD4DE37583EF}: NameServer = 69.50.176.156 195.225.176.31
O18 - Protocol: bw+0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {3A86668E-F01F-4440-9C77-FC80AC647F92} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
  • 0

#12
coachwife6
Posted 27 May 2005 - 12:09 PM

coachwife6

    SuperStar

  • Retired Staff
  • 11,413 posts
You're still not showing that you updated windows to SP1.

Please look at THIS page and go through the steps. Tell me what it says.
  • 0

#13
dishmunky
Posted 27 May 2005 - 01:08 PM

dishmunky

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
Sorry, I must've clicked on a wrong link...I'll leave the computer on all night tonight to get the SP1a installed.

That other link just about Genuine software...what steps do you mean?

For the record, I do not want to get SP2, I've had problems with that in the past...

Thanks for your patience.
  • 0

#14
coachwife6
Posted 27 May 2005 - 01:55 PM

coachwife6

    SuperStar

  • Retired Staff
  • 11,413 posts
It's the windows validation page. Tells me whether your version of windows is valid.
  • 0

#15
dishmunky
Posted 27 May 2005 - 03:40 PM

dishmunky

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
It's valid, trust me...bought it from Staples, lol
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP