EDIT: Just gonna give some more information. I used Tune-Up Utlilities 2004 to clean-up the temporary files. After that I used Ad-aware. Then I used the CWShredder which turned up nothing. After that I used Spybot and Microsoft Anti-spyware Beta. Then I downloaded Ewido and used that. Boy it sure took a long time to scan. Afterwards I tried the online scanners suggested but the didn't work for me. Then I made sure my Windows was up to date before posting this.
EDIT2:I forgot to mention something. I have Norton Anti-Virus but it is an outdated 2002 version. It keeps telling me that my subscription has run out and it is doing me no good anymore
Anyway I will post both the HJT and Ewido Reports
HJT Logfile
Logfile of HijackThis v1.99.1
Scan saved at 6:12:06 PM, on 6/18/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TuneUp Utilities 2004\WinStylerThemeSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ewido\security suite\ewidoctrl.exe
C:\Program Files\ewido\security suite\ewidoguard.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\PROGRA~1\NORTON~1\navapw32.exe
C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Microsoft AntiSpyware\gcasServ.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Desktop Sidebar\dsidebar.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\MsPMSPSv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\SpySheriff\SpySheriff.exe
C:\WINDOWS\System32\wbem\wmiprvse.exe
C:\Program Files\HijackThis\HijackThis.exe
C:\Program Files\Mozilla Firefox\firefox.exe
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=c:\windows\system32\userinit.exe
O2 - BHO: (no name) - SOFTWARE - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {290DEF3D-8DDB-F10D-6C87-1D3BC3366A5A} - (no file)
O2 - BHO: Idea2 SidebarBrowserMonitor Class - {45AD732C-2CE2-4666-B366-B2214AD57A49} - C:\Program Files\Desktop Sidebar\sbhelp.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5708DC3F-1C21-1E66-E847-BB9EF8C0A0B6} - (no file)
O2 - BHO: (no name) - {60871676-3FE8-558E-DDED-50734BD9DFD9} - (no file)
O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - C:\PROGRA~1\FlashGet\jccatch.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AtiPTA] atiptaxx.exe
O4 - HKLM\..\Run: [NAV Agent] C:\PROGRA~1\NORTON~1\navapw32.exe
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\System32\\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [ViewMgr] C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKCU\..\Run: [SIDEBAR] "C:\Program Files\Desktop Sidebar\dsidebar.exe"
O4 - HKCU\..\Run: [STYLEXP] C:\Program Files\TGTSoft\StyleXP\StyleXP.exe -Hide
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
O8 - Extra context menu item: Download All by FlashGet - C:\PROGRA~1\FlashGet\jc_all.htm
O8 - Extra context menu item: Download using FlashGet - C:\PROGRA~1\FlashGet\jc_link.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Subscribe in Desktop Sidebar - res://C:\Program Files\Desktop Sidebar\sbhelp.dll/menuhandler.html
O8 - Extra context menu item: Translate into English - res://c:\program files\google\GoogleToolbar2.dll/cmtrans.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra button: Subscribe in Desktop Sidebar - {09FE188B-6E85-479e-9411-51FB2220DF80} - C:\Program Files\Desktop Sidebar\sbhelp.dll
O9 - Extra 'Tools' menuitem: Subscribe in Desktop Sidebar - {09FE188B-6E85-479e-9411-51FB2220DF80} - C:\Program Files\Desktop Sidebar\sbhelp.dll
O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra button: (no name) - {578FC4E3-151E-456c-AF8E-B63061EFE228}} - (no file)
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Ebates - {6685509E-B47B-4f47-8E16-9A5F3A62F683} - file://C:\Program Files\Ebates_MoeMoneyMaker\Sy350\Tp350\scri350a.htm (file missing) (HKCU)
O16 - DPF: HushEncryptionEngine - https://mailserver1....ptionEngine.cab
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zon...ry/msgrchkr.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zon...nt.cab31267.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zon...MineSweeper.cab
O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} - http://a1540.g.akama...meInstaller.exe
O16 - DPF: {54B52E52-8000-4413-BD67-FC7FE24B59F2} (EARTPatchX Class) - http://simcity.ea.co...ter//EARTPX.cab
O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} (RdxIE Class) - http://software-dl.r...ip/RdxIE601.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zon...StatsClient.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zon...ro.cab32846.cab
O16 - DPF: {C36661D7-3590-45B1-80B5-520839E94DAD} (MaxisSimCity4PatcherX Control) - http://simcity.ea.co...ty4PatcherX.cab
O16 - DPF: {E6187999-9FEC-46A1-A20F-F4CA977D5643} (ZoneChess Object) - http://messenger.zon...ss.cab31267.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zon...ireShowdown.cab
O18 - Protocol: bw+0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {944E498B-2FA8-48E8-90B3-19CC46B38592} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido\security suite\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido\security suite\ewidoguard.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Common Files\Sony Shared\AVLib\Pacsptisvr.exe
O23 - Service: RadClock - Unknown owner - C:\WINDOWS\system32\RadClock.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\COMMON~1\SONYSH~1\AVLib\Sptisrv.exe
O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2004\WinStylerThemeSvc.exe
Ewido Report
---------------------------------------------------------
ewido security suite - Scan report
---------------------------------------------------------
+ Created on: 5:09:56 PM, 6/18/2005
+ Report-Checksum: 8EC83F29
+ Date of database: 6/18/2005
+ Version of scan engine: v3.0
+ Duration: 76 min
+ Scanned Files: 199420
+ Speed: 43.45 Files/Second
+ Infected files: 96
+ Removed files: 95
+ Files put in quarantine: 95
+ Files that could not be opened: 0
+ Files that could not be cleaned: 1
+ Binder: Yes
+ Crypter: Yes
+ Archives: Yes
+ Scanned items:
C:\
+ Scan result:
C:\Documents and Settings\Angad\Application Data\kpeijejs.exe -> TrojanDownloader.Small.gr -> Cleaned with backup
C:\Documents and Settings\Angad\Desktop\craagle.zip/Craagle.exe -> Spyware.Craagle -> Error during cleaning
C:\Documents and Settings\Angad\Local Settings\Temp\18216.exe -> Not-A-Virus.Hoax.Renos.a -> Cleaned with backup
C:\Documents and Settings\Angad\Local Settings\Temp\19427.exe -> Not-A-Virus.Hoax.Renos.a -> Cleaned with backup
C:\Documents and Settings\Angad\Local Settings\Temp\22254.exe -> TrojanDownloader.Small.alr -> Cleaned with backup
C:\Documents and Settings\Angad\Local Settings\Temp\31580.exe -> TrojanDownloader.Small.alr -> Cleaned with backup
C:\Documents and Settings\Angad\My Documents\backup-20040911-141838-489.dll -> Spyware.ClearSearch.l -> Cleaned with backup
C:\Documents and Settings\Angad\My Documents\Cracks\Craagle.exe -> Spyware.Craagle -> Cleaned with backup
C:\Documents and Settings\Angad\winlogon32.exe -> Backdoor.Rbot.iv -> Cleaned with backup
C:\Documents and Settings\Navpreet\Cookies\navpreet@ads.expedia[1].txt -> Spyware.Tracking-Cookie -> Cleaned with backup
C:\Documents and Settings\Navpreet\Cookies\navpreet@com[2].txt -> Spyware.Tracking-Cookie -> Cleaned with backup
C:\Documents and Settings\Navpreet\Cookies\navpreet@free.aol[1].txt -> Spyware.Tracking-Cookie -> Cleaned with backup
C:\Documents and Settings\Navpreet\Cookies\navpreet@hb.lycos[1].txt -> Spyware.Tracking-Cookie -> Cleaned with backup
C:\Documents and Settings\Navpreet\Cookies\navpreet@indiads[1].txt -> Spyware.Tracking-Cookie -> Cleaned with backup
C:\Documents and Settings\Navpreet\Cookies\navpreet@realguide.real[1].txt -> Spyware.Tracking-Cookie -> Cleaned with backup
C:\Documents and Settings\Navpreet\Cookies\navpreet@S113245[2].txt -> Spyware.Tracking-Cookie -> Cleaned with backup
C:\Documents and Settings\Navpreet\Cookies\navpreet@S130376[2].txt -> Spyware.Tracking-Cookie -> Cleaned with backup
C:\Documents and Settings\Navpreet\Cookies\navpreet@search.msn[1].txt -> Spyware.Tracking-Cookie -> Cleaned with backup
C:\Documents and Settings\Navpreet\Cookies\navpreet@totalvelocity[2].txt -> Spyware.Tracking-Cookie -> Cleaned with backup
C:\Documents and Settings\Navpreet\Cookies\navpreet@tryaolfree[1].txt -> Spyware.Tracking-Cookie -> Cleaned with backup
C:\Documents and Settings\Navpreet\Cookies\navpreet@www.real[1].txt -> Spyware.Tracking-Cookie -> Cleaned with backup
C:\Documents and Settings\Pali\Cookies\pali@com[2].txt -> Spyware.Tracking-Cookie -> Cleaned with backup
C:\Documents and Settings\Pali\Cookies\pali@hb.lycos[1].txt -> Spyware.Tracking-Cookie -> Cleaned with backup
C:\Documents and Settings\Pali\Cookies\pali@search.msn[1].txt -> Spyware.Tracking-Cookie -> Cleaned with backup
C:\Documents and Settings\Pali\Cookies\pali@xiti[1].txt -> Spyware.Tracking-Cookie -> Cleaned with backup
C:\Program Files\Access_Control\instant access.exe -> Trojan.P2E.br -> Cleaned with backup
C:\Program Files\KaZaA Lite\supertrick.txt -> Trojan.Qhost.av -> Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\ED054037-0933-4747-8219-5759F2\F06F3937-9AF0-43FF-B773-4D744D -> Spyware.WinAD.u -> Cleaned with backup
C:\Program Files\Windows AdStatus\WinStatKeep.exe -> Spyware.WinAD.k -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP562\A0615930.exe -> Spyware.BetterInternet -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP564\A0618680.exe -> Backdoor.Rbot -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP564\A0618689.exe -> Spyware.BetterInternet -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP565\A0618715.exe -> Spyware.BetterInternet -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP565\A0618724.exe -> Spyware.BetterInternet -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP565\A0619730.exe -> Spyware.BetterInternet -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP565\A0620723.exe -> Spyware.BetterInternet -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP572\A0623914.exe -> Spyware.BetterInternet -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP572\A0623984.exe -> Spyware.BetterInternet -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP572\A0625098.exe -> Spyware.BetterInternet -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP572\A0625110.exe -> Trojan.Nail -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP573\A0625149.exe -> Trojan.Nail -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP573\A0625178.exe -> Spyware.BetterInternet -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP574\A0626129.exe -> Trojan.Nail -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP575\A0626173.exe -> Trojan.Nail -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP575\A0626201.exe -> Spyware.BetterInternet -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP576\A0627242.exe -> Spyware.BetterInternet -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP576\A0627249.exe -> Trojan.Nail -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP576\A0628276.exe -> Trojan.Nail -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP576\A0628283.exe -> Spyware.BetterInternet -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP576\A0628304.exe -> Trojan.Nail -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP576\A0628305.exe -> Spyware.BetterInternet -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP577\A0628353.exe -> Spyware.BetterInternet -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP578\A0628383.exe -> Spyware.BetterInternet -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP578\A0628390.exe -> Trojan.Nail -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP578\A0628404.exe -> Spyware.BetterInternet -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP578\A0631412.exe -> Trojan.Nail -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP578\A0631434.exe -> Trojan.Nail -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP579\A0632447.exe -> Trojan.Nail -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP580\A0632466.exe -> Trojan.Nail -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP580\A0633422.exe -> Spyware.BetterInternet -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP580\A0633427.exe -> Trojan.Nail -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP581\A0634433.exe -> Trojan.Nail -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP581\A0634434.exe -> Trojan.P2E.br -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP581\A0634437.exe -> Trojan.P2E.br -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP581\A0634456.exe -> Trojan.Nail -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP582\A0634497.exe -> Trojan.Stervis.c -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP582\A0634498.exe -> Trojan.Nail -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP582\A0634588.exe -> Trojan.P2E.br -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP583\A0634594.exe -> Trojan.Stervis.c -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP583\A0634595.exe -> Trojan.Nail -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP583\A0634597.exe -> Trojan.P2E.br -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP583\A0634600.exe -> Trojan.P2E.br -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP584\A0634634.exe -> Trojan.Stervis.c -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP584\A0634635.exe -> Trojan.Nail -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP584\A0634637.exe -> Spyware.BetterInternet -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP584\A0635645.exe -> Trojan.P2E.br -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP584\A0635648.exe -> Trojan.Stervis.c -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP584\A0635650.exe -> Spyware.BetterInternet -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP585\A0635691.exe -> Not-A-Virus.Hoax.Renos.a -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP587\A0636713.exe -> Trojan.Nail -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP588\A0636950.exe -> Spyware.Bargainbuddy -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP589\A0636986.dll -> TrojanSpy.PerfectKeyLogger.ac -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP589\A0636987.exe -> TrojanSpy.Perfloger.h -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP589\A0636988.exe -> TrojanSpy.PerfectKeyLogger.147.b -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP589\A0636989.exe -> TrojanSpy.PerfectKeyLogger.ac -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP589\A0636998.dll -> Spyware.WildTangent.b -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP589\A0637698.exe -> Trojan.Agent.cp -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP590\A0637704.exe -> TrojanDownloader.Small.aea -> Cleaned with backup
C:\System Volume Information\_restore{B01D9BD9-85BA-4167-BA70-110FE32F9EF6}\RP590\A0637705.exe -> Trojan.Small.cy -> Cleaned with backup
C:\WINDOWS\htdgttcatfh.exe -> Spyware.BetterInternet -> Cleaned with backup
C:\WINDOWS\Nail.exe -> Trojan.Nail -> Cleaned with backup
C:\WINDOWS\svcproc.exe -> Trojan.Stervis.c -> Cleaned with backup
C:\WINDOWS\system32\axuninstall.exe -> Spyware.BlazeFind.b -> Cleaned with backup
C:\WINDOWS\system32\drivers\etc\hosts.bak -> Trojan.Qhost.av -> Cleaned with backup
C:\WINDOWS\system32\tibs5.exe -> TrojanDropper.Tibsis.b -> Cleaned with backup
C:\winstall.exe -> Not-A-Virus.Hoax.Renos.a -> Cleaned with backup
::Report End
Edited by ID129, 19 June 2005 - 08:26 PM.