Computer shuts itself off malware HJT

Discussion in 'Windows - Virus and spyware problems' started by richied02, Sep 21, 2006.

  1. richied02

    richied02 Member

    Joined:
    Sep 5, 2005
    Messages:
    7
    Likes Received:
    0
    Trophy Points:
    11
    I cannot get 10 mins into my computer after turning on without it locking or shutting itself down please help it would be much appreciated to have computer back

    Logfile of HijackThis v1.99.1
    Scan saved at 11:52:25 AM, on 9/21/2006
    Platform: Windows XP SP1 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\System32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\rundll32.exe
    C:\WINDOWS\system32\userinit.exe
    C:\WINDOWS\Explorer.EXE
    C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
    C:\WINDOWS\system32\ati2sgag.exe
    C:\WINDOWS\Q2hpcHMgTW9uZXkgTWFraW5nIE1hY2hpbmU\command.exe
    C:\WINDOWS\System32\gihxqicv.exe
    C:\nwnmff_e10.exe
    C:\dfndrff_e10.exe
    C:\WINDOWS\hgvapuiA.exe
    C:\WINDOWS\sys02441336240.exe
    C:\kybrdff_e10.exe
    C:\Program Files\DeluxeCommunications\Dxc.exe
    C:\topaff.exe
    C:\windows\system32\osdsregk.exe
    C:\WINDOWS\system32\twintpex.exe
    C:\WINDOWS\sachostx.exe
    C:\WINDOWS\ms03413362404.exe
    C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
    C:\Program Files\DeluxeCommunications\Dxc.exe
    C:\WINDOWS\System32\netsh.exe
    C:\WINDOWS\system32\twintpex.exe
    C:\Program Files\Network Monitor\netmon.exe
    C:\Documents and Settings\Administrator\Desktop\HijackThis_v1.99.1.exe
    C:\WINDOWS\System32\netsh.exe
    C:\WINDOWS\wanmpsvc.exe
    C:\WINDOWS\hgvapui.exe
    C:\WINDOWS\winlogon.exe
    C:\Program Files\Linksys Wireless-G USB Wireless Network Monitor\WLService.exe
    C:\Program Files\Linksys Wireless-G USB Wireless Network Monitor\WUSB54Gv42.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.twoplustwo.com/
    R3 - URLSearchHook: (no name) - {A8BD6820-6ED7-423E-9558-2D1486B0FEEA} - C:\Program Files\DeluxeCommunications\DxcBho.dll
    F2 - REG:system.ini: Shell=Explorer.exe, C:\WINDOWS\System32\kkvdu.exe
    F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,ugdhfaw.exe
    O2 - BHO: (no name) - {6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C} - C:\WINDOWS\System32\yaywurr.dll
    O2 - BHO: (no name) - {D711D913-B12D-4A0B-9D68-DD4203B7F55A} - C:\WINDOWS\System32\awtss.dll
    O4 - HKLM\..\Run: [routing] gihxqicv.exe
    O4 - HKLM\..\Run: [newname] C:\\nwnmff_e10.exe
    O4 - HKLM\..\Run: [defender] C:\\dfndrff_e10.exe
    O4 - HKLM\..\Run: [hgvapuiA] C:\WINDOWS\hgvapuiA.exe
    O4 - HKLM\..\Run: [sys02441336240] C:\WINDOWS\sys02441336240.exe
    O4 - HKLM\..\Run: [keyboard] C:\\kybrdff_e10.exe
    O4 - HKLM\..\Run: [DeluxeCommunications] C:\Program Files\DeluxeCommunications\Dxc.exe
    O4 - HKLM\..\Run: [loaddr] C:\topaff.exe
    O4 - HKLM\..\Run: [{AD-DB-BB-B2-ZN}] C:\windows\system32\osdsregk.exe ELT001
    O4 - HKLM\..\Run: [ExploreUpdSched] C:\WINDOWS\system32\twintpex.exe ELT001
    O4 - HKLM\..\Run: [win3206362404413] C:\WINDOWS\win3206362404413.exe
    O4 - HKLM\..\Run: [SystemLoader] C:\WINDOWS\sysldr32.exe
    O4 - HKLM\..\Run: [sachost] C:\WINDOWS\sachostx.exe
    O4 - HKLM\..\Run: [ms03413362404] C:\WINDOWS\ms03413362404.exe
    O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
    O4 - HKLM\..\RunServices: [routing] gihxqicv.exe
    O4 - HKCU\..\Run: [DeluxeCommunications] C:\Program Files\DeluxeCommunications\Dxc.exe
    O4 - Startup: TA_Start.lnk = C:\WINDOWS\system32\dwdsregt.exe
    O4 - Startup: Think-Adz.lnk = C:\WINDOWS\system32\twintpex.exe
    O9 - Extra button: (no name) - {4ABF810A-F11D-4169-9D5F-7D274F2270A1} - C:\WINDOWS\System32\dmonwv.dll
    O9 - Extra 'Tools' menuitem: Java - {4ABF810A-F11D-4169-9D5F-7D274F2270A1} - C:\WINDOWS\System32\dmonwv.dll
    O9 - Extra button: UltimateBet - {94148DB5-B42D-4915-95DA-2CBB4F7095BF} - C:\Program Files\UltimateBet\UltimateBet.exe
    O9 - Extra 'Tools' menuitem: UltimateBet - {94148DB5-B42D-4915-95DA-2CBB4F7095BF} - C:\Program Files\UltimateBet\UltimateBet.exe
    O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe
    O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe
    O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
    O10 - Hijacked Internet access by WebHancer
    O10 - Hijacked Internet access by WebHancer
    O10 - Hijacked Internet access by WebHancer
    O15 - Trusted Zone: http://click.getmirar.com (HKLM)
    O15 - Trusted Zone: http://click.mirarsearch.com (HKLM)
    O15 - Trusted Zone: http://redirect.mirarsearch.com (HKLM)
    O15 - Trusted Zone: http://awbeta.net-nucleus.com (HKLM)
    O16 - DPF: {8A0DCBDB-6E20-489C-9041-C1E8A0352E75} (Mirar_Dummy_ATS1 Class) - http://awbeta.net-nucleus.com/FIX/WinATS.cab
    O16 - DPF: {B64F4A7C-97C9-11DA-8BDE-F66BAD1E3F3A} - http://download.cdn.winsoftware.com/files/installers/cab/WinAntiVirusPro2006FreeInstall.cab
    O18 - Protocol: bw+0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw+0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O18 - Protocol: bwg0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwg0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: offline-8876480 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O20 - Winlogon Notify: awtss - C:\WINDOWS\System32\awtss.dll
    O20 - Winlogon Notify: Nls - C:\WINDOWS\system32\AVIDEMGR.dll
    O20 - Winlogon Notify: ShellScrap - C:\WINDOWS\system32\ir4ml5h11.dll (file missing)
    O20 - Winlogon Notify: yaywurr - C:\WINDOWS\SYSTEM32\yaywurr.dll
    O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: Command Service (cmdService) - Unknown owner - C:\WINDOWS\Q2hpcHMgTW9uZXkgTWFraW5nIE1hY2hpbmU\command.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Network Monitor - Unknown owner - C:\Program Files\Network Monitor\netmon.exe
    O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
    O23 - Service: Windows Genuine Advantage Registration Service (wgareg) - Unknown owner - C:\WINDOWS\System32\wgareg.exe
    O23 - Service: Windows Overlay Components - Unknown owner - C:\WINDOWS\hgvapui.exe
    O23 - Service: Microsoft Windows Spooler Service (Windows Spooler Service) - Unknown owner - C:\WINDOWS\winlogon.exe
    O23 - Service: WUSB54Gv42SVC - Unknown owner - C:\Program Files\Linksys Wireless-G USB Wireless Network Monitor\WLService.exe" "WUSB54Gv42.exe (file missing)
     
    richied02, Sep 21, 2006
    #1
  2. Niobis

    Niobis Active member

    Joined:
    Jan 30, 2005
    Messages:
    2,326
    Likes Received:
    0
    Trophy Points:
    66
    Go here and download LSPFix. You may not need it but, download it just in case.

    Go here and download FixWebHance.com

    Run FixWebHance. If you loose internet connect after, run LSPFix, if not, you can delete it.

    Go here and download Ewido.
    Go here and download Spybot Search and Destroy.

    Install and update.
    Restart in safe mode(press F8 upon boot, select "Safe Mode" from menu).

    Open Spybot and click Check for Problems.
    When it finishes, click Fix seleted.
    Close Spybot.
    Run a complete system scan with Ewido.
    When it finishes, set all item to delete and click "Apply all actions".
    Then click "Save Reoprt".
    Restart in normal mode.

    Post the Ewido report and a new HijackThis log.
     
    Last edited: Sep 21, 2006
    Niobis, Sep 21, 2006
    #2
  3. rpdd

    rpdd Member

    Joined:
    Mar 27, 2006
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    11
    rpdd, Sep 26, 2006
    #3
  4. Skalek

    Skalek Member

    Joined:
    Jan 8, 2006
    Messages:
    14
    Likes Received:
    0
    Trophy Points:
    11
    Skalek, Oct 1, 2006
    #4

Share This Page