Forum Articles
  Welcome back Join CF
You are here You are here: Home | Forum | Spyware removal - please help!

You are currently viewing our boards as a guest which gives you limited access to view most of the discussions, articles and other free features. By joining our Virgin Media community you will have full access to all discussions, be able to view and post threads, communicate privately with other members (PM), respond to polls, upload your own images/photos, and access many other special features. Registration is fast, simple and absolutely free so please join our community today.


Welcome to Cable Forum
Go Back   Cable Forum > Computers & IT > General IT Discussion
Reload this Page Spyware removal - please help!
Register FAQ Community Calendar

Spyware removal - please help!
Reply
Page 1 of 2 1 2
 
Thread Tools
Old 19-12-2004, 22:30   #1
sL0c
Inactive
 
Join Date: May 2004
Location: Cardiff
Age: 41
Services: 2Mb Broadband
Posts: 16
sL0c is an unknown quantity at this point
Send a message via MSN to sL0c
Exclamation Spyware removal - please help!
Ive been havin a bit of trouble recently, i have various program that i run every now & then to get rid of spyware & any other rubbish, but this week i have been gettin random pop-ups, not from web sites, usually when i start my comp up then every 5 mins or so two more pop up, I have tried Ad-Aware SE, Search & Destroy & Registry Mechanic to try & get rid of it but keeps coming back, any advice would be much appreciated.

Thanks in advance!

Gareth
sL0c is offline   Reply With Quote
Advertisement
Old 19-12-2004, 22:33   #2
Tezcatlipoca
Inactive
 
Tezcatlipoca's Avatar
 
Join Date: Jun 2003
Location: Cambridge
Posts: 16,760
Tezcatlipoca has a pair of shiny starsTezcatlipoca has a pair of shiny starsTezcatlipoca has a pair of shiny starsTezcatlipoca has a pair of shiny starsTezcatlipoca has a pair of shiny stars
Tezcatlipoca has a pair of shiny starsTezcatlipoca has a pair of shiny starsTezcatlipoca has a pair of shiny starsTezcatlipoca has a pair of shiny starsTezcatlipoca has a pair of shiny starsTezcatlipoca has a pair of shiny stars
Re: Spyware removal - please help!
What kind of pop-ups?

Could be people spamming you using the "Messenger Service" in XP (it's *nothing* to do with Windows/MSN Messenger).

Try this to see if you still have the Messenger Service running, and, if it is, disable it: http://www.grc.com/stm/shootthemessenger.htm



If it's Spyware...


Have you tried using AdAware & Spybot S&D in Safe Mode (hold F8 when booting the PC, select Safe Mode, then scan...)


EDIT: Also, get hold of HiJackThis, do a scan, & post the log here.
Tezcatlipoca is offline   Reply With Quote
Old 19-12-2004, 22:40   #3
sL0c
Inactive
 
Join Date: May 2004
Location: Cardiff
Age: 41
Services: 2Mb Broadband
Posts: 16
sL0c is an unknown quantity at this point
Send a message via MSN to sL0c
Re: Spyware removal - please help!
Cheers, i got that shoot the messenger thing

This is the result of HiJachThis

Logfile of HijackThis v1.98.2
Scan saved at 23:38:11, on 19/12/2004
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\CA\eTrust EZ Armor\eTrust EZ Antivirus\VetMsg.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Java\j2re1.4.2_04\bin\jusched.exe
C:\Program Files\Logitech\iTouch\iTouch.exe
C:\WINDOWS\system32\rundll32.exe
C:\PROGRA~1\COMMON~1\PCSuite\DATALA~1\DATALA~1.EXE
C:\PROGRA~1\CA\ETRUST~1\ETRUST~1\VetTray.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger .exe
C:\PROGRA~1\COMMON~1\PCSuite\Services\SERVIC~1.EXE
c:\progra~1\intern~1\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\Whta3ue6.exe
C:\WINDOWS\system32\KppJ3f.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Gareth\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.cbefqvlxtrfgcq.com/27pkuL...PbpmBZAVI.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.qkohrtvjuwp.info/27pkuLZ_...2NHJgozK/E.php
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: kbdcjn - {46515264-642A-D5D3-4BFF-1014300CF796} - (no file)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {C5183ABC-EB6E-4E05-B8C9-500A16B6CF94} - (no file)
O2 - BHO: (no name) - {EAF74BE0-186B-4E9F-CCB8-2F1C8F93CB36} - C:\DOCUME~1\Neil\APPLIC~1\UPHOLE~1\wait road.exe
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_04\bin\jusched.exe
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [DataLayer] C:\PROGRA~1\COMMON~1\PCSuite\DATALA~1\DATALA~1.EXE
O4 - HKLM\..\Run: [VetTray] C:\PROGRA~1\CA\ETRUST~1\ETRUST~1\VetTray.exe
O4 - HKLM\..\Run: [3DD4MJ32DZNY8R] C:\WINDOWS\system32\Fsm6BY.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger .exe
O4 - HKCU\..\Run: [Loudstart] C:\DOCUME~1\LOCALS~1\APPLIC~1\INTERN~1\flaw team.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: Download all by Net Transport - C:\Program Files\Xi\NetTransport 2\NTAddList.html
O8 - Extra context menu item: Download by Net Transport - C:\Program Files\Xi\NetTransport 2\NTAddLink.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary...r.cab31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
O16 - DPF: {26CBF141-7D0F-46E1-AA06-718958B6E4D2} - http://download.ebay.com/turbo_lister/UK/install.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary...r.cab31267.cab
O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab
O16 - DPF: {48884C41-EFAC-433D-958A-9FADAC41408E} (EGamesPlugin Class) - https://www.e-games.com.my/com/EGamesPlugin.cab
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/acti...l_v1-0-3-9.cab
O16 - DPF: {4E62C4DE-627D-4604-B157-4B7D6B09F02E} (AccountTracking Profile Manager Class) - https://moneymanager.egg.com/Pinsafe...nttracking.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary...o.cab32846.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://utu.popcap.com/games/popcaploader_v5.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary...n.cab31267.cab
O18 - Protocol: bw+0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

Quite long

Thanks for your time
sL0c is offline   Reply With Quote
Old 19-12-2004, 23:02   #4
Rough.D
Inactive
 
Rough.D's Avatar
 
Join Date: Nov 2003
Location: In the Dragons Lair Swindon Wilts
Posts: 573
Rough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful one
Re: Spyware removal - please help!
Logfile of HijackThis v1.98.2
Possibly out of date Shows the version of HijackThis an. The newest version is: v1.99.0! Your version (v1.98.2) is out of date. Visit the manufacturers homepage to update.
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Safe. Shows the version of your Internet Explorer. Newest Version is: 6.00.2800.1106! This should be the newest version. (6.00.2900.2180)
C:\WINDOWS\System32\smss.exe
Safe. running process. (smss.exe)
Systemprozess - Anwendung, die benutzt wird um Sitzungen zu starten, verwalten und lÃÃâ€*’¶schen.

C:\WINDOWS\system32\winlogon.exe
Safe. running process. (winlogon.exe)
Systemprozess - Windows Login Routine

C:\WINDOWS\system32\services.exe
Safe. running process. (services.exe)
Systemprozess - Verwaltet die Systemdienste.

C:\WINDOWS\system32\lsass.exe
Safe. running process. (lsass.exe)
Systemprozess

C:\WINDOWS\system32\svchost.exe
Safe. running process. (svchost.exe)
Systemprozess - Allgemeiner Hostprozessname fÃÃâ€*’¼r Dienste.

C:\WINDOWS\System32\svchost.exe
Safe. running process. (svchost.exe)
Systemprozess - Allgemeiner Hostprozessname fÃÃâ€*’¼r Dienste.

C:\WINDOWS\system32\spoolsv.exe
Safe. running process. (spoolsv.exe)
Systemprozess

C:\WINDOWS\System32\nvsvc32.exe
Safe. running process. (nvsvc32.exe)
NVIDIA graphics card driver Not dangerous, but unnecessary.

C:\Program Files\CA\eTrust EZ Armor\eTrust EZ Antivirus\VetMsg.exe
Safe. running process. (VetMsg.exe)
Bestandteil von eTrus Antivirus

C:\WINDOWS\Explorer.EXE
Safe. running process. (Explorer.EXE)
Systemprozess fÃÃâ€*’¼r Desktop und Taskleiste.

C:\WINDOWS\system32\RUNDLL32.EXE
Safe. running process. (RUNDLL32.EXE)
RUNDLL32 is the Microsoft Windows program that loads DLLs into memory so that they can be used by specific programs or by Windows.

C:\Program Files\Java\j2re1.4.2_04\bin\jusched.exe
Safe. running process. (jusched.exe)


C:\Program Files\Logitech\iTouch\iTouch.exe
Safe. running process. (iTouch.exe)
Logitech iTouch

C:\WINDOWS\system32\rundll32.exe
Safe. running process. (rundll32.exe)
RUNDLL32 is the Microsoft Windows program that loads DLLs into memory so that they can be used by specific programs or by Windows.

C:\PROGRA~1\COMMON~1\PCSuite\DATALA~1\DATALA~1.EXE
Safe. running process. (DATALA~1.EXE)


C:\PROGRA~1\CA\ETRUST~1\ETRUST~1\VetTray.exe
Safe. running process. (VetTray.exe)
Vetantivirus

C:\Program Files\QuickTime\qttask.exe
Safe. running process. (qttask.exe)
Part of QuickTime

C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger .exe
Unknown running process. (LogitechDesktopMessenger.exe)
This is a unknown process.

C:\PROGRA~1\COMMON~1\PCSuite\Services\SERVIC~1.EXE
Safe. running process. (SERVIC~1.EXE)
Nokia PC Suite

c:\progra~1\intern~1\iexplore.exe
Safe. running process. (iexplore.exe)
Internet Explorer - Wir empfehlen einen sichereren alternativen Browser zu verwenden. (z.B. Firefox)

C:\Program Files\Internet Explorer\iexplore.exe
Safe. running process. (iexplore.exe)
Internet Explorer - Wir empfehlen einen sichereren alternativen Browser zu verwenden. (z.B. Firefox)

C:\WINDOWS\system32\Whta3ue6.exe
Unknown running process. (Whta3ue6.exe)
This is a unknown process.

C:\WINDOWS\system32\KppJ3f.exe
Unknown running process. (KppJ3f.exe)
This is a unknown process.

C:\Program Files\MSN Messenger\msnmsgr.exe
Safe. running process. (msnmsgr.exe)
MSN Messenger

C:\Program Files\Mozilla Firefox\firefox.exe
Safe. running process. (firefox.exe)
Internet Browser

C:\Program Files\Internet Explorer\iexplore.exe
Safe. running process. (iexplore.exe)
Internet Explorer - Wir empfehlen einen sichereren alternativen Browser zu verwenden. (z.B. Firefox)

C:\Documents and Settings\Gareth\Desktop\HijackThis.exe
Safe. running process. (HijackThis.exe)
Tool, mit dem sie dieses Logfile erzeugt haben. Remember that Hijackthis must be run in an own folder. Only if Hijackthis run in an own folder it will create backups!
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.cbefqvlxtrfgcq.com/27pku...OPbpmBZAVI.html
Possibly nasty This page could possibly be nasty. If you do not know the entry 'http://www.cbefqvlxtrfgcq.com/27pku...OPbpmBZAVI.html', delete it.
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.qkohrtvjuwp.info/27pkuLZ...b2NHJgozK/E.php
Possibly nasty This page could possibly be nasty. If you do not know the entry 'http://www.qkohrtvjuwp.info/27pkuLZ...b2NHJgozK/E.php', delete it.
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
Safe.
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
Safe.
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
Safe. Entries found in this registry zone are potentially nasty. This application ([06849E9F-C8D7-4D59-B87D-784B7D6BE0B3] - Result: 06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) has been checked. Hit rate: 99 %
O2 - BHO: kbdcjn - {46515264-642A-D5D3-4BFF-1014300CF796} - (no file)
Unnecessarily Entries found in this registry zone are potentially nasty. This application ([46515264-642A-D5D3-4BFF-1014300CF796] - Result: ) has been checked. Hit rate: -1 % Unknown application.
Unnecessary (deactivated) entry that can be fixed.
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
Safe. Entries found in this registry zone are potentially nasty. This application ([53707962-6F74-2D53-2644-206D7942484F] - Result: 53707962-6F74-2D53-2644-206D7942484F) has been checked. Hit rate: 99 %
O2 - BHO: (no name) - {C5183ABC-EB6E-4E05-B8C9-500A16B6CF94} - (no file)
Unnecessarily Entries found in this registry zone are potentially nasty. This application ([C5183ABC-EB6E-4E05-B8C9-500A16B6CF94] - Result: C5183ABC-EB6E-4E05-B8C9-500A16B6CF94) has been checked. Hit rate: 99 % Must be fixed!
Unnecessary (deactivated) entry that can be fixed.
O2 - BHO: (no name) - {EAF74BE0-186B-4E9F-CCB8-2F1C8F93CB36} - C:\DOCUME~1\Neil\APPLIC~1\UPHOLE~1\wait road.exe
Unknown Entries found in this registry zone are potentially nasty. This application ([EAF74BE0-186B-4E9F-CCB8-2F1C8F93CB36] - Result: ) has been checked. Hit rate: -1 % Unknown application.
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
Safe. Entries found in this registry zone are potentially nasty. This application ([327C2873-E90D-4c37-AA9D-10AC9BABA46C] - Result: 327C2873-E90D-4c37-AA9D-10AC9BABA46C) has been checked. If the name is made up of random letters, found in the folder 'Application Data' and the kind is 'Unknown' , it should be fixed. Hit rate: 99 %
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
Safe. The entered application NvCplDaemon was identified: NvCpl or NvCplDaemon. Hit rate: 55 % (result)
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
Safe. The entered application NvMediaCenter was identified: NvMediaCenter. Hit rate: 99 % (result)
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_04\bin\jusched.exe
Safe. The entered application SunJavaUpdateSched was identified: SunJavaUpdateSched. Hit rate: 99 % (result)
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
Safe. The entered application zBrowser Launcher was identified: zBrowser Launcher. Hit rate: 99 % (result)
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
Safe. The entered application BluetoothAuthenticationAgent was identified: BluetoothAuthenticationAgent. Hit rate: 93 % (result)
O4 - HKLM\..\Run: [DataLayer] C:\PROGRA~1\COMMON~1\PCSuite\DATALA~1\DATALA~1.EXE
Safe. The entered application DataLayer was identified: DataLayer. Hit rate: 60 % (result)
O4 - HKLM\..\Run: [VetTray] C:\PROGRA~1\CA\ETRUST~1\ETRUST~1\VetTray.exe
Safe. The entered application VetTray was identified: VetTray. Hit rate: 86 % (result)
O4 - HKLM\..\Run: [3DD4MJ32DZNY8R] C:\WINDOWS\system32\Fsm6BY.exe
Unknown The entered application 3DD4MJ32DZNY8R was identified: None. Hit rate: 4 % (result) Unknown application.
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
Safe. The entered application QuickTime Task was identified: QuickTime Task. Hit rate: 99 % (result) Not dangerous, but unnecessary.
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger .exe
Unknown The entered application LDM was identified: None. Hit rate: -1 % (result) Unknown application.
O4 - HKCU\..\Run: [Loudstart] C:\DOCUME~1\LOCALS~1\APPLIC~1\INTERN~1\flaw team.exe
Unknown The entered application Loudstart was identified: None. Hit rate: 6 % (result) Unknown application.
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
Safe. The entered application 'Logitech Desktop Messenger.lnk (LDMConf.exe)' was identified: 'Logitech Desktop Messenger (backweb-8876480.exe, ldmconf.exe)'. Hit rate: 61 % (result) Not dangerous, but unnecessary.
O8 - Extra context menu item: Download all by Net Transport - C:\Program Files\Xi\NetTransport 2\NTAddList.html
Safe. The entry Download all by Net Transport has been identified as safe. If the entry 'Download all by Net Transport ' is not needed anymore, it should be fixed.
O8 - Extra context menu item: Download by Net Transport - C:\Program Files\Xi\NetTransport 2\NTAddLink.html
Safe. The entry Download by Net Transport has been identified as safe. If the entry 'Download by Net Transport ' is not needed anymore, it should be fixed.
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
Safe. The entry E&xport to Microsoft Excel has been identified as safe. If the entry 'E&xport to Microsoft Excel ' is not needed anymore, it should be fixed.
O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
Safe. The entry Easy-WebPrint Add To Print List has been identified as safe. If the entry 'Easy-WebPrint Add To Print List ' is not needed anymore, it should be fixed.
O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
Safe. The entry Easy-WebPrint High Speed Print has been identified as safe. If the entry 'Easy-WebPrint High Speed Print ' is not needed anymore, it should be fixed.
O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
Safe. The entry Easy-WebPrint Preview has been identified as safe. If the entry 'Easy-WebPrint Preview ' is not needed anymore, it should be fixed.
O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
Safe. The entry Easy-WebPrint Print has been identified as safe. If the entry 'Easy-WebPrint Print ' is not needed anymore, it should be fixed.
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
Safe. The entry has been identified as safe. If the entry '' is not needed anymore, it should be fixed.
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
Safe. The entry Sun Java Console has been identified as safe. If the entry 'Sun Java Console ' is not needed anymore, it should be fixed.
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
Possibly nasty Unknown buttons or entries in the 'Extras'-menu should be fixed. To be fixed if the entry 'Research ' is unknown.
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
Safe. The entry Messenger has been identified as safe. If the entry 'Messenger ' is not needed anymore, it should be fixed.
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
Safe. The entry Windows Messenger has been identified as safe. If the entry 'Windows Messenger ' is not needed anymore, it should be fixed.
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binar...kr.cab31267.cab
Safe. This entry has been identified as safe.
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binar...nt.cab31267.cab
Safe. This entry has been identified as safe.
O16 - DPF: {26CBF141-7D0F-46E1-AA06-718958B6E4D2} - http://download.ebay.com/turbo_lister/UK/install.cab
Safe. This entry has been identified as safe.
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binar...er.cab31267.cab
Safe. This entry has been identified as safe.
O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab
Safe. This entry has been identified as safe.
O16 - DPF: {48884C41-EFAC-433D-958A-9FADAC41408E} (EGamesPlugin Class) - https://www.e-games.com.my/com/EGamesPlugin.cab
Possibly nasty Unknown ActiveX-Objects, or ActiveX-Objects from unknown sites should always be fixed. If the name of the ActiveX-Object or the URL contains the words 'dialer', 'casino', 'free plugin' etc, it should be fixed! Check if you know this site and fix it if you do not.
Rough.D is offline   Reply With Quote
Old 19-12-2004, 23:04   #5
Rough.D
Inactive
 
Rough.D's Avatar
 
Join Date: Nov 2003
Location: In the Dragons Lair Swindon Wilts
Posts: 573
Rough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful one
Re: Spyware removal - please help!
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/act...ol_v1-0-3-9.cab
Safe. This entry has been identified as safe.
O16 - DPF: {4E62C4DE-627D-4604-B157-4B7D6B09F02E} (AccountTracking Profile Manager Class) - https://moneymanager.egg.com/Pinsaf...unttracking.cab
Possibly nasty Unknown ActiveX-Objects, or ActiveX-Objects from unknown sites should always be fixed. If the name of the ActiveX-Object or the URL contains the words 'dialer', 'casino', 'free plugin' etc, it should be fixed! Check if you know this site and fix it if you do not.
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binar...nt.cab31267.cab
Safe. This entry has been identified as safe.
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binar...ro.cab32846.cab
Safe. This entry has been identified as safe.
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://utu.popcap.com/games/popcaploader_v5.cab
Possibly nasty Unknown ActiveX-Objects, or ActiveX-Objects from unknown sites should always be fixed. If the name of the ActiveX-Object or the URL contains the words 'dialer', 'casino', 'free plugin' etc, it should be fixed! Check if you know this site and fix it if you do not.
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binar...wn.cab31267.cab
Safe. This entry has been identified as safe.
O18 - Protocol: bw+0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bw+0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bw-0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bw-0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bw00 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bw00s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bw10 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bw10s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bw20 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bw20s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bw30 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bw30s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bw40 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bw40s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bw50 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bw50s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bw60 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bw60s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bw70 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bw70s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bw80 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bw80s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bw90 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bw90s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
Rough.D is offline   Reply With Quote
Old 19-12-2004, 23:04   #6
Rough.D
Inactive
 
Rough.D's Avatar
 
Join Date: Nov 2003
Location: In the Dragons Lair Swindon Wilts
Posts: 573
Rough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful one
Re: Spyware removal - please help!
O18 - Protocol: bwa0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwa0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwb0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwb0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwc0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwc0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwd0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwd0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwe0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwe0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwf0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwf0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwg0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwg0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwh0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwh0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwi0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwi0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwj0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwj0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwk0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwk0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwl0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwl0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwm0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwm0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwn0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwn0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwo0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwo0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwp0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwp0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwq0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwq0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwr0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwr0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bws0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bws0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwt0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwt0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwu0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwu0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwv0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwv0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bww0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bww0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwx0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwx0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwy0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwy0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwz0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: bwz0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
O18 - Protocol: offline-8876480 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
Possibly nasty Only a few Hijackers are listed here. The most popular are 'cn' (CommonName) , 'ayb' (Lop.com) and 'relatedlinks' (Huntbar) . They should be fixed.
Rough.D is offline   Reply With Quote
Old 19-12-2004, 23:18   #7
sL0c
Inactive
 
Join Date: May 2004
Location: Cardiff
Age: 41
Services: 2Mb Broadband
Posts: 16
sL0c is an unknown quantity at this point
Send a message via MSN to sL0c
Re: Spyware removal - please help!
:s slightly confused
sL0c is offline   Reply With Quote
Old 20-12-2004, 00:38   #8
Raistlin
Inactive
 
Join Date: Feb 2004
Location: There's no place like 127.0.0.1
Services: Depends on the person and the price they're offering
Posts: 12,384
Raistlin is seeing silvered starsRaistlin is seeing silvered starsRaistlin is seeing silvered stars
Raistlin is seeing silvered starsRaistlin is seeing silvered starsRaistlin is seeing silvered starsRaistlin is seeing silvered starsRaistlin is seeing silvered starsRaistlin is seeing silvered starsRaistlin is seeing silvered starsRaistlin is seeing silvered starsRaistlin is seeing silvered starsRaistlin is seeing silvered starsRaistlin is seeing silvered starsRaistlin is seeing silvered stars
Re: Spyware removal - please help!
Ok, the reason that you are slightly confused is that the posts above are all a complete mess.

While the intentions are great they aren't exactly that easy to read.

Let's go back to basics:

1. You should really be running Hijack This from within its own folder, not from your desktop. It saves some information that it uses for future sweeps, recovery, and other purposes. If you run it from the desktop there is the danger that some of this may be lost. You should also update to the latest version of Hijack This.

2. Did you try (as Matt D suggested) running SpyBot and AdAware from Safe Mode? Have you made sure that you have downloaded the latest updates for both?

3. Did you run the Shoot The Messenger application?

4. Do you have MSN Messenger or any other such messenger program installed / running on your machine?

Assuming that you follow the advice in 1. That the answers to 2. and 3. are "yes but no joy". That the answer to 4. is "no".

Please boot your machine into Safe Mode and then redo the Hijack This scan and then post the log back here.

I (or somebody else) can then take a look at it for you and advise you which (if any) entries you should remove / act upon.

Cheers,

Raist.
Raistlin is offline   Reply With Quote
Old 20-12-2004, 00:44   #9
Raistlin
Inactive
 
Join Date: Feb 2004
Location: There's no place like 127.0.0.1
Services: Depends on the person and the price they're offering
Posts: 12,384
Raistlin is seeing silvered starsRaistlin is seeing silvered starsRaistlin is seeing silvered stars
Raistlin is seeing silvered starsRaistlin is seeing silvered starsRaistlin is seeing silvered starsRaistlin is seeing silvered starsRaistlin is seeing silvered starsRaistlin is seeing silvered starsRaistlin is seeing silvered starsRaistlin is seeing silvered starsRaistlin is seeing silvered starsRaistlin is seeing silvered starsRaistlin is seeing silvered starsRaistlin is seeing silvered stars
Re: Spyware removal - please help!
Forgot to mention that what I'll aim to do is to tell you exactly which entries you should consider deleting / acting upon. Not just post you a complete report on everything that your log contains - that's why this thread has got as confused as it is.

Please don't take offence Rough, but even I am confused
Raistlin is offline   Reply With Quote
Old 20-12-2004, 08:39   #10
Rough.D
Inactive
 
Rough.D's Avatar
 
Join Date: Nov 2003
Location: In the Dragons Lair Swindon Wilts
Posts: 573
Rough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful one
Re: Spyware removal - please help!
Quote:
Please don't take offence Rough, but even I am confused
Not a problem What I was hopeing to do was as you are about to is break it down into its troublesum areas

But it was late and I was a little tippsy getting ready for the festive season.
Rough.D is offline   Reply With Quote
Old 20-12-2004, 09:41   #11
skyblueheroes
Inactive
 
skyblueheroes's Avatar
 
Join Date: Jun 2003
Location: Coventry
Age: 48
Services: Sky+ & Pipex 8mb ADSL
Posts: 2,794
skyblueheroes has a bronzed appealskyblueheroes has a bronzed appeal
skyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appeal
Send a message via MSN to skyblueheroes
Re: Spyware removal - please help!
Quote:
Originally Posted by Rough.D
I was a little tippsy getting ready for the festive season.
As per usual

My mate had CoolWebSearch and believe it or not was actually fixed by installing SP2. We never managed to completey get rid of it with AD-Aware or Spybot or Hijack This.
skyblueheroes is offline   Reply With Quote
Old 20-12-2004, 10:04   #12
bopdude
Inactive
 
bopdude's Avatar
 
Join Date: Jun 2003
Location: Teesside
Posts: 8,315
bopdude has a pair of shiny starsbopdude has a pair of shiny starsbopdude has a pair of shiny starsbopdude has a pair of shiny stars
bopdude has a pair of shiny starsbopdude has a pair of shiny starsbopdude has a pair of shiny starsbopdude has a pair of shiny starsbopdude has a pair of shiny starsbopdude has a pair of shiny starsbopdude has a pair of shiny starsbopdude has a pair of shiny starsbopdude has a pair of shiny starsbopdude has a pair of shiny starsbopdude has a pair of shiny starsbopdude has a pair of shiny starsbopdude has a pair of shiny starsbopdude has a pair of shiny starsbopdude has a pair of shiny starsbopdude has a pair of shiny starsbopdude has a pair of shiny starsbopdude has a pair of shiny starsbopdude has a pair of shiny starsbopdude has a pair of shiny stars
Send a message via MSN to bopdude
Re: Spyware removal - please help!
Quote:
Originally Posted by skyblueheroes

My mate had CoolWebSearch and believe it or not was actually fixed by installing SP2. We never managed to completey get rid of it with AD-Aware or Spybot or Hijack This.
There's a specific tool for that purpose CW Shredder worked for me try and see for yourself.

HTH
bopdude is offline   Reply With Quote
Old 20-12-2004, 10:16   #13
skyblueheroes
Inactive
 
skyblueheroes's Avatar
 
Join Date: Jun 2003
Location: Coventry
Age: 48
Services: Sky+ & Pipex 8mb ADSL
Posts: 2,794
skyblueheroes has a bronzed appealskyblueheroes has a bronzed appeal
skyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appealskyblueheroes has a bronzed appeal
Send a message via MSN to skyblueheroes
Re: Spyware removal - please help!
Quote:
Originally Posted by bopdude
There's a specific tool for that purpose CW Shredder worked for me try and see for yourself.

HTH
Yeah, tried that too - didn't work.

But, after installing SP2, its now gone, so all seems okay now. Ta.
skyblueheroes is offline   Reply With Quote
Old 20-12-2004, 23:36   #14
Rough.D
Inactive
 
Rough.D's Avatar
 
Join Date: Nov 2003
Location: In the Dragons Lair Swindon Wilts
Posts: 573
Rough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful oneRough.D is the helpful one
Re: Spyware removal - please help!
It is possible that the culprit is HUNTBAR you could try Here

From the site

Quote:
If you see a message above stating that you have Spyware or a Hijacker installed in your browser, it is advised that you follow the link in the message for detailed removal instructions
Hope this helps

Sky you know me always practicing
Rough.D is offline   Reply With Quote
Old 20-12-2004, 23:37   #15
sL0c
Inactive
 
Join Date: May 2004
Location: Cardiff
Age: 41
Services: 2Mb Broadband
Posts: 16
sL0c is an unknown quantity at this point
Send a message via MSN to sL0c
Question Re: Spyware removal - please help!
I have tried all of the above but still getting the pop-ups, have done another HiJackThis Scan & these are the results... Thanks again!

Logfile of HijackThis v1.99.0
Scan saved at 00:31:10, on 21/12/2004
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Documents and Settings\Gareth\Desktop\Hijack This\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.booabmyvzyah.com/27pkuLZ_...OPbpmBZAVI.php
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: kbdcjn - {46515264-642A-D5D3-4BFF-1014300CF796} - (no file)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {C5183ABC-EB6E-4E05-B8C9-500A16B6CF94} - (no file)
O2 - BHO: (no name) - {EAF74BE0-186B-4E9F-CCB8-2F1C8F93CB36} - C:\DOCUME~1\Neil\APPLIC~1\UPHOLE~1\wait road.exe
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_04\bin\jusched.exe
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [DataLayer] C:\PROGRA~1\COMMON~1\PCSuite\DATALA~1\DATALA~1.EXE
O4 - HKLM\..\Run: [VetTray] C:\PROGRA~1\CA\ETRUST~1\ETRUST~1\VetTray.exe
O4 - HKLM\..\Run: [3DD4MJ32DZNY8R] C:\WINDOWS\system32\LjpjOq5.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger .exe
O4 - HKCU\..\Run: [Loudstart] C:\DOCUME~1\LOCALS~1\APPLIC~1\INTERN~1\flaw team.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: Download all by Net Transport - C:\Program Files\Xi\NetTransport 2\NTAddList.html
O8 - Extra context menu item: Download by Net Transport - C:\Program Files\Xi\NetTransport 2\NTAddLink.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary...r.cab31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
O16 - DPF: {26CBF141-7D0F-46E1-AA06-718958B6E4D2} - http://download.ebay.com/turbo_lister/UK/install.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary...r.cab31267.cab
O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab
O16 - DPF: {48884C41-EFAC-433D-958A-9FADAC41408E} (EGamesPlugin Class) - https://www.e-games.com.my/com/EGamesPlugin.cab
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/acti...l_v1-0-3-9.cab
O16 - DPF: {4E62C4DE-627D-4604-B157-4B7D6B09F02E} (AccountTracking Profile Manager Class) - https://moneymanager.egg.com/Pinsafe...nttracking.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary...o.cab32846.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://utu.popcap.com/games/popcaploader_v5.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary...n.cab31267.cab
O18 - Protocol: bw+0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {711BBF10-4432-4FCB-93A3-80B7CA4EF06B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: NVIDIA Display Driver Service - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Sony SPTI Service - Sony Corporation - C:\PROGRA~1\COMMON~1\SONYSH~1\AVLib\Sptisrv.exe
O23 - Service: VET Message Service - Computer Associates International, Inc. - C:\Program Files\CA\eTrust EZ Armor\eTrust EZ Antivirus\VetMsg.exe
O23 - Service: TrueVector Internet Monitor - Zone Labs Inc. - C:\WINDOWS\system32\ZONELABS\vsmon.exe
sL0c is offline   Reply With Quote
Reply
Page 1 of 2 1 2

« Previous Thread | Next Thread »

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT. The time now is 19:34.

Contact Us - Service Status - Cable Forum - Archive - Privacy Statement - Terms of Service - Top

Server: lithium.zmnt.uk
Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2026, vBulletin Solutions Inc.
All Posts and Content are © Cable Forum
Copyright © 2026 Cable Forum Hosted On Hetzner Cloud