hijackthis log, please help!

Advertise at AfterDawn.com

Link to us!

Private messages

Compose a private message

List of all updated threads

Threads without replies

Search messages

Wednesday 22.1.2025 / 18:05

Search AfterDawn Forums:

afterdawn.com > forums > software, operating systems and more > windows - virus and spyware problems > hijackthis log, please help!

Browse by topic

Forums

Start a new thread

hijackthis log, please help!

Jump to:

Posted

Message

Doomcap

Member

3. September 2006 @ 06:36

Link to this message

Can someone have a look at my HijackThis log and tell me what problems I need to fix please?

Logfile of HijackThis v1.99.1
Scan saved at 15:22:05, on 03/09/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\System32\Ati2evxx.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\ZONELABS\vsmon.exe
D:\WINDOWS\system32\spoolsv.exe
D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
D:\Program Files\Alwil Software\Avast4\ashServ.exe
D:\Program Files\BullGuard Software\BullGuard\BullGuardUpdate.exe
D:\WINDOWS\System32\svchost.exe
D:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
D:\Program Files\Spyware Doctor\sdhelp.exe
D:\WINDOWS\System32\svchost.exe
D:\Program Files\Alwil Software\Avast4\ashWebSv.exe
D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
D:\WINDOWS\Explorer.EXE
D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
D:\WINDOWS\System32\winrestores.exe
D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
D:\WINDOWS\System32\ctfmon.exe
D:\Program Files\Google\GoogleToolbarNotifier\1.0.720.4156\GoogleToolbarNotifier.exe
D:\Program Files\Logitech\MouseWare\system\em_exec.exe
D:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
D:\Program Files\ATI Technologies\ATI.ACE\cli.exe
D:\Program Files\Internet Explorer\iexplore.exe
D:\WINDOWS\System32\wuauclt.exe
D:\Program Files\hijackthisinstall\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm
R3 - URLSearchHook: DeskbarBHO - {A8B28872-3324-4CD2-8AA3-7D555C872D96} - D:\Program Files\Deskbar\deskbar.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - D:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - d:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [MMTray] C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
O4 - HKLM\..\Run: [avast!] D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Microsoft Telecoms Center] winrestores.exe
O4 - HKLM\..\Run: [Zone Labs Client] "D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\RunServices: [VCS Host] vcshost.exe
O4 - HKLM\..\RunServices: [Microsoft Telecoms Center] winrestores.exe
O4 - HKCU\..\Run: [MSMSGS] "D:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [Microsoft Telecoms Center] winrestores.exe
O4 - HKCU\..\Run: [swg] D:\Program Files\Google\GoogleToolbarNotifier\1.0.720.4156\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [BullGuard] "D:\Program Files\BullGuard Software\BullGuard\bullguard.exe"
O4 - HKCU\..\Run: [Spyware Doctor] "D:\Program Files\Spyware Doctor\swdoctor.exe" /Q
O4 - Global Startup: ATI CATALYST System Tray.lnk = D:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - D:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Researcher - {9455301C-CF6B-11D3-A266-00C04F689C50} - D:\Program Files\Common Files\Microsoft Shared\Encarta Researcher\EROProj.dll
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - D:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - D:\WINDOWS\web\related.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\MSMSGS.EXE
O12 - Plugin for .spop: D:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {2D2BEE6E-3C9A-4D58-B9EC-458EDB28D0F6} - http://www.drivecleaner.com/.freeware/in...leanerstart.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupd...b?1157293123574
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{10C7FFE6-ADDF-4915-A219-FEB2FF2B9650}: NameServer = 62.24.128.17 62.24.128.18
O18 - Protocol: bw+0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - AppInit_DLLs: repairs303169590.dll
O23 - Service: Adobe LM Service - Adobe Systems - D:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - D:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - D:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - D:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - D:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: BullGuard LiveUpdate (BGLiveSvc) - BullGuard Software - D:\Program Files\BullGuard Software\BullGuard\BullGuardUpdate.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - D:\WINDOWS\System32\nvsvc32.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - D:\Program Files\Spyware Doctor\sdhelp.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - D:\WINDOWS\system32\ZONELABS\vsmon.exe

[ + quote]

maca1

Senior Member

3. September 2006 @ 10:10

Link to this message

go to add/remove programs and remove logitech desktop manager

rescan with hijavkthis and check

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm
O4 - HKLM\..\Run: [Microsoft Telecoms Center] winrestores.exe
O4 - HKLM\..\RunServices: [VCS Host] vcshost.exe
O4 - HKLM\..\RunServices: [Microsoft Telecoms Center] winrestores.exe
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - D:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - D:\WINDOWS\web\related.htm
O20 - AppInit_DLLs: repairs303169590.dll

make sure all other windows are closed and clcik fix checked.

Download AdAware SE Personal version 1.06 http://www.majorgeeks.com/Ad-Aware_S...onal_d506.html
Install the program and launch it.
On the bottom right-hand corner of the main window click on Check for updates now then click Connect and download the latest reference files.
In the main window: Click Start and under Select a scan Mode tick Perform full system scan.
Deselect Search for negligible risk entries.
To start the scan, click the Next button.

When the scan is finished mark everything for removal and get rid of it. (Right-click the window and choose select all from the drop down menu and then click Next)

Run ActiveScan online virus scan:
http://www.pandasoftware.com/products/activescan.htm
When the scan is finished, save the results from the scan!

paste another HjT log and log from panda scan.

[ + quote]

This message has been edited since posting. Last time this message was edited on 3. September 2006 @ 10:11

Doomcap

Member

3. September 2006 @ 12:40

Link to this message

Hi maca1, cheers for the reply. I havnt removed the logitech desktop manager because I have a IR keyboard and mouse and was concerned that they wouldnt work if I removed it. Is this the case or can I remove and still have IR functionality?

Here is the new HjT log followed by the Panda scan report:

Logfile of HijackThis v1.99.1
Scan saved at 19:49:00, on 03/09/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\System32\Ati2evxx.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\ZONELABS\vsmon.exe
D:\WINDOWS\system32\spoolsv.exe
D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
D:\Program Files\Alwil Software\Avast4\ashServ.exe
D:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\Explorer.EXE
D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
D:\Program Files\Alwil Software\Avast4\ashWebSv.exe
D:\WINDOWS\System32\ctfmon.exe
D:\Program Files\Google\GoogleToolbarNotifier\1.0.720.4156\GoogleToolbarNotifier.exe
D:\Program Files\Logitech\MouseWare\system\em_exec.exe
D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
D:\Program Files\ATI Technologies\ATI.ACE\cli.exe
D:\Program Files\Internet Explorer\iexplore.exe
D:\Program Files\hijackthisinstall\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
R3 - Default URLSearchHook is missing
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - D:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - d:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [MMTray] C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
O4 - HKLM\..\Run: [avast!] D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Zone Labs Client] "D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] D:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKCU\..\Run: [MSMSGS] "D:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [Microsoft Telecoms Center] winrestores.exe
O4 - HKCU\..\Run: [swg] D:\Program Files\Google\GoogleToolbarNotifier\1.0.720.4156\GoogleToolbarNotifier.exe
O4 - Global Startup: ATI CATALYST System Tray.lnk = D:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Researcher - {9455301C-CF6B-11D3-A266-00C04F689C50} - D:\Program Files\Common Files\Microsoft Shared\Encarta Researcher\EROProj.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\MSMSGS.EXE
O12 - Plugin for .spop: D:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {2D2BEE6E-3C9A-4D58-B9EC-458EDB28D0F6} - http://www.drivecleaner.com/.freeware/in...leanerstart.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupd...b?1157293123574
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{10C7FFE6-ADDF-4915-A219-FEB2FF2B9650}: NameServer = 62.24.128.17 62.24.128.18
O18 - Protocol: bw+0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: Adobe LM Service - Adobe Systems - D:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - D:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - D:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - D:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - D:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - D:\WINDOWS\System32\nvsvc32.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - D:\WINDOWS\system32\ZONELABS\vsmon.exe

Panda Scan log:

Incident Status Location

Adware:Adware/SaveNow Not disinfected C:\Program Files\SaveNow\SaveNow.exe
Adware:Adware/DollarRevenue Not disinfected C:\navy.exe
Spyware:Spyware/Virtumonde Not disinfected C:\pro3_install.exe[rasmed.exe]
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\4TM7SP2F\xmen[1].exe
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\81G3UP21\xmen[1].exe
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\vturrol.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\fcccbxy.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\ssqrqoo.dll
Virus:W32/Sdbot.ftp.worm Disinfected D:\WINDOWS\system32\i
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\hggfdca.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\ljjgdde.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\efccccd.dll
Virus:W32/Gaobot.NPB.worm Disinfected D:\WINDOWS\system32\vcshost.exe
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\wvusspp.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\ssqqnkk.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\gebayab.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\cbxutqr.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\qomlife.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\awtusss.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\tuvwvww.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\mljjihh.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\xxyawtu.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\pmnkihe.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\fccabyv.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\xxyxxxy.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\jkkjjgh.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\xxyyyxu.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\hggebba.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\yayyvvw.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\jkkjggg.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\qomjghi.dll
Virus:W32/Sdbot.HWG.worm Disinfected D:\WINDOWS\system32\setup_22470.exe
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\opnmkll.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\ssqrqol.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\gebabxw.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\jkkhedb.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\gebyyxw.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\urqrpnl.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\hggfcyv.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\khfddaw.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\gebaywv.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\ddcawxu.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\awtstqn.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\cbxwust.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\efcdbby.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\wvuurpp.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\nnnlihh.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\gebaayw.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\nnnnlkj.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\ddcaxvt.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\qomklmj.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\ssqnonk.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\jkkliii.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\wvuurrr.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\mljijkh.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\xxywxyw.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\pmnllll.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\tuvwvvv.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\byxuttq.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\awtuuss.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\urqnnkk.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\ssqnljg.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\qomljkk.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\nnnmmlk.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\pmnopml.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\khfefda.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\urqpmjg.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\tuvssqq.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\ljjkhii.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\ddcdbca.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\efcbabc.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\fccddeb.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\wvuuuut.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\nnnnopo.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\mljghhg.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\hgghgfc.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\yaywutq.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\iifcaxv.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\pmnljkl.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\rqrppmn.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\ljjjgef.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\jkkhefc.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\rqrrolj.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\urqnonl.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\iifgeff.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\efcddaa.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\pmnopmm.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\fcccdde.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\nnnlmki.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\vturopp.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\yayxxus.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\ssqqomk.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\gebxwuu.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\ddcbyxv.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\urqpqqo.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\efcbabx.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\opnklmk.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\hggfcab.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\opnljjj.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\khffccb.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\fccdecc.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\fccawtr.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\nnnonmj.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\yayywxx.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\ljjifdb.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\opnnonk.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\pmnomjg.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\byxyyxx.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\mljhhef.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\iifcyax.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\vtusppp.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\rqrrrqq.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\iifeeed.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\pmnklli.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\fccccdd.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\rqrpqrs.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\pmnollm.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\xxyayxu.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\nnnonlk.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\ssqrrpn.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\gebyvtq.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\ddcdcya.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\opnnmkj.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\nnnnljj.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\byxxyxu.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\tuvwwvs.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\ljjgdab.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\awtrqnm.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\cbxyvtt.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\tuvurol.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\ljjkjki.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\byxxxya.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\urqnlmk.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\cbxxwuv.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\efcaayv.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\ddcdaxw.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\vtustur.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\urqqppo.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\vtursqr.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\ddcbxuu.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\rqrommk.dll
Spyware:Spyware/Virtumonde Not disinfected D:\WINDOWS\system32\awttrpq.dll
Potentially unwanted tool:Application/SystemDoctor2006 Not disinfected D:\WINDOWS\Downloaded Program Files\USDR6_0001_D18M2707NetInstaller.exe
Adware:Adware/CommAd Not disinfected D:\WINDOWS\R3JhaGFt\laL1u3IQ.vbs
Spyware:Spyware/Virtumonde Not disinfected D:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\PYL983XX\pro[1].exe[rasmed.exe]
Spyware:Cookie/nCase Not disinfected D:\Documents and Settings\LocalService\Cookies\system@banners.searchingbooth[1].txt
Spyware:Cookie/YieldManager Not disinfected D:\Documents and Settings\LocalService\Cookies\system@ad.yieldmanager[2].txt
Spyware:Cookie/GoClick Not disinfected D:\Documents and Settings\LocalService\Cookies\system@c.goclick[2].txt
Spyware:Cookie/2o7 Not disinfected D:\Documents and Settings\Graham\Cookies\graham@2o7[1].txt
Spyware:Cookie/Com.com Not disinfected D:\Documents and Settings\Graham\Cookies\graham@com[2].txt
Spyware:Cookie/Tribalfusion Not disinfected D:\Documents and Settings\Graham\Cookies\graham@tribalfusion[1].txt
Spyware:Cookie/Xiti Not disinfected D:\Documents and Settings\Graham\Cookies\graham@xiti[1].txt
Spyware:Cookie/Xmts Not disinfected D:\Documents and Settings\Graham\Cookies\graham@xmts[1].txt
Spyware:Cookie/Com.com Not disinfected D:\Documents and Settings\Graham\Cookies\graham@com[1].txt
Spyware:Cookie/web-stat Not disinfected D:\Documents and Settings\Graham\Cookies\graham@www.web-stat[2].txt
Spyware:Cookie/Xmts Not disinfected D:\Documents and Settings\Graham\Cookies\graham@xmts[3].txt
Spyware:Cookie/BurstNet Not disinfected D:\Documents and Settings\Graham\Cookies\graham@burstnet[2].txt
Spyware:Cookie/YieldManager Not disinfected D:\Documents and Settings\Graham\Cookies\graham@ad.yieldmanager[2].txt
Spyware:Cookie/myaffiliateprogram Not disinfected D:\Documents and Settings\Graham\Cookies\graham@www.myaffiliateprogram[1].txt
Spyware:Cookie/2o7 Not disinfected D:\Documents and Settings\Graham\Cookies\graham@112.2o7[1].txt
Spyware:Cookie/Screensavers Not disinfected D:\Documents and Settings\Graham\Cookies\graham@i.screensavers[1].txt
Spyware:Cookie/2o7 Not disinfected D:\Documents and Settings\Graham\Cookies\graham@112.2o7[2].txt
Spyware:Cookie/YieldManager Not disinfected D:\Documents and Settings\Graham\Cookies\graham@ad.yieldmanager[1].txt

[ + quote]

Doomcap

Member

3. September 2006 @ 12:41

Link to this message

[ + quote]

Niobis

Senior Member

3. September 2006 @ 12:49

Link to this message

Hello Doomcap, you've got Vundo spyware.

Download Vundofix.exe to your desktop http://www.atribune.org/ccount/click.php?id=4

Double-click VundoFix.exe to run it.
Click the Scan for Vundo button.
Once it's done scanning, click the Remove Vundo button.
You will receive a prompt asking if you want to remove the files, click YES
Once you click yes, your desktop will go blank as it starts removing Vundo.
When completed, it will prompt that it will reboot your computer, click OK.
Please post the contents of C:\vundofix.txt and a fresh HijackThis log.

Note: It is possible that VundoFix encountered a file it could not remove.
In this case, VundoFix will run on reboot, simply follow the above instructions starting from "Click the Scan for Vundo button." when VundoFix appears at reboot.

[ + quote]

Don't be fooled any longer.
http://www.youtube.com/watch?v=BUtbGYgsIu4&feature=related

maca1

Senior Member

3. September 2006 @ 16:03

Link to this message

Yes, your start up would benefit greatly if you removed it, it's not required for your logitech devices.

[ + quote]

Doomcap

Member

8. September 2006 @ 08:08

Link to this message

Sorry for the delay, here is the new HjT log followed by the vundofix log:

Logfile of HijackThis v1.99.1
Scan saved at 16:52:24, on 08/09/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\System32\Ati2evxx.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\ZONELABS\vsmon.exe
D:\WINDOWS\system32\spoolsv.exe
D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
D:\Program Files\Alwil Software\Avast4\ashServ.exe
D:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
D:\WINDOWS\System32\svchost.exe
D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
D:\Program Files\Alwil Software\Avast4\ashWebSv.exe
D:\WINDOWS\Explorer.EXE
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
D:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
D:\Program Files\Messenger\msmsgs.exe
D:\WINDOWS\System32\ctfmon.exe
D:\Program Files\Google\GoogleToolbarNotifier\1.0.720.4156\GoogleToolbarNotifier.exe
D:\Program Files\Logitech\MouseWare\system\em_exec.exe
D:\Program Files\ATI Technologies\ATI.ACE\cli.exe
D:\Program Files\hijackthisinstall\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
R3 - Default URLSearchHook is missing
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - D:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {936597FF-DE8A-4CEA-82E6-C9416F3E131B} - D:\WINDOWS\System32\tusst.dll (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - d:\program files\google\googletoolbar2.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - D:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - d:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [MMTray] C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
O4 - HKLM\..\Run: [avast!] D:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Zone Labs Client] "D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] D:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKCU\..\Run: [MSMSGS] "D:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [Microsoft Telecoms Center] winrestores.exe
O4 - HKCU\..\Run: [swg] D:\Program Files\Google\GoogleToolbarNotifier\1.0.720.4156\GoogleToolbarNotifier.exe
O4 - Global Startup: ATI CATALYST System Tray.lnk = D:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Researcher - {9455301C-CF6B-11D3-A266-00C04F689C50} - D:\Program Files\Common Files\Microsoft Shared\Encarta Researcher\EROProj.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\MSMSGS.EXE
O12 - Plugin for .spop: D:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {2D2BEE6E-3C9A-4D58-B9EC-458EDB28D0F6} - http://www.drivecleaner.com/.freeware/in...leanerstart.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupd...b?1157293123574
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O18 - Protocol: bw+0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {98EBC575-1DE7-410D-8C75-9117BD9BBBE0} - D:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: Adobe LM Service - Adobe Systems - D:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - D:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - D:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - D:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - D:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - D:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - D:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - D:\WINDOWS\System32\nvsvc32.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - D:\WINDOWS\system32\ZONELABS\vsmon.exe

VundoFix V6.1.2

Checking Java version...

Java version is 1.5.0.6

Scan started at 22:28:15 03/09/2006

Listing files found while scanning....

D:\WINDOWS\system32\vturrol.dll
D:\WINDOWS\system32\fcccbxy.dll
D:\WINDOWS\system32\ssqrqoo.dll
D:\WINDOWS\system32\hggfdca.dll
D:\WINDOWS\system32\ljjgdde.dll
D:\WINDOWS\system32\xxyaxwt.dll
D:\WINDOWS\system32\efccccd.dll
D:\WINDOWS\system32\wvusspp.dll
D:\WINDOWS\system32\tusst.dll
D:\WINDOWS\system32\tssut.ini
D:\WINDOWS\system32\tssut.bak1
D:\WINDOWS\system32\tssut.bak2
D:\WINDOWS\system32\tssut.ini2
D:\WINDOWS\system32\ssqqnkk.dll
D:\WINDOWS\system32\nnnkkjj.dll
D:\WINDOWS\system32\khfeede.dll
D:\WINDOWS\system32\wvuutut.dll
D:\WINDOWS\system32\gebayab.dll
D:\WINDOWS\system32\cbxutqr.dll
D:\WINDOWS\system32\qomlife.dll
D:\WINDOWS\system32\awtusss.dll
D:\WINDOWS\system32\tuvwvww.dll
D:\WINDOWS\system32\wvutsrp.dll
D:\WINDOWS\system32\mljjihh.dll
D:\WINDOWS\system32\xxyxxuu.dll
D:\WINDOWS\system32\xxyawtu.dll
D:\WINDOWS\system32\pmnkihe.dll
D:\WINDOWS\system32\yaywtss.dll
D:\WINDOWS\system32\efccccy.dll
D:\WINDOWS\system32\fccabyv.dll
D:\WINDOWS\system32\xxyxxxy.dll
D:\WINDOWS\system32\jkkjjgh.dll
D:\WINDOWS\system32\xxyyyxu.dll
D:\WINDOWS\system32\hggebba.dll
D:\WINDOWS\system32\efcccyy.dll
D:\WINDOWS\system32\yayyvvw.dll
D:\WINDOWS\system32\jkkjggg.dll
D:\WINDOWS\system32\hgghiif.dll
D:\WINDOWS\system32\qomjghi.dll
D:\WINDOWS\system32\opnmkll.dll
D:\WINDOWS\system32\ssqrqol.dll
D:\WINDOWS\system32\cbxyxxx.dll
D:\WINDOWS\system32\efcyyvw.dll
D:\WINDOWS\system32\gebabxw.dll
D:\WINDOWS\system32\jkkklmk.dll
D:\WINDOWS\system32\jkkhedb.dll
D:\WINDOWS\system32\rqrommn.dll
D:\WINDOWS\system32\gebyyxw.dll
D:\WINDOWS\system32\urqrpnl.dll
D:\WINDOWS\system32\hggfcyv.dll
D:\WINDOWS\system32\khfddaw.dll
D:\WINDOWS\system32\urqooli.dll
D:\WINDOWS\system32\gebaywv.dll
D:\WINDOWS\system32\ddcawxu.dll
D:\WINDOWS\system32\yayvttt.dll
D:\WINDOWS\system32\awtstqn.dll
D:\WINDOWS\system32\cbxwust.dll
D:\WINDOWS\system32\tuvvvvv.dll
D:\WINDOWS\system32\efcbbab.dll
D:\WINDOWS\system32\efcdbby.dll
D:\WINDOWS\system32\wvuurpp.dll
D:\WINDOWS\system32\nnnlihh.dll
D:\WINDOWS\system32\qommjhh.dll
D:\WINDOWS\system32\gebaayw.dll
D:\WINDOWS\system32\yayxyaa.dll
D:\WINDOWS\system32\cbxvwxv.dll
D:\WINDOWS\system32\urqopnk.dll
D:\WINDOWS\system32\yayyyxw.dll
D:\WINDOWS\system32\ljjhfec.dll
D:\WINDOWS\system32\ljjjhig.dll
D:\WINDOWS\system32\nnnnlkj.dll
D:\WINDOWS\system32\ddcaxvt.dll
D:\WINDOWS\system32\cbxyayx.dll
D:\WINDOWS\system32\qomklmj.dll
D:\WINDOWS\system32\rqrpqno.dll
D:\WINDOWS\system32\byxurqr.dll
D:\WINDOWS\system32\ssqnonk.dll
D:\WINDOWS\system32\jkkliii.dll
D:\WINDOWS\system32\wvuurrr.dll
D:\WINDOWS\system32\mljijkh.dll
D:\WINDOWS\system32\xxywxyw.dll
D:\WINDOWS\system32\rqrstsr.dll
D:\WINDOWS\system32\pmnllll.dll
D:\WINDOWS\system32\tuvwvvv.dll
D:\WINDOWS\system32\byxuttq.dll
D:\WINDOWS\system32\urqpmmn.dll
D:\WINDOWS\system32\awtuuss.dll
D:\WINDOWS\system32\urqnnkk.dll
D:\WINDOWS\system32\cbxvuuu.dll
D:\WINDOWS\system32\ddccyaa.dll
D:\WINDOWS\system32\ssqnljg.dll
D:\WINDOWS\system32\rqrrqrq.dll
D:\WINDOWS\system32\qomljkk.dll
D:\WINDOWS\system32\nnnmmlk.dll
D:\WINDOWS\system32\pmnopml.dll
D:\WINDOWS\system32\khfghed.dll
D:\WINDOWS\system32\khfefda.dll
D:\WINDOWS\system32\mljijge.dll
D:\WINDOWS\system32\urqpmjg.dll
D:\WINDOWS\system32\tuvssqq.dll
D:\WINDOWS\system32\ljjkhii.dll
D:\WINDOWS\system32\opnklkh.dll
D:\WINDOWS\system32\ddcdbca.dll
D:\WINDOWS\system32\efcbabc.dll
D:\WINDOWS\system32\ddcbccy.dll
D:\WINDOWS\system32\fccddeb.dll
D:\WINDOWS\system32\wvuuuut.dll
D:\WINDOWS\system32\nnnnopo.dll
D:\WINDOWS\system32\mljghhg.dll
D:\WINDOWS\system32\khffgfe.dll
D:\WINDOWS\system32\hgghgfc.dll
D:\WINDOWS\system32\iifecbx.dll
D:\WINDOWS\system32\yaywutq.dll
D:\WINDOWS\system32\iifcaxv.dll
D:\WINDOWS\system32\pmnljkl.dll
D:\WINDOWS\system32\rqrppmn.dll
D:\WINDOWS\system32\mljkjhf.dll
D:\WINDOWS\system32\hggfeca.dll
D:\WINDOWS\system32\khffedc.dll
D:\WINDOWS\system32\ljjjgef.dll
D:\WINDOWS\system32\yayxvvw.dll
D:\WINDOWS\system32\jkkhefc.dll
D:\WINDOWS\system32\rqrrolj.dll
D:\WINDOWS\system32\urqnonl.dll
D:\WINDOWS\system32\iifgeff.dll
D:\WINDOWS\system32\efcddaa.dll
D:\WINDOWS\system32\fccbcbx.dll
D:\WINDOWS\system32\opnmjkj.dll
D:\WINDOWS\system32\pmnopmm.dll
D:\WINDOWS\system32\fcccdde.dll
D:\WINDOWS\system32\iifgfge.dll
D:\WINDOWS\system32\nnnlmki.dll
D:\WINDOWS\system32\gebayvw.dll
D:\WINDOWS\system32\mljigfd.dll
D:\WINDOWS\system32\vturopp.dll
D:\WINDOWS\system32\fcccdbc.dll
D:\WINDOWS\system32\yayxxus.dll
D:\WINDOWS\system32\efcdded.dll
D:\WINDOWS\system32\efccaaw.dll
D:\WINDOWS\system32\jkkhffc.dll
D:\WINDOWS\system32\yayabxw.dll
D:\WINDOWS\system32\mljjkhg.dll
D:\WINDOWS\system32\gebayyy.dll
D:\WINDOWS\system32\ssqqomk.dll
D:\WINDOWS\system32\gebxwuu.dll
D:\WINDOWS\system32\ssqqppn.dll
D:\WINDOWS\system32\ddcbyxv.dll
D:\WINDOWS\system32\khfeefd.dll
D:\WINDOWS\system32\byxutuu.dll
D:\WINDOWS\system32\jkkigeb.dll
D:\WINDOWS\system32\urqpqqo.dll
D:\WINDOWS\system32\efcbabx.dll
D:\WINDOWS\system32\opnklmk.dll
D:\WINDOWS\system32\khfcyxx.dll
D:\WINDOWS\system32\awtttts.dll
D:\WINDOWS\system32\hggfcab.dll
D:\WINDOWS\system32\opnljjj.dll
D:\WINDOWS\system32\khffccb.dll
D:\WINDOWS\system32\ljjkife.dll
D:\WINDOWS\system32\tuvwuvw.dll
D:\WINDOWS\system32\hggebyv.dll
D:\WINDOWS\system32\fccdecc.dll
D:\WINDOWS\system32\xxyyyyv.dll
D:\WINDOWS\system32\fccawtr.dll
D:\WINDOWS\system32\vtuurrq.dll
D:\WINDOWS\system32\iifccyx.dll
D:\WINDOWS\system32\nnnonmj.dll
D:\WINDOWS\system32\yayywxx.dll
D:\WINDOWS\system32\rqromlm.dll
D:\WINDOWS\system32\gebaabx.dll
D:\WINDOWS\system32\xxyabca.dll
D:\WINDOWS\system32\ljjifdb.dll
D:\WINDOWS\system32\xxyyvtr.dll
D:\WINDOWS\system32\wvuvtuu.dll
D:\WINDOWS\system32\opnnonk.dll
D:\WINDOWS\system32\pmnomjg.dll
D:\WINDOWS\system32\byxyyxx.dll
D:\WINDOWS\system32\ddcccda.dll
D:\WINDOWS\system32\byxwtqn.dll
D:\WINDOWS\system32\mljhhef.dll
D:\WINDOWS\system32\iifcyax.dll
D:\WINDOWS\system32\mljhife.dll
D:\WINDOWS\system32\wvusrsp.dll
D:\WINDOWS\system32\qommmno.dll
D:\WINDOWS\system32\ljjgddb.dll
D:\WINDOWS\system32\mljhgfd.dll
D:\WINDOWS\system32\hggdbcc.dll
D:\WINDOWS\system32\cbxxvur.dll
D:\WINDOWS\system32\ljjjhfe.dll
D:\WINDOWS\system32\vtusppp.dll
D:\WINDOWS\system32\rqrrrqq.dll
D:\WINDOWS\system32\iifeeed.dll
D:\WINDOWS\system32\pmnklli.dll
D:\WINDOWS\system32\fccccdd.dll
D:\WINDOWS\system32\khfcdab.dll
D:\WINDOWS\system32\rqrpqrs.dll
D:\WINDOWS\system32\efcdedc.dll
D:\WINDOWS\system32\iifebbb.dll
D:\WINDOWS\system32\gebyyyw.dll
D:\WINDOWS\system32\awtqnkh.dll
D:\WINDOWS\system32\fccawvv.dll
D:\WINDOWS\system32\pmnollm.dll
D:\WINDOWS\system32\xxyayxu.dll
D:\WINDOWS\system32\rqrsrsp.dll
D:\WINDOWS\system32\cbxyyxx.dll
D:\WINDOWS\system32\nnnonlk.dll
D:\WINDOWS\system32\wvusqpm.dll
D:\WINDOWS\system32\ddcccyx.dll
D:\WINDOWS\system32\ssqrrpn.dll
D:\WINDOWS\system32\gebyvtq.dll
D:\WINDOWS\system32\ddcdcya.dll
D:\WINDOWS\system32\opnnmkj.dll
D:\WINDOWS\system32\nnnnljj.dll
D:\WINDOWS\system32\byxxyxu.dll
D:\WINDOWS\system32\wvuvstu.dll
D:\WINDOWS\system32\cbxxwxy.dll
D:\WINDOWS\system32\tuvwwvs.dll
D:\WINDOWS\system32\ljjgdab.dll
D:\WINDOWS\system32\awtrqnm.dll
D:\WINDOWS\system32\cbxyvtt.dll
D:\WINDOWS\system32\khfdefg.dll
D:\WINDOWS\system32\wvurpnm.dll
D:\WINDOWS\system32\tuvurol.dll
D:\WINDOWS\system32\ljjkjki.dll
D:\WINDOWS\system32\fccbbbb.dll
D:\WINDOWS\system32\byxxxya.dll
D:\WINDOWS\system32\urqnlmk.dll
D:\WINDOWS\system32\wvutspo.dll
D:\WINDOWS\system32\cbxxwuv.dll
D:\WINDOWS\system32\efcaayv.dll
D:\WINDOWS\system32\yayawts.dll
D:\WINDOWS\system32\ddcdaxw.dll
D:\WINDOWS\system32\vturopm.dll
D:\WINDOWS\system32\awtqpqn.dll
D:\WINDOWS\system32\vtustur.dll
D:\WINDOWS\system32\urqqppo.dll
D:\WINDOWS\system32\gebxyvu.dll
D:\WINDOWS\system32\wvuvuvv.dll
D:\WINDOWS\system32\opnklki.dll
D:\WINDOWS\system32\pmnlmnk.dll
D:\WINDOWS\system32\cbxwtst.dll
D:\WINDOWS\system32\byxwwtu.dll
D:\WINDOWS\system32\qomlmli.dll
D:\WINDOWS\system32\yayyyvs.dll
D:\WINDOWS\system32\pmnmjhe.dll
D:\WINDOWS\system32\gebcyyy.dll
D:\WINDOWS\system32\ddcdawx.dll
D:\WINDOWS\system32\byxxurp.dll
D:\WINDOWS\system32\vtursqr.dll
D:\WINDOWS\system32\ddcbxuu.dll
D:\WINDOWS\system32\rqrommk.dll
D:\WINDOWS\system32\ljjhhgd.dll
D:\WINDOWS\system32\awttrpq.dll

Beginning removal...

Attempting to delete D:\WINDOWS\system32\vturrol.dll
D:\WINDOWS\system32\vturrol.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\fcccbxy.dll
D:\WINDOWS\system32\fcccbxy.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ssqrqoo.dll
D:\WINDOWS\system32\ssqrqoo.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\hggfdca.dll
D:\WINDOWS\system32\hggfdca.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ljjgdde.dll
D:\WINDOWS\system32\ljjgdde.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\xxyaxwt.dll
D:\WINDOWS\system32\xxyaxwt.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\efccccd.dll
D:\WINDOWS\system32\efccccd.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\wvusspp.dll
D:\WINDOWS\system32\wvusspp.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\tusst.dll
D:\WINDOWS\system32\tusst.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\tssut.ini
D:\WINDOWS\system32\tssut.ini Has been deleted!

Attempting to delete D:\WINDOWS\system32\tssut.bak1
D:\WINDOWS\system32\tssut.bak1 Has been deleted!

Attempting to delete D:\WINDOWS\system32\tssut.bak2
D:\WINDOWS\system32\tssut.bak2 Has been deleted!

Attempting to delete D:\WINDOWS\system32\tssut.ini2
D:\WINDOWS\system32\tssut.ini2 Has been deleted!

Attempting to delete D:\WINDOWS\system32\ssqqnkk.dll
D:\WINDOWS\system32\ssqqnkk.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\nnnkkjj.dll
D:\WINDOWS\system32\nnnkkjj.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\khfeede.dll
D:\WINDOWS\system32\khfeede.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\wvuutut.dll
D:\WINDOWS\system32\wvuutut.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\gebayab.dll
D:\WINDOWS\system32\gebayab.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\cbxutqr.dll
D:\WINDOWS\system32\cbxutqr.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\qomlife.dll
D:\WINDOWS\system32\qomlife.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\awtusss.dll
D:\WINDOWS\system32\awtusss.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\tuvwvww.dll
D:\WINDOWS\system32\tuvwvww.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\wvutsrp.dll
D:\WINDOWS\system32\wvutsrp.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\mljjihh.dll
D:\WINDOWS\system32\mljjihh.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\xxyxxuu.dll
D:\WINDOWS\system32\xxyxxuu.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\xxyawtu.dll
D:\WINDOWS\system32\xxyawtu.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\pmnkihe.dll
D:\WINDOWS\system32\pmnkihe.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\yaywtss.dll
D:\WINDOWS\system32\yaywtss.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\efccccy.dll
D:\WINDOWS\system32\efccccy.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\fccabyv.dll
D:\WINDOWS\system32\fccabyv.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\xxyxxxy.dll
D:\WINDOWS\system32\xxyxxxy.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\jkkjjgh.dll
D:\WINDOWS\system32\jkkjjgh.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\xxyyyxu.dll
D:\WINDOWS\system32\xxyyyxu.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\hggebba.dll
D:\WINDOWS\system32\hggebba.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\efcccyy.dll
D:\WINDOWS\system32\efcccyy.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\yayyvvw.dll
D:\WINDOWS\system32\yayyvvw.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\jkkjggg.dll
D:\WINDOWS\system32\jkkjggg.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\hgghiif.dll
D:\WINDOWS\system32\hgghiif.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\qomjghi.dll
D:\WINDOWS\system32\qomjghi.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\opnmkll.dll
D:\WINDOWS\system32\opnmkll.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ssqrqol.dll
D:\WINDOWS\system32\ssqrqol.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\cbxyxxx.dll
D:\WINDOWS\system32\cbxyxxx.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\efcyyvw.dll
D:\WINDOWS\system32\efcyyvw.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\gebabxw.dll
D:\WINDOWS\system32\gebabxw.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\jkkklmk.dll
D:\WINDOWS\system32\jkkklmk.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\jkkhedb.dll
D:\WINDOWS\system32\jkkhedb.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\rqrommn.dll
D:\WINDOWS\system32\rqrommn.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\gebyyxw.dll
D:\WINDOWS\system32\gebyyxw.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\urqrpnl.dll
D:\WINDOWS\system32\urqrpnl.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\hggfcyv.dll
D:\WINDOWS\system32\hggfcyv.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\khfddaw.dll
D:\WINDOWS\system32\khfddaw.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\urqooli.dll
D:\WINDOWS\system32\urqooli.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\gebaywv.dll
D:\WINDOWS\system32\gebaywv.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ddcawxu.dll
D:\WINDOWS\system32\ddcawxu.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\yayvttt.dll
D:\WINDOWS\system32\yayvttt.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\awtstqn.dll
D:\WINDOWS\system32\awtstqn.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\cbxwust.dll
D:\WINDOWS\system32\cbxwust.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\tuvvvvv.dll
D:\WINDOWS\system32\tuvvvvv.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\efcbbab.dll
D:\WINDOWS\system32\efcbbab.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\efcdbby.dll
D:\WINDOWS\system32\efcdbby.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\wvuurpp.dll
D:\WINDOWS\system32\wvuurpp.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\nnnlihh.dll
D:\WINDOWS\system32\nnnlihh.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\qommjhh.dll
D:\WINDOWS\system32\qommjhh.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\gebaayw.dll
D:\WINDOWS\system32\gebaayw.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\yayxyaa.dll
D:\WINDOWS\system32\yayxyaa.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\cbxvwxv.dll
D:\WINDOWS\system32\cbxvwxv.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\urqopnk.dll
D:\WINDOWS\system32\urqopnk.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\yayyyxw.dll
D:\WINDOWS\system32\yayyyxw.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ljjhfec.dll
D:\WINDOWS\system32\ljjhfec.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ljjjhig.dll
D:\WINDOWS\system32\ljjjhig.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\nnnnlkj.dll
D:\WINDOWS\system32\nnnnlkj.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ddcaxvt.dll
D:\WINDOWS\system32\ddcaxvt.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\cbxyayx.dll
D:\WINDOWS\system32\cbxyayx.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\qomklmj.dll
D:\WINDOWS\system32\qomklmj.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\rqrpqno.dll
D:\WINDOWS\system32\rqrpqno.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\byxurqr.dll
D:\WINDOWS\system32\byxurqr.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ssqnonk.dll
D:\WINDOWS\system32\ssqnonk.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\jkkliii.dll
D:\WINDOWS\system32\jkkliii.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\wvuurrr.dll
D:\WINDOWS\system32\wvuurrr.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\mljijkh.dll
D:\WINDOWS\system32\mljijkh.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\xxywxyw.dll
D:\WINDOWS\system32\xxywxyw.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\rqrstsr.dll
D:\WINDOWS\system32\rqrstsr.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\pmnllll.dll
D:\WINDOWS\system32\pmnllll.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\tuvwvvv.dll
D:\WINDOWS\system32\tuvwvvv.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\byxuttq.dll
D:\WINDOWS\system32\byxuttq.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\urqpmmn.dll
D:\WINDOWS\system32\urqpmmn.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\awtuuss.dll
D:\WINDOWS\system32\awtuuss.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\urqnnkk.dll
D:\WINDOWS\system32\urqnnkk.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\cbxvuuu.dll
D:\WINDOWS\system32\cbxvuuu.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ddccyaa.dll
D:\WINDOWS\system32\ddccyaa.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ssqnljg.dll
D:\WINDOWS\system32\ssqnljg.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\rqrrqrq.dll
D:\WINDOWS\system32\rqrrqrq.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\qomljkk.dll
D:\WINDOWS\system32\qomljkk.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\nnnmmlk.dll
D:\WINDOWS\system32\nnnmmlk.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\pmnopml.dll
D:\WINDOWS\system32\pmnopml.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\khfghed.dll
D:\WINDOWS\system32\khfghed.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\khfefda.dll
D:\WINDOWS\system32\khfefda.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\mljijge.dll
D:\WINDOWS\system32\mljijge.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\urqpmjg.dll
D:\WINDOWS\system32\urqpmjg.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\tuvssqq.dll
D:\WINDOWS\system32\tuvssqq.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ljjkhii.dll
D:\WINDOWS\system32\ljjkhii.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\opnklkh.dll
D:\WINDOWS\system32\opnklkh.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ddcdbca.dll
D:\WINDOWS\system32\ddcdbca.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\efcbabc.dll
D:\WINDOWS\system32\efcbabc.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ddcbccy.dll
D:\WINDOWS\system32\ddcbccy.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\fccddeb.dll
D:\WINDOWS\system32\fccddeb.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\wvuuuut.dll
D:\WINDOWS\system32\wvuuuut.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\nnnnopo.dll
D:\WINDOWS\system32\nnnnopo.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\mljghhg.dll
D:\WINDOWS\system32\mljghhg.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\khffgfe.dll
D:\WINDOWS\system32\khffgfe.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\hgghgfc.dll
D:\WINDOWS\system32\hgghgfc.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\iifecbx.dll
D:\WINDOWS\system32\iifecbx.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\yaywutq.dll
D:\WINDOWS\system32\yaywutq.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\iifcaxv.dll
D:\WINDOWS\system32\iifcaxv.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\pmnljkl.dll
D:\WINDOWS\system32\pmnljkl.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\rqrppmn.dll
D:\WINDOWS\system32\rqrppmn.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\mljkjhf.dll
D:\WINDOWS\system32\mljkjhf.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\hggfeca.dll
D:\WINDOWS\system32\hggfeca.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\khffedc.dll
D:\WINDOWS\system32\khffedc.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ljjjgef.dll
D:\WINDOWS\system32\ljjjgef.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\yayxvvw.dll
D:\WINDOWS\system32\yayxvvw.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\jkkhefc.dll
D:\WINDOWS\system32\jkkhefc.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\rqrrolj.dll
D:\WINDOWS\system32\rqrrolj.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\urqnonl.dll
D:\WINDOWS\system32\urqnonl.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\iifgeff.dll
D:\WINDOWS\system32\iifgeff.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\efcddaa.dll
D:\WINDOWS\system32\efcddaa.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\fccbcbx.dll
D:\WINDOWS\system32\fccbcbx.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\opnmjkj.dll
D:\WINDOWS\system32\opnmjkj.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\pmnopmm.dll
D:\WINDOWS\system32\pmnopmm.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\fcccdde.dll
D:\WINDOWS\system32\fcccdde.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\iifgfge.dll
D:\WINDOWS\system32\iifgfge.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\nnnlmki.dll
D:\WINDOWS\system32\nnnlmki.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\gebayvw.dll
D:\WINDOWS\system32\gebayvw.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\mljigfd.dll
D:\WINDOWS\system32\mljigfd.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\vturopp.dll
D:\WINDOWS\system32\vturopp.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\fcccdbc.dll
D:\WINDOWS\system32\fcccdbc.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\yayxxus.dll
D:\WINDOWS\system32\yayxxus.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\efcdded.dll
D:\WINDOWS\system32\efcdded.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\efccaaw.dll
D:\WINDOWS\system32\efccaaw.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\jkkhffc.dll
D:\WINDOWS\system32\jkkhffc.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\yayabxw.dll
D:\WINDOWS\system32\yayabxw.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\mljjkhg.dll
D:\WINDOWS\system32\mljjkhg.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\gebayyy.dll
D:\WINDOWS\system32\gebayyy.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ssqqomk.dll
D:\WINDOWS\system32\ssqqomk.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\gebxwuu.dll
D:\WINDOWS\system32\gebxwuu.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ssqqppn.dll
D:\WINDOWS\system32\ssqqppn.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ddcbyxv.dll
D:\WINDOWS\system32\ddcbyxv.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\khfeefd.dll
D:\WINDOWS\system32\khfeefd.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\byxutuu.dll
D:\WINDOWS\system32\byxutuu.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\jkkigeb.dll
D:\WINDOWS\system32\jkkigeb.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\urqpqqo.dll
D:\WINDOWS\system32\urqpqqo.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\efcbabx.dll
D:\WINDOWS\system32\efcbabx.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\opnklmk.dll
D:\WINDOWS\system32\opnklmk.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\khfcyxx.dll
D:\WINDOWS\system32\khfcyxx.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\awtttts.dll
D:\WINDOWS\system32\awtttts.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\hggfcab.dll
D:\WINDOWS\system32\hggfcab.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\opnljjj.dll
D:\WINDOWS\system32\opnljjj.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\khffccb.dll
D:\WINDOWS\system32\khffccb.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ljjkife.dll
D:\WINDOWS\system32\ljjkife.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\tuvwuvw.dll
D:\WINDOWS\system32\tuvwuvw.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\hggebyv.dll
D:\WINDOWS\system32\hggebyv.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\fccdecc.dll
D:\WINDOWS\system32\fccdecc.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\xxyyyyv.dll
D:\WINDOWS\system32\xxyyyyv.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\fccawtr.dll
D:\WINDOWS\system32\fccawtr.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\vtuurrq.dll
D:\WINDOWS\system32\vtuurrq.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\iifccyx.dll
D:\WINDOWS\system32\iifccyx.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\nnnonmj.dll
D:\WINDOWS\system32\nnnonmj.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\yayywxx.dll
D:\WINDOWS\system32\yayywxx.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\rqromlm.dll
D:\WINDOWS\system32\rqromlm.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\gebaabx.dll
D:\WINDOWS\system32\gebaabx.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\xxyabca.dll
D:\WINDOWS\system32\xxyabca.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ljjifdb.dll
D:\WINDOWS\system32\ljjifdb.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\xxyyvtr.dll
D:\WINDOWS\system32\xxyyvtr.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\wvuvtuu.dll
D:\WINDOWS\system32\wvuvtuu.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\opnnonk.dll
D:\WINDOWS\system32\opnnonk.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\pmnomjg.dll
D:\WINDOWS\system32\pmnomjg.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\byxyyxx.dll
D:\WINDOWS\system32\byxyyxx.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ddcccda.dll
D:\WINDOWS\system32\ddcccda.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\byxwtqn.dll
D:\WINDOWS\system32\byxwtqn.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\mljhhef.dll
D:\WINDOWS\system32\mljhhef.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\iifcyax.dll
D:\WINDOWS\system32\iifcyax.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\mljhife.dll
D:\WINDOWS\system32\mljhife.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\wvusrsp.dll
D:\WINDOWS\system32\wvusrsp.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\qommmno.dll
D:\WINDOWS\system32\qommmno.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ljjgddb.dll
D:\WINDOWS\system32\ljjgddb.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\mljhgfd.dll
D:\WINDOWS\system32\mljhgfd.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\hggdbcc.dll
D:\WINDOWS\system32\hggdbcc.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\cbxxvur.dll
D:\WINDOWS\system32\cbxxvur.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ljjjhfe.dll
D:\WINDOWS\system32\ljjjhfe.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\vtusppp.dll
D:\WINDOWS\system32\vtusppp.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\rqrrrqq.dll
D:\WINDOWS\system32\rqrrrqq.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\iifeeed.dll
D:\WINDOWS\system32\iifeeed.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\pmnklli.dll
D:\WINDOWS\system32\pmnklli.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\fccccdd.dll
D:\WINDOWS\system32\fccccdd.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\khfcdab.dll
D:\WINDOWS\system32\khfcdab.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\rqrpqrs.dll
D:\WINDOWS\system32\rqrpqrs.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\efcdedc.dll
D:\WINDOWS\system32\efcdedc.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\iifebbb.dll
D:\WINDOWS\system32\iifebbb.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\gebyyyw.dll
D:\WINDOWS\system32\gebyyyw.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\awtqnkh.dll
D:\WINDOWS\system32\awtqnkh.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\fccawvv.dll
D:\WINDOWS\system32\fccawvv.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\pmnollm.dll
D:\WINDOWS\system32\pmnollm.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\xxyayxu.dll
D:\WINDOWS\system32\xxyayxu.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\rqrsrsp.dll
D:\WINDOWS\system32\rqrsrsp.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\cbxyyxx.dll
D:\WINDOWS\system32\cbxyyxx.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\nnnonlk.dll
D:\WINDOWS\system32\nnnonlk.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\wvusqpm.dll
D:\WINDOWS\system32\wvusqpm.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ddcccyx.dll
D:\WINDOWS\system32\ddcccyx.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ssqrrpn.dll
D:\WINDOWS\system32\ssqrrpn.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\gebyvtq.dll
D:\WINDOWS\system32\gebyvtq.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ddcdcya.dll
D:\WINDOWS\system32\ddcdcya.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\opnnmkj.dll
D:\WINDOWS\system32\opnnmkj.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\nnnnljj.dll
D:\WINDOWS\system32\nnnnljj.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\byxxyxu.dll
D:\WINDOWS\system32\byxxyxu.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\wvuvstu.dll
D:\WINDOWS\system32\wvuvstu.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\cbxxwxy.dll
D:\WINDOWS\system32\cbxxwxy.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\tuvwwvs.dll
D:\WINDOWS\system32\tuvwwvs.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ljjgdab.dll
D:\WINDOWS\system32\ljjgdab.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\awtrqnm.dll
D:\WINDOWS\system32\awtrqnm.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\cbxyvtt.dll
D:\WINDOWS\system32\cbxyvtt.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\khfdefg.dll
D:\WINDOWS\system32\khfdefg.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\wvurpnm.dll
D:\WINDOWS\system32\wvurpnm.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\tuvurol.dll
D:\WINDOWS\system32\tuvurol.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ljjkjki.dll
D:\WINDOWS\system32\ljjkjki.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\fccbbbb.dll
D:\WINDOWS\system32\fccbbbb.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\byxxxya.dll
D:\WINDOWS\system32\byxxxya.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\urqnlmk.dll
D:\WINDOWS\system32\urqnlmk.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\wvutspo.dll
D:\WINDOWS\system32\wvutspo.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\cbxxwuv.dll
D:\WINDOWS\system32\cbxxwuv.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\efcaayv.dll
D:\WINDOWS\system32\efcaayv.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\yayawts.dll
D:\WINDOWS\system32\yayawts.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ddcdaxw.dll
D:\WINDOWS\system32\ddcdaxw.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\vturopm.dll
D:\WINDOWS\system32\vturopm.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\awtqpqn.dll
D:\WINDOWS\system32\awtqpqn.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\vtustur.dll
D:\WINDOWS\system32\vtustur.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\urqqppo.dll
D:\WINDOWS\system32\urqqppo.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\gebxyvu.dll
D:\WINDOWS\system32\gebxyvu.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\wvuvuvv.dll
D:\WINDOWS\system32\wvuvuvv.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\opnklki.dll
D:\WINDOWS\system32\opnklki.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\pmnlmnk.dll
D:\WINDOWS\system32\pmnlmnk.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\cbxwtst.dll
D:\WINDOWS\system32\cbxwtst.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\byxwwtu.dll
D:\WINDOWS\system32\byxwwtu.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\qomlmli.dll
D:\WINDOWS\system32\qomlmli.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\yayyyvs.dll
D:\WINDOWS\system32\yayyyvs.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\pmnmjhe.dll
D:\WINDOWS\system32\pmnmjhe.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\gebcyyy.dll
D:\WINDOWS\system32\gebcyyy.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ddcdawx.dll
D:\WINDOWS\system32\ddcdawx.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\byxxurp.dll
D:\WINDOWS\system32\byxxurp.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\vtursqr.dll
D:\WINDOWS\system32\vtursqr.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ddcbxuu.dll
D:\WINDOWS\system32\ddcbxuu.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\rqrommk.dll
D:\WINDOWS\system32\rqrommk.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\ljjhhgd.dll
D:\WINDOWS\system32\ljjhhgd.dll Has been deleted!

Attempting to delete D:\WINDOWS\system32\awttrpq.dll
D:\WINDOWS\system32\awttrpq.dll Has been deleted!

Performing Repairs to the registry.
Done!

VundoFix V6.1.2

Checking Java version...

Java version is 1.5.0.6

Scan started at 08:40:40 04/09/2006

Listing files found while scanning....

VundoFix V6.1.2

Checking Java version...

Java version is 1.5.0.6

Scan started at 09:06:13 04/09/2006

Listing files found while scanning....

No infected files were found.

VundoFix V6.1.2

Checking Java version...

Java version is 1.5.0.6

Scan started at 15:22:05 04/09/2006

Listing files found while scanning....

No infected files were found.

VundoFix V6.1.2

Checking Java version...

Java version is 1.5.0.6

Scan started at 16:59:38 08/09/2006

Listing files found while scanning....

No infected files were found.

[ + quote]

maca1

Senior Member

8. September 2006 @ 10:03

Link to this message

Click here to download ATF Cleaner by Atribune and save it to your desktop.

http://majorgeeks.com/ATF_Cleaner_d4949.html

* Double-click ATF-Cleaner.exe to run the program.
* Under Main choose: Select All
* Click the Empty Selected button.
o If you use Firefox:
+ Click Firefox at the top and choose: Select All
+ Click the Empty Selected button.
+ NOTE: If you would like to keep your saved passwords, please click No at the prompt.
o If you use Opera:
+ Click Opera at the top and choose: Select All
+ Click the Empty Selected button.
+ NOTE: If you would like to keep your saved passwords, please click No at the prompt.
* Click Exit on the Main menu to close the program.

reboot into safe mode (restart and tap F8 on startup)

show hidden files and folders:

* Click Start.
* Open My Computer.
* Select the Tools menu and click Folder Options.
* Select the View Tab.
* Under the Hidden files and folders heading select Show hidden files and folders.
* Uncheck the Hide protected operating system files (recommended) option.
* Click Yes to confirm.
* Click OK.

Run HjT and check these then click fix checked:

O2 - BHO: (no name) - {936597FF-DE8A-4CEA-82E6-C9416F3E131B} - D:\WINDOWS\System32\tusst.dll (file missing)
O4 - HKCU\..\Run: [Microsoft Telecoms Center] winrestores.exe

search for this file using Start-search and delete it.

winrestores.exe

reboot into normal mode and run panda scan again since it's been a while.

paste new HijackThis and panda report

[ + quote]

Start a new thread


		User name	Password

		Not registered yet? Register here. Lost your password? Click here.