Mobile/PDA About Us Advertise here
User User name Password  
  Not registered yet? Register here.
Lost your password? Click here. 		 
  Home   News   Guides   Downloads   Glossary   Hardware   Profiles   Forums   v4  
 Advertise at AfterDawn.com     Link to us!     Private messages     Compose a private message     List of all updated threads     Threads without replies     Search messages
Wednesday 22.1.2025 / 21:39
Search AfterDawn Forums:        In English   Suomeksi   På svenska
afterdawn.com > forums > software, operating systems and more > windows - virus and spyware problems > computer shuts itself off malware hjt
Show topics
 
Forums
Forums
Computer shuts itself off malware HJT
  Jump to:
 
Posted Message
richied02
Newbie
_ 		21. September 2006 @ 10:56 _ Link to this message    Send private message to this user   
I cannot get 10 mins into my computer after turning on without it locking or shutting itself down please help it would be much appreciated to have computer back

Logfile of HijackThis v1.99.1
Scan saved at 11:52:25 AM, on 9/21/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\userinit.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
C:\WINDOWS\system32\ati2sgag.exe
C:\WINDOWS\Q2hpcHMgTW9uZXkgTWFraW5nIE1hY2hpbmU\command.exe
C:\WINDOWS\System32\gihxqicv.exe
C:\nwnmff_e10.exe
C:\dfndrff_e10.exe
C:\WINDOWS\hgvapuiA.exe
C:\WINDOWS\sys02441336240.exe
C:\kybrdff_e10.exe
C:\Program Files\DeluxeCommunications\Dxc.exe
C:\topaff.exe
C:\windows\system32\osdsregk.exe
C:\WINDOWS\system32\twintpex.exe
C:\WINDOWS\sachostx.exe
C:\WINDOWS\ms03413362404.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\DeluxeCommunications\Dxc.exe
C:\WINDOWS\System32\netsh.exe
C:\WINDOWS\system32\twintpex.exe
C:\Program Files\Network Monitor\netmon.exe
C:\Documents and Settings\Administrator\Desktop\HijackThis_v1.99.1.exe
C:\WINDOWS\System32\netsh.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\hgvapui.exe
C:\WINDOWS\winlogon.exe
C:\Program Files\Linksys Wireless-G USB Wireless Network Monitor\WLService.exe
C:\Program Files\Linksys Wireless-G USB Wireless Network Monitor\WUSB54Gv42.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.twoplustwo.com/
R3 - URLSearchHook: (no name) - {A8BD6820-6ED7-423E-9558-2D1486B0FEEA} - C:\Program Files\DeluxeCommunications\DxcBho.dll
F2 - REG:system.ini: Shell=Explorer.exe, C:\WINDOWS\System32\kkvdu.exe
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,ugdhfaw.exe
O2 - BHO: (no name) - {6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C} - C:\WINDOWS\System32\yaywurr.dll
O2 - BHO: (no name) - {D711D913-B12D-4A0B-9D68-DD4203B7F55A} - C:\WINDOWS\System32\awtss.dll
O4 - HKLM\..\Run: [routing] gihxqicv.exe
O4 - HKLM\..\Run: [newname] C:\\nwnmff_e10.exe
O4 - HKLM\..\Run: [defender] C:\\dfndrff_e10.exe
O4 - HKLM\..\Run: [hgvapuiA] C:\WINDOWS\hgvapuiA.exe
O4 - HKLM\..\Run: [sys02441336240] C:\WINDOWS\sys02441336240.exe
O4 - HKLM\..\Run: [keyboard] C:\\kybrdff_e10.exe
O4 - HKLM\..\Run: [DeluxeCommunications] C:\Program Files\DeluxeCommunications\Dxc.exe
O4 - HKLM\..\Run: [loaddr] C:\topaff.exe
O4 - HKLM\..\Run: [{AD-DB-BB-B2-ZN}] C:\windows\system32\osdsregk.exe ELT001
O4 - HKLM\..\Run: [ExploreUpdSched] C:\WINDOWS\system32\twintpex.exe ELT001
O4 - HKLM\..\Run: [win3206362404413] C:\WINDOWS\win3206362404413.exe
O4 - HKLM\..\Run: [SystemLoader] C:\WINDOWS\sysldr32.exe
O4 - HKLM\..\Run: [sachost] C:\WINDOWS\sachostx.exe
O4 - HKLM\..\Run: [ms03413362404] C:\WINDOWS\ms03413362404.exe
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\RunServices: [routing] gihxqicv.exe
O4 - HKCU\..\Run: [DeluxeCommunications] C:\Program Files\DeluxeCommunications\Dxc.exe
O4 - Startup: TA_Start.lnk = C:\WINDOWS\system32\dwdsregt.exe
O4 - Startup: Think-Adz.lnk = C:\WINDOWS\system32\twintpex.exe
O9 - Extra button: (no name) - {4ABF810A-F11D-4169-9D5F-7D274F2270A1} - C:\WINDOWS\System32\dmonwv.dll
O9 - Extra 'Tools' menuitem: Java - {4ABF810A-F11D-4169-9D5F-7D274F2270A1} - C:\WINDOWS\System32\dmonwv.dll
O9 - Extra button: UltimateBet - {94148DB5-B42D-4915-95DA-2CBB4F7095BF} - C:\Program Files\UltimateBet\UltimateBet.exe
O9 - Extra 'Tools' menuitem: UltimateBet - {94148DB5-B42D-4915-95DA-2CBB4F7095BF} - C:\Program Files\UltimateBet\UltimateBet.exe
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O10 - Hijacked Internet access by WebHancer
O10 - Hijacked Internet access by WebHancer
O10 - Hijacked Internet access by WebHancer
O15 - Trusted Zone: http://click.getmirar.com (HKLM)
O15 - Trusted Zone: http://click.mirarsearch.com (HKLM)
O15 - Trusted Zone: http://redirect.mirarsearch.com (HKLM)
O15 - Trusted Zone: http://awbeta.net-nucleus.com (HKLM)
O16 - DPF: {8A0DCBDB-6E20-489C-9041-C1E8A0352E75} (Mirar_Dummy_ATS1 Class) - http://awbeta.net-nucleus.com/FIX/WinATS.cab
O16 - DPF: {B64F4A7C-97C9-11DA-8BDE-F66BAD1E3F3A} - http://download.cdn.winsoftware.com/file...FreeInstall.cab
O18 - Protocol: bw+0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {22513AAA-EAD2-45BB-995D-63E28AB8F313} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: awtss - C:\WINDOWS\System32\awtss.dll
O20 - Winlogon Notify: Nls - C:\WINDOWS\system32\AVIDEMGR.dll
O20 - Winlogon Notify: ShellScrap - C:\WINDOWS\system32\ir4ml5h11.dll (file missing)
O20 - Winlogon Notify: yaywurr - C:\WINDOWS\SYSTEM32\yaywurr.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Command Service (cmdService) - Unknown owner - C:\WINDOWS\Q2hpcHMgTW9uZXkgTWFraW5nIE1hY2hpbmU\command.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Network Monitor - Unknown owner - C:\Program Files\Network Monitor\netmon.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
O23 - Service: Windows Genuine Advantage Registration Service (wgareg) - Unknown owner - C:\WINDOWS\System32\wgareg.exe
O23 - Service: Windows Overlay Components - Unknown owner - C:\WINDOWS\hgvapui.exe
O23 - Service: Microsoft Windows Spooler Service (Windows Spooler Service) - Unknown owner - C:\WINDOWS\winlogon.exe
O23 - Service: WUSB54Gv42SVC - Unknown owner - C:\Program Files\Linksys Wireless-G USB Wireless Network Monitor\WLService.exe" "WUSB54Gv42.exe (file missing)
[ + quote]
Niobis
Senior Member
_ 		21. September 2006 @ 13:06 _ Link to this message    Send private message to this user   
Go here and download LSPFix. You may not need it but, download it just in case.

Go here and download FixWebHance.com

Run FixWebHance. If you loose internet connect after, run LSPFix, if not, you can delete it.

Go here and download Ewido.
Go here and download Spybot Search and Destroy.

Install and update.
Restart in safe mode(press F8 upon boot, select "Safe Mode" from menu).

Open Spybot and click Check for Problems.
When it finishes, click Fix seleted.
Close Spybot.
Run a complete system scan with Ewido.
When it finishes, set all item to delete and click "Apply all actions".
Then click "Save Reoprt".
Restart in normal mode.

Post the Ewido report and a new HijackThis log.
[ + quote]
Don't be fooled any longer.
http://www.youtube.com/watch?v=BUtbGYgsIu4&feature=related

This message has been edited since posting. Last time this message was edited on 21. September 2006 @ 13:12
rpdd
Newbie
_ 		26. September 2006 @ 22:13 _ Link to this message    Send private message to this user   
Deluxe Communications won't go away so easy.
try to remove deluxec... here:

http://www.spyware-removal-guideline.com...cations-removal

[ + quote]
just me
Advertisement
_ 		__
 
_
Skalek
Newbie
_ 		1. October 2006 @ 04:59 _ Link to this message    Send private message to this user   
[ + quote]
Related links
Download the latest version of HijackThis now!
 
Related forum topics Posts Last post Forum room
Findgala. Sticked Failed. HJT Log 8 21. August 2013 Windows - Virus and spyware problems
Pls check my HJT - is it heathy now? 4 14. February 2012 Windows - Virus and spyware problems
Laptop freezes and need re boot. HJT help needed 6 13. February 2012 Windows - Virus and spyware problems
Hi! Can someone take a look at a HJT log please, nasty virus! 1 27. January 2012 Windows - Virus and spyware problems
HJT..... Assist Please 15 31. December 2011 Windows - Virus and spyware problems
Redirections, other random things, HJT log 2 23. May 2011 Windows - Virus and spyware problems
System slow on startup and running loud - HJT log 3 11. May 2011 Windows - Virus and spyware problems
Slow and lagging computer -HJT log 4 30. March 2011 Windows - Virus and spyware problems
computer actin up a lil (HJT log) 3 24. February 2011 Windows - Virus and spyware problems
HJT log, please check 1 24. January 2011 Windows - Virus and spyware problems

 
afterdawn.com > forums > software, operating systems and more > windows - virus and spyware problems > computer shuts itself off malware hjt
 

Digital video: AfterDawn.com | AfterDawn Forums
Music: MP3Lizard.com
Gaming: Blasteroids.com | Blasteroids Forums | Compare game prices
Software: Software downloads
Blogs: User profile pages
RSS feeds: AfterDawn.com News | Software updates | AfterDawn Forums
International: AfterDawn in Finnish | AfterDawn in Swedish | AfterDawn in Norwegian | download.fi
Navigate: Search | Site map
About us: About AfterDawn Ltd | Advertise on our sites | Rules, Restrictions, Legal disclaimer & Privacy policy
Contact us: Send feedback | Contact our media sales team
 
  © 1999-2025 by AfterDawn Ltd.

  IDG TechNetwork