hijack this

horsemen_ · Post by **horsemen_** » Sat Sep 16, 2006 3:29 pm

i getting alot of pop up now from sites i nor do not even with if google tool bar and yahoo tool bar and last but least ad-watch pop up blockers on.
i ran spy sweeper and ad aware se pro and nothing was found is their something in my hijack this report i need to take out?

Logfile of HijackThis v1.99.1
Scan saved at 12:22:55 PM, on 9/16/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Eset\nod32krn.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\ATI Technologies\ATI.ACE\CLI.EXE
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Lavasoft\Ad-Aware SE Professional\Ad-Watch.exe
C:\PROGRA~1\ICQ\ICQ.exe
C:\Program Files\Yahoo!\Messenger\ypager.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\Yahoo!\browser\ycommon.exe
C:\Documents and Settings\mike\Desktop\hijack\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.my.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://red.clientapps.yahoo.com/customi ... ch/ie.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.my.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://iredirect.logitech.com/re.php?L= ... 0.0&B=0004
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe"
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [Mirabilis ICQ] C:\PROGRA~1\ICQ\ICQNet.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKLM\..\Run: [Nvidia] d:\hack\ultra edition\scct\dll\nvidia.exe
O4 - HKCU\..\Run: [SpySweeper] "C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe" /0
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [AWMON] "C:\Program Files\Lavasoft\Ad-Aware SE Professional\Ad-Watch.exe"
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\ypager.exe" -quiet
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [AnyDVD] C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &ieSpell Options - res://C:\Program Files\ieSpell\iespell.dll/SPELLOPTION.HTM
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: Check &Spelling - res://C:\Program Files\ieSpell\iespell.dll/SPELLCHECK.HTM
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Linked Ima&ges - C:\Program Files\IEimage\IEimage.htm
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm
O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\Program Files\ieSpell\iespell.dll
O9 - Extra 'Tools' menuitem: ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\Program Files\ieSpell\iespell.dll
O9 - Extra button: (no name) - {1606D6F9-9D3B-4aea-A025-ED5B2FD488E7} - C:\Program Files\ieSpell\iespell.dll
O9 - Extra 'Tools' menuitem: ieSpell Options - {1606D6F9-9D3B-4aea-A025-ED5B2FD488E7} - C:\Program Files\ieSpell\iespell.dll
O9 - Extra button: SBC Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: ICQ Pro - {6224f700-cba3-4071-b251-47cb894244cd} - C:\PROGRA~1\ICQ\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ - {6224f700-cba3-4071-b251-47cb894244cd} - C:\PROGRA~1\ICQ\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 1525681437
O16 - DPF: {D77EF652-9A6B-40C8-A4B9-1C0697C6CF41} (TikGames Online Control) - http://download.games.yahoo.com/games/w ... dfever.cab
O18 - Protocol: bw+0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {804AD356-E3E9-4A8A-8551-068AE5033035} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe

lewis · Post by **lewis** » Sun Sep 17, 2006 2:10 pm

I don't know whats good or bad in that scan, but found a site that analyzes the results and gives some info on each. http://hijackthis.de/index.php?langselect=english

Sava700 · Post by **Sava700** » Sun Sep 17, 2006 2:52 pm

OMG get rid of the yahoo and Google toolbars!! They are the DEVIL!!

YARDofSTUF · Post by **YARDofSTUF** » Sun Sep 17, 2006 3:51 pm

Google toolbar is good, popup blocking.

Post by **YeOldeStonecat** » Sun Sep 17, 2006 5:11 pm

YARDofSTUF wrote:Google toolbar is good, popup blocking.

Goes in every single rig I build, work on, and setup for people.

I'd uninstall everything Yahoo related though.

Jeeeze look at Logitech software go..I never install their software for rats or joysticks.

Give SuperAntispyware a shot.
http://www.superantispyware.com/

What's this from?
"d:\hack\ultra edition\scct\dll\nvidia.exe"

horsemen_ · Post by **horsemen_** » Sun Sep 17, 2006 8:57 pm

ya but yahoo my ip lol

i went from norton corp 05 to nod 32 was told it was better giving super a try now

CableDude · Post by **CableDude** » Sun Sep 17, 2006 9:05 pm

horsemen_ wrote: i went from norton corp 05 to nod 32 was told it was better

It is.

Post by **YeOldeStonecat** » Mon Sep 18, 2006 7:55 am

horsemen_ wrote:ya but yahoo my ip lol

i went from norton corp 05 to nod 32 was told it was better giving super a try now

Yeah I noticed a remnant you can get rid of..not doing harm, but you don't need it either...
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe

Here's a hand holding guide in setting up NOD32
http://www.wilderssecurity.com/showthread.php?t=37509

Sava700 · Post by **Sava700** » Tue Sep 19, 2006 2:46 am

YARDofSTUF wrote:Google toolbar is good, popup blocking.

I won't use it.. no point in putting it on there when its just something else for my eyes to see when I want to look at something else of a larger view size such as the browser window. I just make homepages to google.. solves that.

YARDofSTUF · Post by **YARDofSTUF** » Tue Sep 19, 2006 3:16 am

Sava700 wrote:I won't use it.. no point in putting it on there when its just something else for my eyes to see when I want to look at something else of a larger view size such as the browser window. I just make homepages to google.. solves that.

I dont care about the toolbar look itself, I install it for the pop up blocking.

Izzo · Post by **Izzo** » Tue Sep 19, 2006 9:22 am

YARDofSTUF wrote:I dont care about the toolbar look itself, I install it for the pop up blocking.

I never get popups at home.....

Post by **YeOldeStonecat** » Tue Sep 19, 2006 9:55 am

YARDofSTUF wrote:I dont care about the toolbar look itself, I install it for the pop up blocking.

I love it for immediate direct access to searches from whereever you are.

YARDofSTUF · Post by **YARDofSTUF** » Tue Sep 19, 2006 12:42 pm

Izzo wrote:I never get popups at home.....

A router with NAT and 90% of the stuff will be blocked, but a lot of others dont have routers, so the toolbar is a good cheap fix.

Sava700 · Post by **Sava700** » Tue Sep 19, 2006 4:48 pm

YARDofSTUF wrote:I dont care about the toolbar look itself, I install it for the pop up blocking.

I don't get any popups using IE or firefox so not sure what your talkin about.. what porn sites are you surfin?

YARDofSTUF · Post by **YARDofSTUF** » Tue Sep 19, 2006 6:21 pm

Sava700 wrote:I don't get any popups using IE or firefox so not sure what your talkin about.. what porn sites are you surfin?

Read one post up ^

I dont use IE much, put it on other peoples PCs. Its a helpful tool.

d2fanatic007 · Post by **d2fanatic007** » Wed Sep 20, 2006 11:49 am

Sava700 wrote:OMG get rid of the yahoo and Google toolbars!! They are the DEVIL!!

Agreed, you dont need extra clutter on your internet, plus you can just use FF and have the google search or yahoo search on the upper right side or just set homepage to Google, Yahoo, or w/e

I havent had popups at home either, so idk where some of you guys are getting them from

I have some logitech crap on my pc for like mouse and keyboard and some other thing, but your logitech thing is kinda creepy, i never saw soo many, maybe you installed a newer version over an existing 1 with uninstalling it first??

and yea anyone know where "d:\hack\ultra edition\scct\dll\nvidia.exe" is from i havent found anything about that and some sites say that nvidia.exe is risky, ive seen it on a friends pc but he dont know where it came from either but he did get infested with viruses like 2 months ago so he was like idk