Thread: CiD adware/popup removal(RESOLVED)
View Single Post
  #8 (permalink)  
Old 19-06-2007, 09:43 PM
smurftech's Avatar
smurftech smurftech is offline
Newbie
D-A-L Newbie
  
Join Date: Jun 2007
Posts: 11
smurftech Is a beginner here at D-A-L
Re: CiD adware/popup removal
Hi Neal,

Took me a bit longer to reply - needed a night away from this Dimension 3100, doing my head in! (Was a BSOD + many other easier to remove viruses/spyware when it came to me last week).

Followed your instructions as stated, here's the Combofix Log:

ComboFix 07-06-18.2 - C:\Documents and Settings\jessica klyz\Desktop\ComboFix.exe
"jessica klyz" - 2007-06-19 20:26:13 - Service Pack 2 NTFS


((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))


C:\DOCUME~1\JESSIC~1\APPLIC~1.\fnts~1
C:\DOCUME~1\JESSIC~1\APPLIC~1.\stem~1
C:\Program Files\Common Files\icroso~1
C:\Program Files\Common Files\mantec~1
C:\Program Files\fnts~1
C:\Program Files\icroso~1.net
C:\Program Files\outerinfo
C:\Program Files\outerinfo\outerinfo.ico
C:\Program Files\outerinfo\Terms.rtf
C:\Program Files\pppatc~1
C:\WINDOWS\crosof~1
C:\WINDOWS\pppatc~1
C:\WINDOWS\system32\asks~1
C:\WINDOWS\system32\dobe~1
C:\WINDOWS\system32\sstem~1


((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))


-------\LEGACY_NTIO256
-------\ntio256


((((((((((((((((((((((((( Files Created from 2007-05-19 to 2007-06-19 )))))))))))))))))))))))))))))))


2007-06-19 20:25 49,152 --a------ C:\WINDOWS\nircmd.exe
2007-06-17 16:05 <DIR> d-------- C:\Program Files\SigmaTel
2007-06-17 15:32 172,032 --a------ C:\WINDOWS\system32\stacapi.dll
2007-06-17 15:32 112,128 --a------ C:\WINDOWS\system32\staco.dll
2007-06-17 15:32 1,047,816 --a------ C:\WINDOWS\system32\drivers\sthda.sys
2007-06-17 15:03 89,360 --a------ C:\WINDOWS\system32\VB5DB.DLL
2007-06-17 15:02 90,112 --a------ C:\WINDOWS\system32\stacsv.exe
2007-06-17 15:02 303,104 --a------ C:\WINDOWS\sttray.exe
2007-06-17 15:02 1,097,728 --a------ C:\WINDOWS\system32\stlang.dll
2007-06-17 15:01 41,728 --a------ C:\WINDOWS\system32\drivers\sfng32.sys
2007-06-17 11:05 <DIR> d-------- C:\Program Files\Intel Desktop Boards
2007-06-16 19:06 106 --a------ C:\delete.bat
2007-06-16 16:23 87,768 --a------ C:\WINDOWS\system32\S32EVNT1.DLL
2007-06-16 16:23 108,168 --a------ C:\WINDOWS\system32\drivers\SYMEVENT.SYS
2007-06-16 16:21 <DIR> d-------- C:\DOCUME~1\DEFAUL~1\APPLIC~1\Gtek
2007-06-16 16:20 <DIR> d-------- C:\Program Files\Dell Support
2007-06-16 16:12 75,512 --a------ C:\WINDOWS\zllsputility.exe
2007-06-16 16:12 4,212 ---h----- C:\WINDOWS\system32\zllictbl.dat
2007-06-16 16:11 1,087,216 --a------ C:\WINDOWS\system32\zpeng24.dll
2007-06-16 16:11 <DIR> d-------- C:\WINDOWS\system32\ZoneLabs
2007-06-16 16:11 <DIR> d-------- C:\WINDOWS\Internet Logs
2007-06-16 16:05 <DIR> d-------- C:\NoLopBackups
2007-06-16 16:03 <DIR> d-------- C:\Program Files\Common Files\ODBC
2007-06-16 15:35 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
2007-06-16 15:25 <DIR> d-------- C:\WINDOWS\system32\Dell
2007-06-15 21:00 69,632 --a------ C:\WINDOWS\system32\3DES.dll
2007-06-15 21:00 65,536 --a------ C:\WINDOWS\system32\dmcrypto.dll
2007-06-15 21:00 <DIR> d-------- C:\DECCHECK
2007-06-15 20:59 <DIR> d-------- C:\MyVideos
2007-06-14 22:51 <DIR> d-------- C:\Hauppauge
2007-06-14 22:18 7,882 --a------ C:\WINDOWS\system32\GTKCMOS.sys
2007-06-14 22:18 7,626 --a------ C:\WINDOWS\system32\GPCIEnum.sys
2007-06-14 22:18 7,168 --a------ C:\WINDOWS\system32\DLPT64.sys
2007-06-14 22:18 6,977 --a------ C:\WINDOWS\system32\DDMI2.sys
2007-06-14 22:18 6,656 --a------ C:\WINDOWS\system32\DLPT2.sys
2007-06-14 22:18 5,632 --a------ C:\WINDOWS\system32\GPCIEn64.sys
2007-06-14 22:18 5,120 --a------ C:\WINDOWS\system32\GTKCMO64.sys
2007-06-14 22:18 4,608 --a------ C:\WINDOWS\system32\DDMI64.sys
2007-06-14 21:17 94,208 --------- C:\WINDOWS\system32\GTW32N50.DLL
2007-06-14 21:17 827,392 --a------ C:\WINDOWS\system32\AegisE5.dll
2007-06-14 21:17 651,264 --a------ C:\WINDOWS\system32\libeay32.dll
2007-06-14 21:17 40,960 --------- C:\WINDOWS\system32\Dual_55G.dll
2007-06-14 21:17 330,400 --a------ C:\WINDOWS\system32\drivers\ar5211.sys
2007-06-14 21:17 15,872 --------- C:\WINDOWS\system32\GTNDIS5.sys
2007-06-14 21:17 15,781 --a------ C:\WINDOWS\system32\drivers\mdc8021x.sys
2007-06-14 21:17 147,456 --a------ C:\WINDOWS\system32\ssleay32.dll
2007-06-14 21:17 110,592 --a------ C:\WINDOWS\system32\AegisI5.exe
2007-06-14 21:17 <DIR> d-------- C:\Program Files\Dual-Band Wireless A+G PCI Network Adapter
2007-05-27 19:19 <DIR> d-------- C:\DOCUME~1\JESSIC~1\APPLIC~1\Viewpoint


(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))) ))

2007-06-19 19:32:11 -------- d-----w C:\Program Files\Symantec AntiVirus
2007-06-17 14:02:47 -------- d--h--w C:\Program Files\InstallShield Installation Information
2007-06-16 20:18:07 -------- d-----w C:\Program Files\Intel
2007-06-16 18:04:59 1,324 ----a-w C:\WINDOWS\system32\d3d9caps.dat
2007-06-16 16:12:03 -------- d-----w C:\Program Files\Windows Media Connect 2
2007-06-16 16:07:51 -------- d-----w C:\Program Files\NCH Swift Sound
2007-06-16 16:07:51 -------- d-----w C:\DOCUME~1\JESSIC~1\APPLIC~1\NCH Swift Sound
2007-06-16 16:05:42 -------- d-----w C:\Program Files\Common Files\Symantec Shared
2007-06-16 15:23:58 -------- d-----w C:\Program Files\Symantec
2007-06-16 15:20:48 -------- d--h--w C:\DOCUME~1\JESSIC~1\APPLIC~1\Gtek
2007-06-16 14:46:39 -------- d-----w C:\Program Files\GemMaster
2007-06-16 14:45:09 -------- d-----w C:\Program Files\MSN Messenger
2007-06-16 14:25:52 -------- d-----w C:\Program Files\Dell
2007-06-16 12:33:17 -------- d-----w C:\Program Files\Common Files\aolshare
2007-06-14 21:05:34 -------- d-----w C:\Program Files\Microsoft ActiveSync
2007-06-14 21:01:07 -------- d-----w C:\Program Files\QuickTime
2007-06-14 21:00:36 -------- d-----w C:\Program Files\iPod
2007-06-14 21:00:27 -------- d-----w C:\Program Files\DivX
2007-06-14 21:00:16 -------- d-----w C:\Program Files\Common Files\qfmo
2007-06-14 21:00:14 -------- d-----w C:\Program Files\Common Files\AOL
2007-06-14 21:00:12 -------- d-----w C:\Program Files\Apple Software Update
2007-06-14 21:00:11 -------- d-----w C:\Program Files\AOL 9.0
2007-06-14 20:41:58 -------- d-----w C:\Program Files\Lx_cats
2007-06-02 12:12:52 -------- d-----w C:\Program Files\EA GAMES
2007-05-31 15:12:00 -------- d-----w C:\Program Files\iTunes
2007-05-16 15:12:02 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll
2007-05-15 21:57:02 -------- d-----w C:\Program Files\Microsoft CAPICOM 2.1.0.2
2007-04-25 1415 144,896 ----a-w C:\WINDOWS\system32\schannel.dll
2007-04-23 21:36:56 -------- d-----w C:\DOCUME~1\JESSIC~1\APPLIC~1\FaxCtr
2007-04-18 16:12:23 2,854,400 ----a-w C:\WINDOWS\system32\msi.dll
2007-04-07 13:37:49 40,040 ----a-w C:\DOCUME~1\JESSIC~1\APPLIC~1\GDIPFONTCACHEV1.DAT
2006-07-03 18:46:07 56 --sh--r C:\WINDOWS\system32\97F8CE9EED.sys
2006-11-26 18:39:10 88 --sh--r C:\WINDOWS\system32\D13DADDEBB.sys
2007-02-08 23:09:18 168 --sh--r C:\WINDOWS\system32\ED9ECEF897.sys
2007-02-08 23:09:21 8,926 --sha-w C:\WINDOWS\system32\KGyGaAvL.sys


((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))


*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}=C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll [2003-11-03 14:17]
{53707962-6F74-2D53-2644-206D7942484F}=C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2005-05-31 01:04]
{5CA3D70E-1895-11CF-8E15-001234567890}=C:\WINDOWS\System32\DLA\DLASHX_W.DLL [2005-09-08 05:20]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}=C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll [2007-03-14 03:43]
{AA58ED58-01DD-4d91-8333-CF10577473F7}=c:\program files\google\googletoolbar4.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
"lxcemon.exe"="C:\Program Files\Lexmark 4300 Series\lxcemon.exe" [2005-03-22 18:25]
"EzPrint"="C:\Program Files\Lexmark 4300 Series\ezprint.exe" [2005-02-15 11:07]
"DSLSTATEXE"="C:\Program Files\BT Voyager 105 ADSL Modem\dslstat.exe" [2005-01-12 17:36]
"DSLAGENTEXE"="C:\Program Files\BT Voyager 105 ADSL Modem\dslagent.exe" [2005-01-12 17:36]
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-06-16 13:36]
"ZoneAlarm Client"="C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" [2007-03-09 01:02]
"ccApp"="C:\Program Files\Common Files\Symantec Shared\ccApp.exe" [2005-10-04 12:42]
"vptray"="C:\PROGRA~1\SYMANT~1\VPTray.exe" [2005-11-15 13:28]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\policies\system]
"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\R oyale\Royale.msstyles
"InstallTheme"=C:\WINDOWS\Resources\Themes\Royale. theme

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\policies\system]
"DisableRegistryTools"=0 (0x0)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\ShellExecuteHooks]
"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll" [2006-09-28 15:13]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\lsa]
Authentication Packages msv1_0 nwprovau


[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\D]
AutoRun\command- D:\autorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{361ac05d-0e0d-11da-9aa9-806d6172696f}]
AutoRun\command- E:\setup.exe


Contents of the 'Scheduled Tasks' folder
2007-05-10 06:11:00 C:\WINDOWS\tasks\AppleSoftwareUpdate.job

************************************************** ************************

catchme 0.3.721 W2K/XP/Vista - userland rootkit detector by Gmer, http://www.gmer.net
Rootkit scan 2007-06-19 20:32:49
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

************************************************** ************************

Completion time: 2007-06-19 20:34:55 - machine was rebooted
C:\ComboFix-quarantined-files.txt ... 2007-06-19 20:34

--- E O F ---



And here's the Hijack This Log:


Logfile of HijackThis v1.99.1
Scan saved at 8:38:20 PM, on 6/19/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Symantec AntiVirus\DefWatch.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Symantec AntiVirus\Rtvscan.exe
C:\Program Files\Dual-Band Wireless A+G PCI Network Adapter\WLService.exe
C:\Program Files\Dual-Band Wireless A+G PCI Network Adapter\WMP55AG.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lexmark 4300 Series\lxcemon.exe
C:\Program Files\Lexmark 4300 Series\ezprint.exe
C:\Program Files\BT Voyager 105 ADSL Modem\dslstat.exe
C:\Program Files\BT Voyager 105 ADSL Modem\dslagent.exe
C:\WINDOWS\system32\lxcecoms.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\PROGRA~1\SYMANT~1\VPTray.exe
C:\Program Files\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www1.euro.dell.com/content/de...=uk&l=en&s=gen
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = http://www.google.co.uk/ig/dell?hl=e...inc&channel=uk
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = wmplayer.exe //ICWLaunch
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll (file missing)
O3 - Toolbar: MSN Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar\01.01.2607.0\msgr.en-us.en-gb\msntb.dll (file missing)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll (file missing)
O4 - HKLM\..\Run: [lxcemon.exe] "C:\Program Files\Lexmark 4300 Series\lxcemon.exe"
O4 - HKLM\..\Run: [EzPrint] "C:\Program Files\Lexmark 4300 Series\ezprint.exe"
O4 - HKLM\..\Run: [DSLSTATEXE] C:\Program Files\BT Voyager 105 ADSL Modem\dslstat.exe icon
O4 - HKLM\..\Run: [DSLAGENTEXE] C:\Program Files\BT Voyager 105 ADSL Modem\dslagent.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary...r.cab31267.cab
O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} (SysProWmi Class) - http://support.euro.dell.com/systemprofiler/SysPro.CAB
O16 - DPF: {1239CC52-59EF-4DFA-8C61-90FFA846DF7E} (Musicnotes Viewer) - http://www.musicnotes.com/download/mnviewer.cab
O16 - DPF: {20B845BF-450F-4C1E-AF60-3CC380CDE328} (get_atlcom Class) - http://apps.corel.com/nos_dl_manager...luginNOSSO.ocx
O16 - DPF: {55027008-315F-4F45-BBC3-8BE119764741} (Slide Image Uploader Control) - http://www.slide.com/uploader/SlideImageUploader.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsof...?1175958092953
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} (ScorchPlugin Class) - http://www.sibelius.com/download/sof...iveXPlugin.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary...o.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab56907.cab
O16 - DPF: {E856B973-45FD-4559-8F82-EAB539144667} (Dell PC Checkup Installer Control) - http://pccheckup.dellfix.com/rel/41/...l/gtdownde.cab
O18 - Protocol: bw+0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw+0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw-0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw-0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw00 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw00s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw10 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw10s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw20 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw20s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw30 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw30s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw40 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw40s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw50 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw50s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw60 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw60s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw70 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw70s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw80 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw80s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw90 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bw90s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwa0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwa0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwb0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwb0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwc0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwc0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwd0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwd0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwe0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwe0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwf0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwf0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwg0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwg0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwh0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwh0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwi0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwi0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwj0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwj0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwk0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwk0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwl0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwl0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwm0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwm0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwn0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwn0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwo0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwo0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwp0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwp0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwq0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwq0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwr0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwr0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bws0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bws0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwt0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwt0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwu0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwu0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwv0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwv0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bww0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bww0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwx0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwx0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwy0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwy0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwz0 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: bwz0s - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Protocol: offline-8876480 - {68F7635F-C592-4BE8-AF29-BFBF6925C4E1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (file missing)
O18 - Filter: application/x-internet-signup - {A173B69A-1F9B-4823-9FDA-412F641E65D6} - C:\Program Files\Tiscali\Tiscali Internet\dlls\tiscalifilter.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: NavLogon - C:\WINDOWS\system32\NavLogon.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Unknown owner - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe (file missing)
O23 - Service: lxce_device - Lexmark International, Inc. - C:\WINDOWS\system32\lxcecoms.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: SigmaTel Audio Service (STacSV) - Unknown owner - C:\Program Files\SigmaTel\C-Major Audio\WDM\STacSV.exe (file missing)
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: WMP55AGSVC - Unknown owner - C:\Program Files\Dual-Band Wireless A+G PCI Network Adapter\WLService.exe" "WMP55AG.exe (file missing)
Reply With Quote