Hijack this log.

Discussion in 'Malware Help (A Specialist Will Reply)' started by SDI, Dec 20, 2005.

  1. SDI

    SDI Private E-2

    Can anyone tell me if there is any thing on this log that i should remove. When I am on the web i some times grt redirected to "Bank loans", "Mortgage Co." etc.

    [Inline log removed -Kodo]
     
    SDI, Dec 20, 2005
    #1
  2. Kodo

    Kodo SNATCHSQUATCH

    Welcome to MajorGeeks.com, please follow the steps below:

    - Run ALL the steps in this Sticky thread READ & RUN ME FIRST Before Asking for Support
    • Make sure you check version numbers and get all updates.
    - Very Important: Make sure you tell us the results from running the tutorial...was anything found? Were you unable to complete any of the scans?...Were you unable to download any of the tools?...Did you do the on-line scans as suggested? etc.

    After doing ALL of the above you still have a problem make sure you have booted to normal mode and run the steps in the below link to properly use HijackThis:

    Downloading, Installing, and Running HijackThis

    A spyware veteran will assist you shortly.
     
    Kodo, Dec 20, 2005
    #2
  3. SDI

    SDI Private E-2

    New log post.
     

    Attached Files:

    SDI, Dec 21, 2005
    #3
  4. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    You must follow ALL the directions in the READ & RUN ME.

    You should be attaching logs from a BitDefender and PandaActiveScan online scan.

    Also I do not see MS Antispyware installed on your system. Did you run a scan with it?

    You should have HJT fix the below lines but they have nothing to do with you getting redirected:
    O18 - Protocol: bw+0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw+0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O18 - Protocol: bwg0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwg0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0s - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: offline-8876480 - {EFE3F092-E9F6-4B6C-A040-0BE866DD4E33} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll

    I see nothing else in your log that would indicate any problems.
     
    chaslang, Dec 21, 2005
    #4

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds