ihme työkalupalkki...miten pois

AfterDawn.com

AfterDawn.com Mainosta sivuillamme


		Käyttäjä	Salasana

		Puuttuuko tunnus? Liity jäseneksi nyt!. Salasana hukassa? Klikkaa tästä.

Yksityisviestit

Luo uusi yksityisviesti

Kaikki uudet viestit

Ilman vastauksia olevat viestiketjut

tiistai 4.11.2025 / 16:07

Hae keskustelualueilta:

In English

Suomeksi

På svenska

afterdawn.com > keskustelu > yleistä keskustelua tietokoneista > virukset ja haittaohjelmat > ihme työkalupalkki...miten pois

Aiheet

Keskustelualueet

Keskustelualueet

Aloita uusi viestiketju

ihme työkalupalkki...miten pois

Siirry:

Kirjoittaja

Viesti

Sivu:	1	2	3	>

terhi4100

Member

15. syyskuuta 2005 @ 11:56

Linkki tähän viestiin

miten saa pois ie:stä pois toolbarin..joka on ongelmana.
esimerkkejä siit...kun menee nettiin,joskus tulee työpöydälle casinopikakuvake ja kännykänkuva jne.varmaa joku haittaohjelma.ei mitää hajuu miten poistetaa.ja mitä lie mainoksia tulee näyttöö ku menee nettii....apuaa...helppiii tarvitaa.

jees

terhi4100

Member

15. syyskuuta 2005 @ 12:03

Linkki tähän viestiin

tää kysymys meni nyt vahingos väärään keskustelun aiheesee...mut ei kai se nyt haittaa.heh

jees

AfterDawn Addict

15. syyskuuta 2005 @ 12:19

Linkki tähän viestiin

Ihan väärällä alueella on, juu. Modet saa siirtää halutessaan. Hae tuolta -> http://koti.mbnet.fi/pattaya1/HijackThis.exe hijackthis, tallenna se koneelle (mieluiten C:\hjt-hakemistoon), käynnistä se, klikkaa do a system scan and save a logfile. Hijackthis avaa lokin muistioon, lähetä se loki tänne.

jersi

Member

15. syyskuuta 2005 @ 12:35

Linkki tähän viestiin

oletkos tarkistanut koneesi esim.Spybot,Ad-Aware,microsoft antispyware ohjelmilla ?

terhi4100

Member

15. syyskuuta 2005 @ 12:48

Linkki tähän viestiin

olen tarkistanu..eipä auta..

jees

AfterDawn Addict

15. syyskuuta 2005 @ 12:50

Linkki tähän viestiin

@terhi4100: Tee niin kuin edellä sanoin. Siitä lokista selvinnee sun ongelma.

terhi4100

Member

15. syyskuuta 2005 @ 12:52

Linkki tähän viestiin

Logfile of HijackThis v1.99.1
Scan saved at 14:49:03, on 15.9.2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Sygate\SPF\Smc.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\drivers\dcfssvc.exe
C:\Program Files\ewido\security suite\ewidoctrl.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\SAVScan.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\Logitech\iTouch\iTouch.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Messenger\MSMSGS.EXE
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\KODAK\Kodak EasyShare software\bin\EasyShare.exe
C:\Program Files\Mozilla Firefox\firefox.exe
c:\progra~1\intern~1\iexplore.exe
C:\PROGRA~1\WINZIP\winzip32.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\Reijo\Local Settings\Temp\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.vfkgtalkafttaitddrisymblo.com/kOGFxRn2TcqVMPeav8xG6GlI...
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.zvewyyikmfca.com/kOGFxRn2Tcoqyx3epM7ksK16B5/U4fhKrODbY...
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
O1 - Hosts: 127.0.0.26 www.active-max.com
O1 - Hosts: 127.0.0.97 www.dialup2.com
O1 - Hosts: 127.0.0.6 maxexp.com
O1 - Hosts: 127.0.0.238 www.mp3search.com
O1 - Hosts: 127.0.0.49 www.rub.to
O1 - Hosts: 127.0.0.81 www.spawnet.com
O1 - Hosts: 127.0.0.239 www.mp3search.com
O1 - Hosts: 127.0.0.76 www.negativebeats.com
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O2 - BHO: (no name) - {FA5C7AFD-5C75-BE90-15B4-00ACE0351FB9} - C:\DOCUME~1\Reijo\APPLIC~1\AXISID~1\shimdeaf.exe (file missing)
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Shellapi32] svcnet.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [Msn Configuration Loader] msngms.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\Smc.exe -startgui
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [clockerrorwaitdata] C:\Documents and Settings\All Users\Application Data\Army platform clock error\Bias Funk.exe
O4 - HKLM\..\RunServices: [Msn Configuration Loader] msngms.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Shellapi32] svcnet.exe
O4 - HKCU\..\Run: [Bore heck] C:\DOCUME~1\Reijo\APPLIC~1\SIZELI~1\Bash4.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [LDM] \Program\
O4 - HKCU\..\Run: [Msn Configuration Loader] msngms.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\MSMSGS.EXE" /background
O4 - Global Startup: WinZIP Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Kodak EasyShare software.lnk = C:\Program Files\KODAK\Kodak EasyShare software\bin\EasyShare.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &AIM Search - res://C:\Program Files\AIM Toolbar\AIMBar.dll/aimsearch.htm
O8 - Extra context menu item: Vie Microsoft E&xceliin - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra button: ICQ Pro - {6224f700-cba3-4071-b251-47cb894244cd} - C:\PROGRA~1\ICQ\ICQ.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ - {6224f700-cba3-4071-b251-47cb894244cd} - C:\PROGRA~1\ICQ\ICQ.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra button: WeatherBug - {AF6CABAB-61F9-4f12-A198-B7D41EF1CB52} - C:\Program Files\AWS\WeatherBug\Weather.exe (file missing) (HKCU)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: bw+0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: Dcfssvc - Eastman Kodak Company - C:\WINDOWS\system32\drivers\dcfssvc.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido\security suite\ewidoctrl.exe
O23 - Service: Norton AntiVirus -ohjelman automaattinen suojaus (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\Smc.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe

jees

terhi4100

Member

15. syyskuuta 2005 @ 12:53

Linkki tähän viestiin

siitäpä luetelkaa haittaohjelmat..kiitoooos

jees

AfterDawn Addict

15. syyskuuta 2005 @ 13:07

Linkki tähän viestiin

Näin tehdään ja niitä riittää ;)

Avaa hijackthis, klikkaa do a system scan only, rasti näiden eteen ja paina fix checked:

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.vfkgtalkafttaitddrisymblo.com/kOGFxRn2TcqVMPeav8xG6GlI...
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.zvewyyikmfca.com/kOGFxRn2Tcoqyx3epM7ksK16B5/U4fhKrODbY...
O1 - Hosts: 127.0.0.26 www.active-max.com
O1 - Hosts: 127.0.0.97 www.dialup2.com
O1 - Hosts: 127.0.0.6 maxexp.com
O1 - Hosts: 127.0.0.238 www.mp3search.com
O1 - Hosts: 127.0.0.49 www.rub.to
O1 - Hosts: 127.0.0.81 www.spawnet.com
O1 - Hosts: 127.0.0.239 www.mp3search.com
O1 - Hosts: 127.0.0.76 www.negativebeats.com
O2 - BHO: (no name) - {FA5C7AFD-5C75-BE90-15B4-00ACE0351FB9} - C:\DOCUME~1\Reijo\APPLIC~1\AXISID~1\shimdeaf.exe (file missing)
O4 - HKLM\..\Run: [Shellapi32] svcnet.exe
O4 - HKLM\..\Run: [Msn Configuration Loader] msngms.exe
O4 - HKLM\..\Run: [clockerrorwaitdata] C:\Documents and Settings\All Users\Application Data\Army platform clock error\Bias Funk.exe
O4 - HKCU\..\Run: [Shellapi32] svcnet.exe
O4 - HKCU\..\Run: [Bore heck] C:\DOCUME~1\Reijo\APPLIC~1\SIZELI~1\Bash4.exe
O4 - HKCU\..\Run: [LDM] \Program\
O4 - HKCU\..\Run: [Msn Configuration Loader] msngms.exe
O9 - Extra button: ICQ Pro - {6224f700-cba3-4071-b251-47cb894244cd} - C:\PROGRA~1\ICQ\ICQ.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ - {6224f700-cba3-4071-b251-47cb894244cd} - C:\PROGRA~1\ICQ\ICQ.exe (file missing)

Laita piilotiedostot näkyviin, ohje ->http://www.xtra.co.nz/help/0,,4155-1916458,00.html

Käynnistä vikasietotilaan (F8 käynnistyksen yhteydessä) ja poista:

hakemisto C:\DOCUME~1\Reijo\APPLIC~1\==>AXISID~1<==
svcnet.exe
msngms.exe (nämä tod.näk. C:\windows-hakemistossa)
hakemisto C:\Documents and Settings\All Users\Application Data\==>Army platform clock error<==
hakemisto C:\DOCUME~1\Reijo\APPLIC~1\==>SIZELI~1<==

Käynnistä kone uudestaan ja lähetä uusi hijackthis-loki.

Viestiä on muokattu lähettämisen jälkeen. Viimeisin muokkaus 15. syyskuuta 2005 @ 13:07

terhi4100

Member

16. syyskuuta 2005 @ 11:18

Linkki tähän viestiin

mitenkä mennnään sitten vikaestotilasta pois..se pitäs tietää ennen kun teen ni....kiitos ku sain tietää et on noin paljo haittaohjelmii.

jees

Member

2 tuotearviota

16. syyskuuta 2005 @ 11:29

Linkki tähän viestiin

F8 painat käynnistyksessä ja sieltä valikosta valitset sen normaali tilan eli samasta paikasta mistä vaihdoit vikasieto tilaan.

AMD Phenom II 965 BE, Asus M3A32-MVP Deluxe, Corsair 2x 2Gt 1066Mhz DDR2, Asus HD 6870 1Gt, Seasonic S12 Energy Plus 550W

terhi4100

Member

16. syyskuuta 2005 @ 11:50

Linkki tähän viestiin

joo en oikein osaa poistaa mitää sielt vikaestotilasta...voisko joku neuvvooo..kiits.

jees

terhi4100

Member

16. syyskuuta 2005 @ 11:57

Linkki tähän viestiin

jooo täs ois uusloki ilman vikasietotilan käymistä...milt näyttää...Logfile of HijackThis v1.99.1
Scan saved at 15:56:23, on 16.9.2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Sygate\SPF\Smc.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\drivers\dcfssvc.exe
C:\Program Files\ewido\security suite\ewidoctrl.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\SAVScan.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\Logitech\iTouch\iTouch.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Messenger\MSMSGS.EXE
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\KODAK\Kodak EasyShare software\bin\EasyShare.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\HJT\HijackThis.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Shellapi32] svcnet.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [Msn Configuration Loader] msngms.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\Smc.exe -startgui
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [clockerrorwaitdata] C:\Documents and Settings\All Users\Application Data\Army platform clock error\Bias Funk.exe
O4 - HKLM\..\RunServices: [Msn Configuration Loader] msngms.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Shellapi32] svcnet.exe
O4 - HKCU\..\Run: [Bore heck] C:\DOCUME~1\Reijo\APPLIC~1\SIZELI~1\Bash4.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [LDM] \Program\
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\MSMSGS.EXE" /background
O4 - Global Startup: WinZIP Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Kodak EasyShare software.lnk = C:\Program Files\KODAK\Kodak EasyShare software\bin\EasyShare.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: Vie Microsoft E&xceliin - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra button: ICQ Pro - {6224f700-cba3-4071-b251-47cb894244cd} - C:\PROGRA~1\ICQ\ICQ.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ - {6224f700-cba3-4071-b251-47cb894244cd} - C:\PROGRA~1\ICQ\ICQ.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra button: WeatherBug - {AF6CABAB-61F9-4f12-A198-B7D41EF1CB52} - C:\Program Files\AWS\WeatherBug\Weather.exe (file missing) (HKCU)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: bw+0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: Dcfssvc - Eastman Kodak Company - C:\WINDOWS\system32\drivers\dcfssvc.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido\security suite\ewidoctrl.exe
O23 - Service: Norton AntiVirus -ohjelman automaattinen suojaus (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\Smc.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe

jees

pkaksp

Moderator

16. syyskuuta 2005 @ 13:00

Linkki tähän viestiin

Quote:
F8 painat käynnistyksessä ja sieltä valikosta valitset sen normaali tilan eli samasta paikasta mistä vaihdoit vikasieto tilaan.

Vikasietotilasta pääsee pois ihan vain käynnistämällä koneen uusiksi. Ei tarvitse valita normaali tilaa erikseen.

terhi4100

Member

16. syyskuuta 2005 @ 13:14

Linkki tähän viestiin

okei..kiitos

jees

AfterDawn Addict

16. syyskuuta 2005 @ 14:58

Linkki tähän viestiin

Nämä tarttis vielä fixata:

O4 - HKLM\..\Run: [clockerrorwaitdata] C:\Documents and Settings\All Users\Application Data\Army platform clock error\Bias Funk.exe
O4 - HKCU\..\Run: [Shellapi32] svcnet.exe
O4 - HKCU\..\Run: [Bore heck] C:\DOCUME~1\Reijo\APPLIC~1\SIZELI~1\Bash4.exe
O4 - HKCU\..\Run: [LDM] \Program\

Ja yritä saada myös ne edellämainitut poistettua(vaikka ihan normaalitilassa, jos et saa vikasietotilassa poistettua), ihan vaikka resurssienhallinnan kautta (sinne pääsee painamalla Windows-näppäin+e) eli nämä:

hakemisto C:\DOCUME~1\Reijo\APPLIC~1\==>AXISID~1<==
svcnet.exe
msngms.exe (nämä tod.näk. C:\windows-hakemistossa)
hakemisto C:\Documents and Settings\All Users\Application Data\==>Army platform clock error<==

Käynnistä uudelleen ja lähetä uusi hijackthis-loki.

Käynnistä uudelleen
hakemisto C:\DOCUME~1\Reijo\APPLIC~1\==>SIZELI~1<==

terhi4100

Member

16. syyskuuta 2005 @ 15:30

Linkki tähän viestiin

tossa oLogfile of HijackThis v1.99.1
Scan saved at 19:28:11, on 16.9.2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Sygate\SPF\Smc.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\drivers\dcfssvc.exe
C:\Program Files\ewido\security suite\ewidoctrl.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\SAVScan.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\Logitech\iTouch\iTouch.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Messenger\MSMSGS.EXE
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\KODAK\Kodak EasyShare software\bin\EasyShare.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\WINDOWS\system32\wuauclt.exe
C:\HJT\HijackThis.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Shellapi32] svcnet.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [Msn Configuration Loader] msngms.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\Smc.exe -startgui
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\RunServices: [Msn Configuration Loader] msngms.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\MSMSGS.EXE" /background
O4 - Global Startup: WinZIP Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Kodak EasyShare software.lnk = C:\Program Files\KODAK\Kodak EasyShare software\bin\EasyShare.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: Vie Microsoft E&xceliin - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra button: ICQ Pro - {6224f700-cba3-4071-b251-47cb894244cd} - C:\PROGRA~1\ICQ\ICQ.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ - {6224f700-cba3-4071-b251-47cb894244cd} - C:\PROGRA~1\ICQ\ICQ.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra button: WeatherBug - {AF6CABAB-61F9-4f12-A198-B7D41EF1CB52} - C:\Program Files\AWS\WeatherBug\Weather.exe (file missing) (HKCU)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: bw+0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: Dcfssvc - Eastman Kodak Company - C:\WINDOWS\system32\drivers\dcfssvc.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido\security suite\ewidoctrl.exe
O23 - Service: Norton AntiVirus -ohjelman automaattinen suojaus (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\Smc.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe

is uus loki...mutta niit viimesii juttui en löytänyt c-asemasta..

jees

terhi4100

Member

16. syyskuuta 2005 @ 15:32

Linkki tähän viestiin

joko alkais tarpeettomat tiedostot hävitä...vai vieläkö niit löytyy paljo:)..toivottavasti EI.

jees

AfterDawn Addict

16. syyskuuta 2005 @ 15:40

Linkki tähän viestiin

Pari on vielä.

Fixaa nämä:

O4 - HKLM\..\Run: [Shellapi32] svcnet.exe
O4 - HKLM\..\Run: [Msn Configuration Loader] msngms.exe
O4 - HKLM\..\RunServices: [Msn Configuration Loader] msngms.exe

Käynnistä uudelleen ja lähetä uusi loki.

Jollei nyt ala lähtee, niin sit täytyy varmaan seuraavaks ajaa eScan (noi on viruksia), ohjeita tulee sitten siihen myöhemmin, jos tarpeen.

Viestiä on muokattu lähettämisen jälkeen. Viimeisin muokkaus 16. syyskuuta 2005 @ 15:42

terhi4100

Member

16. syyskuuta 2005 @ 15:49

Linkki tähän viestiin

tässä ois......vieläkö löytyy:) Logfile of HijackThis v1.99.1
Scan saved at 19:48:18, on 16.9.2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Sygate\SPF\Smc.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\drivers\dcfssvc.exe
C:\Program Files\ewido\security suite\ewidoctrl.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\SAVScan.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\Logitech\iTouch\iTouch.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Messenger\MSMSGS.EXE
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\KODAK\Kodak EasyShare software\bin\EasyShare.exe
C:\WINDOWS\system32\wuauclt.exe
C:\HJT\HijackThis.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\Smc.exe -startgui
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\MSMSGS.EXE" /background
O4 - HKCU\..\Run: [LDM] \Program\
O4 - Global Startup: WinZIP Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Kodak EasyShare software.lnk = C:\Program Files\KODAK\Kodak EasyShare software\bin\EasyShare.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: Vie Microsoft E&xceliin - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra button: ICQ Pro - {6224f700-cba3-4071-b251-47cb894244cd} - C:\PROGRA~1\ICQ\ICQ.exe (file missing)
O9 - Extra 'Tools' menuitem: ICQ - {6224f700-cba3-4071-b251-47cb894244cd} - C:\PROGRA~1\ICQ\ICQ.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra button: WeatherBug - {AF6CABAB-61F9-4f12-A198-B7D41EF1CB52} - C:\Program Files\AWS\WeatherBug\Weather.exe (file missing) (HKCU)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: bw+0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {BBDCC13C-3A48-4168-88E1-535DD933E598} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: Dcfssvc - Eastman Kodak Company - C:\WINDOWS\system32\drivers\dcfssvc.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido\security suite\ewidoctrl.exe
O23 - Service: Norton AntiVirus -ohjelman automaattinen suojaus (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\Smc.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe

jees

AfterDawn Addict

16. syyskuuta 2005 @ 16:10

Linkki tähän viestiin

Loki näyttää hyvältä, mutta jollet saanut noita tiedostoja edellä poistettua, niin täytyy varmaan ajaa eScan :( Se löytyy tuolta -> http://koti.mbnet.fi/pattaya1/escanmwav.htm Siellä on täydelliset ohjeet. Scanni voi kestää tunnista kahteen. Lähetä sen loki tänne scannin jälkeen, eli näin

Maalaa ne kaikki rivit siitä Virus Log Information-kohdasta, sitten paina ctrl+c ja liitä tänne palstalle painamalla ctrl+v

terhi4100

Member

16. syyskuuta 2005 @ 17:31

Linkki tähän viestiin

File C:\Documents and Settings\All Users\Application Data\Army platform clock error\Bias Funk.exe tagged as not-a-virus:AdWare.Lop.ad. No Action Taken.
File C:\Documents and Settings\Reijo\Local Settings\Temp\tmgbfgmn.exe tagged as not-a-virus:AdWare.Lop.m. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\4CD949D7.dctmp infected by "P2P-Worm.Win32.Tibick.d" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\4D9D20FF.dctmp infected by "P2P-Worm.Win32.Tibick.d" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\4E090A88.dctmp infected by "P2P-Worm.Win32.Tibick.d" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\51E96644.dctmp infected by "P2P-Worm.Win32.Tibick.d" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\32A341BF.dctmp infected by "P2P-Worm.Win32.Tibick.d" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\32B73DAA.dctmp infected by "P2P-Worm.Win32.Tibick.d" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\6FF247E6 tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\3B826AF7 tagged as not-a-virus:AdWare.Lop.ad. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\07AA1288 tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\6FF571E2 tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\014A48F6 tagged as not-a-virus:AdWare.Lop.m. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\2FF521DF tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\74A06B4E tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\411F3E0E tagged as not-a-virus:AdWare.Lop.ab. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\6FF91BDF tagged as not-a-virus:AdWare.Lop.ad. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\471226F6 infected by "Trojan-Downloader.Win32.Swizzor.dc" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\58403136 infected by "Trojan-Downloader.Win32.Swizzor.dr" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\00C95FDF infected by "Trojan-Downloader.Win32.Swizzor.dc" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\019E260A tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\6FFC45DB tagged as not-a-virus:AdWare.Lop.ad. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\0CDA04F5 tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\008A408C infected by "Trojan-Downloader.Win32.Swizzor.dj" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\0CF15470 infected by "Trojan-Downloader.Win32.Swizzor.ca" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\421E0E06 infected by "Trojan-Downloader.Win32.Swizzor.dh" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\6FFF6FD7 infected by "Trojan-Downloader.Win32.Swizzor.ca" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\52A362F4 infected by "Trojan-Downloader.Win32.Swizzor.ca" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\28D54FE3 infected by "Trojan-Downloader.Win32.Swizzor.ca" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\191A4900 infected by "Trojan-Downloader.Win32.Swizzor.ca" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\029E7602 tagged as not-a-virus:AdWare.Lop.m. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\06917261 infected by "Trojan-Downloader.Win32.Swizzor.dh" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\700219D4 infected by "Trojan-Downloader.Win32.Swizzor.bo" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\186B40F4 infected by "Trojan-Downloader.Win32.Swizzor.co" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\511F5F3A tagged as not-a-virus:AdWare.Lop.ab. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\25423D91 tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\431D5DFE tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\700643D0 tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\5E331EF3 tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\796A6E91 tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\316B3222 infected by "Trojan-Downloader.Win32.Swizzor.dr" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\039D45FA infected by "Trojan-Downloader.Win32.Swizzor.dr" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\70096DCD tagged as not-a-virus:AdWare.Lop.ab. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\23FB7CF2 infected by "Trojan-Downloader.Win32.Swizzor.dr" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\21B47DE7 infected by "Trojan-Downloader.Win32.Swizzor.dr" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\3D9326B3 tagged as not-a-virus:AdWare.Lop.ad. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\441C2DF6 infected by "Trojan-Downloader.Win32.Swizzor.dr" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\700C17C9 tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\69C35AF2 tagged as not-a-virus:AdWare.Lop.ab. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\49FF0D3E tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\49BC1B43 tagged as not-a-virus:AdWare.Lop.ab. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\049C15F2 infected by "Trojan-Downloader.Win32.Swizzor.dh" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\700F41C5 infected by "Trojan-Downloader.Win32.Swizzor.dc" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\2F8C38F1 tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\724A1C95 tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\55E40FD4 tagged as not-a-virus:AdWare.Lop.ab. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\451C7DEE tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\70136BC2 tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\755416F0 tagged as not-a-virus:AdWare.Lop.m. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\1A942BEC tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\620C0465 tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\059B65EA tagged as not-a-virus:AdWare.Lop.m. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\701615BE tagged as not-a-virus:AdWare.Lop.ad. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\3B1C74F0 infected by "Trojan-Downloader.Win32.Swizzor.cb" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\42DF3B42 infected by "Trojan-Downloader.Win32.Swizzor.cb" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\6E3578F5 tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\461B4DE5 infected by "Trojan-Downloader.Win32.Swizzor.co" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\70193FBB tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\00E452EF infected by "Trojan-Downloader.Win32.Swizzor.bo" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\6B294A99 infected by "Trojan-Downloader.Win32.Swizzor.bo" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\7A5D6D86 infected by "Trojan-Downloader.Win32.Swizzor.co" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\069A35E1 tagged as not-a-virus:AdWare.Lop.m. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\01F273C2 tagged as not-a-virus:AdWare.Lop.ad. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\31404128 tagged as not-a-virus:AdWare.Lop.ad. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\701D69B7 tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\46AC30EE infected by "Trojan-Downloader.Win32.Swizzor.co" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\137459F0 tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\06866217 infected by "Trojan-Downloader.Win32.Swizzor.dr" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\702013B3 infected by "Trojan-Downloader.Win32.Swizzor.dr" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\0C740EEE tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\3BBE6946 infected by "Trojan-Downloader.Win32.Swizzor.co" Virus. Action Taken: File Deleted.
File C:\Program Files\Norton AntiVirus\Quarantine\12AE56A8 tagged as not-a-virus:AdWare.Lop.m. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\079A05D9 tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\00CA741A tagged as not-a-virus:AdWare.Lop.m. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\70233DB0 tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\Program Files\Norton AntiVirus\Quarantine\523D6CED infected by "Trojan-Downloader.Win32.Swizzor.dh" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP358\A0094759.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP358\A0094760.exe infected by "Trojan-Downloader.Win32.Swizzor.ca" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP358\A0094780.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP360\A0095584.exe infected by "Trojan-Downloader.Win32.Swizzor.dc" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP360\A0095585.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP360\A0095586.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP360\A0095587.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP360\A0095588.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP360\A0095589.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP360\A0095590.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP360\A0095591.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP360\A0095592.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP360\A0095593.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP360\A0095594.exe infected by "Trojan-Downloader.Win32.Swizzor.dr" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP360\A0095595.exe infected by "Trojan-Downloader.Win32.Swizzor.cb" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP360\A0095712.exe tagged as not-a-virus:AdWare.Lop.m. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP360\A0095713.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP360\A0095714.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP360\A0095715.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP360\A0095716.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP360\A0095717.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP360\A0095718.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP360\A0095719.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP360\A0095720.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP360\A0095721.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP360\A0095722.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP360\A0095723.exe infected by "Trojan-Downloader.Win32.Swizzor.bo" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP360\A0095724.exe infected by "Trojan-Downloader.Win32.Swizzor.dr" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP360\A0095725.exe infected by "Trojan-Downloader.Win32.Swizzor.cb" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP361\A0095838.exe infected by "Trojan-Downloader.Win32.Swizzor.co" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP361\A0095839.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP361\A0095840.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP361\A0095841.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP361\A0095842.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP361\A0095843.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP361\A0095844.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP361\A0095845.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP361\A0095846.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP361\A0095847.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP361\A0095848.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP361\A0095849.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP361\A0095850.exe infected by "Trojan-Downloader.Win32.Swizzor.bo" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP361\A0095851.exe infected by "Trojan-Downloader.Win32.Swizzor.dr" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP361\A0095852.exe infected by "Trojan-Downloader.Win32.Swizzor.cb" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP363\A0095886.exe infected by "Trojan-Downloader.Win32.Swizzor.co" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP363\A0095932.exe tagged as not-a-virus:AdWare.Lop.m. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP363\A0095933.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP363\A0095934.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP363\A0095935.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP363\A0095936.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP363\A0095937.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP363\A0095938.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP363\A0095939.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP363\A0095940.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP363\A0095941.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP363\A0095942.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP363\A0095943.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP363\A0095944.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP363\A0095945.exe infected by "Trojan-Downloader.Win32.Swizzor.bo" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP363\A0095946.exe infected by "Trojan-Downloader.Win32.Swizzor.dh" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP363\A0095947.exe infected by "Trojan-Downloader.Win32.Swizzor.cb" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP364\A0095974.exe tagged as not-a-virus:AdWare.Lop.m. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP364\A0095975.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP364\A0095976.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP364\A0095977.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP364\A0095978.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP364\A0095979.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP364\A0095980.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP364\A0095981.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP364\A0095982.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP364\A0095983.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP364\A0095984.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP364\A0095985.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP364\A0095986.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP364\A0095987.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP364\A0095988.exe infected by "Trojan-Downloader.Win32.Swizzor.bo" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP364\A0095989.exe infected by "Trojan-Downloader.Win32.Swizzor.dh" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP364\A0095990.exe infected by "Trojan-Downloader.Win32.Swizzor.cb" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP365\A0096016.exe infected by "Trojan-Downloader.Win32.Swizzor.co" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP365\A0096017.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP365\A0096018.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP365\A0096019.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP365\A0096020.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP365\A0096021.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP365\A0096022.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP365\A0096023.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP365\A0096024.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP365\A0096025.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP365\A0096026.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP365\A0096027.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP365\A0096028.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP365\A0096029.exe tagged as not-a-virus:AdWare.Lop.ab. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP365\A0096030.exe infected by "Trojan-Downloader.Win32.Swizzor.bo" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP365\A0096031.exe infected by "Trojan-Downloader.Win32.Swizzor.dh" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP365\A0096032.exe infected by "Trojan-Downloader.Win32.Swizzor.cb" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP366\A0096078.exe tagged as not-a-virus:AdWare.Lop.m. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP369\A0096171.exe tagged as not-a-virus:AdWare.Lop.m. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP369\A0096172.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP369\A0096173.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP369\A0096174.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP369\A0096175.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP369\A0096176.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP369\A0096177.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP369\A0096178.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP369\A0096179.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP369\A0096180.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP369\A0096181.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP369\A0096182.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP369\A0096183.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP369\A0096184.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP369\A0096185.exe tagged as not-a-virus:AdWare.Lop.ab. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP369\A0096186.exe tagged as not-a-virus:AdWare.Lop.ab. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP369\A0096187.exe infected by "Trojan-Downloader.Win32.Swizzor.bo" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP369\A0096188.exe infected by "Trojan-Downloader.Win32.Swizzor.dh" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP369\A0096189.exe infected by "Trojan-Downloader.Win32.Swizzor.cb" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096215.exe infected by "Trojan-Downloader.Win32.Swizzor.co" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096216.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096217.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096218.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096219.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096220.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096221.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096222.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096223.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096224.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096225.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096226.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096227.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096228.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096229.exe tagged as not-a-virus:AdWare.Lop.ab. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096230.exe tagged as not-a-virus:AdWare.Lop.ab. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096231.exe infected by "Trojan-Downloader.Win32.Swizzor.bo" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096232.exe infected by "Trojan-Downloader.Win32.Swizzor.dh" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096233.exe infected by "Trojan-Downloader.Win32.Swizzor.cb" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096251.exe infected by "Trojan-Downloader.Win32.Swizzor.co" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096252.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096253.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096254.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096255.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096256.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096257.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096258.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096259.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096260.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096261.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096262.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096263.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096264.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096265.exe tagged as not-a-virus:AdWare.Lop.ab. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096266.exe tagged as not-a-virus:AdWare.Lop.ab. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096267.exe tagged as not-a-virus:AdWare.Lop.ab. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096268.exe tagged as not-a-virus:AdWare.Lop.ad. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096269.exe infected by "Trojan-Downloader.Win32.Swizzor.bo" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096270.exe infected by "Trojan-Downloader.Win32.Swizzor.dr" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP370\A0096271.exe infected by "Trojan-Downloader.Win32.Swizzor.cb" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP374\A0097429.exe infected by "Trojan-Downloader.Win32.Swizzor.co" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP374\A0097470.exe tagged as not-a-virus:AdWare.Lop.m. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP374\A0097471.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP374\A0097472.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP374\A0097473.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP374\A0097474.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP374\A0097475.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP374\A0097476.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP374\A0097477.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP374\A0097478.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP374\A0097479.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP374\A0097480.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP374\A0097481.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP374\A0097482.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP374\A0097483.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP374\A0097484.exe tagged as not-a-virus:AdWare.Lop.ab. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP374\A0097485.exe tagged as not-a-virus:AdWare.Lop.ab. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP374\A0097486.exe tagged as not-a-virus:AdWare.Lop.ab. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP374\A0097487.exe tagged as not-a-virus:AdWare.Lop.ad. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP374\A0097488.exe tagged as not-a-virus:AdWare.Lop.ad. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP374\A0097489.exe infected by "Trojan-Downloader.Win32.Swizzor.bo" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP374\A0097490.exe infected by "Trojan-Downloader.Win32.Swizzor.dr" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP374\A0097491.exe infected by "Trojan-Downloader.Win32.Swizzor.cb" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097615.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097616.exe tagged as not-a-virus:AdWare.Lop.ad. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097617.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097618.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097619.exe tagged as not-a-virus:AdWare.Lop.m. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097620.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097621.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097622.exe tagged as not-a-virus:AdWare.Lop.ab. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097623.exe tagged as not-a-virus:AdWare.Lop.ad. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097624.exe infected by "Trojan-Downloader.Win32.Swizzor.dr" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097625.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097626.exe tagged as not-a-virus:AdWare.Lop.ad. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097627.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097628.exe infected by "Trojan-Downloader.Win32.Swizzor.dh" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097629.exe tagged as not-a-virus:AdWare.Lop.ab. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097630.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097631.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097632.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097633.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097634.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097635.exe infected by "Trojan-Downloader.Win32.Swizzor.dr" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097636.exe infected by "Trojan-Downloader.Win32.Swizzor.dr" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097637.exe tagged as not-a-virus:AdWare.Lop.ab. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097638.exe tagged as not-a-virus:AdWare.Lop.ad. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097639.exe infected by "Trojan-Downloader.Win32.Swizzor.dr" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097640.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097641.exe tagged as not-a-virus:AdWare.Lop.ab. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097642.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097643.exe tagged as not-a-virus:AdWare.Lop.ab. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097644.exe infected by "Trojan-Downloader.Win32.Swizzor.dh" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097645.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097646.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097647.exe tagged as not-a-virus:AdWare.Lop.ab. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097648.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097649.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097650.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097651.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097652.exe tagged as not-a-virus:AdWare.Lop.ad. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097653.exe infected by "Trojan-Downloader.Win32.Swizzor.cb" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097654.exe infected by "Trojan-Downloader.Win32.Swizzor.cb" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097655.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097656.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097657.exe infected by "Trojan-Downloader.Win32.Swizzor.bo" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097658.exe infected by "Trojan-Downloader.Win32.Swizzor.bo" Virus. Action Taken: File Deleted.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097659.exe tagged as not-a-virus:AdWare.Lop.ad. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097660.exe tagged as not-a-virus:AdWare.Lop.ad. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097661.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097662.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097663.exe tagged as not-a-virus:AdWare.Lop.z. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097664.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097665.exe tagged as not-a-virus:AdWare.Lop.j. No Action Taken.
File C:\System Volume Information\_restore{C1B5537B-66CB-42D5-8E63-7560B0192438}\RP377\A0097666.exe infected by "Trojan-Downloader.Win32.Swizzor.dh" Virus. Action Taken: File Deleted.

jees

terhi4100

Member

16. syyskuuta 2005 @ 17:32

Linkki tähän viestiin

siin ois ja onha noit iha mukava rivi:)

jees

ratnunter

Member

16. syyskuuta 2005 @ 18:24

Linkki tähän viestiin

laitappa hijackthisistä startuplist loki
ohje täällä:http://www.bleepingcomputer.com/forums/index.php?showtutorial=42#...

ennen lokin tekoa rastita:
List also minor sections (full)
List empty sections (complete)

siite tallenna loki ja copy pastaa sisältö tänne

Mainos

terhi4100

Member

16. syyskuuta 2005 @ 18:31

Linkki tähän viestiin

tohon ei taito riitä..mul ei mee tollasee valikkoon hijack:)

jees

Sivu:	1	2	3	>

Aloita uusi viestiketju

afterdawn.com > keskustelu > yleistä keskustelua tietokoneista > virukset ja haittaohjelmat > ihme työkalupalkki...miten pois

Apua ongelmiin: AfterDawnin keskustelualueet | AfterDawnin Vastaukset
Uutiset: IT-alan uutiset | Uutisia puhelimista
Musiikkia: MP3Lizard.com
Tuotearviot: Laitevertailu | Vertaa puhelimia | Vertaa kännykkäliittymiä
Pelit: Pelitiedostot, pelidemot ja trailerit
Ohjelmat: download.fi | AfterDawnin ohjelma-alueet
International: AfterDawn in English | Software downloads | Free, legal MP3s | AfterDawn på svenska
RSS -syötteet: AfterDawnin uutiset | Uusimmat ohjelmapäivitykset | Keskustelualueiden viestit
Tietoja: Tietoa AfterDawn Oy:stä | Mainosta sivuillamme | Sivuston käyttöehdot ja tietoja yksityisyydensuojasta
Ota yhteyttä: Lähetä palautetta | Ota yhteyttä mainosmyyntiimme

© 1999-2025 AfterDawn Oy