User Käyttäjä Salasana  
   
keskiviikko 25.12.2024 / 04:52
Hae keskustelualueilta:        In English   Suomeksi   På svenska
afterdawn.com > keskustelu > yleistä keskustelua tietokoneista > virukset ja haittaohjelmat > myöhästynyt joulusiivous koneelle.
Näytä aiheet
 
Keskustelualueet
Keskustelualueet
Myöhästynyt joulusiivous koneelle.
  Siirry:
 
Kirjoittaja Viesti
Senior Member
_
28. joulukuuta 2005 @ 15:51 _ Linkki tähän viestiin    Lähetä käyttäjälle yksityisviesti   
Elikkäs rupesin tässä nyt putsailemaan konettani, mutta kun en oikein ymmärrä näistä mitään, en tiedä mitä pitäisi tehdä.

Sen verran kuintekin olen älynnyt, että latasin EasyCleanerin ja sillä pitäisi putsata rekisteriä ym.. Tuli tässä mieleen, että uskallanko vain poistaa kaikki löytyneet? Ja mitkä kaikki tuolla kannattaisi putsata?

Kun olen tuolla EasyCleanerilla konetta putsaillut, ajattelin laittaa tänne Hjt login, jos vain joku avulias voisi sitä vilkaisita...?
spertti
Senior Member
_
28. joulukuuta 2005 @ 16:44 _ Linkki tähän viestiin    Lähetä käyttäjälle yksityisviesti   
Juu. Kyllähän loki toki katsotaan, mutta voisit vaikka sitä ennen ajaa Ewidon ja eScanin.

Ewido http://www.ewido.net/en/download/

eScan: Asennus ja ohjeet > http://koti.mbnet.fi/pattaya1/escanmwav.htm

Laita myös noiden löydökset tänne, niin tutkaillaan kaikki kerralla.

Viestiä on muokattu lähettämisen jälkeen. Viimeisin muokkaus 29. joulukuuta 2005 @ 01:55

Senior Member
_
29. joulukuuta 2005 @ 01:53 _ Linkki tähän viestiin    Lähetä käyttäjälle yksityisviesti   
Quote:
Sen verran kuintekin olen älynnyt, että latasin EasyCleanerin ja sillä pitäisi putsata rekisteriä ym.. Tuli tässä mieleen, että uskallanko vain poistaa kaikki löytyneet? Ja mitkä kaikki tuolla kannattaisi putsata?


Putsaa rauhassa kaikki sen löydöt sillä ne ovat varmasti jo vanhentuneita.
Puhdista siis: Rekisteri, turhat, pikakuvakkeet, tiedostot, evästeet, sivuhistoria, mru listat =)

Senior Member
_
29. joulukuuta 2005 @ 09:51 _ Linkki tähän viestiin    Lähetä käyttäjälle yksityisviesti   
Laitanko tuon eScannin login vai ne "löydökset"? Yritin jo kerran kopioida tänne nuo kaikki logit yhteen viestiin, mutta ilmeisesti sivustolla oli joku ongelma tai viesti oli liian pitkä, niin se ei näy ollenkaan..

E: kumma juttu muuten, tuolta kun katsoo, niin näyttää että tässä topicissa on 5 viestiä vaikka on vain 4. Jäi vissiin kummittelemaan se yritys..?

Viestiä on muokattu lähettämisen jälkeen. Viimeisin muokkaus 29. joulukuuta 2005 @ 09:53

Senior Member
_
29. joulukuuta 2005 @ 20:26 _ Linkki tähän viestiin    Lähetä käyttäjälle yksityisviesti   
Laitahan se alemman laatikon tuloksen vain tänne eli se missä ne örkkilöydöksen on =) Ei pitäisi kovin pitkä olla.

Senior Member
_
30. joulukuuta 2005 @ 06:19 _ Linkki tähän viestiin    Lähetä käyttäjälle yksityisviesti   
Elikkäs tässä nyt nämä logit.

Ensin Ewidon:
Quote:
---------------------------------------------------------
ewido anti-malware - Scan report
---------------------------------------------------------

+ Created on: 1:58:31, 29.12.2005
+ Report-Checksum: 282D3681

+ Scan result:

HKU\S-1-5-21-725345543-484061587-2147082517-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{15AD4789-CDB4-47E1-A9DA-992EE8E6BAD6} -> Spyware.WinFavorites : Cleaned with backup
[3660] C:\DOCUME~1\Sami\APPLIC~1\HIDEWA~1\date platform.exe -> Downloader.Swizzor.bo : Cleaned with backup
:mozilla.14:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Adtech : Cleaned with backup
:mozilla.15:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Adtech : Cleaned with backup
:mozilla.19:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Doubleclick : Cleaned with backup
:mozilla.25:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Clickhype : Cleaned with backup
:mozilla.27:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.28:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.29:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.30:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.35:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
:mozilla.36:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Burstnet : Cleaned with backup
:mozilla.37:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Burstnet : Cleaned with backup
:mozilla.38:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Questionmarket : Cleaned with backup
:mozilla.41:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Ru4 : Cleaned with backup
:mozilla.42:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Atdmt : Cleaned with backup
:mozilla.45:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Bfast : Cleaned with backup
:mozilla.47:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Bluestreak : Cleaned with backup
:mozilla.50:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.51:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.52:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.53:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.54:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.58:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.59:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.60:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.61:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.62:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.70:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.71:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Counted : Cleaned with backup
:mozilla.72:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Counted : Cleaned with backup
:mozilla.74:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
:mozilla.86:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Revenue : Cleaned with backup
:mozilla.92:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Adengage : Cleaned with backup
:mozilla.93:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Adengage : Cleaned with backup
:mozilla.94:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Adengage : Cleaned with backup
:mozilla.103:C:\Documents and Settings\Pia\Application Data\Mozilla\Firefox\Profiles\uwylmj88.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
C:\Documents and Settings\Pia\Cookies\pia@66.220.17[2].txt -> Spyware.Cookie.66.220.17.154 : Cleaned with backup
:mozilla.27:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.28:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.29:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.34:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Adtech : Cleaned with backup
:mozilla.35:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Adtech : Cleaned with backup
:mozilla.36:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Doubleclick : Cleaned with backup
:mozilla.41:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Burstnet : Cleaned with backup
:mozilla.42:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Burstnet : Cleaned with backup
:mozilla.88:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.89:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.90:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.91:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.92:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.93:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.94:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.97:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Tradedoubler : Cleaned with backup
:mozilla.98:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Tradedoubler : Cleaned with backup
:mozilla.109:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.110:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.111:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.112:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.116:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.117:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.118:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.119:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.120:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.121:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.122:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.123:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.124:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.125:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.126:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.127:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.128:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Euroclick : Cleaned with backup
:mozilla.129:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Euroclick : Cleaned with backup
:mozilla.130:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Euroclick : Cleaned with backup
:mozilla.137:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Valueclick : Cleaned with backup
:mozilla.138:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Valueclick : Cleaned with backup
:mozilla.147:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.166:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.172:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.247realmedia : Cleaned with backup
:mozilla.177:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.178:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.179:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.180:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.181:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.187:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Oewabox : Cleaned with backup
:mozilla.188:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.189:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.190:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.191:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.193:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.194:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.195:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.196:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.197:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.198:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.199:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.200:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.201:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.202:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.203:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.204:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.205:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.206:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.207:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.208:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.209:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.210:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.214:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
:mozilla.215:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
:mozilla.216:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
:mozilla.217:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Mediaplex : Cleaned with backup
:mozilla.226:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Centrport : Cleaned with backup
:mozilla.227:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Centrport : Cleaned with backup
:mozilla.231:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Googleadservices : Cleaned with backup
:mozilla.242:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Hotlog : Cleaned with backup
:mozilla.247:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Spylog : Cleaned with backup
:mozilla.256:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.257:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.310:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup
:mozilla.311:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup
:mozilla.328:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.329:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Addcontrol : Cleaned with backup
:mozilla.331:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Atdmt : Cleaned with backup
:mozilla.334:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.335:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.336:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.337:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.338:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.363:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Trafic : Cleaned with backup
:mozilla.369:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Sexlist : Cleaned with backup
:mozilla.370:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Sexlist : Cleaned with backup
:mozilla.371:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Sexlist : Cleaned with backup
:mozilla.372:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Sexlist : Cleaned with backup
:mozilla.379:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Smartadserver : Cleaned with backup
:mozilla.396:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Targetnet : Cleaned with backup
:mozilla.397:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Targetnet : Cleaned with backup
:mozilla.408:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Revenue : Cleaned with backup
:mozilla.414:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.415:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.416:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.417:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.418:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.441:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Sitestat : Cleaned with backup
:mozilla.442:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Sitestat : Cleaned with backup
:mozilla.450:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Ivwbox : Cleaned with backup
:mozilla.454:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Bluestreak : Cleaned with backup
:mozilla.455:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Paycounter : Cleaned with backup
:mozilla.474:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.475:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.506:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.507:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.508:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.509:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.527:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
:mozilla.528:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
:mozilla.529:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
:mozilla.530:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
:mozilla.541:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.542:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.543:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Ru4 : Cleaned with backup
:mozilla.561:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.565:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.571:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Adocean : Cleaned with backup
:mozilla.599:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Questionmarket : Cleaned with backup
:mozilla.601:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.602:C:\Documents and Settings\Sami\Application Data\Mozilla\Firefox\Profiles\4q62eoef.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
C:\WINDOWS\system32\gogotoolsSILAWO9pi.exe -> Spyware.GogoTools : Cleaned with backup
C:\WINDOWS\system32\in10b6s.dll -> Adware.eZula : Cleaned with backup


::Report End
Ja sitten eScannin:
Quote:
File C:\DOCUME~1\ALLUSE~1\APPLIC~1\JOYHTM~1\tonsuser.exe tagged as not-a-virus:AdWare.Win32.Lop.ag. No Action Taken.

File C:\DOCUME~1\Sami\APPLIC~1\Glueflaw\licenseadmin.exe tagged as not-a-virus:AdWare.Win32.Lop.ag. No Action Taken.

File C:\Documents and Settings\All Users\Application Data\JOY HTM SOFT BARB\tonsuser.exe tagged as not-a-virus:AdWare.Win32.Lop.ag. No Action Taken.

File C:\Documents and Settings\Pia\Application Data\Hide Wave\date platform.exe tagged as not-a-virus:AdWare.Win32.Lop.ag. No Action Taken.

File C:\Documents and Settings\Sami\Application Data\Glueflaw\licenseadmin.exe tagged as not-a-virus:AdWare.Win32.Lop.ag. No Action Taken.

File C:\Documents and Settings\Sami\Application Data\Hide Wave\__delete_on_reboot__date platform.exe tagged as not-a-virus:AdWare.Win32.Lop.ag. No Action Taken.

File C:\Documents and Settings\Sami\Local Settings\Temp\sta42.exe tagged as not-a-virus:AdWare.Win32.Lop.ag. No Action Taken.

File C:\Program Files\Adverts\uninst.exe tagged as not-a-virus:AdWare.Win32.Lop.ai. No Action Taken.

File C:\Program Files\Norton AntiVirus\Quarantine\15D94B89 tagged as not-a-virus:AdWare.Win32.Lop.ag. No Action Taken.

File C:\Program Files\Norton AntiVirus\Quarantine\3D4B0F03 tagged as not-a-virus:AdWare.Win32.Lop.ag. No Action Taken.

File C:\Program Files\Norton AntiVirus\Quarantine\3D5262FC tagged as not-a-virus:AdWare.Win32.Lop.ag. No Action Taken.

File C:\Program Files\Norton AntiVirus\Quarantine\3D550CF8 tagged as not-a-virus:AdWare.Win32.Lop.ag. No Action Taken.

File C:\Program Files\Norton AntiVirus\Quarantine\3D5836F5 tagged as not-a-virus:AdWare.Win32.Lop.ag. No Action Taken.

File C:\Program Files\Norton AntiVirus\Quarantine\44982F11 tagged as not-a-virus:AdWare.Win32.Lop.ag. No Action Taken.

File C:\Program Files\Norton AntiVirus\Quarantine\61796487 tagged as not-a-virus:AdWare.Win32.MDH.a. No Action Taken.

File C:\Program Files\Norton AntiVirus\Quarantine\71616724 tagged as not-a-virus:AdWare.Win32.Lop.ag. No Action Taken.

File C:\Program Files\Norton AntiVirus\Quarantine\71673B1D tagged as not-a-virus:AdWare.Win32.Lop.ag. No Action Taken.

File C:\Program Files\Norton AntiVirus\Quarantine\716A651A tagged as not-a-virus:AdWare.Win32.Lop.ag. No Action Taken.

File C:\Program Files\Norton AntiVirus\Quarantine\716E0F16 tagged as not-a-virus:AdWare.Win32.Lop.ag. No Action Taken.

File C:\Program Files\Norton AntiVirus\Quarantine\733F1513 tagged as not-a-virus:AdWare.Win32.Lop.ag. No Action Taken.
Ja lopuksi vielä HjT:
Quote:
Logfile of HijackThis v1.99.1
Scan saved at 11:18:41, on 30.12.2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\AdvTools\NPROTECT.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
c:\progra~1\intern~1\iexplore.exe
C:\Program Files\Zone Labs\ZoneAlarm\zapro.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Norton AntiVirus\SAVScan.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Documents and Settings\Sami\Omat tiedostot\asennus ohjelmat\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.baojtnqqxvv.info/GpdYwUoYtN3PfyWgyXbRClgISPvuRSFzd298r...
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.xltvbgxijxvpemeiqdb.us/GpdYwUoYtN3vN0tsq9TSx2IfbM2c4_H...
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Advanced Tools Check] C:\PROGRA~1\NORTON~1\AdvTools\ADVCHK.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [softbarbsectknob] C:\Documents and Settings\All Users\Application Data\JOY HTM SOFT BARB\tonsuser.exe
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Proxy ooze] C:\DOCUME~1\Sami\APPLIC~1\Glueflaw\licenseadmin.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: ZoneAlarm Pro.lnk = C:\Program Files\Zone Labs\ZoneAlarm\zapro.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_01\bin\npjpi150_01.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_01\bin\npjpi150_01.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31...
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {5BDBD95C-1E7F-4FB1-8497-20AF879F8B68} (FileSharingCtrl Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/FileSha...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmessengersetupdownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://zone.msn.com/binFramework/v10/ZIntro.cab33902.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: bw+0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - AppInit_DLLs: MsgPlusLoader.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe
O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\Program Files\Norton AntiVirus\AdvTools\NPROTECT.EXE
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs Inc. - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
Eiköhän siinä ollut kaikki, tai jos ei ollut nii sanokaa ni laitan lisää.
AfterDawn Addict
_
30. joulukuuta 2005 @ 06:43 _ Linkki tähän viestiin    Lähetä käyttäjälle yksityisviesti   
Poista lisää/poista sovellus-kohdasta (ohjauspaneeli):

MessengerPlus! 3

Fixaa HjT:llä (do a system scan only, merkkaa ja paina fix checked):

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.baojtnqqxvv.info/GpdYwUoYtN3PfyWgyXbRClgISPvuRSFzd298r...
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.xltvbgxijxvpemeiqdb.us/GpdYwUoYtN3vN0tsq9TSx2IfbM2c4_H...
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [softbarbsectknob] C:\Documents and Settings\All Users\Application Data\JOY HTM SOFT BARB\tonsuser.exe
O4 - HKCU\..\Run: [Proxy ooze] C:\DOCUME~1\Sami\APPLIC~1\Glueflaw\licenseadmin.exe

Hae findlop -> http://metallica.geekstogo.com/findlop.zip

Pura ja tuplaklikkaa findlop.bat
Logi löytyy tuolta C:\findlop.txt

Laita piilotiedostot näkyviin, ohje ->
http://keskustelu.afterdawn.com/thread_view.cfm/248944

Käynnistä vikasietotilaan (F8 käynnistyksen yhteydessä) ja poista:

C:\Documents and Settings\All Users\Application Data\==>JOY HTM SOFT BARB<==
C:\Documents and Settings\Pia\Application Data\==>Hide Wave<==
C:\Documents and Settings\Sami\Application Data\==>Glueflaw<==
C:\Program Files\==>Adverts<==
C:\Program Files\==>MessengerPlus! 3<==

Tyhjennä nämä hakemistot (siis poista tiedostot älä hakemistoja):

C:\Program Files\Norton AntiVirus\Quarantine\
C:\Documents and Settings\Sami\Local Settings\Temp

Käynnistä uudelleen, lähetä uusi HjT-loki ja C:\findlop.txt-tiedoston sisältö.
Senior Member
_
30. joulukuuta 2005 @ 15:45 _ Linkki tähän viestiin    Lähetä käyttäjälle yksityisviesti   
Quote:
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [softbarbsectknob] C:\Documents and Settings\All Users\Application Data\JOY HTM SOFT BARB\tonsuser.exe
O4 - HKCU\..\Run: [Proxy ooze] C:\DOCUME~1\Sami\APPLIC~1\Glueflaw\licenseadmin.exe
En löytänyt ollenkaa näitä tuosta HjT logista kun uudelleen sen ajoin.
Quote:
C:\Documents and Settings\All Users\Application Data\==>JOY HTM SOFT BARB<==
C:\Documents and Settings\Pia\Application Data\==>Hide Wave<==
C:\Documents and Settings\Sami\Application Data\==>Glueflaw<==
Mikä on "Aplication Data" suomeksi kun en sitä löytänyt.

Kaiken muun kyllä onnistuin tehdä ja tässä olisi nyt uusi HjT logi:
Quote:
Logfile of HijackThis v1.99.1
Scan saved at 20:44:37, on 30.12.2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\AdvTools\NPROTECT.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
C:\Program Files\Norton AntiVirus\SAVScan.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Zone Labs\ZoneAlarm\zapro.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Documents and Settings\Sami\Omat tiedostot\asennus ohjelmat\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Advanced Tools Check] C:\PROGRA~1\NORTON~1\AdvTools\ADVCHK.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: ZoneAlarm Pro.lnk = C:\Program Files\Zone Labs\ZoneAlarm\zapro.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_01\bin\npjpi150_01.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_01\bin\npjpi150_01.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31...
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {5BDBD95C-1E7F-4FB1-8497-20AF879F8B68} (FileSharingCtrl Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/FileSha...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmessengersetupdownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://zone.msn.com/binFramework/v10/ZIntro.cab33902.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: bw+0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {F5F2A939-AD0B-46E5-8DD0-0FDCC4DCA661} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe
O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\Program Files\Norton AntiVirus\AdvTools\NPROTECT.EXE
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs Inc. - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
Ja sitten tuo findlop.txt sisältö:
Quote:
[TRACE] Enumerating jobs and queues
[TRACE] Activating job 'Symantec NetDetect.job'
[TRACE] Printing all job properties

ApplicationName: 'C:\Program Files\Symantec\LiveUpdate\NDETECT.EXE'
Parameters: ''
WorkingDirectory: 'C:\Program Files\Symantec\LiveUpdate'
Comment: 'Symantec NetDetect'
Creator: 'Sami'
Priority: NORMAL
MaxRunTime: 259200000 (3d 0:00:00)
IdleWait: 10
IdleDeadline: 60
MostRecentRun: 12/30/2005 13:29:00
NextRun: 12/30/2005 17:30:00
StartError: S_OK
ExitCode: 0
Status: SCHED_S_TASK_READY
ScheduledWorkItem Flags:
DeleteWhenDone = 0
Suspend = 0
StartOnlyIfIdle = 0
KillOnIdleEnd = 0
RestartOnIdleResume = 0
DontStartIfOnBatteries = 0
KillIfGoingOnBatteries = 0
RunOnlyIfLoggedOn = 1
SystemRequired = 0
Hidden = 0
TaskFlags: 0

1 Trigger

Trigger 0:
Type: Daily
DaysInterval: 1
StartDate: 12/30/2005
EndDate: 00/00/0000
StartTime: 17:30
MinutesDuration: 1440
MinutesInterval: 240
Flags:
HasEndDate = 0
KillAtDuration = 0
Disabled = 0


AfterDawn Addict
_
30. joulukuuta 2005 @ 15:51 _ Linkki tähän viestiin    Lähetä käyttäjälle yksityisviesti   
HjT-loki ja findlop.txt ovat ok. Application Data on ihan application data, mutta ehkä tuo Mese+:n poisto poisti nuokin (koska ovat tulleet sen mukana). Olihan sulla ne piilotiedostot näkyvissä?
Senior Member
_
30. joulukuuta 2005 @ 15:53 _ Linkki tähän viestiin    Lähetä käyttäjälle yksityisviesti   
Olihan ne piidotiedostot näkyvissä. Eli olisiko kone nyt suurinpiirtein puhdas? Mitä kaikkea tuosta käynnistyksesta voi ottaa pois, kun kone on jo hieman vanha ja taidan vaatia siltä liikaa, joten tuo käynnistys kestää jokusen hetken..
Mainos
_
__
 
_
AfterDawn Addict
_
30. joulukuuta 2005 @ 15:56 _ Linkki tähän viestiin    Lähetä käyttäjälle yksityisviesti   
Juu, aika puhdas taitaa olla :)

Nämä voit fixata:

O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

ja näin alkavat rivit

O18 - Protocol: bw

paitsi jätä yksi niistä
afterdawn.com > keskustelu > yleistä keskustelua tietokoneista > virukset ja haittaohjelmat > myöhästynyt joulusiivous koneelle.
 

Apua ongelmiin: AfterDawnin keskustelualueet | AfterDawnin Vastaukset
Uutiset: IT-alan uutiset | Uutisia puhelimista
Musiikkia: MP3Lizard.com
Tuotearviot: Laitevertailu | Vertaa puhelimia | Vertaa kännykkäliittymiä
Pelit: Pelitiedostot, pelidemot ja trailerit
Ohjelmat: download.fi | AfterDawnin ohjelma-alueet
International: AfterDawn in English | Software downloads | Free, legal MP3s | AfterDawn på svenska
RSS -syötteet: AfterDawnin uutiset | Uusimmat ohjelmapäivitykset | Keskustelualueiden viestit
Tietoja: Tietoa AfterDawn Oy:stä | Mainosta sivuillamme | Sivuston käyttöehdot ja tietoja yksityisyydensuojasta
Ota yhteyttä: Lähetä palautetta | Ota yhteyttä mainosmyyntiimme
 
  © 1999-2024 AfterDawn Oy