|
HJT logi onko kunnossa?
|
|
|
Mestaus
Senior Member
1 tuotearvio
|
17. maaliskuuta 2006 @ 13:12 |
Linkki tähän viestiin
|
Logfile of HijackThis v1.99.1
Scan saved at 18:10:21, on 03/17/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\apps\ABoard\ABoard.exe
C:\apps\ABoard\AOSD.exe
C:\Program Files\Virtual CD v4 SDK\system\vcsplay.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\program files\softwin\bitdefender9\bdswitch.exe
C:\Program Files\Softwin\BitDefender9\bdoesrv.exe
C:\program files\softwin\bitdefender9\bdnagent.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Common Files\Logitech\KHAL\KHALMNPR.EXE
C:\WINDOWS\System32\ezNTSvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Softwin\BitDefender9\vsserv.exe
C:\Program Files\Winamp\winamp.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Valve\Steam\Steam.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Omistaja\Työpöytä\hijackthis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fi/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.jippii.fi/jsp/chat
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Packard Bell
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
F2 - REG:system.ini: UserInit=C:\WINDOWS\regedit /s C:\pav.reg,C:\WINDOWS\system32\pavdr.exe,C:\WINDOWS\system32\userinit.exe,
O2 - BHO: (no name) - {4938C6E3-DC3A-53A1-28C3-16D828F32D84} - (no file)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - (no file)
O2 - BHO: (no name) - {6AF244C9-D295-E3E5-D62E-A4971C2770EF} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {9D91B664-E17A-5691-E24A-243B463C39FA} - (no file)
O4 - HKLM\..\Run: [ACTIVBOARD] c:\apps\ABoard\ABoard.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [] C:\WINDOWS\system32\service.exe
O4 - HKLM\..\Run: [VCSPlayer] "C:\Program Files\Virtual CD v4 SDK\system\vcsplay.exe"
O4 - HKLM\..\Run: [explorer.exe] C:/Program Files/inetget.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SW20] C:\WINDOWS\system32\sw20.exe
O4 - HKLM\..\Run: [SW24] C:\WINDOWS\system32\sw24.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [BDSwitchAgent] "C:\Program Files\Softwin\BitDefender9\bdswitch.exe"
O4 - HKLM\..\Run: [BDMCon] "C:\Program Files\Softwin\BitDefender9\bdmcon.exe"
O4 - HKLM\..\Run: [BDOESRV] "C:\Program Files\Softwin\BitDefender9\bdoesrv.exe"
O4 - HKLM\..\Run: [BDNewsAgent] "C:\Program Files\Softwin\BitDefender9\bdnagent.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\fin.htm
O15 - Trusted Zone: http://acs.pandasoftware.com
O15 - Trusted Zone: http://activescan.pandasoftware.com
O15 - Trusted Zone: http://www.pandasoftware.com
O15 - Trusted Zone: http://www.pandasoftware.es
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,101/mcins...
O16 - DPF: {4EDD7E56-3BAA-13B6-D0D4-4A6A2FE914A6} - http://69.50.173.166/1/rdgUS2405.exe
O16 - DPF: {7B297BFD-85E4-4092-B2AF-16A91B2EA103} (WScanCtl Class) - http://www3.ca.com/securityadvisor/virusinfo/webscan.cab
O16 - DPF: {94EB57FE-2720-496C-B33F-D9353C6E23F7} (F-Secure Online Scanner 2.1) - http://support.f-secure.com/ols/fscax.cab
O18 - Protocol: bw+0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: winrkp32 - winrkp32.dll (file missing)
O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe" /service (file missing)
O23 - Service: EasyBits Services for Windows NT (ezntsvc) - Teknum Systems AS - C:\WINDOWS\System32\ezNTSvc.exe
O23 - Service: iolo System Guard (IOLO_SRV) - Unknown owner - C:\Program Files\iolo\System Mechanic Professional 6\IoloSGCtrl.exe (file missing)
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exe" /service (file missing)
O23 - Service: Norman API-hooking helper (NipSvc) - Unknown owner - C:\Norman\Nvc\BIN\nipsvc.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Panda Process Protection Service (PavPrSrv) - Unknown owner - C:\Program Files\Common Files\Panda Software\PavShld\pavprsrv.exe (file missing)
O23 - Service: Windowsin palomuuri / Internet-yhteyden jakaminen (ICS) (SharedAccess) - Unknown owner - C:\WINDOWS\C:\WINDOWS\System32\svchost.exe (file missing)
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Virtual CD v4 Security service (SDK - Version) (VCSSecS) - H+H Software GmbH - C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - Unknown owner - C:\Program Files\Softwin\BitDefender9\vsserv.exe" /service (file missing)
O23 - Service: BitDefender Communicator (XCOMM) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe" /service (file missing)
Viestiä on muokattu lähettämisen jälkeen. Viimeisin muokkaus 17. maaliskuuta 2006 @ 13:17
|
Senior Member
|
17. maaliskuuta 2006 @ 14:15 |
Linkki tähän viestiin
|
Lataa Ewido:
http://keskustelu.afterdawn.com/thread_view.cfm/269186
Asenna ja päivitä, ei tartte scannata vielä.
Sulje kaikki ikkunat, avaa HijackThis, paina do a system scan only ja merkkaa nämä:
O2 - BHO: (no name) - {4938C6E3-DC3A-53A1-28C3-16D828F32D84} - (no file)
O2 - BHO: (no name) - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - (no file)
O2 - BHO: (no name) - {6AF244C9-D295-E3E5-D62E-A4971C2770EF} - (no file)
O2 - BHO: (no name) - {9D91B664-E17A-5691-E24A-243B463C39FA} - (no file)
O4 - HKLM\..\Run: [] C:\WINDOWS\system32\service.exe
O4 - HKLM\..\Run: [explorer.exe] C:/Program Files/inetget.exe
O4 - HKLM\..\Run: [SW20] C:\WINDOWS\system32\sw20.exe
O4 - HKLM\..\Run: [SW24] C:\WINDOWS\system32\sw24.exe
O16 - DPF: {4EDD7E56-3BAA-13B6-D0D4-4A6A2FE914A6} - http://69.50.173.166/1/rdgUS2405.exe
O20 - Winlogon Notify: winrkp32 - winrkp32.dll (file missing)
O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)
O23 - Service: Panda Process Protection Service (PavPrSrv) - Unknown owner - C:\Program Files\Common Files\Panda Software\PavShld\pavprsrv.exe (file missing)
Ja paina Fix cheked
Sä olet ilmeisestikin poistanut pandan, mutta se kummittelee vielä, tässä sen poisto-ohje:
Paina vasemmalta alhaalta käynnistä -> Suorita -> kirjoita cmd
Sitten kirjoita komentoriville sc stop PavPrSrv ja paina enter ja sen jälkeen kirjoita vielä sc delete PavPrSrv ja enter.
Sitten taas sc stop NipSvc ja enter ja sc delete NipSvc ja enter. Tämän jälkeen sulje komentorivi ja jatka oheita.
Sitten käynnistä kone vikasietotilaan näpyttämällä F8:a käynnistyksen yhteydessä.
Vikasietotilassa laita piilotiedostot näkyviin
* Klikkaa Käynnistä.
* Avaa Oma Tietokone.
* Valitse Työkalut ylämenusta ja klikkaa Kansion asetukset.
* Valitse Näytä välilehti.
* Piilotiedostot/kansiot kohdalla valitse Näytä piilotetut tiedostot ja kansiot.
* Poista rasti ruudusta -> Piilota suojatut käyttöjärjestelmätiedostot
* Klikkaa Kyllä varmistaaksesi muutokset.
* Klikkaa OK.
Ja sitten poistat seuraavat tiedostot:
C:\WINDOWS\system32\->service.exe
C:\Program Files\->inetget.exe
C:\WINDOWS\system32\->sw20.exe
C:\WINDOWS\system32\->sw24.exe
C:\->Norman
C:\Program Files\Common Files\->Panda Software
Poistojen jälkeen aja Ewidolla Full system scan ohjeiden mukaan ja tallenna sen raportti.
Sen jälkeen käynnistä kone uudelleen päästäksesi takaisin normaalitilaan ja normaalitilassa lähetä uusi HijackThis loki sekä Ewidon raportti.
|
|
Mestaus
Senior Member
1 tuotearvio
|
17. maaliskuuta 2006 @ 18:07 |
Linkki tähän viestiin
|
Ewido Raportti:
+ Created on: 23:00:12, 03/17/2006
+ Report-Checksum: D792ED9E
+ Scan result:
:mozilla.17:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\chrz3p6q.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup
:mozilla.18:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\chrz3p6q.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup
:mozilla.42:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\chrz3p6q.default\cookies.txt -> TrackingCookie.Com : Cleaned with backup
:mozilla.44:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\chrz3p6q.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned with backup
:mozilla.96:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\chrz3p6q.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
:mozilla.97:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\chrz3p6q.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
:mozilla.98:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\chrz3p6q.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
:mozilla.99:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\chrz3p6q.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
:mozilla.100:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\chrz3p6q.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
:mozilla.103:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\chrz3p6q.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
:mozilla.104:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\chrz3p6q.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
:mozilla.105:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\chrz3p6q.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
:mozilla.106:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\chrz3p6q.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned with
backup
:mozilla.107:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\chrz3p6q.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with
backup
:mozilla.108:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\chrz3p6q.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with
backup
:mozilla.117:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\chrz3p6q.default\cookies.txt -> TrackingCookie.Sexlist : Cleaned with backup
:mozilla.123:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\chrz3p6q.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with
backup
:mozilla.124:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\chrz3p6q.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with
backup
:mozilla.125:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\chrz3p6q.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with
backup
:mozilla.126:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\chrz3p6q.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with
backup
:mozilla.130:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\chrz3p6q.default\cookies.txt -> TrackingCookie.Trafic : Cleaned with backup
:mozilla.137:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\chrz3p6q.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with
backup
:mozilla.138:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\chrz3p6q.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with
backup
:mozilla.139:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\chrz3p6q.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with
backup
:mozilla.142:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\chrz3p6q.default\cookies.txt -> TrackingCookie.Adtech : Cleaned with backup
:mozilla.143:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\chrz3p6q.default\cookies.txt -> TrackingCookie.Adtech : Cleaned with backup
:mozilla.144:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\chrz3p6q.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with
backup
C:\Documents and Settings\Omistaja\Cookies\Omistaja@atdmt[1].txt -> TrackingCookie.Atdmt : Cleaned with backup
C:\Program Files\Softwin\BitDefender9\Quarantine\winrkp32.dll -> Hijacker.Small.kb : Cleaned with backup
C:\WINDOWS\Temp\win404.tmp.exe -> Trojan.Dialer.oy : Cleaned with backup
C:\WINDOWS\Temp\win8BD.tmp.exe -> Trojan.Dialer.oy : Cleaned with backup
::Report End
Hjt logi:
jooLogfile of HijackThis v1.99.1
Scan saved at 23:02:06, on 03/17/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\apps\ABoard\ABoard.exe
C:\Program Files\Virtual CD v4 SDK\system\vcsplay.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\apps\ABoard\AOSD.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\program files\softwin\bitdefender9\bdswitch.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Softwin\BitDefender9\bdoesrv.exe
C:\program files\softwin\bitdefender9\bdnagent.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Common Files\Logitech\KHAL\KHALMNPR.EXE
C:\WINDOWS\System32\ezNTSvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exe
C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Softwin\BitDefender9\vsserv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\ewido anti-malware\ewidoguard.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Valve\Steam\Steam.exe
C:\Documents and Settings\Omistaja\Työpöytä\hijackthis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fi/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.jippii.fi/jsp/chat
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Packard Bell
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
O2 - BHO: (no name) - {4938C6E3-DC3A-53A1-28C3-16D828F32D84} - (no file)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {6AF244C9-D295-E3E5-D62E-A4971C2770EF} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {9D91B664-E17A-5691-E24A-243B463C39FA} - (no file)
O4 - HKLM\..\Run: [ACTIVBOARD] c:\apps\ABoard\ABoard.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [VCSPlayer] "C:\Program Files\Virtual CD v4 SDK\system\vcsplay.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [BDSwitchAgent] "C:\Program Files\Softwin\BitDefender9\bdswitch.exe"
O4 - HKLM\..\Run: [BDMCon] "C:\Program Files\Softwin\BitDefender9\bdmcon.exe"
O4 - HKLM\..\Run: [BDOESRV] "C:\Program Files\Softwin\BitDefender9\bdoesrv.exe"
O4 - HKLM\..\Run: [BDNewsAgent] "C:\Program Files\Softwin\BitDefender9\bdnagent.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\fin.htm
O15 - Trusted Zone: http://acs.pandasoftware.com
O15 - Trusted Zone: http://activescan.pandasoftware.com
O15 - Trusted Zone: http://www.pandasoftware.com
O15 - Trusted Zone: http://www.pandasoftware.es
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,101/mcins...
O16 - DPF: {7B297BFD-85E4-4092-B2AF-16A91B2EA103} (WScanCtl Class) - http://www3.ca.com/securityadvisor/virusinfo/webscan.cab
O16 - DPF: {94EB57FE-2720-496C-B33F-D9353C6E23F7} (F-Secure Online Scanner 2.1) - http://support.f-secure.com/ols/fscax.cab
O18 - Protocol: bw+0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {D79F950B-FB56-4194-AFE1-BD24695F8B07} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe" /service (file missing)
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe
O23 - Service: EasyBits Services for Windows NT (ezntsvc) - Teknum Systems AS - C:\WINDOWS\System32\ezNTSvc.exe
O23 - Service: iolo System Guard (IOLO_SRV) - Unknown owner - C:\Program Files\iolo\System Mechanic Professional 6\IoloSGCtrl.exe (file missing)
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exe" /service (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Windowsin palomuuri / Internet-yhteyden jakaminen (ICS) (SharedAccess) - Unknown owner - C:\WINDOWS\C:\WINDOWS\System32\svchost.exe (file missing)
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Virtual CD v4 Security service (SDK - Version) (VCSSecS) - H+H Software GmbH - C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - Unknown owner - C:\Program Files\Softwin\BitDefender9\vsserv.exe" /service (file missing)
O23 - Service: BitDefender Communicator (XCOMM) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe" /service (file missing)
|
Senior Member
|
17. maaliskuuta 2006 @ 18:16 |
Linkki tähän viestiin
|
|
Fiksaa vielä nämä niin loki on puhdas:
O2 - BHO: (no name) - {4938C6E3-DC3A-53A1-28C3-16D828F32D84} - (no file)
O2 - BHO: (no name) - {6AF244C9-D295-E3E5-D62E-A4971C2770EF} - (no file)
O2 - BHO: (no name) - {9D91B664-E17A-5691-E24A-243B463C39FA} - (no file)
|
|
Mestaus
Senior Member
1 tuotearvio
|
17. maaliskuuta 2006 @ 19:50 |
Linkki tähän viestiin
|
|
Hijackthis is about to remove a BHO and the corresponding file from your system.Close all Internet Explorer windows AND all windows Explorer windows before continuing for the best chance of success
Viestiä on muokattu lähettämisen jälkeen. Viimeisin muokkaus 18. maaliskuuta 2006 @ 07:02
|
Senior Member
|
18. maaliskuuta 2006 @ 03:56 |
Linkki tähän viestiin
|
|
Aijuu, unohdin sanoo että ennen kun korjaat noi niin sulje kaikki ikkunat.
|
|
Mestaus
Senior Member
1 tuotearvio
|
18. maaliskuuta 2006 @ 05:37 |
Linkki tähän viestiin
|
|
Suljin kaikki ikkunat ,niin vielläkin valittaa tota..?
|
AfterDawn Addict
|
18. maaliskuuta 2006 @ 06:45 |
Linkki tähän viestiin
|
|
Sulje myös selain ennen kuin fixaat ne.
|
|
Mestaus
Senior Member
1 tuotearvio
|
18. maaliskuuta 2006 @ 07:03 |
Linkki tähän viestiin
|
|
Ok nyt on fixattu
|
Senior Member
|
18. maaliskuuta 2006 @ 09:13 |
Linkki tähän viestiin
|
|
Hyvä homma, loki on sitten puhdas, vai ilmeneekö vielä jotain ongelmia?
|
|
Mestaus
Senior Member
1 tuotearvio
|
18. maaliskuuta 2006 @ 09:17 |
Linkki tähän viestiin
|
|
Ei näytä olevan,mutta mitÄ noi sw20.exe ja sw24.exe jutut oli?kun fixasin noita.Kun katoin sieltä system32 kansiost ne pois nii niis kummaski oli sellaset verkkokortin kuvat..
|
Senior Member
|
18. maaliskuuta 2006 @ 09:52 |
Linkki tähän viestiin
|
|
Niistä ei ole varmaa tietoa, mutta ne on yleensä poistettu.
|
|
Mestaus
Senior Member
1 tuotearvio
|
18. maaliskuuta 2006 @ 09:56 |
Linkki tähän viestiin
|
|
ahaa..olin vaa niin innoissani et oisko ollut joku sellanen virus tai joku roska ,että se ois estännyt porukkaa pääsemästä servereilleni ,mutta ei kummiskaan ollut.vielläkin on toi serveriongelma
|
Senior Member
|
24. maaliskuuta 2006 @ 10:42 |
Linkki tähän viestiin
|
|
sw20.exe ja sw24.exe ovat tälläisiä uusia tulokkaita. Niitä ei fixata eikä ne ole viiruksia. Lähinnä tuleekin mieleen, että verkkokorttiin/emolevyyn liittyy eli ne on parempi jättää.
Onko mihin tarkoitettu serveri? jos yksinkertaisesti asetukset penkin alla?
Viestiä on muokattu lähettämisen jälkeen. Viimeisin muokkaus 24. maaliskuuta 2006 @ 10:52
|
|
Mestaus
Senior Member
1 tuotearvio
|
24. maaliskuuta 2006 @ 13:07 |
Linkki tähän viestiin
|
|
Siis serveri on tarkotettu tohon pelaamiseeen niiku tyyliin counter-strike,-:- source,empire eart,age of empires 2,vietcong,cod2 ja jne jne.Kaikissa noissa peleissä oon testannut serverii,niin kukaan ei ole päässyt servereilleni/ei löytännyt serveriä.Ton sw20.exe ja sw24.exe ne poistin kyllä kummatkin.NAT ei oo päällä.Palomuurin on aina pois päältä kun teen jonkun serverin.?Osaisitko auttaa mitenkää.
Viestiä on muokattu lähettämisen jälkeen. Viimeisin muokkaus 24. maaliskuuta 2006 @ 13:10
|
Senior Member
|
24. maaliskuuta 2006 @ 17:27 |
Linkki tähän viestiin
|
|
Itsellä ei ole kovin suuri kokemus servereiden luomisesta.
Olen vain Bf2 serverin luonut ja siinä oli asetuksia mistä sai valita näkyykö se netissä vai onko salainen. Salaisena pääsi vain tietämällä ip eli olisko jotain tuon tapaista sinulla? ei ole ainakaan örkeistä vika.
Lisäksi voit kysellä lisää tietoa tuolta pelit osiosta :) iellä on toisen lajin ammattilaiset...
|
|
Mestaus
Senior Member
1 tuotearvio
|
24. maaliskuuta 2006 @ 18:33 |
Linkki tähän viestiin
|
|
jaa ei oo.siis julkinen serveri,ei pääse laniskaa oleva kone.
|
Senior Member
|
24. maaliskuuta 2006 @ 18:46 |
Linkki tähän viestiin
|
Siinä kyl jostain kiikastaan, palomuuri tai jotain. Vaikka palomuuri sammutetaan se ei takaa että toimii silti kun osittain asetukset ovat päällä vaikka muuri kiinni.
Mutta laitahan ihmeessä tuonne lisää niin saa toiset ammattilaiset mietittävää -> http://keskustelu.afterdawn.com/forum_view.cfm/88
|
|
Mainos
|
|
|
|
Mestaus
Senior Member
1 tuotearvio
|
25. maaliskuuta 2006 @ 04:00 |
Linkki tähän viestiin
|
|
Jees onhan tonne tultu pari kertaa laitettuu ,mutta ei oikein viesti lähde kulkee siellä.No laitan nytten uusiksi.
|
