HJT-log Kone kaatuilee ja pätkii

Discussion in 'Virukset ja haittaohjelmat - HijackThis -logit' started by Scepter, Jan 11, 2007.

  1. Scepter

    Scepter Member

    Joined:
    Jan 11, 2007
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    11
    Kone pätkii ja kaatuilee. Aluksi silloin tällöin nyt huomattavasti useammin. Erityisesti jos ajaa useamapaa ohjelmaa yhtäaikaa.
    Ei ole tehoista kiinni, tosin olen epäillyt että kovalevy vois olla rikki, sillä kaatuilu tapahtuu useammin esim kun lataa useampia tiedostoja netistä samanaikaisesti. Silmään pisti itsellä task manager/prosecces valikossa olevat 7 svchostia(liikaa?). ja CLI.EXE.

    Tehty seuraavat tässä järjestyksessä:
    1.Anti-Vir (ei havaintoja)
    2.Avast (löysi keyloggerin ja troijalaisen) tein kaksi kertaa lisää ei uusia havaintoja)
    3.Spybot (löysi spywareja)
    4.Ad-aware (ei havaintoja)
    5.AVG (ei havaintoja)
    Lisäksi olen poistanu kaikki ohjelmat joita olen epäillyt aiheuttajaksi.

    Ohessa logi. Olisin kiitollinen jos joku kerkiäisi vilkaisemaan.


    Logfile of HijackThis v1.99.1
    Scan saved at 13:31:03, on 11.1.2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\SYSTEM32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Ahead\InCD\InCDsrv.exe
    C:\WINDOWS\SYSTEM32\Ati2evxx.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Programs\AntiVir PersonalEdition Classic\sched.exe
    C:\Programs\AntiVir PersonalEdition Classic\avguard.exe
    C:\Programs\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    C:\softat\nvidia\Apache Group\Apache2\bin\apache.exe
    C:\softat\nvidia\bin\nSvcIp.exe
    C:\softat\nvidia\bin\nSvcLog.exe
    C:\WINDOWS\system32\svchost.exe
    C:\softat\nvidia\Apache Group\Apache2\bin\apache.exe
    C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    C:\softat\nvidia\bin\nSvcAppFlt.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\SOUNDMAN.EXE
    C:\Program Files\Ahead\InCD\InCD.exe
    C:\softat\nvidia\bin\nTrayFw.exe
    C:\softat\LG\PowerDVD\PDVDServ.exe
    C:\WINDOWS\VM_STI.EXE
    C:\Programs\ZoneAlarm\zlclient.exe
    C:\Program Files\Common Files\Real\Update_OB\realsched.exe
    C:\Program Files\AGEIA Technologies\TrayIcon.exe
    C:\softat\LG\fwupdate.exe
    C:\Programs\AntiVir PersonalEdition Classic\avgnt.exe
    C:\Programs\DAEMON Tools\daemon.exe
    C:\Program Files\ATI Technologies\ATI.ACE\CLI.EXE
    C:\Programs\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
    C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\softat\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    C:\Program Files\MSN Messenger\MsnMsgr.Exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\softat\SAMSUNG\GammaTray.exe
    C:\softat\Logitech\SetPoint\SetPoint.exe
    C:\softat\SAMSUNG\NaturalColorLoad.exe
    C:\Program Files\Common Files\Logitech\KHAL\KHALMNPR.EXE
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\Programs\foobar2000\foobar2000.exe
    C:\WINDOWS\system32\SNDVOL32.EXE
    C:\Programs\Mozilla Firefox\firefox.exe
    C:\hijack\HijackThis.exe

    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Programs\Spybot - Search & Destroy\SDHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
    O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [nTrayFw] C:\softat\nvidia\bin\nTrayFw.exe
    O4 - HKLM\..\Run: [RemoteControl] C:\softat\LG\PowerDVD\PDVDServ.exe
    O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
    O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Programs\quicktime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [BigDogPath] C:\WINDOWS\VM_STI.EXE VIMICRO USB PC Camera
    O4 - HKLM\..\Run: [Zone Labs Client] C:\Programs\ZoneAlarm\zlclient.exe
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [AGEIA PhysX SysTray] C:\Program Files\AGEIA Technologies\TrayIcon.exe
    O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
    O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe"
    O4 - HKLM\..\Run: [LGODDFU] C:\softat\LG\fwupdate.exe
    O4 - HKLM\..\Run: [ppmate] C:\Programs\PPMate\PPMate\ppmate.exe -autoplay
    O4 - HKLM\..\Run: [avgnt] "C:\Programs\AntiVir PersonalEdition Classic\avgnt.exe" /min
    O4 - HKLM\..\Run: [DAEMON Tools] "C:\Programs\DAEMON Tools\daemon.exe" -lang 1033
    O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Programs\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [LDM] C:\softat\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
    O4 - HKCU\..\Run: [Octoshape Streaming Services] "C:\Program Files\Octoshape Streaming Services\Scepter\OctoshapeClient.exe" -inv:bootrun
    O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: Color Calibration.lnk = ?
    O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\softat\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
    O4 - Global Startup: Logitech SetPoint.lnk = C:\softat\Logitech\SetPoint\SetPoint.exe
    O4 - Global Startup: MagicTune3.5.lnk = ?
    O4 - Global Startup: Microsoft Office.lnk = C:\Programs\Office\Office10\OSA.EXE
    O4 - Global Startup: NaturalColorLoad.lnk = ?
    O8 - Extra context menu item: Vie Microsoft E&xceliin - res://C:\Programs\Office\Office10\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
    O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - E:\games\PP\PartyPoker\RunApp.exe (file missing)
    O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - E:\games\PP\PartyPoker\RunApp.exe (file missing)
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nvappfilter.dll
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab
    O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.safety.live.com/resource/download/scanner/wlscbase8460.cab
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
    O16 - DPF: {9D190AE6-C81E-4039-8061-978EBAD10073} (F-Secure Online Scanner 3.0) - http://support.f-secure.com/ols/fscax.cab
    O18 - Protocol: bw+0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw+0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\softat\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O18 - Protocol: bwg0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwg0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0s - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
    O18 - Protocol: offline-8876480 - {867BEF78-7455-496E-A622-AAB32B0504C0} - C:\softat\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Programs\AntiVir PersonalEdition Classic\sched.exe
    O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Programs\AntiVir PersonalEdition Classic\avguard.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Programs\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\softat\nvidia\bin\nSvcAppFlt.exe
    O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Unknown owner - C:\softat\nvidia\Apache Group\Apache2\bin\apache.exe" -k runservice (file missing)
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: InCD Helper (InCDsrv) - Ahead Software AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
    O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA - C:\softat\nvidia\bin\nSvcIp.exe
    O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA - C:\softat\nvidia\bin\nSvcLog.exe
    O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
     
    Scepter, Jan 11, 2007
    #1
  2. Hujo

    Hujo Guest

    poista lisää poista sovelutuksesta

    Zonearlam
    Logitech Desktop Messenger

    Nimeä uudelleen C:\hijack\HijackThis.exe <-- skanneriksi

    lähetä
    uusi hjt loki
     
    Last edited by a moderator: Jan 12, 2007
    Hujo, Jan 12, 2007
    #2

Share This Page