HJT loki tarkistettavana.

Discussion in 'Virukset ja haittaohjelmat' started by anubis90, Feb 18, 2006.

  1. anubis90

    anubis90 Regular member

    Joined:
    Mar 10, 2005
    Messages:
    197
    Likes Received:
    0
    Trophy Points:
    26
    Peleissä esiintyy pätkimistä ja lagimista joten päätin laittaa tänne hjt lokini jos sieltä jotain löytyy, koneen olen skannannu vasta ad-awarella ja nopealla ewido skannilla.


    Logfile of HijackThis v1.99.1
    Scan saved at 13:11:50, on 18.2.2006
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    J:\WINDOWS\System32\smss.exe
    J:\WINDOWS\SYSTEM32\winlogon.exe
    J:\WINDOWS\system32\services.exe
    J:\WINDOWS\system32\lsass.exe
    J:\WINDOWS\system32\svchost.exe
    J:\WINDOWS\System32\svchost.exe
    J:\Program Files\Sygate\SPF\smc.exe
    J:\WINDOWS\system32\spoolsv.exe
    J:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    J:\Program Files\Alwil Software\Avast4\ashServ.exe
    J:\Program Files\ewido\security suite\ewidoctrl.exe
    J:\WINDOWS\system32\nvsvc32.exe
    J:\WINDOWS\system32\oodag.exe
    J:\WINDOWS\system32\svchost.exe
    J:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    J:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    J:\WINDOWS\Explorer.EXE
    J:\WINDOWS\AGRSMMSG.exe
    J:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    J:\Program Files\Microsoft AntiSpyware\gcasServ.exe
    J:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    J:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
    J:\program files\powerstrip\pstrip.exe
    J:\WINDOWS\system32\RUNDLL32.EXE
    J:\Program Files\iTunes\iTunesHelper.exe
    J:\Program Files\QuickTime\qttask.exe
    J:\Program Files\MSN Messenger\MsnMsgr.Exe
    J:\Program Files\iPod\bin\iPodService.exe
    J:\WINDOWS\system32\ctfmon.exe
    J:\Program Files\Logitech\SetPoint\SetPoint.exe
    J:\Program Files\WinZip\WZQKPICK.EXE
    J:\Program Files\Common Files\Logitech\KHAL\KHALMNPR.EXE
    J:\Program Files\SpeedFan\speedfan.exe
    J:\Program Files\mIRC\mirc.exe
    J:\Program Files\Mozilla Firefox\firefox.exe
    J:\Program Files\Winamp\winamp.exe
    J:\Documents and Settings\Anis\Desktop\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mbnet.fi/
    O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - J:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - J:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: BitComet Toolbar Helper - {6A373B7E-496E-424f-A9BE-486A5E9AB018} - J:\Program Files\BitComet Toolbar\v2.0.0.1\BitComet_Toolbar.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - J:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O3 - Toolbar: BitComet Toolbar - {2E608F70-C430-4bc5-96F6-608E02EBA5B2} - J:\Program Files\BitComet Toolbar\v2.0.0.1\BitComet_Toolbar.dll
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - J:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE J:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [SunJavaUpdateSched] J:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    O4 - HKLM\..\Run: [gcasServ] "J:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
    O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
    O4 - HKLM\..\Run: [SmcService] J:\PROGRA~1\Sygate\SPF\smc.exe -startgui
    O4 - HKLM\..\Run: [avast!] J:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [NeroFilterCheck] J:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [PowerStrip] j:\program files\powerstrip\pstrip.exe
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE J:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [iTunesHelper] "J:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "J:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKCU\..\Run: [MsnMsgr] "J:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [ctfmon.exe] J:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [LDM] \Program\
    O4 - Startup: Adobe Gamma.lnk = J:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: Adobe Reader Speed Launch.lnk = J:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: Logitech Desktop Messenger.lnk = J:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
    O4 - Global Startup: Logitech SetPoint.lnk = J:\Program Files\Logitech\SetPoint\SetPoint.exe
    O4 - Global Startup: WinZip Quick Pick.lnk = J:\Program Files\WinZip\WZQKPICK.EXE
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - J:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - J:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - J:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - J:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
    O18 - Protocol: bw+0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw+0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O18 - Protocol: bwg0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwg0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "J:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
    O18 - Protocol: offline-8876480 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O23 - Service: Adobe LM Service - Adobe Systems - J:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - J:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - Unknown owner - J:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - Unknown owner - J:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
    O23 - Service: avast! Web Scanner - Unknown owner - J:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
    O23 - Service: ewido security suite control - ewido networks - J:\Program Files\ewido\security suite\ewidoctrl.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - J:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: iPodService - Apple Computer, Inc. - J:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - J:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: O&O Defrag - O&O Software GmbH - J:\WINDOWS\system32\oodag.exe
    O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - J:\Program Files\Sygate\SPF\smc.exe



    Edit. Mikä olisi hyvä ja turvallinen rekisterin putsaaja, ittellä nyt easy cleaner mutta en uskalla poistaa kaikkia mitä se skannaa.
     
    Last edited: Feb 18, 2006
    anubis90, Feb 18, 2006
    #1
  2. -kemisti-

    -kemisti- Active member

    Joined:
    Jun 6, 2005
    Messages:
    6,305
    Likes Received:
    0
    Trophy Points:
    96
    Ei näy örkkejä.

    Siirrä HjT omaan kansioonsa -> c:\hjt

    Näitä voit ottaa pois käynnistymästä makusi mukaan

    O4 - HKLM\..\Run: [SunJavaUpdateSched] J:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    O4 - HKLM\..\Run: [NeroFilterCheck] J:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [iTunesHelper] "J:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "J:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKCU\..\Run: [MsnMsgr] "J:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
    O4 - Startup: Adobe Gamma.lnk = J:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: Adobe Reader Speed Launch.lnk = J:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: WinZip Quick Pick.lnk = J:\Program Files\WinZip\WZQKPICK.EXE

    + kaikki näin alkavat rivit:

    O18 - Protocol: bw

    paitsi jätä yksi
     
    -kemisti-, Feb 18, 2006
    #2
  3. anubis90

    anubis90 Regular member

    Joined:
    Mar 10, 2005
    Messages:
    197
    Likes Received:
    0
    Trophy Points:
    26
    Kiitos, tässä on uusi loki.



    Logfile of HijackThis v1.99.1
    Scan saved at 15:46:22, on 18.2.2006
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    J:\WINDOWS\System32\smss.exe
    J:\WINDOWS\SYSTEM32\winlogon.exe
    J:\WINDOWS\system32\services.exe
    J:\WINDOWS\system32\lsass.exe
    J:\WINDOWS\system32\svchost.exe
    J:\WINDOWS\System32\svchost.exe
    J:\Program Files\Sygate\SPF\smc.exe
    J:\WINDOWS\system32\spoolsv.exe
    J:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    J:\Program Files\Alwil Software\Avast4\ashServ.exe
    J:\Program Files\ewido\security suite\ewidoctrl.exe
    J:\WINDOWS\system32\nvsvc32.exe
    J:\WINDOWS\system32\oodag.exe
    J:\WINDOWS\system32\svchost.exe
    J:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    J:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    J:\WINDOWS\Explorer.EXE
    J:\WINDOWS\AGRSMMSG.exe
    J:\Program Files\Microsoft AntiSpyware\gcasServ.exe
    J:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    J:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
    J:\program files\powerstrip\pstrip.exe
    J:\WINDOWS\system32\RUNDLL32.EXE
    J:\Program Files\MSN Messenger\MsnMsgr.Exe
    J:\Program Files\iPod\bin\iPodService.exe
    J:\WINDOWS\system32\ctfmon.exe
    J:\Program Files\Logitech\SetPoint\SetPoint.exe
    J:\Program Files\WinZip\WZQKPICK.EXE
    J:\Program Files\Common Files\Logitech\KHAL\KHALMNPR.EXE
    J:\Program Files\SpeedFan\speedfan.exe
    J:\Program Files\mIRC\mirc.exe
    J:\Program Files\Ventrilo\Ventrilo2.1\Ventrilo.exe
    J:\Program Files\The All-Seeing Eye\eye.exe
    J:\hijackthis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mbnet.fi/
    O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - J:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - J:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: BitComet Toolbar Helper - {6A373B7E-496E-424f-A9BE-486A5E9AB018} - J:\Program Files\BitComet Toolbar\v2.0.0.1\BitComet_Toolbar.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - J:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O3 - Toolbar: BitComet Toolbar - {2E608F70-C430-4bc5-96F6-608E02EBA5B2} - J:\Program Files\BitComet Toolbar\v2.0.0.1\BitComet_Toolbar.dll
    O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE J:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [gcasServ] "J:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
    O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
    O4 - HKLM\..\Run: [SmcService] J:\PROGRA~1\Sygate\SPF\smc.exe -startgui
    O4 - HKLM\..\Run: [avast!] J:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [NeroFilterCheck] J:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [PowerStrip] j:\program files\powerstrip\pstrip.exe
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE J:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKCU\..\Run: [MsnMsgr] "J:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [ctfmon.exe] J:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [LDM] \Program\
    O4 - Startup: Adobe Gamma.lnk = J:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: Adobe Reader Speed Launch.lnk = J:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: Logitech Desktop Messenger.lnk = J:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
    O4 - Global Startup: Logitech SetPoint.lnk = J:\Program Files\Logitech\SetPoint\SetPoint.exe
    O4 - Global Startup: WinZip Quick Pick.lnk = J:\Program Files\WinZip\WZQKPICK.EXE
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - J:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - J:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - J:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - J:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
    O18 - Protocol: bwz0s - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "J:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
    O18 - Protocol: offline-8876480 - {C9FD7FB2-45F5-4DE9-B14E-9697A9AD40F8} - J:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O23 - Service: Adobe LM Service - Adobe Systems - J:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - J:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - Unknown owner - J:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - Unknown owner - J:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
    O23 - Service: avast! Web Scanner - Unknown owner - J:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
    O23 - Service: ewido security suite control - ewido networks - J:\Program Files\ewido\security suite\ewidoctrl.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - J:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: iPodService - Apple Computer, Inc. - J:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - J:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: O&O Defrag - O&O Software GmbH - J:\WINDOWS\system32\oodag.exe
    O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - J:\Program Files\Sygate\SPF\smc.exe

     
    anubis90, Feb 18, 2006
    #3
  4. tomsung

    tomsung Member

    Joined:
    Jan 8, 2006
    Messages:
    63
    Likes Received:
    0
    Trophy Points:
    16

    Kyllä ne Easy Cleanerin löytämät uskaltaa poistaa (rekisteri+turhat), mutta ei dublikaatteja, jos ei tiedä mitä tekee.

    Toinen on CCleaner. http://www.ccleaner.com/ccdownload.asp
     
    tomsung, Feb 18, 2006
    #4
  5. aaxxeell

    aaxxeell Regular member

    Joined:
    Jul 28, 2005
    Messages:
    2,145
    Likes Received:
    0
    Trophy Points:
    46
    @anubis90

    Poista vaan noi turhat, ei hätää niissä ja lokihan oli kunnossa.
     
    aaxxeell, Feb 23, 2006
    #5

Share This Page