Kone jumahtaa 1min kirjautumisen jälkeen

Discussion in 'Virukset ja haittaohjelmat' started by MMte, Jun 25, 2007.

  1. MMte

    MMte Member

    Joined:
    Apr 2, 2007
    Messages:
    29
    Likes Received:
    0
    Trophy Points:
    11
    Elikkä windows jäätyy täydellisesti kun on kirjautunut käyttäjällä sisään 1-3 minuutin päästä. AVG Anti-spywarella skannasin ja tässä sen logi:

    ---------------------------------------------------------
    AVG Anti-Spyware - Scan Report
    ---------------------------------------------------------

    + Created at: 14:38:59 25.6.2007

    + Scan result:



    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP621\A0229091.exe -> Adware.LinkReplacer : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP620\A0227067.EXE -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP620\A0227068.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP620\A0227069.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP620\A0227070.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP620\A0227071.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP621\A0229096.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP621\A0229097.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP621\A0229098.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP621\A0229099.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP621\A0229100.EXE -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP632\A0234441.EXE -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP632\A0234442.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP632\A0234443.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP632\A0234444.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP632\A0234445.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP633\A0237138.EXE -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP633\A0237139.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP633\A0237140.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP633\A0237141.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP633\A0237142.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP634\A0240838.EXE -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP634\A0240839.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP634\A0240840.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP634\A0240841.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP634\A0240842.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP634\A0241852.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP634\A0241853.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP634\A0241854.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP634\A0241855.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP634\A0245862.EXE -> Adware.NewDotNet : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP624\A0229412.exe -> Adware.Virtumonde : Cleaned with backup (quarantined).
    HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\ins -> Adware.WebRebates : Cleaned with backup (quarantined).
    :mozilla.183:C:\Documents and Settings\jenna leskinen\Application Data\Mozilla\Firefox\Profiles\y1pyhow0.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
    :mozilla.184:C:\Documents and Settings\jenna leskinen\Application Data\Mozilla\Firefox\Profiles\y1pyhow0.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
    :mozilla.185:C:\Documents and Settings\jenna leskinen\Application Data\Mozilla\Firefox\Profiles\y1pyhow0.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
    :mozilla.6:C:\Documents and Settings\jenna leskinen\Application Data\altimit-dev\lolifox\Profiles\s4pkdalt.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
    :mozilla.7:C:\Documents and Settings\jenna leskinen\Application Data\altimit-dev\lolifox\Profiles\s4pkdalt.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
    :mozilla.8:C:\Documents and Settings\jenna leskinen\Application Data\altimit-dev\lolifox\Profiles\s4pkdalt.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
    C:\RECYCLER\S-1-5-21-3915689187-1087533420-3705680651-1006\Dc18298.txt -> TrackingCookie.Adtech : Cleaned.
    :mozilla.187:C:\Documents and Settings\jenna leskinen\Application Data\Mozilla\Firefox\Profiles\y1pyhow0.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
    :mozilla.230:C:\Documents and Settings\jenna leskinen\Application Data\Mozilla\Firefox\Profiles\y1pyhow0.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
    :mozilla.301:C:\Documents and Settings\jenna leskinen\Application Data\Mozilla\Firefox\Profiles\y1pyhow0.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
    :mozilla.302:C:\Documents and Settings\jenna leskinen\Application Data\Mozilla\Firefox\Profiles\y1pyhow0.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
    :mozilla.311:C:\Documents and Settings\jenna leskinen\Application Data\Mozilla\Firefox\Profiles\y1pyhow0.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
    :mozilla.268:C:\Documents and Settings\jenna leskinen\Application Data\Mozilla\Firefox\Profiles\y1pyhow0.default\cookies.txt -> TrackingCookie.Navrcholu : Cleaned.
    :mozilla.128:C:\Documents and Settings\jenna leskinen\Application Data\Mozilla\Firefox\Profiles\y1pyhow0.default\cookies.txt -> TrackingCookie.Paypal : Cleaned.
    :mozilla.77:C:\Documents and Settings\jenna leskinen\Application Data\Mozilla\Firefox\Profiles\y1pyhow0.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
    :mozilla.78:C:\Documents and Settings\jenna leskinen\Application Data\Mozilla\Firefox\Profiles\y1pyhow0.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
    :mozilla.79:C:\Documents and Settings\jenna leskinen\Application Data\Mozilla\Firefox\Profiles\y1pyhow0.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
    :mozilla.80:C:\Documents and Settings\jenna leskinen\Application Data\Mozilla\Firefox\Profiles\y1pyhow0.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
    :mozilla.81:C:\Documents and Settings\jenna leskinen\Application Data\Mozilla\Firefox\Profiles\y1pyhow0.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
    :mozilla.305:C:\Documents and Settings\jenna leskinen\Application Data\Mozilla\Firefox\Profiles\y1pyhow0.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
    :mozilla.307:C:\Documents and Settings\jenna leskinen\Application Data\Mozilla\Firefox\Profiles\y1pyhow0.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
    :mozilla.308:C:\Documents and Settings\jenna leskinen\Application Data\Mozilla\Firefox\Profiles\y1pyhow0.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
    :mozilla.309:C:\Documents and Settings\jenna leskinen\Application Data\Mozilla\Firefox\Profiles\y1pyhow0.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
    :mozilla.13:C:\Documents and Settings\jenna leskinen\Application Data\Mozilla\Firefox\Profiles\y1pyhow0.default\cookies.txt -> TrackingCookie.Statistik-gallup : Cleaned.
    :mozilla.32:C:\Documents and Settings\jenna leskinen\Application Data\altimit-dev\lolifox\Profiles\s4pkdalt.default\cookies.txt -> TrackingCookie.Statistik-gallup : Cleaned.
    C:\RECYCLER\S-1-5-21-3915689187-1087533420-3705680651-1006\Dc17778.txt -> TrackingCookie.Statistik-gallup : Cleaned.
    C:\RECYCLER\S-1-5-21-3915689187-1087533420-3705680651-1006\Dc18304.txt -> TrackingCookie.Statistik-gallup : Cleaned.
    :mozilla.225:C:\Documents and Settings\jenna leskinen\Application Data\Mozilla\Firefox\Profiles\y1pyhow0.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
    :mozilla.226:C:\Documents and Settings\jenna leskinen\Application Data\Mozilla\Firefox\Profiles\y1pyhow0.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
    :mozilla.227:C:\Documents and Settings\jenna leskinen\Application Data\Mozilla\Firefox\Profiles\y1pyhow0.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
    :mozilla.196:C:\Documents and Settings\jenna leskinen\Application Data\Mozilla\Firefox\Profiles\y1pyhow0.default\cookies.txt -> TrackingCookie.Toplist : Cleaned.
    C:\RECYCLER\S-1-5-21-3915689187-1087533420-3705680651-1006\Dc18292.txt -> TrackingCookie.Webtrends : Cleaned.
    C:\RECYCLER\S-1-5-21-3915689187-1087533420-3705680651-1006\Dc17853.x\crack.exe -> Trojan.Agent.qt : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP632\A0234316.exe -> Trojan.Agent.qt : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP633\A0237013.exe -> Trojan.Agent.qt : Cleaned with backup (quarantined).
    C:\System Volume Information\_restore{A93A7C28-2D95-4255-A02B-C8F1E0340F72}\RP634\A0240713.exe -> Trojan.Agent.qt : Cleaned with backup (quarantined).


    ::Report end

    Hjt login voisin pistää, muttakun kone jämähtää sillein että ei ehdi tekemään mitään.
    Apuja?
     
    MMte, Jun 25, 2007
    #1
  2. karhi

    karhi Regular member

    Joined:
    Dec 19, 2006
    Messages:
    3,564
    Likes Received:
    0
    Trophy Points:
    46
    Kokeile vikasietotilassa järjestelmän palautusta toimivaan ajankohtaan.
     
    karhi, Jun 25, 2007
    #2
  3. MMte

    MMte Member

    Joined:
    Apr 2, 2007
    Messages:
    29
    Likes Received:
    0
    Trophy Points:
    11
    Kokeillut olen. Ei auttanut.
     
    MMte, Jun 25, 2007
    #3
  4. karhi

    karhi Regular member

    Joined:
    Dec 19, 2006
    Messages:
    3,564
    Likes Received:
    0
    Trophy Points:
    46
    Toimiiko prossun tuuletin? Oletko kokeillut muistien toimivuuden, jos esim.kaksi kampaa niin irrota toinen vuorotellen ja vaihtele slotteja. Näyttiskin voi olla viallinen, kuumenee ja kone tilttaa.
     
    Last edited: Jun 25, 2007
    karhi, Jun 25, 2007
    #4
  5. kelari

    kelari Regular member

    Joined:
    Jul 26, 2006
    Messages:
    627
    Likes Received:
    0
    Trophy Points:
    26
    Teeppä tämä varmuuden vuoksi.
    -> Lataa Hijackthis: http://koti.mbnet.fi/pattaya1/HijackThis.exe
    -> Tallenna hakemistoon C:\hjt
    ->Uudelleennimeä HijackThis.exe -> scanner.exe:ksi näin:
    1. Klikkaa hiiren oikealla painikkeella HijackThis ikonia.
    [​IMG]

    2. Valitse Uudelleennineä/ Rename.
    [​IMG]

    3. Kirjoita scanner.exe
    [​IMG]
    -> Käynnistä HijackThis ja klikkaa: do a system scan and save a logfile.
    -> Lähetä ilmestynyt logisi AfterDawn:n Virukset ja haittaohjelmat-osioon HijackThis-logit: http://keskustelu.afterdawn.com/forum_view.cfm/198
    Aloita uusi viestiketjusi ja kerro ongelmasta sekä liitä HijackThis logi mukaan! Odota rauhassa apua
     
    kelari, Jun 25, 2007
    #5

Share This Page