Netti alkanut hidastelemaan..

Discussion in 'Virukset ja haittaohjelmat - HijackThis -logit' started by SlimJoe, Aug 2, 2007.

  1. SlimJoe

    SlimJoe Regular member

    Joined:
    Apr 21, 2007
    Messages:
    285
    Likes Received:
    0
    Trophy Points:
    26
    Voisko joku tarkistaa mun HJT login?? Kiitos jo etukäteen...

    Logfile of HijackThis v1.99.1
    Scan saved at 17:31:21, on 2.8.2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.5730.0011)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
    C:\WINDOWS\Samsung\PanelMgr\ssmmgr.exe
    C:\WINDOWS\SOUNDMAN.EXE
    C:\WINDOWS\system32\RUNDLL32.EXE
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\oodag.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    C:\Program Files\Opera\Opera.exe
    C:\Program Files\Internet Download Manager\IDMan.exe
    C:\Program Files\Internet Download Manager\IEMonitor.exe
    C:\Documents and Settings\Admin\Omat tiedostot\Downloads\Programs\HijackThis.exe

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy.kponet.fi:8080
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
    O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
    O2 - BHO: BitComet Helper - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.7.4.dll
    O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_12\bin\ssv.dll
    O2 - BHO: Ask Toolbar BHO - {F4D76F01-7896-458a-890F-E1F05C46069F} - C:\Program Files\AskPBar\bar\1.bin\ASKPBAR.DLL
    O2 - BHO: (no name) - {FFFFFEF0-5B30-21D4-945D-000000000000} - C:\PROGRA~1\STARDO~1\SDIEInt.dll
    O3 - Toolbar: Ask Toolbar - {F4D76F09-7896-458a-890F-E1F05C46069F} - C:\Program Files\AskPBar\bar\1.bin\ASKPBAR.DLL
    O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe"
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [Samsung PanelMgr] C:\WINDOWS\Samsung\PanelMgr\ssmmgr.exe /autorun
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [OODefragTray] C:\WINDOWS\system32\oodtray.exe
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
    O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
    O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
    O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm
    O8 - Extra context menu item: Download All Links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
    O8 - Extra context menu item: Download Using &BitSpirit - C:\Program Files\BitSpirit\bsurl.htm
    O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
    O8 - Extra context menu item: Download with Star Downloader - C:\Program Files\Star Downloader\sdie.htm
    O8 - Extra context menu item: V&ie Microsoft Exceliin - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_12\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_12\bin\ssv.dll
    O9 - Extra button: Web Anti-Virus statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll
    O9 - Extra button: Lähetä OneNoteen - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: Läh&etä OneNoteen - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra button: BitComet Search - {461CC20B-FB6E-4f16-8FE8-C29359DB100E} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.7.4.dll
    O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
    O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O11 - Options group: [INTERNATIONAL] International*
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
    O17 - HKLM\System\CCS\Services\Tcpip\..\{A358F100-6066-46B1-B5F1-6BB6EDC928F3}: NameServer = 212.116.32.218 212.116.32.222
    O17 - HKLM\System\CCS\Services\Tcpip\..\{D006D592-051D-4632-BC62-D2A826E6F1B2}: NameServer = 212.116.32.218,212.116.32.222
    O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
    O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
    O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
    O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll
    O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\
    O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
    O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Unknown owner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" -r (file missing)
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
    O23 - Service: Spyware Doctor Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe
    O23 - Service: Spyware Doctor Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe
     
    SlimJoe, Aug 2, 2007
    #1
  2. Auttaja

    Auttaja Guest

    Moron! :)

    =========

    Avaa hijackthis merkkaa seuraavat rivi(t) ja paina fix checked, sulje muut ohjelmat siksi aikaa.

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

    Tässä ohje miten merkataan:
    [​IMG]


    ==========

    Skannaa koneesi Ewido Online Scannerilla

    * Lataa Ewido_micro.exe tästä.
    * Tallenna tiedosto esimerkiksi työpöydälle.
    * Tuplaklikkaa Ewido_micro.exeä työpöydälläsi.
    * Ewido alkaa samantien päivittämään tunnisteitaan. Tässä voi mennä hetki.
    * Kun päivitykset on ladattu, varmista että kaikki kohdat ovat rastitettuja ikkunan vasemmassa laidassa.
    * Klikkaa vasemmalla alhaalla olevaa Start Scan -nappia.
    * Scannaus alkaa. Tässä voi kestää jonkun aikaa, riippuen tiedostojen määrästä.
    * Kun skannaus on valmis ja löytyneitä kohteita on, niin varmista, että kaikkien kohteiden vasemmalla puolella olevissa kohdissa on rastit.
    * Klikkaa Save report -nappia ja tallenna raportti vaikka työpöydälle.
    * Klikkaa Remove Infections -nappia.
    * Kun vastaat aukeavaan ilmoitukseen ok, niin kaikki saastuneet tiedostot poistetaan.
    * Poiston jälkeen voit sammuttaa Ewido Online Scannerin painamalla yläkulmassa olevaa punaista rastia.
    * Käynnistä kone nyt uudelleen ja postita tallentamasi raportti viestiketjuusi
    ==========


    Loistava ohje tietokoneeen nopeuttamiseksi

    http://neko.1g.fi/ohje/hidastelua.html

    ==========

    Jos sinulla ei ole tätä java versiota (6.2): Vanha java saastuttaa helposti koneesi!

    Javan päivitys ja välimuistin tyhjennys:

    1. Klikkaa Käynnistä -> Ohjauspaneeli ja tupla-klikkaa Lisää tai poista sovellus Ohjauspaneelissa.
    2. Etsi listasta kaikki entiset Java versiosi. (J2SE Runtime Environment.... )
    Niissä pitäisi olla seuraava kuva vieressä: [​IMG]
    3. Valitse kaikki entiset Java versiosi ja valitse Poista.
    4. Asenna uusin Java päivitys seuraavasta linkistä..
    5. Käynnistä kone uudelleen asennuksen jälkeen:

    http://java.sun.com/javase/downloads/index.jsp
    tai http://www.filehippo.com/download_java_runtime/

    Rullaa alas kohteeseen Java Runtime Environment (JRE) 6u2

    Paina Download

    Ruksaa Accept, ota offline installation, tallenna vaikka työpöydälle ja asenna se.

    6. Käynnistyksen jälkeen, mene takaisin Ohjauspaneeliin ja avaa Java asetuksesi (Muita Ohjauspaneelin asetuksia -> Java kahvikuppi).

    7. General Settings -osion alla, vedä liukusäädintä (Disk Space) pienemmälle, ja klikkaa Delete Files -nappia.

    (Jotkut javapohjaiset ohjelmat saattavat tarvita enemmän levytilaa.
    Jos huomaat säädön pienentämisen jälkeen koneessa hitautta, siirrä liukusäädintä isommalle    ).

    8. Varmista että kaikki kaksi valintaa ovat rastitettuja:

    *Applications and Applets

    *Trace and Log Files


    Ja paina OK -nappia

    9. Klikkaa OK "Temporary Files Settings" -ikkunassasi.

    10. Klikkaa OK jättääksesi Java asetusikkunasi.

    ==========

    Lataa Deckard's System Scanner Työpöydällesi.

    Huomioi: Sinulla tulee olla Järjestelmänvalvojan oikeudet ajaaksesi ohjelman.

    [*]Sulje kaikki avoimet ikkunat ja ohjelmat.
    [*]Tupla Klikkaa Dss.exe tiedostoa ajaaksesi ohjelman, seuraa ohjeita.
    [*]Kun Scannaus on valmis 2 textitiedostoa pitäisi avautua, Main.txt ja extra.txt
    [*]Näppäile Kopioi ( CTRL+A -> CTRL + C ) ja liitä ( CTRL + V )
    [*]kopioi ja liitä Extra.txt & Main.txt sisältö seuraavaan vastaukseesi.

    ja ewido online skannerin raportti
     
    Auttaja, Aug 2, 2007
    #2
  3. SlimJoe

    SlimJoe Regular member

    Joined:
    Apr 21, 2007
    Messages:
    285
    Likes Received:
    0
    Trophy Points:
    26
    Deckard's System Scanner v20070729.57
    Run by Admin on 2007-08-03 at 11:18:22
    Computer is in Normal Mode.
    --------------------------------------------------------------------------------



    -- HijackThis (run as Admin.exe) -----------------------------------------------

    Logfile of HijackThis v1.99.1
    Scan saved at 11:18:34, on 3.8.2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.5730.0011)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\csrss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
    C:\WINDOWS\Samsung\PanelMgr\ssmmgr.exe
    C:\WINDOWS\SOUNDMAN.EXE
    C:\WINDOWS\system32\RUNDLL32.EXE
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\oodag.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\alg.exe
    C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe
    C:\WINDOWS\system32\ntvdm.exe
    C:\Program Files\Internet Download Manager\IEMonitor.exe
    C:\Download\ewido_micro.exe
    C:\Documents and Settings\Admin\Työpöytä\dss.exe
    C:\DOCUME~1\Admin\APPLIC~1\Opera\Opera\Admin.exe

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy.kponet.fi:8080
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
    O2 - BHO: IDMIEHlprObj Class - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
    O2 - BHO: BitComet Helper - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.7.4.dll
    O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_12\bin\ssv.dll
    O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe"
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [Samsung PanelMgr] C:\WINDOWS\Samsung\PanelMgr\ssmmgr.exe /autorun
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [OODefragTray] C:\WINDOWS\system32\oodtray.exe
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
    O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
    O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
    O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm
    O8 - Extra context menu item: Download All Links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
    O8 - Extra context menu item: Download Using &BitSpirit - C:\Program Files\BitSpirit\bsurl.htm
    O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
    O8 - Extra context menu item: V&ie Microsoft Exceliin - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_12\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_12\bin\ssv.dll
    O9 - Extra button: Web Anti-Virus statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll
    O9 - Extra button: Lähetä OneNoteen - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: Läh&etä OneNoteen - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra button: BitComet Search - {461CC20B-FB6E-4f16-8FE8-C29359DB100E} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.7.4.dll
    O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
    O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O11 - Options group: [INTERNATIONAL] International*
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} - http://download.bitdefender.com/resources/scan8/oscan8.cab
    O17 - HKLM\System\CCS\Services\Tcpip\..\{A358F100-6066-46B1-B5F1-6BB6EDC928F3}: NameServer = 212.116.32.218 212.116.32.222
    O17 - HKLM\System\CCS\Services\Tcpip\..\{D006D592-051D-4632-BC62-D2A826E6F1B2}: NameServer = 212.116.32.218,212.116.32.222
    O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
    O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
    O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
    O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll
    O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\
    O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
    O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Unknown owner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" -r (file missing)
    O23 - Service: NetLimiter (nlsvc) - Locktime Software - C:\Program Files\NetLimiter 2 Pro\nlsvc.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
    O23 - Service: Spyware Doctor Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe
    O23 - Service: Spyware Doctor Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe


    -- Files created between 2007-07-03 and 2007-08-03 -----------------------------

    2007-08-03 10:50:07 0 d-------- C:\Documents and Settings\Admin\Application Data\Opera
    2007-08-03 10:50:01 0 d-------- C:\Program Files\Opera
    2007-08-03 10:44:46 0 dr-h----- C:\Documents and Settings\Admin\Recent
    2007-08-03 10:29:29 0 d-------- C:\Documents and Settings\Admin\Application Data\Locktime
    2007-08-03 10:28:56 0 d-------- C:\Documents and Settings\All Users\Application Data\Locktime
    2007-08-03 10:28:51 0 d-------- C:\Program Files\NetLimiter 2 Pro
    2007-08-03 10:17:01 0 d-------- C:\WINDOWS\LastGood
    2007-08-03 10:08:20 0 d-------- C:\Documents and Settings\Admin\Application Data\WinPatrol
    2007-08-03 10:08:02 0 d-------- C:\Program Files\BillP Studios
    2007-08-03 10:04:34 153088 --a------ C:\WINDOWS\system32\UNRAR3.dll
    2007-08-03 10:04:34 75264 --a------ C:\WINDOWS\system32\unacev2.dll
    2007-08-03 10:04:32 0 d-------- C:\Program Files\Trojan Remover
    2007-08-03 10:04:32 0 d-------- C:\Documents and Settings\Admin\Application Data\Simply Super Software
    2007-08-03 09:59:09 299008 -----n--- C:\WINDOWS\Setup1.exe <Not Verified; Technotel; Setup>
    2007-08-03 09:59:04 73216 --a------ C:\WINDOWS\ST6UNST.EXE <Not Verified; Microsoft Corporation; Microsoft® Visual Basic for Windows>
    2007-08-03 09:57:20 0 d-------- C:\Program Files\RogueRemover FREE
    2007-08-03 09:31:49 0 d-------- C:\Documents and Settings\Admin\.housecall6.6
    2007-08-03 09:19:48 0 d-------- C:\Program Files\Bazooka Scanner
    2007-08-03 08:09:14 30 --a------ C:\deleteprefetch.bat
    2007-08-02 17:47:42 0 d-------- C:\Bases
    2007-08-02 15:05:22 0 d-------- C:\WINDOWS\system32\oodag
    2007-08-02 14:20:24 0 d-------- C:\Program Files\OO Software
    2007-08-02 13:49:56 0 d-------- C:\Program Files\UltraISO
    2007-08-01 17:38:43 0 d-------- C:\Documents and Settings\Admin\Application Data\IDM
    2007-08-01 17:38:43 0 d-------- C:\Documents and Settings\Admin\Application Data\DMCache
    2007-08-01 17:38:36 0 d-------- C:\Program Files\Internet Download Manager
    2007-08-01 17:19:37 0 d-------- C:\Documents and Settings\Admin\Pavark
    2007-08-01 15:34:45 0 d-------- C:\Program Files\Uniblue
    2007-08-01 12:31:35 0 d-------- C:\Ammu
    2007-08-01 12:05:19 0 d-------- C:\Program Files\AviFiXP
    2007-08-01 11:39:41 0 d-------- C:\Program Files\Spyware Doctor
    2007-08-01 11:39:41 0 d-------- C:\Documents and Settings\Admin\Application Data\PC Tools
    2007-08-01 10:54:55 0 d-------- C:\Program Files\PC Drivers HeadQuarters
    2007-07-31 16:35:54 0 d-------- C:\WINDOWS\BDOSCAN8
    2007-07-31 14:33:14 0 d-------- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
    2007-07-31 14:33:09 0 d-------- C:\Program Files\SUPERAntiSpyware
    2007-07-31 14:33:09 0 d-------- C:\Documents and Settings\Admin\Application Data\SUPERAntiSpyware.com
    2007-07-31 08:41:43 0 d-------- C:\Program Files\DocRepair
    2007-07-30 15:13:22 0 d-------- C:\Program Files\offline downloader
    2007-07-30 14:40:30 0 d-------- C:\Program Files\SpywareBlaster
    2007-07-30 14:33:37 0 d-------- C:\Documents and Settings\Admin\Application Data\DivX
    2007-07-30 11:03:23 0 d-------- C:\Maa
    2007-07-30 09:00:06 0 d-------- C:\Program Files\KGB Archiver
    2007-07-30 08:48:39 0 d-a------ C:\Documents and Settings\All Users\Application Data\TEMP
    2007-07-30 08:48:35 4352 --a------ C:\WINDOWS\system32\drivers\usbstub.sys
    2007-07-30 08:48:30 23040 --a------ C:\WINDOWS\system32\drivers\vuhub.sys
    2007-07-30 08:30:04 0 d-------- C:\Program Files\DivX
    2007-07-29 17:50:58 0 d-------- C:\WINDOWS\Desktop
    2007-07-29 17:50:01 0 d-------- C:\Program Files\FreshDevices
    2007-07-29 17:16:35 0 d-------- C:\Program Files\DocumentsRescue Pro
    2007-07-29 13:06:33 0 d-------- C:\Program Files\ASF-AVI-RM-WMV Repair
    2007-07-29 13:01:02 0 d-------- C:\Program Files\All Media Fixer
    2007-07-29 09:07:49 0 d-------- C:\Program Files\Trillian
    2007-07-29 08:55:49 0 d-------- C:\Program Files\URUSoft
    2007-07-29 08:49:21 0 d-------- C:\Documents and Settings\Admin\AbiSuite
    2007-07-29 08:48:20 0 d-------- C:\Program Files\AbiSuite2
    2007-07-28 14:18:15 0 d-------- C:\Program Files\Word Cleaner
    2007-07-28 13:38:30 0 d-------- C:\WSOY
    2007-07-28 10:47:33 0 d-------- C:\Program Files\Recovery for Word
    2007-07-26 17:10:46 0 d-------- C:\Program Files\PowerISO
    2007-07-26 15:48:58 0 d-------- C:\Program Files\ICEOWS
    2007-07-26 15:01:16 0 d-------- C:\Program Files\WinTricks v5.0a
    2007-07-26 14:54:56 1724650 --a------ C:\tminstall.exe
    2007-07-26 14:52:18 0 d--h----- C:\WINDOWS\system32\GroupPolicy
    2007-07-26 12:16:44 0 d-------- C:\Documents and Settings\All Users\Application Data\nView_Profiles
    2007-07-26 12:08:39 0 d-------- C:\Program Files\DAEMON Tools
    2007-07-26 12:05:11 0 d-------- C:\Documents and Settings\Admin\Application Data\DAEMON Tools Pro
    2007-07-26 12:04:49 0 d-------- C:\Program Files\DAEMON Tools Pro
    2007-07-26 12:00:06 0 d-------- C:\Program Files\Microsoft IntelliPoint
    2007-07-26 11:56:41 685816 --a------ C:\WINDOWS\system32\drivers\sptd.sys
    2007-07-26 11:41:02 45056 --a------ C:\WINDOWS\system32\WNASPI32.DLL <Not Verified; Adaptec; Adaptec's ASPI Layer>
    2007-07-26 11:41:02 16877 --a------ C:\WINDOWS\system32\drivers\ASPI32.SYS <Not Verified; Adaptec; Adaptec's ASPI Layer>
    2007-07-26 11:41:02 4672 --a------ C:\WINDOWS\system\WOWPOST.EXE <Not Verified; Adaptec; Adaptec's ASPI Layer>
    2007-07-26 11:41:02 5600 --a------ C:\WINDOWS\system\WINASPI.DLL <Not Verified; Adaptec; Adaptec's ASPI Layer>
    2007-07-26 11:40:27 0 d-------- C:\adaptec
    2007-07-26 11:40:18 522682 --a------ C:\aspi_471a2.exe
    2007-07-26 11:36:46 0 d-------- C:\Documents and Settings\Admin\Application Data\Ashampoo
    2007-07-26 11:36:21 0 d-------- C:\Documents and Settings\All Users\Application Data\ashampoo
    2007-07-26 11:36:09 0 d-------- C:\Program Files\Ashampoo
    2007-07-26 11:21:57 49152 --a------ C:\ul_install.exe
    2007-07-26 11:21:56 200767 --a------ C:\ul_format.exe
    2007-07-26 09:40:01 0 d-------- C:\Documents and Settings\Admin\Application Data\TeraCopy
    2007-07-26 09:39:59 0 d-------- C:\Program Files\TeraCopy
    2007-07-26 09:27:31 0 d-------- C:\Program Files\Driver-Soft
    2007-07-25 17:50:49 0 d-------- C:\Program Files\DriverScan
    2007-07-24 17:08:14 0 d-------- C:\Documents and Settings\Admin\Application Data\Uniblue
    2007-07-24 16:55:27 10084 --a------ C:\WINDOWS\msvrc20.dll
    2007-07-24 16:55:26 0 d-------- C:\Program Files\IObit
    2007-07-24 14:40:04 0 d-------- C:\Program Files\BitComet
    2007-07-24 10:23:26 0 d-------- C:\Program Files\Realtek AC97
    2007-07-24 09:29:28 23600 --a------ C:\WINDOWS\system32\drivers\TVICHW32.SYS <Not Verified; EnTech Taiwan; TVicHW32 Generic Device Driver for Windows 95/98/ME/NT/2000/2003/XP/XP64>
    2007-07-24 09:24:04 0 d-------- C:\Program Files\DC++
    2007-07-24 09:23:18 0 d-------- C:\Program Files\Lavalys
    2007-07-24 09:13:16 0 d-------- C:\Program Files\RubyMicro Software
    2007-07-24 09:12:44 0 d-------- C:\WINDOWS\Downloaded Installations
    2007-07-24 09:01:14 0 d-------- C:\Documents and Settings\All Users\Application Data\PC Drivers Headquarters
    2007-07-24 08:47:49 0 d-------- C:\WINDOWS\Sun
    2007-07-24 08:46:19 0 d-------- C:\Program Files\Java
    2007-07-24 08:46:18 0 d-------- C:\Program Files\Common Files\Java
    2007-07-24 08:22:43 671 --a------ C:\WINDOWS\mozver.dat
    2007-07-24 08:21:39 0 d-------- C:\Documents and Settings\Admin\Application Data\Sun
    2007-07-23 20:16:41 0 d-------- C:\WINDOWS\system32\fi-fi
    2007-07-23 20:14:51 0 d-------- C:\WINDOWS\network diagnostic
    2007-07-23 20:12:43 0 d-------- C:\Program Files\MSXML 4.0
    2007-07-23 19:51:40 5120 --a------ C:\WINDOWS\system32\ff_vfw.dll
    2007-07-23 19:51:39 0 d-------- C:\Program Files\ffdshow
    2007-07-23 19:45:10 0 d-------- C:\Program Files\xp-AntiSpy
    2007-07-23 17:46:24 0 d-------- C:\Program Files\Windows Media Connect 2
    2007-07-23 17:44:26 0 d-------- C:\Documents and Settings\Admin\Application Data\vlc
    2007-07-23 17:43:57 0 d-------- C:\WINDOWS\system32\LogFiles
    2007-07-23 17:43:57 0 d-------- C:\WINDOWS\system32\drivers\UMDF
    2007-07-23 17:41:23 0 d-------- C:\Documents and Settings\Admin\Application Data\Macromedia
    2007-07-23 17:12:51 0 d-------- C:\Documents and Settings\All Users\Application Data\Office Genuine Advantage
    2007-07-23 17:12:45 0 d-------- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
    2007-07-23 15:41:27 0 d-------- C:\Program Files\Paint.NET
    2007-07-23 15:32:27 0 d-------- C:\WINDOWS\Recover Lost Data
    2007-07-23 15:32:26 0 d-------- C:\Program Files\StompSoft
    2007-07-23 15:16:28 0 d-------- C:\Download
    2007-07-23 15:15:54 0 d-------- C:\Program Files\Star Downloader
    2007-07-23 14:08:17 0 d-------- C:\Documents and Settings\Admin\Application Data\WinRAR
    2007-07-23 14:06:25 0 d-------- C:\Program Files\Steam
    2007-07-23 14:03:30 0 d--hs---- C:\Documents and Settings\Admin\UserData
    2007-07-23 11:09:58 60416 --a------ C:\WINDOWS\ALCFDRTM.EXE <Not Verified; Realtek Semiconductor Corp.; Realtek ALCFDRTM>
    2007-07-23 11:09:56 0 d-------- C:\WINDOWS\system32\Lang
    2007-07-23 11:07:11 0 d-------- C:\Documents and Settings\Admin\Application Data\SmarThru4
    2007-07-23 11:07:10 163840 -----n--- C:\WINDOWS\system32\SecSNMP.dll <Not Verified; ; SNMPManager>
    2007-07-23 11:07:10 41984 -----n--- C:\WINDOWS\system32\drivers\DgivEcpXP.sys <Not Verified; Samsung Electronics Co., Ltd.; Samsung Electronics Co., Ltd. VECP for Windows 2000, XP>
    2007-07-23 11:06:58 465408 --a------ C:\WINDOWS\system32\LTRPR13n.DLL <Not Verified; LEAD Technologies, Inc.; LEADTOOLS(r) COM for Win32>
    2007-07-23 11:06:58 326144 --a------ C:\WINDOWS\system32\LTRIO13N.DLL <Not Verified; LEAD Technologies, Inc.; LEADTOOLS(r) COM for Win32>
    2007-07-23 11:06:58 931840 --a------ C:\WINDOWS\system32\LTR13N.DLL <Not Verified; LEAD Technologies, Inc.; LEADTOOLS(r) COM for Win32>
    2007-07-23 11:06:57 212480 --a------ C:\WINDOWS\system32\PCDLIB32.DLL <Not Verified; Eastman Kodak; Kodak Photo CD Access Developer Toolkit>
    2007-07-23 11:06:55 82432 --a------ C:\WINDOWS\system32\msxml4r.dll <Not Verified; Microsoft Corporation; Microsoft(R) MSXML 4.0 SP1>
    2007-07-23 11:06:55 0 d-------- C:\Program Files\Common Files\SRC Shared
    2007-07-23 11:06:50 23040 --a------ C:\WINDOWS\system32\irisco32.dll
    2007-07-23 11:06:20 0 d-------- C:\Program Files\Readiris10
    2007-07-23 11:06:00 0 d-------- C:\Program Files\SmarThru 4
    2007-07-23 11:05:37 462848 --a------ C:\WINDOWS\ssndii.exe <Not Verified; ; Non-Device INF Installer>
    2007-07-23 11:05:37 0 d-------- C:\WINDOWS\Samsung
    2007-07-23 11:04:07 73728 -ra------ C:\WINDOWS\WiaInst.exe <Not Verified; ; INF Scanner Installer>
    2007-07-23 11:03:42 0 d-------- C:\WINDOWS\system32\drivers\SAMSUNG
    2007-07-23 11:03:41 41984 -----n--- C:\WINDOWS\system32\drivers\DGIVECP.SYS <Not Verified; Samsung Electronics Co., Ltd.; Samsung Electronics Co., Ltd. VECP for Windows 2000, XP>
    2007-07-23 11:03:29 0 d-------- C:\Program Files\SAMSUNG
    2007-07-23 10:42:37 0 d-------- C:\Program Files\VideoLAN
    2007-07-23 10:42:19 0 d-------- C:\Program Files\7-Zip
    2007-07-23 10:35:27 0 d-------- C:\Program Files\Foxit Software
    2007-07-23 10:25:00 0 --a------ C:\WINDOWS\nsreg.dat
    2007-07-23 10:23:43 0 d-------- C:\Program Files\ToniArts
    2007-07-23 10:19:49 0 d-------- C:\Program Files\Microsoft Works
    2007-07-23 10:19:41 0 d-------- C:\Program Files\MSBuild
    2007-07-23 10:12:24 0 d-------- C:\WINDOWS\SHELLNEW
    2007-07-23 10:11:35 0 d-------- C:\Documents and Settings\All Users\Application Data\Microsoft Help
    2007-07-23 10:10:58 0 dr-h----- C:\MSOCache
    2007-07-23 10:10:34 0 d-------- C:\Documents and Settings\All Users\Application Data\NVIDIA
    2007-07-23 10:03:17 0 d-------- C:\Program Files\BitSpirit
    2007-07-23 10:03:04 0 d-------- C:\Program Files\CCleaner
    2007-07-23 10:02:54 0 d-------- C:\WINDOWS\system32\PreInstall
    2007-07-23 10:02:51 0 d--h----- C:\WINDOWS\$hf_mig$
    2007-07-23 10:01:32 0 d-------- C:\Downloads
    2007-07-23 09:59:51 0 d-------- C:\jämäpelit
    2007-07-23 09:58:36 49152 --a------ C:\WINDOWS\system32\ChCfg.exe
    2007-07-23 09:58:34 315392 --a------ C:\WINDOWS\alcupd.exe <Not Verified; Realtek Semiconductor Corp.; Realtek AC'97 Update driver Tool>
    2007-07-23 09:58:27 192512 -----n--- C:\WINDOWS\RtlExUpd.dll <Not Verified; Realtek Semiconductor Corp.; RtlExUpd Dynamic Link Library>
    2007-07-23 09:53:39 0 d-------- C:\Documents and Settings\Admin\Application Data\foobar2000
    2007-07-23 09:53:37 0 d-------- C:\Program Files\foobar2000
    2007-07-23 09:53:19 0 d-------- C:\WINDOWS\system32\SoftwareDistribution
    2007-07-22 20:37:32 249856 --a------ C:\WINDOWS\system32\todgub7.dll <Not Verified; ComponentOne LLC; TODG7>
    2007-07-22 20:37:32 76288 --a------ C:\WINDOWS\system32\SSFM1032.DLL <Not Verified; Sheridan Software Systems, Inc; Sheridan Software Systems, Inc>
    2007-07-22 20:37:32 77824 --a------ C:\WINDOWS\system32\MSBIND.DLL <Not Verified; Microsoft Corporation; MSBind Object Library>
    2007-07-22 20:37:32 123392 --a------ C:\WINDOWS\system32\DZIP32.DLL <Not Verified; Inner Media, Inc.; DynaZIP-32>
    2007-07-22 20:37:32 100352 --a------ C:\WINDOWS\system32\DUNZIP32.DLL <Not Verified; Inner Media, Inc.; DynaZIP-32>
    2007-07-22 20:37:31 1167360 --a------ C:\WINDOWS\system32\sscsdk80.dll <Not Verified; Three |D| Graphics, Inc.; Amigo>
    2007-07-22 20:37:31 100352 --a------ C:\WINDOWS\system32\pg32conv.dll
    2007-07-22 20:37:31 307200 --a------ C:\WINDOWS\system32\p2sodbc.dll <Not Verified; Crystal Decisions, Inc.; Crystal Reports>
    2007-07-22 20:37:31 17920 --a------ C:\WINDOWS\system32\Implode.dll
    2007-07-22 20:37:31 671801 --a------ C:\WINDOWS\system32\exlate32.dll <Not Verified; Seagate Software, Inc.; Crystal Reports For Windows>
    2007-07-22 20:37:31 14336 --a------ C:\WINDOWS\system32\delphimm.dll
    2007-07-22 20:37:31 176128 --a------ C:\WINDOWS\system32\CW3215.DLL <Not Verified; Borland International; Borland C++ 4.50>
    2007-07-22 20:37:31 389120 --a------ C:\WINDOWS\system32\AXA32.DLL
    2007-07-22 20:37:30 5038137 --a------ C:\WINDOWS\system32\crpe32.dll <Not Verified; Crystal Decisions, Inc.; Crystal Reports>
    2007-07-22 20:37:30 622592 --a------ C:\WINDOWS\system32\Crpaig80.dll <Not Verified; Seagate Software; Seagate Crystal Reports for Windows>
    2007-07-22 20:37:30 5206077 --a------ C:\WINDOWS\system32\craxdrt.dll <Not Verified; Seagate Software, Inc.; Crystal Reports 8.5 ActiveX Designer.>
    2007-07-22 20:37:29 0 d-------- C:\WINDOWS\Crystal
    2007-07-22 20:37:29 0 d-------- C:\Program Files\Seagate Software
    2007-07-22 20:37:25 0 d-------- C:\Bedriftw
    2007-07-22 20:37:21 151552 --a------ C:\WINDOWS\system32\rdocurs.dll <Not Verified; Microsoft Corporation; Microsoft RDO Client Cursor Library>
    2007-07-22 20:37:21 397312 -----n--- C:\WINDOWS\system32\MSRDO20.DLL <Not Verified; Microsoft Corporation; Microsoft Corporation Remote Data Object>
    2007-07-22 20:37:18 0 d-------- C:\Program Files\Common Files\Borland Shared
    2007-07-22 20:33:15 0 d-------- C:\WINDOWS\nview
    2007-07-22 20:32:47 0 d-------- C:\NVIDIA
    2007-07-22 20:29:32 139264 -ra------ C:\WINDOWS\system32\IDEproperty.dll <Not Verified; ; IDEproperty Dynamic Link Library>
    2007-07-22 20:29:32 49024 -ra------ C:\WINDOWS\system32\drivers\sisidex.sys <Not Verified; Windows (R) 2000 DDK provider; Windows (R) 2000 DDK driver>
    2007-07-22 20:29:29 9472 --a------ C:\WINDOWS\system32\drivers\sisperf.sys <Not Verified; Silicon Integrated Systems Corp.; SiS Filer Driver>
    2007-07-22 20:29:25 0 d-------- C:\WINDOWS\system32\ReinstallBackups
    2007-07-22 20:29:16 302592 --a------ C:\WINDOWS\IsUn040b.exe <Not Verified; InstallShield Software Corporation; InstallShield® unInstaller>
    2007-07-22 20:19:27 0 d-------- C:\Documents and Settings\Admin\Application Data\Mozilla
    2007-07-22 20:13:52 0 d--h----- C:\Program Files\InstallShield Installation Information
    2007-07-22 20:13:46 0 d-------- C:\Program Files\Common Files\InstallShield
    2007-07-22 20:13:27 5824 --a------ C:\WINDOWS\system32\drivers\ASUSHWIO.SYS
    2007-07-22 19:52:11 1056768 --a------ C:\WINDOWS\system32\ROBOEX32.DLL <Not Verified; eHelp Corporation.; RoboHELP for WinHelp 9>
    2007-07-22 19:43:34 0 d-------- C:\Documents and Settings\Admin\Application Data\gtopala
    2007-07-22 19:34:54 0 d-------- C:\Program Files\TuneUp Utilities 2007
    2007-07-22 19:34:54 0 d-------- C:\Documents and Settings\Admin\Application Data\TuneUp Software
    2007-07-22 19:33:03 0 d-------- C:\Documents and Settings\All Users\Application Data\TuneUp Software
    2007-07-22 19:33:01 0 d-------- C:\Program Files\Common Files\Wise Installation Wizard
    2007-07-22 19:29:08 0 d--hs---- C:\WINDOWS\Installer
    2007-07-22 19:29:08 0 d-------- C:\Program Files\Common Files\ODBC
    2007-07-22 19:29:05 0 dr------- C:\Program Files
    2007-07-22 19:29:05 0 d-------- C:\Program Files\Common Files
    2007-07-22 19:29:05 0 d-------- C:\Program Files\Common Files\SpeechEngines
    2007-07-22 19:28:42 0 d--h----- C:\Documents and Settings\Default User\Verkkoympäristö
    2007-07-22 19:28:42 0 d-------- C:\Documents and Settings\Default User\Työpöytä
    2007-07-22 19:28:42 0 d--h----- C:\Documents and Settings\Default User\Tulostinympäristö
    2007-07-22 19:28:42 0 d-------- C:\Documents and Settings\Default User\Suosikit
    2007-07-22 19:28:42 0 dr-h----- C:\Documents and Settings\Default User\SendTo
    2007-07-22 19:28:42 0 d--h----- C:\Documents and Settings\Default User\Recent
    2007-07-22 19:28:42 0 d--h----- C:\Documents and Settings\Default User\Mallit
    2007-07-22 19:28:42 0 dr-h----- C:\Documents and Settings\Default User\Local Settings
    2007-07-22 19:28:42 0 dr------- C:\Documents and Settings\Default User\Käynnistä-valikko
    2007-07-22 19:28:42 0 d---s---- C:\Documents and Settings\Default User\Cookies
    2007-07-22 19:28:42 0 d-------- C:\Documents and Settings\All Users\Työpöytä
    2007-07-22 19:28:42 0 dr------- C:\Documents and Settings\All Users\Tiedostot
    2007-07-22 19:28:42 0 d-------- C:\Documents and Settings\All Users\Suosikit
    2007-07-22 19:28:42 0 d--h----- C:\Documents and Settings\All Users\Mallit
    2007-07-22 19:28:42 0 dr------- C:\Documents and Settings\All Users\Käynnistä-valikko
    2007-07-22 19:28:30 0 d-------- C:\WINDOWS\system32\CatRoot2
    2007-07-22 19:28:30 0 d-------- C:\WINDOWS\system32\CatRoot
    2007-07-22 19:28:24 0 dr-h----- C:\Documents and Settings\Default User\Application Data
    2007-07-22 19:28:24 0 d---s---- C:\Documents and Settings\Default User\Application Data\Microsoft
    2007-07-22 19:28:24 0 dr-h----- C:\Documents and Settings\All Users\Application Data
    2007-07-22 19:28:24 0 d---s---- C:\Documents and Settings\All Users\Application Data\Microsoft
    2007-07-22 19:28:07 0 d--hs---- C:\System Volume Information
    2007-07-22 19:28:07 0 d-------- C:\Documents and Settings
    2007-07-22 19:27:07 161640 --a------ C:\WINDOWS\system32\drivers\ntspppoe.sys <Not Verified; Efficient Networks, Inc.; tango>
    2007-07-22 19:27:06 0 d-------- C:\Program Files\Efficient Networks
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\WinSxS
    2007-07-22 19:23:46 0 dr------- C:\WINDOWS\Web
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\twain_32
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\wins
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\wbem
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\usmt
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\spool
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\ShellExt
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\Setup
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\ras
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\oobe
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\npp
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\mui
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\inetsrv
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\IME
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\icsxml
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\ias
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\export
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\drivers
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\drivers\etc
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\drivers\disdn
    2007-07-22 19:23:46 0 dr-hs--c- C:\WINDOWS\system32\dllcache
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\dhcp
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\config
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\3com_dmi
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\3076
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\2052
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\1054
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\1042
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\1041
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\1037
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\1035
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\1033
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\1031
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\1028
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system32\1025
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\system
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\security
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\Resources
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\repair
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\Provisioning
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\PeerNet
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\pchealth
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\mui
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\msapps
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\msagent
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\Media
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\java
    2007-07-22 19:23:46 0 d--h----- C:\WINDOWS\inf
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\ime
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\Help
    2007-07-22 19:23:46 0 dr--s---- C:\WINDOWS\Fonts
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\ehome
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\Driver Cache
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\Debug
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\Cursors
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\Connection Wizard
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\Config
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\AppPatch
    2007-07-22 19:23:46 0 d-------- C:\WINDOWS\addins
    2007-07-22 19:18:45 0 d-------- C:\Pelit
    2007-07-22 19:02:21 82258 --a------ C:\WINDOWS\system32\drivers\klin.dat
    2007-07-22 19:02:21 82258 --a------ C:\WINDOWS\system32\drivers\klick.dat
    2007-07-22 19:02:00 0 d-------- C:\Program Files\Kaspersky Lab
    2007-07-22 19:02:00 0 d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
    2007-07-22 19:01:58 418848 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.dat
    2007-07-22 19:01:58 4836640 --ahs---- C:\WINDOWS\system32\drivers\fidbox.dat
    2007-07-22 18:58:15 0 d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files
    2007-07-22 18:03:51 0 d-------- C:\Program Files\EASEUS
    2007-07-22 18:01:55 0 d-------- C:\Documents and Settings\Admin\Application Data\Cimaware
    2007-07-22 18:01:20 0 d-------- C:\Program Files\Cimaware
    2007-07-22 17:48:45 0 d-------- C:\Documents and Settings\Admin\Application Data\Thinstall
    2007-07-22 17:13:22 0 d-------- C:\WINDOWS\pss
    2007-07-22 17:11:41 0 d-------- C:\Documents and Settings\Admin\Application Data\Help
    2007-07-22 17:11:38 0 d-------- C:\Program Files\davory
    2007-07-22 17:11:03 0 d-------- C:\Program Files\Smart PC Solutions
    2007-07-22 17:07:15 0 d-------- C:\Program Files\File Scavenger 2.1
    2007-07-22 17:07:06 306688 --a------ C:\WINDOWS\IsUninst.exe <Not Verified; InstallShield Software Corporation; InstallShield® unInstaller>
    2007-07-22 17:06:29 0 d-------- C:\Documents and Settings\Admin\WINDOWS
    2007-07-22 17:05:24 0 d-------- C:\Program Files\DiskInternals
    2007-07-22 17:03:28 0 d-------- C:\Documents and Settings\Admin\Application Data\Identities
    2007-07-22 17:03:26 0 dr------- C:\Documents and Settings\Admin\Omat tiedostot
    2007-07-22 17:03:22 0 d--h----- C:\Documents and Settings\Admin\Verkkoympäristö
    2007-07-22 17:03:22 0 d-------- C:\Documents and Settings\Admin\Työpöytä
    2007-07-22 17:03:22 0 d--h----- C:\Documents and Settings\Admin\Tulostinympäristö
    2007-07-22 17:03:22 0 dr------- C:\Documents and Settings\Admin\Suosikit
    2007-07-22 17:03:22 0 dr-h----- C:\Documents and Settings\Admin\SendTo
    2007-07-22 17:03:22 3932160 --a------ C:\Documents and Settings\Admin\NTUSER.DAT
    2007-07-22 17:03:22 0 d--h----- C:\Documents and Settings\Admin\Mallit
    2007-07-22 17:03:22 0 d--h----- C:\Documents and Settings\Admin\Local Settings
    2007-07-22 17:03:22 0 dr------- C:\Documents and Settings\Admin\Käynnistä-valikko
    2007-07-22 17:03:22 0 d--hs---- C:\Documents and Settings\Admin\Cookies
    2007-07-22 17:03:22 0 dr-h----- C:\Documents and Settings\Admin\Application Data
    2007-07-22 17:02:21 0 d-------- C:\WINDOWS\SoftwareDistribution
    2007-07-22 17:02:20 0 d-------- C:\WINDOWS\Prefetch
    2007-07-22 17:02:19 0 d---s---- C:\WINDOWS\system32\Microsoft
    2007-07-22 17:02:18 229376 --a------ C:\Documents and Settings\LocalService\NTUSER.DAT
    2007-07-22 17:02:18 0 d--h----- C:\Documents and Settings\LocalService\Local Settings
    2007-07-22 17:02:18 0 d--hs---- C:\Documents and Settings\LocalService\Cookies
    2007-07-22 17:02:18 0 d-------- C:\Documents and Settings\LocalService\Application Data
    2007-07-22 17:02:18 0 d---s---- C:\Documents and Settings\LocalService\Application Data\Microsoft
    2007-07-22 17:01:46 225280 --a------ C:\Documents and Settings\NetworkService\NTUSER.DAT
    2007-07-22 17:01:46 0 d--h----- C:\Documents and Settings\NetworkService\Local Settings
    2007-07-22 17:01:46 0 d---s---- C:\Documents and Settings\NetworkService\Cookies
    2007-07-22 17:01:46 0 d-------- C:\Documents and Settings\NetworkService\Application Data
    2007-07-22 17:01:46 0 d---s---- C:\Documents and Settings\NetworkService\Application Data\Microsoft
    2007-07-22 16:59:03 0 d-------- C:\WINDOWS\system32\xircom
    2007-07-22 16:59:03 0 d-------- C:\Program Files\microsoft frontpage
    2007-07-22 16:58:51 229376 ---h----- C:\Documents and Settings\Default User\NTUSER.DAT
    2007-07-22 16:58:44 0 -rahs---- C:\MSDOS.SYS
    2007-07-22 16:58:44 0 -rahs---- C:\IO.SYS
    2007-07-22 16:58:44 0 --a------ C:\CONFIG.SYS
    2007-07-22 16:58:44 0 --a------ C:\AUTOEXEC.BAT
    2007-07-22 16:57:50 0 d--hs---- C:\Documents and Settings\All Users\DRM
    2007-07-22 16:57:41 0 dr------- C:\WINDOWS\Offline Web Pages
    2007-07-22 16:57:41 0 d---s---- C:\WINDOWS\Downloaded Program Files
    2007-07-22 16:57:32 0 d--h----- C:\Program Files\WindowsUpdate
    2007-07-22 16:57:28 0 d-------- C:\Program Files\Online Services
    2007-07-22 16:57:14 0 d-------- C:\WINDOWS\system32\DirectX
    2007-07-22 16:56:44 0 d---s---- C:\WINDOWS\Tasks
    2007-07-22 16:56:43 0 d-------- C:\Program Files\Common Files\MSSoap
    2007-07-22 16:56:40 0 d-------- C:\WINDOWS\srchasst
    2007-07-22 16:56:39 0 d-------- C:\WINDOWS\system32\Macromed
    2007-07-22 16:56:33 0 d-------- C:\Program Files\Movie Maker
    2007-07-22 16:56:25 0 d-------- C:\WINDOWS\system32\Restore
    2007-07-22 16:55:49 21672 --a------ C:\WINDOWS\system32\emptyregdb.dat
    2007-07-22 16:55:35 0 d-------- C:\WINDOWS\Registration
    2007-07-22 16:55:23 0 d-------- C:\Program Files\Messenger
    2007-07-22 16:55:19 0 d-------- C:\Program Files\MSN Gaming Zone
    2007-07-22 16:54:55 0 d-------- C:\Program Files\Windows NT
    2007-07-22 16:54:52 0 d-------- C:\WINDOWS\system32\MsDtc
    2007-07-22 16:54:51 0 d-------- C:\WINDOWS\system32\Com
    2007-07-09 22:07:50 3596288 --a------ C:\WINDOWS\system32\qt-dx331.dll
    2007-07-09 22:05:58 196608 --a------ C:\WINDOWS\system32\dtu100.dll <Not Verified; DivX, Inc.; DivX, Inc. dtu100>
    2007-07-09 22:05:58 73728 --a------ C:\WINDOWS\system32\dpl100.dll <Not Verified; DivX, Inc.; DivX, Inc. dpl100>
    2007-07-09 22:05:54 802816 --a------ C:\WINDOWS\system32\divx_xx11.dll <Not Verified; DivX, Inc.; DivX?>
    2007-07-09 22:05:54 823296 --a------ C:\WINDOWS\system32\divx_xx0c.dll <Not Verified; DivX, Inc.; DivX®>
    2007-07-09 22:05:54 823296 --a------ C:\WINDOWS\system32\divx_xx07.dll <Not Verified; DivX, Inc.; DivX®>
    2007-07-09 22:05:54 740442 --a------ C:\WINDOWS\system32\DivX.dll <Not Verified; DivX, Inc.; DivX®>
    2007-07-09 22:05:28 12288 --a------ C:\WINDOWS\system32\DivXWMPExtType.dll


    -- Find3M Report ---------------------------------------------------------------

    2007-08-01 14:57:49 366824 --a------ C:\WINDOWS\system32\perfh00B.dat
    2007-08-01 14:57:49 71202 --a------ C:\WINDOWS\system32\perfc00B.dat
    2007-07-24 14:40:19 2560 --a------ C:\WINDOWS\system32\BitCometRes.dll <Not Verified; BitComet; BitComet BCTP Helper>
    2007-07-23 11:07:11 8955 --a------ C:\Documents and Settings\Admin\Application Data\SmarThruOptions.xml
    2007-07-22 19:28:42 62 --ahs---- C:\Documents and Settings\Admin\Application Data\desktop.ini
    2007-06-29 00:43:00 1019904 --a------ C:\WINDOWS\system32\nvwimg.dll
    2007-06-29 00:43:00 1703936 --a------ C:\WINDOWS\system32\nvwdmcpl.dll
    2007-06-29 00:43:00 466944 --a------ C:\WINDOWS\system32\nvshell.dll
    2007-06-29 00:43:00 1626112 --a------ C:\WINDOWS\system32\nwiz.exe
    2007-06-29 00:43:00 1474560 --a------ C:\WINDOWS\system32\nview.dll
    2007-06-29 00:43:00 1339392 --a------ C:\WINDOWS\system32\nvdspsch.exe
    2007-06-29 00:43:00 442368 --a------ C:\WINDOWS\system32\nvappbar.exe
    2007-06-29 00:43:00 425984 --a------ C:\WINDOWS\system32\keystone.exe


    -- Registry Dump ---------------------------------------------------------------

    *Note* empty entries & legit default entries are not shown


    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "AVP"="C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" [20.06.2007 13:04]
    "NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [29.06.2007 00:43]
    "nwiz"="nwiz.exe" [29.06.2007 00:43 C:\WINDOWS\system32\nwiz.exe]
    "Samsung PanelMgr"="C:\WINDOWS\Samsung\PanelMgr\ssmmgr.exe" [16.08.2006 06:10]
    "SoundMan"="SOUNDMAN.EXE" [16.04.2007 15:28 C:\WINDOWS\soundman.exe]
    "NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [29.06.2007 00:43]
    "OODefragTray"="C:\WINDOWS\system32\oodtray.exe" [11.05.2007 02:08]

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [14.09.2004 16:12]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "SynchronousMachineGroupPolicy"=0 (0x0)
    "SynchronousUserGroupPolicy"=0 (0x0)

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
    "DisableTaskMgr"=0 (0x0)
    "NoSecCpl"=0 (0x0)
    "DisableChangePassword"=0 (0x0)
    "DisableLockWorkstation"=0 (0x0)
    "NoDispCpl"=0 (0x0)
    "NoDispBackgroundPage"=0 (0x0)
    "NoDispScrSavPage"=0 (0x0)
    "NoDispAppearancePage"=0 (0x0)
    "NoDispSettingsPage"=0 (0x0)
    "NoVisualStyleChoice"=0 (0x0)

    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
    "LinkResolveIgnoreLinkInfo"=0 (0x0)
    "NoResolveSearch"=1 (0x1)

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
    "NoActiveDesktop"=0 (0x0)
    "HideClock"=0 (0x0)
    "NoManageMyComputerVerb"=0 (0x0)
    "NoLowDiskSpaceChecks"=0 (0x0)
    "NoStartMenuPinnedList"=0 (0x0)
    "NoStartMenuMFUprogramsList"=0 (0x0)
    "NoUserNameInStartMenu"=0 (0x0)
    "StartmenuLogoff"=0 (0x0)
    "NoStartMenuSubFolders"=0 (0x0)
    "NoCommonGroups"=0 (0x0)
    "NoRecentDocsMenu"=0 (0x0)
    "ClearRecentDocsOnExit"=0 (0x0)
    "NoPrinterTabs"=0 (0x0)
    "NoDeletePrinter"=0 (0x0)
    "NoAddPrinter"=0 (0x0)
    "NoPrinters"=0 (0x0)
    "NoNetworkConnections"=0 (0x0)
    "NoFavoritesMenu"=0 (0x0)
    "NoRun"=0 (0x0)
    "NoFind"=0 (0x0)
    "NoClose"=0 (0x0)
    "NoSetFolders"=0 (0x0)
    "NoSMHelp"=0 (0x0)
    "NoChangeStartMenu"=0 (0x0)
    "NoViewContextMenu"=0 (0x0)
    "NoFileMenu"=0 (0x0)
    "NoShellSearchButton"=0 (0x0)
    "NoToolbarCustomize"=0 (0x0)
    "NoRecentDocsNetHood"=0 (0x0)
    "NoChangeAnimation"=0 (0x0)
    "NoChangeKeyboardNavigationIndicators"=0 (0x0)
    "NoThemesTab"=0 (0x0)
    "LinkResolveIgnoreLinkInfo"=0 (0x0)
    "NoSaveSettings"=0 (0x0)

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
    "appinit_dlls"=C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice"

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice"

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
    "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan]
    C:\Program Files\Internet Download Manager\IDMan.exe /onboot

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IntelliPoint]
    "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
    C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Uniblue Registry Booster]
    C:\Program Files\Uniblue\Registry Booster\RegistryBooster.exe /S

    HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
    UxTuneUp

    *Newly Created Service* - TMCOMM



    -- End of Deckard's System Scanner: finished at 2007-08-03 at 11:20:49 ---------


    Toi DSS.exe ei anna ku ton main.txt..
    Onko toi javan päivitys tärkeetä??

    __________________________________________________
    ewido anti-spyware online scanner
    http://www.ewido.net
    __________________________________________________


    Name: Trojan.Small.edz
    Path: C:\System Volume Information\_restore{3006CE71-65E7-49ED-BEF1-AE2ACF2E851A}\RP41\A0006715.exe
    Risk: High

    Name: Trojan.OnLineGames.es
    Path: C:\System Volume Information\_restore{3006CE71-65E7-49ED-BEF1-AE2ACF2E851A}\RP45\A0007954.dll
    Risk: High


     
    SlimJoe, Aug 3, 2007
    #3
  4. Auttaja

    Auttaja Guest

    onhan se melko... tietty jos ei haittaa että kone on reikänen nii ei sitte...

    Pysy puhtaana

    -> Tyhjennä järjestelmänpalautus Ohjeet
    Tyhjennä järjestelmänpalautuskansio ja luo uusi palautuspiste. Tämä puhdistaa palautuskansion mahdollisista haittaohjelmajäännöksistä.

    -> Käytä CCleaneria -> CCleaner
    Lataa ja asenna CCleaner. Puhdista väliaikaistiedostot ja -kansiot ohjelmalla säännöllisesti.

    -> Asenna SpywareBlaster -> SpywareBlaster
    SpywareBlaster estää haittaohjelmia asentumasta koneellesi. Ei kuluta muistia!
    Opas saatavilla suomeksi! Nimimerkki Ad-Awaren opas

    -> Asenna MVPS Hosts tiedosto -> MVPS Hosts
    Estää koneesi yhteyden haitallisiin sivustoihin.
    Opas saatavilla suomeksi! Nimimerkki Axelin opas

    -> Vaihda selaimesi Firefoxiin -> Firefox
    Firefox on nopeampi, turvallisempi ja parempi selain kuin Internet Explorer.

    -> Pidä järjestelmäsi ajantasalla. -> Windows Update
    Vieraile Windows Updatessa säännöllisesti.

    -> Pidä palomuuri ja virustorjunta ajantasalla
    Päivitä ja skannaa koneesi säännöllisesti virustorjuntaohjelmallasi.
    ja hyvä myös escan http://koti.mbnet.fi/pattaya1/escanmwav.htm

    ->Pidä ohjelmistosi ajantasalla. -> Secunia Software Inspector
    Secunia Software Inspector tutkii sinun järjestälmäsi ja ohjelmistosi puuttuvien turvallisuuspäivityksien osalta. Tavallinen tutkinta kestää normaalisti 5-40 sekuntia, kun läpikotainen (thorough system inspection) voi kestää useita minuutteja.

    ->Seuraa säännöllisesti viestintäviraston tietoja uusista haavoittuvuuksista -> CERT-FI

    Jos tulevaisuudessa tulee haittaohjelmien kanssa ongelmia, älä epäröi laittaa Hijackthis-logia tarkistettavaksi!
     
    Auttaja, Aug 3, 2007
    #4

Share This Page