Pelit ja kone hidastelee. HJT-logi.

Discussion in 'Virukset ja haittaohjelmat - HijackThis -logit' started by Jokkee, Jul 28, 2006.

Thread Status:
Not open for further replies.
  1. Jokkee

    Jokkee Regular member

    Joined:
    Sep 9, 2005
    Messages:
    295
    Likes Received:
    0
    Trophy Points:
    26
    Eli tässäpä ois tuo ko. loki.

    Logfile of HijackThis v1.99.1
    Scan saved at 21:13:07, on 28.7.2006
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Ahead\InCD\InCDsrv.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\PROGRA~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE
    C:\WINDOWS\system32\CTsvcCDA.EXE
    C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
    C:\Program Files\ewido anti-malware\ewidoctrl.exe
    C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
    C:\Program Files\F-Secure\Anti-Virus\FSGK32.EXE
    C:\Program Files\F-Secure\BackWeb\7681197\program\fsbwsys.exe
    C:\Program Files\F-Secure\Anti-Virus\fssm32.exe
    C:\Program Files\F-Secure\Common\FSMA32.EXE
    C:\Program Files\F-Secure\Common\FSMB32.EXE
    C:\Program Files\F-Secure\Common\FCH32.EXE
    C:\WINDOWS\system32\tcpsvcs.exe
    C:\Program Files\F-Secure\Common\FAMEH32.EXE
    C:\Program Files\F-Secure\Common\FNRB32.EXE
    C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe
    C:\Program Files\F-Secure\Common\FIH32.EXE
    C:\Program Files\F-Secure\Anti-Virus\fsav32.exe
    C:\PROGRA~1\COMMON~1\Stardock\SDMCP.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
    C:\Program Files\F-Secure\Common\FSM32.EXE
    C:\WINDOWS\SOUNDMAN.EXE
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\Program Files\DAEMON Tools\daemon.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\CursorXP\CursorXP.exe
    C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    C:\Program Files\F-Secure\FSGUI\fsguiexe.exe
    C:\Program Files\Logitech\SetPoint\KEM.exe
    C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE
    C:\Program Files\F-Secure\BackWeb\7681197\Program\F-Secure Automatic Update.exe
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\tinySpell\tinyspell.exe
    c:\program files\windows media player\wmplayer.exe
    C:\Program Files\Mail Shower\mailshower.exe
    C:\Program Files\MSN Messenger\MsnMsgr.Exe
    C:\WINDOWS\system32\imapi.exe
    C:\Program Files\Mozilla Firefox 2 Beta 1\firefox.exe
    C:\HJT\HijackThis_v1.99.1.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
    O3 - Toolbar: MSN Search -työkalurivi - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fi-fi\msntb.dll (file missing)
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
    O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\F-Secure\Common\FSM32.EXE" /splash
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
    O4 - HKLM\..\Run: [LogonStudio] "C:\Program Files\WinCustomize\LogonStudio\logonstudio.exe" /RANDOM
    O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
    O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
    O4 - HKLM\..\Run: [LiveMonitor] C:\Program Files\MSI\Live Update 3\LMonitor.exe
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [CursorXP] C:\Program Files\CursorXP\CursorXP.exe
    O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
    O4 - Startup: Mail Shower.lnk = C:\Program Files\Mail Shower\mailshower.exe
    O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
    O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
    O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
    O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by22fd.bay22.hotmail.msn.com/resources/MsnPUpld.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1146941046234
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
    O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://217.152.196.254/activex/AxisCamControl.cab
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
    O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
    O16 - DPF: {D1E7CBDA-E60E-4970-A01C-37301EF7BF98} (Measurement Services Client v.3.7) - http://gameadvisor.futuremark.com/global/msc37.cab
    O18 - Protocol: bw+0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw+0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O18 - Protocol: bwg0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwg0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O18 - Protocol: offline-8876480 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O20 - AppInit_DLLs: wbsys.dll MsgPlusLoader.dll


    Huhu selain kaatu 2 ku liitin tota lokia tähän ruutuun =)
     
  2. Daniii

    Daniii Regular member

    Joined:
    May 11, 2006
    Messages:
    120
    Likes Received:
    0
    Trophy Points:
    26
    Terve taas Jokkee :)

    Avaa hjt ja klikkaa do a system scan only ja merkitse seuraavat:

    O3 - Toolbar: MSN Search -työkalurivi - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fi-fi\msntb.dll (file missing)
    O20 - AppInit_DLLs: wbsys.dll MsgPlusLoader.dll

    ... ja paina fix checked.

    Tämän jälkeen aja Ewido näiden ohjeiden mukaisesti:
    http://www.virustorjunta.net/modules.php?name=Forums&file=viewtopic&t=4836

    Nyt lähetä siis Ewidon raportti niin katsotaan löytyisikö sieltä syytä koneen hitauteen :) Lähetä myös uusi KOKONAINEN hjt-logi missä näkyy myös 023-rivi :)
     
  3. Jokkee

    Jokkee Regular member

    Joined:
    Sep 9, 2005
    Messages:
    295
    Likes Received:
    0
    Trophy Points:
    26
    An unexpected error has occurred at procedure: modBackup_MakeBackup(sItem=O20 - AppInit_DLLs: wbsys.dll MsgPlusLoader.dll)
    Error #5 - Invalid procedure call or argument

    Please email me at merijn@spywareinfo.com, reporting the following:
    * What you were trying to fix when the error occurred, if applicable
    * How you can reproduce the error
    * A complete HijackThis scan log, if possible

    Windows version: Windows NT 5.01.2600
    MSIE version: 6.0.2900.2180
    HijackThis version: 1.99.1

    En tiiä tuli tollanen kun yritin poistaa?
     
    Last edited: Jul 31, 2006
  4. Daniii

    Daniii Regular member

    Joined:
    May 11, 2006
    Messages:
    120
    Likes Received:
    0
    Trophy Points:
    26
    Aika erikoinen errori, mutta katsotaan lähetä nyt UUSI hjt-logi ja tuo äskön jo pyytämäni ewidon loki :)
     
  5. Jokkee

    Jokkee Regular member

    Joined:
    Sep 9, 2005
    Messages:
    295
    Likes Received:
    0
    Trophy Points:
    26
    ---------------------------------------------------------
    ewido anti-malware - Scan report
    ---------------------------------------------------------

    + Created on: 19:25:33, 2.8.2006
    + Report-Checksum: 76426952

    + Scan result:

    HKU\S-1-5-21-1614895754-113007714-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{56F1D444-11BF-4879-A12B-79CF0177F038} -> Adware.180Solutions : Cleaned with backup
    HKU\S-1-5-21-1614895754-113007714-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5929CD6E-2062-44A4-B2C5-2C7E78FBAB38} -> Adware.Generic : Cleaned with backup
    HKU\S-1-5-21-1614895754-113007714-839522115-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EA0D26BD-9029-431A-86E0-83152D67828A} -> Adware.180Solutions : Cleaned with backup
    :mozilla.27:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Adtech : Cleaned with backup
    :mozilla.28:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Adtech : Cleaned with backup
    :mozilla.30:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
    :mozilla.32:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
    :mozilla.33:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
    :mozilla.34:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
    :mozilla.35:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
    :mozilla.36:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup
    :mozilla.39:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup
    :mozilla.40:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
    :mozilla.41:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
    :mozilla.42:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
    :mozilla.43:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
    :mozilla.44:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
    :mozilla.46:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
    :mozilla.47:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
    :mozilla.48:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
    :mozilla.49:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
    :mozilla.50:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
    :mozilla.55:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
    :mozilla.56:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
    :mozilla.60:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Hotlog : Cleaned with backup
    :mozilla.65:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
    :mozilla.75:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
    :mozilla.76:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
    :mozilla.77:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
    :mozilla.80:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
    :mozilla.81:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
    :mozilla.82:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
    :mozilla.83:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
    :mozilla.84:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
    :mozilla.85:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
    :mozilla.86:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
    :mozilla.87:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
    :mozilla.88:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
    :mozilla.92:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Revenue : Cleaned with backup
    :mozilla.93:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Revenue : Cleaned with backup
    :mozilla.94:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Revenue : Cleaned with backup
    :mozilla.97:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Revenue : Cleaned with backup
    :mozilla.122:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
    :mozilla.123:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
    :mozilla.129:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Targetnet : Cleaned with backup
    :mozilla.130:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Targetnet : Cleaned with backup
    :mozilla.153:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
    :mozilla.154:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
    :mozilla.162:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned with backup
    :mozilla.172:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup
    :mozilla.173:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup
    :mozilla.174:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup
    :mozilla.175:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup
    :mozilla.178:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
    :mozilla.179:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
    :mozilla.180:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
    :mozilla.181:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
    :mozilla.210:C:\Documents and Settings\Jouka Parkkonen\Application Data\Mozilla\Firefox\Profiles\p7n32abd.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned with backup
    C:\Documents and Settings\Jouka Parkkonen\Cookies\jouka parkkonen@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Cleaned with backup
    :mozilla.6:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
    :mozilla.10:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
    :mozilla.11:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
    :mozilla.12:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
    :mozilla.20:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
    :mozilla.21:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
    :mozilla.22:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
    :mozilla.23:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
    :mozilla.26:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
    :mozilla.27:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
    :mozilla.28:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
    :mozilla.29:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
    :mozilla.30:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
    :mozilla.31:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
    :mozilla.32:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
    :mozilla.40:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Web-stat : Cleaned with backup
    :mozilla.44:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Adtech : Cleaned with backup
    :mozilla.45:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Adtech : Cleaned with backup
    :mozilla.55:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned with backup
    :mozilla.63:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned with backup
    :mozilla.65:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup
    :mozilla.66:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup
    :mozilla.67:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup
    :mozilla.68:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup
    :mozilla.69:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup
    :mozilla.72:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
    :mozilla.73:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Counted : Cleaned with backup
    :mozilla.83:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned with backup
    :mozilla.86:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Valueclick : Cleaned with backup
    :mozilla.91:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
    :mozilla.94:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
    :mozilla.95:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
    :mozilla.106:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup
    :mozilla.109:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup
    :mozilla.124:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup
    :mozilla.174:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned with backup
    :mozilla.233:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned with backup
    :mozilla.234:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
    :mozilla.235:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
    :mozilla.236:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
    :mozilla.243:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Revenue : Cleaned with backup
    :mozilla.251:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Onestat : Cleaned with backup
    :mozilla.252:C:\Documents and Settings\Muut (tunkeiliat)\Application Data\Mozilla\Firefox\Profiles\84k98u3t.default\cookies.txt -> TrackingCookie.Onestat : Cleaned with backup
    C:\Documents and Settings\Muut (tunkeiliat)\Cookies\muut (tunkeiliat)@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned with backup
    C:\Documents and Settings\Muut (tunkeiliat)\Cookies\muut (tunkeiliat)@doubleclick[1].txt -> TrackingCookie.Doubleclick : Cleaned with backup
    C:\Documents and Settings\Muut (tunkeiliat)\Cookies\muut (tunkeiliat)@mediaplex[1].txt -> TrackingCookie.Mediaplex : Cleaned with backup
    C:\Program Files\DAEMON Tools\SetupDTSB.exe -> Adware.SaveNow : Cleaned with backup


    ::Report End



    Logfile of HijackThis v1.99.1
    Scan saved at 19:28:12, on 2.8.2006
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Ahead\InCD\InCDsrv.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\PROGRA~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE
    C:\WINDOWS\system32\CTsvcCDA.EXE
    C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
    C:\Program Files\ewido anti-malware\ewidoctrl.exe
    C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
    C:\Program Files\F-Secure\Anti-Virus\FSGK32.EXE
    C:\Program Files\F-Secure\BackWeb\7681197\program\fsbwsys.exe
    C:\Program Files\F-Secure\Anti-Virus\fssm32.exe
    C:\Program Files\F-Secure\Common\FSMA32.EXE
    C:\Program Files\F-Secure\Common\FSMB32.EXE
    C:\Program Files\F-Secure\Common\FCH32.EXE
    C:\WINDOWS\system32\tcpsvcs.exe
    C:\Program Files\F-Secure\Common\FAMEH32.EXE
    C:\Program Files\F-Secure\Common\FNRB32.EXE
    C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe
    C:\Program Files\F-Secure\Common\FIH32.EXE
    C:\Program Files\F-Secure\Anti-Virus\fsav32.exe
    C:\PROGRA~1\COMMON~1\Stardock\SDMCP.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
    C:\Program Files\F-Secure\Common\FSM32.EXE
    C:\WINDOWS\SOUNDMAN.EXE
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\Program Files\DAEMON Tools\daemon.exe
    C:\Program Files\F-Secure\FSGUI\fsguiexe.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\CursorXP\CursorXP.exe
    C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    C:\Program Files\Logitech\SetPoint\KEM.exe
    C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE
    C:\Program Files\F-Secure\BackWeb\7681197\Program\F-Secure Automatic Update.exe
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\Documents and Settings\Jouka Parkkonen\Omat tiedostot\Omat lataukset\utorrent.exe
    C:\WINDOWS\system32\svchost.exe
    c:\program files\windows media player\wmplayer.exe
    C:\Program Files\Logitech\SetPoint\MediaPlayerMgr.exe
    C:\Program Files\Mail Shower\mailshower.exe
    C:\Program Files\Mozilla Firefox 2 Beta 1\firefox.exe
    C:\HJT\HijackThis_v1.99.1.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
    O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\F-Secure\Common\FSM32.EXE" /splash
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
    O4 - HKLM\..\Run: [LogonStudio] "C:\Program Files\WinCustomize\LogonStudio\logonstudio.exe" /RANDOM
    O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
    O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
    O4 - HKLM\..\Run: [LiveMonitor] C:\Program Files\MSI\Live Update 3\LMonitor.exe
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [CursorXP] C:\Program Files\CursorXP\CursorXP.exe
    O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
    O4 - Startup: Mail Shower.lnk = C:\Program Files\Mail Shower\mailshower.exe
    O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
    O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
    O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
    O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by22fd.bay22.hotmail.msn.com/resources/MsnPUpld.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1146941046234
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
    O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://217.152.196.254/activex/AxisCamControl.cab
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
    O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
    O16 - DPF: {D1E7CBDA-E60E-4970-A01C-37301EF7BF98} (Measurement Services Client v.3.7) - http://gameadvisor.futuremark.com/global/msc37.cab
    O18 - Protocol: bw+0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw+0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O18 - Protocol: bwg0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwg0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0s - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O18 - Protocol: offline-8876480 - {3C739763-2FDA-4603-9B7D-860E0B8B1E67} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O20 - Winlogon Notify: MCPClient - C:\PROGRA~1\COMMON~1\Stardock\mcpstub.dll
    O20 - Winlogon Notify: WBSrv - C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\wbsrv.dll
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
    O23 - Service: F-Secure Automatic Update (BackWeb Plug-in - 7681197) - Unknown owner - C:\PROGRA~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE
    O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
    O23 - Service: EpsonBidirectionalService - Unknown owner - C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
    O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
    O23 - Service: F-Secure Gatekeeper Handler Starter - F-Secure Corp. - C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
    O23 - Service: F-Secure Network Request Broker - F-Secure Corporation - C:\Program Files\F-Secure\Common\FNRB32.EXE
    O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\F-Secure\BackWeb\7681197\program\fsbwsys.exe
    O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe
    O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\F-Secure\Common\FSMA32.EXE
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: InCD Helper (InCDsrv) - Ahead Software AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
    O23 - Service: MSSQLServerADHelper - Unknown owner - C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe (file missing)
    O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe
    O23 - Service: SF FrontLine Drivers Auto Removal (v1) (sfrem01) - Protection Technology (StarForce) - C:\WINDOWS\system32\sfrem01.exe
    O23 - Service: Windows Media Player Network Sharing Service (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe (file missing)

    Eiköhän tossa ollu tälläkertaa kaikki =)
     
  6. Daniii

    Daniii Regular member

    Joined:
    May 11, 2006
    Messages:
    120
    Likes Received:
    0
    Trophy Points:
    26
    Nämä eivä ole haittaohjelmia mutta nopeuttavat koneesi toimintaa kun eivät ole päällä päätä itse mitä otat pois.

    Klikkaa Käynnistä --> Suorita ja Avaa: -kenttään:

    sc stop "Autodesk Licensing Service" ja enter
    sc delete "Autodesk Licensing Service" ja enter

    sc stop "Creative Service for CDROM Access" ja enter
    sc delete "Creative Service for CDROM Access" ja enter

    sc stop "Windows Media Player Network Sharing Service" ja enter
    sc delete "Windows Media Player Network Sharing Service" ja enter

    sc stop "ServiceLayer" ja enter
    sc delete "ServiceLayer" ja enter

    Näistä voit kanssa valita mitä ei mielestäsi tarvitse olla käynnistymässä. Niin Fixaa ne.
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
    O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
    O4 - HKLM\..\Run: [LogonStudio] "C:\Program
    Files\WinCustomize\LogonStudio\logonstudio.exe" /RANDOM
    O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
    O4 - HKLM\..\Run: [LiveMonitor] C:\Program Files\MSI\Live Update 3\LMonitor.exe
    Lähetä vielä tämän jälkeen uusi hjt-logi.
     
  7. Jokkee

    Jokkee Regular member

    Joined:
    Sep 9, 2005
    Messages:
    295
    Likes Received:
    0
    Trophy Points:
    26
    Logfile of HijackThis v1.99.1
    Scan saved at 11:36:12, on 5.8.2006
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Ahead\InCD\InCDsrv.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\PROGRA~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE
    C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
    C:\Program Files\ewido anti-malware\ewidoctrl.exe
    C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
    C:\Program Files\F-Secure\Anti-Virus\FSGK32.EXE
    C:\Program Files\F-Secure\Anti-Virus\fssm32.exe
    C:\Program Files\F-Secure\BackWeb\7681197\program\fsbwsys.exe
    C:\Program Files\F-Secure\Common\FSMA32.EXE
    C:\Program Files\F-Secure\Common\FSMB32.EXE
    C:\Program Files\F-Secure\Common\FCH32.EXE
    C:\WINDOWS\system32\tcpsvcs.exe
    C:\Program Files\F-Secure\Common\FAMEH32.EXE
    C:\Program Files\F-Secure\Common\FNRB32.EXE
    C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe
    C:\Program Files\F-Secure\Common\FIH32.EXE
    C:\Program Files\F-Secure\Anti-Virus\fsav32.exe
    C:\PROGRA~1\COMMON~1\Stardock\SDMCP.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\F-Secure\Common\FSM32.EXE
    C:\WINDOWS\SOUNDMAN.EXE
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\Program Files\DAEMON Tools\daemon.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\MSN Messenger\MsnMsgr.Exe
    C:\Program Files\Logitech\SetPoint\SetPoint.exe
    C:\Program Files\F-Secure\FSGUI\fsguiexe.exe
    C:\Program Files\Mail Shower\mailshower.exe
    C:\Program Files\Common Files\Logitech\KhalShared\KHALMNPR.EXE
    C:\Program Files\F-Secure\BackWeb\7681197\Program\F-Secure Automatic Update.exe
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\Program Files\Mozilla Firefox 2 Beta 1\firefox.exe
    C:\WINDOWS\system32\svchost.exe
    C:\HJT\HijackThis_v1.99.1.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
    O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\F-Secure\Common\FSM32.EXE" /splash
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
    O4 - HKLM\..\Run: [LogonStudio] "C:\Program Files\WinCustomize\LogonStudio\logonstudio.exe" /RANDOM
    O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
    O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
    O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] "C:\Program Files\Common Files\Logitech\KhalShared\KHALMNPR.EXE"
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
    O4 - Startup: Mail Shower.lnk = C:\Program Files\Mail Shower\mailshower.exe
    O4 - Global Startup: Logitech SetPoint.lnk = ?
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
    O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
    O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by22fd.bay22.hotmail.msn.com/resources/MsnPUpld.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1146941046234
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
    O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://217.152.196.254/activex/AxisCamControl.cab
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
    O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab31267.cab
    O16 - DPF: {D1E7CBDA-E60E-4970-A01C-37301EF7BF98} (Measurement Services Client v.3.7) - http://gameadvisor.futuremark.com/global/msc37.cab
    O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O20 - Winlogon Notify: MCPClient - C:\PROGRA~1\COMMON~1\Stardock\mcpstub.dll
    O20 - Winlogon Notify: WBSrv - C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\wbsrv.dll
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: F-Secure Automatic Update (BackWeb Plug-in - 7681197) - Unknown owner - C:\PROGRA~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE
    O23 - Service: EpsonBidirectionalService - Unknown owner - C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
    O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
    O23 - Service: F-Secure Gatekeeper Handler Starter - F-Secure Corp. - C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
    O23 - Service: F-Secure Network Request Broker - F-Secure Corporation - C:\Program Files\F-Secure\Common\FNRB32.EXE
    O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\F-Secure\BackWeb\7681197\program\fsbwsys.exe
    O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe
    O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\F-Secure\Common\FSMA32.EXE
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: InCD Helper (InCDsrv) - Ahead Software AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
    O23 - Service: MSSQLServerADHelper - Unknown owner - C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe (file missing)
    O23 - Service: SF FrontLine Drivers Auto Removal (v1) (sfrem01) - Protection Technology (StarForce) - C:\WINDOWS\system32\sfrem01.exe
    O23 - Service: Windows Media Player Network Sharing Service (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe (file missing)


    Jätin siihen muutaman.
     
  8. Daniii

    Daniii Regular member

    Joined:
    May 11, 2006
    Messages:
    120
    Likes Received:
    0
    Trophy Points:
    26
    Jees. Onko vielä samoja ongelmia ?
     
  9. Jokkee

    Jokkee Regular member

    Joined:
    Sep 9, 2005
    Messages:
    295
    Likes Received:
    0
    Trophy Points:
    26
    Eipä tunnu olevan. Kiitos sulle!!
     
Thread Status:
Not open for further replies.

Share This Page