Terve Vanhempieni kone tuntuu todella hitaalta, käynnistyminen kestää yli viisi minuuttia. Puhdistelin rekisteriä CCleanerilla ja Easycleanerilla ja ajoin AVG:n virustarkistuksen, mutta ei ollut kummempaa hyötyä. Onko logissa mitään epäilyttävää? Mitähän nuo o10-rivit on? Logfile of HijackThis v1.99.1 Scan saved at 18:43:59, on 11.4.2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16640) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\WINDOWS\Explorer.EXE C:\Program Files\PC Protection\Anti-Virus\fsgk32st.exe C:\Program Files\PC Protection\Anti-Virus\FSGK32.EXE C:\Program Files\PC Protection\Common\FSMA32.EXE C:\Program Files\Raxco\PerfectDisk\PDAgent.exe C:\Program Files\PC Protection\Common\FSMB32.EXE C:\Program Files\PC Protection\Common\FCH32.EXE C:\WINDOWS\system32\svchost.exe C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe C:\Program Files\PC Protection\Anti-Virus\fsqh.exe C:\Program Files\PC Protection\Common\FAMEH32.EXE C:\Program Files\PC Protection\FSPC\fspc.exe C:\WINDOWS\system32\VTTimer.exe C:\WINDOWS\system32\VTtrayp.exe C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\PC Protection\Common\FSM32.EXE C:\Program Files\PC Protection\FSGUI\ispnews.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\PC Protection\FSGUI\fsguidll.exe C:\Program Files\PC Protection\Anti-Virus\fssm32.exe C:\Program Files\PC Protection\FSAUA\program\fsaua.exe C:\Program Files\PC Protection\FWES\Program\fsdfwd.exe C:\Program Files\PC Protection\FSAUA\program\fsus.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\Program Files\PC Protection\Anti-Virus\fsav32.exe C:\WINDOWS\system32\taskmgr.exe C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe C:\Program Files\Sovellukset\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fi/0SEFIFI/SAOS01?FORM=TOOLBR R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.fi/0SEFIFI/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.iltasanomat.fi/ R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fi/0SEFIFI/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy.kponet.fi:8080 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit O2 - BHO: Adobe PDF Reader -linkkiavustaja - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.2.1.2.dll O2 - BHO: Canon Easy Web Print Helper - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll O4 - HKLM\..\Run: [VTTimer] VTTimer.exe O4 - HKLM\..\Run: [VTTrayp] VTtrayp.exe O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\PC Protection\Common\FSM32.EXE" /splash O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\PC Protection\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW O4 - HKLM\..\Run: [News Service] "C:\Program Files\PC Protection\FSGUI\ispnews.exe" O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm O8 - Extra context menu item: Vie Microsoft E&xceliin - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: Lapsilukko... - {200DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\PC Protection\FSPC\fspcmsie.dll O9 - Extra button: (no name) - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\PC Protection\FSPC\fspcmsie.dll O9 - Extra 'Tools' menuitem: Lapsilukko... - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\PC Protection\FSPC\fspcmsie.dll O9 - Extra button: Oheistiedot - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.2.1.2.dll/206 (file missing) O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing) O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing) O10 - Unknown file in Winsock LSP: c:\program files\pc protection\fsps\program\fslsp.dll O10 - Unknown file in Winsock LSP: c:\program files\pc protection\fsps\program\fslsp.dll O10 - Unknown file in Winsock LSP: c:\program files\pc protection\fsps\program\fslsp.dll O10 - Unknown file in Winsock LSP: c:\program files\pc protection\fsps\program\fslsp.dll O10 - Unknown file in Winsock LSP: c:\program files\pc protection\fsps\program\fslsp.dll O10 - Unknown file in Winsock LSP: c:\program files\pc protection\fsps\program\fslsp.dll O10 - Unknown file in Winsock LSP: c:\program files\pc protection\fsps\program\fslsp.dll O10 - Unknown file in Winsock LSP: c:\program files\pc protection\fsps\program\fslsp.dll O10 - Unknown file in Winsock LSP: c:\program files\pc protection\fsps\program\fslsp.dll O10 - Unknown file in Winsock LSP: c:\program files\pc protection\fsps\program\fslsp.dll O10 - Unknown file in Winsock LSP: c:\program files\pc protection\fsps\program\fslsp.dll O10 - Unknown file in Winsock LSP: c:\program files\pc protection\fsps\program\fslsp.dll O10 - Unknown file in Winsock LSP: c:\program files\pc protection\fsps\program\fslsp.dll O10 - Unknown file in Winsock LSP: c:\program files\pc protection\fsps\program\fslsp.dll O11 - Options group: [INTERNATIONAL] International* O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1165317868078 O16 - DPF: {66D393D5-4D80-497C-9F4F-F3839E090202} (PlayerOCX Control) - http://www.pysoft.com/Downloads/WebCamPlayerOCX.cab O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://194.252.102.103/activex/AxisCamControl.ocx O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{C7912977-9770-483E-8F07-FEA6DAE1A56A}: NameServer = 212.116.32.218 212.116.32.222 O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\PC Protection\Anti-Virus\fsgk32st.exe O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:\Program Files\PC Protection\FSAUA\program\fsaua.exe O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\PC Protection\FWES\Program\fsdfwd.exe O23 - Service: FSMA - F-Secure Corporation - C:\Program Files\PC Protection\Common\FSMA32.EXE O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: PDAgent - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDAgent.exe O23 - Service: PDEngine - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDEngine.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -Harri
Escan Ohjeet tuolla sivulla. http://koti.mbnet.fi/pattaya1/escanmwav.htm lataa tuosta http://www.spywareinfo.dk/download/mwav.exe päivitä tuosta http://koti.mbnet.fi/pattaya1/lataus/Mwav.bat laita täpit merkkauksien mukaan http://koti.mbnet.fi/pattaya1/eScan6.jpg scannaa jos ala luukkuun tulee jotain niin kopioi se näin: Käytä komentoa Ctrl+A. Kopioi rivit komennolla Ctrl+C. Liitä rivit komennolla Ctrl+V. Laita virus log tänne. =============== Lataa Tästä Ccleaner CCleaner v2.05.555- Standard Build, ÄLÄ aseenna Yahoo toolbaria! laita asetukset näin: Valinnat --> Lisäasetukset --> Ota ruksi pois kohdasta Poista vain yli 48 tuntia vanhat tilapäistiedostot. aja Puhdistaja > tutki nappi > aja ccleaner nappi oikea alakulma aja Virheet > etsi rekisteri virheitä nappi > Korjaa rekisteri virheet. nappi
Ei löytynyt kuin muutama error. Fri Apr 11 21:46:49 2008 => ***** Scanning complete. ***** Fri Apr 11 21:46:49 2008 => Total Number of Files Scanned: 47054 Fri Apr 11 21:46:49 2008 => Total Number of Virus(es) Found: 0 Fri Apr 11 21:46:49 2008 => Total Number of Disinfected Files: 0 Fri Apr 11 21:46:49 2008 => Total Number of Files Renamed: 0 Fri Apr 11 21:46:49 2008 => Total Number of Deleted Files: 0 Fri Apr 11 21:46:49 2008 => Total Number of Errors: 2 Fri Apr 11 21:46:49 2008 => Time Elapsed: 01:28:36 Fri Apr 11 21:46:49 2008 => Virus Database Date: 2008/04/11 Fri Apr 11 21:46:49 2008 => Virus Database Count: 698039 Fri Apr 11 21:46:49 2008 => Scan Completed. Tein vielä uudestaan puhdistukset CCleanerilla. Olisiko vielä hyviä neuvoja? -Harri
scannaa hjt:llä merkkaa paina Fix checked R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fi/0SEFIFI/SAOS01?FORM=TOOLBR R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.fi/0SEFIFI/SAOS01?FORM=TOOLBR R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fi/0SEFIFI/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u ============== paljos siintä koneesta löytyy keskusmuistia.
Fixasin nuo kohdat. Keskusmuistia ei ole kuin 480 MB, ei taida oikein teho riittää, ku on tuo F-Securekin. -Harri
Everest:n tiedot: Muistikannat: Moduulin nimi Samsung M3 78T6553CZ3-CD5 Sarjanumero F536AC3Bh Valmistuspäiväys viikko 52 / 2006 Moduulin koko 512 MB (1 rank, 4 banks) Moduulin tyyppi Unbuffered Muistin tyyppi DDR2 SDRAM Muistin nopeus DDR2-533 (266 MHz) Moduulin leveys 64 bit Moduulin jännite SSTL 1.8 Virheentunnistustapa ei ole Virkistystaajuus supistettu (7.8 us), Self-Refresh Muistin ajoitukset: @ 266 MHz 5.0-4-4-11 (CL-RCD-RP-RAS) @ 266 MHz 4.0-4-4-11 (CL-RCD-RP-RAS) @ 200 MHz 3.0-3-3-8 (CL-RCD-RP-RAS) Eikö tämän muistin pitäisi olla yhteensopiva: http://www.multitronic.fi/index.php?prod=D2U533B-1G/BJ -Harri
