Backweb erorr: Cannot clear channel history

Viestiketju Virukset ja haittaohjelmat - HijackThis -logit -osiossa. Ketjun avasi harfox 02.05.2007.

  1. harfox

    harfox Guest

    Siis heittää tällaista lappua, kun käynnistää Windows XP:n. Backweb erorr: Cannot clear channel history. Mikä aiheuttaa kyseisen viestin, virus vai joku muu örkki...?
     
  2.  
  3. Auttaja

    Auttaja Guest

    -> Lataa Hijackthis: http://koti.mbnet.fi/pattaya1/HijackThis.exe
    -> Tallenna hakemistoon C:\hjt
    ->Uudelleennimeä HijackThis.exe -> scanner.exe:ksi näin:
    1. Klikkaa hiiren oikealla painikkeella HijackThis ikonia.
    [​IMG]

    2. Valitse Uudelleennineä/ Rename.
    [​IMG]

    3. Kirjoita scanner.exe
    [​IMG]
    -> Käynnistä HijackThis ja klikkaa: do a system scan and save a logfile.
    -> Lähetä ilmestynyt logisi tähän ketjuun
     
  4. harfox

    harfox Guest

    Tässä tämä logi.

    Logfile of HijackThis v1.99.1
    Scan saved at 19:23:24, on 2.5.2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16414)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\csrss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\ULI5289\ALi5289.exe
    C:\WINDOWS\SOUNDMAN.EXE
    C:\Program Files\F-Secure\Common\FSM32.EXE
    C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
    C:\Program Files\anysee\anysee-E30\anysee_TR.exe
    C:\Program Files\Elisa\Avustaja\Elisa.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Skype\Phone\Skype.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    C:\PROGRA~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
    C:\Program Files\F-Secure\Anti-Virus\FSGK32.EXE
    C:\Program Files\F-Secure\BackWeb\7681197\program\fsbwsys.exe
    C:\Program Files\F-Secure\Common\FSMA32.EXE
    C:\Program Files\F-Secure\Anti-Virus\fssm32.exe
    C:\Program Files\Common Files\LightScribe\LSSrvc.exe
    C:\Program Files\F-Secure\Common\FSMB32.EXE
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\F-Secure\BackWeb\7681197\Program\F-Secure Automatic Update.exe
    C:\Program Files\F-Secure\Common\FCH32.EXE
    C:\Program Files\F-Secure\Common\FAMEH32.EXE
    C:\Program Files\F-Secure\Anti-Virus\fsqh.exe
    C:\Program Files\F-Secure\Anti-Virus\fsrw.exe
    C:\Program Files\F-Secure\Common\FNRB32.EXE
    C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe
    C:\Program Files\F-Secure\Common\FIH32.EXE
    C:\Program Files\F-Secure\Anti-Virus\fsav32.exe
    C:\WINDOWS\System32\alg.exe
    C:\PROGRA~1\F-Secure\ANTI-S~1\fsaw.exe
    C:\Program Files\Skype\Plugin Manager\skypePM.exe
    C:\Program Files\F-Secure\FSGUI\fsguidll.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Hjt\Scanner.exe.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fi/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
    R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=80744
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O2 - BHO: Elisa Avustaja Plugin - {DB87CDE1-EF9C-44EB-A42F-6D0B3C72C516} - C:\Program Files\Elisa\Avustaja\IEFixItNowPlugin.dll
    O4 - HKLM\..\Run: [ALi5289] C:\Program Files\ULI5289\ALi5289.exe
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\F-Secure\Common\FSM32.EXE" /splash
    O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\F-Secure\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
    O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
    O4 - HKLM\..\Run: [anysee_TR] C:\Program Files\anysee\anysee-E30\anysee_TR.exe
    O4 - HKLM\..\Run: [Elisa Avustaja] "C:\Program Files\Elisa\Avustaja\Elisa.exe"
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: F-Secure Automatic Update.lnk = C:\Program Files\F-Secure\BackWeb\7681197\program\F-Secure Automatic Update.exe
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
    O8 - Extra context menu item: &Block this popup - C:\Program Files\F-Secure\Anti-Spyware\blockpopups.htm
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra button: IE Shield - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\F-Secure\Anti-Spyware\ieshield.dll
    O9 - Extra 'Tools' menuitem: IE Shield... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\F-Secure\Anti-Spyware\ieshield.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O10 - Unknown file in Winsock LSP: c:\program files\f-secure\fsps\program\fslsp.dll
    O10 - Unknown file in Winsock LSP: c:\program files\f-secure\fsps\program\fslsp.dll
    O10 - Unknown file in Winsock LSP: c:\program files\f-secure\fsps\program\fslsp.dll
    O11 - Options group: [INTERNATIONAL] International*
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1175846259984
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: F-Secure Automatic Update (BackWeb Plug-in - 7681197) - F-Secure Automatic Update - C:\PROGRA~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE
    O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corp. - C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
    O23 - Service: F-Secure Network Request Broker - F-Secure Corporation - C:\Program Files\F-Secure\Common\FNRB32.EXE
    O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\F-Secure\BackWeb\7681197\program\fsbwsys.exe
    O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe
    O23 - Service: FSMA - F-Secure Corporation - C:\Program Files\F-Secure\Common\FSMA32.EXE
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
     
  5. Auttaja

    Auttaja Guest

  6. harfox

    harfox Guest

    Tässä ComboFix logi.

    "Valvoja" - 07-05-02 21:12:44 Service Pack 2
    ComboFix 07-04-25.4V - Running from: "C:\Documents and Settings\Valvoja\Ty”p”yt„\ComboFix\"


    (((((((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))


    C:\DOCUME~1\Valvoja\TYPYT~1.\internet explorer.lnk


    ((((((((((((((((((((((((((((((( Files Created from 2007-04-02 to 2007-05-02 ))))))))))))))))))))))))))))))))))


    2007-05-02 20:58 70,896 --a------ C:\WINDOWS\system32\drivers\fsdfw.sys
    2007-05-02 20:58 33,584 --a------ C:\WINDOWS\system32\drivers\fsndis5.sys
    2007-05-02 20:58 118,842 -r------- C:\WINDOWS\bwUnin-6.3.2.116-7681197L.exe
    2007-05-02 20:58 <KANSIO> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
    2007-05-02 20:56 <KANSIO> d-------- C:\Program Files\F-Secure
    2007-05-02 19:21 <KANSIO> d-------- C:\Hjt
    2007-04-22 09:24 <KANSIO> d--h----- C:\WINDOWS\system32\twain_30
    2007-04-22 09:17 <KANSIO> d--h----- C:\WINDOWS\PIF
    2007-04-21 13:04 3,968 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
    2007-04-21 10:18 <KANSIO> d-------- C:\WINDOWS\system32\appmgmt
    2007-04-21 10:14 <KANSIO> d-------- C:\Program Files\SmartFTP Client 2.0
    2007-04-21 10:14 <KANSIO> d-------- C:\Program Files\SmartFTP
    2007-04-21 10:14 <KANSIO> d-------- C:\DOCUME~1\Valvoja\APPLIC~1\SmartFTP
    2007-04-21 09:32 <KANSIO> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
    2007-04-21 09:30 <KANSIO> d-------- C:\Program Files\Keyfinder Advanced 2007 (Trial Version)
    2007-04-20 21:30 <KANSIO> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Acronis
    2007-04-20 21:05 392,320 --a------ C:\WINDOWS\system32\drivers\timntr.sys
    2007-04-20 21:05 32,768 --a------ C:\WINDOWS\system32\drivers\tifsfilt.sys
    2007-04-20 21:05 114,048 --a------ C:\WINDOWS\system32\drivers\snapman.sys
    2007-04-20 21:05 <KANSIO> d-------- C:\Program Files\Common Files\Acronis
    2007-04-20 21:05 <KANSIO> d-------- C:\Program Files\Acronis
    2007-04-17 19:38 <KANSIO> d-------- C:\DOCUME~1\TVRADI~1.SEM\SNAPSHOT
    2007-04-14 17:57 <KANSIO> d-------- C:\DOCUME~1\TVRADI~1.SEM\APPLIC~1\Skype
    2007-04-14 17:54 221,184 --a------ C:\WINDOWS\system32\wmpns.dll
    2007-04-14 17:54 1,572,864 --ah----- C:\DOCUME~1\TVRADI~1.SEM\NTUSER.DAT
    2007-04-14 17:54 <KANSIO> dr------- C:\DOCUME~1\TVRADI~1.SEM\Suosikit
    2007-04-14 17:54 <KANSIO> dr------- C:\DOCUME~1\TVRADI~1.SEM\Omat tiedostot
    2007-04-14 17:54 <KANSIO> dr------- C:\DOCUME~1\TVRADI~1.SEM\K„ynnist„-valikko
    2007-04-14 17:54 <KANSIO> d--h----- C:\DOCUME~1\TVRADI~1.SEM\Verkkoymp„rist”
    2007-04-14 17:54 <KANSIO> d--h----- C:\DOCUME~1\TVRADI~1.SEM\Tulostinymp„rist”
    2007-04-14 17:54 <KANSIO> d--h----- C:\DOCUME~1\TVRADI~1.SEM\Mallit
    2007-04-14 17:54 <KANSIO> d-------- C:\DOCUME~1\TVRADI~1.SEM\Ty”p”yt„
    2007-04-13 21:28 <KANSIO> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
    2007-04-13 21:13 <KANSIO> d-------- C:\Program Files\CCleaner
    2007-04-12 20:06 <KANSIO> d-------- C:\Program Files\Elisa
    2007-04-12 20:06 <KANSIO> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Elisa
    2007-04-12 18:55 <KANSIO> d-------- C:\DOCUME~1\Valvoja\APPLIC~1\F-Secure
    2007-04-12 18:42 <KANSIO> d-------- C:\DOCUME~1\Valvoja\APPLIC~1\Azureus
    2007-04-12 18:32 <KANSIO> d-------- C:\Program Files\Azureus
    2007-04-12 17:26 <KANSIO> d-------- C:\Program Files\IObit
    2007-04-12 17:01 <KANSIO> d-------- C:\Program Files\Lavasoft
    2007-04-12 17:01 <KANSIO> d-------- C:\DOCUME~1\Valvoja\APPLIC~1\Lavasoft
    2007-04-12 16:51 <KANSIO> d-------- C:\Program Files\ToniArts
    2007-04-09 17:11 127,208 --a------ C:\WINDOWS\system32\mucltui.dll
    2007-04-06 11:15 <KANSIO> d-------- C:\DOCUME~1\Valvoja\APPLIC~1\OfficeUpdate12
    2007-04-05 21:11 <KANSIO> d-------- C:\DICTOR
    2007-04-05 18:14 <KANSIO> d-------- C:\DOCUME~1\Yhteinen\APPLIC~1\CyberLink
    2007-04-05 17:41 <KANSIO> d-------- C:\DOCUME~1\Yhteinen\APPLIC~1\Skype
    2007-04-05 17:39 1,048,576 --ah----- C:\DOCUME~1\Yhteinen\NTUSER.DAT
    2007-04-05 17:39 <KANSIO> dr------- C:\DOCUME~1\Yhteinen\Suosikit
    2007-04-05 17:39 <KANSIO> dr------- C:\DOCUME~1\Yhteinen\Omat tiedostot
    2007-04-05 17:39 <KANSIO> dr------- C:\DOCUME~1\Yhteinen\K„ynnist„-valikko
    2007-04-05 17:39 <KANSIO> d--h----- C:\DOCUME~1\Yhteinen\Verkkoymp„rist”
    2007-04-05 17:39 <KANSIO> d--h----- C:\DOCUME~1\Yhteinen\Tulostinymp„rist”
    2007-04-05 17:39 <KANSIO> d--h----- C:\DOCUME~1\Yhteinen\Mallit
    2007-04-05 17:39 <KANSIO> d-------- C:\DOCUME~1\Yhteinen\Ty”p”yt„
    2007-04-05 17:16 <KANSIO> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
    2007-04-05 16:59 <KANSIO> d-------- C:\DOCUME~1\TVRADI~1\APPLIC~1\Skype
    2007-04-05 16:50 <KANSIO> d-------- C:\DOCUME~1\Mervi\APPLIC~1\Skype
    2007-04-05 16:48 2,097,152 --ah----- C:\DOCUME~1\Mervi\NTUSER.DAT
    2007-04-05 16:48 <KANSIO> dr------- C:\DOCUME~1\Mervi\Suosikit
    2007-04-05 16:48 <KANSIO> dr------- C:\DOCUME~1\Mervi\Omat tiedostot
    2007-04-05 16:48 <KANSIO> dr------- C:\DOCUME~1\Mervi\K„ynnist„-valikko
    2007-04-05 16:48 <KANSIO> d--h----- C:\DOCUME~1\Mervi\Verkkoymp„rist”
    2007-04-05 16:48 <KANSIO> d--h----- C:\DOCUME~1\Mervi\Tulostinymp„rist”
    2007-04-05 16:48 <KANSIO> d--h----- C:\DOCUME~1\Mervi\Mallit
    2007-04-05 16:48 <KANSIO> d-------- C:\DOCUME~1\Mervi\Ty”p”yt„
    2007-04-05 16:43 1,572,864 --ah----- C:\DOCUME~1\TVRADI~1\NTUSER.DAT
    2007-04-05 16:43 <KANSIO> dr------- C:\DOCUME~1\TVRADI~1\Suosikit
    2007-04-05 16:43 <KANSIO> dr------- C:\DOCUME~1\TVRADI~1\Omat tiedostot
    2007-04-05 16:43 <KANSIO> dr------- C:\DOCUME~1\TVRADI~1\K„ynnist„-valikko
    2007-04-05 16:43 <KANSIO> d--h----- C:\DOCUME~1\TVRADI~1\Verkkoymp„rist”
    2007-04-05 16:43 <KANSIO> d--h----- C:\DOCUME~1\TVRADI~1\Tulostinymp„rist”
    2007-04-05 16:43 <KANSIO> d--h----- C:\DOCUME~1\TVRADI~1\Mallit
    2007-04-05 16:43 <KANSIO> d-------- C:\DOCUME~1\TVRADI~1\Ty”p”yt„
    2007-04-05 06:05 <KANSIO> d--hs---- C:\RECYCLER
    2007-04-05 06:03 <KANSIO> d-------- C:\Program Files\Common Files\LightScribe
    2007-04-05 06:02 476,320 --------- C:\WINDOWS\system32\ImagXpr7.dll
    2007-04-05 06:02 471,040 --------- C:\WINDOWS\system32\ImagXRA7.dll
    2007-04-05 06:02 364,544 --------- C:\WINDOWS\system32\TwnLib4.dll
    2007-04-05 06:02 262,144 --------- C:\WINDOWS\system32\ImagXR7.dll
    2007-04-05 06:02 155,648 --a------ C:\WINDOWS\system32\NeroCheck.exe
    2007-04-05 06:02 106,496 --a------ C:\WINDOWS\system32\TwnLib20.dll
    2007-04-05 06:02 1,568,768 --------- C:\WINDOWS\system32\ImagX7.dll
    2007-04-05 06:02 <KANSIO> d-------- C:\Program Files\Common Files\Ahead
    2007-04-05 06:02 <KANSIO> d-------- C:\Program Files\Ahead
    2007-04-05 06:01 40,960 --a------ C:\Program Files\Uninstall_CDS.exe
    2007-04-05 06:01 <KANSIO> d-------- C:\Program Files\CyberLink DVD Solution
    2007-04-05 06:01 <KANSIO> d-------- C:\Program Files\CyberLink
    2007-04-05 05:53 85,376 --a------ C:\WINDOWS\system32\drivers\NABTSFEC.sys
    2007-04-05 05:53 53,760 --a------ C:\WINDOWS\system32\vfwwdm32.dll
    2007-04-05 05:53 5,504 --a------ C:\WINDOWS\system32\drivers\MSTEE.sys
    2007-04-05 05:53 363,520 --a------ C:\WINDOWS\system32\PsisDecd.dll
    2007-04-05 05:53 19,328 --a------ C:\WINDOWS\system32\drivers\WSTCODEC.SYS
    2007-04-05 05:53 17,024 --a------ C:\WINDOWS\system32\drivers\CCDECODE.sys
    2007-04-05 05:53 15,360 --a------ C:\WINDOWS\system32\drivers\StreamIP.sys
    2007-04-05 05:53 15,360 --a------ C:\WINDOWS\system32\drivers\MPE.sys
    2007-04-05 05:53 11,776 --a------ C:\WINDOWS\system32\drivers\BdaSup.sys
    2007-04-05 05:53 11,136 --a------ C:\WINDOWS\system32\drivers\SLIP.sys
    2007-04-05 05:53 10,880 --a------ C:\WINDOWS\system32\drivers\NdisIP.sys
    2007-04-05 05:48 <KANSIO> d-------- C:\Program Files\Common Files\IviSDK
    2007-04-05 05:48 <KANSIO> d-------- C:\Program Files\anysee
    2007-04-04 23:22 3,072 --a------ C:\WINDOWS\system32\drivers\audstub.sys
    2007-04-04 23:21 986,624 --a------ C:\WINDOWS\system32\drivers\ati2mtag.sys
    2007-04-04 23:21 870,784 --a------ C:\WINDOWS\system32\ati3d1ag.dll
    2007-04-04 23:21 74,240 --a------ C:\WINDOWS\system32\usbui.dll
    2007-04-04 23:21 57,216 --a------ C:\WINDOWS\system32\drivers\redbook.sys
    2007-04-04 23:21 441,408 --a------ C:\WINDOWS\system32\ativvaxx.dll
    2007-04-04 23:21 224,256 --a------ C:\WINDOWS\system32\ati2dvag.dll
    2007-04-04 23:21 2,230,176 --a------ C:\WINDOWS\system32\ati3duag.dll
    2007-04-04 23:21 196,608 --a------ C:\WINDOWS\system32\ati2cqag.dll
    2007-04-04 23:21 10,624 --a------ C:\WINDOWS\system32\drivers\gameenum.sys
    2007-04-04 23:20 9,936 --a------ C:\WINDOWS\system\LZEXPAND.DLL
    2007-04-04 23:20 9,008 --a------ C:\WINDOWS\system\VER.DLL
    2007-04-04 23:20 85,020 --a------ C:\WINDOWS\system32\dgsetup.dll
    2007-04-04 23:20 82,944 --a------ C:\WINDOWS\system\OLECLI.DLL
    2007-04-04 23:20 8,704 --a------ C:\WINDOWS\system32\batt.dll
    2007-04-04 23:20 8,192 -ra------ C:\WINDOWS\system32\kbdhept.dll
    2007-04-04 23:20 74,240 --a------ C:\WINDOWS\system32\storprop.dll
    2007-04-04 23:20 7,168 -ra------ C:\WINDOWS\system32\kbdcz.dll
    2007-04-04 23:20 69,856 --a------ C:\WINDOWS\system\AVICAP.DLL
    2007-04-04 23:20 69,632 --a------ C:\WINDOWS\NOTEPAD.EXE
    2007-04-04 23:20 68,768 --a------ C:\WINDOWS\system\MMSYSTEM.DLL
    2007-04-04 23:20 6,656 -ra------ C:\WINDOWS\system32\kbdycl.dll
    2007-04-04 23:20 6,656 -ra------ C:\WINDOWS\system32\kbdsl1.dll
    2007-04-04 23:20 6,656 -ra------ C:\WINDOWS\system32\kbdsl.dll
    2007-04-04 23:20 6,656 -ra------ C:\WINDOWS\system32\kbdpl.dll
    2007-04-04 23:20 6,656 -ra------ C:\WINDOWS\system32\kbdhu.dll
    2007-04-04 23:20 6,656 -ra------ C:\WINDOWS\system32\kbdhela3.dll
    2007-04-04 23:20 6,656 -ra------ C:\WINDOWS\system32\kbdcz2.dll
    2007-04-04 23:20 6,656 -ra------ C:\WINDOWS\system32\kbdcz1.dll
    2007-04-04 23:20 6,656 -ra------ C:\WINDOWS\system32\kbdcr.dll
    2007-04-04 23:20 6,656 -ra------ C:\WINDOWS\system32\KBDAL.DLL
    2007-04-04 23:20 6,144 -ra------ C:\WINDOWS\system32\kbdtuq.dll
    2007-04-04 23:20 6,144 -ra------ C:\WINDOWS\system32\kbdtuf.dll
    2007-04-04 23:20 6,144 -ra------ C:\WINDOWS\system32\kbdlv1.dll
    2007-04-04 23:20 6,144 -ra------ C:\WINDOWS\system32\kbdlv.dll
    2007-04-04 23:20 6,144 -ra------ C:\WINDOWS\system32\kbdhela2.dll
    2007-04-04 23:20 6,144 -ra------ C:\WINDOWS\system32\kbdgkl.dll
    2007-04-04 23:20 6,144 -ra------ C:\WINDOWS\system32\kbdest.dll
    2007-04-04 23:20 5,632 -ra------ C:\WINDOWS\system32\kbdro.dll
    2007-04-04 23:20 5,632 -ra------ C:\WINDOWS\system32\kbdpl1.dll
    2007-04-04 23:20 5,632 -ra------ C:\WINDOWS\system32\kbdmon.dll
    2007-04-04 23:20 5,632 -ra------ C:\WINDOWS\system32\kbdlt1.dll
    2007-04-04 23:20 5,632 -ra------ C:\WINDOWS\system32\kbdlt.dll
    2007-04-04 23:20 5,632 -ra------ C:\WINDOWS\system32\kbdkyr.dll
    2007-04-04 23:20 5,632 -ra------ C:\WINDOWS\system32\kbdhu1.dll
    2007-04-04 23:20 5,632 -ra------ C:\WINDOWS\system32\kbdhe319.dll
    2007-04-04 23:20 5,632 -ra------ C:\WINDOWS\system32\kbdhe220.dll
    2007-04-04 23:20 5,632 -ra------ C:\WINDOWS\system32\kbdhe.dll
    2007-04-04 23:20 5,632 -ra------ C:\WINDOWS\system32\kbdazel.dll
    2007-04-04 23:20 5,120 --a------ C:\WINDOWS\system\SHELL.DLL
    2007-04-04 23:20 33,120 --a------ C:\WINDOWS\system\COMMDLG.DLL
    2007-04-04 23:20 24,661 --a------ C:\WINDOWS\system32\spxcoins.dll
    2007-04-04 23:20 24,064 --a------ C:\WINDOWS\system\OLESVR.DLL
    2007-04-04 23:20 19,200 --a------ C:\WINDOWS\system\TAPI.DLL
    2007-04-04 23:20 176,157 --a------ C:\WINDOWS\system32\dgrpsetu.dll
    2007-04-04 23:20 15,360 --a------ C:\WINDOWS\TASKMAN.EXE
    2007-04-04 23:20 13,312 --a------ C:\WINDOWS\system32\irclass.dll
    2007-04-04 23:20 126,912 --a------ C:\WINDOWS\system\MSVIDEO.DLL
    2007-04-04 23:20 11,264 --a------ C:\WINDOWS\system32\drivers\irenum.sys
    2007-04-04 23:20 109,504 --a------ C:\WINDOWS\system\AVIFILE.DLL
    2007-04-04 23:20 103,424 --a------ C:\WINDOWS\system32\EqnClass.Dll
    2007-04-04 23:20 <KANSIO> dr------- C:\Program Files
    2007-04-04 23:20 <KANSIO> dr------- C:\DOCUME~1\DEFAUL~1\K„ynnist„-valikko
    2007-04-04 23:20 <KANSIO> dr------- C:\DOCUME~1\ALLUSE~1\Tiedostot
    2007-04-04 23:20 <KANSIO> dr------- C:\DOCUME~1\ALLUSE~1\K„ynnist„-valikko
    2007-04-04 23:20 <KANSIO> d--hs---- C:\WINDOWS\Installer
    2007-04-04 23:20 <KANSIO> d--h----- C:\DOCUME~1\DEFAUL~1\Verkkoymp„rist”
    2007-04-04 23:20 <KANSIO> d--h----- C:\DOCUME~1\DEFAUL~1\Tulostinymp„rist”
    2007-04-04 23:20 <KANSIO> d--h----- C:\DOCUME~1\DEFAUL~1\Mallit
    2007-04-04 23:20 <KANSIO> d--h----- C:\DOCUME~1\ALLUSE~1\Mallit
    2007-04-04 23:20 <KANSIO> d-------- C:\Program Files\Common Files\SpeechEngines
    2007-04-04 23:20 <KANSIO> d-------- C:\Program Files\Common Files\ODBC
    2007-04-04 23:20 <KANSIO> d-------- C:\DOCUME~1\DEFAUL~1\Ty”p”yt„
    2007-04-04 23:20 <KANSIO> d-------- C:\DOCUME~1\DEFAUL~1\Suosikit
    2007-04-04 23:20 <KANSIO> d-------- C:\DOCUME~1\ALLUSE~1\Ty”p”yt„
    2007-04-04 23:20 <KANSIO> d-------- C:\DOCUME~1\ALLUSE~1\Suosikit
    2007-04-04 23:19 <KANSIO> d--hs---- C:\System Volume Information
    2007-04-04 23:19 <KANSIO> d-------- C:\WINDOWS\system32\CatRoot2
    2007-04-04 23:19 <KANSIO> d-------- C:\WINDOWS\system32\CatRoot
    2007-04-04 23:19 <KANSIO> d-------- C:\Documents and Settings
    2007-04-04 23:15 <KANSIO> dr-hsc--- C:\WINDOWS\system32\dllcache
    2007-04-04 23:15 <KANSIO> dr--s---- C:\WINDOWS\Fonts
    2007-04-04 23:15 <KANSIO> dr------- C:\WINDOWS\Web
    2007-04-04 23:15 <KANSIO> d--h----- C:\WINDOWS\inf
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\WinSxS
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\twain_32
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\wins
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\wbem
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\usmt
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\spool
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\ShellExt
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\Setup
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\ras
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\oobe
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\npp
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\mui
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\inetsrv
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\IME
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\icsxml
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\ias
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\export
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\drivers\etc
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\drivers\disdn
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\drivers
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\dhcp
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\config
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\3com_dmi
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\3076
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\2052
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\1054
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\1042
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\1041
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\1037
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\1035
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\1033
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\1031
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\1028
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32\1025
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system32
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\system
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\security
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\Resources
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\repair
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\Provisioning
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\PeerNet
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\pchealth
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\mui
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\msapps
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\msagent
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\Media
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\ime
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\Help
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\ehome
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\Driver Cache
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\Debug
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\Cursors
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\Connection Wizard
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\Config
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\AppPatch
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS\addins
    2007-04-04 23:15 <KANSIO> d-------- C:\WINDOWS
    2007-04-04 22:50 <KANSIO> d-------- C:\DOCUME~1\Valvoja\APPLIC~1\Help
    2007-04-04 22:47 79,320 -ra------ C:\WINDOWS\system32\atiicdxx.dat
    2007-04-04 22:47 516,096 --------- C:\WINDOWS\system32\ati2sgag.exe
    2007-04-04 22:47 299,008 -ra------ C:\WINDOWS\system32\atiiiexx.dll
    2007-04-04 22:47 <KANSIO> d-------- C:\WINDOWS\system32\URTTemp
    2007-04-04 22:46 <KANSIO> d-------- C:\Program Files\ATI Technologies
    2007-04-04 22:40 3,062 --a------ C:\WINDOWS\mozver.dat
    2007-04-04 22:40 107,132 --a------ C:\WINDOWS\UninstallFirefox.exe
    2007-04-04 22:40 0 --a------ C:\WINDOWS\nsreg.dat
    2007-04-04 22:28 <KANSIO> d-------- C:\Program Files\PowerArchiver
    2007-04-04 22:23 <KANSIO> d-------- C:\Program Files\Common Files\Skype
    2007-04-04 22:23 <KANSIO> d-------- C:\DOCUME~1\Valvoja\APPLIC~1\Skype
    2007-04-04 22:22 <KANSIO> d-------- C:\Program Files\Skype
    2007-04-04 22:22 <KANSIO> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
    2007-04-04 22:14 <KANSIO> d-------- C:\Program Files\MSN Messenger
    2007-04-04 22:07 <KANSIO> d-------- C:\WINDOWS\ShellNew
    2007-04-04 22:06 <KANSIO> d-------- C:\DOCUME~1\Valvoja\APPLIC~1\Microsoft Web Folders
    2007-04-04 22:02 87,040 --a------ C:\WINDOWS\system32\wiafbdrv.dll
    2007-04-04 22:02 32,768 --a------ C:\WINDOWS\system32\hpgtmcro.dll
    2007-04-04 22:02 15,104 --a------ C:\WINDOWS\system32\drivers\usbscan.sys
    2007-04-04 22:02 126,976 --a------ C:\WINDOWS\system32\hpgt34tk.dll
    2007-04-04 22:02 101,376 --a------ C:\WINDOWS\system32\hpgt34.dll
    2007-04-04 22:00 95,232 --a------ C:\WINDOWS\system32\Lfkodak.dll
    2007-04-04 22:00 93,184 --a------ C:\WINDOWS\system32\lftif70n.dll
    2007-04-04 22:00 77,824 --a------ C:\WINDOWS\system32\ipeapi12.dll
    2007-04-04 22:00 667,648 --a------ C:\WINDOWS\system32\ipeistor12.dll
    2007-04-04 22:00 55,808 --a------ C:\WINDOWS\system32\lffax70n.dll
    2007-04-04 22:00 55,296 --a------ C:\WINDOWS\system32\ltfil70n.DLL
    2007-04-04 22:00 350,208 --a------ C:\WINDOWS\system32\ltkrn70n.dll
    2007-04-04 22:00 35,328 --a------ C:\WINDOWS\system32\lffpx70n.dll
    2007-04-04 22:00 331,776 --a------ C:\WINDOWS\system32\ipebase12.dll
    2007-04-04 22:00 32,768 --a------ C:\WINDOWS\system32\lfgif70n.dll
    2007-04-04 22:00 32,768 --a------ C:\WINDOWS\system32\hpsj32.dll
    2007-04-04 22:00 32,768 --a------ C:\WINDOWS\system32\hpgreg32.dll
    2007-04-04 22:00 306,688 --a------ C:\WINDOWS\system32\Lffpx7.dll
    2007-04-04 22:00 24,576 --a------ C:\WINDOWS\system32\lfpcx70n.dll
    2007-04-04 22:00 224,768 --a------ C:\WINDOWS\system32\LFCMP70n.DLL
    2007-04-04 22:00 118,784 --a------ C:\WINDOWS\system32\hpsjvset.dll
    2007-04-04 22:00 111,104 --a------ C:\WINDOWS\system32\lfpng70n.dll
    2007-04-04 22:00 1,080 --a------ C:\WINDOWS\AUTOLNCH.REG
    2007-04-04 22:00 <KANSIO> d-------- C:\Program Files\Hewlett-Packard
    2007-04-04 21:55 <KANSIO> d-------- C:\WINDOWS\system32\fi-fi
    2007-04-04 21:54 <KANSIO> d-------- C:\WINDOWS\network diagnostic
    2007-04-04 21:47 <KANSIO> d--hs---- C:\DOCUME~1\Valvoja\UserData
    2007-04-04 21:40 262,144 --a------ C:\DOCUME~1\ALLUSE~1\ntuser.dat
    2007-04-04 21:39 <KANSIO> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
    2007-04-04 20:48 22,752 --a------ C:\WINDOWS\system32\spupdsvc.exe
    2007-04-04 20:48 <KANSIO> d--h----- C:\WINDOWS\$hf_mig$
    2007-04-04 20:48 <KANSIO> d-------- C:\WINDOWS\system32\PreInstall
    2007-04-04 20:41 <KANSIO> d-------- C:\WINDOWS\system32\SoftwareDistribution
    2007-04-04 20:35 82,944 --a------ C:\WINDOWS\system32\drivers\wdmaud.sys
    2007-04-04 20:35 6,400 --a------ C:\WINDOWS\system32\drivers\splitter.sys
    2007-04-04 20:35 52,864 --a------ C:\WINDOWS\system32\drivers\DMusic.sys
    2007-04-04 20:34 765,952 --a------ C:\WINDOWS\system\crlds3d.dll
    2007-04-04 20:34 7,552 --a------ C:\WINDOWS\system32\drivers\MSKSSRV.sys
    2007-04-04 20:34 7,546,880 --a------ C:\WINDOWS\system32\RTLCPL.EXE
    2007-04-04 20:34 7,168 --a------ C:\WINDOWS\system32\drivers\aliperf.sys
    2007-04-04 20:34 7,040 --a------ C:\WINDOWS\system32\drivers\aliidex.sys
    2007-04-04 20:34 68,096 --a------ C:\WINDOWS\SOUNDMAN.EXE
    2007-04-04 20:34 65,536 --a------ C:\WINDOWS\system32\Audio3D.dll
    2007-04-04 20:34 65,536 --a------ C:\WINDOWS\system32\a3d.dll
    2007-04-04 20:34 635,281 --a------ C:\WINDOWS\system32\drivers\ALCXWDM.SYS
    2007-04-04 20:34 60,800 --a------ C:\WINDOWS\system32\drivers\sysaudio.sys
    2007-04-04 20:34 60,288 --a------ C:\WINDOWS\system32\drivers\drmk.sys
    2007-04-04 20:34 54,272 --a------ C:\WINDOWS\system32\drivers\swmidi.sys
    2007-04-04 20:34 5,376 --a------ C:\WINDOWS\system32\drivers\MSPCLOCK.sys
    2007-04-04 20:34 400,384 --a------ C:\WINDOWS\system32\drivers\ALCXSENS.SYS
    2007-04-04 20:34 40,817 --a------ C:\WINDOWS\system32\ali5minst.exe
    2007-04-04 20:34 40,448 --------- C:\WINDOWS\system32\ChCfg.exe
    2007-04-04 20:34 4,992 --a------ C:\WINDOWS\system32\drivers\MSPQM.sys
    2007-04-04 20:34 4,096 --a------ C:\WINDOWS\system32\ksuser.dll
    2007-04-04 20:34 306,947 --a------ C:\WINDOWS\IsUninst.exe
    2007-04-04 20:34 25,600 --a------ C:\WINDOWS\system32\uninst.exe
    2007-04-04 20:34 208,896 --------- C:\WINDOWS\alcupd.exe
    2007-04-04 20:34 2,944 --a------ C:\WINDOWS\system32\drivers\drmkaud.sys
    2007-04-04 20:34 172,416 --a------ C:\WINDOWS\system32\drivers\kmixer.sys
    2007-04-04 20:34 155,648 --a------ C:\WINDOWS\system32\RTLCPAPI.dll
    2007-04-04 20:34 145,792 --a------ C:\WINDOWS\system32\drivers\portcls.sys
    2007-04-04 20:34 142,464 --a------ C:\WINDOWS\system32\drivers\aec.sys
    2007-04-04 20:34 139,264 --------- C:\WINDOWS\alcrmv.exe
    2007-04-04 20:34 <KANSIO> d-------- C:\WINDOWS\system32\ReinstallBackups
    2007-04-04 20:34 <KANSIO> d-------- C:\Program Files\ALi
    2007-04-04 20:33 51,840 --a------ C:\WINDOWS\system32\drivers\m5289.sys
    2007-04-04 20:33 5,824 --a------ C:\WINDOWS\system32\drivers\ASUSHWIO.SYS
    2007-04-04 20:33 35,587 --------- C:\WINDOWS\system32\rmlan.exe
    2007-04-04 20:33 34,307 --------- C:\WINDOWS\system32\drivers\Install.EXE
    2007-04-04 20:33 29,696 --a------ C:\WINDOWS\system32\drivers\ULILAN.SYS
    2007-04-04 20:33 28,672 --------- C:\WINDOWS\system32\UnLAN.exe
    2007-04-04 20:33 28,672 --------- C:\WINDOWS\system32\5289_Devi86.exe
    2007-04-04 20:33 <KANSIO> d--h----- C:\Program Files\InstallShield Installation Information
    2007-04-04 20:33 <KANSIO> d-------- C:\Program Files\ULI5289
    2007-04-04 20:33 <KANSIO> d-------- C:\Program Files\Common Files\InstallShield
    2007-04-04 20:32 3,145,728 --ah----- C:\DOCUME~1\Valvoja\NTUSER.DAT
    2007-04-04 20:32 <KANSIO> dr------- C:\DOCUME~1\Valvoja\Suosikit
    2007-04-04 20:32 <KANSIO> dr------- C:\DOCUME~1\Valvoja\Omat tiedostot
    2007-04-04 20:32 <KANSIO> dr------- C:\DOCUME~1\Valvoja\K„ynnist„-valikko
    2007-04-04 20:32 <KANSIO> d--h----- C:\DOCUME~1\Valvoja\Verkkoymp„rist”
    2007-04-04 20:32 <KANSIO> d--h----- C:\DOCUME~1\Valvoja\Tulostinymp„rist”
    2007-04-04 20:32 <KANSIO> d--h----- C:\DOCUME~1\Valvoja\Mallit
    2007-04-04 20:32 <KANSIO> d-------- C:\DOCUME~1\Valvoja\Ty”p”yt„
    2007-04-04 20:31 786,432 --ah----- C:\DOCUME~1\NETWOR~1\NTUSER.DAT
    2007-04-04 20:31 786,432 --ah----- C:\DOCUME~1\LOCALS~1\NTUSER.DAT
    2007-04-04 20:31 <KANSIO> d-------- C:\WINDOWS\SoftwareDistribution
    2007-04-04 20:31 <KANSIO> d-------- C:\WINDOWS\Prefetch
    2007-04-04 20:28 <KANSIO> d-------- C:\WINDOWS\system32\xircom
    2007-04-04 20:28 <KANSIO> d-------- C:\Program Files\microsoft frontpage
    2007-04-04 20:27 229,376 ---h----- C:\DOCUME~1\DEFAUL~1\NTUSER.DAT
    2007-04-04 20:27 112,128 --a------ C:\WINDOWS\system32\mapi32.dll
    2007-04-04 20:27 0 -rahs---- C:\MSDOS.SYS
    2007-04-04 20:27 0 -rahs---- C:\IO.SYS
    2007-04-04 20:27 0 --a------ C:\CONFIG.SYS
    2007-04-04 20:27 0 --a------ C:\AUTOEXEC.BAT
    2007-04-04 20:26 11,264 --a------ C:\WINDOWS\system32\atrace.dll
    2007-04-04 20:26 <KANSIO> dr------- C:\WINDOWS\Offline Web Pages
    2007-04-04 20:26 <KANSIO> d--hs---- C:\DOCUME~1\ALLUSE~1\DRM
    2007-04-04 20:26 <KANSIO> d--h----- C:\Program Files\WindowsUpdate
    2007-04-04 20:26 <KANSIO> d---s---- C:\WINDOWS\Downloaded Program Files
    2007-04-04 20:26 <KANSIO> d-------- C:\WINDOWS\system32\DirectX
    2007-04-04 20:26 <KANSIO> d-------- C:\Program Files\Online Services
    2007-04-04 20:25 86,016 --a------ C:\WINDOWS\system32\isign32.dll
    2007-04-04 20:25 81,920 --a------ C:\WINDOWS\system32\ils.dll
    2007-04-04 20:25 8,192 --a------ C:\WINDOWS\system32\bitsprx2.dll
    2007-04-04 20:25 73,728 --a------ C:\WINDOWS\system32\icwdial.dll
    2007-04-04 20:25 73,472 --a------ C:\WINDOWS\system32\drivers\sr.sys
    2007-04-04 20:25 7,168 --a------ C:\WINDOWS\system32\bitsprx3.dll
    2007-04-04 20:25 69,632 --a------ C:\WINDOWS\system32\msconf.dll
    2007-04-04 20:25 679,424 --a------ C:\WINDOWS\system32\inetcomm.dll
    2007-04-04 20:25 67,584 --a------ C:\WINDOWS\system32\srclient.dll
    2007-04-04 20:25 65,536 --a------ C:\WINDOWS\system32\icwphbk.dll
    2007-04-04 20:25 64,512 --a------ C:\WINDOWS\system32\acctres.dll
    2007-04-04 20:25 6,656 --a------ C:\WINDOWS\system32\wuauserv.dll
    2007-04-04 20:25 48,640 --a------ C:\WINDOWS\system32\inetres.dll
    2007-04-04 20:25 465,176 --a------ C:\WINDOWS\system32\wuapi.dll
    2007-04-04 20:25 45,568 --a------ C:\WINDOWS\system32\safrslv.dll
    2007-04-04 20:25 43,520 --a------ C:\WINDOWS\system32\safrcdlg.dll
    2007-04-04 20:25 43,520 --a------ C:\WINDOWS\system32\racpldlg.dll
    2007-04-04 20:25 41,240 --a------ C:\WINDOWS\system32\wups.dll
    2007-04-04 20:25 382,464 --a------ C:\WINDOWS\system32\qmgr.dll
    2007-04-04 20:25 34,560 --a------ C:\WINDOWS\system32\mnmdd.dll
    2007-04-04 20:25 32,768 --a------ C:\WINDOWS\system32\mnmsrvc.exe
    2007-04-04 20:25 32,768 --a------ C:\WINDOWS\system32\isrdbg32.dll
    2007-04-04 20:25 29,696 --a------ C:\WINDOWS\system32\safrdm.dll
    2007-04-04 20:25 28,672 --a------ C:\WINDOWS\system32\nmmkcert.dll
    2007-04-04 20:25 278,528 --a------ C:\WINDOWS\system32\inetcfg.dll
    2007-04-04 20:25 276,480 --a------ C:\WINDOWS\system32\mstask.dll
    2007-04-04 20:25 252,928 --a------ C:\WINDOWS\system32\msoeacct.dll
    2007-04-04 20:25 240,640 --a------ C:\WINDOWS\system32\srrstr.dll
    2007-04-04 20:25 23,040 --a------ C:\WINDOWS\system32\fltmc.exe
    2007-04-04 20:25 194,840 --a------ C:\WINDOWS\system32\wuaueng1.dll
    2007-04-04 20:25 190,976 --a------ C:\WINDOWS\system32\schedsvc.dll
    2007-04-04 20:25 18,944 --a------ C:\WINDOWS\system32\qmgrprxy.dll
    2007-04-04 20:25 173,848 --a------ C:\WINDOWS\system32\wuauclt1.exe
    2007-04-04 20:25 173,536 --a------ C:\WINDOWS\system32\wuweb.dll
    2007-04-04 20:25 170,496 --a------ C:\WINDOWS\system32\srsvc.dll
    2007-04-04 20:25 16,896 --a------ C:\WINDOWS\system32\fltlib.dll
    2007-04-04 20:25 16,384 --a------ C:\WINDOWS\system32\icfgnt5.dll
    2007-04-04 20:25 128,896 --a------ C:\WINDOWS\system32\drivers\fltmgr.sys
    2007-04-04 20:25 127,256 --a------ C:\WINDOWS\system32\wucltui.dll
    2007-04-04 20:25 124,696 --a------ C:\WINDOWS\system32\wuauclt.exe
    2007-04-04 20:25 12,288 --a------ C:\WINDOWS\system32\nmevtmsg.dll
    2007-04-04 20:25 12,288 --a------ C:\WINDOWS\system32\mstinit.exe
    2007-04-04 20:25 105,984 --a------ C:\WINDOWS\system32\msoert2.dll
    2007-04-04 20:25 1,343,768 --a------ C:\WINDOWS\system32\wuaueng.dll
    2007-04-04 20:25 <KANSIO> d---s---- C:\WINDOWS\Tasks
    2007-04-04 20:25 <KANSIO> d-------- C:\WINDOWS\system32\Restore
    2007-04-04 20:25 <KANSIO> d-------- C:\WINDOWS\system32\Macromed
    2007-04-04 20:25 <KANSIO> d-------- C:\WINDOWS\srchasst
    2007-04-04 20:25 <KANSIO> d-------- C:\Program Files\Movie Maker
    2007-04-04 20:25 <KANSIO> d-------- C:\Program Files\Common Files\MSSoap
    2007-04-04 20:24 97,792 --a------ C:\WINDOWS\system32\comrepl.dll
    2007-04-04 20:24 956,416 --a------ C:\WINDOWS\system32\msdtctm.dll
    2007-04-04 20:24 93,696 --a------ C:\WINDOWS\system32\tscfgwmi.dll
    2007-04-04 20:24 91,136 --a------ C:\WINDOWS\system32\mtxoci.dll
    2007-04-04 20:24 9,728 --a------ C:\WINDOWS\system32\reset.exe
    2007-04-04 20:24 87,176 --a------ C:\WINDOWS\system32\rdpwsx.dll
    2007-04-04 20:24 85,504 --a------ C:\WINDOWS\system32\catsrvps.dll
    2007-04-04 20:24 80,896 --a------ C:\WINDOWS\system32\charmap.exe
    2007-04-04 20:24 73,216 --a------ C:\WINDOWS\system32\avwav.dll
    2007-04-04 20:24 67,072 --a------ C:\WINDOWS\system32\rdshost.exe
    2007-04-04 20:24 655,360 --a------ C:\WINDOWS\system32\mstscax.dll
    2007-04-04 20:24 625,152 --a------ C:\WINDOWS\system32\catsrvut.dll
    2007-04-04 20:24 62,464 --a------ C:\WINDOWS\system32\rdpclip.exe
    2007-04-04 20:24 605,696 --a------ C:\WINDOWS\system32\getuname.dll
    2007-04-04 20:24 60,416 --a------ C:\WINDOWS\system32\remotepg.dll
    2007-04-04 20:24 60,416 --a------ C:\WINDOWS\system32\colbact.dll
    2007-04-04 20:24 6,144 --a------ C:\WINDOWS\system32\msdtc.exe
    2007-04-04 20:24 58,880 --a------ C:\WINDOWS\system32\msdtclog.dll
    2007-04-04 20:24 58,880 --a------ C:\WINDOWS\system32\licwmi.dll
    2007-04-04 20:24 56,832 --a------ C:\WINDOWS\system32\sol.exe
    2007-04-04 20:24 56,320 --a------ C:\WINDOWS\system32\servdeps.dll
    2007-04-04 20:24 55,296 --a------ C:\WINDOWS\system32\freecell.exe
    2007-04-04 20:24 540,160 --a------ C:\WINDOWS\system32\comuid.dll
    2007-04-04 20:24 54,272 --a------ C:\WINDOWS\system32\stclient.dll
    2007-04-04 20:24 538,624 --a------ C:\WINDOWS\system32\spider.exe
    2007-04-04 20:24 5,632 --a------ C:\WINDOWS\system32\write.exe
    2007-04-04 20:24 5,120 --a------ C:\WINDOWS\system32\dcomcnfg.exe
    2007-04-04 20:24 498,688 --a------ C:\WINDOWS\system32\clbcatq.dll
    2007-04-04 20:24 44,544 --a------ C:\WINDOWS\system32\tscupgrd.exe
    2007-04-04 20:24 44,544 --a------ C:\WINDOWS\system32\hticons.dll
    2007-04-04 20:24 426,496 --a------ C:\WINDOWS\system32\msdtcprx.dll
    2007-04-04 20:24 404,992 --a------ C:\WINDOWS\system32\mstsc.exe
    2007-04-04 20:24 4,096 --a------ C:\WINDOWS\system32\rdpcfgex.dll
    2007-04-04 20:24 4,096 --a------ C:\WINDOWS\system32\mtxex.dll
    2007-04-04 20:24 39,424 --a------ C:\WINDOWS\system32\cfgbkend.dll
    2007-04-04 20:24 350,208 --a------ C:\WINDOWS\system32\hypertrm.dll
    2007-04-04 20:24 35,328 --a------ C:\WINDOWS\system32\winchat.exe
    2007-04-04 20:24 344,064 --a------ C:\WINDOWS\system32\mspaint.exe
    2007-04-04 20:24 33,792 --a------ C:\WINDOWS\system32\regini.exe
    2007-04-04 20:24 295,424 --a------ C:\WINDOWS\system32\termsrv.dll
    2007-04-04 20:24 25,600 --a------ C:\WINDOWS\system32\comaddin.dll
    2007-04-04 20:24 25,088 --a------ C:\WINDOWS\system32\mtxlegih.dll
    2007-04-04 20:24 227,840 --a------ C:\WINDOWS\system32\avtapi.dll
    2007-04-04 20:24 225,792 --a------ C:\WINDOWS\system32\catsrv.dll
    2007-04-04 20:24 22,016 --a------ C:\WINDOWS\system32\qwinsta.exe
    2007-04-04 20:24 21,896 --a------ C:\WINDOWS\system32\drivers\tdtcp.sys
    2007-04-04 20:24 21,672 --a------ C:\WINDOWS\system32\emptyregdb.dat
    2007-04-04 20:24 21,504 --a------ C:\WINDOWS\system32\msg.exe
    2007-04-04 20:24 20,480 --a------ C:\WINDOWS\system32\qprocess.exe
    2007-04-04 20:24 20,480 --a------ C:\WINDOWS\system32\mtxdm.dll
    2007-04-04 20:24 19,968 --a------ C:\WINDOWS\system32\rdpsnd.dll
    2007-04-04 20:24 186,368 --a------ C:\WINDOWS\system32\accwiz.exe
    2007-04-04 20:24 185,344 --a------ C:\WINDOWS\system32\cmprops.dll
    2007-04-04 20:24 17,408 --a------ C:\WINDOWS\system32\tsshutdn.exe
    2007-04-04 20:24 17,408 --a------ C:\WINDOWS\system32\mmfutil.dll
    2007-04-04 20:24 161,280 --a------ C:\WINDOWS\system32\msdtcuiu.dll
    2007-04-04 20:24 16,896 --a------ C:\WINDOWS\system32\qappsrv.exe
    2007-04-04 20:24 16,384 --a------ C:\WINDOWS\system32\tskill.exe
    2007-04-04 20:24 16,384 --a------ C:\WINDOWS\system32\avmeter.dll
    2007-04-04 20:24 15,872 --a------ C:\WINDOWS\system32\rwinsta.exe
    2007-04-04 20:24 15,872 --a------ C:\WINDOWS\system32\cdmodem.dll
    2007-04-04 20:24 15,360 --a------ C:\WINDOWS\system32\tscon.exe
    2007-04-04 20:24 15,360 --a------ C:\WINDOWS\system32\logoff.exe
    2007-04-04 20:24 147,968 --a------ C:\WINDOWS\system32\rdchost.dll
    2007-04-04 20:24 147,456 --a------ C:\WINDOWS\system32\comsnap.dll
    2007-04-04 20:24 140,800 --a------ C:\WINDOWS\system32\sessmgr.exe
    2007-04-04 20:24 14,848 --a------ C:\WINDOWS\system32\tsdiscon.exe
    2007-04-04 20:24 14,848 --a------ C:\WINDOWS\system32\shadow.exe
    2007-04-04 20:24 139,528 --a------ C:\WINDOWS\system32\drivers\rdpwd.sys
    2007-04-04 20:24 138,752 --a------ C:\WINDOWS\system32\sndvol32.exe
    2007-04-04 20:24 131,584 --a------ C:\WINDOWS\system32\sndrec32.exe
    2007-04-04 20:24 13,824 --a------ C:\WINDOWS\system32\rdsaddin.exe
    2007-04-04 20:24 126,976 --a------ C:\WINDOWS\system32\mshearts.exe
    2007-04-04 20:24 123,392 --a------ C:\WINDOWS\system32\mplay32.exe
    2007-04-04 20:24 12,040 --a------ C:\WINDOWS\system32\drivers\tdpipe.sys
    2007-04-04 20:24 119,808 --a------ C:\WINDOWS\system32\winmine.exe
    2007-04-04 20:24 114,688 --a------ C:\WINDOWS\system32\calc.exe
    2007-04-04 20:24 110,080 --a------ C:\WINDOWS\system32\clbcatex.dll
    2007-04-04 20:24 11,776 --a------ C:\WINDOWS\system32\xolehlp.dll
    2007-04-04 20:24 11,264 --a------ C:\WINDOWS\system32\icaapi.dll
    2007-04-04 20:24 102,400 --a------ C:\WINDOWS\system32\clipbrd.exe
    2007-04-04 20:24 1,267,200 --a------ C:\WINDOWS\system32\comsvcs.dll
    2007-04-04 20:24 1,161 --a------ C:\WINDOWS\system32\usrlogon.cmd
    2007-04-04 20:24 <KANSIO> d-------- C:\WINDOWS\system32\MsDtc
    2007-04-04 20:24 <KANSIO> d-------- C:\WINDOWS\system32\Com
    2007-04-04 20:24 <KANSIO> d-------- C:\WINDOWS\Registration
    2007-04-04 20:24 <KANSIO> d-------- C:\Program Files\Windows NT
    2007-04-04 20:24 <KANSIO> d-------- C:\Program Files\MSN Gaming Zone
    2007-04-04 20:24 <KANSIO> d-------- C:\Program Files\Messenger
    2007-04-04 20:23 40,840 --a------ C:\WINDOWS\system32\drivers\termdd.sys
    2007-04-04 20:23 196,864 --a------ C:\WINDOWS\system32\drivers\rdpdr.sys


    (((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))


    2007-04-06 11:03 64812 --a------ C:\WINDOWS\system32\perfc00b.dat
    2007-04-06 11:03 354486 --a------ C:\WINDOWS\system32\perfh00b.dat
    2007-04-04 23:20 62 --ahs---- C:\DOCUME~1\Valvoja\APPLIC~1\desktop.ini
    2007-03-17 16:44 292864 --a------ C:\WINDOWS\system32\winsrv.dll
    2007-03-14 19:38 524288 --a------ C:\WINDOWS\opuc.dll
    2007-03-08 18:38 578048 --a------ C:\WINDOWS\system32\user32.dll
    2007-03-08 18:37 40960 --a------ C:\WINDOWS\system32\mf3216.dll
    2007-03-08 18:37 281600 --a------ C:\WINDOWS\system32\gdi32.dll
    2007-03-08 18:34 1843840 --a------ C:\WINDOWS\system32\win32k.sys
    2007-03-05 13:34 676224 --a------ C:\WINDOWS\system32\ogacheckcontrol.dll
    2007-02-16 18:50 14368 --a------ C:\WINDOWS\system32\relog_ap.dll
    2007-02-14 19:14 17440 --a------ C:\WINDOWS\system32\acrotls.dll
    2007-02-14 19:01 206368 --a------ C:\WINDOWS\system32\snapapi.dll
    2007-02-05 23:19 185344 --a------ C:\WINDOWS\system32\upnphost.dll


    (((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))


    *Note* empty entries & legit default entries are not shown

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects]
    {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    {DB87CDE1-EF9C-44EB-A42F-6D0B3C72C516} C:\Program Files\Elisa\Avustaja\IEFixItNowPlugin.dll

    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
    "ALi5289"="C:\\Program Files\\ULI5289\\ALi5289.exe"
    "SoundMan"="SOUNDMAN.EXE"
    "ATIPTA"="C:\\Program Files\\ATI Technologies\\ATI Control Panel\\atiptaxx.exe"
    "anysee_TR"="C:\\Program Files\\anysee\\anysee-E30\\anysee_TR.exe"
    "Elisa Avustaja"="\"C:\\Program Files\\Elisa\\Avustaja\\Elisa.exe\""
    "F-Secure Manager"="\"C:\\Program Files\\F-Secure\\Common\\FSM32.EXE\" /splash"
    "F-Secure TNB"="\"C:\\Program Files\\F-Secure\\TNB\\TNBUtil.exe\" /CHECKALL /WAITFORSW"

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
    "CTFMON.EXE"="C:\\WINDOWS\\system32\\ctfmon.exe"
    "Skype"="\"C:\\Program Files\\Skype\\Phone\\Skype.exe\" /nosplash /minimized"
    "PowerBar"=""
    "MSMSGS"="\"C:\\Program Files\\Messenger\\msmsgs.exe\" /background"

    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
    "LinkResolveIgnoreLinkInfo"=dword:00000000
    "NoResolveSearch"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer\Run]

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
    "LinkResolveIgnoreLinkInfo"=dword:00000000

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\Run]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
    "{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="AVG Anti-Spyware 7.5"

    HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa
    Authentication Packages REG_MULTI_SZ msv1_0\0relog_ap\0\0
    Security Packages REG_MULTI_SZ kerberos\0msv1_0\0schannel\0wdigest\0\0
    Notification Packages REG_MULTI_SZ scecli\0\0


    [HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost]
    HTTPFilter REG_MULTI_SZ HTTPFilter\0\0
    LocalService REG_MULTI_SZ Alerter\0WebClient\0LmHosts\0RemoteRegistry\0upnphost\0SSDPSRV\0\0
    NetworkService REG_MULTI_SZ DnsCache\0\0
    DcomLaunch REG_MULTI_SZ DcomLaunch\0TermService\0\0
    rpcss REG_MULTI_SZ RpcSs\0\0
    imgsvc REG_MULTI_SZ StiSvc\0\0
    termsvcs REG_MULTI_SZ TermService\0\0

    *newlycreated* - HKEY_LOCAL_MACHINE\system\currentcontrolset\enum\root\LEGACY_BACKWEB_PLUG-IN_-_7681197
    *newlycreated* - HKEY_LOCAL_MACHINE\system\currentcontrolset\enum\root\LEGACY_F-SECURE_NETWORK_REQUEST_BROKER
    *newlycreated* - HKEY_LOCAL_MACHINE\system\currentcontrolset\enum\root\LEGACY_FSDFWD
    *newlycreated* - HKEY_LOCAL_MACHINE\system\currentcontrolset\enum\root\LEGACY_FSMA

    ********************************************************************

    catchme 0.3.660 W2K/XP/Vista - userland rootkit detector by Gmer, http://www.gmer.net
    Rootkit scan 2007-05-02 21:14:17
    Windows 5.1.2600 Service Pack 2 NTFS

    scanning hidden processes ...

    scanning hidden services ...

    scanning hidden autostart entries ...

    HKCU\Software\Microsoft\Windows\CurrentVersion\Run
    PowerBar = ????????????l?@?l?@?D?????6~??????????????6~l?@?l?@????? ???????????W?9~??6~??????6~K?6~x???????[?6~???????? ??????????????|x???0???????????? pt??6~????????????????????D???????????l?@?l?@?????Q?7~????t?@?????l?@?8?@?l?@?3??s????????????????????8?@?_??s8?@?8?@

    scanning hidden files ...

    scan completed successfully
    hidden processes: 0
    hidden services: 0
    hidden files: 0


    ********************************************************************

    Completion time: 07-05-02 21:14:19
    C:\ComboFix-quarantined-files.txt ... 07-05-02 21:14
     
  7. Auttaja

    Auttaja Guest

    tutkiskelen lokia kohta ajan kaa, ootko koittanu googlen hakua, ei vaikuttanu haittaohjelma aiheuttamalta ilmotukselta

    1,Lataa AVG Anti-Spyware 7.5 ja tallenna ohjelma työpöydällesi. Jos sinulla on jo kyseinen ohjelma siirry suoraan kohtaan 2!

    [*]Kun olet ladannut ohjelman, kaksoisklikkaa asennuohjelman pikakuvaketta työpöydälläsi, asennus alkaa.
    [*]Asennuksen jälkeen täytyy ohjelma käynnistää ja sen tunnisteet päivittää.

    2. [*]Käynnistä AVG eAnti-Spyware.
    [*]Klikkaa "Update" kuvaketta päävalikossa. Sen jälkeen klikkaa "Update now" painiketta.
    [*]Sitten klikkaa "Start Update" kuvaketta jolloin päivitys alkaa.
    [*]Paina hetken kuluttua uudestaan "Start Update" , jos päivitykset eivät heti onnistu
    [*]Jos automaattipäivitys ei jostain syystä toimi, niin tunnisteet voi ladata manuaalisesti http://www.ewido.net/en/download/updates/ -linkin takaa.
    [*]Kun päivitykset on ladattu, klikkaa "Scanner" kuvaketta ikkunan ylälaidassa. Valitse sitten "Settings" välilehti.
    [*]Kun "Settings" valikko on auennut, klikkaa "Recommended actions" ja sitten valitse "Quarantine".
    [*]Sitten "Reports" valikon alta:
    [*]Laita täppi kohtaan "Automatically generate report after every scan"
    [*]Ota täppi pois kohdasta"Only if threats were found"
    [*]Sitten klikkaa "Shield" kuvaketta ikkunan ylälaidassa
    [*]"Resident shield is", muuta tila active:sta inactive:ksi
    [*]Sulje ohjelma, ÄLÄ skannaa vielä.

    Käynnistä tietokone vikasietotilaan:
    1. Käynnistä tietokone uudelleen.
    2. Kun tietokone käynnistyy, paina F8-näppäintä.
    3. Näyttöön tulee erilaisia käynnistysvaihtoehtoja.
    4. Valitse näppäimistön nuolinäppäinten avulla Vikasietotila.
    5. Paina ENTER-näppäintä.

    HUOM! Älä käytä muita ohjelmia AVG skannauksen aikana, tämä saattaa häiritä skannausta.
    [*]Kun vikasietotilassa, käynnistä AVG Anti-Spyware.
    [*]Klikkaa "Scanner" kuvaketta ikkunan ylälaidassa ja valitse "Scan" välilehti. Sitten klikkaa "Complete System Scan".
    [*]AVG aloittaa nyt tietokoneen skannaamisen, ole kärsivällinen sillä skannaus vie aikaa.
    Kun skannaus on valmis:
    TÄRKEÄÄ : Älä klikkaa "Save Scan Report" ennen kuin klikkaat "Apply all Actions"
    [*]Varmistu, että Set all elements to: näyttää Quarantine (1), jos ei, klikkaa linkkiä ja valitse Quarantine popup-valikosta.
    [*]Sinulta kysytään mitä tehdä jos infektioita löytyi, valitse silloin "Apply all actions"
    [​IMG]
    [*]Sitten klikkaa "Reports" kuvaketta ohjelma yläosasta.
    [*]Klikkaa "Save report as" painiketta ikkunan vasemmassa alalaidassa ja tallenna raportti työpöydälle.
    [*]Sulje ohjelma, käynnistä kone normaalisti ja lähetä AVG:n raportti viestiketjuusi.

     

Jaa tämä sivu