hjt logi

Kone alkoi sekoilemaan eilen. Voisko joku auttaa?

Logfile of HijackThis v1.99.1
Scan saved at 14:26:06, on 30.11.2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AVPersonal\AVGUARD.EXE
C:\Program Files\AVPersonal\AVWUPSRV.EXE
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
C:\WINDOWS\system32\ZoneLabs\isafe.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\WinRAR\WinRAR.exe
I:\Omat lataukset\hijackthis_199\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: NkbMonitor.exe.lnk = C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AntiVir Service (AntiVirService) - H+BEDV Datentechnik GmbH - C:\Program Files\AVPersonal\AVGUARD.EXE
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AntiVir Update (AVWUpSrv) - H+BEDV Datentechnik GmbH, Germany - C:\Program Files\AVPersonal\AVWUPSRV.EXE
O23 - Service: CA ISafe (CAISafe) - Computer Associates International, Inc. - C:\WINDOWS\system32\ZoneLabs\isafe.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

 

Lokissa ei näy mitään outoa. Millaisia ongelmia tarkalleen?

 

Nyt kone on suht normaali, olen säätänyt koko aamun asetuksia ja ajanut ohjelmia läpi. Eilen, esim. Xp:n asetukset mmuuttuivat sisäänkirjautumisessa, verkkoyhteyden päälle tuli varoituskolmio eikä päässyt nettiin ym. Ilmeisesti amatööri-säätämiseni on tuottanut tulosta, jos logi on OK..

 

Voisit ajaa varmistaakseen:

Ewido: http://www.ewido.net/en/download/
Päivitys, ja koko koneen tarkistus, poista löydöt.

tai

eScan: http://koti.mbnet.fi/pattaya1/escanmwav.htm
Päivitä ja aja kone läpi sivun ohjeiden mukaisesti.


Lähetä viel raportti (loki) löydöistä tähän alle.

 

Ewidolla tuli seuraavaa (tuo ensimmäinen meni ohi, mutta poistin sen):

---------------------------------------------------------
ewido security suite - Scan report
---------------------------------------------------------

+ Created on: 18:18:38, 30.11.2005
+ Report-Checksum: 2A9D1E55

+ Scan result:

:mozilla.97:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.2o7 : Ignored
:mozilla.18:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.19:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.20:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.21:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.22:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.23:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.24:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.25:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Masterstats : Cleaned with backup
:mozilla.26:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.27:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.29:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
:mozilla.37:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.38:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.39:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.40:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.41:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.49:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.50:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.55:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Adbrite : Cleaned with backup
:mozilla.56:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Adbrite : Cleaned with backup
:mozilla.63:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Adtech : Cleaned with backup
:mozilla.64:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Adtech : Cleaned with backup
:mozilla.71:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.72:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.73:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Clickzs : Cleaned with backup
:mozilla.74:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Clickzs : Cleaned with backup
:mozilla.113:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Paycounter : Cleaned with backup
:mozilla.129:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Spylog : Cleaned with backup
:mozilla.130:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Tradedoubler : Cleaned with backup
:mozilla.131:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Tradedoubler : Cleaned with backup
:mozilla.132:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.133:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.134:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.135:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.136:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.144:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
:mozilla.145:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
:mozilla.146:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Cqcounter : Cleaned with backup
:mozilla.160:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Onestat : Cleaned with backup
:mozilla.161:C:\Documents and Settings\Petri\Application Data\Mozilla\Firefox\Profiles\cyax1w7o.default\cookies.txt -> Spyware.Cookie.Onestat : Cleaned with backup
C:\Documents and Settings\Petri\Cookies\petri@microsofteup.112.2o7[1].txt -> Spyware.Cookie.2o7 : Cleaned with backup


::Report End

---------------------------------------------------------
ewido security suite - Connection report
---------------------------------------------------------

+ Created on: 18:33:30, 30.11.2005
+ Report-Checksum: CF2568DC

TCP 0.0.0.0:135 0.0.0.0:0 LISTENING
TCP 0.0.0.0:445 0.0.0.0:0 LISTENING
TCP 0.0.0.0:1025 0.0.0.0:0 LISTENING
TCP 0.0.0.0:3389 0.0.0.0:0 LISTENING
TCP 0.0.0.0:18350 0.0.0.0:0 LISTENING
TCP 127.0.0.1:1025 127.0.0.1:1123 TIME_WAIT
TCP 127.0.0.1:1025 127.0.0.1:1129 TIME_WAIT
TCP 127.0.0.1:1025 127.0.0.1:1133 TIME_WAIT
TCP 127.0.0.1:1025 127.0.0.1:1135 TIME_WAIT
TCP 127.0.0.1:1025 127.0.0.1:1136 TIME_WAIT
TCP 127.0.0.1:1025 127.0.0.1:1137 TIME_WAIT
TCP 127.0.0.1:1025 127.0.0.1:1138 TIME_WAIT
TCP 127.0.0.1:1025 127.0.0.1:1139 TIME_WAIT
TCP 127.0.0.1:1030 0.0.0.0:0 LISTENING
TCP 127.0.0.1:1031 0.0.0.0:0 LISTENING
TCP 127.0.0.1:1076 127.0.0.1:1077 ESTABLISHED
TCP 127.0.0.1:1077 127.0.0.1:1076 ESTABLISHED
TCP 192.168.1.57:139 0.0.0.0:0 LISTENING
TCP 192.168.1.57:1057 207.46.6.86:1863 ESTABLISHED
TCP 192.168.1.57:1116 212.54.3.9:80 CLOSE_WAIT
TCP 192.168.1.57:1125 70.85.60.165:80 TIME_WAIT
TCP 192.168.1.57:1126 70.85.60.165:80 TIME_WAIT
TCP 192.168.1.57:1127 70.85.60.165:80 TIME_WAIT
TCP 192.168.1.57:1128 70.85.60.165:80 TIME_WAIT
TCP 192.168.1.57:1131 66.249.93.104:80 ESTABLISHED
TCP 192.168.1.57:1134 70.85.60.165:80 TIME_WAIT
TCP 192.168.1.57:1143 195.148.177.3:443 ESTABLISHED
TCP 192.168.1.57:1144 212.54.3.16:80 TIME_WAIT
UDP 0.0.0.0:445
UDP 0.0.0.0:500
UDP 0.0.0.0:1032
UDP 0.0.0.0:1053
UDP 0.0.0.0:1063
UDP 0.0.0.0:4500
UDP 127.0.0.1:123
UDP 127.0.0.1:1054
UDP 192.168.1.57:9
UDP 192.168.1.57:123
UDP 192.168.1.57:137
UDP 192.168.1.57:138
UDP 192.168.1.57:53590


---------------------------------------------------------
ewido security suite - Process report
---------------------------------------------------------

+ Created on: 18:33:43, 30.11.2005
+ Report-Checksum: 4FA71174

0: System Process
4: System Process
304: C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe
392: C:\WINDOWS\System32\alg.exe
448: C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
460: \SystemRoot\System32\smss.exe
488: C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
532: \??\C:\WINDOWS\system32\csrss.exe
556: \??\C:\WINDOWS\system32\winlogon.exe
600: C:\WINDOWS\system32\services.exe
612: C:\WINDOWS\system32\lsass.exe
764: C:\WINDOWS\system32\Ati2evxx.exe
780: C:\WINDOWS\system32\svchost.exe
792: C:\Program Files\Winamp\winampa.exe
808: C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
864: C:\WINDOWS\system32\svchost.exe
924: C:\Program Files\MSN Messenger\MsnMsgr.Exe
944: C:\WINDOWS\System32\svchost.exe
1012: C:\WINDOWS\system32\svchost.exe
1108: C:\WINDOWS\system32\svchost.exe
1264: C:\WINDOWS\system32\spoolsv.exe
1376: C:\Program Files\AVPersonal\AVGUARD.EXE
1408: C:\Program Files\AVPersonal\AVWUPSRV.EXE
1432: C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
1592: C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
1664: C:\WINDOWS\system32\ZoneLabs\vsmon.exe
1796: C:\WINDOWS\Explorer.EXE
1872: C:\WINDOWS\system32\Ati2evxx.exe
1920: C:\WINDOWS\system32\svchost.exe
2020: C:\WINDOWS\system32\ZoneLabs\isafe.exe
2208: C:\Program Files\ewido\security suite\SecuritySuite.exe
2552: C:\Program Files\Mozilla Firefox\firefox.exe
2792: C:\Program Files\ewido\security suite\ewidoguard.exe
2828: C:\Program Files\ewido\security suite\ewidoctrl.exe

 

Evästeitä ja evästeitä, onko ongelmat jatkunu?
vai tuntuuko pyörivän normaalisti.

 

Kyllä se toimii niinku pitääki. Kiitos vaan, ei ole isompia onkelmia.

 

Kone toimi yhden päivän tuon edellisen jälkeen. Sen jälkeen en ole päässyt nettiin, vaikka yhteydet näyttäisivät olevan kunnossa. Asensin windowsin uusiks, kone on edelleen hidas, nettiin ei pääse vieläkään (verkkoyhteys ja asetuksetkin kunnossa). Antivir, spybot, zonealarm, hjt ja ewido ajettu läpi eikä löydy syytä vaivoihin. Tarvisin kipeesti ehdotuksia, notta mitä vois kokeilla seuraavaks.

 

Pistähän vielä hjt tännekkin, jos löytyisi jotain uutta.

 

Asensin windowsin vielä kerran uusiks. Nyt alkoi pelittään. toivottavasti ongelmat loppuu tähän. Tuossa nyt vielä se logi.

Logfile of HijackThis v1.99.1
Scan saved at 12:43:23, on 4.12.2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\AVPersonal\AVGNT.EXE
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
C:\Program Files\VIA\RAID\raid_tool.exe
C:\Program Files\AVPersonal\AVGUARD.EXE
C:\Program Files\AVPersonal\AVWUPSRV.EXE
C:\Program Files\ewido\security suite\ewidoctrl.exe
C:\Program Files\ewido\security suite\ewidoguard.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\PCHealth\HelpCtr\Binaries\HelpCtr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\System32\svchost.exe
C:\Documents and Settings\Petri\Omat tiedostot\hijackthis_199\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://copmail.cop.fi/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [AVGCtrl] "C:\Program Files\AVPersonal\AVGNT.EXE" /min
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Global Startup: NkbMonitor.exe.lnk = C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
O4 - Global Startup: VIA RAID TOOL.lnk = C:\Program Files\VIA\RAID\raid_tool.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O23 - Service: AntiVir Service (AntiVirService) - H+BEDV Datentechnik GmbH - C:\Program Files\AVPersonal\AVGUARD.EXE
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AntiVir Update (AVWUpSrv) - H+BEDV Datentechnik GmbH, Germany - C:\Program Files\AVPersonal\AVWUPSRV.EXE
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido\security suite\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido\security suite\ewidoguard.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

 

Asia selvä, koneesta vaan huolta niin hyvä tulee