secret Skrevet 20. oktober 2006 Del Skrevet 20. oktober 2006 (endret) kan noen undersøke hijack log fila Logfile of HijackThis v1.99.1 Scan saved at 20:05:24, on 20.10.2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\rundll32.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\VM_STI.EXE C:\Program Files\QuickTime\qttask.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\Program Files\Common Files\{2C96AD31-063B-1033-1019-05050331002f}\Update.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Philips\SPC 200NC PC Camera\TrayMin.exe C:\Program Files\HPQ\shared\hpqwmi.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\WINDOWS\system32\svchost.exe C:\PROGRA~1\MOZILL~1\FIREFOX.EXE C:\Documents and Settings\oystein\Desktop\hijack\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://searchbar.findthewebsiteyouneed.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://searchbar.findthewebsiteyouneed.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.findthewebsiteyouneed.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.hp.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://searchbar.findthewebsiteyouneed.com R3 - URLSearchHook: (no name) - {A8B28872-3324-4CD2-8AA3-7D555C872D96} - (no file) O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file) O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe O4 - HKLM\..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [Resume copy] copyfstq.exe /startup O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [bigDogPath] C:\WINDOWS\VM_STI.EXE Philips SPC 200NC PC Camera O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [iPrint Tray] C:\WINDOWS\system32\iprntctl.exe TRAY_ICON O4 - HKLM\..\Run: [ipWins] C:\Program Files\ipwins\ipwins.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - Global Startup: Hurtigstart for Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: TrayMin.lnk = ? O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O14 - IERESET.INF: START_PAGE_URL=http://www.hp.com O16 - DPF: {E055C02E-6258-40FF-80A7-3BDA52FACAD7} (Installer Class) - http://activex.matcash.com/speedtest2.dll O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = gruppe4.hia.no O17 - HKLM\Software\..\Telephony: DomainName = gruppe4.hia.no O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = gruppe4.hia.no O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = gruppe4.hia.no O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: NetCache - C:\WINDOWS\system32\f6l02g3mg6.dll (file missing) O20 - Winlogon Notify: SMDEn - C:\WINDOWS\system32\alkctrs.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O23 - Service: HP WMI Interface (hpqwmi) - Hewlett-Packard Development Company, L.P. - C:\Program Files\HPQ\shared\hpqwmi.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing) O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe Endret 20. oktober 2006 av secret Lenke til kommentar
Pozzolan Skrevet 20. oktober 2006 Del Skrevet 20. oktober 2006 1. Last ned Killbox 2. Slå av systemgjenopprettning 3. Start maskinen i sikkermodus 4. Slett følgende med hijackthis: R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://searchbar.findthewebsiteyouneed.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://searchbar.findthewebsiteyouneed.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.findthewebsiteyouneed.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://searchbar.findthewebsiteyouneed.com O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file) O20 - Winlogon Notify: NetCache - C:\WINDOWS\system32\f6l02g3mg6.dll (file missing) O20 - Winlogon Notify: SMDEn - C:\WINDOWS\system32\alkctrs.dll 5. Slett følgende med killbox: C:\WINDOWS\system32\alkctrs.dll 6. Start maskinen i vanlig modus 7. Post en fersk hijackthislogg. Lenke til kommentar
secret Skrevet 20. oktober 2006 Forfatter Del Skrevet 20. oktober 2006 hvor slår jeg av system gjennopretting? Lenke til kommentar
Pozzolan Skrevet 20. oktober 2006 Del Skrevet 20. oktober 2006 Les Hijackthis guide linken i signaturen min. Lenke til kommentar
secret Skrevet 20. oktober 2006 Forfatter Del Skrevet 20. oktober 2006 (endret) Logfile of HijackThis v1.99.1 Scan saved at 21:29:49, on 20.10.2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\VM_STI.EXE C:\Program Files\QuickTime\qttask.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\WINDOWS\system32\iprntctl.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\Program Files\ipwins\ipwins.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\Program Files\Common Files\{2C96AD31-063B-1033-1019-05050331002f}\Update.exe C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe C:\Program Files\Philips\SPC 200NC PC Camera\TrayMin.exe C:\WINDOWS\system32\userinit.exe C:\Program Files\HPQ\shared\hpqwmi.exe C:\PROGRA~1\MOZILL~1\FIREFOX.EXE C:\Documents and Settings\oystein\Desktop\hijack\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.hp.com R3 - URLSearchHook: (no name) - {A8B28872-3324-4CD2-8AA3-7D555C872D96} - (no file) O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe O4 - HKLM\..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [Resume copy] copyfstq.exe /startup O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [bigDogPath] C:\WINDOWS\VM_STI.EXE Philips SPC 200NC PC Camera O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [iPrint Tray] C:\WINDOWS\system32\iprntctl.exe TRAY_ICON O4 - HKLM\..\Run: [ipWins] C:\Program Files\ipwins\ipwins.exe O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - Global Startup: Hurtigstart for Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: TrayMin.lnk = ? O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O14 - IERESET.INF: START_PAGE_URL=http://www.hp.com O16 - DPF: {E055C02E-6258-40FF-80A7-3BDA52FACAD7} (Installer Class) - http://activex.matcash.com/speedtest2.dll O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = gruppe4.hia.no O17 - HKLM\Software\..\Telephony: DomainName = gruppe4.hia.no O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = gruppe4.hia.no O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = gruppe4.hia.no O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: CSCSettings - C:\WINDOWS\system32\fpl2033oe.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O23 - Service: HP WMI Interface (hpqwmi) - Hewlett-Packard Development Company, L.P. - C:\Program Files\HPQ\shared\hpqwmi.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing) O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe # 1 [Files to Delete] Path = c:\windows\system32\alkctrs.dll *This file does not seem to exist Endret 20. oktober 2006 av secret Lenke til kommentar
Pozzolan Skrevet 20. oktober 2006 Del Skrevet 20. oktober 2006 Start maskinen i sikkermodus og slett C:\Program Files\ipwins\ med killbox. Beklager for at jeg overså denne tidligere! Lenke til kommentar
secret Skrevet 20. oktober 2006 Forfatter Del Skrevet 20. oktober 2006 ingen ting å beklage for ass jeg burde være taknemmelig for at folk som deg sitter og hjelper oss med slikt på en fredag men her er den nye hijack loggen Logfile of HijackThis v1.99.1 Scan saved at 22:11:53, on 20.10.2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\VM_STI.EXE C:\Program Files\QuickTime\qttask.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\WINDOWS\system32\iprntctl.exe C:\Program Files\Common Files\{2C96AD31-063B-1033-1019-05050331002f}\Update.exe C:\WINDOWS\system32\ctfmon.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe C:\Program Files\Philips\SPC 200NC PC Camera\TrayMin.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\WINDOWS\system32\svchost.exe C:\PROGRA~1\MOZILL~1\FIREFOX.EXE C:\Program Files\HPQ\shared\hpqwmi.exe C:\WINDOWS\system32\wuauclt.exe C:\Documents and Settings\oystein\Desktop\hijack\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.hp.com R3 - URLSearchHook: (no name) - {A8B28872-3324-4CD2-8AA3-7D555C872D96} - (no file) O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe O4 - HKLM\..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [Resume copy] copyfstq.exe /startup O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [bigDogPath] C:\WINDOWS\VM_STI.EXE Philips SPC 200NC PC Camera O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [iPrint Tray] C:\WINDOWS\system32\iprntctl.exe TRAY_ICON O4 - HKLM\..\Run: [ipWins] C:\Program Files\ipwins\ipwins.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - Global Startup: Hurtigstart for Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: TrayMin.lnk = ? O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O14 - IERESET.INF: START_PAGE_URL=http://www.hp.com O16 - DPF: {E055C02E-6258-40FF-80A7-3BDA52FACAD7} (Installer Class) - http://activex.matcash.com/speedtest2.dll O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = gruppe4.hia.no O17 - HKLM\Software\..\Telephony: DomainName = gruppe4.hia.no O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = gruppe4.hia.no O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = gruppe4.hia.no O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: RunOnceEx - C:\WINDOWS\system32\h60qlgd5160.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O23 - Service: HP WMI Interface (hpqwmi) - Hewlett-Packard Development Company, L.P. - C:\Program Files\HPQ\shared\hpqwmi.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing) O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe Lenke til kommentar
Pozzolan Skrevet 20. oktober 2006 Del Skrevet 20. oktober 2006 (endret) Start opp i sikkermodus og slett disse med killbox: C:\Program Files\Common Files\{2C96AD31-063B-1033-1019-05050331002f}\ C:\WINDOWS\system32\h60qlgd5160.dll C:\Program Files\ipwins\ Slett så O4 - HKLM\..\Run: [ipWins] C:\Program Files\ipwins\ipwins.exe R3 - URLSearchHook: (no name) - {A8B28872-3324-4CD2-8AA3-7D555C872D96} - (no file) med hijackthis. Ta også en online scan med Ewido online scan. Endret 20. oktober 2006 av stealthy Lenke til kommentar
secret Skrevet 20. oktober 2006 Forfatter Del Skrevet 20. oktober 2006 fikk ikke slettet denne C:\WINDOWS\system32\h60qlgd5160.dll her er den nye hijack loggen Logfile of HijackThis v1.99.1 Scan saved at 23:09:05, on 20.10.2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\VM_STI.EXE C:\Program Files\QuickTime\qttask.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\WINDOWS\system32\iprntctl.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe C:\Program Files\Philips\SPC 200NC PC Camera\TrayMin.exe C:\PROGRA~1\MOZILL~1\FIREFOX.EXE C:\Program Files\HPQ\shared\hpqwmi.exe C:\WINDOWS\system32\wuauclt.exe C:\Documents and Settings\oystein\Desktop\hijack\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.hp.com O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe O4 - HKLM\..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [Resume copy] copyfstq.exe /startup O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [bigDogPath] C:\WINDOWS\VM_STI.EXE Philips SPC 200NC PC Camera O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [iPrint Tray] C:\WINDOWS\system32\iprntctl.exe TRAY_ICON O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - Global Startup: Hurtigstart for Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: TrayMin.lnk = ? O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O14 - IERESET.INF: START_PAGE_URL=http://www.hp.com O16 - DPF: {E055C02E-6258-40FF-80A7-3BDA52FACAD7} (Installer Class) - http://activex.matcash.com/speedtest2.dll O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = gruppe4.hia.no O17 - HKLM\Software\..\Telephony: DomainName = gruppe4.hia.no O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = gruppe4.hia.no O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = gruppe4.hia.no O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: RunOnceEx - C:\WINDOWS\system32\jt4m07h1e.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O23 - Service: HP WMI Interface (hpqwmi) - Hewlett-Packard Development Company, L.P. - C:\Program Files\HPQ\shared\hpqwmi.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing) O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe Lenke til kommentar
Pozzolan Skrevet 20. oktober 2006 Del Skrevet 20. oktober 2006 You have the latest version of VX2. Download L2mfix from one of these two locations: http://www.atribune.org/downloads/l2mfix.exe http://www.downloads.subratam.org/l2mfix.exe Click "Install" to extract the contents to a newly created folder. Close any programs you have open since this step requires a reboot. * From the l2mfix folder, double click l2mfix.bat * Select option #2 for Run Fix by typing 2 and then pressing enter. Your desktop and icons will disappear as L2mfix scans/disinfects your computer. When finished, you will be required to press any key to automatically reboot. On the reboot notepad will open with a log. Copy/paste the contents of that log back into this thread, along with a new hijackthis log. IMPORTANT: Do NOT run any other files in the l2mfix folder unless you are asked to do so! If after the reboot the log does not open double click on it in the l2mfix folder to locate log.txt. Fra http://www.techsupportforum.com/resolved-h...op-pop-ups.html Lenke til kommentar
secret Skrevet 21. oktober 2006 Forfatter Del Skrevet 21. oktober 2006 L2mfix 032106 Creating Account. The command completed successfully. Adding Administrative privleges. The command completed successfully. Checking for L2MFix account(0=no 1=yes): 1 Granting SeDebugPrivilege to L2MFIX ... successful Running From: C:\WINDOWS\system32 Killing Processes! Command Line Process Viewer/Killer/Suspender for Windows NT/2000/XP V2.03 Copyright© 2002-2003 [email protected] Killing PID 736 'smss.exe' Command Line Process Viewer/Killer/Suspender for Windows NT/2000/XP V2.03 Copyright© 2002-2003 [email protected] Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killing PID 896 'winlogon.exe' Killin Lenke til kommentar
secret Skrevet 21. oktober 2006 Forfatter Del Skrevet 21. oktober 2006 Logfile of HijackThis v1.99.1 Scan saved at 02:49:12, on 21.10.2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\VM_STI.EXE C:\Program Files\QuickTime\qttask.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\WINDOWS\system32\iprntctl.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe C:\Program Files\Philips\SPC 200NC PC Camera\TrayMin.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\WINDOWS\system32\svchost.exe C:\PROGRA~1\MOZILL~1\FIREFOX.EXE C:\Program Files\HPQ\shared\hpqwmi.exe C:\WINDOWS\system32\wuauclt.exe C:\Documents and Settings\oystein\Desktop\hijack\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.hp.com O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe O4 - HKLM\..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [Resume copy] copyfstq.exe /startup O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [bigDogPath] C:\WINDOWS\VM_STI.EXE Philips SPC 200NC PC Camera O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [iPrint Tray] C:\WINDOWS\system32\iprntctl.exe TRAY_ICON O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - Global Startup: Hurtigstart for Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: TrayMin.lnk = ? O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O14 - IERESET.INF: START_PAGE_URL=http://www.hp.com O16 - DPF: {E055C02E-6258-40FF-80A7-3BDA52FACAD7} (Installer Class) - http://activex.matcash.com/speedtest2.dll O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = gruppe4.hia.no O17 - HKLM\Software\..\Telephony: DomainName = gruppe4.hia.no O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = gruppe4.hia.no O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = gruppe4.hia.no O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: RunOnceEx - C:\WINDOWS\system32\jt4m07h1e.dll (file missing) O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O23 - Service: HP WMI Interface (hpqwmi) - Hewlett-Packard Development Company, L.P. - C:\Program Files\HPQ\shared\hpqwmi.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing) O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe Lenke til kommentar
Pozzolan Skrevet 21. oktober 2006 Del Skrevet 21. oktober 2006 Du kan slette O20 - Winlogon Notify: RunOnceEx - C:\WINDOWS\system32\jt4m07h1e.dll (file missing) med hjt, Ellers så loggen ren ut. Hvordan er pcen? Lenke til kommentar
secret Skrevet 21. oktober 2006 Forfatter Del Skrevet 21. oktober 2006 den har jeg sletta . pc virker grei nå tom med kjørt evido online scan så tusen takk skal du ha for hjelpen:) Lenke til kommentar
Anbefalte innlegg
Opprett en konto eller logg inn for å kommentere
Du må være et medlem for å kunne skrive en kommentar
Opprett konto
Det er enkelt å melde seg inn for å starte en ny konto!
Start en kontoLogg inn
Har du allerede en konto? Logg inn her.
Logg inn nå