Kone kaatuu, kun Zone Alarm huomauttaa ohjelmista.

Samu321 · 26.03.2007

Eli kone lakkaa reagoimasta hiiren tai näppisten näpyttelyyn silloin kun Zone Alarm valittaa jostakin ohjelmasta. Ainut asia mitä voi tehdä on reset -näppäimen käyttäminen. Poistin spywaret ja virukset Spybotilla ja NOD 32:lla, mutta se ei auttanut asiaa. tässä on tää HjT logi:

Logfile of HijackThis v1.99.1
Scan saved at 23:55:23, on 26.3.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\Logitech\iTouch\iTouch.exe
C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\WINDOWS\CTHELPER.EXE
C:\WINDOWS\system32\CTXFIHLP.EXE
C:\PROGRA~1\MUSICA~1\mac.exe
C:\WINDOWS\SYSTEM32\CTXFISPI.EXE
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\DAP\DAP.EXE
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Save\Save.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\Program Files\Eset\nod32krn.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\PROGRA~1\MESSEN~1\Msmsgs.exe
C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe
C:\Program Files\CyberLink\Shared files\RichVideo.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Windows Desktop Search\WindowsSearchIndexer.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Windows Desktop Search\WindowsSearchFilter.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\BitComet\BitComet.exe
C:\Program Files\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://zzz.lx.ro/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.leeman-automatisering.nl/startpagina
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://zzz.lx.ro/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: dsWebAllowBHO Class - {2F85D76C-0569-466F-A488-493E6BD0E955} - C:\Program Files\Windows Desktop Search\dsWebAllow.dll
O2 - BHO: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~2\MEGAUP~1.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: IE DevToolbar BHO - {CC7E636D-39AA-49b6-B511-65413DA137A1} - C:\Program Files\Microsoft\Internet Explorer Developer Toolbar\IEDevToolbar.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Protection Bar - {5d4831e0-5a7c-4a46-afd5-a79ab8ce36c2} - C:\Program Files\Video ActiveX Object\iesplugin.dll (file missing)
O3 - Toolbar: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~2\MEGAUP~1.DLL
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" -H
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [Music Alarm Clock] C:\PROGRA~1\MUSICA~1\mac.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [OM_Monitor] C:\Program Files\OLYMPUS\OLYMPUS Master\FirstStart.exe
O4 - HKLM\..\Run: [DownloadAccelerator] "C:\Program Files\DAP\DAP.EXE" /STARTUP
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [TrojanScanner] C:\Program Files\Trojan Remover\Trjscan.exe
O4 - HKCU\..\Run: [WhenUSave] "C:\Program Files\Save\Save.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\PROGRA~1\MESSEN~1\Msmsgs.exe" /background
O4 - HKCU\..\Run: [Creative Detector] "C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe" /R
O4 - HKCU\..\Run: [OM_Monitor] C:\Program Files\OLYMPUS\OLYMPUS Master\Monitor.exe -NoStart
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: IE Developer Toolbar - {48FFE35F-36D9-44bd-A6CC-1D34414EAC0D} - C:\Program Files\Microsoft\Internet Explorer Developer Toolbar\IEDevToolbar.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://www.creative.com/su/ocx/15026/CTSUEng.cab
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (FilePlanet Download Control Class) - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.0.97.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://9annika4.spaces.live.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab
O16 - DPF: {D1E7CBDA-E60E-4970-A01C-37301EF7BF98} (Measurement Services Client v.3.12) - http://www.yougamers.com/systeminfo/MSC3.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/su/ocx/15028/CTPID.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Auto Power-on & Shut-down Service (PCAutoPowerOnService) - Unknown owner - C:\Program Files\Auto Power-on\PCAutoPowerOnService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

AfterDawn

Etzo · 27.03.2007

Moi!

Mene ohjauspaneelin lisää/poista sovelluksia listalle. Etsi/poista:

WhenUSave

=============================================

Lataa SmitfraudFix (by S!Ri) työpöydällesi.

Tuplaklikkaa tiedostoa SmitfraudFix.exe

Valitse optio #1 - Search kirjoittamalla 1 ja painamalla "Enter"; tekstitiedosto avautuu, joka listaa tarttuneet tiedostot (jos olemassa).
Postita tämän tekstitiedoston sisältö viestiketjuusi.

**Jos työkalu ei käynnisty työpöydältä niin siirrä SmitfraudFix.exe suoraan järjestelmäaseman juureen (yleensä C:). Kokeile sitten käynnistää ohjelma uudestaan sieltä.

Huomaa : process.exe filun tunnistaa jotkut Anti-virus ohjelmat (AntiVir, Dr.Web, Kaspersky) "Haittakaluna"; se ei ole virus, vaan ohjelma joka pysäyttää prosesseja. A/V ohjelmat eivät pysty tunnistamaan hyvän ja pahan käytön tälläisten ohjelmian väliltä, silloin ne saattavat varoittaa käyttäjää.
http://www.beyondlogic.org/consulting/processutil/processutil.htm

Samu321 · 27.03.2007

SmitFraudFix v2.158

Scan done at 17:06:49,96, ti 27.03.2007
Run from C:\Documents and Settings\Samu\Desktop\SmitfraudFix
OS: Microsoft Windows XP [versio 5.1.2600] - Windows_NT
The filesystem type is NTFS
Fix run in normal mode

»»»»»»»»»»»»»»»»»»»»»»»» Process

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\Logitech\iTouch\iTouch.exe
C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\WINDOWS\CTHELPER.EXE
C:\WINDOWS\system32\CTXFIHLP.EXE
C:\PROGRA~1\MUSICA~1\mac.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\SYSTEM32\CTXFISPI.EXE
C:\Program Files\DAP\DAP.EXE
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\PROGRA~1\MESSEN~1\Msmsgs.exe
C:\Program Files\Eset\nod32krn.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe
C:\Program Files\CyberLink\Shared files\RichVideo.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Windows Desktop Search\WindowsSearchIndexer.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\cmd.exe

»»»»»»»»»»»»»»»»»»»»»»»» hosts

»»»»»»»»»»»»»»»»»»»»»»»» C:\

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles

»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Samu

»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Samu\Application Data

»»»»»»»»»»»»»»»»»»»»»»»» Start Menu

»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\Samu\FAVORI~1

»»»»»»»»»»»»»»»»»»»»»»»» Desktop

»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files

»»»»»»»»»»»»»»»»»»»»»»»» Corrupted keys

»»»»»»»»»»»»»»»»»»»»»»»» Desktop Components

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="My Current Home Page"

»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, following keys are not inevitably infected!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, following keys are not inevitably infected!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, following keys are not inevitably infected!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""

»»»»»»»»»»»»»»»»»»»»»»»» pe386-msguard-lzx32-huy32

»»»»»»»»»»»»»»»»»»»»»»»» Scanning wininet.dll infection

»»»»»»»»»»»»»»»»»»»»»»»» End

Etzo · 27.03.2007

Lähetä uusi HJT-loki.

Samu321 · 27.03.2007

Logfile of Trend Micro HijackThis v2.0.0 (BETA)
Scan saved at 17:24:06, on 27.3.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\Logitech\iTouch\iTouch.exe
C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\WINDOWS\CTHELPER.EXE
C:\WINDOWS\system32\CTXFIHLP.EXE
C:\PROGRA~1\MUSICA~1\mac.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\SYSTEM32\CTXFISPI.EXE
C:\Program Files\DAP\DAP.EXE
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\PROGRA~1\MESSEN~1\Msmsgs.exe
C:\Program Files\Eset\nod32krn.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe
C:\Program Files\CyberLink\Shared files\RichVideo.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Windows Desktop Search\WindowsSearchIndexer.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Windows Desktop Search\WindowsSearchFilter.exe
D:\Steam\steam.exe
C:\PROGRA~1\Mozilla Firefox\firefox.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\Samu\My Documents\My Completed Downloads\HiJackThis_v2.0.0.0.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://zzz.lx.ro/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.leeman-automatisering.nl/startpagina
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://zzz.lx.ro/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: dsWebAllowBHO Class - {2F85D76C-0569-466F-A488-493E6BD0E955} - C:\Program Files\Windows Desktop Search\dsWebAllow.dll
O2 - BHO: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~2\MEGAUP~1.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: IE DevToolbar BHO - {CC7E636D-39AA-49b6-B511-65413DA137A1} - C:\Program Files\Microsoft\Internet Explorer Developer Toolbar\IEDevToolbar.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Protection Bar - {5d4831e0-5a7c-4a46-afd5-a79ab8ce36c2} - C:\Program Files\Video ActiveX Object\iesplugin.dll (file missing)
O3 - Toolbar: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~2\MEGAUP~1.DLL
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" -H
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [Music Alarm Clock] C:\PROGRA~1\MUSICA~1\mac.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [OM_Monitor] C:\Program Files\OLYMPUS\OLYMPUS Master\FirstStart.exe
O4 - HKLM\..\Run: [DownloadAccelerator] "C:\Program Files\DAP\DAP.EXE" /STARTUP
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [TrojanScanner] C:\Program Files\Trojan Remover\Trjscan.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\PROGRA~1\MESSEN~1\Msmsgs.exe" /background
O4 - HKCU\..\Run: [Creative Detector] "C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe" /R
O4 - HKCU\..\Run: [OM_Monitor] C:\Program Files\OLYMPUS\OLYMPUS Master\Monitor.exe -NoStart
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_01] cmd.exe /c md "%USERPROFILE%\Local Settings\Temp" (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_02] rundll32 advpack.dll,DelNodeRunDLL32 "%SystemRoot%\System32\dllcache" (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_03] cmd.exe /c md "%SystemRoot%\System32\dllcache" (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_04] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_05] rundll32 advpack.dll,LaunchINFSection nlite.inf,nLiteReg (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlpo_06] rundll32 advpack.dll,LaunchINFSection nlite.inf,S (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [nlpo_01] cmd.exe /c md "%USERPROFILE%\Local Settings\Temp" (User 'NETWORK SERVICE')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: IE Developer Toolbar - {48FFE35F-36D9-44bd-A6CC-1D34414EAC0D} - C:\Program Files\Microsoft\Internet Explorer Developer Toolbar\IEDevToolbar.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://www.creative.com/su/ocx/15026/CTSUEng.cab
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (FilePlanet Download Control Class) - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.0.97.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://9annika4.spaces.live.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab
O16 - DPF: {D1E7CBDA-E60E-4970-A01C-37301EF7BF98} (Measurement Services Client v.3.12) - http://www.yougamers.com/systeminfo/MSC3.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/su/ocx/15028/CTPID.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Auto Power-on & Shut-down Service (PCAutoPowerOnService) - Unknown owner - C:\Program Files\Auto Power-on\PCAutoPowerOnService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

--
End of file - 11804 bytes

Etzo · 27.03.2007

Joo. Tämä "Trend Micro HijackThis v2.0.0 (BETA)" on vielä nimensä mukaisesti BETA-asteella ja sitä ei suositella vielä käytettäväksi, joten jatketaan tuolla vakaalla versiolla 1.99.1

==========================================

Tallenna nämä ohjeet tekstitiedostoon tai tulosta nämä, muuten et pääse niihin käsiksi vikasietotilasta

Lataa AVG Anti-Spyware 7.5 ja tallenna ohjelma työpöydällesi.
*Kun olet ladannut ohjelman, kaksoisklikkaa asennuohjelman pikakuvaketta työpöydälläsi, asennus alkaa.
*Asennuksen jälkeen täytyy ohjelma käynnistää ja sen tunnisteet päivittää.
*Käynnistä AVG Anti-Spyware.
*Klikkaa "Update" kuvaketta päävalikossa. Sen jälkeen klikkaa "Update now" painiketta.
*Sitten klikkaa "Start Update" kuvaketta jolloin päivitys alkaa.

*Kun päivitykset on ladattu, klikkaa "Scanner" kuvaketta ikkunan ylälaidassa. Valitse sitten "Settings" välilehti.
*Kun "Settings" valikko on auennut, klikkaa "Recommended actions" ja sitten valitse "Quarantine".
*Sitten "Reports" valikon alta:
*Laita täppi kohtaan "Automatically generate report after every scan"
*Ota täppi pois kohdasta"Only if threats were found"

*Sitten klikkaa "Shield" kuvaketta ikkunan ylälaidassa
*"Resident shield is", muuta tila active:sta inactive:ksi
*Sulje ohjelma, ÄLÄ skannaa vielä.

==========================================

Mene Virustotaliin ja laita tämä tiedosto C:\Program Files\Auto Power-on\PCAutoPowerOnService.exe oikealla ylhäällä olevaan boksiin ja paina Send. Hetken kuluttua saat tulokset tästä tiedostosta. Lähetä ne tänne.

==========================================

Lataa Atribunen ATF Cleaner

Ohjeet;

Tupla-klikkaa ATF-Cleaner.exe käynnistääksesi ohjelman.Main:n alla valitse: Select All
Klikkaa Empty Selected valintaa.

Jos käytät FireFoxia selaimenasi: Klikkaa Firefox yläpuolelta ja valitse: Select All
Klikkaa Empty Selected valintaa.
HUOMIO: Jos haluaisit pitää tallennetut salasanasi, klikkaa No kun se sitä kysyy.

Jos käytät Operaa selaimenasi:Klikkaa Opera yläpuolelta ja valitse: Select All
Klikkaa Empty Selected valintaa taas.
HUOMIO: Jos haluaisit pitää tallennetut salasanasi, klikkaa No kun se sitä kysyy.

Klikkaa Exit päävalikosta sulkeaksesi ohjelman.

Teknistä tukea tulee jos tupla-klikkaat sähköpostiosoitetta joka sijaitsee jokaisen menun alapuolella kyseisessä työkalussa. (Huomatkaa että se tuki on sitten englanniksi)

==========================================

Laita piilotiedostot näkyviin -> Ohje!
Käynnistä kone vikasietotilaan -> Ohje!

==========================================

HUOM! Älä käytä muita ohjelmia AVG skannauksen aikana, tämä saattaa häiritä skannausta.
*Kun vikasietotilassa, käynnistä AVG Anti-Spyware.
*Klikkaa "Scanner" kuvaketta ikkunan ylälaidassa ja valitse "Scan" välilehti. Sitten klikkaa "Complete System Scan".
*AVG aloittaa nyt tietokoneen skannaamisen, ole kärsivällinen sillä skannaus vie aikaa.

Kun skannaus on valmis:
TÄRKEÄÄ : Älä klikkaa "Save Scan Report" ennen kuin klikkaat "Apply all Actions"
*Varmistu, että Set all elements to: näyttää Quarantine (1), jos ei, klikkaa linkkiä ja valitse Quarantine popup-valikosta.
*Sinulta kysytään mitä tehdä jos infektioita löytyi, valitse silloin "Apply all actions"

*Sitten klikkaa "Reports" kuvaketta ohjelma yläosasta.
*Klikkaa "Save report as" painiketta ikkunan vasemmassa alalaidassa ja tallenna raportti työpöydälle.
*Sulje ohjelma, käynnistä kone normaalisti ja lähetä AVG Anti-Spyware:n raportti viestikejuusi.

==========================================

Käynnistä koneesi takaisin normaalitilaan.

Käynnistä HJT, merkkaa seuraavat rivit, sulje selain ja paina Fix Checked:

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O3 - Toolbar: Protection Bar - {5d4831e0-5a7c-4a46-afd5-a79ab8ce36c2} - C:\Program Files\Video ActiveX Object\iesplugin.dll (file missing)

==========================================

Lähetä uusi HJT, AVG raportti + Virustotalin tulokset seuraavaan viestiisi

Samu321 · 27.03.2007

Logfile of HijackThis v1.99.1
Scan saved at 1:10:04, on 28.3.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\Program Files\Eset\nod32krn.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\CyberLink\Shared files\RichVideo.exe
C:\Program Files\Sygate\SPF\smc.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\Logitech\iTouch\iTouch.exe
C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\WINDOWS\CTHELPER.EXE
C:\WINDOWS\system32\CTXFIHLP.EXE
C:\PROGRA~1\MUSICA~1\mac.exe
C:\Program Files\Winamp\winampa.exe
C:\WINDOWS\SYSTEM32\CTXFISPI.EXE
C:\Program Files\DAP\DAP.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\PROGRA~1\MESSEN~1\Msmsgs.exe
C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Windows Desktop Search\WindowsSearchIndexer.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\PROGRA~1\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://zzz.lx.ro/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.leeman-automatisering.nl/startpagina
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://zzz.lx.ro/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: dsWebAllowBHO Class - {2F85D76C-0569-466F-A488-493E6BD0E955} - C:\Program Files\Windows Desktop Search\dsWebAllow.dll
O2 - BHO: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~2\MEGAUP~1.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: IE DevToolbar BHO - {CC7E636D-39AA-49b6-B511-65413DA137A1} - C:\Program Files\Microsoft\Internet Explorer Developer Toolbar\IEDevToolbar.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~2\MEGAUP~1.DLL
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" -H
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [Music Alarm Clock] C:\PROGRA~1\MUSICA~1\mac.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [OM_Monitor] C:\Program Files\OLYMPUS\OLYMPUS Master\FirstStart.exe
O4 - HKLM\..\Run: [DownloadAccelerator] "C:\Program Files\DAP\DAP.EXE" /STARTUP
O4 - HKLM\..\Run: [TrojanScanner] C:\Program Files\Trojan Remover\Trjscan.exe
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\PROGRA~1\MESSEN~1\Msmsgs.exe" /background
O4 - HKCU\..\Run: [Creative Detector] "C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe" /R
O4 - HKCU\..\Run: [OM_Monitor] C:\Program Files\OLYMPUS\OLYMPUS Master\Monitor.exe -NoStart
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: IE Developer Toolbar - {48FFE35F-36D9-44bd-A6CC-1D34414EAC0D} - C:\Program Files\Microsoft\Internet Explorer Developer Toolbar\IEDevToolbar.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://www.creative.com/su/ocx/15026/CTSUEng.cab
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (FilePlanet Download Control Class) - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.0.97.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://9annika4.spaces.live.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab
O16 - DPF: {D1E7CBDA-E60E-4970-A01C-37301EF7BF98} (Measurement Services Client v.3.12) - http://www.yougamers.com/systeminfo/MSC3.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/su/ocx/15028/CTPID.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Auto Power-on & Shut-down Service (PCAutoPowerOnService) - Unknown owner - C:\Program Files\Auto Power-on\PCAutoPowerOnService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: Sygate Personal Firewall Pro (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe

---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------

+ Created at: 0:59:52 28.3.2007

+ Scan result:

HKLM\SOFTWARE\Classes\CLSID\{5d4831e0-5a7c-4a46-afd5-a79ab8ce36c2} -> Adware.Generic : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{5d4831e0-5a7c-4a46-afd5-a79ab8ce36c2} -> Adware.Generic : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Public Messenger ver 2.03 -> Adware.Generic : Cleaned with backup (quarantined).
HKU\S-1-5-21-1123561945-1364589140-682003330-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1A1DDC19-5893-43AB-A73F-F41A0F34D115} -> Adware.Generic : Cleaned with backup (quarantined).
HKU\S-1-5-21-1123561945-1364589140-682003330-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5D4831E0-5A7C-4A46-AFD5-A79AB8CE36C2} -> Adware.Generic : Cleaned with backup (quarantined).
C:\Program Files\DAEMON Tools\SetupDTSB.exe -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Program Files\Mozilla Firefox\extensions\{BEE3E87E-E1C6-4bfe-BE9D-48E84271AB34}\components\whenu_ff.dll -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{1A3CA8D9-4503-46A5-8B6E-19EADA2B679C}\RP215\A0143782.exe -> Adware.SaveNow : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\WUSE.1 -> Adware.SaveNow : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\WUSN.1 -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Program Files\Common Files\{503C2D45-0A69-1033-1019-050508060001}\services.dll -> Adware.Softomate : Cleaned with backup (quarantined).
D:\Pelit\Rockstar Games\GTA San Andreas\hlm-intro.exe -> Backdoor.Hupigon.kg : Cleaned with backup (quarantined).
C:\Program Files\DAP\DAP.Activation.Patch.exe/DAPACT~1.EXE -> Backdoor.PcClient.gv : Cleaned with backup (quarantined).
D:\Lataukset\Downloads\Download Accelerator Plus 8.0.4.4 Premium.rar/Download Accelerator Plus 8.0.4.4 Premium\Patch\DAP.Activation.Patch.exe/DAPACT~1.EXE -> Backdoor.PcClient.gv : Cleaned with backup (quarantined).
D:\System Volume Information\_restore{1A3CA8D9-4503-46A5-8B6E-19EADA2B679C}\RP214\A0118702.exe/DAPACT~1.EXE -> Backdoor.PcClient.gv : Cleaned with backup (quarantined).
C:\WINDOWS\system32\include\operator.ini -> Backdoor.Zapchast : Cleaned with backup (quarantined).
C:\WINDOWS\system32\include\conn.ini -> Backdoor.Zapchast.NY : Cleaned with backup (quarantined).
:mozilla.258:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.173:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.174:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.175:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.176:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.177:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.178:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.179:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.180:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.181:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.182:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.183:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.184:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.185:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.186:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.187:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.188:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.189:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.190:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.191:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.192:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.193:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.194:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.195:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.196:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.197:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.198:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.199:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.200:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.201:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.202:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.203:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.204:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.205:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.206:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.207:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.208:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.209:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.210:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.211:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.212:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.213:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.214:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.215:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.216:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.217:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.218:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.219:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.220:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.257:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.368:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.388:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.591:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.592:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.637:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.110:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.287:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.288:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.67:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.68:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.70:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.73:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.89:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.90:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.91:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.307:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.308:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.162:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.365:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.975:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.65:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Clickhype : Cleaned.
:mozilla.66:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Clickhype : Cleaned.
:mozilla.802:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned.
:mozilla.803:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned.
:mozilla.246:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.393:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Connextra : Cleaned.
:mozilla.397:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Cpvfeed : Cleaned.
:mozilla.398:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Cpvfeed : Cleaned.
:mozilla.399:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Cpvfeed : Cleaned.
:mozilla.400:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Cpvfeed : Cleaned.
:mozilla.247:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.248:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.249:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.250:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.451:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.123:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.124:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.125:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.126:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.69:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.496:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Gamershell : Cleaned.
:mozilla.497:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Gamershell : Cleaned.
:mozilla.498:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Gamershell : Cleaned.
:mozilla.844:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Gamershell : Cleaned.
:mozilla.845:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Gamershell : Cleaned.
:mozilla.846:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Gamershell : Cleaned.
:mozilla.847:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Gamershell : Cleaned.
:mozilla.848:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Gamershell : Cleaned.
:mozilla.849:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Gamershell : Cleaned.
:mozilla.850:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Gamershell : Cleaned.
:mozilla.851:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Gamershell : Cleaned.
:mozilla.852:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Gamershell : Cleaned.
:mozilla.853:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Gamershell : Cleaned.
:mozilla.854:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Gamershell : Cleaned.
:mozilla.855:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Gamershell : Cleaned.
:mozilla.529:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Hotlog : Cleaned.
:mozilla.542:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Imrworldwide : Cleaned.
:mozilla.543:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Imrworldwide : Cleaned.
:mozilla.36:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Information : Cleaned.
:mozilla.37:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Information : Cleaned.
:mozilla.38:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Information : Cleaned.
:mozilla.44:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.45:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.46:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.982:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Paypal : Cleaned.
:mozilla.299:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.300:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.301:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.302:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.671:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned.
:mozilla.672:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned.
:mozilla.676:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Revenue : Cleaned.
:mozilla.677:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Revenue : Cleaned.
:mozilla.678:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.679:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.680:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.681:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.682:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.683:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.684:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.685:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.686:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.687:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.688:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.859:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.462:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.463:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.464:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.362:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.700:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.701:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.702:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.703:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.704:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.411:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.412:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.413:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.414:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.415:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.416:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.417:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.418:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.419:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.420:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.421:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.422:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.296:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.223:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.17:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Statistik-gallup : Cleaned.
:mozilla.18:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Statistik-gallup : Cleaned.
:mozilla.740:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.741:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.742:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.743:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.762:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Toplist : Cleaned.
:mozilla.76:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.77:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.769:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Trafic : Cleaned.
:mozilla.147:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.43:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.673:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.674:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.675:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.793:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Valueclick : Cleaned.
:mozilla.234:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Webtrends : Cleaned.
:mozilla.78:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Yadro : Cleaned.
:mozilla.47:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.48:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.49:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.50:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.51:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.52:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.54:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.55:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.57:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.58:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.59:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.60:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.61:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.62:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\glhw35rc.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
C:\WINDOWS\mui\FALLBACK\0414\taskkill.exe.mui -> Trojan.Agent : Cleaned with backup (quarantined).
C:\Program Files\DAP\Privacy Package\DAP.Trace.Cleaner.Activation.Patch.exe -> Trojan.Small : Cleaned with backup (quarantined).
D:\Lataukset\Downloads\Download Accelerator Plus 8.0.4.4 Premium.rar/Download Accelerator Plus 8.0.4.4 Premium\Patch\DAP.Trace.Cleaner.Activation.Patch.exe -> Trojan.Small : Cleaned with backup (quarantined).
D:\System Volume Information\_restore{1A3CA8D9-4503-46A5-8B6E-19EADA2B679C}\RP214\A0118703.exe -> Trojan.Small : Cleaned with backup (quarantined).

::Report end

Complete scanning result of "PCAutoPowerOnService.exe", received in VirusTotal at 03.27.2007, 19:16:54 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.3.27.0 03.27.2007 no virus found
AntiVir 7.3.1.44 03.27.2007 no virus found
Authentium 4.93.8 03.26.2007 no virus found
Avast 4.7.936.0 03.27.2007 no virus found
AVG 7.5.0.447 03.27.2007 no virus found
BitDefender 7.2 03.27.2007 no virus found
CAT-QuickHeal 9.00 03.27.2007 no virus found
ClamAV devel-20070312 03.27.2007 no virus found
DrWeb 4.33 03.27.2007 no virus found
eSafe 7.0.14.0 03.27.2007 no virus found
eTrust-Vet 30.6.3515 03.27.2007 no virus found
Ewido 4.0 03.27.2007 no virus found
FileAdvisor 1 03.27.2007 no virus found
Fortinet 2.85.0.0 03.27.2007 no virus found
F-Prot 4.3.1.45 03.26.2007 no virus found
F-Secure 6.70.13030.0 03.27.2007 no virus found
Ikarus T3.1.1.3 03.27.2007 no virus found
Kaspersky 4.0.2.24 03.27.2007 no virus found
McAfee 4993 03.27.2007 no virus found
Microsoft 1.2306 03.27.2007 no virus found
NOD32v2 2148 03.27.2007 no virus found
Norman 5.80.02 03.27.2007 no virus found
Panda 9.0.0.4 03.27.2007 no virus found
Prevx1 V2 03.27.2007 no virus found
Sophos 4.15.0 03.27.2007 no virus found
Sunbelt 2.2.907.0 03.24.2007 no virus found
Symantec 10 03.27.2007 no virus found
TheHacker 6.1.6.080 03.23.2007 no virus found
UNA 1.83 03.16.2007 no virus found
VBA32 3.11.2 03.27.2007 no virus found
VirusBuster 4.3.7:9 03.27.2007 no virus found
Webwasher-Gateway 6.0.1 03.27.2007 no virus found

Aditional Information
File size: 484864 bytes
MD5: d6a0c5d5545791c228ef3cad7448e4d8
SHA1: b71e70650bedb7485b80f01090e9afed3318fabc

Etzo · 28.03.2007

Fixaa vielä tämä:

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

Tiedätkö mikä tämä sinun IE:n aloitussivusi on?

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://zzz.lx.ro/

============================================

Osa örkeistä oli järjestelmänpalautus kansiossa, puhdistetaan se.

Tyhjennä järjestelmän palautus:

1. Klikkaa oikealla käynnistävalikon My Computer- tai oma tietokone-kuvaketta.
2. Valitse Properties/ominaisuudet.
3. Valitse System Restore/järjestelmän palauttaminen välilehti.
4. Valitse "Turn off System Restore"/poista järjestelmän palauttaminen kaikissa asemissa.
5. Paina Apply/käytä.
6. Paina OK.
7. Käynnistä kone uudelleen.
8. Laita järjestelmän palautus takaisin päälle (muuten samanlailla, mutta teet kohdan neljä käänteisesti).

Samu321 · 28.03.2007

Kiitoksia avusta, kone on huomattavasti nopeempi ja kaikki toimii täydellisesti, kiitti.

Etzo · 28.03.2007

No Problemo

Larkin26 · 02.04.2007

Voiko tuota järjestelmänpalautuskikkaa käyttää muuten vain? Eli poistaako se jotain tärkeitäkin tiedostoja... kiitos.

Hujo · 02.04.2007

Larkin26
tee sillain käynnistä > kaikki ohjelmat > apuohjelmat > jätjestelmätyökalut > järjestä uudelleen aja > lisää vaihtoehtoja välilehti > järjestelmän paluttaminen järjestä nappi.

Jättää muutaman palautus pisteen jos tulee tarvetta palauttaa.

Kirjaudu tai liity jäseneksi

Kone kaatuu, kun Zone Alarm huomauttaa ohjelmista.

Samu321 Member

Etzo Regular member

Samu321 Member

Etzo Regular member

Samu321 Member

Etzo Regular member

Samu321 Member

Etzo Regular member

Samu321 Member

Etzo Regular member

Larkin26 Member

Hujo Guest

Jaa tämä sivu

Kirjaudu tai liity jäseneksi

Kone kaatuu, kun Zone Alarm huomauttaa ohjelmista.

Samu321 Member

Etzo Regular member

Samu321 Member

Etzo Regular member

Samu321 Member

Etzo Regular member

Samu321 Member

Etzo Regular member

Samu321 Member

Etzo Regular member

Larkin26 Member

Hujo Guest

Jaa tämä sivu

Hyödyllisiä hakuja