Hijackthis logi

Fin_Eagle · 14.10.2006

Oon uus täällä... jtn en oo mikään über näissä hommissa, tässä logi, kun kone on aikas tahmainen...

Logfile of HijackThis v1.99.1
Scan saved at 13:46:45, on 14.10.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\EXSHOW95.EXE
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe
C:\Program Files\System Mechanic Professional 6\SMSystemAnalyzer.exe
C:\WINDOWS\system32\EXSHOW.EXE
C:\Program Files\CursorXP\CursorXP.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\System32\DRIVERS\CDANTSRV.EXE
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
C:\WINDOWS\runservice.exe
C:\Program Files\Norton SystemWorks\Norton Utilities\NPROTECT.EXE
C:\PROGRA~1\NORTON~1\SPEEDD~1\nopdb.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\UAService7.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\hjt\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fi/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dnainternet.net
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fi/0SEFIFI/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
F1 - win.ini: run= D:\WESTWOOD\RA1\INSTICON.EXE
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: (no name) - {7c6ae7ef-e869-4a32-9d64-a7c357ddcfdd} - (no file)
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe"
O4 - HKLM\..\Run: [EXSHOW95.EXE] EXSHOW95.EXE
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [AtiPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKCU\..\Run: [Creative Detector] C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe /R
O4 - HKCU\..\Run: [CursorXP] C:\Program Files\CursorXP\CursorXP.exe
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: Lataa FlashGetillä - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Lataa kaikki FlashGetillä - C:\Program Files\FlashGet\jc_all.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {03F998B2-0E00-11D3-A498-00104B6EB52E} (MetaStreamCtl Class) - https://components.viewpoint.com/MTSInstallers/MetaStream3.cab?url=http://www.samsung.com/Products/CDDVD_Writer/DVD_Multi/ProductPresentation/ViewPoint/CDDVD_Writer_DVD_Multi_SR_T03B_ViewPoint.htm
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1150293191506
O16 - DPF: {88D969C0-F192-11D4-A65F-0040963251E5} (XML DOM Document 4.0) -
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WBSrv - C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\wbsrv.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\System32\DRIVERS\CDANTSRV.EXE
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LicCtrl Service (LicCtrlService) - Unknown owner - C:\WINDOWS\runservice.exe
O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton Utilities\NPROTECT.EXE
O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~1\SPEEDD~1\nopdb.exe
O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe (file missing)
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe
O23 - Service: WINLOAD - Unknown owner - c:\windows\system32\dllcache\win32\winlogon.exe
O23 - Service: WINSVCMGR - Unknown owner - c:\windows\system32\dllcache\win32\winlogon.exe

oisko jtn sanottavaa noista?

AfterDawn

kairis · 14.10.2006

Moi. lähetä myös lokin yläosa...

Fin_Eagle · 14.10.2006

Jeps, editoin tuohon... muuten jos tuossa on jtn turhaa.. niin mainitkaa, kun kone on todella hidas ja ei-niin-tarpeellisia taustaohjelmia oisi kiva saada pois...

kairis · 14.10.2006

Lataa GMER
http://www.gmer.net/gmer.zip
ja tallenna se työpöydällesi:

Pura se työpöydälle ja tuplaklikkaa tiedostoa [bold]GMER.exe[/bold]

Klikkaa [bold]rootkit[/bold]-välilehteä ja sitten klikkaa [bold]scan.[/bold]

[bold]Älä rastita "Show All" boksia skannauksen aikana![/bold]

Kun skannaus on valmis, klikkaa [bold]Copy[/bold].

Tämä kopioi lokin leikepöydälle (voit tallentaa lokin varmuuden vuoksi tekstitiedostoon).

Liitä loki sitten viestiketjuusi.

1. Lataa combofix.exe tiedosto työpöydällesi.
http://download.bleepingcomputer.com/sUBs/combofix.exe
2. Tuplaklikkaa combofix.exe tiedostoa ja seuraa ohjeistuksia.
3. Kun työkalu on valmis, se tuottaa lokin. Lähetä tämä loki viesti ketjuusi.
[bold]Huom! Älä klikkaile combofixin ikkunaa käytön aikana. Tämä saattaa aiheuttaa ohjelman jumiutumisen.[/bold]

Kopioi seuraavat tummennetut rivit muistioon ja tallenna nimellä poista.bat (tallennusmuoto kaikki tiedostot) esim. työpöydälle:
[bold]@ECHO OFF
sc stop WINSVCMGR
sc stop WINLOAD
sc delete WINSVCMGR
sc delete WINLOAD [/bold]

Tuplaklikkaa poista.bat-tiedostoa työpöydällä. Komentoikkuna välähtää, se on normaalia.

Lataa Killbox täältä: http://www.downloads.subratam.org/KillBox.zip Huomaa: Jos sinulla on jo Killbox, tämä on uusi versio joka sinun tulee asentaa. Poista aikaisempi.

Pura,avaa ja täppi kohtaan Delete on Reboot
Sitten kopioi rivi tuosta alapuolelta

[bold] c:\windows\system32\dllcache\win32\winlogon.exe[/bold]

Sitten KillBoxissa ylhäältä File > Paste from Clipboard
Valitse "All Files".Sen jälkeen paina Delete (punainen, jossa on valkonen X)
Vastaa myöntävästi kysymyksiin ja jos kone ei itsestään käynnisty uudestaan, niin käynnistä se.

[bold]Tallenna nämä ohjeet tekstitiedostoon tai tulosta nämä, muuten et pääse niihin käsiksi vikasietotilasta[/bold]
Lataa http://www.ewido.net/en/download/ AVG Anti-Spyware 7.5 ja tallenna ohjelma työpöydällesi.

Kun olet ladannut ohjelman, kaksoisklikkaa asennuohjelman pikakuvaketta työpöydälläsi, asennus alkaa.

Asennuksen jälkeen täytyy ohjelma käynnistää ja sen tunnisteet päivittää.

Käynnistä AVG Anti-Spyware.

Klikkaa "[bold]Update[/bold]" kuvaketta päävalikossa. Sen jälkeen klikkaa "[bold]Update now[/bold]" painiketta.

Sitten klikkaa "[bold]Start Update[/bold]" kuvaketta jolloin päivitys alkaa.

Kun päivitykset on ladattu, klikkaa "Scanner" kuvaketta ikkunan ylälaidassa. Valitse sitten "Settings" välilehti.

Kun [bold]"Settings"[/bold] valikko on auennut, klikkaa "[bold]Recommended actions[/bold]" ja sitten valitse "[bold]Quarantine[/bold]".

Sitten "Reports" valikon alta:

Laita täppi kohtaan "[bold]Automatically generate report after every scan[/bold]"

Ota täppi pois kohdasta"[bold]Only if threats were found[/bold]"

Sitten klikkaa "[bold]Shield[/bold]" kuvaketta ikkunan ylälaidassa

"Resident shield is", muuta tila active:sta inactive:ksi

Sulje ohjelma, [bold]ÄLÄ[/bold] skannaa vielä.
Käynnistä koneesi vikasietotilaan, http://www.virustorjunta.net/module...Yleisohjeita+ongelmatilanteiden+ratkaisuun#37

HUOM! Älä käytä muita ohjelmia AVG skannauksen aikana, tämä saattaa häiritä skannausta.

Kun vikasietotilassa, käynnistä AVG Anti-Spyware

Klikkaa "Scanner" kuvaketta ikkunan ylälaidassa ja valitse "Scan" välilehti. Sitten klikkaa "Complete System Scan".

Ewido aloittaa nyt tietokoneen skannaamisen, ole kärsivällinen sillä skannaus vie aikaa.

Kun skannaus on valmis:
TÄRKEÄÄ : Älä klikkaa "Save Scan Report" ennen kuin klikkaat "Apply all Actions"

Varmistu, että Set all elements to: näyttää Quarantine
(1), jos ei, klikkaa linkkiä ja valitse Quarantine popup-valikosta.
[*]Sinulta kysytään mitä tehdä jos infektioita löytyi, valitse silloin "Apply all actions"

[*]Sitten klikkaa "Reports" kuvaketta ohjelma yläosasta.
[*]Klikkaa "Save report as" painiketta ikkunan vasemmassa alalaidassa ja tallenna raportti työpöydälle.
[*]Sulje ohjelma, käynnistä kone normaalisti ja lähetä AVG:n raportti viestikejuusi.

Fin_Eagle · 14.10.2006

[bold]gmer - loki[/bold]

GMER 1.0.11.11390 - http://www.gmer.net
Rootkit 2006-10-14 16:54:28
Windows 5.1.2600 Service Pack 2

---- System - GMER 1.0.11 ----

SSDT sptd.sys ZwCreateKey
SSDT sptd.sys ZwEnumerateKey
SSDT sptd.sys ZwEnumerateValueKey
SSDT sptd.sys ZwOpenKey
SSDT sptd.sys ZwQueryKey
SSDT sptd.sys ZwQueryValueKey
SSDT sptd.sys ZwSetValueKey

---- Devices - GMER 1.0.11 ----

Device \FileSystem\Ntfs \Ntfs IRP_MJ_CREATE 8239D0E8
Device \FileSystem\Ntfs \Ntfs IRP_MJ_CLOSE 8239D0E8
Device \FileSystem\Ntfs \Ntfs IRP_MJ_READ 8239D0E8
Device \FileSystem\Ntfs \Ntfs IRP_MJ_WRITE 8239D0E8
Device \FileSystem\Ntfs \Ntfs IRP_MJ_QUERY_INFORMATION 8239D0E8
Device \FileSystem\Ntfs \Ntfs IRP_MJ_SET_INFORMATION 8239D0E8
Device \FileSystem\Ntfs \Ntfs IRP_MJ_QUERY_EA 8239D0E8
Device \FileSystem\Ntfs \Ntfs IRP_MJ_SET_EA 8239D0E8
Device \FileSystem\Ntfs \Ntfs IRP_MJ_FLUSH_BUFFERS 8239D0E8
Device \FileSystem\Ntfs \Ntfs IRP_MJ_QUERY_VOLUME_INFORMATION 8239D0E8
Device \FileSystem\Ntfs \Ntfs IRP_MJ_SET_VOLUME_INFORMATION 8239D0E8
Device \FileSystem\Ntfs \Ntfs IRP_MJ_DIRECTORY_CONTROL 8239D0E8
Device \FileSystem\Ntfs \Ntfs IRP_MJ_FILE_SYSTEM_CONTROL 8239D0E8
Device \FileSystem\Ntfs \Ntfs IRP_MJ_DEVICE_CONTROL 8239D0E8
Device \FileSystem\Ntfs \Ntfs IRP_MJ_SHUTDOWN 8239D0E8
Device \FileSystem\Ntfs \Ntfs IRP_MJ_LOCK_CONTROL 8239D0E8
Device \FileSystem\Ntfs \Ntfs IRP_MJ_CLEANUP 8239D0E8
Device \FileSystem\Ntfs \Ntfs IRP_MJ_QUERY_SECURITY 8239D0E8
Device \FileSystem\Ntfs \Ntfs IRP_MJ_SET_SECURITY 8239D0E8
Device \FileSystem\Ntfs \Ntfs IRP_MJ_QUERY_QUOTA 8239D0E8
Device \FileSystem\Ntfs \Ntfs IRP_MJ_SET_QUOTA 8239D0E8
Device \FileSystem\Ntfs \Ntfs IRP_MJ_PNP 8239D0E8
Device \FileSystem\Udfs \UdfsCdRom IRP_MJ_CREATE 8211A950
Device \FileSystem\Udfs \UdfsCdRom IRP_MJ_CLOSE 8211A950
Device \FileSystem\Udfs \UdfsCdRom IRP_MJ_READ 8211A950
Device \FileSystem\Udfs \UdfsCdRom IRP_MJ_WRITE 8211A950
Device \FileSystem\Udfs \UdfsCdRom IRP_MJ_QUERY_INFORMATION 8211A950
Device \FileSystem\Udfs \UdfsCdRom IRP_MJ_SET_INFORMATION 8211A950
Device \FileSystem\Udfs \UdfsCdRom IRP_MJ_QUERY_VOLUME_INFORMATION 8211A950
Device \FileSystem\Udfs \UdfsCdRom IRP_MJ_DIRECTORY_CONTROL 8211A950
Device \FileSystem\Udfs \UdfsCdRom IRP_MJ_FILE_SYSTEM_CONTROL 8211A950
Device \FileSystem\Udfs \UdfsCdRom IRP_MJ_DEVICE_CONTROL 8211A950
Device \FileSystem\Udfs \UdfsCdRom IRP_MJ_LOCK_CONTROL 8211A950
Device \FileSystem\Udfs \UdfsCdRom IRP_MJ_CLEANUP 8211A950
Device \FileSystem\Udfs \UdfsCdRom IRP_MJ_PNP 8211A950
Device \FileSystem\Udfs \UdfsDisk IRP_MJ_CREATE 8211A950
Device \FileSystem\Udfs \UdfsDisk IRP_MJ_CLOSE 8211A950
Device \FileSystem\Udfs \UdfsDisk IRP_MJ_READ 8211A950
Device \FileSystem\Udfs \UdfsDisk IRP_MJ_WRITE 8211A950
Device \FileSystem\Udfs \UdfsDisk IRP_MJ_QUERY_INFORMATION 8211A950
Device \FileSystem\Udfs \UdfsDisk IRP_MJ_SET_INFORMATION 8211A950
Device \FileSystem\Udfs \UdfsDisk IRP_MJ_QUERY_VOLUME_INFORMATION 8211A950
Device \FileSystem\Udfs \UdfsDisk IRP_MJ_DIRECTORY_CONTROL 8211A950
Device \FileSystem\Udfs \UdfsDisk IRP_MJ_FILE_SYSTEM_CONTROL 8211A950
Device \FileSystem\Udfs \UdfsDisk IRP_MJ_DEVICE_CONTROL 8211A950
Device \FileSystem\Udfs \UdfsDisk IRP_MJ_LOCK_CONTROL 8211A950
Device \FileSystem\Udfs \UdfsDisk IRP_MJ_CLEANUP 8211A950
Device \FileSystem\Udfs \UdfsDisk IRP_MJ_PNP 8211A950
Device \Driver\00000102 \Device\00000052 IRP_MJ_POWER [F8451EA8] sptd.sys
Device \Driver\00000102 \Device\00000052 IRP_MJ_SYSTEM_CONTROL [F8465A70] sptd.sys
Device \Driver\00000102 \Device\00000052 IRP_MJ_PNP [F845E728] sptd.sys
Device \Driver\NetBT \Device\NetBT_Tcpip_{ABF86415-A8F3-43DA-B7F6-9704CFABD599} IRP_MJ_CREATE 81F70768
Device \Driver\NetBT \Device\NetBT_Tcpip_{ABF86415-A8F3-43DA-B7F6-9704CFABD599} IRP_MJ_CLOSE 81F70768
Device \Driver\NetBT \Device\NetBT_Tcpip_{ABF86415-A8F3-43DA-B7F6-9704CFABD599} IRP_MJ_DEVICE_CONTROL 81F70768
Device \Driver\NetBT \Device\NetBT_Tcpip_{ABF86415-A8F3-43DA-B7F6-9704CFABD599} IRP_MJ_INTERNAL_DEVICE_CONTROL 81F70768
Device \Driver\NetBT \Device\NetBT_Tcpip_{ABF86415-A8F3-43DA-B7F6-9704CFABD599} IRP_MJ_CLEANUP 81F70768
Device \Driver\NetBT \Device\NetBT_Tcpip_{ABF86415-A8F3-43DA-B7F6-9704CFABD599} IRP_MJ_PNP 81F70768
Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_CREATE 8239EA40
Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_READ 8239EA40
Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_WRITE 8239EA40
Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_FLUSH_BUFFERS 8239EA40
Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_DEVICE_CONTROL 8239EA40
Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_INTERNAL_DEVICE_CONTROL 8239EA40
Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_SHUTDOWN 8239EA40
Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_CLEANUP 8239EA40
Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_POWER 8239EA40
Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_SYSTEM_CONTROL 8239EA40
Device \Driver\Ftdisk \Device\HarddiskVolume1 IRP_MJ_PNP 8239EA40
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_CREATE 820DFA60
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_CLOSE 820DFA60
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_READ 820DFA60
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_WRITE 820DFA60
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_FLUSH_BUFFERS 820DFA60
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_DEVICE_CONTROL 820DFA60
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_INTERNAL_DEVICE_CONTROL 820DFA60
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_SHUTDOWN 820DFA60
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_POWER 820DFA60
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_SYSTEM_CONTROL 820DFA60
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_PNP 820DFA60
Device \Driver\Ftdisk \Device\HarddiskVolume2 IRP_MJ_CREATE 8239EA40
Device \Driver\Ftdisk \Device\HarddiskVolume2 IRP_MJ_READ 8239EA40
Device \Driver\Ftdisk \Device\HarddiskVolume2 IRP_MJ_WRITE 8239EA40
Device \Driver\Ftdisk \Device\HarddiskVolume2 IRP_MJ_FLUSH_BUFFERS 8239EA40
Device \Driver\Ftdisk \Device\HarddiskVolume2 IRP_MJ_DEVICE_CONTROL 8239EA40
Device \Driver\Ftdisk \Device\HarddiskVolume2 IRP_MJ_INTERNAL_DEVICE_CONTROL 8239EA40
Device \Driver\Ftdisk \Device\HarddiskVolume2 IRP_MJ_SHUTDOWN 8239EA40
Device \Driver\Ftdisk \Device\HarddiskVolume2 IRP_MJ_CLEANUP 8239EA40
Device \Driver\Ftdisk \Device\HarddiskVolume2 IRP_MJ_POWER 8239EA40
Device \Driver\Ftdisk \Device\HarddiskVolume2 IRP_MJ_SYSTEM_CONTROL 8239EA40
Device \Driver\Ftdisk \Device\HarddiskVolume2 IRP_MJ_PNP 8239EA40
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_CREATE 81EF7AA8
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_CREATE_NAMED_PIPE 81EF7AA8
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_CLOSE 81EF7AA8
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_READ 81EF7AA8
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_WRITE 81EF7AA8
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_QUERY_INFORMATION 81EF7AA8
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_SET_INFORMATION 81EF7AA8
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_QUERY_EA 81EF7AA8
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_SET_EA 81EF7AA8
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_FLUSH_BUFFERS 81EF7AA8
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_QUERY_VOLUME_INFORMATION 81EF7AA8
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_SET_VOLUME_INFORMATION 81EF7AA8
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_DIRECTORY_CONTROL 81EF7AA8
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_FILE_SYSTEM_CONTROL 81EF7AA8
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_DEVICE_CONTROL 81EF7AA8
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_INTERNAL_DEVICE_CONTROL 81EF7AA8
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_SHUTDOWN 81EF7AA8
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_LOCK_CONTROL 81EF7AA8
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_CLEANUP 81EF7AA8
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_CREATE_MAILSLOT 81EF7AA8
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_QUERY_SECURITY 81EF7AA8
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_SET_SECURITY 81EF7AA8
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_POWER 81EF7AA8
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_SYSTEM_CONTROL 81EF7AA8
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_DEVICE_CHANGE 81EF7AA8
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_QUERY_QUOTA 81EF7AA8
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_SET_QUOTA 81EF7AA8
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_CREATE 820DFA60
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_CLOSE 820DFA60
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_READ 820DFA60
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_WRITE 820DFA60
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_FLUSH_BUFFERS 820DFA60
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_DEVICE_CONTROL 820DFA60
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_INTERNAL_DEVICE_CONTROL 820DFA60
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_SHUTDOWN 820DFA60
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_POWER 820DFA60
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_SYSTEM_CONTROL 820DFA60
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_PNP 820DFA60
Device \Driver\NetBT \Device\NetBt_Wins_Export IRP_MJ_CREATE 81F70768
Device \Driver\NetBT \Device\NetBt_Wins_Export IRP_MJ_CLOSE 81F70768
Device \Driver\NetBT \Device\NetBt_Wins_Export IRP_MJ_DEVICE_CONTROL 81F70768
Device \Driver\NetBT \Device\NetBt_Wins_Export IRP_MJ_INTERNAL_DEVICE_CONTROL 81F70768
Device \Driver\NetBT \Device\NetBt_Wins_Export IRP_MJ_CLEANUP 81F70768
Device \Driver\NetBT \Device\NetBt_Wins_Export IRP_MJ_PNP 81F70768
Device \Driver\NetBT \Device\NetbiosSmb IRP_MJ_CREATE 81F70768
Device \Driver\NetBT \Device\NetbiosSmb IRP_MJ_CLOSE 81F70768
Device \Driver\NetBT \Device\NetbiosSmb IRP_MJ_DEVICE_CONTROL 81F70768
Device \Driver\NetBT \Device\NetbiosSmb IRP_MJ_INTERNAL_DEVICE_CONTROL 81F70768
Device \Driver\NetBT \Device\NetbiosSmb IRP_MJ_CLEANUP 81F70768
Device \Driver\NetBT \Device\NetbiosSmb IRP_MJ_PNP 81F70768
Device \Driver\NetBT \Device\NetBT_Tcpip_{86ECE6DB-F3EA-46F4-A13C-85118DA45AA3} IRP_MJ_CREATE 81F70768
Device \Driver\NetBT \Device\NetBT_Tcpip_{86ECE6DB-F3EA-46F4-A13C-85118DA45AA3} IRP_MJ_CLOSE 81F70768
Device \Driver\NetBT \Device\NetBT_Tcpip_{86ECE6DB-F3EA-46F4-A13C-85118DA45AA3} IRP_MJ_DEVICE_CONTROL 81F70768
Device \Driver\NetBT \Device\NetBT_Tcpip_{86ECE6DB-F3EA-46F4-A13C-85118DA45AA3} IRP_MJ_INTERNAL_DEVICE_CONTROL 81F70768
Device \Driver\NetBT \Device\NetBT_Tcpip_{86ECE6DB-F3EA-46F4-A13C-85118DA45AA3} IRP_MJ_CLEANUP 81F70768
Device \Driver\NetBT \Device\NetBT_Tcpip_{86ECE6DB-F3EA-46F4-A13C-85118DA45AA3} IRP_MJ_PNP 81F70768
Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_CREATE 8239E550
Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_CLOSE 8239E550
Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_READ 8239E550
Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_WRITE 8239E550
Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_FLUSH_BUFFERS 8239E550
Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_DEVICE_CONTROL 8239E550
Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_INTERNAL_DEVICE_CONTROL 8239E550
Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_SHUTDOWN 8239E550
Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_POWER 8239E550
Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_SYSTEM_CONTROL 8239E550
Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_PNP 8239E550
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_CREATE 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_CREATE_NAMED_PIPE 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_CLOSE 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_READ 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_WRITE 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_QUERY_INFORMATION 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_SET_INFORMATION 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_QUERY_EA 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_SET_EA 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_FLUSH_BUFFERS 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_QUERY_VOLUME_INFORMATION 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_SET_VOLUME_INFORMATION 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_DIRECTORY_CONTROL 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_FILE_SYSTEM_CONTROL 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_DEVICE_CONTROL 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_INTERNAL_DEVICE_CONTROL 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_SHUTDOWN 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_LOCK_CONTROL 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_CLEANUP 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_CREATE_MAILSLOT 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_QUERY_SECURITY 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_SET_SECURITY 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_POWER 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_SYSTEM_CONTROL 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_DEVICE_CHANGE 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_QUERY_QUOTA 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_SET_QUOTA 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_PNP 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_CREATE 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_CREATE_NAMED_PIPE 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_CLOSE 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_READ 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_WRITE 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_QUERY_INFORMATION 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_SET_INFORMATION 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_QUERY_EA 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_SET_EA 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_FLUSH_BUFFERS 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_QUERY_VOLUME_INFORMATION 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_SET_VOLUME_INFORMATION 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_DIRECTORY_CONTROL 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_FILE_SYSTEM_CONTROL 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_DEVICE_CONTROL 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_INTERNAL_DEVICE_CONTROL 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_SHUTDOWN 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_LOCK_CONTROL 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_CLEANUP 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_CREATE_MAILSLOT 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_QUERY_SECURITY 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_SET_SECURITY 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_POWER 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_SYSTEM_CONTROL 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_DEVICE_CHANGE 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_QUERY_QUOTA 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_SET_QUOTA 81F4E748
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_PNP 81F4E748
Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_CREATE 81F7EEB0
Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_CREATE_NAMED_PIPE 81F7EEB0
Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_CLOSE 81F7EEB0
Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_READ 81F7EEB0
Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_WRITE 81F7EEB0
Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_QUERY_INFORMATION 81F7EEB0
Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_SET_INFORMATION 81F7EEB0
Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_FLUSH_BUFFERS 81F7EEB0
Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_QUERY_VOLUME_INFORMATION 81F7EEB0
Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_DIRECTORY_CONTROL 81F7EEB0
Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_FILE_SYSTEM_CONTROL 81F7EEB0
Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_CLEANUP 81F7EEB0
Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_QUERY_SECURITY 81F7EEB0
Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_SET_SECURITY 81F7EEB0
Device \Driver\Ftdisk \Device\FtControl IRP_MJ_CREATE 8239EA40
Device \Driver\Ftdisk \Device\FtControl IRP_MJ_READ 8239EA40
Device \Driver\Ftdisk \Device\FtControl IRP_MJ_WRITE 8239EA40
Device \Driver\Ftdisk \Device\FtControl IRP_MJ_FLUSH_BUFFERS 8239EA40
Device \Driver\Ftdisk \Device\FtControl IRP_MJ_DEVICE_CONTROL 8239EA40
Device \Driver\Ftdisk \Device\FtControl IRP_MJ_INTERNAL_DEVICE_CONTROL 8239EA40
Device \Driver\Ftdisk \Device\FtControl IRP_MJ_SHUTDOWN 8239EA40
Device \Driver\Ftdisk \Device\FtControl IRP_MJ_CLEANUP 8239EA40
Device \Driver\Ftdisk \Device\FtControl IRP_MJ_POWER 8239EA40
Device \Driver\Ftdisk \Device\FtControl IRP_MJ_SYSTEM_CONTROL 8239EA40
Device \Driver\Ftdisk \Device\FtControl IRP_MJ_PNP 8239EA40
Device \FileSystem\Msfs \Device\Mailslot IRP_MJ_CREATE 81F74B18
Device \FileSystem\Msfs \Device\Mailslot IRP_MJ_CLOSE 81F74B18
Device \FileSystem\Msfs \Device\Mailslot IRP_MJ_READ 81F74B18
Device \FileSystem\Msfs \Device\Mailslot IRP_MJ_WRITE 81F74B18
Device \FileSystem\Msfs \Device\Mailslot IRP_MJ_QUERY_INFORMATION 81F74B18
Device \FileSystem\Msfs \Device\Mailslot IRP_MJ_SET_INFORMATION 81F74B18
Device \FileSystem\Msfs \Device\Mailslot IRP_MJ_QUERY_VOLUME_INFORMATION 81F74B18
Device \FileSystem\Msfs \Device\Mailslot IRP_MJ_DIRECTORY_CONTROL 81F74B18
Device \FileSystem\Msfs \Device\Mailslot IRP_MJ_FILE_SYSTEM_CONTROL 81F74B18
Device \FileSystem\Msfs \Device\Mailslot IRP_MJ_CLEANUP 81F74B18
Device \FileSystem\Msfs \Device\Mailslot IRP_MJ_CREATE_MAILSLOT 81F74B18
Device \FileSystem\Msfs \Device\Mailslot IRP_MJ_QUERY_SECURITY 81F74B18
Device \FileSystem\Msfs \Device\Mailslot IRP_MJ_SET_SECURITY 81F74B18
Device \Driver\dtscsi \Device\Scsi\dtscsi1Port2Path0Target0Lun0 IRP_MJ_CREATE 8223A9C0
Device \Driver\dtscsi \Device\Scsi\dtscsi1Port2Path0Target0Lun0 IRP_MJ_CLOSE 8223A9C0
Device \Driver\dtscsi \Device\Scsi\dtscsi1Port2Path0Target0Lun0 IRP_MJ_DEVICE_CONTROL 8223A9C0
Device \Driver\dtscsi \Device\Scsi\dtscsi1Port2Path0Target0Lun0 IRP_MJ_INTERNAL_DEVICE_CONTROL 8223A9C0
Device \Driver\dtscsi \Device\Scsi\dtscsi1Port2Path0Target0Lun0 IRP_MJ_POWER 8223A9C0
Device \Driver\dtscsi \Device\Scsi\dtscsi1Port2Path0Target0Lun0 IRP_MJ_SYSTEM_CONTROL 8223A9C0
Device \Driver\dtscsi \Device\Scsi\dtscsi1Port2Path0Target0Lun0 IRP_MJ_PNP 8223A9C0
Device \Driver\dtscsi \Device\Scsi\dtscsi1 IRP_MJ_CREATE 8223A9C0
Device \Driver\dtscsi \Device\Scsi\dtscsi1 IRP_MJ_CLOSE 8223A9C0
Device \Driver\dtscsi \Device\Scsi\dtscsi1 IRP_MJ_DEVICE_CONTROL 8223A9C0
Device \Driver\dtscsi \Device\Scsi\dtscsi1 IRP_MJ_INTERNAL_DEVICE_CONTROL 8223A9C0
Device \Driver\dtscsi \Device\Scsi\dtscsi1 IRP_MJ_POWER 8223A9C0
Device \Driver\dtscsi \Device\Scsi\dtscsi1 IRP_MJ_SYSTEM_CONTROL 8223A9C0
Device \Driver\dtscsi \Device\Scsi\dtscsi1 IRP_MJ_PNP 8223A9C0
Device \FileSystem\Cdfs \Cdfs IRP_MJ_CREATE 820FF1C8
Device \FileSystem\Cdfs \Cdfs IRP_MJ_CLOSE 820FF1C8
Device \FileSystem\Cdfs \Cdfs IRP_MJ_READ 820FF1C8
Device \FileSystem\Cdfs \Cdfs IRP_MJ_QUERY_INFORMATION 820FF1C8
Device \FileSystem\Cdfs \Cdfs IRP_MJ_SET_INFORMATION 820FF1C8
Device \FileSystem\Cdfs \Cdfs IRP_MJ_QUERY_VOLUME_INFORMATION 820FF1C8
Device \FileSystem\Cdfs \Cdfs IRP_MJ_DIRECTORY_CONTROL 820FF1C8
Device \FileSystem\Cdfs \Cdfs IRP_MJ_FILE_SYSTEM_CONTROL 820FF1C8
Device \FileSystem\Cdfs \Cdfs IRP_MJ_DEVICE_CONTROL 820FF1C8
Device \FileSystem\Cdfs \Cdfs IRP_MJ_SHUTDOWN 820FF1C8
Device \FileSystem\Cdfs \Cdfs IRP_MJ_LOCK_CONTROL 820FF1C8
Device \FileSystem\Cdfs \Cdfs IRP_MJ_CLEANUP 820FF1C8
Device \FileSystem\Cdfs \Cdfs IRP_MJ_PNP 820FF1C8

---- Registry - GMER 1.0.11 ----

Reg \Registry\MACHINE\SOFTWARE\LicCtrl\LicCtrl\LicCtrl\LicCtrl

---- Files - GMER 1.0.11 ----

ADS C:\Documents and Settings\Lauro\Favorites\Muut\Tampereen yliopisto - TaY.url:favicon
ADS C:\Documents and Settings\Lauro\Favorites\Nikon\Fm 2006\Football Manager Suomi.url:favicon
ADS C:\Documents and Settings\Lauro\Favorites\Nikon\Fm 2006\Sortitoutsi.net.url:favicon
ADS C:\Documents and Settings\Lauro\Favorites\Nikon\Fm 2006\Throw-In.Com.url:favicon
ADS C:\Documents and Settings\Lauro\Favorites\Nikon\Google Video.url:favicon
ADS C:\Documents and Settings\Lauro\Favorites\Nikon\Google.url:favicon
ADS ...
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\01\10-{0FC636DA-227D-17E6-60DE-9A9986F21B92}-v1-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v10-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.XPRESS
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\13\13-{C698C564-F044-4BBE-A83A-41E849F1597D}-v13-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v13-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.rdc.1
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\13\13-{C698C564-F044-4BBE-A83A-41E849F1597D}-v13-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v13-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.XPRESS
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\14\17-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v14-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v17-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.rdc.1
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\14\17-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v14-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v17-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.XPRESS
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\15\22-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v15-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v22-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.rdc.1
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\15\22-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v15-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v22-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.rdc.2
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\15\22-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v15-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v22-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.XPRESS
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\16\23-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v16-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v23-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.rdc.1
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\16\23-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v16-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v23-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.rdc.2
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\16\23-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v16-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v23-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.XPRESS
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\16\25-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v16-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v25-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.rdc.1
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\16\25-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v16-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v25-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.XPRESS
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\21\28-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v21-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v28-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.rdc.1
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\21\28-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v21-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v28-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.XPRESS
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\24\30-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v24-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v30-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.rdc.1
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\24\30-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v24-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v30-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.XPRESS
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\26\43-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v26-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v43-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.rdc.1
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\26\43-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v26-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v43-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.XPRESS
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\27\32-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v27-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v32-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.rdc.1
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\27\32-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v27-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v32-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.XPRESS
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\29\33-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v29-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v33-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.rdc.1
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\29\33-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v29-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v33-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.XPRESS
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\34\39-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v34-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v39-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.rdc.1
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\34\39-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v34-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v39-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.XPRESS
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\35\40-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v35-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v40-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.rdc.1
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\35\40-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v35-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v40-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.XPRESS
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\38\42-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v38-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v42-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.rdc.1
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\38\42-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v38-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v42-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.XPRESS
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\55\61-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v55-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v61-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.rdc.1
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\55\61-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v55-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v61-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.rdc.2
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\55\61-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v55-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v61-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.rdc.3
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\55\61-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v55-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v61-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.XPRESS
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\55\62-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v55-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v62-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.rdc.1
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\55\62-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v55-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v62-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.rdc.2
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\55\62-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v55-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v62-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.rdc.3
ADS C:\Documents and Settings\Lauro\Local Settings\Application Data\Microsoft\Messenger\lonely-wolf.90@hotmail.com\SharingMetadata\cool_air3@hotmail.com\DFSR\Staging\CS{0FC636DA-227D-17E6-60DE-9A9986F21B92}\55\62-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v55-{E2CDC9BE-0CA2-41F9-92D3-CC99A0C5552A}-v62-Downloaded.frx:{59828bbb-3f72-4c1b-a420-b51ad66eb5d3}.XPRESS
File C:\RECYCLER\NPROTECT
ADS ...
File D:\RECYCLER\NPROTECT

---- EOF - GMER 1.0.11 ----

[bold]combofix - loki[/bold]

Lauro - 06-10-14 16:56:29,52 Service Pack 2
ComboFix 06.10.08W - Running from: C:\Documents and Settings\Lauro\Desktop

((((((((((((((((((((((((((((((( Files Created from 2006-09-14 to 2006-10-14 ))))))))))))))))))))))))))))))))))

2006-10-14 00:13 520,192 --------- C:\WINDOWS\system32\ati2sgag.exe
2006-10-14 00:08 90,112 --a------ C:\WINDOWS\unvise32.exe
2006-10-12 15:02 184,386 --a------ C:\WINDOWS\system32\hpzsnt07.dll
2006-10-08 19:52 45,056 --a------ C:\WINDOWS\system32\exshow95.exe
2006-10-08 19:52 376,832 --a------ C:\WINDOWS\system32\exshow.exe
2006-10-08 19:52 23,040 --a------ C:\WINDOWS\system32\mouclass.sys
2006-10-08 19:52 122,880 --a------ C:\WINDOWS\system32\shw95dll.dll
2006-10-08 19:52 12,160 --a------ C:\WINDOWS\system32\mouhid.sys
2006-10-03 21:31 2,318,976 --a------ C:\WINDOWS\system32\TUKernel.exe
2006-10-02 22:04 806,912 --a------ C:\WINDOWS\system32\divx_xx0c.dll
2006-10-02 22:04 806,912 --a------ C:\WINDOWS\system32\divx_xx07.dll
2006-10-02 22:04 790,528 --a------ C:\WINDOWS\system32\divx_xx11.dll
2006-10-02 22:04 635,486 --a------ C:\WINDOWS\system32\DivX.dll
2006-09-27 14:42 809 --ahs---- C:\WINDOWS\system32\mmf.sys
2006-09-27 14:42 48,640 --a------ C:\WINDOWS\mmfs.dll
2006-09-27 14:42 2,560 --a------ C:\WINDOWS\Runservice.exe
2006-09-24 18:56 9,341 --a------ C:\WINDOWS\system32\drivers\filedisk.sys
2006-09-24 18:55 41,472 --a------ C:\WINDOWS\system32\iolobtdfg.exe
2006-09-24 18:55 25,264 --a------ C:\WINDOWS\system32\smrgdf.exe
2006-09-17 21:52 62,744 --a------ C:\WINDOWS\system32\xinput1_2.dll
2006-09-17 21:52 236,824 --a------ C:\WINDOWS\system32\xactengine2_3.dll

(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))

2006-10-14 16:56 -------- d-------- C:\Documents and Settings\Lauro\Application Data\uTorrent
2006-10-14 16:30 -------- d-------- C:\Program Files\Mozilla Firefox
2006-10-14 15:48 -------- d-------- C:\Documents and Settings\Lauro\Application Data\atitray
2006-10-14 15:47 -------- d-------- C:\Program Files\Diskeeper Corporation
2006-10-14 15:34 -------- d-------- C:\Program Files\ZaZ Gp4 tools
2006-10-14 00:15 -------- d--h----- C:\Program Files\InstallShield Installation Information
2006-10-14 00:15 -------- d-------- C:\Program Files\ATI Technologies
2006-10-14 00:08 -------- d-------- C:\Program Files\NGO ATI Optimized Driver v1.6.6
2006-10-13 17:30 -------- d-------- C:\Program Files\Norton SystemWorks
2006-10-12 17:38 -------- d-------- C:\Program Files\Java
2006-10-12 17:33 -------- d-------- C:\Program Files\Common Files\Java
2006-10-12 17:33 -------- d-------- C:\Program Files\Common Files
2006-10-12 15:02 -------- d-------- C:\Program Files\hp deskjet 3420 series
2006-10-12 14:57 -------- d-------- C:\Program Files\Hewlett-Packard
2006-10-10 16:44 -------- d-------- C:\Program Files\Online TV Player
2006-10-08 23:47 -------- d-------- C:\Program Files\Audio Encoder
2006-10-08 20:23 952 --ahsc--- C:\WINDOWS\system32\KGyGaAvL.sys
2006-10-07 17:54 -------- d-------- C:\Program Files\DC++
2006-10-07 17:16 -------- d-------- C:\Documents and Settings\Lauro\Application Data\AdobeUM
2006-10-05 17:27 -------- d-------- C:\Documents and Settings\Lauro\Application Data\DivX
2006-10-05 17:25 -------- d-------- C:\Program Files\DivX
2006-10-03 22:37 -------- d-------- C:\Program Files\Fraps
2006-10-03 19:56 -------- d-------- C:\Documents and Settings\Lauro\Application Data\teamspeak2
2006-10-03 13:19 -------- d-------- C:\Program Files\Hex Workshop 4.2
2006-09-30 15:29 -------- d-------- C:\Program Files\iTunes
2006-09-30 15:28 -------- d-------- C:\Program Files\iPod
2006-09-30 15:26 -------- d-------- C:\Program Files\QuickTime
2006-09-30 15:22 -------- d-------- C:\Program Files\Apple Software Update
2006-09-25 18:45 666240 --a------ C:\WINDOWS\system32\aswBoot.exe
2006-09-25 18:40 87424 --a------ C:\WINDOWS\system32\drivers\aswmon2.sys
2006-09-25 18:40 85952 --a--c--- C:\WINDOWS\system32\drivers\aswmon.sys
2006-09-25 18:39 36176 --a------ C:\WINDOWS\system32\drivers\aswTdi.sys
2006-09-25 18:39 16352 --a------ C:\WINDOWS\system32\drivers\aswRdr.sys
2006-09-25 18:37 90112 --a------ C:\WINDOWS\system32\AVASTSS.scr
2006-09-25 18:37 24560 --a------ C:\WINDOWS\system32\drivers\aavmker4.sys
2006-09-24 20:56 -------- d-------- C:\Program Files\Common Files\Microsoft Shared
2006-09-24 20:52 -------- d-------- C:\Program Files\CyberLink
2006-09-24 20:44 -------- d-------- C:\Program Files\System Mechanic Professional 6
2006-09-24 19:05 -------- d-------- C:\Program Files\WinRAR
2006-09-24 19:05 -------- d-------- C:\Program Files\Advanced WMA Workshop
2006-09-24 18:55 -------- d-------- C:\Program Files\iolo
2006-09-23 21:13 -------- d-------- C:\Documents and Settings\Lauro\Application Data\Hamachi
2006-09-20 14:57 -------- d-------- C:\Program Files\TuneUp Utilities 2006
2006-09-16 22:53 -------- d-------- C:\Documents and Settings\Lauro\Application Data\ATI
2006-09-15 23:20 -------- d-------- C:\Program Files\GP4 Tweaker
2006-09-13 15:31 -------- d-------- C:\Program Files\The All-Seeing Eye
2006-09-13 15:31 -------- d-------- C:\Program Files\NetMeeting
2006-09-13 15:31 -------- d-------- C:\Program Files\Mopokorttikoulu
2006-09-13 15:31 -------- d-------- C:\Program Files\GameSpy Arcade
2006-09-13 08:01 1084416 --a------ C:\WINDOWS\system32\msxml3.dll
2006-09-12 22:52 -------- d-------- C:\Documents and Settings\Lauro\Application Data\TuneUp Software
2006-09-12 22:50 -------- d-------- C:\Program Files\Common Files\Wise Installation Wizard
2006-09-09 17:18 -------- d-------- C:\Documents and Settings\Lauro\Application Data\Creative
2006-09-09 16:29 -------- d-------- C:\Program Files\Creative
2006-09-09 16:29 -------- d-------- C:\Program Files\Audible
2006-09-08 15:40 -------- d-------- C:\Program Files\HD Tune
2006-09-07 21:05 -------- d-------- C:\Program Files\Winamp
2006-09-06 20:00 -------- d-------- C:\Program Files\CCleaner
2006-09-05 10:01 1212928 --a------ C:\WINDOWS\system32\Incinerator.dll
2006-09-03 23:16 -------- d-------- C:\Program Files\MSN Messenger
2006-08-29 17:36 -------- d-------- C:\Program Files\FreeRAM XP Pro
2006-08-26 12:02 -------- d-------- C:\Program Files\Internet Explorer
2006-08-25 18:45 617472 --a------ C:\WINDOWS\system32\comctl32.dll
2006-08-23 15:50 -------- d-------- C:\Program Files\Registry Mechanic
2006-08-21 15:21 16896 --a------ C:\WINDOWS\system32\fltlib.dll
2006-08-21 12:14 23040 --a------ C:\WINDOWS\system32\fltmc.exe
2006-08-21 12:14 128896 --------- C:\WINDOWS\system32\drivers\fltmgr.sys
2006-08-16 14:58 100352 --a------ C:\WINDOWS\system32\6to4svc.dll
2006-08-16 12:37 225664 --a------ C:\WINDOWS\system32\drivers\tcpip6.sys
2006-08-15 14:25 -------- d-------- C:\Program Files\directx
2006-08-14 13:34 332928 --a------ C:\WINDOWS\system32\drivers\srv.sys
2006-08-11 02:03 73728 --a------ C:\WINDOWS\system32\dpl100.dll
2006-08-11 02:03 196608 --a------ C:\WINDOWS\system32\dtu100.dll
2006-07-29 19:32 48936 --a------ C:\WINDOWS\system32\sirenacm.dll
2006-07-27 20:28 3596288 --a------ C:\WINDOWS\system32\qt-dx331.dll
2006-07-27 16:24 679424 --a------ C:\WINDOWS\system32\inetcomm.dll
2006-07-21 11:24 72704 --a------ C:\WINDOWS\system32\hlink.dll
2006-07-14 14:51 108144 --a------ C:\WINDOWS\system32\GEARAspi.dll

(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))

*Note* empty entries are not shown

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"Creative Detector"="C:\\Program Files\\Creative\\MediaSource\\Detector\\CTDetect.exe /R"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"avast!"="C:\\PROGRA~1\\ALWILS~1\\Avast4\\ashDisp.exe"
"EXSHOW95.EXE"="EXSHOW95.EXE"
"HPDJ Taskbar Utility"="C:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\hpztsb07.exe"
"AtiPTA"="\"C:\\Program Files\\ATI Technologies\\ATI Control Panel\\atiptaxx.exe\""
"DiskeeperSystray"="\"C:\\Program Files\\Diskeeper Corporation\\Diskeeper\\DkIcon.exe\""
"ioloDelayModule"="C:\\Program Files\\System Mechanic Professional 6\\delay.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\not active]
"TkBellExe"="\"C:\\Program Files\\Common Files\\Real\\Update_OB\\realsched.exe\" -osboot"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]
"NoChange"="1"
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]
"Installed"="1"

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components]
"DeskHtmlVersion"=dword:00000110
"DeskHtmlMinorVersion"=dword:00000005
"Settings"=dword:00000001
"GeneralFlags"=dword:00000000

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="My Current Home Page"
"Flags"=dword:00000002
"Position"=hex:2c,00,00,00,00,01,00,00,00,00,00,00,00,04,00,00,e2,03,00,00,00,\
00,00,00,01,00,00,00,01,00,00,00,01,00,00,00,00,00,00,00,00,00,00,00
"CurrentState"=dword:40000004
"OriginalStateInfo"=hex:18,00,00,00,cc,00,00,00,00,00,00,00,34,03,00,00,e2,02,\
00,00,04,00,00,40
"RestoredStateInfo"=hex:18,00,00,00,cc,00,00,00,00,00,00,00,34,03,00,00,e2,02,\
00,00,01,00,00,00

[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"ALUAlert"="C:\\Program Files\\Symantec\\LiveUpdate\\ALUNotify.exe"

[HKEY_USERS\.default\software\microsoft\windows\currentversion\runonce]
"RunNarrator"="Narrator.exe"

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\run]
"ALUAlert"="C:\\Program Files\\Symantec\\LiveUpdate\\ALUNotify.exe"

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\runonce]
"RunNarrator"="Narrator.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Browseui preloader"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Component Categories cache daemon"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=""

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=hex:95,00,00,00

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\Run]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer\run]
"wininet.dll"=""

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload]
"PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}"
"CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}"
"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"
"SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}"

HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WBSrv

HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders
securityproviders REG_SZ msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll

~ ~ ~ ~ ~ ~ ~ ~ Hijackthis Backups ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~

backup-20060730-175428-900
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe
backup-20060730-175428-643
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
backup-20060730-175428-196
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
backup-20060730-175428-785
O14 - IERESET.INF: START_PAGE_URL=http://www.dnainternet.net
backup-20060730-175427-726
O11 - Options group: [INTERNATIONAL] International*

Contents of the 'Scheduled Tasks' folder
C:\WINDOWS\tasks\1-Click Maintenance.job
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Norton SystemWorks One Button Checkup.job
C:\WINDOWS\tasks\Symantec NetDetect.job

Completion time: Sat 14.10.2006 16:57:37.63
C:\ComboFix.txt ... 14.10.2006 16:57

[bold]avg anti-spyware 7.5 - loki[/bold]

---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------

+ Created at: 19:01:29 14.10.2006

+ Scan result:

C:\WINDOWS\system32\regperf.exe -> Downloader.Zlob.xh : Cleaned with backup (quarantined).
C:\WINDOWS\system32\dllcache\win32\psshutdown.exe -> Not-A-Virus.HackTool.Win32.Brumer.e : Cleaned with backup (quarantined).
:mozilla.13:C:\RECYCLER\NPROTECT\00000049.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.14:C:\RECYCLER\NPROTECT\00000049.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00000049.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.18:C:\RECYCLER\NPROTECT\00000050.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.19:C:\RECYCLER\NPROTECT\00000050.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.19:C:\RECYCLER\NPROTECT\00000051.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.19:C:\RECYCLER\NPROTECT\00000052.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00000051.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00000052.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00000050.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00000051.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00000052.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00000099.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00000099.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00000099.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00000100.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00000100.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00000101.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00000102.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00000113.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00000114.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.30:C:\RECYCLER\NPROTECT\00000101.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.30:C:\RECYCLER\NPROTECT\00000102.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.30:C:\RECYCLER\NPROTECT\00000113.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.30:C:\RECYCLER\NPROTECT\00000114.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.30:C:\RECYCLER\NPROTECT\00000115.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.30:C:\RECYCLER\NPROTECT\00000116.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.30:C:\RECYCLER\NPROTECT\00013136.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.30:C:\RECYCLER\NPROTECT\00013137.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.30:C:\RECYCLER\NPROTECT\00013139.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.30:C:\RECYCLER\NPROTECT\00013140.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.31:C:\Documents and Settings\Lauro\Application Data\Mozilla\Firefox\Profiles\u0pxt7qz.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.31:C:\RECYCLER\NPROTECT\00000100.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.31:C:\RECYCLER\NPROTECT\00000115.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.31:C:\RECYCLER\NPROTECT\00000116.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.31:C:\RECYCLER\NPROTECT\00013136.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.31:C:\RECYCLER\NPROTECT\00013137.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.31:C:\RECYCLER\NPROTECT\00013139.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.31:C:\RECYCLER\NPROTECT\00013140.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.31:C:\RECYCLER\NPROTECT\00013148.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.32:C:\Documents and Settings\Lauro\Application Data\Mozilla\Firefox\Profiles\u0pxt7qz.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00000101.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00000102.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00000113.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00000114.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00013148.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00013149.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00013150.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00013151.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00013152.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00013156.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00000115.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00000116.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00013136.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00013137.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00013139.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00013140.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00013149.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00013150.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00013151.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00013152.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00013156.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.34:C:\Documents and Settings\Lauro\Application Data\Mozilla\Firefox\Profiles\u0pxt7qz.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00013148.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00013149.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00013150.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00013151.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00013152.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00013156.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.10:C:\RECYCLER\NPROTECT\00000009.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00000049.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00000049.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.31:C:\RECYCLER\NPROTECT\00000050.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00000050.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00000051.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00000052.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00000051.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00000052.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00000000.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00000001.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00000002.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00000000.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00000001.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00000002.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.37:C:\RECYCLER\NPROTECT\00000099.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.38:C:\RECYCLER\NPROTECT\00000099.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.41:C:\RECYCLER\NPROTECT\00000100.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.42:C:\RECYCLER\NPROTECT\00000100.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.42:C:\RECYCLER\NPROTECT\00000101.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.42:C:\RECYCLER\NPROTECT\00000102.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.42:C:\RECYCLER\NPROTECT\00000113.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.42:C:\RECYCLER\NPROTECT\00000114.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.42:C:\RECYCLER\NPROTECT\00013137.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.42:C:\RECYCLER\NPROTECT\00013139.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.42:C:\RECYCLER\NPROTECT\00013140.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.43:C:\Documents and Settings\Lauro\Application Data\Mozilla\Firefox\Profiles\u0pxt7qz.default\cookies.txt -> TrackingCookie.Adition : Cleaned.
:mozilla.43:C:\RECYCLER\NPROTECT\00000101.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.43:C:\RECYCLER\NPROTECT\00000102.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.43:C:\RECYCLER\NPROTECT\00000113.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.43:C:\RECYCLER\NPROTECT\00000114.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.43:C:\RECYCLER\NPROTECT\00000115.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.43:C:\RECYCLER\NPROTECT\00000116.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.43:C:\RECYCLER\NPROTECT\00013136.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.43:C:\RECYCLER\NPROTECT\00013137.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.43:C:\RECYCLER\NPROTECT\00013139.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.43:C:\RECYCLER\NPROTECT\00013140.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.43:C:\RECYCLER\NPROTECT\00013148.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.44:C:\Documents and Settings\Lauro\Application Data\Mozilla\Firefox\Profiles\u0pxt7qz.default\cookies.txt -> TrackingCookie.Adition : Cleaned.
:mozilla.44:C:\RECYCLER\NPROTECT\00000115.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.44:C:\RECYCLER\NPROTECT\00000116.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.44:C:\RECYCLER\NPROTECT\00013136.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.44:C:\RECYCLER\NPROTECT\00013148.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.44:C:\RECYCLER\NPROTECT\00013149.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.44:C:\RECYCLER\NPROTECT\00013150.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.44:C:\RECYCLER\NPROTECT\00013151.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.44:C:\RECYCLER\NPROTECT\00013152.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.44:C:\RECYCLER\NPROTECT\00013156.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.45:C:\RECYCLER\NPROTECT\00013149.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.45:C:\RECYCLER\NPROTECT\00013150.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.45:C:\RECYCLER\NPROTECT\00013151.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.45:C:\RECYCLER\NPROTECT\00013152.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.45:C:\RECYCLER\NPROTECT\00013156.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.7:C:\RECYCLER\NPROTECT\00000003.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.7:C:\RECYCLER\NPROTECT\00000009.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.9:C:\RECYCLER\NPROTECT\00000003.MOZ -> TrackingCookie.Adition : Cleaned.
:mozilla.15:C:\RECYCLER\NPROTECT\00000003.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.17:C:\RECYCLER\NPROTECT\00000003.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00000009.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00000009.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.30:C:\RECYCLER\NPROTECT\00000000.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.30:C:\RECYCLER\NPROTECT\00000001.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.30:C:\RECYCLER\NPROTECT\00000002.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.31:C:\RECYCLER\NPROTECT\00000000.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.31:C:\RECYCLER\NPROTECT\00000001.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.31:C:\RECYCLER\NPROTECT\00000002.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.41:C:\RECYCLER\NPROTECT\00000049.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.42:C:\RECYCLER\NPROTECT\00000049.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.45:C:\RECYCLER\NPROTECT\00000050.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00000050.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00000051.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00000052.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00000099.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00000051.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00000052.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00000099.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.49:C:\RECYCLER\NPROTECT\00000100.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.50:C:\RECYCLER\NPROTECT\00000100.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.50:C:\RECYCLER\NPROTECT\00000101.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.50:C:\RECYCLER\NPROTECT\00000102.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.50:C:\RECYCLER\NPROTECT\00000113.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.50:C:\RECYCLER\NPROTECT\00000114.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.50:C:\RECYCLER\NPROTECT\00013137.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.50:C:\RECYCLER\NPROTECT\00013139.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.50:C:\RECYCLER\NPROTECT\00013140.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.51:C:\Documents and Settings\Lauro\Application Data\Mozilla\Firefox\Profiles\u0pxt7qz.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.51:C:\RECYCLER\NPROTECT\00000101.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.51:C:\RECYCLER\NPROTECT\00000102.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.51:C:\RECYCLER\NPROTECT\00000113.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.51:C:\RECYCLER\NPROTECT\00000114.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.51:C:\RECYCLER\NPROTECT\00000115.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.51:C:\RECYCLER\NPROTECT\00000116.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.51:C:\RECYCLER\NPROTECT\00013136.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.51:C:\RECYCLER\NPROTECT\00013137.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.51:C:\RECYCLER\NPROTECT\00013139.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.51:C:\RECYCLER\NPROTECT\00013140.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.51:C:\RECYCLER\NPROTECT\00013148.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.52:C:\Documents and Settings\Lauro\Application Data\Mozilla\Firefox\Profiles\u0pxt7qz.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.52:C:\RECYCLER\NPROTECT\00000115.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.52:C:\RECYCLER\NPROTECT\00000116.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.52:C:\RECYCLER\NPROTECT\00013136.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.52:C:\RECYCLER\NPROTECT\00013148.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.52:C:\RECYCLER\NPROTECT\00013149.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.52:C:\RECYCLER\NPROTECT\00013150.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.52:C:\RECYCLER\NPROTECT\00013151.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.52:C:\RECYCLER\NPROTECT\00013152.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.52:C:\RECYCLER\NPROTECT\00013156.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.53:C:\RECYCLER\NPROTECT\00013149.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.53:C:\RECYCLER\NPROTECT\00013150.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.53:C:\RECYCLER\NPROTECT\00013151.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.53:C:\RECYCLER\NPROTECT\00013152.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.53:C:\RECYCLER\NPROTECT\00013156.MOZ -> TrackingCookie.Adtech : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00000049.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.12:C:\RECYCLER\NPROTECT\00000050.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.13:C:\RECYCLER\NPROTECT\00000051.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.13:C:\RECYCLER\NPROTECT\00000052.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00000050.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.17:C:\RECYCLER\NPROTECT\00000051.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.17:C:\RECYCLER\NPROTECT\00000052.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.18:C:\RECYCLER\NPROTECT\00000099.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00000099.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00000100.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00000101.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00000102.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00000113.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00000114.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00000115.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00000116.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00013136.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00013137.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00013139.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00013140.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.26:C:\Documents and Settings\Lauro\Application Data\Mozilla\Firefox\Profiles\u0pxt7qz.default\cookies.txt -> TrackingCookie.Clickhype : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00000100.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00013148.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00000101.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00000102.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00000113.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00000114.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00013149.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00013150.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00013151.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00013152.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00013156.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00000115.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00000116.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00013136.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00013137.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00013139.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00013140.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.29:C:\Documents and Settings\Lauro\Application Data\Mozilla\Firefox\Profiles\u0pxt7qz.default\cookies.txt -> TrackingCookie.Clickhype : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00013148.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.30:C:\RECYCLER\NPROTECT\00013149.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.30:C:\RECYCLER\NPROTECT\00013150.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.30:C:\RECYCLER\NPROTECT\00013151.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.30:C:\RECYCLER\NPROTECT\00013152.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.30:C:\RECYCLER\NPROTECT\00013156.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.7:C:\RECYCLER\NPROTECT\00000049.MOZ -> TrackingCookie.Clickhype : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00000000.MOZ -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00000001.MOZ -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00000002.MOZ -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.49:C:\RECYCLER\NPROTECT\00000003.MOZ -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.54:C:\RECYCLER\NPROTECT\00000009.MOZ -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.65:C:\RECYCLER\NPROTECT\00000050.MOZ -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.66:C:\RECYCLER\NPROTECT\00000051.MOZ -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.66:C:\RECYCLER\NPROTECT\00000052.MOZ -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.66:C:\RECYCLER\NPROTECT\00000099.MOZ -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.67:C:\RECYCLER\NPROTECT\00000049.MOZ -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.67:C:\RECYCLER\NPROTECT\00000100.MOZ -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.68:C:\Documents and Settings\Lauro\Application Data\Mozilla\Firefox\Profiles\u0pxt7qz.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.68:C:\RECYCLER\NPROTECT\00000101.MOZ -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.68:C:\RECYCLER\NPROTECT\00000102.MOZ -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.68:C:\RECYCLER\NPROTECT\00000113.MOZ -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.68:C:\RECYCLER\NPROTECT\00000114.MOZ -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.68:C:\RECYCLER\NPROTECT\00013137.MOZ -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.68:C:\RECYCLER\NPROTECT\00013139.MOZ -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.68:C:\RECYCLER\NPROTECT\00013140.MOZ -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.69:C:\RECYCLER\NPROTECT\00000115.MOZ -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.69:C:\RECYCLER\NPROTECT\00000116.MOZ -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.69:C:\RECYCLER\NPROTECT\00013136.MOZ -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.69:C:\RECYCLER\NPROTECT\00013148.MOZ -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.69:C:\RECYCLER\NPROTECT\00013149.MOZ -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.69:C:\RECYCLER\NPROTECT\00013150.MOZ -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.69:C:\RECYCLER\NPROTECT\00013151.MOZ -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.69:C:\RECYCLER\NPROTECT\00013152.MOZ -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.69:C:\RECYCLER\NPROTECT\00013156.MOZ -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.73:C:\RECYCLER\NPROTECT\00000000.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.73:C:\RECYCLER\NPROTECT\00000001.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.73:C:\RECYCLER\NPROTECT\00000002.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.74:C:\RECYCLER\NPROTECT\00000000.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.74:C:\RECYCLER\NPROTECT\00000001.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.74:C:\RECYCLER\NPROTECT\00000002.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.74:C:\RECYCLER\NPROTECT\00000003.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.75:C:\RECYCLER\NPROTECT\00000000.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.75:C:\RECYCLER\NPROTECT\00000001.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.75:C:\RECYCLER\NPROTECT\00000002.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.75:C:\RECYCLER\NPROTECT\00000003.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.76:C:\RECYCLER\NPROTECT\00000000.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.76:C:\RECYCLER\NPROTECT\00000001.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.76:C:\RECYCLER\NPROTECT\00000002.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.76:C:\RECYCLER\NPROTECT\00000003.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.77:C:\RECYCLER\NPROTECT\00000000.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.77:C:\RECYCLER\NPROTECT\00000001.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.77:C:\RECYCLER\NPROTECT\00000002.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.77:C:\RECYCLER\NPROTECT\00000003.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.78:C:\RECYCLER\NPROTECT\00000000.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.78:C:\RECYCLER\NPROTECT\00000001.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.78:C:\RECYCLER\NPROTECT\00000002.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.78:C:\RECYCLER\NPROTECT\00000003.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.78:C:\RECYCLER\NPROTECT\00000009.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.79:C:\RECYCLER\NPROTECT\00000003.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.79:C:\RECYCLER\NPROTECT\00000009.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.80:C:\RECYCLER\NPROTECT\00000009.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.81:C:\RECYCLER\NPROTECT\00000009.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.82:C:\RECYCLER\NPROTECT\00000009.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.83:C:\RECYCLER\NPROTECT\00000009.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.89:C:\RECYCLER\NPROTECT\00000050.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.90:C:\RECYCLER\NPROTECT\00000050.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.90:C:\RECYCLER\NPROTECT\00000051.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.90:C:\RECYCLER\NPROTECT\00000052.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.90:C:\RECYCLER\NPROTECT\00000099.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.91:C:\Documents and Settings\Lauro\Application Data\Mozilla\Firefox\Profiles\u0pxt7qz.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.91:C:\RECYCLER\NPROTECT\00000049.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.91:C:\RECYCLER\NPROTECT\00000050.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.91:C:\RECYCLER\NPROTECT\00000051.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.91:C:\RECYCLER\NPROTECT\00000052.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.91:C:\RECYCLER\NPROTECT\00000099.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.91:C:\RECYCLER\NPROTECT\00000100.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.91:C:\RECYCLER\NPROTECT\00000114.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.91:C:\RECYCLER\NPROTECT\00013137.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.91:C:\RECYCLER\NPROTECT\00013139.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.91:C:\RECYCLER\NPROTECT\00013140.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.92:C:\Documents and Settings\Lauro\Application Data\Mozilla\Firefox\Profiles\u0pxt7qz.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.92:C:\RECYCLER\NPROTECT\00000049.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.92:C:\RECYCLER\NPROTECT\00000050.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.92:C:\RECYCLER\NPROTECT\00000051.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.92:C:\RECYCLER\NPROTECT\00000052.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.92:C:\RECYCLER\NPROTECT\00000099.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.92:C:\RECYCLER\NPROTECT\00000100.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.92:C:\RECYCLER\NPROTECT\00000101.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.92:C:\RECYCLER\NPROTECT\00000102.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.92:C:\RECYCLER\NPROTECT\00000113.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.92:C:\RECYCLER\NPROTECT\00000114.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.92:C:\RECYCLER\NPROTECT\00000115.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.92:C:\RECYCLER\NPROTECT\00000116.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.92:C:\RECYCLER\NPROTECT\00013136.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.92:C:\RECYCLER\NPROTECT\00013137.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.92:C:\RECYCLER\NPROTECT\00013139.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.92:C:\RECYCLER\NPROTECT\00013140.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.92:C:\RECYCLER\NPROTECT\00013148.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.92:C:\RECYCLER\NPROTECT\00013149.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.92:C:\RECYCLER\NPROTECT\00013150.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.92:C:\RECYCLER\NPROTECT\00013151.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.92:C:\RECYCLER\NPROTECT\00013152.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.92:C:\RECYCLER\NPROTECT\00013156.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.93:C:\Documents and Settings\Lauro\Application Data\Mozilla\Firefox\Profiles\u0pxt7qz.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.93:C:\RECYCLER\NPROTECT\00000049.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.93:C:\RECYCLER\NPROTECT\00000050.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.93:C:\RECYCLER\NPROTECT\00000051.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.93:C:\RECYCLER\NPROTECT\00000052.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.93:C:\RECYCLER\NPROTECT\00000099.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.93:C:\RECYCLER\NPROTECT\00000100.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.93:C:\RECYCLER\NPROTECT\00000101.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.93:C:\RECYCLER\NPROTECT\00000102.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.93:C:\RECYCLER\NPROTECT\00000113.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.93:C:\RECYCLER\NPROTECT\00000114.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.93:C:\RECYCLER\NPROTECT\00000115.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.93:C:\RECYCLER\NPROTECT\00000116.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.93:C:\RECYCLER\NPROTECT\00013136.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.93:C:\RECYCLER\NPROTECT\00013137.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.93:C:\RECYCLER\NPROTECT\00013139.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.93:C:\RECYCLER\NPROTECT\00013140.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.93:C:\RECYCLER\NPROTECT\00013148.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.93:C:\RECYCLER\NPROTECT\00013149.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.93:C:\RECYCLER\NPROTECT\00013150.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.93:C:\RECYCLER\NPROTECT\00013151.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.93:C:\RECYCLER\NPROTECT\00013152.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.93:C:\RECYCLER\NPROTECT\00013156.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.94:C:\Documents and Settings\Lauro\Application Data\Mozilla\Firefox\Profiles\u0pxt7qz.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.94:C:\RECYCLER\NPROTECT\00000049.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.94:C:\RECYCLER\NPROTECT\00000050.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.94:C:\RECYCLER\NPROTECT\00000051.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.94:C:\RECYCLER\NPROTECT\00000052.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.94:C:\RECYCLER\NPROTECT\00000099.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.94:C:\RECYCLER\NPROTECT\00000100.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.94:C:\RECYCLER\NPROTECT\00000101.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.94:C:\RECYCLER\NPROTECT\00000102.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.94:C:\RECYCLER\NPROTECT\00000113.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.94:C:\RECYCLER\NPROTECT\00000114.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.94:C:\RECYCLER\NPROTECT\00000115.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.94:C:\RECYCLER\NPROTECT\00000116.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.94:C:\RECYCLER\NPROTECT\00013136.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.94:C:\RECYCLER\NPROTECT\00013137.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.94:C:\RECYCLER\NPROTECT\00013139.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.94:C:\RECYCLER\NPROTECT\00013140.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.94:C:\RECYCLER\NPROTECT\00013148.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.94:C:\RECYCLER\NPROTECT\00013149.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.94:C:\RECYCLER\NPROTECT\00013150.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.94:C:\RECYCLER\NPROTECT\00013151.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.94:C:\RECYCLER\NPROTECT\00013152.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.94:C:\RECYCLER\NPROTECT\00013156.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.95:C:\Documents and Settings\Lauro\Application Data\Mozilla\Firefox\Profiles\u0pxt7qz.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.95:C:\RECYCLER\NPROTECT\00000049.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.95:C:\RECYCLER\NPROTECT\00000051.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.95:C:\RECYCLER\NPROTECT\00000052.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.95:C:\RECYCLER\NPROTECT\00000099.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.95:C:\RECYCLER\NPROTECT\00000100.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.95:C:\RECYCLER\NPROTECT\00000101.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.95:C:\RECYCLER\NPROTECT\00000102.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.95:C:\RECYCLER\NPROTECT\00000113.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.95:C:\RECYCLER\NPROTECT\00000114.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.95:C:\RECYCLER\NPROTECT\00000115.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.95:C:\RECYCLER\NPROTECT\00000116.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.95:C:\RECYCLER\NPROTECT\00013136.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.95:C:\RECYCLER\NPROTECT\00013137.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.95:C:\RECYCLER\NPROTECT\00013139.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.95:C:\RECYCLER\NPROTECT\00013140.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.95:C:\RECYCLER\NPROTECT\00013148.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.95:C:\RECYCLER\NPROTECT\00013149.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.95:C:\RECYCLER\NPROTECT\00013150.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.95:C:\RECYCLER\NPROTECT\00013151.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.95:C:\RECYCLER\NPROTECT\00013152.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.95:C:\RECYCLER\NPROTECT\00013156.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.96:C:\Documents and Settings\Lauro\Application Data\Mozilla\Firefox\Profiles\u0pxt7qz.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.96:C:\RECYCLER\NPROTECT\00000049.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.96:C:\RECYCLER\NPROTECT\00000100.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.96:C:\RECYCLER\NPROTECT\00000101.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.96:C:\RECYCLER\NPROTECT\00000102.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.96:C:\RECYCLER\NPROTECT\00000113.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.96:C:\RECYCLER\NPROTECT\00000114.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.96:C:\RECYCLER\NPROTECT\00000115.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.96:C:\RECYCLER\NPROTECT\00000116.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.96:C:\RECYCLER\NPROTECT\00013136.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.96:C:\RECYCLER\NPROTECT\00013137.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.96:C:\RECYCLER\NPROTECT\00013139.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.96:C:\RECYCLER\NPROTECT\00013140.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.96:C:\RECYCLER\NPROTECT\00013148.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.96:C:\RECYCLER\NPROTECT\00013149.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.96:C:\RECYCLER\NPROTECT\00013150.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.96:C:\RECYCLER\NPROTECT\00013151.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.96:C:\RECYCLER\NPROTECT\00013152.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.96:C:\RECYCLER\NPROTECT\00013156.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.97:C:\RECYCLER\NPROTECT\00000101.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.97:C:\RECYCLER\NPROTECT\00000102.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.97:C:\RECYCLER\NPROTECT\00000113.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.97:C:\RECYCLER\NPROTECT\00000115.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.97:C:\RECYCLER\NPROTECT\00000116.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.97:C:\RECYCLER\NPROTECT\00013136.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.97:C:\RECYCLER\NPROTECT\00013148.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.97:C:\RECYCLER\NPROTECT\00013149.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.97:C:\RECYCLER\NPROTECT\00013150.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.97:C:\RECYCLER\NPROTECT\00013151.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.97:C:\RECYCLER\NPROTECT\00013152.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.97:C:\RECYCLER\NPROTECT\00013156.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00000049.MOZ -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00000050.MOZ -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.30:C:\RECYCLER\NPROTECT\00000051.MOZ -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.30:C:\RECYCLER\NPROTECT\00000052.MOZ -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00000099.MOZ -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.39:C:\RECYCLER\NPROTECT\00000100.MOZ -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00000101.MOZ -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00000102.MOZ -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00000113.MOZ -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00000114.MOZ -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00013137.MOZ -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00013139.MOZ -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00013140.MOZ -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.41:C:\Documents and Settings\Lauro\Application Data\Mozilla\Firefox\Profiles\u0pxt7qz.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.41:C:\RECYCLER\NPROTECT\00000115.MOZ -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.41:C:\RECYCLER\NPROTECT\00000116.MOZ -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.41:C:\RECYCLER\NPROTECT\00013136.MOZ -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.41:C:\RECYCLER\NPROTECT\00013148.MOZ -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.42:C:\RECYCLER\NPROTECT\00013149.MOZ -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.42:C:\RECYCLER\NPROTECT\00013150.MOZ -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.42:C:\RECYCLER\NPROTECT\00013151.MOZ -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.42:C:\RECYCLER\NPROTECT\00013152.MOZ -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.42:C:\RECYCLER\NPROTECT\00013156.MOZ -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.6:C:\RECYCLER\NPROTECT\00000003.MOZ -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.6:C:\RECYCLER\NPROTECT\00000009.MOZ -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00000049.MOZ -> TrackingCookie.Revenue : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00000050.MOZ -> TrackingCookie.Revenue : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00000051.MOZ -> TrackingCookie.Revenue : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00000052.MOZ -> TrackingCookie.Revenue : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00000099.MOZ -> TrackingCookie.Revenue : Cleaned.
:mozilla.38:C:\RECYCLER\NPROTECT\00000100.MOZ -> TrackingCookie.Revenue : Cleaned.
:mozilla.39:C:\RECYCLER\NPROTECT\00000101.MOZ -> TrackingCookie.Revenue : Cleaned.
:mozilla.39:C:\RECYCLER\NPROTECT\00000102.MOZ -> TrackingCookie.Revenue : Cleaned.
:mozilla.39:C:\RECYCLER\NPROTECT\00000113.MOZ -> TrackingCookie.Revenue : Cleaned.
:mozilla.39:C:\RECYCLER\NPROTECT\00000114.MOZ -> TrackingCookie.Revenue : Cleaned.
:mozilla.39:C:\RECYCLER\NPROTECT\00013137.MOZ -> TrackingCookie.Revenue : Cleaned.
:mozilla.39:C:\RECYCLER\NPROTECT\00013139.MOZ -> TrackingCookie.Revenue : Cleaned.
:mozilla.39:C:\RECYCLER\NPROTECT\00013140.MOZ -> TrackingCookie.Revenue : Cleaned.
:mozilla.40:C:\Documents and Settings\Lauro\Application Data\Mozilla\Firefox\Profiles\u0pxt7qz.default\cookies.txt -> TrackingCookie.Revenue : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00000115.MOZ -> TrackingCookie.Revenue : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00000116.MOZ -> TrackingCookie.Revenue : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00013136.MOZ -> TrackingCookie.Revenue : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00013148.MOZ -> TrackingCookie.Revenue : Cleaned.
:mozilla.41:C:\RECYCLER\NPROTECT\00013149.MOZ -> TrackingCookie.Revenue : Cleaned.
:mozilla.41:C:\RECYCLER\NPROTECT\00013150.MOZ -> TrackingCookie.Revenue : Cleaned.
:mozilla.41:C:\RECYCLER\NPROTECT\00013151.MOZ -> TrackingCookie.Revenue : Cleaned.
:mozilla.41:C:\RECYCLER\NPROTECT\00013152.MOZ -> TrackingCookie.Revenue : Cleaned.
:mozilla.41:C:\RECYCLER\NPROTECT\00013156.MOZ -> TrackingCookie.Revenue : Cleaned.
:mozilla.19:C:\RECYCLER\NPROTECT\00000009.MOZ -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.37:C:\RECYCLER\NPROTECT\00000049.MOZ -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.41:C:\RECYCLER\NPROTECT\00000050.MOZ -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.42:C:\RECYCLER\NPROTECT\00000051.MOZ -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.42:C:\RECYCLER\NPROTECT\00000052.MOZ -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.42:C:\RECYCLER\NPROTECT\00000099.MOZ -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.45:C:\RECYCLER\NPROTECT\00000100.MOZ -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00000101.MOZ -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00000102.MOZ -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00000113.MOZ -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00000114.MOZ -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00013137.MOZ -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00013139.MOZ -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00013140.MOZ -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.47:C:\Documents and Settings\Lauro\Application Data\Mozilla\Firefox\Profiles\u0pxt7qz.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00000115.MOZ -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00000116.MOZ -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00013136.MOZ -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00013148.MOZ -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00013149.MOZ -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00013150.MOZ -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00013151.MOZ -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00013152.MOZ -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00013156.MOZ -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.49:C:\RECYCLER\NPROTECT\00000000.MOZ -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.49:C:\RECYCLER\NPROTECT\00000001.MOZ -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.49:C:\RECYCLER\NPROTECT\00000002.MOZ -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.50:C:\RECYCLER\NPROTECT\00000003.MOZ -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.52:C:\RECYCLER\NPROTECT\00000000.MOZ -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.52:C:\RECYCLER\NPROTECT\00000001.MOZ -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.52:C:\RECYCLER\NPROTECT\00000002.MOZ -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.53:C:\RECYCLER\NPROTECT\00000003.MOZ -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.57:C:\RECYCLER\NPROTECT\00000009.MOZ -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.68:C:\RECYCLER\NPROTECT\00000050.MOZ -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.69:C:\RECYCLER\NPROTECT\00000051.MOZ -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.69:C:\RECYCLER\NPROTECT\00000052.MOZ -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.69:C:\RECYCLER\NPROTECT\00000099.MOZ -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.70:C:\RECYCLER\NPROTECT\00000049.MOZ -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.70:C:\RECYCLER\NPROTECT\00000100.MOZ -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.71:C:\Documents and Settings\Lauro\Application Data\Mozilla\Firefox\Profiles\u0pxt7qz.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.71:C:\RECYCLER\NPROTECT\00000101.MOZ -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.71:C:\RECYCLER\NPROTECT\00000102.MOZ -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.71:C:\RECYCLER\NPROTECT\00000113.MOZ -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.71:C:\RECYCLER\NPROTECT\00000114.MOZ -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.71:C:\RECYCLER\NPROTECT\00013137.MOZ -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.71:C:\RECYCLER\NPROTECT\00013139.MOZ -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.71:C:\RECYCLER\NPROTECT\00013140.MOZ -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.72:C:\RECYCLER\NPROTECT\00000115.MOZ -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.72:C:\RECYCLER\NPROTECT\00000116.MOZ -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.72:C:\RECYCLER\NPROTECT\00013136.MOZ -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.72:C:\RECYCLER\NPROTECT\00013148.MOZ -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.72:C:\RECYCLER\NPROTECT\00013149.MOZ -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.72:C:\RECYCLER\NPROTECT\00013150.MOZ -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.72:C:\RECYCLER\NPROTECT\00013151.MOZ -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.72:C:\RECYCLER\NPROTECT\00013152.MOZ -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.72:C:\RECYCLER\NPROTECT\00013156.MOZ -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.18:C:\RECYCLER\NPROTECT\00000000.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.19:C:\RECYCLER\NPROTECT\00000000.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.19:C:\RECYCLER\NPROTECT\00000049.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00000000.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00000009.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00000049.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00000000.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00000009.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00000049.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00000009.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00000049.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00000001.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00000002.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00000009.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00000049.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00000050.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00000001.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00000002.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00000050.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00000051.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00000052.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00000001.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00000002.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00000050.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00000051.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00000052.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00000001.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00000002.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00000050.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00000051.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00000052.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00000050.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00000051.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00000052.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00000051.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00000052.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00000099.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.30:C:\RECYCLER\NPROTECT\00000099.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.31:C:\RECYCLER\NPROTECT\00000099.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00000099.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00000099.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00000100.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00000100.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00000101.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00000102.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00000113.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00000114.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00000003.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00000100.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00000101.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00000102.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00000113.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00000114.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00000115.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00000116.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00013136.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00013137.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00013139.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00013140.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.36:C:\Documents and Settings\Lauro\Application Data\Mozilla\Firefox\Profiles\u0pxt7qz.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00000003.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00000100.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00000101.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00000102.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00000113.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00000114.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00000115.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00000116.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00013136.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00013137.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00013139.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00013140.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00013148.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.37:C:\Documents and Settings\Lauro\Application Data\Mozilla\Firefox\Profiles\u0pxt7qz.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.37:C:\RECYCLER\NPROTECT\00000003.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.37:C:\RECYCLER\NPROTECT\00000100.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.37:C:\RECYCLER\NPROTECT\00000101.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.37:C:\RECYCLER\NPROTECT\00000102.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.37:C:\RECYCLER\NPROTECT\00000113.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.37:C:\RECYCLER\NPROTECT\00000114.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.37:C:\RECYCLER\NPROTECT\00000115.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.37:C:\RECYCLER\NPROTECT\00000116.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.37:C:\RECYCLER\NPROTECT\00013136.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.37:C:\RECYCLER\NPROTECT\00013137.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.37:C:\RECYCLER\NPROTECT\00013139.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.37:C:\RECYCLER\NPROTECT\00013140.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.37:C:\RECYCLER\NPROTECT\00013148.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.37:C:\RECYCLER\NPROTECT\00013149.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.37:C:\RECYCLER\NPROTECT\00013150.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.37:C:\RECYCLER\NPROTECT\00013151.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.37:C:\RECYCLER\NPROTECT\00013152.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.37:C:\RECYCLER\NPROTECT\00013156.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.38:C:\Documents and Settings\Lauro\Application Data\Mozilla\Firefox\Profiles\u0pxt7qz.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.38:C:\RECYCLER\NPROTECT\00000003.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.38:C:\RECYCLER\NPROTECT\00000101.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.38:C:\RECYCLER\NPROTECT\00000102.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.38:C:\RECYCLER\NPROTECT\00000113.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.38:C:\RECYCLER\NPROTECT\00000114.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.38:C:\RECYCLER\NPROTECT\00000115.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.38:C:\RECYCLER\NPROTECT\00000116.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.38:C:\RECYCLER\NPROTECT\00013136.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.38:C:\RECYCLER\NPROTECT\00013137.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.38:C:\RECYCLER\NPROTECT\00013139.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.38:C:\RECYCLER\NPROTECT\00013140.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.38:C:\RECYCLER\NPROTECT\00013148.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.38:C:\RECYCLER\NPROTECT\00013149.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.38:C:\RECYCLER\NPROTECT\00013150.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.38:C:\RECYCLER\NPROTECT\00013151.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.38:C:\RECYCLER\NPROTECT\00013152.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.38:C:\RECYCLER\NPROTECT\00013156.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.39:C:\Documents and Settings\Lauro\Application Data\Mozilla\Firefox\Profiles\u0pxt7qz.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.39:C:\RECYCLER\NPROTECT\00000115.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.39:C:\RECYCLER\NPROTECT\00000116.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.39:C:\RECYCLER\NPROTECT\00013136.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.39:C:\RECYCLER\NPROTECT\00013148.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.39:C:\RECYCLER\NPROTECT\00013149.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.39:C:\RECYCLER\NPROTECT\00013150.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.39:C:\RECYCLER\NPROTECT\00013151.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.39:C:\RECYCLER\NPROTECT\00013152.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.39:C:\RECYCLER\NPROTECT\00013156.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00013149.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00013150.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00013151.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00013152.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00013156.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
C:\WINDOWS\system32\dllcache\win32\safe.bat -> Trojan.Netstop.p : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024 -> Trojan.Small : Cleaned with backup (quarantined).

::Report end

siinähän ne...

Fin_Eagle · 15.10.2006

Haloo? viitsisikös joku asiantunteva kertoa mitä seuraavaksi voisi ja pitäisi tehdä?

kairis · 15.10.2006

Joo, noiden lokien tulkkaaminen kestää aikansa, joten kärsivällisyyttä, please...
Lähetä Killboxin raportti ja tuore HJT-loki.

Fin_Eagle · 15.10.2006

eh... miten saan killboxista raportin?

Logfile of HijackThis v1.99.1
Scan saved at 13:54:23, on 15.10.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\DRIVERS\CDANTSRV.EXE
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
C:\WINDOWS\runservice.exe
C:\Program Files\Norton SystemWorks\Norton Utilities\NPROTECT.EXE
C:\PROGRA~1\NORTON~1\SPEEDD~1\nopdb.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\UAService7.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\EXSHOW95.EXE
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\system32\EXSHOW.EXE
C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Documents and Settings\Lauro\Desktop\Unused shortcuts\utorrent-1.5.1-beta-build-462.exe
C:\hjt\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fi/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dnainternet.net
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fi/0SEFIFI/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
F1 - win.ini: run= D:\WESTWOOD\RA1\INSTICON.EXE
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [EXSHOW95.EXE] EXSHOW95.EXE
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe
O4 - HKLM\..\Run: [AtiPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe"
O4 - HKLM\..\Run: [ioloDelayModule] C:\Program Files\System Mechanic Professional 6\delay.exe
O4 - HKLM\..\RunOnce: [InstallShieldSetup] D:\PROGRA~1\GRANDP~1\setup.exe -rebootD:\PROGRA~1\GRANDP~1\reboot.ini
O4 - HKCU\..\Run: [Creative Detector] C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe /R
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: Lataa FlashGetillä - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Lataa kaikki FlashGetillä - C:\Program Files\FlashGet\jc_all.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {03F998B2-0E00-11D3-A498-00104B6EB52E} (MetaStreamCtl Class) - https://components.viewpoint.com/MTSInstallers/MetaStream3.cab?url=http://www.samsung.com/Products/CDDVD_Writer/DVD_Multi/ProductPresentation/ViewPoint/CDDVD_Writer_DVD_Multi_SR_T03B_ViewPoint.htm
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1150293191506
O16 - DPF: {88D969C0-F192-11D4-A65F-0040963251E5} (XML DOM Document 4.0) -
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WBSrv - C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\wbsrv.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\System32\DRIVERS\CDANTSRV.EXE
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LicCtrl Service (LicCtrlService) - Unknown owner - C:\WINDOWS\runservice.exe
O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton Utilities\NPROTECT.EXE
O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~1\SPEEDD~1\nopdb.exe
O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe (file missing)
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe

kairis · 15.10.2006

Avaa Killbox, ylänurkasta file -> Logs -> Actions History Log.
Nyt avautui muistio, kopioi sen sisältö tähän viestiketjuun.

Sinulla ei näytä olevan palomuuria, onko näin?

Sulje selaimet ja muut ohjelmat, käynnistä HijackThis, klikkaa” do a system scan only ”.
Merkkaa nämä rivit ja paina Fix checked :

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
O4 - HKLM\..\RunOnce: [InstallShieldSetup] D:\PROGRA~1\GRANDP~1\setup.exe -rebootD:\PROGRA~1\GRANDP~1\reboot.ini

Fin_Eagle · 15.10.2006

Jeps, käytän ihan windowsin palomuuria...

New Log Created
Previous Saved as C:\!KillBox\Logs\kb.loka-15-1358.log

Pocket Killbox version 2.0.0.648
Running on Windows XP as Lauro(Administrator)
was started @ sunnuntai, lokakuu 15, 2006, 1:58 PM

Killbox Closed(Exit) @ 1:58:24 PM
__________________________________________________

Pocket Killbox version 2.0.0.648
Running on Windows XP as Lauro(Administrator)
was started @ sunnuntai, lokakuu 15, 2006, 2:22 PM

kairis · 15.10.2006

Ok.
Jatketaan:
Lataa ATF Cleaner http://www.atribune.org/ccount/click.php?id=1
Ohjeet;

Tupla-klikkaa [bold]ATF-Cleaner.exe[/bold] käynnistääksesi ohjelman.
[bold]Main:n[/bold] alla valitse: [bold]Select All[/bold]
Klikkaa [bold]Empty Selected[/bold] valintaa.
Jos käytät FireFoxia selaimenasi
Klikkaa [bold]Firefox[/bold] yläpuolelta ja valitse: [bold]Select All[/bold]
Klikkaa [bold]Empty Selected[/bold] valintaa.
[bold]HUOMIO:[/bold] Jos haluaisit pitää tallennetut salasanasi, klikkaa [bold]No[/bold] kun se sitä kysyy.
Jos käytät Operaa selaimenasi
Klikkaa [bold]Opera[/bold] yläpuolelta ja valitse: [bold]Select All[/bold]
Klikkaa [bold]Empty Selected[/bold] valintaa taas.
[bold]HUOMIO:[/bold] Jos haluaisit pitää tallennetut salasanasi, klikkaa [bold]No[/bold] kun se sitä kysyy.
Klikkaa [bold]Exit[/bold] päävalikosta sulkeaksesi ohjelman.

Laita piilotiedostot näkyviin. Ohje:
http://keskustelu.afterdawn.com/thread_view.cfm/248944

Käynnistä vikasietotilaan. Ohje:
http://www.virustorjunta.net/module...Yleisohjeita+ongelmatilanteiden+ratkaisuun#37

Seuraavaksi poistat seuraavat [bold]kansiot/tiedostot[/bold] vaikka Oman tietokoneen kautta. (jos löytyy):
C:\WINDOWS\system32\dllcache\win32<--kansio
Tyhjennä roskakori.
Laita piilotiedostot takaisin piiloon (Teet niin kuin aikaisemmin mutta valitset "Älä näytä piilotettuja tiedostoja ja kansioita")
Käynnistä kone uudelleen.

Lähetä uusi HJT-loki.

Fin_Eagle · 15.10.2006

eh.. tein niinkun käskit, miksi jotkut nettisivut (kuten tämä) näkyvät ihan sekaisin? hyvä kun pääsin tähän kirjoittamaan...??

e: tämä siis vain firefoxilla, ie:llä sivut näkyvät ihan normaalina...

tässä uusi loki:

Logfile of HijackThis v1.99.1
Scan saved at 15:55:53, on 15.10.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\DRIVERS\CDANTSRV.EXE
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
C:\WINDOWS\runservice.exe
C:\Program Files\Norton SystemWorks\Norton Utilities\NPROTECT.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\EXSHOW95.EXE
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\PROGRA~1\NORTON~1\SPEEDD~1\nopdb.exe
C:\WINDOWS\system32\EXSHOW.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\UAService7.exe
C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\hjt\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fi/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dnainternet.net
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fi/0SEFIFI/SAOS01?FORM=TOOLBR
F1 - win.ini: run= D:\WESTWOOD\RA1\INSTICON.EXE
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [EXSHOW95.EXE] EXSHOW95.EXE
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe
O4 - HKLM\..\Run: [AtiPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe"
O4 - HKLM\..\Run: [ioloDelayModule] C:\Program Files\System Mechanic Professional 6\delay.exe
O4 - HKCU\..\Run: [Creative Detector] C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe /R
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: Lataa FlashGetillä - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Lataa kaikki FlashGetillä - C:\Program Files\FlashGet\jc_all.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {03F998B2-0E00-11D3-A498-00104B6EB52E} (MetaStreamCtl Class) - https://components.viewpoint.com/MTSInstallers/MetaStream3.cab?url=http://www.samsung.com/Products/CDDVD_Writer/DVD_Multi/ProductPresentation/ViewPoint/CDDVD_Writer_DVD_Multi_SR_T03B_ViewPoint.htm
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1150293191506
O16 - DPF: {88D969C0-F192-11D4-A65F-0040963251E5} (XML DOM Document 4.0) -
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WBSrv - C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\wbsrv.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\System32\DRIVERS\CDANTSRV.EXE
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LicCtrl Service (LicCtrlService) - Unknown owner - C:\WINDOWS\runservice.exe
O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton Utilities\NPROTECT.EXE
O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~1\SPEEDD~1\nopdb.exe
O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe (file missing)
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe

kairis · 15.10.2006

Aja Combofix uudelleen ja lähetä sen loki.

Fin_Eagle · 15.10.2006

Lauro - 06-10-15 17:19:29,33 Service Pack 2
ComboFix 06.10.08W - Running from: C:\Documents and Settings\Lauro\Desktop\Korjausta

((((((((((((((((((((((((((((((( Files Created from 2006-09-15 to 2006-10-15 ))))))))))))))))))))))))))))))))))

2006-10-14 21:50 24,072 --a------ C:\WINDOWS\system32\uxtuneup.dll
2006-10-14 17:11 3,968 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2006-10-14 00:13 520,192 --------- C:\WINDOWS\system32\ati2sgag.exe
2006-10-14 00:08 90,112 --a------ C:\WINDOWS\unvise32.exe
2006-10-12 15:02 184,386 --a------ C:\WINDOWS\system32\hpzsnt07.dll
2006-10-08 19:52 45,056 --a------ C:\WINDOWS\system32\exshow95.exe
2006-10-08 19:52 376,832 --a------ C:\WINDOWS\system32\exshow.exe
2006-10-08 19:52 23,040 --a------ C:\WINDOWS\system32\mouclass.sys
2006-10-08 19:52 122,880 --a------ C:\WINDOWS\system32\shw95dll.dll
2006-10-08 19:52 12,160 --a------ C:\WINDOWS\system32\mouhid.sys
2006-10-03 21:31 2,318,976 --a------ C:\WINDOWS\system32\TUKernel.exe
2006-10-02 22:04 806,912 --a------ C:\WINDOWS\system32\divx_xx0c.dll
2006-10-02 22:04 806,912 --a------ C:\WINDOWS\system32\divx_xx07.dll
2006-10-02 22:04 790,528 --a------ C:\WINDOWS\system32\divx_xx11.dll
2006-10-02 22:04 635,486 --a------ C:\WINDOWS\system32\DivX.dll
2006-09-27 14:42 809 --ahs---- C:\WINDOWS\system32\mmf.sys
2006-09-27 14:42 48,640 --a------ C:\WINDOWS\mmfs.dll
2006-09-27 14:42 2,560 --a------ C:\WINDOWS\Runservice.exe
2006-09-24 18:56 9,341 --a------ C:\WINDOWS\system32\drivers\filedisk.sys
2006-09-24 18:55 41,472 --a------ C:\WINDOWS\system32\iolobtdfg.exe
2006-09-24 18:55 25,264 --a------ C:\WINDOWS\system32\smrgdf.exe
2006-09-17 21:52 62,744 --a------ C:\WINDOWS\system32\xinput1_2.dll
2006-09-17 21:52 236,824 --a------ C:\WINDOWS\system32\xactengine2_3.dll

(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))

2006-10-15 17:17 -------- d-------- C:\Program Files\Mozilla Firefox
2006-10-15 16:47 -------- d-------- C:\Program Files\ZaZ Gp4 tools
2006-10-15 15:35 -------- d-------- C:\Documents and Settings\Lauro\Application Data\uTorrent
2006-10-15 11:10 -------- d-------- C:\Program Files\GP4 Tweaker
2006-10-15 00:17 -------- d-------- C:\Documents and Settings\Lauro\Application Data\Adobe
2006-10-14 22:52 -------- d-------- C:\Program Files\Common Files
2006-10-14 22:44 -------- d-------- C:\Program Files\Adobe
2006-10-14 22:40 -------- d-------- C:\Program Files\Common Files\Adobe
2006-10-14 22:34 -------- d-------- C:\Program Files\Common Files\Adobe Systems Shared
2006-10-14 22:26 -------- d-------- C:\Documents and Settings\Lauro\Application Data\DivX
2006-10-14 21:51 -------- d-------- C:\Program Files\TuneUp Utilities 2006
2006-10-14 21:38 -------- d-------- C:\Program Files\AlienGUIse
2006-10-14 19:58 -------- d-------- C:\Program Files\MSXML 4.0
2006-10-14 17:24 -------- d-------- C:\Program Files\AVG Anti-Spyware 7.5
2006-10-14 15:48 -------- d-------- C:\Documents and Settings\Lauro\Application Data\atitray
2006-10-14 15:47 -------- d-------- C:\Program Files\Diskeeper Corporation
2006-10-14 00:15 -------- d--h----- C:\Program Files\InstallShield Installation Information
2006-10-14 00:15 -------- d-------- C:\Program Files\ATI Technologies
2006-10-14 00:08 -------- d-------- C:\Program Files\NGO ATI Optimized Driver v1.6.6
2006-10-13 17:30 -------- d-------- C:\Program Files\Norton SystemWorks
2006-10-12 17:38 -------- d-------- C:\Program Files\Java
2006-10-12 17:33 -------- d-------- C:\Program Files\Common Files\Java
2006-10-12 15:02 -------- d-------- C:\Program Files\hp deskjet 3420 series
2006-10-12 14:57 -------- d-------- C:\Program Files\Hewlett-Packard
2006-10-10 16:44 -------- d-------- C:\Program Files\Online TV Player
2006-10-08 23:47 -------- d-------- C:\Program Files\Audio Encoder
2006-10-08 20:23 952 --ahsc--- C:\WINDOWS\system32\KGyGaAvL.sys
2006-10-07 17:54 -------- d-------- C:\Program Files\DC++
2006-10-07 17:16 -------- d-------- C:\Documents and Settings\Lauro\Application Data\AdobeUM
2006-10-05 17:25 -------- d-------- C:\Program Files\DivX
2006-10-03 22:37 -------- d-------- C:\Program Files\Fraps
2006-10-03 19:56 -------- d-------- C:\Documents and Settings\Lauro\Application Data\teamspeak2
2006-10-03 13:19 -------- d-------- C:\Program Files\Hex Workshop 4.2
2006-09-30 15:29 -------- d-------- C:\Program Files\iTunes
2006-09-30 15:28 -------- d-------- C:\Program Files\iPod
2006-09-30 15:26 -------- d-------- C:\Program Files\QuickTime
2006-09-30 15:22 -------- d-------- C:\Program Files\Apple Software Update
2006-09-25 18:45 666240 --a------ C:\WINDOWS\system32\aswBoot.exe
2006-09-25 18:40 87424 --a------ C:\WINDOWS\system32\drivers\aswmon2.sys
2006-09-25 18:40 85952 --a--c--- C:\WINDOWS\system32\drivers\aswmon.sys
2006-09-25 18:39 36176 --a------ C:\WINDOWS\system32\drivers\aswTdi.sys
2006-09-25 18:39 16352 --a------ C:\WINDOWS\system32\drivers\aswRdr.sys
2006-09-25 18:37 90112 --a------ C:\WINDOWS\system32\AVASTSS.scr
2006-09-25 18:37 24560 --a------ C:\WINDOWS\system32\drivers\aavmker4.sys
2006-09-24 20:56 -------- d-------- C:\Program Files\Common Files\Microsoft Shared
2006-09-24 20:52 -------- d-------- C:\Program Files\CyberLink
2006-09-24 20:44 -------- d-------- C:\Program Files\System Mechanic Professional 6
2006-09-24 19:05 -------- d-------- C:\Program Files\WinRAR
2006-09-24 19:05 -------- d-------- C:\Program Files\Advanced WMA Workshop
2006-09-24 18:55 -------- d-------- C:\Program Files\iolo
2006-09-23 21:13 -------- d-------- C:\Documents and Settings\Lauro\Application Data\Hamachi
2006-09-16 22:53 -------- d-------- C:\Documents and Settings\Lauro\Application Data\ATI
2006-09-13 15:31 -------- d-------- C:\Program Files\The All-Seeing Eye
2006-09-13 15:31 -------- d-------- C:\Program Files\NetMeeting
2006-09-13 15:31 -------- d-------- C:\Program Files\Mopokorttikoulu
2006-09-13 15:31 -------- d-------- C:\Program Files\GameSpy Arcade
2006-09-13 08:01 1084416 --a------ C:\WINDOWS\system32\msxml3.dll
2006-09-12 22:52 -------- d-------- C:\Documents and Settings\Lauro\Application Data\TuneUp Software
2006-09-12 22:50 -------- d-------- C:\Program Files\Common Files\Wise Installation Wizard
2006-09-12 17:51 1245184 --a------ C:\WINDOWS\system32\msxml4.dll
2006-09-09 17:18 -------- d-------- C:\Documents and Settings\Lauro\Application Data\Creative
2006-09-09 16:29 -------- d-------- C:\Program Files\Creative
2006-09-09 16:29 -------- d-------- C:\Program Files\Audible
2006-09-08 15:40 -------- d-------- C:\Program Files\HD Tune
2006-09-07 21:05 -------- d-------- C:\Program Files\Winamp
2006-09-06 20:00 -------- d-------- C:\Program Files\CCleaner
2006-09-05 10:01 1212928 --a------ C:\WINDOWS\system32\Incinerator.dll
2006-09-03 23:16 -------- d-------- C:\Program Files\MSN Messenger
2006-08-29 17:36 -------- d-------- C:\Program Files\FreeRAM XP Pro
2006-08-26 12:02 -------- d-------- C:\Program Files\Internet Explorer
2006-08-25 18:45 617472 --a------ C:\WINDOWS\system32\comctl32.dll
2006-08-23 15:50 -------- d-------- C:\Program Files\Registry Mechanic
2006-08-21 15:21 16896 --a------ C:\WINDOWS\system32\fltlib.dll
2006-08-21 12:14 23040 --a------ C:\WINDOWS\system32\fltmc.exe
2006-08-21 12:14 128896 --------- C:\WINDOWS\system32\drivers\fltmgr.sys
2006-08-16 14:58 100352 --a------ C:\WINDOWS\system32\6to4svc.dll
2006-08-16 12:37 225664 --a------ C:\WINDOWS\system32\drivers\tcpip6.sys
2006-08-15 14:25 -------- d-------- C:\Program Files\directx
2006-08-11 02:03 73728 --a------ C:\WINDOWS\system32\dpl100.dll
2006-08-11 02:03 196608 --a------ C:\WINDOWS\system32\dtu100.dll
2006-07-29 19:32 48936 --a------ C:\WINDOWS\system32\sirenacm.dll
2006-07-27 20:28 3596288 --a------ C:\WINDOWS\system32\qt-dx331.dll
2006-07-27 16:24 679424 --a------ C:\WINDOWS\system32\inetcomm.dll
2006-07-21 11:24 72704 --a------ C:\WINDOWS\system32\hlink.dll

(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))

*Note* empty entries are not shown

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"Creative Detector"="C:\\Program Files\\Creative\\MediaSource\\Detector\\CTDetect.exe /R"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"avast!"="C:\\PROGRA~1\\ALWILS~1\\Avast4\\ashDisp.exe"
"EXSHOW95.EXE"="EXSHOW95.EXE"
"HPDJ Taskbar Utility"="C:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\hpztsb07.exe"
"AtiPTA"="\"C:\\Program Files\\ATI Technologies\\ATI Control Panel\\atiptaxx.exe\""
"DiskeeperSystray"="\"C:\\Program Files\\Diskeeper Corporation\\Diskeeper\\DkIcon.exe\""
"ioloDelayModule"="C:\\Program Files\\System Mechanic Professional 6\\delay.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\not active]
"TkBellExe"="\"C:\\Program Files\\Common Files\\Real\\Update_OB\\realsched.exe\" -osboot"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]
"NoChange"="1"
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]
"Installed"="1"

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components]
"DeskHtmlVersion"=dword:00000110
"DeskHtmlMinorVersion"=dword:00000005
"Settings"=dword:00000001
"GeneralFlags"=dword:00000001

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="My Current Home Page"
"Flags"=dword:00000002
"Position"=hex:2c,00,00,00,00,01,00,00,00,00,00,00,00,04,00,00,e2,03,00,00,00,\
00,00,00,01,00,00,00,01,00,00,00,01,00,00,00,00,00,00,00,00,00,00,00
"CurrentState"=hex:04,00,00,40
"OriginalStateInfo"=hex:18,00,00,00,cc,00,00,00,00,00,00,00,34,03,00,00,e2,02,\
00,00,04,00,00,40
"RestoredStateInfo"=hex:18,00,00,00,cc,00,00,00,00,00,00,00,34,03,00,00,e2,02,\
00,00,01,00,00,00

[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"ALUAlert"="C:\\Program Files\\Symantec\\LiveUpdate\\ALUNotify.exe"

[HKEY_USERS\.default\software\microsoft\windows\currentversion\runonce]
"RunNarrator"="Narrator.exe"

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\run]
"ALUAlert"="C:\\Program Files\\Symantec\\LiveUpdate\\ALUNotify.exe"

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\runonce]
"RunNarrator"="Narrator.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Browseui preloader"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Component Categories cache daemon"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=""
"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="AVG Anti-Spyware 7.5"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=hex:95,00,00,00

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\Run]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer\run]
"wininet.dll"=""

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload]
"PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}"
"CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}"
"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"
"SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}"

HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WBSrv

HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders
securityproviders REG_SZ msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll

~ ~ ~ ~ ~ ~ ~ ~ Hijackthis Backups ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~

backup-20061015-143832-103
O4 - HKLM\..\RunOnce: [InstallShieldSetup] D:\PROGRA~1\GRANDP~1\setup.exe -rebootD:\PROGRA~1\GRANDP~1\reboot.ini
backup-20061015-143832-622
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
backup-20061015-143832-892
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
backup-20060730-175428-900
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe
backup-20060730-175428-643
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
backup-20060730-175428-196
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
backup-20060730-175428-785
O14 - IERESET.INF: START_PAGE_URL=http://www.dnainternet.net
backup-20060730-175427-726
O11 - Options group: [INTERNATIONAL] International*

Contents of the 'Scheduled Tasks' folder
C:\WINDOWS\tasks\1-Click Maintenance.job
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Norton SystemWorks One Button Checkup.job
C:\WINDOWS\tasks\Symantec NetDetect.job

Completion time: Sun 15.10.2006 17:20:53.15
C:\ComboFix.txt ... 15.10.2006 17:20

kairis · 15.10.2006

Jep, nyt näyttää puhtaalta.
Voit poistaa kaikki ne ohjelmat, mitkä asensit siivouksen yhteydessä.
Suosittelen Javan päivittämistä:
[bold]Javan päivitys ja välimuistin tyhjennys:[/bold]
Poista entinen Java (J2SE) Lisää/Poista sovelluksista, ja hae manuaalisesti täältä uusin:
http://java.sun.com/javase/downloads/index.jsp
Rullaa alas kohteeseen [bold]Java Runtime Environment (JRE) 5.0 Update 9[/bold]
Käynnistyksen jälkeen, mene takaisin Ohjauspaneeliin ja siitä Java asetuksiisi.
Temporary Internet Files -osion alla, klikkaa [bold]Delete Files nappia.[/bold]
Varmista että kaikki kolme valintaa ovat rastitettuja:
[bold]Downloaded Applets
Downloaded Applications
Other Files[/bold]
Klikkaa OK "Delete Temporary Internet Files" -ikkunassasi.
Huomaa: Tämä poistaa kaikki ladatut sovellukset ja appletit VÄLIMUISTISTA.

Klikkaa OK jättääksesi Java asetusikkunasi.

Näitä voit fixata oman maun mukaan pois käynnistymästä, mielestäni ei ole haittaa jos kaikki ovat poissa,
mutta jos mielestäsi tarvitset jotain heti niin sitten anna olla vaan käynnistymässä:

Nämä eivät ole viruksia, mutta koneesi pitäisi toimia nopeammin kun nämä ovat poissa käynnistymästä

Sulje selaimet ja muut ohjelmat, käynnistä HijackThis, klikkaa” do a system scan only ”.
Merkkaa nämä rivit ja paina Fix checked :
O4 - HKLM\..\Run: [AtiPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe"
O4 - HKLM\..\Run: [ioloDelayModule] C:\Program Files\System Mechanic Professional 6\delay.exe
O4 - HKCU\..\Run: [Creative Detector] C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe /R
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE

Fin_Eagle · 15.10.2006

Homma hoidettu... mikäli tässä oli kaikki, niin kiitoksia sinulle avusta

Kirjaudu tai liity jäseneksi

Hijackthis logi

Fin_Eagle Member

kairis Regular member

Fin_Eagle Member

kairis Regular member

Fin_Eagle Member

Fin_Eagle Member

kairis Regular member

Fin_Eagle Member

kairis Regular member

Fin_Eagle Member

kairis Regular member

Fin_Eagle Member

kairis Regular member

Fin_Eagle Member

kairis Regular member

Fin_Eagle Member

Jaa tämä sivu

Kirjaudu tai liity jäseneksi

Hijackthis logi

Fin_Eagle Member

kairis Regular member

Fin_Eagle Member

kairis Regular member

Fin_Eagle Member

Fin_Eagle Member

kairis Regular member

Fin_Eagle Member

kairis Regular member

Fin_Eagle Member

kairis Regular member

Fin_Eagle Member

kairis Regular member

Fin_Eagle Member

kairis Regular member

Fin_Eagle Member

Jaa tämä sivu

Hyödyllisiä hakuja