nii mulla on ollu pari virusta koneel mitkä ei lähe milläää pois koneelt et jos ois joku ohjelma tai joku muu mil sais ne pois ni ois hyvä. Ne virukset ei oo paljon tehny mitää muuta ku hidastanu vähän konet mutta kun ne tekee aina uusii viruksii. Aina parin tunnin sisäl on jo varmaa tullu 40 virust lisää ja sillon kone on aika hidas ja siin on sit kova homma poistella taas niit. Et ois kiva jos joku vois kertoo jonku mil ne sais pois koneelt
Laita HjT-loki, ohjelman saat täältä -> http://koti.mbnet.fi/pattaya1/HijackThis.exe . Tallenna hakemistoon c:\hjt, käynnistä, klikkaa do a system scan and save a logfile ja lähetä loki tänne.
Logfile of HijackThis v1.99.1 Scan saved at 11:50:18, on 29.12.2005 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\DigitalPersona\Bin\DPWinLct.exe C:\WINDOWS\system32\LEXBCES.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\LEXPPS.EXE C:\WINDOWS\System32\DRIVERS\CDANTSRV.EXE C:\WINDOWS\System32\CTsvcCDA.exe C:\Program Files\DigitalPersona\Bin\DpHost.exe C:\Program Files\VeriSign\NAVI\naviagent.exe C:\WINDOWS\System32\MsPMSPSv.exe C:\Program Files\DigitalPersona\Bin\DPFUSMgr.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\CTHELPER.EXE C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\PROGRA~1\Lexmark\PHOTOC~1\LXBLKsk.exe C:\Program Files\Kazaa Lite K++\Kazaa.kpp C:\Program Files\Lexmark\Lexmark Photo Center\MemoryCardManager.exe C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe C:\Program Files\Common Files\Real\Update_OB\realsched.exe C:\Program Files\Winamp\winampa.exe C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe C:\Program Files\DigitalPersona\Bin\DPAgnt.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Java\jre1.5.0_04\bin\jucheck.exe C:\WINDOWS\jjiojjoi.exe C:\Program Files\SurfAccuracy\SAcc.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\etb\pokapoka79.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\Skype\Phone\Skype.exe C:\PROGRA~1\Web Offer\wo.exe C:\Program Files\WinFixer 2005\uwfx5.exe C:\PROGRA~1\ezula\mmod.exe C:\Program Files\Exif Launcher\QuickDCF.exe C:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe C:\Program Files\Sony Corporation\Picture Package\Picture Package Applications\Residence.exe C:\Program Files\WinZip\WZQKPICK.EXE C:\Program Files\MSN\MSNCoreFiles\MSN6.EXE C:\Program Files\ISTsvc\istsvc.exe C:\Program Files\Adobe\Acrobat 4.0\Reader\AcroRd32.exe C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\SFWTG5GR\HijackThis[1].exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.fi/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mtv3.fi/ R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.fi/ R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer - toimittaja Elisa Internet R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.fi;;localhost;<local> R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file) R3 - URLSearchHook: (no name) - _{00A6FAF6-072E-44cf-8957-5838F569A31D} - (no file) R3 - URLSearchHook: (no name) - _{CE000994-A58C-4441-8938-744CD72AB27F} - (no file) O4 - HKLM\..\Run: [WINDVDPatch] CTHELPER.EXE O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE O4 - HKLM\..\Run: [Jet Detection] C:\Program Files\Creative\SBAudigy\PROGRAM\ADGJDet.exe O4 - HKLM\..\Run: [CTStartup] C:\Program Files\Creative\Splash Screen\CTEaxSpl.EXE /run O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe O4 - HKLM\..\Run: [EM_EXEC] C:\PROGRA~1\Logitech\MOUSEW~1\SYSTEM\EM_EXEC.EXE O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [KAZAA] "C:\Program Files\Kazaa Lite K++\kpp.exe" "C:\Program Files\Kazaa Lite K++\Kazaa.kpp" /SYSTRAY O4 - HKLM\..\Run: [LXBLKsk] C:\PROGRA~1\Lexmark\PHOTOC~1\LXBLKsk.exe O4 - HKLM\..\Run: [MemoryCardManager] C:\Program Files\Lexmark\Lexmark Photo Center\MemoryCardManager.exe -startup O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe O4 - HKLM\..\Run: [DPAgnt] C:\Program Files\DigitalPersona\Bin\DPAgnt.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [shell32] C:\WINDOWS\system32\wuauclt10.exe O4 - HKLM\..\Run: [Client Server Runtime Process] C:\WINDOWS\system32\smmss.exe O4 - HKLM\..\Run: [Windows update] C:\WINDOWS\system32\wudupdate.exe O4 - HKLM\..\Run: [I downloaded pirated Software from P2P and now I post my Hijack log whining] C:\WINDOWS\system32\NHL 06 2006 crack.exe O4 - HKLM\..\Run: [1OcC] C:\WINDOWS\jjiojjoi.exe O4 - HKLM\..\Run: [SurfAccuracy] C:\Program Files\SurfAccuracy\SAcc.exe O4 - HKLM\..\Run: [Power Scan] C:\Program Files\Power Scan\powerscan.exe O4 - HKLM\..\Run: [IST Service] C:\Program Files\ISTsvc\istsvc.exe O4 - HKLM\..\Run: [System service79] C:\WINDOWS\etb\pokapoka79.exe O4 - HKLM\..\RunOnce: [Ad-aware] "C:\Program Files\Lavasoft\Ad-aware 6\Ad-aware.exe" "+b1" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [eZWO] C:\PROGRA~1\Web Offer\wo.exe O4 - HKCU\..\Run: [WinFixer 2005] C:\Program Files\WinFixer 2005\uwfx5.exe /scan O4 - HKCU\..\Run: [WinFixer2005] "C:\Program Files\WinFixer 2005\uwfx5.exe" /scan O4 - HKCU\..\RunOnce: [Web Offer] C:\WINDOWS\system32\smmss.exe O4 - Startup: MyWebSearch Email Plugin.lnk = C:\Program Files\MyWebSearch\bar\1.bin\MWSOEMON.EXE O4 - Startup: PowerReg Scheduler.exe O4 - Startup: ubisoft register.lnk = C:\Program Files\Ubi Soft\Register\schedule.exe O4 - Global Startup: Date Manager.lnk = C:\Program Files\Date Manager\DateManager.exe O4 - Global Startup: Exif Launcher.lnk = C:\Program Files\Exif Launcher\QuickDCF.exe O4 - Global Startup: GStartup.lnk = C:\Program Files\Common Files\GMT\GMT.exe O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O4 - Global Startup: MyWebSearch Email Plugin.lnk = C:\Program Files\MyWebSearch\bar\1.bin\MWSOEMON.EXE O4 - Global Startup: Picture Package Menu.lnk = ? O4 - Global Startup: Picture Package VCD Maker.lnk = ? O4 - Global Startup: PrecisionTime.lnk = C:\Program Files\PrecisionTime\PrecisionTime.exe O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusearch.html?p=ZNxdm41464FI O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar1.dll/cmtrans.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll O9 - Extra button: i-Nav Ohje - {CE000992-A58C-4441-8938-744CD72AB27F} - http://idn.verisign-grs.com/plug-in/support/index.jsp (file missing) O9 - Extra 'Tools' menuitem: i-Nav Ohje - {CE000992-A58C-4441-8938-744CD72AB27F} - http://idn.verisign-grs.com/plug-in/support/index.jsp (file missing) O9 - Extra button: (no name) - {CE000996-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll O9 - Extra 'Tools' menuitem: i-Nav Asetukset - {CE000996-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra button: Palvelut - {48A9CC87-AA24-4891-ACFE-D38BA149F903} - http://service.kolumbus.fi/ (file missing) (HKCU) O9 - Extra button: SMS-viesti - {6A6A3003-D2B8-4118-B826-2E86F3843733} - http://sms.kolumbus.fi/ (file missing) (HKCU) O9 - Extra button: Tuki - {8B2AA5C0-FA86-4E32-8FF6-F39196B150CD} - http://tuki.kolumbus.fi/ (file missing) (HKCU) O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O14 - IERESET.INF: START_PAGE_URL=http://www.mtv3.fi/ O15 - Trusted Zone: http://ny.contentmatch.net (HKLM) O16 - DPF: RaptisoftGameLoader - http://www.miniclip.com/hamsterball/raptisoftgameloader.cab O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=36467&clcid=0x409 O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/images/nocache/funwebproducts/ei/SmileyCentralInitialSetup1.0.0.8.exe O16 - DPF: {288C5F13-7E52-4ADA-A32E-F5BF9D125F98} (CR64Loader Object) - http://www.miniclip.com/inflaterball/miniclipGameLoader.dll O16 - DPF: {288C5F13-7E52-4ADA-A32E-F5BF9D125F99} (CR64Loader Object) - http://www.miniclip.com/zenpuzzlegarden/miniclipGameLoader.dll O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab O16 - DPF: {3FE16C08-D6A7-4133-84FC-D5BFB4F7D886} (WebGameLoader Class) - http://www.miniclip.com/ricochet/ReflexiveWebGameLoader.cab O16 - DPF: {7099D57A-2CF3-4919-9874-A035F8193AA0} (InstaladorCharisma Control) - http://www.redzone.fi/download/charisma/instaladorcharisma.cab O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} (GSDACtl Class) - https://www.gamespyid.com/alaunch.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab O16 - DPF: {AE1C01E3-0283-11D3-9B3F-00C04F8EF466} (HeartbeatCtl Class) - http://fdl.msn.com/zone/datafiles/heartbeat.cab O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab O16 - DPF: {B942A249-D1E7-4C11-98AE-FCB76B08747F} (RealArcadeRdxIE Class) - http://games-dl.real.com/gameconsole/Bundler/CAB/RealArcadeRdxIE.cab O16 - DPF: {DC765522-D5BE-49C9-AF5F-8C715A44BA28} (MS Investor Ticker) - http://fdl.msn.com/public/investor/v9.5/ticker.cab O16 - DPF: {E56347B0-6C2B-4C2E-939F-EE513EAC80BC} (Creative Product Registration ActiveX Control Module) - http://www.creative.com/register/OCXs/CtORWebClientNoMFC.cab O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-loc/vso/en-us/tools/mcfscan/2,0,0,4380/mcfscan.cab O16 - DPF: {FDF6378C-7B5D-4ABF-BA1F-92748305FFAC} (DownloadManagerInstall Control) - http://beta.byteswarm.com/agent/1.3.0.1/DMInstall.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{16EBEA5F-7319-48E3-A94F-CE8EE5BF5F0F}: NameServer = 194.241.250.90,194.241.250.162 O17 - HKLM\System\CS1\Services\Tcpip\..\{16EBEA5F-7319-48E3-A94F-CE8EE5BF5F0F}: NameServer = 194.241.250.90,194.241.250.162 O18 - Protocol: bw+0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O18 - Protocol: offline-8876480 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Filter: text/html - {4C8E764C-93A8-4848-9D92-F0291B004F99} - C:\Documents and Settings\Anssi\Local Settings\Application Data\microsoft\internet explorer\V0.39.dat O20 - Winlogon Notify: DPWLN - C:\WINDOWS\system32\DPWLEvHd.dll O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\System32\DRIVERS\CDANTSRV.EXE O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exe O23 - Service: Windows XP FUS Manager (DPFUSMgr) - DigitalPersona, Inc. - C:\Program Files\DigitalPersona\Bin\DPFUSMgr.exe O23 - Service: Biometric Authentication Service (DpHost) - DigitalPersona, Inc. - C:\Program Files\DigitalPersona\Bin\DpHost.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE O23 - Service: VeriSign Updater (navi) - VeriSign, Inc. - C:\Program Files\VeriSign\NAVI\naviagent.exe ai tää piti vai lähettää
Kyllä piti, juu Hae LQFix--> http://users.telenet.be/bluepatchy/miekiemoes/tools/LQfix.exe ja tallenna se työpöydälle. Tuplaklikkaa LQfix.exeä ja klikkaa install. Tämä luo LQfix-kansion työpöydälle. Avaa kansio ja tuplaklikkaa ClickThis.bat Seuraa ohjeita. Kone käynnistyy tämän jälkeen. Se voi kestää, koska yks skripti pyörii taustalla. Siirrä HjT [bold]omaan[/bold] hakemistoonsa -> C:\hjt\HijackThis.exe Poista ohjauspaneelin kautta (lisää/poista sovellus): SurfAccuracy WinFixer 2005 ezula ISTsvc MyWebSearch Power Scan Date Manager PrecisionTime Fixaa HjT:llä (do a system scan only, merkkaa nämä ja paina fix checked): R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file) R3 - URLSearchHook: (no name) - _{00A6FAF6-072E-44cf-8957-5838F569A31D} - (no file) R3 - URLSearchHook: (no name) - _{CE000994-A58C-4441-8938-744CD72AB27F} - (no file) O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe O4 - HKLM\..\Run: [shell32] C:\WINDOWS\system32\wuauclt10.exe O4 - HKLM\..\Run: [Client Server Runtime Process] C:\WINDOWS\system32\smmss.exe O4 - HKLM\..\Run: [Windows update] C:\WINDOWS\system32\wudupdate.exe O4 - HKLM\..\Run: [I downloaded pirated Software from P2P and now I post my Hijack log whining] C:\WINDOWS\system32\NHL 06 2006 crack.exe O4 - HKLM\..\Run: [1OcC] C:\WINDOWS\jjiojjoi.exe O4 - HKLM\..\Run: [SurfAccuracy] C:\Program Files\SurfAccuracy\SAcc.exe O4 - HKLM\..\Run: [Power Scan] C:\Program Files\Power Scan\powerscan.exe O4 - HKLM\..\Run: [IST Service] C:\Program Files\ISTsvc\istsvc.exe O4 - HKLM\..\Run: [System service79] C:\WINDOWS\etb\pokapoka79.exe O4 - HKCU\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe O4 - HKCU\..\Run: [eZWO] C:\PROGRA~1\Web Offer\wo.exe O4 - HKCU\..\Run: [eZWO] C:\PROGRA~1\Web Offer\wo.exe O4 - HKCU\..\Run: [WinFixer 2005] C:\Program Files\WinFixer 2005\uwfx5.exe /scan O4 - HKCU\..\Run: [WinFixer2005] "C:\Program Files\WinFixer 2005\uwfx5.exe" /scan O4 - HKCU\..\RunOnce: [Web Offer] C:\WINDOWS\system32\smmss.exe O4 - Startup: MyWebSearch Email Plugin.lnk = C:\Program Files\MyWebSearch\bar\1.bin\MWSOEMON.EXE O4 - Startup: PowerReg Scheduler.exe O4 - Global Startup: Date Manager.lnk = C:\Program Files\Date Manager\DateManager.exe O4 - Global Startup: GStartup.lnk = C:\Program Files\Common Files\GMT\GMT.exe O4 - Global Startup: PrecisionTime.lnk = C:\Program Files\PrecisionTime\PrecisionTime.exe O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusearch.html?p=ZNxdm41464FI O15 - Trusted Zone: http://ny.contentmatch.net (HKLM) O16 - DPF: RaptisoftGameLoader - http://www.miniclip.com/hamsterball/raptisoftgameloader.cab O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/images/nocache/funwebproducts/ei/SmileyCent... O16 - DPF: {288C5F13-7E52-4ADA-A32E-F5BF9D125F98} (CR64Loader Object) - http://www.miniclip.com/inflaterball/miniclipGameLoader.dll O16 - DPF: {288C5F13-7E52-4ADA-A32E-F5BF9D125F99} (CR64Loader Object) - http://www.miniclip.com/zenpuzzlegarden/miniclipGameLoader.dll O16 - DPF: {B942A249-D1E7-4C11-98AE-FCB76B08747F} (RealArcadeRdxIE Class) - http://games-dl.real.com/gameconsole/Bundler/CAB/RealArcadeRdxIE.cab O18 - Filter: text/html - {4C8E764C-93A8-4848-9D92-F0291B004F99} - C:\Documents and Settings\Anssi\Local Settings\Application Data\microsoft\internet explorer\V0.39.dat Laita piilotiedostot näkyviin, ohje -> http://keskustelu.afterdawn.com/thread_view.cfm/248944 Hae ewido -> http://www.ewido.net/en/download Asenna ja päivitä se. Käynnistä vikasietotilaan (paina F8 käynnistyksen yhteydessä, kunnes tulee valikko. Valitse siitä valikosta vikasietotila) Poista nämä, jos löytyy: C:\PROGRA~1\==>MYWEBS~1<== C:\WINDOWS\system32\==>wuauclt10.exe<== C:\WINDOWS\system32\==>smmss.exe<== C:\WINDOWS\system32\==>wudupdate.exe<== C:\WINDOWS\system32\==>NHL 06 2006 crack.exe<== C:\WINDOWS\==>jjiojjoi.exe<== C:\Program Files\==>SurfAccuracy<== C:\Program Files\==>Power Scan<== C:\Program Files\==>ISTsvc<== C:\Program Files\==>WinFixer 2005<== C:\Program Files\common files\==>winsoftware<== C:\Program Files\==>Date Manager<== C:\Program Files\Common Files\==>GMT<== C:\Program Files\==>PrecisionTime<== C:\Documents and Settings\Anssi\Local Settings\Application Data\microsoft\internet explorer\==>V0.39.dat<== Skannaa ewidolla. Anna poistaa, mitä löytää ja tallenna raportti. Käynnistä kone uudestaan. Lähetä uusi HjT-loki ja ewidon raportti tänne.
Täs ois sit nää rapotit: Logfile of HijackThis v1.99.1 Scan saved at 14:38:49, on 29.12.2005 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\DigitalPersona\Bin\DPWinLct.exe C:\WINDOWS\system32\LEXBCES.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\LEXPPS.EXE C:\WINDOWS\System32\DRIVERS\CDANTSRV.EXE C:\WINDOWS\System32\CTsvcCDA.exe C:\Program Files\DigitalPersona\Bin\DpHost.exe C:\Program Files\ewido anti-malware\ewidoctrl.exe C:\Program Files\ewido anti-malware\ewidoguard.exe C:\Program Files\VeriSign\NAVI\naviagent.exe C:\WINDOWS\System32\MsPMSPSv.exe C:\Program Files\DigitalPersona\Bin\DPFUSMgr.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\CTHELPER.EXE C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\PROGRA~1\Lexmark\PHOTOC~1\LXBLKsk.exe C:\Program Files\Kazaa Lite K++\Kazaa.kpp C:\Program Files\Lexmark\Lexmark Photo Center\MemoryCardManager.exe C:\Program Files\Common Files\Real\Update_OB\realsched.exe C:\Program Files\Winamp\winampa.exe C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe C:\Program Files\DigitalPersona\Bin\DPAgnt.exe C:\Program Files\Java\jre1.5.0_04\bin\jucheck.exe C:\Program Files\iTunes\iTunesHelper.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\Skype\Phone\Skype.exe C:\Program Files\Exif Launcher\QuickDCF.exe C:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe C:\Program Files\Sony Corporation\Picture Package\Picture Package Applications\Residence.exe C:\Program Files\WinZip\WZQKPICK.EXE C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\WINDOWS\system32\wuauclt.exe C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\SFWTG5GR\HijackThis[1].exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.fi/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mtv3.fi/ R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.fi/ R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer - toimittaja Elisa Internet R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.fi;;localhost;<local> R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit O4 - HKLM\..\Run: [WINDVDPatch] CTHELPER.EXE O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE O4 - HKLM\..\Run: [Jet Detection] C:\Program Files\Creative\SBAudigy\PROGRAM\ADGJDet.exe O4 - HKLM\..\Run: [CTStartup] C:\Program Files\Creative\Splash Screen\CTEaxSpl.EXE /run O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe O4 - HKLM\..\Run: [EM_EXEC] C:\PROGRA~1\Logitech\MOUSEW~1\SYSTEM\EM_EXEC.EXE O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [KAZAA] "C:\Program Files\Kazaa Lite K++\kpp.exe" "C:\Program Files\Kazaa Lite K++\Kazaa.kpp" /SYSTRAY O4 - HKLM\..\Run: [LXBLKsk] C:\PROGRA~1\Lexmark\PHOTOC~1\LXBLKsk.exe O4 - HKLM\..\Run: [MemoryCardManager] C:\Program Files\Lexmark\Lexmark Photo Center\MemoryCardManager.exe -startup O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe O4 - HKLM\..\Run: [DPAgnt] C:\Program Files\DigitalPersona\Bin\DPAgnt.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - Startup: ubisoft register.lnk = C:\Program Files\Ubi Soft\Register\schedule.exe O4 - Global Startup: Exif Launcher.lnk = C:\Program Files\Exif Launcher\QuickDCF.exe O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O4 - Global Startup: Picture Package Menu.lnk = ? O4 - Global Startup: Picture Package VCD Maker.lnk = ? O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar1.dll/cmtrans.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll O9 - Extra button: i-Nav Ohje - {CE000992-A58C-4441-8938-744CD72AB27F} - http://idn.verisign-grs.com/plug-in/support/index.jsp (file missing) O9 - Extra 'Tools' menuitem: i-Nav Ohje - {CE000992-A58C-4441-8938-744CD72AB27F} - http://idn.verisign-grs.com/plug-in/support/index.jsp (file missing) O9 - Extra button: (no name) - {CE000996-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll O9 - Extra 'Tools' menuitem: i-Nav Asetukset - {CE000996-A58C-4441-8938-744CD72AB27F} - C:\Program Files\VeriSign\i-Nav\i-nav_4_2_1.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra button: Palvelut - {48A9CC87-AA24-4891-ACFE-D38BA149F903} - http://service.kolumbus.fi/ (file missing) (HKCU) O9 - Extra button: SMS-viesti - {6A6A3003-D2B8-4118-B826-2E86F3843733} - http://sms.kolumbus.fi/ (file missing) (HKCU) O9 - Extra button: Tuki - {8B2AA5C0-FA86-4E32-8FF6-F39196B150CD} - http://tuki.kolumbus.fi/ (file missing) (HKCU) O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll O14 - IERESET.INF: START_PAGE_URL=http://www.mtv3.fi/ O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=36467&clcid=0x409 O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab O16 - DPF: {3FE16C08-D6A7-4133-84FC-D5BFB4F7D886} (WebGameLoader Class) - http://www.miniclip.com/ricochet/ReflexiveWebGameLoader.cab O16 - DPF: {7099D57A-2CF3-4919-9874-A035F8193AA0} (InstaladorCharisma Control) - http://www.redzone.fi/download/charisma/instaladorcharisma.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab O16 - DPF: {AE1C01E3-0283-11D3-9B3F-00C04F8EF466} (HeartbeatCtl Class) - http://fdl.msn.com/zone/datafiles/heartbeat.cab O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab O16 - DPF: {DC765522-D5BE-49C9-AF5F-8C715A44BA28} (MS Investor Ticker) - http://fdl.msn.com/public/investor/v9.5/ticker.cab O16 - DPF: {E56347B0-6C2B-4C2E-939F-EE513EAC80BC} (Creative Product Registration ActiveX Control Module) - http://www.creative.com/register/OCXs/CtORWebClientNoMFC.cab O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-loc/vso/en-us/tools/mcfscan/2,0,0,4380/mcfscan.cab O16 - DPF: {FDF6378C-7B5D-4ABF-BA1F-92748305FFAC} (DownloadManagerInstall Control) - http://beta.byteswarm.com/agent/1.3.0.1/DMInstall.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{16EBEA5F-7319-48E3-A94F-CE8EE5BF5F0F}: NameServer = 194.241.250.90,194.241.250.162 O17 - HKLM\System\CS1\Services\Tcpip\..\{16EBEA5F-7319-48E3-A94F-CE8EE5BF5F0F}: NameServer = 194.241.250.90,194.241.250.162 O18 - Protocol: bw+0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw+0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw-0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw00s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw10s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw20s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw30s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw40s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw50s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw60s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw70s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw80s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bw90s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwa0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwb0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwc0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwd0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwe0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwf0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O18 - Protocol: bwg0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwg0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwh0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwi0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwj0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwk0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwl0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwm0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwn0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwo0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwp0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwq0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwr0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bws0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwt0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwu0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwv0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bww0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwx0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwy0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: bwz0s - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing) O18 - Protocol: offline-8876480 - {842F2E74-EC5D-45A9-BE5D-2D5B65364DB0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll O20 - Winlogon Notify: DPWLN - C:\WINDOWS\system32\DPWLEvHd.dll O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\System32\DRIVERS\CDANTSRV.EXE O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exe O23 - Service: Windows XP FUS Manager (DPFUSMgr) - DigitalPersona, Inc. - C:\Program Files\DigitalPersona\Bin\DPFUSMgr.exe O23 - Service: Biometric Authentication Service (DpHost) - DigitalPersona, Inc. - C:\Program Files\DigitalPersona\Bin\DpHost.exe O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE O23 - Service: VeriSign Updater (navi) - VeriSign, Inc. - C:\Program Files\VeriSign\NAVI\naviagent.exe ja ewidon raportti: --------------------------------------------------------- ewido anti-malware - Scan report --------------------------------------------------------- + Created on: 14:34:10, 29.12.2005 + Report-Checksum: 24974AD9 + Scan result: HKLM\SOFTWARE\Altnet -> Spyware.Altnet : Error during cleaning HKLM\SOFTWARE\Altnet\Dashboard -> Spyware.Altnet : Error during cleaning HKLM\SOFTWARE\Altnet\Dashboard\Messages -> Spyware.Altnet : Cleaned with backup HKLM\SOFTWARE\Altnet\Dashboard\Settings -> Spyware.Altnet : Error during cleaning HKLM\SOFTWARE\Altnet\Dashboard\Setup -> Spyware.Altnet : Cleaned with backup HKLM\SOFTWARE\Altnet\Dashboard\Temp Internet Shares -> Spyware.Altnet : Cleaned with backup HKLM\SOFTWARE\Altnet\LocalFiles -> Spyware.Altnet : Cleaned with backup HKLM\SOFTWARE\Altnet\TopSearch -> Spyware.Altnet : Cleaned with backup HKLM\SOFTWARE\Avenue Media -> Spyware.InternetOptimizer : Cleaned with backup HKLM\SOFTWARE\Avenue Media\Internet Optimizer -> Spyware.InternetOptimizer : Cleaned with backup HKLM\SOFTWARE\Avenue Media\Internet Optimizer\Browser Helper -> Spyware.InternetOptimizer : Cleaned with backup HKLM\SOFTWARE\Classes\AppID\adm.EXE -> Spyware.Altnet : Cleaned with backup HKLM\SOFTWARE\Classes\AppID\Altnet Signing Module.EXE -> Spyware.Altnet : Cleaned with backup HKLM\SOFTWARE\Classes\AppID\AtlBrowser.EXE -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\AppID\eZulaBootExe.EXE -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\AppID\{0818D423-6247-11D1-ABEE-00D049C10000} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\AppID\{C0335198-6755-11D4-8A73-0050DA2EE1BE} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\BrowserHelperObject.BAHelper -> Spyware.SideFind : Cleaned with backup HKLM\SOFTWARE\Classes\BrowserHelperObject.BAHelper\CLSID -> Spyware.SideFind : Cleaned with backup HKLM\SOFTWARE\Classes\BrowserHelperObject.BAHelper\CurVer -> Spyware.SideFind : Cleaned with backup HKLM\SOFTWARE\Classes\BrowserHelperObject.BAHelper.1 -> Spyware.SideFind : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{00000010-6F7D-442C-93E3-4A4827C2E4C8} -> Spyware.InternetOptimizer : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{25630B47-53C6-4E66-A945-9D7B6B2171FF} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{370F6354-41C4-4FA6-A2DF-1BA57EE0FBB9} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{50B4D2B3-723F-41B3-AEC4-0BD66F0F45FF} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{6DF5E318-6994-4A41-85BD-45CCADA616F8} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} -> Spyware.GameSpyArcade : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{788C6F6F-C2EA-4A63-9C38-CE7D8F43BCE4} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{78BCF937-45B0-40A7-9391-DCC03420DB35} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{8CBA1B49-8144-4721-A7B1-64C578C9EED7} -> Spyware.SideFind : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{96DA5BEE-4ACC-476C-B3EC-54C6730C4293} -> Spyware.CometCursor : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{9CFA26C0-81DA-4C9D-A501-F144A4A000FA} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{A166C1B0-5CDB-447A-894A-4B9FD7149D51} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{A3FDD654-A057-4971-9844-4ED8E67DBBB8} -> Spyware.ISTBar : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{C03351A4-6755-11D4-8A73-0050DA2EE1BE} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{DC341F1B-EC77-47BE-8F58-96E83861CC5A} -> Spyware.HotBar : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{F75521B8-76F1-4A4D-84B1-9E642E9C51D0} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{FAA356E4-D317-42a6-AB41-A3021C6E7D52} -> Spyware.ISTBar : Cleaned with backup HKLM\SOFTWARE\Classes\DyFuCA_BH.BHObj -> Spyware.MoneyTree : Cleaned with backup HKLM\SOFTWARE\Classes\DyFuCA_BH.BHObj\CLSID -> Spyware.MoneyTree : Cleaned with backup HKLM\SOFTWARE\Classes\DyFuCA_BH.BHObj\CurVer -> Spyware.MoneyTree : Cleaned with backup HKLM\SOFTWARE\Classes\DyFuCA_BH.BHObj.1 -> Spyware.MoneyTree : Cleaned with backup HKLM\SOFTWARE\Classes\EZulaBootExe.InstallCtrl -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\EZulaBootExe.InstallCtrl\CLSID -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\EZulaBootExe.InstallCtrl\CurVer -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\EZulaBootExe.InstallCtrl.1 -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\Interface\{0E704BA4-C517-4BE7-A1CD-C3FFDA1E1FFE} -> Spyware.ISTBar : Cleaned with backup HKLM\SOFTWARE\Classes\Interface\{1C01D150-91A4-4DE0-9BF8-A35D1BDF1001} -> Spyware.SafeSurfing : Cleaned with backup HKLM\SOFTWARE\Classes\Interface\{241667A3-EC83-4885-84DD-C2DAAFC1C5EA} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\Interface\{25630B50-53C6-4E66-A945-9D7B6B2171FF} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\Interface\{339D8AFF-0B42-4260-AD82-78CE605A9543} -> Spyware.SideFind : Cleaned with backup HKLM\SOFTWARE\Classes\Interface\{370F6327-41C4-4FA6-A2DF-1BA57EE0FBB9} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\Interface\{370F6353-41C4-4FA6-A2DF-1BA57EE0FBB9} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\Interface\{788C6F6E-C2EA-4A63-9C38-CE7D8F43BCE4} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\Interface\{78BCF936-45B0-40A7-9391-DCC03420DB35} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\Interface\{930A2B79-855E-4A18-80BB-4C0595B40798} -> Spyware.CometCursor : Cleaned with backup HKLM\SOFTWARE\Classes\Interface\{955CBF48-4313-4B1F-872B-254B7822CCF2} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\Interface\{9CFA26C2-81DA-4C9D-A501-F144A4A000FA} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\Interface\{A36A5936-CFD9-4B41-86BD-319A1931887F} -> Spyware.SideFind : Cleaned with backup HKLM\SOFTWARE\Classes\Interface\{C03351A3-6755-11D4-8A73-0050DA2EE1BE} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\Interface\{E61A0304-C605-441F-BD57-2833B65A69F1} -> Spyware.CometCursor : Cleaned with backup HKLM\SOFTWARE\Classes\Interface\{EFA52460-8822-4191-BA38-FACDD2007910} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\ISTbar.BarObj -> Spyware.ISTBar : Cleaned with backup HKLM\SOFTWARE\Classes\ISTbar.BarObj\CLSID -> Spyware.ISTBar : Cleaned with backup HKLM\SOFTWARE\Classes\SideFind.Finder -> Spyware.SideFind : Cleaned with backup HKLM\SOFTWARE\Classes\SideFind.Finder\CLSID -> Spyware.SideFind : Cleaned with backup HKLM\SOFTWARE\Classes\SideFind.Finder\CurVer -> Spyware.SideFind : Cleaned with backup HKLM\SOFTWARE\Classes\SideFind.Finder.1 -> Spyware.SideFind : Cleaned with backup HKLM\SOFTWARE\Classes\TestContentMatchControl1.ContentMatchTag -> Spyware.ISTBar : Cleaned with backup HKLM\SOFTWARE\Classes\TestContentMatchControl1.ContentMatchTag\CLSID -> Spyware.ISTBar : Cleaned with backup HKLM\SOFTWARE\Classes\TestContentMatchControl1.ContentMatchTag\CurVer -> Spyware.ISTBar : Cleaned with backup HKLM\SOFTWARE\Classes\TestContentMatchControl1.ContentMatchTag.1 -> Spyware.ISTBar : Cleaned with backup HKLM\SOFTWARE\Classes\TypeLib\{370F6327-41C4-4FA6-A2DF-1BA57EE0FBB9} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\TypeLib\{40B1D454-9CA4-43CC-86AA-CB175EAC52FB} -> Spyware.MoneyTree : Cleaned with backup HKLM\SOFTWARE\Classes\TypeLib\{58634367-D62B-4C2C-86BE-5AAC45CDB671} -> Spyware.SideFind : Cleaned with backup HKLM\SOFTWARE\Classes\TypeLib\{9CFA26C1-81DA-4C9D-A501-F144A4A000FA} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\TypeLib\{BAF13496-8F72-47A1-9CEE-09238EFC75F0} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\TypeLib\{C0335197-6755-11D4-8A73-0050DA2EE1BE} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Classes\TypeLib\{D0288A41-9855-4A9B-8316-BABE243648DA} -> Spyware.SideFind : Cleaned with backup HKLM\SOFTWARE\Classes\TypeLib\{E9A5B71C-093B-4F34-AF07-34FCA89BA0DF} -> Spyware.ISTBar : Cleaned with backup HKLM\SOFTWARE\IntexusDial -> Dialer.Generic : Cleaned with backup HKLM\SOFTWARE\ISTbar -> Spyware.ISTBar : Error during cleaning HKLM\SOFTWARE\ISTbar\Historyfiles -> Spyware.ISTBar : Error during cleaning HKLM\SOFTWARE\ISTbar\Historystring -> Spyware.ISTBar : Error during cleaning HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} -> Spyware.GameSpyArcade : Cleaned with backup HKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{50B4D2B3-723F-41B3-AEC4-0BD66F0F45FF} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{A166C1B0-5CDB-447A-894A-4B9FD7149D51} -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{10E42047-DEB9-4535-A118-B3F6EC39B807} -> Spyware.SideFind : Cleaned with backup HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{10E42047-DEB9-4535-A118-B3F6EC39B807}\\BandCLSID -> Spyware.SideFind : Cleaned with backup HKLM\SOFTWARE\Microsoft\SideFind -> Spyware.SideFind : Cleaned with backup HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00000010-6F7D-442C-93E3-4A4827C2E4C8} -> Spyware.InternetOptimizer : Cleaned with backup HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A3FDD654-A057-4971-9844-4ED8E67DBBB8} -> Spyware.ISTBar : Cleaned with backup HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects - Google Desktop Search Backup\{00A6FAF1-072E-44cf-8957-5838F569A31D} -> Spyware.MyWebSearch : Cleaned with backup HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects - Google Desktop Search Backup\{07B18EA1-A523-4961-B6BB-170DE4475CCA} -> Spyware.MyWebSearch : Cleaned with backup HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects - Google Desktop Search Backup\{96DA5BEE-4ACC-476C-B3EC-54C6730C4293} -> Spyware.CometCursor : Cleaned with backup HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\AMeOpt -> Spyware.InternetOptimizer : Cleaned with backup HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CCAR -> Spyware.CometCursor : Cleaned with backup HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DyFuCA -> Spyware.MoneyTree : Cleaned with backup HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Internet Optimizer -> Spyware.InternetOptimizer : Cleaned with backup HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ISTbar -> Spyware.ISTBar : Cleaned with backup HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Kapabout -> Spyware.InternetOptimizer : Cleaned with backup HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SideFind -> Spyware.SideFind : Cleaned with backup HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Web Offer -> Spyware.eZula : Cleaned with backup HKLM\SOFTWARE\PerfectNav -> Spyware.KeenValue : Cleaned with backup HKLM\SOFTWARE\Policies\Avenue Media -> Spyware.InternetOptimizer : Cleaned with backup HKLM\SOFTWARE\PowerScan -> Spyware.PowerScan : Cleaned with backup HKLM\SOFTWARE\SideFind -> Spyware.SideFind : Cleaned with backup HKU\S-1-5-21-1957994488-1935655697-725345543-1005\Software\Avenue Media -> Spyware.InternetOptimizer : Cleaned with backup HKU\S-1-5-21-1957994488-1935655697-725345543-1005\Software\eZula -> Spyware.eZula : Cleaned with backup HKU\S-1-5-21-1957994488-1935655697-725345543-1005\Software\eZula\Setup -> Spyware.eZula : Cleaned with backup HKU\S-1-5-21-1957994488-1935655697-725345543-1005\Software\eZula\Setup\ID -> Spyware.eZula : Cleaned with backup HKU\S-1-5-21-1957994488-1935655697-725345543-1005\Software\IST -> Spyware.ISTBar : Cleaned with backup HKU\S-1-5-21-1957994488-1935655697-725345543-1005\Software\Microsoft\Internet Explorer\Explorer Bars\{8CBA1B49-8144-4721-A7B1-64C578C9EED7} -> Spyware.SideFind : Cleaned with backup HKU\S-1-5-21-1957994488-1935655697-725345543-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000010-6F7D-442C-93E3-4A4827C2E4C8} -> Spyware.InternetOptimizer : Cleaned with backup HKU\S-1-5-21-1957994488-1935655697-725345543-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00A6FAF1-072E-44CF-8957-5838F569A31D} -> Spyware.MyWebSearch : Cleaned with backup HKU\S-1-5-21-1957994488-1935655697-725345543-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA1-A523-4961-B6BB-170DE4475CCA} -> Spyware.MyWebSearch : Cleaned with backup HKU\S-1-5-21-1957994488-1935655697-725345543-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{10E42047-DEB9-4535-A118-B3F6EC39B807} -> Spyware.SideFind : Cleaned with backup HKU\S-1-5-21-1957994488-1935655697-725345543-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{96DA5BEE-4ACC-476C-B3EC-54C6730C4293} -> Spyware.CometCursor : Cleaned with backup HKU\S-1-5-21-1957994488-1935655697-725345543-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A3FDD654-A057-4971-9844-4ED8E67DBBB8} -> Spyware.ISTBar : Cleaned with backup HKU\S-1-5-21-1957994488-1935655697-725345543-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D14D6793-9B65-11D3-80B6-00500487BDBA} -> Spyware.CometCursor : Cleaned with backup HKU\S-1-5-21-1957994488-1935655697-725345543-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FAA356E4-D317-42A6-AB41-A3021C6E7D52} -> Spyware.ISTBar : Cleaned with backup HKU\S-1-5-21-1957994488-1935655697-725345543-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FE6BC4EF-5676-484B-88AE-883323913256} -> Spyware.CometCursor : Cleaned with backup HKU\S-1-5-21-1957994488-1935655697-725345543-1005\Software\Microsoft\Windows\CurrentVersion\Policies\AMeOpt -> Spyware.InternetOptimizer : Cleaned with backup HKU\S-1-5-21-1957994488-1935655697-725345543-1005\Software\Policies\Avenue Media -> Spyware.InternetOptimizer : Cleaned with backup HKU\S-1-5-21-1957994488-1935655697-725345543-1005\Software\PowerScan -> Spyware.PowerScan : Cleaned with backup HKU\S-1-5-21-1957994488-1935655697-725345543-1005\Software\Web Offer -> Spyware.eZula : Cleaned with backup HKU\S-1-5-21-1957994488-1935655697-725345543-1005\Software\Web Offer\Setup -> Spyware.eZula : Cleaned with backup HKU\S-1-5-21-1957994488-1935655697-725345543-1005\Software\Web Offer\Setup\ID -> Spyware.eZula : Cleaned with backup C:\Documents and Settings\Anssi\Cookies\anssi@ad.adocean[2].txt -> Spyware.Cookie.Adocean : Cleaned with backup C:\Documents and Settings\Anssi\Cookies\anssi@ad.yieldmanager[2].txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup C:\Documents and Settings\Anssi\Cookies\anssi@adopt.specificclick[2].txt -> Spyware.Cookie.Specificclick : Cleaned with backup C:\Documents and Settings\Anssi\Cookies\anssi@ads.pointroll[2].txt -> Spyware.Cookie.Pointroll : Cleaned with backup C:\Documents and Settings\Anssi\Cookies\anssi@burstnet[1].txt -> Spyware.Cookie.Burstnet : Cleaned with backup C:\Documents and Settings\Anssi\Cookies\anssi@commissionpartner[2].txt -> Spyware.Cookie.Commissionpartner : Cleaned with backup C:\Documents and Settings\Anssi\Cookies\anssi@com[2].txt -> Spyware.Cookie.Com : Cleaned with backup C:\Documents and Settings\Anssi\Cookies\anssi@estat[1].txt -> Spyware.Cookie.Estat : Cleaned with backup C:\Documents and Settings\Anssi\Cookies\anssi@idg.adocean[2].txt -> Spyware.Cookie.Adocean : Cleaned with backup C:\Documents and Settings\Anssi\Cookies\anssi@ilead.itrack[1].txt -> Spyware.Cookie.Itrack : Cleaned with backup C:\Documents and Settings\Anssi\Cookies\anssi@image.masterstats[1].txt -> Spyware.Cookie.Masterstats : Cleaned with backup C:\Documents and Settings\Anssi\Cookies\anssi@ivwbox[2].txt -> Spyware.Cookie.Ivwbox : Cleaned with backup C:\Documents and Settings\Anssi\Cookies\anssi@my.adocean[2].txt -> Spyware.Cookie.Adocean : Cleaned with backup C:\Documents and Settings\Anssi\Cookies\anssi@paypopup[1].txt -> Spyware.Cookie.Paypopup : Cleaned with backup C:\Documents and Settings\Anssi\Cookies\anssi@perf.overture[1].txt -> Spyware.Cookie.Overture : Cleaned with backup C:\Documents and Settings\Anssi\Cookies\anssi@popunder.paypopup[1].txt -> Spyware.Cookie.Paypopup : Cleaned with backup C:\Documents and Settings\Anssi\Cookies\anssi@revenue[2].txt -> Spyware.Cookie.Revenue : Cleaned with backup C:\Documents and Settings\Anssi\Cookies\anssi@serving-sys[2].txt -> Spyware.Cookie.Serving-sys : Cleaned with backup C:\Documents and Settings\Anssi\Cookies\anssi@spinbox[2].txt -> Spyware.Cookie.Spinbox : Cleaned with backup C:\Documents and Settings\Anssi\Cookies\anssi@sportingnews.122.2o7[2].txt -> Spyware.Cookie.2o7 : Cleaned with backup C:\Documents and Settings\Anssi\Cookies\anssi@tradedoubler[2].txt -> Spyware.Cookie.Tradedoubler : Cleaned with backup C:\Documents and Settings\Anssi\Cookies\anssi@trafic[1].txt -> Spyware.Cookie.Trafic : Cleaned with backup C:\Documents and Settings\Anssi\Cookies\anssi@www.myaffiliateprogram[1].txt -> Spyware.Cookie.Myaffiliateprogram : Cleaned with backup C:\Documents and Settings\Anssi\Cookies\anssi@yieldmanager[2].txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Application Data\Microsoft\Internet Explorer\V0.15.dat -> Trojan.Dialui : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temp\bit2.exe -> Adware.Ezula : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temp\bitcoll.dll -> Adware.Ezula : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temp\clnE.tmp -> Downloader.Dyfuca.EI : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temp\comet_install.exe -> Spyware.CometCursor : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temp\optimize.exe -> Downloader.Dyfuca.EI : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temp\sidefind.exe -> Downloader.IstBar.jm : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temp\uninstall.exe -> Downloader.IstBar.gi : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\0L2J4DAR\cmctl[1].dll -> Spyware.AdMir : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\0L2J4DAR\WinFixerScannerInstall[1].exe -> Not-A-Virus.Downloader.Win32.WinFixer.b : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\2DLUV6D4\sfbho13[1].dll -> Spyware.SideFind : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\41YZK16B\istrecover[1].exe -> Downloader.IstBar.ij : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\7E4RZD4L\nem220[1].dll -> Downloader.Dyfuca : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\7E4RZD4L\pokapoka79[1].exe -> Trojan.EliteBar : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\83X7AEB1\optimize[1].exe -> Downloader.Dyfuca.EI : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\83X7AEB1\power_remove[1].exe -> Downloader.IstBar.gi : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\C5A78P27\sidefind[1].exe -> Downloader.IstBar.jm : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\GNMRY3UL\uninstaller.prod.24oct2005.exe[1].67ed8085ef4da0dd46732bc56aa91a66 -> Adware.SurfAccuracy : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\GTEZ0XAR\sfbho13[1].dll -> Spyware.SideFind : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\GTEZ0XAR\WinFixerScannerInstall[1].exe -> Not-A-Virus.Downloader.Win32.WinFixer.b : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\KD67S5MN\nem220[1].dll -> Downloader.Dyfuca : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\KD67S5MN\sidefind[1].exe -> Downloader.IstBar.jm : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\PVZZDD8E\powerscan[1].exe -> Spyware.PowerScan : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\SFWTG5GR\backups\backup-20051229-125841-233.dll -> Downloader.Small : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\SFWTG5GR\backups\backup-20051229-125841-849.dll -> Spyware.Retro64 : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\WHIFKDEF\istsvc[1].exe -> Downloader.IstBar : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\WTMZWXIV\istbarcm[1].dll -> Downloader.IstBar.kg : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\WTMZWXIV\istsvc[1].exe -> Downloader.IstBar : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\XP9F6EBQ\optimize[1].exe -> Downloader.Dyfuca.EI : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\XP9F6EBQ\sidefind13[1].dll -> Spyware.SideFind : Cleaned with backup C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\Y5J098VU\sidefind13[1].dll -> Spyware.SideFind : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@112.2o7[2].txt -> Spyware.Cookie.2o7 : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@247realmedia[1].txt -> Spyware.Cookie.247realmedia : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@2o7[2].txt -> Spyware.Cookie.2o7 : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@a.as-eu.falkag[1].txt -> Spyware.Cookie.Falkag : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@a.as-us.falkag[1].txt -> Spyware.Cookie.Falkag : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@ad-logics[1].txt -> Spyware.Cookie.Ad-logics : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@addynamix[1].txt -> Spyware.Cookie.Addynamix : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@adopt.specificclick[1].txt -> Spyware.Cookie.Specificclick : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@ads.pointroll[2].txt -> Spyware.Cookie.Pointroll : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@ads.specificpop[2].txt -> Spyware.Cookie.Specificpop : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@ads.valuead[1].txt -> Spyware.Cookie.Valuead : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@adserv.internetfuel[2].txt -> Spyware.Cookie.Internetfuel : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@adtech[2].txt -> Spyware.Cookie.Adtech : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@advertising[1].txt -> Spyware.Cookie.Advertising : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@as-us.falkag[1].txt -> Spyware.Cookie.Falkag : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@as1.falkag[2].txt -> Spyware.Cookie.Falkag : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@atdmt[2].txt -> Spyware.Cookie.Atdmt : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@banserv.internetfuel[1].txt -> Spyware.Cookie.Internetfuel : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@bfast[2].txt -> Spyware.Cookie.Bfast : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@bilbo.counted[1].txt -> Spyware.Cookie.Counted : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@bluestreak[2].txt -> Spyware.Cookie.Bluestreak : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@bs.serving-sys[1].txt -> Spyware.Cookie.Serving-sys : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@burstnet[1].txt -> Spyware.Cookie.Burstnet : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@casalemedia[2].txt -> Spyware.Cookie.Casalemedia : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@citi.bridgetrack[2].txt -> Spyware.Cookie.Bridgetrack : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@commissionpartner[2].txt -> Spyware.Cookie.Commissionpartner : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@com[2].txt -> Spyware.Cookie.Com : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@counter.hitslink[2].txt -> Spyware.Cookie.Hitslink : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@doubleclick[1].txt -> Spyware.Cookie.Doubleclick : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@edge.ru4[1].txt -> Spyware.Cookie.Ru4 : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@ehg-bskyb.hitbox[1].txt -> Spyware.Cookie.Hitbox : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@ehg-cbs.hitbox[2].txt -> Spyware.Cookie.Hitbox : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@ehg-nokiafin.hitbox[1].txt -> Spyware.Cookie.Hitbox : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@ehg-orangelake.hitbox[1].txt -> Spyware.Cookie.Hitbox : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@ehg-satama.hitbox[2].txt -> Spyware.Cookie.Hitbox : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@estat[1].txt -> Spyware.Cookie.Estat : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@euniverseads[1].txt -> Spyware.Cookie.Euniverseads : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@fl01.ct2.comclick[1].txt -> Spyware.Cookie.Comclick : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@hitbox[1].txt -> Spyware.Cookie.Hitbox : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@hotlog[2].txt -> Spyware.Cookie.Hotlog : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@ilead.itrack[2].txt -> Spyware.Cookie.Itrack : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@ivwbox[2].txt -> Spyware.Cookie.Ivwbox : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@linksynergy[2].txt -> Spyware.Cookie.Linksynergy : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@mediaplex[1].txt -> Spyware.Cookie.Mediaplex : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@overture[2].txt -> Spyware.Cookie.Overture : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@phg.hitbox[2].txt -> Spyware.Cookie.Hitbox : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@popups.ad-logics[1].txt -> Spyware.Cookie.Ad-logics : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@questionmarket[1].txt -> Spyware.Cookie.Questionmarket : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@rccl.bridgetrack[2].txt -> Spyware.Cookie.Bridgetrack : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@rotator.adjuggler[1].txt -> Spyware.Cookie.Adjuggler : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@server.iad.liveperson[1].txt -> Spyware.Cookie.Liveperson : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@specificclick[1].txt -> Spyware.Cookie.Specificclick : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@stat.onestat[1].txt -> Spyware.Cookie.Onestat : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@statcounter[1].txt -> Spyware.Cookie.Statcounter : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@statse.webtrendslive[1].txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@tradedoubler[1].txt -> Spyware.Cookie.Tradedoubler : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@trafficmp[1].txt -> Spyware.Cookie.Trafficmp : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@tribalfusion[1].txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@valueclick[1].txt -> Spyware.Cookie.Valueclick : Cleaned with backup C:\Documents and Settings\Auli\Cookies\auli@z1.adserver[1].txt -> Spyware.Cookie.Adserver : Cleaned with backup C:\Documents and Settings\Auli\Käynnistä-valikko\Ohjelmat\Power Scan -> Spyware.PowerScan : Cleaned with backup C:\Documents and Settings\Auli\Käynnistä-valikko\Ohjelmat\Power Scan\Power Scan.lnk -> Spyware.PowerScan : Cleaned with backup C:\Documents and Settings\Auli\Local Settings\Application Data\Microsoft\Internet Explorer\V0.28.dat -> Dialer.Generic : Cleaned with backup C:\Documents and Settings\Auli\Local Settings\Temp\asmfiles.cab/asm.exe -> Spyware.Altnet : Cleaned with backup C:\Documents and Settings\Auli\Local Settings\Temp\optimize.exe -> Downloader.Dyfuca.EI : Cleaned with backup C:\Documents and Settings\Auli\Local Settings\Temporary Internet Files\Content.IE5\0JHFYQRD\cmctl[1].dll -> Spyware.AdMir : Cleaned with backup C:\Documents and Settings\Auli\Local Settings\Temporary Internet Files\Content.IE5\0JHFYQRD\power_remove[1].exe -> Downloader.IstBar.gi : Cleaned with backup C:\Documents and Settings\Auli\Local Settings\Temporary Internet Files\Content.IE5\1NRJPLSE\nem220[1].dll -> Downloader.Dyfuca : Cleaned with backup C:\Documents and Settings\Auli\Local Settings\Temporary Internet Files\Content.IE5\CDQNGT63\istbarcm[1].dll -> Downloader.IstBar.kg : Cleaned with backup C:\Documents and Settings\Auli\Local Settings\Temporary Internet Files\Content.IE5\SHMJ0D2R\optimize[1].exe -> Downloader.Dyfuca.EI : Cleaned with backup C:\Documents and Settings\Auli\Local Settings\Temporary Internet Files\Content.IE5\SHMJ0D2R\powerscan[1].exe -> Spyware.PowerScan : Cleaned with backup C:\Documents and Settings\Erkki\Cookies\erkki@ad.yieldmanager[1].txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup C:\Documents and Settings\Erkki\Cookies\erkki@ads.x10[1].txt -> Spyware.Cookie.X10 : Cleaned with backup C:\Documents and Settings\Erkki\Cookies\erkki@commissionpartner[1].txt -> Spyware.Cookie.Commissionpartner : Cleaned with backup C:\Documents and Settings\Erkki\Cookies\erkki@com[1].txt -> Spyware.Cookie.Com : Cleaned with backup C:\Documents and Settings\Erkki\Cookies\erkki@estat[1].txt -> Spyware.Cookie.Estat : Cleaned with backup C:\Documents and Settings\Erkki\Cookies\erkki@ilead.itrack[1].txt -> Spyware.Cookie.Itrack : Cleaned with backup C:\Documents and Settings\Erkki\Local Settings\Temp\cd_clint.dll -> Spyware.Cydoor : Cleaned with backup C:\Documents and Settings\Erkki\Local Settings\Temp\jfgudk.exe -> Downloader.IstBar.nz : Cleaned with backup C:\Documents and Settings\Erkki\Local Settings\Temp\__unin__.exe -> Spyware.Altnet : Cleaned with backup C:\Documents and Settings\Erkki\Local Settings\Temporary Internet Files\Content.IE5\41IJS12V\power_remove[1].exe -> Downloader.IstBar.gi : Cleaned with backup C:\Documents and Settings\Erkki\Local Settings\Temporary Internet Files\Content.IE5\G5AB4H2F\istdownload[1].exe -> Downloader.IstBar.nz : Cleaned with backup C:\Documents and Settings\Erkki\Local Settings\Temporary Internet Files\Content.IE5\G5AB4H2F\powerscan[1].exe -> Spyware.PowerScan : Cleaned with backup C:\Program Files\Altnet -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection\cevakrnl.cab -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection\cevakrnl.ivd.cab -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection\cevakrnl.rvd.cab -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection\cevakrnl.rvd.cab (incomplete) -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection\cran.cvd.cab -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection\emalware.cab -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection\emalware.ivd.cab -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection\emalware.ivd.cab (incomplete) -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection\mdx_97.cab -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection\mdx_97.ivd.cab -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection\mdx_97.ivd.cab (incomplete) -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection\mdx_w95.cvd.cab -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection\mdx_x95.cvd.cab -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection\na.cvd.cab -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection\nelf.cab -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection\nelf.cvd.cab -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection\plugins.cab.cab -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection\rup.cab -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection\rup.cvd.cab -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection\rup.xmd.cab -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection\sdx.cab -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection\sdx.ivd.cab -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection\sdx.ivd.cab (incomplete) -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection\update.cab -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection\update.txt.cab -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection\update.txt.cab (incomplete) -> Spyware.Altnet : Cleaned with backup C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection\zip.xmd.cab -> Spyware.Altnet : Cleaned with backup C:\Program Files\Internet Optimizer -> Spyware.InternetOptimizer : Cleaned with backup C:\Program Files\Media Access -> Adware.MediaAccess : Cleaned with backup C:\Program Files\Media Access\Info.txt -> Adware.MediaAccess : Cleaned with backup C:\Program Files\Media Access\MediaAccC.dll -> Adware.MediaAccess : Cleaned with backup C:\Program Files\Media Access\MediaAccess.exe -> Adware.MediaAccess : Cleaned with backup C:\Program Files\Media Access\MediaAccK.exe -> Adware.MediaAccess : Cleaned with backup C:\Program Files\SideFind\sidefind.dll -> Spyware.SideFind : Cleaned with backup C:\Program Files\SideFind\update\sidefind.exe -> Downloader.IstBar.jm : Cleaned with backup C:\Program Files\SurfAccuracy -> Adware.SurfAccuracy : Cleaned with backup C:\Program Files\SurfAccuracy\License.lnk -> Adware.SurfAccuracy : Cleaned with backup C:\Program Files\SurfAccuracy\SAcc.cfg -> Adware.SurfAccuracy : Cleaned with backup C:\Program Files\SurfAccuracy\SAcc.exe -> Adware.SurfAccuracy : Cleaned with backup C:\Program Files\SurfAccuracy\SAccU.exe -> Adware.SurfAccuracy : Cleaned with backup C:\Program Files\Web Offer -> Adware.eZula : Cleaned with backup C:\Program Files\Web Offer\apev.exe -> Adware.eZula : Cleaned with backup C:\Program Files\Web Offer\basisp.dst -> Adware.eZula : Cleaned with backup C:\Program Files\Web Offer\basisp.kwd -> Adware.eZula : Cleaned with backup C:\Program Files\Web Offer\basisp.pu -> Adware.eZula : Cleaned with backup C:\Program Files\Web Offer\basisp.rst -> Adware.eZula : Cleaned with backup C:\Program Files\Web Offer\CHPON.dll -> Adware.eZula : Cleaned with backup C:\Program Files\Web Offer\eapbh.dll -> Adware.eZula : Cleaned with backup C:\Program Files\Web Offer\gendis.ez -> Adware.eZula : Cleaned with backup C:\Program Files\Web Offer\INSTALL.LOG -> Adware.eZula : Cleaned with backup C:\Program Files\Web Offer\paramp.ez -> Adware.eZula : Cleaned with backup C:\Program Files\Web Offer\rwdsp.rst -> Adware.eZula : Cleaned with backup C:\Program Files\Web Offer\sepng.dll -> Adware.eZula : Cleaned with backup C:\Program Files\Web Offer\UNWISE.EXE -> Adware.eZula : Cleaned with backup C:\Program Files\Web Offer\upgradep.vrn -> Adware.eZula : Cleaned with backup C:\Program Files\Web Offer\versionp.vrn -> Adware.eZula : Cleaned with backup C:\Program Files\Web Offer\wndbannnp.src -> Adware.eZula : Cleaned with backup C:\Program Files\Web Offer\wo.exe -> Adware.eZula : Cleaned with backup C:\WINDOWS\Downloaded Program Files\gsda.dll -> Dialer.Generic : Cleaned with backup C:\WINDOWS\PC-Spiele Cheats.exe.exe -> Dialer.Generic : Cleaned with backup C:\WINDOWS\system32\comet.dll -> Spyware.CometCursor : Cleaned with backup C:\WINDOWS\system32\smmss.exe -> Backdoor.Wootbot.z : Cleaned with backup C:\WINDOWS\system32\username.exe -> Dropper.Agent.se : Cleaned with backup C:\WINDOWS\system32\wuauclt10.exe -> Trojan.Pakes : Cleaned with backup C:\WINDOWS\Temp\Altnet -> Spyware.Altnet : Cleaned with backup C:\WINDOWS\Temp\Altnet\adm.exe -> Spyware.Altnet : Cleaned with backup C:\WINDOWS\Temp\Altnet\adm25.dll -> Spyware.Altnet : Cleaned with backup C:\WINDOWS\Temp\Altnet\adm4.dll -> Spyware.Altnet : Cleaned with backup C:\WINDOWS\Temp\Altnet\admdata.dll -> Spyware.Altnet : Cleaned with backup C:\WINDOWS\Temp\Altnet\admdloader.dll -> Spyware.Altnet : Cleaned with backup C:\WINDOWS\Temp\Altnet\admfdi.dll -> Spyware.Altnet : Cleaned with backup C:\WINDOWS\Temp\Altnet\admprog.dll -> Spyware.Altnet : Cleaned with backup C:\WINDOWS\Temp\Altnet\Atl.dll -> Spyware.Altnet : Cleaned with backup C:\WINDOWS\Temp\Altnet\dmfiles.cab -> Spyware.Altnet : Cleaned with backup C:\WINDOWS\Temp\Altnet\DMinfo2.cab -> Spyware.Altnet : Cleaned with backup C:\WINDOWS\Temp\Altnet\dminstall3.cab -> Spyware.Altnet : Cleaned with backup C:\WINDOWS\Temp\Altnet\msvcirt.dll -> Spyware.Altnet : Cleaned with backup C:\WINDOWS\Temp\Altnet\mysearch.cab -> Spyware.Altnet : Cleaned with backup C:\WINDOWS\Temp\Altnet\pmexe.cab -> Spyware.Altnet : Cleaned with backup C:\WINDOWS\Temp\Altnet\pmfiles.cab -> Spyware.Altnet : Cleaned with backup C:\WINDOWS\Temp\Altnet\pminstall.cab -> Spyware.Altnet : Cleaned with backup C:\WINDOWS\Temp\Altnet\Setup.cab -> Spyware.Altnet : Cleaned with backup C:\WINDOWS\Temp\Altnet\Setup.exe -> Spyware.Altnet : Cleaned with backup C:\WINDOWS\wt\wtvh.dll -> Spyware.WildTangent : Cleaned with backup ::Report End
HjT-loki on ok. Poista nämä hakemistot, jos niitä on(siis vaikka Resurssienhallinnan tai Oman Tietokoneen kautta): C:\WINDOWS\Temp\==>Altnet<== C:\Program Files\==>Web Offer<== C:\Program Files\==>SurfAccuracy<== C:\Program Files\==>SideFind<== C:\Program Files\==>Media Access<== C:\Program Files\==>Internet Optimizer<== C:\Program Files\==>Altnet<== C:\WINDOWS\==>wt<== Koska noita örkkejä oli hirveän paljon, niin tee vielä tämä: Hae eScan -> http://koti.mbnet.fi/pattaya1/escanmwav.htm . Asenna, päivitä, skannaa sivulla olevien ohjeiden mukaan. Lähetä sitten "örkkitulokset" tänne (ohje tuolla sivulla, alin kuva ja sen yläpuolella oleva teksti).
Älä vielä kiitä, homma on kesken Katotaan tilanne sen eScanin ajon jälkeen. Lisäksi hae täältä -> http://keskustelu.afterdawn.com/thread_view.cfm/162275 virustentorjuntaohjelma ja palomuuri, kun sellaisia ei näkynyt olevan.
okei no jatkan sit taas. Joo ja kyl mul on toi palomuuri mut tota viruksentorjuntaohjelmaa ei ollu joten asensin sen
Tos on eScan:in tiedot File C:\WINDOWS\woinstall.exe tagged as not-a-virus:AdWare.Win32.EZula.ak. No Action Taken. File C:\WINDOWS\system32\ezPopStub.exe tagged as not-a-virus:AdWare.Win32.EZula.bh. No Action Taken. File C:\WINDOWS\system32\wudupdate.exe infected by "Trojan-Downloader.Win32.IstBar.lq" Virus. Action Taken: File Deleted. File C:\Documents and Settings\Anssi\Local Settings\Temp\ccu\brbho.dll tagged as not-a-virus:AdWare.Win32.Comet.t. No Action Taken. File C:\Documents and Settings\Anssi\Local Settings\Temp\ccu\comet_install.exe tagged as not-a-virus:AdWare.Win32.Comet.t. No Action Taken. File C:\Documents and Settings\Anssi\Local Settings\Temp\jfgudk.exe infected by "Trojan-Downloader.Win32.IstBar.oa" Virus. Action Taken: File Deleted. File C:\Documents and Settings\Anssi\Local Settings\Temp\upd.exe tagged as not-a-virus:RiskTool.Win32.PsKill.1101. No Action Taken. File C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\2T0H2FY1\istdownload[1].exe infected by "Trojan-Downloader.Win32.IstBar.nz" Virus. Action Taken: File Deleted. File C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\41YZK16B\eZinstall[1].exe tagged as not-a-virus:AdWare.Win32.EZula.ak. No Action Taken. File C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\7E4RZD4L\SAcc.prod.v1132.19dec2005.exe[1].c70aa90a8674413dce2a8a475e83aa9c tagged as not-a-virus:AdWare.Win32.SurfAccuracy.d. No Action Taken. File C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\7E4RZD4L\woinstall[1].exe tagged as not-a-virus:AdWare.Win32.EZula.ak. No Action Taken. File C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\C5A78P27\woinstall[1].exe tagged as not-a-virus:AdWare.Win32.EZula.ak. No Action Taken. File C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\GNMRY3UL\eZinstall[1].exe tagged as not-a-virus:AdWare.Win32.EZula.ak. No Action Taken. File C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files\Content.IE5\XP9F6EBQ\istdownload[1].exe infected by "Trojan-Downloader.Win32.IstBar.oa" Virus. Action Taken: File Deleted. File C:\Documents and Settings\Auli\Local Settings\Application Data\Microsoft\Internet Explorer\V0.32.dat infected by "Trojan-Downloader.Win32.Small.bdl" Virus. Action Taken: File Deleted. File C:\Documents and Settings\Auli\Local Settings\Temp\jfgudk.exe infected by "Trojan-Downloader.Win32.IstBar.nz" Virus. Action Taken: File Deleted. File C:\Documents and Settings\Auli\Local Settings\Temporary Internet Files\Content.IE5\0JHFYQRD\istdownload[1].exe infected by "Trojan-Downloader.Win32.IstBar.nz" Virus. Action Taken: File Deleted. File C:\Program Files\Kazaa\PerfectNavUninstall.exe infected by "Trojan-Downloader.Win32.Keenval.e" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP330\A0487135.dll tagged as not-a-virus:AdWare.Win32.Comet.t. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP330\A0487136.dll tagged as not-a-virus:AdWare.Win32.Comet.v. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP330\A0487139.exe tagged as not-a-virus:AdWare.Win32.Comet.p. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP330\A0487141.exe tagged as not-a-virus:AdWare.Win32.Comet.v. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP330\A0487142.exe tagged as not-a-virus:AdWare.Win32.Comet.c. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP330\A0487143.dll tagged as not-a-virus:AdWare.Win32.Comet.v. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP330\A0487144.dll tagged as not-a-virus:AdWare.Win32.Comet.q. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP330\A0487145.dll tagged as not-a-virus:AdWare.Win32.Comet.v. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP330\A0487146.dll tagged as not-a-virus:AdWare.Win32.Comet.ak. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP330\A0487147.dll tagged as not-a-virus:AdWare.Win32.Comet.q. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP330\A0487148.dll tagged as not-a-virus:AdWare.Win32.Comet. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP330\A0487149.dll tagged as not-a-virus:AdWare.Win32.Comet.v. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP330\A0487150.dll tagged as not-a-virus:AdWare.Win32.Comet.v. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP330\A0487151.dll tagged as not-a-virus:AdWare.Win32.Comet.ak. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP330\A0487152.dll tagged as not-a-virus:AdWare.Win32.Comet.h. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP330\A0487154.exe tagged as not-a-virus:AdWare.Win32.Comet.p. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP330\A0487155.dll tagged as not-a-virus:AdWare.Win32.Comet.v. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP330\A0487156.dll tagged as not-a-virus:AdWare.Win32.Comet.o. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP330\A0487157.dll tagged as not-a-virus:AdWare.Win32.Comet.v. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0497503.exe tagged as not-a-virus:RiskTool.Win32.PsKill.1101. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0497504.exe tagged as not-a-virus:RiskTool.Win32.PsKill.1101. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0497505.exe tagged as not-a-virus:RiskTool.Win32.PsKill.1101. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0497506.exe tagged as not-a-virus:RiskTool.Win32.PsKill.1101. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0497507.exe tagged as not-a-virus:RiskTool.Win32.PsKill.1101. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0498479.dll infected by "Trojan.Win32.EliteBar.a" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0498491.exe tagged as not-a-virus:AdWare.Win32.EZula.ak. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0498494.exe tagged as not-a-virus:AdWare.Win32.PowerScan.d. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0498497.exe tagged as not-a-virus:RiskTool.Win32.PsKill.1101. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0498498.exe tagged as not-a-virus:RiskTool.Win32.PsKill.1101. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0498499.exe tagged as not-a-virus:RiskTool.Win32.PsKill.1101. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0498500.exe tagged as not-a-virus:RiskTool.Win32.PsKill.1101. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0498502.exe tagged as not-a-virus:RiskTool.Win32.PsKill.1101. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0498503.exe tagged as not-a-virus:RiskTool.Win32.PsKill.1101. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0498505.exe tagged as not-a-virus:RiskTool.Win32.PsKill.1101. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0498506.exe tagged as not-a-virus:RiskTool.Win32.PsKill.1101. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0498507.exe tagged as not-a-virus:RiskTool.Win32.PsKill.1101. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0498513.dll tagged as not-a-virus:AdWare.Win32.AdMir.a. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0498514.dll infected by "Trojan-Downloader.Win32.IstBar.kg" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0498515.dll tagged as not-a-virus:AdWare.Win32.SideFind. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0498516.dll tagged as not-a-virus:AdWare.Win32.SideFind. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0498517.exe infected by "Trojan-Downloader.Win32.IstBar.jm" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0498518.dll infected by "Trojan-Downloader.Win32.Dyfuca.gen" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0498519.dll tagged as not-a-virus:AdWare.Win32.EZula.x. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0498523.exe tagged as not-a-virus:AdWare.Win32.EZula.ap. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0498524.exe tagged as not-a-virus:AdWare.Win32.EZula.ak. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0498528.exe infected by "Trojan-Downloader.Win32.Dyfuca.ei" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0499479.dll tagged as not-a-virus:AdWare.Win32.EZula.ae. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0499480.exe tagged as not-a-virus:AdWare.Win32.EZula.z. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0499481.dll tagged as not-a-virus:AdWare.Win32.EZula.ab. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP357\A0499482.exe infected by "Trojan-Downloader.Win32.IstBar.gen" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP358\A0499533.exe tagged as not-a-virus:AdWare.Win32.PowerScan.d. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP360\A0499632.dll tagged as not-a-virus:AdWare.Win32.AdMir.a. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP360\A0499633.dll infected by "Trojan-Downloader.Win32.IstBar.kg" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP360\A0499634.dll tagged as not-a-virus:AdWare.Win32.SideFind. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP360\A0499635.dll tagged as not-a-virus:AdWare.Win32.SideFind. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP360\A0499636.exe infected by "Trojan-Downloader.Win32.IstBar.jm" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP360\A0499637.dll infected by "Trojan-Downloader.Win32.Dyfuca.gen" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP360\A0499638.exe infected by "Trojan-Downloader.Win32.Dyfuca.ei" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP360\A0499639.dll tagged as not-a-virus:AdWare.Win32.EZula.x. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP360\A0499643.exe tagged as not-a-virus:AdWare.Win32.EZula.ap. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP360\A0499644.exe tagged as not-a-virus:AdWare.Win32.EZula.ak. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0500539.dll tagged as not-a-virus:AdWare.Win32.EZula.ae. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0500540.exe tagged as not-a-virus:AdWare.Win32.EZula.z. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0500541.dll tagged as not-a-virus:AdWare.Win32.EZula.ab. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0500542.exe infected by "Trojan-Downloader.Win32.IstBar.gen" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0500628.dll tagged as not-a-virus:AdWare.Win32.SideFind. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0500629.dll tagged as not-a-virus:AdWare.Win32.SideFind. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0500630.exe infected by "Trojan-Downloader.Win32.IstBar.jm" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0500631.dll infected by "Trojan-Downloader.Win32.Dyfuca.gen" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0500632.exe infected by "Trojan-Downloader.Win32.Dyfuca.ei" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0500633.dll tagged as not-a-virus:AdWare.Win32.EZula.x. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0500637.exe tagged as not-a-virus:AdWare.Win32.EZula.ap. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0500638.exe tagged as not-a-virus:AdWare.Win32.EZula.ak. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501607.dll tagged as not-a-virus:AdWare.Win32.EZula.ae. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501608.exe tagged as not-a-virus:AdWare.Win32.EZula.z. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501609.dll tagged as not-a-virus:AdWare.Win32.EZula.ab. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501610.exe infected by "Trojan-Downloader.Win32.IstBar.gen" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501650.dll tagged as not-a-virus:AdWare.Win32.SideFind. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501651.dll tagged as not-a-virus:AdWare.Win32.SideFind. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501652.exe infected by "Trojan-Downloader.Win32.IstBar.jm" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501653.dll infected by "Trojan-Downloader.Win32.Dyfuca.gen" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501654.exe infected by "Trojan-Downloader.Win32.Dyfuca.ei" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501655.dll tagged as not-a-virus:AdWare.Win32.EZula.x. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501659.exe tagged as not-a-virus:AdWare.Win32.EZula.ap. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501660.exe tagged as not-a-virus:AdWare.Win32.EZula.ak. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501679.exe infected by "Trojan-Downloader.Win32.IstBar.gen" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501684.dll infected by "Trojan.Win32.EliteBar.h" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501685.exe infected by "Trojan.Win32.EliteBar.h" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501730.exe tagged as not-a-virus:AdWare.Win32.PowerScan.d. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501732.exe infected by "Trojan-Downloader.Win32.IstBar.ij" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501733.exe infected by "Trojan-Downloader.Win32.IstBar.gen" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501734.DLL tagged as not-a-virus:AdWare.Win32.MyWebSearch. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501737.scr tagged as not-a-virus:AdWare.Win32.MyWebSearch. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501738.DLL tagged as not-a-virus:AdWare.Win32.MyWebSearch. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501739.DLL tagged as not-a-virus:AdWare.Win32.MyWebSearch. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501740.DLL tagged as not-a-virus:AdWare.Win32.MyWebSearch. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501741.DLL tagged as not-a-virus:AdWare.Win32.MyWebSearch. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501742.SCR tagged as not-a-virus:AdWare.Win32.MyWebSearch. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501743.DLL tagged as not-a-virus:AdWare.Win32.MyWebSearch. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501744.EXE tagged as not-a-virus:AdWare.Win32.MyWebSearch. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501745.DLL tagged as not-a-virus:AdWare.Win32.MyWebSearch. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501746.DLL tagged as not-a-virus:AdWare.Win32.MyWebSearch. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501747.DLL tagged as not-a-virus:AdWare.Win32.MyWebSearch. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501748.DLL tagged as not-a-virus:AdWare.Win32.MyWebSearch. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501749.DLL tagged as not-a-virus:AdWare.Win32.MyWebSearch. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501756.exe tagged as not-a-virus:AdWare.Win32.EZula.z. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501757.dll tagged as not-a-virus:AdWare.Win32.EZula.ab. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501758.dll tagged as not-a-virus:AdWare.Win32.EZula.ae. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP361\A0501759.exe tagged as not-a-virus:AdWare.Win32.EZula.z. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0501768.exe infected by "Trojan-Downloader.Win32.Dyfuca.ei" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0502716.dll tagged as not-a-virus:AdWare.Win32.MyWebSearch. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0502717.DLL tagged as not-a-virus:AdWare.Win32.MyWebSearch. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0502718.DLL tagged as not-a-virus:AdWare.Win32.MyWebSearch. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0502719.dll tagged as not-a-virus:AdWare.Win32.MyWebSearch. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0502720.dll tagged as not-a-virus:AdWare.Win32.SideFind. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0502721.exe tagged as not-a-virus:AdWare.Win32.MyWebSearch. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0502722.dll infected by "Trojan-Downloader.Win32.Dyfuca.gen" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0502723.dll tagged as not-a-virus:AdWare.Win32.EZula.x. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0502724.dll tagged as not-a-virus:AdWare.Win32.EZula.ab. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0503726.dll tagged as not-a-virus:AdWare.Win32.EZula.ae. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0503727.exe tagged as not-a-virus:AdWare.Win32.EZula.ak. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0503733.dll tagged as not-a-virus:AdWare.Win32.SideFind. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0503734.exe infected by "Trojan-Downloader.Win32.IstBar.jm" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0503737.exe tagged as not-a-virus:AdWare.Win32.SurfAccuracy.d. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0503738.exe tagged as not-a-virus:AdWare.Win32.SurfAccuracy.d. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0503739.exe tagged as not-a-virus:AdWare.Win32.EZula.be. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0503740.dll tagged as not-a-virus:AdWare.Win32.EZula.ae. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0503741.dll tagged as not-a-virus:AdWare.Win32.EZula.be. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0503742.dll tagged as not-a-virusSWTool.Win32.EZula.bf. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0503745.exe tagged as not-a-virus:AdWare.Win32.EZula.aw. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0503746.exe tagged as not-a-virusorn-Dialer.Win32.Intexdial. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0503747.dll tagged as not-a-virus:AdWare.Win32.Comet.a. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0503748.exe tagged as not-a-virus:AdWare.Win32.EZula.bg. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0503749.exe infected by "Trojan-Dropper.Win32.Agent.se" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0503750.exe infected by "Trojan.Win32.Pakes" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0503766.exe tagged as not-a-virus:AdWare.Win32.EZula.ap. No Action Taken. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0503871.exe infected by "Trojan-Downloader.Win32.IstBar.lq" Virus. Action Taken: File Deleted. File C:\System Volume Information\_restore{C00B745A-BC8B-4EDC-AA18-120A43138C83}\RP362\A0503873.exe infected by "Trojan-Downloader.Win32.Keenval.e" Virus. Action Taken: File Deleted. File C:\WINDOWS\system32\ezPopStub.exe tagged as not-a-virus:AdWare.Win32.EZula.bh. No Action Taken. File C:\WINDOWS\woinstall.exe tagged as not-a-virus:AdWare.Win32.EZula.ak. No Action Taken.
Nyt on jo pakko kysyä että minkähänlainen kone on tehoiltaan kun kerran vain "hieman hidastellut" noilla örkeillä?
Poista nämä: C:\WINDOWS\==>woinstall.exe<== C:\WINDOWS\system32\==>ezPopStub.exe<== Tyhjennä nämä hakemistot (eli poista sieltä kaikki tiedostot): C:\Documents and Settings\Anssi\Local Settings\Temp C:\Documents and Settings\Anssi\Local Settings\Temporary Internet Files Lisäksi olisi ehkä suotavaa tyhjentää järjestelmän palautus, kun siellä on örkkejä. Eli näin: 1. Valitse Oma tietokone (klikkaa oikealla). 2. Valitse Ominaisuudet. 3. Valitse Järjestelmän palauttaminen- välilehti. 4. Valitse "Poista järjestelmän palauttaminen käytöstä". 5. Paina Käytä. 6. Paina OK. 7. Käynnistä kone uudelleen 8. Tee kohdat 1.-3. 9. Ota rasti pois kohdasta "Poista järjestelmän palauttaminen käytöstä" 10. Tee kohdat 5. ja 6.
No ei tää kone kyl mikää tekniikan huippu oo mut ei tää kyl mitenkään kauheesti oo hidastellu(ihme kyl).
