AfterDawn.com Mainosta sivuillamme
User Käyttäjä Salasana  
  Puuttuuko tunnus? Liity jäseneksi nyt!.
Salasana hukassa? Klikkaa tästä. 		 
  Etusivu   Uutiset   Oppaat   Ohjelmat   Sanasto   Laitevertailu   Profiilit   Keskustelu  
 Yksityisviestit     Luo uusi yksityisviesti     Kaikki uudet viestit     Ilman vastauksia olevat viestiketjut     Hae viestejä
perjantai 27.12.2024 / 05:57
Hae keskustelualueilta:        In English   Suomeksi   På svenska
afterdawn.com > keskustelu > yleistä keskustelua tietokoneista > virukset ja haittaohjelmat > hjt-loki
Näytä aiheet
 
Keskustelualueet
Keskustelualueet
HJT-loki
  Siirry:
 
Kirjoittaja Viesti
JuKKaLe
Newbie
_ 		28. tammikuuta 2006 @ 07:19 _ Linkki tähän viestiin    Lähetä käyttäjälle yksityisviesti   
Onko mitään tehtävissä?

Logfile of HijackThis v1.99.1
Scan saved at 12:14:08, on 28.1.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\htpatch.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\AVPersonal\AVGNT.EXE
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Microsoft AntiSpyware\gcasServ.exe
C:\WINDOWS\system32\ctfmon.exe
c:\progra~1\intern~1\iexplore.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\PROGRAM FILES\AVPERSONAL\AVGUARD.EXE
C:\Program Files\AVPersonal\AVWUPSRV.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\DOCUMENTS AND SETTINGS\VEIKKO LEHTOLA\TYÖPÖYTÄ\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bfkhbfnxgebvrfujqh.com/hbDQhl//MvCFp97KaE342SROLg5CGjc...
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.surfeu.fi/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\apps\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {0FAA9302-EE6D-B6A1-E428-7C994EF3DFED} - C:\DOCUME~1\VEIKKO~1\APPLIC~1\MESSUP~1\SLOWDRIVE.exe
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {546966A4-73B3-B2F9-B211-677F8A264721} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O4 - HKLM\..\Run: [ATIPTA] C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [HTpatch] C:\WINDOWS\htpatch.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [AVGCtrl] "C:\Program Files\AVPersonal\AVGNT.EXE" /min
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKCU\..\Run: [loadsupport] C:\DOCUME~1\VEIKKO~1\APPLIC~1\ARMYMA~1\FourThat.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: hp psc 1000 series.lnk = ?
O4 - Global Startup: hpoddt01.exe.lnk = ?
O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusearch.html?p=ZNfox000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.surfeu.fi/
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by10fd.bay10.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/...
O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} (GSDACtl Class) - http://launch.gamespyarcade.com/software/launch/alaunch.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {C2FCEF52-ACE9-11D3-BEBD-00105AA9B6AE} (Symantec RuFSI Registry Information Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {D62B5127-8D03-4175-BA71-E0041595DA4B} (UDConnect Class) - http://03.sharedsource.org/html/TriacomUD_1.0.0.2ie.cab?
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: AntiVir Service (AntiVirService) - H+BEDV Datentechnik GmbH - C:\PROGRAM FILES\AVPERSONAL\AVGUARD.EXE
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AntiVir Update (AVWUpSrv) - H+BEDV Datentechnik GmbH, Germany - C:\Program Files\AVPersonal\AVWUPSRV.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
[ + lainaa]
Tonski
Senior Member
_ 		28. tammikuuta 2006 @ 08:02 _ Linkki tähän viestiin    Lähetä käyttäjälle yksityisviesti   
Fixaa nämä:

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bfkhbfnxgebvrfujqh.com/hbDQhl//MvCFp97KaE342SROLg5CGjc...
O2 - BHO: (no name) - {546966A4-73B3-B2F9-B211-677F8A264721} - (no file)
O16 - DPF: {D62B5127-8D03-4175-BA71-E0041595DA4B} (UDConnect Class) - http://03.sharedsource.org/html/TriacomUD_1.0.0.2ie.cab?¨

Sitten käynnistä kone uudelleen ja lähetä uusi loki.
[ + lainaa]
PlayStation Portable
http://www.psp-plaza.urli.net
http://finfix.14.forumer.com/
AfterDawn säännöt: http://keskustelu.afterdawn.com/thread_view.cfm/2717
JuKKaLe
Newbie
_ 		28. tammikuuta 2006 @ 08:22 _ Linkki tähän viestiin    Lähetä käyttäjälle yksityisviesti   
Logfile of HijackThis v1.99.1
Scan saved at 13:22:46, on 28.1.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\htpatch.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\AVPersonal\AVGNT.EXE
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Microsoft AntiSpyware\gcasServ.exe
C:\WINDOWS\system32\ctfmon.exe
c:\progra~1\intern~1\iexplore.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
C:\PROGRAM FILES\AVPERSONAL\AVGUARD.EXE
C:\Program Files\AVPersonal\AVWUPSRV.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\Documents and Settings\Veikko Lehtola\Työpöytä\HijackThis.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
C:\Program Files\AVPersonal\INETUPD.EXE

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.teewzfdfgjcszefsmbs.net/hbDQhl//MvCFp97KaE342SROLg5CGj...
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.surfeu.fi/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\apps\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {0FAA9302-EE6D-B6A1-E428-7C994EF3DFED} - C:\DOCUME~1\VEIKKO~1\APPLIC~1\MESSUP~1\SLOWDRIVE.exe
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O4 - HKLM\..\Run: [ATIPTA] C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [HTpatch] C:\WINDOWS\htpatch.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [AVGCtrl] "C:\Program Files\AVPersonal\AVGNT.EXE" /min
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKCU\..\Run: [loadsupport] C:\DOCUME~1\VEIKKO~1\APPLIC~1\ARMYMA~1\FourThat.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: hp psc 1000 series.lnk = ?
O4 - Global Startup: hpoddt01.exe.lnk = ?
O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusearch.html?p=ZNfox000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.surfeu.fi/
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by10fd.bay10.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/...
O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} (GSDACtl Class) - http://launch.gamespyarcade.com/software/launch/alaunch.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {C2FCEF52-ACE9-11D3-BEBD-00105AA9B6AE} (Symantec RuFSI Registry Information Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: AntiVir Service (AntiVirService) - H+BEDV Datentechnik GmbH - C:\PROGRAM FILES\AVPERSONAL\AVGUARD.EXE
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AntiVir Update (AVWUpSrv) - H+BEDV Datentechnik GmbH, Germany - C:\Program Files\AVPersonal\AVWUPSRV.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
[ + lainaa]
aaxxeell
Senior Member
_ 		28. tammikuuta 2006 @ 08:54 _ Linkki tähän viestiin    Lähetä käyttäjälle yksityisviesti   
Olet ilmeisesti poistanut Norton Antivirus ohjelman joka on ollut aikoinaan koneella?
Missä palomuuri on, en sellasta löydä?

Fixaa:
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.teewzfdfgjcszefsmbs.net/hbDQhl//MvCFp97KaE342SROLg5CGj...
O2 - BHO: (no name) - {0FAA9302-EE6D-B6A1-E428-7C994EF3DFED} - C:\DOCUME~1\VEIKKO~1\APPLIC~1\MESSUP~1\SLOWDRIVE.exe
O4 - HKCU\..\Run: [loadsupport] C:\DOCUME~1\VEIKKO~1\APPLIC~1\ARMYMA~1\FourThat.exe
O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusearch.html?p=ZNfox000

Hae ewido
-> http://keskustelu.afterdawn.com/thread_view.cfm/269186
Päivitä ohjeen mukaan mutta älä aja sitä vielä.

<<<<<<<<<<<<<<<<<<<<<Avaa vikasietotilassa>>>>>>>>>>>>>>>>>>>>>>>>>>

Poista kansio:
C:\DOCUME~1\VEIKKO~1\APPLIC~1\-->ARMYMA~1<--
C:\DOCUME~1\VEIKKO~1\APPLIC~1\-->MESSUP~1<--

Aja nyt koko kone ewidolla ohjeen mukaan ja tallenan raportti.

Palaa Normaalitilaan ja Lähetä ewidon raportti + uusi Hjt loki.
[ + lainaa]
JuKKaLe
Newbie
_ 		28. tammikuuta 2006 @ 18:51 _ Linkki tähän viestiin    Lähetä käyttäjälle yksityisviesti   
Eipä oo koneella kunnon palomuuria. Mitä suosittelet? Norton on ollut joo, mutta poistettu. Olit oikeassa.

Tässä se Ewido-raportti:

---------------------------------------------------------
ewido anti-malware - Scan report
---------------------------------------------------------

+ Created on: 23:45:02, 28.1.2006
+ Report-Checksum: 2C25C1D0

+ Scan result:

HKLM\SOFTWARE\Classes\CLSID\{70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} -> Spyware.GameSpyArcade : Cleaned with backup
HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} -> Spyware.GameSpyArcade : Cleaned with backup
HKU\S-1-5-21-1387212391-2975787960-277512304-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00A6FAF1-072E-44CF-8957-5838F569A31D} -> Spyware.MyWebSearch : Cleaned with backup
HKU\S-1-5-21-1387212391-2975787960-277512304-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA1-A523-4961-B6BB-170DE4475CCA} -> Spyware.MyWebSearch : Cleaned with backup
:mozilla.6:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.9:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.247realmedia : Cleaned with backup
:mozilla.10:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.11:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.12:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.13:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.14:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.15:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.16:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.17:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.18:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.19:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.33:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Adbrite : Cleaned with backup
:mozilla.34:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Adbrite : Cleaned with backup
:mozilla.36:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Adtech : Cleaned with backup
:mozilla.37:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Adtech : Cleaned with backup
:mozilla.47:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.68:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.69:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Burstnet : Cleaned with backup
:mozilla.71:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.72:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.73:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.74:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.75:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.76:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.77:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.78:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.79:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.83:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.84:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.85:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.86:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.87:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.88:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.89:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.90:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.91:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.92:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.93:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.94:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.95:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.96:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.97:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.98:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.99:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.100:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.101:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.102:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.103:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.104:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.105:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.106:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.107:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.108:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.109:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.110:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.111:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.112:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.113:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.114:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.115:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.116:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.117:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.118:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.120:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Clickzs : Cleaned with backup
:mozilla.121:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Clickzs : Cleaned with backup
:mozilla.133:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.141:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Estat : Cleaned with backup
:mozilla.169:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Hotlog : Cleaned with backup
:mozilla.172:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Hypertracker : Cleaned with backup
:mozilla.209:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.254:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Pro-market : Cleaned with backup
:mozilla.255:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Questionmarket : Cleaned with backup
:mozilla.262:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Revenue : Cleaned with backup
:mozilla.270:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.271:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.272:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.273:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.274:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.282:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Spylog : Cleaned with backup
:mozilla.284:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.285:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.286:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.287:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.288:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.289:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.290:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.291:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.299:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Tradedoubler : Cleaned with backup
:mozilla.300:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Tradedoubler : Cleaned with backup
:mozilla.301:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Tradedoubler : Cleaned with backup
:mozilla.302:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Tradedoubler : Cleaned with backup
:mozilla.303:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Tradedoubler : Cleaned with backup
:mozilla.304:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Tradedoubler : Cleaned with backup
:mozilla.305:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Trafic : Cleaned with backup
:mozilla.307:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
:mozilla.308:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
:mozilla.343:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
:mozilla.344:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
:mozilla.345:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
:mozilla.367:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.368:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.369:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.370:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.371:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.372:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.407:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Sitestat : Cleaned with backup
:mozilla.420:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Masterstats : Cleaned with backup
:mozilla.459:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Liveperson : Cleaned with backup
:mozilla.460:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Liveperson : Cleaned with backup
:mozilla.461:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Liveperson : Cleaned with backup
:mozilla.465:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Onestat : Cleaned with backup
:mozilla.466:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\manucek3.default\cookies.txt -> Spyware.Cookie.Onestat : Cleaned with backup
:mozilla.74:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Tradedoubler : Cleaned with backup
:mozilla.75:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Tradedoubler : Cleaned with backup
:mozilla.76:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Tradedoubler : Cleaned with backup
:mozilla.77:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Tradedoubler : Cleaned with backup
:mozilla.84:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Atdmt : Cleaned with backup
:mozilla.110:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.111:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.112:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.113:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.114:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.115:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.116:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.130:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Adtech : Cleaned with backup
:mozilla.131:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Adtech : Cleaned with backup
:mozilla.148:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Burstnet : Cleaned with backup
:mozilla.149:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.150:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.151:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.152:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.153:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.156:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Com : Cleaned with backup
:mozilla.157:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Com : Cleaned with backup
:mozilla.158:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.189:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.216:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.217:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.218:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.219:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.228:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.229:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.230:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.231:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.232:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.233:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.248:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
:mozilla.268:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
:mozilla.269:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
:mozilla.273:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.274:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.275:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.276:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.277:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.289:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Masterstats : Cleaned with backup
:mozilla.290:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Sitestat : Cleaned with backup
:mozilla.291:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Sitestat : Cleaned with backup
:mozilla.322:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Googleadservices : Cleaned with backup
:mozilla.323:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Googleadservices : Cleaned with backup
:mozilla.324:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Googleadservices : Cleaned with backup
:mozilla.325:C:\Documents and Settings\Veikko Lehtola\Application Data\Mozilla\Firefox\Profiles\q3eahrf8.m\cookies.txt -> Spyware.Cookie.Googleadservices : Cleaned with backup
C:\Documents and Settings\Veikko Lehtola\Cookies\veikko lehtola@microsofteup.112.2o7[1].txt -> Spyware.Cookie.2o7 : Cleaned with backup
C:\Documents and Settings\Veikko Lehtola\Cookies\veikko lehtola@microsoftwga.112.2o7[1].txt -> Spyware.Cookie.2o7 : Cleaned with backup
C:\Documents and Settings\Veikko Lehtola\Cookies\veikko lehtola@server.iad.liveperson[1].txt -> Spyware.Cookie.Liveperson : Cleaned with backup
C:\Documents and Settings\Veikko Lehtola\Cookies\veikko lehtola@z1.adserver[1].txt -> Spyware.Cookie.Adserver : Cleaned with backup
C:\Documents and Settings\Veikko Lehtola\Omat tiedostot\Vastaanotetut tiedostot\MsgPlus-301.exe/sponsor.exe -> Downloader.Swizzor.ag : Error during cleaning
C:\Program Files\Uninstall My Web Search.dll -> Spyware.MyWebSearch : Cleaned with backup
C:\System Volume Information\_restore{66FCF0F1-26A6-4635-939D-AFC6B17B7CE3}\RP713\A0063038.exe -> Spyware.Lop : Cleaned with backup
C:\WINDOWS\Downloaded Program Files\gsda.dll -> Dialer.Generic : Cleaned with backup


::Report End





JA HJT-loki:

Logfile of HijackThis v1.99.1
Scan saved at 23:52:53, on 28.1.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\htpatch.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\AVPersonal\AVGNT.EXE
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Microsoft AntiSpyware\gcasServ.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\PROGRAM FILES\AVPERSONAL\AVGUARD.EXE
C:\Program Files\AVPersonal\AVWUPSRV.EXE
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
C:\Documents and Settings\Veikko Lehtola\Työpöytä\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.hfnnapukkczstn.net/hbDQhl//MvCFp97KaE342SROLg5CGjc1E/P...
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.surfeu.fi/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\apps\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O4 - HKLM\..\Run: [ATIPTA] C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [HTpatch] C:\WINDOWS\htpatch.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [AVGCtrl] "C:\Program Files\AVPersonal\AVGNT.EXE" /min
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: hp psc 1000 series.lnk = ?
O4 - Global Startup: hpoddt01.exe.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.surfeu.fi/
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by10fd.bay10.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {C2FCEF52-ACE9-11D3-BEBD-00105AA9B6AE} (Symantec RuFSI Registry Information Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: AntiVir Service (AntiVirService) - H+BEDV Datentechnik GmbH - C:\PROGRAM FILES\AVPERSONAL\AVGUARD.EXE
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AntiVir Update (AVWUpSrv) - H+BEDV Datentechnik GmbH, Germany - C:\Program Files\AVPersonal\AVWUPSRV.EXE
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
[ + lainaa]
aaxxeell
Senior Member
_ 		28. tammikuuta 2006 @ 21:26 _ Linkki tähän viestiin    Lähetä käyttäjälle yksityisviesti   
Tiukassa on tuo kaapattu kotisivusi.

Hae Lopremover -> http://www.joe-london.pwp.blueyonder.co.uk/lopremover.zip
Pura se ja aja tiedosto lopremover... anna suorittaa vaikka suojaohjelmat hälyttäisivät...

Fixaa sitten
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.hfnnapukkczstn.net/hbDQhl//MvCFp97KaE342SROLg5CGjc1E/P... joka boottauksella)
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe

Käynnistä -> suorita -> services.msc -> ok
Etsi Listalta Symantec:

-> Symantec Network Drivers Service

Tuplaklikkaa niitä, paina seis ja valitse käynnistymistavaksi "ei käytössä"

Lisäksi poista kansio:
C:\Program Files\Common Files\-->Symantec Shared<--\

Käynnistä kone uudelleen.

Palomuuriksi jos ilmaisista niin näistä voi valita:
- Zone Alarm http://www.zonelabs.com/store/content/catalog/products/sku_list_za.jsp
- Kerio Personal Firewall http://www.sunbelt-software.com/Kerio-Download.cfm
- Outpost Firewall http://www.agnitum.com/products/outpostfree/download.php
- Comodo Personal Firewall http://www.personalfirewall.comodo.com/
- Jetico Personal firewall http://www.jetico.com/

Lähetä lopuksi uusi Hjt loki.
[ + lainaa]

Viestiä on muokattu lähettämisen jälkeen. Viimeisin muokkaus 28. tammikuuta 2006 @ 21:27
JuKKaLe
Newbie
_ 		28. tammikuuta 2006 @ 23:03 _ Linkki tähän viestiin    Lähetä käyttäjälle yksityisviesti   
Kiitos tähänastisesta. Vieläkö löytyy saastaa?


Logfile of HijackThis v1.99.1
Scan saved at 4:04:22, on 29.1.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\htpatch.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\AVPersonal\AVGNT.EXE
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Microsoft AntiSpyware\gcasServ.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\PROGRAM FILES\AVPERSONAL\AVGUARD.EXE
C:\Program Files\AVPersonal\AVWUPSRV.EXE
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Documents and Settings\Veikko Lehtola\Työpöytä\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fi/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\apps\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O4 - HKLM\..\Run: [ATIPTA] C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [HTpatch] C:\WINDOWS\htpatch.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [AVGCtrl] "C:\Program Files\AVPersonal\AVGNT.EXE" /min
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: hp psc 1000 series.lnk = ?
O4 - Global Startup: hpoddt01.exe.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.surfeu.fi/
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by10fd.bay10.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {C2FCEF52-ACE9-11D3-BEBD-00105AA9B6AE} (Symantec RuFSI Registry Information Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: AntiVir Service (AntiVirService) - H+BEDV Datentechnik GmbH - C:\PROGRAM FILES\AVPERSONAL\AVGUARD.EXE
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AntiVir Update (AVWUpSrv) - H+BEDV Datentechnik GmbH, Germany - C:\Program Files\AVPersonal\AVWUPSRV.EXE
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
[ + lainaa]
aaxxeell
Senior Member
_ 		29. tammikuuta 2006 @ 05:40 _ Linkki tähän viestiin    Lähetä käyttäjälle yksityisviesti   
Nyt näyttää puhtaalta.

Jos kaipaat tohon ZoneAlarm palomuurin opasta niin yksi esimerkki ->
http://www.markusjansson.net/fza.html
[ + lainaa]
JuKKaLe
Newbie
_ 		29. tammikuuta 2006 @ 10:42 _ Linkki tähän viestiin    Lähetä käyttäjälle yksityisviesti   
Hyvä juttu. Tuhannet kiitokset!
[ + lainaa]
Mainos
_ 		__
 
_
aaxxeell
Senior Member
_ 		29. tammikuuta 2006 @ 11:35 _ Linkki tähän viestiin    Lähetä käyttäjälle yksityisviesti   
Ole hyvä vaan :)
[ + lainaa]
afterdawn.com > keskustelu > yleistä keskustelua tietokoneista > virukset ja haittaohjelmat > hjt-loki
 

Apua ongelmiin: AfterDawnin keskustelualueet | AfterDawnin Vastaukset
Uutiset: IT-alan uutiset | Uutisia puhelimista
Musiikkia: MP3Lizard.com
Tuotearviot: Laitevertailu | Vertaa puhelimia | Vertaa kännykkäliittymiä
Pelit: Pelitiedostot, pelidemot ja trailerit
Ohjelmat: download.fi | AfterDawnin ohjelma-alueet
International: AfterDawn in English | Software downloads | Free, legal MP3s | AfterDawn på svenska
RSS -syötteet: AfterDawnin uutiset | Uusimmat ohjelmapäivitykset | Keskustelualueiden viestit
Tietoja: Tietoa AfterDawn Oy:stä | Mainosta sivuillamme | Sivuston käyttöehdot ja tietoja yksityisyydensuojasta
Ota yhteyttä: Lähetä palautetta | Ota yhteyttä mainosmyyntiimme
 
  © 1999-2024 AfterDawn Oy