apua! HJT-logi, sis. ainakin trust cleanerin

Yksityisviestit

Luo uusi yksityisviesti

Kaikki uudet viestit

Ilman vastauksia olevat viestiketjut

Hae viestejä

keskiviikko 15.1.2025 / 21:30

Hae keskustelualueilta:

afterdawn.com > keskustelu > yleistä keskustelua tietokoneista > virukset ja haittaohjelmat - hijackthis -logit > apua! hjt-logi, sis. ainakin trust cleanerin

Aiheet

Keskustelualueet

Aloita uusi viestiketju

apua! HJT-logi, sis. ainakin trust cleanerin

Siirry:

Kirjoittaja

Viesti

sirH

Newbie

4. syyskuuta 2006 @ 09:54

Linkki tähän viestiin

Elikkäs aluksi täytyy myöntää et oon täys amatööri näitten tietokoneiden kanssa...
mutta koneelleni ilmestyi trust cleaner.

josta otin selvää googlettamalla.. jolloin tajusin ettei sillä mitään tee ja että se on haittaohjelma.

joten jos joku olisi niin ystävällinen ja voisi auttaa ja kertoa sen poistamisesta ja muutenkin jos joku olisi niin ystävällinen ja viitsisi tarkistaa tuon jonkun ihmeen HjT-logini... niin olisin todella kiitollinen.

Logfile of HijackThis v1.99.1
Scan saved at 13:25:14, on 4.9.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Norton Internet Security\ISSVC.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\HPQ\IAM\bin\asghost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\PROGRA~1\NORTON~3\NORTON~1\NPROTECT.EXE
C:\PROGRA~1\NORTON~3\NORTON~1\SPEEDD~1\NOPDB.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Save\Save.exe
C:\PROGRA~1\COMMON~1\PCSuite\Services\SERVIC~1.EXE
C:\Program Files\HPQ\SHARED\HPQWMI.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\HJT\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = C:\WINDOWS\local.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.hp.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = C:\WINDOWS\local.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: ChangerBHO Class - {1D4C7057-EAD2-44C6-AD18-9092905F28F1} - C:\WINDOWS\system32\apphelpv.dll
O2 - BHO: SpoofBHO Class - {385066e0-23f3-11db-a98b-0800200c9a66} - C:\WINDOWS\se_spoof.dll
O2 - BHO: WeeklyExecuter Class - {590FFB84-6A29-4797-9C0E-B15DF2C4CDCB} - C:\WINDOWS\inetloader.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Norton Internet Security - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: TrustIn Bar Activator Class - {da7ff3f8-08be-4cac-bc00-94d91c6ae7f4} - C:\Program Files\trustin bar\trustin.dll
O2 - BHO: HP Credential Manager for ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\HPQ\IAM\Bin\ItIeAddIN.dll
O2 - BHO: ContextualAds Class - {FE6C16C4-16AD-47B6-B250-26AD1829E49A} - C:\Program Files\TrustIn Contextual\trustincontext.dll
O3 - Toolbar: Norton Internet Security - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: TrustIn Bar - {a19ef336-01d4-48e6-926a-fe7e1c747aed} - C:\Program Files\trustin bar\trustin.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [PTHOSTTR] C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE /Start
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\HPQ\IAM\Bin\AsTsVcc.dll,RegisterModule
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [WatchDog] C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE -onlytray
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Norton SystemWorks] "C:\Program Files\Norton SystemWorks\cfgwiz.exe" /GUID {05858CFD-5CC4-4ceb-AAAF-CF00BF39736A} /MODE CfgWiz
O4 - HKCU\..\Run: [WhenUSave] "C:\Program Files\Save\Save.exe"
O4 - HKCU\..\Run: [Trust Cleaner] C:\Program Files\Trust Cleaner\TrustCleaner.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: DVD Check.lnk = C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredit...html?p=ZNfox000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.hp.com
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - AppInit_DLLs: ASAPHook
O20 - Winlogon Notify: OneCard - C:\Program Files\HPQ\IAM\Bin\AsWlnPkg.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: HP WMI Interface (hpqwmi) - Hewlett-Packard Development Company, L.P. - C:\Program Files\HPQ\SHARED\HPQWMI.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: ISSvc (ISSVC) - Symantec Corporation - C:\Program Files\Norton Internet Security\ISSVC.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\PROGRA~1\NORTON~3\NORTON~1\NPROTECT.EXE
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~3\NORTON~1\SPEEDD~1\NOPDB.EXE
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe

[ + lainaa]

kairis

Member

4. syyskuuta 2006 @ 10:26

Linkki tähän viestiin

Moi. Örkkejä löytyy, joten siivoillaan:
Mene Ohjauspaneeliin - > Lisää tai poista sovellus -> Poista seuraavat:
WhenUSave
Trust Cleaner

Seuraavaksi poistat seuraavat kansiot/tiedostot vaikka Oman tietokoneen kautta. (jos löytyy):
C:\Program Files\>>Save<<tämä
C:\Program Files\>>Trust Cleaner<<tämä
Tyhjennä roskakori.
Käynnistä kone uudelleen.(Tärkeää)

Lataa SmitfraudFix
http://siri.urz.free.fr/Fix/SmitfraudFix.zip
Pura sisältö (kansio nimeltä SmitfraudFix) työpöydällesi:

Avaa SmitfraudFix kansio ja tupla-klikkaa smitfraudfix.cmd
Valitse optio #1 - Search kirjoittamalla 1 ja painamalla "Enter"; tekstitiedosto avautuu, joka listaa tarttuneet tiedostot (jos olemassa).
Postita tämän tekstitiedoston sisältö viestiketjuusi uuden HjT-lokin kanssa.

[ + lainaa]

~kairis~

Viestiä on muokattu lähettämisen jälkeen. Viimeisin muokkaus 4. syyskuuta 2006 @ 10:45

sirH

Newbie

7. syyskuuta 2006 @ 05:16

Linkki tähän viestiin

Kiitos jo etukäteen avustasi!!!

SmitFraudFix v2.83

Scan done at 9:11:46,85, to 07.09.2006
Run from C:\Documents and Settings\Jarno\Ty?p?yt?\SmitfraudFix
OS: Microsoft Windows XP [versio 5.1.2600] - Windows_NT
Fix ran in normal mode

»»»»»»»»»»»»»»»»»»»»»»»» C:\

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS

C:\WINDOWS\inetloader.dll FOUND !
C:\WINDOWS\local.html FOUND !
C:\WINDOWS\onlineshopping.ico FOUND !
C:\WINDOWS\removeadware.ico FOUND !
C:\WINDOWS\se_spoof.dll FOUND !
C:\WINDOWS\sexpersonals.ico FOUND !
C:\WINDOWS\videoslots.ico FOUND !

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32

»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Jarno\Application Data

»»»»»»»»»»»»»»»»»»»»»»»» Start Menu

»»»»»»»»»»»»»»»»»»»»»»»»

»»»»»»»»»»»»»»»»»»»»»»»» Desktop

»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files

C:\Program Files\TrustIn Bar\ FOUND !
C:\Program Files\TrustIn Contextual\ FOUND !

»»»»»»»»»»»»»»»»»»»»»»»» Corrupted keys

»»»»»»»»»»»»»»»»»»»»»»»» Desktop Components

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="Nykyinen kotisivu"

»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, following keys are not inevitably infected!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
"{24E27EA9-FCF3-444F-BD80-20543BA5D946}"="Trustworking System Class"

[HKEY_CLASSES_ROOT\CLSID\{24E27EA9-FCF3-444F-BD80-20543BA5D946}\InProcServer32]
@="C:\DOCUME~1\Jarno\LOCALS~1\Temp\wschtm35.dll"

[HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{24E27EA9-FCF3-444F-BD80-20543BA5D946}\InProcServer32]
@="C:\DOCUME~1\Jarno\LOCALS~1\Temp\wschtm35.dll"

»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, following keys are not inevitably infected!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="ASAPHook"

»»»»»»»»»»»»»»»»»»»»»»»» Scanning wininet.dll infection

»»»»»»»»»»»»»»»»»»»»»»»» End

Ja uus HjT

Logfile of HijackThis v1.99.1
Scan saved at 9:15:41, on 7.9.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Norton Internet Security\ISSVC.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\PROGRA~1\NORTON~3\NORTON~1\NPROTECT.EXE
C:\PROGRA~1\NORTON~3\NORTON~1\SPEEDD~1\NOPDB.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\HPQ\IAM\bin\asghost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Messenger\msmsgs.exe
C:\PROGRA~1\COMMON~1\PCSuite\Services\SERVIC~1.EXE
C:\Program Files\HPQ\SHARED\HPQWMI.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\HJT\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = C:\WINDOWS\local.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.hp.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = C:\WINDOWS\local.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: ChangerBHO Class - {1D4C7057-EAD2-44C6-AD18-9092905F28F1} - C:\WINDOWS\system32\apphelpv.dll
O2 - BHO: SpoofBHO Class - {385066e0-23f3-11db-a98b-0800200c9a66} - C:\WINDOWS\se_spoof.dll
O2 - BHO: WeeklyExecuter Class - {590FFB84-6A29-4797-9C0E-B15DF2C4CDCB} - C:\WINDOWS\inetloader.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Norton Internet Security - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: TrustIn Bar Activator Class - {da7ff3f8-08be-4cac-bc00-94d91c6ae7f4} - C:\Program Files\trustin bar\trustin.dll
O2 - BHO: HP Credential Manager for ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\HPQ\IAM\Bin\ItIeAddIN.dll
O2 - BHO: ContextualAds Class - {FE6C16C4-16AD-47B6-B250-26AD1829E49A} - C:\Program Files\TrustIn Contextual\trustincontext.dll
O3 - Toolbar: Norton Internet Security - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: TrustIn Bar - {a19ef336-01d4-48e6-926a-fe7e1c747aed} - C:\Program Files\trustin bar\trustin.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [PTHOSTTR] C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE /Start
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\HPQ\IAM\Bin\AsTsVcc.dll,RegisterModule
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [WatchDog] C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE -onlytray
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Norton SystemWorks] "C:\Program Files\Norton SystemWorks\cfgwiz.exe" /GUID {05858CFD-5CC4-4ceb-AAAF-CF00BF39736A} /MODE CfgWiz
O4 - HKCU\..\Run: [Trust Cleaner] C:\Program Files\Trust Cleaner\TrustCleaner.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: DVD Check.lnk = C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredit...html?p=ZNfox000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.hp.com
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - AppInit_DLLs: ASAPHook
O20 - Winlogon Notify: OneCard - C:\Program Files\HPQ\IAM\Bin\AsWlnPkg.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: HP WMI Interface (hpqwmi) - Hewlett-Packard Development Company, L.P. - C:\Program Files\HPQ\SHARED\HPQWMI.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: ISSvc (ISSVC) - Symantec Corporation - C:\Program Files\Norton Internet Security\ISSVC.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\PROGRA~1\NORTON~3\NORTON~1\NPROTECT.EXE
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~3\NORTON~1\SPEEDD~1\NOPDB.EXE
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe

[ + lainaa]

kairis

Member

7. syyskuuta 2006 @ 06:04

Linkki tähän viestiin

Moi. jatketaas siivousta:

Printtaa ohjeet ulos.
Käynnistä koneesi vikasietotilaan ja valitse tavallinen käyttäjätilisi.
Kun vikasietotilassa, avaa SmitfraudFix kansio ja tupla-klikkaa smitfraudfix.cmd
Valitse optio #2 - Clean kirjoittamalla 2 ja painamalla "Enter" poistaaksesi tarttuneet tiedostot.

Sinulta kysytään: "Registry cleaning - Do you want to clean the registry ?"; vastaa "Yes" kirjoittamalla Y ja paina "Enter" poistaaksesi työpöydän taustakuvan ja puhdistaaksesi tarttuneet rekisteriavaimet.
Työkalu tarkistaa jos wininet.dll on tarttunut. Sinua saatetaan pyytää korvaamaan tarttunut .dll (jos löytyy); vastaa "Yes" kirjoittamalla Y ja painamalla "Enter".
Työkalun saattaa tarvita käynnistää kone uudelleen; jos ei tee niin, käynnistä normaaliin Windowsiin.

Tekstitiedosto ilmestyy, puhdistusprosessin jäljiltä; kopioi & liitä tämän raportin tulokset vastaukseesi.
Raportti löytyy paikalliselta levyltäsi, useimmiten C:\rapport.txt.
Varoitus : Ajamalla optio 2:n EI-tarttuneessa tietokoneessa, poistaa ohjelma sinun työpöytäsi taustakuvan.

Lähetä tuo Smitfraudfixin raportti ja uusi HjT-loki.

[ + lainaa]

~kairis~

sirH

Newbie

7. syyskuuta 2006 @ 06:47

Linkki tähän viestiin

SmitFraudFix v2.83

Scan done at 10:38:45,21, to 07.09.2006
Run from C:\Documents and Settings\Jarno\Ty?p?yt?\SmitfraudFix
OS: Microsoft Windows XP [versio 5.1.2600] - Windows_NT
Fix ran in safe mode

»»»»»»»»»»»»»»»»»»»»»»»» Before SmitFraudFix
!!!Attention, following keys are not inevitably infected!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
"{24E27EA9-FCF3-444F-BD80-20543BA5D946}"="Trustworking System Class"

[HKEY_CLASSES_ROOT\CLSID\{24E27EA9-FCF3-444F-BD80-20543BA5D946}\InProcServer32]
@="C:\DOCUME~1\Jarno\LOCALS~1\Temp\wschtm35.dll"

[HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{24E27EA9-FCF3-444F-BD80-20543BA5D946}\InProcServer32]
@="C:\DOCUME~1\Jarno\LOCALS~1\Temp\wschtm35.dll"

»»»»»»»»»»»»»»»»»»»»»»»» Killing process

»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

GenericRenosFix by S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» Deleting infected files

C:\WINDOWS\inetloader.dll Deleted
C:\WINDOWS\local.html Deleted
C:\WINDOWS\onlineshopping.ico Deleted
C:\WINDOWS\removeadware.ico Deleted
C:\WINDOWS\se_spoof.dll Deleted
C:\WINDOWS\sexpersonals.ico Deleted
C:\WINDOWS\videoslots.ico Deleted
C:\Program Files\TrustIn Bar\ Deleted
C:\Program Files\TrustIn Contextual\ Deleted

»»»»»»»»»»»»»»»»»»»»»»»» Deleting Temp Files

C:\DOCUME~1\Jarno\LOCALS~1\Temp\wschtm35.dll Deleted

»»»»»»»»»»»»»»»»»»»»»»»» Registry Cleaning

Registry Cleaning done.

»»»»»»»»»»»»»»»»»»»»»»»» After SmitFraudFix
!!!Attention, following keys are not inevitably infected!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» End

ja HjT

Logfile of HijackThis v1.99.1
Scan saved at 10:47:23, on 7.9.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Norton Internet Security\ISSVC.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\HPQ\IAM\bin\asghost.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE
C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Messenger\msmsgs.exe
C:\PROGRA~1\COMMON~1\PCSuite\Services\SERVIC~1.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\PROGRA~1\NORTON~3\NORTON~1\NPROTECT.EXE
C:\PROGRA~1\NORTON~3\NORTON~1\SPEEDD~1\NOPDB.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\HPQ\SHARED\HPQWMI.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\HJT\HijackThis.exe
C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: ChangerBHO Class - {1D4C7057-EAD2-44C6-AD18-9092905F28F1} - C:\WINDOWS\system32\apphelpv.dll
O2 - BHO: SpoofBHO Class - {385066e0-23f3-11db-a98b-0800200c9a66} - C:\WINDOWS\se_spoof.dll (file missing)
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Norton Internet Security - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: HP Credential Manager for ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\HPQ\IAM\Bin\ItIeAddIN.dll
O3 - Toolbar: Norton Internet Security - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [PTHOSTTR] C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE /Start
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\HPQ\IAM\Bin\AsTsVcc.dll,RegisterModule
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [WatchDog] C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE -onlytray
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Norton SystemWorks] "C:\Program Files\Norton SystemWorks\cfgwiz.exe" /GUID {05858CFD-5CC4-4ceb-AAAF-CF00BF39736A} /MODE CfgWiz
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: DVD Check.lnk = C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredit...html?p=ZNfox000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.hp.com
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - AppInit_DLLs: ASAPHook
O20 - Winlogon Notify: OneCard - C:\Program Files\HPQ\IAM\Bin\AsWlnPkg.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: HP WMI Interface (hpqwmi) - Hewlett-Packard Development Company, L.P. - C:\Program Files\HPQ\SHARED\HPQWMI.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: ISSvc (ISSVC) - Symantec Corporation - C:\Program Files\Norton Internet Security\ISSVC.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\PROGRA~1\NORTON~3\NORTON~1\NPROTECT.EXE
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~3\NORTON~1\SPEEDD~1\NOPDB.EXE
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe

[ + lainaa]

kairis

Member

7. syyskuuta 2006 @ 07:00

Linkki tähän viestiin

Moro.Näyttää hyvältä.
Tehdääs nyt näin:
"Sulje selaimet ja muut ohjelmat, käynnistä HijackThis, klikkaa? do a system scan only ?.

Merkkaa nämä rivit ja paina Fix checked :
O2 - BHO: SpoofBHO Class - {385066e0-23f3-11db-a98b-0800200c9a66} - C:\WINDOWS\se_spoof.dll (file missing)
O2 - BHO: ChangerBHO Class - {1D4C7057-EAD2-44C6-AD18-9092905F28F1} - C:\WINDOWS\system32\apphelpv.dll

"Laita piilotiedostot näkyviin. Ohje:
http://keskustelu.afterdawn.com/thread_view.cfm/248944"
"Käynnistä vikasietotilaan. Ohje:
http://www.virustorjunta.net/modules.php...aisuun#37"
Seuraavaksi poistat seuraavat kansiot/tiedostot vaikka Oman tietokoneen kautta. (jos löytyy):
C:\WINDOWS\system32\apphelpv.dll
C:\WINDOWS\se_spoof.dll
Tyhjennä roskakori.

Laita piilotiedostot takaisin piiloon (Teet niin kuin aikaisemmin mutta valitset "Älä näytä piilotettuja tiedostoja ja kansioita")
Käynnistä kone uudelleen.
Lähetä uusi HjT-loki.

[ + lainaa]

~kairis~

sirH

Newbie

7. syyskuuta 2006 @ 07:40

Linkki tähän viestiin

TIedostoja

C:\WINDOWS\system32\apphelpv.dll
C:\WINDOWS\se_spoof.dll

EI LÖYTYNYT... Ainoastaan
C:\WINDOWS\system32\apphelp.dll (en poistanu)

Logfile of HijackThis v1.99.1
Scan saved at 11:37:20, on 7.9.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Norton Internet Security\ISSVC.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\HPQ\IAM\bin\asghost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\PROGRA~1\NORTON~3\NORTON~1\NPROTECT.EXE
C:\PROGRA~1\NORTON~3\NORTON~1\SPEEDD~1\NOPDB.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE
C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Messenger\msmsgs.exe
C:\PROGRA~1\COMMON~1\PCSuite\Services\SERVIC~1.EXE
C:\Program Files\HPQ\SHARED\HPQWMI.exe
C:\WINDOWS\system32\wuauclt.exe
C:\HJT\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Norton Internet Security - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: HP Credential Manager for ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\HPQ\IAM\Bin\ItIeAddIN.dll
O3 - Toolbar: Norton Internet Security - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [PTHOSTTR] C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE /Start
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\HPQ\IAM\Bin\AsTsVcc.dll,RegisterModule
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [WatchDog] C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE -onlytray
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Norton SystemWorks] "C:\Program Files\Norton SystemWorks\cfgwiz.exe" /GUID {05858CFD-5CC4-4ceb-AAAF-CF00BF39736A} /MODE CfgWiz
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: DVD Check.lnk = C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredit...html?p=ZNfox000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.hp.com
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - AppInit_DLLs: ASAPHook
O20 - Winlogon Notify: OneCard - C:\Program Files\HPQ\IAM\Bin\AsWlnPkg.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: HP WMI Interface (hpqwmi) - Hewlett-Packard Development Company, L.P. - C:\Program Files\HPQ\SHARED\HPQWMI.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: ISSvc (ISSVC) - Symantec Corporation - C:\Program Files\Norton Internet Security\ISSVC.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\PROGRA~1\NORTON~3\NORTON~1\NPROTECT.EXE
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~3\NORTON~1\SPEEDD~1\NOPDB.EXE
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe

[ + lainaa]

kairis

Member

7. syyskuuta 2006 @ 08:21

Linkki tähän viestiin

Fixaa vielä tämä:
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredit...html?p=ZNfox000

Poista vaan tämä, jos löytyy:
C:\WINDOWS\system32\apphelp.dll<<tuo

Sitten javan päivitys:
Javan päivitys ja välimuistin tyhjennys:

Poista entinen Java (J2SE) Lisää/Poista sovelluksista, ja hae manuaalisesti täältä uusin:
http://java.sun.com/javase/downloads/index.jsp
Rullaa alas kohteeseen Java Runtime Environment (JRE) 5.0 Update 8
Käynnistyksen jälkeen, mene takaisin Ohjauspaneeliin ja siitä Java asetuksiisi.
Temporary Internet Files -osion alla, klikkaa Delete Files nappia.
Varmista että kaikki kolme valintaa ovat rastitettuja:
Downloaded Applets
Downloaded Applications
Other Files
Klikkaa OK "Delete Temporary Internet Files" -ikkunassasi.
Huomaa: Tämä poistaa kaikki ladatut sovellukset ja appletit VÄLIMUISTISTA.
Klikkaa OK jättääksesi Java asetusikkunasi.

"-> Lataa ja asenna Ewido
Käynnistä Ewido Anti-Spyware
Klikkaa Update kuvaketta ikkunan ylälaidassa
Klikkaa Start update nappia
Odota päivitysten latautumista ja asentumista
[*]Kun päivitykset on ladattu, klikkaa ""Scanner"" kuvaketta ikkunan ylälaidassa. Valitse sitten ""Settings"" välilehti.
[*]Kun ""Settings"" valikko on auennut, klikkaa ""Recommended actions"" ja sitten valitse ""Quarantine"".
[*]Sitten ""Reports"" valikon alta:
[*]Laita täppi kohtaan ""Automatically generate report after every scan""
[*]Ota täppi pois kohdasta""Only if threats were found""
[*]Sulje ohjelma, ÄLÄ skannaa vielä. "
Käynnistä koneesi vikasietotilaan, http://www.virustorjunta.net/modules.php...n+ratkaisuun#37
HUOM! Älä käytä muita ohjelmia Ewidon skannauksen aikana, tämä saattaa häiritä skannausta.
[*]Kun olet vikasietotilassa, käynnistä Ewido Anti-Spyware.
[*]Klikkaa "Scanner" kuvaketta ikkunan ylälaidassa ja valitse "Scan" välilehti. Sitten klikkaa "Complete System Scan".
[*]Ewido aloittaa nyt tietokoneen skannaamisen, ole kärsivällinen sillä skannaus vie aikaa.
Kun skannaus on valmis: TÄRKEÄÄ : Älä klikkaa "Save Scan Report" ennen kuin klikkaat "Apply all Actions" [*]Varmistu, että Set all elements to: näyttää Quarantine (1), jos ei, klikkaa linkkiä ja valitse Quarantine popup-valikosta.
[*]Sinulta kysytään mitä tehdä jos infektioita löytyi, valitse silloin "Apply all actions" http://img86.imageshack.us/img86/4586/scan1nx.jpg
[*]Sitten klikkaa ""Reports"" kuvaketta ohjelma yläosasta.
[*]Klikkaa ""Save report as"" painiketta ikkunan vasemmassa alalaidassa ja tallenna raportti työpöydälle. Sulje ohjelma."
[*]Sulje ohjelma, käynnistä kone normaalisti ja lähetä Ewidon raportti viestikejuusi.

Katsotaas varuilta vielä tällainen juttu:
Uudelleennimeä HijackThis.exe -> scanner.exe, käynnistä kone uudelleen ja lähetä uusi HijackThis-loki.

[ + lainaa]

~kairis~

Viestiä on muokattu lähettämisen jälkeen. Viimeisin muokkaus 7. syyskuuta 2006 @ 08:23

sirH

Newbie

8. syyskuuta 2006 @ 08:11

Linkki tähän viestiin

kaikki tehty kuten käsketty...

---------------------------------------------------------
ewido anti-spyware - Scan Report
---------------------------------------------------------

+ Created at: 11:41:08 8.9.2006

+ Scan result:

C:\System Volume Information\_restore{80C5CEDA-2C20-4CDE-85C6-8B452C14D7B0}\RP164\A0039402.dll -> Adware.Azesearch : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{80C5CEDA-2C20-4CDE-85C6-8B452C14D7B0}\RP164\A0039451.EXE -> Adware.Azesearch : Cleaned with backup (quarantined).
C:\Program Files\Common Files\Real\WeatherBug\MiniBugTransporter.dll -> Adware.Minibug : Cleaned with backup (quarantined).
HKU\S-1-5-21-1865893602-2900642424-952316220-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DA7FF3F8-08BE-4CAC-BC00-94D91C6AE7F4} -> Adware.MWSearch : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{80C5CEDA-2C20-4CDE-85C6-8B452C14D7B0}\RP157\A0038332.exe -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{80C5CEDA-2C20-4CDE-85C6-8B452C14D7B0}\RP160\A0038452.exe -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{80C5CEDA-2C20-4CDE-85C6-8B452C14D7B0}\RP160\A0038454.dll -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{80C5CEDA-2C20-4CDE-85C6-8B452C14D7B0}\RP166\A0039530.dll -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{80C5CEDA-2C20-4CDE-85C6-8B452C14D7B0}\RP166\A0039531.EXE -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{80C5CEDA-2C20-4CDE-85C6-8B452C14D7B0}\RP166\A0039532.exe -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{80C5CEDA-2C20-4CDE-85C6-8B452C14D7B0}\RP166\A0039535.EXE -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{80C5CEDA-2C20-4CDE-85C6-8B452C14D7B0}\RP166\A0039536.EXE/Save.exe -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{80C5CEDA-2C20-4CDE-85C6-8B452C14D7B0}\RP166\A0039536.EXE/SaveUninst.exe -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{80C5CEDA-2C20-4CDE-85C6-8B452C14D7B0}\RP166\A0039537.exe -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{80C5CEDA-2C20-4CDE-85C6-8B452C14D7B0}\RP166\A0039538.EXE -> Adware.SaveNow : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\WUSN.1 -> Adware.SaveNow : Cleaned with backup (quarantined).
HKU\S-1-5-21-1865893602-2900642424-952316220-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{590FFB84-6A29-4797-9C0E-B15DF2C4CDCB} -> Adware.TrustCleaner : Cleaned with backup (quarantined).
HKU\S-1-5-21-1865893602-2900642424-952316220-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A19EF336-01D4-48E6-926A-FE7E1C747AED} -> Adware.TrustCleaner : Cleaned with backup (quarantined).
HKU\S-1-5-21-1865893602-2900642424-952316220-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FE6C16C4-16AD-47B6-B250-26AD1829E49A} -> Adware.TrustCleaner : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{80C5CEDA-2C20-4CDE-85C6-8B452C14D7B0}\RP164\A0039341.exe -> Downloader.Small.ddp : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{80C5CEDA-2C20-4CDE-85C6-8B452C14D7B0}\RP164\A0039396.dll -> Downloader.Small.ddp : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{80C5CEDA-2C20-4CDE-85C6-8B452C14D7B0}\RP164\A0039399.dll -> Downloader.Small.ddp : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{80C5CEDA-2C20-4CDE-85C6-8B452C14D7B0}\RP164\A0039403.dll -> Downloader.Small.ddp : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{80C5CEDA-2C20-4CDE-85C6-8B452C14D7B0}\RP164\A0039452.exe -> Downloader.Small.ddp : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{80C5CEDA-2C20-4CDE-85C6-8B452C14D7B0}\RP164\A0039453.exe -> Downloader.Small.ddp : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{80C5CEDA-2C20-4CDE-85C6-8B452C14D7B0}\RP164\A0039454.exe -> Downloader.Small.ddp : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{80C5CEDA-2C20-4CDE-85C6-8B452C14D7B0}\RP164\A0039351.exe -> Downloader.WarSpy.d : Cleaned with backup (quarantined).
C:\Program Files\Winamp\ijl15.dll -> Not-A-Virus.Monitor.Win32.HiddenRecorder.a : Cleaned with backup (quarantined).
:mozilla.106:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.106:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.106:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.106:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.106:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.106:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.107:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.107:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.109:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.110:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.110:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.110:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.110:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.11:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.12:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.13:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.13:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.13:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.14:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.14:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.15:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.15:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.18:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.18:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.19:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.19:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.20:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.20:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.20:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.21:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.21:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.21:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.21:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.21:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.22:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.22:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.22:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.22:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.22:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.23:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.23:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.23:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.23:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.25:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.25:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.25:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.25:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.25:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.25:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.30:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.30:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.32:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.33:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.33:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.33:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.33:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.6:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.6:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.7:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.7:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.8:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.8:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.8:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.9:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.9:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
C:\Documents and Settings\Jani\Cookies\jani@2o7[1].txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.26:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.26:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.26:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.26:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.26:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.26:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.28:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.28:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.28:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.28:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.28:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.28:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.29:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.29:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.29:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.29:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.29:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.29:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.31:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.31:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.33:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.33:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.33:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.34:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.34:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.34:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.34:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.34:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.34:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.35:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.36:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.36:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.36:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.36:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.36:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.37:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.37:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.37:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.37:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.20:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.20:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.20:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.20:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.20:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.20:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.21:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.21:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.21:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.21:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.21:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.21:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.25:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.25:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.26:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.26:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.27:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.28:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.28:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.28:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.28:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.28:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.29:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.29:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.29:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.29:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.Adtech : Cleaned with backup (quarantined).
:mozilla.45:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.45:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.45:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.45:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.45:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.45:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.47:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.47:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.47:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.47:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.47:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.47:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.48:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.48:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.48:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.48:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.48:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.48:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.50:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.50:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.52:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.52:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.52:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.53:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.53:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.53:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.53:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.53:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.53:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.54:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.55:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.55:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.55:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.55:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.55:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.56:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.56:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.56:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.56:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.Burstnet : Cleaned with backup (quarantined).
:mozilla.46:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.46:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.46:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.46:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.46:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.46:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.51:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.51:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.51:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.51:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.51:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.51:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.51:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.51:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.52:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.52:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.52:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.52:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.52:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.52:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.53:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.54:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.54:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.54:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.54:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.56:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.56:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.57:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.57:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.58:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.59:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.59:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.59:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.59:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.59:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.60:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.60:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.60:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.60:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.114:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.Clickbank : Cleaned with backup (quarantined).
:mozilla.114:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.Clickbank : Cleaned with backup (quarantined).
:mozilla.114:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.Clickbank : Cleaned with backup (quarantined).
:mozilla.114:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.Clickbank : Cleaned with backup (quarantined).
:mozilla.114:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.Clickbank : Cleaned with backup (quarantined).
:mozilla.114:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.Clickbank : Cleaned with backup (quarantined).
:mozilla.115:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.Clickbank : Cleaned with backup (quarantined).
:mozilla.115:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.Clickbank : Cleaned with backup (quarantined).
:mozilla.117:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.Clickbank : Cleaned with backup (quarantined).
:mozilla.118:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.Clickbank : Cleaned with backup (quarantined).
:mozilla.118:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.Clickbank : Cleaned with backup (quarantined).
:mozilla.118:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.Clickbank : Cleaned with backup (quarantined).
:mozilla.118:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.Clickbank : Cleaned with backup (quarantined).
C:\Documents and Settings\Jani\Cookies\jani@com[2].txt -> TrackingCookie.Com : Cleaned with backup (quarantined).
:mozilla.16:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.Doubleclick : Cleaned with backup (quarantined).
:mozilla.16:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.Doubleclick : Cleaned with backup (quarantined).
:mozilla.16:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.Doubleclick : Cleaned with backup (quarantined).
:mozilla.16:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.Doubleclick : Cleaned with backup (quarantined).
:mozilla.16:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.Doubleclick : Cleaned with backup (quarantined).
:mozilla.16:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.Doubleclick : Cleaned with backup (quarantined).
:mozilla.21:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.Doubleclick : Cleaned with backup (quarantined).
:mozilla.21:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.Doubleclick : Cleaned with backup (quarantined).
:mozilla.23:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.Doubleclick : Cleaned with backup (quarantined).
:mozilla.24:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned with backup (quarantined).
:mozilla.24:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.Doubleclick : Cleaned with backup (quarantined).
:mozilla.24:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.Doubleclick : Cleaned with backup (quarantined).
:mozilla.24:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.Doubleclick : Cleaned with backup (quarantined).
C:\Documents and Settings\Jarno\Cookies\jarno@doubleclick[1].txt -> TrackingCookie.Doubleclick : Cleaned with backup (quarantined).
:mozilla.49:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.49:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.49:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.49:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.49:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.49:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.50:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.50:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.50:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.50:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.50:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.50:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.54:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.54:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.55:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.55:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.56:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.57:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.57:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.57:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.57:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.57:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.58:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.58:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.58:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.58:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.115:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.Googleadservices : Cleaned with backup (quarantined).
:mozilla.115:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.Googleadservices : Cleaned with backup (quarantined).
:mozilla.115:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.Googleadservices : Cleaned with backup (quarantined).
:mozilla.115:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.Googleadservices : Cleaned with backup (quarantined).
:mozilla.115:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.Googleadservices : Cleaned with backup (quarantined).
:mozilla.115:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.Googleadservices : Cleaned with backup (quarantined).
:mozilla.116:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.Googleadservices : Cleaned with backup (quarantined).
:mozilla.116:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.Googleadservices : Cleaned with backup (quarantined).
:mozilla.118:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.Googleadservices : Cleaned with backup (quarantined).
:mozilla.119:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup (quarantined).
:mozilla.119:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.Googleadservices : Cleaned with backup (quarantined).
:mozilla.119:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.Googleadservices : Cleaned with backup (quarantined).
:mozilla.119:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.Googleadservices : Cleaned with backup (quarantined).
:mozilla.78:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.Revenue : Cleaned with backup (quarantined).
:mozilla.78:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.Revenue : Cleaned with backup (quarantined).
:mozilla.78:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.Revenue : Cleaned with backup (quarantined).
:mozilla.78:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.Revenue : Cleaned with backup (quarantined).
:mozilla.78:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.Revenue : Cleaned with backup (quarantined).
:mozilla.78:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.Revenue : Cleaned with backup (quarantined).
:mozilla.79:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.Revenue : Cleaned with backup (quarantined).
:mozilla.79:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.Revenue : Cleaned with backup (quarantined).
:mozilla.81:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.Revenue : Cleaned with backup (quarantined).
:mozilla.82:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.Revenue : Cleaned with backup (quarantined).
:mozilla.82:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.Revenue : Cleaned with backup (quarantined).
:mozilla.82:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.Revenue : Cleaned with backup (quarantined).
:mozilla.82:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.Revenue : Cleaned with backup (quarantined).
:mozilla.64:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.64:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.64:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.64:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.64:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.64:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.65:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.65:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.65:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.65:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.65:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.65:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.65:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.65:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.66:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.66:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.67:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.68:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.68:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.68:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.68:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.68:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.69:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.69:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.69:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.69:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.Sexcounter : Cleaned with backup (quarantined).
:mozilla.66:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.Sextracker : Cleaned with backup (quarantined).
:mozilla.66:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.Sextracker : Cleaned with backup (quarantined).
:mozilla.66:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.Sextracker : Cleaned with backup (quarantined).
:mozilla.66:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.Sextracker : Cleaned with backup (quarantined).
:mozilla.66:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.Sextracker : Cleaned with backup (quarantined).
:mozilla.66:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.Sextracker : Cleaned with backup (quarantined).
:mozilla.67:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.Sextracker : Cleaned with backup (quarantined).
:mozilla.67:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.Sextracker : Cleaned with backup (quarantined).
:mozilla.67:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.Sextracker : Cleaned with backup (quarantined).
:mozilla.67:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.Sextracker : Cleaned with backup (quarantined).
:mozilla.67:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.Sextracker : Cleaned with backup (quarantined).
:mozilla.67:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.Sextracker : Cleaned with backup (quarantined).
:mozilla.67:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.Sextracker : Cleaned with backup (quarantined).
:mozilla.67:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.Sextracker : Cleaned with backup (quarantined).
:mozilla.68:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.Sextracker : Cleaned with backup (quarantined).
:mozilla.68:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.Sextracker : Cleaned with backup (quarantined).
:mozilla.69:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.Sextracker : Cleaned with backup (quarantined).
:mozilla.70:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.Sextracker : Cleaned with backup (quarantined).
:mozilla.70:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.Sextracker : Cleaned with backup (quarantined).
:mozilla.70:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.Sextracker : Cleaned with backup (quarantined).
:mozilla.70:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.Sextracker : Cleaned with backup (quarantined).
:mozilla.70:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.Sextracker : Cleaned with backup (quarantined).
:mozilla.71:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.Sextracker : Cleaned with backup (quarantined).
:mozilla.71:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.Sextracker : Cleaned with backup (quarantined).
:mozilla.71:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.Sextracker : Cleaned with backup (quarantined).
:mozilla.71:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.Sextracker : Cleaned with backup (quarantined).
:mozilla.18:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.18:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.18:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.18:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.18:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.18:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.19:C:\RECYCLER\NPROTECT\00124548.MOZ -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.19:C:\RECYCLER\NPROTECT\00124552.MOZ -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.19:C:\RECYCLER\NPROTECT\00124560.MOZ -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.19:C:\RECYCLER\NPROTECT\00124800.MOZ -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.19:C:\RECYCLER\NPROTECT\00124810.MOZ -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.19:C:\RECYCLER\NPROTECT\00124820.MOZ -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.23:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.23:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.24:C:\RECYCLER\NPROTECT\00124823.MOZ -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.24:C:\RECYCLER\NPROTECT\00124826.MOZ -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.25:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.26:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.26:C:\RECYCLER\NPROTECT\00124829.MOZ -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.26:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.26:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.26:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.27:C:\Documents and Settings\Jarno\Application Data\Mozilla\Firefox\Profiles\zvie3693.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.27:C:\RECYCLER\NPROTECT\00124830.MOZ -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.27:C:\RECYCLER\NPROTECT\00124834.MOZ -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).
:mozilla.27:C:\RECYCLER\NPROTECT\00124851.MOZ -> TrackingCookie.Tradedoubler : Cleaned with backup (quarantined).

::Report end

Logfile of HijackThis v1.99.1
Scan saved at 12:08:33, on 8.9.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Norton Internet Security\ISSVC.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\HPQ\IAM\bin\asghost.exe
C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\Program Files\Messenger\msmsgs.exe
C:\PROGRA~1\COMMON~1\PCSuite\Services\SERVIC~1.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\PROGRA~1\NORTON~3\NORTON~1\NPROTECT.EXE
C:\PROGRA~1\NORTON~3\NORTON~1\SPEEDD~1\NOPDB.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\HPQ\SHARED\HPQWMI.exe
C:\HJT\scanner.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
O2 - BHO: Norton Internet Security - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: HP Credential Manager for ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - C:\Program Files\HPQ\IAM\Bin\ItIeAddIN.dll
O3 - Toolbar: Norton Internet Security - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [PTHOSTTR] C:\Program Files\HPQ\HP ProtectTools Security Manager\PTHOSTTR.EXE /Start
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe C:\PROGRA~1\HPQ\IAM\Bin\AsTsVcc.dll,RegisterModule
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [WatchDog] C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE -onlytray
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe"
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Norton SystemWorks] "C:\Program Files\Norton SystemWorks\cfgwiz.exe" /GUID {05858CFD-5CC4-4ceb-AAAF-CF00BF39736A} /MODE CfgWiz
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: DVD Check.lnk = C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_08\bin\npjpi150_08.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_08\bin\npjpi150_08.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.hp.com
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - AppInit_DLLs: ASAPHook
O20 - Winlogon Notify: OneCard - C:\Program Files\HPQ\IAM\Bin\AsWlnPkg.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: HP WMI Interface (hpqwmi) - Hewlett-Packard Development Company, L.P. - C:\Program Files\HPQ\SHARED\HPQWMI.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: ISSvc (ISSVC) - Symantec Corporation - C:\Program Files\Norton Internet Security\ISSVC.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\PROGRA~1\NORTON~3\NORTON~1\NPROTECT.EXE
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~3\NORTON~1\SPEEDD~1\NOPDB.EXE
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe

[ + lainaa]

kairis

Member

8. syyskuuta 2006 @ 08:47

Linkki tähän viestiin

Moro.Nyt koneesi on puhdas.
Tyhjennetään järjestelmän palautus:
"-> Tyhjennä järjestelmänpalautus ->
http://members.surfeu.fi/laivamaa/jarjestelmanpalautus.htm
Tämä puhdistaa palautuskansion mahdollisista haittaohjelmajäännöksistä. "

-> Käytä CCleaneria
http://www.ccleaner.com/downloadbuilds.asp
Lataa ja asenna CCleaner. Puhdista rekisteri ja väliaikaistiedostot ohjelmalla säännöllisesti.
* Suosittelen, että valitsette lataussivulta vaihtoehdon CCleaner v1.32.345 - Basic, joka EI sisällä Yahoo toolbaria !
* jos haluatte käyttää sitä niin muuttakaa seuraava asetus:

Valinnat --> Lisäasetukset --> Ota ruksi pois kohdasta Poista vain yli 48 tuntia vanhat tilapäistiedostot.
Opas CCleanerin käyttöön löytyy:
http://72.14.221.104/search?q=cache:sPQG...lient=firefox-a
Saatavilla myös suomeksi!

-> Asenna SpywareBlaster -> SpywareBlaster
SpywareBlaster estää haittaohjelmia asentumasta koneellesi. Ei kuluta muistia!
Opas saatavilla suomeksi! Nimimerkki Ad-Awaren http://koti.mbnet.fi/pattaya1/spywareblaster.htm]opas

[ + lainaa]

~kairis~

Viestiä on muokattu lähettämisen jälkeen. Viimeisin muokkaus 8. syyskuuta 2006 @ 08:48

Mainos

sirH

Newbie

12. syyskuuta 2006 @ 11:40

Linkki tähän viestiin

Kiitoksia erittäin paljon!!!

[ + lainaa]

Viestiketju on suljettu. Uusien viestien lähettäminen ei ole mahdollista.

Aloita uusi viestiketju

afterdawn.com > keskustelu > yleistä keskustelua tietokoneista > virukset ja haittaohjelmat - hijackthis -logit > apua! hjt-logi, sis. ainakin trust cleanerin


		Käyttäjä	Salasana

		Puuttuuko tunnus? Liity jäseneksi nyt!. Salasana hukassa? Klikkaa tästä.