kone jökissä ja viruksiakin

Stuuk · Jan 4, 2010

svchost vie n. 50% suoritinkyvystä koko ajan ja F-secure ei toimi ja Windows defender ilmoittaa vähän väliä viruksesta. Tuossa HJT-loki ja F-securen online skannerin-loki jos kykenisi joku avittamaan.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 06:05:44, on 31.12.2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\Drivers\bwcsrv.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
C:\Program Files\F-Secure\BackWeb\7681197\program\fsbwsys.exe
C:\Program Files\F-Secure\Anti-Virus\FSGK32.EXE
C:\Program Files\F-Secure\Anti-Virus\fssm32.exe
C:\Program Files\F-Secure\Common\FSMA32.EXE
C:\Program Files\F-Secure\Common\FSMB32.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Program Files\F-Secure\Common\FCH32.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\F-Secure\Common\FAMEH32.EXE
C:\Program Files\F-Secure\Anti-Virus\fsqh.exe
C:\Program Files\F-Secure\Anti-Virus\fsrw.exe
C:\Program Files\F-Secure\Common\FNRB32.EXE
C:\Program Files\F-Secure\Common\FIH32.EXE
C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\COMPAQ\Easy Access Button Support\StartEAK.exe
C:\WINDOWS\System32\LVCOMSX.EXE
C:\Program Files\F-Secure\Common\FSM32.EXE
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Compaq\Easy Access Button Support\CPQEADM.EXE
C:\Compaq\EAKDRV\EAUSBKBD.EXE
C:\PROGRA~1\Compaq\EASYAC~1\BttnServ.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Profiler\lwemon.exe
C:\Program Files\DNA\btdna.exe
C:\Program Files\F-Secure\BackWeb\7681197\program\F-Secure Automatic Update.exe
C:\Documents and Settings\Ari-Pekka\Käynnistä-valikko\Ohjelmat\Käynnistys\siszyd32.exe
C:\Program Files\F-Secure\Anti-Virus\fsav32.exe
C:\PROGRA~1\F-Secure\ANTI-S~1\fsaw.exe
C:\Program Files\F-Secure\FSGUI\fsguidll.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Program Files\Trend Micro\HijackThis\skanneri.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mastermark.fi/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.compaq.com/4q00cdt/040B/kb2.asp
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = cache.inet.fi:800
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost; www.finhockey.*;<local>;*.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Windows Liven kirjautumisapuohjelma - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: BHO - {CFCAAF92-3665-4aa3-BD88-5BFFE7C5C000} - C:\Documents and Settings\Ari-Pekka\Työpöytä\winfh.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [srmclean] C:\Cpqs\Scom\srmclean.exe
O4 - HKLM\..\Run: [SetRefresh] C:\Program Files\Compaq\SetRefresh\SetRefresh.exe
O4 - HKLM\..\Run: [CPQEASYACC] C:\Program Files\COMPAQ\Easy Access Button Support\StartEAK.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\F-Secure\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\F-Secure\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Start WingMan Profiler] "C:\Program Files\Logitech\Profiler\lwemon.exe" /noui
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Paikallinen palve')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Verkkopalve')
O4 - HKUS\S-1-5-21-1270078839-299905979-4186024301-500\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe (User 'Järjestelmänvalvoja')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O4 - Startup: siszyd32.exe
O4 - Global Startup: F-Secure Automatic Update.lnk = C:\Program Files\F-Secure\BackWeb\7681197\program\F-Secure Automatic Update.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: &Block this popup - C:\Program Files\F-Secure\Anti-Spyware\blockpopups.htm
O9 - Extra button: IE Shield - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\F-Secure\Anti-Spyware\ieshield.dll
O9 - Extra 'Tools' menuitem: IE Shield... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\F-Secure\Anti-Spyware\ieshield.dll
O9 - Extra button: Unibet Poker - {C53BFCFC-7A54-4627-AEBA-2CD4871FCA97} - C:\Program Files\UnibetpokerMPP\MPPoker.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: CarbonPoker - {6FDD5236-C9F0-49ef-935D-385F5E21991A} - C:\Program Files\CarbonPoker\Poker.exe (file missing) (HKCU)
O15 - Trusted Zone: *.frame.crazywinnings.com
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {22492231-AEF0-49FC-9180-CE8969AB1273} (F-Secure Online Scanner Launcher) - http://download.sp.f-secure.com/ols/f-secure-rtm/resources/fslauncher.cab
O16 - DPF: {22945A69-1191-4DCF-9E6F-409BDE94D101} - http://louk.solidworks.com/htdocs/pdownload/edrawings/e2008sp03/cab/eModelsStandard.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1126598208656
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://wwwimages.adobe.com/www.adobe.com/products/acrobat/nos/gp.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{B8818838-3CCD-4C82-AFE5-6E0DF60A987E}: NameServer = 193.229.0.40,193.229.0.42
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: F-Secure Automatic Update (BackWeb Plug-in - 7681197) - F-Secure Automatic Update - C:\PROGRA~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE
O23 - Service: Bonjour-palvelu (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BUFFALO Wireless Configuration Service (bwcsrv) - Unknown owner - C:\WINDOWS\system32\Drivers\bwcsrv.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corp. - C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Network Request Broker - F-Secure Corporation - C:\Program Files\F-Secure\Common\FNRB32.EXE
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\F-Secure\BackWeb\7681197\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\F-Secure\Common\FSMA32.EXE
O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod-palvelu (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe

--
End of file - 12067 bytes

Scanning Report
Thursday, December 31, 2009 22:08:02 - 06:01:36
Computer name: MSKXPWKS01
Scanning type: Scan system for malware, spyware and rootkits
Target: C:\

3 malware found
TrackingCookie.Webtrends (spyware)
· System (Disinfected)
Trojan.Proxy.MSO (spyware)
· System (Disinfected)
Trojan.Proxy.MSO (virus)
· C:\WINDOWS\TEMP\~TM226.tmp (Not cleaned)

Statistics
Scanned:
· Files: 215562
· System: 3906
· Not scanned: 427
Actions:
· Disinfected: 2
· Renamed: 0
· Deleted: 0
· Not cleaned: 1
· Submitted: 0
Files not scanned:
· C:\PAGEFILE.SYS
· C:\WINDOWS\WINSXS\X86_SYSTEM.ENTERPRISESERVICES_B03F5F7F11D50A3A_2.0.0.0_X-WW_7D5F3790\SYSTEM.ENTERPRISESERVICES.WRAPPER.DLL
· C:\WINDOWS\WINSXS\X86_MICROSOFT.WINDOWS.NETWORKING.RTCRES_6595B64144CCF1DF_5.2.2.3_FI_7DEF5406\RTCRES.DLL
· C:\WINDOWS\WINSXS\X86_MICROSOFT.WINDOWS.NETWORKING.RTCDLL_6595B64144CCF1DF_5.2.2.3_X-WW_D6BD8B95\RTCDLL.DLL
· C:\WINDOWS\WINSXS\X86_MICROSOFT.WINDOWS.NETWORKING.DXMRTP_6595B64144CCF1DF_5.2.2.3_X-WW_468466A7\DXMRTP.DLL
· C:\WINDOWS\WINSXS\X86_MICROSOFT.WINDOWS.GDIPLUS_6595B64144CCF1DF_1.0.2600.5581_X-WW_DFBC4FC4\GDIPLUS.DLL
· C:\WINDOWS\WINSXS\X86_MICROSOFT.WINDOWS.GDIPLUS_6595B64144CCF1DF_1.0.2600.5512_X-WW_DFB54E0C\GDIPLUS.DLL
· C:\WINDOWS\WINSXS\X86_MICROSOFT.WINDOWS.GDIPLUS_6595B64144CCF1DF_1.0.2600.3352_X-WW_81AF8E88\GDIPLUS.DLL
· C:\WINDOWS\WINSXS\X86_MICROSOFT.WINDOWS.GDIPLUS_6595B64144CCF1DF_1.0.2600.2180_X-WW_522F9F82\GDIPLUS.DLL
· C:\WINDOWS\WINSXS\X86_MICROSOFT.WINDOWS.GDIPLUS_6595B64144CCF1DF_1.0.2600.1360_X-WW_24A2ED47\GDIPLUS.DLL
· C:\WINDOWS\WINSXS\X86_MICROSOFT.WINDOWS.GDIPLUS_6595B64144CCF1DF_1.0.10.0_X-WW_712BEFD8\GDIPLUS.DLL
· C:\WINDOWS\WINSXS\X86_MICROSOFT.WINDOWS.GDIPLUS_6595B64144CCF1DF_1.0.0.0_X-WW_8D353F13\GDIPLUS.DLL
· C:\WINDOWS\WINSXS\X86_MICROSOFT.WINDOWS.CPLUSPLUSRUNTIME_6595B64144CCF1DF_7.0.2600.5512_X-WW_3FD60D63\MSVCIRT.DLL
· C:\WINDOWS\WINSXS\X86_MICROSOFT.WINDOWS.CPLUSPLUSRUNTIME_6595B64144CCF1DF_7.0.2600.2180_X-WW_B2505ED9\MSVCIRT.DLL
· C:\WINDOWS\WINSXS\X86_MICROSOFT.WINDOWS.CPLUSPLUSRUNTIME_6595B64144CCF1DF_7.0.0.0_X-WW_2726E76A\MSVCIRT.DLL
· C:\WINDOWS\WINDOWS UPDATE SETUP FILES\IE6SETUP.EXE
· C:\WINDOWS\TEMP\PERFLIB_PERFDATA_20C.DAT
· C:\WINDOWS\SYSTEM32\ATI3DUAG.DLL
· C:\WINDOWS\SYSTEM32\D3DIM.DLL
· C:\WINDOWS\SYSTEM32\CONFIG\DEFAULT.LOG
· C:\WINDOWS\SYSTEM32\CONFIG\SAM
· C:\WINDOWS\SYSTEM32\CONFIG\SAM.LOG
· C:\WINDOWS\SYSTEM32\CONFIG\DEFAULT
· C:\WINDOWS\SYSTEM32\CONFIG\SECURITY
· C:\WINDOWS\SYSTEM32\CONFIG\SECURITY.LOG
· C:\WINDOWS\SYSTEM32\CONFIG\SOFTWARE
· C:\WINDOWS\SYSTEM32\CONFIG\SOFTWARE.LOG
· C:\WINDOWS\SYSTEM32\CONFIG\SYSTEM
· C:\WINDOWS\SYSTEM32\CONFIG\SYSTEM.LOG
· C:\WINDOWS\SYSTEM32\CATROOT2\EDB.LOG
· C:\WINDOWS\SYSTEM32\CATROOT2\TMP.EDB
· C:\WINDOWS\SERVICEPACKFILES\I386\SENDMAIL.DLL
· C:\WINDOWS\$NTUNINSTALLQ828026$\WMPCORE.DLL
· C:\WINDOWS\$NTUNINSTALLQ828026$\MSDXM.OCX
· C:\WINDOWS\$NTUNINSTALLKB828028$\MSASN1.DLL
· C:\WINDOWS\$NTUNINSTALLKB826939$\ACCWIZ.EXE
· C:\WINDOWS\$NTUNINSTALLKB826939$\CRYPT32.DLL
· C:\WINDOWS\$NTUNINSTALLKB826939$\CRYPTSVC.DLL
· C:\WINDOWS\$NTUNINSTALLKB826939$\HHSETUP.DLL
· C:\WINDOWS\$NTUNINSTALLKB826939$\ITSS.DLL
· C:\WINDOWS\$NTUNINSTALLKB826939$\HTML32.CNV
· C:\WINDOWS\$NTUNINSTALLKB826939$\LOCATOR.EXE
· C:\WINDOWS\$NTUNINSTALLKB826939$\MIGWIZ.EXE
· C:\WINDOWS\$NTUNINSTALLKB826939$\MAGNIFY.EXE
· C:\WINDOWS\$NTUNINSTALLKB826939$\MSCONV97.DLL
· C:\WINDOWS\$NTUNINSTALLKB826939$\NARRATOR.EXE
· C:\WINDOWS\$NTUNINSTALLKB826939$\MRXSMB.SYS
· C:\WINDOWS\$NTUNINSTALLKB826939$\NTDLL.DLL
· C:\WINDOWS\$NTUNINSTALLKB826939$\NTKRNLPA.EXE
· C:\WINDOWS\$NTUNINSTALLKB826939$\NEWDEV.DLL
· C:\WINDOWS\$NTUNINSTALLKB826939$\NTOSKRNL.EXE
· C:\WINDOWS\$NTUNINSTALLKB826939$\OSK.EXE
· C:\WINDOWS\$NTUNINSTALLKB826939$\RASPPTP.SYS
· C:\WINDOWS\$NTUNINSTALLKB826939$\PCHSHELL.DLL
· C:\WINDOWS\$NTUNINSTALLKB826939$\SHELL32.DLL
· C:\WINDOWS\$NTUNINSTALLKB826939$\SRRSTR.DLL
· C:\WINDOWS\$NTUNINSTALLKB826939$\SYSMAIN.SDB
· C:\WINDOWS\$NTUNINSTALLKB826939$\SRV.SYS
· C:\WINDOWS\$NTUNINSTALLKB826939$\USER32.DLL
· C:\WINDOWS\$NTUNINSTALLKB826939$\WINSRV.DLL
· C:\WINDOWS\$NTUNINSTALLKB826939$\WIN32K.SYS
· C:\WINDOWS\$NTUNINSTALLKB826939$\ZIPFLDR.DLL
· C:\WINDOWS\$NTUNINSTALLKB824141$\USER32.DLL
· C:\WINDOWS\$NTUNINSTALLKB824141$\WIN32K.SYS
· C:\setup\fsavcs_6.00-11251.package.fip\rifs\AXDIST.EXE\axdist.inf
· C:\setup\fsavcs_6.00-11251.package.fip\rifs\AXDIST.EXE\hlink.dll
· C:\setup\fsavcs_6.00-11251.package.fip\rifs\AXDIST.EXE\hlinkprx.dll
· C:\setup\fsavcs_6.00-11251.package.fip\rifs\AXDIST.EXE\inloader.dll
· C:\setup\fsavcs_6.00-11251.package.fip\rifs\AXDIST.EXE\oleaut32.dll
· C:\setup\fsavcs_6.00-11251.package.fip\rifs\AXDIST.EXE\schannel.dll
· C:\setup\fsavcs_6.00-11251.package.fip\rifs\AXDIST.EXE\stdole2.tlb
· C:\setup\fsavcs_6.00-11251.package.fip\rifs\AXDIST.EXE\urlmon.dll
· C:\setup\fsavcs_6.00-11251.package.fip\rifs\AXDIST.EXE\wininet.dll
· C:\setup\fsavcs_6.00-11251.package.fip\rifs\AXDIST.EXE\ADVPACK.DLL
· C:\setup\fsavcs_6.00-11251.package.fip\rifs\AXDIST.EXE\W95INF32.DLL
· C:\setup\fsavcs_6.00-11251.package.fip\rifs\AXDIST.EXE\W95INF16.DLL
· C:\PROGRAM FILES\VIDEOLAN\VLC\VLC-0.9.6-WIN32.EXE
· C:\PROGRAM FILES\VALVE\STEAM\STEAM.EXE
· C:\PROGRAM FILES\REGTOOL\REGTOOL.EXE
· C:\Program Files\F-Secure\common\custom\custom1\rifs\AXDIST.EXE\axdist.inf
· C:\Program Files\F-Secure\common\custom\custom1\rifs\AXDIST.EXE\hlink.dll
· C:\Program Files\F-Secure\common\custom\custom1\rifs\AXDIST.EXE\hlinkprx.dll
· C:\Program Files\F-Secure\common\custom\custom1\rifs\AXDIST.EXE\inloader.dll
· C:\Program Files\F-Secure\common\custom\custom1\rifs\AXDIST.EXE\oleaut32.dll
· C:\Program Files\F-Secure\common\custom\custom1\rifs\AXDIST.EXE\schannel.dll
· C:\Program Files\F-Secure\common\custom\custom1\rifs\AXDIST.EXE\stdole2.tlb
· C:\Program Files\F-Secure\common\custom\custom1\rifs\AXDIST.EXE\urlmon.dll
· C:\Program Files\F-Secure\common\custom\custom1\rifs\AXDIST.EXE\wininet.dll
· C:\Program Files\F-Secure\common\custom\custom1\rifs\AXDIST.EXE\ADVPACK.DLL
· C:\Program Files\F-Secure\common\custom\custom1\rifs\AXDIST.EXE\W95INF32.DLL
· C:\Program Files\F-Secure\common\custom\custom1\rifs\AXDIST.EXE\W95INF16.DLL
· C:\PROGRAM FILES\F-SECURE\COMMON\POLICY.IPF
· C:\PROGRAM FILES\F-SECURE\BACKWEB\7681197\USERS\DEFAULT\DATA\CHANDIR.IDX
· C:\PROGRAM FILES\F-SECURE\BACKWEB\7681197\PROGRAM\BWCHELPR-7681197.DLL
· C:\PROGRAM FILES\F-SECURE\BACKWEB\7681197\PROGRAM\BWDLG-7681197.DLL
· C:\PROGRAM FILES\EA SPORTS\TOTAL CLUB MANAGER 2005\TCM2005.EXE
· C:\fsecure\setup\fsavcs_6.00-11251.package.fip\rifs\AXDIST.EXE\axdist.inf
· C:\fsecure\setup\fsavcs_6.00-11251.package.fip\rifs\AXDIST.EXE\hlink.dll
· C:\fsecure\setup\fsavcs_6.00-11251.package.fip\rifs\AXDIST.EXE\hlinkprx.dll
· C:\fsecure\setup\fsavcs_6.00-11251.package.fip\rifs\AXDIST.EXE\inloader.dll
· C:\fsecure\setup\fsavcs_6.00-11251.package.fip\rifs\AXDIST.EXE\oleaut32.dll
· C:\fsecure\setup\fsavcs_6.00-11251.package.fip\rifs\AXDIST.EXE\schannel.dll
· C:\fsecure\setup\fsavcs_6.00-11251.package.fip\rifs\AXDIST.EXE\stdole2.tlb
· C:\fsecure\setup\fsavcs_6.00-11251.package.fip\rifs\AXDIST.EXE\urlmon.dll
· C:\fsecure\setup\fsavcs_6.00-11251.package.fip\rifs\AXDIST.EXE\wininet.dll
· C:\fsecure\setup\fsavcs_6.00-11251.package.fip\rifs\AXDIST.EXE\ADVPACK.DLL
· C:\fsecure\setup\fsavcs_6.00-11251.package.fip\rifs\AXDIST.EXE\W95INF32.DLL
· C:\fsecure\setup\fsavcs_6.00-11251.package.fip\rifs\AXDIST.EXE\W95INF16.DLL
· C:\DOCUMENTS AND SETTINGS\NETWORKSERVICE\NTUSER.DAT
· C:\DOCUMENTS AND SETTINGS\NETWORKSERVICE\NTUSER.DAT.LOG
· C:\DOCUMENTS AND SETTINGS\NETWORKSERVICE\LOCAL SETTINGS\APPLICATION DATA\MICROSOFT\WINDOWS\USRCLASS.DAT
· C:\DOCUMENTS AND SETTINGS\NETWORKSERVICE\LOCAL SETTINGS\APPLICATION DATA\MICROSOFT\WINDOWS\USRCLASS.DAT.LOG
· C:\DOCUMENTS AND SETTINGS\LOCALSERVICE\NTUSER.DAT
· C:\DOCUMENTS AND SETTINGS\LOCALSERVICE\NTUSER.DAT.LOG
· C:\DOCUMENTS AND SETTINGS\LOCALSERVICE\LOCAL SETTINGS\APPLICATION DATA\MICROSOFT\WINDOWS\USRCLASS.DAT
· C:\DOCUMENTS AND SETTINGS\LOCALSERVICE\LOCAL SETTINGS\APPLICATION DATA\MICROSOFT\WINDOWS\USRCLASS.DAT.LOG
· C:\DOCUMENTS AND SETTINGS\ARI-PEKKA\NTUSER.DAT
· C:\DOCUMENTS AND SETTINGS\ARI-PEKKA\NTUSER.DAT.LOG
· C:\DOCUMENTS AND SETTINGS\ARI-PEKKA\LOCAL SETTINGS\TEMP\~DF195D.TMP
· C:\DOCUMENTS AND SETTINGS\ARI-PEKKA\LOCAL SETTINGS\TEMP\~DF1832.TMP
· C:\DOCUMENTS AND SETTINGS\ARI-PEKKA\LOCAL SETTINGS\TEMP\EAUNINSTALL.EXE
· C:\DOCUMENTS AND SETTINGS\ARI-PEKKA\LOCAL SETTINGS\TEMP\~DF6935.TMP
· C:\DOCUMENTS AND SETTINGS\ARI-PEKKA\LOCAL SETTINGS\TEMP\~DFAB0F.TMP
· C:\DOCUMENTS AND SETTINGS\ARI-PEKKA\LOCAL SETTINGS\TEMP\~DFAA62.TMP
· C:\DOCUMENTS AND SETTINGS\ARI-PEKKA\LOCAL SETTINGS\TEMP\~DFABBF.TMP
· C:\DOCUMENTS AND SETTINGS\ARI-PEKKA\LOCAL SETTINGS\TEMP\~DFAB6D.TMP
· C:\DOCUMENTS AND SETTINGS\ARI-PEKKA\LOCAL SETTINGS\TEMP\~DFAB7D.TMP
· C:\DOCUMENTS AND SETTINGS\ARI-PEKKA\LOCAL SETTINGS\TEMP\~DFABD4.TMP
· C:\DOCUMENTS AND SETTINGS\ARI-PEKKA\LOCAL SETTINGS\TEMP\ONLINESCANNER\UPDATES\OLS_33_BIN\FSGK.SYS
· C:\DOCUMENTS AND SETTINGS\ARI-PEKKA\LOCAL SETTINGS\APPLICATION DATA\MICROSOFT\WINDOWS\USRCLASS.DAT
· C:\DOCUMENTS AND SETTINGS\ARI-PEKKA\LOCAL SETTINGS\APPLICATION DATA\MICROSOFT\WINDOWS\USRCLASS.DAT.LOG
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\AdmilliService.zip\ide21201.vxd
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\AdmilliService.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\AlexaRelated.zip\related.htm
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\AlexaRelated.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite1.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite1.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite10.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite10.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite100.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite100.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite101.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite101.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite102.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite102.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite103.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite103.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite104.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite104.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite105.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite105.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite106.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite106.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite107.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite107.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite108.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite108.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite109.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite109.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite11.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite11.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite110.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite110.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite111.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite111.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite112.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite112.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite113.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite113.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite114.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite114.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite115.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite115.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite116.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite116.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite117.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite117.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite118.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite118.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite119.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite119.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite12.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite12.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite120.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite120.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite121.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite121.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite122.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite122.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite123.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite123.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite124.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite124.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite125.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite125.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite126.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite126.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite127.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite127.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite128.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite128.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite129.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite129.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite130.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite130.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite13.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite13.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite132.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite132.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite131.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite131.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite133.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite133.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite134.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite134.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite15.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite15.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite14.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite14.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite16.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite16.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite18.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite18.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite19.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite19.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite17.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite17.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite2.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite2.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite20.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite20.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite21.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite21.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite22.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite22.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite23.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite23.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite24.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite24.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite25.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite25.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite26.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite26.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite27.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite27.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite28.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite28.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite3.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite3.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite29.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite29.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite31.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite31.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite30.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite30.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite32.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite32.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite34.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite34.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite35.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite35.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite33.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite33.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite37.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite37.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite36.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite36.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite38.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite38.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite39.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite39.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite4.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite4.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite40.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite40.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite41.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite41.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite42.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite42.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite43.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite43.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite44.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite44.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite45.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite45.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite46.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite46.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite47.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite47.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite5.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite5.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite48.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite48.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite49.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite49.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite50.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite50.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite51.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite51.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite52.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite52.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite53.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite53.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite54.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite54.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite55.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite55.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite56.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite56.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite58.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite58.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite57.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite57.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite59.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite59.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite6.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite6.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite60.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite60.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite61.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite61.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite62.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite62.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite63.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite63.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite64.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite64.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite65.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite65.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite66.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite66.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite67.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite67.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite68.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite68.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite69.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite69.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite7.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite7.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite71.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite70.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite71.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite70.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite72.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite72.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite74.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite74.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite73.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite73.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite75.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite75.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite76.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite76.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite77.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite77.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite79.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite79.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite78.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite78.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite8.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite8.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite81.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite81.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite80.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite80.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite84.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite84.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite82.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite82.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite83.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite83.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite86.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite86.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite85.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite85.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite87.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite87.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite88.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite89.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite88.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite89.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite9.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite9.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite91.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite91.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite92.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite92.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite90.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite90.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite95.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite95.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite93.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite94.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite94.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite96.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite96.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite93.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite97.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite97.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite98.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite99.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite99.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\BackWeblite98.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CoolWWWSearch.zip\MediaAccX.dll
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CoolWWWSearch.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CoolWWWSearch1.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CoolWWWSearch1.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CoolWWWSearch2.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CoolWWWSearch2.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CoolWWWSearch3.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CoolWWWSearch3.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CoolWWWSearch4.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CoolWWWSearch4.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CoolWWWSearch5.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CoolWWWSearch5.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CoolWWWSearchWCADW.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CoolWWWSearchWCADW.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CoolWWWSearchWCADW1.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CoolWWWSearchWCADW1.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CoolWWWSearchWCADW2.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\Roings.zip\objsafe.tlb
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\Roings.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CoolWWWSearchWCADW2.zip\sbRecovery.ini
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CoolWWWSearchWCADW3.zip\sbRecovery.reg
· C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\CoolWWWSearchWCADW3.zip\sbRecovery.ini

Options
Scanning engines:
Scanning options:
· Scan all files
· Scan inside archives
· Use advanced heuristics

Copyright © 1998-2009 Product support | Send virus sample to F-Secure
F-Secure assumes no responsibility for material created or published by third parties that F-Secure World Wide Web pages have a link to. Unless you have clearly stated otherwise, by submitting material to any of our servers, for example by E-mail or via our F-Secure's CGI E-mail, you agree that the material you make available may be published in the F-Secure World Wide Pages or hard-copy publications. You will reach F-Secure public web site by clicking on underlined links. While doing this, your access will be logged to our private access statistics with your domain name. This information will not be given to any third party. You agree not to take action against us in relation to material that you submit. Unless you have clearly stated otherwise, by submitting material you warrant that F-Secure may incorporate any concepts described in it in the F-Secure products/publications without liability.

kalminen · Jan 4, 2010

Poista Työpöydältäsi winfh.dll tiedosto

----------------------------------------------------

Käynnistä kone vikasietotilaan => OHJE

Laita piilotiedostot näkyviin => OHJE

Poista tiedosto: C:\Documents and Settings\Ari-Pekka\Käynnistä-valikko\Ohjelmat\Käynnistys\siszyd32.exe

----------------------------------------------------

Lataa Malwarebytes' Anti-Malware työpöydällesi.

Jos linkki ei toimi, voit ladata myös seuraavista linkeistä:
Linkki1
Linkki2

* Tuplaklikkaa mbam-setup.exe ja seuraa ohjeita asentaaksesi ohjelman.
* Lopuksi varmistu, että seuraavat on valittu: Päivitä Malwarebytes' Anti-Malware ja Käynnistä Malwarebytes' Anti-Malware ja sen jälkeen klikkaa Lopeta.
* Jos päivitys löytyy, ohjelma lataa ja asentaa uusimman version. Jos päivityksien lataaminen ei onnistu, voit ladata päivitykset tästä. Tuplaklikkaa mbam-rules.exe asentaaksesi päivitykset.
* Kun ohjelma on latautunut ja päivitykset tehty, valitse Suorita täysi tarkistus ja klikkaa Tarkista.
* Kun tarkistus on valmis, klikkaa OK ja sitten Näytä tulokset nähdäksesi tulokset.
* Varmistu, että kaikki on merkitty ja klikkaa Poista valitut.
* Tämän jälkeen loki avautuu muistioon. Tallenna se paikkaan, josta löydät sen helposti. Loki löytyy myös täältä: C:\Documents and Settings\Käyttäjänimi\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-päiväys.txt
* Lähetä lokin sisältö seuraavassa viestissäsi.[/list]

Huom. Jos Mbam ei pystynyt poistamaan tiedostoa, se pyytää sinua käynnistämään koneesi uudelleen. Käynnistä koneesi silloin uudelleen heti. Mbam voi tehdä muutoksia rekisteriisi osana puhdistusta. Jos käytät suojausohjelmaa, joka havaitsee rekisterin muutokset, salli Mbamin tehdä muutokset.

----------------------------------------------------------------------------------

Poista ne rivit jotka ovat vielä jäljellä:

Kun käynnistät HijackThis =(HJT) ohjelman tee se hiiren oikealla napilla
(HJT sammuttaa ohjelman ei poista)
ja valitset Suorita Järjestelmänvalvojana
Sammuta selain ja muut ohjelmat Fixin ajaksi. (ei virustorjuntaa)
ja Scan ja ruksaa seuraavat punaisella listatut tiedostot sekä sammuta ne.(fix Chekked)

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - Startup: siszyd32.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O9 - Extra button: Unibet Poker - {C53BFCFC-7A54-4627-AEBA-2CD4871FCA97} - C:\Program Files\UnibetpokerMPP\MPPoker.exe (file missing)
O9 - Extra button: CarbonPoker - {6FDD5236-C9F0-49ef-935D-385F5E21991A} - C:\Program Files\CarbonPoker\Poker.exe (file missing) (HKCU)
O15 - Trusted Zone: *.frame.crazywinnings.com

Tyhjennä roskakori ja käynnistä koneesi uudelleen.

Postita tänne seuraavat lokit:
* Tuore HijackThis loki (Otetaan viimeisenä ennen postitusta)
* Malwarebytes' Anti-Malware\Logs\log-päiväys.txt raportti
* * Auttoiko ???
*

Stuuk · Jan 4, 2010

Ensinnäkin Malwarebytes':n lokia ei ilmaantunut näytölle eikä sitä tallentunut mihinkään enkä tiedä syytä. Tarkistus kuitenkin onnistui ja poistin kaikki sen löytämät 'saastuneet' tiedostot. Toiseksi en muista järjestelmänvalvojan salasanaa enkä ole löytänyt sitä mistään ylöskirjoitettuna jotenka en pysty tekemään kyseistä HJT sammutus toimenpidettä. Kone on nyt jo huomattavasti parempi mutta mitä nyt teen?

Stuuk · Jan 5, 2010

noniin sain homman toimimaan ja tuossa olisi nuo lokit =] toimii jo paremmin mutta en tiedä onko vielä puhdas.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:39:57, on 5.1.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\Drivers\bwcsrv.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
C:\Program Files\F-Secure\BackWeb\7681197\program\fsbwsys.exe
C:\Program Files\F-Secure\Anti-Virus\FSGK32.EXE
C:\Program Files\F-Secure\Anti-Virus\fssm32.exe
C:\Program Files\F-Secure\Common\FSMA32.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\F-Secure\Common\FSMB32.EXE
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\F-Secure\Common\FCH32.EXE
C:\Program Files\F-Secure\Anti-Virus\fsqh.exe
C:\Program Files\F-Secure\Common\FAMEH32.EXE
C:\Program Files\F-Secure\Anti-Virus\fsrw.exe
C:\Program Files\F-Secure\Common\FNRB32.EXE
C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe
C:\Program Files\F-Secure\Common\FIH32.EXE
C:\Program Files\F-Secure\Anti-Virus\fsav32.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\COMPAQ\Easy Access Button Support\StartEAK.exe
C:\WINDOWS\System32\LVCOMSX.EXE
C:\Program Files\Compaq\Easy Access Button Support\CPQEADM.EXE
C:\Compaq\EAKDRV\EAUSBKBD.EXE
C:\Program Files\F-Secure\Common\FSM32.EXE
C:\PROGRA~1\F-Secure\ANTI-S~1\fsaw.exe
C:\PROGRA~1\Compaq\EASYAC~1\BttnServ.exe
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\Program Files\F-Secure\FSGUI\fsguidll.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Trend Micro\HijackThis\skanneri.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\Logitech\Profiler\lwemon.exe
C:\Program Files\DNA\btdna.exe
C:\Program Files\F-Secure\BackWeb\7681197\program\F-Secure Automatic Update.exe
C:\Program Files\iPod\bin\iPodService.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.mastermark.fi/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.compaq.com/4q00cdt/040B/kb2.asp
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = cache.inet.fi:800
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost; www.finhockey.*;<local>;*.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Windows Liven kirjautumisapuohjelma - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [srmclean] C:\Cpqs\Scom\srmclean.exe
O4 - HKLM\..\Run: [SetRefresh] C:\Program Files\Compaq\SetRefresh\SetRefresh.exe
O4 - HKLM\..\Run: [CPQEASYACC] C:\Program Files\COMPAQ\Easy Access Button Support\StartEAK.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\F-Secure\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\F-Secure\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Start WingMan Profiler] "C:\Program Files\Logitech\Profiler\lwemon.exe" /noui
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Paikallinen palve')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Verkkopalve')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O4 - Global Startup: F-Secure Automatic Update.lnk = C:\Program Files\F-Secure\BackWeb\7681197\program\F-Secure Automatic Update.exe
O8 - Extra context menu item: &Block this popup - C:\Program Files\F-Secure\Anti-Spyware\blockpopups.htm
O9 - Extra button: IE Shield - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\F-Secure\Anti-Spyware\ieshield.dll
O9 - Extra 'Tools' menuitem: IE Shield... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\F-Secure\Anti-Spyware\ieshield.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {22492231-AEF0-49FC-9180-CE8969AB1273} (F-Secure Online Scanner Launcher) - http://download.sp.f-secure.com/ols/f-secure-rtm/resources/fslauncher.cab
O16 - DPF: {22945A69-1191-4DCF-9E6F-409BDE94D101} - http://louk.solidworks.com/htdocs/pdownload/edrawings/e2008sp03/cab/eModelsStandard.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1126598208656
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://wwwimages.adobe.com/www.adobe.com/products/acrobat/nos/gp.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{B8818838-3CCD-4C82-AFE5-6E0DF60A987E}: NameServer = 193.229.0.40,193.229.0.42
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: F-Secure Automatic Update (BackWeb Plug-in - 7681197) - F-Secure Automatic Update - C:\PROGRA~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE
O23 - Service: Bonjour-palvelu (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BUFFALO Wireless Configuration Service (bwcsrv) - Unknown owner - C:\WINDOWS\system32\Drivers\bwcsrv.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corp. - C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Network Request Broker - F-Secure Corporation - C:\Program Files\F-Secure\Common\FNRB32.EXE
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\F-Secure\BackWeb\7681197\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\F-Secure\Common\FSMA32.EXE
O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod-palvelu (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe

--
End of file - 10608 bytes

Malwarebytes' Anti-Malware 1.43
Tietokantaversio: 3491
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

4.1.2010 22:02:24
mbam-log-2010-01-04 (22-02-24).txt

Tarkistustyyppi: Täysi tarkistus (A:\|C:\|D:\|)
Tarkistetut kohteet: 184922
Kulunut aika: 1 hour(s), 31 minute(s), 24 second(s)

Saastuneita muistiprosesseja: 0
Saastuneita muistimoduuleja: 0
Saastuneita rekisteriavaimia: 0
Saastuneita rekisteriarvoja: 0
Saastuneita rekisterikohteita: 0
Saastuneita hakemistoja: 19
Saastuneita tiedostoja: 0

Saastuneita muistiprosesseja:
(Haitallisia kohteita ei löydetty)

Saastuneita muistimoduuleja:
(Haitallisia kohteita ei löydetty)

Saastuneita rekisteriavaimia:
(Haitallisia kohteita ei löydetty)

Saastuneita rekisteriarvoja:
(Haitallisia kohteita ei löydetty)

Saastuneita rekisterikohteita:
(Haitallisia kohteita ei löydetty)

Saastuneita hakemistoja:
C:\Documents and Settings\Ari-Pekka\Application Data\RegTool (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Ari-Pekka\Application Data\RegTool\Logs (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Ari-Pekka\Application Data\RegTool\QuarantineW (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Ari-Pekka\Application Data\RegTool\QuarantineW\2009-02-27 13-11-410 (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Ari-Pekka\Application Data\RegTool\QuarantineW\2009-03-04 12-20-240 (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Ari-Pekka\Application Data\RegTool\QuarantineW\2009-03-11 12-51-580 (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Ari-Pekka\Application Data\RegTool\QuarantineW\2009-04-01 12-01-470 (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Ari-Pekka\Application Data\RegTool\QuarantineW\2009-04-02 12-28-340 (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Ari-Pekka\Application Data\RegTool\QuarantineW\2009-04-11 12-06-170 (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Ari-Pekka\Application Data\RegTool\QuarantineW\2009-04-18 12-01-430 (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Ari-Pekka\Application Data\RegTool\QuarantineW\2009-05-16 12-02-130 (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Ari-Pekka\Application Data\RegTool\QuarantineW\2009-06-11 12-16-580 (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Ari-Pekka\Application Data\RegTool\QuarantineW\2009-06-19 13-29-320 (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Ari-Pekka\Application Data\RegTool\QuarantineW\2009-09-22 12-03-070 (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Ari-Pekka\Application Data\RegTool\QuarantineW\2009-10-03 13-04-280 (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Ari-Pekka\Application Data\RegTool\QuarantineW\2009-12-01 23-12-260 (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Ari-Pekka\Application Data\RegTool\QuarantineW\2009-12-07 14-32-160 (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Program Files\RegTool (Rogue.RegTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Käynnistä-valikko\Ohjelmat\RegTool (Rogue.RegTool) -> Quarantined and deleted successfully.

Saastuneita tiedostoja:
(Haitallisia kohteita ei löydetty)

kalminen · Jan 5, 2010

Ne pöpöt on pois jotka logilta näkyi !!!

*************************************************************

Käynnistä Malwarebytes => Karanteeni välileti ja tyhjennä roskat.

**********************************************************

Voit varmistaa vielä =>

Lataa Atribunen ATF Cleaner

Tupla-klikkaa ATF-Cleaner.exe käynnistääksesi ohjelman. Main:n alla valitse: Select All
Klikkaa Empty Selected valintaa.

Jos käytät FireFoxia selaimenasi Klikkaa Firefox yläpuolelta ja valitse: Select All
Klikkaa Empty Selected valintaa.
HUOMIO: Jos haluaisit pitää tallennetut salasanasi, klikkaa No kun se sitä kysyy.

Jos käytät Operaa selaimenasi Klikkaa Opera yläpuolelta ja valitse: Select All
Klikkaa Empty Selected valintaa taas.
HUOMIO: Jos haluaisit pitää tallennetut salasanasi, klikkaa No kun se sitä kysyy.

Klikkaa Exit päävalikosta sulkeaksesi ohjelman.

----------------------------------------------

Skannaa koneesi Kaspersky Online Skannerilla

* Lue läpi vaatimukset ja yksityisyyssäännökset ja klikkaa Accept.
* Skannerin ja virustietokannan lataus alkaa. Sinulta kysytään sallitko Kasperskyltä tulevan ohjelman asentamisen. Klikkaa Aja/Run.
* Kun lataus on valmis, klikkaa Settings.
* Varmistu, että seuraavat kohdat on valittu. Jos ne eivät ole, valitse ne ja klikkaa Save: Spyware, Adware, Dialers, and other potentially dangerous programs
Archives
Mail databases

* Klikkaa Oma Tietokone, My Computer Scan-kohdan alapuolelta.
* Kun tarkistus on valmis, tulokset näytetään. Klikkaa View Scan Report.
* Näet listan saastuneista kohteista. Klikkaa Save Report As....
* Tallenna tiedosto työpöydällesi. Muuta Tiedostotyyppi/Files of type muotoon Tekstitiedosto/Text file(.txt) ennen kuin klikkaat Save.

* Kopioi ja liitä tiedoston sisältö seuraavaan vastaukseesi
* jos se löyti jotain

.

Stuuk · Jan 5, 2010

ei pysty käyttämään kasperskyä.

Kaspersky Online Scanner 7.0 download and operation require Java framework version 1.5 or later.

mulla kuitenkin on uusin java päivitys koneella että mikä mättää?
yritänkö jollain muulla online skannerilla vaiko...?

Stuuk · Jan 6, 2010

Joo sain toimimaan sen Kasperskyn eikä se löytänyt mitään. Vieläkö pitäisi tehdä jotakin?

kalminen · Jan 6, 2010

Kyllä se puhdas on !!!
kun kaperskykään ei löytänyt mitään.

Kyllä sulla näkyy uudempi java olevan kuin 1.5

Mutta vanhat javat voi kummitella koneella.
Poistetaan

Lataa JavaRa ja pura se työpöydällesi.

***Sulje kaikki päällä olevat Internet Explorerin ikkunat ennen jatkamista!***

* Tuplaklikkaa JavaRa.exeä käynnistääksesi ohjelma.
* Valitse English pudotusvalikosta valitaksesi kieleksi englannin ja klikkaa Select.
* Klikkaa Remove Older Versions poistaaksesi vanhat Java-versiot koneeltasi.
* Klikkaa Yes kun pyydetään. Kun JavaRa on valmis, se ilmoittaa, että lokitiedosto on luotu. Klikkaa OK.
* Lokitiedosto avautuu. Lähetä sen sisältö seuraavassa viestissäsi.

Tämän jälkeen lataa ja asennaJava SE Runtime Environment (JRE) 6 Update 17.
jre-6u17-windows-i586-p.exe => 15.?? MB
Lataa työpöydälle ja sammuta kaikki selaimet ennen asennusta

------------------------------------------------------------------------------

* Vanha HOSTS tiedosto poistetaan. Käynnistä kone vikasietotilaan => OHJE
Tämä C:\WINDOWS\system32\drivers\etc\HOSTS tiedosto pois
* Käynnistä koneesi normaalitilaan.
* Lataa HOSTS: Täältä Työpöydällesi.
* Pura: hosts.zip C:\WINDOWS\system32\drivers\etc kansioon.

Lopuksi Voit varmistaa, että siellä on HOSTS niminen tiedosto ilman tiedostopäätettä. Koko n.700 kt.
Suoja activoituu seuraavan käynnistyksen yhteydessä.(ei kuormita muistia)

Houstiin päivitykset: Täältä
Mitä HOSTS tekee: Opas Täällä

-----------------------------------------------------

* Asenna SpywareBlaster!
SpywareBlaster estää haittaohjelmien asentumista koneelle.
Lataus ja ohjeet: TÄÄLTÄ

.

Stuuk · Jan 6, 2010

nyt on nuo hommat tehty ja tuossa JavaRa-loki

JavaRa 1.15 Removal Log.

Report follows after line.

------------------------------------

The JavaRa removal process was started on Wed Jan 06 18:16:37 2010

Found and removed: C:\Program Files\Java\jre1.5.0_06

Found and removed: C:\Program Files\Java\jre1.6.0_06

Found and removed: Software\JavaSoft\Java2D\1.5.0_04

Found and removed: Software\JavaSoft\Java2D\1.5.0_06

Found and removed: Software\JavaSoft\Java2D\1.5.0_13

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0004-ABCDEFFEDCBA}

Found and removed: SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0000-0003-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0000-0004-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0000-0005-ABCDEFFEDCBA}

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_02

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_03

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.0.1_04

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.2

Found and removed: SOFTWARE\JavaSoft\Java Web Start\1.2.0_01

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0000-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0001-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0002-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0003-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0004-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0005-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0006-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0007-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0008-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0009-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0010-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0011-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0012-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0013-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0014-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0015-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0016-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0017-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0018-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0019-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0020-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0021-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0022-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0023-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0024-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0025-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0026-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0026-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0027-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0027-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0028-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0028-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0029-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0029-ABCDEFFEDCBB}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0030-ABCDEFFEDCBA}

Found and removed: Software\Classes\CLSID\{CAFEEFAC-0013-0001-0030-ABCDEFFEDCBB}

Found and removed: SOFTWARE\Microsoft\Active Setup\Installed Components\{08B0E5C0-4FCB-11CF-AAA5-00401C608500}

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.5.0_06\

Found and removed: SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders\\C:\Program Files\Java\jre1.6.0_06\

------------------------------------

Finished reporting.

kalminen · Jan 7, 2010

Oli siellä vanhat javat !!!

Nyt koneesi pitäisi olla
valmis sotaan.

.

Stuuk · Jan 7, 2010

kiitos avusta

Log in or Sign up

kone jökissä ja viruksiakin

Stuuk Member

kalminen Regular member

Stuuk Member

Stuuk Member

kalminen Regular member

Stuuk Member

Stuuk Member

kalminen Regular member

Stuuk Member

kalminen Regular member

Stuuk Member

Share This Page

Log in or Sign up

kone jökissä ja viruksiakin

Stuuk Member

kalminen Regular member

Stuuk Member

Stuuk Member

kalminen Regular member

Stuuk Member

Stuuk Member

kalminen Regular member

Stuuk Member

kalminen Regular member

Stuuk Member

Share This Page

Useful Searches