Logfile of HijackThis v1.99.1 Scan saved at 14:52:30, on 13.1.2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16574) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe C:\Program Files\F-Secure\Anti-Virus\FSGK32.EXE C:\Program Files\F-Secure\Anti-Virus\fssm32.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\F-Secure\Common\FSMA32.EXE C:\Program Files\F-Secure\Common\FSMB32.EXE C:\Program Files\F-Secure\Common\FCH32.EXE C:\Program Files\F-Secure\Common\FAMEH32.EXE C:\Program Files\F-Secure\BackWeb\7681197\Program\BackWeb-7681197.exe C:\Program Files\F-Secure\Common\FNRB32.EXE C:\Program Files\F-Secure\Common\FIH32.EXE C:\Program Files\F-Secure\Anti-Virus\fsav32.exe C:\WINDOWS\Explorer.EXE C:\windows\system\hpsysdrv.exe C:\Program Files\USB Storage RW\shwicon.exe C:\HP\KBD\KBD.EXE C:\Program Files\F-Secure\Common\FSM32.EXE C:\Program Files\Messenger Plus! 3\MsgPlus.exe C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\Omistaja\Työpöytä\ewido_micro.exe C:\Documents and Settings\Omistaja\Työpöytä\VundoFix.exe C:\Program Files\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.wvkyxoovnrphrsontlmhnn.i...GJR5K4OKthtgJDLTzwcIYCmOhbuesl4cJNJgGVTS.html R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = dna Internet Explorer R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://paivitys.dnainternet.fi/yhteys/proxy.pac R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fi\msntb.dll O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fi\msntb.dll O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe O4 - HKLM\..\Run: [KYE_Showicon] "C:\Program Files\USB Storage RW\shwicon.exe" -t"KYE\USB Storage RW" O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE O4 - HKLM\..\Run: [StorageGuard] "C:\Program Files\VERITAS Software\Update Manager\sgtray.exe" /r O4 - HKLM\..\Run: [WCOLOREAL] "C:\Program Files\Coloreal\coloreal.exe" O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\F-Secure\Common\FSM32.EXE" /splash O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\Messenger Plus! 3\MsgPlus.exe" O4 - HKLM\..\Run: [VTPreset] VTPreset.exe O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" O4 - HKLM\..\Run: [Mode Load Mpeg Less] C:\Documents and Settings\All Users\Application Data\two setup mode load\Book Cake.exe O4 - HKCU\..\Run: [delete ball] C:\DOCUME~1\Omistaja\APPLIC~1\THATCO~1\tonssafetool.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O11 - Options group: [INTERNATIONAL] International* O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {5BDBD95C-1E7F-4FB1-8497-20AF879F8B68} (FileSharingCtrl Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/FileSharing/fi/filesharingctrl.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab O16 - DPF: {9D190AE6-C81E-4039-8061-978EBAD10073} (F-Secure Online Scanner 3.0) - http://support.f-secure.com/ols/fscax.cab O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnmessengersetupdownloader.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} - http://www.popcap.com/games/popcaploader_v6.cab O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/bin/msnchat45.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - AppInit_DLLs: MsgPlusLoader.dll O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: F-Secure BackWeb (BackWeb Client - 7681197) - Unknown owner - C:\PROGRA~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE O23 - Service: F-Secure BackWeb LAN Access - Unknown owner - C:\Program Files\F-Secure\BackWeb\7681197\Program\fsbwlan.exe O23 - Service: F-Secure Gatekeeper Handler Starter - F-Secure Corp. - C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe O23 - Service: F-Secure Network Request Broker - F-Secure Corporation - C:\Program Files\F-Secure\Common\FNRB32.EXE O23 - Service: F-Secure Authentication Agent (FSAA) - F-Secure Corporation. All Rights Reserved. - C:\Program Files\F-Secure\Common\FSAA.EXE O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\F-Secure\Common\FSMA32.EXE O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe ----- Sit mull on Omistaja profiilin Application Data kansiossa tommonen That Copy kansio josta startuppii tulee tonssafetool.exe ja siel kansios on muitaki exe tiedostoja. Pakkasin ne kaikki ja lähetin virustotal.com sivustolle ja tulokset: Antivirus Version Last Update Result AhnLab-V3 2008.1.12.10 2008.01.11 - AntiVir 7.6.0.46 2008.01.11 TR/Dldr.Swizzor.Gen Authentium 4.93.8 2008.01.12 Possibly a new variant of W32/NewUnknownMalware-OC04!Maximus Avast 4.7.1098.0 2008.01.12 Win32:Swizzor-gen AVG 7.5.0.516 2008.01.12 Downloader.Obfuskated BitDefender 7.2 2008.01.13 Trojan.Swizzor.BR CAT-QuickHeal 9.00 2008.01.12 (Suspicious) - DNAScan ClamAV 0.91.2 2008.01.13 Trojan.Crypt-5 DrWeb 4.44.0.09170 2008.01.13 Trojan.Swizzor.397 eSafe 7.0.15.0 2008.01.10 Win32.Obfuscated.en eTrust-Vet 31.3.5451 2008.01.11 - Ewido 4.0 2008.01.13 - FileAdvisor 1 2008.01.13 - Fortinet 3.14.0.0 2008.01.13 W32/Obfuscated.EN!tr F-Prot 4.4.2.54 2008.01.13 W32/Heuristic-162!Eldorado F-Secure 6.70.13030.0 2008.01.12 Trojan.Win32.Obfuscated.en Ikarus T3.1.1.20 2008.01.13 AdWare.Lop.J Kaspersky 7.0.0.125 2008.01.13 not-a-virus:AdWare.Win32.Lop.bb McAfee 5205 2008.01.11 Swizzor.gen Microsoft 1.3109 2008.01.13 Spyware:Win32/C2Lop.B NOD32v2 2787 2008.01.13 a variant of Win32/TrojanDownloader.Swizzor Norman 5.80.02 2008.01.11 - Panda 9.0.0.4 2008.01.12 Adware/Lop Prevx1 V2 2008.01.13 Heuristic: Suspicious Self Modifying EXE Rising 20.26.62.00 2008.01.13 Trojan.DL.Swizzor.dvu Sophos 4.24.0 2008.01.13 Troj/Swizz-Fam Sunbelt 2.2.907.0 2008.01.12 Trojan.Adclicker Symantec 10 2008.01.13 Adware.Lop TheHacker 6.2.9.186 2008.01.11 Trojan/Downloader.Swizzor VBA32 3.12.2.5 2008.01.13 AdWare.Win32.Lop.z VirusBuster 4.3.26:9 2008.01.12 Packed/UPC Webwasher-Gateway 6.6.2 2008.01.13 Trojan.Dldr.Swizzor.Gen Additional information File size: 5480872 bytes MD5: 2f9e56ac6c1741a3274e24dbc70b98eb SHA1: 8e431b2532d91009e923f627ce0e4ee2ea6d6fb4 PEiD: - packers: UPC, Malware_Prot.S Tämä ei ole mun kone vaan kaverin kone joka asuu eri kaupungis joten pääsen vasta ens perjantaina tekemään sitten ne operaatiot mitä pitää tehdä. Pystyn kyllä viikol vastailemaan tähän silti. Nyt scannaan ewido micro scannerilla konetta kokoajan ja laitan lokia tänne sitten. ^^ Mikä ihme tuossa tuo Book Cake.exe on?
moi koneella on Lop-infectio mikä on tullu Messenger Plussan kanssa Poista lisää/poista sovelluksen kautta MessengerPlus3 Tee uusi hjt-scannaus Do a System scan only Sulje kaikki muut ikkunat ja selaimen.Merkkaa nämä rivit ja paina Fix checked R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.wvkyxoovnrphrsontlmhnn.info/B...4cJNJgGVTS.html O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\Messenger Plus! 3\MsgPlus.exe" O4 - HKLM\..\Run: [Mode Load Mpeg Less] C:\Documents and Settings\All Users\Application Data\two setup mode load\Book Cake.exe O4 - HKCU\..\Run: [delete ball] C:\DOCUME~1\Omistaja\APPLIC~1\THATCO~1\tonssafetool.exe O20 - AppInit_DLLs: MsgPlusLoader.dll Lataa NoLop työpöydällesi yhdestä seuraavista linkeistä... Linkki 1 Linkki 2 Linkki 3 Sulje kaikki ohjelmat, koska tämä vaihe vaatii uudelleenkäynnistyksen Tuplaklikkaa NoLop.exe ajaaksesi sen Klikkaa nappulaa "Search and Destroy" <<Tietokoneesi skannataan saastuneiden tiedostojen osalta>> Kun skannaus on valmis, sinua pyydetään käynnistämään kone uudestaan, jos infektio löytyy. Klikkaa OK Klikkaa "REBOOT"-painiketta. NoLopin pitäisi antaa viesti. Jos ei, tuplaklikkaa ohjelmaa ja se valmistuu. Lähetä C:\NoLop.log-tiedoston sisältö uuden HijackThis-lokin kera. -- Jos saat seuraavan virheen, "mscomctl.ocx or one of its dependencies are not correctly registered," lataa mscomctl.ocx ja tallenna se system32-hakemistoosi (yleensä c:\Windows\system32). Tämän jälkeen aja ohjelma uudestaan. Tallenna nämä ohjeet tekstitiedostoon tai tulosta nämä, muuten et pääse niihin käsiksi vikasietotilasta Lataa AVG Anti-Spyware 7.5 ja tallenna ohjelma työpöydällesi. *Kun olet ladannut ohjelman, kaksoisklikkaa asennuohjelman pikakuvaketta työpöydälläsi, asennus alkaa. *Asennuksen jälkeen täytyy ohjelma käynnistää ja sen tunnisteet päivittää. *Käynnistä AVG Anti-Spyware. *Klikkaa "Update" kuvaketta päävalikossa. Sen jälkeen klikkaa "Update now" painiketta. *Sitten klikkaa "Start Update" kuvaketta jolloin päivitys alkaa. *Kun päivitykset on ladattu, klikkaa "Scanner" kuvaketta ikkunan ylälaidassa. Valitse sitten "Settings" välilehti. *Kun "Settings" valikko on auennut, klikkaa "Recommended actions" ja sitten valitse "Quarantine". *Sitten "Reports" valikon alta: *Ota täppi pois kohdasta "Do not Automatically generate report" *Ota täppi pois kohdasta"Only if threats were found" *Sitten klikkaa "Shield" kuvaketta ikkunan ylälaidassa *"Resident shield is", muuta tila active:sta inactive:ksi *Sulje ohjelma, ÄLÄ skannaa vielä. Käynnistä koneesi vikasietotilaan, Ohje! HUOM! Älä käytä muita ohjelmia AVG skannauksen aikana, tämä saattaa häiritä skannausta. *Kun vikasietotilassa, käynnistä AVG Anti-Spyware. *Klikkaa "Scanner" kuvaketta ikkunan ylälaidassa ja valitse "Scan" välilehti. Sitten klikkaa "Complete System Scan". *AVG aloittaa nyt tietokoneen skannaamisen, ole kärsivällinen sillä skannaus vie aikaa. Kun skannaus on valmis: TÄRKEÄÄ : Älä klikkaa "Save Scan Report" ennen kuin klikkaat "Apply all Actions" *Varmistu, että Set all elements to: näyttää Quarantine (1), jos ei, klikkaa linkkiä ja valitse Quarantine popup-valikosta. *Sinulta kysytään mitä tehdä jos infektioita löytyi, valitse silloin "Apply all actions" *Sitten klikkaa "Reports" kuvaketta ohjelma yläosasta. *Klikkaa "Save report as" painiketta ikkunan vasemmassa alalaidassa ja tallenna raportti työpöydälle. *Sulje ohjelma, käynnistä kone normaalisti ja lähetä AVG Anti-Spyware:n raportti viestikejuusi. Lähetä NoLop-loki ja avg-loki ja uusi hjt-loki
NoLop! Log by Skate_Punk_21 Fix running from: C:\Documents and Settings\Omistaja\Työpöytä [13.1.2008] [16:50:30] ---Infection Files Found/Removed--- C:\Documents and Settings\All Users\Application Data\Bash chic balm rect\bibplan.exe C:\Documents and Settings\All Users\Application Data\Bash chic balm rect\DrawAmen.exe C:\Documents and Settings\All Users\Application Data\Bash chic balm rect\Moremove.exe C:\Documents and Settings\All Users\Application Data\Bash chic balm rect\Trust Team.exe C:\Documents and Settings\All Users\Application Data\Bash chic balm rect\usermeal.exe C:\Documents and Settings\Omistaja\Application Data\That Copy\anozyirk.exe C:\Documents and Settings\Omistaja\Application Data\That Copy\cyuzrytv.exe C:\Documents and Settings\Omistaja\Application Data\That Copy\guphkqvs.exe C:\Documents and Settings\Omistaja\Application Data\That Copy\hezyrlaw.exe C:\Documents and Settings\Omistaja\Application Data\That Copy\kbwhyikb.exe C:\WINDOWS\tasks\A061C271918A40ED.job Beginning Removal... Rebooting... Removing Lop's Leftover Files/Folders... Editing Registry... **Fix Complete!** ---Listing AppData sub directories--- C:\Documents and Settings\All Users\Application Data\Adobe C:\Documents and Settings\All Users\Application Data\Apple Computer C:\Documents and Settings\All Users\Application Data\Cyberlink C:\Documents and Settings\All Users\Application Data\Installshield C:\Documents and Settings\All Users\Application Data\Microsoft C:\Documents and Settings\All Users\Application Data\Msn6 C:\Documents and Settings\All Users\Application Data\Popcap C:\Documents and Settings\All Users\Application Data\Quicktime C:\Documents and Settings\All Users\Application Data\Skype -- EMPTY Directory C:\Documents and Settings\All Users\Application Data\Symantec C:\Documents and Settings\All Users\Application Data\Two Setup Mode Load C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage C:\Documents and Settings\Default User\Application Data\Adobe C:\Documents and Settings\Default User\Application Data\Identities C:\Documents and Settings\Default User\Application Data\Intertrust C:\Documents and Settings\Default User\Application Data\Microsoft C:\Documents and Settings\Default User\Application Data\Sampleview -- EMPTY Directory C:\Documents and Settings\Default User\Application Data\Symantec C:\Documents and Settings\Default User\Application Data\Veritas C:\Documents and Settings\Localservice\Application Data\Help -- EMPTY Directory C:\Documents and Settings\Localservice\Application Data\Microsoft C:\Documents and Settings\Localservice\Application Data\Mozilla C:\Documents and Settings\Networkservice\Application Data\Microsoft C:\Documents and Settings\Niksu\Application Data\Adobe C:\Documents and Settings\Niksu\Application Data\Apple Computer C:\Documents and Settings\Niksu\Application Data\Identities C:\Documents and Settings\Niksu\Application Data\Intertrust C:\Documents and Settings\Niksu\Application Data\Lavasoft C:\Documents and Settings\Niksu\Application Data\Macromedia C:\Documents and Settings\Niksu\Application Data\Microsoft C:\Documents and Settings\Niksu\Application Data\Mozilla C:\Documents and Settings\Niksu\Application Data\Msn6 C:\Documents and Settings\Niksu\Application Data\Sampleview -- EMPTY Directory C:\Documents and Settings\Niksu\Application Data\Skype C:\Documents and Settings\Niksu\Application Data\Sun C:\Documents and Settings\Niksu\Application Data\Symantec C:\Documents and Settings\Niksu\Application Data\Teamspeak2 C:\Documents and Settings\Niksu\Application Data\That Copy C:\Documents and Settings\Niksu\Application Data\Ventrilo C:\Documents and Settings\Niksu\Application Data\Veritas C:\Documents and Settings\Omistaja\Application Data\Adobe C:\Documents and Settings\Omistaja\Application Data\Adobeum -- EMPTY Directory C:\Documents and Settings\Omistaja\Application Data\Apple Computer C:\Documents and Settings\Omistaja\Application Data\Cyberlink C:\Documents and Settings\Omistaja\Application Data\Google C:\Documents and Settings\Omistaja\Application Data\Help -- EMPTY Directory C:\Documents and Settings\Omistaja\Application Data\Identities -- EMPTY Directory C:\Documents and Settings\Omistaja\Application Data\Lavasoft C:\Documents and Settings\Omistaja\Application Data\Macromedia C:\Documents and Settings\Omistaja\Application Data\Microsoft C:\Documents and Settings\Omistaja\Application Data\Mozilla C:\Documents and Settings\Omistaja\Application Data\Msn6 C:\Documents and Settings\Omistaja\Application Data\Real -- EMPTY Directory C:\Documents and Settings\Omistaja\Application Data\Sampleview -- EMPTY Directory C:\Documents and Settings\Omistaja\Application Data\Skype C:\Documents and Settings\Omistaja\Application Data\Soldat C:\Documents and Settings\Omistaja\Application Data\Sun C:\Documents and Settings\Omistaja\Application Data\Symantec C:\Documents and Settings\Omistaja\Application Data\Teamspeak2 C:\Documents and Settings\Omistaja\Application Data\Utorrent C:\Documents and Settings\Omistaja\Application Data\Ventrilo C:\Documents and Settings\Omistaja\Application Data\Veritas C:\Documents and Settings\Omistaja\Application Data\Vlc C:\Documents and Settings\Omistaja\Application Data\Xfire ^^ Tässä tämä NoLop loki. __________________________________________________ ewido anti-spyware online scanner http://www.ewido.net __________________________________________________ Name: TrackingCookie.Doubleclick Path: :mozilla.13:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Advertising Path: :mozilla.25:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Advertising Path: :mozilla.26:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Advertising Path: :mozilla.28:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Advertising Path: :mozilla.29:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Statistik-gallup Path: :mozilla.46:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Statistik-gallup Path: :mozilla.47:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Tradedoubler Path: :mozilla.51:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Tradedoubler Path: :mozilla.52:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Tradedoubler Path: :mozilla.53:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Tradedoubler Path: :mozilla.54:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Imrworldwide Path: :mozilla.74:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Imrworldwide Path: :mozilla.77:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Adbrite Path: :mozilla.93:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Adbrite Path: :mozilla.95:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Statcounter Path: :mozilla.101:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Statcounter Path: :mozilla.102:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Statcounter Path: :mozilla.103:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Statcounter Path: :mozilla.104:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Statcounter Path: :mozilla.105:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Statcounter Path: :mozilla.106:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Statcounter Path: :mozilla.107:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Adtech Path: :mozilla.114:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Adtech Path: :mozilla.115:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Serving-sys Path: :mozilla.123:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Serving-sys Path: :mozilla.124:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Serving-sys Path: :mozilla.125:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Serving-sys Path: :mozilla.126:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Serving-sys Path: :mozilla.127:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Fastclick Path: :mozilla.135:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Fastclick Path: :mozilla.136:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Webtrends Path: :mozilla.149:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Masterstats Path: :mozilla.150:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Falkag Path: :mozilla.155:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Revsci Path: :mozilla.163:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Yieldmanager Path: :mozilla.164:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Yieldmanager Path: :mozilla.165:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Yieldmanager Path: :mozilla.166:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Tribalfusion Path: :mozilla.170:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Adjuggler Path: :mozilla.171:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Adjuggler Path: :mozilla.172:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Adjuggler Path: :mozilla.173:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Casalemedia Path: :mozilla.190:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Information Path: :mozilla.193:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Revenue Path: :mozilla.194:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Weborama Path: :mozilla.198:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.2o7 Path: :mozilla.204:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.2o7 Path: :mozilla.205:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.2o7 Path: :mozilla.206:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.2o7 Path: :mozilla.207:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Pointroll Path: :mozilla.208:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Pointroll Path: :mozilla.209:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Pointroll Path: :mozilla.210:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Pointroll Path: :mozilla.211:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Euroclick Path: :mozilla.225:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Atdmt Path: :mozilla.228:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Realmedia Path: :mozilla.243:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Realmedia Path: :mozilla.244:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Targetnet Path: :mozilla.245:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Targetnet Path: :mozilla.246:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Zedo Path: :mozilla.249:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.2o7 Path: :mozilla.266:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Bluestreak Path: :mozilla.267:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Onestat Path: :mozilla.270:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.Onestat Path: :mozilla.271:C:\Documents and Settings\Niksu\Application Data\Mozilla\Firefox\Profiles\la9vyqon.default\cookies.txt Risk: Medium Name: TrackingCookie.2o7 Path: C:\Documents and Settings\Niksu\Cookies\niksu@2o7[2].txt Risk: Medium Name: TrackingCookie.Yieldmanager Path: C:\Documents and Settings\Niksu\Cookies\niksu@ad.yieldmanager[1].txt Risk: Medium Name: TrackingCookie.Atdmt Path: C:\Documents and Settings\Niksu\Cookies\niksu@atdmt[2].txt Risk: Medium Name: TrackingCookie.Doubleclick Path: C:\Documents and Settings\Niksu\Cookies\niksu@doubleclick[1].txt Risk: Medium Name: TrackingCookie.2o7 Path: C:\Documents and Settings\Niksu\Cookies\niksu@partygaming.122.2o7[1].txt Risk: Medium Name: TrackingCookie.Statistik-gallup Path: C:\Documents and Settings\Niksu\Cookies\niksu@statistik-gallup[2].txt Risk: Medium Name: TrackingCookie.Reliablestats Path: C:\Documents and Settings\Niksu\Cookies\niksu@stats1.reliablestats[1].txt Risk: Medium Name: Not-A-Virus.Downloader.Win32.WinFixer.d Path: C:\Documents and Settings\Niksu\Local Settings\Temp\zj2ly3mr.exe Risk: Low Name: TrackingCookie.Tradedoubler Path: :mozilla.15:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Tradedoubler Path: :mozilla.16:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Tradedoubler Path: :mozilla.17:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Statistik-gallup Path: :mozilla.20:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Advertising Path: :mozilla.23:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Advertising Path: :mozilla.24:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Advertising Path: :mozilla.25:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Advertising Path: :mozilla.33:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Netflame Path: :mozilla.38:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Tribalfusion Path: :mozilla.39:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Tribalfusion Path: :mozilla.40:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Tribalfusion Path: :mozilla.41:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Tribalfusion Path: :mozilla.42:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Atdmt Path: :mozilla.62:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.2o7 Path: :mozilla.73:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.2o7 Path: :mozilla.74:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Doubleclick Path: :mozilla.99:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.2o7 Path: :mozilla.117:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Adbrite Path: :mozilla.122:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Adbrite Path: :mozilla.123:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Adbrite Path: :mozilla.124:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Adbrite Path: :mozilla.125:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Yieldmanager Path: :mozilla.168:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Yieldmanager Path: :mozilla.169:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Yieldmanager Path: :mozilla.170:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Adtech Path: :mozilla.184:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Questionmarket Path: :mozilla.205:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Questionmarket Path: :mozilla.206:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Fastclick Path: :mozilla.209:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Fastclick Path: :mozilla.210:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Fastclick Path: :mozilla.211:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Fastclick Path: :mozilla.212:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Fastclick Path: :mozilla.213:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Fastclick Path: :mozilla.214:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Overture Path: :mozilla.217:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Statcounter Path: :mozilla.241:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Liveperson Path: :mozilla.273:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Liveperson Path: :mozilla.275:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Zedo Path: :mozilla.298:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Zedo Path: :mozilla.299:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Zedo Path: :mozilla.300:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.2o7 Path: :mozilla.301:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Pointroll Path: :mozilla.308:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Pointroll Path: :mozilla.309:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Pointroll Path: :mozilla.310:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Pointroll Path: :mozilla.311:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Pointroll Path: :mozilla.312:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Pointroll Path: :mozilla.313:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Pointroll Path: :mozilla.314:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Hitbox Path: :mozilla.319:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Hitbox Path: :mozilla.320:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Hitbox Path: :mozilla.321:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Imrworldwide Path: :mozilla.323:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Imrworldwide Path: :mozilla.324:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: TrackingCookie.Hitbox Path: :mozilla.327:C:\Documents and Settings\Omistaja\Application Data\Mozilla\Firefox\Profiles\wyq738e3.default\cookies.txt Risk: Medium Name: Not-A-Virus.Downloader.Win32.SpyGame Path: C:\Program Files\HijackThis\backups\backup-20080113-135412-753.dll Risk: Low Name: Not-A-Virus.Downloader.Win32.WinFixer.d Path: C:\WINDOWS\Downloaded Program Files\UERSJ_0001_N68M0902NetInstaller.exe Risk: Low ^^ Tässä ewido-micro. Asentelen ton avg as:n nyt tähän kohta ja laitan sit sen lokin.
Noniin siel on nyt ajettu avg läpi kans ja se löysi kuulemma trackingcookieita vaan. Ens perjantaina voin laittaa lokin vasta jos tarpeellista. Koneella on muistaakseni AMD XP 1800mhz ja keskusmuistia on 512mb ja tarvis päivitellä vähän virusohjelmia siitä kun ovat niin vanhoja kaikki että laitanko siihen avastin vai f-securen?
moi f-secure on parempi kuin avast mutta maksullinen Paras ilmanen on Antivir jatketaan.... [*]1.Napsauta Käynnistä-painiketta ja valitse Ohjauspaneeli. [*]2.Valitse "Kansion asetukset" [*]3.Siirry "Näytä välilehdelle" [*]4.Valitse Näytä-välilehden Piilotetut tiedostot ja kansiot -kohdassa" Näytä piilotetut tiedostot ja kansiot." [*]Käynnistä tietokone [*]Kun kuulet koneen piippaavan, paina F8, kuitenkin ennen Windowsin logon esiintuloa [*]Seuraavaksi pitäisi ilmestyä valikko [*]Valitse valikosta vikasietotila. Poista kansiot C:\Documents and Settings\All Users\Application Data\Two Setup Mode Load C:\Documents and Settings\Omistaja\Application Data\That Copy C:\Documents and Settings\All Users\Application Data\Bash chic balm rect Käynnistä kone uudelleen ja laita piilotiedostot takisin piiloon Lähetä uusi hjt-loki
