Windowsin uudelleenasennusko tarpeessa?

Aksukki · Dec 19, 2005

Olen jo pari päivää ollut tälläisen ongelman edessä: Lähes mitkään netistä lataamani tiedostot eivät toimi. Varsinkin .exe tiedostot, joita avatessani kone menee täysin sekaisin ja joudun reboottaamaan sen. En ole löytänyt ongelmaan ratkaisua, vaikka olen kaikki selaimet asentanut uudelleen yms. Joten koska olen melko aloittelija tietokoneiden kanssa, voisiko joku antaa ratkaisun ongelmaan, tai kertoa seikkaperäiset ohjeet Windowsin uudelleenasennukseen. Koneellani on Windows XP Service Pack 2, jos tuo nyt on mitenkään tärkeää. Kiitos jo etukäteen.

Agent_007 · Dec 19, 2005

Virukset ja pahisohjelmat tarkistettu?

Aksukki · Dec 19, 2005

Jep.

aaxxeell · Dec 19, 2005

Kokeillaan kuitenkin katsoa vielä löytyskö häikkää.

Hae Hijackthis -> http://koti.mbnet.fi/pattaya1/HijackThis.exe . Tallenna hakemistoon c:\hjt, käynnistä, klikkaa do a system scan and save a logfile ja lähetä loki tänne sit tulee muistio ja kopioi tänne.

Aksukki · Dec 20, 2005

Logfile of HijackThis v1.99.1
Scan saved at 14:30:05, on 20.12.2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\F-Secure\Common\FSM32.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\PROGRA~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE
C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
C:\Program Files\F-Secure\Anti-Virus\FSGK32.EXE
C:\Program Files\F-Secure\BackWeb\7681197\program\fsbwsys.exe
C:\Program Files\F-Secure\BackWeb\7681197\Program\F-Secure Automatic Update.exe
C:\Program Files\F-Secure\Anti-Virus\fssm32.exe
C:\Program Files\F-Secure\Common\FSMA32.EXE
C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe
C:\Program Files\F-Secure\Common\FSMB32.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\F-Secure\Common\FCH32.EXE
C:\Program Files\F-Secure\Common\FAMEH32.EXE
C:\Program Files\F-Secure\Common\FNRB32.EXE
C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe
C:\Program Files\F-Secure\Common\FIH32.EXE
C:\Program Files\F-Secure\Anti-Virus\fsav32.exe
C:\Program Files\F-Secure\FSGUI\fsguiexe.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Akki\Local Settings\Temporary Internet Files\Content.IE5\9G4VM90J\HijackThis[1].exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.ybyegusdcm.com/MIXs3INUfS72DbyKyYe5MSW0K5lSNFy6S2GLl2cozEgmgWk5ntJMxmTM1DKUfJ4X.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.runescape.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapps.yahoo.com/customize/ycomp_wave/defaults/su/*http://www.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
N4 - Mozilla: user_pref("browser.startup.homepage", "www.runescape.com"); (C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\prefs.js)
N4 - Mozilla: user_pref("browser.search.defaultengine", "engine://C%3A%5CPROGRA%7E1%5CNETSCAPE%5CNETSCAPE%5Csearchplugins%5CSBWeb_01.src"); (C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\prefs.js)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {933416A8-A67A-07E9-986C-AD808DA941D3} - C:\DOCUME~1\Akki\APPLIC~1\MP3MFC~1\heart admin.exe (file missing)
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.02.3000.1002\en-xu\stmain.dll (file missing)
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.3000.1001\fi\msntb.dll (file missing)
O2 - BHO: (no name) - {DE8D5BB5-CC1F-1BA7-6A96-59FB6CAED968} - C:\DOCUME~1\Immu\APPLIC~1\MP3MFC~1\heart admin.exe (file missing)
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.3000.1001\fi\msntb.dll (file missing)
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\F-Secure\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2\bin\npjpi142.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2\bin\npjpi142.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: RaptisoftGameLoader - http://www.miniclip.com/hamsterball/raptisoftgameloader.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {1D6711C8-7154-40BB-8380-3DEA45B69CBF} (Web P2P Installer) -
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {E6187999-9FEC-46A1-A20F-F4CA977D5643} (ZoneChess Object) - http://messenger.zone.msn.com/binary/Chess.cab31267.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: F-Secure Automatic Update (BackWeb Plug-in - 7681197) - Unknown owner - C:\PROGRA~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE
O23 - Service: F-Secure Gatekeeper Handler Starter - F-Secure Corp. - C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Network Request Broker - F-Secure Corporation - C:\Program Files\F-Secure\Common\FNRB32.EXE
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\F-Secure\BackWeb\7681197\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\F-Secure\Common\FSMA32.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: ScsiAccess - Unknown owner - C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe

Kuitenkin latauksen yhteydessä sattui pieni ykityiskohta, että kun yritin netscapella ja IE:llä tallentaa tiedostoa, kone kaatui. Kun taas suoritin sen suoraan IE:llä ilmeisesti Temp-hakemistosta alkoi ohjelma toimia. Auttoikohan?

Jannejt · Dec 20, 2005

sun pitäis siirtää se kyllä nyt jonnekkin C:\hjt\HiJackThis.exe ja tehä loki sieltä, näet backuppien takia

eli siirrä ny sinne ja skannaa sit, sitten uusiks toi loki

siirsin paremmalle alueelle..

-kemisti- · Dec 20, 2005

Jees eli ensin HjT omaan hakemistoon, kuten Jannejt jo sanoi -> C:\hjt\HijackThis.exe

Sitten fixaa nämä HjT:llä(do a system scan only, merkkaa ja paina fix checked):

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.ybyegusdcm.com/MIXs3INUfS72DbyKyYe5MSW0K5lSNFy6S2GLl2c...
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapps.yahoo.com/customize/ycomp_wave/defaults/su/...
O2 - BHO: (no name) - {933416A8-A67A-07E9-986C-AD808DA941D3} - C:\DOCUME~1\Akki\APPLIC~1\MP3MFC~1\heart admin.exe (file missing)
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.02.3000.1002\en-xu\stmain.dll (file missing)
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.3000.1001\fi\msntb.dll (file missing)
O2 - BHO: (no name) - {DE8D5BB5-CC1F-1BA7-6A96-59FB6CAED968} - C:\DOCUME~1\Immu\APPLIC~1\MP3MFC~1\heart admin.exe (file missing)
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.3000.1001\fi\msntb.dll (file missing)
O16 - DPF: RaptisoftGameLoader - http://www.miniclip.com/hamsterball/raptisoftgameloader.cab
O16 - DPF: {1D6711C8-7154-40BB-8380-3DEA45B69CBF} (Web P2P Installer) -

Laita piilotiedostot näkyviin, ohje ->
http://keskustelu.afterdawn.com/thread_view.cfm/248944

Käynnistä vikasietotilaan (F8 käynnistyksen yhteydessä) ja poista, jos on:

C:\DOCUME~1\Immu\APPLIC~1\==>MP3MFC~1<==
C:\DOCUME~1\Akki\APPLIC~1\==>MP3MFC~1<==

Käynnistä uudelleen ja lähetä uusi HjT-loki.

Aksukki · Dec 20, 2005

Logfile of HijackThis v1.99.1
Scan saved at 20:48:31, on 20.12.2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\F-Secure\Common\FSM32.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\PROGRA~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE
C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
C:\Program Files\F-Secure\Anti-Virus\FSGK32.EXE
C:\Program Files\F-Secure\BackWeb\7681197\Program\F-Secure Automatic Update.exe
C:\Program Files\F-Secure\BackWeb\7681197\program\fsbwsys.exe
C:\Program Files\F-Secure\Anti-Virus\fssm32.exe
C:\Program Files\F-Secure\Common\FSMA32.EXE
C:\Program Files\F-Secure\Common\FSMB32.EXE
C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe
C:\Program Files\F-Secure\Common\FCH32.EXE
C:\Program Files\F-Secure\Common\FAMEH32.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe
C:\Program Files\F-Secure\Common\FNRB32.EXE
C:\Program Files\F-Secure\Common\FIH32.EXE
C:\Program Files\F-Secure\Anti-Virus\fsav32.exe
C:\Program Files\F-Secure\FSGUI\fsguiexe.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Netscape\Netscape Browser\netscape.exe
C:\hjt\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.runescape.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
N4 - Mozilla: user_pref("browser.startup.homepage", "www.runescape.com"); (C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\prefs.js)
N4 - Mozilla: user_pref("browser.search.defaultengine", "engine://C%3A%5CPROGRA%7E1%5CNETSCAPE%5CNETSCAPE%5Csearchplugins%5CSBWeb_01.src"); (C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\prefs.js)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.3000.1001\fi\msntb.dll (file missing)
O2 - BHO: (no name) - {DE8D5BB5-CC1F-1BA7-6A96-59FB6CAED968} - C:\DOCUME~1\Immu\APPLIC~1\MP3MFC~1\heart admin.exe (file missing)
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\F-Secure\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2\bin\npjpi142.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2\bin\npjpi142.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {E6187999-9FEC-46A1-A20F-F4CA977D5643} (ZoneChess Object) - http://messenger.zone.msn.com/binary/Chess.cab31267.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: F-Secure Automatic Update (BackWeb Plug-in - 7681197) - Unknown owner - C:\PROGRA~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE
O23 - Service: F-Secure Gatekeeper Handler Starter - F-Secure Corp. - C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Network Request Broker - F-Secure Corporation - C:\Program Files\F-Secure\Common\FNRB32.EXE
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\F-Secure\BackWeb\7681197\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\F-Secure\Common\FSMA32.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: ScsiAccess - Unknown owner - C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe

Ei tuossa käynnistyksen yhteydessä ollut mitään sellaista aikaa jolloin F8 painamisesta olisi käynnistynyt vikasietotila, kuten vissiinkin Windows 98 muistaakseni. Mitäs noissa MP3MFC-kansioissa oli?

Ei muuten vieläkään nuo tietyt ohjelmat/tiedostot toimi. Olisiko vika rekisterissä? Olen kaverilta saanut dvd:lle poltetun saman tiedoston, mutta sekään ei ole käynnistynyt. Siitä oma päätelmäni.

spertti · Dec 20, 2005

Niissä kansioissa on edelleenkin virus. Painele sitä F8:a käynnistyksen yhteydessä toistuvasti, kunnes tulee valikko, josta voit valita vikasietotilan ( eng: safe mode ). Siihen ei siis aukea mitään ikkunaa, jossa käsketään painamaan F8:a. Ota uusi loki ennen sitä normaalitilassa, ja katso onko nuo rivit tulleet takaisin. Jos näin on, niin aloita fixaamalla ne, ja käynnistä sitten vikasietotilaan, ja tee -kemistin- ohjeiden mukaisesti.

EDIT: Tossa lokissahan nuo rivit on vieläkin, eli fixaa ne ensin, ja käynnistä sen jälkeen vikasietotilaan.

Eli nämä fixaat:
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.02.3000.1002\en-xu\stmain.dll (file missing)
O2 - BHO: (no name) - {DE8D5BB5-CC1F-1BA7-6A96-59FB6CAED968} - C:\DOCUME~1\Immu\APPLIC~1\MP3MFC~1\heart admin.exe (file missing)

aaxxeell · Dec 20, 2005

Toinen tapa päästä vikasietotilaan:

käynnistä -> suorita -> msconfig -> Boot.ini välilehti ja sieltä /safemode kohdalle ruksi -> ok.

Käynnistä kone uudelleen ja pitäisi aueta vikasietotila.
Poistettua kansiot tee sama juttu toisinpäin vain eli ruksi pois.

Aksukki · Dec 21, 2005

Logfile of HijackThis v1.99.1
Scan saved at 13:44:55, on 21.12.2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\F-Secure\Common\FSM32.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\PROGRA~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE
C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
C:\Program Files\F-Secure\Anti-Virus\FSGK32.EXE
C:\Program Files\F-Secure\BackWeb\7681197\Program\F-Secure Automatic Update.exe
C:\Program Files\F-Secure\BackWeb\7681197\program\fsbwsys.exe
C:\Program Files\F-Secure\Anti-Virus\fssm32.exe
C:\Program Files\F-Secure\Common\FSMA32.EXE
C:\Program Files\F-Secure\Common\FSMB32.EXE
C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe
C:\Program Files\F-Secure\Common\FCH32.EXE
C:\Program Files\F-Secure\Common\FAMEH32.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\F-Secure\Common\FNRB32.EXE
C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe
C:\Program Files\F-Secure\Common\FIH32.EXE
C:\Program Files\F-Secure\Anti-Virus\fsav32.exe
C:\Program Files\F-Secure\FSGUI\fsguiexe.exe
C:\Program Files\Netscape\Netscape Browser\netscape.exe
C:\WINDOWS\system32\wuauclt.exe
C:\hjt\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.runescape.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
N4 - Mozilla: user_pref("browser.startup.homepage", "www.runescape.com"); (C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\prefs.js)
N4 - Mozilla: user_pref("browser.search.defaultengine", "engine://C%3A%5CPROGRA%7E1%5CNETSCAPE%5CNETSCAPE%5Csearchplugins%5CSBWeb_01.src"); (C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\prefs.js)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\F-Secure\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2\bin\npjpi142.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2\bin\npjpi142.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .mpg: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin3.dll
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {E6187999-9FEC-46A1-A20F-F4CA977D5643} (ZoneChess Object) - http://messenger.zone.msn.com/binary/Chess.cab31267.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: F-Secure Automatic Update (BackWeb Plug-in - 7681197) - Unknown owner - C:\PROGRA~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE
O23 - Service: F-Secure Gatekeeper Handler Starter - F-Secure Corp. - C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Network Request Broker - F-Secure Corporation - C:\Program Files\F-Secure\Common\FNRB32.EXE
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\F-Secure\BackWeb\7681197\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\F-Secure\Common\FSMA32.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: ScsiAccess - Unknown owner - C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe

Eli tuossa nyt on tuo logi tiedostojen poiston jälkeen. En tuota C:\DOCUME~1\Akki\APPLIC~1\==>MP3MFC~1<== tiedostoa löytänyt mutta C:\DOCUME~1\Immu\APPLIC~1\==>MPEMFC~1<== tiedoston poistin. onko vielä jotain viruksia näkyvissä? Nyt ainakin tiedostojen lataus toimii, mutta jotkut tiedostot joita latasin ennen tätä koko vahinkoa eivät toimi, enkä edes pysty niitä poistamaan kun kone tilttaa..

aaxxeell · Dec 21, 2005

Selvä,

Kokeile nyt jos kerran saat ohjelmat ladattua niin jos myös asennettua niin...

Ewido -> http://keskustelu.afterdawn.com/thread_view.cfm/269186
Tee ohjeiden mukaisesti ja lähetä sen örkki tulos tänne.

eScan -> http://koti.mbnet.fi/pattaya1/escanmwav.htm
Sama juttu, ohjeilla toimi jos pystyt.
Lähetä tämän örkki tulokset myös jos tarkistat koneesi eli se alempi laatikko.

Voit kokeilla aluksi yhtä ohjelmaa ja lähetä tosiaan ne raportit tänne.

Aksukki · Dec 21, 2005

No tuo ewido anti-malvare tuntuu pysähtyneen erääseen nuista lataamistani tiedostoista. Toista ohjelmaa en vielä ole kokeillut kun se vissiin kestää monta tuntia tarkistaa. Miten sen sais ohittamaan tietyt tiedostot? siis ewidon.

/edit Nyt se sitten lähti meneen eteenpäin. Kohta se loki siitä..

Aksukki · Dec 21, 2005

---------------------------------------------------------
ewido anti-malware - Scan report
---------------------------------------------------------

+ Created on: 20:26:33, 21.12.2005
+ Report-Checksum: DF844595

+ Scan result:

HKLM\SOFTWARE\Classes\CLSID\{C91E8926-D4BE-4685-99F4-0D996B96BAC0} -> Spyware.P2PNetworking : Cleaned with backup
HKLM\SOFTWARE\Classes\Interface\{16097036-894C-4C00-A61F-93CA0D49A70E} -> Spyware.TOPicks : Cleaned with backup
HKLM\SOFTWARE\Classes\Interface\{2ED5AF98-9258-45BA-B79B-06625C92F662} -> Spyware.TOPicks : Cleaned with backup
HKLM\SOFTWARE\Classes\Interface\{700DC0DD-F409-42E0-9DE5-21EE1A2BA9FD} -> Spyware.TOPicks : Cleaned with backup
HKLM\SOFTWARE\Classes\Interface\{C91E8926-D4BE-4685-99F4-0D996B96BAC0} -> Spyware.P2PNetworking : Cleaned with backup
HKLM\SOFTWARE\Classes\Interface\{FD42F6D3-7AB1-470C-979B-7996EDC99099} -> Spyware.TOPicks : Cleaned with backup
HKLM\SOFTWARE\PerfectNav -> Spyware.KeenValue : Cleaned with backup
HKLM\SOFTWARE\PerfectNav\BHO -> Spyware.KeenValue : Cleaned with backup
HKLM\SOFTWARE\PerfectNav\BHO\HomePage -> Spyware.KeenValue : Cleaned with backup
HKLM\SOFTWARE\PerfectNav\BHO\RedirectURLS -> Spyware.KeenValue : Cleaned with backup
HKU\S-1-5-21-1801674531-838170752-682003330-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00A6FAF1-072E-44CF-8957-5838F569A31D} -> Spyware.MyWebSearch : Cleaned with backup
HKU\S-1-5-21-1801674531-838170752-682003330-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00D6A7E7-4A97-456F-848A-3B75BF7554D7} -> Spyware.KeenValue : Cleaned with backup
HKU\S-1-5-21-1801674531-838170752-682003330-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0494D0D1-F8E0-41AD-92A3-14154ECE70AC} -> Spyware.MyWay : Cleaned with backup
HKU\S-1-5-21-1801674531-838170752-682003330-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0494D0D9-F8E0-41AD-92A3-14154ECE70AC} -> Spyware.MyWay : Cleaned with backup
HKU\S-1-5-21-1801674531-838170752-682003330-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA1-A523-4961-B6BB-170DE4475CCA} -> Spyware.MyWebSearch : Cleaned with backup
HKU\S-1-5-21-1801674531-838170752-682003330-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA9-A523-4961-B6BB-170DE4475CCA} -> Spyware.MyWebSearch : Cleaned with backup
:mozilla.13:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup
:mozilla.64:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Tradedoubler : Cleaned with backup
:mozilla.65:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Tradedoubler : Cleaned with backup
:mozilla.107:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.108:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.109:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.110:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.123:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.124:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.127:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.128:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.129:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.132:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.133:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.134:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
:mozilla.135:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
:mozilla.136:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.137:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.138:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.139:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.140:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Burstnet : Cleaned with backup
:mozilla.141:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Burstnet : Cleaned with backup
:mozilla.142:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Burstnet : Cleaned with backup
:mozilla.151:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Mediaplex : Cleaned with backup
:mozilla.164:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Ru4 : Cleaned with backup
:mozilla.165:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Doubleclick : Cleaned with backup
:mozilla.166:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Ru4 : Cleaned with backup
:mozilla.167:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Ru4 : Cleaned with backup
:mozilla.168:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Adtech : Cleaned with backup
:mozilla.169:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Adtech : Cleaned with backup
:mozilla.186:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.187:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.188:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.189:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.191:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Atdmt : Cleaned with backup
:mozilla.210:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.211:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.212:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.213:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.214:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.247:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.248:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.249:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.250:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.251:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.252:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.253:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.254:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.255:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Spylog : Cleaned with backup
:mozilla.271:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.273:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.274:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.275:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.276:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.277:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.278:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.279:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.280:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.284:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Valueclick : Cleaned with backup
:mozilla.285:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Valueclick : Cleaned with backup
:mozilla.292:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.293:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.294:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.295:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.320:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
:mozilla.321:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
:mozilla.322:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
:mozilla.323:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
:mozilla.336:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.337:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.338:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.339:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.340:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.341:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.342:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.343:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.344:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.345:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.346:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.347:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.348:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.349:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.401:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Bfast : Cleaned with backup
:mozilla.402:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Bfast : Cleaned with backup
:mozilla.434:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Hotlog : Cleaned with backup
:mozilla.435:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Targetnet : Cleaned with backup
:mozilla.439:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Clickzs : Cleaned with backup
:mozilla.440:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Clickzs : Cleaned with backup
:mozilla.441:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Clickzs : Cleaned with backup
:mozilla.442:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Clickzs : Cleaned with backup
:mozilla.447:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.460:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Hitslink : Cleaned with backup
:mozilla.461:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Hitslink : Cleaned with backup
:mozilla.462:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Hitslink : Cleaned with backup
:mozilla.463:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Hitslink : Cleaned with backup
:mozilla.478:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Questionmarket : Cleaned with backup
:mozilla.489:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.490:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.491:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.492:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.493:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.494:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.495:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.506:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Com : Cleaned with backup
:mozilla.507:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Com : Cleaned with backup
:mozilla.527:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.534:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.590:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Bluestreak : Cleaned with backup
:mozilla.598:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
:mozilla.599:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
:mozilla.600:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
:mozilla.601:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
:mozilla.605:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.607:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Centrport : Cleaned with backup
:mozilla.624:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Comclick : Cleaned with backup
:mozilla.625:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Comclick : Cleaned with backup
:mozilla.626:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Comclick : Cleaned with backup
:mozilla.629:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Trafic : Cleaned with backup
:mozilla.631:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.632:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.657:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Revenue : Cleaned with backup
:mozilla.746:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.756:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.777:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup
:mozilla.778:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup
:mozilla.792:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup
:mozilla.793:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup
:mozilla.794:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup
:mozilla.795:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup
:mozilla.796:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup
:mozilla.797:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup
:mozilla.808:C:\Documents and Settings\Akki\Application Data\Mozilla\Firefox\Profiles\i7wxj9ty.default\cookies.txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup
:mozilla.7:C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.8:C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.9:C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.10:C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\cookies.txt -> Spyware.Cookie.Doubleclick : Cleaned with backup
:mozilla.20:C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\cookies.txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup
:mozilla.21:C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\cookies.txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup
:mozilla.22:C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.23:C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\cookies.txt -> Spyware.Cookie.Burstnet : Cleaned with backup
:mozilla.29:C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\cookies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
:mozilla.32:C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\cookies.txt -> Spyware.Cookie.Bfast : Cleaned with backup
:mozilla.33:C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\cookies.txt -> Spyware.Cookie.Atdmt : Cleaned with backup
:mozilla.34:C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\cookies.txt -> Spyware.Cookie.Mediaplex : Cleaned with backup
:mozilla.44:C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.45:C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\cookies.txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup
:mozilla.53:C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\cookies.txt -> Spyware.Cookie.Valueclick : Cleaned with backup
:mozilla.54:C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.55:C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.56:C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.57:C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.58:C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.59:C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.60:C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.93:C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\cookies.txt -> Spyware.Cookie.Revenue : Cleaned with backup
:mozilla.94:C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\cookies.txt -> Spyware.Cookie.Targetnet : Cleaned with backup
:mozilla.95:C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\cookies.txt -> Spyware.Cookie.Targetnet : Cleaned with backup
:mozilla.102:C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\cookies.txt -> Spyware.Cookie.Valuead : Cleaned with backup
:mozilla.9:C:\Documents and Settings\Immu\Application Data\Netscape\NSB\Profiles\fwmhqx8s.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.10:C:\Documents and Settings\Immu\Application Data\Netscape\NSB\Profiles\fwmhqx8s.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.11:C:\Documents and Settings\Immu\Application Data\Netscape\NSB\Profiles\fwmhqx8s.default\cookies.txt -> Spyware.Cookie.Doubleclick : Cleaned with backup
:mozilla.14:C:\Documents and Settings\Immu\Application Data\Netscape\NSB\Profiles\fwmhqx8s.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.15:C:\Documents and Settings\Immu\Application Data\Netscape\NSB\Profiles\fwmhqx8s.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
C:\Documents and Settings\Immu\Cookies\immu@2o7[1].txt -> Spyware.Cookie.2o7 : Cleaned with backup
C:\Documents and Settings\Immu\Cookies\immu@ad.yieldmanager[2].txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
C:\Documents and Settings\Immu\Cookies\immu@adtech[2].txt -> Spyware.Cookie.Adtech : Cleaned with backup
C:\Documents and Settings\Immu\Cookies\immu@advertising[1].txt -> Spyware.Cookie.Advertising : Cleaned with backup
C:\Documents and Settings\Immu\Cookies\immu@atdmt[2].txt -> Spyware.Cookie.Atdmt : Cleaned with backup
C:\Documents and Settings\Immu\Cookies\immu@ayb.lop[2].txt -> Spyware.Cookie.Lop : Cleaned with backup
C:\Documents and Settings\Immu\Cookies\immu@banner.goldenpalace[2].txt -> Spyware.Cookie.Goldenpalace : Cleaned with backup
C:\Documents and Settings\Immu\Cookies\immu@burstnet[1].txt -> Spyware.Cookie.Burstnet : Cleaned with backup
C:\Documents and Settings\Immu\Cookies\immu@casalemedia[1].txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
C:\Documents and Settings\Immu\Cookies\immu@cs.sexcounter[2].txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
C:\Documents and Settings\Immu\Cookies\immu@doubleclick[1].txt -> Spyware.Cookie.Doubleclick : Cleaned with backup
C:\Documents and Settings\Immu\Cookies\immu@edge.ru4[1].txt -> Spyware.Cookie.Ru4 : Cleaned with backup
C:\Documents and Settings\Immu\Cookies\immu@goldenpalace[2].txt -> Spyware.Cookie.Goldenpalace : Cleaned with backup
C:\Documents and Settings\Immu\Cookies\immu@images.lop[1].txt -> Spyware.Cookie.Lop : Cleaned with backup
C:\Documents and Settings\Immu\Cookies\immu@lop[1].txt -> Spyware.Cookie.Lop : Cleaned with backup
C:\Documents and Settings\Immu\Cookies\immu@revenue[2].txt -> Spyware.Cookie.Revenue : Cleaned with backup
C:\Documents and Settings\Immu\Cookies\immu@serving-sys[2].txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
C:\Documents and Settings\Immu\Cookies\immu@statcounter[1].txt -> Spyware.Cookie.Statcounter : Cleaned with backup
C:\Documents and Settings\Immu\Cookies\immu@tradedoubler[1].txt -> Spyware.Cookie.Tradedoubler : Cleaned with backup
C:\Documents and Settings\Immu\Cookies\immu@www.burstbeacon[2].txt -> Spyware.Cookie.Burstbeacon : Cleaned with backup
C:\Documents and Settings\Immu\Cookies\immu@www.goldenpalace[1].txt -> Spyware.Cookie.Goldenpalace : Cleaned with backup
C:\Documents and Settings\Immu\Cookies\immu@www.lop[1].txt -> Spyware.Cookie.Lop : Cleaned with backup
C:\Documents and Settings\Immu\Cookies\immu@yieldmanager[1].txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
C:\Documents and Settings\Immu\Cookies\immu@z1.adserver[1].txt -> Spyware.Cookie.Adserver : Cleaned with backup
C:\Documents and Settings\Marja\Cookies\marja@images.lop[1].txt -> Spyware.Cookie.Lop : Cleaned with backup
C:\hjt\backups\backup-20051220-203933-712.dll -> Downloader.WebP2PInstaller : Cleaned with backup
C:\Program Files\Adverts\uninst.exe -> Adware.Lop : Cleaned with backup
C:\Program Files\Common Files\GMT\GatorStubSetup.exe -> Adware.Gator : Cleaned with backup
C:\Program Files\Common Files\GMT\GUninstaller.exe -> Adware.Gator : Cleaned with backup
C:\WINDOWS\system32\P2P Networking -> Spyware.P2PNetworking : Cleaned with backup
C:\WINDOWS\system32\P2P Networking\Cache -> Spyware.P2PNetworking : Cleaned with backup
C:\WINDOWS\system32\P2P Networking\Cache\Database -> Spyware.P2PNetworking : Cleaned with backup
C:\WINDOWS\system32\P2P Networking\Cache\Database\file-10000-0x1889c9979bfa429dffa2854d7866ea5a.sig -> Spyware.P2PNetworking : Cleaned with backup
C:\WINDOWS\system32\P2P Networking\Cache\Database\file-10000-0x363424f53703fad7fb8dc1d77dc32012.sig -> Spyware.P2PNetworking : Cleaned with backup
C:\WINDOWS\system32\P2P Networking\Cache\Database\file-10000-0x51fa79f4327cb55f58ea2d763938f2a3.sig -> Spyware.P2PNetworking : Cleaned with backup
C:\WINDOWS\system32\P2P Networking\Cache\Database\file-10000-0xb6ea0fc6a1267eacc253dcb5a2feadc2.sig -> Spyware.P2PNetworking : Cleaned with backup
C:\WINDOWS\system32\P2P Networking\Cache\Database\file-10000-0xc395f9b431b139bf8a45a181c51b466d.sig -> Spyware.P2PNetworking : Cleaned with backup
C:\WINDOWS\system32\P2P Networking\Cache\Database\file-1001-83.sig -> Spyware.P2PNetworking : Cleaned with backup
C:\WINDOWS\system32\P2P Networking\Cache\Database\index256.dbb -> Spyware.P2PNetworking : Cleaned with backup
C:\WINDOWS\system32\P2P Networking\MARSHAL.DLL -> Spyware.P2PNetworking : Cleaned with backup
C:\WINDOWS\system32\P2P Networking\P2P Networking.eng -> Spyware.P2PNetworking : Cleaned with backup
C:\WINDOWS\system32\P2P Networking\P2P Networking.exe -> Spyware.P2PNetworking : Cleaned with backup

::Report End

Mitäs vielä pitäis tehdä? Ei meinaa vieläkään ohjelmat poistua vaan tilttaa. Jos nyt vielä tarkentaisin ongelmaa niin ehkä voisitte paremmin auttaa. Olen siis yrittänyt varsinkin tätä America's Army 2.5 peliä koneelleni asentaa mutta mistä tahansa lataankin tai avaan(jopa DVD) tiedoston, koneeni tilttaa. Näitä asennustiedostoja on koneellani monia, lähes kaikki eri kohteista ladattuja. Mitään niistä en ole pystynyt poistamaan, ellen ole poistanut koko kansiota, missä tiedostot ovat sijainneet. Joten voisittekos vähän koittaa auttaa asiassa. Haluaisin tosiaan saada tämän pelin itselleni.

-kemisti- · Dec 22, 2005

Poista nämä hakemistot:

C:\WINDOWS\system32\==>P2P Networking<==
C:\Program Files\Common Files\==>GMT<==

Ja aja vielä se eScan, se kestää n. pari-kolme tuntia, ehkä vähän enemmänkin.

Aksukki · Dec 22, 2005

No nyt poistin nuo kansiot, mutta ei nuo tiedostot toimi vieläkään. Mistä voisi johtua? Kohta laitan vielä sen eSCAN:in lokin tänne.

Tuossa on tuo eSCAN loki:

File C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\Cache\F529AFF7d01 tagged as not-a-virus:AdWare.Win32.GigatechSuperBar. No Action Taken.
File C:\Program Files\Common Files\GMT\egIEEngine.dll tagged as not-a-virus:AdWare.Win32.Gator.5017. No Action Taken.
File C:\WINDOWS\browserxtras\pn\remove.0xe infected by "Trojan-Downloader.Win32.Keenval.f" Virus. Action Taken: File Deleted.
File C:\Documents and Settings\Akki\Application Data\Mozilla\Profiles\default\rjkklgh6.slt\Cache\F529AFF7d01 tagged as not-a-virus:AdWare.Win32.GigatechSuperBar. No Action Taken.
File C:\System Volume Information\_restore{3D632379-0E6D-4F25-82D7-7167811D2AA3}\RP403\A0848296.dll tagged as not-a-virus:AdWare.Win32.Altnet.e. No Action Taken.
File C:\System Volume Information\_restore{3D632379-0E6D-4F25-82D7-7167811D2AA3}\RP406\A0860086.exe tagged as not-a-virus:AdWare.Win32.Lop.ag. No Action Taken.
File C:\System Volume Information\_restore{3D632379-0E6D-4F25-82D7-7167811D2AA3}\RP406\A0860087.exe tagged as not-a-virus:AdWare.Win32.Lop.ag. No Action Taken.
File C:\System Volume Information\_restore{3D632379-0E6D-4F25-82D7-7167811D2AA3}\RP407\A0868212.exe tagged as not-a-virus:AdWare.Win32.Lop.ai. No Action Taken.
File C:\System Volume Information\_restore{3D632379-0E6D-4F25-82D7-7167811D2AA3}\RP407\A0868213.exe tagged as not-a-virus:AdWare.Win32.Gator.5115. No Action Taken.
File C:\System Volume Information\_restore{3D632379-0E6D-4F25-82D7-7167811D2AA3}\RP407\A0868214.exe tagged as not-a-virus:AdWare.Win32.Gator.5115. No Action Taken.
File C:\System Volume Information\_restore{3D632379-0E6D-4F25-82D7-7167811D2AA3}\RP407\A0869172.exe tagged as not-a-virus:AdWare.Win32.Lop.ag. No Action Taken.
File C:\System Volume Information\_restore{3D632379-0E6D-4F25-82D7-7167811D2AA3}\RP407\A0872173.dll tagged as not-a-virus:AdWare.Win32.Gator.5017. No Action Taken.

Aksukki · Dec 23, 2005

Osaisiko kukaan auttaa tässä ongelmassa? Nyt myös on käynyt ilmi että tekstitiedostot joita yritän avata sähköpostin liitetiedostoina, eivät toimi Mozillalla, vaan ohjelma lähes tilttaa koneen. Tiedostot on kuitenkin mahdollista avata avaamalla ne ensin tekstinkäsittelyohjelmalla, eli asentamalla ne väliaikaistiedostokansioon. Huomasin tuon saman ongelman ladatessani HjT:tä, mutta senkin sain sitten ladattua Netscapella. Pliis, auttakaa. Kiitos jo etukäteen.

aaxxeell · Dec 23, 2005

Tuon File C:\System Volume Information\_restore voit puhdistaa seuraavalla tavalla
-> http://support.f-secure.fi/fin/home/virusproblem/howtoclean/cleansystemrestore.shtml
Huomaa että silloin menevät palautuspisteet pois.

Muuten koneesi on puhdas ja vikaa ei hjt lokista näy. Lieneekö vika ihan windowsissa ja kaipaisko se korjausta tai todella sitten sen formatoimisen.

-kemisti- · Dec 23, 2005

Tyhjennä Firefoxin väliaikaistiedostot ja poista tuo, jos et ole jo poistanut:

C:\Program Files\Common Files\==>GMT<==

Aksukki · Dec 23, 2005

No jos tuo ongelma on itse Windowsissa, miten sitä voi korjata? Ja entäs tuo formatointi? Tarkoittaako se samaa kuin Windowsin uudelleenasennus?

Log in or Sign up

Windowsin uudelleenasennusko tarpeessa?

Aksukki Member

Agent_007 Senior member

Aksukki Member

aaxxeell Regular member

Aksukki Member

Jannejt Moderator Staff Member

-kemisti- Active member

Aksukki Member

spertti Active member

aaxxeell Regular member

Aksukki Member

aaxxeell Regular member

Aksukki Member

Aksukki Member

-kemisti- Active member

Aksukki Member

Aksukki Member

aaxxeell Regular member

-kemisti- Active member

Aksukki Member

Share This Page

Log in or Sign up

Windowsin uudelleenasennusko tarpeessa?

Aksukki Member

Agent_007 Senior member

Aksukki Member

aaxxeell Regular member

Aksukki Member

Jannejt Moderator Staff Member

-kemisti- Active member

Aksukki Member

spertti Active member

aaxxeell Regular member

Aksukki Member

aaxxeell Regular member

Aksukki Member

Aksukki Member

-kemisti- Active member

Aksukki Member

Aksukki Member

aaxxeell Regular member

-kemisti- Active member

Aksukki Member

Share This Page

Useful Searches