Kone aivan törkeän hidas- hjt

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:51:49, on 23.5.2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\COMODO\Firewall\cfp.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Messenger\msmsgs.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\COMODO\Firewall\cmdagent.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O2 - BHO: Windows Liven kirjautumisapuohjelma - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [COMODO Firewall Pro] "C:\Program Files\COMODO\Firewall\cfp.exe" -h
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKCU\..\Run: [HistoryKill] "C:\Program Files\HistoryKill 2007\histkill.exe" /startup
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Paikallinen palve')
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Paikallinen palve')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Verkkopalve')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/mic...ls/en/x86/client/muweb_site.cab?1208413359640
O20 - AppInit_DLLs: C:\WINDOWS\system32\guard32.dll
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: COMODO Firewall Pro Helper Service (cmdAgent) - Unknown owner - C:\Program Files\COMODO\Firewall\cmdagent.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

--
End of file - 4146 bytes

Vaikka loki on aika pieni, silti koneessani on jotain outoa takkuamista.

 

Escan
Ohjeet tuolla sivulla.
http://koti.mbnet.fi/pattaya1/escanmwav.htm
lataa tuosta
http://www.spywareinfo.dk/download/mwav.exe
päivitä tuosta
http://koti.mbnet.fi/pattaya1/lataus/Mwav.bat
laita täpit merkkauksien mukaan
http://koti.mbnet.fi/pattaya1/eScan6.jpg

scannaa

jos ala luukkuun tulee jotain niin kopioi se näin:
Käytä komentoa Ctrl+A.
Kopioi rivit komennolla Ctrl+C.
Liitä rivit komennolla Ctrl+V.

Laita virus log tänne.

 

Juu ei löytänyt mitään pöpöjä tuo Escan. Sitten lisää ?

 

Lisää jotain ohjelmia, mitkä voisivat nopeuttaa konettani?

 

laita windowsin palomuuri päälle ja poista COMODO Firewall Pro

 

Mutta eikö tuo windowsin oma muuri oo ihan sukka ? Enkä usko oikeen että se tosta palomuurista johtuu koska comodo vie niin vähän muistia.

 

pistä tuo pois käynnistyvistä

Käynnistä > suorita kirjoita msconfig > ok
Käynnistys välilehti

Ota alla olevien edestä ruksi pois

histkill

käytä ja ok
Käynnistä kone uudelleen ja laita pikkuseen neliöön ruksi ja paina sitten vasta ok

 

Otin, vieläkö jotain? Voisko koittaa jotain puhdistus ohejelmia tai jotain mitkä todella vois nopeuttaa konetta?

 

mitähän kaikee siinä on koitettu

Lataa Deckard's System Scanner
Työpöydällesi.

Huomioi: Sinulla tulee olla Järjestelmänvalvojan oikeudet ajaaksesi ohjelman.

[*]Sulje kaikki avoimet ikkunat ja ohjelmat.
[*]Tupla Klikkaa Dss.exe tiedostoa ajaaksesi ohjelman, seuraa ohjeita.
[*]Kun Scannaus on valmis 2 textitiedostoa pitäisi avautua, Main.txt ja extra.txt
[*]Näppäile Kopioi ( CTRL+A -> CTRL + C ) ja liitä ( CTRL + V )
[*]kopioi ja liitä main.txt ja extra.txt sisältö seuraavaan vastaukseesi.

 

Deckard's System Scanner v20071014.68
Run by Jepu on 2008-05-26 21:39:45
Computer is in Normal Mode.
--------------------------------------------------------------------------------



-- HijackThis (run as Jepu.exe) ------------------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:39:46, on 26.5.2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Messenger\msmsgs.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Documents and Settings\TINO\Työpöytä\dss.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\Jepu.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O2 - BHO: Windows Liven kirjautumisapuohjelma - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKCU\..\Run: [HistoryKill] "C:\Program Files\HistoryKill 2007\histkill.exe" /startup
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Paikallinen palve')
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Paikallinen palve')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Verkkopalve')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/mic...ls/en/x86/client/muweb_site.cab?1208413359640
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

--
End of file - 3791 bytes

-- Files created between 2008-04-26 and 2008-05-26 -----------------------------

2008-05-26 21:09:31 0 dr-h----- C:\Documents and Settings\Jepu\Recent
2008-05-25 23:33:07 0 d-------- C:\WINDOWS\Sun
2008-05-15 18:39:46 0 d-------- C:\Program Files\Diskeeper Corporation
2008-05-14 15:06:00 0 dr-h----- C:\$VAULT$.AVG
2008-05-11 10:19:27 1562 --a------ C:\WINDOWS\system32\tmp.reg
2008-05-11 10:19:08 25600 --a------ C:\WINDOWS\system32\WS2Fix.exe
2008-05-11 10:15:31 0 d-------- C:\Documents and Settings\NetworkService\Application Data\AVG7
2008-05-11 09:34:19 0 d-------- C:\Documents and Settings\Jepu\Application Data\AVG7
2008-05-11 09:34:15 0 d-------- C:\Documents and Settings\LocalService\Application Data\AVG7
2008-05-11 09:34:00 0 d-------- C:\Documents and Settings\All Users\Application Data\avg7
2008-05-11 00:49:29 0 d-------- C:\Documents and Settings\Jepu\Application Data\LimeWire
2008-05-10 11:15:25 0 d-------- C:\Program Files\MSBuild
2008-05-10 11:12:20 0 d-------- C:\WINDOWS\system32\XPSViewer
2008-05-10 11:11:44 0 d-------- C:\Program Files\Reference Assemblies
2008-05-10 10:15:59 0 d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-05-09 18:01:47 0 d-------- C:\Documents and Settings\All Users\Application Data\TuneUp Software
2008-05-09 18:01:43 0 d-------- C:\Program Files\TuneUp Utilities 2008
2008-05-09 18:01:26 0 d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-05-08 21:32:05 0 d--h----- C:\Documents and Settings\Järjestelmänvalvoja\Verkkoympäristö
2008-05-08 21:32:05 0 d-------- C:\Documents and Settings\Järjestelmänvalvoja\Työpöytä
2008-05-08 21:32:05 0 d--h----- C:\Documents and Settings\Järjestelmänvalvoja\Tulostinympäristö
2008-05-08 21:32:05 0 d-------- C:\Documents and Settings\Järjestelmänvalvoja\Suosikit
2008-05-08 21:32:05 0 dr-h----- C:\Documents and Settings\Järjestelmänvalvoja\SendTo
2008-05-08 21:32:05 0 d--h----- C:\Documents and Settings\Järjestelmänvalvoja\Recent
2008-05-08 21:32:05 0 d--h----- C:\Documents and Settings\Järjestelmänvalvoja\Mallit
2008-05-08 21:32:05 0 d--h----- C:\Documents and Settings\Järjestelmänvalvoja\Local Settings
2008-05-08 21:32:05 0 dr------- C:\Documents and Settings\Järjestelmänvalvoja\Käynnistä-valikko
2008-05-08 21:32:05 0 d---s---- C:\Documents and Settings\Järjestelmänvalvoja\Cookies
2008-05-08 21:32:05 0 dr-h----- C:\Documents and Settings\Järjestelmänvalvoja\Application Data
2008-05-08 21:32:05 0 d---s---- C:\Documents and Settings\Järjestelmänvalvoja\Application Data\Microsoft
2008-05-08 21:32:04 405504 --a------ C:\Documents and Settings\Järjestelmänvalvoja\NTUSER.DAT
2008-05-07 09:57:41 0 d-------- C:\WINDOWS\Prefetch
2008-05-07 09:53:22 0 d-------- C:\WINDOWS\system32\fi-fi
2008-05-07 09:53:20 0 d-------- C:\WINDOWS\system32\fi
2008-05-07 09:53:20 0 d-------- C:\WINDOWS\system32\bits
2008-05-07 09:53:20 0 d-------- C:\WINDOWS\l2schemas
2008-05-07 09:48:21 0 d-------- C:\WINDOWS\network diagnostic
2008-05-03 13:59:44 0 d-------- C:\Documents and Settings\Jepu\Application Data\DeepBurner Pro
2008-05-02 09:40:44 68096 --a------ C:\WINDOWS\zip.exe
2008-05-02 09:40:44 49152 --a------ C:\WINDOWS\VFind.exe
2008-05-02 09:40:44 212480 --a------ C:\WINDOWS\swxcacls.exe <Not Verified; SteelWerX; SteelWerX Extended Configurator ACLists>
2008-05-02 09:40:44 136704 --a------ C:\WINDOWS\swsc.exe <Not Verified; SteelWerX; SteelWerX Service Controller>
2008-05-02 09:40:44 161792 --a------ C:\WINDOWS\swreg.exe <Not Verified; SteelWerX; SteelWerX Registry Editor>
2008-05-02 09:40:44 98816 --a------ C:\WINDOWS\sed.exe
2008-05-02 09:40:44 80412 --a------ C:\WINDOWS\grep.exe
2008-05-02 09:40:44 73728 --a------ C:\WINDOWS\fdsv.exe <Not Verified; Smallfrogs Studio; >


-- Find3M Report ---------------------------------------------------------------

2008-05-26 20:56:52 0 d-------- C:\Program Files\COMODO
2008-05-26 20:56:52 0 d-------- C:\Documents and Settings\Jepu\Application Data\Comodo
2008-05-20 12:05:36 0 d-------- C:\Documents and Settings\Jepu\Application Data\uTorrent
2008-05-17 15:08:55 0 d-------- C:\Program Files\DC++
2008-05-14 15:21:19 0 d-------- C:\Program Files\World of Warcraft
2008-05-10 18:35:09 0 d-------- C:\Program Files\Defraggler
2008-05-10 11:27:39 406976 --a------ C:\WINDOWS\system32\perfh00B.dat
2008-05-10 11:27:39 80584 --a------ C:\WINDOWS\system32\perfc00B.dat
2008-05-09 18:01:26 0 d-------- C:\Program Files\Common Files
2008-05-07 09:53:38 0 d-------- C:\Program Files\Messenger
2008-05-07 09:53:20 0 d-------- C:\Program Files\Movie Maker
2008-05-07 09:50:29 0 d-------- C:\Program Files\Windows NT
2008-04-24 14:45:27 0 d-------- C:\Documents and Settings\Jepu\Application Data\Malwarebytes
2008-04-20 19:34:50 0 d-------- C:\Documents and Settings\Jepu\Application Data\teamspeak2
2008-04-20 00:37:06 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-04-19 09:55:04 0 d-------- C:\Documents and Settings\Jepu\Application Data\Adobe
2008-04-19 09:53:38 0 d-------- C:\Program Files\Common Files\Adobe
2008-04-18 13:39:48 0 d-------- C:\Program Files\GameSpy Arcade
2008-04-18 10:57:14 0 d-------- C:\Program Files\QuickTime Alternative
2008-04-17 23:26:17 0 d-------- C:\Documents and Settings\Jepu\Application Data\Ubisoft
2008-04-17 17:35:11 0 d-------- C:\Documents and Settings\Jepu\Application Data\GRETECH
2008-04-17 17:35:01 0 d-------- C:\Program Files\GRETECH
2008-04-17 15:43:37 0 d-------- C:\Documents and Settings\Jepu\Application Data\TuneUp Software
2008-04-17 15:25:28 0 d-------- C:\Program Files\Common Files\Stardock
2008-04-17 12:45:42 0 d-------- C:\Program Files\uTorrent
2008-04-17 12:34:29 0 d-------- C:\Program Files\Trend Micro
2008-04-16 23:39:51 0 d-------- C:\Program Files\Microsoft Games
2008-04-16 21:19:48 0 d-------- C:\Program Files\Common Files\Blizzard Entertainment
2008-04-16 20:02:11 0 d-------- C:\Program Files\CCleaner
2008-04-16 19:53:50 0 d-------- C:\Documents and Settings\Jepu\Application Data\WinRAR
2008-04-16 19:32:56 0 d-------- C:\Program Files\HistoryKill 2007
2008-04-16 19:19:26 0 d-------- C:\Program Files\Java
2008-04-16 19:18:58 0 d-------- C:\Program Files\Common Files\Java
2008-04-16 19:17:20 0 d-------- C:\Documents and Settings\Jepu\Application Data\Sun
2008-04-16 19:16:26 0 d-------- C:\Program Files\Windows Media Connect 2
2008-04-16 19:09:19 0 d-------- C:\Program Files\Windows Live
2008-04-16 19:08:58 0 d--hs--c- C:\Program Files\Common Files\WindowsLiveInstaller
2008-04-16 19:07:30 0 --a------ C:\WINDOWS\nsreg.dat
2008-04-16 19:07:25 0 d-------- C:\Documents and Settings\Jepu\Application Data\Mozilla
2008-04-16 18:17:33 0 d-------- C:\Program Files\Common Files\ODBC
2008-04-16 18:17:30 0 d-------- C:\Program Files\Common Files\SpeechEngines
2008-04-16 18:17:14 62 --ahs---- C:\Documents and Settings\Jepu\Application Data\desktop.ini
2008-04-16 17:56:21 0 d-------- C:\Documents and Settings\Jepu\Application Data\Macromedia
2008-04-16 17:50:49 0 d-------- C:\Program Files\Realtek Sound Manager
2008-04-16 17:50:49 0 d-------- C:\Program Files\AvRack
2008-04-16 17:50:42 0 d-------- C:\Program Files\Realtek AC97
2008-04-16 17:50:13 0 d-------- C:\Program Files\Common Files\InstallShield
2008-04-16 17:46:04 0 d-------- C:\Program Files\VIA
2008-04-16 17:27:27 0 d-------- C:\Documents and Settings\Jepu\Application Data\Identities
2008-04-16 17:24:19 0 d-------- C:\Program Files\microsoft frontpage
2008-04-16 17:24:17 0 -rahs---- C:\MSDOS.SYS
2008-04-16 17:24:17 0 -rahs---- C:\IO.SYS
2008-04-16 17:24:17 0 --a------ C:\CONFIG.SYS
2008-04-16 17:24:17 0 -----n--- C:\AUTOEXEC.BAT
2008-04-16 17:23:24 0 d-------- C:\Program Files\Online Services
2008-04-16 17:22:33 0 d-------- C:\Program Files\Common Files\MSSoap
2008-04-16 17:22:10 21672 --a------ C:\WINDOWS\system32\emptyregdb.dat
2008-04-16 17:21:49 0 d--h----- C:\Program Files\WindowsUpdate
2008-04-16 17:21:43 0 d-------- C:\Program Files\MSN Gaming Zone
2008-04-14 19:28:11 86528 --a------ C:\WINDOWS\system32\VACFix.exe <Not Verified; S!Ri.URZ; VACFix>
2008-04-12 13:49:05 82432 --a------ C:\WINDOWS\system32\IEDFix.exe <Not Verified; S!Ri.URZ; IEDFix>


-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [05.12.2007 01:41]
"AVG7_CC"="C:\PROGRA~1\Grisoft\AVG7\avgcc.exe" [11.05.2008 09:34]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HistoryKill"="C:\Program Files\HistoryKill 2007\histkill.exe" [29.03.2007 06:01]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [14.04.2008 19:12]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"HideLegacyLogonScripts"=0 (0x0)
"HideLogoffScripts"=0 (0x0)
"RunLogonScriptSync"=1 (0x1)
"RunStartupScriptSync"=0 (0x0)
"HideStartupScripts"=0 (0x0)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"HideLegacyLogonScripts"=0 (0x0)
"HideLogoffScripts"=0 (0x0)
"RunLogonScriptSync"=1 (0x1)
"RunStartupScriptSync"=0 (0x0)
"HideStartupScripts"=0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"LinkResolveIgnoreLinkInfo"=0 (0x0)
"NoResolveSearch"=1 (0x1)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"LinkResolveIgnoreLinkInfo"=0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\dimsntfy]
C:\WINDOWS\System32\dimsntfy.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vds]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
@="Volume shadow copy"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
"C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
nwiz.exe /install

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PowerStrip]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
eapsvcs eaphost
dot3svc dot3svc

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
napagent
hkmsvc




-- End of Deckard's System Scanner: finished at 2008-05-26 21:41:14 ------------

Tuo ei aukaissut tuota extra.txt muistiota.