Kone muuttui oudoksi. HjT

Tietokone muuttui ihan oudoksi. käynnistys plus kirjautuminen sisään kestää 5 minuuttia (noin). Ja sitten mitkään pelit eivät käynnisty.
Taisi johtua uudesta windowsin tietoturvapäivityksistä koska sen jälkeen tämä muutos tuli. Tai sitten se johtuu siitä että jätin isosiskoni tämän koneen pariin parkisi päiväksi:


Logfile of HijackThis v1.99.1
Scan saved at 19:08:30, on 14.7.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)

Running processes:
J:\WINDOWS\System32\smss.exe
J:\WINDOWS\system32\winlogon.exe
J:\WINDOWS\system32\services.exe
J:\WINDOWS\system32\lsass.exe
J:\WINDOWS\system32\Ati2evxx.exe
J:\WINDOWS\system32\svchost.exe
J:\WINDOWS\System32\svchost.exe
J:\WINDOWS\system32\ZoneLabs\vsmon.exe
J:\WINDOWS\system32\spoolsv.exe
J:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
J:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
J:\Program Files\AntiVir PersonalEdition Classic\sched.exe
J:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
J:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\netfxupdate.exe
J:\WINDOWS\system32\svchost.exe
J:\WINDOWS\system32\Ati2evxx.exe
J:\WINDOWS\Explorer.EXE
J:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
J:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
J:\Program Files\ATI Technologies\ATI.ACE\cli.exe
J:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
J:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
J:\WINDOWS\system32\ctfmon.exe
J:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
J:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
J:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
J:\Program Files\ATI Technologies\ATI.ACE\cli.exe
J:\Program Files\ATI Technologies\ATI.ACE\cli.exe
J:\Program Files\Mozilla Firefox\firefox.exe
J:\Documents and Settings\Teemu\Työpöytä\Teemun Kansio\Järjestämättömät\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
R3 - URLSearchHook: (no name) - {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - J:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Adobe PDF Reader -linkkiavustaja - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - J:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - J:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - J:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Ask Search Assistant BHO - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - J:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL
O2 - BHO: Ask Toolbar BHO - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - J:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL
O3 - Toolbar: Ask Toolbar - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - J:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL
O4 - HKLM\..\Run: [ZoneAlarm Client] "J:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [SSBkgdUpdate] "J:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [PaperPort PTD] J:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
O4 - HKLM\..\Run: [IndexSearch] J:\Program Files\ScanSoft\PaperPort\IndexSearch.exe
O4 - HKLM\..\Run: [SetDefPrt] J:\Program Files\Brother\Brmfl04g\BrStDvPt.exe
O4 - HKLM\..\Run: [ControlCenter2.0] J:\Program Files\Brother\ControlCenter2\brctrcen.exe /autorun
O4 - HKLM\..\Run: [ATICCC] "J:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [SunJavaUpdateSched] "J:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [avgnt] "J:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [NeroFilterCheck] J:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "J:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] J:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "J:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [DAEMON Tools] "J:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "J:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - J:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - J:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - J:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - J:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - J:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5F5F9FB8-878E-4455-95E0-F64B2314288A} (ijjiPlugin2 Class) - http://gamedownload.ijjimax.com/gamedownload/dist/hgstart/HGPlugin11USA.cab
O16 - DPF: {CD995117-98E5-4169-9920-6C12D4C0B548} (HGPlugin9USA Class) - http://gamedownload.ijjimax.com/gamedownload/dist/hgstart/HGPlugin9USA.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - J:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - J:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - J:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - J:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - J:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - J:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - J:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - J:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - J:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - J:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NBService - Nero AG - J:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - J:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - J:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - J:\WINDOWS\system32\ZoneLabs\vsmon.exe

 

Poista ohjauspaneelin lisää/poista sovelluksen kautta

Asktbar

ja tämä kansio J:\Program Files\AskTBar

========

Avaa hijackthis merkkaa seuraavat rivi(t) ja paina fix checked, sulje muut ohjelmat siksi aikaa.

R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)


Tässä ohje miten merkataan:



==========

Tarkista koneesi F-Securen online skannerilla

Huom, skanneri toimii vain Internet Explorer selaimella

* Lue sivun ohjeet huolella läpi
* Klikkaa Start scanning
* Mikäli saat Internet Explorer -suojausvaroituksen, klikkaa Asenna
* Klikkaa Accept
* Klikkaa Custom Scan
* Säädä asetukset seuraavasti

o "Virus Scan Option" kohdasta valitse Scan whole system
o "Other Scan Option" kohdasta valitse Scan All Files
o Valitse Scan whole system for rootkits
o Valitse Scan whole system for spyware
o Laita ruksi kohtaan Scan inside archives
o Varmista että Use advanced heuristics on valittuna

* Klikkaa Start
* Skannaus käynnistyy kun tarvittavat tiedostot/päivitykset on ladattu
* Odota kärsivällisesti
* Kun sakannaus on suoritettu, klikkaa Automatic cleaning
* Klikkaa Show Report
* Raportti aukeaa selaimessa, kopioi teksti kokonaan
* Liitä kopioitu teksti esim. muistioon tai Wordiin ja tallenna työpöydälle
* Voit sulkea skannerin
* Lähetä raportti viestiketjuusi

==========

Tämä jos tunnet tietokoneesi olevan hitaan puoleinen, etkä ole eheyttänyt pitkään aikaan:

Avaa Oma tietokone
-> Tee seuraava toimenpide kaikille Paikallisille levyille


==========

Lataa CCleaner ja asenna se:
Avaa "Options", sieltä "Language" ja valitse "Suomi (Finnish)"

Avaa "Virheet" kohta, paina "Etsi rekisterin virheitä", paina "Korjaa valitut rekisterin virheet..". Paina "Kyllä", kun ohjelma kysyy "Haluatko varmuuskopioida muutokset rekisteriin", tallenna tiedosto esim. työpöydälle.

Avaa "Puhdistaja", paina "Tutki" ja tämän jälkeen "Aja Ccleaner". Puhdista väliaikaistiedostot ja -kansiot ohjelmalla säännöllisesti.

==========

Jos sinulla ei ole tätä java versiota (6.2): Vanha java saastuttaa helposti koneesi!

Javan päivitys ja välimuistin tyhjennys:

1. Klikkaa Käynnistä -> Ohjauspaneeli ja tupla-klikkaa Lisää tai poista sovellus Ohjauspaneelissa.
2. Etsi listasta kaikki entiset Java versiosi. (J2SE Runtime Environment.... )
Niissä pitäisi olla seuraava kuva vieressä:
3. Valitse kaikki entiset Java versiosi ja valitse Poista.
4. Asenna uusin Java päivitys seuraavasta linkistä..
5. Käynnistä kone uudelleen asennuksen jälkeen:

http://java.sun.com/javase/downloads/index.jsp
tai http://www.filehippo.com/download_java_runtime/

Rullaa alas kohteeseen Java Runtime Environment (JRE) 6u2

Paina Download

Ruksaa Accept, ota offline installation, tallenna vaikka työpöydälle ja asenna se.

6. Käynnistyksen jälkeen, mene takaisin Ohjauspaneeliin ja avaa Java asetuksesi (Muita Ohjauspaneelin asetuksia -> Java kahvikuppi).

7. General Settings -osion alla, vedä liukusäädintä (Disk Space) pienemmälle, ja klikkaa Delete Files -nappia.

(Jotkut javapohjaiset ohjelmat saattavat tarvita enemmän levytilaa.
Jos huomaat säädön pienentämisen jälkeen koneessa hitautta, siirrä liukusäädintä isommalle).

8. Varmista että kaikki kaksi valintaa ovat rastitettuja:

*Applications and Applets

*Trace and Log Files


Ja paina OK -nappia

9. Klikkaa OK "Temporary Files Settings" -ikkunassasi.

10. Klikkaa OK jättääksesi Java asetusikkunasi.

==========

Lataa Deckard's System Scanner Työpöydällesi.

Huomioi: Sinulla tulee olla Järjestelmänvalvojan oikeudet ajaaksesi ohjelman.

[*]Sulje kaikki avoimet ikkunat ja ohjelmat.
[*]Tupla Klikkaa Dss.exe tiedostoa ajaaksesi ohjelman, seuraa ohjeita.
[*]Kun Scannaus on valmis 2 textitiedostoa pitäisi avautua, Main.txt ja extra.txt
[*]Näppäile Kopioi ( CTRL+A -> CTRL + C ) ja liitä ( CTRL + V )
[*]kopioi ja liitä Extra.txt & Main.txt sisältö seuraavaan vastaukseesi.

myös F-securen raportti

 

Tuossa ois deckartin loqit.F securen tuo scannaus kesti eilen 6 tuntia eikä ollut vieläkään valmis puolenyön aikaan niin pysäitin sen. Nyt se ois taas käynnis mutta en tiiä jaksaako sitä loppuun asti ku se näköjään kestää koko päivän. Alempi main ja ylempi extra. Ois kiva saada ne pelit toimimaan.


Deckard's System Scanner v20070711.54
Extra logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------

-- System Information ----------------------------------------------------------

Microsoft Windows XP Home Edition (build 2600) SP 2.0
Architecture: X86; Language: Other (040B) - see http://preview.tinyurl.com/mhhp6

CPU 0: Intel(R) Celeron(R) CPU 2.80GHz
Percentage of Memory in Use: 62%
Physical Memory (total/avail): 511.48 MiB / 189.63 MiB
Pagefile Memory (total/avail): 1249.66 MiB / 843.05 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1965.43 MiB

C: is Removable (Unformatted)
D: is Removable (Unformatted)
E: is Removable (Unformatted)
F: is Removable (Unformatted)
G: is Removable (Unformatted)
H: is CDROM (No Media)
I: is CDROM (No Media)
J: is Fixed (NTFS) - 149.04 GiB total, 102.47 GiB free.
K: is CDROM (No Media)


-- Security Center -------------------------------------------------------------

AUOptions is scheduled to auto-install.
Windows Internal Firewall is disabled.

FirstRunDisabled is set.
AntivirusOverride is set.

FW: ZoneAlarm Firewall v7.0.337.000 (Check Point, LTD.)
AV: Avira AntiVir PersonalEdition v 6.39.0.146
(Avira GmbH)

[HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabledxpsp2res.dll,-22019"
"J:\\Program Files\\MSN Messenger\\msnmsgr.exe"="J:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"J:\\Program Files\\MSN Messenger\\livecall.exe"="J:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabledxpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabledxpsp2res.dll,-22019"
"J:\\Program Files\\Messenger\\msmsgs.exe"="J:\\Program Files\\Messenger\\msmsgs.exe:*:Enabled:Windows Messenger"
"J:\\Program Files\\MSN Messenger\\msnmsgr.exe"="J:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"J:\\Program Files\\MSN Messenger\\livecall.exe"="J:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabledxpsp3res.dll,-20000"
"J:\\Program Files\\uTorrent\\utorrent.exe"="J:\\Program Files\\uTorrent\\utorrent.exe:*:Enabled:µTorrent"
"J:\\Documents and Settings\\Teemu\\Työpöytä\\utorrent.exe"="J:\\Documents and Settings\\Teemu\\Työpöytä\\utorrent.exe:*:Enabled:µTorrent"
"J:\\Program Files\\Microsoft Games\\Age of Empires III\\age3x.exe"="J:\\Program Files\\Microsoft Games\\Age of Empires III\\age3x.exe:*:Enabled:Age of Empires III - The WarChiefs"


-- Environment Variables -------------------------------------------------------

ALLUSERSPROFILE=J:\Documents and Settings\All Users
APPDATA=J:\Documents and Settings\Teemu\Application Data
CLIENTNAME=Console
CommonProgramFiles=J:\Program Files\Common Files
COMPUTERNAME=ARTO-E648E5DD19
ComSpec=J:\WINDOWS\system32\cmd.exe
FP_NO_HOST_CHECK=NO
HOMEDRIVE=J:
HOMEPATH=\Documents and Settings\Teemu
LANG=fi
LOGONSERVER=\\ARTO-E648E5DD19
NewEnvironment1=J:\Program Files\ATI Technologies\ATI.ACE\
NUMBER_OF_PROCESSORS=1
OS=Windows_NT
Path=J:\WINDOWS\system32;J:\WINDOWS;J:\WINDOWS\System32\Wbem;"J:\Program Files\Zone Labs\ZoneAlarm\MailFrontier";J:\Program Files\Common Files\GTK\2.0\bin
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 15 Model 3 Stepping 4, GenuineIntel
PROCESSOR_LEVEL=15
PROCESSOR_REVISION=0304
ProgramFiles=J:\Program Files
PROMPT=$P$G
SESSIONNAME=Console
SystemDrive=J:
SystemRoot=J:\WINDOWS
TEMP=J:\DOCUME~1\Teemu\LOCALS~1\Temp
TMP=J:\DOCUME~1\Teemu\LOCALS~1\Temp
tvdumpflags=8
USERDOMAIN=ARTO-E648E5DD19
USERNAME=Teemu
USERPROFILE=J:\Documents and Settings\Teemu
windir=J:\WINDOWS


-- User Profiles ---------------------------------------------------------------

Arto (admin)
Teemu (admin)
Heli ja Heidi (admin)


-- Add/Remove Programs ---------------------------------------------------------

--> J:\Program Files\Nero\Nero 7\\nero\uninstall\UNNERO.exe /UNINSTALL
--> J:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL
--> J:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL
--> J:\WINDOWS\UNNeroShowTime.exe /UNINSTALL
--> J:\WINDOWS\UNNeroVision.exe /UNINSTALL
--> J:\WINDOWS\UNRecode.exe /UNINSTALL
--> MsiExec.exe /I{8A42F680-2DD6-11D4-9A8C-0040F6982C20}
--> MsiExec.exe /I{A2529672-574A-4A99-86A5-C1770A0E31FE}
--> rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 J:\WINDOWS\INF\PCHealth.inf
Ad-Aware 2007 --> MsiExec.exe /X{0E6AB9FC-76C2-431B-9C06-6C1CFFFEA8EB}
Adobe Flash Player 9 ActiveX --> J:\WINDOWS\system32\Macromed\Flash\FlashUtil9c.exe -uninstallUnlock
Adobe Reader 8.1.0 - Suomi --> MsiExec.exe /I{AC76BA86-7AD7-1035-7B44-A81000000003}
Age of Empires III --> J:\PROGRA~1\COMMON~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}
Age of Empires III - The WarChiefs --> J:\PROGRA~1\COMMON~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{1C08A24C-B168-407E-A826-68FAF5F20710}
Areena 5 v1.2 --> J:\WINDOWS\st6unst.exe -n "J:\Program Files\Areena 5\ST6UNST.LOG"
ATI - Software Uninstall Utility --> J:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
ATI Catalyst Control Center --> MsiExec.exe /I{EA9FAF16-0E5C-42C4-9742-9AF8D5F6D69B}
ATI Display Driver --> rundll32 J:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_classISPLAY -clean
AVG Anti-Spyware 7.5 --> J:\Program Files\Grisoft\AVG Anti-Spyware 7.5\Uninstall.exe
Avira AntiVir PersonalEdition Classic --> J:\Program Files\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE
AviSynth 2.5 --> "J:\Program Files\AviSynth 2.5\Uninstall.exe"
Brother MFL-Pro Suite --> RunDll32 J:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "J:\Program Files\InstallShield Installation Information\{D83BD5E2-5AF4-49F6-B5C1-484A9760E73D}\Setup.exe" -l0x9 Brunin03.dllBrunin03.dll
CCleaner (remove only) --> "J:\Program Files\CCleaner\uninst.exe"
CDBurnerXP Pro 3 --> MsiExec.exe /I{896D642C-7125-44F0-AC49-A23ABF82209C}
Counter-Strike 1.6 --> J:\Program Files\Counter-Strike 1.6\Uninstal.exe
Elasto Mania --> J:\PROGRA~1\ELASTO~1\UNWISE.EXE J:\PROGRA~1\ELASTO~1\INSTALL.LOG
ffdshow [rev 1289] [2007-06-16] --> "J:\Program Files\ffdshow\unins000.exe"
Fraps --> "J:\Fraps\uninstall.exe"
FreeUndelete --> J:\Program Files\FreeUndelete\GLF16.exe /handle:fru
GTK+ 2.10.11 runtime environment --> "J:\Program Files\Common Files\GTK\2.0\setup\unins000.exe"
High Definition Audio Driver Package - KB835221 -->
High Definition Audio Driver Package - KB888111 --> "J:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 1.99.1 --> J:\Documents and Settings\Teemu\Työpöytä\Teemun Kansio\Järjestämättömät\HijackThis.exe /uninstall
Hotfix-päivitys Windows XP:lle (KB914440) --> "J:\WINDOWS\$NtUninstallKB914440$\spuninst\spuninst.exe"
Hotfix-päivitys Windows XP:lle (KB935448) --> "J:\WINDOWS\$NtUninstallKB935448$\spuninst\spuninst.exe"
ijji - Gunz --> J:\MAIET\GunZ\Uninstall.exe
Java DB 10.2.2.0 --> MsiExec.exe /X{0ECB59D5-A3FC-4D61-AD3B-6CE679B3F852}
Java(TM) 6 Update 2 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160020}
Java(TM) SE Development Kit 6 Update 2 --> MsiExec.exe /I{32A3A4F4-B792-11D6-A78A-00B0D0160020}
Microsoft Works 7.0 --> MsiExec.exe /I{323F6CCF-BBBA-41FB-AF39-62C4FE717CA4}
Mozilla Firefox (2.0.0.4) --> J:\PROGRA~1\Mozilla Firefox\uninstall\helper.exe
Nero 7 --> MsiExec.exe /X{A20A58C4-6784-4B4B-86CC-94E2E3671035}
neroxml --> MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Norman Internet Control --> RunDll32 J:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "J:\Norman\NVC\BIN\DelNVC5.exe"
PaperPort --> MsiExec.exe /I{A17EABB6-D0C6-44E5-820C-72DC7F495064}
Päivitys Windows XP:lle (KB894391) --> "J:\WINDOWS\$NtUninstallKB894391$\spuninst\spuninst.exe"
Päivitys Windows XP:lle (KB898461) --> "J:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"
Päivitys Windows XP:lle (KB900485) --> "J:\WINDOWS\$NtUninstallKB900485$\spuninst\spuninst.exe"
Päivitys Windows XP:lle (KB904942) --> "J:\WINDOWS\$NtUninstallKB904942$\spuninst\spuninst.exe"
Päivitys Windows XP:lle (KB908531) --> "J:\WINDOWS\$NtUninstallKB908531$\spuninst\spuninst.exe"
Päivitys Windows XP:lle (KB910437) --> "J:\WINDOWS\$NtUninstallKB910437$\spuninst\spuninst.exe"
Päivitys Windows XP:lle (KB911280) --> "J:\WINDOWS\$NtUninstallKB911280$\spuninst\spuninst.exe"
Päivitys Windows XP:lle (KB916595) --> "J:\WINDOWS\$NtUninstallKB916595$\spuninst\spuninst.exe"
Päivitys Windows XP:lle (KB920872) --> "J:\WINDOWS\$NtUninstallKB920872$\spuninst\spuninst.exe"
Päivitys Windows XP:lle (KB922582) --> "J:\WINDOWS\$NtUninstallKB922582$\spuninst\spuninst.exe"
Päivitys Windows XP:lle (KB927891) --> "J:\WINDOWS\$NtUninstallKB927891$\spuninst\spuninst.exe"
Päivitys Windows XP:lle (KB930916) --> "J:\WINDOWS\$NtUninstallKB930916$\spuninst\spuninst.exe"
Päivitys Windows XP:lle (KB931836) --> "J:\WINDOWS\$NtUninstallKB931836$\spuninst\spuninst.exe"
Päivitys Windows XP:lle (KB936357) --> "J:\WINDOWS\$NtUninstallKB936357$\spuninst\spuninst.exe"
RAR Password Cracker 4.12 --> J:\Program Files\RAR Password Cracker\uninstall.exe
Realtek AC'97 Audio --> RunDll32 J:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "J:\Program Files\InstallShield Installation Information\{FB08F381-6533-4108-B7DD-039E11FBC27E}\setup.exe" REMOVE
Realtek High Definition Audio Driver --> RunDll32 J:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "J:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0xb -removeonly
SpeedFan (remove only) --> "J:\Program Files\SpeedFan\uninstall.exe"
Suojauspäivitys ohjelmistolle Windows XP (KB923689) --> "J:\WINDOWS\$NtUninstallKB923689$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB890046) --> "J:\WINDOWS\$NtUninstallKB890046$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB893756) --> "J:\WINDOWS\$NtUninstallKB893756$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB896358) --> "J:\WINDOWS\$NtUninstallKB896358$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB896423) --> "J:\WINDOWS\$NtUninstallKB896423$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB896428) --> "J:\WINDOWS\$NtUninstallKB896428$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB899587) --> "J:\WINDOWS\$NtUninstallKB899587$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB899591) --> "J:\WINDOWS\$NtUninstallKB899591$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB900725) --> "J:\WINDOWS\$NtUninstallKB900725$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB901017) --> "J:\WINDOWS\$NtUninstallKB901017$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB901214) --> "J:\WINDOWS\$NtUninstallKB901214$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB902400) --> "J:\WINDOWS\$NtUninstallKB902400$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB904706) --> "J:\WINDOWS\$NtUninstallKB904706$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB905414) --> "J:\WINDOWS\$NtUninstallKB905414$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB905749) --> "J:\WINDOWS\$NtUninstallKB905749$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB908519) --> "J:\WINDOWS\$NtUninstallKB908519$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB911562) --> "J:\WINDOWS\$NtUninstallKB911562$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB911927) --> "J:\WINDOWS\$NtUninstallKB911927$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB913580) --> "J:\WINDOWS\$NtUninstallKB913580$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB914388) --> "J:\WINDOWS\$NtUninstallKB914388$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB914389) --> "J:\WINDOWS\$NtUninstallKB914389$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB917344) --> "J:\WINDOWS\$NtUninstallKB917344$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB917422) --> "J:\WINDOWS\$NtUninstallKB917422$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB917953) --> "J:\WINDOWS\$NtUninstallKB917953$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB918118) --> "J:\WINDOWS\$NtUninstallKB918118$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB918439) --> "J:\WINDOWS\$NtUninstallKB918439$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB919007) --> "J:\WINDOWS\$NtUninstallKB919007$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB920213) --> "J:\WINDOWS\$NtUninstallKB920213$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB920670) --> "J:\WINDOWS\$NtUninstallKB920670$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB920683) --> "J:\WINDOWS\$NtUninstallKB920683$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB920685) --> "J:\WINDOWS\$NtUninstallKB920685$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB922819) --> "J:\WINDOWS\$NtUninstallKB922819$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB923191) --> "J:\WINDOWS\$NtUninstallKB923191$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB923414) --> "J:\WINDOWS\$NtUninstallKB923414$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB923694) --> "J:\WINDOWS\$NtUninstallKB923694$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB923789) --> J:\WINDOWS\system32\MacroMed\Flash\genuinst.exe J:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
Suojauspäivitys Windows XP:lle (KB923980) --> "J:\WINDOWS\$NtUninstallKB923980$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB924191) --> "J:\WINDOWS\$NtUninstallKB924191$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB924270) --> "J:\WINDOWS\$NtUninstallKB924270$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB924496) --> "J:\WINDOWS\$NtUninstallKB924496$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB924667) --> "J:\WINDOWS\$NtUninstallKB924667$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB925902) --> "J:\WINDOWS\$NtUninstallKB925902$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB926255) --> "J:\WINDOWS\$NtUninstallKB926255$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB926436) --> "J:\WINDOWS\$NtUninstallKB926436$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB927779) --> "J:\WINDOWS\$NtUninstallKB927779$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB927802) --> "J:\WINDOWS\$NtUninstallKB927802$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB928255) --> "J:\WINDOWS\$NtUninstallKB928255$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB928843) --> "J:\WINDOWS\$NtUninstallKB928843$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB929123) --> "J:\WINDOWS\$NtUninstallKB929123$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB930178) --> "J:\WINDOWS\$NtUninstallKB930178$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB931261) --> "J:\WINDOWS\$NtUninstallKB931261$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB931768) --> "J:\WINDOWS\$NtUninstallKB931768$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB931784) --> "J:\WINDOWS\$NtUninstallKB931784$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB932168) --> "J:\WINDOWS\$NtUninstallKB932168$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB935839) --> "J:\WINDOWS\$NtUninstallKB935839$\spuninst\spuninst.exe"
Suojauspäivitys Windows XP:lle (KB935840) --> "J:\WINDOWS\$NtUninstallKB935840$\spuninst\spuninst.exe"
System Requirements Lab --> J:\Program Files\SystemRequirementsLab\Uninstall.exe
The GIMP 2.2.15 --> "J:\Program Files\GIMP-2.0\unins000.exe"
The KMPlayer (remove only) --> "J:\Program Files\The KMPlayer\uninstall.exe"
The Sims 2 --> J:\Program Files\EA GAMES\The Sims 2\EAUninstall.exe
Theme Manager --> J:\PROGRA~1\Stardock\OBJECT~1\THEMEM~1\thememgr.exe /uninstallwise
WinAVI Video Converter --> "J:\Program Files\WinAVI Video Converter\unins000.exe"
Windows Live Messenger --> MsiExec.exe /I{DF6FEB75-A0D1-44E5-A754-0072D4967734}
Windows Live Sign-in Assistant --> MsiExec.exe /I{49672EC2-171B-47B4-8CE7-50D7806360D7}
WinRAR archiver --> J:\Program Files\WinRAR\uninstall.exe
WinXP Manager --> MsiExec.exe /I{784CFD4D-1BA5-4DB5-9377-84DAF0D19EF1}
Visual Zip Password Recovery Processor --> J:\Program Files\Visual Zip Password Recovery Processor\uninstall.exe
VobSub v2.23 (Remove Only) --> "J:\Program Files\Gabest\VobSub\uninstall.exe"
Xfire (remove only) --> "J:\Program Files\Xfire\uninst.exe"
XP Codec Pack --> J:\Program Files\XP Codec Pack\Uninstall.exe
XviD4PSP --> J:\Program Files\Winnydows\XviD4PSP\Uninstall.exe
Zip Password Recovery - Ver: 1.42 --> "J:\Program Files\Datahjaelp\Zip Password Recovery\unins000.exe"
ZoneAlarm --> J:\Program Files\Zone Labs\ZoneAlarm\zauninst.exe


-- End of Deckard's System Scanner: finished at 2007-07-15 at 11:50:52 ---------



Deckard's System Scanner v20070711.54
Run by Teemu on 2007-07-15 at 11:44:28
Computer is in Normal Mode.
--------------------------------------------------------------------------------

-- System Restore --------------------------------------------------------------

Successfully created a Deckard's System Scanner Restore Point.


-- Last 5 Restore Point(s) --
74: 2007-07-15 08:44:33 UTC - RP74 - Deckard's System Scanner Restore Point
73: 2007-07-14 21:35:46 UTC - RP73 - Removed Java(TM) SE Runtime Environment 6 Update 1
72: 2007-07-14 18:08:51 UTC - RP72 - Removed Java(TM) SE Development Kit 6 Update 1
71: 2007-07-14 17:56:18 UTC - RP71 - Installed Java(TM) 6 Update 2
70: 2007-07-14 17:45:29 UTC - RP70 - Installed Java(TM) SE Development Kit 6 Update 2


-- First Restore Point --
1: 2007-05-26 21:17:00 UTC - RP1 - Järjestelmän tarkistuspiste


Backed up registry hives.

Performed disk cleanup.


-- HijackThis (run as Teemu.exe) -----------------------------------------------

Logfile of HijackThis v1.99.1
Scan saved at 11:47:22, on 15.7.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)

Running processes:
J:\WINDOWS\System32\smss.exe
J:\WINDOWS\system32\winlogon.exe
J:\WINDOWS\system32\services.exe
J:\WINDOWS\system32\lsass.exe
J:\WINDOWS\system32\Ati2evxx.exe
J:\WINDOWS\system32\svchost.exe
J:\WINDOWS\System32\svchost.exe
J:\WINDOWS\system32\ZoneLabs\vsmon.exe
J:\WINDOWS\system32\spoolsv.exe
J:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
J:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
J:\Program Files\AntiVir PersonalEdition Classic\sched.exe
J:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
J:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\netfxupdate.exe
J:\WINDOWS\system32\svchost.exe
J:\WINDOWS\system32\Ati2evxx.exe
J:\WINDOWS\Explorer.EXE
J:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
J:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
J:\Program Files\ATI Technologies\ATI.ACE\cli.exe
J:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
J:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
J:\WINDOWS\system32\ctfmon.exe
J:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
J:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
J:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
J:\Program Files\ATI Technologies\ATI.ACE\cli.exe
J:\Program Files\ATI Technologies\ATI.ACE\cli.exe
J:\Program Files\MSN Messenger\usnsvc.exe
J:\Documents and Settings\Teemu\Työpöytä\dss.exe
J:\DOCUME~1\Teemu\TYPYT~1\TEEMUN~1\JRJEST~1\Teemu.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Linkit
O2 - BHO: Adobe PDF Reader -linkkiavustaja - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - J:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - J:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - J:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [ZoneAlarm Client] "J:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [SSBkgdUpdate] "J:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [PaperPort PTD] J:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
O4 - HKLM\..\Run: [IndexSearch] J:\Program Files\ScanSoft\PaperPort\IndexSearch.exe
O4 - HKLM\..\Run: [SetDefPrt] J:\Program Files\Brother\Brmfl04g\BrStDvPt.exe
O4 - HKLM\..\Run: [ControlCenter2.0] J:\Program Files\Brother\ControlCenter2\brctrcen.exe /autorun
O4 - HKLM\..\Run: [ATICCC] "J:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [avgnt] "J:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [NeroFilterCheck] J:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "J:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "J:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] J:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "J:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "J:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - J:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - J:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - J:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - J:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {0B79F48A-E8D6-11DB-9283-E25056D89593} (F-Secure Online Scanner 3.1) - http://support.f-secure.com/ols/fscax.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - J:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5F5F9FB8-878E-4455-95E0-F64B2314288A} (ijjiPlugin2 Class) - http://gamedownload.ijjimax.com/gamedownload/dist/hgstart/HGPlugin11USA.cab
O16 - DPF: {CD995117-98E5-4169-9920-6C12D4C0B548} (HGPlugin9USA Class) - http://gamedownload.ijjimax.com/gamedownload/dist/hgstart/HGPlugin9USA.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - J:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - J:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - J:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - J:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - J:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - J:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - J:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - J:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - J:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - J:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NBService - Nero AG - J:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - J:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - J:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - J:\WINDOWS\system32\ZoneLabs\vsmon.exe


-- HijackThis Fixed Entries (J:\DOCUME~1\Teemu\TYPYT~1\TEEMUN~1\JRJEST~1\backups\) --------------------------------------------------------------------------------

backup-20070610-125539-131 R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
backup-20070610-125539-235 O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
backup-20070714-195608-567 R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)

-- File Associations -----------------------------------------------------------

All associations okay.


-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

R0 giveio - j:\windows\system32\giveio.sys
R0 speedfan - j:\windows\system32\speedfan.sys <Not Verified; Windows (R) 2000 DDK provider; Windows (R) 2000 DDK driver>

S3 pcouffin (VSO Software pcouffin) - j:\windows\system32\drivers\pcouffin.sys <Not Verified; VSO Software; Patin couffin engine>
S3 XTrapD12 - j:\windows\system32\xtrapd12.sys (file missing)


-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

R2 aawservice (Ad-Aware 2007 Service) - "j:\program files\lavasoft\ad-aware 2007\aawservice.exe" <Not Verified; Lavasoft AB; Ad-Aware 2007 Service>
R2 AntiVirScheduler (AntiVir PersonalEdition Classic Scheduler) - "j:\program files\antivir personaledition classic\sched.exe" <Not Verified; Avira GmbH; Scheduler>
R2 NetFxUpdate_v1.1.4322 (Microsoft .NET Framework v1.1.4322 Update) - j:\windows\microsoft.net\framework\v1.1.4322\netfxupdate.exe <Not Verified; Microsoft; NetFxUpdate Application>

S3 NBService - j:\program files\nero\nero 7\nero backitup\nbservice.exe


-- Files created between 2007-06-15 and 2007-07-15 -----------------------------

2007-07-15 00:41:02 0 dr-h----- J:\Documents and Settings\Teemu\Recent
2007-07-14 21:00:49 0 d-------- J:\Program Files\Sun
2007-07-14 19:54:27 245760 --a------ J:\Program Files\Uninstall Ask Toolbar.dll <Not Verified; Ask.com; Ask Toolbar for Internet Explorer>
2007-07-14 19:15:49 0 d-------- J:\Program Files\Yamicsoft
2007-07-10 20:10:07 2560 --a------ J:\WINDOWS\_MSRSTRT.EXE
2007-07-05 17:41:20 0 d-------- J:\Documents and Settings\All Users\Application Data\Age of Empires 3
2007-07-05 17:22:03 0 d-------- J:\Program Files\Microsoft Games
2007-06-29 20:46:34 0 d--h----- J:\WINDOWS\PIF
2007-06-29 20:41:42 0 d-------- J:\Program Files\ElastoMania111
2007-06-29 18:20:29 0 d-------- J:\Program Files\Areena 5
2007-06-29 18:20:16 73216 --a------ J:\WINDOWS\ST6UNST.EXE <Not Verified; Microsoft Corporation; Microsoft® Visual Basic for Windows>
2007-06-27 11:13:30 0 d-------- J:\Documents and Settings\Heli ja Heidi\Application Data\GetRight
2007-06-26 14:53:07 0 d-------- J:\Program Files\Datahjaelp
2007-06-25 21:02:52 0 d--h----- J:\Documents and Settings\Teemu\Application Data\ijjigame
2007-06-24 10:27:18 0 d-------- J:\Documents and Settings\Arto\Application Data\GetRight
2007-06-22 12:47:28 4682 --a------ J:\WINDOWS\system32\npptNT2.sys <Not Verified; INCA Internet Co., Ltd.; nProtect NPSC Kernel Mode Driver for NT>
2007-06-22 12:28:59 0 d-------- J:\Program Files\MSXML 4.0
2007-06-22 12:26:55 0 d-------- J:\MAIET
2007-06-22 01:04:22 0 d-------- J:\Program Files\GetRight
2007-06-21 23:17:46 0 d-------- J:\Program Files\MAIET
2007-06-21 22:54:49 0 d-------- J:\Travian
2007-06-21 21:31:39 0 d-------- J:\Program Files\AskTBar
2007-06-21 20:58:48 0 d-------- J:\Documents and Settings\Teemu\Application Data\Ahead
2007-06-21 20:57:57 0 d-------- J:\Documents and Settings\All Users\Application Data\Ahead
2007-06-21 20:54:12 0 d-------- J:\Program Files\Nero
2007-06-21 20:54:12 0 d-------- J:\Program Files\Common Files\Ahead
2007-06-21 20:54:12 0 d-------- J:\Documents and Settings\All Users\Application Data\Nero
2007-06-21 20:52:01 0 d-------- J:\WINDOWS\RegisteredPackages
2007-06-21 19:34:07 0 d-------- J:\Program Files\WinAVI MP4 Converter
2007-06-21 19:22:11 0 d-------- J:\Program Files\WinAVI Video Converter
2007-06-21 15:02:03 0 d-------- J:\Program Files\CDBurnerXP Pro 3
2007-06-21 12:50:15 0 d-------- J:\Documents and Settings\Teemu\Application Data\FinalBurner Video DVD
2007-06-20 21:47:18 0 d-------- J:\Program Files\Visual Zip Password Recovery Processor
2007-06-20 21:44:06 0 d-------- J:\Program Files\RAR Password Cracker
2007-06-20 13:24:54 60273 --a------ J:\WINDOWS\system32\pthreadGC2.dll <Not Verified; Open Source Software community project; >
2007-06-20 13:20:53 0 d-------- J:\Program Files\Common Files\Stardock
2007-06-20 13:20:51 0 d-------- J:\Program Files\Stardock
2007-06-20 12:11:00 0 d-------- J:\Program Files\DAEMON Tools
2007-06-20 12:07:43 682232 --a------ J:\WINDOWS\system32\drivers\sptd.sys
2007-06-20 11:47:57 0 d-------- J:\Documents and Settings\Teemu\Application Data\uTorrent
2007-06-19 20:57:03 0 d-------- J:\Program Files\Red Kawa
2007-06-19 12:43:51 0 d-------- J:\Downloads
2007-06-19 12:43:51 0 d-------- J:\Bases
2007-06-19 12:37:44 0 d-------- J:\Kaspersky
2007-06-18 16:35:38 0 d-------- J:\Program Files\Google
2007-06-16 18:17:13 0 d-------- J:\Documents and Settings\Teemu\.thumbnails


-- Find3M Report ---------------------------------------------------------------

2007-07-15 00:37:08 0 d-------- J:\Program Files\Java
2007-07-14 19:53:22 0 d-------- J:\Program Files\SpeedFan
2007-07-14 17:15:18 0 d-------- J:\Program Files\Yahoo!
2007-07-11 08:49:33 377824 --a------ J:\WINDOWS\system32\perfh00B.dat
2007-07-11 08:49:33 76526 --a------ J:\WINDOWS\system32\perfc00B.dat
2007-07-05 17:39:10 0 d--h----- J:\Program Files\InstallShield Installation Information
2007-06-24 12:06:39 0 d-------- J:\Program Files\Common Files\Adobe
2007-06-20 13:24:57 0 d-------- J:\Program Files\ffdshow
2007-06-20 13:09:26 0 d-------- J:\Program Files\The KMPlayer
2007-06-11 21:30:37 0 d-------- J:\Program Files\Winnydows
2007-06-11 21:02:04 0 d-------- J:\Program Files\VSO
2007-06-11 21:01:37 0 d-------- J:\Documents and Settings\Teemu\Application Data\Vso
2007-06-11 21:01:36 33 --a------ J:\Documents and Settings\Teemu\Application Data\pcouffin.log
2007-06-11 21:01:35 47360 --a------ J:\Documents and Settings\Teemu\Application Data\pcouffin.sys <Not Verified; VSO Software; Patin couffin engine>
2007-06-11 21:01:35 7887 --a------ J:\Documents and Settings\Teemu\Application Data\pcouffin.cat
2007-06-11 21:01:34 1144 --a------ J:\Documents and Settings\Teemu\Application Data\pcouffin.inf
2007-06-11 18:56:19 0 d-------- J:\Program Files\Team MediaPortal
2007-06-11 18:37:57 0 d-------- J:\Program Files\GIMP-2.0
2007-06-11 18:35:49 0 d-------- J:\Program Files\Common Files\GTK
2007-06-10 22:55:36 0 d-------- J:\Program Files\The All-Seeing Eye
2007-06-10 18:11:13 0 d-------- J:\Program Files\SharewareGuide.net
2007-06-10 13:18:52 0 d-------- J:\Documents and Settings\Teemu\Application Data\Grisoft
2007-06-09 18:45:39 0 d-------- J:\Program Files\AviSynth 2.5
2007-06-09 18:38:42 0 d-------- J:\Program Files\XP Codec Pack
2007-06-09 18:22:59 0 d-------- J:\Program Files\Gabest
2007-06-09 15:44:12 0 d-------- J:\Program Files\URUSoft
2007-06-09 15:39:31 0 d-------- J:\Program Files\Avi2Dvd
2007-06-08 13:27:45 0 d-------- J:\Program Files\Lavasoft
2007-06-08 13:08:52 0 d-------- J:\Program Files\Common Files\Wise Installation Wizard
2007-06-05 22:07:42 0 d-------- J:\Documents and Settings\Teemu\Application Data\Macromedia
2007-06-05 22:07:25 1156 --a------ J:\WINDOWS\mozver.dat
2007-06-05 11:02:03 0 d-------- J:\Documents and Settings\Teemu\Application Data\WinRAR
2007-06-03 21:34:18 0 d-------- J:\Program Files\EA GAMES
2007-06-03 14:31:28 10752 --a------ J:\WINDOWS\system32\ff_vfw.dll
2007-05-31 13:24:02 0 d-------- J:\Documents and Settings\Teemu\Application Data\VersionTracker Pro
2007-05-30 21:22:50 0 d-------- J:\Documents and Settings\Teemu\Application Data\Xfire
2007-05-30 21:21:05 0 d---s---- J:\Program Files\Xfire
2007-05-30 15:38:17 0 d-------- J:\Documents and Settings\Teemu\Application Data\Adobe
2007-05-30 15:18:02 0 d-------- J:\Program Files\Realtek
2007-05-30 15:17:49 315392 --a------ J:\WINDOWS\HideWin.exe <Not Verified; Realtek Semiconductor Corp.; HD Audio Hide windows program>
2007-05-29 20:03:39 0 d-------- J:\Program Files\Common Files\Java
2007-05-29 18:52:37 0 d-------- J:\Program Files\Counter-Strike 1.6
2007-05-28 20:20:35 0 d-------- J:\Documents and Settings\Teemu\Application Data\ATI
2007-05-28 20:16:49 0 d-------- J:\Program Files\ATI Technologies
2007-05-28 19:58:12 0 d-------- J:\Program Files\SystemRequirementsLab
2007-05-28 19:58:12 0 d-------- J:\Documents and Settings\Teemu\Application Data\SystemRequirementsLab
2007-05-28 14:33:05 0 d-------- J:\Program Files\FreeUndelete
2007-05-27 16:12:44 0 d-------- J:\Program Files\Microsoft Works
2007-05-27 16:03:37 65 --a------ J:\WINDOWS\system32\BD7420.dat
2007-05-27 16:02:48 0 d-------- J:\Program Files\Brother
2007-05-27 16:02:32 0 d-------- J:\Program Files\Common Files\InstallShield
2007-05-27 16:00:57 0 d-------- J:\Program Files\Common Files\ScanSoft Shared
2007-05-27 16:00:51 0 d-------- J:\Program Files\ScanSoft
2007-05-27 14:04:27 0 d-------- J:\Program Files\CCleaner
2007-05-27 13:50:26 4212 ---h----- J:\WINDOWS\system32\zllictbl.dat
2007-05-27 13:39:12 0 d-------- J:\Program Files\Messenger
2007-05-27 12:40:43 0 d-------- J:\Program Files\MSN Messenger
2007-05-27 12:09:22 0 d-------- J:\Program Files\Alwil Software
2007-05-27 11:48:54 0 d-------- J:\Documents and Settings\Teemu\Application Data\Talkback
2007-05-27 11:48:26 0 --a------ J:\WINDOWS\nsreg.dat
2007-05-27 11:48:24 0 d-------- J:\Documents and Settings\Teemu\Application Data\Mozilla
2007-05-27 10:26:23 0 d-------- J:\Documents and Settings\Teemu\Application Data\F-Secure
2007-05-27 02:55:29 0 d-------- J:\Program Files\Common Files\ODBC
2007-05-27 02:55:26 0 d-------- J:\Program Files\Common Files\SpeechEngines
2007-05-27 02:55:01 62 --ahs---- J:\Documents and Settings\Teemu\Application Data\desktop.ini
2007-05-27 00:16:47 0 d-------- J:\Documents and Settings\Teemu\Application Data\Identities
2007-05-27 00:10:47 0 d-------- J:\Program Files\microsoft frontpage
2007-05-27 00:10:34 0 d-------- J:\Documents and Settings\Teemu\Application Data\Sun
2007-05-27 00:06:48 0 d--h----- J:\Program Files\WindowsUpdate
2007-05-27 00:06:44 0 d-------- J:\Program Files\Online Services
2007-05-27 00:05:51 0 d-------- J:\Program Files\Common Files\MSSoap
2007-05-27 00:05:40 0 d-------- J:\Program Files\Movie Maker
2007-05-27 00:05:10 21672 --a------ J:\WINDOWS\system32\emptyregdb.dat
2007-05-27 00:04:14 0 d-------- J:\Program Files\MSN Gaming Zone
2007-05-27 00:04:05 0 d-------- J:\Program Files\Windows NT


-- Registry Dump ---------------------------------------------------------------

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} J:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
{9030D464-4C02-4ABF-8ECC-5164760863C6} J:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"ZoneAlarm Client"="\"J:\\Program Files\\Zone Labs\\ZoneAlarm\\zlclient.exe\""
"SSBkgdUpdate"="\"J:\\Program Files\\Common Files\\Scansoft Shared\\SSBkgdUpdate\\SSBkgdupdate.exe\" -Embedding -boot"
"PaperPort PTD"="J:\\Program Files\\ScanSoft\\PaperPort\\pptd40nt.exe"
"IndexSearch"="J:\\Program Files\\ScanSoft\\PaperPort\\IndexSearch.exe"
"SetDefPrt"="J:\\Program Files\\Brother\\Brmfl04g\\BrStDvPt.exe"
"ControlCenter2.0"="J:\\Program Files\\Brother\\ControlCenter2\\brctrcen.exe /autorun"
"ATICCC"="\"J:\\Program Files\\ATI Technologies\\ATI.ACE\\cli.exe\" runtime -Delay"
"SoundMan"="SOUNDMAN.EXE"
"avgnt"="\"J:\\Program Files\\AntiVir PersonalEdition Classic\\avgnt.exe\" /min"
"NeroFilterCheck"="J:\\Program Files\\Common Files\\Ahead\\Lib\\NeroCheck.exe"
"Adobe Reader Speed Launcher"="\"J:\\Program Files\\Adobe\\Reader 8.0\\Reader\\Reader_sl.exe\""
"SunJavaUpdateSched"="\"J:\\Program Files\\Java\\jre1.6.0_02\\bin\\jusched.exe\""

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="J:\\WINDOWS\\system32\\ctfmon.exe"
"msnmsgr"="\"J:\\Program Files\\MSN Messenger\\msnmsgr.exe\" /background"
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="\"J:\\Program Files\\Common Files\\Ahead\\Lib\\NMBgMonitor.exe\""

[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="J:\\WINDOWS\\system32\\CTFMON.EXE"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"DisableRegistryTools"=dword:00000000

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="AVG Anti-Spyware 7.5"

HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa
Authentication Packages REG_MULTI_SZ msv1_0\0\0
Security Packages REG_MULTI_SZ kerberos\0msv1_0\0schannel\0wdigest\0\0
Notification Packages REG_MULTI_SZ scecli\0\0

HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\aawservice
HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\AVG Anti-Spyware Driver
HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\AVG Anti-Spyware Guard

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"DAEMON Tools"="\"J:\\Program Files\\DAEMON Tools\\daemon.exe\" -lang 1033"

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost]
HTTPFilter REG_MULTI_SZ HTTPFilter\0\0
LocalService REG_MULTI_SZ Alerter\0WebClient\0LmHosts\0RemoteRegistry\0upnphost\0SSDPSRV\0\0
NetworkService REG_MULTI_SZ DnsCache\0\0
DcomLaunch REG_MULTI_SZ DcomLaunch\0TermService\0\0
rpcss REG_MULTI_SZ RpcSs\0\0
imgsvc REG_MULTI_SZ StiSvc\0\0
termsvcs REG_MULTI_SZ TermService\0\0



-- End of Deckard's System Scanner: finished at 2007-07-15 at 11:50:52 ---------

 

"Ja sitten mitkään pelit eivät käynnisty. "

Siis tuplaklikkaat tiedostoa eikä se käynnisty? hieman tarkemmin? tuntuu että windows-ongelmissa vois tietää enemmän,

 

Eli siis päivitin windowsin tietoturvvapäivityksen ja sen jälkeen menin lomalle ja kun tulin pois niin aukaisin tietokoneen ja ei enää pelit aukeneet kaksoinäpäytyksellä. Tai itse asiassa minulla on vain 1 peli joka ennen toimi mutta ei enää. Muita pelejä minulla ei olekkaan.

Tässä olisi sitten F-Securen Loq:






Scanning Report
Sunday, July 15, 2007 14:35:58 - 17:39:21

Computer name: ARTO-E648E5DD19
Scanning type: Scan system for viruses, rootkits, spyware
Target: J:\
Result: 2 malware found
Tracking Cookie (spyware)

* System (Disinfected)
* System

Statistics
Scanned:

* Files: 77418
* System: 4434
* Not scanned: 20

Actions:

* Disinfected: 1
* Renamed: 0
* Deleted: 0
* None: 1
* Submitted: 0

Files not scanned:

* J:\HIBERFIL.SYS
* J:\PAGEFILE.SYS
* J:\WINDOWS\TEMP\ZLT06AAF.TMP
* J:\WINDOWS\SYSTEM32\DRIVERS\SPTD.SYS
* J:\WINDOWS\SYSTEM32\CONFIG\DEFAULT
* J:\WINDOWS\SYSTEM32\CONFIG\SAM
* J:\WINDOWS\SYSTEM32\CONFIG\SECURITY
* J:\WINDOWS\SYSTEM32\CONFIG\SYSTEM
* J:\WINDOWS\SYSTEM32\CATROOT2\EDB.LOG
* J:\WINDOWS\SYSTEM32\CATROOT2\TMP.EDB
* J:\WINDOWS\SOFTWAREDISTRIBUTION\EVENTCACHE\{E966516B-347D-445B-8562-90866E2CCDC9}.BIN
* J:\DOCUMENTS AND SETTINGS\TEEMU\NTUSER.DAT
* J:\DOCUMENTS AND SETTINGS\TEEMU\LOCAL SETTINGS\TEMP\PERFLIB_PERFDATA_C0C.DAT
* J:\DOCUMENTS AND SETTINGS\TEEMU\LOCAL SETTINGS\APPLICATION DATA\MICROSOFT\WINDOWS\USRCLASS.DAT
* J:\DOCUMENTS AND SETTINGS\NETWORKSERVICE\NTUSER.DAT
* J:\DOCUMENTS AND SETTINGS\NETWORKSERVICE\LOCAL SETTINGS\APPLICATION DATA\MICROSOFT\WINDOWS\USRCLASS.DAT
* J:\DOCUMENTS AND SETTINGS\LOCALSERVICE\NTUSER.DAT
* J:\DOCUMENTS AND SETTINGS\LOCALSERVICE\LOCAL SETTINGS\APPLICATION DATA\MICROSOFT\WINDOWS\USRCLASS.DAT
* J:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\BROTHER\BRLOG\BRTINST.LOG
* J:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\BROTHER\BRLOG\BRCOLLECTDIR\BR_CAT.BAT










Scanning Report
Sunday, July 15, 2007 14:35:58 - 17:39:21

Computer name: ARTO-E648E5DD19
Scanning type: Scan system for viruses, rootkits, spyware
Target: J:\
Result: 2 malware found
Tracking Cookie (spyware)

* System (Disinfected)
* System

Statistics
Scanned:

* Files: 77418
* System: 4434
* Not scanned: 20

Actions:

* Disinfected: 1
* Renamed: 0
* Deleted: 0
* None: 1
* Submitted: 0

Files not scanned:

* J:\HIBERFIL.SYS
* J:\PAGEFILE.SYS
* J:\WINDOWS\TEMP\ZLT06AAF.TMP
* J:\WINDOWS\SYSTEM32\DRIVERS\SPTD.SYS
* J:\WINDOWS\SYSTEM32\CONFIG\DEFAULT
* J:\WINDOWS\SYSTEM32\CONFIG\SAM
* J:\WINDOWS\SYSTEM32\CONFIG\SECURITY
* J:\WINDOWS\SYSTEM32\CONFIG\SYSTEM
* J:\WINDOWS\SYSTEM32\CATROOT2\EDB.LOG
* J:\WINDOWS\SYSTEM32\CATROOT2\TMP.EDB
* J:\WINDOWS\SOFTWAREDISTRIBUTION\EVENTCACHE\{E966516B-347D-445B-8562-90866E2CCDC9}.BIN
* J:\DOCUMENTS AND SETTINGS\TEEMU\NTUSER.DAT
* J:\DOCUMENTS AND SETTINGS\TEEMU\LOCAL SETTINGS\TEMP\PERFLIB_PERFDATA_C0C.DAT
* J:\DOCUMENTS AND SETTINGS\TEEMU\LOCAL SETTINGS\APPLICATION DATA\MICROSOFT\WINDOWS\USRCLASS.DAT
* J:\DOCUMENTS AND SETTINGS\NETWORKSERVICE\NTUSER.DAT
* J:\DOCUMENTS AND SETTINGS\NETWORKSERVICE\LOCAL SETTINGS\APPLICATION DATA\MICROSOFT\WINDOWS\USRCLASS.DAT
* J:\DOCUMENTS AND SETTINGS\LOCALSERVICE\NTUSER.DAT
* J:\DOCUMENTS AND SETTINGS\LOCALSERVICE\LOCAL SETTINGS\APPLICATION DATA\MICROSOFT\WINDOWS\USRCLASS.DAT
* J:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\BROTHER\BRLOG\BRTINST.LOG
* J:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\BROTHER\BRLOG\BRCOLLECTDIR\BR_CAT.BAT

 

Kuulostaa kyll oudolta, kysyppä täällä lisäneuvoja

http://keskustelu.afterdawn.com/forum_view.cfm/122