kone reboottailee itestää.

Logfile of HijackThis v1.99.1
Scan saved at 14:19:27, on 8.8.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\DAEMON Tools\daemon.exe
C:\WINDOWS\system32\CTXFIHLP.EXE
C:\WINDOWS\CTHELPER.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\AGEIA Technologies\TrayIcon.exe
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\SYSTEM32\CTXFISPI.EXE
C:\Program Files\TaskSwitchXP\TaskSwitchXP.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Sygate\SPF\smc.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\WINDOWS\system32\wuauclt.exe
F:\Haittaohjelmien poisto\skannausvehje.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fi/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://update.microsoft.com/microsoftupdate
O1 - Hosts: 66.98.148.65 auto.search.msn.com
O1 - Hosts: 66.98.148.65 auto.search.msn.es
O2 - BHO: Adobe PDF Reader -linkkiavustaja - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll
O4 - HKLM\..\Run: [RivaTunerStartupDaemon] "C:\Program Files\RivaTuner v2.02\RivaTuner.exe" /S
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [UnlockerAssistant] C:\Program Files\Unlocker\UnlockerAssistant.exe -H
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\WINDOWS\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [AGEIA PhysX SysTray] C:\Program Files\AGEIA Technologies\TrayIcon.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [36X Raid Configurer] C:\WINDOWS\system32\xRaidSetup.exe boot
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [NVIDIA nTune] "C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" clear
O4 - HKCU\..\Run: [TaskSwitchXP] C:\Program Files\TaskSwitchXP\TaskSwitchXP.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O8 - Extra context menu item: &Lataa FlashGetillä
- C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: &Lataa kaikki FlashGetillä
- C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://www.creative.com/su/ocx/15030/CTSUEng.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://javadl-esd.sun.com/update/1.6.0/jinstall-6u2-windows-i586-jc.cab
O16 - DPF: {D1E7CBDA-E60E-4970-A01C-37301EF7BF98} (Measurement Services Client v.3.12) - http://www.yougamers.com/systeminfo/MSC3.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/su/ocx/15030/CTPID.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{64DE6505-F7C3-450D-970D-AED0990FB782}: NameServer = 192.168.0.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{64DE6505-F7C3-450D-970D-AED0990FB782}: NameServer = 192.168.0.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{64DE6505-F7C3-450D-970D-AED0990FB782}: NameServer = 192.168.0.254
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: nTune Service (nTuneService) - NVIDIA - C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Sygate Personal Firewall Pro (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe

 

Lataa Everest Home Edition tästä, jos sinulla ei ole sitä vielä.

* Asennuksen jälkeen aukaise Everest Home edition.
* Klikkaa yläpalkista File --> Preferences
* Valitse Kieleksi Finnish/Suomi ja klikkaa Ok.
* Klikkaa Tietokone kuvaketta.
* Klikkaa sitten Anturit.
* Klikkaa yläpalkista Raportti --> Pikaraportti anturit --> Pelkkäteksti.
* Nyt voit tallentaa raportin vaikka työpöydälle, jos haluat. Maalaa hiirellä Lämpötila osio ja klikkaa maalaamaasi aluetta hiiren oikeanpuoleisella napilla ja valitse Kopioi.
* Mene nyt viestiketjuusi ja klikkaa viestikenttään hiiren oikeanpuoleisella napilla ja valitse Liitä.
* Tämän jälkeen voit sammuttaa Everest Home editionin.

 

--------[ EVEREST Home Edition (c) 2003-2005 Lavalys, Inc. ]------------------------------------------------------------

Versio EVEREST v2.20.405/fi
Kotisivu http://www.lavalys.com/
Raportin tyyppi Raporttiapuri
Tietokone TEHO_PC
Tekijä Samu
Käyttöjärjestelmä Microsoft Windows XP Professional 5.1.2600 (WinXP Retail)
Päiväys 2007-08-08
Aika 14:32


--------[ Anturit ]-----------------------------------------------------------------------------------------------------

Anturit:
Tyyppi HDD (ISA 290h)
Näytönohjainanturi Driver (NV-DRV)

Lämpötilat:
Emolevy 42 °C (108 °F)
Näytönohjain 76 °C (169 °F)
WDC WD5000AAKS-75TMA0 42 °C (108 °F)

Jännitteet:
CPU-ydin 2.90 V
Aux 3.46 V
+3.3 V 3.20 V
+5 V 5.38 V
+12 V 10.40 V
-12 V -11.46 V
-5 V -4.09 V
Debug Info F FF 42 FF
Debug Info T 42 00 00
Debug Info V B4 D8 C8 C8 AB CE AA (03)


--------[ Debug - PCI ]-------------------------------------------------------------------------------------------------

B00 D00 F00: Intel(R) G33/G31/P35 Express Chipset Processor to I/O Controller - 29C0 [NoDB]

Offset 00: 86 80 C0 29 06 00 90 20 02 00 00 06 00 00 00 00
Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 43 10 76 82
Offset 30: 00 00 00 00 E0 00 00 00 00 00 00 00 00 00 00 00
Offset 40: 01 90 D1 FE 00 00 00 00 01 00 FB 7F 00 00 00 00
Offset 50: 00 00 00 00 03 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 01 00 00 E0 00 00 00 00 01 80 D1 FE 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 10 11 11 00 00 33 33 00 FF 03 00 00 00 1A 38 00
Offset A0: 20 00 00 08 00 00 00 80 00 00 00 80 00 00 00 80
Offset B0: 00 80 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 49 00 00 00 00 00 00 64
Offset E0: 09 00 0B 01 20 40 2D 09 47 4C 16 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 90 0F 02 00 00 00 00 00

B00 D01 F00: Intel(R) G33/G31/P35 Express Chipset PCI Express Root Port - 29C1 [NoDB]

Offset 00: 86 80 C1 29 07 01 10 00 02 00 04 06 08 00 01 00
Offset 10: 00 00 00 00 00 00 00 00 00 01 01 00 C0 C0 00 20
Offset 20: 00 F4 D0 F7 01 D0 F1 DF 00 00 00 00 00 00 00 00
Offset 30: 00 00 00 00 88 00 00 00 00 00 00 00 10 01 0A 00
Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 02
Offset 80: 01 90 03 C8 08 00 00 00 0D 80 00 00 86 80 C1 29
Offset 90: 05 A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 10 00 41 01 00 80 00 00 00 00 00 00 01 25 01 02
Offset B0: 40 00 01 11 80 25 00 00 C0 01 48 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 01 00 03 E1 3F 80 90 0F 02 00 00 F0 00 F5

B00 D1A F00: Intel(R) ICH9 Family USB Universal Host Controller - 2937 [NoDB]

Offset 00: 86 80 37 29 05 00 90 02 02 00 03 0C 00 00 80 00
Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 01 B8 00 00 00 00 00 00 00 00 00 00 43 10 77 82
Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 10 01 00 00
Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 09 00 06 20 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 27 00 00 00 00 00 00 00 00 01 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00

B00 D1A F01: Intel(R) ICH9 Family USB Universal Host Controller - 2938 [NoDB]

Offset 00: 86 80 38 29 05 00 90 02 02 00 03 0C 00 00 00 00
Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 81 B8 00 00 00 00 00 00 00 00 00 00 43 10 77 82
Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 15 02 00 00
Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 09 00 06 20 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 27 00 00 00 00 00 00 00 00 01 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00

B00 D1A F02: Intel(R) ICH9 Family USB Universal Host Controller - 2939 [NoDB]

Offset 00: 86 80 39 29 05 00 90 02 02 00 03 0C 00 00 00 00
Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 01 BC 00 00 00 00 00 00 00 00 00 00 43 10 77 82
Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 12 03 00 00
Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 09 00 06 20 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 27 00 00 00 00 00 00 00 00 01 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00

B00 D1A F07: Intel(R) ICH9 Family USB2 Enhanced Host Controller - 293C [NoDB]

Offset 00: 86 80 3C 29 06 00 90 02 02 20 03 0C 00 00 00 00
Offset 10: 00 FC FF F3 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 43 10 77 82
Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 12 03 00 00
Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 01 58 C2 C9 00 00 00 00 0A 98 A0 20 00 00 00 00
Offset 60: 20 20 FF 01 00 00 00 00 01 00 00 00 00 20 00 C0
Offset 70: 00 00 CF 0F 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 01 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 09 00 06 20 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 AA FF 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 88 85 40 00 86 0F 02 00 06 17 02 20

B00 D1C F00: Intel(R) ICH9 Family PCI Express Root Port 1 - 2940 [NoDB]

Offset 00: 86 80 40 29 07 01 10 00 02 00 04 06 08 00 81 00
Offset 10: 00 00 00 00 00 00 00 00 00 04 04 00 F0 00 00 20
Offset 20: F0 FF 00 00 F1 F2 F1 F2 00 00 00 00 00 00 00 00
Offset 30: 00 00 00 00 40 00 00 00 00 00 00 00 11 01 06 00
Offset 40: 10 80 41 01 00 80 00 00 00 00 10 00 41 4C 11 01
Offset 50: 00 00 01 10 60 05 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 05 90 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 0D A0 00 00 43 10 77 82 00 00 00 00 00 00 00 00
Offset A0: 01 00 02 C8 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 11 08 00 00 00 00
Offset E0: 00 00 C7 00 06 07 08 00 30 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00

B00 D1C F04: Intel(R) ICH9 Family PCI Express Root Port 5 - 2948 [NoDB]

Offset 00: 86 80 48 29 07 01 10 00 02 00 04 06 08 00 81 00
Offset 10: 00 00 00 00 00 00 00 00 00 03 03 00 D0 D0 00 20
Offset 20: F0 F7 F0 F7 F1 FF 01 00 00 00 00 00 00 00 00 00
Offset 30: 00 00 00 00 40 00 00 00 00 00 00 00 11 01 06 00
Offset 40: 10 80 41 01 00 80 00 00 00 00 11 00 11 2C 11 05
Offset 50: 40 00 11 30 60 05 00 00 00 00 48 01 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 05 90 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 0D A0 00 00 43 10 77 82 00 00 00 00 00 00 00 00
Offset A0: 01 00 02 C8 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 11 08 00 00 00 00
Offset E0: 00 00 C7 00 06 07 08 00 30 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00

B00 D1C F05: Intel(R) ICH9 Family PCI Express Root Port 6 - 294A [NoDB]

Offset 00: 86 80 4A 29 07 01 10 00 02 00 04 06 08 00 81 00
Offset 10: 00 00 00 00 00 00 00 00 00 02 02 00 F0 00 00 20
Offset 20: E0 F7 E0 F7 F1 FF 01 00 00 00 00 00 00 00 00 00
Offset 30: 00 00 00 00 40 00 00 00 00 00 00 00 10 02 06 00
Offset 40: 10 80 41 01 00 80 00 00 00 00 10 00 11 2C 11 06
Offset 50: 40 00 11 30 60 05 00 00 00 00 48 01 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 05 90 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 0D A0 00 00 43 10 77 82 00 00 00 00 00 00 00 00
Offset A0: 01 00 02 C8 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 11 08 00 00 00 00
Offset E0: 00 00 C7 00 06 07 08 00 30 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00

B00 D1D F00: Intel(R) ICH9 Family USB Universal Host Controller - 2934 [NoDB]

Offset 00: 86 80 34 29 05 00 90 02 02 00 03 0C 00 00 80 00
Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 81 B0 00 00 00 00 00 00 00 00 00 00 43 10 77 82
Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 17 01 00 00
Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 09 00 06 20 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 27 00 00 00 00 00 00 00 00 01 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00

B00 D1D F01: Intel(R) ICH9 Family USB Universal Host Controller - 2935 [NoDB]

Offset 00: 86 80 35 29 05 00 90 02 02 00 03 0C 00 00 00 00
Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 01 B4 00 00 00 00 00 00 00 00 00 00 43 10 77 82
Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 13 02 00 00
Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 09 00 06 20 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 27 00 00 00 00 00 00 00 00 01 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00

B00 D1D F02: Intel(R) ICH9 Family USB Universal Host Controller - 2936 [NoDB]

Offset 00: 86 80 36 29 05 00 90 02 02 00 03 0C 00 00 00 00
Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 81 B4 00 00 00 00 00 00 00 00 00 00 43 10 77 82
Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 12 03 00 00
Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 09 00 06 20 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 27 00 00 00 00 00 00 00 00 01 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00

B00 D1D F07: Intel(R) ICH9 Family USB2 Enhanced Host Controller - 293A [NoDB]

Offset 00: 86 80 3A 29 06 00 90 02 02 20 03 0C 00 00 00 00
Offset 10: 00 F8 FF F3 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 43 10 77 82
Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 17 01 00 00
Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 01 58 C2 C9 00 00 00 00 0A 98 A0 20 00 00 00 00
Offset 60: 20 20 FF 01 00 00 00 00 01 00 00 00 00 20 00 C0
Offset 70: 00 00 CF 0F 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 01 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 09 00 06 20 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 AA FF 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 88 85 40 00 86 0F 02 00 06 17 02 20

B00 D1E F00: Intel 82801xx I/O Controller Hub

Offset 00: 86 80 4E 24 07 01 10 00 92 01 04 06 00 00 01 00
Offset 10: 00 00 00 00 00 00 00 00 00 05 05 20 E0 E0 80 22
Offset 20: 00 F8 B0 FE F1 FF 01 00 00 00 00 00 00 00 00 00
Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 FF 00 02 00
Offset 40: 00 00 00 00 00 00 00 00 01 00 00 00 00 12 00 00
Offset 50: 0D 00 00 00 43 10 77 82 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00

B00 D1F F00: PCI standard ISA bridge [NoDB]

Offset 00: 86 80 18 29 07 00 10 02 02 00 01 06 00 00 80 00
Offset 10: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 43 10 77 82
Offset 30: 00 00 00 00 E0 00 00 00 00 00 00 00 00 00 00 00
Offset 40: 01 08 00 00 80 00 00 00 81 04 00 00 10 00 00 00
Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 8B 8A 85 8E D0 00 00 00 80 83 8F 87 F8 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 0E 14 95 02 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 28 06 00 00 39 02 00 00 13 00 00 00 00 03 00 00
Offset B0: 00 00 F0 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 33 22 11 00 67 45 00 00 C0 C0 00 00 00 00 00 00
Offset E0: 09 00 0C 10 20 00 24 0A 60 00 00 00 00 00 00 00
Offset F0: 01 C0 D1 FE 68 D0 0B 00 86 0F 02 00 00 00 00 00

B00 D1F F02: Intel(R) ICH9 2 port Serial ATA Storage Controller 1 - 2921 [NoDB]

Offset 00: 86 80 21 29 07 00 B0 02 02 8F 01 01 00 00 00 00
Offset 10: 01 A0 00 00 01 9C 00 00 81 98 00 00 01 98 00 00
Offset 20: 81 94 00 00 01 94 00 00 00 00 00 00 43 10 77 82
Offset 30: 00 00 00 00 70 00 00 00 00 00 00 00 16 02 00 00
Offset 40: 07 A3 03 A3 00 00 00 00 05 00 01 02 00 00 00 00
Offset 50: 00 00 00 00 30 10 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 01 B0 03 00 08 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 05 70 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 03 83 93 01 00 00 00 00 00 00 01 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 09 00 06 20 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 05 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00

B00 D1F F03: Intel(R) ICH9 Family SMBus Controller - 2930 [NoDB]

Offset 00: 86 80 30 29 03 00 80 02 02 00 05 0C 00 00 00 00
Offset 10: 04 F4 FF F3 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 01 04 00 00 00 00 00 00 00 00 00 00 43 10 77 82
Offset 30: 00 00 00 00 00 00 00 00 00 00 00 00 05 03 00 00
Offset 40: 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 03 04 04 00 00 00 08 08 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 04 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00

B00 D1F F05: Intel(R) ICH9 2 port Serial ATA Storage Controller 2 - 2926 [NoDB]

Offset 00: 86 80 26 29 07 00 B0 02 02 85 01 01 00 00 00 00
Offset 10: 01 B0 00 00 01 AC 00 00 81 A8 00 00 01 A8 00 00
Offset 20: 81 A4 00 00 01 A4 00 00 00 00 00 00 43 10 77 82
Offset 30: 00 00 00 00 70 00 00 00 00 00 00 00 16 02 00 00
Offset 40: 00 80 00 80 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 01 B0 03 00 08 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 05 70 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 03 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 09 00 06 20 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 86 0F 02 00 00 00 00 00

B01 D00 F00: NVIDIA GeForce 8800 GTS [NoDB]

Offset 00: DE 10 93 01 07 00 10 00 A2 00 00 03 08 00 00 00
Offset 10: 00 00 00 F6 0C 00 00 D0 00 00 00 00 04 00 00 F4
Offset 20: 00 00 00 00 01 CC 00 00 00 00 00 00 43 10 34 82
Offset 30: 00 00 00 00 60 00 00 00 00 00 00 00 10 01 00 00
Offset 40: 43 10 34 82 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 01 00 00 00 01 00 00 00 CE D6 23 00 00 00 00 00
Offset 60: 01 68 02 00 00 00 00 00 05 78 80 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 10 00 01 00 80 04 2C 01
Offset 80: 10 28 0A 00 01 2D 01 00 48 00 01 11 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B02 D00 F00: Attansic L1 Gigabit Ethernet 10/100/1000Base-T Controller [NoDB]

Offset 00: 69 19 48 10 06 00 10 00 B0 00 00 02 08 00 00 00
Offset 10: 04 00 EC F7 00 00 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 43 10 26 82
Offset 30: 00 00 EA F7 40 00 00 00 00 00 00 00 11 01 00 00
Offset 40: 01 48 02 C0 00 00 00 00 05 58 80 00 00 00 00 00
Offset 50: 00 00 00 00 00 00 00 00 10 00 01 00 80 7F 28 00
Offset 60: 00 20 1A 00 11 F4 03 00 40 00 11 10 03 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 69 19 48 10 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B03 D00 F00: JMicron JMB36X Controller [NoDB]

Offset 00: 7B 19 63 23 07 00 10 00 03 85 01 01 08 00 00 00
Offset 10: 01 DC 00 00 81 D8 00 00 01 D8 00 00 81 D4 00 00
Offset 20: 01 D4 00 00 00 E0 FF F7 00 00 00 00 43 10 4F 82
Offset 30: 00 00 FE F7 68 00 00 00 00 00 00 00 10 01 00 00
Offset 40: BD A1 80 80 08 08 FF F0 20 00 00 20 03 00 00 00
Offset 50: 10 00 11 02 00 00 00 00 00 20 08 00 11 44 02 01
Offset 60: 40 00 11 10 00 00 00 00 01 50 02 40 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 A0 01 0A 00 0F AA 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 08 00 00 00 00 00 00 00 80
Offset C0: C3 8B 38 00 03 45 02 00 53 00 00 00 0F BC A6 00
Offset D0: 18 00 00 80 01 00 00 10 40 80 EB 00 00 00 00 15
Offset E0: 00 00 00 00 00 00 00 00 18 35 9C C2 01 BC 00 84
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B05 D02 F00: Creative SB X-Fi [NoDB]

Offset 00: 02 11 05 00 07 00 10 02 00 00 01 04 08 40 00 00
Offset 10: 01 EC 00 00 04 00 A0 FE 00 00 00 00 04 00 00 F8
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 02 11 21 00
Offset 30: 00 00 00 00 40 00 00 00 00 00 00 00 12 01 04 05
Offset 40: 01 50 22 06 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 05 00 80 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 AA 83 00 00
Offset D0: 00 80 00 00 FF FF 00 00 00 00 00 00 00 00 00 00
Offset E0: 80 00 18 00 11 00 00 00 00 00 00 00 03 00 80 80
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

B05 D03 F00: VIA VT6306/6307 Fire II IEEE1394 Host Controller

Offset 00: 06 11 44 30 17 00 10 02 C0 10 00 0C 08 40 00 00
Offset 10: 00 F8 9F FE 81 E8 00 00 00 00 00 00 00 00 00 00
Offset 20: 00 00 00 00 00 00 00 00 00 00 00 00 43 10 FE 81
Offset 30: 00 00 00 00 50 00 00 00 00 00 00 00 10 01 00 20
Offset 40: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 50: 01 00 02 E4 00 00 00 00 00 00 00 00 43 10 00 00
Offset 60: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 70: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset 90: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Offset F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00


--------[ Debug - Video BIOS ]------------------------------------------------------------------------------------------

C000:0000 U.e.K7400.L.w.VIDEO ......s...IBM VGA Compatible........03/06/07
C000:0040 ..................7.C.4..#..........."..F.%..,.PMIDl.o.......
C000:0080 .....3..........HWEAPCIR............e.......ASUS EN8800GTS VGA B
C000:00C0 IOS Version 60.80.13.00.AS05.................................Ver
C000:0100 sion 60.80.13.00.00 ...Copyright (C) 1996-2006 NVIDIA Corp......
C000:0140 ....G80 Board - p356h01 ...............Chip Rev ..............
C000:0180 ............................................BIT......G2.....B...
C000:01C0 ..C...2.D...@.A...D.I...G.L...W.M...Y.N.....P...f.S....T.....U.
C000:0200 ....V.....c.....i.&..........`.B................\\........8P.2..
C000:0240 Vc.}.O.VQlQrQ.Q.Q.QlQL.\."R..O#...k...i...............V...B.....
C000:0280 .P.....(.1..1#D.#g....*.l7B7.....`....>...P..02/15/07..........
C000:02C0 ................;.4.w.n.h.h.}...z..... .........;.4.w.n.h.h.,...
C000:0300 o...1.....R.5...r.......G.....J. .C.......Q...;.w......... .....
C000:0340 v.........a...n...f.n.n.n.}.....n.n.....q.n...t.q.5...x.4.z.....
C000:0380 ......*.*.*.T.h.h...c.k.l.m...=.......2....u......| P...........
C000:03C0 X.............2......2.....f`2......fa.f`3.2......fa.f`3.......f


--------[ Debug - Unknown ]---------------------------------------------------------------------------------------------

Motherboard 64-0414-000001-00101111-052407-Bearlake$A0751044_BIOS DATE: 05/24/07 17:48:01 VER: 08.00.12
Motherboard DMIMOBO: ASUSTeK Computer INC. P5K
Motherboard DMISYS: System manufacturer P5K
Motherboard Unknown
PCI/AGP 10DE-0193: NVIDIA GeForce 8800 GTS [NoDB]
PCI/AGP 1102-0005: Creative SB X-Fi [NoDB]
PCI/AGP 1969-1048: Attansic L1 Gigabit Ethernet 10/100/1000Base-T Controller [NoDB]
PCI/AGP 197B-2363: JMicron JMB36X Controller [NoDB]
PCI/AGP 8086-2918: PCI standard ISA bridge [NoDB]
PCI/AGP 8086-2921: Intel(R) ICH9 2 port Serial ATA Storage Controller 1 - 2921 [NoDB]
PCI/AGP 8086-2926: Intel(R) ICH9 2 port Serial ATA Storage Controller 2 - 2926 [NoDB]
PCI/AGP 8086-2930: Intel(R) ICH9 Family SMBus Controller - 2930 [NoDB]
PCI/AGP 8086-2934: Intel(R) ICH9 Family USB Universal Host Controller - 2934 [NoDB]
PCI/AGP 8086-2935: Intel(R) ICH9 Family USB Universal Host Controller - 2935 [NoDB]
PCI/AGP 8086-2936: Intel(R) ICH9 Family USB Universal Host Controller - 2936 [NoDB]
PCI/AGP 8086-2937: Intel(R) ICH9 Family USB Universal Host Controller - 2937 [NoDB]
PCI/AGP 8086-2938: Intel(R) ICH9 Family USB Universal Host Controller - 2938 [NoDB]
PCI/AGP 8086-2939: Intel(R) ICH9 Family USB Universal Host Controller - 2939 [NoDB]
PCI/AGP 8086-293A: Intel(R) ICH9 Family USB2 Enhanced Host Controller - 293A [NoDB]
PCI/AGP 8086-293C: Intel(R) ICH9 Family USB2 Enhanced Host Controller - 293C [NoDB]
PCI/AGP 8086-2940: Intel(R) ICH9 Family PCI Express Root Port 1 - 2940 [NoDB]
PCI/AGP 8086-2948: Intel(R) ICH9 Family PCI Express Root Port 5 - 2948 [NoDB]
PCI/AGP 8086-294A: Intel(R) ICH9 Family PCI Express Root Port 6 - 294A [NoDB]
PCI/AGP 8086-29C0: Intel(R) G33/G31/P35 Express Chipset Processor to I/O Controller - 29C0 [NoDB]
PCI/AGP 8086-29C1: Intel(R) G33/G31/P35 Express Chipset PCI Express Root Port - 29C1 [NoDB]


------------------------------------------------------------------------------------------------------------------------

The names of actual companies and products mentioned herein may be the trademarks of their respective owners.

 

Näytönohjain 76 °C (169 °F)

ei ihme jos kaatuilee..

 

Imuroin koneen ja näyttiksen nyt on 60 astetta.

 

Siis imurilla vai niinku jollain ohjelmalla. en oikeen tajunnut mun kone kyllä kaipaisi vähän imuria ku o melkei 20mm kerros pölyä.

 

ihan pölynimurilla, näyttiksen tuulettimen välissä oli jotain shittiä.

 

Moron!

=========

Avaa hijackthis merkkaa seuraavat rivi(t) ja paina fix checked, sulje muut ohjelmat siksi aikaa.

O1 - Hosts: 66.98.148.65 auto.search.msn.com
O1 - Hosts: 66.98.148.65 auto.search.msn.es
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)


Tässä ohje miten merkataan:



==========

Skannaa koneesi Ewido Online Scannerilla

* Lataa Ewido_micro.exe tästä.
* Tallenna tiedosto esimerkiksi työpöydälle.
* Tuplaklikkaa Ewido_micro.exeä työpöydälläsi.
* Ewido alkaa samantien päivittämään tunnisteitaan. Tässä voi mennä hetki.
* Kun päivitykset on ladattu, varmista että kaikki kohdat ovat rastitettuja ikkunan vasemmassa laidassa.
* Klikkaa vasemmalla alhaalla olevaa Start Scan -nappia.
* Scannaus alkaa. Tässä voi kestää jonkun aikaa, riippuen tiedostojen määrästä.
* Kun skannaus on valmis ja löytyneitä kohteita on, niin varmista, että kaikkien kohteiden vasemmalla puolella olevissa kohdissa on rastit.
* Klikkaa Save report -nappia ja tallenna raportti vaikka työpöydälle.
* Klikkaa Remove Infections -nappia.
* Kun vastaat aukeavaan ilmoitukseen ok, niin kaikki saastuneet tiedostot poistetaan.
* Poiston jälkeen voit sammuttaa Ewido Online Scannerin painamalla yläkulmassa olevaa punaista rastia.
* Käynnistä kone nyt uudelleen ja postita tallentamasi raportti viestiketjuusi
==========


Loistava ohje tietokoneeen nopeuttamiseksi

http://neko.1g.fi/ohje/hidastelua.html

==========

Jos sinulla ei ole tätä java versiota (6.2): Vanha java saastuttaa helposti koneesi!

Javan päivitys ja välimuistin tyhjennys:

1. Klikkaa Käynnistä -> Ohjauspaneeli ja tupla-klikkaa Lisää tai poista sovellus Ohjauspaneelissa.
2. Etsi listasta kaikki entiset Java versiosi. (J2SE Runtime Environment.... )
Niissä pitäisi olla seuraava kuva vieressä:
3. Valitse kaikki entiset Java versiosi ja valitse Poista.
4. Asenna uusin Java päivitys seuraavasta linkistä..
5. Käynnistä kone uudelleen asennuksen jälkeen:

http://java.sun.com/javase/downloads/index.jsp
tai http://www.filehippo.com/download_java_runtime/

Rullaa alas kohteeseen Java Runtime Environment (JRE) 6u2

Paina Download

Ruksaa Accept, ota offline installation, tallenna vaikka työpöydälle ja asenna se.

6. Käynnistyksen jälkeen, mene takaisin Ohjauspaneeliin ja avaa Java asetuksesi (Muita Ohjauspaneelin asetuksia -> Java kahvikuppi).

7. General Settings -osion alla, vedä liukusäädintä (Disk Space) pienemmälle, ja klikkaa Delete Files -nappia.

(Jotkut javapohjaiset ohjelmat saattavat tarvita enemmän levytilaa.
Jos huomaat säädön pienentämisen jälkeen koneessa hitautta, siirrä liukusäädintä isommalle).

8. Varmista että kaikki kaksi valintaa ovat rastitettuja:

*Applications and Applets

*Trace and Log Files


Ja paina OK -nappia

9. Klikkaa OK "Temporary Files Settings" -ikkunassasi.

10. Klikkaa OK jättääksesi Java asetusikkunasi.

==========

Lataa Deckard's System Scanner Työpöydällesi.

Huomioi: Sinulla tulee olla Järjestelmänvalvojan oikeudet ajaaksesi ohjelman.

[*]Sulje kaikki avoimet ikkunat ja ohjelmat.
[*]Tupla Klikkaa Dss.exe tiedostoa ajaaksesi ohjelman, seuraa ohjeita.
[*]Kun Scannaus on valmis 2 textitiedostoa pitäisi avautua, Main.txt ja extra.txt
[*]Näppäile Kopioi ( CTRL+A -> CTRL + C ) ja liitä ( CTRL + V )
[*]kopioi ja liitä Extra.txt & Main.txt sisältö seuraavaan vastaukseesi.

ja ewido online skannerin raportti

 

__________________________________________________
ewido anti-spyware online scanner
http://www.ewido.net
__________________________________________________


Name: TrackingCookie.Atdmt
Path: C:\Documents and Settings\Samu\Cookies\samu@atdmt[2].txt
Risk: Medium

Name: TrackingCookie.Serving-sys
Path: C:\Documents and Settings\Samu\Cookies\samu@bs.serving-sys[2].txt
Risk: Medium

Name: TrackingCookie.Doubleclick
Path: C:\Documents and Settings\Samu\Cookies\samu@doubleclick[2].txt
Risk: Medium

Name: TrackingCookie.Serving-sys
Path: C:\Documents and Settings\Samu\Cookies\samu@serving-sys[1].txt
Risk: Medium

Name: TrackingCookie.Statistik-gallup
Path: C:\Documents and Settings\Samu\Cookies\samu@statistik-gallup[1].txt
Risk: Medium

Name: TrackingCookie.Statistik-gallup
Path: :mozilla.12:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Adbrite
Path: :mozilla.38:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Adbrite
Path: :mozilla.51:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Adbrite
Path: :mozilla.52:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.77:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.78:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.79:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.80:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.81:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.82:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.83:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.84:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.85:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.86:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.87:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Doubleclick
Path: :mozilla.94:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Advertising
Path: :mozilla.98:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Advertising
Path: :mozilla.99:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Advertising
Path: :mozilla.100:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Advertising
Path: :mozilla.103:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Adtech
Path: :mozilla.105:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Adtech
Path: :mozilla.106:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yadro
Path: :mozilla.116:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Fastclick
Path: :mozilla.123:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Fastclick
Path: :mozilla.124:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Tribalfusion
Path: :mozilla.125:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Fastclick
Path: :mozilla.127:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Fastclick
Path: :mozilla.128:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.2o7
Path: :mozilla.136:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.2o7
Path: :mozilla.137:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.2o7
Path: :mozilla.138:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.2o7
Path: :mozilla.139:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.2o7
Path: :mozilla.140:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.2o7
Path: :mozilla.141:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.2o7
Path: :mozilla.142:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.2o7
Path: :mozilla.143:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.2o7
Path: :mozilla.144:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Revsci
Path: :mozilla.149:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Revsci
Path: :mozilla.150:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Revsci
Path: :mozilla.151:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Atdmt
Path: :mozilla.156:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Serving-sys
Path: :mozilla.157:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Serving-sys
Path: :mozilla.158:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Serving-sys
Path: :mozilla.159:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Serving-sys
Path: :mozilla.160:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Serving-sys
Path: :mozilla.161:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Serving-sys
Path: :mozilla.162:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Sitestat
Path: :mozilla.170:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Sitestat
Path: :mozilla.171:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Webtrends
Path: :mozilla.187:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Statcounter
Path: :mozilla.189:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Statcounter
Path: :mozilla.190:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Statcounter
Path: :mozilla.191:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Tacoda
Path: :mozilla.203:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Tacoda
Path: :mozilla.204:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Tacoda
Path: :mozilla.205:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Tacoda
Path: :mozilla.206:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Pointroll
Path: :mozilla.208:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Pointroll
Path: :mozilla.209:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Pointroll
Path: :mozilla.210:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Pointroll
Path: :mozilla.211:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Pointroll
Path: :mozilla.212:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Pointroll
Path: :mozilla.213:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Pointroll
Path: :mozilla.214:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Imrworldwide
Path: :mozilla.261:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Imrworldwide
Path: :mozilla.262:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Mediaplex
Path: :mozilla.296:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Tradedoubler
Path: :mozilla.336:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Tradedoubler
Path: :mozilla.337:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Tradedoubler
Path: :mozilla.338:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Overture
Path: :mozilla.341:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Com
Path: :mozilla.350:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Questionmarket
Path: :mozilla.363:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Questionmarket
Path: :mozilla.364:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Deckard's System Scanner v20070807.62
Run by Samu on 2007-08-10 at 15:19:54
Computer is in Normal Mode.
--------------------------------------------------------------------------------

-- System Restore --------------------------------------------------------------

Successfully created a Deckard's System Scanner Restore Point.


-- Last 5 Restore Point(s) --
73: 2007-08-10 12:19:58 UTC - RP73 - Deckard's System Scanner Restore Point
72: 2007-08-09 17:07:12 UTC - RP72 - Järjestelmän tarkistuspiste
71: 2007-08-07 17:38:47 UTC - RP71 - Asennettu NVIDIA nTune
70: 2007-08-07 14:20:24 UTC - RP70 - Installed ASUSUpdate
69: 2007-08-06 15:57:19 UTC - RP69 - Installed SpeechRedist


-- First Restore Point --
1: 2007-08-01 10:27:57 UTC - RP1 - Installed J2SE Runtime Environment 5.0 Update 8


Backed up registry hives.
Performed disk cleanup.



-- HijackThis (run as Samu.exe) ------------------------------------------------

Logfile of HijackThis v1.99.1
Scan saved at 15:20:43, on 10.8.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\DAEMON Tools\daemon.exe
C:\WINDOWS\system32\CTXFIHLP.EXE
C:\WINDOWS\CTHELPER.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\AGEIA Technologies\TrayIcon.exe
C:\WINDOWS\SYSTEM32\CTXFISPI.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TaskSwitchXP\TaskSwitchXP.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Sygate\SPF\smc.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\MSN Messenger\usnsvc.exe
E:\Pelit\Steam\steam.exe
C:\Documents and Settings\Samu\Desktop\dss.exe
F:\HAITTA~1\Samu.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fi/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://update.microsoft.com/microsoftupdate
O2 - BHO: Adobe PDF Reader -linkkiavustaja - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll
O4 - HKLM\..\Run: [RivaTunerStartupDaemon] "C:\Program Files\RivaTuner v2.02\RivaTuner.exe" /S
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [UnlockerAssistant] C:\Program Files\Unlocker\UnlockerAssistant.exe -H
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\WINDOWS\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [AGEIA PhysX SysTray] C:\Program Files\AGEIA Technologies\TrayIcon.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [36X Raid Configurer] C:\WINDOWS\system32\xRaidSetup.exe boot
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [NVIDIA nTune] "C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" clear
O4 - HKCU\..\Run: [TaskSwitchXP] C:\Program Files\TaskSwitchXP\TaskSwitchXP.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O8 - Extra context menu item: &Lataa FlashGetillä
- C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: &Lataa kaikki FlashGetillä
- C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://www.creative.com/su/ocx/15030/CTSUEng.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://javadl-esd.sun.com/update/1.6.0/jinstall-6u2-windows-i586-jc.cab
O16 - DPF: {D1E7CBDA-E60E-4970-A01C-37301EF7BF98} (Measurement Services Client v.3.12) - http://www.yougamers.com/systeminfo/MSC3.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/su/ocx/15030/CTPID.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{64DE6505-F7C3-450D-970D-AED0990FB782}: NameServer = 192.168.0.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{64DE6505-F7C3-450D-970D-AED0990FB782}: NameServer = 192.168.0.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{64DE6505-F7C3-450D-970D-AED0990FB782}: NameServer = 192.168.0.254
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: nTune Service (nTuneService) - NVIDIA - C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Sygate Personal Firewall Pro (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe


-- HijackThis Fixed Entries (F:\HAITTA~1\backups\) -----------------------------

backup-20070526-180843-168 O4 - HKCU\..\Run: [LOAD RULE] C:\DOCUME~1\Samu\APPLIC~1\INSIDE~1\eq lite chin.exe
backup-20070810-013146-189 O1 - Hosts: 66.98.148.65 auto.search.msn.es
backup-20070810-013146-794 O1 - Hosts: 66.98.148.65 auto.search.msn.com
backup-20070810-013146-826 O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

-- File Associations -----------------------------------------------------------

All associations okay.


-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

R0 jahci - c:\windows\system32\drivers\jahci.sys <Not Verified; JMicron; JMicron PCIE AHCI Controller>
R0 Teefer (Teefer for NT) - c:\windows\system32\drivers\teefer.sys <Not Verified; Sygate Technologies, Inc.; Sygate Teefer Driver>
R1 SCDEmu - c:\windows\system32\drivers\scdemu.sys <Not Verified; PowerISO Computing, Inc.; scdemu>
R1 wpsdrvnt - c:\windows\system32\drivers\wpsdrvnt.sys <Not Verified; Sygate Technologies, Inc.; wpsdrvnt>
R3 NVR0Dev - c:\windows\nvoclock.sys <Not Verified; NVidia Corp.; NVidia System Utility Driver>
R3 RivaTuner32 - c:\program files\rivatuner v2.02\rivatuner32.sys

S3 ENTECH - c:\windows\system32\drivers\entech.sys <Not Verified; EnTech Taiwan; PowerStrip>


-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

R2 nTuneService (nTune Service) - c:\program files\nvidia corporation\ntune\ntuneservice.exe /startservice <Not Verified; NVIDIA; NVIDIA nTune>


-- Device Manager: Disabled ----------------------------------------------------

No disabled devices found.


-- Files created between 2007-07-10 and 2007-08-10 -----------------------------

2007-08-09 23:58:11 0 d-------- C:\WINDOWS\Uninstall
2007-08-08 01:43:53 0 --a------ C:\WINDOWS\nsreg.dat
2007-08-08 01:43:52 0 d-------- C:\Documents and Settings\Samu\Application Data\Mozilla
2007-08-07 20:39:04 0 d-------- C:\Program Files\NVIDIA Corporation
2007-08-06 21:35:08 0 d-a------ C:\Documents and Settings\All Users\Application Data\TEMP
2007-08-06 21:35:07 0 d-------- C:\Fraps
2007-08-06 18:11:09 0 d-------- C:\Documents and Settings\All Users\Application Data\Trymedia
2007-08-06 17:56:42 0 d-------- C:\Program Files\PowerISO
2007-08-06 00:06:02 0 d-------- C:\WINDOWS\vbSkinner
2007-08-05 23:45:52 0 d-------- C:\Program Files\ApexDC++
2007-08-04 11:28:28 0 d-------- C:\Documents and Settings\Samu\Application Data\Ahead
2007-08-03 10:52:26 0 d-------- C:\Program Files\MSBuild
2007-08-03 10:50:45 0 d-------- C:\WINDOWS\system32\XPSViewer
2007-08-03 10:50:26 0 d-------- C:\Program Files\Reference Assemblies
2007-08-03 10:45:54 0 d-------- C:\WINDOWS\system32\tr-tr
2007-08-03 10:45:53 0 d-------- C:\WINDOWS\system32\th-th
2007-08-03 10:45:53 0 d-------- C:\WINDOWS\system32\sv-se
2007-08-03 10:45:52 0 d-------- C:\WINDOWS\system32\sk-sk
2007-08-03 10:45:51 0 d-------- C:\WINDOWS\system32\sl-si
2007-08-03 10:45:51 0 d-------- C:\WINDOWS\system32\ru-ru
2007-08-03 10:45:50 0 d-------- C:\WINDOWS\system32\ro-ro
2007-08-03 10:45:49 0 d-------- C:\WINDOWS\system32\pt-pt
2007-08-03 10:45:49 0 d-------- C:\WINDOWS\system32\pt-br
2007-08-03 10:45:48 0 d-------- C:\WINDOWS\system32\pl-pl
2007-08-03 10:45:47 0 d-------- C:\WINDOWS\system32\nl-nl
2007-08-03 10:45:47 0 d-------- C:\WINDOWS\system32\nb-no
2007-08-03 10:45:46 0 d-------- C:\WINDOWS\system32\lv-lv
2007-08-03 10:45:45 0 d-------- C:\WINDOWS\system32\lt-lt
2007-08-03 10:45:45 0 d-------- C:\WINDOWS\system32\ko-kr
2007-08-03 10:45:44 0 d-------- C:\WINDOWS\system32\ja-jp
2007-08-03 10:45:44 0 d-------- C:\WINDOWS\system32\it-it
2007-08-03 10:45:43 0 d-------- C:\WINDOWS\system32\hu-hu
2007-08-03 10:45:42 0 d-------- C:\WINDOWS\system32\hr-hr
2007-08-03 10:45:42 0 d-------- C:\WINDOWS\system32\he-il
2007-08-03 10:45:41 0 d-------- C:\WINDOWS\system32\fr-fr
2007-08-03 10:45:41 0 d-------- C:\WINDOWS\system32\fi-fi
2007-08-03 10:45:40 0 d-------- C:\WINDOWS\system32\et-ee
2007-08-03 10:45:40 0 d-------- C:\WINDOWS\system32\es-es
2007-08-03 10:45:39 0 d-------- C:\WINDOWS\system32\el-gr
2007-08-03 10:45:39 0 d-------- C:\WINDOWS\system32\de-de
2007-08-03 10:45:38 0 d-------- C:\WINDOWS\system32\da-dk
2007-08-03 10:45:37 0 d-------- C:\WINDOWS\system32\zh-tw
2007-08-03 10:45:37 0 d-------- C:\WINDOWS\system32\zh-cn
2007-08-03 10:45:37 0 d-------- C:\WINDOWS\system32\cs-cz
2007-08-03 10:45:36 0 d-------- C:\WINDOWS\system32\bg-bg
2007-08-03 10:45:36 0 d-------- C:\WINDOWS\system32\ar-sa
2007-08-03 10:39:03 0 d-------- C:\WINDOWS\.jagex_cache_32
2007-08-02 17:32:13 0 d-------- C:\Program Files\DaemonTools_WhenUSave_Installer
2007-08-02 17:31:44 0 d-------- C:\Program Files\DAEMON Tools
2007-08-02 15:31:09 442368 -ra------ C:\WINDOWS\system32\vp6vfw.dll <Not Verified; On2.com; On2_VP6>
2007-08-02 15:29:41 0 d-------- C:\Documents and Settings\Samu\Application Data\Adobe
2007-08-02 15:29:13 0 d-------- C:\Documents and Settings\All Users\Application Data\Adobe
2007-08-02 15:29:06 0 d-------- C:\Program Files\Common Files\Adobe
2007-08-02 14:30:29 0 d-------- C:\Program Files\GameSpy Arcade
2007-08-02 13:54:48 0 d-------- C:\Program Files\Guitar Pro 5
2007-08-02 13:54:16 106 --a------ C:\delete.bat
2007-08-02 10:41:01 0 d-------- C:\Program Files\RivaTuner v2.02
2007-08-01 23:46:49 0 d-------- C:\Documents and Settings\Samu\Application Data\Grisoft
2007-08-01 23:46:43 0 d-------- C:\Documents and Settings\All Users\Application Data\Grisoft
2007-08-01 23:11:02 24576 -ra------ C:\WINDOWS\system32\AsIO.dll <Not Verified; ; AsIO Dynamic Link Library>
2007-08-01 22:12:33 0 d-------- C:\WINDOWS\Sun
2007-08-01 22:11:40 0 d-------- C:\Program Files\Java
2007-08-01 22:09:10 0 d-------- C:\Program Files\Common Files\Java
2007-08-01 22:06:52 0 d-------- C:\Documents and Settings\Samu\Application Data\Sun
2007-08-01 21:41:28 0 d-------- C:\Program Files\RegCleaner
2007-08-01 19:19:57 0 d-------- C:\Documents and Settings\Samu\Application Data\DivX
2007-08-01 18:47:34 0 d-------- C:\Program Files\Logitech
2007-08-01 18:47:25 0 d-------- C:\Program Files\Common Files\Logitech
2007-08-01 18:39:24 0 d-------- C:\Documents and Settings\All Users\Application Data\Office Genuine Advantage
2007-08-01 18:39:20 0 d-------- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2007-08-01 18:38:28 0 d-------- C:\Recyclers
2007-08-01 17:40:48 98304 --a------ C:\WINDOWS\system32\CmdLineExt.dll <Not Verified; Sony DADC Austria AG.; >
2007-08-01 17:34:08 0 d-------- C:\Documents and Settings\Samu\Application Data\vlc
2007-08-01 17:33:11 0 d-------- C:\Program Files\VideoLAN
2007-08-01 17:25:13 0 d-------- C:\Program Files\Winamp
2007-08-01 17:06:50 0 d-------- C:\Downloads
2007-08-01 17:04:55 0 d-------- C:\Program Files\FlashGet
2007-08-01 16:35:31 0 d-------- C:\Documents and Settings\Samu\Contacts
2007-08-01 16:34:14 0 d-------- C:\Program Files\MSN Messenger
2007-08-01 16:29:44 0 d-------- C:\Program Files\DivX
2007-08-01 16:27:47 0 d-------- C:\Documents and Settings\All Users\Application Data\Apple Computer
2007-08-01 16:27:45 0 d-------- C:\Program Files\Real Alternative
2007-08-01 16:27:45 0 d-------- C:\Documents and Settings\Samu\Application Data\Real
2007-08-01 16:27:45 0 d-------- C:\Documents and Settings\All Users\Application Data\Real
2007-08-01 16:27:42 0 d-------- C:\Program Files\QuickTime Alternative
2007-08-01 16:21:18 5120 --a------ C:\WINDOWS\system32\ff_vfw.dll
2007-08-01 16:21:15 0 d-------- C:\Program Files\ffdshow
2007-08-01 16:20:02 0 d-------- C:\WINDOWS\system32\ageia
2007-08-01 16:20:02 0 d-------- C:\Program Files\AGEIA Technologies
2007-08-01 16:18:01 0 d-------- C:\Program Files\AC3Filter
2007-08-01 16:16:45 765952 --a------ C:\WINDOWS\system32\xvidcore.dll
2007-08-01 16:16:44 180224 --a------ C:\WINDOWS\system32\xvidvfw.dll
2007-08-01 16:16:43 0 d-------- C:\Program Files\Xvid
2007-08-01 16:10:42 0 d--h----- C:\Documents and Settings\Default User\Templates
2007-08-01 16:10:42 0 dr------- C:\Documents and Settings\Default User\Start Menu
2007-08-01 16:10:42 0 dr-h----- C:\Documents and Settings\Default User\SendTo
2007-08-01 16:10:42 0 d--h----- C:\Documents and Settings\Default User\Recent
2007-08-01 16:10:42 0 d--h----- C:\Documents and Settings\Default User\PrintHood
2007-08-01 16:10:42 0 d--h----- C:\Documents and Settings\Default User\NetHood
2007-08-01 16:10:42 0 d-------- C:\Documents and Settings\Default User\My Documents
2007-08-01 16:10:42 0 dr-h----- C:\Documents and Settings\Default User\Local Settings
2007-08-01 16:10:42 0 d-------- C:\Documents and Settings\Default User\Favorites
2007-08-01 16:10:42 0 d-------- C:\Documents and Settings\Default User\Desktop
2007-08-01 16:10:42 0 d---s---- C:\Documents and Settings\Default User\Cookies
2007-08-01 16:10:42 0 d--h----- C:\Documents and Settings\All Users\Templates
2007-08-01 16:10:42 0 dr------- C:\Documents and Settings\All Users\Start Menu
2007-08-01 16:10:42 0 d-------- C:\Documents and Settings\All Users\Favorites
2007-08-01 16:10:42 0 dr------- C:\Documents and Settings\All Users\Documents
2007-08-01 16:10:42 0 d-------- C:\Documents and Settings\All Users\Desktop
2007-08-01 16:08:11 0 d-------- C:\Program Files\CPU-Z
2007-08-01 16:05:50 0 dr-h----- C:\Documents and Settings\Default User\Application Data
2007-08-01 16:05:50 0 d---s---- C:\Documents and Settings\Default User\Application Data\Microsoft
2007-08-01 16:05:50 0 dr-h----- C:\Documents and Settings\All Users\Application Data
2007-08-01 16:05:50 0 d---s---- C:\Documents and Settings\All Users\Application Data\Microsoft
2007-08-01 15:59:52 0 d-------- C:\WINDOWS\system32\RTCOM
2007-08-01 15:57:09 0 d-------- C:\WINDOWS\system32\data
2007-08-01 15:54:30 0 d--hs---- C:\WINDOWS\Installer
2007-08-01 15:54:30 0 d-------- C:\Program Files\Common Files\ODBC
2007-08-01 15:54:28 0 d-------- C:\Program Files\Common Files\SpeechEngines
2007-08-01 15:54:27 0 dr------- C:\Program Files
2007-08-01 15:54:27 0 d-------- C:\Program Files\Common Files
2007-08-01 15:54:15 17408 --a------ C:\WINDOWS\system32\irclass.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 15:54:13 13312 --a------ C:\WINDOWS\system32\batt.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 15:54:12 181760 --a------ C:\WINDOWS\NOTEPAD.EXE <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 15:51:47 0 d-------- C:\WINDOWS\system32\CatRoot2
2007-08-01 15:51:47 0 d-------- C:\WINDOWS\system32\CatRoot
2007-08-01 15:48:41 4356608 --a------ C:\WINDOWS\system32\drivers\RtkHDAud.sys <Not Verified; Realtek Semiconductor Corp.; Realtek(r) High Definition Audio Function Driver (HRTF data Copyright 1994 by MIT Media Lab)>
2007-08-01 15:48:40 102400 --a------ C:\WINDOWS\Soundman.exe <Not Verified; Realtek Semiconductor Corp.; Realtek HD Sound Manager>
2007-08-01 15:48:40 2879488 --a------ C:\WINDOWS\SkyTel.exe <Not Verified; Realtek Semiconductor Corp.; Realtek Voice Manager>
2007-08-01 15:48:40 364544 --a------ C:\WINDOWS\RtlUpd.exe <Not Verified; Realtek Semiconductor Corp.; Realtek AC'97 Update and remove driver Tool>
2007-08-01 15:48:39 9709568 --a------ C:\WINDOWS\RTLCPL.EXE <Not Verified; Realtek Semiconductor Corp.; Realtek Audio Sound Effect Manager>
2007-08-01 15:48:37 16068096 --a------ C:\WINDOWS\Rthdcpl.exe <Not Verified; Realtek Semiconductor Corp.; Realtek HD Audio Sound Effect Manager>
2007-08-01 15:48:37 2158592 --a------ C:\WINDOWS\MicCal.exe <Not Verified; Realtek Semiconductor Corp.; Realtek Audio Microphone Calibration>
2007-08-01 15:48:37 2808832 --a------ C:\WINDOWS\ALCWZRD.EXE <Not Verified; RealTek Semicoductor Corp.; ALCWZRD>
2007-08-01 15:48:37 69632 --a------ C:\WINDOWS\ALCMTR.EXE <Not Verified; Realtek Semiconductor Corp.; Realtek AC97 Audio - Event Monitor>
2007-08-01 15:48:00 729600 --a------ C:\WINDOWS\system32\CTXFISPI.EXE <Not Verified; Creative Technology Ltd; Creative Audio Product>
2007-08-01 15:48:00 18944 --a------ C:\WINDOWS\system32\CTXFIHLP.EXE <Not Verified; Creative Technology Ltd; CTXfiHlp Application>
2007-08-01 15:48:00 17920 --a------ C:\WINDOWS\CTHELPER.EXE <Not Verified; Creative Technology Ltd; CtHelper Application>
2007-08-01 15:47:51 413696 --a------ C:\WINDOWS\system32\wrap_oal.dll <Not Verified; Creative Labs; Creative Labs OpenAL32>
2007-08-01 15:47:49 86016 --a------ C:\WINDOWS\system32\OpenAL32.dll <Not Verified; Portions (C) Creative Labs Inc. and NVIDIA Corp.; Standard OpenAL(TM) Library>
2007-08-01 15:47:49 77824 --a------ C:\WINDOWS\system32\EAXAC3.DLL <Not Verified; Creative Labs; EAX-AC3 DLL>
2007-08-01 15:47:49 25600 --a------ C:\WINDOWS\system32\CTXFISPK.DLL <Not Verified; Creative Technology Ltd; Ctxfispk Dynamic Link Library>
2007-08-01 15:47:49 52224 --a------ C:\WINDOWS\system32\CTXFISPI.DLL <Not Verified; Creative Technology Ltd; Creative Audio Product>
2007-08-01 15:47:49 26112 --a------ C:\WINDOWS\system32\CTXFIBTN.DLL <Not Verified; Creative Technology Ltd; CTXFIBTN Dynamic Link Library>
2007-08-01 15:47:49 132096 --a------ C:\WINDOWS\system32\CTOSUSER.DLL <Not Verified; Creative Technology Ltd; Creative Audio Product>
2007-08-01 15:47:49 70656 --a------ C:\WINDOWS\system32\CTMMACTL.DLL <Not Verified; ; Creative Filter AudioControlCB Module>
2007-08-01 15:47:49 10240 --a------ C:\WINDOWS\CTDCRES.DLL <Not Verified; Creative Technology Ltd; Creative Audio Product>
2007-08-01 15:47:48 7168 --a------ C:\WINDOWS\system32\CTAGENT.DLL <Not Verified; Creative Technology Ltd; ctagent>
2007-08-01 15:47:48 765952 --a------ C:\WINDOWS\CRLDS3D.DLL <Not Verified; Sensaura Ltd; Sensaura 3DPA>
2007-08-01 15:46:43 0 d-------- C:\Documents and Settings\Samu\Application Data\Macromedia
2007-08-01 15:44:53 0 d-------- C:\Documents and Settings
2007-08-01 15:44:52 0 d--hs---- C:\System Volume Information
2007-08-01 15:43:58 0 d-------- C:\Install
2007-08-01 15:41:33 0 d-------- C:\WINDOWS
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\WinSxS
2007-08-01 15:41:33 0 dr------- C:\WINDOWS\Web
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\twain_32
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\wins
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\wbem
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\usmt
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\spool
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\ShellExt
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\Setup
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\ras
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\PreInstall
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\oobe
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\npp
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\mui
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\inetsrv
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\IME
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\icsxml
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\ias
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\export
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\en
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\drivers
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\drivers\etc
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\drivers\disdn
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\dhcp
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\config
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\3com_dmi
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\3076
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\2052
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\1054
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\1042
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\1041
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\1037
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\1033
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\1031
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\1028
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\1025
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\SoftwareDistribution
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\security
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Resources
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\repair
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Provisioning
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\PeerNet
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\pchealth
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Network Diagnostic
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\mui
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\msapps
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\msagent
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Media
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\java
2007-08-01 15:41:33 0 d--h----- C:\WINDOWS\inf
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\ime
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Help
2007-08-01 15:41:33 0 dr--s---- C:\WINDOWS\Fonts
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\ehome
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Driver Cache
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Debug
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Cursors
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Connection Wizard
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Config
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\AppPatch
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\addins
2007-08-01 15:31:09 0 d-------- C:\WINDOWS\system32\drivers\UMDF
2007-08-01 15:31:03 0 d-------- C:\WINDOWS\pss
2007-08-01 15:28:55 0 d-------- C:\Documents and Settings\Samu\Application Data\WinRAR
2007-08-01 15:25:09 0 d-------- C:\WINDOWS\system32\Futuremark
2007-08-01 15:25:09 3972 --a------ C:\WINDOWS\system32\drivers\PciBus.sys
2007-08-01 15:25:09 5632 --a------ C:\WINDOWS\system32\drivers\Entech64.sys <Not Verified; EnTech Taiwan; EnTech.sys>
2007-08-01 15:25:09 21664 --a------ C:\WINDOWS\system32\drivers\Entech.sys <Not Verified; EnTech Taiwan; PowerStrip>
2007-08-01 15:22:35 0 d-------- C:\Program Files\Futuremark
2007-08-01 15:14:08 0 d-------- C:\Program Files\MSXML 4.0
2007-08-01 15:06:57 0 d-------- C:\Documents and Settings\Samu\Application Data\uTorrent
2007-08-01 14:49:52 0 d--h----- C:\WINDOWS\$hf_mig$
2007-08-01 14:48:03 0 d-------- C:\WINDOWS\system32\DllCache
2007-08-01 14:45:30 0 d-------- C:\Program Files\TaskSwitchXP
2007-08-01 14:45:23 130560 --a------ C:\WINDOWS\system32\XPize_Logon.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 14:45:00 0 d-------- C:\WINDOWS\nview
2007-08-01 14:44:05 0 d-------- C:\NVIDIA
2007-08-01 14:43:53 0 d--h----- C:\WINDOWS\XPize
2007-08-01 14:27:54 61008 --a------ C:\WINDOWS\system32\drivers\Teefer.sys <Not Verified; Sygate Technologies, Inc.; Sygate Teefer Driver>
2007-08-01 14:27:53 21075 --a------ C:\WINDOWS\system32\drivers\wpsdrvnt.sys <Not Verified; Sygate Technologies, Inc.; wpsdrvnt>
2007-08-01 14:27:42 0 d-------- C:\Program Files\Sygate
2007-08-01 14:27:18 0 d-------- C:\Program Files\Common Files\Wise Installation Wizard
2007-08-01 14:27:14 0 d-------- C:\Program Files\Alwil Software
2007-08-01 13:55:52 41984 -----n--- C:\WINDOWS\Ctregrun.exe <Not Verified; Creative Technology Ltd; Creative On-line Registration System>
2007-08-01 13:55:26 0 d-------- C:\Documents and Settings\All Users\Application Data\Creative
2007-08-01 13:54:12 3072 --a------ C:\WINDOWS\CTXFIRES.DLL <Not Verified; ; CTxfiRes Dynamic Link Library>
2007-08-01 13:52:59 0 d-------- C:\Program Files\Creative
2007-08-01 13:50:31 0 d-------- C:\Program Files\ASUS
2007-08-01 13:50:08 0 d-------- C:\WINDOWS\system32\SoftwareDistribution
2007-08-01 13:49:45 0 dr------- C:\WINDOWS\AsDmiHtm
2007-08-01 13:49:44 0 d-------- C:\WINDOWS\system32\LogFiles
2007-08-01 13:49:37 143360 -r------- C:\WINDOWS\system32\xRaidAPI.dll <Not Verified; JMicron Technology Corp.; JMB36X RAID API Dynamic Link Library>
2007-08-01 13:49:36 1953792 -r------- C:\WINDOWS\system32\xRaidSetup.exe <Not Verified; JMicron Technology Corp.; JMicron JMB36X RAID Configurer>
2007-08-01 13:49:36 0 d-------- C:\RaidTool
2007-08-01 13:49:34 0 d-------- C:\WINDOWS\RaidTool
2007-08-01 13:49:17 0 d--h----- C:\Program Files\InstallShield Installation Information
2007-08-01 13:49:17 0 d-------- C:\Program Files\Attansic
2007-08-01 13:49:15 0 d-------- C:\WINDOWS\system32\Attansic
2007-08-01 13:48:47 0 d-------- C:\Program Files\Common Files\InstallShield
2007-08-01 13:46:08 0 d-------- C:\WINDOWS\system32\appmgmt
2007-08-01 13:45:22 61440 --a------ C:\WINDOWS\system32\WMErrFIN.dll <Not Verified; Microsoft Corporation; Microsoft® Windows Media Services>
2007-08-01 13:45:20 0 d-------- C:\WINDOWS\system32\1035
2007-08-01 13:41:38 0 d-------- C:\WINDOWS\system32\drivers\AppPatch
2007-08-01 13:41:35 0 d-------- C:\WINDOWS\system32\drivers\fonts
2007-08-01 13:41:34 0 d-------- C:\WINDOWS\system32\drivers\INF
2007-08-01 13:41:34 0 d-------- C:\WINDOWS\system32\drivers\help
2007-08-01 13:41:33 0 d-------- C:\WINDOWS\system32\drivers\mui
2007-08-01 13:41:33 0 d-------- C:\WINDOWS\system32\drivers\msagent
2007-08-01 13:41:32 0 d-------- C:\WINDOWS\system32\drivers\system32
2007-08-01 13:41:14 0 d-------- C:\WINDOWS\system32\ReinstallBackups
2007-08-01 13:41:13 0 d------c- C:\WINDOWS\system32\DRVSTORE
2007-08-01 13:41:12 0 d-------- C:\Program Files\Intel
2007-08-01 13:40:57 0 d-------- C:\Intel
2007-08-01 13:39:39 10288 --a------ C:\WINDOWS\system32\drivers\ASUSHWIO.SYS
2007-08-01 13:37:32 0 d-------- C:\Program Files\Lavalys
2007-08-01 13:37:29 611064 --a------ C:\WINDOWS\system32\drivers\sptd.sys
2007-08-01 13:37:19 0 d-------- C:\Program Files\uTorrent
2007-08-01 13:34:30 0 dr-h----- C:\MSOCache
2007-08-01 13:33:39 0 d-------- C:\Program Files\Microsoft ActiveSync
2007-08-01 13:32:02 0 d-------- C:\WINDOWS\SHELLNEW
2007-08-01 13:31:53 0 d-------- C:\Program Files\Microsoft.NET
2007-08-01 13:31:26 364544 --a------ C:\WINDOWS\system32\TwnLib4.dll <Not Verified; Pegasus Imaging Corp.; TwnLib4>
2007-08-01 13:31:26 471040 --a------ C:\WINDOWS\system32\imagXRA7.dll <Not Verified; Pegasus Imaging Corp.; ImagXpress7>
2007-08-01 13:31:26 262144 --a------ C:\WINDOWS\system32\imagXR7.dll <Not Verified; Pegasus Imaging Corp.; ImagXpress7>
2007-08-01 13:31:26 1568768 --a------ C:\WINDOWS\system32\imagX7.dll <Not Verified; Pegasus Imaging Corp.; ImagXpress7>
2007-08-01 13:31:26 0 d-------- C:\Program Files\Common Files\Ahead
2007-08-01 13:31:25 0 d-------- C:\Program Files\Nero
2007-08-01 13:31:24 0 d-------- C:\Program Files\MagicISO
2007-08-01 13:31:20 0 d-------- C:\Program Files\DVD Shrink
2007-08-01 13:31:20 0 d-------- C:\Documents and Settings\All Users\Application Data\DVD Shrink
2007-08-01 13:28:57 0 d-------- C:\WINDOWS\system32\Lang
2007-08-01 13:28:45 0 d-------- C:\Documents and Settings\Samu\Application Data\Identities
2007-08-01 13:27:38 22 --a------ C:\WINDOWS\system32\Control
2007-08-01 13:27:31 0 d-------- C:\Documents and Settings\Samu\Application Data\Creative
2007-08-01 13:27:11 0 d--h----- C:\Documents and Settings\Samu\Templates
2007-08-01 13:27:11 0 dr------- C:\Documents and Settings\Samu\Start Menu
2007-08-01 13:27:11 0 dr-h----- C:\Documents and Settings\Samu\SendTo
2007-08-01 13:27:11 0 dr-h----- C:\Documents and Settings\Samu\Recent
2007-08-01 13:27:11 0 d--h----- C:\Documents and Settings\Samu\PrintHood
2007-08-01 13:27:11 3407872 --ah----- C:\Documents and Settings\Samu\NTUSER.DAT
2007-08-01 13:27:11 0 d--h----- C:\Documents and Settings\Samu\NetHood
2007-08-01 13:27:11 0 dr------- C:\Documents and Settings\Samu\My Documents
2007-08-01 13:27:11 0 d--h----- C:\Documents and Settings\Samu\Local Settings
2007-08-01 13:27:11 0 dr------- C:\Documents and Settings\Samu\Favorites
2007-08-01 13:27:11 0 d-------- C:\Documents and Settings\Samu\Desktop
2007-08-01 13:27:11 0 d--hs---- C:\Documents and Settings\Samu\Cookies
2007-08-01 13:27:11 0 dr-h----- C:\Documents and Settings\Samu\Application Data
2007-08-01 13:27:11 0 d-------- C:\Documents and Settings\Samu\7zSE05.tmp
2007-08-01 13:25:36 0 d-------- C:\WINDOWS\Prefetch
2007-08-01 13:25:35 0 d---s---- C:\WINDOWS\system32\Microsoft
2007-08-01 13:25:35 524288 --ah----- C:\Documents and Settings\LocalService\NTUSER.DAT
2007-08-01 13:25:35 0 d--h----- C:\Documents and Settings\LocalService\Local Settings
2007-08-01 13:25:35 0 d--hs---- C:\Documents and Settings\LocalService\Cookies
2007-08-01 13:25:35 0 d-------- C:\Documents and Settings\LocalService\Application Data
2007-08-01 13:25:35 0 d---s---- C:\Documents and Settings\LocalService\Application Data\Microsoft
2007-08-01 13:23:44 282624 --ah----- C:\Documents and Settings\NetworkService\NTUSER.DAT
2007-08-01 13:23:44 0 d--h----- C:\Documents and Settings\NetworkService\Local Settings
2007-08-01 13:23:44 0 d--hs---- C:\Documents and Settings\NetworkService\Cookies
2007-08-01 13:23:44 0 d-------- C:\Documents and Settings\NetworkService\Application Data
2007-08-01 13:23:44 0 d---s---- C:\Documents and Settings\NetworkService\Application Data\Microsoft
2007-08-01 13:22:50 282624 ---h----- C:\Documents and Settings\Default User\NTUSER.DAT
2007-08-01 13:22:03 0 d-------- C:\WINDOWS\system32\URTTemp
2007-08-01 13:21:49 0 d-------- C:\Program Files\WGAFixer
2007-08-01 13:21:49 0 d-------- C:\Documents and Settings\Default User\7zSE05.tmp
2007-08-01 13:21:43 0 -rahs---- C:\MSDOS.SYS
2007-08-01 13:21:43 0 -rahs---- C:\IO.SYS
2007-08-01 13:21:43 0 --a------ C:\CONFIG.SYS
2007-08-01 13:21:43 0 --a------ C:\AUTOEXEC.BAT
2007-08-01 13:21:31 135680 --a------ C:\WINDOWS\system32\mapi32.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:20:50 0 d--hs---- C:\Documents and Settings\All Users\DRM
2007-08-01 13:20:41 0 dr------- C:\WINDOWS\Offline Web Pages
2007-08-01 13:20:41 0 d---s---- C:\WINDOWS\Downloaded Program Files
2007-08-01 13:20:30 0 d--h----- C:\Program Files\WindowsUpdate
2007-08-01 13:20:15 0 d-------- C:\WINDOWS\system32\DirectX
2007-08-01 13:19:52 87040 --a------ C:\WINDOWS\system32\acctres.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:19:50 0 d---s---- C:\WINDOWS\Tasks
2007-08-01 13:19:49 0 d-------- C:\Program Files\Common Files\MSSoap
2007-08-01 13:19:47 0 d-------- C:\WINDOWS\srchasst
2007-08-01 13:19:46 0 d-------- C:\WINDOWS\system32\Macromed
2007-08-01 13:19:41 0 d-------- C:\Program Files\Movie Maker
2007-08-01 13:19:34 234496 --a------ C:\WINDOWS\system32\srrstr.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:19:34 0 d-------- C:\WINDOWS\system32\Restore
2007-08-01 13:19:30 55808 --a------ C:\WINDOWS\system32\inetres.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:19:29 396288 --a------ C:\WINDOWS\system32\mstask.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:19:06 21640 --a------ C:\WINDOWS\system32\emptyregdb.dat
2007-08-01 13:18:53 0 d-------- C:\WINDOWS\Registration
2007-08-01 13:18:47 0 d-------- C:\Program Files\Online Services
2007-08-01 13:18:39 0 d-------- C:\Program Files\Windows Media Connect 2
2007-08-01 13:18:38 0 d-------- C:\Program Files\HashTab Shell Extension
2007-08-01 13:18:37 0 d-------- C:\Program Files\Microsoft PowerToys
2007-08-01 13:18:35 19456 --a------ C:\WINDOWS\system32\write.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:35 0 d-------- C:\Program Files\MSN Gaming Zone
2007-08-01 13:18:29 145920 --a------ C:\WINDOWS\system32\sndvol32.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:23 228864 --a------ C:\WINDOWS\system32\calc.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:10 303104 --a------ C:\WINDOWS\system32\accwiz.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:09 146944 --a------ C:\WINDOWS\system32\sndrec32.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:09 503808 --a------ C:\WINDOWS\system32\mspaint.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:09 107520 --a------ C:\WINDOWS\system32\clipbrd.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:09 0 d-------- C:\Program Files\Windows NT
2007-08-01 13:18:08 753664 --a------ C:\WINDOWS\system32\mstscax.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:08 461824 --a------ C:\WINDOWS\system32\mstsc.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:07 82432 --a------ C:\WINDOWS\system32\remotepg.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:06 0 d-------- C:\WINDOWS\system32\MsDtc
2007-08-01 13:18:06 20480 --a------ C:\WINDOWS\system32\msdtc.exe <Not Verified; Microsoft Corporation; Microsoft Distributed Transaction Coordinator>
2007-08-01 13:18:05 0 d-------- C:\WINDOWS\system32\Com
2007-07-27 02:06:22 3596288 --a------ C:\WINDOWS\system32\qt-dx331.dll
2007-07-27 02:03:48 196608 --a------ C:\WINDOWS\system32\dtu100.dll <Not Verified; DivX, Inc.; DivX, Inc. dtu100>
2007-07-27 02:03:48 81920 --a------ C:\WINDOWS\system32\dpl100.dll <Not Verified; DivX, Inc.; DivX, Inc. dpl100>
2007-07-27 02:03:38 802816 --a------ C:\WINDOWS\system32\divx_xx11.dll <Not Verified; DivX, Inc.; DivX?>
2007-07-27 02:03:38 823296 --a------ C:\WINDOWS\system32\divx_xx0c.dll <Not Verified; DivX, Inc.; DivX®>
2007-07-27 02:03:38 823296 --a------ C:\WINDOWS\system32\divx_xx07.dll <Not Verified; DivX, Inc.; DivX®>
2007-07-27 02:03:38 740442 --a------ C:\WINDOWS\system32\DivX.dll <Not Verified; DivX, Inc.; DivX®>
2007-07-27 02:03:02 12288 --a------ C:\WINDOWS\system32\DivXWMPExtType.dll


-- Find3M Report ---------------------------------------------------------------

2007-08-01 16:10:42 62 --ahs---- C:\Documents and Settings\Samu\Application Data\desktop.ini
2007-07-03 12:33:04 6912 --a------ C:\WINDOWS\nvoclock.sys <Not Verified; NVidia Corp.; NVidia System Utility Driver>
2007-07-03 12:32:58 397312 --a------ C:\WINDOWS\ntuneoem.dll <Not Verified; NVIDIA; NVIDIA nTune>
2007-07-03 12:32:06 1622016 --a------ C:\WINDOWS\NVBenchMarks.dll <Not Verified; NVIDIA; NVIDIA nTune>
2007-07-03 12:31:48 28672 --a------ C:\WINDOWS\AutoTuneScript.dll <Not Verified; NVIDIA; NVIDIA nTune>
2007-06-29 00:43:00 1019904 --a------ C:\WINDOWS\system32\nvwimg.dll
2007-06-29 00:43:00 1703936 --a------ C:\WINDOWS\system32\nvwdmcpl.dll
2007-06-29 00:43:00 466944 --a------ C:\WINDOWS\system32\nvshell.dll
2007-06-29 00:43:00 1626112 --a------ C:\WINDOWS\system32\nwiz.exe
2007-06-29 00:43:00 1474560 --a------ C:\WINDOWS\system32\nview.dll
2007-06-29 00:43:00 1339392 --a------ C:\WINDOWS\system32\nvdspsch.exe
2007-06-29 00:43:00 442368 --a------ C:\WINDOWS\system32\nvappbar.exe
2007-06-29 00:43:00 425984 --a------ C:\WINDOWS\system32\keystone.exe


-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RivaTunerStartupDaemon"="C:\Program Files\RivaTuner v2.02\RivaTuner.exe" [01.07.2007 22:20]
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [11.06.2007 12:25]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [29.06.2007 00:43]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [15.05.2007 01:22]
"UpdReg"="C:\WINDOWS\UpdReg.EXE" [11.05.2000 01:00]
"UnlockerAssistant"="C:\Program Files\Unlocker\UnlockerAssistant.exe" [06.05.2006 09:29]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" [12.07.2007 04:00]
"SmcService"="C:\PROGRA~1\Sygate\SPF\smc.exe" [27.09.2005 12:16]
"SkyTel"="SkyTel.EXE" [13.08.2006 01:35 C:\WINDOWS\SkyTel.exe]
"PWRISOVM.EXE"="C:\Program Files\PowerISO\PWRISOVM.EXE" [09.04.2007 15:23]
"nwiz"="nwiz.exe" [29.06.2007 00:43 C:\WINDOWS\system32\nwiz.exe]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [29.06.2007 00:43]
"JMB36X IDE Setup"="C:\WINDOWS\RaidTool\xInsIDE.exe" [20.03.2007 17:36]
"DAEMON Tools-1033"="C:\Program Files\D-Tools\daemon.exe" []
"DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" [14.09.2006 23:09]
"CTxfiHlp"="CTXFIHLP.EXE" [17.08.2006 11:32 C:\WINDOWS\system32\CTXFIHLP.EXE]
"CTHelper"="CTHELPER.EXE" [17.08.2006 11:32 C:\WINDOWS\CTHELPER.EXE]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [28.07.2007 01:03]
"AGEIA PhysX SysTray"="C:\Program Files\AGEIA Technologies\TrayIcon.exe" [20.03.2006 22:43]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [11.05.2007 03:06]
"36X Raid Configurer"="C:\WINDOWS\system32\xRaidSetup.exe" [21.03.2007 19:23]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [04.08.2004 01:56]
"NVIDIA nTune"="C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" [03.07.2007 12:32]
"TaskSwitchXP"="C:\Program Files\TaskSwitchXP\TaskSwitchXP.exe" [05.08.2006 01:29]
"Steam"="" []
"msnmsgr"="C:\Program Files\MSN Messenger\msnmsgr.exe" [19.01.2007 12:55]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"DisableRegistryTools"=0 (0x0)


[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{0675700f-4029-11dc-972b-806d6172696f}]
AutoRun\command- D:\Autorun\UbiAutorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{182c4590-4105-11dc-a49f-001bfc5a2a2c}]
AutoRun\command- G:\OblivionLauncher.exe




-- Hosts -----------------------------------------------------------------------

127.0.0.1 ad.a8.net
127.0.0.1 asy.a8ww.net
127.0.0.1 www.aaa-livedoor.net #[Trojan-PSW.Win32.Maran.ei]
127.0.0.1 www.abcsearcher.com #[Spamdexing][Microsoft.Strider]
127.0.0.1 abc-search.info
127.0.0.1 www.abx4.com #[Adware.ABXToolbar]
127.0.0.1 www.acezip.net #[Win32/Adware.180Solutions]
127.0.0.1 phpadsnew.abac.com
127.0.0.1 a.abnad.net
127.0.0.1 b.abnad.net

14868 more entries in hosts file.


-- End of Deckard's System Scanner: finished at 2007-08-10 at 15:21:35 ---------

Deckard's System Scanner v20070807.62
Extra logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------

-- System Information ----------------------------------------------------------

Microsoft Windows XP Professional (build 2600) SP 2.0
Architecture: X86; Language: English

CPU 0: Intel(R) Core(TM)2 CPU 6600 @ 2.40GHz
CPU 1: Intel(R) Core(TM)2 CPU 6600 @ 2.40GHz
Percentage of Memory in Use: 24%
Physical Memory (total/avail): 2047.04 MiB / 1542.9 MiB
Pagefile Memory (total/avail): 3939.11 MiB / 3426.52 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1939.52 MiB

A: is Removable (Unformatted)
C: is Fixed (NTFS) - 97.65 GiB total, 77.99 GiB free.
D: is CDROM (UDF)
E: is Fixed (NTFS) - 97.65 GiB total, 21.57 GiB free.
F: is Fixed (NTFS) - 270.44 GiB total, 194.49 GiB free.
G: is CDROM (UDF)
H: is CDROM (No Media)


-- Security Center -------------------------------------------------------------

AUOptions is scheduled to auto-install.
Windows Internal Firewall is disabled.

FirstRunDisabled is set.

FW: Sygate Personal Firewall Pro v4.6 (Sygate Technologies, Inc.)
AV: avast! antivirus 4.7.1029 [VPS 000764-3] v4.7.1029 (ALWIL Software)

[HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabledxpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabledxpsp2res.dll,-22019"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

[HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabledxpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabledxpsp2res.dll,-22019"
"C:\\Program Files\\uTorrent\\uTorrent.exe"="C:\\Program Files\\uTorrent\\uTorrent.exe:*:Enabled:µTorrent"
"C:\\Documents and Settings\\Samu\\Desktop\\utorrent.exe"="C:\\Documents and Settings\\Samu\\Desktop\\utorrent.exe:*:Enabled:µTorrent"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\\Program Files\\FlashGet\\flashget.exe"="C:\\Program Files\\FlashGet\\flashget.exe:*:Enabled:Flashget"
"E:\\Pelit\\Electronic Arts\\Battlefield 2142 Demo\\BF2142.exe"="E:\\Pelit\\Electronic Arts\\Battlefield 2142 Demo\\BF2142.exe:*:Enabled:Battlefield 2"
"E:\\Pelit\\Electronic Arts\\Battlefield 2 Demo\\BF2.exe"="E:\\Pelit\\Electronic Arts\\Battlefield 2 Demo\\BF2.exe:*:Enabled:Battlefield 2"
"C:\\Documents and Settings\\Samu\\My Documents\\utorrent.exe"="C:\\Documents and Settings\\Samu\\My Documents\\utorrent.exe:*:Enabled:µTorrent"
"E:\\Pelit\\Sierra\\FEAR\\FEAR.exe"="E:\\Pelit\\Sierra\\FEAR\\FEAR.exe:*:Enabled:FEAR"
"E:\\Pelit\\Sierra\\FEAR\\FEARMP.exe"="E:\\Pelit\\Sierra\\FEAR\\FEARMP.exe:*:Enabled:FEAR"


-- Environment Variables -------------------------------------------------------

ALLUSERSPROFILE=C:\Documents and Settings\All Users
APPDATA=C:\Documents and Settings\Samu\Application Data
CLIENTNAME=Console
CommonProgramFiles=C:\Program Files\Common Files
COMPUTERNAME=TEHO_PC
ComSpec=C:\WINDOWS\system32\cmd.exe
FP_NO_HOST_CHECK=NO
HOMEDRIVE=C:
HOMEPATH=\Documents and Settings\Samu
LOGONSERVER=\\TEHO_PC
NUMBER_OF_PROCESSORS=2
OS=Windows_NT
Path=C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 6 Model 15 Stepping 6, GenuineIntel
PROCESSOR_LEVEL=6
PROCESSOR_REVISION=0f06
ProgramFiles=C:\Program Files
PROMPT=$P$G
SESSIONNAME=Console
SystemDrive=C:
SystemRoot=C:\WINDOWS
TEMP=C:\DOCUME~1\Samu\LOCALS~1\Temp
TMP=C:\DOCUME~1\Samu\LOCALS~1\Temp
USERDOMAIN=TEHO_PC
USERNAME=Samu
USERPROFILE=C:\Documents and Settings\Samu
windir=C:\WINDOWS


-- User Profiles ---------------------------------------------------------------

Samu (admin)


-- Add/Remove Programs ---------------------------------------------------------

--> "C:\Program Files\Creative\Sound Blaster X-Fi\Program\SETUP.EXE" /S /U /W
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0E5AA361-4B16-4282-B639-9E5B2B6A2EC8}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0E5AA361-4B16-4282-B639-9E5B2B6A2EC8}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{17E96A7F-AFE3-4171-87B1-583E376319E8}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{32903944-19A2-418C-901D-4BBAF4C55ABA}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{32903944-19A2-418C-901D-4BBAF4C55ABA}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4D8AA0B4-E890-4BF7-A9D1-8E63027E76D3}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4D8AA0B4-E890-4BF7-A9D1-8E63027E76D3}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6BF90A01-FA3F-42B9-A071-7D744409967E}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6BF90A01-FA3F-42B9-A071-7D744409967E}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{84F573D3-0F71-4768-978A-D35310E3FBA6}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{84F573D3-0F71-4768-978A-D35310E3FBA6}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A82F10CB-18B5-4EAC-AEF2-FA49CD565626}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B8DA9EB2-DBEF-4F0A-B90A-45B77D9E65B2}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B8DA9EB2-DBEF-4F0A-B90A-45B77D9E65B2}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CB99E420-8071-48F9-9567-4A53BE7569C4}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CB99E420-8071-48F9-9567-4A53BE7569C4}\setup.exe" -l0x9 /remove
--> rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
3DMark06 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7F3AD00A-1819-4B15-BB7D-08B3586336D7}\setup.exe" -l0x9 -removeonly
AC3Filter (remove only) --> C:\Program Files\AC3Filter\uninstall.exe
Adobe Flash Player 9 ActiveX --> C:\WINDOWS\system32\Macromed\Flash\FlashUtil9c.exe -uninstallUnlock
Adobe Flash Player Plugin --> C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 8.1.0 - Suomi --> MsiExec.exe /I{AC76BA86-7AD7-1035-7B44-A81000000003}
AGEIA PhysX v2.3.3 --> "C:\Program Files\AGEIA Technologies\uninstall.exe"
ApexDC++ 1.0.0 Beta 3 --> C:\Program Files\ApexDC++\uninst.exe
ASUSUpdate --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{587178E7-B1DF-494E-9838-FA4DD36E873C}\Setup.exe" -l0x9
Attansic Ethernet Utility --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1F698102-5739-441E-96F0-74F4EA540F06}\setup.exe" -l0x9 -removeonly
Attansic L1 Gigabit Ethernet Driver --> rundll32.exe C:\WINDOWS\system32\Attansic\L1\atcInst.dll,AtcUninst C:\WINDOWS\system32\Attansic\L1 x86 1969 1048 L1
avast! Antivirus --> rundll32 C:\PROGRA~1\ALWILS~1\Avast4\Setup\setiface.dll,RunSetup
AVG Anti-Spyware 7.5 --> C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\Uninstall.exe
Battlefield 2(TM) Demo --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8BECF123-B0EF-4E51-B7F3-923EFE15CC4A}\setup.exe" -l0x9 -removeonly
Battlefield 2142 Demo --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FD347316-609E-4149-983C-84B40338D38A}\setup.exe" -l0x9 -removeonly
Creative Audio Console --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{17E96A7F-AFE3-4171-87B1-583E376319E8}\setup.exe" -l0x9 /remove
DiRT --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{57B89E30-0BBA-4F20-9F2C-8E8CDE1CEDB6}\setup.exe" -l0x9 -removeonly
DivX Codec --> C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
DivX Content Uploader --> C:\Program Files\DivX\DivXContentUploaderUninstall.exe /CUPLOADER
DivX Web Player --> C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
DVD Shrink 3.2 --> "C:\Program Files\DVD Shrink\unins000.exe"
EVEREST Home Edition v2.20 --> "C:\Program files\Lavalys\EVEREST Home Edition\unins000.exe"
FAKEFACTORY Cinematic Mod --> "C:\WINDOWS\Uninstall\FAKEFACTORY_Cinematic\uninstall.exe" "/U:C:\WINDOWS\Uninstall\FAKEFACTORY_Cinematic\uninstall.xml"
FEAR --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2B653229-9854-4989-B780-D978F5F13EAB}\setup.exe" -l0x9 /zU -removeonly
ffdshow [rev 610] [2006-12-01] --> "C:\Program Files\ffdshow\unins000.exe"
FlashGet 1.9.2.1028 --> C:\Program Files\FlashGet\uninst.exe
Fraps (remove only) --> "C:\Fraps\uninstall.exe"
Futuremark Measurement Services Client --> RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\msc3.inf,DefaultUninstall,5
Ghost Recon Advanced Warfighter --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EFC97089-04D6-42CE-A707-A343B4A7D2CD}\setup.exe" -l0x9
GRAW Patch 1.35 --> "E:\Pelit\Ubisoft\Ghost Recon Advanced Warfighter\unins000.exe"
GTI Racing --> C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{EF0D610C-92BE-4D8F-BD33-9F658F8754F1} /Z"UNINSTALL"
Guitar Pro 5.2 --> "C:\Program Files\Guitar Pro 5\unins000.exe"
HijackThis 1.99.1 --> F:\Haittaohjelmien poisto\HijackThis.exe /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399) --> "C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
Java(TM) 6 Update 2 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160020}
JMB36X Raid Configurer --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}\setup.exe" -l0x9 -removeonly
Logitech Gaming Software --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5C1DA723-24FC-48AD-93BA-925695C3EF26}\setup.exe" -l0xb -removeonly
MagicISO RePacked by nwz --> MsiExec.exe /I{4D316C28-CE6A-4AA8-B880-041288CFC7B0}
Microsoft Compression Client Pack 1.0 for Windows XP --> "C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Office 2003 Finnish User Interface Pack --> MsiExec.exe /I{901E040B-6000-11D3-8CFE-0150048383C9}
Microsoft Office Professional Edition 2003 --> MsiExec.exe /I{90110409-6000-11D3-8CFE-0150048383C9}
Microsoft User-Mode Driver Framework Feature Pack 1.0 --> "C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable --> MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
MSXML 6.0 Parser (KB927977) --> MsiExec.exe /I{5A710547-B58E-488B-828D-CA9A25A0533C}
Nero 7.2.3.2 --> "C:\Program Files\Nero\unins000.exe"
NVIDIA Drivers --> C:\WINDOWS\system32\nvudisp.exe UninstallGUI
NVIDIA nTune --> C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF} /l1035
Oblivion --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{35CB6715-41F8-4F99-8881-6FC75BF054B0}\setup.exe" -l0x9 -removeonly
Oblivion mod manager 1.0.3 --> "E:\Pelit\Bethesda Softworks\Oblivion\obmm\uninstall\unins000.exe"
PC Probe II --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F7338FA3-DAB5-49B2-900D-0AFB5760C166}\setup.exe" -l0x9
PowerISO --> "C:\Program Files\PowerISO\uninstall.exe"
QuickTime Alternative 1.80 --> "C:\Program Files\QuickTime Alternative\unins000.exe"
Real Alternative 1.52 Lite --> "C:\Program Files\Real Alternative\unins000.exe"
RivaTuner v2.02 --> "C:\Program Files\RivaTuner v2.02\uninstall.exe"
Sound Blaster X-Fi --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{18F11181-EA1A-42AE-AF89-4867C7F7A6FA}\SETUP.EXE" -l0x9 /remove
SpeechRedist --> MsiExec.exe /X{8795CBED-55E2-4693-9F14-84EC446935BE}
Steam --> E:\Pelit\Steam\UNWISE.EXE E:\Pelit\Steam\INSTALL.LOG
Sygate Personal Firewall Pro --> MsiExec.exe /I{10B446B3-4DF4-4489-A168-8A98F7CD807E}
TaskSwitchXP --> C:\Program Files\TaskSwitchXP\uninst.exe
The Sims 2 --> E:\Pelit\Electronic Arts\The Sims 2\EAUninstall.exe
The Sims 2 Yöelämää --> E:\Pelit\Electronic Arts\The Sims 2 Yöelämää\EAUninstall.exe
The Sims™ 2 Lemmikkielämää --> E:\Pelit\Electronic Arts\The Sims 2 Lemmikkielämää\EAUninstall.exe
Tomb Raider: Anniversary --> "E:\Pelit\Steam\steam.exe" steam://uninstall/8000
Unreal Tournament 2004 --> E:\Pelit\UT2004\System\Setup.exe uninstall "UT2004"
VideoLAN VLC media player 0.8.6c --> C:\Program Files\VideoLAN\VLC\uninstall.exe
Winamp (remove only) --> "C:\Program Files\Winamp\UninstWA.exe"
Windows Communication Foundation --> MsiExec.exe /X{491DD792-AD81-429C-9EB4-86DD3D22E333}
Windows Imaging Component --> "C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Live Messenger --> MsiExec.exe /I{DF6FEB75-A0D1-44E5-A754-0072D4967734}
Windows Live Sign-in Assistant --> MsiExec.exe /I{49672EC2-171B-47B4-8CE7-50D7806360D7}
Windows Media Format 11 runtime --> "C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Presentation Foundation --> MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
Windows Presentation Foundation Language Pack (FIN) --> MsiExec.exe /X{935FADCB-C25B-4F62-B9B4-F22C40431642}
Windows Vista Sounds Pack --> MsiExec.exe /I{E1230694-33DA-4E74-82E1-06CC9D545E9B}
Windows Workflow Foundation --> MsiExec.exe /I{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}
Windows Workflow Foundation FI Language Pack --> MsiExec.exe /I{8E5D0B52-BB72-46C6-8AB8-2B041D959594}
WinRAR archiver --> C:\Program Files\WinRAR\uninstall.exe
XML Paper Specification Shared Components Language Pack 1.0 --> "C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"
XML Paper Specification Shared Components Pack 1.0 -->
XPize 4.5.1 --> C:\WINDOWS\XPize\uninst.exe
Xvid 1.1.3 final uninstall --> "C:\Program Files\Xvid\unins000.exe"


-- Application Event Log -------------------------------------------------------

Event ID #10: Success
Event Submitted/Written: 08/10/2007 02:15:37 PM
Event Source: usnjsvc
Event Description:
The Messenger Sharing USN Journal Reader service started successfully.

Event ID #2: Success
Event Submitted/Written: 08/10/2007 01:23:48 AM
Event Source: usnjsvc
Event Description:
The Messenger Sharing USN Journal Reader service started successfully.



-- Security Event Log ----------------------------------------------------------

No Errors/Warnings found.


-- System Event Log ------------------------------------------------------------

Event ID #1740: Warning
Event Submitted/Written: 08/07/2007 11:45:20 AM
Event Source: W32Time
Event Description:
Aikapalvelu ei ole voinut synkronoida järjestelmän kelloa 49152 sekuntiin, koska
aikatoimittaja ei ole voinut toimittaa käytettävää aikaleimaa. Järjestelmän kelloa
ei ole synkronoitu.

Event ID #1716: Error
Event Submitted/Written: 08/07/2007 10:43:48 AM
Event Source: DCOM
Event Description:
Palvelin {46986115-84D6-459C-8F95-52DD653E532E} ei rekisteröitynyt DCOM:n kanssa annetun ajan sisällä.

Event ID #1714: Error
Event Submitted/Written: 08/07/2007 10:43:18 AM
Event Source: DCOM
Event Description:
Palvelin {46986115-84D6-459C-8F95-52DD653E532E} ei rekisteröitynyt DCOM:n kanssa annetun ajan sisällä.

Event ID #1710: Warning
Event Submitted/Written: 08/06/2007 11:06:33 PM
Event Source: BROWSER
Event Description:
Selaaja ei voinut noutaa palvelinluetteloa pääselaajalta \\ACERI verkossa \Device\NetBT_Tcpip_{64DE6505-F7C3-450D-970D-AED0990FB782}.
Virhekoodi on data.

Event ID #1568: Warning
Event Submitted/Written: 08/06/2007 01:44:57 PM
Event Source: W32Time
Event Description:
Aikapalvelu ei ole voinut synkronoida järjestelmän kelloa 49152 sekuntiin, koska
aikatoimittaja ei ole voinut toimittaa käytettävää aikaleimaa. Järjestelmän kelloa
ei ole synkronoitu.



-- End of Deckard's System Scanner: finished at 2007-08-10 at 15:21:35 ---------

 

Onko sinulla tietoa näistä kansioista?

2007-08-03 10:45:53 0 d-------- C:\WINDOWS\system32\sv-se
2007-08-03 10:45:52 0 d-------- C:\WINDOWS\system32\sk-sk
2007-08-03 10:45:51 0 d-------- C:\WINDOWS\system32\sl-si
2007-08-03 10:45:51 0 d-------- C:\WINDOWS\system32\ru-ru
2007-08-03 10:45:50 0 d-------- C:\WINDOWS\system32\ro-ro
2007-08-03 10:45:49 0 d-------- C:\WINDOWS\system32\pt-pt
2007-08-03 10:45:49 0 d-------- C:\WINDOWS\system32\pt-br

Tuollasia oli tuolla enemmänkin..

Laita piilotiedostot näkyviin ja tarkistuksen jälkeen piiloon takaisin

kurkkaa mitä siel on sisällä

=======

Kaspersky online-skanneri

Skannaa koneesi Kaspersky Online Skannerilla

Sinulta kysytään sallitko ActiveX -komponentin asentamisen Kasperskyltä, klikkaa Kyllä.
[*] Ohjelma käynnistyy ja aloittaa viimeisimpien tunnistetiedostojen lataamisen.
[*] Kun skanneri on asennettu ja tunnistetiedot ladattu, klikkaa Next.
[*] Klikkaa nyt asetuksia, Scan Settings
[*] Tarkista asetuksista, että seuraavat ovat valittuina:

o Scan using the following Anti-Virus database:

+ Extended (Jos valittavissa, muuten valitse Standard)

o Scan Options:

+ Scan Archives
+ Scan Mail Bases

[*] Klikkaa OK
[*] Nyt valitse "select a target to scan" otsikon alta Oma Tietokone, My Computer
[*] Skannaus vie aikaa, joten ole kärsivällinen. Kun skannaus on valmis saat ilmoituksen, jos koneesi on saastunut.
[*] Klikkaa nyt Save as Text-painiketta.
[*] Tallenna tiedosto työpöydällesi.
[*] Kopioi ja Liitä tiedoston sisältö seuraavaan vastaukseesi.

 

__________________________________________________
ewido anti-spyware online scanner
http://www.ewido.net
__________________________________________________


Name: TrackingCookie.Atdmt
Path: C:\Documents and Settings\Samu\Cookies\samu@atdmt[2].txt
Risk: Medium

Name: TrackingCookie.Serving-sys
Path: C:\Documents and Settings\Samu\Cookies\samu@bs.serving-sys[2].txt
Risk: Medium

Name: TrackingCookie.Doubleclick
Path: C:\Documents and Settings\Samu\Cookies\samu@doubleclick[2].txt
Risk: Medium

Name: TrackingCookie.Serving-sys
Path: C:\Documents and Settings\Samu\Cookies\samu@serving-sys[1].txt
Risk: Medium

Name: TrackingCookie.Statistik-gallup
Path: C:\Documents and Settings\Samu\Cookies\samu@statistik-gallup[1].txt
Risk: Medium

Name: TrackingCookie.Statistik-gallup
Path: :mozilla.12:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Adbrite
Path: :mozilla.38:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Adbrite
Path: :mozilla.51:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Adbrite
Path: :mozilla.52:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.77:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.78:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.79:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.80:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.81:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.82:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.83:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.84:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.85:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.86:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.87:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Doubleclick
Path: :mozilla.94:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Advertising
Path: :mozilla.98:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Advertising
Path: :mozilla.99:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Advertising
Path: :mozilla.100:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Advertising
Path: :mozilla.103:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Adtech
Path: :mozilla.105:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Adtech
Path: :mozilla.106:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yadro
Path: :mozilla.116:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Fastclick
Path: :mozilla.123:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Fastclick
Path: :mozilla.124:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Tribalfusion
Path: :mozilla.125:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Fastclick
Path: :mozilla.127:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Fastclick
Path: :mozilla.128:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.2o7
Path: :mozilla.136:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.2o7
Path: :mozilla.137:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.2o7
Path: :mozilla.138:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.2o7
Path: :mozilla.139:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.2o7
Path: :mozilla.140:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.2o7
Path: :mozilla.141:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.2o7
Path: :mozilla.142:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.2o7
Path: :mozilla.143:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.2o7
Path: :mozilla.144:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Revsci
Path: :mozilla.149:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Revsci
Path: :mozilla.150:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Revsci
Path: :mozilla.151:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Atdmt
Path: :mozilla.156:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Serving-sys
Path: :mozilla.157:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Serving-sys
Path: :mozilla.158:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Serving-sys
Path: :mozilla.159:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Serving-sys
Path: :mozilla.160:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Serving-sys
Path: :mozilla.161:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Serving-sys
Path: :mozilla.162:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Sitestat
Path: :mozilla.170:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Sitestat
Path: :mozilla.171:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Webtrends
Path: :mozilla.187:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Statcounter
Path: :mozilla.189:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Statcounter
Path: :mozilla.190:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Statcounter
Path: :mozilla.191:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Tacoda
Path: :mozilla.203:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Tacoda
Path: :mozilla.204:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Tacoda
Path: :mozilla.205:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Tacoda
Path: :mozilla.206:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Pointroll
Path: :mozilla.208:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Pointroll
Path: :mozilla.209:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Pointroll
Path: :mozilla.210:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Pointroll
Path: :mozilla.211:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Pointroll
Path: :mozilla.212:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Pointroll
Path: :mozilla.213:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Pointroll
Path: :mozilla.214:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Imrworldwide
Path: :mozilla.261:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Imrworldwide
Path: :mozilla.262:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Mediaplex
Path: :mozilla.296:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Tradedoubler
Path: :mozilla.336:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Tradedoubler
Path: :mozilla.337:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Tradedoubler
Path: :mozilla.338:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Overture
Path: :mozilla.341:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Com
Path: :mozilla.350:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Questionmarket
Path: :mozilla.363:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Questionmarket
Path: :mozilla.364:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Deckard's System Scanner v20070807.62
Run by Samu on 2007-08-10 at 15:19:54
Computer is in Normal Mode.
--------------------------------------------------------------------------------

-- System Restore --------------------------------------------------------------

Successfully created a Deckard's System Scanner Restore Point.


-- Last 5 Restore Point(s) --
73: 2007-08-10 12:19:58 UTC - RP73 - Deckard's System Scanner Restore Point
72: 2007-08-09 17:07:12 UTC - RP72 - Järjestelmän tarkistuspiste
71: 2007-08-07 17:38:47 UTC - RP71 - Asennettu NVIDIA nTune
70: 2007-08-07 14:20:24 UTC - RP70 - Installed ASUSUpdate
69: 2007-08-06 15:57:19 UTC - RP69 - Installed SpeechRedist


-- First Restore Point --
1: 2007-08-01 10:27:57 UTC - RP1 - Installed J2SE Runtime Environment 5.0 Update 8


Backed up registry hives.
Performed disk cleanup.



-- HijackThis (run as Samu.exe) ------------------------------------------------

Logfile of HijackThis v1.99.1
Scan saved at 15:20:43, on 10.8.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\DAEMON Tools\daemon.exe
C:\WINDOWS\system32\CTXFIHLP.EXE
C:\WINDOWS\CTHELPER.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\AGEIA Technologies\TrayIcon.exe
C:\WINDOWS\SYSTEM32\CTXFISPI.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TaskSwitchXP\TaskSwitchXP.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Sygate\SPF\smc.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\MSN Messenger\usnsvc.exe
E:\Pelit\Steam\steam.exe
C:\Documents and Settings\Samu\Desktop\dss.exe
F:\HAITTA~1\Samu.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fi/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://update.microsoft.com/microsoftupdate
O2 - BHO: Adobe PDF Reader -linkkiavustaja - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll
O4 - HKLM\..\Run: [RivaTunerStartupDaemon] "C:\Program Files\RivaTuner v2.02\RivaTuner.exe" /S
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [UnlockerAssistant] C:\Program Files\Unlocker\UnlockerAssistant.exe -H
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\WINDOWS\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [AGEIA PhysX SysTray] C:\Program Files\AGEIA Technologies\TrayIcon.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [36X Raid Configurer] C:\WINDOWS\system32\xRaidSetup.exe boot
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [NVIDIA nTune] "C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" clear
O4 - HKCU\..\Run: [TaskSwitchXP] C:\Program Files\TaskSwitchXP\TaskSwitchXP.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O8 - Extra context menu item: &Lataa FlashGetillä
- C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: &Lataa kaikki FlashGetillä
- C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://www.creative.com/su/ocx/15030/CTSUEng.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://javadl-esd.sun.com/update/1.6.0/jinstall-6u2-windows-i586-jc.cab
O16 - DPF: {D1E7CBDA-E60E-4970-A01C-37301EF7BF98} (Measurement Services Client v.3.12) - http://www.yougamers.com/systeminfo/MSC3.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/su/ocx/15030/CTPID.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{64DE6505-F7C3-450D-970D-AED0990FB782}: NameServer = 192.168.0.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{64DE6505-F7C3-450D-970D-AED0990FB782}: NameServer = 192.168.0.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{64DE6505-F7C3-450D-970D-AED0990FB782}: NameServer = 192.168.0.254
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: nTune Service (nTuneService) - NVIDIA - C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Sygate Personal Firewall Pro (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe


-- HijackThis Fixed Entries (F:\HAITTA~1\backups\) -----------------------------

backup-20070526-180843-168 O4 - HKCU\..\Run: [LOAD RULE] C:\DOCUME~1\Samu\APPLIC~1\INSIDE~1\eq lite chin.exe
backup-20070810-013146-189 O1 - Hosts: 66.98.148.65 auto.search.msn.es
backup-20070810-013146-794 O1 - Hosts: 66.98.148.65 auto.search.msn.com
backup-20070810-013146-826 O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

-- File Associations -----------------------------------------------------------

All associations okay.


-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

R0 jahci - c:\windows\system32\drivers\jahci.sys <Not Verified; JMicron; JMicron PCIE AHCI Controller>
R0 Teefer (Teefer for NT) - c:\windows\system32\drivers\teefer.sys <Not Verified; Sygate Technologies, Inc.; Sygate Teefer Driver>
R1 SCDEmu - c:\windows\system32\drivers\scdemu.sys <Not Verified; PowerISO Computing, Inc.; scdemu>
R1 wpsdrvnt - c:\windows\system32\drivers\wpsdrvnt.sys <Not Verified; Sygate Technologies, Inc.; wpsdrvnt>
R3 NVR0Dev - c:\windows\nvoclock.sys <Not Verified; NVidia Corp.; NVidia System Utility Driver>
R3 RivaTuner32 - c:\program files\rivatuner v2.02\rivatuner32.sys

S3 ENTECH - c:\windows\system32\drivers\entech.sys <Not Verified; EnTech Taiwan; PowerStrip>


-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

R2 nTuneService (nTune Service) - c:\program files\nvidia corporation\ntune\ntuneservice.exe /startservice <Not Verified; NVIDIA; NVIDIA nTune>


-- Device Manager: Disabled ----------------------------------------------------

No disabled devices found.


-- Files created between 2007-07-10 and 2007-08-10 -----------------------------

2007-08-09 23:58:11 0 d-------- C:\WINDOWS\Uninstall
2007-08-08 01:43:53 0 --a------ C:\WINDOWS\nsreg.dat
2007-08-08 01:43:52 0 d-------- C:\Documents and Settings\Samu\Application Data\Mozilla
2007-08-07 20:39:04 0 d-------- C:\Program Files\NVIDIA Corporation
2007-08-06 21:35:08 0 d-a------ C:\Documents and Settings\All Users\Application Data\TEMP
2007-08-06 21:35:07 0 d-------- C:\Fraps
2007-08-06 18:11:09 0 d-------- C:\Documents and Settings\All Users\Application Data\Trymedia
2007-08-06 17:56:42 0 d-------- C:\Program Files\PowerISO
2007-08-06 00:06:02 0 d-------- C:\WINDOWS\vbSkinner
2007-08-05 23:45:52 0 d-------- C:\Program Files\ApexDC++
2007-08-04 11:28:28 0 d-------- C:\Documents and Settings\Samu\Application Data\Ahead
2007-08-03 10:52:26 0 d-------- C:\Program Files\MSBuild
2007-08-03 10:50:45 0 d-------- C:\WINDOWS\system32\XPSViewer
2007-08-03 10:50:26 0 d-------- C:\Program Files\Reference Assemblies
2007-08-03 10:45:54 0 d-------- C:\WINDOWS\system32\tr-tr
2007-08-03 10:45:53 0 d-------- C:\WINDOWS\system32\th-th
2007-08-03 10:45:53 0 d-------- C:\WINDOWS\system32\sv-se
2007-08-03 10:45:52 0 d-------- C:\WINDOWS\system32\sk-sk
2007-08-03 10:45:51 0 d-------- C:\WINDOWS\system32\sl-si
2007-08-03 10:45:51 0 d-------- C:\WINDOWS\system32\ru-ru
2007-08-03 10:45:50 0 d-------- C:\WINDOWS\system32\ro-ro
2007-08-03 10:45:49 0 d-------- C:\WINDOWS\system32\pt-pt
2007-08-03 10:45:49 0 d-------- C:\WINDOWS\system32\pt-br
2007-08-03 10:45:48 0 d-------- C:\WINDOWS\system32\pl-pl
2007-08-03 10:45:47 0 d-------- C:\WINDOWS\system32\nl-nl
2007-08-03 10:45:47 0 d-------- C:\WINDOWS\system32\nb-no
2007-08-03 10:45:46 0 d-------- C:\WINDOWS\system32\lv-lv
2007-08-03 10:45:45 0 d-------- C:\WINDOWS\system32\lt-lt
2007-08-03 10:45:45 0 d-------- C:\WINDOWS\system32\ko-kr
2007-08-03 10:45:44 0 d-------- C:\WINDOWS\system32\ja-jp
2007-08-03 10:45:44 0 d-------- C:\WINDOWS\system32\it-it
2007-08-03 10:45:43 0 d-------- C:\WINDOWS\system32\hu-hu
2007-08-03 10:45:42 0 d-------- C:\WINDOWS\system32\hr-hr
2007-08-03 10:45:42 0 d-------- C:\WINDOWS\system32\he-il
2007-08-03 10:45:41 0 d-------- C:\WINDOWS\system32\fr-fr
2007-08-03 10:45:41 0 d-------- C:\WINDOWS\system32\fi-fi
2007-08-03 10:45:40 0 d-------- C:\WINDOWS\system32\et-ee
2007-08-03 10:45:40 0 d-------- C:\WINDOWS\system32\es-es
2007-08-03 10:45:39 0 d-------- C:\WINDOWS\system32\el-gr
2007-08-03 10:45:39 0 d-------- C:\WINDOWS\system32\de-de
2007-08-03 10:45:38 0 d-------- C:\WINDOWS\system32\da-dk
2007-08-03 10:45:37 0 d-------- C:\WINDOWS\system32\zh-tw
2007-08-03 10:45:37 0 d-------- C:\WINDOWS\system32\zh-cn
2007-08-03 10:45:37 0 d-------- C:\WINDOWS\system32\cs-cz
2007-08-03 10:45:36 0 d-------- C:\WINDOWS\system32\bg-bg
2007-08-03 10:45:36 0 d-------- C:\WINDOWS\system32\ar-sa
2007-08-03 10:39:03 0 d-------- C:\WINDOWS\.jagex_cache_32
2007-08-02 17:32:13 0 d-------- C:\Program Files\DaemonTools_WhenUSave_Installer
2007-08-02 17:31:44 0 d-------- C:\Program Files\DAEMON Tools
2007-08-02 15:31:09 442368 -ra------ C:\WINDOWS\system32\vp6vfw.dll <Not Verified; On2.com; On2_VP6>
2007-08-02 15:29:41 0 d-------- C:\Documents and Settings\Samu\Application Data\Adobe
2007-08-02 15:29:13 0 d-------- C:\Documents and Settings\All Users\Application Data\Adobe
2007-08-02 15:29:06 0 d-------- C:\Program Files\Common Files\Adobe
2007-08-02 14:30:29 0 d-------- C:\Program Files\GameSpy Arcade
2007-08-02 13:54:48 0 d-------- C:\Program Files\Guitar Pro 5
2007-08-02 13:54:16 106 --a------ C:\delete.bat
2007-08-02 10:41:01 0 d-------- C:\Program Files\RivaTuner v2.02
2007-08-01 23:46:49 0 d-------- C:\Documents and Settings\Samu\Application Data\Grisoft
2007-08-01 23:46:43 0 d-------- C:\Documents and Settings\All Users\Application Data\Grisoft
2007-08-01 23:11:02 24576 -ra------ C:\WINDOWS\system32\AsIO.dll <Not Verified; ; AsIO Dynamic Link Library>
2007-08-01 22:12:33 0 d-------- C:\WINDOWS\Sun
2007-08-01 22:11:40 0 d-------- C:\Program Files\Java
2007-08-01 22:09:10 0 d-------- C:\Program Files\Common Files\Java
2007-08-01 22:06:52 0 d-------- C:\Documents and Settings\Samu\Application Data\Sun
2007-08-01 21:41:28 0 d-------- C:\Program Files\RegCleaner
2007-08-01 19:19:57 0 d-------- C:\Documents and Settings\Samu\Application Data\DivX
2007-08-01 18:47:34 0 d-------- C:\Program Files\Logitech
2007-08-01 18:47:25 0 d-------- C:\Program Files\Common Files\Logitech
2007-08-01 18:39:24 0 d-------- C:\Documents and Settings\All Users\Application Data\Office Genuine Advantage
2007-08-01 18:39:20 0 d-------- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2007-08-01 18:38:28 0 d-------- C:\Recyclers
2007-08-01 17:40:48 98304 --a------ C:\WINDOWS\system32\CmdLineExt.dll <Not Verified; Sony DADC Austria AG.; >
2007-08-01 17:34:08 0 d-------- C:\Documents and Settings\Samu\Application Data\vlc
2007-08-01 17:33:11 0 d-------- C:\Program Files\VideoLAN
2007-08-01 17:25:13 0 d-------- C:\Program Files\Winamp
2007-08-01 17:06:50 0 d-------- C:\Downloads
2007-08-01 17:04:55 0 d-------- C:\Program Files\FlashGet
2007-08-01 16:35:31 0 d-------- C:\Documents and Settings\Samu\Contacts
2007-08-01 16:34:14 0 d-------- C:\Program Files\MSN Messenger
2007-08-01 16:29:44 0 d-------- C:\Program Files\DivX
2007-08-01 16:27:47 0 d-------- C:\Documents and Settings\All Users\Application Data\Apple Computer
2007-08-01 16:27:45 0 d-------- C:\Program Files\Real Alternative
2007-08-01 16:27:45 0 d-------- C:\Documents and Settings\Samu\Application Data\Real
2007-08-01 16:27:45 0 d-------- C:\Documents and Settings\All Users\Application Data\Real
2007-08-01 16:27:42 0 d-------- C:\Program Files\QuickTime Alternative
2007-08-01 16:21:18 5120 --a------ C:\WINDOWS\system32\ff_vfw.dll
2007-08-01 16:21:15 0 d-------- C:\Program Files\ffdshow
2007-08-01 16:20:02 0 d-------- C:\WINDOWS\system32\ageia
2007-08-01 16:20:02 0 d-------- C:\Program Files\AGEIA Technologies
2007-08-01 16:18:01 0 d-------- C:\Program Files\AC3Filter
2007-08-01 16:16:45 765952 --a------ C:\WINDOWS\system32\xvidcore.dll
2007-08-01 16:16:44 180224 --a------ C:\WINDOWS\system32\xvidvfw.dll
2007-08-01 16:16:43 0 d-------- C:\Program Files\Xvid
2007-08-01 16:10:42 0 d--h----- C:\Documents and Settings\Default User\Templates
2007-08-01 16:10:42 0 dr------- C:\Documents and Settings\Default User\Start Menu
2007-08-01 16:10:42 0 dr-h----- C:\Documents and Settings\Default User\SendTo
2007-08-01 16:10:42 0 d--h----- C:\Documents and Settings\Default User\Recent
2007-08-01 16:10:42 0 d--h----- C:\Documents and Settings\Default User\PrintHood
2007-08-01 16:10:42 0 d--h----- C:\Documents and Settings\Default User\NetHood
2007-08-01 16:10:42 0 d-------- C:\Documents and Settings\Default User\My Documents
2007-08-01 16:10:42 0 dr-h----- C:\Documents and Settings\Default User\Local Settings
2007-08-01 16:10:42 0 d-------- C:\Documents and Settings\Default User\Favorites
2007-08-01 16:10:42 0 d-------- C:\Documents and Settings\Default User\Desktop
2007-08-01 16:10:42 0 d---s---- C:\Documents and Settings\Default User\Cookies
2007-08-01 16:10:42 0 d--h----- C:\Documents and Settings\All Users\Templates
2007-08-01 16:10:42 0 dr------- C:\Documents and Settings\All Users\Start Menu
2007-08-01 16:10:42 0 d-------- C:\Documents and Settings\All Users\Favorites
2007-08-01 16:10:42 0 dr------- C:\Documents and Settings\All Users\Documents
2007-08-01 16:10:42 0 d-------- C:\Documents and Settings\All Users\Desktop
2007-08-01 16:08:11 0 d-------- C:\Program Files\CPU-Z
2007-08-01 16:05:50 0 dr-h----- C:\Documents and Settings\Default User\Application Data
2007-08-01 16:05:50 0 d---s---- C:\Documents and Settings\Default User\Application Data\Microsoft
2007-08-01 16:05:50 0 dr-h----- C:\Documents and Settings\All Users\Application Data
2007-08-01 16:05:50 0 d---s---- C:\Documents and Settings\All Users\Application Data\Microsoft
2007-08-01 15:59:52 0 d-------- C:\WINDOWS\system32\RTCOM
2007-08-01 15:57:09 0 d-------- C:\WINDOWS\system32\data
2007-08-01 15:54:30 0 d--hs---- C:\WINDOWS\Installer
2007-08-01 15:54:30 0 d-------- C:\Program Files\Common Files\ODBC
2007-08-01 15:54:28 0 d-------- C:\Program Files\Common Files\SpeechEngines
2007-08-01 15:54:27 0 dr------- C:\Program Files
2007-08-01 15:54:27 0 d-------- C:\Program Files\Common Files
2007-08-01 15:54:15 17408 --a------ C:\WINDOWS\system32\irclass.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 15:54:13 13312 --a------ C:\WINDOWS\system32\batt.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 15:54:12 181760 --a------ C:\WINDOWS\NOTEPAD.EXE <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 15:51:47 0 d-------- C:\WINDOWS\system32\CatRoot2
2007-08-01 15:51:47 0 d-------- C:\WINDOWS\system32\CatRoot
2007-08-01 15:48:41 4356608 --a------ C:\WINDOWS\system32\drivers\RtkHDAud.sys <Not Verified; Realtek Semiconductor Corp.; Realtek(r) High Definition Audio Function Driver (HRTF data Copyright 1994 by MIT Media Lab)>
2007-08-01 15:48:40 102400 --a------ C:\WINDOWS\Soundman.exe <Not Verified; Realtek Semiconductor Corp.; Realtek HD Sound Manager>
2007-08-01 15:48:40 2879488 --a------ C:\WINDOWS\SkyTel.exe <Not Verified; Realtek Semiconductor Corp.; Realtek Voice Manager>
2007-08-01 15:48:40 364544 --a------ C:\WINDOWS\RtlUpd.exe <Not Verified; Realtek Semiconductor Corp.; Realtek AC'97 Update and remove driver Tool>
2007-08-01 15:48:39 9709568 --a------ C:\WINDOWS\RTLCPL.EXE <Not Verified; Realtek Semiconductor Corp.; Realtek Audio Sound Effect Manager>
2007-08-01 15:48:37 16068096 --a------ C:\WINDOWS\Rthdcpl.exe <Not Verified; Realtek Semiconductor Corp.; Realtek HD Audio Sound Effect Manager>
2007-08-01 15:48:37 2158592 --a------ C:\WINDOWS\MicCal.exe <Not Verified; Realtek Semiconductor Corp.; Realtek Audio Microphone Calibration>
2007-08-01 15:48:37 2808832 --a------ C:\WINDOWS\ALCWZRD.EXE <Not Verified; RealTek Semicoductor Corp.; ALCWZRD>
2007-08-01 15:48:37 69632 --a------ C:\WINDOWS\ALCMTR.EXE <Not Verified; Realtek Semiconductor Corp.; Realtek AC97 Audio - Event Monitor>
2007-08-01 15:48:00 729600 --a------ C:\WINDOWS\system32\CTXFISPI.EXE <Not Verified; Creative Technology Ltd; Creative Audio Product>
2007-08-01 15:48:00 18944 --a------ C:\WINDOWS\system32\CTXFIHLP.EXE <Not Verified; Creative Technology Ltd; CTXfiHlp Application>
2007-08-01 15:48:00 17920 --a------ C:\WINDOWS\CTHELPER.EXE <Not Verified; Creative Technology Ltd; CtHelper Application>
2007-08-01 15:47:51 413696 --a------ C:\WINDOWS\system32\wrap_oal.dll <Not Verified; Creative Labs; Creative Labs OpenAL32>
2007-08-01 15:47:49 86016 --a------ C:\WINDOWS\system32\OpenAL32.dll <Not Verified; Portions (C) Creative Labs Inc. and NVIDIA Corp.; Standard OpenAL(TM) Library>
2007-08-01 15:47:49 77824 --a------ C:\WINDOWS\system32\EAXAC3.DLL <Not Verified; Creative Labs; EAX-AC3 DLL>
2007-08-01 15:47:49 25600 --a------ C:\WINDOWS\system32\CTXFISPK.DLL <Not Verified; Creative Technology Ltd; Ctxfispk Dynamic Link Library>
2007-08-01 15:47:49 52224 --a------ C:\WINDOWS\system32\CTXFISPI.DLL <Not Verified; Creative Technology Ltd; Creative Audio Product>
2007-08-01 15:47:49 26112 --a------ C:\WINDOWS\system32\CTXFIBTN.DLL <Not Verified; Creative Technology Ltd; CTXFIBTN Dynamic Link Library>
2007-08-01 15:47:49 132096 --a------ C:\WINDOWS\system32\CTOSUSER.DLL <Not Verified; Creative Technology Ltd; Creative Audio Product>
2007-08-01 15:47:49 70656 --a------ C:\WINDOWS\system32\CTMMACTL.DLL <Not Verified; ; Creative Filter AudioControlCB Module>
2007-08-01 15:47:49 10240 --a------ C:\WINDOWS\CTDCRES.DLL <Not Verified; Creative Technology Ltd; Creative Audio Product>
2007-08-01 15:47:48 7168 --a------ C:\WINDOWS\system32\CTAGENT.DLL <Not Verified; Creative Technology Ltd; ctagent>
2007-08-01 15:47:48 765952 --a------ C:\WINDOWS\CRLDS3D.DLL <Not Verified; Sensaura Ltd; Sensaura 3DPA>
2007-08-01 15:46:43 0 d-------- C:\Documents and Settings\Samu\Application Data\Macromedia
2007-08-01 15:44:53 0 d-------- C:\Documents and Settings
2007-08-01 15:44:52 0 d--hs---- C:\System Volume Information
2007-08-01 15:43:58 0 d-------- C:\Install
2007-08-01 15:41:33 0 d-------- C:\WINDOWS
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\WinSxS
2007-08-01 15:41:33 0 dr------- C:\WINDOWS\Web
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\twain_32
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\wins
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\wbem
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\usmt
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\spool
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\ShellExt
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\Setup
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\ras
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\PreInstall
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\oobe
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\npp
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\mui
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\inetsrv
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\IME
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\icsxml
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\ias
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\export
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\en
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\drivers
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\drivers\etc
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\drivers\disdn
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\dhcp
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\config
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\3com_dmi
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\3076
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\2052
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\1054
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\1042
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\1041
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\1037
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\1033
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\1031
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\1028
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\1025
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\SoftwareDistribution
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\security
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Resources
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\repair
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Provisioning
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\PeerNet
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\pchealth
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Network Diagnostic
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\mui
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\msapps
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\msagent
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Media
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\java
2007-08-01 15:41:33 0 d--h----- C:\WINDOWS\inf
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\ime
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Help
2007-08-01 15:41:33 0 dr--s---- C:\WINDOWS\Fonts
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\ehome
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Driver Cache
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Debug
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Cursors
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Connection Wizard
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Config
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\AppPatch
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\addins
2007-08-01 15:31:09 0 d-------- C:\WINDOWS\system32\drivers\UMDF
2007-08-01 15:31:03 0 d-------- C:\WINDOWS\pss
2007-08-01 15:28:55 0 d-------- C:\Documents and Settings\Samu\Application Data\WinRAR
2007-08-01 15:25:09 0 d-------- C:\WINDOWS\system32\Futuremark
2007-08-01 15:25:09 3972 --a------ C:\WINDOWS\system32\drivers\PciBus.sys
2007-08-01 15:25:09 5632 --a------ C:\WINDOWS\system32\drivers\Entech64.sys <Not Verified; EnTech Taiwan; EnTech.sys>
2007-08-01 15:25:09 21664 --a------ C:\WINDOWS\system32\drivers\Entech.sys <Not Verified; EnTech Taiwan; PowerStrip>
2007-08-01 15:22:35 0 d-------- C:\Program Files\Futuremark
2007-08-01 15:14:08 0 d-------- C:\Program Files\MSXML 4.0
2007-08-01 15:06:57 0 d-------- C:\Documents and Settings\Samu\Application Data\uTorrent
2007-08-01 14:49:52 0 d--h----- C:\WINDOWS\$hf_mig$
2007-08-01 14:48:03 0 d-------- C:\WINDOWS\system32\DllCache
2007-08-01 14:45:30 0 d-------- C:\Program Files\TaskSwitchXP
2007-08-01 14:45:23 130560 --a------ C:\WINDOWS\system32\XPize_Logon.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 14:45:00 0 d-------- C:\WINDOWS\nview
2007-08-01 14:44:05 0 d-------- C:\NVIDIA
2007-08-01 14:43:53 0 d--h----- C:\WINDOWS\XPize
2007-08-01 14:27:54 61008 --a------ C:\WINDOWS\system32\drivers\Teefer.sys <Not Verified; Sygate Technologies, Inc.; Sygate Teefer Driver>
2007-08-01 14:27:53 21075 --a------ C:\WINDOWS\system32\drivers\wpsdrvnt.sys <Not Verified; Sygate Technologies, Inc.; wpsdrvnt>
2007-08-01 14:27:42 0 d-------- C:\Program Files\Sygate
2007-08-01 14:27:18 0 d-------- C:\Program Files\Common Files\Wise Installation Wizard
2007-08-01 14:27:14 0 d-------- C:\Program Files\Alwil Software
2007-08-01 13:55:52 41984 -----n--- C:\WINDOWS\Ctregrun.exe <Not Verified; Creative Technology Ltd; Creative On-line Registration System>
2007-08-01 13:55:26 0 d-------- C:\Documents and Settings\All Users\Application Data\Creative
2007-08-01 13:54:12 3072 --a------ C:\WINDOWS\CTXFIRES.DLL <Not Verified; ; CTxfiRes Dynamic Link Library>
2007-08-01 13:52:59 0 d-------- C:\Program Files\Creative
2007-08-01 13:50:31 0 d-------- C:\Program Files\ASUS
2007-08-01 13:50:08 0 d-------- C:\WINDOWS\system32\SoftwareDistribution
2007-08-01 13:49:45 0 dr------- C:\WINDOWS\AsDmiHtm
2007-08-01 13:49:44 0 d-------- C:\WINDOWS\system32\LogFiles
2007-08-01 13:49:37 143360 -r------- C:\WINDOWS\system32\xRaidAPI.dll <Not Verified; JMicron Technology Corp.; JMB36X RAID API Dynamic Link Library>
2007-08-01 13:49:36 1953792 -r------- C:\WINDOWS\system32\xRaidSetup.exe <Not Verified; JMicron Technology Corp.; JMicron JMB36X RAID Configurer>
2007-08-01 13:49:36 0 d-------- C:\RaidTool
2007-08-01 13:49:34 0 d-------- C:\WINDOWS\RaidTool
2007-08-01 13:49:17 0 d--h----- C:\Program Files\InstallShield Installation Information
2007-08-01 13:49:17 0 d-------- C:\Program Files\Attansic
2007-08-01 13:49:15 0 d-------- C:\WINDOWS\system32\Attansic
2007-08-01 13:48:47 0 d-------- C:\Program Files\Common Files\InstallShield
2007-08-01 13:46:08 0 d-------- C:\WINDOWS\system32\appmgmt
2007-08-01 13:45:22 61440 --a------ C:\WINDOWS\system32\WMErrFIN.dll <Not Verified; Microsoft Corporation; Microsoft® Windows Media Services>
2007-08-01 13:45:20 0 d-------- C:\WINDOWS\system32\1035
2007-08-01 13:41:38 0 d-------- C:\WINDOWS\system32\drivers\AppPatch
2007-08-01 13:41:35 0 d-------- C:\WINDOWS\system32\drivers\fonts
2007-08-01 13:41:34 0 d-------- C:\WINDOWS\system32\drivers\INF
2007-08-01 13:41:34 0 d-------- C:\WINDOWS\system32\drivers\help
2007-08-01 13:41:33 0 d-------- C:\WINDOWS\system32\drivers\mui
2007-08-01 13:41:33 0 d-------- C:\WINDOWS\system32\drivers\msagent
2007-08-01 13:41:32 0 d-------- C:\WINDOWS\system32\drivers\system32
2007-08-01 13:41:14 0 d-------- C:\WINDOWS\system32\ReinstallBackups
2007-08-01 13:41:13 0 d------c- C:\WINDOWS\system32\DRVSTORE
2007-08-01 13:41:12 0 d-------- C:\Program Files\Intel
2007-08-01 13:40:57 0 d-------- C:\Intel
2007-08-01 13:39:39 10288 --a------ C:\WINDOWS\system32\drivers\ASUSHWIO.SYS
2007-08-01 13:37:32 0 d-------- C:\Program Files\Lavalys
2007-08-01 13:37:29 611064 --a------ C:\WINDOWS\system32\drivers\sptd.sys
2007-08-01 13:37:19 0 d-------- C:\Program Files\uTorrent
2007-08-01 13:34:30 0 dr-h----- C:\MSOCache
2007-08-01 13:33:39 0 d-------- C:\Program Files\Microsoft ActiveSync
2007-08-01 13:32:02 0 d-------- C:\WINDOWS\SHELLNEW
2007-08-01 13:31:53 0 d-------- C:\Program Files\Microsoft.NET
2007-08-01 13:31:26 364544 --a------ C:\WINDOWS\system32\TwnLib4.dll <Not Verified; Pegasus Imaging Corp.; TwnLib4>
2007-08-01 13:31:26 471040 --a------ C:\WINDOWS\system32\imagXRA7.dll <Not Verified; Pegasus Imaging Corp.; ImagXpress7>
2007-08-01 13:31:26 262144 --a------ C:\WINDOWS\system32\imagXR7.dll <Not Verified; Pegasus Imaging Corp.; ImagXpress7>
2007-08-01 13:31:26 1568768 --a------ C:\WINDOWS\system32\imagX7.dll <Not Verified; Pegasus Imaging Corp.; ImagXpress7>
2007-08-01 13:31:26 0 d-------- C:\Program Files\Common Files\Ahead
2007-08-01 13:31:25 0 d-------- C:\Program Files\Nero
2007-08-01 13:31:24 0 d-------- C:\Program Files\MagicISO
2007-08-01 13:31:20 0 d-------- C:\Program Files\DVD Shrink
2007-08-01 13:31:20 0 d-------- C:\Documents and Settings\All Users\Application Data\DVD Shrink
2007-08-01 13:28:57 0 d-------- C:\WINDOWS\system32\Lang
2007-08-01 13:28:45 0 d-------- C:\Documents and Settings\Samu\Application Data\Identities
2007-08-01 13:27:38 22 --a------ C:\WINDOWS\system32\Control
2007-08-01 13:27:31 0 d-------- C:\Documents and Settings\Samu\Application Data\Creative
2007-08-01 13:27:11 0 d--h----- C:\Documents and Settings\Samu\Templates
2007-08-01 13:27:11 0 dr------- C:\Documents and Settings\Samu\Start Menu
2007-08-01 13:27:11 0 dr-h----- C:\Documents and Settings\Samu\SendTo
2007-08-01 13:27:11 0 dr-h----- C:\Documents and Settings\Samu\Recent
2007-08-01 13:27:11 0 d--h----- C:\Documents and Settings\Samu\PrintHood
2007-08-01 13:27:11 3407872 --ah----- C:\Documents and Settings\Samu\NTUSER.DAT
2007-08-01 13:27:11 0 d--h----- C:\Documents and Settings\Samu\NetHood
2007-08-01 13:27:11 0 dr------- C:\Documents and Settings\Samu\My Documents
2007-08-01 13:27:11 0 d--h----- C:\Documents and Settings\Samu\Local Settings
2007-08-01 13:27:11 0 dr------- C:\Documents and Settings\Samu\Favorites
2007-08-01 13:27:11 0 d-------- C:\Documents and Settings\Samu\Desktop
2007-08-01 13:27:11 0 d--hs---- C:\Documents and Settings\Samu\Cookies
2007-08-01 13:27:11 0 dr-h----- C:\Documents and Settings\Samu\Application Data
2007-08-01 13:27:11 0 d-------- C:\Documents and Settings\Samu\7zSE05.tmp
2007-08-01 13:25:36 0 d-------- C:\WINDOWS\Prefetch
2007-08-01 13:25:35 0 d---s---- C:\WINDOWS\system32\Microsoft
2007-08-01 13:25:35 524288 --ah----- C:\Documents and Settings\LocalService\NTUSER.DAT
2007-08-01 13:25:35 0 d--h----- C:\Documents and Settings\LocalService\Local Settings
2007-08-01 13:25:35 0 d--hs---- C:\Documents and Settings\LocalService\Cookies
2007-08-01 13:25:35 0 d-------- C:\Documents and Settings\LocalService\Application Data
2007-08-01 13:25:35 0 d---s---- C:\Documents and Settings\LocalService\Application Data\Microsoft
2007-08-01 13:23:44 282624 --ah----- C:\Documents and Settings\NetworkService\NTUSER.DAT
2007-08-01 13:23:44 0 d--h----- C:\Documents and Settings\NetworkService\Local Settings
2007-08-01 13:23:44 0 d--hs---- C:\Documents and Settings\NetworkService\Cookies
2007-08-01 13:23:44 0 d-------- C:\Documents and Settings\NetworkService\Application Data
2007-08-01 13:23:44 0 d---s---- C:\Documents and Settings\NetworkService\Application Data\Microsoft
2007-08-01 13:22:50 282624 ---h----- C:\Documents and Settings\Default User\NTUSER.DAT
2007-08-01 13:22:03 0 d-------- C:\WINDOWS\system32\URTTemp
2007-08-01 13:21:49 0 d-------- C:\Program Files\WGAFixer
2007-08-01 13:21:49 0 d-------- C:\Documents and Settings\Default User\7zSE05.tmp
2007-08-01 13:21:43 0 -rahs---- C:\MSDOS.SYS
2007-08-01 13:21:43 0 -rahs---- C:\IO.SYS
2007-08-01 13:21:43 0 --a------ C:\CONFIG.SYS
2007-08-01 13:21:43 0 --a------ C:\AUTOEXEC.BAT
2007-08-01 13:21:31 135680 --a------ C:\WINDOWS\system32\mapi32.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:20:50 0 d--hs---- C:\Documents and Settings\All Users\DRM
2007-08-01 13:20:41 0 dr------- C:\WINDOWS\Offline Web Pages
2007-08-01 13:20:41 0 d---s---- C:\WINDOWS\Downloaded Program Files
2007-08-01 13:20:30 0 d--h----- C:\Program Files\WindowsUpdate
2007-08-01 13:20:15 0 d-------- C:\WINDOWS\system32\DirectX
2007-08-01 13:19:52 87040 --a------ C:\WINDOWS\system32\acctres.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:19:50 0 d---s---- C:\WINDOWS\Tasks
2007-08-01 13:19:49 0 d-------- C:\Program Files\Common Files\MSSoap
2007-08-01 13:19:47 0 d-------- C:\WINDOWS\srchasst
2007-08-01 13:19:46 0 d-------- C:\WINDOWS\system32\Macromed
2007-08-01 13:19:41 0 d-------- C:\Program Files\Movie Maker
2007-08-01 13:19:34 234496 --a------ C:\WINDOWS\system32\srrstr.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:19:34 0 d-------- C:\WINDOWS\system32\Restore
2007-08-01 13:19:30 55808 --a------ C:\WINDOWS\system32\inetres.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:19:29 396288 --a------ C:\WINDOWS\system32\mstask.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:19:06 21640 --a------ C:\WINDOWS\system32\emptyregdb.dat
2007-08-01 13:18:53 0 d-------- C:\WINDOWS\Registration
2007-08-01 13:18:47 0 d-------- C:\Program Files\Online Services
2007-08-01 13:18:39 0 d-------- C:\Program Files\Windows Media Connect 2
2007-08-01 13:18:38 0 d-------- C:\Program Files\HashTab Shell Extension
2007-08-01 13:18:37 0 d-------- C:\Program Files\Microsoft PowerToys
2007-08-01 13:18:35 19456 --a------ C:\WINDOWS\system32\write.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:35 0 d-------- C:\Program Files\MSN Gaming Zone
2007-08-01 13:18:29 145920 --a------ C:\WINDOWS\system32\sndvol32.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:23 228864 --a------ C:\WINDOWS\system32\calc.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:10 303104 --a------ C:\WINDOWS\system32\accwiz.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:09 146944 --a------ C:\WINDOWS\system32\sndrec32.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:09 503808 --a------ C:\WINDOWS\system32\mspaint.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:09 107520 --a------ C:\WINDOWS\system32\clipbrd.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:09 0 d-------- C:\Program Files\Windows NT
2007-08-01 13:18:08 753664 --a------ C:\WINDOWS\system32\mstscax.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:08 461824 --a------ C:\WINDOWS\system32\mstsc.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:07 82432 --a------ C:\WINDOWS\system32\remotepg.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:06 0 d-------- C:\WINDOWS\system32\MsDtc
2007-08-01 13:18:06 20480 --a------ C:\WINDOWS\system32\msdtc.exe <Not Verified; Microsoft Corporation; Microsoft Distributed Transaction Coordinator>
2007-08-01 13:18:05 0 d-------- C:\WINDOWS\system32\Com
2007-07-27 02:06:22 3596288 --a------ C:\WINDOWS\system32\qt-dx331.dll
2007-07-27 02:03:48 196608 --a------ C:\WINDOWS\system32\dtu100.dll <Not Verified; DivX, Inc.; DivX, Inc. dtu100>
2007-07-27 02:03:48 81920 --a------ C:\WINDOWS\system32\dpl100.dll <Not Verified; DivX, Inc.; DivX, Inc. dpl100>
2007-07-27 02:03:38 802816 --a------ C:\WINDOWS\system32\divx_xx11.dll <Not Verified; DivX, Inc.; DivX?>
2007-07-27 02:03:38 823296 --a------ C:\WINDOWS\system32\divx_xx0c.dll <Not Verified; DivX, Inc.; DivX®>
2007-07-27 02:03:38 823296 --a------ C:\WINDOWS\system32\divx_xx07.dll <Not Verified; DivX, Inc.; DivX®>
2007-07-27 02:03:38 740442 --a------ C:\WINDOWS\system32\DivX.dll <Not Verified; DivX, Inc.; DivX®>
2007-07-27 02:03:02 12288 --a------ C:\WINDOWS\system32\DivXWMPExtType.dll


-- Find3M Report ---------------------------------------------------------------

2007-08-01 16:10:42 62 --ahs---- C:\Documents and Settings\Samu\Application Data\desktop.ini
2007-07-03 12:33:04 6912 --a------ C:\WINDOWS\nvoclock.sys <Not Verified; NVidia Corp.; NVidia System Utility Driver>
2007-07-03 12:32:58 397312 --a------ C:\WINDOWS\ntuneoem.dll <Not Verified; NVIDIA; NVIDIA nTune>
2007-07-03 12:32:06 1622016 --a------ C:\WINDOWS\NVBenchMarks.dll <Not Verified; NVIDIA; NVIDIA nTune>
2007-07-03 12:31:48 28672 --a------ C:\WINDOWS\AutoTuneScript.dll <Not Verified; NVIDIA; NVIDIA nTune>
2007-06-29 00:43:00 1019904 --a------ C:\WINDOWS\system32\nvwimg.dll
2007-06-29 00:43:00 1703936 --a------ C:\WINDOWS\system32\nvwdmcpl.dll
2007-06-29 00:43:00 466944 --a------ C:\WINDOWS\system32\nvshell.dll
2007-06-29 00:43:00 1626112 --a------ C:\WINDOWS\system32\nwiz.exe
2007-06-29 00:43:00 1474560 --a------ C:\WINDOWS\system32\nview.dll
2007-06-29 00:43:00 1339392 --a------ C:\WINDOWS\system32\nvdspsch.exe
2007-06-29 00:43:00 442368 --a------ C:\WINDOWS\system32\nvappbar.exe
2007-06-29 00:43:00 425984 --a------ C:\WINDOWS\system32\keystone.exe


-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RivaTunerStartupDaemon"="C:\Program Files\RivaTuner v2.02\RivaTuner.exe" [01.07.2007 22:20]
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [11.06.2007 12:25]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [29.06.2007 00:43]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [15.05.2007 01:22]
"UpdReg"="C:\WINDOWS\UpdReg.EXE" [11.05.2000 01:00]
"UnlockerAssistant"="C:\Program Files\Unlocker\UnlockerAssistant.exe" [06.05.2006 09:29]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" [12.07.2007 04:00]
"SmcService"="C:\PROGRA~1\Sygate\SPF\smc.exe" [27.09.2005 12:16]
"SkyTel"="SkyTel.EXE" [13.08.2006 01:35 C:\WINDOWS\SkyTel.exe]
"PWRISOVM.EXE"="C:\Program Files\PowerISO\PWRISOVM.EXE" [09.04.2007 15:23]
"nwiz"="nwiz.exe" [29.06.2007 00:43 C:\WINDOWS\system32\nwiz.exe]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [29.06.2007 00:43]
"JMB36X IDE Setup"="C:\WINDOWS\RaidTool\xInsIDE.exe" [20.03.2007 17:36]
"DAEMON Tools-1033"="C:\Program Files\D-Tools\daemon.exe" []
"DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" [14.09.2006 23:09]
"CTxfiHlp"="CTXFIHLP.EXE" [17.08.2006 11:32 C:\WINDOWS\system32\CTXFIHLP.EXE]
"CTHelper"="CTHELPER.EXE" [17.08.2006 11:32 C:\WINDOWS\CTHELPER.EXE]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [28.07.2007 01:03]
"AGEIA PhysX SysTray"="C:\Program Files\AGEIA Technologies\TrayIcon.exe" [20.03.2006 22:43]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [11.05.2007 03:06]
"36X Raid Configurer"="C:\WINDOWS\system32\xRaidSetup.exe" [21.03.2007 19:23]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [04.08.2004 01:56]
"NVIDIA nTune"="C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" [03.07.2007 12:32]
"TaskSwitchXP"="C:\Program Files\TaskSwitchXP\TaskSwitchXP.exe" [05.08.2006 01:29]
"Steam"="" []
"msnmsgr"="C:\Program Files\MSN Messenger\msnmsgr.exe" [19.01.2007 12:55]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"DisableRegistryTools"=0 (0x0)


[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{0675700f-4029-11dc-972b-806d6172696f}]
AutoRun\command- D:\Autorun\UbiAutorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{182c4590-4105-11dc-a49f-001bfc5a2a2c}]
AutoRun\command- G:\OblivionLauncher.exe




-- Hosts -----------------------------------------------------------------------

127.0.0.1 ad.a8.net
127.0.0.1 asy.a8ww.net
127.0.0.1 www.aaa-livedoor.net #[Trojan-PSW.Win32.Maran.ei]
127.0.0.1 www.abcsearcher.com #[Spamdexing][Microsoft.Strider]
127.0.0.1 abc-search.info
127.0.0.1 www.abx4.com #[Adware.ABXToolbar]
127.0.0.1 www.acezip.net #[Win32/Adware.180Solutions]
127.0.0.1 phpadsnew.abac.com
127.0.0.1 a.abnad.net
127.0.0.1 b.abnad.net

14868 more entries in hosts file.


-- End of Deckard's System Scanner: finished at 2007-08-10 at 15:21:35 ---------

Deckard's System Scanner v20070807.62
Extra logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------

-- System Information ----------------------------------------------------------

Microsoft Windows XP Professional (build 2600) SP 2.0
Architecture: X86; Language: English

CPU 0: Intel(R) Core(TM)2 CPU 6600 @ 2.40GHz
CPU 1: Intel(R) Core(TM)2 CPU 6600 @ 2.40GHz
Percentage of Memory in Use: 24%
Physical Memory (total/avail): 2047.04 MiB / 1542.9 MiB
Pagefile Memory (total/avail): 3939.11 MiB / 3426.52 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1939.52 MiB

A: is Removable (Unformatted)
C: is Fixed (NTFS) - 97.65 GiB total, 77.99 GiB free.
D: is CDROM (UDF)
E: is Fixed (NTFS) - 97.65 GiB total, 21.57 GiB free.
F: is Fixed (NTFS) - 270.44 GiB total, 194.49 GiB free.
G: is CDROM (UDF)
H: is CDROM (No Media)


-- Security Center -------------------------------------------------------------

AUOptions is scheduled to auto-install.
Windows Internal Firewall is disabled.

FirstRunDisabled is set.

FW: Sygate Personal Firewall Pro v4.6 (Sygate Technologies, Inc.)
AV: avast! antivirus 4.7.1029 [VPS 000764-3] v4.7.1029 (ALWIL Software)

[HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabledxpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabledxpsp2res.dll,-22019"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

[HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabledxpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabledxpsp2res.dll,-22019"
"C:\\Program Files\\uTorrent\\uTorrent.exe"="C:\\Program Files\\uTorrent\\uTorrent.exe:*:Enabled:µTorrent"
"C:\\Documents and Settings\\Samu\\Desktop\\utorrent.exe"="C:\\Documents and Settings\\Samu\\Desktop\\utorrent.exe:*:Enabled:µTorrent"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\\Program Files\\FlashGet\\flashget.exe"="C:\\Program Files\\FlashGet\\flashget.exe:*:Enabled:Flashget"
"E:\\Pelit\\Electronic Arts\\Battlefield 2142 Demo\\BF2142.exe"="E:\\Pelit\\Electronic Arts\\Battlefield 2142 Demo\\BF2142.exe:*:Enabled:Battlefield 2"
"E:\\Pelit\\Electronic Arts\\Battlefield 2 Demo\\BF2.exe"="E:\\Pelit\\Electronic Arts\\Battlefield 2 Demo\\BF2.exe:*:Enabled:Battlefield 2"
"C:\\Documents and Settings\\Samu\\My Documents\\utorrent.exe"="C:\\Documents and Settings\\Samu\\My Documents\\utorrent.exe:*:Enabled:µTorrent"
"E:\\Pelit\\Sierra\\FEAR\\FEAR.exe"="E:\\Pelit\\Sierra\\FEAR\\FEAR.exe:*:Enabled:FEAR"
"E:\\Pelit\\Sierra\\FEAR\\FEARMP.exe"="E:\\Pelit\\Sierra\\FEAR\\FEARMP.exe:*:Enabled:FEAR"


-- Environment Variables -------------------------------------------------------

ALLUSERSPROFILE=C:\Documents and Settings\All Users
APPDATA=C:\Documents and Settings\Samu\Application Data
CLIENTNAME=Console
CommonProgramFiles=C:\Program Files\Common Files
COMPUTERNAME=TEHO_PC
ComSpec=C:\WINDOWS\system32\cmd.exe
FP_NO_HOST_CHECK=NO
HOMEDRIVE=C:
HOMEPATH=\Documents and Settings\Samu
LOGONSERVER=\\TEHO_PC
NUMBER_OF_PROCESSORS=2
OS=Windows_NT
Path=C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 6 Model 15 Stepping 6, GenuineIntel
PROCESSOR_LEVEL=6
PROCESSOR_REVISION=0f06
ProgramFiles=C:\Program Files
PROMPT=$P$G
SESSIONNAME=Console
SystemDrive=C:
SystemRoot=C:\WINDOWS
TEMP=C:\DOCUME~1\Samu\LOCALS~1\Temp
TMP=C:\DOCUME~1\Samu\LOCALS~1\Temp
USERDOMAIN=TEHO_PC
USERNAME=Samu
USERPROFILE=C:\Documents and Settings\Samu
windir=C:\WINDOWS


-- User Profiles ---------------------------------------------------------------

Samu (admin)


-- Add/Remove Programs ---------------------------------------------------------

--> "C:\Program Files\Creative\Sound Blaster X-Fi\Program\SETUP.EXE" /S /U /W
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0E5AA361-4B16-4282-B639-9E5B2B6A2EC8}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0E5AA361-4B16-4282-B639-9E5B2B6A2EC8}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{17E96A7F-AFE3-4171-87B1-583E376319E8}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{32903944-19A2-418C-901D-4BBAF4C55ABA}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{32903944-19A2-418C-901D-4BBAF4C55ABA}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4D8AA0B4-E890-4BF7-A9D1-8E63027E76D3}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4D8AA0B4-E890-4BF7-A9D1-8E63027E76D3}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6BF90A01-FA3F-42B9-A071-7D744409967E}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6BF90A01-FA3F-42B9-A071-7D744409967E}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{84F573D3-0F71-4768-978A-D35310E3FBA6}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{84F573D3-0F71-4768-978A-D35310E3FBA6}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A82F10CB-18B5-4EAC-AEF2-FA49CD565626}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B8DA9EB2-DBEF-4F0A-B90A-45B77D9E65B2}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B8DA9EB2-DBEF-4F0A-B90A-45B77D9E65B2}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CB99E420-8071-48F9-9567-4A53BE7569C4}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CB99E420-8071-48F9-9567-4A53BE7569C4}\setup.exe" -l0x9 /remove
--> rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
3DMark06 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7F3AD00A-1819-4B15-BB7D-08B3586336D7}\setup.exe" -l0x9 -removeonly
AC3Filter (remove only) --> C:\Program Files\AC3Filter\uninstall.exe
Adobe Flash Player 9 ActiveX --> C:\WINDOWS\system32\Macromed\Flash\FlashUtil9c.exe -uninstallUnlock
Adobe Flash Player Plugin --> C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 8.1.0 - Suomi --> MsiExec.exe /I{AC76BA86-7AD7-1035-7B44-A81000000003}
AGEIA PhysX v2.3.3 --> "C:\Program Files\AGEIA Technologies\uninstall.exe"
ApexDC++ 1.0.0 Beta 3 --> C:\Program Files\ApexDC++\uninst.exe
ASUSUpdate --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{587178E7-B1DF-494E-9838-FA4DD36E873C}\Setup.exe" -l0x9
Attansic Ethernet Utility --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1F698102-5739-441E-96F0-74F4EA540F06}\setup.exe" -l0x9 -removeonly
Attansic L1 Gigabit Ethernet Driver --> rundll32.exe C:\WINDOWS\system32\Attansic\L1\atcInst.dll,AtcUninst C:\WINDOWS\system32\Attansic\L1 x86 1969 1048 L1
avast! Antivirus --> rundll32 C:\PROGRA~1\ALWILS~1\Avast4\Setup\setiface.dll,RunSetup
AVG Anti-Spyware 7.5 --> C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\Uninstall.exe
Battlefield 2(TM) Demo --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8BECF123-B0EF-4E51-B7F3-923EFE15CC4A}\setup.exe" -l0x9 -removeonly
Battlefield 2142 Demo --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FD347316-609E-4149-983C-84B40338D38A}\setup.exe" -l0x9 -removeonly
Creative Audio Console --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{17E96A7F-AFE3-4171-87B1-583E376319E8}\setup.exe" -l0x9 /remove
DiRT --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{57B89E30-0BBA-4F20-9F2C-8E8CDE1CEDB6}\setup.exe" -l0x9 -removeonly
DivX Codec --> C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
DivX Content Uploader --> C:\Program Files\DivX\DivXContentUploaderUninstall.exe /CUPLOADER
DivX Web Player --> C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
DVD Shrink 3.2 --> "C:\Program Files\DVD Shrink\unins000.exe"
EVEREST Home Edition v2.20 --> "C:\Program files\Lavalys\EVEREST Home Edition\unins000.exe"
FAKEFACTORY Cinematic Mod --> "C:\WINDOWS\Uninstall\FAKEFACTORY_Cinematic\uninstall.exe" "/U:C:\WINDOWS\Uninstall\FAKEFACTORY_Cinematic\uninstall.xml"
FEAR --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2B653229-9854-4989-B780-D978F5F13EAB}\setup.exe" -l0x9 /zU -removeonly
ffdshow [rev 610] [2006-12-01] --> "C:\Program Files\ffdshow\unins000.exe"
FlashGet 1.9.2.1028 --> C:\Program Files\FlashGet\uninst.exe
Fraps (remove only) --> "C:\Fraps\uninstall.exe"
Futuremark Measurement Services Client --> RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\msc3.inf,DefaultUninstall,5
Ghost Recon Advanced Warfighter --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EFC97089-04D6-42CE-A707-A343B4A7D2CD}\setup.exe" -l0x9
GRAW Patch 1.35 --> "E:\Pelit\Ubisoft\Ghost Recon Advanced Warfighter\unins000.exe"
GTI Racing --> C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{EF0D610C-92BE-4D8F-BD33-9F658F8754F1} /Z"UNINSTALL"
Guitar Pro 5.2 --> "C:\Program Files\Guitar Pro 5\unins000.exe"
HijackThis 1.99.1 --> F:\Haittaohjelmien poisto\HijackThis.exe /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399) --> "C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
Java(TM) 6 Update 2 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160020}
JMB36X Raid Configurer --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}\setup.exe" -l0x9 -removeonly
Logitech Gaming Software --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5C1DA723-24FC-48AD-93BA-925695C3EF26}\setup.exe" -l0xb -removeonly
MagicISO RePacked by nwz --> MsiExec.exe /I{4D316C28-CE6A-4AA8-B880-041288CFC7B0}
Microsoft Compression Client Pack 1.0 for Windows XP --> "C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Office 2003 Finnish User Interface Pack --> MsiExec.exe /I{901E040B-6000-11D3-8CFE-0150048383C9}
Microsoft Office Professional Edition 2003 --> MsiExec.exe /I{90110409-6000-11D3-8CFE-0150048383C9}
Microsoft User-Mode Driver Framework Feature Pack 1.0 --> "C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable --> MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
MSXML 6.0 Parser (KB927977) --> MsiExec.exe /I{5A710547-B58E-488B-828D-CA9A25A0533C}
Nero 7.2.3.2 --> "C:\Program Files\Nero\unins000.exe"
NVIDIA Drivers --> C:\WINDOWS\system32\nvudisp.exe UninstallGUI
NVIDIA nTune --> C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF} /l1035
Oblivion --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{35CB6715-41F8-4F99-8881-6FC75BF054B0}\setup.exe" -l0x9 -removeonly
Oblivion mod manager 1.0.3 --> "E:\Pelit\Bethesda Softworks\Oblivion\obmm\uninstall\unins000.exe"
PC Probe II --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F7338FA3-DAB5-49B2-900D-0AFB5760C166}\setup.exe" -l0x9
PowerISO --> "C:\Program Files\PowerISO\uninstall.exe"
QuickTime Alternative 1.80 --> "C:\Program Files\QuickTime Alternative\unins000.exe"
Real Alternative 1.52 Lite --> "C:\Program Files\Real Alternative\unins000.exe"
RivaTuner v2.02 --> "C:\Program Files\RivaTuner v2.02\uninstall.exe"
Sound Blaster X-Fi --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{18F11181-EA1A-42AE-AF89-4867C7F7A6FA}\SETUP.EXE" -l0x9 /remove
SpeechRedist --> MsiExec.exe /X{8795CBED-55E2-4693-9F14-84EC446935BE}
Steam --> E:\Pelit\Steam\UNWISE.EXE E:\Pelit\Steam\INSTALL.LOG
Sygate Personal Firewall Pro --> MsiExec.exe /I{10B446B3-4DF4-4489-A168-8A98F7CD807E}
TaskSwitchXP --> C:\Program Files\TaskSwitchXP\uninst.exe
The Sims 2 --> E:\Pelit\Electronic Arts\The Sims 2\EAUninstall.exe
The Sims 2 Yöelämää --> E:\Pelit\Electronic Arts\The Sims 2 Yöelämää\EAUninstall.exe
The Sims™ 2 Lemmikkielämää --> E:\Pelit\Electronic Arts\The Sims 2 Lemmikkielämää\EAUninstall.exe
Tomb Raider: Anniversary --> "E:\Pelit\Steam\steam.exe" steam://uninstall/8000
Unreal Tournament 2004 --> E:\Pelit\UT2004\System\Setup.exe uninstall "UT2004"
VideoLAN VLC media player 0.8.6c --> C:\Program Files\VideoLAN\VLC\uninstall.exe
Winamp (remove only) --> "C:\Program Files\Winamp\UninstWA.exe"
Windows Communication Foundation --> MsiExec.exe /X{491DD792-AD81-429C-9EB4-86DD3D22E333}
Windows Imaging Component --> "C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Live Messenger --> MsiExec.exe /I{DF6FEB75-A0D1-44E5-A754-0072D4967734}
Windows Live Sign-in Assistant --> MsiExec.exe /I{49672EC2-171B-47B4-8CE7-50D7806360D7}
Windows Media Format 11 runtime --> "C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Presentation Foundation --> MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
Windows Presentation Foundation Language Pack (FIN) --> MsiExec.exe /X{935FADCB-C25B-4F62-B9B4-F22C40431642}
Windows Vista Sounds Pack --> MsiExec.exe /I{E1230694-33DA-4E74-82E1-06CC9D545E9B}
Windows Workflow Foundation --> MsiExec.exe /I{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}
Windows Workflow Foundation FI Language Pack --> MsiExec.exe /I{8E5D0B52-BB72-46C6-8AB8-2B041D959594}
WinRAR archiver --> C:\Program Files\WinRAR\uninstall.exe
XML Paper Specification Shared Components Language Pack 1.0 --> "C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"
XML Paper Specification Shared Components Pack 1.0 -->
XPize 4.5.1 --> C:\WINDOWS\XPize\uninst.exe
Xvid 1.1.3 final uninstall --> "C:\Program Files\Xvid\unins000.exe"


-- Application Event Log -------------------------------------------------------

Event ID #10: Success
Event Submitted/Written: 08/10/2007 02:15:37 PM
Event Source: usnjsvc
Event Description:
The Messenger Sharing USN Journal Reader service started successfully.

Event ID #2: Success
Event Submitted/Written: 08/10/2007 01:23:48 AM
Event Source: usnjsvc
Event Description:
The Messenger Sharing USN Journal Reader service started successfully.



-- Security Event Log ----------------------------------------------------------

No Errors/Warnings found.


-- System Event Log ------------------------------------------------------------

Event ID #1740: Warning
Event Submitted/Written: 08/07/2007 11:45:20 AM
Event Source: W32Time
Event Description:
Aikapalvelu ei ole voinut synkronoida järjestelmän kelloa 49152 sekuntiin, koska
aikatoimittaja ei ole voinut toimittaa käytettävää aikaleimaa. Järjestelmän kelloa
ei ole synkronoitu.

Event ID #1716: Error
Event Submitted/Written: 08/07/2007 10:43:48 AM
Event Source: DCOM
Event Description:
Palvelin {46986115-84D6-459C-8F95-52DD653E532E} ei rekisteröitynyt DCOM:n kanssa annetun ajan sisällä.

Event ID #1714: Error
Event Submitted/Written: 08/07/2007 10:43:18 AM
Event Source: DCOM
Event Description:
Palvelin {46986115-84D6-459C-8F95-52DD653E532E} ei rekisteröitynyt DCOM:n kanssa annetun ajan sisällä.

Event ID #1710: Warning
Event Submitted/Written: 08/06/2007 11:06:33 PM
Event Source: BROWSER
Event Description:
Selaaja ei voinut noutaa palvelinluetteloa pääselaajalta \\ACERI verkossa \Device\NetBT_Tcpip_{64DE6505-F7C3-450D-970D-AED0990FB782}.
Virhekoodi on data.

Event ID #1568: Warning
Event Submitted/Written: 08/06/2007 01:44:57 PM
Event Source: W32Time
Event Description:
Aikapalvelu ei ole voinut synkronoida järjestelmän kelloa 49152 sekuntiin, koska
aikatoimittaja ei ole voinut toimittaa käytettävää aikaleimaa. Järjestelmän kelloa
ei ole synkronoitu.



-- End of Deckard's System Scanner: finished at 2007-08-10 at 15:21:35 ---------

 

Moro kurkkaa aikasempi viestini.. tais tulla tuplana viestisi..

 

__________________________________________________
ewido anti-spyware online scanner
http://www.ewido.net
__________________________________________________


Name: TrackingCookie.Atdmt
Path: C:\Documents and Settings\Samu\Cookies\samu@atdmt[2].txt
Risk: Medium

Name: TrackingCookie.Serving-sys
Path: C:\Documents and Settings\Samu\Cookies\samu@bs.serving-sys[2].txt
Risk: Medium

Name: TrackingCookie.Doubleclick
Path: C:\Documents and Settings\Samu\Cookies\samu@doubleclick[2].txt
Risk: Medium

Name: TrackingCookie.Serving-sys
Path: C:\Documents and Settings\Samu\Cookies\samu@serving-sys[1].txt
Risk: Medium

Name: TrackingCookie.Statistik-gallup
Path: C:\Documents and Settings\Samu\Cookies\samu@statistik-gallup[1].txt
Risk: Medium

Name: TrackingCookie.Statistik-gallup
Path: :mozilla.12:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Adbrite
Path: :mozilla.38:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Adbrite
Path: :mozilla.51:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Adbrite
Path: :mozilla.52:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.77:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.78:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.79:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.80:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.81:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.82:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.83:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.84:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.85:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.86:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yieldmanager
Path: :mozilla.87:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Doubleclick
Path: :mozilla.94:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Advertising
Path: :mozilla.98:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Advertising
Path: :mozilla.99:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Advertising
Path: :mozilla.100:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Advertising
Path: :mozilla.103:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Adtech
Path: :mozilla.105:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Adtech
Path: :mozilla.106:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Yadro
Path: :mozilla.116:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Fastclick
Path: :mozilla.123:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Fastclick
Path: :mozilla.124:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Tribalfusion
Path: :mozilla.125:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Fastclick
Path: :mozilla.127:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Fastclick
Path: :mozilla.128:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.2o7
Path: :mozilla.136:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.2o7
Path: :mozilla.137:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.2o7
Path: :mozilla.138:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.2o7
Path: :mozilla.139:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.2o7
Path: :mozilla.140:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.2o7
Path: :mozilla.141:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.2o7
Path: :mozilla.142:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.2o7
Path: :mozilla.143:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.2o7
Path: :mozilla.144:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Revsci
Path: :mozilla.149:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Revsci
Path: :mozilla.150:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Revsci
Path: :mozilla.151:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Atdmt
Path: :mozilla.156:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Serving-sys
Path: :mozilla.157:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Serving-sys
Path: :mozilla.158:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Serving-sys
Path: :mozilla.159:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Serving-sys
Path: :mozilla.160:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Serving-sys
Path: :mozilla.161:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Serving-sys
Path: :mozilla.162:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Sitestat
Path: :mozilla.170:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Sitestat
Path: :mozilla.171:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Webtrends
Path: :mozilla.187:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Statcounter
Path: :mozilla.189:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Statcounter
Path: :mozilla.190:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Statcounter
Path: :mozilla.191:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Tacoda
Path: :mozilla.203:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Tacoda
Path: :mozilla.204:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Tacoda
Path: :mozilla.205:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Tacoda
Path: :mozilla.206:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Pointroll
Path: :mozilla.208:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Pointroll
Path: :mozilla.209:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Pointroll
Path: :mozilla.210:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Pointroll
Path: :mozilla.211:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Pointroll
Path: :mozilla.212:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Pointroll
Path: :mozilla.213:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Pointroll
Path: :mozilla.214:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Imrworldwide
Path: :mozilla.261:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Imrworldwide
Path: :mozilla.262:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Mediaplex
Path: :mozilla.296:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Tradedoubler
Path: :mozilla.336:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Tradedoubler
Path: :mozilla.337:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Tradedoubler
Path: :mozilla.338:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Overture
Path: :mozilla.341:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Com
Path: :mozilla.350:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Questionmarket
Path: :mozilla.363:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Name: TrackingCookie.Questionmarket
Path: :mozilla.364:C:\Documents and Settings\Samu\Application Data\Mozilla\Firefox\Profiles\xqv5jqup.default\cookies.txt
Risk: Medium

Deckard's System Scanner v20070807.62
Run by Samu on 2007-08-10 at 15:19:54
Computer is in Normal Mode.
--------------------------------------------------------------------------------

-- System Restore --------------------------------------------------------------

Successfully created a Deckard's System Scanner Restore Point.


-- Last 5 Restore Point(s) --
73: 2007-08-10 12:19:58 UTC - RP73 - Deckard's System Scanner Restore Point
72: 2007-08-09 17:07:12 UTC - RP72 - Järjestelmän tarkistuspiste
71: 2007-08-07 17:38:47 UTC - RP71 - Asennettu NVIDIA nTune
70: 2007-08-07 14:20:24 UTC - RP70 - Installed ASUSUpdate
69: 2007-08-06 15:57:19 UTC - RP69 - Installed SpeechRedist


-- First Restore Point --
1: 2007-08-01 10:27:57 UTC - RP1 - Installed J2SE Runtime Environment 5.0 Update 8


Backed up registry hives.
Performed disk cleanup.



-- HijackThis (run as Samu.exe) ------------------------------------------------

Logfile of HijackThis v1.99.1
Scan saved at 15:20:43, on 10.8.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\DAEMON Tools\daemon.exe
C:\WINDOWS\system32\CTXFIHLP.EXE
C:\WINDOWS\CTHELPER.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\AGEIA Technologies\TrayIcon.exe
C:\WINDOWS\SYSTEM32\CTXFISPI.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TaskSwitchXP\TaskSwitchXP.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Sygate\SPF\smc.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\MSN Messenger\usnsvc.exe
E:\Pelit\Steam\steam.exe
C:\Documents and Settings\Samu\Desktop\dss.exe
F:\HAITTA~1\Samu.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fi/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://update.microsoft.com/microsoftupdate
O2 - BHO: Adobe PDF Reader -linkkiavustaja - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll
O4 - HKLM\..\Run: [RivaTunerStartupDaemon] "C:\Program Files\RivaTuner v2.02\RivaTuner.exe" /S
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [UnlockerAssistant] C:\Program Files\Unlocker\UnlockerAssistant.exe -H
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\WINDOWS\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [AGEIA PhysX SysTray] C:\Program Files\AGEIA Technologies\TrayIcon.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [36X Raid Configurer] C:\WINDOWS\system32\xRaidSetup.exe boot
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [NVIDIA nTune] "C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" clear
O4 - HKCU\..\Run: [TaskSwitchXP] C:\Program Files\TaskSwitchXP\TaskSwitchXP.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O8 - Extra context menu item: &Lataa FlashGetillä
- C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: &Lataa kaikki FlashGetillä
- C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://www.creative.com/su/ocx/15030/CTSUEng.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://javadl-esd.sun.com/update/1.6.0/jinstall-6u2-windows-i586-jc.cab
O16 - DPF: {D1E7CBDA-E60E-4970-A01C-37301EF7BF98} (Measurement Services Client v.3.12) - http://www.yougamers.com/systeminfo/MSC3.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/su/ocx/15030/CTPID.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{64DE6505-F7C3-450D-970D-AED0990FB782}: NameServer = 192.168.0.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{64DE6505-F7C3-450D-970D-AED0990FB782}: NameServer = 192.168.0.254
O17 - HKLM\System\CS2\Services\Tcpip\..\{64DE6505-F7C3-450D-970D-AED0990FB782}: NameServer = 192.168.0.254
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: nTune Service (nTuneService) - NVIDIA - C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Sygate Personal Firewall Pro (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe


-- HijackThis Fixed Entries (F:\HAITTA~1\backups\) -----------------------------

backup-20070526-180843-168 O4 - HKCU\..\Run: [LOAD RULE] C:\DOCUME~1\Samu\APPLIC~1\INSIDE~1\eq lite chin.exe
backup-20070810-013146-189 O1 - Hosts: 66.98.148.65 auto.search.msn.es
backup-20070810-013146-794 O1 - Hosts: 66.98.148.65 auto.search.msn.com
backup-20070810-013146-826 O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

-- File Associations -----------------------------------------------------------

All associations okay.


-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

R0 jahci - c:\windows\system32\drivers\jahci.sys <Not Verified; JMicron; JMicron PCIE AHCI Controller>
R0 Teefer (Teefer for NT) - c:\windows\system32\drivers\teefer.sys <Not Verified; Sygate Technologies, Inc.; Sygate Teefer Driver>
R1 SCDEmu - c:\windows\system32\drivers\scdemu.sys <Not Verified; PowerISO Computing, Inc.; scdemu>
R1 wpsdrvnt - c:\windows\system32\drivers\wpsdrvnt.sys <Not Verified; Sygate Technologies, Inc.; wpsdrvnt>
R3 NVR0Dev - c:\windows\nvoclock.sys <Not Verified; NVidia Corp.; NVidia System Utility Driver>
R3 RivaTuner32 - c:\program files\rivatuner v2.02\rivatuner32.sys

S3 ENTECH - c:\windows\system32\drivers\entech.sys <Not Verified; EnTech Taiwan; PowerStrip>


-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

R2 nTuneService (nTune Service) - c:\program files\nvidia corporation\ntune\ntuneservice.exe /startservice <Not Verified; NVIDIA; NVIDIA nTune>


-- Device Manager: Disabled ----------------------------------------------------

No disabled devices found.


-- Files created between 2007-07-10 and 2007-08-10 -----------------------------

2007-08-09 23:58:11 0 d-------- C:\WINDOWS\Uninstall
2007-08-08 01:43:53 0 --a------ C:\WINDOWS\nsreg.dat
2007-08-08 01:43:52 0 d-------- C:\Documents and Settings\Samu\Application Data\Mozilla
2007-08-07 20:39:04 0 d-------- C:\Program Files\NVIDIA Corporation
2007-08-06 21:35:08 0 d-a------ C:\Documents and Settings\All Users\Application Data\TEMP
2007-08-06 21:35:07 0 d-------- C:\Fraps
2007-08-06 18:11:09 0 d-------- C:\Documents and Settings\All Users\Application Data\Trymedia
2007-08-06 17:56:42 0 d-------- C:\Program Files\PowerISO
2007-08-06 00:06:02 0 d-------- C:\WINDOWS\vbSkinner
2007-08-05 23:45:52 0 d-------- C:\Program Files\ApexDC++
2007-08-04 11:28:28 0 d-------- C:\Documents and Settings\Samu\Application Data\Ahead
2007-08-03 10:52:26 0 d-------- C:\Program Files\MSBuild
2007-08-03 10:50:45 0 d-------- C:\WINDOWS\system32\XPSViewer
2007-08-03 10:50:26 0 d-------- C:\Program Files\Reference Assemblies
2007-08-03 10:45:54 0 d-------- C:\WINDOWS\system32\tr-tr
2007-08-03 10:45:53 0 d-------- C:\WINDOWS\system32\th-th
2007-08-03 10:45:53 0 d-------- C:\WINDOWS\system32\sv-se
2007-08-03 10:45:52 0 d-------- C:\WINDOWS\system32\sk-sk
2007-08-03 10:45:51 0 d-------- C:\WINDOWS\system32\sl-si
2007-08-03 10:45:51 0 d-------- C:\WINDOWS\system32\ru-ru
2007-08-03 10:45:50 0 d-------- C:\WINDOWS\system32\ro-ro
2007-08-03 10:45:49 0 d-------- C:\WINDOWS\system32\pt-pt
2007-08-03 10:45:49 0 d-------- C:\WINDOWS\system32\pt-br
2007-08-03 10:45:48 0 d-------- C:\WINDOWS\system32\pl-pl
2007-08-03 10:45:47 0 d-------- C:\WINDOWS\system32\nl-nl
2007-08-03 10:45:47 0 d-------- C:\WINDOWS\system32\nb-no
2007-08-03 10:45:46 0 d-------- C:\WINDOWS\system32\lv-lv
2007-08-03 10:45:45 0 d-------- C:\WINDOWS\system32\lt-lt
2007-08-03 10:45:45 0 d-------- C:\WINDOWS\system32\ko-kr
2007-08-03 10:45:44 0 d-------- C:\WINDOWS\system32\ja-jp
2007-08-03 10:45:44 0 d-------- C:\WINDOWS\system32\it-it
2007-08-03 10:45:43 0 d-------- C:\WINDOWS\system32\hu-hu
2007-08-03 10:45:42 0 d-------- C:\WINDOWS\system32\hr-hr
2007-08-03 10:45:42 0 d-------- C:\WINDOWS\system32\he-il
2007-08-03 10:45:41 0 d-------- C:\WINDOWS\system32\fr-fr
2007-08-03 10:45:41 0 d-------- C:\WINDOWS\system32\fi-fi
2007-08-03 10:45:40 0 d-------- C:\WINDOWS\system32\et-ee
2007-08-03 10:45:40 0 d-------- C:\WINDOWS\system32\es-es
2007-08-03 10:45:39 0 d-------- C:\WINDOWS\system32\el-gr
2007-08-03 10:45:39 0 d-------- C:\WINDOWS\system32\de-de
2007-08-03 10:45:38 0 d-------- C:\WINDOWS\system32\da-dk
2007-08-03 10:45:37 0 d-------- C:\WINDOWS\system32\zh-tw
2007-08-03 10:45:37 0 d-------- C:\WINDOWS\system32\zh-cn
2007-08-03 10:45:37 0 d-------- C:\WINDOWS\system32\cs-cz
2007-08-03 10:45:36 0 d-------- C:\WINDOWS\system32\bg-bg
2007-08-03 10:45:36 0 d-------- C:\WINDOWS\system32\ar-sa
2007-08-03 10:39:03 0 d-------- C:\WINDOWS\.jagex_cache_32
2007-08-02 17:32:13 0 d-------- C:\Program Files\DaemonTools_WhenUSave_Installer
2007-08-02 17:31:44 0 d-------- C:\Program Files\DAEMON Tools
2007-08-02 15:31:09 442368 -ra------ C:\WINDOWS\system32\vp6vfw.dll <Not Verified; On2.com; On2_VP6>
2007-08-02 15:29:41 0 d-------- C:\Documents and Settings\Samu\Application Data\Adobe
2007-08-02 15:29:13 0 d-------- C:\Documents and Settings\All Users\Application Data\Adobe
2007-08-02 15:29:06 0 d-------- C:\Program Files\Common Files\Adobe
2007-08-02 14:30:29 0 d-------- C:\Program Files\GameSpy Arcade
2007-08-02 13:54:48 0 d-------- C:\Program Files\Guitar Pro 5
2007-08-02 13:54:16 106 --a------ C:\delete.bat
2007-08-02 10:41:01 0 d-------- C:\Program Files\RivaTuner v2.02
2007-08-01 23:46:49 0 d-------- C:\Documents and Settings\Samu\Application Data\Grisoft
2007-08-01 23:46:43 0 d-------- C:\Documents and Settings\All Users\Application Data\Grisoft
2007-08-01 23:11:02 24576 -ra------ C:\WINDOWS\system32\AsIO.dll <Not Verified; ; AsIO Dynamic Link Library>
2007-08-01 22:12:33 0 d-------- C:\WINDOWS\Sun
2007-08-01 22:11:40 0 d-------- C:\Program Files\Java
2007-08-01 22:09:10 0 d-------- C:\Program Files\Common Files\Java
2007-08-01 22:06:52 0 d-------- C:\Documents and Settings\Samu\Application Data\Sun
2007-08-01 21:41:28 0 d-------- C:\Program Files\RegCleaner
2007-08-01 19:19:57 0 d-------- C:\Documents and Settings\Samu\Application Data\DivX
2007-08-01 18:47:34 0 d-------- C:\Program Files\Logitech
2007-08-01 18:47:25 0 d-------- C:\Program Files\Common Files\Logitech
2007-08-01 18:39:24 0 d-------- C:\Documents and Settings\All Users\Application Data\Office Genuine Advantage
2007-08-01 18:39:20 0 d-------- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2007-08-01 18:38:28 0 d-------- C:\Recyclers
2007-08-01 17:40:48 98304 --a------ C:\WINDOWS\system32\CmdLineExt.dll <Not Verified; Sony DADC Austria AG.; >
2007-08-01 17:34:08 0 d-------- C:\Documents and Settings\Samu\Application Data\vlc
2007-08-01 17:33:11 0 d-------- C:\Program Files\VideoLAN
2007-08-01 17:25:13 0 d-------- C:\Program Files\Winamp
2007-08-01 17:06:50 0 d-------- C:\Downloads
2007-08-01 17:04:55 0 d-------- C:\Program Files\FlashGet
2007-08-01 16:35:31 0 d-------- C:\Documents and Settings\Samu\Contacts
2007-08-01 16:34:14 0 d-------- C:\Program Files\MSN Messenger
2007-08-01 16:29:44 0 d-------- C:\Program Files\DivX
2007-08-01 16:27:47 0 d-------- C:\Documents and Settings\All Users\Application Data\Apple Computer
2007-08-01 16:27:45 0 d-------- C:\Program Files\Real Alternative
2007-08-01 16:27:45 0 d-------- C:\Documents and Settings\Samu\Application Data\Real
2007-08-01 16:27:45 0 d-------- C:\Documents and Settings\All Users\Application Data\Real
2007-08-01 16:27:42 0 d-------- C:\Program Files\QuickTime Alternative
2007-08-01 16:21:18 5120 --a------ C:\WINDOWS\system32\ff_vfw.dll
2007-08-01 16:21:15 0 d-------- C:\Program Files\ffdshow
2007-08-01 16:20:02 0 d-------- C:\WINDOWS\system32\ageia
2007-08-01 16:20:02 0 d-------- C:\Program Files\AGEIA Technologies
2007-08-01 16:18:01 0 d-------- C:\Program Files\AC3Filter
2007-08-01 16:16:45 765952 --a------ C:\WINDOWS\system32\xvidcore.dll
2007-08-01 16:16:44 180224 --a------ C:\WINDOWS\system32\xvidvfw.dll
2007-08-01 16:16:43 0 d-------- C:\Program Files\Xvid
2007-08-01 16:10:42 0 d--h----- C:\Documents and Settings\Default User\Templates
2007-08-01 16:10:42 0 dr------- C:\Documents and Settings\Default User\Start Menu
2007-08-01 16:10:42 0 dr-h----- C:\Documents and Settings\Default User\SendTo
2007-08-01 16:10:42 0 d--h----- C:\Documents and Settings\Default User\Recent
2007-08-01 16:10:42 0 d--h----- C:\Documents and Settings\Default User\PrintHood
2007-08-01 16:10:42 0 d--h----- C:\Documents and Settings\Default User\NetHood
2007-08-01 16:10:42 0 d-------- C:\Documents and Settings\Default User\My Documents
2007-08-01 16:10:42 0 dr-h----- C:\Documents and Settings\Default User\Local Settings
2007-08-01 16:10:42 0 d-------- C:\Documents and Settings\Default User\Favorites
2007-08-01 16:10:42 0 d-------- C:\Documents and Settings\Default User\Desktop
2007-08-01 16:10:42 0 d---s---- C:\Documents and Settings\Default User\Cookies
2007-08-01 16:10:42 0 d--h----- C:\Documents and Settings\All Users\Templates
2007-08-01 16:10:42 0 dr------- C:\Documents and Settings\All Users\Start Menu
2007-08-01 16:10:42 0 d-------- C:\Documents and Settings\All Users\Favorites
2007-08-01 16:10:42 0 dr------- C:\Documents and Settings\All Users\Documents
2007-08-01 16:10:42 0 d-------- C:\Documents and Settings\All Users\Desktop
2007-08-01 16:08:11 0 d-------- C:\Program Files\CPU-Z
2007-08-01 16:05:50 0 dr-h----- C:\Documents and Settings\Default User\Application Data
2007-08-01 16:05:50 0 d---s---- C:\Documents and Settings\Default User\Application Data\Microsoft
2007-08-01 16:05:50 0 dr-h----- C:\Documents and Settings\All Users\Application Data
2007-08-01 16:05:50 0 d---s---- C:\Documents and Settings\All Users\Application Data\Microsoft
2007-08-01 15:59:52 0 d-------- C:\WINDOWS\system32\RTCOM
2007-08-01 15:57:09 0 d-------- C:\WINDOWS\system32\data
2007-08-01 15:54:30 0 d--hs---- C:\WINDOWS\Installer
2007-08-01 15:54:30 0 d-------- C:\Program Files\Common Files\ODBC
2007-08-01 15:54:28 0 d-------- C:\Program Files\Common Files\SpeechEngines
2007-08-01 15:54:27 0 dr------- C:\Program Files
2007-08-01 15:54:27 0 d-------- C:\Program Files\Common Files
2007-08-01 15:54:15 17408 --a------ C:\WINDOWS\system32\irclass.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 15:54:13 13312 --a------ C:\WINDOWS\system32\batt.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 15:54:12 181760 --a------ C:\WINDOWS\NOTEPAD.EXE <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 15:51:47 0 d-------- C:\WINDOWS\system32\CatRoot2
2007-08-01 15:51:47 0 d-------- C:\WINDOWS\system32\CatRoot
2007-08-01 15:48:41 4356608 --a------ C:\WINDOWS\system32\drivers\RtkHDAud.sys <Not Verified; Realtek Semiconductor Corp.; Realtek(r) High Definition Audio Function Driver (HRTF data Copyright 1994 by MIT Media Lab)>
2007-08-01 15:48:40 102400 --a------ C:\WINDOWS\Soundman.exe <Not Verified; Realtek Semiconductor Corp.; Realtek HD Sound Manager>
2007-08-01 15:48:40 2879488 --a------ C:\WINDOWS\SkyTel.exe <Not Verified; Realtek Semiconductor Corp.; Realtek Voice Manager>
2007-08-01 15:48:40 364544 --a------ C:\WINDOWS\RtlUpd.exe <Not Verified; Realtek Semiconductor Corp.; Realtek AC'97 Update and remove driver Tool>
2007-08-01 15:48:39 9709568 --a------ C:\WINDOWS\RTLCPL.EXE <Not Verified; Realtek Semiconductor Corp.; Realtek Audio Sound Effect Manager>
2007-08-01 15:48:37 16068096 --a------ C:\WINDOWS\Rthdcpl.exe <Not Verified; Realtek Semiconductor Corp.; Realtek HD Audio Sound Effect Manager>
2007-08-01 15:48:37 2158592 --a------ C:\WINDOWS\MicCal.exe <Not Verified; Realtek Semiconductor Corp.; Realtek Audio Microphone Calibration>
2007-08-01 15:48:37 2808832 --a------ C:\WINDOWS\ALCWZRD.EXE <Not Verified; RealTek Semicoductor Corp.; ALCWZRD>
2007-08-01 15:48:37 69632 --a------ C:\WINDOWS\ALCMTR.EXE <Not Verified; Realtek Semiconductor Corp.; Realtek AC97 Audio - Event Monitor>
2007-08-01 15:48:00 729600 --a------ C:\WINDOWS\system32\CTXFISPI.EXE <Not Verified; Creative Technology Ltd; Creative Audio Product>
2007-08-01 15:48:00 18944 --a------ C:\WINDOWS\system32\CTXFIHLP.EXE <Not Verified; Creative Technology Ltd; CTXfiHlp Application>
2007-08-01 15:48:00 17920 --a------ C:\WINDOWS\CTHELPER.EXE <Not Verified; Creative Technology Ltd; CtHelper Application>
2007-08-01 15:47:51 413696 --a------ C:\WINDOWS\system32\wrap_oal.dll <Not Verified; Creative Labs; Creative Labs OpenAL32>
2007-08-01 15:47:49 86016 --a------ C:\WINDOWS\system32\OpenAL32.dll <Not Verified; Portions (C) Creative Labs Inc. and NVIDIA Corp.; Standard OpenAL(TM) Library>
2007-08-01 15:47:49 77824 --a------ C:\WINDOWS\system32\EAXAC3.DLL <Not Verified; Creative Labs; EAX-AC3 DLL>
2007-08-01 15:47:49 25600 --a------ C:\WINDOWS\system32\CTXFISPK.DLL <Not Verified; Creative Technology Ltd; Ctxfispk Dynamic Link Library>
2007-08-01 15:47:49 52224 --a------ C:\WINDOWS\system32\CTXFISPI.DLL <Not Verified; Creative Technology Ltd; Creative Audio Product>
2007-08-01 15:47:49 26112 --a------ C:\WINDOWS\system32\CTXFIBTN.DLL <Not Verified; Creative Technology Ltd; CTXFIBTN Dynamic Link Library>
2007-08-01 15:47:49 132096 --a------ C:\WINDOWS\system32\CTOSUSER.DLL <Not Verified; Creative Technology Ltd; Creative Audio Product>
2007-08-01 15:47:49 70656 --a------ C:\WINDOWS\system32\CTMMACTL.DLL <Not Verified; ; Creative Filter AudioControlCB Module>
2007-08-01 15:47:49 10240 --a------ C:\WINDOWS\CTDCRES.DLL <Not Verified; Creative Technology Ltd; Creative Audio Product>
2007-08-01 15:47:48 7168 --a------ C:\WINDOWS\system32\CTAGENT.DLL <Not Verified; Creative Technology Ltd; ctagent>
2007-08-01 15:47:48 765952 --a------ C:\WINDOWS\CRLDS3D.DLL <Not Verified; Sensaura Ltd; Sensaura 3DPA>
2007-08-01 15:46:43 0 d-------- C:\Documents and Settings\Samu\Application Data\Macromedia
2007-08-01 15:44:53 0 d-------- C:\Documents and Settings
2007-08-01 15:44:52 0 d--hs---- C:\System Volume Information
2007-08-01 15:43:58 0 d-------- C:\Install
2007-08-01 15:41:33 0 d-------- C:\WINDOWS
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\WinSxS
2007-08-01 15:41:33 0 dr------- C:\WINDOWS\Web
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\twain_32
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\wins
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\wbem
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\usmt
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\spool
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\ShellExt
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\Setup
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\ras
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\PreInstall
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\oobe
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\npp
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\mui
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\inetsrv
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\IME
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\icsxml
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\ias
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\export
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\en
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\drivers
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\drivers\etc
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\drivers\disdn
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\dhcp
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\config
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\3com_dmi
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\3076
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\2052
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\1054
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\1042
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\1041
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\1037
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\1033
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\1031
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\1028
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system32\1025
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\system
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\SoftwareDistribution
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\security
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Resources
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\repair
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Provisioning
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\PeerNet
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\pchealth
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Network Diagnostic
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\mui
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\msapps
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\msagent
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Media
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\java
2007-08-01 15:41:33 0 d--h----- C:\WINDOWS\inf
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\ime
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Help
2007-08-01 15:41:33 0 dr--s---- C:\WINDOWS\Fonts
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\ehome
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Driver Cache
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Debug
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Cursors
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Connection Wizard
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\Config
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\AppPatch
2007-08-01 15:41:33 0 d-------- C:\WINDOWS\addins
2007-08-01 15:31:09 0 d-------- C:\WINDOWS\system32\drivers\UMDF
2007-08-01 15:31:03 0 d-------- C:\WINDOWS\pss
2007-08-01 15:28:55 0 d-------- C:\Documents and Settings\Samu\Application Data\WinRAR
2007-08-01 15:25:09 0 d-------- C:\WINDOWS\system32\Futuremark
2007-08-01 15:25:09 3972 --a------ C:\WINDOWS\system32\drivers\PciBus.sys
2007-08-01 15:25:09 5632 --a------ C:\WINDOWS\system32\drivers\Entech64.sys <Not Verified; EnTech Taiwan; EnTech.sys>
2007-08-01 15:25:09 21664 --a------ C:\WINDOWS\system32\drivers\Entech.sys <Not Verified; EnTech Taiwan; PowerStrip>
2007-08-01 15:22:35 0 d-------- C:\Program Files\Futuremark
2007-08-01 15:14:08 0 d-------- C:\Program Files\MSXML 4.0
2007-08-01 15:06:57 0 d-------- C:\Documents and Settings\Samu\Application Data\uTorrent
2007-08-01 14:49:52 0 d--h----- C:\WINDOWS\$hf_mig$
2007-08-01 14:48:03 0 d-------- C:\WINDOWS\system32\DllCache
2007-08-01 14:45:30 0 d-------- C:\Program Files\TaskSwitchXP
2007-08-01 14:45:23 130560 --a------ C:\WINDOWS\system32\XPize_Logon.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 14:45:00 0 d-------- C:\WINDOWS\nview
2007-08-01 14:44:05 0 d-------- C:\NVIDIA
2007-08-01 14:43:53 0 d--h----- C:\WINDOWS\XPize
2007-08-01 14:27:54 61008 --a------ C:\WINDOWS\system32\drivers\Teefer.sys <Not Verified; Sygate Technologies, Inc.; Sygate Teefer Driver>
2007-08-01 14:27:53 21075 --a------ C:\WINDOWS\system32\drivers\wpsdrvnt.sys <Not Verified; Sygate Technologies, Inc.; wpsdrvnt>
2007-08-01 14:27:42 0 d-------- C:\Program Files\Sygate
2007-08-01 14:27:18 0 d-------- C:\Program Files\Common Files\Wise Installation Wizard
2007-08-01 14:27:14 0 d-------- C:\Program Files\Alwil Software
2007-08-01 13:55:52 41984 -----n--- C:\WINDOWS\Ctregrun.exe <Not Verified; Creative Technology Ltd; Creative On-line Registration System>
2007-08-01 13:55:26 0 d-------- C:\Documents and Settings\All Users\Application Data\Creative
2007-08-01 13:54:12 3072 --a------ C:\WINDOWS\CTXFIRES.DLL <Not Verified; ; CTxfiRes Dynamic Link Library>
2007-08-01 13:52:59 0 d-------- C:\Program Files\Creative
2007-08-01 13:50:31 0 d-------- C:\Program Files\ASUS
2007-08-01 13:50:08 0 d-------- C:\WINDOWS\system32\SoftwareDistribution
2007-08-01 13:49:45 0 dr------- C:\WINDOWS\AsDmiHtm
2007-08-01 13:49:44 0 d-------- C:\WINDOWS\system32\LogFiles
2007-08-01 13:49:37 143360 -r------- C:\WINDOWS\system32\xRaidAPI.dll <Not Verified; JMicron Technology Corp.; JMB36X RAID API Dynamic Link Library>
2007-08-01 13:49:36 1953792 -r------- C:\WINDOWS\system32\xRaidSetup.exe <Not Verified; JMicron Technology Corp.; JMicron JMB36X RAID Configurer>
2007-08-01 13:49:36 0 d-------- C:\RaidTool
2007-08-01 13:49:34 0 d-------- C:\WINDOWS\RaidTool
2007-08-01 13:49:17 0 d--h----- C:\Program Files\InstallShield Installation Information
2007-08-01 13:49:17 0 d-------- C:\Program Files\Attansic
2007-08-01 13:49:15 0 d-------- C:\WINDOWS\system32\Attansic
2007-08-01 13:48:47 0 d-------- C:\Program Files\Common Files\InstallShield
2007-08-01 13:46:08 0 d-------- C:\WINDOWS\system32\appmgmt
2007-08-01 13:45:22 61440 --a------ C:\WINDOWS\system32\WMErrFIN.dll <Not Verified; Microsoft Corporation; Microsoft® Windows Media Services>
2007-08-01 13:45:20 0 d-------- C:\WINDOWS\system32\1035
2007-08-01 13:41:38 0 d-------- C:\WINDOWS\system32\drivers\AppPatch
2007-08-01 13:41:35 0 d-------- C:\WINDOWS\system32\drivers\fonts
2007-08-01 13:41:34 0 d-------- C:\WINDOWS\system32\drivers\INF
2007-08-01 13:41:34 0 d-------- C:\WINDOWS\system32\drivers\help
2007-08-01 13:41:33 0 d-------- C:\WINDOWS\system32\drivers\mui
2007-08-01 13:41:33 0 d-------- C:\WINDOWS\system32\drivers\msagent
2007-08-01 13:41:32 0 d-------- C:\WINDOWS\system32\drivers\system32
2007-08-01 13:41:14 0 d-------- C:\WINDOWS\system32\ReinstallBackups
2007-08-01 13:41:13 0 d------c- C:\WINDOWS\system32\DRVSTORE
2007-08-01 13:41:12 0 d-------- C:\Program Files\Intel
2007-08-01 13:40:57 0 d-------- C:\Intel
2007-08-01 13:39:39 10288 --a------ C:\WINDOWS\system32\drivers\ASUSHWIO.SYS
2007-08-01 13:37:32 0 d-------- C:\Program Files\Lavalys
2007-08-01 13:37:29 611064 --a------ C:\WINDOWS\system32\drivers\sptd.sys
2007-08-01 13:37:19 0 d-------- C:\Program Files\uTorrent
2007-08-01 13:34:30 0 dr-h----- C:\MSOCache
2007-08-01 13:33:39 0 d-------- C:\Program Files\Microsoft ActiveSync
2007-08-01 13:32:02 0 d-------- C:\WINDOWS\SHELLNEW
2007-08-01 13:31:53 0 d-------- C:\Program Files\Microsoft.NET
2007-08-01 13:31:26 364544 --a------ C:\WINDOWS\system32\TwnLib4.dll <Not Verified; Pegasus Imaging Corp.; TwnLib4>
2007-08-01 13:31:26 471040 --a------ C:\WINDOWS\system32\imagXRA7.dll <Not Verified; Pegasus Imaging Corp.; ImagXpress7>
2007-08-01 13:31:26 262144 --a------ C:\WINDOWS\system32\imagXR7.dll <Not Verified; Pegasus Imaging Corp.; ImagXpress7>
2007-08-01 13:31:26 1568768 --a------ C:\WINDOWS\system32\imagX7.dll <Not Verified; Pegasus Imaging Corp.; ImagXpress7>
2007-08-01 13:31:26 0 d-------- C:\Program Files\Common Files\Ahead
2007-08-01 13:31:25 0 d-------- C:\Program Files\Nero
2007-08-01 13:31:24 0 d-------- C:\Program Files\MagicISO
2007-08-01 13:31:20 0 d-------- C:\Program Files\DVD Shrink
2007-08-01 13:31:20 0 d-------- C:\Documents and Settings\All Users\Application Data\DVD Shrink
2007-08-01 13:28:57 0 d-------- C:\WINDOWS\system32\Lang
2007-08-01 13:28:45 0 d-------- C:\Documents and Settings\Samu\Application Data\Identities
2007-08-01 13:27:38 22 --a------ C:\WINDOWS\system32\Control
2007-08-01 13:27:31 0 d-------- C:\Documents and Settings\Samu\Application Data\Creative
2007-08-01 13:27:11 0 d--h----- C:\Documents and Settings\Samu\Templates
2007-08-01 13:27:11 0 dr------- C:\Documents and Settings\Samu\Start Menu
2007-08-01 13:27:11 0 dr-h----- C:\Documents and Settings\Samu\SendTo
2007-08-01 13:27:11 0 dr-h----- C:\Documents and Settings\Samu\Recent
2007-08-01 13:27:11 0 d--h----- C:\Documents and Settings\Samu\PrintHood
2007-08-01 13:27:11 3407872 --ah----- C:\Documents and Settings\Samu\NTUSER.DAT
2007-08-01 13:27:11 0 d--h----- C:\Documents and Settings\Samu\NetHood
2007-08-01 13:27:11 0 dr------- C:\Documents and Settings\Samu\My Documents
2007-08-01 13:27:11 0 d--h----- C:\Documents and Settings\Samu\Local Settings
2007-08-01 13:27:11 0 dr------- C:\Documents and Settings\Samu\Favorites
2007-08-01 13:27:11 0 d-------- C:\Documents and Settings\Samu\Desktop
2007-08-01 13:27:11 0 d--hs---- C:\Documents and Settings\Samu\Cookies
2007-08-01 13:27:11 0 dr-h----- C:\Documents and Settings\Samu\Application Data
2007-08-01 13:27:11 0 d-------- C:\Documents and Settings\Samu\7zSE05.tmp
2007-08-01 13:25:36 0 d-------- C:\WINDOWS\Prefetch
2007-08-01 13:25:35 0 d---s---- C:\WINDOWS\system32\Microsoft
2007-08-01 13:25:35 524288 --ah----- C:\Documents and Settings\LocalService\NTUSER.DAT
2007-08-01 13:25:35 0 d--h----- C:\Documents and Settings\LocalService\Local Settings
2007-08-01 13:25:35 0 d--hs---- C:\Documents and Settings\LocalService\Cookies
2007-08-01 13:25:35 0 d-------- C:\Documents and Settings\LocalService\Application Data
2007-08-01 13:25:35 0 d---s---- C:\Documents and Settings\LocalService\Application Data\Microsoft
2007-08-01 13:23:44 282624 --ah----- C:\Documents and Settings\NetworkService\NTUSER.DAT
2007-08-01 13:23:44 0 d--h----- C:\Documents and Settings\NetworkService\Local Settings
2007-08-01 13:23:44 0 d--hs---- C:\Documents and Settings\NetworkService\Cookies
2007-08-01 13:23:44 0 d-------- C:\Documents and Settings\NetworkService\Application Data
2007-08-01 13:23:44 0 d---s---- C:\Documents and Settings\NetworkService\Application Data\Microsoft
2007-08-01 13:22:50 282624 ---h----- C:\Documents and Settings\Default User\NTUSER.DAT
2007-08-01 13:22:03 0 d-------- C:\WINDOWS\system32\URTTemp
2007-08-01 13:21:49 0 d-------- C:\Program Files\WGAFixer
2007-08-01 13:21:49 0 d-------- C:\Documents and Settings\Default User\7zSE05.tmp
2007-08-01 13:21:43 0 -rahs---- C:\MSDOS.SYS
2007-08-01 13:21:43 0 -rahs---- C:\IO.SYS
2007-08-01 13:21:43 0 --a------ C:\CONFIG.SYS
2007-08-01 13:21:43 0 --a------ C:\AUTOEXEC.BAT
2007-08-01 13:21:31 135680 --a------ C:\WINDOWS\system32\mapi32.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:20:50 0 d--hs---- C:\Documents and Settings\All Users\DRM
2007-08-01 13:20:41 0 dr------- C:\WINDOWS\Offline Web Pages
2007-08-01 13:20:41 0 d---s---- C:\WINDOWS\Downloaded Program Files
2007-08-01 13:20:30 0 d--h----- C:\Program Files\WindowsUpdate
2007-08-01 13:20:15 0 d-------- C:\WINDOWS\system32\DirectX
2007-08-01 13:19:52 87040 --a------ C:\WINDOWS\system32\acctres.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:19:50 0 d---s---- C:\WINDOWS\Tasks
2007-08-01 13:19:49 0 d-------- C:\Program Files\Common Files\MSSoap
2007-08-01 13:19:47 0 d-------- C:\WINDOWS\srchasst
2007-08-01 13:19:46 0 d-------- C:\WINDOWS\system32\Macromed
2007-08-01 13:19:41 0 d-------- C:\Program Files\Movie Maker
2007-08-01 13:19:34 234496 --a------ C:\WINDOWS\system32\srrstr.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:19:34 0 d-------- C:\WINDOWS\system32\Restore
2007-08-01 13:19:30 55808 --a------ C:\WINDOWS\system32\inetres.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:19:29 396288 --a------ C:\WINDOWS\system32\mstask.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:19:06 21640 --a------ C:\WINDOWS\system32\emptyregdb.dat
2007-08-01 13:18:53 0 d-------- C:\WINDOWS\Registration
2007-08-01 13:18:47 0 d-------- C:\Program Files\Online Services
2007-08-01 13:18:39 0 d-------- C:\Program Files\Windows Media Connect 2
2007-08-01 13:18:38 0 d-------- C:\Program Files\HashTab Shell Extension
2007-08-01 13:18:37 0 d-------- C:\Program Files\Microsoft PowerToys
2007-08-01 13:18:35 19456 --a------ C:\WINDOWS\system32\write.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:35 0 d-------- C:\Program Files\MSN Gaming Zone
2007-08-01 13:18:29 145920 --a------ C:\WINDOWS\system32\sndvol32.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:23 228864 --a------ C:\WINDOWS\system32\calc.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:10 303104 --a------ C:\WINDOWS\system32\accwiz.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:09 146944 --a------ C:\WINDOWS\system32\sndrec32.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:09 503808 --a------ C:\WINDOWS\system32\mspaint.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:09 107520 --a------ C:\WINDOWS\system32\clipbrd.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:09 0 d-------- C:\Program Files\Windows NT
2007-08-01 13:18:08 753664 --a------ C:\WINDOWS\system32\mstscax.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:08 461824 --a------ C:\WINDOWS\system32\mstsc.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:07 82432 --a------ C:\WINDOWS\system32\remotepg.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-08-01 13:18:06 0 d-------- C:\WINDOWS\system32\MsDtc
2007-08-01 13:18:06 20480 --a------ C:\WINDOWS\system32\msdtc.exe <Not Verified; Microsoft Corporation; Microsoft Distributed Transaction Coordinator>
2007-08-01 13:18:05 0 d-------- C:\WINDOWS\system32\Com
2007-07-27 02:06:22 3596288 --a------ C:\WINDOWS\system32\qt-dx331.dll
2007-07-27 02:03:48 196608 --a------ C:\WINDOWS\system32\dtu100.dll <Not Verified; DivX, Inc.; DivX, Inc. dtu100>
2007-07-27 02:03:48 81920 --a------ C:\WINDOWS\system32\dpl100.dll <Not Verified; DivX, Inc.; DivX, Inc. dpl100>
2007-07-27 02:03:38 802816 --a------ C:\WINDOWS\system32\divx_xx11.dll <Not Verified; DivX, Inc.; DivX?>
2007-07-27 02:03:38 823296 --a------ C:\WINDOWS\system32\divx_xx0c.dll <Not Verified; DivX, Inc.; DivX®>
2007-07-27 02:03:38 823296 --a------ C:\WINDOWS\system32\divx_xx07.dll <Not Verified; DivX, Inc.; DivX®>
2007-07-27 02:03:38 740442 --a------ C:\WINDOWS\system32\DivX.dll <Not Verified; DivX, Inc.; DivX®>
2007-07-27 02:03:02 12288 --a------ C:\WINDOWS\system32\DivXWMPExtType.dll


-- Find3M Report ---------------------------------------------------------------

2007-08-01 16:10:42 62 --ahs---- C:\Documents and Settings\Samu\Application Data\desktop.ini
2007-07-03 12:33:04 6912 --a------ C:\WINDOWS\nvoclock.sys <Not Verified; NVidia Corp.; NVidia System Utility Driver>
2007-07-03 12:32:58 397312 --a------ C:\WINDOWS\ntuneoem.dll <Not Verified; NVIDIA; NVIDIA nTune>
2007-07-03 12:32:06 1622016 --a------ C:\WINDOWS\NVBenchMarks.dll <Not Verified; NVIDIA; NVIDIA nTune>
2007-07-03 12:31:48 28672 --a------ C:\WINDOWS\AutoTuneScript.dll <Not Verified; NVIDIA; NVIDIA nTune>
2007-06-29 00:43:00 1019904 --a------ C:\WINDOWS\system32\nvwimg.dll
2007-06-29 00:43:00 1703936 --a------ C:\WINDOWS\system32\nvwdmcpl.dll
2007-06-29 00:43:00 466944 --a------ C:\WINDOWS\system32\nvshell.dll
2007-06-29 00:43:00 1626112 --a------ C:\WINDOWS\system32\nwiz.exe
2007-06-29 00:43:00 1474560 --a------ C:\WINDOWS\system32\nview.dll
2007-06-29 00:43:00 1339392 --a------ C:\WINDOWS\system32\nvdspsch.exe
2007-06-29 00:43:00 442368 --a------ C:\WINDOWS\system32\nvappbar.exe
2007-06-29 00:43:00 425984 --a------ C:\WINDOWS\system32\keystone.exe


-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RivaTunerStartupDaemon"="C:\Program Files\RivaTuner v2.02\RivaTuner.exe" [01.07.2007 22:20]
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [11.06.2007 12:25]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [29.06.2007 00:43]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [15.05.2007 01:22]
"UpdReg"="C:\WINDOWS\UpdReg.EXE" [11.05.2000 01:00]
"UnlockerAssistant"="C:\Program Files\Unlocker\UnlockerAssistant.exe" [06.05.2006 09:29]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" [12.07.2007 04:00]
"SmcService"="C:\PROGRA~1\Sygate\SPF\smc.exe" [27.09.2005 12:16]
"SkyTel"="SkyTel.EXE" [13.08.2006 01:35 C:\WINDOWS\SkyTel.exe]
"PWRISOVM.EXE"="C:\Program Files\PowerISO\PWRISOVM.EXE" [09.04.2007 15:23]
"nwiz"="nwiz.exe" [29.06.2007 00:43 C:\WINDOWS\system32\nwiz.exe]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [29.06.2007 00:43]
"JMB36X IDE Setup"="C:\WINDOWS\RaidTool\xInsIDE.exe" [20.03.2007 17:36]
"DAEMON Tools-1033"="C:\Program Files\D-Tools\daemon.exe" []
"DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" [14.09.2006 23:09]
"CTxfiHlp"="CTXFIHLP.EXE" [17.08.2006 11:32 C:\WINDOWS\system32\CTXFIHLP.EXE]
"CTHelper"="CTHELPER.EXE" [17.08.2006 11:32 C:\WINDOWS\CTHELPER.EXE]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [28.07.2007 01:03]
"AGEIA PhysX SysTray"="C:\Program Files\AGEIA Technologies\TrayIcon.exe" [20.03.2006 22:43]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [11.05.2007 03:06]
"36X Raid Configurer"="C:\WINDOWS\system32\xRaidSetup.exe" [21.03.2007 19:23]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [04.08.2004 01:56]
"NVIDIA nTune"="C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" [03.07.2007 12:32]
"TaskSwitchXP"="C:\Program Files\TaskSwitchXP\TaskSwitchXP.exe" [05.08.2006 01:29]
"Steam"="" []
"msnmsgr"="C:\Program Files\MSN Messenger\msnmsgr.exe" [19.01.2007 12:55]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"DisableRegistryTools"=0 (0x0)


[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{0675700f-4029-11dc-972b-806d6172696f}]
AutoRun\command- D:\Autorun\UbiAutorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{182c4590-4105-11dc-a49f-001bfc5a2a2c}]
AutoRun\command- G:\OblivionLauncher.exe




-- Hosts -----------------------------------------------------------------------

127.0.0.1 ad.a8.net
127.0.0.1 asy.a8ww.net
127.0.0.1 www.aaa-livedoor.net #[Trojan-PSW.Win32.Maran.ei]
127.0.0.1 www.abcsearcher.com #[Spamdexing][Microsoft.Strider]
127.0.0.1 abc-search.info
127.0.0.1 www.abx4.com #[Adware.ABXToolbar]
127.0.0.1 www.acezip.net #[Win32/Adware.180Solutions]
127.0.0.1 phpadsnew.abac.com
127.0.0.1 a.abnad.net
127.0.0.1 b.abnad.net

14868 more entries in hosts file.


-- End of Deckard's System Scanner: finished at 2007-08-10 at 15:21:35 ---------

Deckard's System Scanner v20070807.62
Extra logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------

-- System Information ----------------------------------------------------------

Microsoft Windows XP Professional (build 2600) SP 2.0
Architecture: X86; Language: English

CPU 0: Intel(R) Core(TM)2 CPU 6600 @ 2.40GHz
CPU 1: Intel(R) Core(TM)2 CPU 6600 @ 2.40GHz
Percentage of Memory in Use: 24%
Physical Memory (total/avail): 2047.04 MiB / 1542.9 MiB
Pagefile Memory (total/avail): 3939.11 MiB / 3426.52 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1939.52 MiB

A: is Removable (Unformatted)
C: is Fixed (NTFS) - 97.65 GiB total, 77.99 GiB free.
D: is CDROM (UDF)
E: is Fixed (NTFS) - 97.65 GiB total, 21.57 GiB free.
F: is Fixed (NTFS) - 270.44 GiB total, 194.49 GiB free.
G: is CDROM (UDF)
H: is CDROM (No Media)


-- Security Center -------------------------------------------------------------

AUOptions is scheduled to auto-install.
Windows Internal Firewall is disabled.

FirstRunDisabled is set.

FW: Sygate Personal Firewall Pro v4.6 (Sygate Technologies, Inc.)
AV: avast! antivirus 4.7.1029 [VPS 000764-3] v4.7.1029 (ALWIL Software)

[HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabledxpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabledxpsp2res.dll,-22019"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

[HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabledxpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabledxpsp2res.dll,-22019"
"C:\\Program Files\\uTorrent\\uTorrent.exe"="C:\\Program Files\\uTorrent\\uTorrent.exe:*:Enabled:µTorrent"
"C:\\Documents and Settings\\Samu\\Desktop\\utorrent.exe"="C:\\Documents and Settings\\Samu\\Desktop\\utorrent.exe:*:Enabled:µTorrent"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\\Program Files\\FlashGet\\flashget.exe"="C:\\Program Files\\FlashGet\\flashget.exe:*:Enabled:Flashget"
"E:\\Pelit\\Electronic Arts\\Battlefield 2142 Demo\\BF2142.exe"="E:\\Pelit\\Electronic Arts\\Battlefield 2142 Demo\\BF2142.exe:*:Enabled:Battlefield 2"
"E:\\Pelit\\Electronic Arts\\Battlefield 2 Demo\\BF2.exe"="E:\\Pelit\\Electronic Arts\\Battlefield 2 Demo\\BF2.exe:*:Enabled:Battlefield 2"
"C:\\Documents and Settings\\Samu\\My Documents\\utorrent.exe"="C:\\Documents and Settings\\Samu\\My Documents\\utorrent.exe:*:Enabled:µTorrent"
"E:\\Pelit\\Sierra\\FEAR\\FEAR.exe"="E:\\Pelit\\Sierra\\FEAR\\FEAR.exe:*:Enabled:FEAR"
"E:\\Pelit\\Sierra\\FEAR\\FEARMP.exe"="E:\\Pelit\\Sierra\\FEAR\\FEARMP.exe:*:Enabled:FEAR"


-- Environment Variables -------------------------------------------------------

ALLUSERSPROFILE=C:\Documents and Settings\All Users
APPDATA=C:\Documents and Settings\Samu\Application Data
CLIENTNAME=Console
CommonProgramFiles=C:\Program Files\Common Files
COMPUTERNAME=TEHO_PC
ComSpec=C:\WINDOWS\system32\cmd.exe
FP_NO_HOST_CHECK=NO
HOMEDRIVE=C:
HOMEPATH=\Documents and Settings\Samu
LOGONSERVER=\\TEHO_PC
NUMBER_OF_PROCESSORS=2
OS=Windows_NT
Path=C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 6 Model 15 Stepping 6, GenuineIntel
PROCESSOR_LEVEL=6
PROCESSOR_REVISION=0f06
ProgramFiles=C:\Program Files
PROMPT=$P$G
SESSIONNAME=Console
SystemDrive=C:
SystemRoot=C:\WINDOWS
TEMP=C:\DOCUME~1\Samu\LOCALS~1\Temp
TMP=C:\DOCUME~1\Samu\LOCALS~1\Temp
USERDOMAIN=TEHO_PC
USERNAME=Samu
USERPROFILE=C:\Documents and Settings\Samu
windir=C:\WINDOWS


-- User Profiles ---------------------------------------------------------------

Samu (admin)


-- Add/Remove Programs ---------------------------------------------------------

--> "C:\Program Files\Creative\Sound Blaster X-Fi\Program\SETUP.EXE" /S /U /W
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0E5AA361-4B16-4282-B639-9E5B2B6A2EC8}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0E5AA361-4B16-4282-B639-9E5B2B6A2EC8}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{17E96A7F-AFE3-4171-87B1-583E376319E8}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{32903944-19A2-418C-901D-4BBAF4C55ABA}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{32903944-19A2-418C-901D-4BBAF4C55ABA}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4D8AA0B4-E890-4BF7-A9D1-8E63027E76D3}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4D8AA0B4-E890-4BF7-A9D1-8E63027E76D3}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6BF90A01-FA3F-42B9-A071-7D744409967E}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6BF90A01-FA3F-42B9-A071-7D744409967E}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{84F573D3-0F71-4768-978A-D35310E3FBA6}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{84F573D3-0F71-4768-978A-D35310E3FBA6}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A82F10CB-18B5-4EAC-AEF2-FA49CD565626}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B8DA9EB2-DBEF-4F0A-B90A-45B77D9E65B2}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B8DA9EB2-DBEF-4F0A-B90A-45B77D9E65B2}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CB99E420-8071-48F9-9567-4A53BE7569C4}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CB99E420-8071-48F9-9567-4A53BE7569C4}\setup.exe" -l0x9 /remove
--> rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
3DMark06 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7F3AD00A-1819-4B15-BB7D-08B3586336D7}\setup.exe" -l0x9 -removeonly
AC3Filter (remove only) --> C:\Program Files\AC3Filter\uninstall.exe
Adobe Flash Player 9 ActiveX --> C:\WINDOWS\system32\Macromed\Flash\FlashUtil9c.exe -uninstallUnlock
Adobe Flash Player Plugin --> C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 8.1.0 - Suomi --> MsiExec.exe /I{AC76BA86-7AD7-1035-7B44-A81000000003}
AGEIA PhysX v2.3.3 --> "C:\Program Files\AGEIA Technologies\uninstall.exe"
ApexDC++ 1.0.0 Beta 3 --> C:\Program Files\ApexDC++\uninst.exe
ASUSUpdate --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{587178E7-B1DF-494E-9838-FA4DD36E873C}\Setup.exe" -l0x9
Attansic Ethernet Utility --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1F698102-5739-441E-96F0-74F4EA540F06}\setup.exe" -l0x9 -removeonly
Attansic L1 Gigabit Ethernet Driver --> rundll32.exe C:\WINDOWS\system32\Attansic\L1\atcInst.dll,AtcUninst C:\WINDOWS\system32\Attansic\L1 x86 1969 1048 L1
avast! Antivirus --> rundll32 C:\PROGRA~1\ALWILS~1\Avast4\Setup\setiface.dll,RunSetup
AVG Anti-Spyware 7.5 --> C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\Uninstall.exe
Battlefield 2(TM) Demo --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8BECF123-B0EF-4E51-B7F3-923EFE15CC4A}\setup.exe" -l0x9 -removeonly
Battlefield 2142 Demo --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FD347316-609E-4149-983C-84B40338D38A}\setup.exe" -l0x9 -removeonly
Creative Audio Console --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{17E96A7F-AFE3-4171-87B1-583E376319E8}\setup.exe" -l0x9 /remove
DiRT --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{57B89E30-0BBA-4F20-9F2C-8E8CDE1CEDB6}\setup.exe" -l0x9 -removeonly
DivX Codec --> C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
DivX Content Uploader --> C:\Program Files\DivX\DivXContentUploaderUninstall.exe /CUPLOADER
DivX Web Player --> C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
DVD Shrink 3.2 --> "C:\Program Files\DVD Shrink\unins000.exe"
EVEREST Home Edition v2.20 --> "C:\Program files\Lavalys\EVEREST Home Edition\unins000.exe"
FAKEFACTORY Cinematic Mod --> "C:\WINDOWS\Uninstall\FAKEFACTORY_Cinematic\uninstall.exe" "/U:C:\WINDOWS\Uninstall\FAKEFACTORY_Cinematic\uninstall.xml"
FEAR --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2B653229-9854-4989-B780-D978F5F13EAB}\setup.exe" -l0x9 /zU -removeonly
ffdshow [rev 610] [2006-12-01] --> "C:\Program Files\ffdshow\unins000.exe"
FlashGet 1.9.2.1028 --> C:\Program Files\FlashGet\uninst.exe
Fraps (remove only) --> "C:\Fraps\uninstall.exe"
Futuremark Measurement Services Client --> RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\msc3.inf,DefaultUninstall,5
Ghost Recon Advanced Warfighter --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EFC97089-04D6-42CE-A707-A343B4A7D2CD}\setup.exe" -l0x9
GRAW Patch 1.35 --> "E:\Pelit\Ubisoft\Ghost Recon Advanced Warfighter\unins000.exe"
GTI Racing --> C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{EF0D610C-92BE-4D8F-BD33-9F658F8754F1} /Z"UNINSTALL"
Guitar Pro 5.2 --> "C:\Program Files\Guitar Pro 5\unins000.exe"
HijackThis 1.99.1 --> F:\Haittaohjelmien poisto\HijackThis.exe /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399) --> "C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
Java(TM) 6 Update 2 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160020}
JMB36X Raid Configurer --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}\setup.exe" -l0x9 -removeonly
Logitech Gaming Software --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5C1DA723-24FC-48AD-93BA-925695C3EF26}\setup.exe" -l0xb -removeonly
MagicISO RePacked by nwz --> MsiExec.exe /I{4D316C28-CE6A-4AA8-B880-041288CFC7B0}
Microsoft Compression Client Pack 1.0 for Windows XP --> "C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Office 2003 Finnish User Interface Pack --> MsiExec.exe /I{901E040B-6000-11D3-8CFE-0150048383C9}
Microsoft Office Professional Edition 2003 --> MsiExec.exe /I{90110409-6000-11D3-8CFE-0150048383C9}
Microsoft User-Mode Driver Framework Feature Pack 1.0 --> "C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable --> MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
MSXML 6.0 Parser (KB927977) --> MsiExec.exe /I{5A710547-B58E-488B-828D-CA9A25A0533C}
Nero 7.2.3.2 --> "C:\Program Files\Nero\unins000.exe"
NVIDIA Drivers --> C:\WINDOWS\system32\nvudisp.exe UninstallGUI
NVIDIA nTune --> C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF} /l1035
Oblivion --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{35CB6715-41F8-4F99-8881-6FC75BF054B0}\setup.exe" -l0x9 -removeonly
Oblivion mod manager 1.0.3 --> "E:\Pelit\Bethesda Softworks\Oblivion\obmm\uninstall\unins000.exe"
PC Probe II --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F7338FA3-DAB5-49B2-900D-0AFB5760C166}\setup.exe" -l0x9
PowerISO --> "C:\Program Files\PowerISO\uninstall.exe"
QuickTime Alternative 1.80 --> "C:\Program Files\QuickTime Alternative\unins000.exe"
Real Alternative 1.52 Lite --> "C:\Program Files\Real Alternative\unins000.exe"
RivaTuner v2.02 --> "C:\Program Files\RivaTuner v2.02\uninstall.exe"
Sound Blaster X-Fi --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{18F11181-EA1A-42AE-AF89-4867C7F7A6FA}\SETUP.EXE" -l0x9 /remove
SpeechRedist --> MsiExec.exe /X{8795CBED-55E2-4693-9F14-84EC446935BE}
Steam --> E:\Pelit\Steam\UNWISE.EXE E:\Pelit\Steam\INSTALL.LOG
Sygate Personal Firewall Pro --> MsiExec.exe /I{10B446B3-4DF4-4489-A168-8A98F7CD807E}
TaskSwitchXP --> C:\Program Files\TaskSwitchXP\uninst.exe
The Sims 2 --> E:\Pelit\Electronic Arts\The Sims 2\EAUninstall.exe
The Sims 2 Yöelämää --> E:\Pelit\Electronic Arts\The Sims 2 Yöelämää\EAUninstall.exe
The Sims™ 2 Lemmikkielämää --> E:\Pelit\Electronic Arts\The Sims 2 Lemmikkielämää\EAUninstall.exe
Tomb Raider: Anniversary --> "E:\Pelit\Steam\steam.exe" steam://uninstall/8000
Unreal Tournament 2004 --> E:\Pelit\UT2004\System\Setup.exe uninstall "UT2004"
VideoLAN VLC media player 0.8.6c --> C:\Program Files\VideoLAN\VLC\uninstall.exe
Winamp (remove only) --> "C:\Program Files\Winamp\UninstWA.exe"
Windows Communication Foundation --> MsiExec.exe /X{491DD792-AD81-429C-9EB4-86DD3D22E333}
Windows Imaging Component --> "C:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe"
Windows Live Messenger --> MsiExec.exe /I{DF6FEB75-A0D1-44E5-A754-0072D4967734}
Windows Live Sign-in Assistant --> MsiExec.exe /I{49672EC2-171B-47B4-8CE7-50D7806360D7}
Windows Media Format 11 runtime --> "C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Presentation Foundation --> MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
Windows Presentation Foundation Language Pack (FIN) --> MsiExec.exe /X{935FADCB-C25B-4F62-B9B4-F22C40431642}
Windows Vista Sounds Pack --> MsiExec.exe /I{E1230694-33DA-4E74-82E1-06CC9D545E9B}
Windows Workflow Foundation --> MsiExec.exe /I{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}
Windows Workflow Foundation FI Language Pack --> MsiExec.exe /I{8E5D0B52-BB72-46C6-8AB8-2B041D959594}
WinRAR archiver --> C:\Program Files\WinRAR\uninstall.exe
XML Paper Specification Shared Components Language Pack 1.0 --> "C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"
XML Paper Specification Shared Components Pack 1.0 -->
XPize 4.5.1 --> C:\WINDOWS\XPize\uninst.exe
Xvid 1.1.3 final uninstall --> "C:\Program Files\Xvid\unins000.exe"


-- Application Event Log -------------------------------------------------------

Event ID #10: Success
Event Submitted/Written: 08/10/2007 02:15:37 PM
Event Source: usnjsvc
Event Description:
The Messenger Sharing USN Journal Reader service started successfully.

Event ID #2: Success
Event Submitted/Written: 08/10/2007 01:23:48 AM
Event Source: usnjsvc
Event Description:
The Messenger Sharing USN Journal Reader service started successfully.



-- Security Event Log ----------------------------------------------------------

No Errors/Warnings found.


-- System Event Log ------------------------------------------------------------

Event ID #1740: Warning
Event Submitted/Written: 08/07/2007 11:45:20 AM
Event Source: W32Time
Event Description:
Aikapalvelu ei ole voinut synkronoida järjestelmän kelloa 49152 sekuntiin, koska
aikatoimittaja ei ole voinut toimittaa käytettävää aikaleimaa. Järjestelmän kelloa
ei ole synkronoitu.

Event ID #1716: Error
Event Submitted/Written: 08/07/2007 10:43:48 AM
Event Source: DCOM
Event Description:
Palvelin {46986115-84D6-459C-8F95-52DD653E532E} ei rekisteröitynyt DCOM:n kanssa annetun ajan sisällä.

Event ID #1714: Error
Event Submitted/Written: 08/07/2007 10:43:18 AM
Event Source: DCOM
Event Description:
Palvelin {46986115-84D6-459C-8F95-52DD653E532E} ei rekisteröitynyt DCOM:n kanssa annetun ajan sisällä.

Event ID #1710: Warning
Event Submitted/Written: 08/06/2007 11:06:33 PM
Event Source: BROWSER
Event Description:
Selaaja ei voinut noutaa palvelinluetteloa pääselaajalta \\ACERI verkossa \Device\NetBT_Tcpip_{64DE6505-F7C3-450D-970D-AED0990FB782}.
Virhekoodi on data.

Event ID #1568: Warning
Event Submitted/Written: 08/06/2007 01:44:57 PM
Event Source: W32Time
Event Description:
Aikapalvelu ei ole voinut synkronoida järjestelmän kelloa 49152 sekuntiin, koska
aikatoimittaja ei ole voinut toimittaa käytettävää aikaleimaa. Järjestelmän kelloa
ei ole synkronoitu.



-- End of Deckard's System Scanner: finished at 2007-08-10 at 15:21:35 ---------

 

Siellä oli .mui tiedostoja. Toi viesti tuli triplana.

 

Friday, August 10, 2007 7:09:07 PM
Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.93.0
Kaspersky Anti-Virus database last update: 10/08/2007
Kaspersky Anti-Virus database records: 378195
Scan Settings
Scan using the following antivirus database extended
Scan Archives true
Scan Mail Bases true
Scan Target My Computer
A:\
C:\
D:\
E:\
F:\
G:\
H:\
Scan Statistics
Total number of scanned objects 137947
Number of viruses found 5
Number of infected objects 11
Number of suspicious objects 0
Duration of the scan process 01:16:32

Infected Object Name Virus Name Last Action
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\Samu\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\Samu\Local Settings\Application Data\Microsoft\Messenger\samu--@hotmail.com\SharingMetadata\Logs\Dfsr00005.log Object is locked skipped
C:\Documents and Settings\Samu\Local Settings\Application Data\Microsoft\Messenger\samu--@hotmail.com\SharingMetadata\pending.dat Object is locked skipped
C:\Documents and Settings\Samu\Local Settings\Application Data\Microsoft\Messenger\samu--@hotmail.com\SharingMetadata\Working\database_7404_47F0_447_B3C0\dfsr.db Object is locked skipped
C:\Documents and Settings\Samu\Local Settings\Application Data\Microsoft\Messenger\samu--@hotmail.com\SharingMetadata\Working\database_7404_47F0_447_B3C0\fsr.log Object is locked skipped
C:\Documents and Settings\Samu\Local Settings\Application Data\Microsoft\Messenger\samu--@hotmail.com\SharingMetadata\Working\database_7404_47F0_447_B3C0\fsrtmp.log Object is locked skipped
C:\Documents and Settings\Samu\Local Settings\Application Data\Microsoft\Messenger\samu--@hotmail.com\SharingMetadata\Working\database_7404_47F0_447_B3C0\tmp.edb Object is locked skipped
C:\Documents and Settings\Samu\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\Samu\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\Samu\Local Settings\Application Data\Microsoft\Windows Live Contacts\samu--@hotmail.com\real\members.stg Object is locked skipped
C:\Documents and Settings\Samu\Local Settings\Application Data\Microsoft\Windows Live Contacts\samu--@hotmail.com\shadow\members.stg Object is locked skipped
C:\Documents and Settings\Samu\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Samu\Local Settings\Temp\Perflib_Perfdata_930.dat Object is locked skipped
C:\Documents and Settings\Samu\Local Settings\Temp\~DF806B.tmp Object is locked skipped
C:\Documents and Settings\Samu\Local Settings\Temp\~DF80B9.tmp Object is locked skipped
C:\Documents and Settings\Samu\Local Settings\Temp\~DFC72F.tmp Object is locked skipped
C:\Documents and Settings\Samu\Local Settings\Temp\~DFDC2E.tmp Object is locked skipped
C:\Documents and Settings\Samu\Local Settings\Temp\~ROMFN_00000930 Object is locked skipped
C:\Documents and Settings\Samu\Local Settings\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat Object is locked skipped
C:\Documents and Settings\Samu\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Samu\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\Samu\ntuser.dat.LOG Object is locked skipped
C:\Program Files\Alwil Software\Avast4\DATA\aswResp.dat Object is locked skipped
C:\Program Files\Alwil Software\Avast4\DATA\Avast4.db Object is locked skipped
C:\Program Files\Alwil Software\Avast4\DATA\log\AshWebSv.ws Object is locked skipped
C:\Program Files\Alwil Software\Avast4\DATA\log\aswMaiSv.log Object is locked skipped
C:\Program Files\Alwil Software\Avast4\DATA\log\nshield.log Object is locked skipped
C:\Program Files\Alwil Software\Avast4\DATA\report\Resident protection.txt Object is locked skipped
C:\Program Files\DAEMON Tools\SetupDTSB.exe Infected: not-a-virus:AdTool.Win32.WhenU.a skipped
C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe Infected: not-a-virus:AdTool.Win32.WhenU.j skipped
C:\Program Files\Sygate\SPF\debug.log Object is locked skipped
C:\Program Files\Sygate\SPF\rawlog.log Object is locked skipped
C:\Program Files\Sygate\SPF\seclog.log Object is locked skipped
C:\Program Files\Sygate\SPF\syslog.log Object is locked skipped
C:\Program Files\Sygate\SPF\tralog.log Object is locked skipped
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
C:\System Volume Information\_restore{1ABCE6D3-A53C-41E2-9E70-7ABF5CC3D913}\RP3\A0006640.exe Infected: not-a-virus:RiskTool.Win32.HideWindows skipped
C:\System Volume Information\_restore{1ABCE6D3-A53C-41E2-9E70-7ABF5CC3D913}\RP3\A0006654.exe Infected: not-a-virus:RiskTool.Win32.HideWindows skipped
C:\System Volume Information\_restore{1ABCE6D3-A53C-41E2-9E70-7ABF5CC3D913}\RP3\A0006660.exe/data.rar/pskill.exe Infected: not-a-virus:NetTool.Win32.PsKill.a skipped
C:\System Volume Information\_restore{1ABCE6D3-A53C-41E2-9E70-7ABF5CC3D913}\RP3\A0006660.exe/data.rar Infected: not-a-virus:NetTool.Win32.PsKill.a skipped
C:\System Volume Information\_restore{1ABCE6D3-A53C-41E2-9E70-7ABF5CC3D913}\RP3\A0006660.exe RarSFX: infected - 2 skipped
C:\System Volume Information\_restore{1ABCE6D3-A53C-41E2-9E70-7ABF5CC3D913}\RP42\A0010623.exe/data.rar/officekey.exe Infected: not-a-virusSWTool.Win32.RAS.a skipped
C:\System Volume Information\_restore{1ABCE6D3-A53C-41E2-9E70-7ABF5CC3D913}\RP42\A0010623.exe/data.rar Infected: not-a-virusSWTool.Win32.RAS.a skipped
C:\System Volume Information\_restore{1ABCE6D3-A53C-41E2-9E70-7ABF5CC3D913}\RP42\A0010623.exe RarSFX: infected - 2 skipped
C:\System Volume Information\_restore{1ABCE6D3-A53C-41E2-9E70-7ABF5CC3D913}\RP73\change.log Object is locked skipped
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
C:\WINDOWS\SchedLgU.Txt Object is locked skipped
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped
C:\WINDOWS\system32\cmdow.exe Infected: not-a-virus:RiskTool.Win32.HideWindows skipped
C:\WINDOWS\system32\config\Antivirus.Evt Object is locked skipped
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\default Object is locked skipped
C:\WINDOWS\system32\config\DEFAULT.LOG Object is locked skipped
C:\WINDOWS\system32\config\Internet.evt Object is locked skipped
C:\WINDOWS\system32\config\SAM Object is locked skipped
C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\SECURITY Object is locked skipped
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
C:\WINDOWS\system32\config\software Object is locked skipped
C:\WINDOWS\system32\config\SOFTWARE.LOG Object is locked skipped
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\system Object is locked skipped
C:\WINDOWS\system32\config\SYSTEM.LOG Object is locked skipped
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\Perflib_Perfdata_274.dat Object is locked skipped
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\Perflib_Perfdata_624.dat Object is locked skipped
C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp\_avast4_\Webshlock.txt Object is locked skipped
C:\WINDOWS\system32\drivers\sptd.sys Object is locked skipped
C:\WINDOWS\system32\h323log.txt Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
C:\WINDOWS\WindowsUpdate.log Object is locked skipped
E:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
E:\System Volume Information\_restore{1ABCE6D3-A53C-41E2-9E70-7ABF5CC3D913}\RP73\change.log Object is locked skipped
F:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
F:\System Volume Information\_restore{1ABCE6D3-A53C-41E2-9E70-7ABF5CC3D913}\RP73\change.log Object is locked skipped
Scan process completed.

 

Pysy puhtaana

-> Tyhjennä järjestelmänpalautus Ohjeet
Tyhjennä järjestelmänpalautuskansio ja luo uusi palautuspiste. Tämä puhdistaa palautuskansion mahdollisista haittaohjelmajäännöksistä.

-> Käytä CCleaneria -> CCleaner
Lataa ja asenna CCleaner. Puhdista väliaikaistiedostot ja -kansiot ohjelmalla säännöllisesti.

-> Asenna SpywareBlaster -> SpywareBlaster
SpywareBlaster estää haittaohjelmia asentumasta koneellesi. Ei kuluta muistia!
Opas saatavilla suomeksi! Nimimerkki Ad-Awaren opas

-> Asenna MVPS Hosts tiedosto -> MVPS Hosts
Estää koneesi yhteyden haitallisiin sivustoihin.
Opas saatavilla suomeksi! Nimimerkki Axelin opas

-> Vaihda selaimesi Firefoxiin -> Firefox
Firefox on nopeampi, turvallisempi ja parempi selain kuin Internet Explorer.

-> Pidä järjestelmäsi ajantasalla. -> Windows Update
Vieraile Windows Updatessa säännöllisesti.

-> Pidä palomuuri ja virustorjunta ajantasalla
Päivitä ja skannaa koneesi säännöllisesti virustorjuntaohjelmallasi.
ja hyvä myös escan http://koti.mbnet.fi/pattaya1/escanmwav.htm

->Pidä ohjelmistosi ajantasalla. -> Secunia Software Inspector
Secunia Software Inspector tutkii sinun järjestälmäsi ja ohjelmistosi puuttuvien turvallisuuspäivityksien osalta. Tavallinen tutkinta kestää normaalisti 5-40 sekuntia, kun läpikotainen (thorough system inspection) voi kestää useita minuutteja.

->Seuraa säännöllisesti viestintäviraston tietoja uusista haavoittuvuuksista -> CERT-FI

Jos tulevaisuudessa tulee haittaohjelmien kanssa ongelmia, älä epäröi laittaa Hijackthis-logia tarkistettavaksi!