Noen stjal wow passordet mitt (vedlagt logg)

[[StK]Bountyhunter(BF:V)]

Her er HJT loggen fra maskinen min. som topic sier så var det noen som hacka wow accounten min og sjal diverse items.

 

Har kjørt virus, spyware og rootkit scan, fant ingen ting...

 

Så derfor lurer jeg på om det er noe som ikke burde være her men som av programmene ikke oppdager.

 

Takker for all hjelp

 

 

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 12:19:12, on 15.06.2008

Platform: Windows Vista SP1 (WinNT 6.00.1905)

MSIE: Internet Explorer v7.00 (7.00.6001.18000)

Boot mode: Normal

 

Running processes:

C:\Program Files (x86)\Java\jre1.6.0_06\bin\jusched.exe

C:\Program Files (x86)\Avira\AntiVir PersonalEdition Classic\avgnt.exe

C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

C:\Program Files (x86)\SUPERAntiSpyware\SUPERAntiSpyware.exe

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Windows\SysWOW64\conime.exe

C:\Users\navnet mitt sensurert\Desktop\HiJackThis.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe

O1 - Hosts: ::1 localhost

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.6.0_06\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Påloggingshjelp for Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Java\jre1.6.0_06\bin\jusched.exe"

O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min

O4 - HKCU\..\Run: [NVIDIA nTune] "C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneCmd.exe" boot "C:\Users\navnsensurert\AppData\Local\NVIDIA Corporation\nTune\Profiles\osbootpf.nsu"

O4 - HKCU\..\Run: [steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent

O4 - HKCU\..\Run: [sUPERAntiSpyware] C:\Program Files (x86)\SUPERAntiSpyware\SUPERAntiSpyware.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre1.6.0_06\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre1.6.0_06\bin\ssv.dll

O13 - Gopher Prefix:

O20 - Winlogon Notify: !SASWinLogon - C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.dll

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Avira AntiVir Personal – Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir PersonalEdition Classic\sched.exe

O23 - Service: Avira AntiVir Personal – Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir PersonalEdition Classic\avguard.exe

O23 - Service: COMODO Firewall Pro Helper Service (cmdAgent) - Unknown owner - C:\Program Files\Comodo\Firewall\cmdagent.exe

O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Performance Service (nTuneService) - NVIDIA - C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: SiSoftware Database Agent Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XII\Win32\RpcDataSrv.exe

O23 - Service: SiSoftware Sandra Agent Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XII\RpcSandraSrv.exe

O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

 

--

End of file - 6444 bytes

 

 

Endret 20. mai 2009 av [StK]Bountyhunter(BF:V)

[r2d290]

HijackThis loggen ser ren ut. For å være helt sikker, kan du poste en Combofix-logg, så kommer det kanskje noen som kan se på den.

 

Last ned Combofix , og legg det på skrivebordet.

Kjør combofix.exe, og følg veiledningen.

 

Du bør ikke klikke på vinduet mens programmet kjører. Det kan føre til at PC-en fryser. Det lages en logg som du kopierer og limer inn i posten senere.

 

 

Mulig at du bare har vært litt uforsiktig og skrevet passordet mens noen har sett på?

Endret 15. juni 2008 av r2d290

[[StK]Bountyhunter(BF:V)]

Combofix ville ikke kjøre i vista 64 bit :/

 

Men ja er ganske sikker på at ingen har sett det, men har logget inn hos en venn en gang så kan jo være det? men det var sånn 1år siden eller noe ...

[norbat]

Combofix kjører dessverre ikke på 64 bits os

 

Se om du får kjørt dette:

Deckard, legg på skrivebord. Kjør dss.exe og følg veiledningen

[[StK]Bountyhunter(BF:V)]

Logg:

 

 

Deckard's System Scanner v20071014.68

Run by on 2008-06-15 13:07:05

Computer is in Normal Mode.

--------------------------------------------------------------------------------

 

-- Last 5 Restore Point(s) --

22: 2008-06-15 09:17:50 UTC - RP27 - Installed SUPERAntiSpyware Free Edition

21: 2008-06-13 15:50:24 UTC - RP26 - Scheduled Checkpoint

20: 2008-06-13 00:12:08 UTC - RP25 - Windows Update

19: 2008-06-12 00:32:22 UTC - RP10 - Windows Update

18: 2008-06-11 23:54:19 UTC - RP9 - Device Driver Package Install: NVIDIA Display adapters

 

 

-- First Restore Point --

1: 2008-06-11 18:40:26 UTC - RP11 - Device Driver Package Install: COMODO Network Service

 

 

Backed up registry hives.

Performed disk cleanup.

 

 

 

-- HijackThis (run as .exe) -------------------------------------------

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 13:10:16, on 15.06.2008

Platform: Windows Vista SP1 (WinNT 6.00.1905)

MSIE: Internet Explorer v7.00 (7.00.6001.18000)

Boot mode: Normal

 

Running processes:

C:\Program Files (x86)\Java\jre1.6.0_06\bin\jusched.exe

C:\Program Files (x86)\Avira\AntiVir PersonalEdition Classic\avgnt.exe

C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

C:\Program Files (x86)\SUPERAntiSpyware\SUPERAntiSpyware.exe

C:\Windows\SysWOW64\conime.exe

C:\Users\\Desktop\dss.exe

C:\Users\\Desktop\.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe

O1 - Hosts: ::1 localhost

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.6.0_06\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Påloggingshjelp for Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Java\jre1.6.0_06\bin\jusched.exe"

O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min

O4 - HKCU\..\Run: [NVIDIA nTune] "C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneCmd.exe" boot "C:\Users\\AppData\Local\NVIDIA Corporation\nTune\Profiles\osbootpf.nsu"

O4 - HKCU\..\Run: [steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent

O4 - HKCU\..\Run: [sUPERAntiSpyware] C:\Program Files (x86)\SUPERAntiSpyware\SUPERAntiSpyware.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre1.6.0_06\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre1.6.0_06\bin\ssv.dll

O13 - Gopher Prefix:

O20 - Winlogon Notify: !SASWinLogon - C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.dll

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Avira AntiVir Personal – Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir PersonalEdition Classic\sched.exe

O23 - Service: Avira AntiVir Personal – Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir PersonalEdition Classic\avguard.exe

O23 - Service: COMODO Firewall Pro Helper Service (cmdAgent) - Unknown owner - C:\Program Files\Comodo\Firewall\cmdagent.exe

O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Performance Service (nTuneService) - NVIDIA - C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: SiSoftware Database Agent Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XII\Win32\RpcDataSrv.exe

O23 - Service: SiSoftware Sandra Agent Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XII\RpcSandraSrv.exe

O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

 

--

End of file - 6426 bytes

 

-- File Associations -----------------------------------------------------------

 

All associations okay.

 

 

-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

 

R0 ACPI (Microsoft ACPI Driver) - c:\windows\system32\drivers\acpi.sys (file missing)

R0 atapi (IDE Channel) - c:\windows\system32\drivers\atapi.sys (file missing)

R0 CLFS (Common Log (CLFS)) - c:\windows\system32\clfs.sys (file missing)

R0 crcdisk (Crcdisk Filter Driver) - c:\windows\system32\drivers\crcdisk.sys (file missing)

R0 disk (Disk Driver) - c:\windows\system32\drivers\disk.sys (file missing)

R0 Ecache (ReadyBoost Caching Driver) - c:\windows\system32\drivers\ecache.sys (file missing)

R0 FileInfo (File Information FS MiniFilter) - c:\windows\system32\drivers\fileinfo.sys (file missing)

R0 FltMgr - c:\windows\system32\drivers\fltmgr.sys (file missing)

R0 KSecDD - c:\windows\system32\drivers\ksecdd.sys (file missing)

R0 MountMgr (Mount Point Manager) - c:\windows\system32\drivers\mountmgr.sys (file missing)

R0 msisadrv (ISA/EISA Class Driver) - c:\windows\system32\drivers\msisadrv.sys (file missing)

R0 Mup - c:\windows\system32\drivers\mup.sys (file missing)

R0 NDIS (NDIS System Driver) - c:\windows\system32\drivers\ndis.sys (file missing)

R0 nvraid (NVIDIA nForce RAID Driver ) - c:\windows\system32\drivers\nvraid.sys (file missing)

R0 nvrd64 (NVIDIA nForce RAID Driver) - c:\windows\system32\drivers\nvrd64.sys (file missing)

R0 nvstor - c:\windows\system32\drivers\nvstor.sys (file missing)

R0 nvstor64 - c:\windows\system32\drivers\nvstor64.sys (file missing)

R0 partmgr (Partition Manager) - c:\windows\system32\drivers\partmgr.sys (file missing)

R0 pci (PCI Bus Driver) - c:\windows\system32\drivers\pci.sys (file missing)

R0 pciide - c:\windows\system32\drivers\pciide.sys (file missing)

R0 spldr (Security Processor Loader Driver) - c:\windows\system32\drivers\spldr.sys (file missing)

R0 Tcpip (TCP/IP Protocol Driver) - c:\windows\system32\drivers\tcpip.sys (file missing)

R0 volmgr (Volume Manager Driver) - c:\windows\system32\drivers\volmgr.sys (file missing)

R0 volmgrx (Dynamic Volume Manager) - c:\windows\system32\drivers\volmgrx.sys (file missing)

R0 volsnap (Storage volumes) - c:\windows\system32\drivers\volsnap.sys (file missing)

R0 Wd (Microsoft Watchdog Timer Driver) - c:\windows\system32\drivers\wd.sys (file missing)

R0 Wdf01000 (Kernel Mode Driver Frameworks service) - c:\windows\system32\drivers\wdf01000.sys (file missing)

R1 AFD (Ancilliary Function Driver for Winsock) - c:\windows\system32\drivers\afd.sys (file missing)

R1 cdrom (CD-ROM Driver) - c:\windows\system32\drivers\cdrom.sys (file missing)

R1 cmdGuard (COMODO Firewall Pro Sandbox Driver) - c:\windows\system32\drivers\cmdguard.sys (file missing)

R1 cmdHlp (COMODO Firewall Pro Helper Driver) - c:\windows\system32\drivers\cmdhlp.sys (file missing)

R1 DfsC (DFS Namespace Client Driver) - c:\windows\system32\drivers\dfsc.sys (file missing)

R1 kbdclass (Keyboard Class Driver) - c:\windows\system32\drivers\kbdclass.sys (file missing)

R1 kbdhid (Keyboard HID Driver) - c:\windows\system32\drivers\kbdhid.sys (file missing)

R1 mouclass (Mouse Class Driver) - c:\windows\system32\drivers\mouclass.sys (file missing)

R1 Msfs - c:\windows\system32\drivers\msfs.sys (file missing)

R1 NetBIOS (NetBIOS Interface) - c:\windows\system32\drivers\netbios.sys (file missing)

R1 netbt - c:\windows\system32\drivers\netbt.sys (file missing)

R1 Npfs - c:\windows\system32\drivers\npfs.sys (file missing)

R1 nsiproxy (NSI proxy service) - c:\windows\system32\drivers\nsiproxy.sys (file missing)

R1 Null - c:\windows\system32\drivers\null.sys (file missing)

R1 PSched (QoS Packet Scheduler) - c:\windows\system32\drivers\pacer.sys (file missing)

R1 RasAcd (Remote Access Auto Connection Driver) - c:\windows\system32\drivers\rasacd.sys (file missing)

R1 rdbss (Redirected Buffering Sub Sysytem) - c:\windows\system32\drivers\rdbss.sys (file missing)

R1 RDPCDD - c:\windows\system32\drivers\rdpcdd.sys (file missing)

R1 RDPENCDD (RDP Encoder Mirror Driver) - c:\windows\system32\drivers\rdpencdd.sys (file missing)

R1 Serial (Serial port driver) - c:\windows\system32\drivers\serial.sys (file missing)

R1 Smb (Message-oriented TCP/IP and TCP/IPv6 Protocol (SMB session)) - c:\windows\system32\drivers\smb.sys (file missing)

R1 tdx (NetIO Legacy TDI Support Driver) - c:\windows\system32\drivers\tdx.sys (file missing)

R1 TermDD (Terminal Device Driver) - c:\windows\system32\drivers\termdd.sys (file missing)

R1 VgaSave - c:\windows\system32\drivers\vga.sys (file missing)

R1 Wanarpv6 (Remote Access IPv6 ARP Driver) - c:\windows\system32\drivers\wanarp.sys (file missing)

R2 avgntflt - c:\windows\system32\drivers\avgntflt.sys (file missing)

R2 lltdio (Link-Layer Topology Discovery Mapper I/O Driver) - c:\windows\system32\drivers\lltdio.sys (file missing)

R2 luafv (UAC File Virtualization) - c:\windows\system32\drivers\luafv.sys (file missing)

R2 PEAUTH - c:\windows\system32\drivers\peauth.sys (file missing)

R2 rspndr (Link-Layer Topology Discovery Responder) - c:\windows\system32\drivers\rspndr.sys (file missing)

R2 secdrv (Security Driver) - c:\windows\system32\drivers\secdrv.sys (file missing)

R2 tcpipreg (TCP/IP Registry Compatibility) - c:\windows\system32\drivers\tcpipreg.sys (file missing)

R3 AsyncMac (RAS Asynchronous Media Driver) - c:\windows\system32\drivers\asyncmac.sys (file missing)

R3 bowser - c:\windows\system32\drivers\bowser.sys (file missing)

R3 DXGKrnl (LDDM Graphics Subsystem) - c:\windows\system32\drivers\dxgkrnl.sys (file missing)

R3 fdc (Floppy Disk Controller Driver) - c:\windows\system32\drivers\fdc.sys (file missing)

R3 HdAudAddService (Microsoft 1.1 UAA Function Driver for High Definition Audio Service) - c:\windows\system32\drivers\hdaudio.sys (file missing)

R3 HDAudBus (Microsoft UAA Bus Driver for High Definition Audio) - c:\windows\system32\drivers\hdaudbus.sys (file missing)

R3 HidUsb (Microsoft HID Class Driver) - c:\windows\system32\drivers\hidusb.sys (file missing)

R3 HTTP - c:\windows\system32\drivers\http.sys (file missing)

R3 Inspect (Comodo Firewall Network Driver) - c:\windows\system32\drivers\inspect.sys (file missing)

R3 intelppm (Intel Processor Driver) - c:\windows\system32\drivers\intelppm.sys (file missing)

R3 iScsiPrt (iScsiPort Driver) - c:\windows\system32\drivers\msiscsi.sys (file missing)

R3 ksthunk (Kernel Streaming Thunks) - c:\windows\system32\drivers\ksthunk.sys (file missing)

R3 monitor (Microsoft Monitor Class Function Driver Service) - c:\windows\system32\drivers\monitor.sys (file missing)

R3 mouhid (Mouse HID Driver) - c:\windows\system32\drivers\mouhid.sys (file missing)

R3 mpsdrv (Windows Firewall Authorization Driver) - c:\windows\system32\drivers\mpsdrv.sys (file missing)

R3 MRxDAV (WebDav Client Redirector Driver) - c:\windows\system32\drivers\mrxdav.sys (file missing)

R3 mrxsmb (SMB MiniRedirector Wrapper and Engine) - c:\windows\system32\drivers\mrxsmb.sys (file missing)

R3 mrxsmb10 (SMB 1.x MiniRedirector) - c:\windows\system32\drivers\mrxsmb10.sys (file missing)

R3 mrxsmb20 (SMB 2.0 MiniRedirector) - c:\windows\system32\drivers\mrxsmb20.sys (file missing)

R3 mssmbios (Microsoft System Management BIOS Driver) - c:\windows\system32\drivers\mssmbios.sys (file missing)

R3 NdisTapi (Remote Access NDIS TAPI Driver) - c:\windows\system32\drivers\ndistapi.sys (file missing)

R3 NdisWan (Remote Access NDIS WAN Driver) - c:\windows\system32\drivers\ndiswan.sys (file missing)

R3 NDProxy (NDIS Proxy) - c:\windows\system32\drivers\ndproxy.sys (file missing)

R3 Ntfs - c:\windows\system32\drivers\ntfs.sys (file missing)

R3 NVENETFD (NVIDIA nForce Networking Controller Driver) - c:\windows\system32\drivers\nvmfdx64.sys (file missing)

R3 nvlddmkm - c:\windows\system32\drivers\nvlddmkm.sys (file missing)

R3 ohci1394 (Texas Instruments OHCI Compliant IEEE 1394 Host Controller) - c:\windows\system32\drivers\ohci1394.sys (file missing)

R3 PptpMiniport (WAN Miniport (PPTP)) - c:\windows\system32\drivers\raspptp.sys (file missing)

R3 Rasl2tp (WAN Miniport (L2TP)) - c:\windows\system32\drivers\rasl2tp.sys (file missing)

R3 RasPppoe (Remote Access PPPOE Driver) - c:\windows\system32\drivers\raspppoe.sys (file missing)

R3 RasSstp (WAN Miniport (SSTP)) - c:\windows\system32\drivers\rassstp.sys (file missing)

R3 Serenum (Serenum Filter Driver) - c:\windows\system32\drivers\serenum.sys (file missing)

R3 srv - c:\windows\system32\drivers\srv.sys (file missing)

R3 srv2 - c:\windows\system32\drivers\srv2.sys (file missing)

R3 srvnet - c:\windows\system32\drivers\srvnet.sys (file missing)

R3 swenum (Software Bus Driver) - c:\windows\system32\drivers\swenum.sys (file missing)

R3 tunmp (Microsoft Tun Miniport Adapter Driver) - c:\windows\system32\drivers\tunmp.sys (file missing)

R3 tunnel (Microsoft IPv6 Tunnel Miniport Adapter Driver) - c:\windows\system32\drivers\tunnel.sys (file missing)

R3 umbus (UMBus Enumerator Driver) - c:\windows\system32\drivers\umbus.sys (file missing)

R3 usbccgp (Microsoft USB Generic Parent Driver) - c:\windows\system32\drivers\usbccgp.sys (file missing)

R3 usbehci (Microsoft USB 2.0 Enhanced Host Controller Miniport Driver) - c:\windows\system32\drivers\usbehci.sys (file missing)

R3 usbhub (USB2 Enabled Hub) - c:\windows\system32\drivers\usbhub.sys (file missing)

R3 usbohci (Microsoft USB Open Host Controller Miniport Driver) - c:\windows\system32\drivers\usbohci.sys (file missing)

R4 cdfs (CD/DVD File System Reader) - c:\windows\system32\drivers\cdfs.sys (file missing)

 

S3 agp440 (Intel AGP Bus Filter) - c:\windows\system32\drivers\agp440.sys (file missing)

S3 BrFiltLo (Brother USB Mass-Storage Lower Filter Driver) - c:\windows\system32\drivers\brfiltlo.sys (file missing)

S3 BrFiltUp (Brother USB Mass-Storage Upper Filter Driver) - c:\windows\system32\drivers\brfiltup.sys (file missing)

S3 BrUsbSer (Brother MFC USB Serial WDM Driver) - c:\windows\system32\drivers\brusbser.sys (file missing)

S3 drmkaud (Microsoft Kernel DRM Audio Descrambler) - c:\windows\system32\drivers\drmkaud.sys (file missing)

S3 E1G60 (Intel® PRO/1000 NDIS 6 Adapter Driver) - c:\windows\system32\drivers\e1g6032e.sys (file missing)

S3 exfat (exFAT File System Driver) - c:\windows\system32\drivers\exfat.sys (file missing)

S3 fastfat (FAT12/16/32 File System Driver) - c:\windows\system32\drivers\fastfat.sys (file missing)

S3 Filetrace - c:\windows\system32\drivers\filetrace.sys (file missing)

S3 flpydisk (Floppy Disk Driver) - c:\windows\system32\drivers\flpydisk.sys (file missing)

S3 gagp30kx (Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms) - c:\windows\system32\drivers\gagp30kx.sys (file missing)

S3 IpFilterDriver (IP Traffic Filter Driver) - c:\windows\system32\drivers\ipfltdrv.sys (file missing)

S3 IPNAT (IP Network Address Translator) - c:\windows\system32\drivers\ipnat.sys (file missing)

S3 IRENUM (IR Bus Enumerator) - c:\windows\system32\drivers\irenum.sys (file missing)

S3 Modem - c:\windows\system32\drivers\modem.sys (file missing)

S3 MSKSSRV (Microsoft Streaming Service Proxy) - c:\windows\system32\drivers\mskssrv.sys (file missing)

S3 MSPCLOCK (Microsoft Streaming Clock Proxy) - c:\windows\system32\drivers\mspclock.sys (file missing)

S3 MSPQM (Microsoft Streaming Quality Manager Proxy) - c:\windows\system32\drivers\mspqm.sys (file missing)

S3 MsRPC - c:\windows\system32\drivers\msrpc.sys (file missing)

S3 MSTEE (Microsoft Streaming Tee/Sink-to-Sink Converter) - c:\windows\system32\drivers\mstee.sys (file missing)

S3 NativeWifiP (NativeWiFi Filter) - c:\windows\system32\drivers\nwifi.sys (file missing)

S3 Ndisuio (NDIS Usermode I/O Protocol) - c:\windows\system32\drivers\ndisuio.sys (file missing)

S3 nv_agp (NVIDIA nForce AGP Bus Filter) - c:\windows\system32\drivers\nv_agp.sys (file missing)

S3 QWAVEdrv (QWAVE driver) - c:\windows\system32\drivers\qwavedrv.sys (file missing)

S3 RDPWD (RDP Winstation Driver) - c:\windows\system32\drivers\rdpwd.sys (file missing)

S3 sffp_mmc (SFF Storage Protocol Driver for MMC) - c:\windows\system32\drivers\sffp_mmc.sys (file missing)

S3 sffp_sd (SFF Storage Protocol Driver for SDBus) - c:\windows\system32\drivers\sffp_sd.sys (file missing)

S3 Tcpip6 (Microsoft IPv6 Protocol Driver) - c:\windows\system32\drivers\tcpip.sys (file missing)

S3 TDPIPE - c:\windows\system32\drivers\tdpipe.sys (file missing)

S3 TDTCP - c:\windows\system32\drivers\tdtcp.sys (file missing)

S3 tssecsrv (Terminal Services Security Filter Driver) - c:\windows\system32\drivers\tssecsrv.sys (file missing)

S3 uagp35 (Microsoft AGPv3.5 Filter) - c:\windows\system32\drivers\uagp35.sys (file missing)

S3 uliagpkx (Uli AGP Bus Filter) - c:\windows\system32\drivers\uliagpkx.sys (file missing)

S3 USBSTOR (USB Mass Storage Driver) - c:\windows\system32\drivers\usbstor.sys (file missing)

S3 vga - c:\windows\system32\drivers\vgapnp.sys (file missing)

S3 Wanarp (Remote Access IP ARP Driver) - c:\windows\system32\drivers\wanarp.sys (file missing)

S3 WUDFRd - c:\windows\system32\drivers\wudfrd.sys (file missing)

S4 adp94xx - c:\windows\system32\drivers\adp94xx.sys (file missing)

S4 adpahci - c:\windows\system32\drivers\adpahci.sys (file missing)

S4 adpu160m - c:\windows\system32\drivers\adpu160m.sys (file missing)

S4 adpu320 - c:\windows\system32\drivers\adpu320.sys (file missing)

S4 aic78xx - c:\windows\system32\drivers\djsvs.sys (file missing)

S4 aliide - c:\windows\system32\drivers\aliide.sys (file missing)

S4 amdide - c:\windows\system32\drivers\amdide.sys (file missing)

S4 AmdK8 (AMD K8 Processor Driver) - c:\windows\system32\drivers\amdk8.sys (file missing)

S4 arc - c:\windows\system32\drivers\arc.sys (file missing)

S4 arcsas - c:\windows\system32\drivers\arcsas.sys (file missing)

S4 blbdrive - c:\windows\system32\drivers\blbdrive.sys (file missing)

S4 Brserid (Brother MFC Serial Port Interface Driver (WDM)) - c:\windows\system32\drivers\brserid.sys (file missing)

S4 BrSerWdm (Brother WDM Serial driver) - c:\windows\system32\drivers\brserwdm.sys (file missing)

S4 BrUsbMdm (Brother MFC USB Fax Only Modem) - c:\windows\system32\drivers\brusbmdm.sys (file missing)

S4 BTHMODEM (Bluetooth Serial Communications Driver) - c:\windows\system32\drivers\bthmodem.sys (file missing)

S4 circlass (Consumer IR Devices) - c:\windows\system32\drivers\circlass.sys (file missing)

S4 cmdide - c:\windows\system32\drivers\cmdide.sys (file missing)

S4 Compbatt (Microsoft Composite Battery Driver) - c:\windows\system32\drivers\compbatt.sys (file missing)

S4 elxstor - c:\windows\system32\drivers\elxstor.sys (file missing)

S4 ErrDev (Microsoft Hardware Error Device Driver) - c:\windows\system32\drivers\errdev.sys (file missing)

S4 HidBth (Microsoft Bluetooth HID Miniport) - c:\windows\system32\drivers\hidbth.sys (file missing)

S4 HidIr (Microsoft Infrared HID Driver) - c:\windows\system32\drivers\hidir.sys (file missing)

S4 HpCISSs - c:\windows\system32\drivers\hpcisss.sys (file missing)

S4 i2omp - c:\windows\system32\drivers\i2omp.sys (file missing)

S4 i8042prt (i8042 Keyboard and PS/2 Mouse Port Driver) - c:\windows\system32\drivers\i8042prt.sys (file missing)

S4 iaStorV (Intel RAID Controller Vista) - c:\windows\system32\drivers\iastorv.sys (file missing)

S4 iirsp - c:\windows\system32\drivers\iirsp.sys (file missing)

S4 intelide - c:\windows\system32\drivers\intelide.sys (file missing)

S4 IPMIDRV - c:\windows\system32\drivers\ipmidrv.sys (file missing)

S4 isapnp (PnP ISA/EISA Bus Driver) - c:\windows\system32\drivers\isapnp.sys (file missing)

S4 iteatapi (ITEATAPI_Service_Install) - c:\windows\system32\drivers\iteatapi.sys (file missing)

S4 iteraid (ITERAID_Service_Install) - c:\windows\system32\drivers\iteraid.sys (file missing)

S4 LSI_FC - c:\windows\system32\drivers\lsi_fc.sys (file missing)

S4 LSI_SAS - c:\windows\system32\drivers\lsi_sas.sys (file missing)

S4 LSI_SCSI - c:\windows\system32\drivers\lsi_scsi.sys (file missing)

S4 megasas - c:\windows\system32\drivers\megasas.sys (file missing)

S4 MegaSR - c:\windows\system32\drivers\megasr.sys (file missing)

S4 mpio (Microsoft Multi-Path Bus Driver) - c:\windows\system32\drivers\mpio.sys (file missing)

S4 Mraid35x - c:\windows\system32\drivers\mraid35x.sys (file missing)

S4 msahci - c:\windows\system32\drivers\msahci.sys (file missing)

S4 msdsm (Microsoft Multi-Path Device Specific Module) - c:\windows\system32\drivers\msdsm.sys (file missing)

S4 nfrd960 - c:\windows\system32\drivers\nfrd960.sys (file missing)

S4 Parport (Parallel port driver) - c:\windows\system32\drivers\parport.sys (file missing)

S4 pcmcia - c:\windows\system32\drivers\pcmcia.sys (file missing)

S4 Processor (Processor Driver) - c:\windows\system32\drivers\processr.sys (file missing)

S4 ql2300 (QLogic Fibre Channel Miniport Driver) - c:\windows\system32\drivers\ql2300.sys (file missing)

S4 ql40xx (QLogic iSCSI Miniport Driver) - c:\windows\system32\drivers\ql40xx.sys (file missing)

S4 rdpdr (Terminal Server Device Redirector Driver) - c:\windows\system32\drivers\rdpdr.sys (file missing)

S4 sbp2port (SBP-2 Transport/Protocol Bus Driver) - c:\windows\system32\drivers\sbp2port.sys (file missing)

S4 sermouse (Serial Mouse Driver) - c:\windows\system32\drivers\sermouse.sys (file missing)

S4 sffdisk (SFF Storage Class Driver) - c:\windows\system32\drivers\sffdisk.sys (file missing)

S4 sfloppy (High-Capacity Floppy Disk Drive) - c:\windows\system32\drivers\sfloppy.sys (file missing)

S4 SiSRaid2 - c:\windows\system32\drivers\sisraid2.sys (file missing)

S4 SiSRaid4 - c:\windows\system32\drivers\sisraid4.sys (file missing)

S4 Sym_hi - c:\windows\system32\drivers\sym_hi.sys (file missing)

S4 Sym_u3 - c:\windows\system32\drivers\sym_u3.sys (file missing)

S4 Symc8xx - c:\windows\system32\drivers\symc8xx.sys (file missing)

S4 udfs - c:\windows\system32\drivers\udfs.sys (file missing)

S4 uliahci - c:\windows\system32\drivers\uliahci.sys (file missing)

S4 UlSata - c:\windows\system32\drivers\ulsata.sys (file missing)

S4 ulsata2 - c:\windows\system32\drivers\ulsata2.sys (file missing)

S4 usbcir (eHome Infrared Receiver (USBCIR)) - c:\windows\system32\drivers\usbcir.sys (file missing)

S4 usbprint (Microsoft USB PRINTER Class) - c:\windows\system32\drivers\usbprint.sys (file missing)

S4 usbuhci (Microsoft USB Universal Host Controller Miniport Driver) - c:\windows\system32\drivers\usbuhci.sys (file missing)

S4 viaide - c:\windows\system32\drivers\viaide.sys (file missing)

S4 vsmraid - c:\windows\system32\drivers\vsmraid.sys (file missing)

S4 WacomPen (Wacom Serial Pen HID Driver) - c:\windows\system32\drivers\wacompen.sys (file missing)

S4 WmiAcpi (Microsoft Windows Management Interface for ACPI) - c:\windows\system32\drivers\wmiacpi.sys (file missing)

S4 ws2ifsl (Winsock IFS driver) - c:\windows\system32\drivers\ws2ifsl.sys (file missing)

 

 

-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

 

R2 AntiVirScheduler (Avira AntiVir Personal – Free Antivirus Scheduler) - "c:\program files (x86)\avira\antivir personaledition classic\sched.exe" <Not Verified; Avira GmbH; AntiVir Workstation>

R2 nTuneService (Performance Service) - c:\program files (x86)\nvidia corporation\ntune\ntuneservice.exe /startservice

R2 nvsvc (NVIDIA Display Driver Service) - c:\windows\system32\nvvsvc.exe (file missing)

R2 SamSs (Security Accounts Manager) - c:\windows\system32\lsass.exe (file missing)

R2 slsvc (Software Licensing) - c:\windows\system32\slsvc.exe (file missing)

R2 Spooler (Print Spooler) - c:\windows\system32\spoolsv.exe (file missing)

 

S3 ALG (Application Layer Gateway Service) - c:\windows\system32\alg.exe (file missing)

S3 DFSR (DFS Replication) - c:\windows\system32\dfsr.exe (file missing)

S3 KeyIso (CNG Key Isolation) - c:\windows\system32\lsass.exe (file missing)

S3 MSDTC (Distributed Transaction Coordinator) - c:\windows\system32\msdtc.exe (file missing)

S3 Netlogon - c:\windows\system32\lsass.exe (file missing)

S3 ProtectedStorage (Protected Storage) - c:\windows\system32\lsass.exe (file missing)

S3 RpcLocator (Remote Procedure Call (RPC) Locator) - c:\windows\system32\locator.exe (file missing)

S3 SNMPTRAP (SNMP Trap) - c:\windows\system32\snmptrap.exe (file missing)

S3 Steam Client Service - c:\program files (x86)\common files\steam\steamservice.exe /runasservice

S3 UI0Detect (Interactive Services Detection) - c:\windows\system32\ui0detect.exe (file missing)

S3 vds (Virtual Disk) - c:\windows\system32\vds.exe (file missing)

S3 VSS (Volume Shadow Copy) - c:\windows\system32\vssvc.exe (file missing)

S3 wmiApSrv (WMI Performance Adapter) - c:\windows\system32\wbem\wmiapsrv.exe (file missing)

 

 

-- Device Manager: Disabled ----------------------------------------------------

 

No disabled devices found.

 

 

-- Files created between 2008-05-15 and 2008-06-15 -----------------------------

 

2008-06-15 12:15:53 0 d-------- C:\327882R2FWJFW

2008-06-15 11:42:18 0 d-------- C:\Users\All Users\TEMP

2008-06-15 11:22:17 118784 --a------ C:\Windows\system32\MSSTDFMT.DLL <Not Verified; Microsoft Corporation; MSSTDFMT Object Library>

2008-06-15 11:22:11 0 d-------- C:\Program Files (x86)\SpywareBlaster

2008-06-15 11:18:29 0 d-------- C:\Users\All Users\SUPERAntiSpyware.com

2008-06-15 11:18:08 0 d-------- C:\Program Files (x86)\SUPERAntiSpyware

2008-06-15 11:17:39 0 d-------- C:\Program Files (x86)\Common Files\Wise Installation Wizard

2008-06-14 03:09:45 180224 --a------ C:\Windows\system32\xvidvfw.dll

2008-06-14 03:09:45 765952 --a------ C:\Windows\system32\xvidcore.dll

2008-06-14 03:09:45 0 d-------- C:\Program Files (x86)\Xvid

2008-06-13 22:42:18 0 d-------- C:\Program Files (x86)\VideoLAN

2008-06-13 16:40:04 0 d-------- C:\Program Files (x86)\Winamp

2008-06-13 01:47:27 0 d-------- C:\Users\All Users\Avira

2008-06-13 01:47:27 0 d-------- C:\Program Files (x86)\Avira

2008-06-13 01:31:51 0 d-------- C:\Program Files (x86)\Iometer.org

2008-06-13 01:30:16 0 d-------- C:\Program Files (x86)\Simpli Software

2008-06-13 01:10:44 0 d-------- C:\Program Files (x86)\CCleaner

2008-06-12 11:38:06 0 d-------- C:\Windows\Panther

2008-06-12 11:37:53 0 d--hs---- C:\Boot

2008-06-12 02:31:47 0 d-------- C:\Windows\Internet Logs

2008-06-12 02:29:16 0 d-------- C:\Nedlastinger

2008-06-12 02:28:25 0 d--hs---- C:\Windows\Installer

2008-06-12 02:18:26 0 d-------- C:\Multimedia

2008-06-12 01:57:52 0 d-------- C:\Users\All Users\NVIDIA

2008-06-12 01:54:09 0 d-------- C:\Program Files (x86)\Common Files\InstallShield

2008-06-12 01:54:07 0 d-------- C:\NVIDIA

2008-06-12 01:51:59 0 d-------- C:\NV37762760.TMP

2008-06-12 01:47:34 0 dr------- C:\Users\\Searches

2008-06-12 01:47:27 0 dr------- C:\Users\\Contacts

2008-06-12 01:47:23 0 dr------- C:\Users\\Videos

2008-06-12 01:47:23 0 d--hs---- C:\Users\\Templates

2008-06-12 01:47:23 0 d--hs---- C:\Users\\Start Menu

2008-06-12 01:47:23 0 d--hs---- C:\Users\\SendTo

2008-06-12 01:47:23 0 dr------- C:\Users\\Saved Games

2008-06-12 01:47:23 0 d--hs---- C:\Users\\Recent

2008-06-12 01:47:23 0 d--hs---- C:\Users\\PrintHood

2008-06-12 01:47:23 0 dr------- C:\Users\\Pictures

2008-06-12 01:47:23 1310720 --ahs---- C:\Users\\NTUSER.DAT

2008-06-12 01:47:23 0 d--hs---- C:\Users\NetHood

2008-06-12 01:47:23 0 d--hs---- C:\Users\\My Documents

2008-06-12 01:47:23 0 dr------- C:\Users\\Music

2008-06-12 01:47:23 0 d--hs---- C:\Users\\Local Settings

2008-06-12 01:47:23 0 dr------- C:\Users\\Links

2008-06-12 01:47:23 0 dr------- C:\Users\\Favorites

2008-06-12 01:47:23 0 dr------- C:\Users\\Downloads

2008-06-12 01:47:23 0 dr------- C:\Users\\Documents

2008-06-12 01:47:23 0 dr------- C:\Users\\Desktop

2008-06-12 01:47:23 0 d--hs---- C:\Users\\Cookies

2008-06-12 01:47:23 0 d--hs---- C:\Users\\Application Data

2008-06-12 01:47:23 0 d--h----- C:\Users\\AppData

2008-06-12 01:46:55 0 d-------- C:\Users\All Users\Steam

2008-06-12 01:46:41 0 d-------- C:\Users\All Users\PopCap Games

2008-06-12 01:45:19 0 d-------- C:\Windows\Debug

2008-06-12 01:41:54 0 d-------- C:\Program Files (x86)\Common Files\Steam

2008-06-12 01:41:53 0 d-------- C:\Program Files (x86)\Steam

2008-06-12 01:41:14 0 d-------- C:\Windows\SoftwareDistribution

2008-06-12 01:39:26 262144 --a------ C:\Windows\system32\wrap_oal.dll <Not Verified; Creative Labs; Creative Labs OpenAL32>

2008-06-12 01:39:21 86016 --a------ C:\Windows\system32\OpenAL32.dll <Not Verified; Portions © Creative Labs Inc. and NVIDIA Corp.; Standard OpenAL Library>

2008-06-12 01:39:13 0 d-------- C:\Windows\Prefetch

2008-06-12 01:39:12 0 d--hs---- C:\System Volume Information

2008-06-12 01:36:30 0 d-------- C:\Windows\system32\Futuremark

2008-06-12 01:36:30 3972 --a------ C:\Windows\system32\drivers\PciBus.sys

2008-06-12 01:36:04 0 d-------- C:\Program Files (x86)\Futuremark

2008-06-12 01:19:08 0 d--h----- C:\Program Files (x86)\InstallShield Installation Information

2008-06-12 01:19:04 0 d-------- C:\Program Files (x86)\NVIDIA Corporation

2008-06-12 01:05:42 0 d-------- C:\Windows\nvidia icons

2008-06-12 01:05:38 0 d-------- C:\Windows\nvtmpinst

2008-06-12 01:02:36 0 d-------- C:\Windows\Sun

2008-06-12 01:02:04 0 d-------- C:\Program Files (x86)\Java

2008-06-12 01:01:52 0 d-------- C:\Program Files (x86)\Common Files\Java

2008-06-11 21:14:40 0 d-------- C:\Program Files (x86)\World of Warcraft

2008-06-11 21:03:26 0 d-------- C:\Windows\PCHEALTH

2008-06-11 21:01:37 0 d--hs--c- C:\Program Files (x86)\Common Files\WindowsLiveInstaller

2008-06-11 21:01:29 0 d-------- C:\Program Files (x86)\Windows Live

2008-06-11 21:01:15 0 d-------- C:\Users\All Users\WLInstaller

2008-06-11 20:53:55 0 d-------- C:\Program Files (x86)\Common Files\Blizzard Entertainment

2008-06-11 20:48:49 0 d-------- C:\Windows\system32\Macromed

2008-06-11 20:48:41 1184 --a------ C:\Windows\mozver.dat

2008-06-11 20:40:00 0 d-------- C:\Users\All Users\comodo

2008-06-11 20:33:58 0 --a------ C:\Windows\nsreg.dat

2008-06-11 20:32:07 0 d-------- C:\Program Files (x86)\uTorrent

 

 

-- Find3M Report ---------------------------------------------------------------

 

2008-06-15 11:18:08 0 d-------- C:\Users\\AppData\Roaming\SUPERAntiSpyware.com

2008-06-15 11:17:39 0 d-------- C:\Program Files (x86)\Common Files

2008-06-14 00:41:16 0 d-------- C:\Users\\AppData\Roaming\uTorrent

2008-06-13 16:40:11 0 d-------- C:\Users\\AppData\Roaming\Winamp

2008-06-12 01:48:55 0 d-------- C:\Users\AppData\Roaming\InstallShield

2008-06-12 01:47:28 0 d-------- C:\Users\\AppData\Roaming\Identities

2008-06-11 20:48:56 0 d-------- C:\Users\\AppData\Roaming\Macromedia

2008-06-11 20:48:56 0 d-------- C:\Users\\AppData\Roaming\Adobe

2008-06-11 20:43:17 0 d-------- C:\Program Files (x86)\Windows Mail

2008-06-11 20:40:00 0 d-------- C:\Users\\AppData\Roaming\Comodo

2008-06-11 20:34:01 0 d-------- C:\Users\\AppData\Roaming\Talkback

2008-06-11 20:33:58 0 d-------- C:\Users\AppData\Roaming\Mozilla

2008-04-11 09:52:58 591872 --a------ C:\Windows\ntuneoem.dll <Not Verified; NVIDIA; NVIDIA nTune>

 

 

-- Registry Dump ---------------------------------------------------------------

 

 

 

-- End of Deckard's System Scanner: finished at 2008-06-15 13:10:35 ------------

 

 

Deckard's System Scanner v20071014.68

Extra logfile - please post this as an attachment with your post.

--------------------------------------------------------------------------------

 

-- System Information ----------------------------------------------------------

 

Microsoft® Windows Vista™ Home Premium (build 6001) SP 1.0

Architecture: X64; Language: English

 

CPU 0: Intel® Core2 Duo CPU E8400 @ 3.00GHz

Percentage of Memory in Use: 36%

Physical Memory (total/avail): 4093.64 MiB / 2594.59 MiB

Pagefile Memory (total/avail): 8394.59 MiB / 6678.64 MiB

Virtual Memory (total/avail): 4095.88 MiB / 3946.16 MiB

 

C: is Fixed (NTFS) - 1397.27 GiB total, 1326.06 GiB free.

D: is CDROM (No Media)

 

\\.\PHYSICALDRIVE0 - NVIDIA STRIPE 1.36T - 1397.27 GiB - 1 partition

\PARTITION0 (bootable) - Installable File System - 1397.27 GiB - C:

 

 

 

-- Security Center -------------------------------------------------------------

 

Windows Internal Firewall is disabled.

 

FW: COMODO Firewall Pro v3.0 (COMODO)

AS: Windows Defender v1.1.1505.0 (Microsoft Corporation)

AS: SUPERAntiSpyware v (SUPERAntiSpyware.com)

 

[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

 

[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

 

 

-- Environment Variables -------------------------------------------------------

 

ALLUSERSPROFILE=C:\ProgramData

APPDATA=C:\Users\\AppData\Roaming

CommonProgramFiles=C:\Program Files (x86)\Common Files

CommonProgramFiles(x86)=C:\Program Files (x86)\Common Files

CommonProgramW6432=C:\Program Files\Common Files

COMPUTERNAME=OLAS-MONSTER

ComSpec=C:\Windows\system32\cmd.exe

DFSTRACINGON=FALSE

FP_NO_HOST_CHECK=NO

HOMEDRIVE=C:

HOMEPATH=\Users\

LOCALAPPDATA=C:\Users\\AppData\Local

LOGONSERVER=\\

NUMBER_OF_PROCESSORS=2

OS=Windows_NT

Path=C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem

PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC

PROCESSOR_ARCHITECTURE=x86

PROCESSOR_ARCHITEW6432=AMD64

PROCESSOR_IDENTIFIER=Intel64 Family 6 Model 23 Stepping 6, GenuineIntel

PROCESSOR_LEVEL=6

PROCESSOR_REVISION=1706

ProgramData=C:\ProgramData

ProgramFiles=C:\Program Files (x86)

ProgramFiles(x86)=C:\Program Files (x86)

ProgramW6432=C:\Program Files

PROMPT=$P$G

PUBLIC=C:\Users\Public

SAN_DIR=C:\Program Files\SiSoftware\SiSoftware Sandra Lite XII

SESSIONNAME=Console

SystemDrive=C:

SystemRoot=C:\Windows

TEMP=C:\Users\OLANYH~1\AppData\Local\Temp

TMP=C:\Users\OLANYH~1\AppData\Local\Temp

TRACE_FORMAT_SEARCH_PATH=\\NTREL202.ntdev.corp.microsoft.com\34FB5F65-FFEB-4B61-BF0E-A6A76C450FAA\TraceFormat

USERDOMAIN=monster

USERNAME=

USERPROFILE=C:\Users\

windir=C:\Windows

 

 

-- User Profiles ---------------------------------------------------------------

 

(admin)

 

 

-- Add/Remove Programs ---------------------------------------------------------

 

3DMark06 --> RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\101\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{7F3AD00A-1819-4B15-BB7D-08B3586336D7}\setup.exe" -l0x9 -removeonly

Adobe Flash Player ActiveX --> C:\Windows\SysWOW64\Macromed\Flash\uninstall_activeX.exe

µTorrent --> "C:\Program Files (x86)\uTorrent\uTorrent.exe" /UNINSTALL

Avira AntiVir Personal – Free Antivirus --> C:\Program Files (x86)\Avira\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE

CCleaner (remove only) --> "C:\Program Files (x86)\CCleaner\uninst.exe"

Counter-Strike --> "C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/10

Half-Life 2: Deathmatch --> "C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/320

Half-Life 2: Lost Coast --> "C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/340

HD Tach version 3 --> "C:\Program Files (x86)\Simpli Software\HD Tach\unins000.exe"

HijackThis 2.0.2 --> "C:\Users\\Desktop\HijackThis.exe" /uninstall

Java 6 Update 6 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160060}

Microsoft Visual C++ 2005 Redistributable --> MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}

Mozilla Firefox (2.0.0.14) --> C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe

NVIDIA Performance --> "C:\Program Files (x86)\InstallShield Installation Information\{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}\setup.exe" -runfromtemp -l0x0414 -removeonly

NVIDIA Performance --> MsiExec.exe /I{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}

Peggle Extreme --> "C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/3483

Påloggingsassistent for Windows Live --> MsiExec.exe /I{AFA4E5FD-ED70-4D92-99D0-162FD56DC986}

Portal: The First Slice --> "C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/410

SpywareBlaster 4.1 --> "C:\Program Files (x86)\SpywareBlaster\unins000.exe"

Steam --> MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3}

SUPERAntiSpyware Free Edition --> MsiExec.exe /X{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}

Windows Live installer --> MsiExec.exe /X{4218D9DC-282B-4596-BEA5-F20560C14400}

Windows Live Mail --> MsiExec.exe /I{29CB1674-DE1D-4D39-A871-FA0194FC58E9}

Windows Live Messenger --> MsiExec.exe /X{D70A63D1-2F54-4713-8AE6-BBD28D1A62E6}

Windows Media Player Firefox Plugin --> MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}

World of Warcraft --> C:\Program Files (x86)\Common Files\Blizzard Entertainment\World of Warcraft\Uninstall.exe

Xvid 1.1.3 final uninstall --> "C:\Program Files (x86)\Xvid\unins000.exe"

 

 

-- Application Event Log -------------------------------------------------------

 

Event Record #/Type1070 / Success

Event Submitted/Written: 06/15/2008 10:57:50 AM

Event ID/Source: 12001 / usnjsvc

Event Description:

The Messenger Sharing USN Journal Reader service started successfully.

 

Event Record #/Type1058 / Error

Event Submitted/Written: 06/15/2008 10:46:25 AM

Event ID/Source: 10 / WinMgmt

Event Description:

//./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Event Record #/Type1056 / Success

Event Submitted/Written: 06/15/2008 10:46:22 AM

Event ID/Source: 5617 / WinMgmt

Event Description:

 

 

Event Record #/Type1055 / Success

Event Submitted/Written: 06/15/2008 10:46:21 AM

Event ID/Source: 5615 / WinMgmt

Event Description:

 

 

Event Record #/Type1054 / Success

Event Submitted/Written: 06/15/2008 10:46:16 AM

Event ID/Source: 902 / Software Licensing Service

Event Description:

The Software Licensing service has started.

 

 

 

-- Security Event Log ----------------------------------------------------------

 

No Errors/Warnings found.

 

 

-- System Event Log ------------------------------------------------------------

 

Event Record #/Type5922 / Warning

Event Submitted/Written: 06/15/2008 01:10:31 PM

Event ID/Source: 3004 / WinDefend

Event Description:

%%8271.1.1600.0{8C86A39F-7B10-46DF-8ED5-6A9365758AC2}Olas-S-1-5-21-3619622557-3845311721-1301552211-1000Unknown%%832driver:xpdt0%%807

 

Event Record #/Type5921 / Warning

Event Submitted/Written: 06/15/2008 01:10:31 PM

Event ID/Source: 3004 / WinDefend

Event Description:

%%8271.1.1600.0{F2E80746-2EE2-473B-8EEB-CFB5EDDD5F61}Olas-monsterS-1-5-21-3619622557-3845311721-1301552211-1000Unknown%%832driver:huy320%%807

 

Event Record #/Type5920 / Warning

Event Submitted/Written: 06/15/2008 01:10:31 PM

Event ID/Source: 3004 / WinDefend

Event Description:

%%8271.1.1600.0{D6406D37-B032-442B-AAD2-7AF192751ABE}Olas-monsterS-1-5-21-3619622557-3845311721-1301552211-1000Unknown%%832service:xpdt0%%807

 

Event Record #/Type5919 / Warning

Event Submitted/Written: 06/15/2008 01:10:29 PM

Event ID/Source: 3004 / WinDefend

Event Description:

%%8271.1.1600.0{7FCCA631-5F54-4C6B-948E-B4C35E10C756}Olas-monsterS-1-5-21-3619622557-3845311721-1301552211-1000Unknown%%832service:huy320%%807

 

Event Record #/Type5918 / Warning

Event Submitted/Written: 06/15/2008 01:10:29 PM

Event ID/Source: 3004 / WinDefend

Event Description:

%%8271.1.1600.0{29141623-91E7-46F3-B817-45D6127F5390}Olas-monsterS-1-5-21-3619622557-3845311721-1301552211-1000Unknown%%832driver:pe3860%%807

 

 

 

-- End of Deckard's System Scanner: finished at 2008-06-15 13:10:35 ------------