Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Antivirus 2010

Started by Finland413 , Dec 10 2010 01:52 PM

  • Please log in to reply

#1
Finland413
Posted 10 December 2010 - 01:52 PM

Finland413

    New Member

  • Member
  • Pip
  • 1 posts
OTL Extras logfile created on: 10.12.2010 21:35:51 - Run 1
OTL by OldTimer - Version 3.2.17.3 Folder = C:\Users\Oskari\Downloads
Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 0000040B | Country: Suomi | Language: FIN | Date Format: d.M.yyyy

1 023,00 Mb Total Physical Memory | 104,00 Mb Available Physical Memory | 10,00% Memory free
2,00 Gb Paging File | 0,00 Gb Available in Paging File | 14,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 149,05 Gb Total Space | 85,87 Gb Free Space | 57,61% Space Free | Partition Type: NTFS
Drive D: | 7,70 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF

Computer Name: OSKARI-PC | User Name: Oskari | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.reg [@ = regfile] -- regedit.exe "%1"

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [open] -- regedit.exe "%1"
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V"
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00BA866C-F2A2-4BB9-A308-3DFA695B6F7C}" = Java DB 10.5.3.0
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0FEA9A38-B993-0969-3A78-4D5CDDACEFEE}" = ATI Catalyst Install Manager
"{11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}" = ATI Catalyst Registration
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{20C31435-2A0A-4580-BE8B-AC06FC243CA4}" = Python 2.7
"{26A24AE4-039D-4CA4-87B4-2F83216022F0}" = Java™ 6 Update 22
"{26A24AE4-039D-4CA4-87B4-2F83216023FF}" = Java™ 6 Update 23
"{31ECA0DA-4EE0-8C1E-484A-C304BAA9179A}" = Catalyst Control Center Graphics Previews Common
"{32A3A4F4-B792-11D6-A78A-00B0D0160200}" = Java™ SE Development Kit 6 Update 20
"{32A3A4F4-B792-11D6-A78A-00B0D0160210}" = Java™ SE Development Kit 6 Update 21
"{32A3A4F4-B792-11D6-A78A-00B0D0160220}" = Java™ SE Development Kit 6 Update 22
"{32A3A4F4-B792-11D6-A78A-00B0D0160230}" = Java™ SE Development Kit 6 Update 23
"{37B03AA0-B125-4649-900C-F26E1081F163}" = Camtasia Studio 7
"{3878A9A3-2448-7607-01EA-0DB9E31B7242}" = Catalyst Control Center Graphics Previews Vista
"{39BDD209-5704-480C-9F4A-B69D0370DDBB}" = Windows Live Messenger
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3D374523-CFDE-461A-827E-2A102E2AB365}" = Star Wars Battlefront II
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}" = Windows Live PIMT Platform
"{5D87C09F-512F-474A-A306-0FE3B89C396F}" = RuneScape Launcher 1.0.4
"{61AD15B2-50DB-4686-A739-14FE180D4429}" = Windows Live ID Sign-in Assistant
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{71D5559C-85E5-5206-3B1C-A8A9DDDE4AC9}" = AMD Drag and Drop Transcoding
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{75670A63-A18E-5066-0A78-93F6865BA3AA}" = ccc-core-static
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{780262B9-4578-3727-97D3-62DE7B9F5F82}" = Microsoft .NET Framework 4 Client Profile FIN Language Pack
"{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
"{81A34902-9D0B-4920-A25C-4CDC5D14B328}" = Jasc Paint Shop Pro 8
"{845FDC75-F31E-A75A-4300-593CAB195847}" = ccc-utility
"{87323561-58BA-4D5B-BADA-A791B69D1705}" = Catalyst Control Center - Branding
"{878D2EB2-2D55-42A9-955E-1E08F28529FD}" = Sony Media Manager 2.2
"{8909CFA8-97BF-4077-AC0F-6925243FFE08}" = Windows Liven asennustyökalu
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}" = The Lord of the Rings FREE Trial
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90024193-9F13-4877-89D5-A1CDF0CBBF28}" = Feedback Tool
"{90140000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2010
"{90140000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2010
"{90140000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2010
"{90140000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2010
"{90140000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2010
"{90140000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2010
"{90140000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2010
"{90140000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2010
"{90140000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2010
"{90140000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2010
"{90140000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2010
"{90140000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2010
"{90140000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2010
"{91140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{94FB5B63-A65F-7E5D-560D-A79FB29EA52F}" = Catalyst Control Center InstallProxy
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9699C9AA-8990-904D-FD1B-D931E437434D}" = CCC Help English
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A202BDBA-753F-41B9-B649-CFB0B45FC03E}" = Star Wars Galactic Battlegrounds
"{A7E19604-93AF-4611-8C9F-CE509C2B286F}_is1" = Free YouTube Downloader 1.0
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AC76BA86-7AD7-1033-7B44-A94000000001}" = Adobe Reader 9.4.0
"{ACCEB7C3-4F3A-4C43-93CA-644951D08B0D}" = TortoiseSVN 1.6.12.20536 (32 bit)
"{B3DAF54F-DB25-4586-9EF1-96D24BB14088}" = Windows Movie Maker 2.6
"{CD7CB1E6-267A-408F-877D-B532AD2C882E}" = Windows Live Photo Common
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D642E38E-0D24-486C-9A2D-E316DD696F4B}" = Microsoft XML Parser
"{D657CCB5-9F2F-4D3C-B93D-F77EBEF79B66}" = Messenger-kumppani
"{DC785DB7-D389-48C3-B146-96FE99BF4E2B}" = Vegas Pro 9.0
"{E09B48B5-E141-427A-AB0C-D3605127224A}" = Microsoft SQL Server Desktop Engine (SONY_MEDIAMGR)
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F4EE283A-4851-43D4-887C-1932D55DE740}" = Windows Live UX Platform Language Pack
"2speced client" = 2speced client 10.7
"A1 WMV to WMV Converter" = A1 WMV to WMV Converter
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"Blender" = Blender (remove only)
"FormatFactory" = FormatFactory 2.60
"Fraps" = Fraps (remove only)
"GameSpy Arcade" = GameSpy Arcade
"HyperCam 3" = HyperCam 3
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile FIN Language Pack" = Microsoft .NET Framework 4 Client Profilen suomen kielipaketti
"Mozilla Firefox (3.6.12)" = Mozilla Firefox (3.6.12)
"Office14.PROPLUSR" = Microsoft Office Professional Plus 2010
"Runescape Toolbar" = Runescape Toolbar
"Smart Defrag_is1" = Smart Defrag
"Spotify" = Spotify
"Steam App 8930" = Sid Meier's Civilization V
"WinGimp-2.0_is1" = GIMP 2.6.10
"WinLiveSuite" = Windows Liven asennustyökalu
"WinPcapInst" = WinPcap 4.0.2
"WinRAR archiver" = WinRAR archiver

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"Seal Hunter" = Seal Hunter

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 31.12.2001 18:01:05 | Computer Name = Oskari-PC | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Kolmannen osapuolen pääluetteloa ei voi purkaa automaattisesti päivitetystä
Cab-tiedostosta kohteessa; <http://www.download....throotstl.cab>.
Virhe: Vaadittu varmenne ei ole voimassa järjestelmän nykyisen kellonajan tai allekirjoitetun
tiedoston aikamerkinnän mukaan. .

Error - 31.12.2001 18:01:56 | Computer Name = Oskari-PC | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Kolmannen osapuolen pääluetteloa ei voi purkaa automaattisesti päivitetystä
Cab-tiedostosta kohteessa; <http://www.download....throotstl.cab>.
Virhe: Vaadittu varmenne ei ole voimassa järjestelmän nykyisen kellonajan tai allekirjoitetun
tiedoston aikamerkinnän mukaan. .

Error - 5.12.2010 9:01:34 | Computer Name = Oskari-PC | Source = EventSystem | ID = 4621
Description =

Error - 9.12.2010 14:39:24 | Computer Name = Oskari-PC | Source = RasClient | ID = 20227
Description =

Error - 9.12.2010 14:45:38 | Computer Name = Oskari-PC | Source = Application Error | ID = 1000
Description = Viallisen sovelluksen nimi: ECCenter.exe, versio: 3.4.1.0, aikaleima:
0x426f5547 Viallisen moduulin nimi: ntdll.dll, versio: 6.1.7600.16559, aikaleima:
0x4ba9b21e Poikkeuskoodi: 0xc0000005 Virhepoikkeama: 0x0005614c Viallisen prosessin
tunnus: 0x3e4 Viallisen sovelluksen käynnistysaika: 0x01cb97d140f245bb Viallisen
sovelluksen polku: C:\Program Files\Toshiba\Bluetooth Toshiba Stack\ECCenter.exe
Viallisen
moduulin polku: C:\Windows\SYSTEM32\ntdll.dll Raportin tunnus: 835098ea-03c4-11e0-83a6-001d9283a3a2

Error - 9.12.2010 14:45:48 | Computer Name = Oskari-PC | Source = Application Error | ID = 1000
Description = Viallisen sovelluksen nimi: ECCenter.exe, versio: 3.4.1.0, aikaleima:
0x426f5547 Viallisen moduulin nimi: ntdll.dll, versio: 6.1.7600.16559, aikaleima:
0x4ba9b21e Poikkeuskoodi: 0xc0000005 Virhepoikkeama: 0x00052c68 Viallisen prosessin
tunnus: 0xf74 Viallisen sovelluksen käynnistysaika: 0x01cb97d14a665eb6 Viallisen
sovelluksen polku: C:\Program Files\Toshiba\Bluetooth Toshiba Stack\ECCenter.exe
Viallisen
moduulin polku: C:\Windows\SYSTEM32\ntdll.dll Raportin tunnus: 8967dad6-03c4-11e0-83a6-001d9283a3a2

Error - 9.12.2010 14:46:12 | Computer Name = Oskari-PC | Source = Application Error | ID = 1000
Description = Viallisen sovelluksen nimi: ECCenter.exe, versio: 3.4.1.0, aikaleima:
0x426f5547 Viallisen moduulin nimi: ntdll.dll, versio: 6.1.7600.16559, aikaleima:
0x4ba9b21e Poikkeuskoodi: 0xc0000005 Virhepoikkeama: 0x00052c68 Viallisen prosessin
tunnus: 0xb6c Viallisen sovelluksen käynnistysaika: 0x01cb97d158018433 Viallisen
sovelluksen polku: C:\Program Files\Toshiba\Bluetooth Toshiba Stack\ECCenter.exe
Viallisen
moduulin polku: C:\Windows\SYSTEM32\ntdll.dll Raportin tunnus: 97bcf7bf-03c4-11e0-83a6-001d9283a3a2

Error - 9.12.2010 14:46:49 | Computer Name = Oskari-PC | Source = Application Error | ID = 1000
Description = Viallisen sovelluksen nimi: ECCenter.exe, versio: 3.4.1.0, aikaleima:
0x426f5547 Viallisen moduulin nimi: ntdll.dll, versio: 6.1.7600.16559, aikaleima:
0x4ba9b21e Poikkeuskoodi: 0xc0000005 Virhepoikkeama: 0x0005614c Viallisen prosessin
tunnus: 0xd7c Viallisen sovelluksen käynnistysaika: 0x01cb97d16eecff65 Viallisen
sovelluksen polku: C:\Program Files\Toshiba\Bluetooth Toshiba Stack\ECCenter.exe
Viallisen
moduulin polku: C:\Windows\SYSTEM32\ntdll.dll Raportin tunnus: adcd1a99-03c4-11e0-83a6-001d9283a3a2

Error - 9.12.2010 14:50:42 | Computer Name = Oskari-PC | Source = RasClient | ID = 20227
Description =

Error - 10.12.2010 15:20:36 | Computer Name = Oskari-PC | Source = Application Error | ID = 1000
Description = Viallisen sovelluksen nimi: Seal Hunter.exe, versio: 1.0.0.0, aikaleima:
0x4c5ad8ac Viallisen moduulin nimi: Seal Hunter.exe, versio: 1.0.0.0, aikaleima:
0x4c5ad8ac Poikkeuskoodi: 0xc0000005 Virhepoikkeama: 0x00052b89 Viallisen prosessin
tunnus: 0xcc Viallisen sovelluksen käynnistysaika: 0x01cb989e33b9b352 Viallisen sovelluksen
polku: C:\Program Files\Seal Hunter\Seal Hunter.exe Viallisen moduulin polku: C:\Program
Files\Seal Hunter\Seal Hunter.exe Raportin tunnus: 9056b685-0492-11e0-9be1-001d9283a3a2

[ Media Center Events ]
Error - 19.10.2010 3:01:51 | Computer Name = Oskari-PC | Source = MCUpdate | ID = 0
Description = 10:01:51 - Virhe muodostettaessa Internet-yhteyttä. 10:01:51 -
Yhteyden muodostaminen palvelimeen ei onnistu..

[ System Events ]
Error - 5.12.2010 16:13:58 | Computer Name = Oskari-PC | Source = EventLog | ID = 6008
Description = Edellinen järjestelmän sammutus (21:06:15, ?5.?12.?2010) oli odottamaton.

Error - 5.12.2010 16:14:01 | Computer Name = Oskari-PC | Source = Service Control Manager | ID = 7023
Description = Palvelu Toiminnonetsintäresurssin julkaiseminen lopetettiin virheen
takia. Virhe: %%-2147014847

Error - 5.12.2010 16:46:32 | Computer Name = Oskari-PC | Source = Service Control Manager | ID = 7023
Description = Palvelu Toiminnonetsintäresurssin julkaiseminen lopetettiin virheen
takia. Virhe: %%-2147014847

Error - 6.12.2010 6:27:19 | Computer Name = Oskari-PC | Source = Service Control Manager | ID = 7023
Description = Palvelu Toiminnonetsintäresurssin julkaiseminen lopetettiin virheen
takia. Virhe: %%-2147014847

Error - 9.12.2010 14:53:05 | Computer Name = Oskari-PC | Source = BTHUSB | ID = 327696
Description = Paikallisen Bluetooth-sovittimen ja laitteen, jonka Bluetooth-sovitinosoite
on (00:1b:af:0c:94:58), välinen molemminpuolinen todennus epäonnistui.

Error - 10.12.2010 4:27:52 | Computer Name = Oskari-PC | Source = EventLog | ID = 6008
Description = Edellinen järjestelmän sammutus (21:52:25, ?9.?12.?2010) oli odottamaton.

Error - 10.12.2010 4:28:05 | Computer Name = Oskari-PC | Source = Service Control Manager | ID = 7026
Description = Seuraava käynnistys- tai järjestelmäkäynnistysohjain ei latautunut:
Tosrfcom

Error - 10.12.2010 9:42:55 | Computer Name = Oskari-PC | Source = Service Control Manager | ID = 7026
Description = Seuraava käynnistys- tai järjestelmäkäynnistysohjain ei latautunut:
Tosrfcom

Error - 10.12.2010 15:08:26 | Computer Name = Oskari-PC | Source = EventLog | ID = 6008
Description = Edellinen järjestelmän sammutus (20:44:06, ?10.?12.?2010) oli odottamaton.

Error - 10.12.2010 15:08:41 | Computer Name = Oskari-PC | Source = Service Control Manager | ID = 7026
Description = Seuraava käynnistys- tai järjestelmäkäynnistysohjain ei latautunut:
Tosrfcom


< End of report >






OTL logfile created on: 10.12.2010 21:35:51 - Run 1
OTL by OldTimer - Version 3.2.17.3 Folder = C:\Users\Oskari\Downloads
Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 0000040B | Country: Suomi | Language: FIN | Date Format: d.M.yyyy

1 023,00 Mb Total Physical Memory | 104,00 Mb Available Physical Memory | 10,00% Memory free
2,00 Gb Paging File | 0,00 Gb Available in Paging File | 14,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 149,05 Gb Total Space | 85,87 Gb Free Space | 57,61% Space Free | Partition Type: NTFS
Drive D: | 7,70 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF

Computer Name: OSKARI-PC | User Name: Oskari | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2010.12.10 21:34:56 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Oskari\Downloads\OTL.exe
PRC - [2010.12.09 16:23:57 | 000,267,944 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2010.12.01 01:02:35 | 000,991,800 | ---- | M] (Google Inc.) -- C:\Users\Oskari\AppData\Local\Google\Chrome\Application\chrome.exe
PRC - [2010.11.25 21:48:46 | 000,619,288 | ---- | M] (http://tortoisesvn.net) -- C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
PRC - [2010.11.25 19:32:57 | 001,242,448 | ---- | M] (Valve Corporation) -- C:\Program Files\Steam\Steam.exe
PRC - [2010.11.06 07:58:22 | 000,135,336 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2010.11.06 07:58:21 | 000,281,768 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2010.09.22 22:28:10 | 000,025,456 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Live\Contacts\wlcomm.exe
PRC - [2010.08.05 17:28:44 | 000,394,240 | ---- | M] (http://sealhunter.se/) -- C:\Program Files\Seal Hunter\Seal Hunter.exe
PRC - [2010.07.28 17:23:14 | 009,398,888 | ---- | M] (Realtek Semiconductor) -- C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
PRC - [2010.07.07 03:51:10 | 000,380,928 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2010.07.07 03:50:42 | 000,176,128 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2010.01.14 21:11:00 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2009.10.31 07:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009.07.14 03:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009.07.14 03:14:15 | 000,301,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmd.exe
PRC - [2009.07.14 03:14:15 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe


========== Modules (SafeList) ==========

MOD - [2010.12.10 21:34:56 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Oskari\Downloads\OTL.exe
MOD - [2010.08.21 07:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll
MOD - [2009.07.14 03:16:15 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sspicli.dll
MOD - [2009.07.14 03:16:13 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sechost.dll
MOD - [2009.07.14 03:16:13 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\samcli.dll
MOD - [2009.07.14 03:16:12 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\profapi.dll
MOD - [2009.07.14 03:16:03 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netutils.dll
MOD - [2009.07.14 03:15:35 | 000,288,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KernelBase.dll
MOD - [2009.07.14 03:15:13 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmapi.dll
MOD - [2009.07.14 03:15:11 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devobj.dll
MOD - [2009.07.14 03:15:07 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptbase.dll
MOD - [2009.07.14 03:15:02 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cfgmgr32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (WinHttpAutoProxySvc)
SRV - [2010.12.09 16:23:57 | 000,267,944 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2010.11.06 07:58:22 | 000,135,336 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2010.10.09 17:22:52 | 000,411,432 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2010.08.19 06:45:48 | 001,343,400 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2010.08.16 08:15:05 | 000,804,864 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2010.08.02 22:33:49 | 003,780,040 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\System32\GameMon.des -- (npggsvc)
SRV - [2010.07.07 03:50:42 | 000,176,128 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2010.03.25 09:25:22 | 030,969,208 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV - [2010.03.18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009.07.14 03:16:21 | 000,185,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wwansvc.dll -- (WwanSvc)
SRV - [2009.07.14 03:16:17 | 000,151,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wbiosrvc.dll -- (WbioSrvc)
SRV - [2009.07.14 03:16:17 | 000,119,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\umpo.dll -- (Power)
SRV - [2009.07.14 03:16:16 | 000,037,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\themeservice.dll -- (Themes)
SRV - [2009.07.14 03:16:15 | 000,053,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sppuinotify.dll -- (sppuinotify)
SRV - [2009.07.14 03:16:13 | 000,043,520 | ---- | M] (Microsoft Corporation) [Unknown | Running] -- C:\Windows\System32\RpcEpMap.dll -- (RpcEptMapper)
SRV - [2009.07.14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009.07.14 03:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\pnrpsvc.dll -- (PNRPsvc)
SRV - [2009.07.14 03:16:12 | 000,269,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\pnrpsvc.dll -- (p2pimsvc)
SRV - [2009.07.14 03:16:12 | 000,165,376 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\provsvc.dll -- (HomeGroupProvider)
SRV - [2009.07.14 03:16:12 | 000,020,480 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\pnrpauto.dll -- (PNRPAutoReg)
SRV - [2009.07.14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009.07.14 03:15:36 | 000,194,560 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\ListSvc.dll -- (HomeGroupListener)
SRV - [2009.07.14 03:15:11 | 000,253,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dhcpcore.dll -- (Dhcp)
SRV - [2009.07.14 03:15:10 | 000,218,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\defragsvc.dll -- (defragsvc)
SRV - [2009.07.14 03:14:59 | 000,076,800 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\bdesvc.dll -- (BDESVC)
SRV - [2009.07.14 03:14:58 | 000,088,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AxInstSv.dll -- (AxInstSV) ActiveX-asennusohjelma (AxInstSV)
SRV - [2009.07.14 03:14:53 | 000,027,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\appidsvc.dll -- (AppIDSvc)
SRV - [2009.07.14 03:14:29 | 003,179,520 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\sppsvc.exe -- (sppsvc)
SRV - [2007.11.06 22:22:26 | 000,092,792 | ---- | M] (CACE Technologies) [On_Demand | Stopped] -- C:\Program Files\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental)
SRV - [2002.12.17 16:26:22 | 007,520,337 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe -- (MSSQL$SONY_MEDIAMGR)
SRV - [2002.12.17 16:23:30 | 000,311,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE -- (SQLAgent$SONY_MEDIAMGR)


========== Driver Services (SafeList) ==========

DRV - [2010.12.09 16:23:59 | 000,135,096 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\avipbb.sys -- (avipbb)
DRV - [2010.11.23 08:19:52 | 000,061,960 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\System32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2010.07.28 17:23:36 | 003,154,920 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2010.07.07 04:29:16 | 005,882,368 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2010.07.07 04:29:16 | 005,882,368 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag)
DRV - [2010.07.07 03:15:24 | 000,210,944 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
DRV - [2010.05.06 11:21:42 | 000,108,560 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AtiHdmi.sys -- (AtiHdmiService)
DRV - [2010.02.03 14:56:56 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hamachi.sys -- (hamachi)
DRV - [2009.12.11 09:44:02 | 000,133,720 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\ksecpkg.sys -- (KSecPkg)
DRV - [2009.09.28 08:22:00 | 000,315,392 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\yk62x86.sys -- (yukonw7)
DRV - [2009.07.14 03:26:21 | 000,015,952 | ---- | M] (CMD Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\cmdide.sys -- (cmdide)
DRV - [2009.07.14 03:26:17 | 000,297,552 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adpahci.sys -- (adpahci)
DRV - [2009.07.14 03:26:15 | 000,422,976 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adp94xx.sys -- (adp94xx)
DRV - [2009.07.14 03:26:15 | 000,159,312 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdsbs.sys -- (amdsbs)
DRV - [2009.07.14 03:26:15 | 000,146,512 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adpu320.sys -- (adpu320)
DRV - [2009.07.14 03:26:15 | 000,086,608 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\arcsas.sys -- (arcsas)
DRV - [2009.07.14 03:26:15 | 000,079,952 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdsata.sys -- (amdsata)
DRV - [2009.07.14 03:26:15 | 000,076,368 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\arc.sys -- (arc)
DRV - [2009.07.14 03:26:15 | 000,023,616 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\amdxata.sys -- (amdxata)
DRV - [2009.07.14 03:26:15 | 000,014,400 | ---- | M] (Acer Laboratories Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\aliide.sys -- (aliide)
DRV - [2009.07.14 03:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nvstor.sys -- (nvstor)
DRV - [2009.07.14 03:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nvraid.sys -- (nvraid)
DRV - [2009.07.14 03:20:44 | 000,044,624 | ---- | M] (IBM Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nfrd960.sys -- (nfrd960)
DRV - [2009.07.14 03:20:37 | 000,089,168 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_sas.sys -- (LSI_SAS)
DRV - [2009.07.14 03:20:36 | 000,332,352 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\iaStorV.sys -- (iaStorV)
DRV - [2009.07.14 03:20:36 | 000,235,584 | ---- | M] (LSI Corporation, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\MegaSR.sys -- (MegaSR)
DRV - [2009.07.14 03:20:36 | 000,096,848 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2009.07.14 03:20:36 | 000,095,824 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_fc.sys -- (LSI_FC)
DRV - [2009.07.14 03:20:36 | 000,054,864 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_sas2.sys -- (LSI_SAS2)
DRV - [2009.07.14 03:20:36 | 000,041,040 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\iirsp.sys -- (iirsp)
DRV - [2009.07.14 03:20:36 | 000,030,800 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\megasas.sys -- (megasas)
DRV - [2009.07.14 03:20:36 | 000,013,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\hwpolicy.sys -- (hwpolicy)
DRV - [2009.07.14 03:20:28 | 000,453,712 | ---- | M] (Emulex) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\elxstor.sys -- (elxstor)
DRV - [2009.07.14 03:20:28 | 000,070,720 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\djsvs.sys -- (aic78xx)
DRV - [2009.07.14 03:20:28 | 000,067,152 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\HpSAMD.sys -- (HpSAMD)
DRV - [2009.07.14 03:20:28 | 000,046,160 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\fsdepends.sys -- (FsDepends)
DRV - [2009.07.14 03:19:11 | 000,141,904 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vsmraid.sys -- (vsmraid)
DRV - [2009.07.14 03:19:10 | 000,159,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vhdmp.sys -- (vhdmp)
DRV - [2009.07.14 03:19:10 | 000,032,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vdrvroot.sys -- (vdrvroot)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\wimmount.sys -- (WIMMount)
DRV - [2009.07.14 03:19:10 | 000,016,976 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\viaide.sys -- (viaide)
DRV - [2009.07.14 03:19:04 | 001,383,488 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\ql2300.sys -- (ql2300)
DRV - [2009.07.14 03:19:04 | 000,173,648 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\rdyboost.sys -- (rdyboost)
DRV - [2009.07.14 03:19:04 | 000,106,064 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\ql40xx.sys -- (ql40xx)
DRV - [2009.07.14 03:19:04 | 000,077,888 | ---- | M] (Silicon Integrated Systems) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\sisraid4.sys -- (SiSRaid4)
DRV - [2009.07.14 03:19:04 | 000,043,088 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\pcw.sys -- (pcw)
DRV - [2009.07.14 03:19:04 | 000,040,016 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\SiSRaid2.sys -- (SiSRaid2)
DRV - [2009.07.14 03:19:04 | 000,021,072 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\stexstor.sys -- (stexstor)
DRV - [2009.07.14 03:17:54 | 000,369,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\cng.sys -- (CNG)
DRV - [2009.07.14 02:57:25 | 000,272,128 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\Brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2009.07.14 02:02:41 | 000,018,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\rdpbus.sys -- (rdpbus)
DRV - [2009.07.14 02:01:41 | 000,007,168 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\RDPREFMP.sys -- (RDPREFMP)
DRV - [2009.07.14 01:55:00 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2)
DRV - [2009.07.14 01:53:51 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\wfplwf.sys -- (WfpLwf)
DRV - [2009.07.14 01:53:40 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rmcast.sys -- (RMCAST)
DRV - [2009.07.14 01:52:44 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ndiscap.sys -- (NdisCap)
DRV - [2009.07.14 01:52:02 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vwifibus.sys -- (vwifibus)
DRV - [2009.07.14 01:52:00 | 000,163,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\1394ohci.sys -- (1394ohci)
DRV - [2009.07.14 01:51:35 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\umpass.sys -- (UmPass)
DRV - [2009.07.14 01:51:23 | 000,080,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\USBAUDIO.sys -- (usbaudio) USB-ääniohjain (WDM)
DRV - [2009.07.14 01:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009.07.14 01:51:08 | 000,004,096 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV - [2009.07.14 01:46:55 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\MTConfig.sys -- (MTConfig)
DRV - [2009.07.14 01:45:26 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CompositeBus.sys -- (CompositeBus)
DRV - [2009.07.14 01:36:52 | 000,050,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\appid.sys -- (AppID)
DRV - [2009.07.14 01:33:50 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | Unknown | Stopped] -- C:\Windows\System32\drivers\scfilter.sys -- (scfilter)
DRV - [2009.07.14 01:24:05 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\discache.sys -- (discache)
DRV - [2009.07.14 01:16:36 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\acpipmi.sys -- (AcpiPmi)
DRV - [2009.07.14 01:11:04 | 000,052,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdppm.sys -- (AmdPPM)
DRV - [2009.07.14 00:54:14 | 000,026,624 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009.07.14 00:53:33 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrUsbMdm.sys -- (BrUsbMdm)
DRV - [2009.07.14 00:53:33 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrUsbSer.sys -- (BrUsbSer)
DRV - [2009.07.14 00:53:32 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrSerWdm.sys -- (BrSerWdm)
DRV - [2009.07.14 00:53:28 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\BrFiltLo.sys -- (BrFiltLo)
DRV - [2009.07.14 00:53:28 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\BrFiltUp.sys -- (BrFiltUp)
DRV - [2009.07.14 00:02:49 | 000,229,888 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\b57nd60x.sys -- (b57nd60x)
DRV - [2009.07.14 00:02:48 | 003,100,160 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\evbdx.sys -- (ebdrv)
DRV - [2009.07.14 00:02:48 | 000,430,080 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\bxvbdx.sys -- (b06bdrv)
DRV - [2009.05.11 09:12:49 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2007.11.06 22:22:06 | 000,034,064 | ---- | M] (CACE Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\npf.sys -- (NPF)
DRV - [2005.04.22 22:34:56 | 000,052,608 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TosRfhid.sys -- (Tosrfhid)
DRV - [2005.04.22 21:11:30 | 000,098,048 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TosRfbd.sys -- (Tosrfbd)
DRV - [2005.04.06 09:54:44 | 000,050,048 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TosRfSnd.sys -- (TosRfSnd) Bluetooth Audio Device (WDM)
DRV - [2005.03.30 12:42:54 | 000,047,230 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Tosporte.sys -- (tosporte)
DRV - [2005.01.06 13:42:42 | 000,018,612 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tosrfnds.sys -- (tosrfnds)
DRV - [2004.12.21 11:38:12 | 000,034,816 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tosrfusb.sys -- (Tosrfusb)
DRV - [2004.10.04 10:33:02 | 000,062,799 | ---- | M] (TOSHIBA Corporation) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\tosrfcom.sys -- (Tosrfcom)
DRV - [2004.07.08 17:07:34 | 000,036,531 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tosrfbnp.sys -- (Tosrfbnp)
DRV - [2002.10.16 13:55:48 | 000,002,851 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Toshidpt.sys -- (toshidpt)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\URLSearchHook: {a8864317-e18b-4292-99d9-e6e65ab905d3} - C:\Program Files\Runescape\tbRune.dll (Conduit Ltd.)

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fi.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fi-FI
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 80 09 56 0A E3 74 CB 01 [binary data]
IE - HKCU\..\URLSearchHook: {a8864317-e18b-4292-99d9-e6e65ab905d3} - C:\Program Files\Runescape\tbRune.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: [email protected]:3.5.2B
FF - prefs.js..extensions.enabledItems: [email protected]:3.6.4
FF - prefs.js..extensions.enabledItems: [email protected]:3.6.4

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.11.23 11:01:20 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.11.30 17:51:12 | 000,000,000 | ---D | M]

[2010.11.23 11:01:29 | 000,000,000 | ---D | M] -- C:\Users\Oskari\AppData\Roaming\mozilla\Extensions
[2010.11.23 11:04:14 | 000,000,000 | ---D | M] -- C:\Users\Oskari\AppData\Roaming\mozilla\Firefox\Profiles\cooci0pe.default\extensions
[2010.11.23 11:04:11 | 000,000,000 | ---D | M] -- C:\Users\Oskari\AppData\Roaming\mozilla\Firefox\Profiles\cooci0pe.default\extensions\[email protected]
[2010.11.23 11:04:11 | 000,000,000 | ---D | M] -- C:\Users\Oskari\AppData\Roaming\mozilla\Firefox\Profiles\cooci0pe.default\extensions\[email protected]
[2010.11.23 11:04:05 | 000,000,000 | ---D | M] -- C:\Users\Oskari\AppData\Roaming\mozilla\Firefox\Profiles\cooci0pe.default\extensions\[email protected]
[2010.11.30 18:40:07 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010.11.30 18:40:07 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2010.11.30 18:00:16 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2010.11.30 18:00:03 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010.10.27 07:48:46 | 000,002,062 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\bookplus-fi.xml
[2010.10.27 07:48:46 | 000,001,069 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\creativecommons-fi.xml
[2010.10.27 07:48:46 | 000,002,677 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\huuto-fi.xml
[2010.10.27 07:48:46 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-fi.xml
[2010.10.27 07:48:46 | 000,001,100 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-fi.xml

O1 HOSTS File: ([2009.06.10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Windows Live Messenger Companion Helper) - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
O2 - BHO: (RuneScape Toolbar) - {a8864317-e18b-4292-99d9-e6e65ab905d3} - C:\Program Files\Runescape\tbRune.dll (Conduit Ltd.)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (RuneScape Toolbar) - {a8864317-e18b-4292-99d9-e6e65ab905d3} - C:\Program Files\Runescape\tbRune.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (RuneScape Toolbar) - {A8864317-E18B-4292-99D9-E6E65AB905D3} - C:\Program Files\Runescape\tbRune.dll (Conduit Ltd.)
O4 - HKLM..\Run: [ATICustomerCare] C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation)
O4 - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [Steam] C:\Program Files\Steam\steam.exe (Valve Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O9 - Extra Button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zon...nt.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} http://messenger.zon...er.cab56986.cab (Minesweeper Flags Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.243.153.172 192.168.0.1
O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - File not found
O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - File not found
O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - File not found
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - File not found
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O29 - HKLM SecurityProviders - (credssp.dll) - File not found
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (livessp) - C:\Windows\System32\livessp.dll (Microsoft Corp.)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2005.09.23 00:12:18 | 000,000,025 | R--- | M] () - D:\AUTORUN.INF -- [ UDF ]
O33 - MountPoints2\{93cb1107-aae3-11df-bc9d-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{93cb1107-aae3-11df-bc9d-806e6f6e6963}\Shell\AutoRun\command - "" = D:\start.exe -- [2005.09.23 00:12:18 | 003,341,124 | R--- | M] (Macromedia, Inc.)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010.12.09 20:46:57 | 000,000,000 | ---D | C] -- C:\Users\Oskari\AppData\Roaming\Toshiba
[2010.12.09 20:42:23 | 000,000,000 | ---D | C] -- C:\Users\Oskari\Documents\Bluetooth
[2010.12.09 20:42:13 | 000,000,000 | ---D | C] -- C:\Users\Oskari\AppData\Local\Toshiba
[2010.12.06 11:04:55 | 000,000,000 | ---D | C] -- C:\Users\Oskari\Documents\RSBot
[2010.12.05 10:24:19 | 000,000,000 | ---D | C] -- C:\Users\Oskari\AppData\Roaming\Spotify
[2010.12.05 10:24:19 | 000,000,000 | ---D | C] -- C:\Users\Oskari\AppData\Local\Spotify
[2010.12.05 10:24:15 | 000,000,000 | ---D | C] -- C:\Program Files\Spotify
[2010.12.05 00:07:52 | 000,000,000 | ---D | C] -- C:\Program Files\SpeedFan
[2010.12.04 18:05:41 | 168,857,432 | ---- | C] (Sony Creative Software Inc.) -- C:\Users\Oskari\Documents\vegaspro90_32bit.exe
[2010.12.03 19:06:00 | 000,000,000 | ---D | C] -- C:\Users\Oskari\Documents\FFOutput
[2010.12.03 19:05:16 | 000,000,000 | ---D | C] -- C:\Program Files\FreeTime
[2010.11.30 19:41:30 | 000,000,000 | ---D | C] -- C:\Users\Oskari\AppData\Roaming\TortoiseSVN
[2010.11.30 19:22:24 | 000,000,000 | ---D | C] -- C:\Users\Oskari\AppData\Roaming\Subversion
[2010.11.30 19:14:45 | 000,000,000 | ---D | C] -- C:\Users\Oskari\AppData\Local\TSVNCache
[2010.11.30 18:56:34 | 000,000,000 | ---D | C] -- C:\Program Files\TortoiseSVN
[2010.11.30 18:56:34 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\TortoiseOverlays
[2010.11.30 18:40:03 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2010.11.30 18:40:03 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2010.11.30 18:40:03 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2010.11.30 18:27:41 | 000,000,000 | ---D | C] -- C:\Windows\hsperfdata_Oskari
[2010.11.30 18:23:51 | 000,000,000 | ---D | C] -- C:\glassfishv3
[2010.11.30 17:52:54 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2010.11.30 15:49:19 | 000,000,000 | ---D | C] -- C:\Users\Oskari\AppData\Local\Adobe
[2010.11.30 09:14:19 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_7.dll
[2010.11.30 09:14:19 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_5.dll
[2010.11.30 09:14:18 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_43.dll
[2010.11.30 09:14:18 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_43.dll
[2010.11.30 09:14:18 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_43.dll
[2010.11.30 09:14:18 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_7.dll
[2010.11.30 09:14:17 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_43.dll
[2010.11.30 09:14:17 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_43.dll
[2010.11.30 09:14:15 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_6.dll
[2010.11.30 09:14:15 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_4.dll
[2010.11.30 09:14:14 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_6.dll
[2010.11.30 09:14:12 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_7.dll
[2010.11.30 09:13:19 | 000,000,000 | -H-D | C] -- C:\Windows\msdownld.tmp
[2010.11.30 09:13:13 | 000,000,000 | ---D | C] -- C:\Windows\System32\directx
[2010.11.23 11:01:13 | 000,000,000 | ---D | C] -- C:\Users\Oskari\AppData\Roaming\Mozilla
[2010.11.23 11:01:13 | 000,000,000 | ---D | C] -- C:\Users\Oskari\AppData\Local\Mozilla
[2010.11.23 11:00:41 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2010.11.15 16:01:34 | 000,000,000 | ---D | C] -- C:\Users\Oskari\AppData\Local\Cooliris
[2010.11.15 15:45:16 | 000,606,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2010.11.15 15:45:16 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2010.11.15 15:45:16 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2010.11.15 15:45:16 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\licmgr10.dll
[2010.11.15 15:45:15 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2010.11.15 15:45:15 | 000,386,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2010.11.15 15:45:15 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2010.11.15 15:45:15 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2010.11.15 15:45:15 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2010.11.15 15:45:15 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2010.11.15 15:45:15 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2010.11.14 09:53:34 | 000,000,000 | ---D | C] -- C:\Users\Oskari\AppData\Local\jagexlauncher
[2010.11.12 22:52:56 | 000,000,000 | ---D | C] -- C:\Users\Oskari\Documents\My PSP8 Files
[2010.11.12 22:52:56 | 000,000,000 | ---D | C] -- C:\Users\Oskari\AppData\Roaming\Jasc Software Inc
[2010.11.12 22:51:43 | 000,000,000 | ---D | C] -- C:\Program Files\Jasc Software Inc
[2010.11.12 21:22:24 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010.12.10 21:15:49 | 000,014,832 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010.12.10 21:15:49 | 000,014,832 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010.12.10 21:08:25 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010.12.10 21:08:18 | 804,753,408 | -HS- | M] () -- C:\hiberfil.sys
[2010.12.10 20:04:18 | 000,000,046 | ---- | M] () -- C:\Users\Oskari\jagex_runescape_preferences.dat
[2010.12.10 20:04:16 | 000,000,117 | ---- | M] () -- C:\Users\Oskari\jagex_runescape_preferences2.dat
[2010.12.10 19:45:01 | 000,001,022 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2037265356-3274624915-922173013-1000UA.job
[2010.12.10 16:44:02 | 000,000,970 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2037265356-3274624915-922173013-1000Core.job
[2010.12.09 21:24:39 | 034,853,757 | ---- | M] () -- C:\Users\Oskari\Documents\y.wmv
[2010.12.09 20:52:15 | 000,000,000 | ---- | M] () -- C:\Windows\tosOBEX.INI
[2010.12.09 20:46:31 | 000,000,099 | ---- | M] () -- C:\Windows\WirelessFTP.INI
[2010.12.09 20:35:17 | 000,636,544 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010.12.09 20:35:17 | 000,462,064 | ---- | M] () -- C:\Windows\System32\perfh00B.dat
[2010.12.09 20:35:17 | 000,114,718 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010.12.09 20:35:17 | 000,090,628 | ---- | M] () -- C:\Windows\System32\perfc00B.dat
[2010.12.09 16:23:59 | 000,135,096 | ---- | M] (Avira GmbH) -- C:\Windows\System32\drivers\avipbb.sys
[2010.12.06 12:24:09 | 000,088,729 | ---- | M] () -- C:\Users\Oskari\Documents\j.jpg
[2010.12.06 12:23:50 | 001,203,606 | ---- | M] () -- C:\Users\Oskari\Documents\t.psd
[2010.12.05 15:35:36 | 017,005,601 | ---- | M] () -- C:\Users\Oskari\Documents\NOOBNESS 3.wmv
[2010.12.05 15:27:33 | 000,022,040 | ---- | M] () -- C:\Users\Oskari\Documents\NOOBNESS 2.wmv.sfk
[2010.12.05 15:20:19 | 011,005,529 | ---- | M] () -- C:\Users\Oskari\Documents\NOOBNESS 2.wmv
[2010.12.05 15:04:04 | 000,014,584 | ---- | M] () -- C:\Users\Oskari\Documents\NOOBNESS.wmv.sfk
[2010.12.05 12:58:57 | 000,015,016 | ---- | M] () -- C:\Users\Oskari\Documents\s.veg
[2010.12.05 12:58:39 | 007,565,499 | ---- | M] () -- C:\Users\Oskari\Documents\NOOBNESS.wmv
[2010.12.05 12:44:12 | 000,014,032 | ---- | M] () -- C:\Users\Oskari\Documents\s.wmv.sfk
[2010.12.05 12:34:57 | 007,509,499 | ---- | M] () -- C:\Users\Oskari\Documents\s.wmv
[2010.12.05 12:29:35 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_wpdcomp_01_09_00.Wdf
[2010.12.05 12:16:01 | 000,037,400 | ---- | M] () -- C:\Users\Oskari\Documents\dd.jpg
[2010.12.05 12:15:36 | 000,043,662 | ---- | M] () -- C:\Users\Oskari\Documents\ss.jpg
[2010.12.05 10:24:15 | 000,000,949 | ---- | M] () -- C:\Users\Oskari\Desktop\Spotify.lnk
[2010.12.05 00:07:52 | 000,000,045 | ---- | M] () -- C:\Windows\System32\initdebug.nfo
[2010.12.04 20:46:23 | 000,002,403 | ---- | M] () -- C:\Users\Oskari\Desktop\Google Chrome.lnk
[2010.12.04 20:31:40 | 000,119,218 | ---- | M] () -- C:\Users\Oskari\Documents\skyline.jpg
[2010.12.04 20:10:56 | 000,000,110 | ---- | M] () -- C:\Windows\GMouse.ini
[2010.12.04 18:25:45 | 000,032,328 | ---- | M] () -- C:\Users\Oskari\Documents\d.veg
[2010.12.04 18:18:08 | 000,002,620 | ---- | M] () -- C:\Users\Oskari\Documents\Register Vegas Pro.htm
[2010.12.04 18:10:45 | 000,001,878 | ---- | M] () -- C:\Users\Public\Desktop\Vegas Pro 9.0.lnk
[2010.12.04 18:07:05 | 000,031,464 | ---- | M] () -- C:\Users\Oskari\Documents\d.veg.bak
[2010.12.04 17:58:50 | 168,857,432 | ---- | M] (Sony Creative Software Inc.) -- C:\Users\Oskari\Documents\vegaspro90_32bit.exe
[2010.12.03 20:09:49 | 000,008,704 | ---- | M] () -- C:\Users\Oskari\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.12.03 19:05:40 | 000,001,156 | ---- | M] () -- C:\Users\Oskari\Desktop\Format Factory.lnk
[2010.12.03 18:25:25 | 031,643,171 | ---- | M] () -- C:\Users\Oskari\Documents\03122010050.mp4
[2010.12.03 18:21:42 | 017,235,570 | ---- | M] () -- C:\Users\Oskari\Documents\03122010049.mp4
[2010.12.03 18:19:42 | 037,686,609 | ---- | M] () -- C:\Users\Oskari\Documents\03122010048.mp4
[2010.12.03 18:15:22 | 067,806,357 | ---- | M] () -- C:\Users\Oskari\Documents\03122010047.mp4
[2010.12.03 18:07:45 | 020,133,273 | ---- | M] () -- C:\Users\Oskari\Documents\03122010046.mp4
[2010.12.01 15:56:42 | 114,030,147 | ---- | M] () -- C:\Users\Oskari\Documents\RS Updates 1.wmv
[2010.12.01 15:02:32 | 000,011,200 | ---- | M] () -- C:\Users\Oskari\Documents\Finland413 Intro.wmv.sfk
[2010.11.30 20:19:56 | 000,000,025 | ---- | M] () -- C:\Users\Oskari\AppData\Roaming\RSBot_Accounts.ini
[2010.11.30 18:28:06 | 000,000,096 | ---- | M] () -- C:\Users\Oskari\.asadminpass
[2010.11.30 18:00:03 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2010.11.30 18:00:03 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2010.11.30 18:00:03 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2010.11.30 18:00:03 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2010.11.30 15:48:59 | 000,001,083 | ---- | M] () -- C:\Users\Oskari\Desktop\Adobe Photoshop CS3.lnk
[2010.11.29 20:43:45 | 000,040,440 | ---- | M] () -- C:\Users\Oskari\Documents\2.wmv.sfk
[2010.11.29 18:48:23 | 000,086,856 | ---- | M] () -- C:\Users\Oskari\Documents\Track 2 Recording 4.sfk
[2010.11.29 18:43:50 | 011,109,858 | ---- | M] () -- C:\Users\Oskari\Documents\Track 2 Recording 4.wav
[2010.11.29 16:46:14 | 001,435,588 | ---- | M] () -- C:\Users\Oskari\Documents\Puhelu.mp3
[2010.11.29 16:45:49 | 000,048,400 | ---- | M] () -- C:\Users\Oskari\Documents\Track 1 Recording 5.sfk
[2010.11.29 16:45:49 | 000,046,680 | ---- | M] () -- C:\Users\Oskari\Documents\Track 1 Recording 4.sfk
[2010.11.29 16:45:49 | 000,030,928 | ---- | M] () -- C:\Users\Oskari\Documents\Track 1 Recording 6.sfk
[2010.11.29 16:45:49 | 000,012,072 | ---- | M] () -- C:\Users\Oskari\Documents\Track 1 Recording 3.sfk
[2010.11.29 16:42:52 | 003,951,194 | ---- | M] () -- C:\Users\Oskari\Documents\Track 1 Recording 6.wav
[2010.11.29 16:41:22 | 006,186,670 | ---- | M] () -- C:\Users\Oskari\Documents\Track 1 Recording 5.wav
[2010.11.29 16:39:15 | 005,967,406 | ---- | M] () -- C:\Users\Oskari\Documents\Track 1 Recording 4.wav
[2010.11.29 16:38:24 | 001,537,346 | ---- | M] () -- C:\Users\Oskari\Documents\Track 1 Recording 3.wav
[2010.11.29 16:37:30 | 000,033,584 | ---- | M] () -- C:\Users\Oskari\Documents\Track 2 Recording 3.sfk
[2010.11.29 16:37:26 | 001,559,304 | ---- | M] () -- C:\Users\Oskari\Documents\Oskar2.mp3
[2010.11.29 16:35:13 | 004,290,586 | ---- | M] () -- C:\Users\Oskari\Documents\Track 2 Recording 3.wav
[2010.11.29 16:34:28 | 000,054,048 | ---- | M] () -- C:\Users\Oskari\Documents\Track 1 Recording 2.sfk
[2010.11.29 16:34:25 | 001,255,865 | ---- | M] () -- C:\Users\Oskari\Documents\OSkar.mp3
[2010.11.29 16:32:48 | 006,909,662 | ---- | M] () -- C:\Users\Oskari\Documents\Track 1 Recording 2.wav
[2010.11.28 13:45:39 | 009,813,511 | ---- | M] () -- C:\Users\Oskari\Documents\Master of Master intro.wmv
[2010.11.28 13:27:30 | 000,410,496 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010.11.27 18:28:54 | 000,005,824 | ---- | M] () -- C:\Users\Oskari\Documents\Track 2 Recording 2.sfk
[2010.11.27 18:26:30 | 000,737,814 | ---- | M] () -- C:\Users\Oskari\Documents\Track 2 Recording 2.wav
[2010.11.27 17:55:00 | 010,829,493 | ---- | M] () -- C:\Users\Oskari\Documents\Finland413 Intro.wmv
[2010.11.27 17:17:52 | 001,001,485 | ---- | M] () -- C:\Users\Oskari\Documents\Template 2.jpg
[2010.11.27 17:11:08 | 000,593,972 | ---- | M] () -- C:\Users\Oskari\Documents\Template.jpg
[2010.11.27 16:56:23 | 047,357,523 | ---- | M] () -- C:\Users\Oskari\Documents\Tv Sim Intro.wmv
[2010.11.27 16:44:58 | 000,003,200 | ---- | M] () -- C:\Users\Oskari\Documents\static.mp3.sfk
[2010.11.27 16:42:29 | 000,036,376 | ---- | M] () -- C:\Users\Oskari\Documents\static.mp3
[2010.11.26 21:04:38 | 000,000,024 | ---- | M] () -- C:\Users\Oskari\jagexappletviewer.preferences
[2010.11.24 21:06:28 | 156,119,281 | ---- | M] () -- C:\Users\Oskari\Documents\Turkey Event.wmv
[2010.11.24 20:17:16 | 000,034,024 | ---- | M] () -- C:\Users\Oskari\Documents\Turkey Event.veg
[2010.11.24 20:01:12 | 000,049,096 | ---- | M] () -- C:\Users\Oskari\Documents\Turkey Event.veg.bak
[2010.11.24 19:25:26 | 000,027,528 | ---- | M] () -- C:\Users\Oskari\Documents\sad.veg
[2010.11.24 18:05:22 | 000,022,048 | ---- | M] () -- C:\Users\Oskari\Documents\Track 2 Recording 1.sfk
[2010.11.24 18:04:41 | 002,813,926 | ---- | M] () -- C:\Users\Oskari\Documents\Track 2 Recording 1.wav
[2010.11.24 18:02:17 | 000,017,848 | ---- | M] () -- C:\Users\Oskari\Documents\Track 1 Recording 1.sfk
[2010.11.24 18:01:56 | 002,276,138 | ---- | M] () -- C:\Users\Oskari\Documents\Track 1 Recording 1.wav
[2010.11.23 11:01:25 | 000,000,000 | ---- | M] () -- C:\Windows\nsreg.dat
[2010.11.23 11:00:49 | 000,001,909 | ---- | M] () -- C:\Users\Oskari\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010.11.23 11:00:48 | 000,001,885 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2010.11.23 08:19:52 | 000,061,960 | ---- | M] (Avira GmbH) -- C:\Windows\System32\drivers\avgntflt.sys
[2010.11.16 17:37:57 | 000,022,024 | ---- | M] () -- C:\Users\Oskari\Documents\Target OSkar.veg
[2010.11.16 17:36:16 | 012,285,541 | ---- | M] () -- C:\Users\Oskari\Documents\What the... Lolz Intro.wmv
[2010.11.15 20:01:18 | 000,002,747 | ---- | M] () -- C:\Users\Oskari\.recently-used.xbel
[2010.11.14 18:06:43 | 073,765,781 | ---- | M] () -- C:\Users\Oskari\Documents\Finland413 Pking Clip.wmv
[2010.11.14 17:40:28 | 000,086,184 | ---- | M] () -- C:\Users\Oskari\Documents\1.veg
[2010.11.14 17:02:35 | 000,024,592 | ---- | M] () -- C:\Users\Oskari\Documents\1.veg.bak
[2010.11.14 16:55:03 | 000,012,824 | ---- | M] () -- C:\Users\Oskari\Documents\r.veg
[2010.11.14 16:53:44 | 000,080,360 | ---- | M] () -- C:\Users\Oskari\Documents\eDITING.wmv.sfk
[2010.11.14 16:53:40 | 041,645,793 | ---- | M] () -- C:\Users\Oskari\Documents\EDDDDiit.wmv
[2010.11.14 09:53:35 | 000,002,140 | ---- | M] () -- C:\Users\Oskari\Desktop\RuneScape.lnk
[2010.11.12 22:53:36 | 000,003,095 | ---- | M] () -- C:\Users\Oskari\Desktop\Jasc Paint Shop Pro 8.lnk
[2010.11.12 21:45:06 | 000,013,439 | ---- | M] () -- C:\Users\Oskari\Documents\Untitled.wmv
[2010.11.12 19:43:11 | 065,437,793 | ---- | M] () -- C:\Users\Oskari\Documents\eDITING.wmv
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010.12.09 21:13:16 | 034,853,757 | ---- | C] () -- C:\Users\Oskari\Documents\y.wmv
[2010.12.09 20:52:15 | 000,000,000 | ---- | C] () -- C:\Windows\tosOBEX.INI
[2010.12.09 20:46:31 | 000,000,099 | ---- | C] () -- C:\Windows\WirelessFTP.INI
[2010.12.06 12:24:07 | 000,088,729 | ---- | C] () -- C:\Users\Oskari\Documents\j.jpg
[2010.12.06 12:23:49 | 001,203,606 | ---- | C] () -- C:\Users\Oskari\Documents\t.psd
[2010.12.05 15:30:51 | 017,005,601 | ---- | C] () -- C:\Users\Oskari\Documents\NOOBNESS 3.wmv
[2010.12.05 15:21:22 | 000,022,040 | ---- | C] () -- C:\Users\Oskari\Documents\NOOBNESS 2.wmv.sfk
[2010.12.05 15:17:00 | 011,005,529 | ---- | C] () -- C:\Users\Oskari\Documents\NOOBNESS 2.wmv
[2010.12.05 15:03:57 | 000,014,584 | ---- | C] () -- C:\Users\Oskari\Documents\NOOBNESS.wmv.sfk
[2010.12.05 12:58:57 | 000,015,016 | ---- | C] () -- C:\Users\Oskari\Documents\s.veg
[2010.12.05 12:55:42 | 007,565,499 | ---- | C] () -- C:\Users\Oskari\Documents\NOOBNESS.wmv
[2010.12.05 12:29:35 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_wpdcomp_01_09_00.Wdf
[2010.12.05 12:16:06 | 000,037,400 | ---- | C] () -- C:\Users\Oskari\Documents\dd.jpg
[2010.12.05 12:15:40 | 000,043,662 | ---- | C] () -- C:\Users\Oskari\Documents\ss.jpg
[2010.12.05 10:24:15 | 000,000,949 | ---- | C] () -- C:\Users\Oskari\Desktop\Spotify.lnk
[2010.12.05 00:07:42 | 000,000,045 | ---- | C] () -- C:\Windows\System32\initdebug.nfo
[2010.12.04 20:31:47 | 000,119,218 | ---- | C] () -- C:\Users\Oskari\Documents\skyline.jpg
[2010.12.04 18:10:45 | 000,001,878 | ---- | C] () -- C:\Users\Public\Desktop\Vegas Pro 9.0.lnk
[2010.12.04 18:08:49 | 020,014,117 | ---- | C] () -- C:\Users\Oskari\Documents\Dj Sakke (Complete).wmv
[2010.12.03 20:10:50 | 000,032,328 | ---- | C] () -- C:\Users\Oskari\Documents\d.veg
[2010.12.03 20:10:50 | 000,031,464 | ---- | C] () -- C:\Users\Oskari\Documents\d.veg.bak
[2010.12.03 19:05:40 | 000,001,156 | ---- | C] () -- C:\Users\Oskari\Desktop\Format Factory.lnk
[2010.12.03 18:21:42 | 031,643,171 | ---- | C] () -- C:\Users\Oskari\Documents\03122010050.mp4
[2010.12.03 18:19:42 | 017,235,570 | ---- | C] () -- C:\Users\Oskari\Documents\03122010049.mp4
[2010.12.03 18:15:22 | 037,686,609 | ---- | C] () -- C:\Users\Oskari\Documents\03122010048.mp4
[2010.12.03 18:07:45 | 067,806,357 | ---- | C] () -- C:\Users\Oskari\Documents\03122010047.mp4
[2010.12.03 18:05:26 | 020,133,273 | ---- | C] () -- C:\Users\Oskari\Documents\03122010046.mp4
[2010.12.01 15:27:32 | 114,030,147 | ---- | C] () -- C:\Users\Oskari\Documents\RS Updates 1.wmv
[2010.12.01 15:01:32 | 000,011,200 | ---- | C] () -- C:\Users\Oskari\Documents\Finland413 Intro.wmv.sfk
[2010.11.30 20:19:56 | 000,000,025 | ---- | C] () -- C:\Users\Oskari\AppData\Roaming\RSBot_Accounts.ini
[2010.11.30 18:28:06 | 000,000,096 | ---- | C] () -- C:\Users\Oskari\.asadminpass
[2010.11.30 17:01:08 | 000,292,706 | ---- | C] () -- C:\Users\Oskari\Desktop\cs-shapesncurves.abr
[2010.11.30 15:48:59 | 000,001,083 | ---- | C] () -- C:\Users\Oskari\Desktop\Adobe Photoshop CS3.lnk
[2010.11.29 20:41:56 | 000,040,440 | ---- | C] () -- C:\Users\Oskari\Documents\2.wmv.sfk
[2010.11.29 18:43:50 | 000,086,856 | ---- | C] () -- C:\Users\Oskari\Documents\Track 2 Recording 4.sfk
[2010.11.29 18:42:44 | 011,109,858 | ---- | C] () -- C:\Users\Oskari\Documents\Track 2 Recording 4.wav
[2010.11.29 16:45:44 | 001,435,588 | ---- | C] () -- C:\Users\Oskari\Documents\Puhelu.mp3
[2010.11.29 16:42:52 | 000,030,928 | ---- | C] () -- C:\Users\Oskari\Documents\Track 1 Recording 6.sfk
[2010.11.29 16:41:22 | 003,951,194 | ---- | C] () -- C:\Users\Oskari\Documents\Track 1 Recording 6.wav
[2010.11.29 16:41:22 | 000,048,400 | ---- | C] () -- C:\Users\Oskari\Documents\Track 1 Recording 5.sfk
[2010.11.29 16:39:15 | 006,186,670 | ---- | C] () -- C:\Users\Oskari\Documents\Track 1 Recording 5.wav
[2010.11.29 16:39:15 | 000,046,680 | ---- | C] () -- C:\Users\Oskari\Documents\Track 1 Recording 4.sfk
[2010.11.29 16:38:24 | 005,967,406 | ---- | C] () -- C:\Users\Oskari\Documents\Track 1 Recording 4.wav
[2010.11.29 16:38:24 | 000,012,072 | ---- | C] () -- C:\Users\Oskari\Documents\Track 1 Recording 3.sfk
[2010.11.29 16:38:09 | 001,537,346 | ---- | C] () -- C:\Users\Oskari\Documents\Track 1 Recording 3.wav
[2010.11.29 16:37:22 | 001,559,304 | ---- | C] () -- C:\Users\Oskari\Documents\Oskar2.mp3
[2010.11.29 16:35:13 | 000,033,584 | ---- | C] () -- C:\Users\Oskari\Documents\Track 2 Recording 3.sfk
[2010.11.29 16:34:47 | 004,290,586 | ---- | C] () -- C:\Users\Oskari\Documents\Track 2 Recording 3.wav
[2010.11.29 16:34:22 | 001,255,865 | ---- | C] () -- C:\Users\Oskari\Documents\OSkar.mp3
[2010.11.29 16:32:48 | 000,054,048 | ---- | C] () -- C:\Users\Oskari\Documents\Track 1 Recording 2.sfk
[2010.11.29 16:32:07 | 006,909,662 | ---- | C] () -- C:\Users\Oskari\Documents\Track 1 Recording 2.wav
[2010.11.28 13:42:53 | 009,813,511 | ---- | C] () -- C:\Users\Oskari\Documents\Master of Master intro.wmv
[2010.11.27 18:26:30 | 000,005,824 | ---- | C] () -- C:\Users\Oskari\Documents\Track 2 Recording 2.sfk
[2010.11.27 18:25:46 | 000,737,814 | ---- | C] () -- C:\Users\Oskari\Documents\Track 2 Recording 2.wav
[2010.11.27 17:51:37 | 010,829,493 | ---- | C] () -- C:\Users\Oskari\Documents\Finland413 Intro.wmv
[2010.11.27 17:18:01 | 001,001,485 | ---- | C] () -- C:\Users\Oskari\Documents\Template 2.jpg
[2010.11.27 17:11:14 | 000,593,972 | ---- | C] () -- C:\Users\Oskari\Documents\Template.jpg
[2010.11.27 16:49:32 | 047,357,523 | ---- | C] () -- C:\Users\Oskari\Documents\Tv Sim Intro.wmv
[2010.11.27 16:43:20 | 000,003,200 | ---- | C] () -- C:\Users\Oskari\Documents\static.mp3.sfk
[2010.11.27 16:42:37 | 000,036,376 | ---- | C] () -- C:\Users\Oskari\Documents\static.mp3
[2010.11.26 21:03:53 | 000,000,024 | ---- | C] () -- C:\Users\Oskari\jagexappletviewer.preferences
[2010.11.24 20:17:21 | 156,119,281 | ---- | C] () -- C:\Users\Oskari\Documents\Turkey Event.wmv
[2010.11.24 19:52:25 | 000,049,096 | ---- | C] () -- C:\Users\Oskari\Documents\Turkey Event.veg.bak
[2010.11.24 19:52:25 | 000,034,024 | ---- | C] () -- C:\Users\Oskari\Documents\Turkey Event.veg
[2010.11.24 18:04:41 | 000,022,048 | ---- | C] () -- C:\Users\Oskari\Documents\Track 2 Recording 1.sfk
[2010.11.24 18:04:23 | 002,813,926 | ---- | C] () -- C:\Users\Oskari\Documents\Track 2 Recording 1.wav
[2010.11.24 18:01:56 | 000,017,848 | ---- | C] () -- C:\Users\Oskari\Documents\Track 1 Recording 1.sfk
[2010.11.24 18:01:37 | 002,276,138 | ---- | C] () -- C:\Users\Oskari\Documents\Track 1 Recording 1.wav
[2010.11.23 11:01:25 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2010.11.23 11:00:49 | 000,001,909 | ---- | C] () -- C:\Users\Oskari\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010.11.23 11:00:48 | 000,001,885 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2010.11.16 17:37:57 | 000,022,024 | ---- | C] () -- C:\Users\Oskari\Documents\Target OSkar.veg
[2010.11.16 17:22:57 | 012,285,541 | ---- | C] () -- C:\Users\Oskari\Documents\What the... Lolz Intro.wmv
[2010.11.15 20:01:18 | 000,002,747 | ---- | C] () -- C:\Users\Oskari\.recently-used.xbel
[2010.11.14 16:55:03 | 000,012,824 | ---- | C] () -- C:\Users\Oskari\Documents\r.veg
[2010.11.14 16:34:16 | 041,645,793 | ---- | C] () -- C:\Users\Oskari\Documents\EDDDDiit.wmv
[2010.11.14 16:31:33 | 000,080,360 | ---- | C] () -- C:\Users\Oskari\Documents\eDITING.wmv.sfk
[2010.11.14 14:06:29 | 073,765,781 | ---- | C] () -- C:\Users\Oskari\Documents\Finland413 Pking Clip.wmv
[2010.11.14 10:02:49 | 000,002,403 | ---- | C] () -- C:\Users\Oskari\Desktop\Google Chrome.lnk
[2010.11.13 00:39:56 | 000,086,184 | ---- | C] () -- C:\Users\Oskari\Documents\1.veg
[2010.11.13 00:39:56 | 000,024,592 | ---- | C] () -- C:\Users\Oskari\Documents\1.veg.bak
[2010.11.12 22:54:06 | 000,003,095 | ---- | C] () -- C:\Users\Oskari\Desktop\Jasc Paint Shop Pro 8.lnk
[2010.11.12 21:06:25 | 000,002,620 | ---- | C] () -- C:\Users\Oskari\Documents\Register Vegas Pro.htm
[2010.11.12 19:36:13 | 065,437,793 | ---- | C] () -- C:\Users\Oskari\Documents\eDITING.wmv
[2010.10.09 14:16:52 | 000,000,110 | ---- | C] () -- C:\Windows\GMouse.ini
[2010.10.03 14:17:08 | 000,056,320 | ---- | C] () -- C:\Windows\System32\iyvu9_32.dll
[2010.09.01 14:16:50 | 000,008,704 | ---- | C] () -- C:\Users\Oskari\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009.09.28 08:22:00 | 000,315,392 | ---- | C] () -- C:\Windows\System32\drivers\yk62x86.sys
[2009.07.14 01:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2007.11.06 22:19:28 | 000,053,299 | ---- | C] () -- C:\Windows\System32\pthreadVC.dll
[2004.12.02 15:20:14 | 000,114,688 | ---- | C] () -- C:\Windows\System32\TosBtAcc.dll
[2004.07.20 17:04:02 | 000,094,208 | ---- | C] () -- C:\Windows\System32\TosBtHcrpAPI.dll
[2004.01.15 14:43:28 | 000,114,688 | ---- | C] () -- C:\Windows\System32\TBTMonUI.dll
[1996.04.03 21:33:26 | 000,005,248 | ---- | C] () -- C:\Windows\System32\giveio.sys

========== Alternate Data Streams ==========

@Alternate Data Stream - 110 bytes -> C:\ProgramData\TEMP:888AFB86

< End of report >

Edited by Finland413, 10 December 2010 - 01:58 PM.

  • 0

Advertisements

#2
RKinner
Posted 14 December 2010 - 08:06 AM

RKinner

    Malware Expert

  • Expert
  • 24,624 posts
  • MVP
1. Open Avira AntiVir Personal. (There is likely an icon on your desktop, or in your system

tray by the clock.)
2. Click the "Configuration" link on the main screen. This opens the configuration panel.
3. Check the "Expert mode" option.
4. Click on General > Security.
5. *Uncheck* the option titled "Protect files and registry entries from manipulation".
6. Click the "OK" button.
7. Reboot your computer.

Now follow the instructions at:
http://www.bleepingc...-antivirus-2010

but post your logs back here. Remember to right click and Run As Administrator.

Turn off or Pause your anti-virus:
Download Combofix from any of the links below but rename it to george.exe before saving it to your desktop.

Link 1
Link 2
Link 3


==================================


Right click on george.exe and Run As Administrator & follow the prompts. It may need to reboot.
  • When finished, it will produce a report for you.
  • Please post the C:\ComboFix.txt so we can continue cleaning the system.


Run OTL and press the QuickScan button and post the log.

Ron
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP