Logfile of random's system information tool 1.05 (written by random/random)
Run by Auri at 2009-01-10 20:38:44
Microsoft® Windows Vista™ Home Premium
System drive C: has 82 GB (54%) free of 152 GB
Total RAM: 1918 MB (61% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:39:06, on 10.1.2009
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16764)
Boot mode: Normal
Running processes:
C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\Ati2evxx.exe
C:\Program Files\Norman\Npm\bin\ELOGSVC.EXE
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
C:\Program Files\Norman\Npm\Bin\Zanda.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\Wacom_Tablet.exe
C:\firststeps\OnlineDiagnostic\TestManager\TestHandler.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\WTablet\Wacom_TabletUser.exe
C:\Windows\system32\Wacom_Tablet.exe
C:\Program Files\Norman\Npm\bin\NJEEVES.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Norman\nse\bin\NSESVC.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\Program Files\Norman\Npm\Bin\Zlh.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Java\jre1.6.0_04\bin\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\Norman\Nvc\bin\nvcoas.exe
C:\Program Files\Norman\Nvc\BIN\NVCSCHED.EXE
C:\Program Files\Norman\Nvc\BIN\NIP.EXE
C:\Program Files\Norman\Nvc\bin\cclaw.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\wuauclt.exe
C:\Users\Auri\Desktop\RSIT.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Trend Micro\HijackThis\Auri.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O1 - Hosts: ::1 localhost
O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
O2 - BHO: Adobe PDF Reader -linkkiavustaja - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_04\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Liven kirjautumisapuohjelma - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [Norman ZANDA] "C:\Program Files\Norman\Npm\bin\ZLH.EXE" /LOAD /SPLASH
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_04\bin\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [StartCCC] c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Users\Auri\Program Files\DNA\btdna.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'Paikallinen palvelu')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'Paikallinen palvelu')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'Verkkopalvelu')
O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: &Windows Live Search -
res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: V&ie Microsoft Exceliin -
res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Lähetä OneNoteen - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Läh&etä OneNoteen - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: HP-leikekirja - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: HP Smart -valitse - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Norman eLogger service 6 (eLoggerSvc6) - Norman ASA - C:\Program Files\Norman\Npm\bin\ELOGSVC.EXE
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: Norman NJeeves - Norman ASA - C:\Program Files\Norman\Npm\bin\NJEEVES.EXE
O23 - Service: Norman ZANDA - Norman ASA - C:\Program Files\Norman\Npm\Bin\Zanda.exe
O23 - Service: Norman Scanner Engine Service (nsesvc) - Norman ASA - C:\Program Files\Norman\nse\bin\NSESVC.EXE
O23 - Service: Norman Virus Control on-access component (nvcoas) - Norman ASA - C:\Program Files\Norman\Nvc\bin\nvcoas.exe
O23 - Service: Norman Virus Control Scheduler (NVCScheduler) - Norman ASA - C:\Program Files\Norman\Nvc\BIN\NVCSCHED.EXE
O23 - Service: TabletServiceWacom - Wacom Technology, Corp. - C:\Windows\system32\Wacom_Tablet.exe
O23 - Service: Fujitsu Siemens Computers Diagnostic Testhandler (TestHandler) - Fujitsu Siemens Computers - C:\firststeps\OnlineDiagnostic\TestManager\TestHandler.exe
--
End of file - 8544 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Tarkistetaan Windows Live -työkalurivin päivitykset.job
C:\Windows\tasks\WebReg Deskjet D2400 series.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{053F9267-DC04-4294-A72C-58F732D338C0}]
HP Print Clips - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll [2007-03-02 177768]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader -linkkiavustaja - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-09-15 1562960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_04\bin\ssv.dll [2007-12-14 509328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Liven kirjautumisapuohjelma - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-09-20 328752]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Windows Live Toolbar - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-10-19 546320]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2007-08-21 1006264]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-04-10 4431872]
"SMSERIAL"=C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [2006-11-22 630784]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-02-26 153136]
"Norman ZANDA"=C:\Program Files\Norman\Npm\bin\ZLH.EXE [2008-06-02 273520]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-03-11 49152]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_04\bin\jusched.exe [2007-12-14 144784]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-09 1232896]
"WindowsWelcomeCenter"=C:\Windows\system32\oobefldr.dll [2006-11-02 2159104]
""= []
"StartCCC"=c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2006-11-10 90112]
"BitTorrent DNA"=C:\Users\Auri\Program Files\DNA\btdna.exe []
"MsnMsgr"=C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2007-10-18 5724184]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2008-09-16 1833296]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Adobe Gamma Loader.exe.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{3a150461-b28e-11dc-ba92-806e6f6e6963}]
shell\AutoRun\command - E:\autorun.exe
======List of files/folders created in the last 1 months======
2009-01-10 20:22:56 ----D---- C:\_OTMoveIt
2009-01-10 17:12:38 ----D---- C:\rsit
2008-12-26 00:27:19 ----D---- C:\Program Files\Trend Micro
2008-12-25 16:54:31 ----A---- C:\Windows\wininit.ini
2008-12-25 15:35:20 ----D---- C:\Users\Auri\AppData\Roaming\Mozilla
2008-12-25 15:35:07 ----D---- C:\Program Files\Mozilla Firefox
2008-12-23 13:32:27 ----D---- C:\ProgramData\Spybot - Search & Destroy
2008-12-23 13:32:27 ----D---- C:\Program Files\Spybot - Search & Destroy
2008-12-18 22:07:48 ----A---- C:\Windows\system32\mshtml.dll
2008-12-12 23:48:27 ----A---- C:\Windows\system32\tzres.dll
2008-12-12 18:46:57 ----A---- C:\Windows\system32\gdi32.dll
2008-12-12 18:46:52 ----A---- C:\Windows\system32\gameux.dll
2008-12-12 18:46:52 ----A---- C:\Windows\system32\Apphlpdm.dll
2008-12-12 18:46:51 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2008-12-12 18:46:41 ----A---- C:\Windows\system32\shell32.dll
2008-12-12 18:46:27 ----A---- C:\Windows\explorer.exe
2008-12-12 18:46:22 ----A---- C:\Windows\system32\urlmon.dll
2008-12-12 18:46:22 ----A---- C:\Windows\system32\ieframe.dll
2008-12-12 18:46:21 ----A---- C:\Windows\system32\wininet.dll
2008-12-12 18:46:21 ----A---- C:\Windows\system32\pngfilt.dll
2008-12-12 18:46:21 ----A---- C:\Windows\system32\mstime.dll
2008-12-12 18:46:21 ----A---- C:\Windows\system32\mshtmled.dll
2008-12-12 18:46:21 ----A---- C:\Windows\system32\jsproxy.dll
2008-12-12 18:46:21 ----A---- C:\Windows\system32\ieUnatt.exe
2008-12-12 18:46:21 ----A---- C:\Windows\system32\ieui.dll
2008-12-12 18:46:21 ----A---- C:\Windows\system32\iesetup.dll
2008-12-12 18:46:21 ----A---- C:\Windows\system32\iertutil.dll
2008-12-12 18:46:21 ----A---- C:\Windows\system32\iernonce.dll
2008-12-12 18:46:21 ----A---- C:\Windows\system32\ieapfltr.dll
2008-12-12 18:46:21 ----A---- C:\Windows\system32\ie4uinit.exe
2008-12-12 18:46:21 ----A---- C:\Windows\system32\icardie.dll
2008-12-12 18:46:21 ----A---- C:\Windows\system32\dxtrans.dll
2008-12-12 18:46:21 ----A---- C:\Windows\system32\dxtmsft.dll
2008-12-12 18:46:21 ----A---- C:\Windows\system32\advpack.dll
2008-12-12 18:46:13 ----A---- C:\Windows\system32\WMVCORE.DLL
2008-12-12 18:46:13 ----A---- C:\Windows\system32\WMNetMgr.dll
2008-12-12 18:46:13 ----A---- C:\Windows\system32\rrinstaller.exe
2008-12-12 18:46:13 ----A---- C:\Windows\system32\mfps.dll
2008-12-12 18:46:13 ----A---- C:\Windows\system32\mfpmp.exe
2008-12-12 18:46:13 ----A---- C:\Windows\system32\mferror.dll
2008-12-12 18:46:13 ----A---- C:\Windows\system32\mf.dll
2008-12-12 18:46:13 ----A---- C:\Windows\system32\logagent.exe
======List of files/folders modified in the last 1 months======
2009-01-10 20:38:46 ----D---- C:\Windows\Temp
2009-01-10 20:28:30 ----D---- C:\Windows\system32\drivers
2009-01-10 20:28:01 ----RD---- C:\Program Files
2009-01-10 20:27:58 ----D---- C:\Users\Auri\AppData\Roaming\WTablet
2009-01-10 20:27:43 ----D---- C:\Program Files\Norman
2009-01-10 20:22:58 ----D---- C:\Windows\System32
2009-01-10 20:22:58 ----D---- C:\Windows
2009-01-10 20:21:02 ----D---- C:\Windows\Prefetch
2009-01-10 11:15:41 ----SD---- C:\ProgramData\Microsoft
2009-01-08 21:00:28 ----SHD---- C:\System Volume Information
2009-01-05 16:58:09 ----D---- C:\Windows\inf
2009-01-05 16:58:09 ----A---- C:\Windows\system32\PerfStringBackup.INI
2009-01-03 10:48:47 ----D---- C:\Windows\system32\catroot2
2009-01-02 17:46:00 ----D---- C:\Program Files\Adobe
2009-01-01 01:26:20 ----D---- C:\Windows\system32\Tasks
2009-01-01 01:26:19 ----D---- C:\Windows\Tasks
2008-12-27 18:45:48 ----D---- C:\Program Files\Tablet
2008-12-27 18:44:26 ----D---- C:\Windows\system32\catroot
2008-12-27 18:43:26 ----D---- C:\Windows\system32\WTablet
2008-12-23 13:32:27 ----HD---- C:\ProgramData
2008-12-23 11:43:26 ----D---- C:\Users\Auri\AppData\Roaming\LimeWire
2008-12-18 22:08:19 ----D---- C:\Windows\winsxs
2008-12-13 14:11:23 ----ASH---- C:\Program Files\desktop.ini
2008-12-13 14:10:07 ----D---- C:\Windows\AppPatch
2008-12-13 14:10:07 ----D---- C:\Program Files\Windows Mail
2008-12-13 14:10:06 ----D---- C:\Windows\system32\fi-FI
2008-12-13 14:10:05 ----D---- C:\Windows\system32\migration
2008-12-13 14:10:05 ----D---- C:\Program Files\Internet Explorer
2008-12-12 23:51:41 ----SHD---- C:\Windows\Installer
2008-12-12 23:51:34 ----HD---- C:\Config.Msi
2008-12-12 23:51:33 ----D---- C:\ProgramData\Microsoft Help
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2008-04-26 278728]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2008-04-26 25416]
R2 Ndiskio;Ndiskio; \??\C:\Program Files\Norman\Nse\bin\NDISKIO.SYS [2007-01-02 20448]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2007-02-01 690176]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\Windows\system32\DRIVERS\CmBatt.sys [2007-12-29 14208]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-04-10 1764960]
R3 NvcMFlt;NvcMFlt; C:\Windows\system32\DRIVERS\nvcv32mf.sys [2008-09-02 19512]
R3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-02-02 2385920]
R3 RTL8169;Realtek 8169 NT Driver; C:\Windows\system32\DRIVERS\Rtlh86.sys [2007-01-15 70144]
R3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2006-11-22 982272]
R3 wacommousefilter;Wacom Mouse Filter Driver; C:\Windows\system32\DRIVERS\wacommousefilter.sys [2007-02-16 11312]
R3 wacomvhid;Wacom Virtual Hid Driver; C:\Windows\system32\DRIVERS\wacomvhid.sys [2008-07-11 13352]
R3 WacomVKHid;Virtual Keyboard Driver; C:\Windows\system32\DRIVERS\WacomVKHid.sys [2007-02-15 11440]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2006-11-02 5632]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2006-11-02 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2006-11-02 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2006-11-02 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2006-11-02 6016]
S3 nvcfsr;nvcfsr; \??\C:\Program Files\Norman\Nvc\bin\nvcfsr.sys [2007-01-09 6712]
S3 nvcoafl4;nvcoafl4; \??\C:\Program Files\Norman\Nvc\bin\nvcoafl4.sys [2007-01-09 36472]
S3 nvcoaft4;nvcoaft4; \??\C:\Program Files\Norman\Nvc\bin\nvcoaft4.sys [2007-01-09 104288]
S3 nvcoarc4;nvcoarc4; \??\C:\Program Files\Norman\Nvc\bin\nvcoarc4.sys [2007-01-09 25528]
S3 wacmoumonitor;Wacom Mode Helper; C:\Windows\system32\DRIVERS\wacmoumonitor.sys [2008-10-06 15656]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2006-11-02 39936]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2006-11-02 82560]
S4 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iastor.sys [2006-05-11 247808]
S4 nvatabus;nvatabus; C:\Windows\system32\drivers\nvatabus.sys [2006-07-14 105088]
S4 viamraid;viamraid; C:\Windows\system32\drivers\viamraid.sys [2006-03-31 100992]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2006-11-02 11264]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2007-02-02 565248]
R2 eLoggerSvc6;Norman eLogger service 6; C:\Program Files\Norman\Npm\bin\ELOGSVC.EXE [2007-08-30 150584]
R2 hpqddsvc;HP CUE DeviceDiscovery -palvelu; C:\Windows\system32\svchost.exe [2006-11-02 22016]
R2 Norman ZANDA;Norman ZANDA; C:\Program Files\Norman\Npm\Bin\Zanda.exe [2008-04-23 408696]
R2 TabletServiceWacom;TabletServiceWacom; C:\Windows\system32\Wacom_Tablet.exe [2008-10-30 2749224]
R2 TestHandler;Fujitsu Siemens Computers Diagnostic Testhandler; C:\firststeps\OnlineDiagnostic\TestManager\TestHandler.exe [2006-12-08 204800]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2006-11-02 22016]
R3 Norman NJeeves;Norman NJeeves; C:\Program Files\Norman\Npm\bin\NJEEVES.EXE [2008-03-27 150584]
R3 nsesvc;Norman Scanner Engine Service; C:\Program Files\Norman\nse\bin\NSESVC.EXE [2008-06-19 322616]
R3 nvcoas;Norman Virus Control on-access component; C:\Program Files\Norman\Nvc\bin\nvcoas.exe [2008-04-29 183352]
R3 NVCScheduler;Norman Virus Control Scheduler; C:\Program Files\Norman\Nvc\BIN\NVCSCHED.EXE [2008-03-11 146488]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-02-26 267824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 usnjsvc;Messengerin jaettavien kansioiden USN Journal -lokin lukupalvelu; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
-----------------EOF-----------------
========== FILES ==========
C:\Windows\pn8.exe moved successfully.
c:\Windows\hw5305.exe moved successfully.
C:\Windows\ykgee3362.exe moved successfully.
C:\Windows\nohh06760.exe moved successfully.
Folder move failed. C:\Program Files\IEToolbar\ECO Bar\tbu02705 scheduled to be moved on reboot.
Folder move failed. C:\Program Files\IEToolbar\ECO Bar scheduled to be moved on reboot.
Folder move failed. C:\Program Files\IEToolbar scheduled to be moved on reboot.
C:\Windows\xmovb6426.exe moved successfully.
C:\Program Files\runit moved successfully.
C:\Windows\vmqq64340.exe moved successfully.
C:\Windows\gpna8081.exe moved successfully.
C:\Windows\kdiue732.txt moved successfully.
C:\kdiue732.txt moved successfully.
C:\Windows\system32\qfhmidsgszwwva.dll unregistered successfully.
C:\Windows\system32\qfhmidsgszwwva.dll moved successfully.
C:\Users\Auri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\runit_32.lnk moved successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list\\C:\Program Files\BitTorrent\bittorrent.exe deleted successfully.
========== COMMANDS ==========
File delete failed. C:\Users\Auri\AppData\Local\Temp\etilqs_bhzLDcpGeSYq9YUnV9b3 scheduled to be deleted on reboot.
File delete failed. C:\Users\Auri\AppData\Local\Temp\fla2E22.tmp scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
Windows Temp folder emptied.
File delete failed. C:\Users\Auri\AppData\Local\Mozilla\Firefox\Profiles\w22ee5nb.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Users\Auri\AppData\Local\Mozilla\Firefox\Profiles\w22ee5nb.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Users\Auri\AppData\Local\Mozilla\Firefox\Profiles\w22ee5nb.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Users\Auri\AppData\Local\Mozilla\Firefox\Profiles\w22ee5nb.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Users\Auri\AppData\Local\Mozilla\Firefox\Profiles\w22ee5nb.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. C:\Users\Auri\AppData\Local\Mozilla\Firefox\Profiles\w22ee5nb.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
OTMoveIt3 by OldTimer - Version 1.0.8.0 log created on 01102009_202256
Files moved on Reboot...
C:\Program Files\IEToolbar\ECO Bar\tbu02705 moved successfully.
C:\Program Files\IEToolbar\ECO Bar moved successfully.
C:\Program Files\IEToolbar moved successfully.
File C:\Users\Auri\AppData\Local\Temp\etilqs_bhzLDcpGeSYq9YUnV9b3 not found!
File C:\Users\Auri\AppData\Local\Temp\fla2E22.tmp not found!
C:\Users\Auri\AppData\Local\Mozilla\Firefox\Profiles\w22ee5nb.default\Cache\_CACHE_001_ moved successfully.
C:\Users\Auri\AppData\Local\Mozilla\Firefox\Profiles\w22ee5nb.default\Cache\_CACHE_002_ moved successfully.
C:\Users\Auri\AppData\Local\Mozilla\Firefox\Profiles\w22ee5nb.default\Cache\_CACHE_003_ moved successfully.
C:\Users\Auri\AppData\Local\Mozilla\Firefox\Profiles\w22ee5nb.default\Cache\_CACHE_MAP_ moved successfully.
C:\Users\Auri\AppData\Local\Mozilla\Firefox\Profiles\w22ee5nb.default\urlclassifier3.sqlite moved successfully.
C:\Users\Auri\AppData\Local\Mozilla\Firefox\Profiles\w22ee5nb.default\XUL.mfl moved successfully.