45

End of file - 7793 bytes

– File Associations -----------------------------------------------------------

All asociations okay.

– Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

R0 snapman (Acronis Snapshots Manager) - c:\windows\system32\drivers\snapman.sys <Not Verified; Acronis; Acronis Snapshot API>
R0 sqxoeibo - c:\windows\system32\drivers\yfdaedfq.dat
R0 timounter (Acronis TrueImage Backup Archive Explorer) - c:\windows\system32\drivers\timntr.sys <Not Verified; Acronis; Acronis True Image>
R1 asuskbnt (Enhanced Display Driver Helper Service) - c:\windows\system32\drivers\atkkbnt.sys <Not Verified; ASUSTeK COMPUTER INC.; ASUS Help driver For Keyboard Service.>
R2 EIO - c:\windows\system32\drivers\eio.sys <Not Verified; ASUSTeK Computer Inc.; ASUS Kernel Mode Driver for NT>
R2 tifsfilter (Acronis TrueImage FS Filter) - c:\windows\system32\drivers\tifsfilt.sys <Not Verified; Acronis; TrueImage>

– Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

R2 AcrSch2Svc (Acronis Scheduler2 Service) - c:\programas\ficheiros comuns\acronis\schedule2\schedul2.exe <Not Verified; Acronis; Acronis Sheduler 2>

– Device Manager: Disabled ----------------------------------------------------

No disabled devices found.

– Scheduled Tasks -------------------------------------------------------------

2008-01-02 18:01:49 322 --ah----- C:\WINDOWS\Tasks\MP Scheduled Scan.job

– Files created between 2007-12-02 and 2008-01-02 -----------------------------
2008-01-02 18:01:56 0 d-------- C:\Programas\Trend Micro
2008-01-01 22:22:37 0 dr-h----- C:\Documents and Settings\JP\Application Data\SecuROM
2007-12-31 04:56:10 0 d-------- C:\Documents and Settings\JP\Application Data\Help
2007-12-31 01:36:10 0 d-------- C:\Programas\EA GAMES
2007-12-31 01:36:09 442368 -ra------ C:\WINDOWS\system32\vp6vfw.dll <Not Verified; On2.com; On2_VP6>
2007-12-31 01:33:10 0 d-------- C:\Documents and Settings\JP\Application Data\DAEMON Tools
2007-12-31 01:33:03 0 d-------- C:\Programas\DAEMON Tools Lite
2007-12-31 01:30:40 715248 --a------ C:\WINDOWS\system32\drivers\sptd.sys
2007-12-30 22:31:22 0 d-------- C:\WINDOWS\system32\LogFiles
2007-12-30 02:02:17 0 d-------- C:\WINDOWS\system32\pt-pt
2007-12-30 01:57:23 0 d-------- C:\WINDOWS\network diagnostic
2007-12-30 01:41:17 0 d-------- C:\Programas\Windows Defender
2007-12-30 01:17:52 0 d-------- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2007-12-30 00:11:33 0 d-------- C:\Documents and Settings\JP\Application Data\Grisoft
2007-12-30 00:10:47 0 d-------- C:\Documents and Settings\All Users\Application Data\Grisoft
2007-12-29 23:05:56 0 d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2007-12-29 22:26:34 84992 --a------ C:\WINDOWS\system32\drmv2cltl.dll
2007-12-28 03:48:49 0 d-------- C:\Documents and Settings\All Users\Application Data\Avg7
2007-12-28 03:42:24 0 d-------- C:\Documents and Settings\JP\Application Data\Symantec
2007-12-28 03:34:19 0 d-------- C:\Programas\Alwil Software
2007-12-26 21:30:54 0 d-------- C:\Documents and Settings\JP\Application Data\Media Player Classic
2007-12-26 21:29:23 5120 --a------ C:\WINDOWS\system32\ff_vfw.dll
2007-12-26 21:29:21 0 d-------- C:\Programas\K-Lite Codec Pack
2007-12-26 14:37:41 0 d-------- C:\Documents and Settings\All Users\Application Data\WLInstaller
2007-12-24 15:46:46 0 d-------- C:\WINDOWS\system32\appmgmt
2007-12-24 14:34:04 0 d-------- C:\Programas\Ficheiros comuns\Real
2007-12-24 14:33:36 0 d-------- C:\Programas\Real
2007-12-24 01:54:44 0 d-------- C:\Documents and Settings\JP\Application Data\DivX
2007-12-24 01:21:36 0 d-------- C:\Documents and Settings\JP\Application Data\Crystal Player
2007-12-23 23:46:20 0 d-------- C:\Documents and Settings\JP\Application Data\BSplayer
2007-12-23 23:46:20 0 d-------- C:\Documents and Settings\JP\Application Data\BSplayer Pro
3 23:25:40 19968 --a------ C:\WINDOWS\system32\cpuinf32.dll
2007-12-23 22:45:27 0 d-------- C:\Documents and Settings\JP\Application Data\uTorrent
2007-12-23 21:29:01 0 d-------- C:\WINDOWS\Sun
2007-12-23 21:29:01 0 d-------- C:\Documents and Settings\JP\Application Data\Sun
2007-12-23 21:26:28 0 d-------- C:\Programas\Java
2007-12-23 21:25:56 0 d-------- C:\Programas\Ficheiros comuns\Java
2007-12-23 19:14:29 0 d-------- C:\Documents and Settings\JP\Application Data\AdobeUM
2007-12-23 13:29:44 0 d-------- C:\WINDOWS\system32\PreInstall
2007-12-23 13:29:42 0 d–h----- C:\WINDOWS$hf_mig$
2007-12-23 13:25:55 0 d-------- C:\WINDOWS\system32\SoftwareDistribution
2007-12-23 13:24:55 0 d–hs---- C:\Documents and Settings\JP\UserData
2007-12-23 12:45:42 0 d-------- C:\Documents and Settings\JP\Application Data\dvdcss
2007-12-23 03:22:41 0 d-------- C:\WINDOWS\system32\drivers\umdf
2007-12-23 03:21:18 0 d-------- C:\Programas\Windows Media Connect 2
2007-12-23 00:23:48 0 d-------- C:\Documents and Settings\JP\Application Data\Macromedia
2007-12-22 18:51:13 0 d-------- C:\WINDOWS\RegisteredPackages
2007-12-22 18:50:30 0 d-------- C:\Documents and Settings\All Users\Application Data\Adobe Systems
2007-12-22 18:28:27 0 d-------- C:\Programas\Ficheiros comuns\Adobe Systems Shared
2007-12-22 18:28:13 0 d-------- C:\Documents and Settings\JP\Application Data\Adobe
2007-12-22 17:48:20 0 d-------- C:\Documents and Settings\JP\Contacts
2007-12-22 17:47:41 0 d------c- C:\WINDOWS\system32\DRVSTORE
2007-12-22 17:47:26 0 d-------- C:\Programas\MSN Messenger
2007-12-22 17:45:43 0 d-------- C:\Programas\Google
2007-12-22 17:38:50 0 d-------- C:\Programas\Lexmark X1100 Series
2007-12-22 17:32:46 0 d-------- C:\Programas\Multimedia Keyboard Driver
2007-12-22 17:32:36 0 d-------- C:\WINDOWS\Downloaded Installations

– Find3M Report ---------------------------------------------------------------

2007-12-30 01:42:23 0 d-------- C:\Programas\Ficheiros comuns
2007-12-28 13:30:41 0 d-------- C:\Programas\Symantec
2007-12-28 13:30:41 0 d-------- C:\Programas\Ficheiros comuns\Symantec Shared
2007-12-22 18:52:51 0 d-------- C:\Programas\Ficheiros comuns\Adobe
2007-12-22 17:32:49 0 d–h----- C:\Programas\InstallShield Installation Information
2007-12-22 16:22:47 358982 --a------ C:\WINDOWS\system32\perfh016.dat
2007-12-22 16:22:47 50952 --a------ C:\WINDOWS\system32\perfc016.dat

– Registry Dump ---------------------------------------------------------------

Note empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE~\Browser Helper Objects{57952B9E-687A-415E-9D75-5A79317DFD23}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
“RTHDCPL”=“RTHDCPL.EXE” [25-05-2005 15:37 C:\WINDOWS\RTHDCPL.EXE]
“NvCplDaemon”=“C:\WINDOWS\system32\NvCpl.dll” [13-02-2006 13:05]
“nwiz”=“nwiz.exe” [13-02-2006 13:05 C:\WINDOWS\system32\nwiz.exe]
“NvMediaCenter”=“C:\WINDOWS\system32\NvMcTray.dll” [13-02-2006 13:05]
“Acronis Scheduler2 Service”=“C:\Programas\Ficheiros comuns\Acronis\Schedule2\schedhlp.exe” [08-07-2006 21:33]
“NeroFilterCheck”=“C:\WINDOWS\system32\NeroCheck.exe” [09-07-2001 09:50]
“SunJavaUpdateSched”=“C:\Programas\Java\jre1.6.0_03\bin\jusched.exe” [25-09-2007 01:11]
“avast!”=“C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe” [04-12-2007 13:00]
“AAWTray”=“C:\Programas\Lavasoft\Ad-Aware 2007\AAWTray.exe”
“Windows Defender”=“C:\Programas\Windows Defender\MSASCui.exe” [03-11-2006 19:20]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
“CTFMON.EXE”=“C:\WINDOWS\system32\ctfmon.exe” [21-09-2004 12:00]
“MsnMsgr”=“C:\Programas\MSN Messenger\MsnMsgr.exe” [19-01-2007 12:54]
“DAEMON Tools Lite”=“C:\Programas\DAEMON Tools Lite\daemon.exe” [19-12-2007 20:13]

C:\Documents and Settings\All Users\Menu Iniciar\Programas\Arranque
Acrobat Assistant.lnk - C:\Programas\Adobe\Acrobat 6.0\Distillr\acrotray.exe [15-05-2003 0:19:50]

– Hosts -----------------------------------------------------------------------

127.0.0.1 007guard.com
127.0.0.1 www.007guard.com
127.0.0.1 008i.com
127.0.0.1 008k.com
127.0.0.1 www.008k.com
127.0.0.1 00hq.com
127.0.0.1 www.00hq.com
127.0.0.1 010402.com
127.0.0.1 032439.com
127.0.0.1 www.032439.com

7791 more entries in hosts file.

– End of Deckard’s System Scanner: finished at 2008-01-02 18:02:47 ------------

OLDMEN… please help… thanks