Jump to content

Slow startup


danctris
 Share

Recommended Posts

My laptop starts up very slowly, can somebody help me, thank you?

OTL logfile created on: 16.8.2011 18:18:42 - Run 1

OTL by OldTimer - Version 3.2.26.4 Folder = C:\Users\X\Desktop

Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation

Internet Explorer (Version = 7.0.6002.18005)

Locale: 0000040B | Country: Suomi | Language: FIN | Date Format: d.M.yyyy

2,75 Gb Total Physical Memory | 1,62 Gb Available Physical Memory | 58,91% Memory free

5,71 Gb Paging File | 4,58 Gb Available in Paging File | 80,30% Paging File free

Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files

Drive C: | 288,12 Gb Total Space | 193,61 Gb Free Space | 67,20% Space Free | Partition Type: NTFS

Drive D: | 9,97 Gb Total Space | 1,73 Gb Free Space | 17,36% Space Free | Partition Type: NTFS

Drive F: | 37,38 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: TX | User Name: X | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: Current user

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011.08.16 18:12:26 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\X\Desktop\OTL.exe

PRC - [2011.08.12 14:12:49 | 000,140,952 | ---- | M] (Google Inc.) -- C:\Users\X\AppData\Local\Google\Update\1.3.21.65\ GoogleCrashHandler.exe

PRC - [2011.07.15 13:39:27 | 000,514,048 | ---- | M] () -- C:\Program Files\Mobile Partner\Mobile Partner.exe

PRC - [2011.07.15 13:39:27 | 000,203,776 | ---- | M] () -- C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe

PRC - [2011.07.04 14:43:54 | 003,493,720 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe

PRC - [2011.07.04 14:43:51 | 000,042,184 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

PRC - [2011.03.24 01:34:18 | 000,435,152 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe

PRC - [2010.11.16 16:37:38 | 000,264,704 | ---- | M] () -- C:\ProgramData\DatacardService\HWDeviceService.exe

PRC - [2010.11.16 16:37:30 | 000,230,912 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\ProgramData\DatacardService\DCSHelper.exe

PRC - [2008.08.22 15:32:06 | 000,361,808 | ---- | M] () -- C:\Windows\SMINST\BLService.exe

PRC - [2008.04.10 14:50:06 | 001,369,384 | ---- | M] (Wacom Technology, Corp.) -- C:\Windows\System32\Pen_Tablet.exe

PRC - [2008.03.13 05:24:52 | 000,699,456 | ---- | M] (DigitalPersona, Inc.) -- C:\Program Files\DigitalPersona\Bin\DpAgent.exe

PRC - [2008.03.13 05:24:52 | 000,302,144 | ---- | M] (DigitalPersona, Inc.) -- C:\Program Files\DigitalPersona\Bin\DpHostW.exe

PRC - [2007.10.16 17:55:32 | 000,095,528 | ---- | M] () -- C:\Windows\System32\WacomTouchService.exe

PRC - [2005.07.16 00:48:33 | 000,479,232 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Gmail Notifier\gnotify.exe

========== Modules (No Company Name) ==========

MOD - [2011.08.16 16:05:55 | 011,804,672 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System .Web\5aa9131000876de66160ff713b543d99\System.Web.ni.dll

MOD - [2011.08.16 16:05:43 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System .Runtime.Remo#\a6d889aa69fd51c100352f23c7cebd22\System. Runtime.Remoting.ni.dll

MOD - [2011.08.16 15:18:21 | 005,450,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System .Xml\4c3cda96b8f12220da20f2f8d1b9439c\System.Xml.ni.dll

MOD - [2011.08.16 15:17:52 | 012,430,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System .Windows.Forms\c50d9d540acecdef29c31201e203a331\System. Windows.Forms.ni.dll

MOD - [2011.08.16 15:17:29 | 001,587,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System .Drawing\d8d83838f9840bde901df516ba3de588\System.Drawin g.ni.dll

MOD - [2011.08.16 15:14:23 | 007,950,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System \b9ea0d414c4861120bfb7365d8ec0939\System.ni.dll

MOD - [2011.08.16 15:00:09 | 011,490,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorl ib\f6deb187f24bb3185841092b89fbfdbb\mscorlib.ni.dll

MOD - [2011.07.15 13:39:31 | 000,777,728 | ---- | M] () -- C:\Program Files\Mobile Partner\SMSUIPlugin.dll

MOD - [2011.07.15 13:39:31 | 000,670,720 | ---- | M] () -- C:\Program Files\Mobile Partner\SmsAppPlugin.dll

MOD - [2011.07.15 13:39:31 | 000,314,368 | ---- | M] () -- C:\Program Files\Mobile Partner\StatusBarMgrPlugin.dll

MOD - [2011.07.15 13:39:31 | 000,229,376 | ---- | M] () -- C:\Program Files\Mobile Partner\ToolBarMgrPlugin.dll

MOD - [2011.07.15 13:39:31 | 000,217,600 | ---- | M] () -- C:\Program Files\Mobile Partner\SmsSrvPlugin.dll

MOD - [2011.07.15 13:39:31 | 000,185,856 | ---- | M] () -- C:\Program Files\Mobile Partner\XFramePlugin.dll

MOD - [2011.07.15 13:39:31 | 000,159,232 | ---- | M] () -- C:\Program Files\Mobile Partner\XCodec.dll

MOD - [2011.07.15 13:39:31 | 000,156,672 | ---- | M] () -- C:\Program Files\Mobile Partner\STKSrvPlugin.dll

MOD - [2011.07.15 13:39:31 | 000,142,336 | ---- | M] () -- C:\Program Files\Mobile Partner\USSDSrvPlugin.dll

MOD - [2011.07.15 13:39:31 | 000,135,168 | ---- | M] () -- C:\Program Files\Mobile Partner\Trace.dll

MOD - [2011.07.15 13:39:31 | 000,106,496 | ---- | M] () -- C:\Program Files\Mobile Partner\Win7Support.dll

MOD - [2011.07.15 13:39:30 | 009,515,520 | ---- | M] () -- C:\Program Files\Mobile Partner\QtGui4.dll

MOD - [2011.07.15 13:39:30 | 000,370,176 | ---- | M] () -- C:\Program Files\Mobile Partner\plugins\imageformats\qtiff4.dll

MOD - [2011.07.15 13:39:30 | 000,258,560 | ---- | M] () -- C:\Program Files\Mobile Partner\sdk.dll

MOD - [2011.07.15 13:39:29 | 002,415,104 | ---- | M] () -- C:\Program Files\Mobile Partner\QtCore4.dll

MOD - [2011.07.15 13:39:29 | 000,545,280 | ---- | M] () -- C:\Program Files\Mobile Partner\PluginContainer.dll

MOD - [2011.07.15 13:39:29 | 000,449,536 | ---- | M] () -- C:\Program Files\Mobile Partner\NetInfoUIExPlugin.dll

MOD - [2011.07.15 13:39:29 | 000,379,392 | ---- | M] () -- C:\Program Files\Mobile Partner\Proxy.dll

MOD - [2011.07.15 13:39:29 | 000,350,720 | ---- | M] () -- C:\Program Files\Mobile Partner\plugins\imageformats\qmng4.dll

MOD - [2011.07.15 13:39:29 | 000,275,456 | ---- | M] () -- C:\Program Files\Mobile Partner\NetInfoSrvPlugin.dll

MOD - [2011.07.15 13:39:29 | 000,225,280 | ---- | M] () -- C:\Program Files\Mobile Partner\NetSrvPlugin.dll

MOD - [2011.07.15 13:39:29 | 000,192,000 | ---- | M] () -- C:\Program Files\Mobile Partner\plugins\imageformats\qjpeg4.dll

MOD - [2011.07.15 13:39:29 | 000,158,720 | ---- | M] () -- C:\Program Files\Mobile Partner\NetConnectSrvPlugin.dll

MOD - [2011.07.15 13:39:29 | 000,133,120 | ---- | M] () -- C:\Program Files\Mobile Partner\OSDialup.dll

MOD - [2011.07.15 13:39:29 | 000,131,072 | ---- | M] () -- C:\Program Files\Mobile Partner\OSNDIS.dll

MOD - [2011.07.15 13:39:29 | 000,101,376 | ---- | M] () -- C:\Program Files\Mobile Partner\OSAdapt.dll

MOD - [2011.07.15 13:39:29 | 000,093,184 | ---- | M] () -- C:\Program Files\Mobile Partner\NotifyServicePlugin.dll

MOD - [2011.07.15 13:39:29 | 000,082,944 | ---- | M] () -- C:\Program Files\Mobile Partner\plugins\imageformats\qgif4.dll

MOD - [2011.07.15 13:39:29 | 000,081,920 | ---- | M] () -- C:\Program Files\Mobile Partner\plugins\imageformats\qico4.dll

MOD - [2011.07.15 13:39:29 | 000,065,536 | ---- | M] () -- C:\Program Files\Mobile Partner\OSPowerMgr.dll

MOD - [2011.07.15 13:39:29 | 000,062,976 | ---- | M] () -- C:\Program Files\Mobile Partner\OSCall.dll

MOD - [2011.07.15 13:39:28 | 001,101,824 | ---- | M] () -- C:\Program Files\Mobile Partner\NDISAPI.dll

MOD - [2011.07.15 13:39:28 | 000,550,400 | ---- | M] () -- C:\Program Files\Mobile Partner\CallAppPlugin.dll

MOD - [2011.07.15 13:39:28 | 000,547,840 | ---- | M] () -- C:\Program Files\Mobile Partner\CallLogSrvPlugin.dll

MOD - [2011.07.15 13:39:28 | 000,495,104 | ---- | M] () -- C:\Program Files\Mobile Partner\DeviceMgrUIPlugin.dll

MOD - [2011.07.15 13:39:28 | 000,424,960 | ---- | M] () -- C:\Program Files\Mobile Partner\DialupUIPlugin.dll

MOD - [2011.07.15 13:39:28 | 000,352,768 | ---- | M] () -- C:\Program Files\Mobile Partner\core.dll

MOD - [2011.07.15 13:39:28 | 000,337,408 | ---- | M] () -- C:\Program Files\Mobile Partner\DeviceAppPlugin.dll

MOD - [2011.07.15 13:39:28 | 000,331,776 | ---- | M] () -- C:\Program Files\Mobile Partner\NetConnectPlugin.dll

MOD - [2011.07.15 13:39:28 | 000,300,544 | ---- | M] () -- C:\Program Files\Mobile Partner\DeviceSrvPlugin.dll

MOD - [2011.07.15 13:39:28 | 000,245,760 | ---- | M] () -- C:\Program Files\Mobile Partner\MenuMgrPlugin.dll

MOD - [2011.07.15 13:39:28 | 000,238,592 | ---- | M] () -- C:\Program Files\Mobile Partner\AtCodec.dll

MOD - [2011.07.15 13:39:28 | 000,218,112 | ---- | M] () -- C:\Program Files\Mobile Partner\Common.dll

MOD - [2011.07.15 13:39:28 | 000,211,456 | ---- | M] () -- C:\Program Files\Mobile Partner\DialUpPlugin.dll

MOD - [2011.07.15 13:39:28 | 000,179,712 | ---- | M] () -- C:\Program Files\Mobile Partner\NDISPlugin.dll

MOD - [2011.07.15 13:39:28 | 000,175,104 | ---- | M] () -- C:\Program Files\Mobile Partner\CallSrvPlugin.dll

MOD - [2011.07.15 13:39:28 | 000,157,184 | ---- | M] () -- C:\Program Files\Mobile Partner\DataServicePlugin.dll

MOD - [2011.07.15 13:39:28 | 000,123,392 | ---- | M] () -- C:\Program Files\Mobile Partner\ATR2SMgr.dll

MOD - [2011.07.15 13:39:28 | 000,117,760 | ---- | M] () -- C:\Program Files\Mobile Partner\LayoutPlugin.dll

MOD - [2011.07.15 13:39:28 | 000,043,008 | ---- | M] () -- C:\Program Files\Mobile Partner\libgcc_s_dw2-1.dll

MOD - [2011.07.15 13:39:28 | 000,011,362 | ---- | M] () -- C:\Program Files\Mobile Partner\mingwm10.dll

MOD - [2011.07.15 13:39:27 | 001,077,248 | ---- | M] () -- C:\Program Files\Mobile Partner\AddrBookPlugin.dll

MOD - [2011.07.15 13:39:27 | 000,739,840 | ---- | M] () -- C:\Program Files\Mobile Partner\AddrBookUIPlugin.dll

MOD - [2011.07.15 13:39:27 | 000,514,048 | ---- | M] () -- C:\Program Files\Mobile Partner\Mobile Partner.exe

MOD - [2011.07.15 13:39:27 | 000,264,704 | ---- | M] () -- C:\Program Files\Mobile Partner\AddrBookSrvPlugin.dll

MOD - [2009.03.31 21:05:04 | 000,413,696 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Windows.Forms.res ources\2.0.0.0_fi_b77a5c561934e089\System.Windows.Forms .resources.dll

MOD - [2009.03.31 21:05:04 | 000,299,008 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0. 0.0_fi_b77a5c561934e089\mscorlib.resources.dll

MOD - [2008.09.16 21:18:06 | 000,132,608 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll

MOD - [2008.08.22 11:36:00 | 001,679,360 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManag er.Graphics.Wizard\2.0.3009.39983__90ba9c70f846762e\CLI .Aspect.DisplaysManager.Graphics.Wizard.dll

MOD - [2008.08.22 11:36:00 | 000,688,128 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Grap hics.Wizard\2.0.3009.40157__90ba9c70f846762e\CLI.Aspect .DeviceCV.Graphics.Wizard.dll

MOD - [2008.08.22 11:36:00 | 000,364,544 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Grap hics.Wizard\2.0.3009.40180__90ba9c70f846762e\CLI.Aspect .DeviceTV.Graphics.Wizard.dll

MOD - [2008.08.22 11:36:00 | 000,253,952 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runti me\2.0.3009.39941__90ba9c70f846762e\CLI.Caste.Graphics. Runtime.dll

MOD - [2008.08.22 11:36:00 | 000,196,608 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Gr aphics.Wizard\2.0.3009.39997__90ba9c70f846762e\CLI.Aspe ct.InfoCentre.Graphics.Wizard.dll

MOD - [2008.08.22 11:36:00 | 000,077,824 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Grap hics.Runtime\2.0.3009.40172__90ba9c70f846762e\CLI.Aspec t.DeviceTV.Graphics.Runtime.dll

MOD - [2008.08.22 11:36:00 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Grap hics.Runtime\2.0.3009.40135__90ba9c70f846762e\CLI.Aspec t.DeviceCV.Graphics.Runtime.dll

MOD - [2008.08.22 11:36:00 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizar d\2.0.3009.39975__90ba9c70f846762e\CLI.Caste.Graphics.W izard.dll

MOD - [2008.08.22 11:36:00 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DevicePropert y.Graphics.Runtime\2.0.3009.40094__90ba9c70f846762e\CLI .Aspect.DeviceProperty.Graphics.Runtime.dll

MOD - [2008.08.22 11:36:00 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandli ng.Graphics.Runtime\2.0.3009.39962__90ba9c70f846762e\CL I.Aspect.HotkeysHandling.Graphics.Runtime.dll

MOD - [2008.08.22 11:35:58 | 000,483,328 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Gra phics.Wizard\2.0.3009.40202__90ba9c70f846762e\CLI.Aspec t.TransCode.Graphics.Wizard.dll

MOD - [2008.08.22 11:35:28 | 000,073,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashb oard\2.0.3009.39955__90ba9c70f846762e\CLI.Caste.Graphic s.Dashboard.dll

MOD - [2008.08.22 11:35:27 | 000,352,256 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Grap hics.Dashboard\2.0.3009.40143__90ba9c70f846762e\CLI.Asp ect.Radeon3D.Graphics.Dashboard.dll

MOD - [2008.08.22 11:35:27 | 000,147,456 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE .Graphics.Dashboard\2.0.3009.40201__90ba9c70f846762e\CL I.Aspect.PowerPlayDPPE.Graphics.Dashboard.dll

MOD - [2008.08.22 11:35:27 | 000,135,168 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graph ics.Dashboard\2.0.3009.40208__90ba9c70f846762e\CLI.Aspe ct.Welcome.Graphics.Dashboard.dll

MOD - [2008.08.22 11:35:27 | 000,090,112 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Grap hics.Wizard\2.0.3009.40149__90ba9c70f846762e\CLI.Aspect .Radeon3D.Graphics.Wizard.dll

MOD - [2008.08.22 11:35:27 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Grap hics.Runtime\2.0.3009.40142__90ba9c70f846762e\CLI.Aspec t.Radeon3D.Graphics.Runtime.dll

MOD - [2008.08.22 11:35:27 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE .Graphics.Runtime\2.0.3009.40200__90ba9c70f846762e\CLI. Aspect.PowerPlayDPPE.Graphics.Runtime.dll

MOD - [2008.08.22 11:35:25 | 000,802,816 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graph ics.Dashboard\2.0.3009.40102__90ba9c70f846762e\CLI.Aspe ct.MMVideo.Graphics.Dashboard.dll

MOD - [2008.08.22 11:35:25 | 000,585,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColou r2.Graphics.Dashboard\2.0.3009.40010__90ba9c70f846762e\ CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll

MOD - [2008.08.22 11:35:25 | 000,438,272 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManag er.Graphics.Dashboard\2.0.3009.39963__90ba9c70f846762e\ CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll

MOD - [2008.08.22 11:35:25 | 000,401,408 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graph ics.Wizard\2.0.3009.40163__90ba9c70f846762e\CLI.Aspect. MMVideo.Graphics.Wizard.dll

MOD - [2008.08.22 11:35:25 | 000,217,088 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Gr aphics.Dashboard\2.0.3009.40004__90ba9c70f846762e\CLI.A spect.InfoCentre.Graphics.Dashboard.dll

MOD - [2008.08.22 11:35:25 | 000,118,784 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptio ns.Graphics.Dashboard\2.0.3009.40116__90ba9c70f846762e\ CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll

MOD - [2008.08.22 11:35:25 | 000,073,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graph ics.Runtime\2.0.3009.40102__90ba9c70f846762e\CLI.Aspect .MMVideo.Graphics.Runtime.dll

MOD - [2008.08.22 11:35:25 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptio ns.Graphics.Runtime\2.0.3009.40115__90ba9c70f846762e\CL I.Aspect.DisplaysOptions.Graphics.Runtime.dll

MOD - [2008.08.22 11:35:24 | 000,901,120 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Grap hics.Dashboard\2.0.3009.40173__90ba9c70f846762e\CLI.Asp ect.DeviceTV.Graphics.Dashboard.dll

MOD - [2008.08.22 11:35:24 | 000,663,552 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Grap hics.Dashboard\2.0.3009.40136__90ba9c70f846762e\CLI.Asp ect.DeviceCV.Graphics.Dashboard.dll

MOD - [2008.08.22 11:35:24 | 000,479,232 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Gra phics.Dashboard\2.0.3009.40095__90ba9c70f846762e\CLI.As pect.DeviceCRT.Graphics.Dashboard.dll

MOD - [2008.08.22 11:35:24 | 000,401,408 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Gra phics.Dashboard\2.0.3009.40129__90ba9c70f846762e\CLI.As pect.DeviceLCD.Graphics.Dashboard.dll

MOD - [2008.08.22 11:35:24 | 000,307,200 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Gra phics.Wizard\2.0.3009.40017__90ba9c70f846762e\CLI.Aspec t.DeviceLCD.Graphics.Wizard.dll

MOD - [2008.08.22 11:35:24 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Gra phics.Runtime\2.0.3009.40094__90ba9c70f846762e\CLI.Aspe ct.DeviceDFP.Graphics.Runtime.dll

MOD - [2008.08.22 11:35:24 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColou r2.Graphics.Runtime\2.0.3009.40016__90ba9c70f846762e\CL I.Aspect.DisplaysColour2.Graphics.Runtime.dll

MOD - [2008.08.22 11:35:24 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Gra phics.Runtime\2.0.3009.40101__90ba9c70f846762e\CLI.Aspe ct.DeviceCRT.Graphics.Runtime.dll

MOD - [2008.08.22 11:35:24 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Gra phics.Runtime\2.0.3009.40128__90ba9c70f846762e\CLI.Aspe ct.DeviceLCD.Graphics.Runtime.dll

MOD - [2008.08.22 11:35:23 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Share d\2.0.2939.23687__90ba9c70f846762e\AEM.Plugin.Hotkeys.S hared.dll

MOD - [2008.08.22 11:35:23 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared 2.0.2939.23679__90ba9c70f846762e\AEM.Actions.CCAA.Share d.dll

MOD - [2008.08.22 11:35:23 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2. 0.2939.23767__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll

MOD - [2008.08.22 11:35:23 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2 .0.2939.23710__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dl l

MOD - [2008.08.22 11:35:23 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\ 2.0.2939.23768__90ba9c70f846762e\AEM.Plugin.DPPE.Shared. dll

MOD - [2008.08.22 11:35:23 | 000,006,656 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9 c70f846762e\atixclib.dll

MOD - [2008.08.22 11:35:22 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation\2.0.2939 .23668__90ba9c70f846762e\CLI.Foundation.dll

MOD - [2008.08.22 11:35:22 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0. 2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll

MOD - [2008.08.22 11:35:22 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation\2.0.2939 .23662__90ba9c70f846762e\LOG.Foundation.dll

MOD - [2008.08.22 11:35:22 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation.XManifest \2.0.2939.23802__90ba9c70f846762e\CLI.Foundation.XManif est.dll

MOD - [2008.08.22 11:35:22 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.2 939.23667__90ba9c70f846762e\NEWAEM.Foundation.dll

MOD - [2008.08.22 11:35:22 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.OS.I0602\2.0.2939.2 3717__90ba9c70f846762e\DEM.OS.I0602.dll

MOD - [2008.08.22 11:35:22 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Sha red\2.0.2939.23693__90ba9c70f846762e\CLI.Component.Wiza rd.Shared.dll

MOD - [2008.08.22 11:35:22 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard. Shared\2.0.2939.23687__90ba9c70f846762e\CLI.Component.D ashboard.Shared.dll

MOD - [2008.08.22 11:35:22 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\MOM.Foundation\2.0.2939 .23707__90ba9c70f846762e\MOM.Foundation.dll

MOD - [2008.08.22 11:35:22 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.OS\2.0.2939.23717__ 90ba9c70f846762e\DEM.OS.dll

MOD - [2008.08.22 11:35:22 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0706\2.0. 2743.23304__90ba9c70f846762e\DEM.Graphics.I0706.dll

MOD - [2008.08.22 11:35:22 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics\2.0.2939.2 3718__90ba9c70f846762e\DEM.Graphics.dll

MOD - [2008.08.22 11:35:22 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Foundation\2.0.2573 .17684__90ba9c70f846762e\DEM.Foundation.dll

MOD - [2008.08.22 11:35:22 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Sh ared\2.0.2939.23688__90ba9c70f846762e\CLI.Component.Run time.Shared.dll

MOD - [2008.08.22 11:35:21 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Share d\2.0.2939.23689__90ba9c70f846762e\CLI.Caste.Graphics.S hared.dll

MOD - [2008.08.22 11:35:21 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Grap hics.Shared\2.0.2939.23743__90ba9c70f846762e\CLI.Aspect .Radeon3D.Graphics.Shared.dll

MOD - [2008.08.22 11:35:21 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Gra phics.Shared\2.0.2939.23764__90ba9c70f846762e\CLI.Aspec t.TransCode.Graphics.Shared.dll

MOD - [2008.08.22 11:35:21 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE .Graphics.Shared\2.0.2939.23763__90ba9c70f846762e\CLI.A spect.PowerPlayDPPE.Graphics.Shared.dll

MOD - [2008.08.22 11:35:21 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Sha red\2.0.2939.23679__90ba9c70f846762e\CLI.Component.Clie nt.Shared.dll

MOD - [2008.08.22 11:35:21 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizar d.Shared\2.0.2939.23734__90ba9c70f846762e\CLI.Caste.Gra phics.Wizard.Shared.dll

MOD - [2008.08.22 11:35:21 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashb oard.Shared\2.0.2939.23718__90ba9c70f846762e\CLI.Caste. Graphics.Dashboard.Shared.dll

MOD - [2008.08.22 11:35:20 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Grap hics.Shared\2.0.2965.22300__90ba9c70f846762e\CLI.Aspect .DeviceTV.Graphics.Shared.dll

MOD - [2008.08.22 11:35:20 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Gra phics.Shared\2.0.2939.23739__90ba9c70f846762e\CLI.Aspec t.DeviceCRT.Graphics.Shared.dll

MOD - [2008.08.22 11:35:20 | 000,049,152 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graph ics.Shared\2.0.2939.23740__90ba9c70f846762e\CLI.Aspect. MMVideo.Graphics.Shared.dll

MOD - [2008.08.22 11:35:20 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Gra phics.Shared\2.0.2939.23738__90ba9c70f846762e\CLI.Aspec t.DeviceDFP.Graphics.Shared.dll

MOD - [2008.08.22 11:35:20 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Grap hics.Shared\2.0.2939.23742__90ba9c70f846762e\CLI.Aspect .DeviceCV.Graphics.Shared.dll

MOD - [2008.08.22 11:35:20 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DevicePropert y.Graphics.Shared\2.0.2939.23708__90ba9c70f846762e\CLI. Aspect.DeviceProperty.Graphics.Shared.dll

MOD - [2008.08.22 11:35:20 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColou r2.Graphics.Shared\2.0.2939.23735__90ba9c70f846762e\CLI .Aspect.DisplaysColour2.Graphics.Shared.dll

MOD - [2008.08.22 11:35:20 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Gra phics.Shared\2.0.2939.23719__90ba9c70f846762e\CLI.Aspec t.DeviceLCD.Graphics.Shared.dll

MOD - [2008.08.22 11:35:20 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptio ns.Graphics.Shared\2.0.2939.23741__90ba9c70f846762e\CLI .Aspect.DisplaysOptions.Graphics.Shared.dll

MOD - [2008.08.22 11:35:20 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CustomFormats .Graphics.Shared\2.0.2939.23711__90ba9c70f846762e\CLI.A spect.CustomFormats.Graphics.Shared.dll

MOD - [2008.08.22 11:35:20 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Foundation\2.0.2939 .23665__90ba9c70f846762e\AEM.Foundation.dll

MOD - [2008.08.22 11:35:20 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ACE.Graphics.DisplaysMan ager.Shared\2.0.2573.17685__90ba9c70f846762e\ACE.Graphi cs.DisplaysManager.Shared.dll

MOD - [2008.08.22 11:35:20 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandli ng.Graphics.Shared\2.0.2939.23719__90ba9c70f846762e\CLI .Aspect.HotkeysHandling.Graphics.Shared.dll

MOD - [2008.08.22 11:35:20 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\APM.Foundation\2.0.2939 .23709__90ba9c70f846762e\APM.Foundation.dll

MOD - [2008.08.22 11:35:20 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Server.Shared\2.0.2 939.23687__90ba9c70f846762e\AEM.Server.Shared.dll

MOD - [2008.08.22 11:35:13 | 000,005,120 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Systemtray .resources\2.0.3009.40186_fi_90ba9c70f846762e\CLI.Compo nent.Systemtray.resources.dll

MOD - [2008.08.22 11:35:10 | 000,102,400 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\MOM.Implementation\2.0. 3009.40194__90ba9c70f846762e\MOM.Implementation.dll

MOD - [2008.08.22 11:35:10 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Se rver\2.0.3009.40217__90ba9c70f846762e\AEM.Plugin.Source .Kit.Server.dll

MOD - [2008.08.22 11:35:10 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Private\ 2.0.2939.23679__90ba9c70f846762e\LOG.Foundation.Private. dll

MOD - [2008.08.22 11:35:10 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implement ation.Private\2.0.2939.23712__90ba9c70f846762e\LOG.Foun dation.Implementation.Private.dll

MOD - [2008.08.22 11:35:10 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOCALIZATION.Foundation. Private\2.0.2939.23677__90ba9c70f846762e\LOCALIZATION.F oundation.Private.dll

MOD - [2008.08.22 11:35:10 | 000,011,264 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOCALIZATION.Foundation. Implementation\2.0.3009.40228__90ba9c70f846762e\LOCALIZ ATION.Foundation.Implementation.dll

MOD - [2008.08.22 11:35:10 | 000,006,656 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Ex tension.EEU\2.0.3009.39933__90ba9c70f846762e\CLI.Compon ent.Runtime.Extension.EEU.dll

MOD - [2008.08.22 11:35:09 | 000,491,520 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard\2. 0.3009.39969__90ba9c70f846762e\CLI.Component.Wizard.dll

MOD - [2008.08.22 11:35:09 | 000,413,696 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Systemtray \2.0.3009.40186__90ba9c70f846762e\CLI.Component.Systemt ray.dll

MOD - [2008.08.22 11:35:09 | 000,073,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime\2 .0.3009.39933__90ba9c70f846762e\CLI.Component.Runtime.dl l

MOD - [2008.08.22 11:35:09 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implement ation\2.0.3009.40193__90ba9c70f846762e\LOG.Foundation.I mplementation.dll

MOD - [2008.08.22 11:35:09 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Sh ared.Private\2.0.2939.23713__90ba9c70f846762e\CLI.Compo nent.Runtime.Shared.Private.dll

MOD - [2008.08.22 11:35:09 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation.Private\ 2.0.2939.23678__90ba9c70f846762e\CLI.Foundation.Private. dll

MOD - [2008.08.22 11:35:09 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Sha red.Private\2.0.2939.23694__90ba9c70f846762e\CLI.Compon ent.Wizard.Shared.Private.dll

MOD - [2008.08.22 11:35:08 | 001,507,328 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard 2.0.3009.39949__90ba9c70f846762e\CLI.Component.Dashboar d.dll

MOD - [2008.08.22 11:35:08 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ATIDEMOS\2.0.3009.39934 __90ba9c70f846762e\ATIDEMOS.dll

MOD - [2008.08.22 11:35:08 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\APM.Server\2.0.3009.399 31__90ba9c70f846762e\APM.Server.dll

MOD - [2008.08.22 11:35:08 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Sha red.Private\2.0.2939.23689__90ba9c70f846762e\CLI.Compon ent.Client.Shared.Private.dll

MOD - [2008.08.22 11:35:08 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CCC.Implementation\2.0. 3009.40194__90ba9c70f846762e\CCC.Implementation.dll

MOD - [2008.08.22 11:35:08 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9 c70f846762e\ATICCCom.dll

MOD - [2008.08.22 11:35:08 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard. Shared.Private\2.0.2939.23711__90ba9c70f846762e\CLI.Com ponent.Dashboard.Shared.Private.dll

MOD - [2008.08.22 11:35:08 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runti me.Shared.Private\2.0.2939.23746__90ba9c70f846762e\CLI. Caste.Graphics.Runtime.Shared.Private.dll

MOD - [2008.08.22 11:35:07 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Server\2.0.3009.399 32__90ba9c70f846762e\AEM.Server.dll

MOD - [2008.03.29 03:19:10 | 000,159,744 | ---- | M] () -- C:\Windows\System32\atitmmxx.dll

MOD - [2008.02.28 00:48:46 | 000,016,384 | R--- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll

========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Running] -- -- (HWDeviceService.exe)

SRV - [2011.08.06 14:27:05 | 000,411,432 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)

SRV - [2011.07.15 13:39:27 | 000,203,776 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Mobile Partner\UpdateDog\ouc.exe -- (Mobile Partner. RunOuc)

SRV - [2011.07.04 14:43:51 | 000,042,184 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)

SRV - [2011.03.24 01:34:18 | 000,435,152 | ---- | M] (Cisco Systems, Inc.) [Auto | Running] -- C:\Program Files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe -- (vpnagent)

SRV - [2008.08.22 15:32:06 | 000,361,808 | ---- | M] () [Auto | Running] -- C:\Windows\SMINST\BLService.exe -- (Recovery Service for Windows)

SRV - [2008.04.10 14:50:06 | 001,369,384 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\Windows\System32\Pen_Tablet.exe -- (TabletServicePen)

SRV - [2008.03.13 05:24:52 | 000,302,144 | ---- | M] (DigitalPersona, Inc.) [Auto | Running] -- C:\Program Files\DigitalPersona\Bin\DpHostW.exe -- (DpHost)

SRV - [2008.02.12 11:12:16 | 000,353,792 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)

SRV - [2008.02.03 22:00:00 | 000,129,992 | ---- | M] (EasyBits Sofware AS) [Auto | Running] -- C:\Windows\System32\ezsvc7.dll -- (ezSharedSvc)

SRV - [2008.01.21 05:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)

SRV - [2007.10.16 17:55:32 | 000,095,528 | ---- | M] () [Auto | Running] -- C:\Windows\System32\WacomTouchService.exe -- (WacomTouchService)

========== Driver Services (SafeList) ==========

DRV - [2011.07.15 13:39:32 | 000,011,136 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ew_usbenumfilter.sys -- (ew_usbenumfilter)

DRV - [2011.07.15 13:39:31 | 000,116,736 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ewusbnet.sys -- (ewusbnet)

DRV - [2011.07.15 13:39:31 | 000,106,880 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ewusbmdm.sys -- (hwdatacard)

DRV - [2011.07.15 13:39:31 | 000,102,784 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ew_hwusbdev.sys -- (ew_hwusbdev)

DRV - [2011.07.15 13:39:31 | 000,072,576 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ew_jubusenum.sys -- (huawei_enumerator)

DRV - [2011.07.04 14:36:43 | 000,441,176 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)

DRV - [2011.07.04 14:36:32 | 000,309,848 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)

DRV - [2011.07.04 14:35:23 | 000,043,608 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)

DRV - [2011.07.04 14:32:32 | 000,025,432 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)

DRV - [2011.07.04 14:32:20 | 000,054,104 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)

DRV - [2011.07.04 14:32:12 | 000,019,544 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)

DRV - [2011.03.24 01:25:38 | 000,019,680 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vpnva.sys -- (vpnva)

DRV - [2011.03.24 01:25:14 | 000,046,480 | R--- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\acsmux.sys -- (acsmux)

DRV - [2011.03.24 01:25:14 | 000,036,624 | R--- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\acsint.sys -- (acsint)

DRV - [2009.08.05 17:03:02 | 000,027,648 | ---- | M] (Icera Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nokiappo.sys -- (nokiappo)

DRV - [2009.08.05 17:03:02 | 000,019,968 | ---- | M] (Icera Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nokiacpo.sys -- (nokiacpo)

DRV - [2009.01.20 15:20:08 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd)

DRV - [2008.11.08 15:39:56 | 000,104,960 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbser6k.sys -- (ZTEusbser6k)

DRV - [2008.11.08 15:39:56 | 000,104,960 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbnmea.sys -- (ZTEusbnmea)

DRV - [2008.11.08 15:39:56 | 000,104,960 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbmdm6k.sys -- (ZTEusbmdm6k)

DRV - [2008.10.29 18:35:32 | 000,007,680 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\massfilter.sys -- (massfilter)

DRV - [2008.03.29 05:24:16 | 003,544,064 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)

DRV - [2008.03.13 11:20:26 | 000,138,112 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcd.sys -- (nmwcd)

DRV - [2008.03.13 11:20:20 | 000,012,288 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcdcm.sys -- (nmwcdcm)

DRV - [2008.03.13 11:20:20 | 000,012,288 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcdcj.sys -- (nmwcdcj)

DRV - [2008.03.13 11:20:20 | 000,008,320 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcdc.sys -- (nmwcdc)

DRV - [2008.02.14 17:56:02 | 000,118,784 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)

DRV - [2008.01.24 16:23:12 | 000,052,736 | ---- | M] (ENE TECHNOLOGY INC.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\enecir.sys -- (enecir)

DRV - [2007.11.05 19:39:18 | 000,010,536 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\wacomhidfilter.sys -- (Wacomhidfilter)

DRV - [2007.11.01 18:49:50 | 001,021,056 | ---- | M] (Motorola Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\smserial.sys -- (smserial)

DRV - [2007.10.06 13:30:50 | 000,012,712 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\wacomvhid.sys -- (wacomvhid)

DRV - [2007.09.17 14:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)

DRV - [2007.08.29 01:47:36 | 000,146,560 | ---- | M] (AuthenTec, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atswpdrv.sys -- (ATSWPDRV) AuthenTec TruePrint USB Driver (SwipeSensor)

DRV - [2007.07.11 20:30:22 | 000,007,168 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\HpqRemHid.sys -- (HpqRemHid)

DRV - [2007.06.19 03:12:04 | 000,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)

DRV - [2007.02.22 17:55:10 | 000,011,312 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WacomVTHid.sys -- (WacomVTHid)

DRV - [2007.02.16 14:12:36 | 000,011,312 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\wacommousefilter.sys -- (wacommousefilter)

DRV - [2007.02.15 19:11:28 | 000,011,440 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WacomVKHid.sys -- (WacomVKHid)

DRV - [2007.01.18 17:28:02 | 000,005,275 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\CVirtA.sys -- (CVirtA)

DRV - [2006.11.02 10:30:56 | 000,429,056 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvm60x32.sys -- (NVENETFD)

DRV - [2006.10.30 14:23:12 | 000,007,680 | ---- | M] (ATI Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\AtiPcie.sys -- (AtiPcie) ATI PCI Express (3GIO)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&...pf=cnnb

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&...pf=cnnb

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&...pf=cnnb

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&...pf=cnnb

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1

IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: Key error. File not found

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Inter net Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.google.fi/ig"

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()

FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)

FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,ver sion=1.0: c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,versio n=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooAct iveXPluginBridge;version=1.0.0.1: C:\Program Files\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)

FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\X\AppData\Local\Google\Update\1.3.21.65\ npGoogleUpdate3.dll (Google Inc.)

FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\X\AppData\Local\Google\Update\1.3.21.65\ npGoogleUpdate3.dll (Google Inc.)

FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer, version=1.0: C:\Users\X\AppData\LocalLow\Unity\WebPlayer\loader \npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.07.06 09:59:26 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.06.27 09:29:07 | 000,000,000 | ---D | M]

[2011.07.06 09:54:16 | 000,000,000 | ---D | M] (No name found) -- C:\Users\X\AppData\Roaming\mozilla\Extensions

[2011.06.16 11:48:49 | 000,000,000 | ---D | M] (No name found) -- C:\Users\X\AppData\Roaming\mozilla\Extensions\{355 0f703-e582-4d05-9a08-453d09bdfdc6}

[2011.08.16 15:32:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\X\AppData\Roaming\mozilla\Firefox\Profile s\wsen8u16.default\extensions

[2011.08.16 15:32:12 | 000,000,000 | ---D | M] (BitDefender QuickScan) -- C:\Users\X\AppData\Roaming\mozilla\Firefox\Profile s\wsen8u16.default\extensions\{e001c731-5e37-4538-a5cb -8168736a2360}

[2011.07.06 09:59:26 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions

[2011.05.31 12:03:51 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCB A}

File not found (No name found) --

[2010.02.24 18:49:15 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION

[2011.06.16 07:38:31 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll

[2011.04.14 05:08:00 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll

[2010.01.01 11:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml

[2010.01.01 11:00:00 | 000,002,062 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bookplus-fi.xml

[2010.01.01 11:00:00 | 000,000,972 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-fi.xml

[2010.01.01 11:00:00 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fi.xml

[2010.01.01 11:00:00 | 000,001,100 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-fi.xml

O1 HOSTS File: ([2006.09.19 00:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 localhost

O1 - Hosts: ::1 localhost

O2 - BHO: (Adobe PDF Reader -linkkiavustaja) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.

O4 - HKLM..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Program Files\Google\Gmail Notifier\gnotify.exe (Google Inc.)

O4 - HKLM..\Run: [avast] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)

O4 - HKLM..\Run: [startCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)

O4 - Startup: C:\Users\X\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\X\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\polic ies\System: DisableCAD = 0

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\polic ies\System: HideFastUserSwitching = 1

O8 - Extra context menu item: Lähetä kuva &Bluetooth-laitteeseen... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()

O8 - Extra context menu item: Lähetä sivu &Bluetooth-laitteeseen... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()

O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()

O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()

O13 - gopher Prefix: missing

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6...586.cab (Java Plug-in 1.6.0_26)

O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6...586.cab (Java Plug-in 1.6.0_26)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6...586.cab (Java Plug-in 1.6.0_26)

O16 - DPF: 55963676-2F5E-4BAF-AC28-CF26AA587566 vpnweb.cab (Reg Error: Key error.)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.89.123.231 192.89.123.230

O24 - Desktop WallPaper: C:\Users\X\Pictures\Taustat\Lovecube.jpg

O24 - Desktop BackupWallPaper: C:\Users\X\Pictures\Taustat\Lovecube.jpg

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2006.09.19 00:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]

O32 - AutoRun File - [2010.11.17 08:37:37 | 000,142,336 | R--- | M] () - F:\AutoRun.exe -- [ CDFS ]

O32 - AutoRun File - [2008.09.29 20:12:34 | 000,000,045 | R--- | M] () - F:\AUTORUN.INF -- [ CDFS ]

O33 - MountPoints2\{019dd7bc-aece-11e0-b29a-00218686ffdd}\She ll - "" = AutoRun

O33 - MountPoints2\{019dd7bc-aece-11e0-b29a-00218686ffdd}\She ll\AutoRun\command - "" = F:\AutoRun.exe -- [2010.11.17 08:37:37 | 000,142,336 | R--- | M] ()

O33 - MountPoints2\{019dd7da-aece-11e0-b29a-001e101f50a4}\She ll - "" = AutoRun

O33 - MountPoints2\{019dd7da-aece-11e0-b29a-001e101f50a4}\She ll\AutoRun\command - "" = F:\AutoRun.exe -- [2010.11.17 08:37:37 | 000,142,336 | R--- | M] ()

O33 - MountPoints2\{3678f8ab-715b-11df-8349-001e68e0a3db}\She ll - "" = AutoRun

O33 - MountPoints2\{3678f8ab-715b-11df-8349-001e68e0a3db}\She ll\AutoRun\command - "" = F:\application\Setup.exe

O33 - MountPoints2\{4e31f2a9-ad44-11e0-878a-00218686ffdd}\She ll - "" = AutoRun

O33 - MountPoints2\{4e31f2a9-ad44-11e0-878a-00218686ffdd}\She ll\AutoRun\command - "" = F:\AutoRun.exe -- [2010.11.17 08:37:37 | 000,142,336 | R--- | M] ()

O33 - MountPoints2\{4e31f2b8-ad44-11e0-878a-001e101f1838}\She ll - "" = AutoRun

O33 - MountPoints2\{4e31f2b8-ad44-11e0-878a-001e101f1838}\She ll\AutoRun\command - "" = F:\AutoRun.exe -- [2010.11.17 08:37:37 | 000,142,336 | R--- | M] ()

O33 - MountPoints2\{4f08d082-bd30-11e0-81d7-001e101f1838}\She ll - "" = AutoRun

O33 - MountPoints2\{4f08d082-bd30-11e0-81d7-001e101f1838}\She ll\AutoRun\command - "" = F:\AutoRun.exe -- [2010.11.17 08:37:37 | 000,142,336 | R--- | M] ()

O33 - MountPoints2\{8bd5a53b-c800-11e0-bf9c-001e101f2b52}\She ll - "" = AutoRun

O33 - MountPoints2\{8bd5a53b-c800-11e0-bf9c-001e101f2b52}\She ll\AutoRun\command - "" = F:\AutoRun.exe -- [2010.11.17 08:37:37 | 000,142,336 | R--- | M] ()

O33 - MountPoints2\{9461ec3f-752c-11df-a1de-001e68e0a3db}\She ll - "" = AutoRun

O33 - MountPoints2\{9461ec3f-752c-11df-a1de-001e68e0a3db}\She ll\AutoRun\command - "" = F:\NokiaPCIA_Autorun.exe

O33 - MountPoints2\{d5af8a71-e6ec-11dd-861e-001e68e0a3db}\She ll - "" = AutoRun

O33 - MountPoints2\{d5af8a71-e6ec-11dd-861e-001e68e0a3db}\She ll\AutoRun\command - "" = F:\AutoRun.exe -- [2010.11.17 08:37:37 | 000,142,336 | R--- | M] ()

O34 - HKLM BootExecute: (autocheck autochk *) - File not found

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011.08.16 18:12:19 | 000,579,584 | ---- | C] (OldTimer Tools) -- C:\Users\X\Desktop\OTL.exe

[2011.08.16 17:53:53 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe

[2011.08.16 17:53:53 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe

[2011.08.16 17:53:53 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe

[2011.08.16 15:32:22 | 000,000,000 | ---D | C] -- C:\Users\X\AppData\Roaming\QuickScan

[2011.08.12 14:22:49 | 000,375,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll

[2011.08.12 14:22:42 | 001,383,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb

[2011.08.12 14:22:42 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll

[2011.08.12 14:22:41 | 000,671,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll

[2011.08.12 14:22:41 | 000,471,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll

[2011.08.12 14:22:41 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec

[2011.08.12 14:22:41 | 000,380,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll

[2011.08.12 14:22:41 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll

[2011.08.12 14:22:29 | 003,602,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe

[2011.08.12 14:22:29 | 003,550,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe

[2011.08.02 12:28:32 | 000,152,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Comdlg32.ocx

[2011.08.02 12:28:32 | 000,067,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SYSINFO.OCX

[2011.08.02 12:28:32 | 000,000,000 | ---D | C] -- C:\Users\X\AppData\Roaming\Easy Macro Recorder

[2011.08.02 12:28:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Easy Macro Recorder

[2011.08.02 12:28:32 | 000,000,000 | ---D | C] -- C:\Program Files\Easy Macro Recorder

[2011.08.02 12:27:00 | 000,000,000 | ---D | C] -- C:\Program Files\Free Labs

[2011.08.02 11:45:33 | 000,000,000 | ---D | C] -- C:\Users\X\AppData\Roaming\Startly

[2011.08.02 11:45:03 | 000,000,000 | ---D | C] -- C:\Program Files\Startly

[2011.07.20 13:02:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xvid

[2011.07.20 13:01:58 | 000,000,000 | ---D | C] -- C:\Program Files\Xvid

[2011.07.20 11:59:58 | 000,000,000 | ---D | C] -- C:\Users\X\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fraps

[2011.07.20 11:46:36 | 000,000,000 | ---D | C] -- C:\Fraps

========== Files - Modified Within 30 Days ==========

[2011.08.16 18:17:00 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-37642779 13-4157584849-2078515817-1000UA.job

[2011.08.16 18:12:26 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\X\Desktop\OTL.exe

[2011.08.16 17:57:59 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B73 27-2P-1.C7483456-A289-439d-8115-601632D005A0

[2011.08.16 17:57:57 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B73 27-2P-0.C7483456-A289-439d-8115-601632D005A0

[2011.08.16 17:57:49 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat

[2011.08.16 17:56:47 | 2949,816,320 | -HS- | M] () -- C:\hiberfil.sys

[2011.08.16 17:54:56 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat

[2011.08.16 17:53:17 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe

[2011.08.16 17:53:17 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe

[2011.08.16 17:53:17 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe

[2011.08.16 17:53:15 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll

[2011.08.16 17:45:50 | 000,633,070 | ---- | M] () -- C:\Windows\System32\perfh01D.dat

[2011.08.16 17:45:50 | 000,631,636 | ---- | M] () -- C:\Windows\System32\perfh009.dat

[2011.08.16 17:45:50 | 000,500,316 | ---- | M] () -- C:\Windows\System32\perfh006.dat

[2011.08.16 17:45:50 | 000,487,654 | ---- | M] () -- C:\Windows\System32\perfh014.dat

[2011.08.16 17:45:50 | 000,481,464 | ---- | M] () -- C:\Windows\System32\perfh00B.dat

[2011.08.16 17:45:50 | 000,137,508 | ---- | M] () -- C:\Windows\System32\perfc01D.dat

[2011.08.16 17:45:50 | 000,118,262 | ---- | M] () -- C:\Windows\System32\perfc009.dat

[2011.08.16 17:45:50 | 000,101,648 | ---- | M] () -- C:\Windows\System32\perfc00B.dat

[2011.08.16 17:45:50 | 000,097,338 | ---- | M] () -- C:\Windows\System32\perfc006.dat

[2011.08.16 17:45:50 | 000,096,056 | ---- | M] () -- C:\Windows\System32\perfc014.dat

[2011.08.16 14:17:05 | 000,000,950 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-37642779 13-4157584849-2078515817-1000Core.job

[2011.08.09 23:20:09 | 000,000,680 | ---- | M] () -- C:\Users\X\AppData\Local\d3d9caps.dat

[2011.08.06 14:14:02 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt

[2011.08.03 10:26:03 | 000,002,621 | ---- | M] () -- C:\Users\X\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Excel 2003.lnk

[2011.08.03 09:29:53 | 000,002,625 | ---- | M] () -- C:\Users\X\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Word 2003.lnk

[2011.08.02 11:46:20 | 000,000,033 | ---- | M] () -- C:\Windows\QkEngine.INI

[2011.08.02 11:39:05 | 000,001,351 | ---- | M] () -- C:\Users\X\Documents\AutoHotkey.ahk

[2011.07.22 16:54:40 | 001,383,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb

[2011.07.21 09:41:04 | 000,003,584 | ---- | M] () -- C:\Users\X\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D 61DEA3FDF.ini

[2011.07.20 11:58:07 | 000,011,732 | ---- | M] () -- C:\Users\X\Documents\cc_20110720_115804.reg

========== Files Created - No Company Name ==========

[2011.08.02 11:46:20 | 000,000,033 | ---- | C] () -- C:\Windows\QkEngine.INI

[2011.08.02 11:39:05 | 000,001,351 | ---- | C] () -- C:\Users\X\Documents\AutoHotkey.ahk

[2011.07.20 13:02:00 | 000,645,632 | ---- | C] () -- C:\Windows\System32\xvidcore.dll

[2011.07.20 13:02:00 | 000,240,640 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll

[2011.07.20 13:02:00 | 000,153,088 | ---- | C] () -- C:\Windows\System32\xvid.ax

[2011.07.20 11:58:06 | 000,011,732 | ---- | C] () -- C:\Users\X\Documents\cc_20110720_115804.reg

[2011.07.13 15:08:50 | 000,001,786 | ---- | C] () -- C:\Windows\Sandboxie.ini

[2011.03.16 13:38:01 | 000,000,600 | ---- | C] () -- C:\Users\X\AppData\Local\PUTTY.RND

[2010.06.06 14:14:02 | 000,000,564 | ---- | C] () -- C:\Users\X\AppData\Local\FSCache.dat

[2010.04.06 10:17:03 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat

[2010.03.18 15:28:12 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll

[2010.03.18 15:28:12 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin

[2010.03.18 15:27:21 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin

[2010.03.09 18:56:25 | 000,000,680 | ---- | C] () -- C:\Users\X\AppData\Local\d3d9caps.dat

[2009.09.25 11:08:13 | 000,000,390 | ---- | C] () -- C:\Windows\ODBC.INI

[2009.02.17 20:02:46 | 000,003,584 | ---- | C] () -- C:\Users\X\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D 61DEA3FDF.ini

[2009.01.28 11:45:52 | 000,031,007 | ---- | C] () -- C:\Users\X\AppData\Roaming\UserTile.png

[2009.01.20 15:35:20 | 000,069,632 | ---- | C] () -- C:\Windows\RAUNINST.EXE

[2009.01.14 14:12:08 | 000,000,334 | ---- | C] () -- C:\Users\X\AppData\Roaming\wklnhst.dat

[2008.08.22 12:09:06 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin

[2008.08.22 11:40:12 | 000,000,176 | ---- | C] () -- C:\Windows\System32\drivers\RTHDAEQ1.dat

[2008.08.22 11:40:12 | 000,000,176 | ---- | C] () -- C:\Windows\System32\drivers\RTHDAEQ0.dat

[2008.08.22 11:31:13 | 000,095,528 | ---- | C] () -- C:\Windows\System32\WacomTouchService.exe

[2008.08.22 11:26:34 | 000,000,012 | ---- | C] () -- C:\Windows\bthservsdp.dat

[2008.05.15 21:18:13 | 000,000,428 | ---- | C] () -- C:\Windows\System32\ezdigsgn.dat

[2008.05.15 18:30:41 | 000,633,070 | ---- | C] () -- C:\Windows\System32\perfh01D.dat

[2008.05.15 18:30:41 | 000,290,490 | ---- | C] () -- C:\Windows\System32\perfi01D.dat

[2008.05.15 18:30:41 | 000,137,508 | ---- | C] () -- C:\Windows\System32\perfc01D.dat

[2008.05.15 18:30:41 | 000,035,978 | ---- | C] () -- C:\Windows\System32\perfd01D.dat

[2008.05.15 18:18:04 | 000,487,654 | ---- | C] () -- C:\Windows\System32\perfh014.dat

[2008.05.15 18:18:04 | 000,294,254 | ---- | C] () -- C:\Windows\System32\perfi014.dat

[2008.05.15 18:18:04 | 000,096,056 | ---- | C] () -- C:\Windows\System32\perfc014.dat

[2008.05.15 18:18:04 | 000,035,166 | ---- | C] () -- C:\Windows\System32\perfd014.dat

[2008.05.15 18:07:51 | 000,481,464 | ---- | C] () -- C:\Windows\System32\perfh00B.dat

[2008.05.15 18:07:51 | 000,274,158 | ---- | C] () -- C:\Windows\System32\perfi00B.dat

[2008.05.15 18:07:51 | 000,101,648 | ---- | C] () -- C:\Windows\System32\perfc00B.dat

[2008.05.15 18:07:51 | 000,036,790 | ---- | C] () -- C:\Windows\System32\perfd00B.dat

[2008.05.15 17:58:16 | 000,300,302 | ---- | C] () -- C:\Windows\System32\perfi006.dat

[2008.05.15 17:58:15 | 000,500,316 | ---- | C] () -- C:\Windows\System32\perfh006.dat

[2008.05.15 17:58:15 | 000,097,338 | ---- | C] () -- C:\Windows\System32\perfc006.dat

[2008.05.15 17:58:15 | 000,036,364 | ---- | C] () -- C:\Windows\System32\perfd006.dat

[2008.03.29 03:19:10 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll

[2008.03.29 02:51:08 | 003,107,788 | ---- | C] () -- C:\Windows\System32\atiumdva.dat

[2008.03.06 13:40:54 | 000,168,883 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat

[2008.03.04 22:02:00 | 000,090,112 | ---- | C] () -- C:\Windows\System32\atibrtmon.exe

[2007.12.12 15:44:44 | 000,466,944 | ---- | C] () -- C:\Windows\System32\RemoveDevice.dll

[2006.11.02 15:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat

[2006.11.02 15:47:37 | 000,302,096 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT

[2006.11.02 15:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll

[2006.11.02 13:33:01 | 000,631,636 | ---- | C] () -- C:\Windows\System32\perfh009.dat

[2006.11.02 13:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat

[2006.11.02 13:33:01 | 000,118,262 | ---- | C] () -- C:\Windows\System32\perfc009.dat

[2006.11.02 13:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat

[2006.11.02 13:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat

[2006.11.02 11:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin

[2006.11.02 11:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT

[2006.11.02 10:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini

[2006.11.02 10:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat

[2006.03.09 12:58:00 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll

[2001.11.14 22:56:00 | 001,802,240 | ---- | C] () -- C:\Windows\System32\lcppn21.dll

========== LOP Check ==========

[2011.05.25 16:13:18 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\.minecraft

[2010.07.05 09:45:30 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\adma

[2009.03.06 17:18:11 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\Blender Foundation

[2009.02.10 15:04:46 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\Crayon Physics Deluxe

[2009.01.20 15:32:23 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\DAEMON Tools

[2011.08.16 15:24:25 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\DAEMON Tools Lite

[2009.01.20 15:32:23 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\DAEMON Tools Pro

[2008.10.28 13:38:20 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\DigitalPersona

[2011.08.16 18:11:16 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\Dropbox

[2011.08.02 12:28:43 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\Easy Macro Recorder

[2010.04.20 13:24:10 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\inkscape

[2008.11.11 14:30:39 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\JCreator

[2011.08.16 15:24:21 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\Miranda

[2008.12.04 13:42:13 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\Notepad++

[2009.03.26 13:14:09 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\OpenOffice.org

[2010.06.19 14:46:21 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\PC Suite

[2009.01.28 11:45:52 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\PeerNetworking

[2011.08.16 15:32:32 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\QuickScan

[2011.08.04 13:21:47 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\Spotify

[2011.08.02 11:45:33 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\Startly

[2009.01.14 14:12:09 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\Template

[2011.06.16 11:48:48 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\Thunderbird

[2011.08.16 15:24:22 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\TS3Client

[2011.01.31 13:10:43 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\Unity

[2011.08.16 13:40:52 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\uTorrent

[2011.08.16 17:55:06 | 000,032,640 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========

< End of report >

Link to post
Share on other sites

My laptop starts up very slowly, can somebody help me, thank you?

OTL logfile created on: 16.8.2011 18:18:42 - Run 1

OTL by OldTimer - Version 3.2.26.4 Folder = C:\Users\X\Desktop

Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation

Internet Explorer (Version = 7.0.6002.18005)

Locale: 0000040B | Country: Suomi | Language: FIN | Date Format: d.M.yyyy

2,75 Gb Total Physical Memory | 1,62 Gb Available Physical Memory | 58,91% Memory free

5,71 Gb Paging File | 4,58 Gb Available in Paging File | 80,30% Paging File free

Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files

Drive C: | 288,12 Gb Total Space | 193,61 Gb Free Space | 67,20% Space Free | Partition Type: NTFS

Drive D: | 9,97 Gb Total Space | 1,73 Gb Free Space | 17,36% Space Free | Partition Type: NTFS

Drive F: | 37,38 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS

Computer Name: TX | User Name: X | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: Current user

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011.08.16 18:12:26 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\X\Desktop\OTL.exe

PRC - [2011.08.12 14:12:49 | 000,140,952 | ---- | M] (Google Inc.) -- C:\Users\X\AppData\Local\Google\Update\1.3.21.65\ GoogleCrashHandler.exe

PRC - [2011.07.15 13:39:27 | 000,514,048 | ---- | M] () -- C:\Program Files\Mobile Partner\Mobile Partner.exe

PRC - [2011.07.15 13:39:27 | 000,203,776 | ---- | M] () -- C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe

PRC - [2011.07.04 14:43:54 | 003,493,720 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe

PRC - [2011.07.04 14:43:51 | 000,042,184 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

PRC - [2011.03.24 01:34:18 | 000,435,152 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe

PRC - [2010.11.16 16:37:38 | 000,264,704 | ---- | M] () -- C:\ProgramData\DatacardService\HWDeviceService.exe

PRC - [2010.11.16 16:37:30 | 000,230,912 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\ProgramData\DatacardService\DCSHelper.exe

PRC - [2008.08.22 15:32:06 | 000,361,808 | ---- | M] () -- C:\Windows\SMINST\BLService.exe

PRC - [2008.04.10 14:50:06 | 001,369,384 | ---- | M] (Wacom Technology, Corp.) -- C:\Windows\System32\Pen_Tablet.exe

PRC - [2008.03.13 05:24:52 | 000,699,456 | ---- | M] (DigitalPersona, Inc.) -- C:\Program Files\DigitalPersona\Bin\DpAgent.exe

PRC - [2008.03.13 05:24:52 | 000,302,144 | ---- | M] (DigitalPersona, Inc.) -- C:\Program Files\DigitalPersona\Bin\DpHostW.exe

PRC - [2007.10.16 17:55:32 | 000,095,528 | ---- | M] () -- C:\Windows\System32\WacomTouchService.exe

PRC - [2005.07.16 00:48:33 | 000,479,232 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Gmail Notifier\gnotify.exe

========== Modules (No Company Name) ==========

MOD - [2011.08.16 16:05:55 | 011,804,672 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System .Web\5aa9131000876de66160ff713b543d99\System.Web.ni.dll

MOD - [2011.08.16 16:05:43 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System .Runtime.Remo#\a6d889aa69fd51c100352f23c7cebd22\System. Runtime.Remoting.ni.dll

MOD - [2011.08.16 15:18:21 | 005,450,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System .Xml\4c3cda96b8f12220da20f2f8d1b9439c\System.Xml.ni.dll

MOD - [2011.08.16 15:17:52 | 012,430,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System .Windows.Forms\c50d9d540acecdef29c31201e203a331\System. Windows.Forms.ni.dll

MOD - [2011.08.16 15:17:29 | 001,587,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System .Drawing\d8d83838f9840bde901df516ba3de588\System.Drawin g.ni.dll

MOD - [2011.08.16 15:14:23 | 007,950,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System \b9ea0d414c4861120bfb7365d8ec0939\System.ni.dll

MOD - [2011.08.16 15:00:09 | 011,490,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorl ib\f6deb187f24bb3185841092b89fbfdbb\mscorlib.ni.dll

MOD - [2011.07.15 13:39:31 | 000,777,728 | ---- | M] () -- C:\Program Files\Mobile Partner\SMSUIPlugin.dll

MOD - [2011.07.15 13:39:31 | 000,670,720 | ---- | M] () -- C:\Program Files\Mobile Partner\SmsAppPlugin.dll

MOD - [2011.07.15 13:39:31 | 000,314,368 | ---- | M] () -- C:\Program Files\Mobile Partner\StatusBarMgrPlugin.dll

MOD - [2011.07.15 13:39:31 | 000,229,376 | ---- | M] () -- C:\Program Files\Mobile Partner\ToolBarMgrPlugin.dll

MOD - [2011.07.15 13:39:31 | 000,217,600 | ---- | M] () -- C:\Program Files\Mobile Partner\SmsSrvPlugin.dll

MOD - [2011.07.15 13:39:31 | 000,185,856 | ---- | M] () -- C:\Program Files\Mobile Partner\XFramePlugin.dll

MOD - [2011.07.15 13:39:31 | 000,159,232 | ---- | M] () -- C:\Program Files\Mobile Partner\XCodec.dll

MOD - [2011.07.15 13:39:31 | 000,156,672 | ---- | M] () -- C:\Program Files\Mobile Partner\STKSrvPlugin.dll

MOD - [2011.07.15 13:39:31 | 000,142,336 | ---- | M] () -- C:\Program Files\Mobile Partner\USSDSrvPlugin.dll

MOD - [2011.07.15 13:39:31 | 000,135,168 | ---- | M] () -- C:\Program Files\Mobile Partner\Trace.dll

MOD - [2011.07.15 13:39:31 | 000,106,496 | ---- | M] () -- C:\Program Files\Mobile Partner\Win7Support.dll

MOD - [2011.07.15 13:39:30 | 009,515,520 | ---- | M] () -- C:\Program Files\Mobile Partner\QtGui4.dll

MOD - [2011.07.15 13:39:30 | 000,370,176 | ---- | M] () -- C:\Program Files\Mobile Partner\plugins\imageformats\qtiff4.dll

MOD - [2011.07.15 13:39:30 | 000,258,560 | ---- | M] () -- C:\Program Files\Mobile Partner\sdk.dll

MOD - [2011.07.15 13:39:29 | 002,415,104 | ---- | M] () -- C:\Program Files\Mobile Partner\QtCore4.dll

MOD - [2011.07.15 13:39:29 | 000,545,280 | ---- | M] () -- C:\Program Files\Mobile Partner\PluginContainer.dll

MOD - [2011.07.15 13:39:29 | 000,449,536 | ---- | M] () -- C:\Program Files\Mobile Partner\NetInfoUIExPlugin.dll

MOD - [2011.07.15 13:39:29 | 000,379,392 | ---- | M] () -- C:\Program Files\Mobile Partner\Proxy.dll

MOD - [2011.07.15 13:39:29 | 000,350,720 | ---- | M] () -- C:\Program Files\Mobile Partner\plugins\imageformats\qmng4.dll

MOD - [2011.07.15 13:39:29 | 000,275,456 | ---- | M] () -- C:\Program Files\Mobile Partner\NetInfoSrvPlugin.dll

MOD - [2011.07.15 13:39:29 | 000,225,280 | ---- | M] () -- C:\Program Files\Mobile Partner\NetSrvPlugin.dll

MOD - [2011.07.15 13:39:29 | 000,192,000 | ---- | M] () -- C:\Program Files\Mobile Partner\plugins\imageformats\qjpeg4.dll

MOD - [2011.07.15 13:39:29 | 000,158,720 | ---- | M] () -- C:\Program Files\Mobile Partner\NetConnectSrvPlugin.dll

MOD - [2011.07.15 13:39:29 | 000,133,120 | ---- | M] () -- C:\Program Files\Mobile Partner\OSDialup.dll

MOD - [2011.07.15 13:39:29 | 000,131,072 | ---- | M] () -- C:\Program Files\Mobile Partner\OSNDIS.dll

MOD - [2011.07.15 13:39:29 | 000,101,376 | ---- | M] () -- C:\Program Files\Mobile Partner\OSAdapt.dll

MOD - [2011.07.15 13:39:29 | 000,093,184 | ---- | M] () -- C:\Program Files\Mobile Partner\NotifyServicePlugin.dll

MOD - [2011.07.15 13:39:29 | 000,082,944 | ---- | M] () -- C:\Program Files\Mobile Partner\plugins\imageformats\qgif4.dll

MOD - [2011.07.15 13:39:29 | 000,081,920 | ---- | M] () -- C:\Program Files\Mobile Partner\plugins\imageformats\qico4.dll

MOD - [2011.07.15 13:39:29 | 000,065,536 | ---- | M] () -- C:\Program Files\Mobile Partner\OSPowerMgr.dll

MOD - [2011.07.15 13:39:29 | 000,062,976 | ---- | M] () -- C:\Program Files\Mobile Partner\OSCall.dll

MOD - [2011.07.15 13:39:28 | 001,101,824 | ---- | M] () -- C:\Program Files\Mobile Partner\NDISAPI.dll

MOD - [2011.07.15 13:39:28 | 000,550,400 | ---- | M] () -- C:\Program Files\Mobile Partner\CallAppPlugin.dll

MOD - [2011.07.15 13:39:28 | 000,547,840 | ---- | M] () -- C:\Program Files\Mobile Partner\CallLogSrvPlugin.dll

MOD - [2011.07.15 13:39:28 | 000,495,104 | ---- | M] () -- C:\Program Files\Mobile Partner\DeviceMgrUIPlugin.dll

MOD - [2011.07.15 13:39:28 | 000,424,960 | ---- | M] () -- C:\Program Files\Mobile Partner\DialupUIPlugin.dll

MOD - [2011.07.15 13:39:28 | 000,352,768 | ---- | M] () -- C:\Program Files\Mobile Partner\core.dll

MOD - [2011.07.15 13:39:28 | 000,337,408 | ---- | M] () -- C:\Program Files\Mobile Partner\DeviceAppPlugin.dll

MOD - [2011.07.15 13:39:28 | 000,331,776 | ---- | M] () -- C:\Program Files\Mobile Partner\NetConnectPlugin.dll

MOD - [2011.07.15 13:39:28 | 000,300,544 | ---- | M] () -- C:\Program Files\Mobile Partner\DeviceSrvPlugin.dll

MOD - [2011.07.15 13:39:28 | 000,245,760 | ---- | M] () -- C:\Program Files\Mobile Partner\MenuMgrPlugin.dll

MOD - [2011.07.15 13:39:28 | 000,238,592 | ---- | M] () -- C:\Program Files\Mobile Partner\AtCodec.dll

MOD - [2011.07.15 13:39:28 | 000,218,112 | ---- | M] () -- C:\Program Files\Mobile Partner\Common.dll

MOD - [2011.07.15 13:39:28 | 000,211,456 | ---- | M] () -- C:\Program Files\Mobile Partner\DialUpPlugin.dll

MOD - [2011.07.15 13:39:28 | 000,179,712 | ---- | M] () -- C:\Program Files\Mobile Partner\NDISPlugin.dll

MOD - [2011.07.15 13:39:28 | 000,175,104 | ---- | M] () -- C:\Program Files\Mobile Partner\CallSrvPlugin.dll

MOD - [2011.07.15 13:39:28 | 000,157,184 | ---- | M] () -- C:\Program Files\Mobile Partner\DataServicePlugin.dll

MOD - [2011.07.15 13:39:28 | 000,123,392 | ---- | M] () -- C:\Program Files\Mobile Partner\ATR2SMgr.dll

MOD - [2011.07.15 13:39:28 | 000,117,760 | ---- | M] () -- C:\Program Files\Mobile Partner\LayoutPlugin.dll

MOD - [2011.07.15 13:39:28 | 000,043,008 | ---- | M] () -- C:\Program Files\Mobile Partner\libgcc_s_dw2-1.dll

MOD - [2011.07.15 13:39:28 | 000,011,362 | ---- | M] () -- C:\Program Files\Mobile Partner\mingwm10.dll

MOD - [2011.07.15 13:39:27 | 001,077,248 | ---- | M] () -- C:\Program Files\Mobile Partner\AddrBookPlugin.dll

MOD - [2011.07.15 13:39:27 | 000,739,840 | ---- | M] () -- C:\Program Files\Mobile Partner\AddrBookUIPlugin.dll

MOD - [2011.07.15 13:39:27 | 000,514,048 | ---- | M] () -- C:\Program Files\Mobile Partner\Mobile Partner.exe

MOD - [2011.07.15 13:39:27 | 000,264,704 | ---- | M] () -- C:\Program Files\Mobile Partner\AddrBookSrvPlugin.dll

MOD - [2009.03.31 21:05:04 | 000,413,696 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Windows.Forms.res ources\2.0.0.0_fi_b77a5c561934e089\System.Windows.Forms .resources.dll

MOD - [2009.03.31 21:05:04 | 000,299,008 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0. 0.0_fi_b77a5c561934e089\mscorlib.resources.dll

MOD - [2008.09.16 21:18:06 | 000,132,608 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll

MOD - [2008.08.22 11:36:00 | 001,679,360 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManag er.Graphics.Wizard\2.0.3009.39983__90ba9c70f846762e\CLI .Aspect.DisplaysManager.Graphics.Wizard.dll

MOD - [2008.08.22 11:36:00 | 000,688,128 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Grap hics.Wizard\2.0.3009.40157__90ba9c70f846762e\CLI.Aspect .DeviceCV.Graphics.Wizard.dll

MOD - [2008.08.22 11:36:00 | 000,364,544 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Grap hics.Wizard\2.0.3009.40180__90ba9c70f846762e\CLI.Aspect .DeviceTV.Graphics.Wizard.dll

MOD - [2008.08.22 11:36:00 | 000,253,952 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runti me\2.0.3009.39941__90ba9c70f846762e\CLI.Caste.Graphics. Runtime.dll

MOD - [2008.08.22 11:36:00 | 000,196,608 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Gr aphics.Wizard\2.0.3009.39997__90ba9c70f846762e\CLI.Aspe ct.InfoCentre.Graphics.Wizard.dll

MOD - [2008.08.22 11:36:00 | 000,077,824 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Grap hics.Runtime\2.0.3009.40172__90ba9c70f846762e\CLI.Aspec t.DeviceTV.Graphics.Runtime.dll

MOD - [2008.08.22 11:36:00 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Grap hics.Runtime\2.0.3009.40135__90ba9c70f846762e\CLI.Aspec t.DeviceCV.Graphics.Runtime.dll

MOD - [2008.08.22 11:36:00 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizar d\2.0.3009.39975__90ba9c70f846762e\CLI.Caste.Graphics.W izard.dll

MOD - [2008.08.22 11:36:00 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DevicePropert y.Graphics.Runtime\2.0.3009.40094__90ba9c70f846762e\CLI .Aspect.DeviceProperty.Graphics.Runtime.dll

MOD - [2008.08.22 11:36:00 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandli ng.Graphics.Runtime\2.0.3009.39962__90ba9c70f846762e\CL I.Aspect.HotkeysHandling.Graphics.Runtime.dll

MOD - [2008.08.22 11:35:58 | 000,483,328 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Gra phics.Wizard\2.0.3009.40202__90ba9c70f846762e\CLI.Aspec t.TransCode.Graphics.Wizard.dll

MOD - [2008.08.22 11:35:28 | 000,073,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashb oard\2.0.3009.39955__90ba9c70f846762e\CLI.Caste.Graphic s.Dashboard.dll

MOD - [2008.08.22 11:35:27 | 000,352,256 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Grap hics.Dashboard\2.0.3009.40143__90ba9c70f846762e\CLI.Asp ect.Radeon3D.Graphics.Dashboard.dll

MOD - [2008.08.22 11:35:27 | 000,147,456 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE .Graphics.Dashboard\2.0.3009.40201__90ba9c70f846762e\CL I.Aspect.PowerPlayDPPE.Graphics.Dashboard.dll

MOD - [2008.08.22 11:35:27 | 000,135,168 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graph ics.Dashboard\2.0.3009.40208__90ba9c70f846762e\CLI.Aspe ct.Welcome.Graphics.Dashboard.dll

MOD - [2008.08.22 11:35:27 | 000,090,112 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Grap hics.Wizard\2.0.3009.40149__90ba9c70f846762e\CLI.Aspect .Radeon3D.Graphics.Wizard.dll

MOD - [2008.08.22 11:35:27 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Grap hics.Runtime\2.0.3009.40142__90ba9c70f846762e\CLI.Aspec t.Radeon3D.Graphics.Runtime.dll

MOD - [2008.08.22 11:35:27 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE .Graphics.Runtime\2.0.3009.40200__90ba9c70f846762e\CLI. Aspect.PowerPlayDPPE.Graphics.Runtime.dll

MOD - [2008.08.22 11:35:25 | 000,802,816 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graph ics.Dashboard\2.0.3009.40102__90ba9c70f846762e\CLI.Aspe ct.MMVideo.Graphics.Dashboard.dll

MOD - [2008.08.22 11:35:25 | 000,585,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColou r2.Graphics.Dashboard\2.0.3009.40010__90ba9c70f846762e\ CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll

MOD - [2008.08.22 11:35:25 | 000,438,272 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManag er.Graphics.Dashboard\2.0.3009.39963__90ba9c70f846762e\ CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll

MOD - [2008.08.22 11:35:25 | 000,401,408 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graph ics.Wizard\2.0.3009.40163__90ba9c70f846762e\CLI.Aspect. MMVideo.Graphics.Wizard.dll

MOD - [2008.08.22 11:35:25 | 000,217,088 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Gr aphics.Dashboard\2.0.3009.40004__90ba9c70f846762e\CLI.A spect.InfoCentre.Graphics.Dashboard.dll

MOD - [2008.08.22 11:35:25 | 000,118,784 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptio ns.Graphics.Dashboard\2.0.3009.40116__90ba9c70f846762e\ CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll

MOD - [2008.08.22 11:35:25 | 000,073,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graph ics.Runtime\2.0.3009.40102__90ba9c70f846762e\CLI.Aspect .MMVideo.Graphics.Runtime.dll

MOD - [2008.08.22 11:35:25 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptio ns.Graphics.Runtime\2.0.3009.40115__90ba9c70f846762e\CL I.Aspect.DisplaysOptions.Graphics.Runtime.dll

MOD - [2008.08.22 11:35:24 | 000,901,120 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Grap hics.Dashboard\2.0.3009.40173__90ba9c70f846762e\CLI.Asp ect.DeviceTV.Graphics.Dashboard.dll

MOD - [2008.08.22 11:35:24 | 000,663,552 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Grap hics.Dashboard\2.0.3009.40136__90ba9c70f846762e\CLI.Asp ect.DeviceCV.Graphics.Dashboard.dll

MOD - [2008.08.22 11:35:24 | 000,479,232 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Gra phics.Dashboard\2.0.3009.40095__90ba9c70f846762e\CLI.As pect.DeviceCRT.Graphics.Dashboard.dll

MOD - [2008.08.22 11:35:24 | 000,401,408 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Gra phics.Dashboard\2.0.3009.40129__90ba9c70f846762e\CLI.As pect.DeviceLCD.Graphics.Dashboard.dll

MOD - [2008.08.22 11:35:24 | 000,307,200 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Gra phics.Wizard\2.0.3009.40017__90ba9c70f846762e\CLI.Aspec t.DeviceLCD.Graphics.Wizard.dll

MOD - [2008.08.22 11:35:24 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Gra phics.Runtime\2.0.3009.40094__90ba9c70f846762e\CLI.Aspe ct.DeviceDFP.Graphics.Runtime.dll

MOD - [2008.08.22 11:35:24 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColou r2.Graphics.Runtime\2.0.3009.40016__90ba9c70f846762e\CL I.Aspect.DisplaysColour2.Graphics.Runtime.dll

MOD - [2008.08.22 11:35:24 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Gra phics.Runtime\2.0.3009.40101__90ba9c70f846762e\CLI.Aspe ct.DeviceCRT.Graphics.Runtime.dll

MOD - [2008.08.22 11:35:24 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Gra phics.Runtime\2.0.3009.40128__90ba9c70f846762e\CLI.Aspe ct.DeviceLCD.Graphics.Runtime.dll

MOD - [2008.08.22 11:35:23 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Share d\2.0.2939.23687__90ba9c70f846762e\AEM.Plugin.Hotkeys.S hared.dll

MOD - [2008.08.22 11:35:23 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared 2.0.2939.23679__90ba9c70f846762e\AEM.Actions.CCAA.Share d.dll

MOD - [2008.08.22 11:35:23 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2. 0.2939.23767__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll

MOD - [2008.08.22 11:35:23 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2 .0.2939.23710__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dl l

MOD - [2008.08.22 11:35:23 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\ 2.0.2939.23768__90ba9c70f846762e\AEM.Plugin.DPPE.Shared. dll

MOD - [2008.08.22 11:35:23 | 000,006,656 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9 c70f846762e\atixclib.dll

MOD - [2008.08.22 11:35:22 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation\2.0.2939 .23668__90ba9c70f846762e\CLI.Foundation.dll

MOD - [2008.08.22 11:35:22 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0. 2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll

MOD - [2008.08.22 11:35:22 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation\2.0.2939 .23662__90ba9c70f846762e\LOG.Foundation.dll

MOD - [2008.08.22 11:35:22 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation.XManifest \2.0.2939.23802__90ba9c70f846762e\CLI.Foundation.XManif est.dll

MOD - [2008.08.22 11:35:22 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.2 939.23667__90ba9c70f846762e\NEWAEM.Foundation.dll

MOD - [2008.08.22 11:35:22 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.OS.I0602\2.0.2939.2 3717__90ba9c70f846762e\DEM.OS.I0602.dll

MOD - [2008.08.22 11:35:22 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Sha red\2.0.2939.23693__90ba9c70f846762e\CLI.Component.Wiza rd.Shared.dll

MOD - [2008.08.22 11:35:22 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard. Shared\2.0.2939.23687__90ba9c70f846762e\CLI.Component.D ashboard.Shared.dll

MOD - [2008.08.22 11:35:22 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\MOM.Foundation\2.0.2939 .23707__90ba9c70f846762e\MOM.Foundation.dll

MOD - [2008.08.22 11:35:22 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.OS\2.0.2939.23717__ 90ba9c70f846762e\DEM.OS.dll

MOD - [2008.08.22 11:35:22 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0706\2.0. 2743.23304__90ba9c70f846762e\DEM.Graphics.I0706.dll

MOD - [2008.08.22 11:35:22 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics\2.0.2939.2 3718__90ba9c70f846762e\DEM.Graphics.dll

MOD - [2008.08.22 11:35:22 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Foundation\2.0.2573 .17684__90ba9c70f846762e\DEM.Foundation.dll

MOD - [2008.08.22 11:35:22 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Sh ared\2.0.2939.23688__90ba9c70f846762e\CLI.Component.Run time.Shared.dll

MOD - [2008.08.22 11:35:21 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Share d\2.0.2939.23689__90ba9c70f846762e\CLI.Caste.Graphics.S hared.dll

MOD - [2008.08.22 11:35:21 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Grap hics.Shared\2.0.2939.23743__90ba9c70f846762e\CLI.Aspect .Radeon3D.Graphics.Shared.dll

MOD - [2008.08.22 11:35:21 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Gra phics.Shared\2.0.2939.23764__90ba9c70f846762e\CLI.Aspec t.TransCode.Graphics.Shared.dll

MOD - [2008.08.22 11:35:21 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE .Graphics.Shared\2.0.2939.23763__90ba9c70f846762e\CLI.A spect.PowerPlayDPPE.Graphics.Shared.dll

MOD - [2008.08.22 11:35:21 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Sha red\2.0.2939.23679__90ba9c70f846762e\CLI.Component.Clie nt.Shared.dll

MOD - [2008.08.22 11:35:21 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizar d.Shared\2.0.2939.23734__90ba9c70f846762e\CLI.Caste.Gra phics.Wizard.Shared.dll

MOD - [2008.08.22 11:35:21 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashb oard.Shared\2.0.2939.23718__90ba9c70f846762e\CLI.Caste. Graphics.Dashboard.Shared.dll

MOD - [2008.08.22 11:35:20 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Grap hics.Shared\2.0.2965.22300__90ba9c70f846762e\CLI.Aspect .DeviceTV.Graphics.Shared.dll

MOD - [2008.08.22 11:35:20 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Gra phics.Shared\2.0.2939.23739__90ba9c70f846762e\CLI.Aspec t.DeviceCRT.Graphics.Shared.dll

MOD - [2008.08.22 11:35:20 | 000,049,152 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graph ics.Shared\2.0.2939.23740__90ba9c70f846762e\CLI.Aspect. MMVideo.Graphics.Shared.dll

MOD - [2008.08.22 11:35:20 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Gra phics.Shared\2.0.2939.23738__90ba9c70f846762e\CLI.Aspec t.DeviceDFP.Graphics.Shared.dll

MOD - [2008.08.22 11:35:20 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Grap hics.Shared\2.0.2939.23742__90ba9c70f846762e\CLI.Aspect .DeviceCV.Graphics.Shared.dll

MOD - [2008.08.22 11:35:20 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DevicePropert y.Graphics.Shared\2.0.2939.23708__90ba9c70f846762e\CLI. Aspect.DeviceProperty.Graphics.Shared.dll

MOD - [2008.08.22 11:35:20 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColou r2.Graphics.Shared\2.0.2939.23735__90ba9c70f846762e\CLI .Aspect.DisplaysColour2.Graphics.Shared.dll

MOD - [2008.08.22 11:35:20 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Gra phics.Shared\2.0.2939.23719__90ba9c70f846762e\CLI.Aspec t.DeviceLCD.Graphics.Shared.dll

MOD - [2008.08.22 11:35:20 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptio ns.Graphics.Shared\2.0.2939.23741__90ba9c70f846762e\CLI .Aspect.DisplaysOptions.Graphics.Shared.dll

MOD - [2008.08.22 11:35:20 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CustomFormats .Graphics.Shared\2.0.2939.23711__90ba9c70f846762e\CLI.A spect.CustomFormats.Graphics.Shared.dll

MOD - [2008.08.22 11:35:20 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Foundation\2.0.2939 .23665__90ba9c70f846762e\AEM.Foundation.dll

MOD - [2008.08.22 11:35:20 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ACE.Graphics.DisplaysMan ager.Shared\2.0.2573.17685__90ba9c70f846762e\ACE.Graphi cs.DisplaysManager.Shared.dll

MOD - [2008.08.22 11:35:20 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandli ng.Graphics.Shared\2.0.2939.23719__90ba9c70f846762e\CLI .Aspect.HotkeysHandling.Graphics.Shared.dll

MOD - [2008.08.22 11:35:20 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\APM.Foundation\2.0.2939 .23709__90ba9c70f846762e\APM.Foundation.dll

MOD - [2008.08.22 11:35:20 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Server.Shared\2.0.2 939.23687__90ba9c70f846762e\AEM.Server.Shared.dll

MOD - [2008.08.22 11:35:13 | 000,005,120 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Systemtray .resources\2.0.3009.40186_fi_90ba9c70f846762e\CLI.Compo nent.Systemtray.resources.dll

MOD - [2008.08.22 11:35:10 | 000,102,400 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\MOM.Implementation\2.0. 3009.40194__90ba9c70f846762e\MOM.Implementation.dll

MOD - [2008.08.22 11:35:10 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Se rver\2.0.3009.40217__90ba9c70f846762e\AEM.Plugin.Source .Kit.Server.dll

MOD - [2008.08.22 11:35:10 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Private\ 2.0.2939.23679__90ba9c70f846762e\LOG.Foundation.Private. dll

MOD - [2008.08.22 11:35:10 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implement ation.Private\2.0.2939.23712__90ba9c70f846762e\LOG.Foun dation.Implementation.Private.dll

MOD - [2008.08.22 11:35:10 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOCALIZATION.Foundation. Private\2.0.2939.23677__90ba9c70f846762e\LOCALIZATION.F oundation.Private.dll

MOD - [2008.08.22 11:35:10 | 000,011,264 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOCALIZATION.Foundation. Implementation\2.0.3009.40228__90ba9c70f846762e\LOCALIZ ATION.Foundation.Implementation.dll

MOD - [2008.08.22 11:35:10 | 000,006,656 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Ex tension.EEU\2.0.3009.39933__90ba9c70f846762e\CLI.Compon ent.Runtime.Extension.EEU.dll

MOD - [2008.08.22 11:35:09 | 000,491,520 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard\2. 0.3009.39969__90ba9c70f846762e\CLI.Component.Wizard.dll

MOD - [2008.08.22 11:35:09 | 000,413,696 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Systemtray \2.0.3009.40186__90ba9c70f846762e\CLI.Component.Systemt ray.dll

MOD - [2008.08.22 11:35:09 | 000,073,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime\2 .0.3009.39933__90ba9c70f846762e\CLI.Component.Runtime.dl l

MOD - [2008.08.22 11:35:09 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implement ation\2.0.3009.40193__90ba9c70f846762e\LOG.Foundation.I mplementation.dll

MOD - [2008.08.22 11:35:09 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Sh ared.Private\2.0.2939.23713__90ba9c70f846762e\CLI.Compo nent.Runtime.Shared.Private.dll

MOD - [2008.08.22 11:35:09 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation.Private\ 2.0.2939.23678__90ba9c70f846762e\CLI.Foundation.Private. dll

MOD - [2008.08.22 11:35:09 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Sha red.Private\2.0.2939.23694__90ba9c70f846762e\CLI.Compon ent.Wizard.Shared.Private.dll

MOD - [2008.08.22 11:35:08 | 001,507,328 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard 2.0.3009.39949__90ba9c70f846762e\CLI.Component.Dashboar d.dll

MOD - [2008.08.22 11:35:08 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ATIDEMOS\2.0.3009.39934 __90ba9c70f846762e\ATIDEMOS.dll

MOD - [2008.08.22 11:35:08 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\APM.Server\2.0.3009.399 31__90ba9c70f846762e\APM.Server.dll

MOD - [2008.08.22 11:35:08 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Sha red.Private\2.0.2939.23689__90ba9c70f846762e\CLI.Compon ent.Client.Shared.Private.dll

MOD - [2008.08.22 11:35:08 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CCC.Implementation\2.0. 3009.40194__90ba9c70f846762e\CCC.Implementation.dll

MOD - [2008.08.22 11:35:08 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9 c70f846762e\ATICCCom.dll

MOD - [2008.08.22 11:35:08 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard. Shared.Private\2.0.2939.23711__90ba9c70f846762e\CLI.Com ponent.Dashboard.Shared.Private.dll

MOD - [2008.08.22 11:35:08 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runti me.Shared.Private\2.0.2939.23746__90ba9c70f846762e\CLI. Caste.Graphics.Runtime.Shared.Private.dll

MOD - [2008.08.22 11:35:07 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Server\2.0.3009.399 32__90ba9c70f846762e\AEM.Server.dll

MOD - [2008.03.29 03:19:10 | 000,159,744 | ---- | M] () -- C:\Windows\System32\atitmmxx.dll

MOD - [2008.02.28 00:48:46 | 000,016,384 | R--- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll

========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Running] -- -- (HWDeviceService.exe)

SRV - [2011.08.06 14:27:05 | 000,411,432 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)

SRV - [2011.07.15 13:39:27 | 000,203,776 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Mobile Partner\UpdateDog\ouc.exe -- (Mobile Partner. RunOuc)

SRV - [2011.07.04 14:43:51 | 000,042,184 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)

SRV - [2011.03.24 01:34:18 | 000,435,152 | ---- | M] (Cisco Systems, Inc.) [Auto | Running] -- C:\Program Files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe -- (vpnagent)

SRV - [2008.08.22 15:32:06 | 000,361,808 | ---- | M] () [Auto | Running] -- C:\Windows\SMINST\BLService.exe -- (Recovery Service for Windows)

SRV - [2008.04.10 14:50:06 | 001,369,384 | ---- | M] (Wacom Technology, Corp.) [Auto | Running] -- C:\Windows\System32\Pen_Tablet.exe -- (TabletServicePen)

SRV - [2008.03.13 05:24:52 | 000,302,144 | ---- | M] (DigitalPersona, Inc.) [Auto | Running] -- C:\Program Files\DigitalPersona\Bin\DpHostW.exe -- (DpHost)

SRV - [2008.02.12 11:12:16 | 000,353,792 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)

SRV - [2008.02.03 22:00:00 | 000,129,992 | ---- | M] (EasyBits Sofware AS) [Auto | Running] -- C:\Windows\System32\ezsvc7.dll -- (ezSharedSvc)

SRV - [2008.01.21 05:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)

SRV - [2007.10.16 17:55:32 | 000,095,528 | ---- | M] () [Auto | Running] -- C:\Windows\System32\WacomTouchService.exe -- (WacomTouchService)

========== Driver Services (SafeList) ==========

DRV - [2011.07.15 13:39:32 | 000,011,136 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ew_usbenumfilter.sys -- (ew_usbenumfilter)

DRV - [2011.07.15 13:39:31 | 000,116,736 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ewusbnet.sys -- (ewusbnet)

DRV - [2011.07.15 13:39:31 | 000,106,880 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ewusbmdm.sys -- (hwdatacard)

DRV - [2011.07.15 13:39:31 | 000,102,784 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ew_hwusbdev.sys -- (ew_hwusbdev)

DRV - [2011.07.15 13:39:31 | 000,072,576 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ew_jubusenum.sys -- (huawei_enumerator)

DRV - [2011.07.04 14:36:43 | 000,441,176 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)

DRV - [2011.07.04 14:36:32 | 000,309,848 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)

DRV - [2011.07.04 14:35:23 | 000,043,608 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)

DRV - [2011.07.04 14:32:32 | 000,025,432 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)

DRV - [2011.07.04 14:32:20 | 000,054,104 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)

DRV - [2011.07.04 14:32:12 | 000,019,544 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)

DRV - [2011.03.24 01:25:38 | 000,019,680 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vpnva.sys -- (vpnva)

DRV - [2011.03.24 01:25:14 | 000,046,480 | R--- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\acsmux.sys -- (acsmux)

DRV - [2011.03.24 01:25:14 | 000,036,624 | R--- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\acsint.sys -- (acsint)

DRV - [2009.08.05 17:03:02 | 000,027,648 | ---- | M] (Icera Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nokiappo.sys -- (nokiappo)

DRV - [2009.08.05 17:03:02 | 000,019,968 | ---- | M] (Icera Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nokiacpo.sys -- (nokiacpo)

DRV - [2009.01.20 15:20:08 | 000,717,296 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd)

DRV - [2008.11.08 15:39:56 | 000,104,960 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbser6k.sys -- (ZTEusbser6k)

DRV - [2008.11.08 15:39:56 | 000,104,960 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbnmea.sys -- (ZTEusbnmea)

DRV - [2008.11.08 15:39:56 | 000,104,960 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbmdm6k.sys -- (ZTEusbmdm6k)

DRV - [2008.10.29 18:35:32 | 000,007,680 | ---- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\massfilter.sys -- (massfilter)

DRV - [2008.03.29 05:24:16 | 003,544,064 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)

DRV - [2008.03.13 11:20:26 | 000,138,112 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcd.sys -- (nmwcd)

DRV - [2008.03.13 11:20:20 | 000,012,288 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcdcm.sys -- (nmwcdcm)

DRV - [2008.03.13 11:20:20 | 000,012,288 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcdcj.sys -- (nmwcdcj)

DRV - [2008.03.13 11:20:20 | 000,008,320 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nmwcdc.sys -- (nmwcdc)

DRV - [2008.02.14 17:56:02 | 000,118,784 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)

DRV - [2008.01.24 16:23:12 | 000,052,736 | ---- | M] (ENE TECHNOLOGY INC.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\enecir.sys -- (enecir)

DRV - [2007.11.05 19:39:18 | 000,010,536 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\wacomhidfilter.sys -- (Wacomhidfilter)

DRV - [2007.11.01 18:49:50 | 001,021,056 | ---- | M] (Motorola Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\smserial.sys -- (smserial)

DRV - [2007.10.06 13:30:50 | 000,012,712 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\wacomvhid.sys -- (wacomvhid)

DRV - [2007.09.17 14:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)

DRV - [2007.08.29 01:47:36 | 000,146,560 | ---- | M] (AuthenTec, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atswpdrv.sys -- (ATSWPDRV) AuthenTec TruePrint USB Driver (SwipeSensor)

DRV - [2007.07.11 20:30:22 | 000,007,168 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\HpqRemHid.sys -- (HpqRemHid)

DRV - [2007.06.19 03:12:04 | 000,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)

DRV - [2007.02.22 17:55:10 | 000,011,312 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WacomVTHid.sys -- (WacomVTHid)

DRV - [2007.02.16 14:12:36 | 000,011,312 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\wacommousefilter.sys -- (wacommousefilter)

DRV - [2007.02.15 19:11:28 | 000,011,440 | ---- | M] (Wacom Technology) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WacomVKHid.sys -- (WacomVKHid)

DRV - [2007.01.18 17:28:02 | 000,005,275 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\CVirtA.sys -- (CVirtA)

DRV - [2006.11.02 10:30:56 | 000,429,056 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvm60x32.sys -- (NVENETFD)

DRV - [2006.10.30 14:23:12 | 000,007,680 | ---- | M] (ATI Technologies Inc.) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\AtiPcie.sys -- (AtiPcie) ATI PCI Express (3GIO)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&...pf=cnnb

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&...pf=cnnb

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&...pf=cnnb

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&...pf=cnnb

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1

IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Reg Error: Key error. File not found

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Inter net Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.google.fi/ig"

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()

FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)

FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,ver sion=1.0: c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,versio n=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\yaxmpb@yahoo.com/YahooAct iveXPluginBridge;version=1.0.0.1: C:\Program Files\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)

FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\X\AppData\Local\Google\Update\1.3.21.65\ npGoogleUpdate3.dll (Google Inc.)

FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\X\AppData\Local\Google\Update\1.3.21.65\ npGoogleUpdate3.dll (Google Inc.)

FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer, version=1.0: C:\Users\X\AppData\LocalLow\Unity\WebPlayer\loader \npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.07.06 09:59:26 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.06.27 09:29:07 | 000,000,000 | ---D | M]

[2011.07.06 09:54:16 | 000,000,000 | ---D | M] (No name found) -- C:\Users\X\AppData\Roaming\mozilla\Extensions

[2011.06.16 11:48:49 | 000,000,000 | ---D | M] (No name found) -- C:\Users\X\AppData\Roaming\mozilla\Extensions\{355 0f703-e582-4d05-9a08-453d09bdfdc6}

[2011.08.16 15:32:12 | 000,000,000 | ---D | M] (No name found) -- C:\Users\X\AppData\Roaming\mozilla\Firefox\Profile s\wsen8u16.default\extensions

[2011.08.16 15:32:12 | 000,000,000 | ---D | M] (BitDefender QuickScan) -- C:\Users\X\AppData\Roaming\mozilla\Firefox\Profile s\wsen8u16.default\extensions\{e001c731-5e37-4538-a5cb -8168736a2360}

[2011.07.06 09:59:26 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions

[2011.05.31 12:03:51 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCB A}

File not found (No name found) --

[2010.02.24 18:49:15 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION

[2011.06.16 07:38:31 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll

[2011.04.14 05:08:00 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll

[2010.01.01 11:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml

[2010.01.01 11:00:00 | 000,002,062 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bookplus-fi.xml

[2010.01.01 11:00:00 | 000,000,972 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-fi.xml

[2010.01.01 11:00:00 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fi.xml

[2010.01.01 11:00:00 | 000,001,100 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-fi.xml

O1 HOSTS File: ([2006.09.19 00:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 localhost

O1 - Hosts: ::1 localhost

O2 - BHO: (Adobe PDF Reader -linkkiavustaja) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.

O4 - HKLM..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Program Files\Google\Gmail Notifier\gnotify.exe (Google Inc.)

O4 - HKLM..\Run: [avast] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)

O4 - HKLM..\Run: [startCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)

O4 - Startup: C:\Users\X\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\X\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\polic ies\System: DisableCAD = 0

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\polic ies\System: HideFastUserSwitching = 1

O8 - Extra context menu item: Lähetä kuva &Bluetooth-laitteeseen... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()

O8 - Extra context menu item: Lähetä sivu &Bluetooth-laitteeseen... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()

O9 - Extra Button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()

O9 - Extra 'Tools' menuitem : @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()

O13 - gopher Prefix: missing

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6...586.cab (Java Plug-in 1.6.0_26)

O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6...586.cab (Java Plug-in 1.6.0_26)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6...586.cab (Java Plug-in 1.6.0_26)

O16 - DPF: 55963676-2F5E-4BAF-AC28-CF26AA587566 vpnweb.cab (Reg Error: Key error.)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.89.123.231 192.89.123.230

O24 - Desktop WallPaper: C:\Users\X\Pictures\Taustat\Lovecube.jpg

O24 - Desktop BackupWallPaper: C:\Users\X\Pictures\Taustat\Lovecube.jpg

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2006.09.19 00:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]

O32 - AutoRun File - [2010.11.17 08:37:37 | 000,142,336 | R--- | M] () - F:\AutoRun.exe -- [ CDFS ]

O32 - AutoRun File - [2008.09.29 20:12:34 | 000,000,045 | R--- | M] () - F:\AUTORUN.INF -- [ CDFS ]

O33 - MountPoints2\{019dd7bc-aece-11e0-b29a-00218686ffdd}\She ll - "" = AutoRun

O33 - MountPoints2\{019dd7bc-aece-11e0-b29a-00218686ffdd}\She ll\AutoRun\command - "" = F:\AutoRun.exe -- [2010.11.17 08:37:37 | 000,142,336 | R--- | M] ()

O33 - MountPoints2\{019dd7da-aece-11e0-b29a-001e101f50a4}\She ll - "" = AutoRun

O33 - MountPoints2\{019dd7da-aece-11e0-b29a-001e101f50a4}\She ll\AutoRun\command - "" = F:\AutoRun.exe -- [2010.11.17 08:37:37 | 000,142,336 | R--- | M] ()

O33 - MountPoints2\{3678f8ab-715b-11df-8349-001e68e0a3db}\She ll - "" = AutoRun

O33 - MountPoints2\{3678f8ab-715b-11df-8349-001e68e0a3db}\She ll\AutoRun\command - "" = F:\application\Setup.exe

O33 - MountPoints2\{4e31f2a9-ad44-11e0-878a-00218686ffdd}\She ll - "" = AutoRun

O33 - MountPoints2\{4e31f2a9-ad44-11e0-878a-00218686ffdd}\She ll\AutoRun\command - "" = F:\AutoRun.exe -- [2010.11.17 08:37:37 | 000,142,336 | R--- | M] ()

O33 - MountPoints2\{4e31f2b8-ad44-11e0-878a-001e101f1838}\She ll - "" = AutoRun

O33 - MountPoints2\{4e31f2b8-ad44-11e0-878a-001e101f1838}\She ll\AutoRun\command - "" = F:\AutoRun.exe -- [2010.11.17 08:37:37 | 000,142,336 | R--- | M] ()

O33 - MountPoints2\{4f08d082-bd30-11e0-81d7-001e101f1838}\She ll - "" = AutoRun

O33 - MountPoints2\{4f08d082-bd30-11e0-81d7-001e101f1838}\She ll\AutoRun\command - "" = F:\AutoRun.exe -- [2010.11.17 08:37:37 | 000,142,336 | R--- | M] ()

O33 - MountPoints2\{8bd5a53b-c800-11e0-bf9c-001e101f2b52}\She ll - "" = AutoRun

O33 - MountPoints2\{8bd5a53b-c800-11e0-bf9c-001e101f2b52}\She ll\AutoRun\command - "" = F:\AutoRun.exe -- [2010.11.17 08:37:37 | 000,142,336 | R--- | M] ()

O33 - MountPoints2\{9461ec3f-752c-11df-a1de-001e68e0a3db}\She ll - "" = AutoRun

O33 - MountPoints2\{9461ec3f-752c-11df-a1de-001e68e0a3db}\She ll\AutoRun\command - "" = F:\NokiaPCIA_Autorun.exe

O33 - MountPoints2\{d5af8a71-e6ec-11dd-861e-001e68e0a3db}\She ll - "" = AutoRun

O33 - MountPoints2\{d5af8a71-e6ec-11dd-861e-001e68e0a3db}\She ll\AutoRun\command - "" = F:\AutoRun.exe -- [2010.11.17 08:37:37 | 000,142,336 | R--- | M] ()

O34 - HKLM BootExecute: (autocheck autochk *) - File not found

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011.08.16 18:12:19 | 000,579,584 | ---- | C] (OldTimer Tools) -- C:\Users\X\Desktop\OTL.exe

[2011.08.16 17:53:53 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe

[2011.08.16 17:53:53 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe

[2011.08.16 17:53:53 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe

[2011.08.16 15:32:22 | 000,000,000 | ---D | C] -- C:\Users\X\AppData\Roaming\QuickScan

[2011.08.12 14:22:49 | 000,375,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll

[2011.08.12 14:22:42 | 001,383,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb

[2011.08.12 14:22:42 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll

[2011.08.12 14:22:41 | 000,671,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll

[2011.08.12 14:22:41 | 000,471,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll

[2011.08.12 14:22:41 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec

[2011.08.12 14:22:41 | 000,380,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll

[2011.08.12 14:22:41 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll

[2011.08.12 14:22:29 | 003,602,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe

[2011.08.12 14:22:29 | 003,550,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe

[2011.08.02 12:28:32 | 000,152,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Comdlg32.ocx

[2011.08.02 12:28:32 | 000,067,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SYSINFO.OCX

[2011.08.02 12:28:32 | 000,000,000 | ---D | C] -- C:\Users\X\AppData\Roaming\Easy Macro Recorder

[2011.08.02 12:28:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Easy Macro Recorder

[2011.08.02 12:28:32 | 000,000,000 | ---D | C] -- C:\Program Files\Easy Macro Recorder

[2011.08.02 12:27:00 | 000,000,000 | ---D | C] -- C:\Program Files\Free Labs

[2011.08.02 11:45:33 | 000,000,000 | ---D | C] -- C:\Users\X\AppData\Roaming\Startly

[2011.08.02 11:45:03 | 000,000,000 | ---D | C] -- C:\Program Files\Startly

[2011.07.20 13:02:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Xvid

[2011.07.20 13:01:58 | 000,000,000 | ---D | C] -- C:\Program Files\Xvid

[2011.07.20 11:59:58 | 000,000,000 | ---D | C] -- C:\Users\X\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fraps

[2011.07.20 11:46:36 | 000,000,000 | ---D | C] -- C:\Fraps

========== Files - Modified Within 30 Days ==========

[2011.08.16 18:17:00 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-37642779 13-4157584849-2078515817-1000UA.job

[2011.08.16 18:12:26 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\X\Desktop\OTL.exe

[2011.08.16 17:57:59 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B73 27-2P-1.C7483456-A289-439d-8115-601632D005A0

[2011.08.16 17:57:57 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B73 27-2P-0.C7483456-A289-439d-8115-601632D005A0

[2011.08.16 17:57:49 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat

[2011.08.16 17:56:47 | 2949,816,320 | -HS- | M] () -- C:\hiberfil.sys

[2011.08.16 17:54:56 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat

[2011.08.16 17:53:17 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe

[2011.08.16 17:53:17 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe

[2011.08.16 17:53:17 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe

[2011.08.16 17:53:15 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll

[2011.08.16 17:45:50 | 000,633,070 | ---- | M] () -- C:\Windows\System32\perfh01D.dat

[2011.08.16 17:45:50 | 000,631,636 | ---- | M] () -- C:\Windows\System32\perfh009.dat

[2011.08.16 17:45:50 | 000,500,316 | ---- | M] () -- C:\Windows\System32\perfh006.dat

[2011.08.16 17:45:50 | 000,487,654 | ---- | M] () -- C:\Windows\System32\perfh014.dat

[2011.08.16 17:45:50 | 000,481,464 | ---- | M] () -- C:\Windows\System32\perfh00B.dat

[2011.08.16 17:45:50 | 000,137,508 | ---- | M] () -- C:\Windows\System32\perfc01D.dat

[2011.08.16 17:45:50 | 000,118,262 | ---- | M] () -- C:\Windows\System32\perfc009.dat

[2011.08.16 17:45:50 | 000,101,648 | ---- | M] () -- C:\Windows\System32\perfc00B.dat

[2011.08.16 17:45:50 | 000,097,338 | ---- | M] () -- C:\Windows\System32\perfc006.dat

[2011.08.16 17:45:50 | 000,096,056 | ---- | M] () -- C:\Windows\System32\perfc014.dat

[2011.08.16 14:17:05 | 000,000,950 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-37642779 13-4157584849-2078515817-1000Core.job

[2011.08.09 23:20:09 | 000,000,680 | ---- | M] () -- C:\Users\X\AppData\Local\d3d9caps.dat

[2011.08.06 14:14:02 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt

[2011.08.03 10:26:03 | 000,002,621 | ---- | M] () -- C:\Users\X\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Excel 2003.lnk

[2011.08.03 09:29:53 | 000,002,625 | ---- | M] () -- C:\Users\X\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Word 2003.lnk

[2011.08.02 11:46:20 | 000,000,033 | ---- | M] () -- C:\Windows\QkEngine.INI

[2011.08.02 11:39:05 | 000,001,351 | ---- | M] () -- C:\Users\X\Documents\AutoHotkey.ahk

[2011.07.22 16:54:40 | 001,383,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb

[2011.07.21 09:41:04 | 000,003,584 | ---- | M] () -- C:\Users\X\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D 61DEA3FDF.ini

[2011.07.20 11:58:07 | 000,011,732 | ---- | M] () -- C:\Users\X\Documents\cc_20110720_115804.reg

========== Files Created - No Company Name ==========

[2011.08.02 11:46:20 | 000,000,033 | ---- | C] () -- C:\Windows\QkEngine.INI

[2011.08.02 11:39:05 | 000,001,351 | ---- | C] () -- C:\Users\X\Documents\AutoHotkey.ahk

[2011.07.20 13:02:00 | 000,645,632 | ---- | C] () -- C:\Windows\System32\xvidcore.dll

[2011.07.20 13:02:00 | 000,240,640 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll

[2011.07.20 13:02:00 | 000,153,088 | ---- | C] () -- C:\Windows\System32\xvid.ax

[2011.07.20 11:58:06 | 000,011,732 | ---- | C] () -- C:\Users\X\Documents\cc_20110720_115804.reg

[2011.07.13 15:08:50 | 000,001,786 | ---- | C] () -- C:\Windows\Sandboxie.ini

[2011.03.16 13:38:01 | 000,000,600 | ---- | C] () -- C:\Users\X\AppData\Local\PUTTY.RND

[2010.06.06 14:14:02 | 000,000,564 | ---- | C] () -- C:\Users\X\AppData\Local\FSCache.dat

[2010.04.06 10:17:03 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat

[2010.03.18 15:28:12 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll

[2010.03.18 15:28:12 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin

[2010.03.18 15:27:21 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin

[2010.03.09 18:56:25 | 000,000,680 | ---- | C] () -- C:\Users\X\AppData\Local\d3d9caps.dat

[2009.09.25 11:08:13 | 000,000,390 | ---- | C] () -- C:\Windows\ODBC.INI

[2009.02.17 20:02:46 | 000,003,584 | ---- | C] () -- C:\Users\X\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D 61DEA3FDF.ini

[2009.01.28 11:45:52 | 000,031,007 | ---- | C] () -- C:\Users\X\AppData\Roaming\UserTile.png

[2009.01.20 15:35:20 | 000,069,632 | ---- | C] () -- C:\Windows\RAUNINST.EXE

[2009.01.14 14:12:08 | 000,000,334 | ---- | C] () -- C:\Users\X\AppData\Roaming\wklnhst.dat

[2008.08.22 12:09:06 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin

[2008.08.22 11:40:12 | 000,000,176 | ---- | C] () -- C:\Windows\System32\drivers\RTHDAEQ1.dat

[2008.08.22 11:40:12 | 000,000,176 | ---- | C] () -- C:\Windows\System32\drivers\RTHDAEQ0.dat

[2008.08.22 11:31:13 | 000,095,528 | ---- | C] () -- C:\Windows\System32\WacomTouchService.exe

[2008.08.22 11:26:34 | 000,000,012 | ---- | C] () -- C:\Windows\bthservsdp.dat

[2008.05.15 21:18:13 | 000,000,428 | ---- | C] () -- C:\Windows\System32\ezdigsgn.dat

[2008.05.15 18:30:41 | 000,633,070 | ---- | C] () -- C:\Windows\System32\perfh01D.dat

[2008.05.15 18:30:41 | 000,290,490 | ---- | C] () -- C:\Windows\System32\perfi01D.dat

[2008.05.15 18:30:41 | 000,137,508 | ---- | C] () -- C:\Windows\System32\perfc01D.dat

[2008.05.15 18:30:41 | 000,035,978 | ---- | C] () -- C:\Windows\System32\perfd01D.dat

[2008.05.15 18:18:04 | 000,487,654 | ---- | C] () -- C:\Windows\System32\perfh014.dat

[2008.05.15 18:18:04 | 000,294,254 | ---- | C] () -- C:\Windows\System32\perfi014.dat

[2008.05.15 18:18:04 | 000,096,056 | ---- | C] () -- C:\Windows\System32\perfc014.dat

[2008.05.15 18:18:04 | 000,035,166 | ---- | C] () -- C:\Windows\System32\perfd014.dat

[2008.05.15 18:07:51 | 000,481,464 | ---- | C] () -- C:\Windows\System32\perfh00B.dat

[2008.05.15 18:07:51 | 000,274,158 | ---- | C] () -- C:\Windows\System32\perfi00B.dat

[2008.05.15 18:07:51 | 000,101,648 | ---- | C] () -- C:\Windows\System32\perfc00B.dat

[2008.05.15 18:07:51 | 000,036,790 | ---- | C] () -- C:\Windows\System32\perfd00B.dat

[2008.05.15 17:58:16 | 000,300,302 | ---- | C] () -- C:\Windows\System32\perfi006.dat

[2008.05.15 17:58:15 | 000,500,316 | ---- | C] () -- C:\Windows\System32\perfh006.dat

[2008.05.15 17:58:15 | 000,097,338 | ---- | C] () -- C:\Windows\System32\perfc006.dat

[2008.05.15 17:58:15 | 000,036,364 | ---- | C] () -- C:\Windows\System32\perfd006.dat

[2008.03.29 03:19:10 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll

[2008.03.29 02:51:08 | 003,107,788 | ---- | C] () -- C:\Windows\System32\atiumdva.dat

[2008.03.06 13:40:54 | 000,168,883 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat

[2008.03.04 22:02:00 | 000,090,112 | ---- | C] () -- C:\Windows\System32\atibrtmon.exe

[2007.12.12 15:44:44 | 000,466,944 | ---- | C] () -- C:\Windows\System32\RemoveDevice.dll

[2006.11.02 15:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat

[2006.11.02 15:47:37 | 000,302,096 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT

[2006.11.02 15:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll

[2006.11.02 13:33:01 | 000,631,636 | ---- | C] () -- C:\Windows\System32\perfh009.dat

[2006.11.02 13:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat

[2006.11.02 13:33:01 | 000,118,262 | ---- | C] () -- C:\Windows\System32\perfc009.dat

[2006.11.02 13:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat

[2006.11.02 13:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat

[2006.11.02 11:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin

[2006.11.02 11:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT

[2006.11.02 10:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini

[2006.11.02 10:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat

[2006.03.09 12:58:00 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll

[2001.11.14 22:56:00 | 001,802,240 | ---- | C] () -- C:\Windows\System32\lcppn21.dll

========== LOP Check ==========

[2011.05.25 16:13:18 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\.minecraft

[2010.07.05 09:45:30 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\adma

[2009.03.06 17:18:11 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\Blender Foundation

[2009.02.10 15:04:46 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\Crayon Physics Deluxe

[2009.01.20 15:32:23 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\DAEMON Tools

[2011.08.16 15:24:25 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\DAEMON Tools Lite

[2009.01.20 15:32:23 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\DAEMON Tools Pro

[2008.10.28 13:38:20 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\DigitalPersona

[2011.08.16 18:11:16 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\Dropbox

[2011.08.02 12:28:43 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\Easy Macro Recorder

[2010.04.20 13:24:10 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\inkscape

[2008.11.11 14:30:39 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\JCreator

[2011.08.16 15:24:21 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\Miranda

[2008.12.04 13:42:13 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\Notepad++

[2009.03.26 13:14:09 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\OpenOffice.org

[2010.06.19 14:46:21 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\PC Suite

[2009.01.28 11:45:52 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\PeerNetworking

[2011.08.16 15:32:32 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\QuickScan

[2011.08.04 13:21:47 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\Spotify

[2011.08.02 11:45:33 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\Startly

[2009.01.14 14:12:09 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\Template

[2011.06.16 11:48:48 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\Thunderbird

[2011.08.16 15:24:22 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\TS3Client

[2011.01.31 13:10:43 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\Unity

[2011.08.16 13:40:52 | 000,000,000 | ---D | M] -- C:\Users\X\AppData\Roaming\uTorrent

[2011.08.16 17:55:06 | 000,032,640 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========

< End of report >

Extras.txt

Link to post
Share on other sites

  • Staff

Hi and welcome to Malwarebytes.

Why do you believe this is malware-related?

Next, please run the PCPitstop Full Tests here (NOT the PCMatic scan or any other scan; simply register with the box on the left and you will be taken to the Full Tests/Overdrive Test). When the tests are complete, a results page will pop up. Copy and paste the URL of the Results screen and post it here for me.

Link to post
Share on other sites

Hi and welcome to Malwarebytes.

Why do you believe this is malware-related?

I am not sure, but it's not hardware issue, i think.

Next, please run the PCPitstop Full Tests here (NOT the PCMatic scan or any other scan; simply register with the box on the left and you will be taken to the Full Tests/Overdrive Test). When the tests are complete, a results page will pop up. Copy and paste the URL of the Results screen and post it here for me.

http://www.pcpitstop.com/betapit/sec.asp?conid=24538913

Link to post
Share on other sites

  • Staff

Hi and welcome to Malwarebytes.

Please update MBAM, run a Quick Scan, and post its log.

Next, please visit this webpage for instructions for running ComboFix:

http://www.bleepingcomputer.com/combofix/how-to-use-combofix

  • When the tool is finished, it will produce a report for you.
  • Please post the contents of C:\ComboFix.txt along with a new DDS log so we may continue cleaning the system.

Link to post
Share on other sites

Hi and welcome to Malwarebytes.

Please update MBAM, run a Quick Scan, and post its log.

Next, please visit this webpage for instructions for running ComboFix:

http://www.bleepingcomputer.com/combofix/how-to-use-combofix

  • When the tool is finished, it will produce a report for you.
  • Please post the contents of C:\ComboFix.txt along with a new DDS log so we may continue cleaning the system.

Hello

Here are the logs you requested:

ComboFix 11-09-05.02 - X 05.09.2011 15:33:51.1.2 - x86

Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.358.1035.18.2812.1727 [GMT 3:00]

Sijainti: c:\users\X\Desktop\ComboFix.exe

AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

.

(((((((((((((((((((((((((((((((((((((( Muut poistot ))))))))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

c:\windows\system32\no

c:\windows\system32\no\AuthFWSnapIn.Resources.dll

c:\windows\system32\no\AuthFWWizFwk.Resources.dll

c:\windows\system32\no\Narrator.resources.dll

c:\windows\system32\oem58.inf

c:\windows\system32\SV

c:\windows\system32\SV\AuthFWSnapIn.Resources.dll

c:\windows\system32\SV\AuthFWWizFwk.Resources.dll

c:\windows\system32\SV\Narrator.resources.dll

.

.

((((( Tiedostot, jotka on luotu seuraavalla aikavälillä: 2011-08-05 to 2011-09-05 )))))))))))))))))

.

.

2011-09-05 12:49 . 2011-09-05 12:56 -------- d-----w- c:\users\X\AppData\Local\temp

2011-09-05 12:49 . 2011-09-05 12:49 -------- d-----w- c:\users\Default\AppData\Local\temp

2011-09-03 14:11 . 2011-09-03 14:11 -------- d-----w- c:\programdata\ATI

2011-09-03 13:04 . 2009-04-03 03:39 27320 ----a-w- c:\windows\system32\drivers\usbfilter.sys

2011-09-03 13:04 . 2011-09-03 13:04 -------- d-----w- c:\program files\AMD

2011-09-03 12:33 . 2008-04-15 07:05 118784 ----a-w- c:\windows\system32\drivers\Rtlh86.sys

2011-09-03 12:16 . 2011-09-03 12:36 -------- d-----w- c:\windows\system32\no-NO

2011-09-03 12:15 . 2011-09-03 12:36 6656 ----a-w- c:\windows\system32\bcmwlrc.dll

2011-09-03 12:15 . 2011-09-03 12:15 -------- d-----w- c:\users\X\AppData\Roaming\InstallShield

2011-09-03 07:10 . 2011-08-12 02:44 7152464 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{4D620E18-FAFD-4704-AC9A-2B0CB7432D36}\mpengine.dll

2011-08-24 19:23 . 2011-07-11 13:25 2048 ----a-w- c:\windows\system32\tzres.dll

2011-08-16 18:30 . 2011-08-16 18:30 -------- d-----w- c:\program files\ESET

2011-08-16 16:54 . 2011-08-16 16:54 -------- d-----w- c:\users\X\AppData\Roaming\f-secure

2011-08-16 12:32 . 2011-08-16 12:32 -------- d-----w- c:\users\X\AppData\Roaming\QuickScan

.

.

.

(((((((((((((((((((((((((((((((((((( Find3M-raportti ))))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2011-09-03 12:15 . 2008-08-22 08:41 91376 ----a-w- c:\windows\system32\bcmwlcoi.dll

2011-09-03 12:15 . 2008-08-22 08:41 3538944 ----a-w- c:\windows\system32\bcmihvui.dll

2011-09-03 12:15 . 2008-08-22 08:41 3858432 ----a-w- c:\windows\system32\bcmihvsrv.dll

2011-09-03 12:15 . 2008-08-22 08:41 1880056 ----a-w- c:\windows\system32\drivers\BCMWL6.SYS

2011-08-16 14:53 . 2011-05-31 09:03 472808 ----a-w- c:\windows\system32\deployJava1.dll

2011-07-15 10:39 . 2011-07-15 10:40 860928 ----a-w- c:\windows\system32\drivers\mod7700.sys

2011-07-15 10:39 . 2011-07-15 10:40 11136 ----a-w- c:\windows\system32\drivers\ew_usbenumfilter.sys

2011-07-15 10:39 . 2011-07-15 10:40 85248 ----a-w- c:\windows\system32\drivers\ew_jucdcacm.sys

2011-07-15 10:39 . 2011-07-15 10:40 72576 ----a-w- c:\windows\system32\drivers\ew_jubusenum.sys

2011-07-15 10:39 . 2011-07-15 10:40 51456 ----a-w- c:\windows\system32\drivers\ew_jucdcecm.sys

2011-07-15 10:39 . 2011-07-15 10:40 26496 ----a-w- c:\windows\system32\drivers\ew_juextctrl.sys

2011-07-15 10:39 . 2011-07-15 10:40 23424 ----a-w- c:\windows\system32\drivers\ewdcsc.sys

2011-07-15 10:39 . 2011-07-15 10:40 116736 ----a-w- c:\windows\system32\drivers\ewusbnet.sys

2011-07-15 10:39 . 2011-07-15 10:40 106880 ----a-w- c:\windows\system32\drivers\ewusbmdm.sys

2011-07-15 10:39 . 2011-07-15 10:39 102784 ----a-w- c:\windows\system32\drivers\ew_hwusbdev.sys

2011-07-15 10:39 . 2011-07-13 11:44 1112288 ----a-w- c:\windows\system32\drivers\WdfCoInstaller01007.dll

2011-07-15 10:39 . 2011-07-13 11:44 1112288 ----a-w- c:\windows\system32\WdfCoInstaller01007.dll

2011-07-06 16:52 . 2010-09-23 11:14 41272 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys

2011-07-06 16:52 . 2010-09-23 11:14 22712 ----a-w- c:\windows\system32\drivers\mbam.sys

2011-07-04 11:43 . 2010-07-05 05:57 40112 ----a-w- c:\windows\avastSS.scr

2011-07-04 11:43 . 2008-10-28 11:16 199304 ----a-w- c:\windows\system32\aswBoot.exe

2011-07-04 11:36 . 2011-06-13 06:17 441176 ----a-w- c:\windows\system32\drivers\aswSnx.sys

2011-07-04 11:36 . 2008-10-28 11:16 309848 ----a-w- c:\windows\system32\drivers\aswSP.sys

2011-07-04 11:35 . 2008-10-28 11:16 43608 ----a-w- c:\windows\system32\drivers\aswTdi.sys

2011-07-04 11:32 . 2008-10-28 11:16 25432 ----a-w- c:\windows\system32\drivers\aswRdr.sys

2011-07-04 11:32 . 2008-10-28 11:16 54104 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys

2011-07-04 11:32 . 2008-10-28 11:16 19544 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys

2011-06-21 06:14 . 2011-05-19 05:56 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2011-09-05 12:21 . 2011-07-06 06:59 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll

.

.

(((((((((((((((((((((((((((((( Rekisterin käynnistyskohteet )))))))))))))))))))))))))))))))))))))))))))))

.

.

*Huom* Tyhjiä arvoja ja laillisia oletusarvoja ei näytetä

REGEDIT4

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]

@="{472083B0-C522-11CF-8763-00608CC02F24}"

[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]

2011-07-04 11:43 122512 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]

@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]

2011-02-18 05:12 94208 ----a-w- c:\users\X\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]

@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]

2011-02-18 05:12 94208 ----a-w- c:\users\X\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]

@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]

2011-02-18 05:12 94208 ----a-w- c:\users\X\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-03-28 1045800]

"QlbCtrl.exe"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2008-03-14 202032]

"{0228e555-4f9c-4e35-a3ec-b109a192b4c2}"="c:\program files\Google\Gmail Notifier\gnotify.exe" [2005-07-15 479232]

"avast"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2011-07-04 3493720]

"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-08-04 98304]

.

c:\users\X\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

Dropbox.lnk - c:\users\X\AppData\Roaming\Dropbox\bin\Dropbox.exe [2011-5-25 24176560]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"EnableUIADesktopToggle"= 0 (0x0)

"HideFastUserSwitching"= 1 (0x1)

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

"aux"=wdmaud.drv

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

@="Driver"

.

[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^VPN Client.lnk]

path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\VPN Client.lnk

backup=c:\windows\pss\VPN Client.lnk.CommonStartup

backupExtension=.CommonStartup

.

[HKLM\~\startupfolder\C:^Users^X^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma.lnk]

path=c:\users\X\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk

backup=c:\windows\pss\Adobe Gamma.lnk.Startup

backupExtension=.Startup

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]

2011-03-29 18:59 937920 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]

2011-05-27 11:52 40368 ----a-w- c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Cisco AnyConnect Secure Mobility Agent for Windows]

2011-03-23 22:35 519632 ----a-w- c:\program files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DpAgent]

2008-03-13 02:24 699456 ----a-w- c:\program files\DigitalPersona\Bin\DpAgent.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray.exe]

2008-01-21 02:25 125952 ----a-w- c:\windows\ehome\ehtray.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]

2011-05-16 07:02 136176 ----atw- c:\users\X\AppData\Local\Google\Update\GoogleUpdate.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]

2007-05-08 23:24 54840 ----a-w- c:\program files\HP\HP Software Update\hpwuSchd2.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpWirelessAssistant]

2007-11-20 14:44 488752 ----a-w- c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM]

2007-07-12 19:43 226904 ----a-w- c:\programdata\Macrovision\FLEXnet Connect\6\ISUSPM.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]

2008-02-26 21:08 2289664 ----a-w- c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QPService]

2008-04-02 02:31 468264 ----a-w- c:\program files\HP\QuickPlay\QPService.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]

2009-09-04 22:54 417792 ----a-w- c:\program files\QuickTime\QTTask.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]

2008-02-13 13:52 4915200 ----a-w- c:\windows\RtHDVCpl.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSERIAL]

2007-11-01 15:44 671744 ----a-w- c:\program files\Motorola\SMSERIAL\sm56hlpr.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]

2011-08-06 11:20 1242448 ----a-w- c:\program files\Steam\Steam.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UCam_Menu]

2007-12-24 22:55 222504 ------w- c:\program files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]

2008-01-21 02:23 1008184 ----a-w- c:\program files\Windows Defender\MSASCui.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]

"DisableMonitoring"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]

"DisableMonitoring"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]

"DisableMonitoring"=dword:00000001

.

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

R2 Mobile Partner. RunOuc;Mobile Partner. OUC;c:\program files\Mobile Partner\UpdateDog\ouc.exe [2011-07-15 203776]

R3 acsint;acsint;c:\windows\system32\DRIVERS\acsint.sys [2011-03-23 36624]

R3 acsmux;acsmux;c:\windows\system32\DRIVERS\acsmux.sys [2011-03-23 46480]

R3 Com4QLBEx;Com4QLBEx;c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-02-07 193840]

R3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\DRIVERS\ew_hwusbdev.sys [2011-07-15 102784]

R3 ew_usbenumfilter;huawei_CompositeFilter;c:\windows\system32\DRIVERS\ew_usbenumfilter.sys [2011-07-15 11136]

R3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\DRIVERS\ewusbnet.sys [2011-07-15 116736]

R3 massfilter;ZTE Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [2008-10-29 7680]

R3 nokiacpo;Nokia Internet Stick Wireless Modem Service Install;c:\windows\system32\DRIVERS\nokiacpo.sys [2009-08-05 19968]

R3 nokiappo;Nokia Internet Stick Wireless Modem Power Policy Service;c:\windows\system32\DRIVERS\nokiappo.sys [2009-08-05 27648]

R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]

S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2009-01-20 717296]

S1 aswSnx;aswSnx; [x]

S1 aswSP;aswSP; [x]

S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-08-04 176128]

S2 aswFsBlk;aswFsBlk; [x]

S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2011-07-04 54104]

S2 ezSharedSvc;Easybits Shared Services for Windows;c:\windows\system32\svchost.exe [2008-01-21 21504]

S2 HWDeviceService.exe;HWDeviceService.exe;c:\programdata\DatacardService\HWDeviceService.exe [2010-11-16 264704]

S2 Recovery Service for Windows;Recovery Service for Windows;c:\windows\SMINST\BLService.exe [2008-08-22 361808]

S2 TabletServicePen;TabletServicePen;c:\windows\system32\Pen_Tablet.exe [2008-04-10 1369384]

S2 WacomTouchService;Wacom Touch Service;c:\windows\system32\WacomTouchService.exe [2007-10-16 95528]

S3 enecir;ENE CIR Receiver;c:\windows\system32\DRIVERS\enecir.sys [2008-01-24 52736]

S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys [2011-07-15 72576]

S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [2009-04-03 27320]

S3 Wacomhidfilter;Wacom HID Filter;c:\windows\system32\DRIVERS\wacomhidfilter.sys [2007-11-05 10536]

S3 WacomVTHid;Virtual Touch Driver;c:\windows\system32\DRIVERS\WacomVTHid.sys [2007-02-22 11312]

.

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

bthsvcs REG_MULTI_SZ BthServ

.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs

ezSharedSvc

.

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]

2008-02-26 21:06 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe

.

'Ajoitetut tehtävät'-kansion sisältö

.

2011-08-29 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3764277913-4157584849-2078515817-1000Core.job

- c:\users\X\AppData\Local\Google\Update\GoogleUpdate.exe [2011-05-16 07:02]

.

2011-09-05 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3764277913-4157584849-2078515817-1000UA.job

- c:\users\X\AppData\Local\Google\Update\GoogleUpdate.exe [2011-05-16 07:02]

.

.

------- Täydentävä tarkistus -------

.

uStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fi_fi&c=83&bd=Pavilion&pf=cnnb

IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200

IE: Lähetä kuva &Bluetooth-laitteeseen... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

IE: Lähetä sivu &Bluetooth-laitteeseen... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

IE: Vie Microsoft E&xceliin - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000

TCP: DhcpNameServer = 192.168.1.1

DPF: 55963676-2F5E-4BAF-AC28-CF26AA587566 - vpnweb.cab

FF - ProfilePath - c:\users\X\AppData\Roaming\Mozilla\Firefox\Profiles\wsen8u16.default\

FF - prefs.js: browser.startup.homepage - hxxp://www.google.fi/ig

.

- - - - POISTETUT JÄMÄRIVIT - - - -

.

MSConfigStartUp-HP Health Check Scheduler - [ProgramFilesFolder]Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe

MSConfigStartUp-MsnMsgr - c:\program files\MSN Messenger\MsnMsgr.Exe

MSConfigStartUp-SandboxieControl - c:\program files\Sandboxie\SbieCtrl.exe

MSConfigStartUp-SunJavaUpdateSched - c:\program files\Common Files\Java\Java Update\jusched.exe

.

.

.

**************************************************************************

.

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2011-09-05 15:55

Windows 6.0.6002 Service Pack 2 NTFS

.

tarkistaa piilotettuja prosesseja ...

.

tarkistaa piilotettuja käynnistysarvoja ...

.

tarkistaa piilotettuja tiedostoja ...

.

tarkistus on valmis

piilotetut tiedostot: 0

.

**************************************************************************

.

--------------------- LUKITUT REKISTERIAVAIMET ---------------------

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0006\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

--------------------- Prosesseihin ladatut DLLt ---------------------

.

- - - - - - - > 'Explorer.exe'(3400)

c:\users\X\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll

c:\windows\system32\btncopy.dll

c:\program files\Common Files\SmartCom\DragnDropCopyHook.dll

.

------------------------ Muut prosessit ------------------------

.

c:\program files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe

c:\windows\system32\atieclxx.exe

c:\program files\Alwil Software\Avast5\AvastSvc.exe

c:\windows\SYSTEM32\WISPTIS.EXE

c:\program files\Common Files\microsoft shared\ink\TabTip.exe

c:\windows\system32\WLANExt.exe

c:\windows\SYSTEM32\WISPTIS.EXE

c:\program files\Common Files\microsoft shared\ink\TabTip.exe

c:\program files\DigitalPersona\Bin\DpHostW.exe

c:\program files\Common Files\LightScribe\LSSrvc.exe

c:\program files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe

c:\program files\HP\QuickPlay\Kernel\TV\QPSched.exe

c:\program files\CyberLink\Shared Files\RichVideo.exe

c:\windows\system32\WTablet\Pen_TabletUser.exe

c:\program files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe

c:\program files\Hewlett-Packard\HP Health Check\hphc_service.exe

c:\windows\servicing\TrustedInstaller.exe

c:\windows\system32\vssvc.exe

.

**************************************************************************

.

Valmistumisajankohta: 2011-09-05 16:11:52 - kone käynnistettiin uudelleen

ComboFix-quarantined-files.txt 2011-09-05 13:11

.

Ennen ajoa: 202 257 297 408 tavua vapaana

Ajon jälkeen: 203 282 292 736 tavua vapaana

.

Current=1 Default=1 Failed=0 LastKnownGood=11 Sets=1,2,3,4,5,6,7,8,9,11

- - End Of File - - BC6BB170F11DC596BF1943DE2C59BF72

DDS.txt

Attach.txt

mbam-log-2011-09-05 (15-20-13).txt

Link to post
Share on other sites

  • Staff

Hi,

Next, please run a free online scan with the ESET Online Scanner

Note: You will need to use Internet Explorer for this scan.

  1. Tick the box next to YES, I accept the Terms of Use.
  2. Click Start
  3. When asked, allow the ActiveX control to install
  4. Click Start
  5. Make sure that the options Remove found threats and the option Scan unwanted applications is checked
  6. Click Scan
    Wait for the scan to finish
  7. Use Notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txt
  8. Copy and paste that log as a reply to this topic

Next, download my Security Check from here or here.

  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

Let me know how things are running now and what issues remain.

Link to post
Share on other sites

Hi,

Next, please run a free online scan with the ESET Online Scanner

Note: You will need to use Internet Explorer for this scan.

  1. Tick the box next to YES, I accept the Terms of Use.
  2. Click Start
  3. When asked, allow the ActiveX control to install
  4. Click Start
  5. Make sure that the options Remove found threats and the option Scan unwanted applications is checked
  6. Click Scan
    Wait for the scan to finish
  7. Use Notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txt
  8. Copy and paste that log as a reply to this topic

Next, download my Security Check from here or here.

  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

Let me know how things are running now and what issues remain.

Hi

Here is the logs again, the bootup still takes about 5 minutes, and everything goes very slowly, i don't understand...

checkup.txt

eset.txt

Link to post
Share on other sites

  • 3 weeks later...
  • Staff

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.