ActiveX:
64bit: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:
64bit: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX:
64bit: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:
64bit: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:
64bit: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:
64bit: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:
64bit: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:
64bit: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:
64bit: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:
64bit: {68C9450D-E18A-B74C-9304-861CB735CCD1} - Offline Browsing Pack
ActiveX:
64bit: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:
64bit: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:
64bit: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:
64bit: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX:
64bit: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings
ActiveX:
64bit: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX:
64bit: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:
64bit: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:
64bit: {CD32596D-05EC-ACB3-E42F-A2363AC70B72} - Microsoft Windows Media Player
ActiveX:
64bit: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:
64bit: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:
64bit: {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:
64bit: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX:
64bit: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig
ActiveX:
64bit: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\SysWOW64\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {DFA2CEE3-D11C-C15B-A42C-9A6EB1A05866} - Microsoft Windows Media Player
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\SysWOW64\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\iedkcs32.dll",BrandIEActiveSetup SIGNUP
Drivers32:
64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
========== Files/Folders - Created Within 30 Days ========== [2010/08/20 17:02:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Bazooka Scanner
[2010/08/20 14:07:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VSO
[2010/08/19 17:08:45 | 000,000,000 | ---D | C] -- C:\Users\User\Documents\XSitePro-Data
[2010/08/19 17:06:58 | 000,000,000 | ---D | C] -- C:\Program Files\XSitePro2
[2010/08/19 17:06:58 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Thraex Software
[2010/08/18 11:07:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office Outlook Connector
[2010/08/17 11:26:22 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2010/08/17 11:26:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2010/08/17 10:43:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2010/08/17 10:42:46 | 000,423,656 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2010/08/17 10:42:46 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2010/08/17 10:42:46 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2010/08/17 10:42:46 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2010/08/17 10:42:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2010/08/16 11:23:58 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Users\User\Desktop\OTL.exe
[2010/08/12 18:19:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2010/08/12 18:19:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spybot - Search & Destroy
[2010/08/11 16:14:15 | 000,000,000 | ---D | C] -- C:\32788R22FWJFW
[2010/08/10 17:25:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\File Scavenger 3.2
[2010/08/09 15:35:22 | 000,000,000 | ---D | C] -- C:\Users\User\DoctorWeb
[2010/08/09 14:04:50 | 000,000,000 | ---D | C] -- C:\Windows\McAfee.com
[2010/08/05 11:55:27 | 000,000,000 | ---D | C] -- C:\New folder
[2010/08/05 11:53:09 | 000,000,000 | ---D | C] -- C:\IOMEGA
[2010/08/02 16:55:13 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2010/08/02 16:55:09 | 000,000,000 | ---D | C] -- C:\ProgramData\!SASCORE
[2010/08/02 01:11:54 | 000,000,000 | ---D | C] -- C:\TemplatesX5
[2010/08/01 12:18:57 | 000,000,000 | ---D | C] -- C:\Users\User\Desktop\New folder
[2010/07/30 17:29:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\AnswerWorks 5.0
[2010/07/30 17:28:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Quicken
[2010/07/30 15:44:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Works
[2010/07/30 15:43:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio
[2010/07/30 15:43:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2010/07/30 15:43:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
[2010/07/30 15:41:24 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2010/07/30 15:41:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 8
[2010/07/30 15:40:36 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\Microsoft Help
[2010/07/30 15:40:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office
[2010/07/30 15:40:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2010/07/29 17:41:59 | 000,000,000 | ---D | C] -- C:\POS_SAVE
[2010/07/29 17:37:03 | 000,000,000 | ---D | C] -- C:\FPSYS
[2010/07/29 17:36:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\POS 4 Business
[2010/07/27 15:40:39 | 000,000,000 | ---D | C] -- C:\Users\User\Documents\ResumeMaker
[2010/07/27 15:40:39 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\Individual Software
[2010/07/27 14:34:13 | 001,046,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msjet35.dll
[2010/07/27 14:34:13 | 000,287,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msxbse35.dll
[2010/07/27 14:34:13 | 000,250,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mspdox35.dll
[2010/07/27 14:34:13 | 000,250,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msexcl35.dll
[2010/07/27 14:34:13 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msltus35.dll
[2010/07/27 14:34:13 | 000,165,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstext35.dll
[2010/07/27 14:34:12 | 000,415,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrepl35.dll
[2010/07/27 14:34:12 | 000,252,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Msrd2x35.dll
[2010/07/27 14:34:12 | 000,123,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSJINT35.DLL
[2010/07/27 14:34:12 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\temp.000
[2010/07/27 14:34:12 | 000,024,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSJTER35.DLL
[2010/07/27 14:34:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Individual Software
[2010/07/27 06:15:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WebSite X5 v8 - Evolution
[2010/07/27 06:14:00 | 001,355,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSVBVM50.dll
[2010/07/27 06:14:00 | 000,207,872 | ---- | C] (Incomedia -
www.websitex5.com) -- C:\Windows\SysWow64\iwpsetup.exe
[2010/07/27 06:14:00 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\VB5STKIT.DLL
[2010/07/26 23:47:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intuit
[2010/04/29 21:54:45 | 000,082,816 | ---- | C] (VSO Software) -- C:\Users\User\AppData\Roaming\pcouffin.sys
========== Files - Modified Within 30 Days ========== [2010/08/21 08:06:24 | 007,864,320 | -HS- | M] () -- C:\Users\User\NTUSER.DAT
[2010/08/20 19:37:22 | 000,000,000 | ---- | M] () -- C:\Users\User\AppData\Local\prvlcl.dat
[2010/08/20 18:16:29 | 063,663,133 | ---- | M] () -- C:\Windows\SysNative\drivers\Avg\incavi.avm
[2010/08/20 14:07:40 | 000,001,057 | ---- | M] () -- C:\Users\User\AppData\Roaming\vso_ts_preview.xml
[2010/08/20 14:07:24 | 000,001,228 | ---- | M] () -- C:\Users\User\Desktop\ConvertXtoDVD 4.lnk
[2010/08/20 11:00:14 | 000,082,651 | -HS- | M] () -- C:\Users\User\AppData\Roaming\2283880F-EF87-4aac-8EBD-C9BCC8494AF5_46.avi
[2010/08/19 17:22:10 | 000,000,819 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\Hosts
[2010/08/19 17:17:17 | 000,010,208 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010/08/19 17:17:17 | 000,010,208 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010/08/19 17:16:22 | 000,712,512 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010/08/19 17:16:22 | 000,614,210 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010/08/19 17:16:22 | 000,103,044 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010/08/19 17:12:02 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/08/19 17:11:52 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/08/19 17:11:50 | 3220,037,632 | -HS- | M] () -- C:\hiberfil.sys
[2010/08/19 17:11:04 | 002,949,421 | -H-- | M] () -- C:\Users\User\AppData\Local\IconCache.db
[2010/08/19 17:10:36 | 001,278,086 | ---- | M] () -- C:\Windows\XSitePro2 Uninstaller.exe
[2010/08/17 17:28:49 | 000,001,908 | ---- | M] () -- C:\Windows\diagwrn.xml
[2010/08/17 17:28:49 | 000,001,908 | ---- | M] () -- C:\Windows\diagerr.xml
[2010/08/17 11:26:25 | 000,001,009 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/08/17 10:42:36 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaws.exe
[2010/08/17 10:42:36 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\javaw.exe
[2010/08/17 10:42:36 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\java.exe
[2010/08/17 10:42:35 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\SysWow64\deployJava1.dll
[2010/08/16 15:59:13 | 000,002,541 | ---- | M] () -- C:\Users\User\Desktop\Document.rtf
[2010/08/16 11:24:05 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\User\Desktop\OTL.exe
[2010/08/13 16:46:24 | 003,033,504 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010/08/12 18:19:21 | 000,001,282 | ---- | M] () -- C:\Users\User\Application Data\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk
[2010/08/12 18:19:21 | 000,001,258 | ---- | M] () -- C:\Users\User\Desktop\Spybot - Search & Destroy.lnk
[2010/08/12 17:03:28 | 000,117,456 | ---- | M] () -- C:\Users\User\AppData\Local\GDIPFONTCACHEV1.DAT
[2010/08/12 11:40:34 | 000,000,718 | ---- | M] () -- C:\Users\User\Desktop\avg.csv
[2010/08/11 11:48:20 | 000,000,091 | ---- | M] () -- C:\Windows\QBChanUtil_Trigger.ini
[2010/08/10 17:48:22 | 010,922,021 | ---- | M] () -- C:\Users\User\Desktop\computer repair.psd
[2010/08/10 16:56:44 | 000,206,971 | ---- | M] () -- C:\Users\User\Desktop\ComputerRepair.jpg
[2010/08/07 17:51:12 | 000,786,192 | ---- | M] () -- C:\Users\User\Desktop\Untitled-1.jpg
[2010/08/05 18:37:42 | 000,000,036 | ---- | M] () -- C:\Users\User\AppData\Local\housecall.guid.cache
[2010/08/05 17:54:40 | 000,211,137 | ---- | M] () -- C:\Users\User\Desktop\Postcard Back.jpg
[2010/08/05 17:45:46 | 000,193,065 | ---- | M] () -- C:\Users\User\Desktop\ME.jpg
[2010/08/05 17:36:26 | 000,193,245 | ---- | M] () -- C:\Users\User\Desktop\ME1.jpg
[2010/08/05 11:30:53 | 000,000,778 | ---- | M] () -- C:\Users\User\Desktop\paste.rtf
[2010/08/04 09:50:22 | 000,625,964 | ---- | M] () -- C:\Users\User\Desktop\wifi_hack.pdf
[2010/08/03 11:54:14 | 000,004,074 | ---- | M] () -- C:\Users\User\Desktop\fitness.rtf
[2010/08/02 20:49:12 | 044,089,904 | ---- | M] () -- C:\Users\User\Desktop\avira_antivir_personal_en.exe
[2010/08/02 10:47:14 | 000,001,500 | ---- | M] () -- C:\Users\User\Desktop\firefox - Shortcut.lnk
[2010/08/01 11:58:47 | 000,000,478 | ---- | M] () -- C:\Windows\win.ini
[2010/07/30 17:29:04 | 000,001,802 | ---- | M] () -- C:\Users\Public\Desktop\Quicken Home & Business 2010.lnk
[2010/07/30 17:29:04 | 000,000,393 | ---- | M] () -- C:\Users\Public\Desktop\Best Card for Quicken users - Great NEW rewards.url
[2010/07/30 17:29:04 | 000,000,376 | ---- | M] () -- C:\Users\Public\Desktop\Accept Credit Cards with Quicken.url
[2010/07/30 17:28:38 | 000,000,126 | ---- | M] () -- C:\Windows\QUICKEN.INI
[2010/07/29 17:36:33 | 000,001,906 | ---- | M] () -- C:\Users\User\Desktop\POS 4 Business.lnk
[2010/07/27 06:26:38 | 000,001,119 | ---- | M] () -- C:\Users\Public\Desktop\WebSite X5 v8 Evolution.lnk
[2010/07/26 23:49:11 | 000,036,864 | ---- | M] (Homestead Technologies, Inc.) -- C:\nphssb.dll
[2010/07/26 23:49:11 | 000,000,247 | ---- | M] () -- C:\nphssb.xpt
========== Files Created - No Company Name ========== [2010/08/20 14:07:24 | 000,001,228 | ---- | C] () -- C:\Users\User\Desktop\ConvertXtoDVD 4.lnk
[2010/08/19 17:10:34 | 001,278,086 | ---- | C] () -- C:\Windows\XSitePro2 Uninstaller.exe
[2010/08/17 17:28:33 | 000,001,908 | ---- | C] () -- C:\Windows\diagwrn.xml
[2010/08/17 17:28:33 | 000,001,908 | ---- | C] () -- C:\Windows\diagerr.xml
[2010/08/17 11:26:25 | 000,001,009 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/08/16 15:59:13 | 000,002,541 | ---- | C] () -- C:\Users\User\Desktop\Document.rtf
[2010/08/12 18:19:21 | 000,001,282 | ---- | C] () -- C:\Users\User\Application Data\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk
[2010/08/12 18:19:21 | 000,001,258 | ---- | C] () -- C:\Users\User\Desktop\Spybot - Search & Destroy.lnk
[2010/08/12 11:40:33 | 000,000,718 | ---- | C] () -- C:\Users\User\Desktop\avg.csv
[2010/08/10 16:56:35 | 010,922,021 | ---- | C] () -- C:\Users\User\Desktop\computer repair.psd
[2010/08/10 16:36:05 | 000,206,971 | ---- | C] () -- C:\Users\User\Desktop\ComputerRepair.jpg
[2010/08/07 17:39:31 | 000,786,192 | ---- | C] () -- C:\Users\User\Desktop\Untitled-1.jpg
[2010/08/05 18:37:42 | 000,000,036 | ---- | C] () -- C:\Users\User\AppData\Local\housecall.guid.cache
[2010/08/05 17:51:20 | 000,211,137 | ---- | C] () -- C:\Users\User\Desktop\Postcard Back.jpg
[2010/08/05 17:36:22 | 000,193,245 | ---- | C] () -- C:\Users\User\Desktop\ME1.jpg
[2010/08/05 15:01:21 | 000,193,065 | ---- | C] () -- C:\Users\User\Desktop\ME.jpg
[2010/08/05 11:30:53 | 000,000,778 | ---- | C] () -- C:\Users\User\Desktop\paste.rtf
[2010/08/04 09:50:22 | 000,625,964 | ---- | C] () -- C:\Users\User\Desktop\wifi_hack.pdf
[2010/08/03 11:54:14 | 000,004,074 | ---- | C] () -- C:\Users\User\Desktop\fitness.rtf
[2010/08/02 20:46:21 | 044,089,904 | ---- | C] () -- C:\Users\User\Desktop\avira_antivir_personal_en.exe
[2010/08/02 10:47:14 | 000,001,500 | ---- | C] () -- C:\Users\User\Desktop\firefox - Shortcut.lnk
[2010/08/02 09:56:42 | 000,082,651 | -HS- | C] () -- C:\Users\User\AppData\Roaming\2283880F-EF87-4aac-8EBD-C9BCC8494AF5_46.avi
[2010/07/30 17:29:04 | 000,001,802 | ---- | C] () -- C:\Users\Public\Desktop\Quicken Home & Business 2010.lnk
[2010/07/30 17:29:04 | 000,000,393 | ---- | C] () -- C:\Users\Public\Desktop\Best Card for Quicken users - Great NEW rewards.url
[2010/07/30 17:29:04 | 000,000,376 | ---- | C] () -- C:\Users\Public\Desktop\Accept Credit Cards with Quicken.url
[2010/07/29 17:36:33 | 000,001,906 | ---- | C] () -- C:\Users\User\Desktop\POS 4 Business.lnk
[2010/07/27 06:26:38 | 000,001,119 | ---- | C] () -- C:\Users\Public\Desktop\WebSite X5 v8 Evolution.lnk
[2010/07/27 06:14:00 | 000,006,114 | ---- | C] () -- C:\Windows\SysWow64\SHELLLNK.TLB
[2010/07/20 22:39:43 | 000,794,900 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2010/07/20 18:32:47 | 000,000,036 | ---- | C] () -- C:\Windows\iltwain.ini
[2010/07/15 18:42:18 | 000,000,126 | ---- | C] () -- C:\Windows\QUICKEN.INI
[2010/07/15 17:20:39 | 000,000,091 | ---- | C] () -- C:\Windows\QBChanUtil_Trigger.ini
[2010/07/14 16:37:12 | 000,000,000 | ---- | C] () -- C:\Users\User\AppData\Local\prvlcl.dat
[2010/04/29 21:56:47 | 000,001,057 | ---- | C] () -- C:\Users\User\AppData\Roaming\vso_ts_preview.xml
[2010/04/29 21:55:21 | 000,000,034 | ---- | C] () -- C:\Users\User\AppData\Roaming\pcouffin.log
[2010/04/29 21:54:45 | 000,099,384 | ---- | C] () -- C:\Users\User\AppData\Roaming\inst.exe
[2010/04/29 21:54:45 | 000,007,859 | ---- | C] () -- C:\Users\User\AppData\Roaming\pcouffin.cat
[2010/04/29 21:54:45 | 000,001,167 | ---- | C] () -- C:\Users\User\AppData\Roaming\pcouffin.inf
[2010/04/22 15:51:20 | 000,000,193 | ---- | C] () -- C:\Windows\WORDPAD.INI
[2010/02/16 23:32:44 | 000,168,448 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2009/07/13 16:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 14:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
========== Custom Scans ========== < %systemroot%\*. /mp /s > < %systemroot%\system32\*.dll /lockedfiles > < %systemroot%\system32\*.exe /lockedfiles > < %systemroot%\Tasks\*.job /lockedfiles > < %systemroot%\system32\drivers\*.sys /lockedfiles > < %systemroot%\System32\config\*.sav > < %systemroot%\system32\*.sys >[2007/02/07 11:27:46 | 000,014,104 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\Windows\SysWOW64\speedfan.sys
< %systemroot%\system32\drivers\*.dll > < %systemroot%\system32\drivers\*.ini > < %systemroot%\system32\drivers\*.exe > < %SYSTEMDRIVE%\*.* >[2009/07/13 18:38:58 | 000,383,562 | RHS- | M] () -- C:\bootmgr
[2010/02/16 15:09:55 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2009/08/02 01:59:51 | 000,171,136 | RHS- | M] () -- C:\grldr
[2010/08/19 17:11:50 | 3220,037,632 | -HS- | M] () -- C:\hiberfil.sys
[2010/07/26 23:49:11 | 000,036,864 | ---- | M] (Homestead Technologies, Inc.) -- C:\nphssb.dll
[2010/07/26 23:49:11 | 000,000,247 | ---- | M] () -- C:\nphssb.xpt
[2010/08/19 17:11:50 | 4293,386,240 | -HS- | M] () -- C:\pagefile.sys
[2010/07/21 06:35:33 | 002,295,566 | ---- | M] () -- C:\PSQL_v10_Install.log
[2010/06/05 20:50:27 | 000,005,042 | ---- | M] () -- C:\scramble.log
< %PROGRAMFILES%\*. >[2010/02/16 23:33:29 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Accessdiver
[2010/07/20 23:32:41 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\addon
[2010/07/10 17:03:45 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Adobe
[2010/07/10 16:59:55 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Adobe Media Player
[2010/02/16 15:31:21 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Apple Software Update
[2010/06/05 20:50:52 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Atrinsic
[2010/02/18 18:18:10 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Auslogics
[2010/06/29 12:53:38 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\AVG
[2010/08/20 17:02:43 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Bazooka Scanner
[2010/07/21 09:22:55 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Best Software
[2010/04/08 12:19:38 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Boilsoft Video Splitter
[2010/02/16 15:31:18 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Bonjour
[2010/07/10 17:43:28 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\CCleaner
[2010/08/17 10:43:14 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Common Files
[2010/07/20 23:32:41 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Driver
[2010/07/20 23:32:42 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\DrvSetup
[2010/04/08 12:17:34 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Easy Video Splitter
[2010/08/10 17:25:07 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\File Scavenger 3.2
[2010/07/21 09:33:52 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Halfpricesoft
[2010/02/21 20:41:48 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\ImgBurn
[2010/07/30 17:29:11 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\InstallShield Installation Information
[2010/06/15 13:25:56 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Internet Explorer
[2010/08/11 11:47:53 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Intuit
[2010/02/16 15:31:50 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\iTunes
[2010/08/17 10:42:33 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Java
[2010/07/23 00:26:48 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\JDownloader
[2010/02/16 23:32:43 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\K-Lite Codec Pack
[2010/07/21 10:39:53 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Lavalys
[2010/08/17 11:26:26 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2010/08/18 11:07:27 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft
[2010/07/30 15:43:55 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Office
[2010/08/18 11:07:20 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Office Outlook Connector
[2010/06/15 13:26:23 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Silverlight
[2010/02/16 17:11:47 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
[2010/02/16 17:12:27 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Sync Framework
[2010/07/30 15:43:44 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Visual Studio
[2010/07/30 15:41:18 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Visual Studio 8
[2010/08/01 11:59:43 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft Works
[2010/07/30 15:43:18 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Microsoft.NET
[2010/08/09 15:26:40 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Mozilla Firefox
[2010/07/30 15:44:01 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\MSBuild
[2010/07/15 17:20:29 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\MSXML 4.0
[2010/07/19 07:18:10 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\PenSoft
[2010/07/21 10:14:42 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Pervasive Software
[2010/07/29 17:37:02 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\POS 4 Business
[2010/02/20 22:31:06 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\ProxyFinderEnterprise
[2010/07/30 17:40:37 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Quicken
[2010/02/16 15:31:38 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\QuickTime
[2010/07/20 23:32:42 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\readme
[2009/07/13 22:32:38 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Reference Assemblies
[2010/07/21 10:45:13 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Sage Software
[2010/07/20 18:53:07 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\SimpleSoftwareSolutions
[2010/08/12 18:24:49 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Spybot - Search & Destroy
[2009/07/13 21:57:06 | 000,000,000 | -H-D | M] -- C:\Program Files (x86)\Uninstall Information
[2010/07/21 10:58:57 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\uTorrent
[2010/06/05 20:55:13 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\VideoLAN
[2010/02/18 23:36:34 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\VS Revo Group
[2010/08/20 14:07:21 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\VSO
[2010/07/27 07:44:09 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\WebSite X5 v8 - Evolution
[2009/07/13 22:37:47 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Defender
[2010/08/18 11:06:48 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Live
[2010/02/16 17:10:47 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Live SkyDrive
[2010/05/17 21:40:56 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Mail
[2010/02/16 15:41:14 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Media Player
[2009/07/13 22:32:38 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows NT
[2009/07/13 22:37:47 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Photo Viewer
[2009/07/13 22:32:40 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Portable Devices
[2009/07/13 22:37:47 | 000,000,000 | ---D | M] -- C:\Program Files (x86)\Windows Sidebar
< %appdata%\*.* >[2010/08/20 11:00:14 | 000,082,651 | -HS- | M] () -- C:\Users\User\AppData\Roaming\2283880F-EF87-4aac-8EBD-C9BCC8494AF5_46.avi
[2010/04/29 21:54:45 | 000,099,384 | ---- | M] () -- C:\Users\User\AppData\Roaming\inst.exe
[2010/04/29 21:54:45 | 000,007,859 | ---- | M] () -- C:\Users\User\AppData\Roaming\pcouffin.cat
[2010/04/29 21:54:45 | 000,001,167 | ---- | M] () -- C:\Users\User\AppData\Roaming\pcouffin.inf
[2010/04/29 21:55:21 | 000,000,034 | ---- | M] () -- C:\Users\User\AppData\Roaming\pcouffin.log
[2010/04/29 21:54:45 | 000,082,816 | ---- | M] (VSO Software) -- C:\Users\User\AppData\Roaming\pcouffin.sys
[2010/08/20 14:07:40 | 000,001,057 | ---- | M] () -- C:\Users\User\AppData\Roaming\vso_ts_preview.xml
< MD5 for: AGP440.SYS >[2009/07/13 18:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysWow64\DriverStore\FileRepository\machine.inf_amd64_neutral_9e6bb86c3b39a3e9\AGP440.sys
[2009/07/13 18:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_1607dee2d861e021\AGP440.sys
< MD5 for: ATAPI.SYS >[2009/07/13 18:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysWow64\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys
[2009/07/13 18:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys
< MD5 for: CNGAUDIT.DLL >[2009/07/13 18:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009/07/13 18:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\SysWOW64\cngaudit.dll
[2009/07/13 18:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
[2009/07/13 18:40:20 | 000,018,944 | ---- | M] (Microsoft Corporation) MD5=86FE1B1F8FD42CD0DB641AB1CDB13093 -- C:\Windows\winsxs\amd64_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_4458dccc49458461\cngaudit.dll
< MD5 for: DISK.SYS >[2009/07/13 18:47:48 | 000,073,280 | ---- | M] (Microsoft Corporation) MD5=9819EEE8B5EA3784EC4AF3B137A5244C -- C:\Windows\SysWow64\DriverStore\FileRepository\disk.inf_amd64_neutral_10ce25bbc5a9cc43\disk.sys
[2009/07/13 18:47:48 | 000,073,280 | ---- | M] (Microsoft Corporation) MD5=9819EEE8B5EA3784EC4AF3B137A5244C -- C:\Windows\winsxs\amd64_disk.inf_31bf3856ad364e35_6.1.7600.16385_none_55bb738b8ddd8a01\disk.sys
< MD5 for: IASTORV.SYS >[2009/07/13 18:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\SysWow64\DriverStore\FileRepository\iastorv.inf_amd64_neutral_18cccb83b34e1453\iaStorV.sys
[2009/07/13 18:48:04 | 000,410,688 | ---- | M] (Intel Corporation) MD5=D83EFB6FD45DF9D55E9A1AFC63640D50 -- C:\Windows\winsxs\amd64_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_0b06441fa1790136\iaStorV.sys
< MD5 for: NETLOGON.DLL >[2009/07/13 18:41:52 | 000,692,736 | ---- | M] (Microsoft Corporation) MD5=956D030D375F207B22FB111E06EF9C35 -- C:\Windows\winsxs\amd64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_59aca8ea51aaeefe\netlogon.dll
[2009/07/13 18:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll
[2009/07/13 18:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\SysWOW64\netlogon.dll
[2009/07/13 18:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\wow64_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_6401533c860bb0f9\netlogon.dll
< MD5 for: NVSTOR.SYS >[2009/07/13 18:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\SysWow64\DriverStore\FileRepository\nvraid.inf_amd64_neutral_5bde3fe2945bce9e\nvstor.sys
[2009/07/13 18:45:45 | 000,167,488 | ---- | M] (NVIDIA Corporation) MD5=477DC4D6DEB99BE37084C9AC6D013DA1 -- C:\Windows\winsxs\amd64_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_95cfb4ced8afab0e\nvstor.sys
< MD5 for: SCECLI.DLL >[2009/07/13 18:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009/07/13 18:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\SysWOW64\scecli.dll
[2009/07/13 18:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\wow64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9e577e55272d37b4\scecli.dll
[2009/07/13 18:41:53 | 000,232,448 | ---- | M] (Microsoft Corporation) MD5=398712DDDAEFB85EDF61DF6A07B65C79 -- C:\Windows\winsxs\amd64_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_9402d402f2cc75b9\scecli.dll
< MD5 for: USBSTOR.SYS >[2009/07/13 17:06:34 | 000,089,600 | ---- | M] (Microsoft Corporation) MD5=080D3820DA6C046BE82FC8B45A893E83 -- C:\Windows\SysWow64\DriverStore\FileRepository\usbstor.inf_amd64_neutral_c301b770e0bfb179\USBSTOR.SYS
[2009/07/13 17:06:34 | 000,089,600 | ---- | M] (Microsoft Corporation) MD5=080D3820DA6C046BE82FC8B45A893E83 -- C:\Windows\winsxs\amd64_usbstor.inf_31bf3856ad364e35_6.1.7600.16385_none_a47b405db18421ea\USBSTOR.SYS
< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >< End of report >