Hi did the online scan twice got the all clean but no report was created.
OTL logfile created on: 2/13/2010 7:47:31 AM - Run 3
OTL by OldTimer - Version 3.1.28.0 Folder = C:\Users\Mike\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18882)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 55.00% Memory free
4.00 Gb Paging File | 3.00 Gb Available in Paging File | 69.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 465.76 Gb Total Space | 271.27 Gb Free Space | 58.24% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: MIKE-PC
Current User Name: Mike
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
========== Processes (SafeList) ========== PRC - C:\Users\Mike\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe (TuneUp Software)
PRC - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe (TuneUp Software)
PRC - C:\Windows\System32\atieclxx.exe (AMD)
PRC - C:\Windows\System32\atiesrxx.exe (AMD)
PRC - C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe (Intuit Inc.)
PRC - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
PRC - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
PRC - C:\Windows\System32\FsUsbExService.Exe (Teruten)
PRC - C:\Program Files\Symantec AntiVirus\VPTray.exe (Symantec Corporation)
PRC - C:\Program Files\Symantec AntiVirus\Rtvscan.exe (Symantec Corporation)
PRC - C:\Program Files\Symantec AntiVirus\DefWatch.exe (Symantec Corporation)
PRC - C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
PRC - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (Symantec Corporation)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.)
PRC - C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe ()
PRC - C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe ()
PRC - C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe ()
PRC - C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe ()
PRC - C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
PRC - C:\Windows\System32\WUDFHost.exe (Microsoft Corporation)
PRC - C:\Program Files\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)
PRC - C:\Windows\System32\mobsync.exe (Microsoft Corporation)
PRC - C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
PRC - C:\Windows\System32\AERTSrv.exe (Andrea Electronics Corporation)
PRC - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe (Rocket Division Software)
PRC - C:\Program Files\Logitech\SetPoint\SetPoint.exe (Logitech Inc.)
PRC - C:\Program Files\Common Files\Logitech\KhalShared\KHALMNPR.exe (Logitech Inc.)
========== Modules (SafeList) ========== MOD - C:\Users\Mike\Downloads\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\comctl32.dll (Microsoft Corporation)
========== Win32 Services (SafeList) ========== SRV - (iPod Service) -- C:\Program Files\iPod\bin\iPodService.exe (Apple Inc.)
SRV - (MBAMService) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (TuneUp.Defrag) -- C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe (TuneUp Software)
SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe (TuneUp Software)
SRV - (UxTuneUp) -- C:\Windows\System32\uxtuneup.dll (TuneUp Software)
SRV - (AMD External Events Utility) -- C:\Windows\System32\atiesrxx.exe (AMD)
SRV - (IntuitUpdateService) -- C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe (Intuit Inc.)
SRV - (ACDaemon) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
SRV - (FontCache) -- C:\Windows\System32\FntCache.dll (Microsoft Corporation)
SRV - (Apple Mobile Device) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
SRV - (FsUsbExService) -- C:\Windows\System32\FsUsbExService.Exe (Teruten)
SRV - (SavRoam) -- C:\Program Files\Symantec AntiVirus\SavRoam.exe (symantec)
SRV - (Symantec AntiVirus) -- C:\Program Files\Symantec AntiVirus\Rtvscan.exe (Symantec Corporation)
SRV - (DefWatch) -- C:\Program Files\Symantec AntiVirus\DefWatch.exe (Symantec Corporation)
SRV - (ccSetMgr) -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (Symantec Corporation)
SRV - (ccEvtMgr) -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (Symantec Corporation)
SRV - (Bonjour Service) -- C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.)
SRV - (ServiceLayer) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia.)
SRV - (BlueSoleilCS) -- C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe ()
SRV - (LiveUpdate) -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_3.EXE (Symantec Corporation)
SRV - (BsHelpCS) -- C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe ()
SRV - (BsMobileCS) -- C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe ()
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (AERTFilters) -- C:\Windows\System32\AERTSrv.exe (Andrea Electronics Corporation)
SRV - (StarWindServiceAE) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe (Rocket Division Software)
SRV - (ehstart) -- C:\Windows\ehome\ehstart.dll (Microsoft Corporation)
========== Driver Services (SafeList) ========== DRV - (NAVEX15) -- C:\ProgramData\Symantec\Definitions\VirusDefs\20100211.002\NAVEX15.SYS (Symantec Corporation)
DRV - (NAVENG) -- C:\ProgramData\Symantec\Definitions\VirusDefs\20100211.002\NAVENG.SYS (Symantec Corporation)
DRV - (MBAMProtector) -- C:\Windows\System32\drivers\mbam.sys (Malwarebytes Corporation)
DRV - (AnyDVD) -- C:\Windows\System32\drivers\AnyDVD.sys (SlySoft, Inc.)
DRV - (atikmdag) -- C:\Windows\System32\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV - (TuneUpUtilitiesDrv) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys (TuneUp Software)
DRV - (sptd) -- C:\Windows\System32\Drivers\sptd.sys ()
DRV - (SymEvent) -- C:\Windows\System32\drivers\SYMEVENT.SYS (Symantec Corporation)
DRV - (ElbyCDIO) -- C:\Windows\System32\drivers\ElbyCDIO.sys (Elaborate Bytes AG)
DRV - (eeCtrl) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys (Symantec Corporation)
DRV - (EraserUtilRebootDrv) -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys (Symantec Corporation)
DRV - (FsUsbExDisk) -- C:\Windows\System32\FsUsbExDisk.Sys ()
DRV - (btnetBUs) -- C:\Windows\System32\drivers\btnetBus.sys ()
DRV - (BlueletSCOAudio) -- C:\Windows\System32\drivers\BlueletSCOAudio.sys (IVT Corporation.)
DRV - (GEARAspiWDM) -- C:\Windows\System32\drivers\GEARAspiWDM.sys (GEAR Software Inc.)
DRV - (usbaudio) USB Audio Driver (WDM) -- C:\Windows\System32\drivers\USBAUDIO.sys (Microsoft Corporation)
DRV - (SRTSPL) -- C:\Windows\System32\drivers\srtspl.sys (Symantec Corporation)
DRV - (SRTSP) -- C:\Windows\System32\drivers\srtsp.sys (Symantec Corporation)
DRV - (SRTSPX) -- C:\Windows\System32\drivers\srtspx.sys (Symantec Corporation)
DRV - (ssecmdm) -- C:\Windows\System32\drivers\ssecmdm.sys (MCCI Corporation)
DRV - (ssecmdfl) -- C:\Windows\System32\drivers\ssecmdfl.sys (MCCI Corporation)
DRV - (ssecbus) Samsung Mobile Modem Device driver (WDM) -- C:\Windows\System32\drivers\ssecbus.sys (MCCI Corporation)
DRV - (cmuda3) -- C:\Windows\System32\drivers\cmudax3.sys (C-Media Inc)
DRV - (pccsmcfd) -- C:\Windows\System32\drivers\pccsmcfd.sys (Nokia)
DRV - (NVENETFD) -- C:\Windows\System32\drivers\nvmfdx32.sys (NVIDIA Corporation)
DRV - (BtHidBus) -- C:\Windows\System32\Drivers\BtHidBus.sys (IVT Corporation.)
DRV - (BlueletAudio) -- C:\Windows\System32\drivers\blueletaudio.sys (IVT Corporation.)
DRV - (IvtBtBUs) -- C:\Windows\System32\drivers\IvtBtBus.sys (IVT Corporation.)
DRV - (VcommMgr) -- C:\Windows\System32\drivers\VCommMgr.sys (IVT Corporation.)
DRV - (Btcsrusb) -- C:\Windows\System32\drivers\btcusb.sys (IVT Corporation.)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\Windows\System32\drivers\RTKVHDA.sys (Realtek Semiconductor Corp.)
DRV - (BT) -- C:\Windows\System32\drivers\btnetdrv.sys (IVT Corporation.)
DRV - (VComm) -- C:\Windows\System32\drivers\VComm.sys (IVT Corporation.)
DRV - (SPBBCDrv) -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys (Symantec Corporation)
DRV - (nvstor32) -- C:\Windows\system32\DRIVERS\nvstor32.sys (NVIDIA Corporation)
DRV - (LMouFilt) -- C:\Windows\System32\drivers\LMouFilt.Sys (Logitech, Inc.)
DRV - (LHidFilt) -- C:\Windows\System32\drivers\LHidFilt.Sys (Logitech, Inc.)
DRV - (viaide) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.)
DRV - (cmdide) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.)
DRV - (aliide) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.)
DRV - (SYMTDI) -- C:\Windows\System32\Drivers\SYMTDI.SYS (Symantec Corporation)
DRV - (SYMREDRV) -- C:\Windows\System32\Drivers\SYMREDRV.SYS (Symantec Corporation)
DRV - (nvstor) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation)
DRV - (nvraid) NVIDIA nForce(tm) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation)
DRV - (ql2300) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation)
DRV - (adp94xx) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.)
DRV - (elxstor) -- C:\Windows\system32\drivers\elxstor.sys (Emulex)
DRV - (adpahci) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.)
DRV - (uliahci) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.)
DRV - (iaStorV) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation)
DRV - (adpu320) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.)
DRV - (ulsata2) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.)
DRV - (vsmraid) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (ql40xx) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation)
DRV - (UlSata) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.)
DRV - (adpu160m) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.)
DRV - (nfrd960) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation)
DRV - (iirsp) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (SiSRaid4) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems)
DRV - (aic78xx) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.)
DRV - (arcsas) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.)
DRV - (LSI_SCSI) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic)
DRV - (SiSRaid2) -- C:\Windows\system32\drivers\sisraid2.sys (Silicon Integrated Systems Corp.)
DRV - (HpCISSs) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company)
DRV - (arc) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.)
DRV - (iteraid) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.)
DRV - (iteatapi) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.)
DRV - (LSI_SAS) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic)
DRV - (Symc8xx) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic)
DRV - (LSI_FC) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic)
DRV - (Sym_u3) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic)
DRV - (Mraid35x) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation)
DRV - (Sym_hi) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic)
DRV - (megasas) -- C:\Windows\system32\drivers\megasas.sys (LSI Logic Corporation)
DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.)
DRV - (BrUsbSer) -- C:\Windows\system32\drivers\brusbser.sys (Brother Industries Ltd.)
DRV - (BrFiltUp) -- C:\Windows\system32\drivers\brfiltup.sys (Brother Industries, Ltd.)
DRV - (BrFiltLo) -- C:\Windows\system32\drivers\brfiltlo.sys (Brother Industries, Ltd.)
DRV - (BrSerWdm) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.)
DRV - (BrUsbMdm) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.)
DRV - (VSTHWBS2) -- C:\Windows\System32\drivers\VSTBS23.SYS (Conexant Systems, Inc.)
DRV - (VST_DPV) -- C:\Windows\System32\drivers\VSTDPV3.SYS (Conexant Systems, Inc.)
DRV - (winachsf) -- C:\Windows\System32\drivers\VSTCNXT3.SYS (Conexant Systems, Inc.)
DRV - (ntrigdigi) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies)
DRV - (E1G60) Intel(R) -- C:\Windows\System32\drivers\E1G60I32.sys (Intel Corporation)
DRV - (secdrv) -- C:\Windows\System32\drivers\secdrv.sys (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
DRV - (StarOpen) -- C:\Windows\System32\drivers\StarOpen.sys ()
DRV - (ZSMC301b) -- C:\Windows\System32\drivers\usbVM31b.sys (VM)
========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache =
http://www.msn.com/IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = D8 DE E4 CF FD AB CA 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ========== FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.optimum.net/"
FF - prefs.js..extensions.enabledItems: {B13721C7-F507-4982-B2E5-502A71474FED}:3.3.0.3971
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/02/10 08:54:51 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/02/10 09:19:50 | 000,000,000 | ---D | M]
[2009/10/03 10:47:42 | 000,000,000 | ---D | M] -- C:\Users\Mike\AppData\Roaming\Mozilla\Extensions
[2010/02/12 19:31:48 | 000,000,000 | ---D | M] -- C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\e0841v79.default\extensions
[2010/01/30 23:08:49 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\e0841v79.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}(403)
[2010/01/30 23:08:49 | 000,000,000 | ---D | M] -- C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\e0841v79.default\extensions\esnipesnipeit@esnipe(400).com
[2009/10/18 10:47:29 | 000,002,217 | ---- | M] () -- C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\e0841v79.default\searchplugins\askcom.xml
[2010/02/11 19:40:18 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009/12/07 21:32:27 | 000,000,000 | ---D | M] (BlueSoleil Extension) -- C:\Program Files\Mozilla Firefox\extensions\{231D7D17-4F1B-4933-AB61-E502DB82FD11}
[2009/11/19 17:16:28 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npCouponPrinter.dll
[2009/11/19 17:16:29 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npMozCouponPrinter.dll
[2009/08/03 15:07:42 | 000,373,104 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\plugins\npOGAPlugin.dll
O1 HOSTS File: ([2010/02/10 09:29:52 | 000,000,925 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 serial.alcohol-soft.com
O1 - Hosts: 127.0.0.1
www.alcohol-soft.comO1 - Hosts: 127.0.0.1 images.alcohol-soft.com
O1 - Hosts: 127.0.0.1 trial.alcohol-soft.com
O1 - Hosts: 127.0.0.1 alcohol-soft.com
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\Windows\KHALMNPR.Exe (Logitech Inc.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [vptray] C:\Program Files\Symantec AntiVirus\VPTray.exe (Symantec Corporation)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe (Samsung Electronics Co., Ltd.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Send by Bluetooth - C:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tsinfo.htm ()
O8 - Extra context menu item: Send via &Message... - C:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tssms.htm ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKCU\..Trusted Domains: intuit.com ([ttlc] https in Trusted sites)
O15 - HKCU\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94}
http://www.pcpitstop.com/betapit/PCPitStop.CAB (PCPitstop Utility)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5}
http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000}
http://fpdownload2.macromedia.com/get/s ... wflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Windows\System32\skype4com.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img22.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img22.jpg
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*
========== Files/Folders - Created Within 30 Days ========== [2010/02/12 11:12:20 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2010/02/11 19:34:57 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2010/02/11 19:34:55 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2010/02/11 19:34:55 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\temp
[2010/02/11 19:23:44 | 000,161,792 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2010/02/11 19:23:44 | 000,136,704 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2010/02/11 19:23:44 | 000,031,232 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2010/02/11 19:23:28 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2010/02/11 19:19:47 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010/02/11 19:19:33 | 000,212,480 | ---- | C] (SteelWerX) -- C:\Windows\SWXCACLS.exe
[2010/02/11 09:34:48 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\Oberon Games
[2010/02/11 08:42:28 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Oberon Media
[2010/02/11 08:42:26 | 000,000,000 | ---D | C] -- C:\Program Files\Mail.com Games
[2010/02/10 09:16:20 | 000,000,000 | ---D | C] -- C:\Config.Msi
[2010/02/09 17:50:25 | 003,600,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2010/02/09 17:50:25 | 003,548,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2010/02/09 17:49:46 | 001,314,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2010/02/09 17:49:46 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvfw32.dll
[2010/02/09 17:49:46 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2010/02/09 17:49:45 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll
[2010/02/09 15:46:20 | 000,000,000 | ---D | C] -- C:\MGADiagToolOutput
[2010/02/09 15:45:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Office Genuine Advantage
[2010/02/08 10:48:45 | 000,000,000 | ---D | C] -- C:\Users\Mike\Documents\Visual Studio 2005
[2010/02/07 14:02:13 | 000,018,816 | ---- | C] (Nokia) -- C:\Windows\System32\drivers\pccsmcfd.sys
[2010/02/07 09:39:31 | 000,000,000 | ---D | C] -- C:\Users\Mike\Desktop\extras
[2010/02/07 09:16:44 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2010/02/07 09:16:41 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2010/02/07 09:14:17 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2010/02/06 20:51:51 | 000,000,000 | ---D | C] -- C:\Users\Mike\Documents\NPS
[2010/02/06 20:46:07 | 000,000,000 | ---D | C] -- C:\ProgramData\PC Suite
[2010/02/06 20:46:06 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Roaming\PC Suite
[2010/02/06 20:45:11 | 000,319,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DIFxAPI.dll
[2010/02/06 20:44:43 | 000,114,304 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\ssecmdm.sys
[2010/02/06 20:44:43 | 000,086,528 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\ssecbus.sys
[2010/02/06 20:44:43 | 000,014,976 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\ssecmdfl.sys
[2010/02/06 20:44:43 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\ssecwhnt.sys
[2010/02/06 20:44:43 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\ssecwh.sys
[2010/02/06 20:44:43 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\sseccmnt.sys
[2010/02/06 20:44:43 | 000,012,160 | ---- | C] (MCCI Corporation) -- C:\Windows\System32\drivers\sseccm.sys
[2010/02/06 20:43:55 | 000,233,472 | ---- | C] (Teruten) -- C:\Windows\System32\FsUsbExService.Exe
[2010/02/06 20:43:54 | 000,000,000 | ---D | C] -- C:\Users\Mike\Documents\My NPS Files
[2010/02/06 20:42:30 | 000,000,000 | ---D | C] -- C:\Program Files\MarkAny
[2010/02/06 09:05:53 | 000,000,000 | ---D | C] -- C:\Users\Mike\Documents\TurboTax
[2010/02/06 08:59:25 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Roaming\Intuit
[2010/02/06 08:58:52 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\AnswerWorks 5.0
[2010/02/06 08:53:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Intuit
[2010/02/06 08:53:32 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Local\IsolatedStorage
[2010/02/06 08:53:31 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Intuit
[2010/02/06 08:53:13 | 000,000,000 | ---D | C] -- C:\Program Files\TurboTax
[2010/02/04 21:43:52 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Portable Devices
[2010/02/04 21:18:41 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIAnimation.dll
[2010/02/04 21:18:40 | 003,023,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIRibbon.dll
[2010/02/04 21:18:40 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIRibbonRes.dll
[2010/02/04 21:18:10 | 000,369,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMPhoto.dll
[2010/02/04 21:18:09 | 000,829,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2010/02/04 21:18:09 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll
[2010/02/04 21:18:09 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2010/02/04 21:18:09 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2010/02/04 21:18:08 | 001,554,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xpsservices.dll
[2010/02/04 21:18:08 | 001,064,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2010/02/04 21:18:08 | 001,030,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2010/02/04 21:18:08 | 000,974,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecs.dll
[2010/02/04 21:18:08 | 000,847,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\OpcServices.dll
[2010/02/04 21:18:08 | 000,828,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2010/02/04 21:18:08 | 000,793,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FntCache.dll
[2010/02/04 21:18:08 | 000,667,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2010/02/04 21:18:08 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d11.dll
[2010/02/04 21:18:08 | 000,486,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2010/02/04 21:18:08 | 000,481,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxgi.dll
[2010/02/04 21:18:08 | 000,351,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll
[2010/02/04 21:18:08 | 000,321,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PhotoMetadataHandler.dll
[2010/02/04 21:18:08 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2010/02/04 21:18:08 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxdiag.exe
[2010/02/04 21:18:08 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2010/02/04 21:18:08 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxdiagn.dll
[2010/02/04 21:18:08 | 000,190,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2010/02/04 21:18:08 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
[2010/02/04 21:18:08 | 000,161,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2010/02/04 21:17:29 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\BthMtpContextHandler.dll
[2010/02/04 21:17:29 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WPDShextAutoplay.exe
[2010/02/04 21:17:24 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceConnectApi.dll
[2010/02/04 21:17:22 | 000,546,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpd_ci.dll
[2010/02/04 21:17:22 | 000,334,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll
[2010/02/04 21:17:22 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WpdMtp.dll
[2010/02/04 21:17:22 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceWMDRM.dll
[2010/02/04 21:17:22 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceTypes.dll
[2010/02/04 21:17:22 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceClassExtension.dll
[2010/02/04 21:17:22 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WpdMtpUS.dll
[2010/02/04 21:17:22 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WpdConns.dll
[2010/02/04 21:17:21 | 000,350,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WPDSp.dll
[2010/02/04 21:16:19 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\oleaccrc.dll
[2010/02/04 21:16:18 | 000,555,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\UIAutomationCore.dll
[2010/02/04 20:56:35 | 000,000,000 | ---D | C] -- C:\Users\Mike\Documents\AnyDVDHD
[2010/02/04 20:53:10 | 000,000,000 | ---D | C] -- C:\ProgramData\SlySoft
[2010/02/04 20:51:55 | 000,000,000 | ---D | C] -- C:\Program Files\SlySoft
[2010/02/04 20:43:22 | 000,000,000 | ---D | C] -- C:\Program Files\Elaborate Bytes
[2010/02/04 15:46:29 | 000,000,000 | ---D | C] -- C:\Windows\System32\eu-ES
[2010/02/04 15:46:29 | 000,000,000 | ---D | C] -- C:\Windows\System32\ca-ES
[2010/02/04 15:46:28 | 000,000,000 | ---D | C] -- C:\Windows\System32\vi-VN
[2010/02/04 10:16:47 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2010/02/04 10:16:42 | 000,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2010/02/04 08:53:42 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/01/31 19:15:58 | 000,000,000 | ---D | C] -- C:\temp
[2010/01/31 12:30:55 | 000,000,000 | ---D | C] -- C:\rsit
[2010/01/31 12:09:25 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2010/01/31 08:33:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Quick Heal
[2010/01/31 08:31:02 | 000,000,000 | ---D | C] -- C:\Program Files\Quick Heal
[2010/01/30 09:37:42 | 000,000,000 | ---D | C] -- C:\ProgramData\PCPitstop
[2010/01/30 09:23:20 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Roaming\Registry Mechanic
[2010/01/30 09:22:47 | 000,000,000 | ---D | C] -- C:\Program Files\Reimage
[2010/01/30 09:12:13 | 000,000,000 | ---D | C] -- C:\Program Files\Registry Mechanic
[2010/01/29 17:34:06 | 000,000,000 | ---D | C] -- C:\Program Files\Spyware Doctor
[2010/01/29 17:34:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PC Tools
[2010/01/28 16:40:10 | 000,000,000 | ---D | C] -- C:\ProgramData\pagifali
[2010/01/28 16:34:33 | 000,000,000 | ---D | C] -- C:\ProgramData\wuwagebe
[2010/01/28 16:34:33 | 000,000,000 | ---D | C] -- C:\ProgramData\buyopako
[2010/01/28 14:35:03 | 000,000,000 | ---D | C] -- C:\Users\Mike\Documents\Simply Super Software
[2010/01/28 14:33:11 | 000,000,000 | ---D | C] -- C:\Program Files\Trojan Remover
[2010/01/28 14:33:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Simply Super Software
[2010/01/28 14:24:48 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Roaming\Nero
[2010/01/27 08:37:10 | 000,000,000 | ---D | C] -- C:\Users\Mike\Documents\BioWare
[2010/01/27 08:16:30 | 000,000,000 | ---D | C] -- C:\Program Files\Mass Effect
[2010/01/25 03:00:58 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2010/01/24 14:40:23 | 000,000,000 | ---D | C] -- C:\Users\Mike\Documents\My Art
[2010/01/24 14:40:22 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Roaming\Samsung
[2010/01/24 14:34:53 | 000,000,000 | ---D | C] -- C:\Windows\System32\Samsung_USB_Drivers
[2010/01/24 14:33:50 | 000,000,000 | ---D | C] -- C:\Program Files\Samsung
[2010/01/21 14:28:23 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2010/01/21 14:28:23 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2010/01/21 14:28:23 | 000,387,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2010/01/21 14:28:23 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2010/01/21 14:28:23 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2010/01/21 14:28:23 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2010/01/21 14:28:22 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2010/01/21 14:28:22 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2010/01/21 14:28:22 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2010/01/21 14:28:22 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2010/01/21 14:28:22 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2010/01/21 14:28:22 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2010/01/21 14:28:22 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2010/01/21 14:28:22 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2010/01/18 08:13:33 | 000,000,000 | ---D | C] -- C:\Users\Mike\AppData\Roaming\Intermedia Software
[2010/01/18 08:13:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Intermedia Software
[2010/01/18 08:13:15 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml4r.dll
[2010/01/18 08:13:15 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml4a.dll
[2010/01/18 08:13:15 | 000,000,000 | ---D | C] -- C:\Program Files\Intermedia Software
[2010/01/18 08:13:15 | 000,000,000 | ---D | C] -- C:\Users\Mike\Documents\Helium Music Manager 7
[2010/01/16 07:03:36 | 000,000,000 | ---D | C] -- C:\ProgramData\WindowsSearch
[2010/01/15 08:06:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Solidshield
[2010/01/15 07:51:13 | 000,000,000 | ---D | C] -- C:\Program Files\Ubisoft
========== Files - Modified Within 30 Days ========== [2010/02/13 07:47:26 | 002,883,584 | -HS- | M] () -- C:\Users\Mike\ntuser.dat
[2010/02/13 07:01:19 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/02/13 03:49:53 | 000,003,664 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010/02/13 03:49:53 | 000,003,664 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010/02/13 01:14:35 | 000,000,488 | ---- | M] () -- C:\Windows\tasks\Malwarebytes' Scheduled Scan for Mike.job
[2010/02/13 01:00:16 | 000,000,474 | ---- | M] () -- C:\Windows\tasks\Malwarebytes' Scheduled Update for Mike.job
[2010/02/11 20:11:40 | 000,690,960 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010/02/11 20:11:40 | 000,595,446 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010/02/11 20:11:40 | 000,101,144 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010/02/11 20:06:55 | 000,000,952 | ---- | M] () -- C:\Windows\System32\bscs.ini
[2010/02/11 20:06:41 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/02/11 20:06:20 | 2145,902,592 | -HS- | M] () -- C:\hiberfil.sys
[2010/02/11 20:04:49 | 000,524,288 | -HS- | M] () -- C:\Users\Mike\ntuser.dat{3d0d5f0f-15c9-11df-86e7-001167bd8921}.TMContainer00000000000000000001.regtrans-ms
[2010/02/11 20:04:49 | 000,065,536 | -HS- | M] () -- C:\Users\Mike\ntuser.dat{3d0d5f0f-15c9-11df-86e7-001167bd8921}.TM.blf
[2010/02/11 20:04:39 | 003,188,350 | -H-- | M] () -- C:\Users\Mike\AppData\Local\IconCache.db
[2010/02/11 19:32:48 | 000,000,215 | ---- | M] () -- C:\Windows\system.ini
[2010/02/11 08:42:30 | 000,001,904 | ---- | M] () -- C:\Users\Mike\Desktop\Galapago FREE.lnk
[2010/02/11 08:42:30 | 000,001,140 | ---- | M] () -- C:\Users\Mike\Desktop\Mail.com Games.lnk
[2010/02/10 11:52:06 | 000,374,792 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010/02/10 11:49:52 | 000,004,369 | ---- | M] () -- C:\Windows\System32\LOCALSERVICE.INI
[2010/02/10 10:19:22 | 000,000,099 | ---- | M] () -- C:\Windows\System32\LOCALDEVICE.INI
[2010/02/10 10:19:10 | 000,100,392 | ---- | M] () -- C:\Users\Mike\AppData\Local\GDIPFONTCACHEV1.DAT
[2010/02/10 09:29:52 | 000,000,925 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2010/02/10 09:16:34 | 000,000,276 | ---- | M] () -- C:\Windows\win.ini
[2010/02/09 20:09:06 | 000,524,288 | -HS- | M] () -- C:\Users\Mike\ntuser.dat{3d0d5f0f-15c9-11df-86e7-001167bd8921}.TMContainer00000000000000000002.regtrans-ms
[2010/02/09 19:26:45 | 000,092,160 | ---- | M] () -- C:\Users\Mike\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/02/09 17:27:16 | 000,524,288 | -HS- | M] () -- C:\Users\Mike\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms
[2010/02/09 17:27:16 | 000,065,536 | -HS- | M] () -- C:\Users\Mike\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TM.blf
[2010/02/07 15:54:44 | 001,730,004 | ---- | M] () -- C:\Users\Mike\Documents\540 tredmill.pdf
[2010/02/07 09:17:13 | 000,001,804 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2010/02/07 09:14:41 | 000,001,929 | ---- | M] () -- C:\Users\Mike\Desktop\CanoScan Toolbox 4.1.lnk
[2010/02/06 21:56:25 | 000,000,000 | ---- | M] () -- C:\ProgramData\LauncherAccess.dt
[2010/02/06 20:42:35 | 000,002,023 | ---- | M] () -- C:\Users\Public\Desktop\Samsung New PC Studio.lnk
[2010/02/06 08:56:10 | 000,001,902 | ---- | M] () -- C:\Users\Public\Desktop\TurboTax 2009.lnk
[2010/02/04 21:43:33 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
[2010/02/04 21:43:13 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_07_00.Wdf
[2010/02/04 18:25:47 | 000,006,027 | ---- | M] () -- C:\Windows\System32\SHORTCUT.INI
[2010/02/04 18:24:34 | 000,000,488 | ---- | M] () -- C:\Windows\System32\REMOTEDEVICE.INI
[2010/02/04 10:16:52 | 000,000,818 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/02/04 08:50:11 | 000,006,456 | -H-- | M] () -- C:\ProgramData\yebosiye
[2010/02/04 07:25:14 | 000,000,680 | ---- | M] () -- C:\Users\Mike\AppData\Local\d3d9caps.dat
[2010/01/28 08:41:51 | 000,427,520 | ---- | M] () -- C:\Users\Mike\Documents\super-bowl-xlii-pool.xls
[2010/01/24 16:39:52 | 005,639,201 | ---- | M] () -- C:\Users\Mike\Documents\ATT_SGH-a797_ug_eng_F12.pdf.pdf
[2010/01/18 08:13:23 | 000,000,909 | ---- | M] () -- C:\Users\Mike\Desktop\Helium Music Manager 7.lnk
[2010/01/15 09:16:53 | 000,000,294 | ---- | M] () -- C:\Users\Mike\Desktop\autorun - Shortcut.lnk
[2010/01/15 06:54:21 | 000,014,892 | ---- | M] () -- C:\Users\Mike\Documents\FOOTBALL GAME TITLE.docx
[2010/01/14 11:12:06 | 000,181,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
========== Files Created - No Company Name ========== [2099/01/01 12:00:00 | 000,006,456 | -H-- | C] () -- C:\ProgramData\yebosiye
[2010/02/11 19:23:44 | 000,261,632 | ---- | C] () -- C:\Windows\PEV.exe
[2010/02/11 19:23:44 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2010/02/11 19:23:44 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2010/02/11 19:23:44 | 000,077,312 | ---- | C] () -- C:\Windows\MBR.exe
[2010/02/11 19:23:44 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2010/02/11 08:42:30 | 000,001,904 | ---- | C] () -- C:\Users\Mike\Desktop\Galapago FREE.lnk
[2010/02/11 08:42:30 | 000,001,140 | ---- | C] () -- C:\Users\Mike\Desktop\Mail.com Games.lnk
[2010/02/09 17:37:41 | 000,524,288 | -HS- | C] () -- C:\Users\Mike\ntuser.dat{3d0d5f0f-15c9-11df-86e7-001167bd8921}.TMContainer00000000000000000002.regtrans-ms
[2010/02/09 17:37:41 | 000,524,288 | -HS- | C] () -- C:\Users\Mike\ntuser.dat{3d0d5f0f-15c9-11df-86e7-001167bd8921}.TMContainer00000000000000000001.regtrans-ms
[2010/02/09 17:37:41 | 000,065,536 | -HS- | C] () -- C:\Users\Mike\ntuser.dat{3d0d5f0f-15c9-11df-86e7-001167bd8921}.TM.blf
[2010/02/07 15:54:41 | 001,730,004 | ---- | C] () -- C:\Users\Mike\Documents\540 tredmill.pdf
[2010/02/07 09:17:13 | 000,001,804 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2010/02/07 09:14:41 | 000,001,929 | ---- | C] () -- C:\Users\Mike\Desktop\CanoScan Toolbox 4.1.lnk
[2010/02/06 20:43:55 | 000,110,592 | ---- | C] () -- C:\Windows\System32\FsUsbExDevice.Dll
[2010/02/06 20:43:55 | 000,036,608 | ---- | C] () -- C:\Windows\System32\FsUsbExDisk.Sys
[2010/02/06 20:42:35 | 000,002,023 | ---- | C] () -- C:\Users\Public\Desktop\Samsung New PC Studio.lnk
[2010/02/06 08:56:10 | 000,001,902 | ---- | C] () -- C:\Users\Public\Desktop\TurboTax 2009.lnk
[2010/02/05 19:25:51 | 000,000,474 | ---- | C] () -- C:\Windows\tasks\Malwarebytes' Scheduled Update for Mike.job
[2010/02/05 19:25:41 | 000,000,488 | ---- | C] () -- C:\Windows\tasks\Malwarebytes' Scheduled Scan for Mike.job
[2010/02/04 21:43:33 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_07_00.Wdf
[2010/02/04 21:43:13 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_07_00.Wdf
[2010/02/04 10:16:52 | 000,000,818 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010/02/04 09:50:03 | 2145,902,592 | -HS- | C] () -- C:\hiberfil.sys
[2010/01/24 16:39:44 | 005,639,201 | ---- | C] () -- C:\Users\Mike\Documents\ATT_SGH-a797_ug_eng_F12.pdf.pdf
[2010/01/24 14:38:25 | 000,000,000 | ---- | C] () -- C:\ProgramData\LauncherAccess.dt
[2010/01/24 14:34:27 | 000,000,766 | ---- | C] () -- C:\Windows\System32\Uninstall.ico
[2010/01/24 14:34:18 | 000,005,632 | ---- | C] () -- C:\Windows\System32\drivers\StarOpen.sys
[2010/01/18 08:13:23 | 000,000,909 | ---- | C] () -- C:\Users\Mike\Desktop\Helium Music Manager 7.lnk
[2010/01/15 09:16:53 | 000,000,294 | ---- | C] () -- C:\Users\Mike\Desktop\autorun - Shortcut.lnk
[2010/01/15 06:57:31 | 000,427,520 | ---- | C] () -- C:\Users\Mike\Documents\super-bowl-xlii-pool.xls
[2010/01/15 06:54:20 | 000,014,892 | ---- | C] () -- C:\Users\Mike\Documents\FOOTBALL GAME TITLE.docx
[2009/12/08 16:33:44 | 000,000,200 | ---- | C] () -- C:\Windows\BsMobileModel.ini
[2009/12/07 22:01:31 | 000,006,027 | ---- | C] () -- C:\Windows\System32\SHORTCUT.INI
[2009/12/07 21:56:25 | 000,000,488 | ---- | C] () -- C:\Windows\System32\REMOTEDEVICE.INI
[2009/12/07 21:36:18 | 000,004,369 | ---- | C] () -- C:\Windows\System32\LOCALSERVICE.INI
[2009/12/07 21:36:13 | 000,000,099 | ---- | C] () -- C:\Windows\System32\LOCALDEVICE.INI
[2009/12/07 21:32:41 | 000,000,000 | ---- | C] () -- C:\Windows\System32\BSPRINT.INI
[2009/12/05 10:21:14 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009/10/24 19:24:52 | 000,003,082 | ---- | C] () -- C:\Windows\System32\affv39738p1now.sys
[2009/10/16 18:43:39 | 000,014,385 | ---- | C] () -- C:\Windows\Tw561a.ini
[2009/10/16 18:43:39 | 000,000,081 | ---- | C] () -- C:\Windows\Setup8a.ini
[2009/10/16 17:51:47 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2009/10/04 16:40:23 | 000,000,725 | ---- | C] () -- C:\Windows\EF2.INI
[2009/10/04 13:45:00 | 000,721,904 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2009/10/03 16:36:08 | 000,819,200 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2009/10/03 16:36:08 | 000,180,224 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2009/10/03 16:16:56 | 000,000,164 | ---- | C] () -- C:\Windows\Cmicnfg3.ini.cfl
[2009/10/03 16:16:35 | 000,258,048 | ---- | C] () -- C:\Windows\System32\CmiInstallResAll.dll
[2009/10/03 16:16:35 | 000,002,125 | ---- | C] () -- C:\Windows\Cmicnfg3.ini.cfg
[2009/10/03 16:16:35 | 000,000,188 | ---- | C] () -- C:\Windows\Cmicnfg3.ini.imi
[2009/10/03 16:16:34 | 000,002,423 | ---- | C] () -- C:\Windows\cmudax3.ini
[2009/10/03 15:32:22 | 000,092,160 | ---- | C] () -- C:\Users\Mike\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/10/03 10:38:19 | 000,000,680 | ---- | C] () -- C:\Users\Mike\AppData\Local\d3d9caps.dat
[2009/06/17 14:02:46 | 000,029,192 | ---- | C] () -- C:\Windows\System32\drivers\btnetBus.sys
[2008/10/07 09:13:30 | 000,197,912 | ---- | C] () -- C:\Windows\System32\physxcudart_20.dll
[2008/10/07 09:13:22 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelTraditionalChinese.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSwedish.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSpanish.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSimplifiedChinese.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelPortugese.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelKorean.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelJapanese.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelGerman.dll
[2008/10/07 09:13:20 | 000,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelFrench.dll
[2008/08/04 18:04:44 | 000,000,952 | ---- | C] () -- C:\Windows\System32\bscs.ini
[2008/08/04 17:36:50 | 000,405,589 | ---- | C] () -- C:\Windows\System32\BsUI.dll
[2008/08/01 15:58:50 | 000,278,647 | ---- | C] () -- C:\Windows\System32\outlookAddin.dll
[2008/08/01 15:58:30 | 000,053,248 | ---- | C] () -- C:\Windows\System32\HtmPrintHelper.dll
[2008/08/01 15:58:14 | 000,622,693 | ---- | C] () -- C:\Windows\System32\BSShell.dll
[2008/08/01 15:56:14 | 000,098,403 | ---- | C] () -- C:\Windows\System32\Bs2Res.dll
[2008/08/01 15:55:40 | 000,118,880 | ---- | C] () -- C:\Windows\System32\BsMobileSDK.dll
[2008/08/01 15:55:30 | 000,028,672 | ---- | C] () -- C:\Windows\System32\BsMobileCSps.dll
[2008/08/01 15:46:30 | 017,907,824 | ---- | C] () -- C:\Windows\System32\BsLangInDepRes.dll
[2008/08/01 15:46:30 | 000,065,536 | ---- | C] () -- C:\Windows\System32\BsVistaCommon.dll
[2006/11/02 07:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 02:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
========== Alternate Data Streams ========== @Alternate Data Stream - 656 bytes -> C:\Users\Mike\Documents\contacts.eml:OECustomProperty
@Alternate Data Stream - 169 bytes -> C:\ProgramData\TEMP:0295CBF7
@Alternate Data Stream - 150 bytes -> C:\ProgramData\TEMP:D1B5B4F1
@Alternate Data Stream - 145 bytes -> C:\ProgramData\TEMP:DFC5A2B2
@Alternate Data Stream - 135 bytes -> C:\ProgramData\TEMP:85DBC22B
@Alternate Data Stream - 115 bytes -> C:\ProgramData\TEMP:A8ADE5D8
< End of report >