Computer freezes and shuts down - slow loading [Solved]

Hello, Mrsmoose, and welcome to GeeksToGo! We have updated our forums, and need you to follow a few new steps before I can help you. Please do the following:

Please follow the steps in this topic, and post back with the following logs if you are still having problems and I will look over the log for you:

• Malwarebytes' Anti-Malware log
• OTListIt2.txt and Extras.txt
• Rooter.txt

As well, please do this scan as well

Disable resident protections (Antivirus...); you'll re-enable them after the scan

Download Lop S&D < here

Double-click Lop S&D.exe
Choose the language, then choose Option 1 (Search)
Wait till the end of the scan
Post the log which is created: (%SystemDrive%\lopR.txt)

Post all of these logs in your next reply.

I've been trying to do all the steps showed in the instructions but my computer continually crashes. I have managed to do a Malwarebytes scan, an avast scan, a spybot - all returning nothing found. This system is crazy slow - it takes over 20 minutes to load a window, it freezes and shuts down out of the blues. Is there anything that can be done?

I haven't really seen any information on what is on your computer. Has OTListIt2 run? Has Rooter run? Has LOP S&D run? If so, please post these logs, as they will help me see which direction we should go and start cleaning up your computer.

Try running these tools in Safe Mode, too. There will be less programs running, and things may not freeze as much.

To boot into Safe Mode, restart your computer. Just before the Windows logo appears, tap the F8 key. A list of options will appear. Select "Safe Mode."

OTListIt logfile created on: 4/30/2009 10:47:52 PM - Run 2
OTListIt2 by OldTimer - Version 2.0.15.1 Folder = C:\Documents and Settings\Brigitte Mousseau\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

503.23 Mb Total Physical Memory | 95.73 Mb Available Physical Memory | 19.02% Memory free
1.20 Gb Paging File | 0.37 Gb Available in Paging File | 31.04% Paging File free
Paging file location(s): C:\pagefile.sys 756 1512 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 184.35 Gb Total Space | 142.21 Gb Free Space | 77.14% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: MOUSSEAU
Current User Name: Brigitte Mousseau
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Output = Minimal
File Age = 30 Days
Company Name Whitelist: On

========== Processes (SafeList) ==========

PRC - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
PRC - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft)
PRC - C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
PRC - C:\WINDOWS\system32\LEXBCES.EXE (Lexmark International, Inc.)
PRC - C:\WINDOWS\system32\LEXPPS.EXE ()
PRC - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
PRC - C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.)
PRC - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE ()
PRC - C:\Program Files\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\Google\Update\GoogleUpdate.exe (Google Inc.)
PRC - C:\Program Files\Common Files\LightScribe\LSSrvc.exe ()
PRC - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe (Symantec Corporation)
PRC - C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe (GEMTEKS)
PRC - C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WMP54Gv4.exe (Linksys)
PRC - C:\Program Files\Windows Media Player\WMPNetwk.exe (Microsoft Corporation)
PRC - C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe (Cisco Systems, Inc.)
PRC - C:\WINDOWS\system32\wbem\unsecapp.exe (Microsoft Corporation)
PRC - C:\WINDOWS\system32\wbem\wmiprvse.exe (Microsoft Corporation)
PRC - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
PRC - C:\WINDOWS\Explorer.EXE (Microsoft Corporation)
PRC - C:\WINDOWS\system32\igfxtray.exe (Intel Corporation)
PRC - C:\WINDOWS\system32\hkcmd.exe (Intel Corporation)
PRC - C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
PRC - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
PRC - C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe (Adobe Systems Incorporated)
PRC - C:\WINDOWS\system32\ICO.EXE (Primax Electronics Ltd.)
PRC - C:\Program Files\Pure Networks\Network Magic\nmapp.exe (Pure Networks, Inc.)
PRC - C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe (Cisco Systems, Inc.)
PRC - C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe (Lavasoft)
PRC - C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
PRC - C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
PRC - C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
PRC - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
PRC - C:\Program Files\Windows Media Player\WMPNSCFG.exe (Microsoft Corporation)
PRC - C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
PRC - C:\Program Files\Windows Desktop Search\WindowsSearch.exe (Microsoft Corporation)
PRC - C:\Program Files\Picaboo\Picaboo\PicabooMain.exe (Picaboo)
PRC - C:\Program Files\iPod\bin\iPodService.exe (Apple Inc.)
PRC - C:\Program Files\SpywareGuard\sgmain.exe ()
PRC - C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
PRC - C:\Program Files\SpywareGuard\sgbhp.exe ()
PRC - C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
PRC - C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
PRC - C:\Documents and Settings\Brigitte Mousseau\Desktop\OTListIt2.exe (OldTimer Tools)

========== Win32 Services (SafeList) ==========

SRV - (Apple Mobile Device [Auto | Running]) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
SRV - (aspnet_state [On_Demand | Stopped]) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (Microsoft Corporation)
SRV - (aswUpdSv [Auto | Running]) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
SRV - (avast! Antivirus [Auto | Running]) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
SRV - (avast! Mail Scanner [On_Demand | Running]) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
SRV - (avast! Web Scanner [On_Demand | Running]) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
SRV - (Bonjour Service [Auto | Running]) -- C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.)
SRV - (clr_optimization_v2.0.50727_32 [On_Demand | Stopped]) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (FontCache3.0.0.0 [On_Demand | Stopped]) -- c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation)
SRV - (getPlus® Helper [On_Demand | Stopped]) -- C:\Program Files\NOS\bin\getPlus_HelperSvc.exe (NOS Microsystems Ltd.)
SRV - (GoogleDesktopManager-022208-143751 [Disabled | Stopped]) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
SRV - (gupdate1c942cb99999b29 [Auto | Stopped]) -- C:\Program Files\Google\Update\GoogleUpdate.exe (Google Inc.)
SRV - (gusvc [Auto | Stopped]) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (Google)
SRV - (helpsvc [Auto | Running]) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll (Microsoft Corporation)
SRV - (idsvc [Unknown | Stopped]) -- c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe (Microsoft Corporation)
SRV - (IJPLMSVC [Auto | Running]) -- C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE ()
SRV - (iPod Service [On_Demand | Running]) -- C:\Program Files\iPod\bin\iPodService.exe (Apple Inc.)
SRV - (JavaQuickStarterService [Auto | Running]) -- C:\Program Files\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.)
SRV - (Lavasoft Ad-Aware Service [Auto | Running]) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft)
SRV - (LexBceS [Auto | Running]) -- C:\WINDOWS\system32\LEXBCES.EXE (Lexmark International, Inc.)
SRV - (LightScribeService [Auto | Running]) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe ()
SRV - (LMIMaint [Auto | Stopped]) -- C:\Program Files\LogMeIn\x86\RaMaint.exe (LogMeIn, Inc.)
SRV - (LogMeIn [Auto | Stopped]) -- C:\Program Files\LogMeIn\x86\LogMeIn.exe (LogMeIn, Inc.)
SRV - (NetTcpPortSharing [Disabled | Stopped]) -- c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe (Microsoft Corporation)
SRV - (NMIndexingService [Disabled | Stopped]) -- File not found
SRV - (nmraapache [On_Demand | Stopped]) -- C:\Program Files\Pure Networks\Network Magic\WebServer\bin\nmraapache.exe (Pure Networks, Inc.)
SRV - (nmservice [Auto | Running]) -- C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe (Cisco Systems, Inc.)
SRV - (ose [On_Demand | Stopped]) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (Symantec Core LC [Auto | Running]) -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe (Symantec Corporation)
SRV - (usnjsvc [On_Demand | Stopped]) -- C:\Program Files\Windows Live\Messenger\usnsvc.exe (Microsoft Corporation)
SRV - (WLSetupSvc [On_Demand | Stopped]) -- C:\Program Files\Windows Live\installer\WLSetupSvc.exe (Microsoft Corporation)
SRV - (WMP54Gv4SVC [Auto | Running]) -- File not found
SRV - (WMPNetworkSvc [Auto | Running]) -- C:\Program Files\Windows Media Player\WMPNetwk.exe (Microsoft Corporation)

========== Driver Services (SafeList) ==========

DRV - (Aavmker4 [System | Running]) -- C:\WINDOWS\System32\drivers\aavmker4.sys (ALWIL Software)
DRV - (AegisP [Auto | Running]) -- C:\WINDOWS\system32\DRIVERS\AegisP.sys (Meetinghouse Data Communications)
DRV - (ALCXWDM [On_Demand | Running]) -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS (Realtek Semiconductor Corp.)
DRV - (aswFsBlk [Auto | Running]) -- C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys (ALWIL Software)
DRV - (aswMon2 [Auto | Running]) -- C:\WINDOWS\System32\drivers\aswmon2.sys (ALWIL Software)
DRV - (aswRdr [On_Demand | Running]) -- C:\WINDOWS\System32\drivers\aswRdr.sys (ALWIL Software)
DRV - (aswSP [System | Running]) -- C:\WINDOWS\System32\drivers\aswSP.sys (ALWIL Software)
DRV - (aswTdi [System | Running]) -- C:\WINDOWS\System32\drivers\aswTdi.sys (ALWIL Software)
DRV - (BCM42RLY [On_Demand | Stopped]) -- C:\WINDOWS\System32\BCM42RLY.SYS (Broadcom Corporation)
DRV - (f5ipfw [On_Demand | Stopped]) -- C:\WINDOWS\system32\drivers\urfltw2k.sys (F5 Networks)
DRV - (gameenum [On_Demand | Stopped]) -- C:\WINDOWS\system32\DRIVERS\gameenum.sys (Microsoft Corporation)
DRV - (GEARAspiWDM [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys (GEAR Software Inc.)
DRV - (HSFHWBS2 [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys (Conexant Systems, Inc.)
DRV - (HSF_DP [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\HSF_DP.sys (Conexant Systems, Inc.)
DRV - (ialm [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\ialmnt5.sys (Intel Corporation)
DRV - (Lbd [Boot | Running]) -- C:\WINDOWS\system32\DRIVERS\Lbd.sys (Lavasoft AB)
DRV - (LMIInfo [Auto | Stopped]) -- C:\Program Files\LogMeIn\x86\RaInfo.sys (LogMeIn, Inc.)
DRV - (lmimirr [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\lmimirr.sys (LogMeIn, Inc.)
DRV - (LMIRfsClientNP [Disabled | Stopped]) -- C:\WINDOWS\System32\LMIRfsClientNP.dll (LogMeIn, Inc.)
DRV - (LMIRfsDriver [Auto | Running]) -- C:\WINDOWS\system32\drivers\LMIRfsDriver.sys (LogMeIn, Inc.)
DRV - (mdmxsdk [Auto | Running]) -- C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys (Conexant)
DRV - (MODEMCSA [On_Demand | Running]) -- C:\WINDOWS\system32\drivers\MODEMCSA.sys (Microsoft Corporation)
DRV - (ms_mpu401 [On_Demand | Stopped]) -- C:\WINDOWS\system32\drivers\msmpu401.sys (Microsoft Corporation)
DRV - (pelmouse [On_Demand | Stopped]) -- C:\WINDOWS\system32\DRIVERS\pelmouse.sys (Primax Electronics Ltd.)
DRV - (pelusblf [On_Demand | Stopped]) -- C:\WINDOWS\system32\DRIVERS\pelusblf.sys (Primax Electronics Ltd.)
DRV - (pnarp [Auto | Running]) -- C:\WINDOWS\system32\DRIVERS\pnarp.sys (Pure Networks, Inc.)
DRV - (Ptilink [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\ptilink.sys (Parallel Technologies, Inc.)
DRV - (purendis [Auto | Running]) -- C:\WINDOWS\system32\DRIVERS\purendis.sys (Pure Networks, Inc.)
DRV - (PxHelp20 [Boot | Running]) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys (Sonic Solutions)
DRV - (ROOTMODEM [On_Demand | Running]) -- C:\WINDOWS\System32\Drivers\RootMdm.sys (Microsoft Corporation)
DRV - (RT61 [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\RT61.sys (Ralink Technology Inc.)
DRV - (RTL8023 [On_Demand | Stopped]) -- C:\WINDOWS\system32\DRIVERS\Rtlnic51.sys (Realtek Semiconductor Corporation )
DRV - (RTL8023xp [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys (Realtek Semiconductor Corporation )
DRV - (rtl8139 [On_Demand | Stopped]) -- C:\WINDOWS\system32\DRIVERS\RTL8139.SYS (Realtek Semiconductor Corporation)
DRV - (Secdrv [On_Demand | Stopped]) -- C:\WINDOWS\system32\DRIVERS\secdrv.sys (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
DRV - (symlcbrd [Auto | Running]) -- C:\WINDOWS\system32\drivers\symlcbrd.sys (Symantec Corporation)
DRV - (urvpndrv [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\urvpndrv.sys (F5 Networks)
DRV - (USBAAPL [On_Demand | Stopped]) -- C:\WINDOWS\System32\Drivers\usbaapl.sys (Apple, Inc.)
DRV - (usbser [On_Demand | Stopped]) -- C:\WINDOWS\system32\DRIVERS\usbser.sys (Microsoft Corporation)
DRV - (winachsf [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys (Conexant Systems, Inc.)
DRV - (GTNDIS5 [On_Demand | Running]) -- C:\WINDOWS\system32\GTNDIS5.SYS (Printing Communications Assoc., Inc. (PCAUSA))

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://sympatico.msn...aspx?lang=en-ca
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.live.com/ [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.co...m...tf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.live.com/ [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://sympatico.msn...aspx?lang=en-ca
IE - URLSearchHook: - Reg Error: Key error. File not found
IE - URLSearchHook: {5ba73b24-4614-4d17-b58e-0d9d95847e14} - C:\Program Files\AIR MILES TOOLBAR\Helper.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

FF - HKLM\software\mozilla\Mozilla Firefox 3.0.9\extensions\\Components: C:\PROGRAM FILES\MOZILLA FIREFOX\COMPONENTS [2009/04/26 21:05:52 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.9\extensions\\Plugins: C:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS [2009/04/26 21:05:30 | 00,000,000 | ---D | M]

[2009/04/26 21:09:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Brigitte Mousseau\Application Data\mozilla\Extensions
[2009/04/26 21:09:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Brigitte Mousseau\Application Data\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009/04/26 21:05:31 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2007/05/23 17:11:54 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2009/04/26 21:05:31 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2007/08/09 18:17:38 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA}
[2009/04/09 10:12:59 | 00,023,032 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009/04/09 10:13:00 | 00,134,648 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2009/04/09 01:51:14 | 00,001,394 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom.xml
[2009/04/09 01:51:14 | 00,002,193 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\answers.xml
[2009/04/09 01:51:14 | 00,001,534 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml
[2009/04/09 01:51:14 | 00,002,343 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay.xml
[2009/04/09 01:51:14 | 00,001,706 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2009/04/09 01:51:14 | 00,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia.xml
[2009/04/09 01:51:14 | 00,000,792 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo.xml

O1 HOSTS File: (307331 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.123topsearch.com
O1 - Hosts: 127.0.0.1 123topsearch.com
O1 - Hosts: 127.0.0.1 www.132.com
O1 - Hosts: 127.0.0.1 132.com
O1 - Hosts: 127.0.0.1 www.136136.net
O1 - Hosts: 127.0.0.1 136136.net
O1 - Hosts: 127.0.0.1 www.163ns.com
O1 - Hosts: 127.0.0.1 163ns.com
O1 - Hosts: 10567 more lines...
O2 - BHO: (Freecause Toolbar BHO) - {169A78DB-CFC2-4DA4-A9BD-A67B28D41FA7} - C:\Program Files\AIR MILES TOOLBAR\Toolbar.dll ()
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (AskBar BHO) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar2.dll (Ask.com)
O2 - BHO: (SpywareGuardDLBLOCK.CBrowserHelper) - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dll ()
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - Reg Error: Key error. File not found
O2 - BHO: (Windows Live Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll (Google Inc.)
O2 - BHO: (Windows Live Toolbar Helper) - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll (Google Inc.)
O2 - BHO: (MSN Toolbar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN\Toolbar\3.0.1203.0\msneshellx.dll (Microsoft Corp.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Google Gears Helper) - {E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.16.0\gears.dll (Google Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (MSN Toolbar) - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - C:\Program Files\MSN\Toolbar\3.0.1203.0\msneshellx.dll (Microsoft Corp.)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar2.dll (Ask.com)
O3 - HKLM\..\Toolbar: (AIR MILES TOOLBAR) - {789D9334-A44A-486E-8234-313A78E66E61} - C:\Program Files\AIR MILES TOOLBAR\Toolbar.dll ()
O3 - HKLM\..\Toolbar: (Windows Live Toolbar) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (no name) - SITEguard - Reg Error: Key error. File not found
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {C4069E3A-68F1-403E-B40E-20066696354B} - Reg Error: Key error. File not found
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - Reg Error: Key error. File not found
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {789D9334-A44A-486E-8234-313A78E66E61} - C:\Program Files\AIR MILES TOOLBAR\Toolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - Reg Error: Key error. File not found
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {C4069E3A-68F1-403E-B40E-20066696354B} - Reg Error: Key error. File not found
O4 - HKLM..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe" (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe (Lavasoft)
O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe (Apple Inc.)
O4 - HKLM..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon (CANON INC.)
O4 - HKLM..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon (CANON INC.)
O4 - HKLM..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup (Google)
O4 - HKLM..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe (Intel Corporation)
O4 - HKLM..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe (Intel Corporation)
O4 - HKLM..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" (Apple Inc.)
O4 - HKLM..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe" (LogMeIn, Inc.)
O4 - HKLM..\Run: [LXSUPMON] C:\WINDOWS\system32\LXSUPMON.EXE RUN (Lexmark International Inc.)
O4 - HKLM..\Run: [Mouse Suite 98 Daemon] ICO.EXE (Primax Electronics Ltd.)
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [nmapp] "C:\Program Files\Pure Networks\Network Magic\nmapp.exe" -autorun -nosplash (Pure Networks, Inc.)
O4 - HKLM..\Run: [nmctxth] "C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe" (Cisco Systems, Inc.)
O4 - HKLM..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime (Apple Inc.)
O4 - HKLM..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE ()
O4 - HKLM..\Run: [SoundMan] SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" (Sun Microsystems, Inc.)
O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" File not found
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4 - HKCU..\Run: [TEAM DASH] C:\DOCUME~1\BRIGIT~1\APPLIC~1\CHINDA~1\itchbows.exe File not found
O4 - HKCU..\Run: [Uniblue RegistryBooster 2009] C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe /S File not found
O4 - HKCU..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe (Microsoft Corporation)
O4 - HKCU..\RunOnce: [Shockwave Updater] C:\WINDOWS\system32\Adobe\SHOCKW~1\SWHELP~2.EXE -Update -1103470 -"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; GTB5; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)" -"http://www.freeonlin...reet-sesh.html" (Adobe Systems, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Snagit 9.lnk = C:\Program Files\TechSmith\Snagit 9\Snagit32.exe (TechSmith Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\Brigitte Mousseau\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk = C:\Program Files\ERUNT\AUTOBACK.EXE ()
O4 - Startup: C:\Documents and Settings\Brigitte Mousseau\Start Menu\Programs\Startup\Picaboo.lnk = C:\Program Files\Picaboo\Picaboo\PicabooMain.exe (Picaboo)
O4 - Startup: C:\Documents and Settings\Brigitte Mousseau\Start Menu\Programs\Startup\SpywareGuard.lnk = C:\Program Files\SpywareGuard\sgmain.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\control panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSimpleStartMenu = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoComputersNearMe = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\run: NoActiveDesktopChanges = [binary data]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\run: NoActiveDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\run: NoSaveSettings = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\run: ClassicShell = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\control panel present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\restrictions present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: disableregistrytools = 0
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm (Microsoft Corporation)
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.liv...m/quickadd.aspx File not found
O9 - Extra 'Tools' menuitem : &Gears Settings - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.16.0\gears.dll (Google Inc.)
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [mdnsNSP] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKLM\..Trusted Domains: 48 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKCU\..Trusted Domains: 346 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {02A2D714-433E-46E4-B217-7C3B3FAF8EAE} http://www.worldwinn...rabblecubes.cab (ScrabbleCubes Control)
O16 - DPF: {038E2507-7A48-41E2-94AD-7F23D199AF4E} http://www.worldwinn...ems/zengems.cab (ZenGems Control)
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.micr.../OGAControl.cab (Office Genuine Advantage Validation Tool)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft....k/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {18C3FD15-74F6-4280-9C98-3590C966B7B8} http://www.worldwinn...am/skillgam.cab (SkillGam Control)
O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} http://downloads.ewi...oOnlineScan.cab (ewidoOnlineScan Control)
O16 - DPF: {1A1F56AA-3401-46F9-B277-D57F3421F821} http://www.worldwinn...GamesLoader.cab (FunGamesLoader Object)
O16 - DPF: {1D082E71-DF20-4AAF-863B-596428C49874} http://www.worldwinn...0/tpir/tpir.cab (TPIR Control)
O16 - DPF: {2BCDB465-81F9-41CB-832C-8037A4064446} https://remote.tadh....,2007,1001,2147 (F5 Networks VPN Manager)
O16 - DPF: {2C153C75-8476-434B-B3C3-57B63A3D1939} http://www.worldwinn...ut/brickout.cab (Brickout Control)
O16 - DPF: {3107C2A8-9F0B-4404-A58B-21BD85268FBC} http://www.pogo.com/...erInstaller.CAB (PogoWebLauncher Control)
O16 - DPF: {34F12AFD-E9B5-492A-85D2-40FA4535BE83} http://www.symantec....46/nprdtinf.cab (AxProdInfoCtl Class)
O16 - DPF: {41D1977F-4161-4720-800F-EA4903983A38} http://www.worldwinn...gsaw/jigsaw.cab (Jigsaw Genius Control)
O16 - DPF: {42FDC231-A411-45F8-B8B6-3B5026111DA8} http://www.worldwinn...litairerush.cab (SolitaireRush Control)
O16 - DPF: {45B69029-F3AB-4204-92DE-D5140C3E8E74} C:\DOCUME~1\BRIGIT~1\LOCALS~1\Temp\IXP000.TMP\InstallerControl.cab (F5 Networks Auto Update)
O16 - DPF: {58FC4C77-71C2-4972-A8CD-78691AD85158} http://www.worldwinn...jattack/bja.cab (BJA Control)
O16 - DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} http://catalog.updat...b?1223604690703 (MUCatalogWebControl Class)
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} http://cdn.scan.onec...lscbase8300.cab (Windows Live Safety Center Base Module)
O16 - DPF: {615F158E-D5CA-422F-A8E7-F6A5EED7063B} http://www.worldwinn...d/bejeweled.cab (Bejeweled Control)
O16 - DPF: {61900274-3323-4446-BDCD-91548D32AF1B} http://www.worldwinn...ersolitaire.cab (SpiderSolitaire Control)
O16 - DPF: {62969CF2-0F7A-433B-A221-FD8818C06C2F} http://www.worldwinn...x/blockwerx.cab (Blockwerx Control)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.micros...b?1173661450130 (WUWebControl Class)
O16 - DPF: {6C275925-A1ED-4DD2-9CEE-9823F5FDAA10} https://remote.tadh....,2007,1001,2136 (F5 Networks SSLTunnel)
O16 - DPF: {6C6FE41A-0DA6-42A1-9AD8-792026B2B2A7} http://www.worldwinn...ll/freecell.cab (FreeCell Control)
O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} http://zone.msn.com/...mjolauncher.cab (MJLauncherCtrl Class)
O16 - DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} http://www.worldwinn...ed/wwlaunch.cab (Wwlaunch Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {8FA2192F-B95D-40E3-898F-8D7ABB8E00D0} http://download-game...mesLauncher.cab (SpinTop Games Launcher)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...t/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {94299420-321F-4FF9-A247-62A23EBB640B} http://www.worldwinn...jo/wordmojo.cab (WordMojo Control)
O16 - DPF: {97438FE9-D361-4279-BA82-98CC0877A717} http://www.worldwinn...cubis/cubis.cab (Cubis Control)
O16 - DPF: {A52FBD2B-7AB3-4F6B-90E3-91C772C5D00F} http://www.worldwinn...v57/wof/wof.cab (WoF Control)
O16 - DPF: {A5A76EA0-7B92-4707-9DBF-6F6FE56A6800} http://scan.networkm...-ship-WD.V1.cab (Pure Networks Security Scan)
O16 - DPF: {A91FB93D-7561-4524-8484-5C27C8FA8D42} http://www.worldwinn...luxor/luxor.cab (WwLuxor Control)
O16 - DPF: {AC2881FD-5760-46DB-83AE-20A5C6432A7E} http://www.worldwinn...apit/swapit.cab (SwapIt Control)
O16 - DPF: {B06CE1BC-5D9D-4676-BD28-1752DBF394E0} http://www.worldwinn...man/hangman.cab (Hangman Control)
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} http://cdn2.zone.msn...ro.cab56649.cab (MSN Games - Installer)
O16 - DPF: {BA94245D-2AA0-4953-9D9F-B0EE4CC02C43} http://www.worldwinn...ty/tilecity.cab (Tilecity Control)
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} http://www.gamehouse...zylomplayer.cab (Zylom Games Player)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zon...nt.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {C5326A4D-E9AA-40AD-A09A-E74304D86B47} http://www.worldwinn...h/dinerdash.cab (DinerDash Control)
O16 - DPF: {C82BB209-F528-46F9-96D5-69DEF7260916} http://www.worldwinn...i/mysterypi.cab (MysteryPI Control)
O16 - DPF: {C93C1C34-CEA9-49B1-9046-040F59E0E0D8} http://www.worldwinn...paint/paint.cab (Paint Control)
O16 - DPF: {CAFEEFAC-0014-0002-0017-ABCDEFFEDCBA} (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CC85ACDF-B277-486F-8C70-2C9B2ED2A4E7} https://remote.tadh....,2007,1001,2141 (F5 Networks SuperHost Class)
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} http://wwwimages.ado...obat/nos/gp.cab (get_atlcom Class)
O16 - DPF: {CF969D51-F764-4FBF-9E90-475248601C8A} http://www.worldwinn.../familyfeud.cab (FamilyFeud Control)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macr...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E0FF21FA-B857-45C5-8621-F120A0C17FF2} https://remote.tadh....,2007,1001,2140 (F5 Networks Host Control)
O16 - DPF: {E12EB891-D000-421B-A8ED-EDE1BDCA14A0} http://www.worldwinn...sol/golfsol.cab (GolfSol Control)
O16 - DPF: {E70E3E64-2793-4AEF-8CC8-F1606BE563B0} http://www.worldwinn...es/wwspades.cab (WWSpades Control)
O16 - DPF: {F137B9BA-89EA-4B04-9C67-2074A9DF61FD} http://walmart.pnime...upv2.0.0.10.cab? (Photo Upload Plugin Class)
O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} https://secure.logme...ivex/RACtrl.cab (Performance Viewer Activex Control)
O16 - DPF: CabBuilder http://kiw.imgag.com...llerControl.cab (Reg Error: Key error.)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Common Files\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\pure-go {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files\Common Files\Pure Networks Shared\Platform\puresp4.dll (Cisco Systems, Inc.)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter: - text/xml - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL) - C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxsrvc.dll - C:\WINDOWS\system32\igfxsrvc.dll (Intel Corporation)
O20 - Winlogon\Notify\LMIinit: DllName - LMIinit.dll - C:\WINDOWS\system32\LMIinit.dll (LogMeIn, Inc.)
O24 - Desktop Components:0 (My Current Home Page) - About:Home
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - Reg Error: Key error. File not found
O28 - HKLM ShellExecuteHooks: {81559C35-8464-49F7-BB0E-07A383BEF910} - C:\Program Files\SpywareGuard\spywareguard.dll ()
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/05/18 22:35:45 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\D\Shell - "" = AutoRun
O33 - MountPoints2\D\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\D\Shell\AutoRun\command - "" = D:\LaunchU3.exe -- File not found
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found
O34 - HKLM BootExecute: (lsdelete) - C:\WINDOWS\System32\lsdelete.exe ()

========== Files/Folders - Created Within 30 Days ==========

[126 C:\WINDOWS\System32\*.tmp files]
[1 C:\WINDOWS\*.tmp files]
[2009/04/30 22:46:25 | 00,504,320 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Brigitte Mousseau\Desktop\OTListIt2.exe
[2009/04/29 21:18:08 | 00,530,106 | ---- | C] () -- C:\Documents and Settings\Brigitte Mousseau\Desktop\LopSD.exe
[2009/04/29 21:16:49 | 00,000,000 | ---D | C] -- C:\Lop SD
[2009/04/29 19:40:58 | 00,000,000 | ---D | C] -- C:\Rooter$
[2009/04/29 19:40:30 | 00,267,612 | ---- | C] () -- C:\Documents and Settings\Brigitte Mousseau\Desktop\Rooter.exe
[2009/04/29 05:37:50 | 00,001,709 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\avast! Antivirus.lnk
[2009/04/29 05:37:49 | 00,051,376 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2009/04/29 05:37:49 | 00,023,152 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2009/04/29 05:37:48 | 00,026,944 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2009/04/29 05:37:44 | 00,097,480 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\AvastSS.scr
[2009/04/29 05:37:38 | 00,020,560 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2009/04/29 05:37:37 | 00,114,768 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2009/04/29 05:37:37 | 00,094,032 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2009/04/29 05:37:37 | 00,093,296 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2009/04/29 05:37:14 | 01,256,296 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe
[2009/04/29 05:37:14 | 00,380,928 | ---- | C] () -- C:\WINDOWS\System32\actskin4.ocx
[2009/04/28 21:02:48 | 00,021,504 | ---- | C] (Doug Knox) -- C:\Documents and Settings\Brigitte Mousseau\Desktop\SysRestorePoint.exe
[2009/04/27 16:39:30 | 00,025,600 | ---- | C] () -- C:\Documents and Settings\Brigitte Mousseau\My Documents\The Gold Dragon.doc
[2009/04/26 21:06:14 | 00,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2009/04/26 18:56:45 | 00,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2009/04/26 18:48:18 | 00,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2009/04/26 18:44:27 | 00,000,000 | -H-D | C] -- C:\WINDOWS\msdownld.tmp
[2009/04/26 18:36:14 | 00,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iecompat.dll
[2009/04/26 17:28:35 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\CanonIJEGV
[2009/04/26 17:27:20 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\CanonIJEPPEX
[2009/04/26 17:19:00 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\CanonIJ
[2009/04/26 17:17:54 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\CanonIJScan
[2009/04/26 17:17:44 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Brigitte Mousseau\Application Data\Canon
[2009/04/24 07:30:20 | 00,043,008 | ---- | C] () -- C:\Documents and Settings\Brigitte Mousseau\My Documents\Understanding Written Material.doc
[2009/04/24 07:26:09 | 00,037,376 | ---- | C] () -- C:\Documents and Settings\Brigitte Mousseau\My Documents\Written Communication Proficiency Test.doc
[2009/04/23 00:12:19 | 00,022,059 | ---- | C] () -- C:\Documents and Settings\Brigitte Mousseau\Desktop\MNR_CV.wpd
[2009/04/21 18:50:35 | 00,000,462 | ---- | C] () -- C:\WINDOWS\tasks\RegCure Program Check.job
[2009/04/21 18:50:31 | 00,000,396 | ---- | C] () -- C:\WINDOWS\tasks\RegCure.job
[2009/04/21 18:50:06 | 00,000,000 | ---D | C] -- C:\Program Files\RegCure
[2009/04/20 22:04:33 | 16,409,960 | ---- | C] (Safer Networking Limited ) -- C:\Documents and Settings\Brigitte Mousseau\Desktop\setup-spybotsd162.exe
[2009/04/20 21:51:28 | 00,000,690 | ---- | C] () -- C:\Documents and Settings\Brigitte Mousseau\Desktop\SpywareBlaster.lnk
[2009/04/18 18:11:05 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\CanonIJSolutionMenu
[2009/04/18 18:01:19 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\CanonIJMyPrinter
[2009/04/18 18:01:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\CanonIJPLM
[2009/04/18 17:55:00 | 00,013,568 | ---- | C] () -- C:\WINDOWS\System32\CNC1736D.TBL
[2009/04/18 17:54:51 | 00,032,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbccgp.sys
[2009/04/18 17:54:51 | 00,032,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbccgp.sys
[2009/04/18 17:53:07 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\CANON
[2009/04/18 17:52:51 | 00,001,680 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Canon Solution Menu.lnk
[2009/04/18 17:52:36 | 00,001,734 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Easy-PhotoPrint EX.lnk
[2009/04/18 17:51:08 | 00,001,736 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Canon MP Navigator EX 2.1.lnk
[2009/04/18 17:50:35 | 00,001,652 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\My Printer.lnk
[2009/04/18 17:50:11 | 00,001,967 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Canon MX320 series On-screen Manual.lnk
[2009/04/18 17:47:57 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\CanonBJ
[2009/04/18 17:47:09 | 00,000,000 | -H-D | C] -- C:\WINDOWS\System32\CanonIJ Uninstaller Information
[2009/04/18 17:46:45 | 00,000,000 | -H-D | C] -- C:\Program Files\CanonBJ
[2009/04/18 17:44:35 | 00,000,000 | ---D | C] -- C:\Program Files\Canon
[2009/04/17 15:32:22 | 00,000,000 | ---D | C] -- C:\Program Files\AIR MILES TOOLBAR
[2009/04/17 09:09:54 | 00,000,868 | ---- | C] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2009/04/15 09:06:47 | 00,401,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcss.dll
[2009/04/15 09:06:47 | 00,284,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pdh.dll
[2009/04/15 09:06:47 | 00,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\services.exe
[2009/04/15 09:06:46 | 00,473,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fastprox.dll
[2009/04/15 09:06:46 | 00,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprvse.exe
[2009/04/15 09:06:45 | 00,729,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll
[2009/04/15 09:06:45 | 00,453,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprvsd.dll
[2009/04/15 09:06:44 | 00,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\advapi32.dll
[2009/04/15 09:06:43 | 00,714,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntdll.dll
[2009/04/15 09:01:55 | 00,002,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp4res.dll
[2009/04/15 09:01:54 | 01,203,922 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sysmain.sdb
[2009/04/15 09:01:53 | 00,215,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wordpad.exe
[2009/04/13 16:39:25 | 00,002,137 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2009/04/13 16:35:15 | 00,000,000 | ---D | C] -- C:\Program Files\iTunes
[2009/04/13 16:35:15 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2009/04/13 16:24:40 | 00,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2009/04/13 16:03:40 | 00,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2009/03/15 16:24:22 | 00,000,031 | ---- | C] () -- C:\WINDOWS\System32\Days5.ini
[2009/02/07 00:31:50 | 00,223,232 | ---- | C] () -- C:\WINDOWS\System32\sqlite3.dll
[2008/12/20 12:26:54 | 00,094,208 | ---- | C] () -- C:\WINDOWS\System32\GTW32N50.dll
[2008/12/20 12:26:10 | 00,000,920 | ---- | C] () -- C:\WINDOWS\System32\WLAN.INI
[2008/11/07 22:07:01 | 00,339,968 | ---- | C] () -- C:\WINDOWS\System32\pythoncom25.dll
[2008/11/07 22:07:01 | 00,114,688 | ---- | C] () -- C:\WINDOWS\System32\pywintypes25.dll
[2008/05/28 17:36:06 | 00,000,022 | ---- | C] () -- C:\WINDOWS\iexplore.ini
[2008/03/31 10:52:49 | 00,000,025 | ---- | C] () -- C:\WINDOWS\webica.ini
[2008/02/28 15:30:08 | 00,008,784 | ---- | C] () -- C:\WINDOWS\System32\ractrlkeyhook.dll
[2007/09/27 11:51:02 | 00,020,698 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2007/09/27 11:48:48 | 00,030,628 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2007/09/27 11:48:28 | 00,031,698 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2007/05/23 21:52:56 | 00,077,824 | ---- | C] () -- C:\WINDOWS\System32\lxaxlcnp.dll
[2007/05/14 20:33:24 | 00,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2007/05/13 19:58:44 | 00,098,304 | ---- | C] () -- C:\WINDOWS\System32\resourceGeneric.dll
[2007/03/12 17:21:46 | 00,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2007/03/05 13:34:28 | 00,676,224 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.DLL
[2006/05/19 00:11:04 | 00,000,436 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2006/05/19 00:04:14 | 00,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2006/05/18 23:16:18 | 00,135,168 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2006/05/18 23:04:56 | 00,002,626 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2006/05/18 23:04:54 | 00,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2004/08/04 15:00:00 | 00,000,637 | ---- | C] () -- C:\WINDOWS\win.ini
[2004/08/04 15:00:00 | 00,000,227 | ---- | C] () -- C:\WINDOWS\system.ini
[2003/01/07 15:05:08 | 00,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI

========== Files - Modified Within 30 Days ==========

[126 C:\WINDOWS\System32\*.tmp files]
[1 C:\WINDOWS\*.tmp files]
[1 C:\Documents and Settings\Brigitte Mousseau\My Documents\*.tmp files]
[2009/04/30 22:46:28 | 00,504,320 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Brigitte Mousseau\Desktop\OTListIt2.exe
[2009/04/30 22:29:53 | 00,000,446 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{44EA20FA-7DE0-4E79-A704-B5FE68457FC8}.job
[2009/04/30 22:00:47 | 00,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachine.job
[2009/04/30 22:00:02 | 00,000,256 | ---- | M] () -- C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job
[2009/04/30 19:59:35 | 00,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009/04/30 19:59:34 | 00,000,462 | ---- | M] () -- C:\WINDOWS\tasks\RegCure Program Check.job
[2009/04/30 19:58:34 | 00,000,062 | -HS- | M] () -- C:\Documents and Settings\Brigitte Mousseau\Local Settings\desktop.ini
[2009/04/30 19:53:14 | 00,000,868 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2009/04/30 19:53:03 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009/04/30 19:52:58 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009/04/30 19:52:57 | 52,774,9120 | -HS- | M] () -- C:\hiberfil.sys
[2009/04/30 04:41:06 | 00,000,396 | ---- | M] () -- C:\WINDOWS\tasks\RegCure.job
[2009/04/29 22:14:07 | 00,307,331 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2009/04/29 21:18:09 | 00,530,106 | ---- | M] () -- C:\Documents and Settings\Brigitte Mousseau\Desktop\LopSD.exe
[2009/04/29 19:40:34 | 00,267,612 | ---- | M] () -- C:\Documents and Settings\Brigitte Mousseau\Desktop\Rooter.exe
[2009/04/29 15:21:50 | 00,002,626 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2009/04/29 05:37:50 | 00,001,709 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\avast! Antivirus.lnk
[2009/04/28 21:02:52 | 00,021,504 | ---- | M] (Doug Knox) -- C:\Documents and Settings\Brigitte Mousseau\Desktop\SysRestorePoint.exe
[2009/04/28 20:37:20 | 00,002,521 | ---- | M] () -- C:\Documents and Settings\Brigitte Mousseau\Desktop\Microsoft Office Outlook 2003.lnk
[2009/04/27 18:42:09 | 00,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2009/04/27 16:48:34 | 00,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2009/04/27 16:44:44 | 00,002,187 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Safari.lnk
[2009/04/27 16:39:30 | 00,025,600 | ---- | M] () -- C:\Documents and Settings\Brigitte Mousseau\My Documents\The Gold Dragon.doc
[2009/04/26 21:06:14 | 00,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2009/04/26 19:05:23 | 00,000,088 | -HS- | M] () -- C:\Documents and Settings\Brigitte Mousseau\My Documents\desktop.ini
[2009/04/26 18:51:43 | 00,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2009/04/24 07:30:20 | 00,043,008 | ---- | M] () -- C:\Documents and Settings\Brigitte Mousseau\My Documents\Understanding Written Material.doc
[2009/04/24 07:26:10 | 00,037,376 | ---- | M] () -- C:\Documents and Settings\Brigitte Mousseau\My Documents\Written Communication Proficiency Test.doc
[2009/04/23 00:12:35 | 00,022,059 | ---- | M] () -- C:\Documents and Settings\Brigitte Mousseau\Desktop\MNR_CV.wpd
[2009/04/22 23:21:42 | 00,000,604 | ---- | M] () -- C:\Documents and Settings\Brigitte Mousseau\My Documents\My Sharing Folders.lnk
[2009/04/21 16:03:44 | 00,015,688 | ---- | M] () -- C:\WINDOWS\System32\lsdelete.exe
[2009/04/21 16:02:59 | 00,064,160 | ---- | M] (Lavasoft AB) -- C:\WINDOWS\System32\drivers\Lbd.sys
[2009/04/21 15:26:00 | 00,306,678 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20090429-221407.backup
[2009/04/21 15:18:52 | 00,224,344 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20090421-152600.backup
[2009/04/21 15:18:33 | 00,224,344 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20090421-151852.backup
[2009/04/21 15:18:27 | 00,224,344 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20090421-151833.backup
[2009/04/20 22:07:38 | 16,409,960 | ---- | M] (Safer Networking Limited ) -- C:\Documents and Settings\Brigitte Mousseau\Desktop\setup-spybotsd162.exe
[2009/04/20 21:51:28 | 00,000,690 | ---- | M] () -- C:\Documents and Settings\Brigitte Mousseau\Desktop\SpywareBlaster.lnk
[2009/04/18 17:52:51 | 00,001,680 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Canon Solution Menu.lnk
[2009/04/18 17:52:36 | 00,001,734 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Easy-PhotoPrint EX.lnk
[2009/04/18 17:51:08 | 00,001,736 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Canon MP Navigator EX 2.1.lnk
[2009/04/18 17:50:35 | 00,001,652 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\My Printer.lnk
[2009/04/18 17:50:10 | 00,001,967 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Canon MX320 series On-screen Manual.lnk
[2009/04/16 04:47:28 | 00,467,624 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2009/04/16 04:47:27 | 00,080,558 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2009/04/16 04:47:21 | 00,556,090 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2009/04/16 02:09:59 | 00,000,637 | ---- | M] () -- C:\WINDOWS\win.ini
[2009/04/14 17:30:01 | 00,002,137 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2009/04/06 15:32:54 | 00,038,496 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009/04/06 15:32:46 | 00,015,504 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009/04/06 10:57:24 | 24,921,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MRT.exe
[2009/04/03 06:55:47 | 00,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2009/04/02 17:39:04 | 00,051,200 | ---- | M] () -- C:\Documents and Settings\Brigitte Mousseau\My Documents\Copy of Tournoi asterix novice atom 2009.xls

========== Alternate Data Streams ==========

@Alternate Data Stream - 88 bytes -> C:\Documents and Settings\Brigitte Mousseau\My Documents\pf-setup-en.exe:SummaryInformation
@Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D0851FBD
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4DBBB4EA
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:68E05C43
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5C321E34
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4EFDF5FB
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:268F887D
@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CFE0B346
@Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:9E22BBE8
@Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2
< End of report >

Rooter and Lop didn't work but i'll try again. For the OT list it scan - I don't get the other report??

Microsoft Windows XP Home Edition (5.1.2600) Service Pack 3

C:\ [Fixed] - NTFS - (Total:188779 Mo/Free:2261 Mo)
E:\ [Removable] (Total:0 Mo/Free:0 Mo)
F:\ [CD-Rom] (Total:0 Mo/Free:0 Mo)
I:\ [Removable] (Total:0 Mo/Free:0 Mo)
J:\ [Removable] (Total:0 Mo/Free:0 Mo)
K:\ [Removable] (Total:0 Mo/Free:0 Mo)

Thu 04/30/2009|22:56

----------------------\\ Processes..

--Locked-- [System Process]
---------- System
---------- \SystemRoot\System32\smss.exe
---------- \??\C:\WINDOWS\system32\csrss.exe
---------- \??\C:\WINDOWS\system32\winlogon.exe
---------- C:\WINDOWS\system32\services.exe
---------- C:\WINDOWS\system32\lsass.exe
---------- C:\WINDOWS\system32\svchost.exe
---------- C:\WINDOWS\system32\svchost.exe
---------- C:\WINDOWS\System32\svchost.exe
---------- C:\WINDOWS\system32\svchost.exe
---------- C:\WINDOWS\system32\svchost.exe
---------- C:\WINDOWS\system32\svchost.exe
---------- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
---------- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
---------- C:\Program Files\Alwil Software\Avast4\ashServ.exe
---------- C:\WINDOWS\system32\LEXBCES.EXE
---------- C:\WINDOWS\system32\spoolsv.exe
---------- C:\WINDOWS\system32\LEXPPS.EXE
---------- C:\WINDOWS\system32\svchost.exe
---------- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
---------- C:\Program Files\Bonjour\mDNSResponder.exe
---------- C:\WINDOWS\System32\svchost.exe
---------- C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
---------- C:\Program Files\Java\jre6\bin\jqs.exe
---------- C:\Program Files\Google\Update\GoogleUpdate.exe
---------- C:\Program Files\Common Files\LightScribe\LSSrvc.exe
---------- C:\WINDOWS\system32\svchost.exe
---------- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
---------- C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe
---------- C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WMP54Gv4.exe
---------- C:\Program Files\Windows Media Player\WMPNetwk.exe
---------- C:\WINDOWS\system32\SearchIndexer.exe
---------- C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
---------- C:\WINDOWS\system32\wbem\unsecapp.exe
---------- C:\WINDOWS\system32\wbem\wmiprvse.exe
---------- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
---------- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
---------- C:\WINDOWS\System32\alg.exe
---------- C:\WINDOWS\Explorer.EXE
---------- C:\WINDOWS\system32\igfxtray.exe
---------- C:\WINDOWS\system32\hkcmd.exe
---------- C:\WINDOWS\SOUNDMAN.EXE
---------- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
---------- C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
---------- C:\WINDOWS\system32\ICO.EXE
---------- C:\Program Files\Pure Networks\Network Magic\nmapp.exe
---------- C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe
---------- C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
---------- C:\Program Files\iTunes\iTunesHelper.exe
---------- C:\Program Files\Java\jre6\bin\jusched.exe
---------- C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
---------- C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
---------- C:\WINDOWS\system32\ctfmon.exe
---------- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
---------- C:\Program Files\Windows Media Player\WMPNSCFG.exe
---------- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
---------- C:\Program Files\Windows Desktop Search\WindowsSearch.exe
---------- C:\Program Files\Picaboo\Picaboo\PicabooMain.exe
---------- C:\Program Files\iPod\bin\iPodService.exe
---------- C:\Program Files\SpywareGuard\sgmain.exe
---------- C:\Program Files\Internet Explorer\iexplore.exe
---------- C:\Program Files\SpywareGuard\sgbhp.exe
---------- C:\Program Files\Internet Explorer\iexplore.exe
---------- C:\Program Files\Internet Explorer\iexplore.exe
---------- C:\WINDOWS\system32\cmd.exe
---------- C:\Rooter$\RK.exe

----------------------\\ Search..

----------------------\\ ROOTKIT !!



1 - "C:\Rooter$\Rooter_1.txt" - Thu 04/30/2009|22:57

----------------------\\ Scan completed at 22:57

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Home Edition ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel® Pentium® 4 CPU 3.06GHz )
BIOS : BIOS Date: 04/28/06 22:26:19 Ver: 08.00.10
USER : Brigitte Mousseau ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1335 [VPS 090430-0] 4.8.1335 (Activated)
C:\ (Local Disk) - NTFS - Total:184 Go (Free:142 Go)
E:\ (USB)
F:\ (CD or DVD)
I:\ (USB)
J:\ (USB)
K:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( Thu 04/30/2009|23:08 )

--------------------\\ Listing folders in APPLIC~1

[02/01/2009|05:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> {83C91755-2546-441D-AC40-9A6B4B860800}
[04/13/2009|04:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> {8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[03/22/2009|12:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Adobe
[11/08/2008|10:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> agi
[05/19/2006|12:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Ahead
[12/27/2007|07:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Apple
[03/18/2007|10:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Apple Computer
[02/07/2009|12:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Ascentive
[04/18/2009|05:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> CanonBJ
[04/26/2009|05:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> CanonIJ
[04/26/2009|05:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> CanonIJEGV
[04/26/2009|05:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> CanonIJEPPEX
[04/18/2009|06:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> CanonIJMyPrinter
[04/26/2009|06:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> CanonIJPLM
[04/26/2009|05:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> CanonIJScan
[04/18/2009|06:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> CanonIJSolutionMenu
[05/19/2006|12:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> CyberLink
[09/08/2008|04:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> FunGames
[02/10/2009|06:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Google
[04/30/2009|12:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Google Updater
[06/05/2008|06:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Grisoft
[01/20/2009|08:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Hewlett-Packard
[12/21/2008|12:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Kodak
[09/04/2008|10:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Lavasoft
[01/10/2009|09:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> LogMeIn
[10/26/2008|08:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Malwarebytes
[03/06/2009|03:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Microsoft
[05/28/2008|05:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> MumboJumbo
[03/13/2009|10:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> NOS
[04/29/2007|07:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Office Genuine Advantage
[10/09/2008|09:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> PC Drivers Headquarters
[07/11/2007|10:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> PC Tools
[12/30/2008|02:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Pure Networks
[11/03/2008|05:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> SITEguard
[03/31/2008|09:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Skype
[04/21/2009|03:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Spybot - Search & Destroy
[11/03/2008|04:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> STOPzilla!
[10/20/2008|06:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> SUPERAntiSpyware.com
[10/21/2008|07:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Symantec
[03/15/2009|06:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> TechSmith
[04/29/2009|08:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> TEMP
[03/12/2007|05:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Windows Genuine Advantage
[03/19/2007|05:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Windows Live Toolbar
[10/18/2008|10:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> WLInstaller
[04/21/2008|09:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Zylom

[12/26/2008|10:51] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> .wyzo
[01/11/2009|10:39] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Adobe
[01/11/2009|10:40] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> AdobeAUM
[01/11/2009|10:40] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> AdobeUM
[11/08/2008|10:01] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> agi
[06/08/2007|06:34] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Ahead
[03/01/2009|09:04] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Apple Computer
[04/26/2009|05:17] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Canon
[05/18/2006|11:58] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> CyberLink
[06/05/2008|06:57] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> EA
[04/03/2007|06:52] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> FileMaker
[04/13/2009|03:57] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> FrostWire
[03/15/2007|09:36] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Google
[10/01/2007|07:40] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Help
[11/07/2008|11:23] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> HiYo
[04/20/2008|06:01] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> ICAClient
[05/18/2006|10:40] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Identities
[10/18/2008|03:47] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> InstallShield
[05/07/2007|10:21] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Lavasoft
[05/11/2007|04:41] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Leadertech
[12/26/2008|11:30] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> LimeWire
[10/16/2008|06:55] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Macromedia
[10/26/2008|08:35] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Malwarebytes
[02/14/2009|01:34] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Microsoft
[04/26/2009|09:09] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Mozilla
[05/23/2007|05:12] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> PC Tools
[02/19/2009|07:17] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Picaboo
[12/13/2008|09:44] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Pogo Games
[05/19/2006|12:23] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> SampleView
[04/09/2007|07:53] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Serif
[05/14/2007|12:19] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Simple Star
[02/26/2008|05:22] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Snapfish
[03/15/2007|04:15] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Sun
[06/14/2007|10:07] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Talkback
[03/02/2009|10:37] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> U3
[02/08/2009|03:32] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Uniblue
[12/07/2008|12:02] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Windows Desktop Search
[12/21/2008|01:12] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Windows Search
[05/23/2007|04:32] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> WinPatrol

[05/19/2006|12:14] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Adobe
[05/18/2006|11:56] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Ahead
[05/18/2006|11:58] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> CyberLink
[05/18/2006|10:40] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Identities
[05/19/2006|12:10] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Microsoft
[05/19/2006|12:23] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> SampleView

[03/22/2008|03:05] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Adobe
[11/07/2008|10:09] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> agi
[10/01/2007|07:37] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Google
[04/28/2009|11:05] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Microsoft

[10/16/2008|09:57] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Adobe
[10/16/2008|09:57] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Macromedia
[04/28/2009|11:05] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Microsoft

[05/19/2006|12:14] C:\DOCUME~1\Richard\APPLIC~1\<DIR> Adobe
[05/18/2006|11:56] C:\DOCUME~1\Richard\APPLIC~1\<DIR> Ahead
[05/18/2006|11:58] C:\DOCUME~1\Richard\APPLIC~1\<DIR> CyberLink
[05/18/2006|10:40] C:\DOCUME~1\Richard\APPLIC~1\<DIR> Identities
[06/11/2008|05:22] C:\DOCUME~1\Richard\APPLIC~1\<DIR> Microsoft
[05/19/2006|12:23] C:\DOCUME~1\Richard\APPLIC~1\<DIR> SampleView

[05/19/2006|12:14] C:\DOCUME~1\RICHAR~1\APPLIC~1\<DIR> Adobe
[05/18/2006|11:56] C:\DOCUME~1\RICHAR~1\APPLIC~1\<DIR> Ahead
[05/18/2006|11:58] C:\DOCUME~1\RICHAR~1\APPLIC~1\<DIR> CyberLink
[03/15/2007|05:36] C:\DOCUME~1\RICHAR~1\APPLIC~1\<DIR> Google
[05/18/2006|10:40] C:\DOCUME~1\RICHAR~1\APPLIC~1\<DIR> Identities
[04/28/2009|11:05] C:\DOCUME~1\RICHAR~1\APPLIC~1\<DIR> Microsoft
[05/19/2006|12:23] C:\DOCUME~1\RICHAR~1\APPLIC~1\<DIR> SampleView
[06/13/2007|05:43] C:\DOCUME~1\RICHAR~1\APPLIC~1\<DIR> WinPatrol

--------------------\\ Scheduled Tasks located in C:\WINDOWS\Tasks

[04/30/2009 07:59 PM][--a------] C:\WINDOWS\tasks\RegCure Program Check.job
[04/30/2009 04:41 AM][--a------] C:\WINDOWS\tasks\RegCure.job
[04/30/2009 07:53 PM][--a------] C:\WINDOWS\tasks\Google Software Updater.job
[04/27/2009 04:48 PM][--a------] C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[04/30/2009 10:00 PM][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskMachine.job
[04/30/2009 10:29 PM][--ah-----] C:\WINDOWS\tasks\User_Feed_Synchronization-{44EA20FA-7DE0-4E79-A704-B5FE68457FC8}.job
[04/27/2009 06:42 PM][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[04/30/2009 11:00 PM][--a------] C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job
[04/30/2009 07:53 PM][--ah-----] C:\WINDOWS\tasks\SA.DAT
[08/04/2004 03:00 PM][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing Folders in C:\Program Files

[03/22/2009|12:45] C:\Program Files\<DIR> Adobe
[05/23/2007|04:33] C:\Program Files\<DIR> Ahead
[04/17/2009|08:30] C:\Program Files\<DIR> AIR MILES TOOLBAR
[05/17/2007|10:05] C:\Program Files\<DIR> Alwil Software
[09/29/2008|03:00] C:\Program Files\<DIR> Apple Software Update
[02/07/2009|12:24] C:\Program Files\<DIR> AskBarDis
[06/14/2007|10:43] C:\Program Files\<DIR> AV Music Morpher
[06/05/2008|06:18] C:\Program Files\<DIR> AVG
[05/07/2007|10:29] C:\Program Files\<DIR> BillP Studios
[04/13/2009|04:03] C:\Program Files\<DIR> Bonjour
[04/18/2009|06:00] C:\Program Files\<DIR> Canon
[04/18/2009|05:46] C:\Program Files\<DIR> CanonBJ
[03/31/2008|10:52] C:\Program Files\<DIR> Citrix
[10/21/2008|04:36] C:\Program Files\<DIR> CleanUp!
[04/18/2009|05:53] C:\Program Files\<DIR> Common Files
[05/18/2006|10:32] C:\Program Files\<DIR> ComPlus Applications
[12/06/2008|11:54] C:\Program Files\<DIR> CONEXANT
[05/19/2006|12:22] C:\Program Files\<DIR> CyberLink
[02/15/2009|12:27] C:\Program Files\<DIR> ERUNT
[03/02/2008|04:54] C:\Program Files\<DIR> FontFrenzy
[03/16/2009|01:07] C:\Program Files\<DIR> FrostWire
[04/25/2009|08:28] C:\Program Files\<DIR> Google
[04/26/2007|07:27] C:\Program Files\<DIR> Grisoft
[04/26/2007|02:02] C:\Program Files\<DIR> HELP
[02/07/2009|12:19] C:\Program Files\<DIR> InstallShield Installation Information
[05/18/2006|11:06] C:\Program Files\<DIR> Intel
[04/26/2009|07:02] C:\Program Files\<DIR> Internet Explorer
[04/13/2009|04:36] C:\Program Files\<DIR> iPod
[04/13/2009|04:38] C:\Program Files\<DIR> iTunes
[04/15/2009|05:32] C:\Program Files\<DIR> Java
[09/04/2008|10:15] C:\Program Files\<DIR> Lavasoft
[01/04/2009|11:48] C:\Program Files\<DIR> LimeWire
[12/20/2008|12:26] C:\Program Files\<DIR> Linksys Wireless-G PCI Wireless Network Monitor
[10/24/2008|08:48] C:\Program Files\<DIR> LiveFTA
[04/30/2009|07:53] C:\Program Files\<DIR> LogMeIn
[01/08/2008|06:50] C:\Program Files\<DIR> Mah Jong Quest II
[01/08/2008|10:14] C:\Program Files\<DIR> Mahjongg Artifacts Chapter 2
[04/17/2009|04:51] C:\Program Files\<DIR> Malwarebytes' Anti-Malware
[09/04/2008|08:31] C:\Program Files\<DIR> Messenger
[02/13/2009|03:52] C:\Program Files\<DIR> Messenger Plus! Live
[05/23/2007|04:34] C:\Program Files\<DIR> Microsoft ActiveSync
[05/23/2007|04:32] C:\Program Files\<DIR> Microsoft CAPICOM 2.1.0.2
[05/18/2006|10:35] C:\Program Files\<DIR> microsoft frontpage
[11/29/2008|09:13] C:\Program Files\<DIR> Microsoft Games
[03/12/2007|06:29] C:\Program Files\<DIR> Microsoft Office
[02/27/2009|08:23] C:\Program Files\<DIR> Microsoft Silverlight
[10/18/2008|11:11] C:\Program Files\<DIR> Microsoft SQL Server Compact Edition
[09/04/2008|08:26] C:\Program Files\<DIR> Movie Maker
[04/29/2009|04:43] C:\Program Files\<DIR> Mozilla Firefox
[03/01/2009|05:55] C:\Program Files\<DIR> MSBuild
[04/26/2009|06:46] C:\Program Files\<DIR> MSN
[02/17/2008|02:22] C:\Program Files\<DIR> MSN Games
[05/18/2006|10:31] C:\Program Files\<DIR> MSN Gaming Zone
[04/04/2007|07:16] C:\Program Files\<DIR> MSXML 4.0
[05/14/2007|10:53] C:\Program Files\<DIR> MTV Networks
[05/23/2007|04:33] C:\Program Files\<DIR> Nero
[09/04/2008|08:22] C:\Program Files\<DIR> NetMeeting
[02/14/2009|11:26] C:\Program Files\<DIR> NOS
[06/18/2008|06:19] C:\Program Files\<DIR> Oberon Media
[05/18/2006|10:34] C:\Program Files\<DIR> Online Services
[09/04/2008|08:22] C:\Program Files\<DIR> Outlook Express
[05/24/2007|04:03] C:\Program Files\<DIR> Photo Toolkit
[05/23/2007|04:32] C:\Program Files\<DIR> PhotoFiltre
[02/19/2009|07:17] C:\Program Files\<DIR> Picaboo
[10/09/2008|03:44] C:\Program Files\<DIR> Picasa2
[03/15/2009|04:31] C:\Program Files\<DIR> Picture Merge Genius
[01/10/2009|09:27] C:\Program Files\<DIR> Pure Networks
[04/13/2009|04:26] C:\Program Files\<DIR> QuickTime
[03/12/2008|07:32] C:\Program Files\<DIR> Real
[05/18/2006|11:16] C:\Program Files\<DIR> Realtek AC97
[03/01/2009|05:55] C:\Program Files\<DIR> Reference Assemblies
[01/07/2008|11:14] C:\Program Files\<DIR> ReflexiveArcade
[04/21/2009|07:07] C:\Program Files\<DIR> RegCure
[02/19/2008|07:19] C:\Program Files\<DIR> Registry Mechanic
[04/13/2009|04:06] C:\Program Files\<DIR> Safari
[04/09/2007|07:53] C:\Program Files\<DIR> Serif
[03/31/2008|09:33] C:\Program Files\<DIR> Skype
[04/21/2009|03:21] C:\Program Files\<DIR> Spybot - Search & Destroy
[04/29/2009|07:57] C:\Program Files\<DIR> SpywareBlaster
[04/26/2009|09:31] C:\Program Files\<DIR> SpywareGuard
[06/23/2008|07:10] C:\Program Files\<DIR> Sun
[12/13/2008|08:28] C:\Program Files\<DIR> SUPERAntiSpyware
[04/26/2007|02:02] C:\Program Files\<DIR> SYS
[03/15/2009|06:27] C:\Program Files\<DIR> TechSmith
[12/26/2007|08:02] C:\Program Files\<DIR> Trend Micro
[05/18/2006|10:39] C:\Program Files\<DIR> Uninstall Information
[04/26/2007|02:02] C:\Program Files\<DIR> Vista32
[04/26/2007|02:02] C:\Program Files\<DIR> Vista64
[04/26/2007|02:02] C:\Program Files\<DIR> W2k
[12/07/2008|12:01] C:\Program Files\<DIR> Windows Desktop Search
[10/20/2008|07:47] C:\Program Files\<DIR> Windows Live
[11/30/2007|04:03] C:\Program Files\<DIR> Windows Live Favorites
[09/07/2007|09:30] C:\Program Files\<DIR> Windows Live Safety Center
[06/17/2008|09:27] C:\Program Files\<DIR> Windows Live Toolbar
[03/19/2007|07:52] C:\Program Files\<DIR> Windows Media Connect 2
[12/02/2008|09:36] C:\Program Files\<DIR> Windows Media Player
[09/04/2008|08:22] C:\Program Files\<DIR> Windows NT
[05/18/2006|10:34] C:\Program Files\<DIR> WindowsUpdate
[08/06/2007|09:07] C:\Program Files\<DIR> WinRAR
[05/18/2006|10:35] C:\Program Files\<DIR> xerox
[04/26/2007|02:02] C:\Program Files\<DIR> XP
[12/28/2008|09:33] C:\Program Files\<DIR> Zapu

--------------------\\ Listing Folders in C:\Program Files\Common Files

[03/22/2009|12:45] C:\Program Files\Common Files\<DIR> Adobe
[02/14/2009|11:40] C:\Program Files\Common Files\<DIR> Adobe AIR
[05/23/2007|04:32] C:\Program Files\Common Files\<DIR> Ahead
[04/13/2009|04:36] C:\Program Files\Common Files\<DIR> Apple
[04/18/2009|05:53] C:\Program Files\Common Files\<DIR> CANON
[05/23/2007|04:34] C:\Program Files\Common Files\<DIR> DESIGNER
[10/09/2008|10:07] C:\Program Files\Common Files\<DIR> InstallShield
[11/01/2008|06:19] C:\Program Files\Common Files\<DIR> iS3
[06/17/2008|03:22] C:\Program Files\Common Files\<DIR> Java
[05/23/2006|02:26] C:\Program Files\Common Files\<DIR> LightScribe
[03/06/2009|03:01] C:\Program Files\Common Files\<DIR> Microsoft Shared
[05/18/2006|10:33] C:\Program Files\Common Files\<DIR> MSSoap
[05/23/2006|02:23] C:\Program Files\Common Files\<DIR> Nero
[05/18/2006|06:26] C:\Program Files\Common Files\<DIR> ODBC
[12/30/2008|08:44] C:\Program Files\Common Files\<DIR> Pure Networks Shared
[03/31/2008|09:36] C:\Program Files\Common Files\<DIR> Real
[05/23/2006|10:32] C:\Program Files\Common Files\<DIR> Services
[05/18/2006|06:26] C:\Program Files\Common Files\<DIR> SpeechEngines
[11/23/2008|08:47] C:\Program Files\Common Files\<DIR> Symantec Shared
[09/04/2008|08:22] C:\Program Files\Common Files\<DIR> System
[10/18/2008|10:44] C:\Program Files\Common Files\<DIR> WindowsLiveInstaller
[03/15/2009|04:48] C:\Program Files\Common Files\<DIR> Wise Installation Wizard

--------------------\\ Process

( 68 Processes )

iexplore.exe ~ [PID:484]
iexplore.exe ~ [PID:3592]
iexplore.exe ~ [PID:4688]

--------------------\\ Searching with S_Lop

No Lop folder found !

--------------------\\ Searching for Lop Files - Folders

C:\DOCUME~1\BRIGIT~1\LOCALS~1\Temp\nsz1A6.tmp

--------------------\\ Searching within the Registry

..... OK !

--------------------\\ Checking the Hosts file

Hosts file CLEAN


--------------------\\ Searching for hidden files with Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-04-30 23:10:21
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 225

--------------------\\ Searching for other infections

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\BRIGIT~1\Local Settings\Application Data\pogo games\WorldWinner\Cubis\crack.wav
C:\DOCUME~1\BRIGIT~1\Local Settings\Application Data\pogo games\WorldWinner\ZenGems\rock-crack.ogg
C:\DOCUME~1\BRIGIT~1\Shared\Eminem Feat Dr. Dre & 50 Cent - Crack A Bottle.mp3
C:\DOCUME~1\ALLUSE~1\Documents\Brig's music\Unknown Artist\Unknown Album\Eminem Feat Dr. Dre & 50 Cent - Crack A Bottle.mp3


[F:77][D:20]-> C:\DOCUME~1\BRIGIT~1\LOCALS~1\Temp
[F:36][D:0]-> C:\DOCUME~1\BRIGIT~1\Cookies
[F:2386][D:20]-> C:\DOCUME~1\BRIGIT~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - Thu 04/30/2009|23:11 - Option : [1]

--------------------\\ Scan completed at 23:11:53

Disable resident protections (Antivirus...); you'll re-enable them after the scan

Download Lop S&D < here

Double-click Lop S&D.exe
Choose the language, then choose Option 3 (Fix - Hosts)
Wait till the end of the scan
Post the log which is created: (%SystemDrive%\lopR.txt)

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Home Edition ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel® Pentium® 4 CPU 3.06GHz )
BIOS : BIOS Date: 04/28/06 22:26:19 Ver: 08.00.10
USER : Brigitte Mousseau ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1335 [VPS 090430-0] 4.8.1335 (Not Activated)
C:\ (Local Disk) - NTFS - Total:184 Go (Free:142 Go)
E:\ (USB)
F:\ (CD or DVD)
I:\ (USB)
J:\ (USB)
K:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [3] ( Fri 05/01/2009|16:31 )


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ FIX

Deleted! - C:\DOCUME~1\BRIGIT~1\LOCALS~1\Temp\nsz1A6.tmp

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing folders in APPLIC~1

[02/01/2009|05:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> {83C91755-2546-441D-AC40-9A6B4B860800}
[04/13/2009|04:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> {8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[03/22/2009|12:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Adobe
[11/08/2008|10:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> agi
[05/19/2006|12:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Ahead
[12/27/2007|07:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Apple
[03/18/2007|10:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Apple Computer
[02/07/2009|12:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Ascentive
[04/18/2009|05:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> CanonBJ
[04/26/2009|05:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> CanonIJ
[04/26/2009|05:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> CanonIJEGV
[04/26/2009|05:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> CanonIJEPPEX
[04/18/2009|06:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> CanonIJMyPrinter
[04/26/2009|06:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> CanonIJPLM
[04/26/2009|05:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> CanonIJScan
[04/18/2009|06:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> CanonIJSolutionMenu
[05/19/2006|12:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> CyberLink
[09/08/2008|04:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> FunGames
[02/10/2009|06:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Google
[05/01/2009|01:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Google Updater
[06/05/2008|06:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Grisoft
[01/20/2009|08:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Hewlett-Packard
[12/21/2008|12:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Kodak
[09/04/2008|10:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Lavasoft
[01/10/2009|09:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> LogMeIn
[10/26/2008|08:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Malwarebytes
[03/06/2009|03:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Microsoft
[05/28/2008|05:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> MumboJumbo
[03/13/2009|10:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> NOS
[04/29/2007|07:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Office Genuine Advantage
[10/09/2008|09:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> PC Drivers Headquarters
[07/11/2007|10:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> PC Tools
[12/30/2008|02:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Pure Networks
[11/03/2008|05:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> SITEguard
[03/31/2008|09:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Skype
[04/21/2009|03:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Spybot - Search & Destroy
[11/03/2008|04:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> STOPzilla!
[10/20/2008|06:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> SUPERAntiSpyware.com
[10/21/2008|07:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Symantec
[03/15/2009|06:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> TechSmith
[04/29/2009|08:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> TEMP
[03/12/2007|05:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Windows Genuine Advantage
[03/19/2007|05:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Windows Live Toolbar
[10/18/2008|10:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> WLInstaller
[04/21/2008|09:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Zylom

[12/26/2008|10:51] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> .wyzo
[01/11/2009|10:39] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Adobe
[01/11/2009|10:40] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> AdobeAUM
[01/11/2009|10:40] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> AdobeUM
[11/08/2008|10:01] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> agi
[06/08/2007|06:34] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Ahead
[03/01/2009|09:04] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Apple Computer
[04/26/2009|05:17] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Canon
[05/18/2006|11:58] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> CyberLink
[06/05/2008|06:57] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> EA
[04/03/2007|06:52] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> FileMaker
[04/13/2009|03:57] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> FrostWire
[03/15/2007|09:36] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Google
[10/01/2007|07:40] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Help
[11/07/2008|11:23] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> HiYo
[04/20/2008|06:01] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> ICAClient
[05/18/2006|10:40] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Identities
[10/18/2008|03:47] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> InstallShield
[05/07/2007|10:21] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Lavasoft
[05/11/2007|04:41] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Leadertech
[12/26/2008|11:30] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> LimeWire
[10/16/2008|06:55] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Macromedia
[10/26/2008|08:35] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Malwarebytes
[02/14/2009|01:34] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Microsoft
[04/26/2009|09:09] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Mozilla
[05/23/2007|05:12] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> PC Tools
[02/19/2009|07:17] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Picaboo
[12/13/2008|09:44] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Pogo Games
[05/19/2006|12:23] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> SampleView
[04/09/2007|07:53] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Serif
[05/14/2007|12:19] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Simple Star
[02/26/2008|05:22] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Snapfish
[03/15/2007|04:15] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Sun
[06/14/2007|10:07] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Talkback
[03/02/2009|10:37] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> U3
[02/08/2009|03:32] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Uniblue
[12/07/2008|12:02] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Windows Desktop Search
[12/21/2008|01:12] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> Windows Search
[05/23/2007|04:32] C:\DOCUME~1\BRIGIT~1\APPLIC~1\<DIR> WinPatrol

[05/19/2006|12:14] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Adobe
[05/18/2006|11:56] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Ahead
[05/18/2006|11:58] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> CyberLink
[05/18/2006|10:40] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Identities
[05/19/2006|12:10] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Microsoft
[05/19/2006|12:23] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> SampleView

[03/22/2008|03:05] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Adobe
[11/07/2008|10:09] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> agi
[10/01/2007|07:37] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Google
[04/28/2009|11:05] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Microsoft

[10/16/2008|09:57] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Adobe
[10/16/2008|09:57] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Macromedia
[04/28/2009|11:05] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Microsoft

[05/19/2006|12:14] C:\DOCUME~1\Richard\APPLIC~1\<DIR> Adobe
[05/18/2006|11:56] C:\DOCUME~1\Richard\APPLIC~1\<DIR> Ahead
[05/18/2006|11:58] C:\DOCUME~1\Richard\APPLIC~1\<DIR> CyberLink
[05/18/2006|10:40] C:\DOCUME~1\Richard\APPLIC~1\<DIR> Identities
[06/11/2008|05:22] C:\DOCUME~1\Richard\APPLIC~1\<DIR> Microsoft
[05/19/2006|12:23] C:\DOCUME~1\Richard\APPLIC~1\<DIR> SampleView

[05/19/2006|12:14] C:\DOCUME~1\RICHAR~1\APPLIC~1\<DIR> Adobe
[05/18/2006|11:56] C:\DOCUME~1\RICHAR~1\APPLIC~1\<DIR> Ahead
[05/18/2006|11:58] C:\DOCUME~1\RICHAR~1\APPLIC~1\<DIR> CyberLink
[03/15/2007|05:36] C:\DOCUME~1\RICHAR~1\APPLIC~1\<DIR> Google
[05/18/2006|10:40] C:\DOCUME~1\RICHAR~1\APPLIC~1\<DIR> Identities
[04/28/2009|11:05] C:\DOCUME~1\RICHAR~1\APPLIC~1\<DIR> Microsoft
[05/19/2006|12:23] C:\DOCUME~1\RICHAR~1\APPLIC~1\<DIR> SampleView
[06/13/2007|05:43] C:\DOCUME~1\RICHAR~1\APPLIC~1\<DIR> WinPatrol

--------------------\\ Scheduled Tasks located in C:\WINDOWS\Tasks

[05/01/2009 03:52 PM][--a------] C:\WINDOWS\tasks\RegCure Program Check.job
[04/30/2009 04:41 AM][--a------] C:\WINDOWS\tasks\RegCure.job
[05/01/2009 03:52 PM][--a------] C:\WINDOWS\tasks\Google Software Updater.job
[04/27/2009 04:48 PM][--a------] C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[05/01/2009 03:52 PM][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskMachine.job
[05/01/2009 04:20 PM][--ah-----] C:\WINDOWS\tasks\User_Feed_Synchronization-{44EA20FA-7DE0-4E79-A704-B5FE68457FC8}.job
[04/27/2009 06:42 PM][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[05/01/2009 04:00 PM][--a------] C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job
[05/01/2009 03:52 PM][--ah-----] C:\WINDOWS\tasks\SA.DAT
[08/04/2004 03:00 PM][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing Folders in C:\Program Files

[03/22/2009|12:45] C:\Program Files\<DIR> Adobe
[05/23/2007|04:33] C:\Program Files\<DIR> Ahead
[04/17/2009|08:30] C:\Program Files\<DIR> AIR MILES TOOLBAR
[05/17/2007|10:05] C:\Program Files\<DIR> Alwil Software
[09/29/2008|03:00] C:\Program Files\<DIR> Apple Software Update
[02/07/2009|12:24] C:\Program Files\<DIR> AskBarDis
[06/14/2007|10:43] C:\Program Files\<DIR> AV Music Morpher
[06/05/2008|06:18] C:\Program Files\<DIR> AVG
[05/07/2007|10:29] C:\Program Files\<DIR> BillP Studios
[04/13/2009|04:03] C:\Program Files\<DIR> Bonjour
[04/18/2009|06:00] C:\Program Files\<DIR> Canon
[04/18/2009|05:46] C:\Program Files\<DIR> CanonBJ
[03/31/2008|10:52] C:\Program Files\<DIR> Citrix
[10/21/2008|04:36] C:\Program Files\<DIR> CleanUp!
[04/18/2009|05:53] C:\Program Files\<DIR> Common Files
[05/18/2006|10:32] C:\Program Files\<DIR> ComPlus Applications
[12/06/2008|11:54] C:\Program Files\<DIR> CONEXANT
[05/19/2006|12:22] C:\Program Files\<DIR> CyberLink
[02/15/2009|12:27] C:\Program Files\<DIR> ERUNT
[03/02/2008|04:54] C:\Program Files\<DIR> FontFrenzy
[03/16/2009|01:07] C:\Program Files\<DIR> FrostWire
[04/25/2009|08:28] C:\Program Files\<DIR> Google
[04/26/2007|07:27] C:\Program Files\<DIR> Grisoft
[04/26/2007|02:02] C:\Program Files\<DIR> HELP
[02/07/2009|12:19] C:\Program Files\<DIR> InstallShield Installation Information
[05/18/2006|11:06] C:\Program Files\<DIR> Intel
[04/26/2009|07:02] C:\Program Files\<DIR> Internet Explorer
[04/13/2009|04:36] C:\Program Files\<DIR> iPod
[04/13/2009|04:38] C:\Program Files\<DIR> iTunes
[04/15/2009|05:32] C:\Program Files\<DIR> Java
[09/04/2008|10:15] C:\Program Files\<DIR> Lavasoft
[01/04/2009|11:48] C:\Program Files\<DIR> LimeWire
[12/20/2008|12:26] C:\Program Files\<DIR> Linksys Wireless-G PCI Wireless Network Monitor
[10/24/2008|08:48] C:\Program Files\<DIR> LiveFTA
[05/01/2009|03:52] C:\Program Files\<DIR> LogMeIn
[01/08/2008|06:50] C:\Program Files\<DIR> Mah Jong Quest II
[01/08/2008|10:14] C:\Program Files\<DIR> Mahjongg Artifacts Chapter 2
[04/17/2009|04:51] C:\Program Files\<DIR> Malwarebytes' Anti-Malware
[09/04/2008|08:31] C:\Program Files\<DIR> Messenger
[02/13/2009|03:52] C:\Program Files\<DIR> Messenger Plus! Live
[05/23/2007|04:34] C:\Program Files\<DIR> Microsoft ActiveSync
[05/23/2007|04:32] C:\Program Files\<DIR> Microsoft CAPICOM 2.1.0.2
[05/18/2006|10:35] C:\Program Files\<DIR> microsoft frontpage
[11/29/2008|09:13] C:\Program Files\<DIR> Microsoft Games
[03/12/2007|06:29] C:\Program Files\<DIR> Microsoft Office
[02/27/2009|08:23] C:\Program Files\<DIR> Microsoft Silverlight
[10/18/2008|11:11] C:\Program Files\<DIR> Microsoft SQL Server Compact Edition
[09/04/2008|08:26] C:\Program Files\<DIR> Movie Maker
[04/29/2009|04:43] C:\Program Files\<DIR> Mozilla Firefox
[03/01/2009|05:55] C:\Program Files\<DIR> MSBuild
[04/26/2009|06:46] C:\Program Files\<DIR> MSN
[02/17/2008|02:22] C:\Program Files\<DIR> MSN Games
[05/18/2006|10:31] C:\Program Files\<DIR> MSN Gaming Zone
[04/04/2007|07:16] C:\Program Files\<DIR> MSXML 4.0
[05/14/2007|10:53] C:\Program Files\<DIR> MTV Networks
[05/23/2007|04:33] C:\Program Files\<DIR> Nero
[09/04/2008|08:22] C:\Program Files\<DIR> NetMeeting
[02/14/2009|11:26] C:\Program Files\<DIR> NOS
[06/18/2008|06:19] C:\Program Files\<DIR> Oberon Media
[05/18/2006|10:34] C:\Program Files\<DIR> Online Services
[09/04/2008|08:22] C:\Program Files\<DIR> Outlook Express
[05/24/2007|04:03] C:\Program Files\<DIR> Photo Toolkit
[05/23/2007|04:32] C:\Program Files\<DIR> PhotoFiltre
[02/19/2009|07:17] C:\Program Files\<DIR> Picaboo
[10/09/2008|03:44] C:\Program Files\<DIR> Picasa2
[03/15/2009|04:31] C:\Program Files\<DIR> Picture Merge Genius
[01/10/2009|09:27] C:\Program Files\<DIR> Pure Networks
[04/13/2009|04:26] C:\Program Files\<DIR> QuickTime
[03/12/2008|07:32] C:\Program Files\<DIR> Real
[05/18/2006|11:16] C:\Program Files\<DIR> Realtek AC97
[03/01/2009|05:55] C:\Program Files\<DIR> Reference Assemblies
[01/07/2008|11:14] C:\Program Files\<DIR> ReflexiveArcade
[04/21/2009|07:07] C:\Program Files\<DIR> RegCure
[02/19/2008|07:19] C:\Program Files\<DIR> Registry Mechanic
[04/13/2009|04:06] C:\Program Files\<DIR> Safari
[04/09/2007|07:53] C:\Program Files\<DIR> Serif
[03/31/2008|09:33] C:\Program Files\<DIR> Skype
[04/21/2009|03:21] C:\Program Files\<DIR> Spybot - Search & Destroy
[04/29/2009|07:57] C:\Program Files\<DIR> SpywareBlaster
[04/26/2009|09:31] C:\Program Files\<DIR> SpywareGuard
[06/23/2008|07:10] C:\Program Files\<DIR> Sun
[12/13/2008|08:28] C:\Program Files\<DIR> SUPERAntiSpyware
[04/26/2007|02:02] C:\Program Files\<DIR> SYS
[03/15/2009|06:27] C:\Program Files\<DIR> TechSmith
[12/26/2007|08:02] C:\Program Files\<DIR> Trend Micro
[05/18/2006|10:39] C:\Program Files\<DIR> Uninstall Information
[04/26/2007|02:02] C:\Program Files\<DIR> Vista32
[04/26/2007|02:02] C:\Program Files\<DIR> Vista64
[04/26/2007|02:02] C:\Program Files\<DIR> W2k
[12/07/2008|12:01] C:\Program Files\<DIR> Windows Desktop Search
[10/20/2008|07:47] C:\Program Files\<DIR> Windows Live
[11/30/2007|04:03] C:\Program Files\<DIR> Windows Live Favorites
[09/07/2007|09:30] C:\Program Files\<DIR> Windows Live Safety Center
[06/17/2008|09:27] C:\Program Files\<DIR> Windows Live Toolbar
[03/19/2007|07:52] C:\Program Files\<DIR> Windows Media Connect 2
[12/02/2008|09:36] C:\Program Files\<DIR> Windows Media Player
[09/04/2008|08:22] C:\Program Files\<DIR> Windows NT
[05/18/2006|10:34] C:\Program Files\<DIR> WindowsUpdate
[08/06/2007|09:07] C:\Program Files\<DIR> WinRAR
[05/18/2006|10:35] C:\Program Files\<DIR> xerox
[04/26/2007|02:02] C:\Program Files\<DIR> XP
[12/28/2008|09:33] C:\Program Files\<DIR> Zapu

--------------------\\ Listing Folders in C:\Program Files\Common Files

[03/22/2009|12:45] C:\Program Files\Common Files\<DIR> Adobe
[02/14/2009|11:40] C:\Program Files\Common Files\<DIR> Adobe AIR
[05/23/2007|04:32] C:\Program Files\Common Files\<DIR> Ahead
[04/13/2009|04:36] C:\Program Files\Common Files\<DIR> Apple
[04/18/2009|05:53] C:\Program Files\Common Files\<DIR> CANON
[05/23/2007|04:34] C:\Program Files\Common Files\<DIR> DESIGNER
[10/09/2008|10:07] C:\Program Files\Common Files\<DIR> InstallShield
[11/01/2008|06:19] C:\Program Files\Common Files\<DIR> iS3
[06/17/2008|03:22] C:\Program Files\Common Files\<DIR> Java
[05/23/2006|02:26] C:\Program Files\Common Files\<DIR> LightScribe
[03/06/2009|03:01] C:\Program Files\Common Files\<DIR> Microsoft Shared
[05/18/2006|10:33] C:\Program Files\Common Files\<DIR> MSSoap
[05/23/2006|02:23] C:\Program Files\Common Files\<DIR> Nero
[05/18/2006|06:26] C:\Program Files\Common Files\<DIR> ODBC
[12/30/2008|08:44] C:\Program Files\Common Files\<DIR> Pure Networks Shared
[03/31/2008|09:36] C:\Program Files\Common Files\<DIR> Real
[05/23/2006|10:32] C:\Program Files\Common Files\<DIR> Services
[05/18/2006|06:26] C:\Program Files\Common Files\<DIR> SpeechEngines
[11/23/2008|08:47] C:\Program Files\Common Files\<DIR> Symantec Shared
[09/04/2008|08:22] C:\Program Files\Common Files\<DIR> System
[10/18/2008|10:44] C:\Program Files\Common Files\<DIR> WindowsLiveInstaller
[03/15/2009|04:48] C:\Program Files\Common Files\<DIR> Wise Installation Wizard

--------------------\\ Process

( 66 Processes )

... OK !

--------------------\\ Searching with S_Lop

No Lop folder found !

--------------------\\ Searching for Lop Files - Folders

No Lop folder found !

--------------------\\ Searching within the Registry

..... OK !

--------------------\\ Checking the Hosts file

Hosts file CLEAN


--------------------\\ Searching for hidden files with Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-05-01 16:32:50
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 225

--------------------\\ Searching for other infections

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\BRIGIT~1\Local Settings\Application Data\pogo games\WorldWinner\Cubis\crack.wav
C:\DOCUME~1\BRIGIT~1\Local Settings\Application Data\pogo games\WorldWinner\ZenGems\rock-crack.ogg
C:\DOCUME~1\BRIGIT~1\Shared\Eminem Feat Dr. Dre & 50 Cent - Crack A Bottle.mp3
C:\DOCUME~1\ALLUSE~1\Documents\Brig's music\Unknown Artist\Unknown Album\Eminem Feat Dr. Dre & 50 Cent - Crack A Bottle.mp3


[F:96][D:19]-> C:\DOCUME~1\BRIGIT~1\LOCALS~1\Temp
[F:40][D:0]-> C:\DOCUME~1\BRIGIT~1\Cookies
[F:2669][D:20]-> C:\DOCUME~1\BRIGIT~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - Thu 04/30/2009|23:11 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - Fri 05/01/2009|16:34 - Option : [3]

--------------------\\ Scan completed at 16:34:23

Please click here to download AVP Tool by Kaspersky.

• Save it to your desktop.
• Reboot your computer into SafeMode.
  

  You can do this by restarting your computer and continually tapping the F8 key until a menu appears.
  Use your up arrow key to highlight SafeMode then hit enter.

• Double click the setup file to run it.
• Click Next to continue.
• It will by default install it to your desktop folder.Click Next.
• Hit ok at the prompt for scanning in Safe Mode.
• It will then open a box There will be a tab that says Automatic scan.
• Under Automatic scan make sure these are checked.

• System Memory
• Startup Objects
• Disk Boot Sectors.
• My Computer.
• Also any other drives (Removable that you may have)

After that click on Security level then choose Customize then click on the tab that says Heuristic Analyzer then choose Enable Deep rootkit search then choose ok.
Then choose OK again then you are back to the main screen.

• Then click on Scan at the to right hand Corner.
• It will automatically Neutralize any objects found.
• If some objects are left un-neutralized then click the button that says Neutralize all
• If it says it cannot be Neutralized then chooose The delete option when prompted.
• After that is done click on the reports button at the bottom and save it to file name it Kas.
• Save it somewhere convenient like your desktop and just post only the detected Virus\malware in the report it will be at the very top under Detected post those results in your next reply.
  
  

  Note: This tool will self uninstall when you close it so please save the log before closing it.

As well, please post a new OTListIt2 log.

This scan took over 8 1/2 hours to return nothing detected??


Scan
----
Scanned: 979767
Detected: 0
Untreated: 0
Start time: 5/2/2009 2:34:55 PM
Duration: 08:39:15
Finish time: 5/2/2009 11:14:10 PM


Detected
--------
Status Object
------ ------


Events
------
Time Name Status Reason
---- ---- ------ ------
5/2/2009 2:35:08 PM Running module: smss.exe\smss.exe ok scanned


Statistics
----------
Object Scanned Detected Untreated Deleted Moved to Quarantine Archives Packed files Password protected Corrupted
------ ------- -------- --------- ------- ------------------- -------- ------------ ------------------ ---------


Settings
--------
Parameter Value
--------- -----
Security Level Custom
Action Prompt for action when the scan is complete
Run mode Manually
File types Scan all files
Scan only new and changed files No
Scan archives All
Scan embedded OLE objects All
Skip if object is larger than No
Skip if scan takes longer than No
Parse email formats No
Scan password-protected archives No
Enable iChecker technology No
Enable iSwift technology No
Show detected threats on "Detected" tab Yes
Rootkits search Yes
Deep rootkits search Yes
Use heuristic analyzer Yes


Quarantine
----------
Status Object Size Added
------ ------ ---- -----


Backup
------
Status Object Size
------ ------ ----

Edited by Mrsmoose, 02 May 2009 - 10:06 PM.

OTListIt logfile created on: 5/3/2009 12:06:44 AM - Run 4
OTListIt2 by OldTimer - Version 2.0.15.1 Folder = C:\Documents and Settings\Brigitte Mousseau\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

503.23 Mb Total Physical Memory | 112.07 Mb Available Physical Memory | 22.27% Memory free
1.20 Gb Paging File | 0.34 Gb Available in Paging File | 28.18% Paging File free
Paging file location(s): C:\pagefile.sys 756 1512 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 184.35 Gb Total Space | 141.91 Gb Free Space | 76.97% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: MOUSSEAU
Current User Name: Brigitte Mousseau
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Output = Minimal
File Age = 30 Days
Company Name Whitelist: On

========== Processes (SafeList) ==========

PRC - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
PRC - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft)
PRC - C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
PRC - C:\WINDOWS\system32\LEXBCES.EXE (Lexmark International, Inc.)
PRC - C:\WINDOWS\system32\LEXPPS.EXE ()
PRC - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
PRC - C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.)
PRC - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE ()
PRC - C:\Program Files\Google\Update\GoogleUpdate.exe (Google Inc.)
PRC - C:\Program Files\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\Common Files\LightScribe\LSSrvc.exe ()
PRC - C:\Program Files\LogMeIn\x86\RaMaint.exe (LogMeIn, Inc.)
PRC - C:\Program Files\LogMeIn\x86\LogMeIn.exe (LogMeIn, Inc.)
PRC - C:\Program Files\LogMeIn\x86\LMIGuardian.exe (LogMeIn, Inc.)
PRC - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe (Symantec Corporation)
PRC - C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe (GEMTEKS)
PRC - C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WMP54Gv4.exe (Linksys)
PRC - C:\Program Files\Windows Media Player\WMPNetwk.exe (Microsoft Corporation)
PRC - C:\WINDOWS\Explorer.EXE (Microsoft Corporation)
PRC - C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe (Cisco Systems, Inc.)
PRC - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
PRC - C:\WINDOWS\system32\wbem\unsecapp.exe (Microsoft Corporation)
PRC - C:\WINDOWS\system32\wbem\wmiprvse.exe (Microsoft Corporation)
PRC - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
PRC - C:\WINDOWS\system32\igfxtray.exe (Intel Corporation)
PRC - C:\WINDOWS\system32\hkcmd.exe (Intel Corporation)
PRC - C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
PRC - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
PRC - C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe (Adobe Systems Incorporated)
PRC - C:\WINDOWS\system32\ICO.EXE (Primax Electronics Ltd.)
PRC - C:\Program Files\Pure Networks\Network Magic\nmapp.exe (Pure Networks, Inc.)
PRC - C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe (Cisco Systems, Inc.)
PRC - C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe (Lavasoft)
PRC - C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
PRC - C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)
PRC - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
PRC - C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
PRC - C:\Program Files\Windows Media Player\WMPNSCFG.exe (Microsoft Corporation)
PRC - C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
PRC - C:\Program Files\iPod\bin\iPodService.exe (Apple Inc.)
PRC - C:\Program Files\Windows Desktop Search\WindowsSearch.exe (Microsoft Corporation)
PRC - C:\Program Files\SpywareGuard\sgmain.exe ()
PRC - C:\Program Files\SpywareGuard\sgbhp.exe ()
PRC - C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
PRC - C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
PRC - C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
PRC - C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
PRC - C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE (Microsoft Corporation)
PRC - C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE (Microsoft Corporation)
PRC - C:\Documents and Settings\Brigitte Mousseau\Desktop\OTListIt2.exe (OldTimer Tools)

========== Win32 Services (SafeList) ==========

SRV - (Apple Mobile Device [Auto | Running]) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc.)
SRV - (aspnet_state [On_Demand | Stopped]) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (Microsoft Corporation)
SRV - (aswUpdSv [Auto | Running]) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
SRV - (avast! Antivirus [Auto | Running]) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
SRV - (avast! Mail Scanner [On_Demand | Running]) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
SRV - (avast! Web Scanner [On_Demand | Running]) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
SRV - (Bonjour Service [Auto | Running]) -- C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.)
SRV - (clr_optimization_v2.0.50727_32 [On_Demand | Stopped]) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (FontCache3.0.0.0 [On_Demand | Stopped]) -- c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation)
SRV - (getPlus® Helper [On_Demand | Stopped]) -- C:\Program Files\NOS\bin\getPlus_HelperSvc.exe (NOS Microsystems Ltd.)
SRV - (GoogleDesktopManager-022208-143751 [Disabled | Stopped]) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
SRV - (gupdate1c942cb99999b29 [Auto | Stopped]) -- C:\Program Files\Google\Update\GoogleUpdate.exe (Google Inc.)
SRV - (gusvc [Auto | Stopped]) -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (Google)
SRV - (helpsvc [Auto | Running]) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll (Microsoft Corporation)
SRV - (idsvc [Unknown | Stopped]) -- c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe (Microsoft Corporation)
SRV - (IJPLMSVC [Auto | Running]) -- C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE ()
SRV - (iPod Service [On_Demand | Running]) -- C:\Program Files\iPod\bin\iPodService.exe (Apple Inc.)
SRV - (JavaQuickStarterService [Auto | Running]) -- C:\Program Files\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.)
SRV - (Lavasoft Ad-Aware Service [Auto | Running]) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe (Lavasoft)
SRV - (LexBceS [Auto | Running]) -- C:\WINDOWS\system32\LEXBCES.EXE (Lexmark International, Inc.)
SRV - (LightScribeService [Auto | Running]) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe ()
SRV - (LMIMaint [Auto | Running]) -- C:\Program Files\LogMeIn\x86\RaMaint.exe (LogMeIn, Inc.)
SRV - (LogMeIn [Auto | Running]) -- C:\Program Files\LogMeIn\x86\LogMeIn.exe (LogMeIn, Inc.)
SRV - (NetTcpPortSharing [Disabled | Stopped]) -- c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe (Microsoft Corporation)
SRV - (NMIndexingService [Disabled | Stopped]) -- File not found
SRV - (nmraapache [On_Demand | Stopped]) -- C:\Program Files\Pure Networks\Network Magic\WebServer\bin\nmraapache.exe (Pure Networks, Inc.)
SRV - (nmservice [Auto | Running]) -- C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe (Cisco Systems, Inc.)
SRV - (ose [On_Demand | Stopped]) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (Symantec Core LC [Auto | Running]) -- C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe (Symantec Corporation)
SRV - (usnjsvc [On_Demand | Stopped]) -- C:\Program Files\Windows Live\Messenger\usnsvc.exe (Microsoft Corporation)
SRV - (WLSetupSvc [On_Demand | Stopped]) -- C:\Program Files\Windows Live\installer\WLSetupSvc.exe (Microsoft Corporation)
SRV - (WMP54Gv4SVC [Auto | Running]) -- File not found
SRV - (WMPNetworkSvc [Auto | Running]) -- C:\Program Files\Windows Media Player\WMPNetwk.exe (Microsoft Corporation)

========== Driver Services (SafeList) ==========

DRV - (Aavmker4 [System | Running]) -- C:\WINDOWS\System32\drivers\aavmker4.sys (ALWIL Software)
DRV - (AegisP [Auto | Running]) -- C:\WINDOWS\system32\DRIVERS\AegisP.sys (Meetinghouse Data Communications)
DRV - (ALCXWDM [On_Demand | Running]) -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS (Realtek Semiconductor Corp.)
DRV - (aswFsBlk [Auto | Running]) -- C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys (ALWIL Software)
DRV - (aswMon2 [Auto | Running]) -- C:\WINDOWS\System32\drivers\aswmon2.sys (ALWIL Software)
DRV - (aswRdr [On_Demand | Running]) -- C:\WINDOWS\System32\drivers\aswRdr.sys (ALWIL Software)
DRV - (aswSP [System | Running]) -- C:\WINDOWS\System32\drivers\aswSP.sys (ALWIL Software)
DRV - (aswTdi [System | Running]) -- C:\WINDOWS\System32\drivers\aswTdi.sys (ALWIL Software)
DRV - (BCM42RLY [On_Demand | Stopped]) -- C:\WINDOWS\System32\BCM42RLY.SYS (Broadcom Corporation)
DRV - (f5ipfw [On_Demand | Stopped]) -- C:\WINDOWS\system32\drivers\urfltw2k.sys (F5 Networks)
DRV - (gameenum [On_Demand | Stopped]) -- C:\WINDOWS\system32\DRIVERS\gameenum.sys (Microsoft Corporation)
DRV - (GEARAspiWDM [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys (GEAR Software Inc.)
DRV - (HSFHWBS2 [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys (Conexant Systems, Inc.)
DRV - (HSF_DP [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\HSF_DP.sys (Conexant Systems, Inc.)
DRV - (ialm [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\ialmnt5.sys (Intel Corporation)
DRV - (Lbd [Boot | Running]) -- C:\WINDOWS\system32\DRIVERS\Lbd.sys (Lavasoft AB)
DRV - (LMIInfo [Auto | Running]) -- C:\Program Files\LogMeIn\x86\RaInfo.sys (LogMeIn, Inc.)
DRV - (lmimirr [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\lmimirr.sys (LogMeIn, Inc.)
DRV - (LMIRfsClientNP [Disabled | Stopped]) -- C:\WINDOWS\System32\LMIRfsClientNP.dll (LogMeIn, Inc.)
DRV - (LMIRfsDriver [Auto | Running]) -- C:\WINDOWS\system32\drivers\LMIRfsDriver.sys (LogMeIn, Inc.)
DRV - (mdmxsdk [Auto | Running]) -- C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys (Conexant)
DRV - (MODEMCSA [On_Demand | Running]) -- C:\WINDOWS\system32\drivers\MODEMCSA.sys (Microsoft Corporation)
DRV - (ms_mpu401 [On_Demand | Stopped]) -- C:\WINDOWS\system32\drivers\msmpu401.sys (Microsoft Corporation)
DRV - (pelmouse [On_Demand | Stopped]) -- C:\WINDOWS\system32\DRIVERS\pelmouse.sys (Primax Electronics Ltd.)
DRV - (pelusblf [On_Demand | Stopped]) -- C:\WINDOWS\system32\DRIVERS\pelusblf.sys (Primax Electronics Ltd.)
DRV - (pnarp [Auto | Running]) -- C:\WINDOWS\system32\DRIVERS\pnarp.sys (Pure Networks, Inc.)
DRV - (Ptilink [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\ptilink.sys (Parallel Technologies, Inc.)
DRV - (purendis [Auto | Running]) -- C:\WINDOWS\system32\DRIVERS\purendis.sys (Pure Networks, Inc.)
DRV - (PxHelp20 [Boot | Running]) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys (Sonic Solutions)
DRV - (ROOTMODEM [On_Demand | Running]) -- C:\WINDOWS\System32\Drivers\RootMdm.sys (Microsoft Corporation)
DRV - (RT61 [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\RT61.sys (Ralink Technology Inc.)
DRV - (RTL8023 [On_Demand | Stopped]) -- C:\WINDOWS\system32\DRIVERS\Rtlnic51.sys (Realtek Semiconductor Corporation )
DRV - (RTL8023xp [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys (Realtek Semiconductor Corporation )
DRV - (rtl8139 [On_Demand | Stopped]) -- C:\WINDOWS\system32\DRIVERS\RTL8139.SYS (Realtek Semiconductor Corporation)
DRV - (Secdrv [On_Demand | Stopped]) -- C:\WINDOWS\system32\DRIVERS\secdrv.sys (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
DRV - (symlcbrd [Auto | Running]) -- C:\WINDOWS\system32\drivers\symlcbrd.sys (Symantec Corporation)
DRV - (urvpndrv [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\urvpndrv.sys (F5 Networks)
DRV - (USBAAPL [On_Demand | Stopped]) -- C:\WINDOWS\System32\Drivers\usbaapl.sys (Apple, Inc.)
DRV - (usbser [On_Demand | Stopped]) -- C:\WINDOWS\system32\DRIVERS\usbser.sys (Microsoft Corporation)
DRV - (winachsf [On_Demand | Running]) -- C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys (Conexant Systems, Inc.)
DRV - (GTNDIS5 [On_Demand | Running]) -- C:\WINDOWS\system32\GTNDIS5.SYS (Printing Communications Assoc., Inc. (PCAUSA))

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant =

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://sympatico.msn...aspx?lang=en-ca
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.live.com/ [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.co...m...tf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.live.com/ [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://sympatico.msn...aspx?lang=en-ca
IE - URLSearchHook: - Reg Error: Key error. File not found
IE - URLSearchHook: {5ba73b24-4614-4d17-b58e-0d9d95847e14} - C:\Program Files\AIR MILES TOOLBAR\Helper.dll ()
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

FF - HKLM\software\mozilla\Mozilla Firefox 3.0.9\extensions\\Components: C:\PROGRAM FILES\MOZILLA FIREFOX\COMPONENTS [2009/04/26 21:05:52 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.9\extensions\\Plugins: C:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS [2009/04/26 21:05:30 | 00,000,000 | ---D | M]

[2009/04/26 21:09:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Brigitte Mousseau\Application Data\mozilla\Extensions
[2009/04/26 21:09:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Brigitte Mousseau\Application Data\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009/04/26 21:05:31 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2007/05/23 17:11:54 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2009/04/26 21:05:31 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2007/08/09 18:17:38 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA}
[2009/04/09 10:12:59 | 00,023,032 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll
[2009/04/09 10:13:00 | 00,134,648 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll
[2009/04/09 01:51:14 | 00,001,394 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom.xml
[2009/04/09 01:51:14 | 00,002,193 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\answers.xml
[2009/04/09 01:51:14 | 00,001,534 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml
[2009/04/09 01:51:14 | 00,002,343 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay.xml
[2009/04/09 01:51:14 | 00,001,706 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml
[2009/04/09 01:51:14 | 00,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia.xml
[2009/04/09 01:51:14 | 00,000,792 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo.xml

O1 HOSTS File: (307331 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.123topsearch.com
O1 - Hosts: 127.0.0.1 123topsearch.com
O1 - Hosts: 127.0.0.1 www.132.com
O1 - Hosts: 127.0.0.1 132.com
O1 - Hosts: 127.0.0.1 www.136136.net
O1 - Hosts: 127.0.0.1 136136.net
O1 - Hosts: 127.0.0.1 www.163ns.com
O1 - Hosts: 127.0.0.1 163ns.com
O1 - Hosts: 10567 more lines...
O2 - BHO: (Freecause Toolbar BHO) - {169A78DB-CFC2-4DA4-A9BD-A67B28D41FA7} - C:\Program Files\AIR MILES TOOLBAR\Toolbar.dll ()
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (AskBar BHO) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar2.dll (Ask.com)
O2 - BHO: (SpywareGuardDLBLOCK.CBrowserHelper) - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dll ()
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - Reg Error: Key error. File not found
O2 - BHO: (Windows Live Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll (Google Inc.)
O2 - BHO: (Windows Live Toolbar Helper) - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O2 - BHO: (Google Dictionary Compression sdch) - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll (Google Inc.)
O2 - BHO: (MSN Toolbar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN\Toolbar\3.0.1203.0\msneshellx.dll (Microsoft Corp.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Google Gears Helper) - {E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.16.0\gears.dll (Google Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (MSN Toolbar) - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - C:\Program Files\MSN\Toolbar\3.0.1203.0\msneshellx.dll (Microsoft Corp.)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar2.dll (Ask.com)
O3 - HKLM\..\Toolbar: (AIR MILES TOOLBAR) - {789D9334-A44A-486E-8234-313A78E66E61} - C:\Program Files\AIR MILES TOOLBAR\Toolbar.dll ()
O3 - HKLM\..\Toolbar: (Windows Live Toolbar) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (no name) - SITEguard - Reg Error: Key error. File not found
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {C4069E3A-68F1-403E-B40E-20066696354B} - Reg Error: Key error. File not found
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - Reg Error: Key error. File not found
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {789D9334-A44A-486E-8234-313A78E66E61} - C:\Program Files\AIR MILES TOOLBAR\Toolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - Reg Error: Key error. File not found
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {C4069E3A-68F1-403E-B40E-20066696354B} - Reg Error: Key error. File not found
O4 - HKLM..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe" (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe (Lavasoft)
O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe (Apple Inc.)
O4 - HKLM..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon (CANON INC.)
O4 - HKLM..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon (CANON INC.)
O4 - HKLM..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup (Google)
O4 - HKLM..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe (Intel Corporation)
O4 - HKLM..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe (Intel Corporation)
O4 - HKLM..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" (Apple Inc.)
O4 - HKLM..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe" (LogMeIn, Inc.)
O4 - HKLM..\Run: [LXSUPMON] C:\WINDOWS\system32\LXSUPMON.EXE RUN (Lexmark International Inc.)
O4 - HKLM..\Run: [Mouse Suite 98 Daemon] ICO.EXE (Primax Electronics Ltd.)
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [nmapp] "C:\Program Files\Pure Networks\Network Magic\nmapp.exe" -autorun -nosplash (Pure Networks, Inc.)
O4 - HKLM..\Run: [nmctxth] "C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe" (Cisco Systems, Inc.)
O4 - HKLM..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime (Apple Inc.)
O4 - HKLM..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE ()
O4 - HKLM..\Run: [SoundMan] SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" (Sun Microsystems, Inc.)
O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" File not found
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4 - HKCU..\Run: [TEAM DASH] C:\DOCUME~1\BRIGIT~1\APPLIC~1\CHINDA~1\itchbows.exe File not found
O4 - HKCU..\Run: [Uniblue RegistryBooster 2009] C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe /S File not found
O4 - HKCU..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe (Microsoft Corporation)
O4 - HKCU..\RunOnce: [Shockwave Updater] C:\WINDOWS\system32\Adobe\SHOCKW~1\SWHELP~2.EXE -Update -1103470 -"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; GTB5; .NET CLR 2.0.50727; .NET CLR 1.1.4322; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)" -"http://www.freeonlin...reet-sesh.html" (Adobe Systems, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Snagit 9.lnk = C:\Program Files\TechSmith\Snagit 9\Snagit32.exe (TechSmith Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\Brigitte Mousseau\Start Menu\Programs\Startup\ERUNT AutoBackup.lnk = C:\Program Files\ERUNT\AUTOBACK.EXE ()
O4 - Startup: C:\Documents and Settings\Brigitte Mousseau\Start Menu\Programs\Startup\Picaboo.lnk = C:\Program Files\Picaboo\Picaboo\PicabooMain.exe (Picaboo)
O4 - Startup: C:\Documents and Settings\Brigitte Mousseau\Start Menu\Programs\Startup\SpywareGuard.lnk = C:\Program Files\SpywareGuard\sgmain.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\control panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSimpleStartMenu = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoComputersNearMe = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\run: NoActiveDesktopChanges = [binary data]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\run: NoActiveDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\run: NoSaveSettings = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\run: ClassicShell = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext =
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\control panel present
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\restrictions present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: disableregistrytools = 0
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm (Microsoft Corporation)
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.liv...m/quickadd.aspx File not found
O9 - Extra 'Tools' menuitem : &Gears Settings - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Program Files\Google\Google Gears\Internet Explorer\0.5.16.0\gears.dll (Google Inc.)
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O9 - Extra 'Tools' menuitem : @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe (Microsoft Corporation)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [mdnsNSP] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKLM\..Trusted Domains: 48 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKCU\..Trusted Domains: 346 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {02A2D714-433E-46E4-B217-7C3B3FAF8EAE} http://www.worldwinn...rabblecubes.cab (ScrabbleCubes Control)
O16 - DPF: {038E2507-7A48-41E2-94AD-7F23D199AF4E} http://www.worldwinn...ems/zengems.cab (ZenGems Control)
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.micr.../OGAControl.cab (Office Genuine Advantage Validation Tool)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft....k/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {18C3FD15-74F6-4280-9C98-3590C966B7B8} http://www.worldwinn...am/skillgam.cab (SkillGam Control)
O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} http://downloads.ewi...oOnlineScan.cab (ewidoOnlineScan Control)
O16 - DPF: {1A1F56AA-3401-46F9-B277-D57F3421F821} http://www.worldwinn...GamesLoader.cab (FunGamesLoader Object)
O16 - DPF: {1D082E71-DF20-4AAF-863B-596428C49874} http://www.worldwinn...0/tpir/tpir.cab (TPIR Control)
O16 - DPF: {2BCDB465-81F9-41CB-832C-8037A4064446} https://remote.tadh....,2007,1001,2147 (F5 Networks VPN Manager)
O16 - DPF: {2C153C75-8476-434B-B3C3-57B63A3D1939} http://www.worldwinn...ut/brickout.cab (Brickout Control)
O16 - DPF: {3107C2A8-9F0B-4404-A58B-21BD85268FBC} http://www.pogo.com/...erInstaller.CAB (PogoWebLauncher Control)
O16 - DPF: {34F12AFD-E9B5-492A-85D2-40FA4535BE83} http://www.symantec....46/nprdtinf.cab (AxProdInfoCtl Class)
O16 - DPF: {41D1977F-4161-4720-800F-EA4903983A38} http://www.worldwinn...gsaw/jigsaw.cab (Jigsaw Genius Control)
O16 - DPF: {42FDC231-A411-45F8-B8B6-3B5026111DA8} http://www.worldwinn...litairerush.cab (SolitaireRush Control)
O16 - DPF: {45B69029-F3AB-4204-92DE-D5140C3E8E74} C:\DOCUME~1\BRIGIT~1\LOCALS~1\Temp\IXP000.TMP\InstallerControl.cab (F5 Networks Auto Update)
O16 - DPF: {58FC4C77-71C2-4972-A8CD-78691AD85158} http://www.worldwinn...jattack/bja.cab (BJA Control)
O16 - DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} http://catalog.updat...b?1223604690703 (MUCatalogWebControl Class)
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} http://cdn.scan.onec...lscbase8300.cab (Windows Live Safety Center Base Module)
O16 - DPF: {615F158E-D5CA-422F-A8E7-F6A5EED7063B} http://www.worldwinn...d/bejeweled.cab (Bejeweled Control)
O16 - DPF: {61900274-3323-4446-BDCD-91548D32AF1B} http://www.worldwinn...ersolitaire.cab (SpiderSolitaire Control)
O16 - DPF: {62969CF2-0F7A-433B-A221-FD8818C06C2F} http://www.worldwinn...x/blockwerx.cab (Blockwerx Control)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.micros...b?1173661450130 (WUWebControl Class)
O16 - DPF: {6C275925-A1ED-4DD2-9CEE-9823F5FDAA10} https://remote.tadh....,2007,1001,2136 (F5 Networks SSLTunnel)
O16 - DPF: {6C6FE41A-0DA6-42A1-9AD8-792026B2B2A7} http://www.worldwinn...ll/freecell.cab (FreeCell Control)
O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} http://zone.msn.com/...mjolauncher.cab (MJLauncherCtrl Class)
O16 - DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} http://www.worldwinn...ed/wwlaunch.cab (Wwlaunch Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {8FA2192F-B95D-40E3-898F-8D7ABB8E00D0} http://download-game...mesLauncher.cab (SpinTop Games Launcher)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...t/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {94299420-321F-4FF9-A247-62A23EBB640B} http://www.worldwinn...jo/wordmojo.cab (WordMojo Control)
O16 - DPF: {97438FE9-D361-4279-BA82-98CC0877A717} http://www.worldwinn...cubis/cubis.cab (Cubis Control)
O16 - DPF: {A52FBD2B-7AB3-4F6B-90E3-91C772C5D00F} http://www.worldwinn...v57/wof/wof.cab (WoF Control)
O16 - DPF: {A5A76EA0-7B92-4707-9DBF-6F6FE56A6800} http://scan.networkm...-ship-WD.V1.cab (Pure Networks Security Scan)
O16 - DPF: {A91FB93D-7561-4524-8484-5C27C8FA8D42} http://www.worldwinn...luxor/luxor.cab (WwLuxor Control)
O16 - DPF: {AC2881FD-5760-46DB-83AE-20A5C6432A7E} http://www.worldwinn...apit/swapit.cab (SwapIt Control)
O16 - DPF: {B06CE1BC-5D9D-4676-BD28-1752DBF394E0} http://www.worldwinn...man/hangman.cab (Hangman Control)
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} http://cdn2.zone.msn...ro.cab56649.cab (MSN Games - Installer)
O16 - DPF: {BA94245D-2AA0-4953-9D9F-B0EE4CC02C43} http://www.worldwinn...ty/tilecity.cab (Tilecity Control)
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} http://www.gamehouse...zylomplayer.cab (Zylom Games Player)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zon...nt.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {C5326A4D-E9AA-40AD-A09A-E74304D86B47} http://www.worldwinn...h/dinerdash.cab (DinerDash Control)
O16 - DPF: {C82BB209-F528-46F9-96D5-69DEF7260916} http://www.worldwinn...i/mysterypi.cab (MysteryPI Control)
O16 - DPF: {C93C1C34-CEA9-49B1-9046-040F59E0E0D8} http://www.worldwinn...paint/paint.cab (Paint Control)
O16 - DPF: {CAFEEFAC-0014-0002-0017-ABCDEFFEDCBA} (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_13)
O16 - DPF: {CC85ACDF-B277-486F-8C70-2C9B2ED2A4E7} https://remote.tadh....,2007,1001,2141 (F5 Networks SuperHost Class)
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} http://wwwimages.ado...obat/nos/gp.cab (get_atlcom Class)
O16 - DPF: {CF969D51-F764-4FBF-9E90-475248601C8A} http://www.worldwinn.../familyfeud.cab (FamilyFeud Control)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macr...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E0FF21FA-B857-45C5-8621-F120A0C17FF2} https://remote.tadh....,2007,1001,2140 (F5 Networks Host Control)
O16 - DPF: {E12EB891-D000-421B-A8ED-EDE1BDCA14A0} http://www.worldwinn...sol/golfsol.cab (GolfSol Control)
O16 - DPF: {E70E3E64-2793-4AEF-8CC8-F1606BE563B0} http://www.worldwinn...es/wwspades.cab (WWSpades Control)
O16 - DPF: {F137B9BA-89EA-4B04-9C67-2074A9DF61FD} http://walmart.pnime...upv2.0.0.10.cab? (Photo Upload Plugin Class)
O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} https://secure.logme...ivex/RACtrl.cab (Performance Viewer Activex Control)
O16 - DPF: CabBuilder http://kiw.imgag.com...llerControl.cab (Reg Error: Key error.)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.8.5.1302.1018.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Program Files\Common Files\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\pure-go {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files\Common Files\Pure Networks Shared\Platform\puresp4.dll (Cisco Systems, Inc.)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter: - text/xml - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL) - C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxsrvc.dll - C:\WINDOWS\system32\igfxsrvc.dll (Intel Corporation)
O20 - Winlogon\Notify\LMIinit: DllName - LMIinit.dll - C:\WINDOWS\system32\LMIinit.dll (LogMeIn, Inc.)
O24 - Desktop Components:0 (My Current Home Page) - About:Home
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - Reg Error: Key error. File not found
O28 - HKLM ShellExecuteHooks: {81559C35-8464-49F7-BB0E-07A383BEF910} - C:\Program Files\SpywareGuard\spywareguard.dll ()
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/05/18 22:35:45 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\D\Shell - "" = AutoRun
O33 - MountPoints2\D\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\D\Shell\AutoRun\command - "" = D:\LaunchU3.exe -- File not found
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:\WINDOWS\System32\autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found
O34 - HKLM BootExecute: (lsdelete) - C:\WINDOWS\System32\lsdelete.exe ()

========== Files/Folders - Created Within 30 Days ==========

[126 C:\WINDOWS\System32\*.tmp files]
[1 C:\WINDOWS\*.tmp files]
[2009/05/02 23:22:27 | 52,774,9120 | -HS- | C] () -- C:\hiberfil.sys
[2009/04/30 22:46:25 | 00,504,320 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Brigitte Mousseau\Desktop\OTListIt2.exe
[2009/04/29 21:18:08 | 00,530,106 | ---- | C] () -- C:\Documents and Settings\Brigitte Mousseau\Desktop\LopSD.exe
[2009/04/29 21:16:49 | 00,000,000 | ---D | C] -- C:\Lop SD
[2009/04/29 19:40:58 | 00,000,000 | ---D | C] -- C:\Rooter$
[2009/04/29 19:40:30 | 00,267,612 | ---- | C] () -- C:\Documents and Settings\Brigitte Mousseau\Desktop\Rooter.exe
[2009/04/29 05:37:50 | 00,001,709 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\avast! Antivirus.lnk
[2009/04/29 05:37:49 | 00,051,376 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2009/04/29 05:37:49 | 00,023,152 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2009/04/29 05:37:48 | 00,026,944 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2009/04/29 05:37:44 | 00,097,480 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\AvastSS.scr
[2009/04/29 05:37:38 | 00,020,560 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2009/04/29 05:37:37 | 00,114,768 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2009/04/29 05:37:37 | 00,094,032 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2009/04/29 05:37:37 | 00,093,296 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2009/04/29 05:37:14 | 01,256,296 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe
[2009/04/29 05:37:14 | 00,380,928 | ---- | C] () -- C:\WINDOWS\System32\actskin4.ocx
[2009/04/28 21:02:48 | 00,021,504 | ---- | C] (Doug Knox) -- C:\Documents and Settings\Brigitte Mousseau\Desktop\SysRestorePoint.exe
[2009/04/27 16:39:30 | 00,025,600 | ---- | C] () -- C:\Documents and Settings\Brigitte Mousseau\My Documents\The Gold Dragon.doc
[2009/04/26 21:06:14 | 00,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2009/04/26 18:56:45 | 00,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2009/04/26 18:48:18 | 00,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2009/04/26 18:44:27 | 00,000,000 | -H-D | C] -- C:\WINDOWS\msdownld.tmp
[2009/04/26 18:36:14 | 00,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iecompat.dll
[2009/04/26 17:28:35 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\CanonIJEGV
[2009/04/26 17:27:20 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\CanonIJEPPEX
[2009/04/26 17:19:00 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\CanonIJ
[2009/04/26 17:17:54 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\CanonIJScan
[2009/04/26 17:17:44 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Brigitte Mousseau\Application Data\Canon
[2009/04/24 07:30:20 | 00,043,008 | ---- | C] () -- C:\Documents and Settings\Brigitte Mousseau\My Documents\Understanding Written Material.doc
[2009/04/24 07:26:09 | 00,037,376 | ---- | C] () -- C:\Documents and Settings\Brigitte Mousseau\My Documents\Written Communication Proficiency Test.doc
[2009/04/23 00:12:19 | 00,022,059 | ---- | C] () -- C:\Documents and Settings\Brigitte Mousseau\Desktop\MNR_CV.wpd
[2009/04/21 18:50:35 | 00,000,462 | ---- | C] () -- C:\WINDOWS\tasks\RegCure Program Check.job
[2009/04/21 18:50:31 | 00,000,396 | ---- | C] () -- C:\WINDOWS\tasks\RegCure.job
[2009/04/21 18:50:06 | 00,000,000 | ---D | C] -- C:\Program Files\RegCure
[2009/04/20 22:04:33 | 16,409,960 | ---- | C] (Safer Networking Limited ) -- C:\Documents and Settings\Brigitte Mousseau\Desktop\setup-spybotsd162.exe
[2009/04/20 21:51:28 | 00,000,690 | ---- | C] () -- C:\Documents and Settings\Brigitte Mousseau\Desktop\SpywareBlaster.lnk
[2009/04/18 18:11:05 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\CanonIJSolutionMenu
[2009/04/18 18:01:19 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\CanonIJMyPrinter
[2009/04/18 18:01:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\CanonIJPLM
[2009/04/18 17:55:00 | 00,013,568 | ---- | C] () -- C:\WINDOWS\System32\CNC1736D.TBL
[2009/04/18 17:54:51 | 00,032,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbccgp.sys
[2009/04/18 17:54:51 | 00,032,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbccgp.sys
[2009/04/18 17:53:07 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\CANON
[2009/04/18 17:52:51 | 00,001,680 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Canon Solution Menu.lnk
[2009/04/18 17:52:36 | 00,001,734 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Easy-PhotoPrint EX.lnk
[2009/04/18 17:51:08 | 00,001,736 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Canon MP Navigator EX 2.1.lnk
[2009/04/18 17:50:35 | 00,001,652 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\My Printer.lnk
[2009/04/18 17:50:11 | 00,001,967 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Canon MX320 series On-screen Manual.lnk
[2009/04/18 17:47:57 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\CanonBJ
[2009/04/18 17:47:09 | 00,000,000 | -H-D | C] -- C:\WINDOWS\System32\CanonIJ Uninstaller Information
[2009/04/18 17:46:45 | 00,000,000 | -H-D | C] -- C:\Program Files\CanonBJ
[2009/04/18 17:44:35 | 00,000,000 | ---D | C] -- C:\Program Files\Canon
[2009/04/17 15:32:22 | 00,000,000 | ---D | C] -- C:\Program Files\AIR MILES TOOLBAR
[2009/04/17 09:09:54 | 00,000,868 | ---- | C] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2009/04/15 09:06:47 | 00,401,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcss.dll
[2009/04/15 09:06:47 | 00,284,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pdh.dll
[2009/04/15 09:06:47 | 00,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\services.exe
[2009/04/15 09:06:46 | 00,473,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fastprox.dll
[2009/04/15 09:06:46 | 00,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprvse.exe
[2009/04/15 09:06:45 | 00,729,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll
[2009/04/15 09:06:45 | 00,453,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprvsd.dll
[2009/04/15 09:06:44 | 00,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\advapi32.dll
[2009/04/15 09:06:43 | 00,714,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntdll.dll
[2009/04/15 09:01:55 | 00,002,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp4res.dll
[2009/04/15 09:01:54 | 01,203,922 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sysmain.sdb
[2009/04/15 09:01:53 | 00,215,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wordpad.exe
[2009/04/13 16:39:25 | 00,002,137 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2009/04/13 16:35:15 | 00,000,000 | ---D | C] -- C:\Program Files\iTunes
[2009/04/13 16:35:15 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[2009/04/13 16:24:40 | 00,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2009/04/13 16:03:40 | 00,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2009/03/15 16:24:22 | 00,000,031 | ---- | C] () -- C:\WINDOWS\System32\Days5.ini
[2009/02/07 00:31:50 | 00,223,232 | ---- | C] () -- C:\WINDOWS\System32\sqlite3.dll
[2008/12/20 12:26:54 | 00,094,208 | ---- | C] () -- C:\WINDOWS\System32\GTW32N50.dll
[2008/12/20 12:26:10 | 00,000,920 | ---- | C] () -- C:\WINDOWS\System32\WLAN.INI
[2008/11/07 22:07:01 | 00,339,968 | ---- | C] () -- C:\WINDOWS\System32\pythoncom25.dll
[2008/11/07 22:07:01 | 00,114,688 | ---- | C] () -- C:\WINDOWS\System32\pywintypes25.dll
[2008/05/28 17:36:06 | 00,000,022 | ---- | C] () -- C:\WINDOWS\iexplore.ini
[2008/03/31 10:52:49 | 00,000,025 | ---- | C] () -- C:\WINDOWS\webica.ini
[2008/02/28 15:30:08 | 00,008,784 | ---- | C] () -- C:\WINDOWS\System32\ractrlkeyhook.dll
[2007/09/27 11:51:02 | 00,020,698 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2007/09/27 11:48:48 | 00,030,628 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2007/09/27 11:48:28 | 00,031,698 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2007/05/23 21:52:56 | 00,077,824 | ---- | C] () -- C:\WINDOWS\System32\lxaxlcnp.dll
[2007/05/14 20:33:24 | 00,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2007/05/13 19:58:44 | 00,098,304 | ---- | C] () -- C:\WINDOWS\System32\resourceGeneric.dll
[2007/03/12 17:21:46 | 00,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2007/03/05 13:34:28 | 00,676,224 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.DLL
[2006/05/19 00:11:04 | 00,000,436 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2006/05/19 00:04:14 | 00,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2006/05/18 23:16:18 | 00,135,168 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2006/05/18 23:04:56 | 00,002,626 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2006/05/18 23:04:54 | 00,005,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2004/08/04 15:00:00 | 00,000,637 | ---- | C] () -- C:\WINDOWS\win.ini
[2004/08/04 15:00:00 | 00,000,227 | ---- | C] () -- C:\WINDOWS\system.ini
[2003/01/07 15:05:08 | 00,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI

========== Files - Modified Within 30 Days ==========

[126 C:\WINDOWS\System32\*.tmp files]
[1 C:\WINDOWS\*.tmp files]
[1 C:\Documents and Settings\Brigitte Mousseau\My Documents\*.tmp files]
[2009/05/03 00:00:12 | 00,000,256 | ---- | M] () -- C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job
[2009/05/02 23:49:27 | 00,000,446 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{44EA20FA-7DE0-4E79-A704-B5FE68457FC8}.job
[2009/05/02 23:22:55 | 00,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009/05/02 23:22:53 | 00,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachine.job
[2009/05/02 23:22:53 | 00,000,462 | ---- | M] () -- C:\WINDOWS\tasks\RegCure Program Check.job
[2009/05/02 23:22:45 | 00,000,868 | ---- | M] () -- C:\WINDOWS\tasks\Google Software Updater.job
[2009/05/02 23:22:41 | 00,000,062 | -HS- | M] () -- C:\Documents and Settings\Brigitte Mousseau\Local Settings\desktop.ini
[2009/05/02 23:22:33 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009/05/02 23:22:28 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009/05/02 23:22:27 | 52,774,9120 | -HS- | M] () -- C:\hiberfil.sys
[2009/05/01 16:23:13 | 00,530,106 | ---- | M] () -- C:\Documents and Settings\Brigitte Mousseau\Desktop\LopSD.exe
[2009/04/30 22:46:28 | 00,504,320 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Brigitte Mousseau\Desktop\OTListIt2.exe
[2009/04/30 04:41:06 | 00,000,396 | ---- | M] () -- C:\WINDOWS\tasks\RegCure.job
[2009/04/29 22:14:07 | 00,307,331 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2009/04/29 19:40:34 | 00,267,612 | ---- | M] () -- C:\Documents and Settings\Brigitte Mousseau\Desktop\Rooter.exe
[2009/04/29 15:21:50 | 00,002,626 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2009/04/29 05:37:50 | 00,001,709 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\avast! Antivirus.lnk
[2009/04/28 21:02:52 | 00,021,504 | ---- | M] (Doug Knox) -- C:\Documents and Settings\Brigitte Mousseau\Desktop\SysRestorePoint.exe
[2009/04/28 20:37:20 | 00,002,521 | ---- | M] () -- C:\Documents and Settings\Brigitte Mousseau\Desktop\Microsoft Office Outlook 2003.lnk
[2009/04/27 18:42:09 | 00,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2009/04/27 16:48:34 | 00,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2009/04/27 16:44:44 | 00,002,187 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Safari.lnk
[2009/04/27 16:39:30 | 00,025,600 | ---- | M] () -- C:\Documents and Settings\Brigitte Mousseau\My Documents\The Gold Dragon.doc
[2009/04/26 21:06:14 | 00,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2009/04/26 19:05:23 | 00,000,088 | -HS- | M] () -- C:\Documents and Settings\Brigitte Mousseau\My Documents\desktop.ini
[2009/04/26 18:51:43 | 00,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2009/04/24 07:30:20 | 00,043,008 | ---- | M] () -- C:\Documents and Settings\Brigitte Mousseau\My Documents\Understanding Written Material.doc
[2009/04/24 07:26:10 | 00,037,376 | ---- | M] () -- C:\Documents and Settings\Brigitte Mousseau\My Documents\Written Communication Proficiency Test.doc
[2009/04/23 00:12:35 | 00,022,059 | ---- | M] () -- C:\Documents and Settings\Brigitte Mousseau\Desktop\MNR_CV.wpd
[2009/04/22 23:21:42 | 00,000,604 | ---- | M] () -- C:\Documents and Settings\Brigitte Mousseau\My Documents\My Sharing Folders.lnk
[2009/04/21 16:03:44 | 00,015,688 | ---- | M] () -- C:\WINDOWS\System32\lsdelete.exe
[2009/04/21 16:02:59 | 00,064,160 | ---- | M] (Lavasoft AB) -- C:\WINDOWS\System32\drivers\Lbd.sys
[2009/04/21 15:26:00 | 00,306,678 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20090429-221407.backup
[2009/04/21 15:18:52 | 00,224,344 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20090421-152600.backup
[2009/04/21 15:18:33 | 00,224,344 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20090421-151852.backup
[2009/04/21 15:18:27 | 00,224,344 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.20090421-151833.backup
[2009/04/20 22:07:38 | 16,409,960 | ---- | M] (Safer Networking Limited ) -- C:\Documents and Settings\Brigitte Mousseau\Desktop\setup-spybotsd162.exe
[2009/04/20 21:51:28 | 00,000,690 | ---- | M] () -- C:\Documents and Settings\Brigitte Mousseau\Desktop\SpywareBlaster.lnk
[2009/04/18 17:52:51 | 00,001,680 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Canon Solution Menu.lnk
[2009/04/18 17:52:36 | 00,001,734 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Easy-PhotoPrint EX.lnk
[2009/04/18 17:51:08 | 00,001,736 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Canon MP Navigator EX 2.1.lnk
[2009/04/18 17:50:35 | 00,001,652 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\My Printer.lnk
[2009/04/18 17:50:10 | 00,001,967 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Canon MX320 series On-screen Manual.lnk
[2009/04/16 04:47:28 | 00,467,624 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2009/04/16 04:47:27 | 00,080,558 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2009/04/16 04:47:21 | 00,556,090 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2009/04/16 02:09:59 | 00,000,637 | ---- | M] () -- C:\WINDOWS\win.ini
[2009/04/14 17:30:01 | 00,002,137 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2009/04/06 15:32:54 | 00,038,496 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009/04/06 15:32:46 | 00,015,504 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009/04/06 10:57:24 | 24,921,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MRT.exe
[2009/04/03 06:55:47 | 00,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini

========== Alternate Data Streams ==========

@Alternate Data Stream - 88 bytes -> C:\Documents and Settings\Brigitte Mousseau\My Documents\pf-setup-en.exe:SummaryInformation
@Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D0851FBD
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4DBBB4EA
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:68E05C43
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5C321E34
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4EFDF5FB
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:268F887D
@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CFE0B346
@Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:9E22BBE8
@Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2
< End of report >

Do you think it could have something to do with the Explorer 8 version. It seems to have become worst since i upgrade to the new version?