OTListIt logfile created on: 5/18/2009 12:12:28 AM - Run 5 OTListIt2 by OldTimer - Version 2.0.15.7 Folder = C:\Documents and Settings\Navdeep Bains\Desktop\movies2 Windows 2000 Professional Edition Service Pack 4 (Version = 5.0.2195) - Type = NTWorkstation Internet Explorer (Version = 6.0.2800.1106) Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy 735.48 Mb Total Physical Memory | 448.39 Mb Available Physical Memory | 60.97% Memory free 1.10 Gb Paging File | 0.67 Gb Available in Paging File | 60.87% Paging File free Paging file location(s): C:\pagefile.sys 336 672 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINNT1 | %ProgramFiles% = C:\Program Files Drive C: | 38.28 Gb Total Space | 21.11 Gb Free Space | 55.15% Space Free | Partition Type: NTFS D: Drive not present or media not loaded E: Drive not present or media not loaded Drive F: | 74.53 Gb Total Space | 37.60 Gb Free Space | 50.44% Space Free | Partition Type: NTFS G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: BAINSUPSTAIRS Current User Name: Navdeep Bains Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Output = Minimal File Age = 30 Days Company Name Whitelist: On [color=orange]========== Processes (SafeList) ==========[/color] PRC - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software) PRC - C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software) PRC - C:\Program Files\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.) PRC - C:\WINNT1\system32\regsvc.exe (Microsoft Corporation) PRC - C:\WINNT1\system32\MSTask.exe (Microsoft Corporation) PRC - C:\WINNT1\System32\WBEM\WinMgmt.exe (Microsoft Corporation) PRC - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software) PRC - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software) PRC - C:\WINNT1\Explorer.EXE (Microsoft Corporation) PRC - C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe (Cyberlink Corp.) PRC - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google) PRC - C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.) PRC - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe (Adobe Systems Inc.) PRC - C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software) PRC - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google) PRC - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com) PRC - C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.) PRC - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.) PRC - C:\Documents and Settings\Navdeep Bains\Desktop\movies2\OTListIt2.exe (OldTimer Tools) [color=orange]========== Win32 Services (SafeList) ==========[/color] SRV - (ACS [Auto | Stopped]) -- C:\WINNT1\System32\ACS.PIF () SRV - (aspnet_state [On_Demand | Stopped]) -- C:\WINNT1\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (Microsoft Corporation) SRV - (aswUpdSv [Auto | Running]) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software) SRV - (avast! Antivirus [Auto | Running]) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software) SRV - (avast! Mail Scanner [On_Demand | Running]) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software) SRV - (avast! Web Scanner [On_Demand | Running]) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software) SRV - (clr_optimization_v2.0.50727_32 [On_Demand | Stopped]) -- C:\WINNT1\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation) SRV - (dmadmin [On_Demand | Stopped]) -- C:\WINNT1\System32\dmadmin.exe (VERITAS Software Corp.) SRV - (Fax [On_Demand | Stopped]) -- C:\WINNT1\system32\faxsvc.exe (Microsoft Corporation) SRV - (FLEXnet Licensing Service [On_Demand | Running]) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Macrovision Europe Ltd.) SRV - (GoogleDesktopManager-061008-081103 [On_Demand | Stopped]) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google) SRV - (iPod Service [On_Demand | Stopped]) -- File not found SRV - (JavaQuickStarterService [Auto | Running]) -- C:\Program Files\Java\jre6\bin\jqs.exe (Sun Microsystems, Inc.) SRV - (NBService [On_Demand | Stopped]) -- C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe (Nero AG) SRV - (NMIndexingService [On_Demand | Stopped]) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (Nero AG) SRV - (RemoteRegistry [Auto | Running]) -- C:\WINNT1\system32\regsvc.exe (Microsoft Corporation) SRV - (Schedule [Auto | Running]) -- C:\WINNT1\system32\MSTask.exe (Microsoft Corporation) SRV - (UtilMan [On_Demand | Stopped]) -- C:\WINNT1\System32\UtilMan.exe (Microsoft Corporation) SRV - (WinMgmt [Auto | Running]) -- C:\WINNT1\System32\WBEM\WinMgmt.exe (Microsoft Corporation) [color=orange]========== Driver Services (SafeList) ==========[/color] DRV - (Aavmker4 [System | Running]) -- C:\WINNT1\System32\drivers\aavmker4.sys (ALWIL Software) DRV - (An986n [On_Demand | Stopped]) -- C:\WINNT1\system32\DRIVERS\An986n.sys (ADMtek) DRV - (Aspi32 [System | Running]) -- C:\WINNT1\System32\drivers\aspi32.sys (Adaptec) DRV - (aswFsBlk [Auto | Running]) -- C:\WINNT1\system32\DRIVERS\aswFsBlk.sys (ALWIL Software) DRV - (aswMon [Auto | Running]) -- C:\WINNT1\System32\drivers\aswmon.sys (ALWIL Software) DRV - (aswRdr [On_Demand | Running]) -- C:\WINNT1\System32\drivers\aswRdr.sys (ALWIL Software) DRV - (aswSP [System | Running]) -- C:\WINNT1\System32\drivers\aswSP.sys (ALWIL Software) DRV - (aswTdi [System | Running]) -- C:\WINNT1\System32\drivers\aswTdi.sys (ALWIL Software) DRV - (Diskperf [Boot | Running]) -- C:\WINNT1\System32\drivers\diskperf.sys (Microsoft Corporation) DRV - (dmboot [Disabled | Stopped]) -- C:\WINNT1\System32\drivers\dmboot.sys (VERITAS Software Corp.) DRV - (dmio [Boot | Running]) -- C:\WINNT1\System32\DRIVERS\dmio.sys (VERITAS Software Corp.) DRV - (dmload [Boot | Running]) -- C:\WINNT1\System32\drivers\dmload.sys (VERITAS Software Corp.) DRV - (EFS [Disabled | Running]) -- C:\WINNT1\System32\drivers\efs.sys (Microsoft Corporation) DRV - (FETND5BV [On_Demand | Stopped]) -- C:\WINNT1\system32\DRIVERS\fetnd5bv.sys (VIA Technologies, Inc. ) DRV - (FETNDIS [On_Demand | Running]) -- C:\WINNT1\system32\DRIVERS\fetnd5b.sys (VIA Technologies, Inc. ) DRV - (gameenum [On_Demand | Running]) -- C:\WINNT1\System32\DRIVERS\gameenum.sys (Microsoft Corporation) DRV - (i740 [System | Stopped]) -- C:\WINNT1\System32\DRIVERS\i740nt5.sys (Intel Corporation) DRV - (MDC8021X [Auto | Running]) -- C:\WINNT1\system32\DRIVERS\mdc8021x.sys (Meetinghouse Data Communications) DRV - (MPE [On_Demand | Stopped]) -- C:\WINNT1\system32\DRIVERS\MPE.sys (Microsoft Corporation) DRV - (MREMP50 [On_Demand | Stopped]) -- C:\Program Files\Common Files\Motive\MREMP50.sys (Printing Communications Assoc., Inc. (PCAUSA)) DRV - (MRENDIS5 [On_Demand | Stopped]) -- C:\Program Files\Common Files\Motive\MRENDIS5.sys (Motive Communications, Inc.) DRV - (MRESP50 [On_Demand | Stopped]) -- C:\Program Files\Common Files\Motive\MRESP50.sys (Printing Communications Assoc., Inc. (PCAUSA)) DRV - (ms_mpu401 [On_Demand | Running]) -- C:\WINNT1\system32\drivers\msmpu401.sys (Microsoft Corporation) DRV - (NetDetect [On_Demand | Stopped]) -- C:\WINNT1\system32\drivers\netdtect.sys (Microsoft Corporation) DRV - (Parallel [On_Demand | Running]) -- C:\WINNT1\System32\DRIVERS\parallel.sys (Microsoft Corporation) DRV - (PRISM_USB [On_Demand | Stopped]) -- C:\WINNT1\system32\DRIVERS\PRISMUSB.sys (Intersil Americas Inc.) DRV - (Ptilink [On_Demand | Running]) -- C:\WINNT1\System32\DRIVERS\ptilink.sys (Parallel Technologies, Inc.) DRV - (PxHelp20 [Boot | Running]) -- C:\WINNT1\System32\Drivers\PxHelp20.sys (Sonic Solutions) DRV - (RCA [On_Demand | Stopped]) -- C:\WINNT1\system32\drivers\RCA.sys (Microsoft Corporation) DRV - (S3Psddr [On_Demand | Running]) -- C:\WINNT1\system32\DRIVERS\s3gnbm.sys (S3 Graphics, Inc.) DRV - (SASDIFSV [System | Running]) -- C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS (SUPERAdBlocker.com and SUPERAntiSpyware.com) DRV - (SASENUM [On_Demand | Running]) -- C:\Program Files\SUPERAntiSpyware\SASENUM.SYS ( SUPERAdBlocker.com and SUPERAntiSpyware.com) DRV - (SASKUTIL [System | Running]) -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com) DRV - (sglfb [System | Stopped]) -- C:\WINNT1\System32\drivers\sglfb.sys (SGI) DRV - (sptd [Boot | Running]) -- C:\WINNT1\System32\Drivers\sptd.sys () DRV - (tmcomm [Auto | Running]) -- C:\WINNT1\system32\drivers\tmcomm.sys (Trend Micro Inc.) DRV - (uhcd [On_Demand | Running]) -- C:\WINNT1\System32\DRIVERS\uhcd.sys (Microsoft Corporation) DRV - (usbhub20 [On_Demand | Running]) -- C:\WINNT1\System32\DRIVERS\usbhub20.sys (Microsoft Corporation) DRV - (viaagp [Boot | Running]) -- C:\WINNT1\System32\DRIVERS\viaagp1.sys (VIA Technologies, Inc.) DRV - (viaagp1 [Boot | Running]) -- C:\WINNT1\system32\DRIVERS\viaagp1.sys (VIA Technologies, Inc.) DRV - (viafilter [On_Demand | Stopped]) -- C:\WINNT1\System32\Drivers\viausb.sys (VIA Technologies, Inc.) DRV - (viaide [Boot | Running]) -- C:\WINNT1\system32\DRIVERS\viaide.sys (VIA Technologies, Inc.) DRV - (VIAPFD [System | Running]) -- C:\WINNT1\System32\Drivers\VIAPFD.SYS (VIA Technologies. Inc.) DRV - (VIAudio [On_Demand | Running]) -- C:\WINNT1\system32\drivers\viaudio.sys (VIA Technologies, Inc.) [color=orange]========== Standard Registry (SafeList) ==========[/color] [color=orange]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Page_Transitions = 1 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=orange]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultenginename: "Google" FF - prefs.js..browser.search.defaulturl: "http://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=" FF - prefs.js..browser.search.selectedEngine: "Google" FF - prefs.js..extensions.enabledItems: {3112ca9c-de6d-4884-a869-9855de68056c}:3.1.20081127W FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}:6.0.11 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}:6.0.02 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}:6.0.03 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}:6.0.05 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}:6.0.07 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.10 FF - HKLM\software\mozilla\Firefox\extensions\\jqs@sun.com: C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2008/12/18 22:50:27 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Components: C:\PROGRAM FILES\MOZILLA FIREFOX\COMPONENTS [2009/05/02 15:41:56 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.0.10\extensions\\Plugins: C:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS [2009/05/02 15:19:22 | 00,000,000 | ---D | M] [2009/02/09 22:08:17 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\mozilla\Extensions [2009/02/09 22:08:17 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} [2009/05/11 17:01:51 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\mozilla\Firefox\Profiles\ey0dzdwt.default\extensions [2008/12/11 11:36:58 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\mozilla\Firefox\Profiles\ey0dzdwt.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c} [2008/07/27 10:33:47 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\mozilla\Firefox\Profiles\ey0dzdwt.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2009/05/11 17:01:52 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions [2007/03/04 09:19:05 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c} [2009/05/01 06:49:59 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [2007/08/20 19:10:22 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} [2007/10/22 21:42:39 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} [2008/04/24 20:35:34 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} [2008/07/22 23:53:16 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} [2008/12/18 22:51:07 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} [2009/05/01 06:49:39 | 00,023,032 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll [2009/05/01 06:49:39 | 00,134,648 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll [2009/05/01 06:49:50 | 00,001,394 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom.xml [2009/05/01 06:49:50 | 00,002,193 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\answers.xml [2009/05/01 06:49:50 | 00,001,534 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml [2009/05/01 06:49:50 | 00,002,343 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay.xml [2009/05/01 06:49:50 | 00,001,706 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml [2009/05/01 06:49:50 | 00,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia.xml [2009/05/01 06:49:50 | 00,000,792 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo.xml O1 HOSTS File: (686 bytes) - C:\WINNT1\System32\drivers\etc\Hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.) O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O3 - HKLM\..\Toolbar: (&Radio) - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT1\system32\msdxm.ocx () O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O4 - HKLM..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe" (Adobe Systems Inc.) O4 - HKLM..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe (ALWIL Software) O4 - HKLM..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup (Google) O4 - HKLM..\Run: [RemoteControl] "C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe" (Cyberlink Corp.) O4 - HKLM..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" (Sun Microsystems, Inc.) O4 - HKLM..\Run: [Synchronization Manager] mobsync.exe /logon (Microsoft Corporation) O4 - HKCU..\Run: [PowerBar] "C:\Program Files\CyberLink DVD Solution\Multimedia Launcher\PowerBar.exe" /AtBootTime (Cyberlink, Corp.) O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.) O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com) O4 - HKCU..\RunOnce: [FlashPlayerUpdate] C:\WINNT1\system32\Macromed\Flash\FlashUtil10a.exe (Adobe Systems, Inc.) O4 - Startup: C:\Documents and Settings\All Users.WINNT1\Start Menu\Programs\Startup\Adobe Acrobat Speed Launcher.lnk = C:\WINNT1\Installer\{AC76BA86-1033-F400-7760-000000000003}\_SC_Acrobat.exe () O4 - Startup: C:\Documents and Settings\All Users.WINNT1\Start Menu\Programs\Startup\Adobe Acrobat Synchronizer.lnk = C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe () O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149 O8 - Extra context menu item: Append to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html (Adobe Systems Incorporated) O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html (Adobe Systems Incorporated) O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html (Adobe Systems Incorporated) O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html (Adobe Systems Incorporated) O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html (Adobe Systems Incorporated) O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html (Adobe Systems Incorporated) O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html (Adobe Systems Incorporated) O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html (Adobe Systems Incorporated) O9 - Extra 'Tools' menuitem : Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINNT1\bdoscandel.exe () O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [Tcpip] - C:\WINNT1\System32\rnr20.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\WINNT1\system32\msafd.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\WINNT1\system32\msafd.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\WINNT1\system32\msafd.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\WINNT1\system32\msafd.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\WINNT1\system32\msafd.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\WINNT1\system32\msafd.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\WINNT1\system32\msafd.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\WINNT1\system32\msafd.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\WINNT1\system32\msafd.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\WINNT1\system32\msafd.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\WINNT1\system32\msafd.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\WINNT1\system32\msafd.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\WINNT1\system32\msafd.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\WINNT1\system32\msafd.dll (Microsoft Corporation) O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\WINNT1\system32\msafd.dll (Microsoft Corporation) O15 - HKLM\..Trusted Domains: 48 domain(s) and sub-domain(s) not assigned to a zone. O15 - HKCU\..Trusted Domains: 55 domain(s) and sub-domain(s) not assigned to a zone. O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} http://software-dl.real.com/0285034df1d877c37214/netzip/RdxIE601.cab (Reg Error: Key error.) O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} http://www.eset.eu/buxus/docs/OnlineScanner.cab (OnlineScanner Control) O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/resources/scan8/oscan8.cab (BDSCANONLINE Control) O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1170701975774 (WUWebControl Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab (Java Plug-in 1.6.0_11) O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab (Java Plug-in 1.6.0_02) O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab (Java Plug-in 1.6.0_03) O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Java Plug-in 1.6.0_05) O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Java Plug-in 1.6.0_07) O16 - DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab (Java Plug-in 1.6.0_11) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab (Java Plug-in 1.6.0_11) O16 - DPF: {CC05BC12-2AA2-4AC7-AC81-0E40F83B1ADF} http://www.live365.com/players/play365.cab (Live365Player Class) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O16 - DPF: DirectAnimation Java Classes file://C:\WINNT1\Java\classes\dajava.cab (Reg Error: Key error.) O16 - DPF: Microsoft XML Parser for Java file://C:\WINNT1\Java\classes\xmldso.cab (Reg Error: Key error.) O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\intu-qt2008 {05E53CE9-66C8-4a9e-A99F-FDB7A8E7B596} - C:\Program Files\QuickTax 2008\ic2008pp.dll (Intuit Canada, a general partnership/une société en nom collectif.) O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation) O18 - Protocol\Handler\vnd.ms.radio {3DA2AA3B-3D96-11D2-9BD2-204C4F4F5020} - C:\WINNT1\system32\msdxm.ocx () O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL) - C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINNT1\Explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\!SASWinLogon: DllName - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll (SUPERAntiSpyware.com) O20 - Winlogon\Notify\wzcnotif: DllName - wzcdlg.dll - C:\WINNT1\system32\wzcdlg.dll (Microsoft Corporation) O21 - SSODL: Network.ConnectionTray - {7007ACCF-3202-11D1-AAD2-00805FC1270E} - C:\WINNT1\system32\NETSHELL.dll (Microsoft Corporation) O24 - Desktop Components:0 (My Current Home Page) - About:Home O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - Reg Error: Key error. File not found O31 - SafeBoot: AlternateShell - cmd.exe O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2007/01/16 22:05:02 | 00,000,000 | -H-- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck) - File not found O34 - HKLM BootExecute: (autochk) - C:\WINNT1\System32\autochk.exe (Microsoft Corporation) O34 - HKLM BootExecute: (*) - File not found [color=orange]========== Files/Folders - Created Within 30 Days ==========[/color] [1 C:\*.tmp files] [1 C:\WINNT1\System32\*.tmp files] [7 C:\WINNT1\*.tmp files] [2050/04/09 23:24:42 | 00,000,200 | ---- | C] () -- C:\WINNT1\SIMPLY.INI [2050/04/09 20:30:50 | 00,000,000 | ---D | C] -- C:\Program Files\Simply Accounting by Sage Setup Files [2050/04/09 19:30:30 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Navdeep Bains\My Documents\Reg backup [2050/04/09 19:13:53 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Navdeep Bains\Desktop\Help [2050/04/09 08:12:03 | 36,970,440 | ---- | C] () -- C:\Backup001.reg [2050/04/09 08:11:41 | 00,000,000 | ---D | C] -- C:\Reg Backup [2009/05/17 15:32:13 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_270.dat [2009/05/17 12:15:18 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_438.dat [2009/05/17 07:53:07 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_42c.dat [2009/05/17 01:52:43 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_118.dat [2009/05/15 20:18:48 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_45c.dat [2009/05/15 19:10:36 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_1a0.dat [2009/05/15 18:16:12 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_1fc.dat [2009/05/15 13:32:32 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_1d0.dat [2009/05/15 09:54:14 | 00,465,518 | -H-- | C] () -- C:\WINNT1\ShellIconCache [2009/05/15 09:40:05 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_274.dat [2009/05/15 09:38:39 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_478.dat [2009/05/15 09:28:21 | 00,000,000 | ---D | C] -- C:\WINNT1\ERUNT [2009/05/15 09:08:41 | 00,000,000 | ---D | C] -- C:\SDFix [2009/05/15 07:49:49 | 00,003,149 | ---- | C] () -- C:\Documents and Settings\Navdeep Bains\Local Settings\Temp11.html [2009/05/15 03:01:20 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_16c.dat [2009/05/15 02:56:09 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_1f8.dat [2009/05/15 02:55:00 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_1cc.dat [2009/05/15 00:26:32 | 00,305,152 | ---- | C] () -- C:\Documents and Settings\Navdeep Bains\My Documents\windiag.iso [2009/05/15 00:20:02 | 00,003,149 | ---- | C] () -- C:\Documents and Settings\Navdeep Bains\Local Settings\Temp19.html [2009/05/15 00:16:07 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_498.dat [2009/05/15 00:14:14 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_490.dat [2009/05/15 00:14:06 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_244.dat [2009/05/14 19:59:07 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_4c8.dat [2009/05/14 19:55:53 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_1c4.dat [2009/05/14 19:53:44 | 00,003,149 | ---- | C] () -- C:\Documents and Settings\Navdeep Bains\Local Settings\Temp51.html [2009/05/14 19:32:11 | 00,000,778 | ---- | C] () -- C:\Documents and Settings\Navdeep Bains\Local Settings\Temp1.html [2009/05/14 19:32:06 | 00,000,546 | ---- | C] () -- C:\Documents and Settings\Navdeep Bains\Desktop\WhoCrashed.lnk [2009/05/14 19:32:05 | 00,000,000 | ---D | C] -- C:\Program Files\WhoCrashed [2009/05/14 09:36:16 | 00,023,152 | ---- | C] (ALWIL Software) -- C:\WINNT1\System32\drivers\aswRdr.sys [2009/05/14 09:36:16 | 00,001,555 | ---- | C] () -- C:\Documents and Settings\All Users.WINNT1\Desktop\avast! Antivirus.lnk [2009/05/14 09:36:15 | 00,051,376 | ---- | C] (ALWIL Software) -- C:\WINNT1\System32\drivers\aswTdi.sys [2009/05/14 09:36:13 | 00,026,944 | ---- | C] (ALWIL Software) -- C:\WINNT1\System32\drivers\aavmker4.sys [2009/05/14 09:36:10 | 00,097,480 | ---- | C] (ALWIL Software) -- C:\WINNT1\System32\AvastSS.scr [2009/05/14 09:36:09 | 00,114,768 | ---- | C] (ALWIL Software) -- C:\WINNT1\System32\drivers\aswSP.sys [2009/05/14 09:36:09 | 00,094,032 | ---- | C] (ALWIL Software) -- C:\WINNT1\System32\drivers\aswmon2.sys [2009/05/14 09:36:09 | 00,093,296 | ---- | C] (ALWIL Software) -- C:\WINNT1\System32\drivers\aswmon.sys [2009/05/14 09:36:09 | 00,020,560 | ---- | C] (ALWIL Software) -- C:\WINNT1\System32\drivers\aswFsBlk.sys [2009/05/14 09:35:46 | 01,256,296 | ---- | C] (ALWIL Software) -- C:\WINNT1\System32\aswBoot.exe [2009/05/14 09:35:46 | 00,380,928 | ---- | C] () -- C:\WINNT1\System32\actskin4.ocx [2009/05/14 09:09:28 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_214.dat [2009/05/14 08:24:07 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_218.dat [2009/05/14 06:43:13 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_21c.dat [2009/05/14 06:32:05 | 00,000,804 | ---- | C] () -- C:\Documents and Settings\Navdeep Bains\Desktop\Spybot - Search & Destroy.lnk [2009/05/14 06:31:52 | 00,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy [2009/05/14 06:31:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINNT1\Application Data\Spybot - Search & Destroy [2009/05/13 10:50:21 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_1d4.dat [2009/05/13 10:48:00 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_54c.dat [2009/05/13 09:22:20 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_23c.dat [2009/05/13 09:18:03 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_240.dat [2009/05/13 08:48:22 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_264.dat [2009/05/13 08:24:00 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_434.dat [2009/05/13 08:23:45 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_234.dat [2009/05/13 07:58:29 | 00,000,000 | ---D | C] -- C:\Rooter$ [2009/05/13 07:56:13 | 00,000,000 | ---D | C] -- C:\WINNT1\ERDNT [2009/05/13 07:55:47 | 00,000,498 | ---- | C] () -- C:\Documents and Settings\Navdeep Bains\Desktop\NTREGOPT.lnk [2009/05/13 07:55:47 | 00,000,486 | ---- | C] () -- C:\Documents and Settings\Navdeep Bains\Desktop\ERUNT.lnk [2009/05/13 07:55:46 | 00,000,000 | ---D | C] -- C:\Program Files\ERUNT [2009/05/12 23:32:01 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_278.dat [2009/05/12 08:09:18 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_228.dat [2009/05/12 07:47:45 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_204.dat [2009/05/12 07:46:22 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Navdeep Bains\My Documents\Security [2009/05/12 07:43:26 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_4a0.dat [2009/05/12 07:36:10 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_404.dat [2009/05/12 07:31:58 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_1c8.dat [2009/05/12 07:06:19 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_27c.dat [2009/05/12 00:44:01 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_280.dat [2009/05/12 00:35:48 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_238.dat [2009/05/10 04:33:52 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_508.dat [2009/05/08 07:55:26 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_268.dat [2009/05/05 06:58:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Navdeep Bains\Desktop\Backup [2009/05/05 06:46:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Navdeep Bains\Desktop\Loader2 [2009/05/03 05:34:58 | 00,229,888 | ---- | C] (Seagate Software, Information Management Group, Inc.) -- C:\WINNT1\System32\CRPAIG32.DLL [2009/05/03 05:34:58 | 00,043,008 | ---- | C] () -- C:\WINNT1\System32\LTFIL60N.DLL [2009/05/03 05:34:58 | 00,000,000 | ---D | C] -- C:\WINNT1\Crystal [2009/05/03 05:34:57 | 00,017,920 | ---- | C] () -- C:\WINNT1\System32\IMPLODE.DLL [2009/05/03 05:34:56 | 05,797,888 | ---- | C] (Seagate Software, Inc.) -- C:\WINNT1\System32\CRPE32.DLL [2009/05/02 20:13:29 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_368.dat [2009/05/02 20:11:32 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Navdeep Bains\My Documents\Downloads2 [2009/05/02 16:48:28 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Navdeep Bains\My Documents\Downloads [2009/05/02 15:07:15 | 00,000,578 | ---- | C] () -- C:\Documents and Settings\Navdeep Bains\Desktop\SpywareBlaster.lnk [2009/05/02 15:07:12 | 01,071,088 | ---- | C] (Microsoft Corporation) -- C:\WINNT1\System32\MSCOMCTL.OCX [2009/05/02 15:07:12 | 00,118,784 | ---- | C] (Microsoft Corporation) -- C:\WINNT1\System32\MSSTDFMT.DLL [2009/05/02 15:07:09 | 00,000,000 | ---D | C] -- C:\Program Files\SpywareBlaster [2009/05/02 15:04:24 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINNT1\Application Data\SUPERAntiSpyware.com [2009/05/02 15:04:07 | 00,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware [2009/05/02 15:04:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Navdeep Bains\Application Data\SUPERAntiSpyware.com [2009/05/02 15:03:46 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard [2009/05/01 23:39:35 | 00,016,384 | ---- | C] () -- C:\WINNT1\System32\Perflib_Perfdata_26c.dat [2009/05/01 22:35:51 | 00,000,000 | ---D | C] -- C:\Program Files\Alwil Software [2009/05/01 07:53:33 | 00,000,000 | ---D | C] -- C:\Program Files\EsetOnlineScanner [2009/04/30 08:13:07 | 00,223,368 | ---- | C] () -- C:\Documents and Settings\Navdeep Bains\Desktop\CrucialScan.exe [2009/04/30 07:53:33 | 00,000,579 | ---- | C] () -- C:\Documents and Settings\All Users.WINNT1\Desktop\CPUID CPU-Z.lnk [2009/04/30 07:53:32 | 00,012,672 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\WINNT1\System32\drivers\cpuz132_x32.sys [2009/04/30 07:53:31 | 00,000,000 | ---D | C] -- C:\Program Files\CPUID [2009/04/30 07:48:30 | 02,063,807 | ---- | C] ( ) -- C:\Documents and Settings\Navdeep Bains\Desktop\cpuz_151_setup.exe [2009/04/28 23:49:16 | 00,000,000 | ---D | C] -- C:\WINNT1\System32\ReinstallBackups [2009/04/26 06:51:34 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Navdeep Bains\Local Settings\Apps [2009/04/23 08:14:03 | 00,061,440 | ---- | C] () -- C:\WINNT1\System32\drivers\mhbhgk.sys [2009/04/23 06:47:00 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Navdeep Bains\Application Data\Malwarebytes [2009/04/23 06:46:57 | 00,015,504 | ---- | C] (Malwarebytes Corporation) -- C:\WINNT1\System32\drivers\mbam.sys [2009/04/23 06:46:57 | 00,000,574 | ---- | C] () -- C:\Documents and Settings\All Users.WINNT1\Desktop\Malwarebytes' Anti-Malware.lnk [2009/04/23 06:46:54 | 00,038,496 | ---- | C] (Malwarebytes Corporation) -- C:\WINNT1\System32\drivers\mbamswissarmy.sys [2009/04/23 06:46:53 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINNT1\Application Data\Malwarebytes [2009/04/23 06:46:52 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2009/04/23 06:23:59 | 00,000,510 | ---- | C] () -- C:\Documents and Settings\Navdeep Bains\Desktop\µTorrent.lnk [2009/04/23 06:23:58 | 00,000,000 | ---D | C] -- C:\Program Files\uTorrent [2009/04/23 06:23:38 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Navdeep Bains\Application Data\uTorrent [2009/04/22 07:34:41 | 00,000,483 | ---- | C] () -- C:\Documents and Settings\All Users.WINNT1\Desktop\AAA Screensavers Downloads.lnk [2009/04/22 07:34:41 | 00,000,000 | ---D | C] -- C:\Program Files\AAA Screensavers [2009/04/22 07:34:40 | 00,000,000 | ---D | C] -- C:\WINNT1\Icons [2009/04/21 23:49:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Navdeep Bains\Desktop\CANTAX [2009/04/18 23:09:01 | 00,001,486 | ---- | C] () -- C:\Documents and Settings\All Users.WINNT1\Desktop\Mozilla Firefox.lnk [2009/04/07 19:30:54 | 00,000,283 | ---- | C] () -- C:\WINNT1\w32dasm8.ini [2009/04/07 18:24:57 | 00,001,529 | ---- | C] () -- C:\WINNT1\ODBC.INI [2009/04/07 18:12:37 | 00,000,000 | ---- | C] () -- C:\WINNT1\System32\VBAR332.DLL [2008/06/08 21:41:13 | 00,000,000 | ---- | C] () -- C:\WINNT1\mngui.INI [2008/05/10 21:38:55 | 00,000,000 | ---- | C] () -- C:\WINNT1\SETUP32.INI [2008/02/11 09:39:26 | 00,253,952 | ---- | C] () -- C:\WINNT1\System32\OnlineScannerDLLA.dll [2008/02/11 09:39:18 | 00,237,568 | ---- | C] () -- C:\WINNT1\System32\OnlineScannerDLLW.dll [2008/02/08 13:53:46 | 00,110,592 | ---- | C] () -- C:\WINNT1\System32\OnlineScannerLang.dll [2008/02/07 21:13:28 | 00,354,816 | ---- | C] () -- C:\WINNT1\System32\psisdecd.dll [2008/02/06 20:28:20 | 00,000,066 | ---- | C] () -- C:\WINNT1\#1 Video Converter.INI [2007/10/06 13:26:33 | 01,979,904 | ---- | C] () -- C:\WINNT1\System32\FileIndexLib.dll [2007/10/06 13:26:33 | 00,432,640 | R--- | C] () -- C:\WINNT1\System32\helpLib.dll [2007/10/06 13:26:33 | 00,332,288 | ---- | C] () -- C:\WINNT1\System32\ConfigLib.dll [2007/07/27 14:49:02 | 00,225,355 | ---- | C] () -- C:\WINNT1\System32\lnod32apiW.dll [2007/07/27 14:49:02 | 00,196,683 | ---- | C] () -- C:\WINNT1\System32\lnod32apiA.dll [2007/04/24 22:56:56 | 00,208,947 | ---- | C] () -- C:\WINNT1\System32\UnAudioNT.dll [2007/03/31 07:14:39 | 00,646,392 | ---- | C] () -- C:\WINNT1\System32\drivers\sptd.sys [2007/02/17 19:01:25 | 00,000,229 | ---- | C] () -- C:\WINNT1\NeroDigital.ini [2007/02/05 11:42:30 | 00,000,162 | ---- | C] () -- C:\WINNT1\wininit.ini [2007/01/16 21:57:55 | 00,343,188 | ---- | C] () -- C:\WINNT1\System32\PerfStringBackup_001.INI [2006/05/25 01:22:06 | 00,026,626 | ---- | C] () -- C:\WINNT1\System32\tapiinh.dll [2005/12/05 19:25:22 | 00,139,264 | ---- | C] () -- C:\WINNT1\System32\lnod32umc.dll [2005/12/05 12:37:10 | 00,106,496 | ---- | C] () -- C:\WINNT1\System32\lnod32upd.dll [2005/03/01 15:30:20 | 00,000,453 | ---- | C] () -- C:\WINNT1\bdoscandellang.ini [2004/09/17 17:37:42 | 00,061,440 | ---- | C] () -- C:\WINNT1\System32\vuins32.dll [2001/05/08 05:00:00 | 00,176,400 | ---- | C] () -- C:\WINNT1\System32\qcut.dll [2001/05/08 05:00:00 | 00,033,552 | ---- | C] () -- C:\WINNT1\System32\efsadu.dll [2001/05/08 05:00:00 | 00,007,265 | ---- | C] () -- C:\WINNT1\System32\iasperf.ini [2001/05/08 05:00:00 | 00,001,505 | ---- | C] () -- C:\WINNT1\System32\faxperf.ini [2001/05/08 05:00:00 | 00,000,295 | ---- | C] () -- C:\WINNT1\win.ini [2001/05/08 05:00:00 | 00,000,231 | ---- | C] () -- C:\WINNT1\system.ini [2001/05/08 05:00:00 | 00,000,023 | ---- | C] () -- C:\WINNT1\welcome.ini [1999/09/25 03:36:24 | 00,088,816 | ---- | C] () -- C:\WINNT1\System32\drivers\lvcam.sys [1999/09/25 03:36:22 | 00,017,424 | ---- | C] () -- C:\WINNT1\System32\drivers\lvsound.sys [color=orange]========== Files - Modified Within 30 Days ==========[/color] [1 C:\*.tmp files] [1 C:\WINNT1\System32\*.tmp files] [7 C:\WINNT1\*.tmp files] [2050/04/11 09:57:38 | 00,000,283 | ---- | M] () -- C:\WINNT1\w32dasm8.ini [2050/04/11 09:17:15 | 00,000,664 | ---- | M] () -- C:\WINNT1\System32\d3d9caps.dat [2050/04/09 08:12:09 | 36,970,440 | ---- | M] () -- C:\Backup001.reg [2009/05/17 17:00:00 | 00,000,454 | ---- | M] () -- C:\WINNT1\tasks\RegCure Program Check.job [2009/05/17 16:03:51 | 00,002,234 | ---- | M] () -- C:\Documents and Settings\All Users.WINNT1\Start Menu\Programs\Startup\Adobe Acrobat Speed Launcher.lnk [2009/05/17 16:01:18 | 00,000,006 | -H-- | M] () -- C:\WINNT1\tasks\SA.DAT [2009/05/17 15:32:13 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_270.dat [2009/05/17 12:15:18 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_438.dat [2009/05/17 07:53:07 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_42c.dat [2009/05/17 01:52:43 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_118.dat [2009/05/15 20:18:48 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_45c.dat [2009/05/15 19:10:36 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_1a0.dat [2009/05/15 18:16:12 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_1fc.dat [2009/05/15 16:15:31 | 00,000,162 | ---- | M] () -- C:\WINNT1\wininit.ini [2009/05/15 13:32:32 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_1d0.dat [2009/05/15 09:54:14 | 00,465,518 | -H-- | M] () -- C:\WINNT1\ShellIconCache [2009/05/15 09:40:05 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_274.dat [2009/05/15 09:38:39 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_478.dat [2009/05/15 09:31:22 | 00,000,686 | ---- | M] () -- C:\WINNT1\System32\drivers\etc\HOSTS [2009/05/15 07:49:49 | 00,003,149 | ---- | M] () -- C:\Documents and Settings\Navdeep Bains\Local Settings\Temp11.html [2009/05/15 07:49:40 | 00,000,778 | ---- | M] () -- C:\Documents and Settings\Navdeep Bains\Local Settings\Temp1.html [2009/05/15 03:01:20 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_16c.dat [2009/05/15 02:56:09 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_1f8.dat [2009/05/15 02:55:00 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_1cc.dat [2009/05/15 00:26:32 | 00,305,152 | ---- | M] () -- C:\Documents and Settings\Navdeep Bains\My Documents\windiag.iso [2009/05/15 00:20:02 | 00,003,149 | ---- | M] () -- C:\Documents and Settings\Navdeep Bains\Local Settings\Temp19.html [2009/05/15 00:16:07 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_498.dat [2009/05/15 00:14:14 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_490.dat [2009/05/15 00:14:06 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_244.dat [2009/05/14 19:59:07 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_4c8.dat [2009/05/14 19:55:53 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_1c4.dat [2009/05/14 19:53:44 | 00,003,149 | ---- | M] () -- C:\Documents and Settings\Navdeep Bains\Local Settings\Temp51.html [2009/05/14 19:32:06 | 00,000,546 | ---- | M] () -- C:\Documents and Settings\Navdeep Bains\Desktop\WhoCrashed.lnk [2009/05/14 09:36:16 | 00,001,555 | ---- | M] () -- C:\Documents and Settings\All Users.WINNT1\Desktop\avast! Antivirus.lnk [2009/05/14 09:36:09 | 00,002,626 | ---- | M] () -- C:\WINNT1\System32\CONFIG.NT [2009/05/14 09:09:28 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_214.dat [2009/05/14 08:24:07 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_218.dat [2009/05/14 06:43:13 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_21c.dat [2009/05/14 06:32:05 | 00,000,804 | ---- | M] () -- C:\Documents and Settings\Navdeep Bains\Desktop\Spybot - Search & Destroy.lnk [2009/05/14 06:08:38 | 00,000,388 | ---- | M] () -- C:\WINNT1\tasks\RegCure.job [2009/05/13 10:50:21 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_1d4.dat [2009/05/13 10:48:00 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_54c.dat [2009/05/13 09:22:20 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_23c.dat [2009/05/13 09:18:03 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_240.dat [2009/05/13 08:48:22 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_264.dat [2009/05/13 08:24:00 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_434.dat [2009/05/13 08:23:45 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_234.dat [2009/05/13 07:55:47 | 00,000,498 | ---- | M] () -- C:\Documents and Settings\Navdeep Bains\Desktop\NTREGOPT.lnk [2009/05/13 07:55:47 | 00,000,486 | ---- | M] () -- C:\Documents and Settings\Navdeep Bains\Desktop\ERUNT.lnk [2009/05/12 23:32:01 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_278.dat [2009/05/12 08:58:22 | 00,000,626 | ---- | M] () -- C:\Documents and Settings\All Users.WINNT1\Application Data\SharedProperties.xml [2009/05/12 08:09:18 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_228.dat [2009/05/12 07:47:45 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_204.dat [2009/05/12 07:43:26 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_4a0.dat [2009/05/12 07:36:10 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_404.dat [2009/05/12 07:31:58 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_1c8.dat [2009/05/12 07:06:19 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_27c.dat [2009/05/12 06:54:30 | 00,000,518 | ---- | M] () -- C:\Documents and Settings\Navdeep Bains\Application Data\EventStore.xml [2009/05/12 06:54:30 | 00,000,475 | ---- | M] () -- C:\Documents and Settings\Navdeep Bains\Application Data\CampaignStore.xml [2009/05/12 06:54:30 | 00,000,471 | ---- | M] () -- C:\Documents and Settings\Navdeep Bains\Application Data\UpdateStore.xml [2009/05/12 06:54:30 | 00,000,376 | ---- | M] () -- C:\Documents and Settings\Navdeep Bains\Application Data\SoftwarePackageStore.xml [2009/05/12 06:54:30 | 00,000,376 | ---- | M] () -- C:\Documents and Settings\Navdeep Bains\Application Data\ConfigurationStore.xml [2009/05/12 00:44:01 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_280.dat [2009/05/12 00:35:48 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_238.dat [2009/05/10 04:33:52 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_508.dat [2009/05/08 07:55:26 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_268.dat [2009/05/07 00:16:29 | 24,699,336 | ---- | M] (Microsoft Corporation) -- C:\WINNT1\System32\MRT.exe [2009/05/03 06:43:00 | 00,000,229 | ---- | M] () -- C:\WINNT1\NeroDigital.ini [2009/05/03 05:42:25 | 00,000,200 | ---- | M] () -- C:\WINNT1\SIMPLY.INI [2009/05/03 05:42:06 | 00,001,529 | ---- | M] () -- C:\WINNT1\ODBC.INI [2009/05/03 05:35:34 | 00,004,282 | ---- | M] () -- C:\WINNT1\ODBCINST.INI [2009/05/02 20:13:29 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_368.dat [2009/05/02 15:07:15 | 00,000,578 | ---- | M] () -- C:\Documents and Settings\Navdeep Bains\Desktop\SpywareBlaster.lnk [2009/05/01 23:39:35 | 00,016,384 | ---- | M] () -- C:\WINNT1\System32\Perflib_Perfdata_26c.dat [2009/05/01 22:27:09 | 00,001,486 | ---- | M] () -- C:\Documents and Settings\All Users.WINNT1\Desktop\Mozilla Firefox.lnk [2009/04/30 08:13:05 | 00,223,368 | ---- | M] () -- C:\Documents and Settings\Navdeep Bains\Desktop\CrucialScan.exe [2009/04/30 07:53:33 | 00,000,579 | ---- | M] () -- C:\Documents and Settings\All Users.WINNT1\Desktop\CPUID CPU-Z.lnk [2009/04/30 07:48:52 | 02,063,807 | ---- | M] ( ) -- C:\Documents and Settings\Navdeep Bains\Desktop\cpuz_151_setup.exe [2009/04/25 22:05:02 | 00,463,262 | ---- | M] () -- C:\WINNT1\System32\PerfStringBackup.INI [2009/04/25 22:05:02 | 00,395,102 | ---- | M] () -- C:\WINNT1\System32\perfh009.dat [2009/04/25 22:05:02 | 00,061,572 | ---- | M] () -- C:\WINNT1\System32\perfc009.dat [2009/04/23 08:14:03 | 00,061,440 | ---- | M] () -- C:\WINNT1\System32\drivers\mhbhgk.sys [2009/04/23 06:46:57 | 00,000,574 | ---- | M] () -- C:\Documents and Settings\All Users.WINNT1\Desktop\Malwarebytes' Anti-Malware.lnk [2009/04/23 06:23:59 | 00,000,510 | ---- | M] () -- C:\Documents and Settings\Navdeep Bains\Desktop\µTorrent.lnk [2009/04/22 07:34:41 | 00,000,483 | ---- | M] () -- C:\Documents and Settings\All Users.WINNT1\Desktop\AAA Screensavers Downloads.lnk [2009/04/18 03:04:02 | 00,001,372 | ---- | M] () -- C:\WINNT1\imsins.BAK [color=orange]========== LOP Check ==========[/color] [2009/05/12 08:58:22 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users.WINNT1\Application Data [2009/04/02 00:26:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT1\Application Data\Adobe [2008/09/07 11:53:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT1\Application Data\Ahead [2009/03/15 11:50:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT1\Application Data\Apple Computer [2009/03/15 11:48:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT1\Application Data\avg7 [2007/02/15 00:17:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT1\Application Data\CyberLink [2007/02/19 14:23:33 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT1\Application Data\DVD Shrink [2008/09/02 08:54:51 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT1\Application Data\Elaborate Bytes [2008/10/18 23:34:46 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT1\Application Data\FLEXnet [2009/03/15 11:49:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT1\Application Data\Google [2008/02/16 08:03:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT1\Application Data\GreenPoint [2009/02/03 00:25:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT1\Application Data\Intuit Canada [2009/04/23 06:46:53 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT1\Application Data\Malwarebytes [2006/12/31 20:22:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT1\Application Data\Microsoft [2008/08/08 23:46:46 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT1\Application Data\Motive [2008/02/07 21:27:33 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT1\Application Data\Nero [2009/01/09 00:14:35 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT1\Application Data\NOS [2009/05/14 06:32:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT1\Application Data\Spybot - Search & Destroy [2009/05/02 15:04:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT1\Application Data\SUPERAntiSpyware.com [2008/07/31 22:56:51 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT1\Application Data\TELUS [2009/05/12 08:58:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT1\Application Data\temp [2008/09/06 06:53:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINNT1\Application Data\WinZip [2009/05/02 15:04:06 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data [2009/04/27 23:04:40 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\Adobe [2007/10/27 00:29:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\AdobeUM [2008/09/07 11:53:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\Ahead [2007/04/02 23:14:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\Apple Computer [2009/03/15 11:48:26 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\AVG7 [2007/03/26 19:40:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\AVSMedia [2008/10/24 02:58:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\BitTorrent [2007/10/06 13:27:58 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\CCH [2007/02/24 17:01:19 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\CDBurnerXPP [2007/02/15 19:32:45 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\CyberLink [2007/02/17 20:22:18 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\DeepBurner [2008/02/15 20:05:37 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\DivX [2009/05/12 23:22:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\DNA [2009/03/21 22:03:53 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\dvdcss [2007/10/27 00:17:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\Google [2008/02/15 23:22:21 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\GreenPoint [2008/09/15 16:55:57 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\Help [2006/12/31 20:26:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\Identities [2009/02/03 00:28:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\Intuit Canada [2007/04/24 23:29:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\Lavasoft [2008/06/07 12:38:39 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\LimeWire [2007/02/15 20:41:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\Macromedia [2009/04/23 06:47:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\Malwarebytes [2008/01/21 14:08:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\Media Player Classic [2009/03/15 11:48:45 | 00,000,000 | --SD | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\Microsoft [2008/07/31 23:04:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\Motive [2009/02/09 22:08:17 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\Mozilla [2008/09/07 11:54:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\Nero [2007/07/08 19:47:19 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\Pegasys Inc [2009/05/15 16:15:31 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\RegClean [2008/09/08 01:29:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\SoftwareDetectionScripts [2008/06/02 20:30:51 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\Sony Ericsson [2007/08/20 19:10:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\Sun [2009/05/02 15:04:06 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\SUPERAntiSpyware.com [2008/06/02 20:36:55 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\Teleca [2008/07/31 22:56:55 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\TELUS [2009/05/12 00:33:55 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\uTorrent [2007/03/31 09:52:45 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\vlc [2007/03/31 07:24:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Navdeep Bains\Application Data\WinRAR [2001/05/08 05:00:00 | 00,000,065 | RH-- | M] () -- C:\WINNT1\Tasks\desktop.ini [2009/05/17 17:00:00 | 00,000,454 | ---- | M] () -- C:\WINNT1\Tasks\RegCure Program Check.job [2009/05/14 06:08:38 | 00,000,388 | ---- | M] () -- C:\WINNT1\Tasks\RegCure.job [2009/05/17 16:01:18 | 00,000,006 | -H-- | M] () -- C:\WINNT1\Tasks\SA.DAT [color=orange]========== Purity Check ==========[/color] [color=orange]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users.WINNT1\Application Data\temp:5C321E34 < End of report >