OTL logfile created on: 12/28/2010 12:03:13 AM - Run 2 OTL by OldTimer - Version 3.2.18.0 Folder = C:\Documents and Settings\Subodh\My Documents\Downloads Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy 2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 61.00% Memory free 4.00 Gb Paging File | 3.00 Gb Available in Paging File | 87.00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 29.29 Gb Total Space | 2.38 Gb Free Space | 8.11% Space Free | Partition Type: NTFS Drive E: | 29.29 Gb Total Space | 1.78 Gb Free Space | 6.06% Space Free | Partition Type: NTFS Computer Name: WVUIAC-A6DA024A | User Name: Subodh | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Quick Scan Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2010/12/27 23:22:21 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Subodh\My Documents\Downloads\OTL.exe PRC - [2010/12/12 22:13:07 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2010/09/21 22:43:30 | 000,479,232 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe PRC - [2010/09/21 19:35:16 | 000,700,416 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\iFrmewrk.exe PRC - [2010/09/21 19:35:16 | 000,483,328 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Adobe\Acrobat 7.0\Distillr\acrotray.exe PRC - [2010/09/21 19:35:15 | 000,802,816 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\ZCfgSvc.exe PRC - [2010/09/21 19:35:14 | 000,937,984 | ---- | M] (Intel Corporation ) -- C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe PRC - [2010/09/21 19:35:14 | 000,290,816 | ---- | M] (Intel(R) Corporation) -- C:\Program Files\Intel\Wireless\Bin\WLKEEPER.exe PRC - [2010/09/21 19:35:13 | 000,434,176 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\EvtEng.exe PRC - [2010/09/21 19:35:13 | 000,327,680 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe PRC - [2010/03/10 23:22:04 | 000,599,408 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Citrix\ICA Client\wfcrun32.exe PRC - [2010/03/10 23:21:16 | 000,300,400 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Citrix\ICA Client\concentr.exe PRC - [2008/04/13 19:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2007/01/04 16:38:08 | 000,024,652 | ---- | M] (Viewpoint Corporation) -- C:\Program Files\Viewpoint\Common\ViewpointService.exe PRC - [2006/11/13 12:39:52 | 001,289,000 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft ActiveSync\wcescomm.exe PRC - [2006/11/13 12:39:34 | 000,199,464 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft ActiveSync\rapimgr.exe PRC - [2005/06/23 19:27:36 | 000,085,696 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec AntiVirus\VPTray.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2010/12/27 23:22:21 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Subodh\My Documents\Downloads\OTL.exe MOD - [2010/08/23 11:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll MOD - [2009/07/12 03:12:06 | 000,632,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcr80.dll MOD - [2009/07/11 18:41:02 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_473666fd\ATL80.dll MOD - [2008/04/13 19:12:00 | 001,384,479 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvbvm60.dll MOD - [2008/04/13 19:11:52 | 000,158,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dinput.dll MOD - [2008/04/13 12:37:57 | 000,208,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rsaenh.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Disabled | Stopped] -- C:\WINDOWS\System32\hidserv.dll -- (HidServ) SRV - [2010/09/21 19:35:14 | 000,937,984 | ---- | M] (Intel Corporation ) [Auto | Running] -- C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe -- (S24EventMonitor) Intel(R) SRV - [2010/09/21 19:35:14 | 000,290,816 | ---- | M] (Intel(R) Corporation) [Auto | Running] -- C:\Program Files\Intel\Wireless\Bin\WLKEEPER.exe -- (WLANKEEPER) Intel(R) SRV - [2010/09/21 19:35:13 | 000,434,176 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Wireless\Bin\EvtEng.exe -- (EvtEng) Intel(R) SRV - [2010/09/21 19:35:13 | 000,327,680 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe -- (RegSrvc) Intel(R) SRV - [2010/09/21 19:35:12 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe -- (IDriverT) SRV - [2010/06/25 12:07:20 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- C:\Program Files\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental) SRV - [2010/01/15 07:49:20 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe -- (McComponentHostService) SRV - [2007/01/04 16:38:08 | 000,024,652 | ---- | M] (Viewpoint Corporation) [Auto | Running] -- C:\Program Files\Viewpoint\Common\ViewpointService.exe -- (Viewpoint Manager Service) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\nwzcdm.sys -- (vmftj) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\UIUSys.sys -- (UIUSys) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\CheckPoint\ZAForceField\AK\icsak.sys -- (icsak) DRV - [2010/12/17 04:00:00 | 001,360,760 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20101219.003\NAVEX15.SYS -- (NAVEX15) DRV - [2010/12/17 04:00:00 | 000,086,008 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20101219.003\NAVENG.SYS -- (NAVENG) DRV - [2010/09/07 17:25:29 | 000,010,688 | ---- | M] (UVNC BVBA) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mv2.sys -- (mv2) DRV - [2010/06/25 12:07:14 | 000,035,088 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\npf.sys -- (NPF) DRV - [2010/06/17 03:00:00 | 000,371,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl) DRV - [2009/10/05 09:08:42 | 000,065,584 | ---- | M] (Citrix Systems, Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ctxusbm.sys -- (ctxusbm) DRV - [2006/07/21 11:42:08 | 000,055,808 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tifm.sys -- (tifm) DRV - [2006/07/02 22:16:30 | 000,012,544 | ---- | M] (Intel Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\s24trans.sys -- (s24trans) DRV - [2006/06/29 18:49:38 | 002,206,720 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\w29n51.sys -- (w29n51) Intel(R) DRV - [2006/03/08 12:35:10 | 000,191,872 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SynTP.sys -- (SynTP) DRV - [2005/08/05 10:32:16 | 000,045,312 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\bcm4sbxp.sys -- (bcm4sbxp) DRV - [2005/07/22 11:07:02 | 000,018,208 | ---- | M] (Paragon Software Group) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\hotcore.sys -- (hotcore) DRV - [2005/05/31 05:33:00 | 000,100,605 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\dla\tfsnudfa.sys -- (tfsnudfa) DRV - [2005/05/31 05:33:00 | 000,098,716 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\dla\tfsnudf.sys -- (tfsnudf) DRV - [2005/05/31 05:33:00 | 000,086,876 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\dla\tfsnifs.sys -- (tfsnifs) DRV - [2005/05/31 05:33:00 | 000,034,845 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\dla\tfsncofs.sys -- (tfsncofs) DRV - [2005/05/31 05:33:00 | 000,025,725 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\dla\tfsnboio.sys -- (tfsnboio) DRV - [2005/05/31 05:33:00 | 000,015,069 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\dla\tfsnopio.sys -- (tfsnopio) DRV - [2005/05/31 05:33:00 | 000,006,365 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\dla\tfsnpool.sys -- (tfsnpool) DRV - [2005/05/31 05:33:00 | 000,004,125 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\dla\tfsndrct.sys -- (tfsndrct) DRV - [2005/05/31 05:33:00 | 000,002,241 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\dla\tfsndres.sys -- (tfsndres) DRV - [2005/05/13 19:50:10 | 000,123,488 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Symantec\SYMEVENT.SYS -- (SymEvent) DRV - [2005/05/13 10:37:28 | 000,005,627 | ---- | M] (Sonic Solutions) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\sscdbhk5.sys -- (sscdbhk5) DRV - [2005/05/13 10:37:20 | 000,023,545 | ---- | M] (Sonic Solutions) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\ssrtln.sys -- (ssrtln) DRV - [2005/05/03 15:09:28 | 001,033,728 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DPV.SYS -- (HSF_DPV) DRV - [2005/05/03 15:08:50 | 000,208,384 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWICH.sys -- (HSFHWICH) DRV - [2005/05/03 15:08:44 | 000,705,408 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf) DRV - [2005/04/22 12:03:00 | 000,017,976 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\Drivers\SYMREDRV.SYS -- (SYMREDRV) DRV - [2005/04/22 03:22:00 | 000,088,352 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\drvmcdb.sys -- (drvmcdb) DRV - [2005/04/21 02:56:00 | 000,040,544 | ---- | M] (Sonic Solutions) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\drvnddm.sys -- (drvnddm) DRV - [2005/02/04 20:14:32 | 000,053,896 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Symantec AntiVirus\Savrtpel.sys -- (SAVRTPEL) DRV - [2005/02/04 20:14:30 | 000,324,232 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Symantec AntiVirus\savrt.sys -- (SAVRT) DRV - [2004/11/15 15:37:52 | 000,264,440 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\stac97.sys -- (STAC97) Audio Driver (WDM) DRV - [2003/08/29 17:47:48 | 000,007,040 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\flash.sys -- (flash) DRV - [2003/01/23 15:37:50 | 000,017,217 | ---- | M] (Dell Computer Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\omci.sys -- (omci) DRV - [2001/08/17 13:05:20 | 000,031,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\OVCE.sys -- (QCEmerald) DRV - [2001/08/17 13:05:06 | 000,025,216 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\OVSound2.sys -- (lusbaudio) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/ IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage IE - HKU\S-1-5-21-583907252-1957994488-1343024091-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage IE - HKU\S-1-5-21-583907252-1957994488-1343024091-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/ IE - HKU\S-1-5-21-583907252-1957994488-1343024091-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us IE - HKU\S-1-5-21-583907252-1957994488-1343024091-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = B5 38 E7 AA DC BD C9 01 [binary data] IE - HKU\S-1-5-21-583907252-1957994488-1343024091-1003\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie IE - HKU\S-1-5-21-583907252-1957994488-1343024091-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie IE - HKU\S-1-5-21-583907252-1957994488-1343024091-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.selectedEngine: "Answers.com" FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3 FF - prefs.js..extensions.enabledItems: bettergmail2@ginatrapani.org:1.2 FF - prefs.js..extensions.enabledItems: {AA052FD6-366A-4771-A591-0D8DC551585D}:1.1.20 FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.1 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: moveplayer@movenetworks.com:7 FF - prefs.js..extensions.enabledItems: {73a6fe31-595d-460b-a920-fcc0f8843232}:2.0.8.1 FF - prefs.js..extensions.enabledItems: {46551EC9-40F0-4e47-8E18-8E5CF550CFB8}:1.0.11 FF - prefs.js..extensions.enabledItems: zotero@chnm.gmu.edu:2.0.9 FF - prefs.js..extensions.enabledItems: {269FB356-C69F-7349-D092-AB28AF836D0E}:3.5.004 FF - prefs.js..extensions.enabledItems: {cbbbbcd0-3cf7-11dd-ae16-0800200c9a66}:2.0 FF - prefs.js..extensions.enabledItems: {07b2a769-ed19-4483-87ce-c643914c81bb}:3.0.0.91 FF - prefs.js..keyword.URL: "http://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q=" FF - HKLM\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/08/11 23:25:31 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}: C:\Program Files\CheckPoint\ZAForceField\TrustChecker FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/12/12 22:13:14 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/12/12 22:13:14 | 000,000,000 | ---D | M] [2008/06/21 10:58:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Subodh\Application Data\Mozilla\Extensions [2010/12/27 14:41:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Subodh\Application Data\Mozilla\Firefox\Profiles\cuosm5w2.default\extensions [2010/05/30 23:02:52 | 000,000,000 | ---D | M] (Vista-aero) -- C:\Documents and Settings\Subodh\Application Data\Mozilla\Firefox\Profiles\cuosm5w2.default\extensions\{07b2a769-ed19-4483-87ce-c643914c81bb} [2010/11/07 18:51:27 | 000,000,000 | ---D | M] (Strata Aero) -- C:\Documents and Settings\Subodh\Application Data\Mozilla\Firefox\Profiles\cuosm5w2.default\extensions\{269FB356-C69F-7349-D092-AB28AF836D0E} [2008/12/09 23:59:57 | 000,000,000 | ---D | M] (Abstract Classic) -- C:\Documents and Settings\Subodh\Application Data\Mozilla\Firefox\Profiles\cuosm5w2.default\extensions\{2fbc1200-ad13-11db-abbd-0800200c9a66} [2010/09/26 23:17:30 | 000,000,000 | ---D | M] (Stylish) -- C:\Documents and Settings\Subodh\Application Data\Mozilla\Firefox\Profiles\cuosm5w2.default\extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8} [2010/12/15 21:53:56 | 000,000,000 | ---D | M] (NoScript) -- C:\Documents and Settings\Subodh\Application Data\Mozilla\Firefox\Profiles\cuosm5w2.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232} [2010/11/08 19:19:50 | 000,000,000 | ---D | M] (Calculator) -- C:\Documents and Settings\Subodh\Application Data\Mozilla\Firefox\Profiles\cuosm5w2.default\extensions\{AA052FD6-366A-4771-A591-0D8DC551585D} [2010/10/22 17:46:55 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\Subodh\Application Data\Mozilla\Firefox\Profiles\cuosm5w2.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2009/12/30 23:49:39 | 000,000,000 | ---D | M] (StrataStripe) -- C:\Documents and Settings\Subodh\Application Data\Mozilla\Firefox\Profiles\cuosm5w2.default\extensions\{cbbbbcd0-3cf7-11dd-ae16-0800200c9a66} [2010/12/26 14:19:40 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Subodh\Application Data\Mozilla\Firefox\Profiles\cuosm5w2.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2010/05/22 19:51:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Subodh\Application Data\Mozilla\Firefox\Profiles\cuosm5w2.default\extensions\bettergmail2@ginatrapani.org [2010/10/22 17:46:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Subodh\Application Data\Mozilla\Firefox\Profiles\cuosm5w2.default\extensions\zotero@chnm.gmu.edu [2010/05/30 23:02:56 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Subodh\Application Data\Mozilla\Firefox\Profiles\cuosm5w2.default\extensions\{07b2a769-ed19-4483-87ce-c643914c81bb}\chrome\mozapps\extensions [2010/11/07 18:51:27 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Subodh\Application Data\Mozilla\Firefox\Profiles\cuosm5w2.default\extensions\{269FB356-C69F-7349-D092-AB28AF836D0E}\mozapps\extensions [2010/12/27 14:41:51 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010/03/10 23:01:02 | 000,124,272 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\CCMSDK.dll [2010/03/10 23:02:52 | 000,070,512 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\CgpCore.dll [2010/03/10 23:01:48 | 000,091,504 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\confmgr.dll [2010/03/10 23:01:24 | 000,022,384 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\ctxlogging.dll [2010/03/10 23:40:56 | 000,423,248 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\npicaN.dll [2010/09/22 22:42:50 | 000,221,184 | ---- | M] (CNN) -- C:\Program Files\Mozilla Firefox\plugins\NPTURNMED.dll [2007/04/16 12:07:12 | 000,180,293 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\npViewpoint.dll [2010/03/10 23:02:48 | 000,023,920 | ---- | M] (Citrix Systems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\TcpPServ.dll O1 HOSTS File: ([2010/09/28 22:56:45 | 000,419,407 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: 127.0.0.1 www.007guard.com O1 - Hosts: 127.0.0.1 007guard.com O1 - Hosts: 127.0.0.1 008i.com O1 - Hosts: 127.0.0.1 www.008k.com O1 - Hosts: 127.0.0.1 008k.com O1 - Hosts: 127.0.0.1 www.00hq.com O1 - Hosts: 127.0.0.1 00hq.com O1 - Hosts: 127.0.0.1 010402.com O1 - Hosts: 127.0.0.1 www.032439.com O1 - Hosts: 127.0.0.1 032439.com O1 - Hosts: 127.0.0.1 www.0scan.com O1 - Hosts: 127.0.0.1 0scan.com O1 - Hosts: 127.0.0.1 1000gratisproben.com O1 - Hosts: 127.0.0.1 www.1000gratisproben.com O1 - Hosts: 127.0.0.1 1001namen.com O1 - Hosts: 127.0.0.1 www.1001namen.com O1 - Hosts: 127.0.0.1 100888290cs.com O1 - Hosts: 127.0.0.1 www.100888290cs.com O1 - Hosts: 127.0.0.1 www.100sexlinks.com O1 - Hosts: 127.0.0.1 100sexlinks.com O1 - Hosts: 127.0.0.1 10sek.com O1 - Hosts: 127.0.0.1 www.10sek.com O1 - Hosts: 127.0.0.1 www.1-2005-search.com O1 - Hosts: 127.0.0.1 1-2005-search.com O1 - Hosts: 14474 more lines... O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (DriveLetterAccess) - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll (Sonic Solutions) O2 - BHO: (AcroIEToolbarHelper Class) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O2 - BHO: (HP Smart BHO Class) - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\smart web printing\hpswp_BHO.dll (Hewlett-Packard Co.) O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found. O3 - HKU\S-1-5-21-583907252-1957994488-1343024091-1003\..\Toolbar\WebBrowser: (no name) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - No CLSID value found. O4 - HKLM..\Run: [Acrobat Assistant 7.0] C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe (Adobe Systems Inc.) O4 - HKLM..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation) O4 - HKLM..\Run: [ConnectionCenter] C:\Program Files\Citrix\ICA Client\concentr.exe (Citrix Systems, Inc.) O4 - HKLM..\Run: [IntelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe (Intel Corporation) O4 - HKLM..\Run: [IntelZeroConfig] C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe (Intel Corporation) O4 - HKLM..\Run: [vptray] C:\Program Files\Symantec AntiVirus\VPTray.exe (Symantec Corporation) O4 - HKU\S-1-5-21-583907252-1957994488-1343024091-1003..\Run: [H/PC Connection Agent] C:\Program Files\Microsoft ActiveSync\wcescomm.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-583907252-1957994488-1343024091-1003..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149 O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 0 O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 0 O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 0 O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 0 O7 - HKU\S-1-5-21-583907252-1957994488-1343024091-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKU\S-1-5-21-583907252-1957994488-1343024091-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 36 O7 - HKU\S-1-5-21-583907252-1957994488-1343024091-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 0 O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.) O8 - Extra context menu item: Convert link target to Adobe PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert link target to existing PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert selected links to Adobe PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert selected links to existing PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert selection to Adobe PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert selection to existing PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O8 - Extra context menu item: Convert to existing PDF - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated) O9 - Extra Button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\INetRepl.dll (Microsoft Corporation) O9 - Extra Button: Show or hide HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\smart web printing\hpswp_BHO.dll (Hewlett-Packard Co.) O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} http://support.dell.com/systemprofiler/SysPro.CAB (SysProWmi Class) O16 - DPF: {2019DC25-D1C0-11D6-97B3-0008A124F542} http://www.streamplug.com/StreamPlug/beta/SP.cab (StreamPlug Class) O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab (Reg Error: Key error.) O16 - DPF: {3EA4FA88-E0BE-419A-A732-9B79B87A6ED0} http://dl.tvunetworks.com/TVUAx.cab (CTVUAxCtrl Object) O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1213806380709 (MUWebControl Class) O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Reg Error: Key error.) O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 66.133.129.180 O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Filter\application/x-ica {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.) O18 - Protocol\Filter\ica {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKU\.DEFAULT Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKU\S-1-5-18 Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKU\S-1-5-19 Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKU\S-1-5-20 Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKU\S-1-5-21-583907252-1957994488-1343024091-1003 Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation) O20 - Winlogon\Notify\NavLogon: DllName - C:\WINDOWS\system32\NavLogon.dll - C:\WINDOWS\system32\NavLogon.dll (Symantec Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2008/06/17 23:12:56 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2009/02/09 00:58:50 | 000,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ] O33 - MountPoints2\{077e9630-118f-11de-b0f0-0012f0822396}\Shell - "" = AutoRun O33 - MountPoints2\{077e9630-118f-11de-b0f0-0012f0822396}\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\{0ff5ca70-fc1c-11df-b1bb-00123f7fb090}\Shell\AutoRun\command - "" = G:\RECYCLER\k-1-3542-4232123213-7676767-8888886\hn.exe -- File not found O33 - MountPoints2\{0ff5ca70-fc1c-11df-b1bb-00123f7fb090}\Shell\open\command - "" = G:\RECYCLER\k-1-3542-4232123213-7676767-8888886\hn.exe -- File not found O33 - MountPoints2\{2ecb56a2-968e-11df-b15a-00123f7fb090}\Shell - "" = AutoRun O33 - MountPoints2\{2ecb56a2-968e-11df-b15a-00123f7fb090}\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\{557d65c3-2388-11de-b0f4-0012f0822396}\Shell - "" = AutoRun O33 - MountPoints2\{557d65c3-2388-11de-b0f4-0012f0822396}\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\{8831ce16-3ced-11dd-b07c-d200abb1f7c4}\Shell - "" = AutoRun O33 - MountPoints2\{8831ce16-3ced-11dd-b07c-d200abb1f7c4}\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\{b1c8a738-0f62-11de-b0ef-0012f0822396}\Shell - "" = AutoRun O33 - MountPoints2\{b1c8a738-0f62-11de-b0ef-0012f0822396}\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\{b1c8a738-0f62-11de-b0ef-0012f0822396}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -- File not found O33 - MountPoints2\{b1c8a739-0f62-11de-b0ef-0012f0822396}\Shell - "" = AutoRun O33 - MountPoints2\{b1c8a739-0f62-11de-b0ef-0012f0822396}\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\{ba9a86a7-8f62-11dd-b0c5-0012f0822396}\Shell - "" = AutoRun O33 - MountPoints2\{ba9a86a7-8f62-11dd-b0c5-0012f0822396}\Shell\AutoRun - "" = Auto&Play O33 - MountPoints2\H\Shell - "" = AutoRun O33 - MountPoints2\H\Shell\AutoRun - "" = Auto&Play O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2010/12/20 04:26:51 | 000,000,000 | ---D | C] -- C:\SEP_11.0.2010 [2010/12/19 02:36:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Subodh\Desktop\2010-12 (Dec) [2010/12/18 14:38:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Subodh\Desktop\Sanket Thesis [2010/12/18 02:19:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Subodh\Desktop\tmy2_pc [2010/12/14 22:07:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Subodh\Desktop\Unused desktop 12-15-2010 [2010/12/02 22:20:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Subodh\Application Data\vlc [2010/12/01 12:59:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Subodh\Application Data\WinEdt Team [2009/03/15 23:01:27 | 000,290,816 | ---- | C] (Onset Computer Corporation) -- C:\Program Files\Common Files\BatchExport.exe [1 C:\Documents and Settings\Subodh\My Documents\*.tmp files -> C:\Documents and Settings\Subodh\My Documents\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2049/12/31 15:00:00 | 000,179,746 | ---- | M] () -- C:\Documents and Settings\Subodh\My Documents\TSP.jpg [2010/12/27 23:57:00 | 000,000,982 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-583907252-1957994488-1343024091-1003UA.job [2010/12/27 23:27:00 | 000,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2010/12/27 23:08:17 | 000,123,725 | ---- | M] () -- C:\Documents and Settings\Subodh\Desktop\63563_EM_Issues_Paper031207.pdf [2010/12/27 22:40:22 | 000,000,796 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk [2010/12/27 22:37:29 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010/12/27 22:37:16 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2010/12/27 22:37:11 | 000,000,236 | ---- | M] () -- C:\WINDOWS\tasks\OGALogon.job [2010/12/27 22:36:52 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010/12/27 22:36:42 | 2129,121,280 | -HS- | M] () -- C:\hiberfil.sys [2010/12/27 20:30:46 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{C853BC0D-7FA6-496C-993B-D0C3183645A6}.job [2010/12/27 14:57:05 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-583907252-1957994488-1343024091-1003Core.job [2010/12/22 22:15:57 | 000,010,239 | ---- | M] () -- C:\Documents and Settings\Subodh\Desktop\diss.docx [2010/12/20 18:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2010/12/20 18:08:40 | 000,020,952 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2010/12/20 04:21:45 | 009,327,508 | ---- | M] () -- C:\Documents and Settings\Subodh\Desktop\Thesis - sanket2007.docx [2010/12/20 04:21:20 | 009,539,584 | ---- | M] () -- C:\Documents and Settings\Subodh\Desktop\Thesis - sanket2003.doc [2010/12/20 04:19:09 | 005,801,936 | ---- | M] () -- C:\Documents and Settings\Subodh\Desktop\Thesis - sanket.docx [2010/12/20 01:56:07 | 005,781,409 | ---- | M] () -- C:\Documents and Settings\Subodh\Desktop\Literature review - sanket.docx [2010/12/18 15:42:27 | 000,012,844 | ---- | M] () -- C:\Documents and Settings\Subodh\Desktop\References - sanket.docx [2010/12/18 03:34:29 | 000,116,224 | ---- | M] () -- C:\Documents and Settings\Subodh\Desktop\tmy2.xls [2010/12/18 03:34:20 | 002,782,269 | ---- | M] () -- C:\Documents and Settings\Subodh\Desktop\13866CharlestonWV.xlsx [2010/12/18 03:09:23 | 000,009,919 | ---- | M] () -- C:\Documents and Settings\Subodh\My Documents\References - sanket.docx [2010/12/18 02:51:31 | 000,079,326 | ---- | M] () -- C:\Documents and Settings\Subodh\My Documents\Literature review - sanket.docx [2010/12/18 02:18:42 | 055,413,545 | ---- | M] () -- C:\Documents and Settings\Subodh\Desktop\tmy2_pc.zip [2010/12/17 20:33:20 | 000,336,256 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010/12/17 01:27:27 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2010/12/16 21:57:28 | 000,139,441 | ---- | M] () -- C:\Documents and Settings\Subodh\Desktop\subodh speed test.PNG [2010/12/14 23:53:34 | 000,225,622 | ---- | M] () -- C:\Documents and Settings\Subodh\Desktop\MotorMaster.docx [2010/12/14 23:35:46 | 000,002,349 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\PHAST 2.0.lnk [2010/12/14 22:05:37 | 002,674,688 | ---- | M] () -- C:\Documents and Settings\Subodh\Desktop\Steel of WV Presentation.ppt [2010/12/14 21:08:38 | 006,038,016 | ---- | M] () -- C:\Documents and Settings\Subodh\Desktop\SEN_001.doc [2010/12/12 23:48:45 | 000,000,073 | ---- | M] () -- C:\WINDOWS\System32\-1 [2010/12/10 21:26:24 | 000,033,792 | ---- | M] () -- C:\Documents and Settings\Subodh\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010/12/02 19:42:35 | 000,054,156 | -H-- | M] () -- C:\WINDOWS\QTFont.qfn [2010/12/01 13:06:35 | 000,011,177 | ---- | M] () -- C:\Documents and Settings\Subodh\gsview32.ini [1 C:\Documents and Settings\Subodh\My Documents\*.tmp files -> C:\Documents and Settings\Subodh\My Documents\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010/12/27 23:08:17 | 000,123,725 | ---- | C] () -- C:\Documents and Settings\Subodh\Desktop\63563_EM_Issues_Paper031207.pdf [2010/12/27 22:24:47 | 000,000,796 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk [2010/12/22 22:15:57 | 000,010,239 | ---- | C] () -- C:\Documents and Settings\Subodh\Desktop\diss.docx [2010/12/20 04:21:40 | 009,327,508 | ---- | C] () -- C:\Documents and Settings\Subodh\Desktop\Thesis - sanket2007.docx [2010/12/20 04:21:13 | 009,539,584 | ---- | C] () -- C:\Documents and Settings\Subodh\Desktop\Thesis - sanket2003.doc [2010/12/20 01:38:53 | 005,801,936 | ---- | C] () -- C:\Documents and Settings\Subodh\Desktop\Thesis - sanket.docx [2010/12/18 14:55:41 | 005,781,409 | ---- | C] () -- C:\Documents and Settings\Subodh\Desktop\Literature review - sanket.docx [2010/12/18 03:34:17 | 002,782,269 | ---- | C] () -- C:\Documents and Settings\Subodh\Desktop\13866CharlestonWV.xlsx [2010/12/18 03:09:35 | 000,012,844 | ---- | C] () -- C:\Documents and Settings\Subodh\Desktop\References - sanket.docx [2010/12/18 03:09:23 | 000,009,919 | ---- | C] () -- C:\Documents and Settings\Subodh\My Documents\References - sanket.docx [2010/12/18 02:51:31 | 000,079,326 | ---- | C] () -- C:\Documents and Settings\Subodh\My Documents\Literature review - sanket.docx [2010/12/18 02:15:51 | 055,413,545 | ---- | C] () -- C:\Documents and Settings\Subodh\Desktop\tmy2_pc.zip [2010/12/18 02:07:52 | 000,116,224 | ---- | C] () -- C:\Documents and Settings\Subodh\Desktop\tmy2.xls [2010/12/16 21:57:28 | 000,139,441 | ---- | C] () -- C:\Documents and Settings\Subodh\Desktop\subodh speed test.PNG [2010/12/14 22:24:02 | 000,225,622 | ---- | C] () -- C:\Documents and Settings\Subodh\Desktop\MotorMaster.docx [2010/12/14 21:06:04 | 006,038,016 | ---- | C] () -- C:\Documents and Settings\Subodh\Desktop\SEN_001.doc [2010/12/14 21:03:41 | 002,674,688 | ---- | C] () -- C:\Documents and Settings\Subodh\Desktop\Steel of WV Presentation.ppt [2010/12/02 19:42:35 | 000,054,156 | -H-- | C] () -- C:\WINDOWS\QTFont.qfn [2010/12/01 13:06:18 | 000,011,177 | ---- | C] () -- C:\Documents and Settings\Subodh\gsview32.ini [2010/06/25 12:03:12 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll [2010/06/05 11:12:32 | 000,000,086 | ---- | C] () -- C:\WINDOWS\WPCMAPI.INI [2010/02/17 00:43:45 | 000,004,096 | -H-- | C] () -- C:\Documents and Settings\Subodh\Local Settings\Application Data\keyfile3.drm [2010/01/05 10:38:11 | 000,585,728 | ---- | C] () -- C:\WINDOWS\System32\bsratswf.dll [2010/01/05 10:38:11 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\bsratwmv.dll [2009/11/27 11:32:53 | 000,002,789 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hpzinstall.log [2009/09/17 16:49:02 | 000,059,904 | ---- | C] () -- C:\WINDOWS\System32\zlib1.dll [2009/09/17 16:44:38 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\libcurl.dll [2009/09/17 16:44:20 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\libexpatw.dll [2009/09/02 22:34:00 | 000,002,528 | ---- | C] () -- C:\Documents and Settings\Subodh\Application Data\$_hpcst$.hpc [2009/06/19 22:48:03 | 000,000,783 | ---- | C] () -- C:\WINDOWS\cdplayer.ini [2009/04/27 23:45:10 | 000,001,025 | ---- | C] () -- C:\WINDOWS\System32\sysprs7.dll [2009/04/27 23:45:10 | 000,000,336 | ---- | C] () -- C:\WINDOWS\System32\lsprst7.dll [2009/04/27 23:42:22 | 000,001,024 | ---- | C] () -- C:\WINDOWS\System32\clauth2.dll [2009/04/27 23:42:22 | 000,001,024 | ---- | C] () -- C:\WINDOWS\System32\clauth1.dll [2009/04/27 23:42:22 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\ssprs.dll [2009/04/27 23:42:22 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\nsprs.dll [2009/03/15 23:01:28 | 000,073,728 | ---- | C] () -- C:\Program Files\Common Files\H08FileCvt.exe [2009/03/15 23:01:27 | 000,176,128 | ---- | C] () -- C:\Program Files\Common Files\H07ValCvt.exe [2009/03/15 23:01:27 | 000,004,921 | R--- | C] () -- C:\Program Files\Common Files\BEREADME.htm [2009/03/15 23:01:27 | 000,003,982 | R--- | C] () -- C:\Program Files\Common Files\BEREADME.txt [2009/03/14 09:31:03 | 000,000,118 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI [2009/01/22 22:42:40 | 000,057,344 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2008/09/02 22:17:16 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Subodh\Application Data\AVSDVDPlayer.m3u [2008/09/02 22:14:29 | 000,524,288 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2008/09/02 22:14:29 | 000,139,264 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2008/07/04 23:42:07 | 000,033,792 | ---- | C] () -- C:\Documents and Settings\Subodh\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2008/06/23 07:40:15 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2008/06/20 23:27:52 | 000,131,002 | ---- | C] () -- C:\WINDOWS\System32\DellPM.ini [2008/06/18 22:39:20 | 000,000,000 | ---- | C] () -- C:\WINDOWS\VPC32.INI [2008/06/18 22:27:14 | 000,000,311 | ---- | C] () -- C:\WINDOWS\wininit.ini [2008/06/18 11:58:04 | 000,007,040 | ---- | C] () -- C:\WINDOWS\System32\drivers\flash.sys [2008/06/18 11:45:30 | 000,225,280 | ---- | C] () -- C:\WINDOWS\System32\tifmicon.dll [2008/06/17 23:30:33 | 000,000,000 | ---- | C] () -- C:\WINDOWS\WinPM.INI [2008/06/17 23:23:08 | 003,870,720 | ---- | C] () -- C:\WINDOWS\System32\qt-mt323.dll [2008/06/17 19:00:43 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2008/05/30 12:22:22 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll [2008/05/30 12:18:00 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\DivXWMPExtType.dll [2004/11/15 13:26:20 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\USBCtrl.dll [2004/09/22 13:47:00 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini [2004/07/09 11:31:18 | 000,155,700 | ---- | C] () -- C:\WINDOWS\System32\ODMA32.DLL [2002/02/27 08:41:28 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\nsldappr32v50.dll [2002/02/27 08:41:26 | 000,139,264 | ---- | C] () -- C:\WINDOWS\System32\nsldap32v50.dll [2002/02/27 08:41:26 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\nsldapssl32v50.dll [2001/11/16 21:28:34 | 000,225,402 | ---- | C] () -- C:\WINDOWS\System32\CWtoVision.dll [2000/10/25 14:15:00 | 000,017,920 | ---- | C] () -- C:\WINDOWS\System32\IMPLODE.DLL [1999/09/22 11:03:54 | 000,100,352 | ---- | C] () -- C:\WINDOWS\System32\PG32CONV.DLL [1998/08/05 20:01:06 | 000,823,296 | ---- | C] () -- C:\WINDOWS\System32\Nsppx.dll [1998/08/05 20:01:04 | 000,829,952 | ---- | C] () -- C:\WINDOWS\System32\Nspp5.dll [1998/08/05 20:01:04 | 000,811,520 | ---- | C] () -- C:\WINDOWS\System32\Nspp6.dll [1998/08/05 20:01:02 | 000,815,104 | ---- | C] () -- C:\WINDOWS\System32\Nspp4.dll [1998/08/05 20:01:00 | 000,847,872 | ---- | C] () -- C:\WINDOWS\System32\Nspm5.dll [1998/08/05 20:01:00 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\Nsp.dll [1998/08/05 20:00:50 | 000,014,848 | ---- | C] () -- C:\WINDOWS\System32\Cpuid32.dll [color=#E56717]========== LOP Check ==========[/color] [2010/10/10 10:22:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Citrix [2009/03/20 09:46:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Graboid Inc [2008/07/31 00:43:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint [2010/10/02 23:55:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Subodh\Application Data\#ISW.FS# [2010/10/19 23:43:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Subodh\Application Data\.oit [2010/10/02 15:14:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Subodh\Application Data\CheckPoint [2010/10/09 08:45:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Subodh\Application Data\FileZilla [2010/09/24 19:59:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Subodh\Application Data\Giopag [2009/02/23 21:24:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Subodh\Application Data\GrabIt [2009/06/20 21:24:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Subodh\Application Data\GrabPro [2010/10/15 18:52:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Subodh\Application Data\ICAClient [2008/09/05 23:13:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Subodh\Application Data\InterVideo [2008/07/05 13:20:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Subodh\Application Data\jaman.com [2008/06/23 07:27:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Subodh\Application Data\Leadertech [2010/10/02 15:14:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Subodh\Application Data\MailFrontier [2009/07/07 04:56:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Subodh\Application Data\Mikron [2010/09/28 21:26:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Subodh\Application Data\Oceff [2010/09/24 10:25:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Subodh\Application Data\Orbit [2010/10/09 07:29:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Subodh\Application Data\SSH [2009/10/05 22:22:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Subodh\Application Data\StreamTorrent [2009/12/07 07:53:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Subodh\Application Data\UnitConverter [2010/12/01 12:59:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Subodh\Application Data\WinEdt Team [2010/11/07 18:01:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Sushil\Application Data\ICAClient [2008/09/19 18:31:02 | 000,000,108 | ---- | M] () -- C:\WINDOWS\Tasks\Critical Battery Alarm Program.job [2010/12/27 22:37:11 | 000,000,236 | ---- | M] () -- C:\WINDOWS\Tasks\OGALogon.job [2010/12/27 20:30:46 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{C853BC0D-7FA6-496C-993B-D0C3183645A6}.job [color=#E56717]========== Purity Check ==========[/color] < End of report >