Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Removal of a "network" virus - browser redirects


  • Please log in to reply

#1
powertrainee

powertrainee

    New Member

  • Member
  • Pip
  • 1 posts
I was experiencing browser redirects to Google-Analytics and KDirectory. After a complete wipe and installation of Win7, I was surprised to see I was having the same problem. When I tried the same thing again, but connected on my school network, everything went smoothly with no problems.

I have just connected to my computer to my home network, which only involves a NetGear router and three (total) connected computers, and the redirects have started again. How would I go about scanning the network for any viruses/malware? Would it be simply scanning each computer or is there a way to scan the entire "network"?

Thanks!


Here is my report:
OTL logfile created on: 11/27/2010 10:38:57 AM - Run 1
OTL by OldTimer - Version 3.2.17.3 Folder = C:\Users\Varun\Downloads
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

4.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 65.00% Memory free
8.00 Gb Paging File | 6.00 Gb Available in Paging File | 80.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 416.83 Gb Total Space | 376.73 Gb Free Space | 90.38% Space Free | Partition Type: NTFS
Drive D: | 48.83 Gb Total Space | 35.31 Gb Free Space | 72.32% Space Free | Partition Type: NTFS

Computer Name: VARUN-PC | User Name: Varun | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2010/11/27 10:38:47 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Varun\Downloads\OTL.exe
PRC - [2010/11/01 16:36:03 | 000,974,904 | ---- | M] (Google Inc.) -- C:\Users\Varun\AppData\Local\Google\Chrome\Application\chrome.exe
PRC - [2010/02/26 00:10:20 | 021,979,992 | ---- | M] () -- C:\Users\Varun\AppData\Roaming\Dropbox\bin\Dropbox.exe
PRC - [2007/12/06 16:03:41 | 000,660,768 | ---- | M] (ABBYY (BIT Software)) -- C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe


========== Modules (SafeList) ==========

MOD - [2010/11/27 10:38:47 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Varun\Downloads\OTL.exe
MOD - [2010/08/21 00:21:32 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV:64bit: - [2010/03/25 23:48:42 | 000,017,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Essentials\MsMpEng.exe -- (MsMpSvc)
SRV:64bit: - [2009/07/13 20:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/10 16:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2007/12/06 16:03:41 | 000,660,768 | ---- | M] (ABBYY (BIT Software)) [Auto | Running] -- C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Professional.9.0)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2010/11/07 18:32:30 | 001,605,632 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2010/11/07 14:38:35 | 007,345,632 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2010/09/23 00:36:48 | 000,048,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2010/04/14 01:01:44 | 000,054,824 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\btusbflt.sys -- (btusbflt)
DRV:64bit: - [2010/01/28 09:25:02 | 000,086,120 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2010/01/18 20:37:58 | 000,128,512 | ---- | M] (ELAN Microelectronic Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ETD.sys -- (ETD)
DRV:64bit: - [2009/07/13 20:52:21 | 000,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2009/07/13 20:52:21 | 000,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009/07/13 20:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 20:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 20:47:48 | 000,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009/07/13 20:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/13 20:18:06 | 000,281,088 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BrSerIb.sys -- (BrSerIb) Brother MFC Serial Interface Driver(WDM)
DRV:64bit: - [2009/06/10 15:41:10 | 000,015,360 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BrUsbSIb.sys -- (BrUsbSIb) Brother MFC Serial USB Driver(WDM)
DRV:64bit: - [2009/06/10 15:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:64bit: - [2009/06/10 15:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 15:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 15:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 15:34:18 | 000,057,344 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C) NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20)
DRV:64bit: - [2009/06/10 15:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2007/08/09 01:21:00 | 000,013,680 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ATK64AMD.sys -- (MTsensor)

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://ca.msn.com/?rd=1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = D6 52 CF F3 6D 8A CB 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



O1 HOSTS File: ([2009/06/10 16:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O4:64bit: - HKLM..\Run: [ETDWare] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronic Corp.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [MSSE] c:\Program Files\Microsoft Security Essentials\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [NvCplDaemon] C:\Windows\SysNative\NvCpl.DLL (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - Startup: C:\Users\Varun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\Varun\AppData\Roaming\Dropbox\bin\Dropbox.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.109.65.68 213.109.75.214
O18:64bit: - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found
O18:64bit: - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - Reg Error: Key error. File not found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - Reg Error: Key error. - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010/11/26 16:13:25 | 000,000,000 | ---D | C] -- C:\Users\Varun\AppData\Local\ElevatedDiagnostics
[2010/11/24 23:08:29 | 000,000,000 | ---D | C] -- C:\Users\Varun\Desktop\4OJ4
[2010/11/23 09:47:45 | 000,000,000 | ---D | C] -- C:\Users\Varun\Desktop\Kanye West - My Beautiful Dark Twisted Fantasy
[2010/11/20 17:35:34 | 000,000,000 | ---D | C] -- C:\Program Files\Elantech
[2010/11/20 17:35:13 | 000,128,512 | ---- | C] (ELAN Microelectronic Corp.) -- C:\Windows\SysNative\drivers\ETD.sys
[2010/11/20 17:35:11 | 004,672,000 | ---- | C] (ELAN Microelectronics Corp.) -- C:\Windows\SysNative\ETDUI.cpl
[2010/11/18 15:01:51 | 000,000,000 | ---D | C] -- C:\Users\Varun\AppData\Roaming\RETScreen
[2010/11/18 15:01:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\RETScreen
[2010/11/18 15:00:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Wise Installation Wizard
[2010/11/16 18:29:05 | 000,000,000 | ---D | C] -- C:\Users\Varun\Documents\My Received Files
[2010/11/10 21:32:34 | 000,000,000 | ---D | C] -- C:\Users\Varun\AppData\Roaming\WinRAR
[2010/11/10 21:32:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinRAR
[2010/11/09 20:53:50 | 000,000,000 | R--D | C] -- C:\Users\Varun\Documents\My Dropbox
[2010/11/09 20:52:53 | 000,000,000 | ---D | C] -- C:\Users\Varun\AppData\Roaming\Dropbox
[2010/11/09 13:27:46 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SRSLabs
[2010/11/09 13:27:44 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM
[2010/11/09 13:27:44 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2010/11/09 13:27:24 | 000,363,008 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll
[2010/11/09 13:27:24 | 000,304,640 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll
[2010/11/09 13:27:24 | 000,304,640 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll
[2010/11/09 13:27:24 | 000,198,656 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll
[2010/11/09 13:27:24 | 000,095,744 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll
[2010/11/09 13:27:24 | 000,073,216 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll
[2010/11/09 13:27:23 | 000,309,760 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll
[2010/11/09 13:27:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek
[2010/11/09 13:27:19 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp
[2010/11/09 13:27:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2010/11/09 13:26:36 | 000,000,000 | ---D | C] -- C:\Users\Varun\Desktop\New folder
[2010/11/09 08:42:23 | 000,000,000 | ---D | C] -- C:\Users\Varun\AppData\Roaming\ABBYY
[2010/11/09 08:21:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ABBYY
[2010/11/09 08:19:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ABBYY FineReader 9.0
[2010/11/09 08:19:17 | 000,000,000 | ---D | C] -- C:\Users\Varun\AppData\Local\ABBYY
[2010/11/09 08:19:17 | 000,000,000 | ---D | C] -- C:\ProgramData\ABBYY
[2010/11/09 08:12:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MagicISO
[2010/11/09 08:10:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Smart Projects
[2010/11/08 22:30:13 | 000,000,000 | ---D | C] -- C:\Users\Varun\Documents\Vuze Downloads
[2010/11/08 22:29:56 | 000,000,000 | ---D | C] -- C:\Users\Varun\AppData\Roaming\Azureus
[2010/11/08 22:29:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Vuze
[2010/11/08 22:24:41 | 000,000,000 | ---D | C] -- C:\Users\Varun\AppData\Roaming\PDF Writer
[2010/11/08 22:24:41 | 000,000,000 | ---D | C] -- C:\Users\Varun\AppData\Local\PDF Writer
[2010/11/08 22:24:41 | 000,000,000 | ---D | C] -- C:\ProgramData\PDF Writer
[2010/11/08 22:16:56 | 000,227,840 | ---- | C] (Bullzip) -- C:\Windows\SysWow64\bzFlRdr.dll
[2010/11/08 22:16:56 | 000,135,168 | ---- | C] (Bullzip) -- C:\Windows\SysWow64\bzpdfc.dll
[2010/11/08 22:16:56 | 000,103,424 | ---- | C] (Bullzip) -- C:\Windows\SysWow64\bzDCT.dll
[2010/11/08 22:16:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Bullzip
[2010/11/08 22:16:53 | 000,214,016 | ---- | C] (Bullzip) -- C:\Windows\SysNative\bzpdf.dll
[2010/11/08 22:16:49 | 000,000,000 | ---D | C] -- C:\Program Files\Bullzip
[2010/11/08 10:48:06 | 000,000,000 | ---D | C] -- C:\Users\Varun\AppData\Roaming\PTI
[2010/11/07 21:18:56 | 000,000,000 | ---D | C] -- C:\Users\Varun\Desktop\School
[2010/11/07 18:48:06 | 000,000,000 | ---D | C] -- C:\Users\Varun\.pssenvmgr
[2010/11/07 18:45:07 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2010/11/07 18:43:17 | 000,000,000 | ---D | C] -- C:\Python25
[2010/11/07 18:38:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PTI
[2010/11/07 18:20:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2
[2010/11/07 18:18:53 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat
[2010/11/07 18:18:52 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat
[2010/11/07 18:16:57 | 000,000,000 | -H-D | C] -- C:\ProgramData\{5EB77F86-BDA3-4CF8-B964-7638699CCF32}
[2010/11/07 18:16:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PowerWorld
[2010/11/07 18:16:28 | 000,000,000 | ---D | C] -- C:\Users\Varun\AppData\Local\PackageAware
[2010/11/07 18:10:36 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2010/11/07 17:27:57 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2010/11/07 17:27:15 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2010/11/07 17:26:55 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2010/11/07 17:22:50 | 000,000,000 | ---D | C] -- C:\Users\Varun\Tracing
[2010/11/07 17:22:17 | 000,000,000 | ---D | C] -- C:\Users\Varun\Desktop\Power Books
[2010/11/07 17:20:06 | 000,000,000 | ---D | C] -- C:\Users\Varun\Desktop\Microsoft Office 2007
[2010/11/07 17:19:42 | 000,000,000 | ---D | C] -- C:\Users\Varun\Desktop\Ledgecroft
[2010/11/07 17:19:31 | 000,000,000 | ---D | C] -- C:\Users\Varun\Desktop\Jobs
[2010/11/07 17:17:06 | 000,000,000 | ---D | C] -- C:\Users\Varun\Desktop\101MSDCF
[2010/11/07 17:15:05 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\DRVSTORE
[2010/11/07 17:15:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Windows Live
[2010/11/07 17:10:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2010/11/07 17:07:37 | 000,000,000 | ---D | C] -- C:\Users\Varun\AppData\Local\Windows Live
[2010/11/07 17:07:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Windows Live
[2010/11/07 17:01:30 | 000,000,000 | ---D | C] -- C:\Users\Varun\AppData\Local\Google
[2010/11/07 17:01:11 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed
[2010/11/07 17:00:45 | 000,000,000 | ---D | C] -- C:\Users\Varun\AppData\Local\Apps
[2010/11/07 17:00:44 | 000,000,000 | ---D | C] -- C:\Users\Varun\AppData\Local\Deployment
[2010/11/07 16:56:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2010/11/07 16:55:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2010/11/07 16:55:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe AIR
[2010/11/07 16:55:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
[2010/11/07 16:55:37 | 000,000,000 | ---D | C] -- C:\Users\Varun\AppData\Roaming\Macromedia
[2010/11/07 16:55:36 | 000,000,000 | ---D | C] -- C:\Users\Varun\AppData\Roaming\Adobe
[2010/11/07 16:55:15 | 000,000,000 | ---D | C] -- C:\Users\Varun\AppData\Local\Adobe
[2010/11/07 16:48:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Antimalware
[2010/11/07 16:47:59 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Essentials
[2010/11/07 14:49:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Works
[2010/11/07 14:49:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio
[2010/11/07 14:49:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER
[2010/11/07 14:49:29 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2010/11/07 14:49:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
[2010/11/07 14:47:48 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2010/11/07 14:47:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 8
[2010/11/07 14:47:08 | 000,000,000 | ---D | C] -- C:\Users\Varun\AppData\Local\Microsoft Help
[2010/11/07 14:47:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office
[2010/11/07 14:47:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2010/11/07 14:45:50 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2010/11/07 14:40:54 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2010/11/07 14:34:50 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2010/11/07 14:34:38 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2010/11/07 14:33:18 | 000,000,000 | R--D | C] -- C:\Users\Varun\Searches
[2010/11/07 14:33:18 | 000,000,000 | -H-D | C] -- C:\Users\Varun\Application Data\Microsoft\Internet Explorer\Quick Launch\User Pinned
[2010/11/07 14:33:05 | 000,000,000 | ---D | C] -- C:\Users\Varun\AppData\Roaming\Identities
[2010/11/07 14:33:00 | 000,000,000 | R--D | C] -- C:\Users\Varun\Contacts
[2010/11/07 14:32:57 | 000,000,000 | ---D | C] -- C:\Users\Varun\AppData\Local\VirtualStore
[2010/11/07 14:32:40 | 000,000,000 | --SD | C] -- C:\Users\Varun\AppData\Roaming\Microsoft
[2010/11/07 14:32:40 | 000,000,000 | R--D | C] -- C:\Users\Varun\Videos
[2010/11/07 14:32:40 | 000,000,000 | R--D | C] -- C:\Users\Varun\Saved Games
[2010/11/07 14:32:40 | 000,000,000 | R--D | C] -- C:\Users\Varun\Pictures
[2010/11/07 14:32:40 | 000,000,000 | R--D | C] -- C:\Users\Varun\Music
[2010/11/07 14:32:40 | 000,000,000 | R--D | C] -- C:\Users\Varun\Links
[2010/11/07 14:32:40 | 000,000,000 | R--D | C] -- C:\Users\Varun\Favorites
[2010/11/07 14:32:40 | 000,000,000 | R--D | C] -- C:\Users\Varun\Downloads
[2010/11/07 14:32:40 | 000,000,000 | R--D | C] -- C:\Users\Varun\My Documents
[2010/11/07 14:32:40 | 000,000,000 | R--D | C] -- C:\Users\Varun\Desktop
[2010/11/07 14:32:40 | 000,000,000 | -HSD | C] -- C:\Users\Varun\AppData\Local\Temporary Internet Files
[2010/11/07 14:32:40 | 000,000,000 | -HSD | C] -- C:\Users\Varun\Templates
[2010/11/07 14:32:40 | 000,000,000 | -HSD | C] -- C:\Users\Varun\Start Menu
[2010/11/07 14:32:40 | 000,000,000 | -HSD | C] -- C:\Users\Varun\SendTo
[2010/11/07 14:32:40 | 000,000,000 | -HSD | C] -- C:\Users\Varun\Recent
[2010/11/07 14:32:40 | 000,000,000 | -HSD | C] -- C:\Users\Varun\PrintHood
[2010/11/07 14:32:40 | 000,000,000 | -HSD | C] -- C:\Users\Varun\NetHood
[2010/11/07 14:32:40 | 000,000,000 | -HSD | C] -- C:\Users\Varun\Documents\My Videos
[2010/11/07 14:32:40 | 000,000,000 | -HSD | C] -- C:\Users\Varun\Documents\My Pictures
[2010/11/07 14:32:40 | 000,000,000 | -HSD | C] -- C:\Users\Varun\Documents\My Music
[2010/11/07 14:32:40 | 000,000,000 | -HSD | C] -- C:\Users\Varun\My Documents
[2010/11/07 14:32:40 | 000,000,000 | -HSD | C] -- C:\Users\Varun\Local Settings
[2010/11/07 14:32:40 | 000,000,000 | -HSD | C] -- C:\Users\Varun\AppData\Local\History
[2010/11/07 14:32:40 | 000,000,000 | -HSD | C] -- C:\Users\Varun\Cookies
[2010/11/07 14:32:40 | 000,000,000 | -HSD | C] -- C:\Users\Varun\Application Data
[2010/11/07 14:32:40 | 000,000,000 | -HSD | C] -- C:\Users\Varun\AppData\Local\Application Data
[2010/11/07 14:32:40 | 000,000,000 | -H-D | C] -- C:\Users\Varun\AppData
[2010/11/07 14:32:40 | 000,000,000 | ---D | C] -- C:\Users\Varun\AppData\Local\Temp
[2010/11/07 14:32:40 | 000,000,000 | ---D | C] -- C:\Users\Varun\AppData\Local\Microsoft
[2010/11/07 14:32:40 | 000,000,000 | ---D | C] -- C:\Users\Varun\AppData\Roaming\Media Center Programs
[2010/11/07 14:32:25 | 000,000,000 | -HSD | C] -- C:\Recovery
[2010/11/07 14:32:19 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[1 C:\Users\Varun\Desktop\*.tmp files -> C:\Users\Varun\Desktop\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010/11/27 10:07:49 | 000,730,320 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2010/11/27 10:07:49 | 000,627,082 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2010/11/27 10:07:49 | 000,107,366 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2010/11/27 10:06:05 | 000,000,908 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1492885912-1520817037-934000311-1000UA.job
[2010/11/26 22:04:57 | 000,014,816 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010/11/26 22:04:57 | 000,014,816 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010/11/26 22:00:59 | 000,000,419 | ---- | M] () -- C:\Windows\BRWMARK.INI
[2010/11/26 17:06:00 | 000,000,856 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1492885912-1520817037-934000311-1000Core.job
[2010/11/26 16:11:48 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/11/26 16:11:38 | 3193,716,736 | -HS- | M] () -- C:\hiberfil.sys
[2010/11/24 23:45:48 | 000,025,239 | ---- | M] () -- C:\Users\Varun\Desktop\goyalv2.pdf
[2010/11/22 18:00:26 | 002,397,184 | ---- | M] () -- C:\Users\Varun\Desktop\5b03_Final_Presentation_v16.ppt
[2010/11/21 14:45:04 | 001,117,696 | ---- | M] () -- C:\Users\Varun\Desktop\5b03_Final_Presentation_v03.ppt
[2010/11/18 16:24:56 | 001,579,224 | ---- | M] () -- C:\Users\Varun\Desktop\docu.pdf
[2010/11/18 15:01:03 | 000,002,184 | ---- | M] () -- C:\Users\Varun\Desktop\RETScreen.lnk
[2010/11/18 11:21:04 | 002,745,485 | ---- | M] () -- C:\Users\Varun\Desktop\05316224.pdf
[2010/11/18 08:42:38 | 002,348,465 | ---- | M] () -- C:\Users\Varun\Desktop\Novel Control of a Permanent Magnet Linear Generator for Ocean Wave Energy Applications.pdf
[2010/11/14 15:45:39 | 005,625,332 | ---- | M] () -- C:\Users\Varun\Desktop\PHzMonitor_9_Doc.pdf
[2010/11/11 07:38:04 | 000,743,534 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2010/11/09 20:53:50 | 000,001,001 | ---- | M] () -- C:\Users\Varun\Desktop\Dropbox.lnk
[2010/11/09 20:53:50 | 000,000,981 | ---- | M] () -- C:\Users\Varun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
[2010/11/09 09:06:14 | 003,137,266 | ---- | M] () -- C:\Users\Varun\Documents\Document.doc
[2010/11/09 08:12:29 | 000,001,799 | ---- | M] () -- C:\Users\Varun\Desktop\MagicISO.lnk
[2010/11/08 22:29:50 | 000,001,848 | ---- | M] () -- C:\Users\Varun\Application Data\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk
[2010/11/08 22:29:50 | 000,001,848 | ---- | M] () -- C:\Users\Public\Desktop\Vuze.lnk
[2010/11/08 14:52:42 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2010/11/08 00:12:45 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2010/11/07 18:51:48 | 000,413,312 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2010/11/07 18:48:02 | 000,001,607 | ---- | M] () -- C:\Users\Public\Desktop\PSSEenvMgr.lnk
[2010/11/07 18:47:43 | 000,001,892 | ---- | M] () -- C:\Users\Public\Desktop\PSS®E-32 Command Prompt.lnk
[2010/11/07 18:46:10 | 000,004,076 | ---- | M] () -- C:\Windows\pssplt3200.ini
[2010/11/07 18:46:10 | 000,001,439 | ---- | M] () -- C:\Windows\psse3200.ini
[2010/11/07 18:46:10 | 000,001,037 | ---- | M] () -- C:\Windows\imd3200.ini
[2010/11/07 18:45:57 | 000,001,318 | ---- | M] () -- C:\Users\Public\Desktop\PSS®E University 32.lnk
[2010/11/07 18:32:30 | 001,605,632 | ---- | M] (Atheros Communications, Inc.) -- C:\Windows\SysNative\drivers\athrx.sys
[2010/11/07 17:30:30 | 000,041,962 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2010/11/07 17:30:30 | 000,041,962 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2010/11/07 17:02:08 | 000,002,274 | ---- | M] () -- C:\Users\Varun\Desktop\Google Chrome.lnk
[2010/11/07 16:56:41 | 000,002,014 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2010/11/07 16:48:00 | 000,001,031 | ---- | M] () -- C:\Users\Public\Desktop\Microsoft Security Essentials.lnk
[2010/11/07 14:38:47 | 000,015,624 | ---- | M] () -- C:\Windows\SysNative\nvdisp_IH.nvu
[2010/11/07 14:38:38 | 002,805,511 | ---- | M] () -- C:\Windows\SysNative\iglhxa64.cpa
[2010/11/07 14:38:38 | 000,059,442 | ---- | M] () -- C:\Windows\SysNative\iglhxg64.vp
[2010/11/07 14:38:38 | 000,059,330 | ---- | M] () -- C:\Windows\SysNative\iglhxc64.vp
[2010/11/07 14:38:38 | 000,058,839 | ---- | M] () -- C:\Windows\SysNative\iglhxo64.vp
[2010/11/07 14:38:38 | 000,004,436 | ---- | M] () -- C:\Windows\SysNative\iglhxs64.vp
[2010/11/07 14:38:38 | 000,001,073 | ---- | M] () -- C:\Windows\SysNative\iglhxa64.vp
[2010/11/07 14:38:37 | 000,982,220 | ---- | M] () -- C:\Windows\SysWow64\igkrng500.bin
[2010/11/07 14:38:37 | 000,982,220 | ---- | M] () -- C:\Windows\SysNative\igkrng500.bin
[2010/11/07 14:38:36 | 000,134,592 | ---- | M] () -- C:\Windows\SysWow64\igfcg500.bin
[2010/11/07 14:38:36 | 000,134,592 | ---- | M] () -- C:\Windows\SysNative\igfcg500.bin
[2010/11/07 14:38:36 | 000,092,216 | ---- | M] () -- C:\Windows\SysWow64\igfcg500m.bin
[2010/11/07 14:38:36 | 000,092,216 | ---- | M] () -- C:\Windows\SysNative\igfcg500m.bin
[2010/11/07 14:38:35 | 000,439,300 | ---- | M] () -- C:\Windows\SysWow64\igcompkrng500.bin
[2010/11/07 14:38:35 | 000,439,300 | ---- | M] () -- C:\Windows\SysNative\igcompkrng500.bin
[2010/11/07 14:33:54 | 000,001,437 | ---- | M] () -- C:\Users\Varun\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[1 C:\Users\Varun\Desktop\*.tmp files -> C:\Users\Varun\Desktop\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/11/26 22:00:59 | 000,000,419 | ---- | C] () -- C:\Windows\BRWMARK.INI
[2010/11/24 23:45:48 | 000,025,239 | ---- | C] () -- C:\Users\Varun\Desktop\goyalv2.pdf
[2010/11/22 16:17:26 | 002,397,184 | ---- | C] () -- C:\Users\Varun\Desktop\5b03_Final_Presentation_v16.ppt
[2010/11/21 14:45:00 | 001,117,696 | ---- | C] () -- C:\Users\Varun\Desktop\5b03_Final_Presentation_v03.ppt
[2010/11/18 16:24:56 | 001,579,224 | ---- | C] () -- C:\Users\Varun\Desktop\docu.pdf
[2010/11/18 15:01:03 | 000,002,184 | ---- | C] () -- C:\Users\Varun\Desktop\RETScreen.lnk
[2010/11/18 11:21:04 | 002,745,485 | ---- | C] () -- C:\Users\Varun\Desktop\05316224.pdf
[2010/11/18 08:42:38 | 002,348,465 | ---- | C] () -- C:\Users\Varun\Desktop\Novel Control of a Permanent Magnet Linear Generator for Ocean Wave Energy Applications.pdf
[2010/11/14 15:45:39 | 005,625,332 | ---- | C] () -- C:\Users\Varun\Desktop\PHzMonitor_9_Doc.pdf
[2010/11/11 07:38:04 | 000,743,534 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2010/11/09 20:53:50 | 000,001,001 | ---- | C] () -- C:\Users\Varun\Desktop\Dropbox.lnk
[2010/11/09 20:53:50 | 000,000,981 | ---- | C] () -- C:\Users\Varun\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
[2010/11/09 13:27:28 | 000,000,520 | ---- | C] () -- C:\Windows\SysNative\drivers\SAMSFPA.DAT
[2010/11/09 09:05:55 | 003,137,266 | ---- | C] () -- C:\Users\Varun\Documents\Document.doc
[2010/11/09 08:12:29 | 000,001,799 | ---- | C] () -- C:\Users\Varun\Desktop\MagicISO.lnk
[2010/11/08 22:29:50 | 000,001,848 | ---- | C] () -- C:\Users\Varun\Application Data\Microsoft\Internet Explorer\Quick Launch\Vuze.lnk
[2010/11/08 22:29:50 | 000,001,848 | ---- | C] () -- C:\Users\Public\Desktop\Vuze.lnk
[2010/11/08 14:52:42 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2010/11/08 00:12:45 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2010/11/07 18:48:02 | 000,001,607 | ---- | C] () -- C:\Users\Public\Desktop\PSSEenvMgr.lnk
[2010/11/07 18:47:43 | 000,001,892 | ---- | C] () -- C:\Users\Public\Desktop\PSS®E-32 Command Prompt.lnk
[2010/11/07 18:45:56 | 000,001,318 | ---- | C] () -- C:\Users\Public\Desktop\PSS®E University 32.lnk
[2010/11/07 18:45:10 | 000,004,076 | ---- | C] () -- C:\Windows\pssplt3200.ini
[2010/11/07 18:45:10 | 000,001,439 | ---- | C] () -- C:\Windows\psse3200.ini
[2010/11/07 18:45:10 | 000,001,037 | ---- | C] () -- C:\Windows\imd3200.ini
[2010/11/07 18:44:09 | 000,327,680 | ---- | C] () -- C:\Windows\SysWow64\pythoncom25.dll
[2010/11/07 18:44:09 | 000,102,400 | ---- | C] () -- C:\Windows\SysWow64\pywintypes25.dll
[2010/11/07 17:27:15 | 3193,716,736 | -HS- | C] () -- C:\hiberfil.sys
[2010/11/07 17:17:05 | 003,376,748 | ---- | C] () -- C:\Users\Varun\Desktop\lab_Setup.pdf
[2010/11/07 17:17:01 | 018,388,177 | ---- | C] () -- C:\Users\Varun\Desktop\Glover.rar
[2010/11/07 17:17:01 | 000,083,992 | ---- | C] () -- C:\Users\Varun\Desktop\Credit Score 3.pdf
[2010/11/07 17:17:00 | 004,793,802 | ---- | C] () -- C:\Users\Varun\Desktop\AACC_DisplayDemo.pdf
[2010/11/07 17:02:08 | 000,002,274 | ---- | C] () -- C:\Users\Varun\Desktop\Google Chrome.lnk
[2010/11/07 17:01:33 | 000,000,908 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1492885912-1520817037-934000311-1000UA.job
[2010/11/07 17:01:31 | 000,000,856 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1492885912-1520817037-934000311-1000Core.job
[2010/11/07 16:56:41 | 000,002,014 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2010/11/07 16:48:00 | 000,001,031 | ---- | C] () -- C:\Users\Public\Desktop\Microsoft Security Essentials.lnk
[2010/11/07 14:33:54 | 000,001,437 | ---- | C] () -- C:\Users\Varun\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/11/07 14:32:40 | 000,000,290 | ---- | C] () -- C:\Users\Varun\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2010/11/07 14:32:40 | 000,000,272 | ---- | C] () -- C:\Users\Varun\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2009/07/13 18:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009/07/13 16:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll

========== LOP Check ==========

[2010/11/23 10:40:43 | 000,000,000 | ---D | M] -- C:\Users\Varun\AppData\Roaming\Azureus
[2010/11/26 16:14:20 | 000,000,000 | ---D | M] -- C:\Users\Varun\AppData\Roaming\Dropbox
[2010/11/08 22:24:41 | 000,000,000 | ---D | M] -- C:\Users\Varun\AppData\Roaming\PDF Writer
[2010/11/08 11:09:28 | 000,000,000 | ---D | M] -- C:\Users\Varun\AppData\Roaming\PTI
[2010/11/18 15:01:51 | 000,000,000 | ---D | M] -- C:\Users\Varun\AppData\Roaming\RETScreen
[2009/07/14 00:08:49 | 000,016,992 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



< End of report >
  • 0

Advertisements


#2
kahdah

kahdah

    GeekU Teacher

  • Retired Staff
  • 15,822 posts
Hello powertrainee

Welcome to G2Go. :D
=====================
You will need to reset the router then the redirects will quit.
No sign of infection in your logs.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP