Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Trojan.Win32.Boaxee


  • This topic is locked This topic is locked
2 replies to this topic

#1 devangx5

devangx5

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:02:18 AM

Posted 24 January 2010 - 08:11 AM

Hello,

Microsoft Security Essentials keeps detecting a Win32/Boaxxe.E trojan every few minutes. It comes up in the Windows Temp folder. The file 'svchost.exe' is mentioned when MS Security Essentials detects it. I also saw a post by Andre in this forum, which is similar to what I am posting now. I have followed some instructions given by one of the members of this forum and pasted the logs below generated by OTL. Please help. Thank you.

OTL logfile created on: 24-01-2010 18:32:02 - Run 1
OTL by OldTimer - Version 3.1.26.0 Folder = C:\Users\Ruuchi D\Downloads
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00004009 | Country: India | Language: ENN | Date Format: dd-MM-yyyy

2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 63.00% Memory free
4.00 Gb Paging File | 3.00 Gb Available in Paging File | 70.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 297.99 Gb Total Space | 215.83 Gb Free Space | 72.43% Space Free | Partition Type: NTFS
Drive D: | 1397.26 Gb Total Space | 322.74 Gb Free Space | 23.10% Space Free | Partition Type: NTFS
Drive E: | 698.63 Gb Total Space | 490.67 Gb Free Space | 70.23% Space Free | Partition Type: NTFS
Drive F: | 698.63 Gb Total Space | 471.13 Gb Free Space | 67.44% Space Free | Partition Type: NTFS
Drive G: | 1397.26 Gb Total Space | 392.22 Gb Free Space | 28.07% Space Free | Partition Type: NTFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: CAPRICA6
Current User Name: Ruuchi D
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010-01-24 18:31:37 | 00,547,328 | ---- | M] (OldTimer Tools) -- C:\Users\Ruuchi D\Downloads\OTL.exe
PRC - [2010-01-03 16:27:15 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009-12-22 23:14:05 | 00,908,248 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009-12-09 18:55:16 | 00,615,720 | ---- | M] (Juniper Networks) -- C:\Program Files\Juniper Networks\Common Files\dsNcService.exe
PRC - [2009-12-08 11:27:10 | 01,503,232 | ---- | M] (Nokia) -- C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
PRC - [2009-11-20 20:33:00 | 00,122,984 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvvsvc.exe
PRC - [2009-11-20 19:17:00 | 00,240,232 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2009-11-12 16:00:48 | 01,007,616 | ---- | M] (Xmarks.com) -- C:\Program Files\Xmarks\IE Extension\xmarkssync.exe
PRC - [2009-09-13 18:52:50 | 01,048,392 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Essentials\msseces.exe
PRC - [2009-09-09 10:24:52 | 00,202,800 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Airtel\NetXpert\bin\sprtsvc.exe
PRC - [2009-09-09 10:24:50 | 00,202,016 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Airtel\NetXpert\bin\sprtcmd.exe
PRC - [2009-08-11 16:09:52 | 02,360,608 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
PRC - [2009-08-11 16:09:52 | 00,795,936 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
PRC - [2009-08-11 16:09:52 | 00,582,944 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
PRC - [2009-08-03 11:05:50 | 02,613,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009-07-14 06:44:42 | 00,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009-07-02 17:36:52 | 00,203,800 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Essentials\MpCmdRun.exe
PRC - [2009-07-02 17:36:52 | 00,017,904 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Essentials\MsMpEng.exe
PRC - [2009-06-17 20:32:34 | 00,023,552 | ---- | M] (Creative Technology Ltd) -- C:\Windows\System32\CTXFIHLP.EXE
PRC - [2009-06-17 20:27:42 | 01,225,216 | ---- | M] (Creative Technology Ltd) -- C:\Windows\System32\CTXFISPI.EXE
PRC - [2009-06-01 13:51:52 | 01,468,296 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft IntelliPoint\ipoint.exe
PRC - [2009-06-01 13:43:46 | 01,501,064 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft IntelliType Pro\itype.exe
PRC - [2009-06-01 13:43:46 | 00,448,400 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft IntelliType Pro\dpupdchk.exe
PRC - [2009-05-27 03:27:04 | 29,262,680 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
PRC - [2009-04-09 11:06:00 | 00,241,789 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Volume Panel\VolPanlu.exe
PRC - [2009-03-30 16:28:36 | 01,533,808 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
PRC - [2009-03-30 16:28:36 | 00,183,152 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
PRC - [2009-02-23 20:13:56 | 00,307,200 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTAudSvc.exe
PRC - [2008-11-25 12:01:07 | 00,239,968 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
PRC - [2008-11-24 22:31:12 | 00,087,904 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
PRC - [2008-10-02 21:53:16 | 00,546,288 | ---- | M] (Google) -- C:\Program Files\Google\Google Calendar Sync\GoogleCalendarSync.exe


========== Modules (SafeList) ==========

MOD - [2010-01-24 18:31:37 | 00,547,328 | ---- | M] (OldTimer Tools) -- C:\Users\Ruuchi D\Downloads\OTL.exe
MOD - [2009-09-09 10:24:50 | 00,116,264 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Airtel\NetXpert\bin\sprthook.dll
MOD - [2009-08-11 16:10:08 | 00,226,592 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\WIDCOMM\Bluetooth Software\BtMmHook.dll
MOD - [2009-07-14 06:46:15 | 00,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sspicli.dll
MOD - [2009-07-14 06:46:13 | 00,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sechost.dll
MOD - [2009-07-14 06:46:13 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\samcli.dll
MOD - [2009-07-14 06:46:12 | 00,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\profapi.dll
MOD - [2009-07-14 06:46:03 | 00,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netutils.dll
MOD - [2009-07-14 06:45:35 | 00,288,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KernelBase.dll
MOD - [2009-07-14 06:45:13 | 00,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmapi.dll
MOD - [2009-07-14 06:45:11 | 00,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devobj.dll
MOD - [2009-07-14 06:45:07 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptbase.dll
MOD - [2009-07-14 06:45:02 | 00,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cfgmgr32.dll
MOD - [2009-07-14 06:33:50 | 01,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - [2010-01-24 08:31:20 | 00,037,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\themeservice.dll -- (Themes)
SRV - [2010-01-23 12:41:51 | 00,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files\Common Files\Creative Labs Shared\Service\DDLLicensing.exe -- (Creative Dolby Digital Live Pack Licensing Service)
SRV - [2010-01-23 12:39:06 | 00,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe -- (Creative ALchemy AL6 Licensing Service)
SRV - [2009-12-09 18:55:16 | 00,615,720 | ---- | M] (Juniper Networks) [Auto | Running] -- C:\Program Files\Juniper Networks\Common Files\dsNcService.exe -- (dsNcService)
SRV - [2009-11-20 20:33:00 | 00,122,984 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Windows\System32\nvvsvc.exe -- (nvsvc)
SRV - [2009-11-20 19:17:00 | 00,240,232 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2009-11-14 04:26:46 | 00,136,120 | ---- | M] (Google) [On_Demand | Stopped] -- C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc)
SRV - [2009-10-27 09:26:36 | 00,657,408 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2009-09-09 10:24:52 | 00,202,800 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files\Airtel\NetXpert\bin\sprtsvc.exe -- (sprtsvc_nxpclient) SupportSoft Sprocket Service (nxpclient)
SRV - [2009-08-11 16:09:52 | 00,582,944 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe -- (btwdins)
SRV - [2009-07-21 12:38:56 | 00,386,424 | ---- | M] (SupportSoft, Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\SupportSoft\bin\ssrc.exe -- (SupportSoft RemoteAssist)
SRV - [2009-07-16 17:04:16 | 00,316,664 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2009-07-14 06:46:21 | 00,185,856 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wwansvc.dll -- (WwanSvc)
SRV - [2009-07-14 06:46:17 | 00,151,552 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\wbiosrvc.dll -- (WbioSrvc)
SRV - [2009-07-14 06:46:17 | 00,119,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\umpo.dll -- (Power)
SRV - [2009-07-14 06:46:15 | 00,053,760 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sppuinotify.dll -- (sppuinotify)
SRV - [2009-07-14 06:46:13 | 00,043,520 | ---- | M] (Microsoft Corporation) [Unknown | Running] -- C:\Windows\System32\RpcEpMap.dll -- (RpcEptMapper)
SRV - [2009-07-14 06:46:13 | 00,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009-07-14 06:46:12 | 01,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009-07-14 06:46:12 | 00,269,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\pnrpsvc.dll -- (PNRPsvc)
SRV - [2009-07-14 06:46:12 | 00,269,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\pnrpsvc.dll -- (p2pimsvc)
SRV - [2009-07-14 06:46:12 | 00,165,376 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\provsvc.dll -- (HomeGroupProvider)
SRV - [2009-07-14 06:46:12 | 00,020,480 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\pnrpauto.dll -- (PNRPAutoReg)
SRV - [2009-07-14 06:45:41 | 00,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009-07-14 06:45:36 | 00,194,560 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\ListSvc.dll -- (HomeGroupListener)
SRV - [2009-07-14 06:45:21 | 00,797,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2009-07-14 06:45:11 | 00,253,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dhcpcore.dll -- (Dhcp)
SRV - [2009-07-14 06:45:10 | 00,218,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\defragsvc.dll -- (defragsvc)
SRV - [2009-07-14 06:44:59 | 00,076,800 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\bdesvc.dll -- (BDESVC)
SRV - [2009-07-14 06:44:58 | 00,088,064 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\AxInstSv.dll -- (AxInstSV) ActiveX Installer (AxInstSV)
SRV - [2009-07-14 06:44:53 | 00,027,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\appidsvc.dll -- (AppIDSvc)
SRV - [2009-07-14 06:44:29 | 03,179,520 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\sppsvc.exe -- (sppsvc)
SRV - [2009-07-02 17:36:52 | 00,017,904 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Essentials\MsMpEng.exe -- (MsMpSvc)
SRV - [2009-05-27 03:27:04 | 29,262,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe -- (MSSQL$MYMOVIES) SQL Server (MYMOVIES)
SRV - [2009-03-30 16:28:36 | 01,533,808 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE -- (wlidsvc)
SRV - [2009-02-23 20:13:56 | 00,307,200 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService)
SRV - [2008-11-25 12:01:07 | 00,239,968 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe -- (SQLBrowser)
SRV - [2008-11-25 12:01:07 | 00,045,408 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe -- (MSSQLServerADHelper)
SRV - [2008-11-24 22:31:12 | 00,087,904 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe -- (SQLWriter)
SRV - [2008-11-04 01:06:28 | 00,441,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)
SRV - [2006-10-26 14:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2005-11-14 01:06:04 | 00,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe -- (IDriverT)


========== Driver Services (SafeList) ==========

DRV - [2010-01-03 13:22:05 | 00,108,072 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\btwavdt.sys -- (btwavdt)
DRV - [2010-01-03 13:22:05 | 00,086,056 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\btwaudio.sys -- (btwaudio)
DRV - [2010-01-03 13:22:05 | 00,029,472 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\btwl2cap.sys -- (btwl2cap)
DRV - [2010-01-03 13:22:05 | 00,018,344 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\btwrchid.sys -- (btwrchid)
DRV - [2010-01-03 11:36:15 | 00,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009-12-09 18:40:40 | 00,026,624 | ---- | M] (Juniper Networks) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\dsNcAdpt.sys -- (dsNcAdpt)
DRV - [2009-11-21 08:04:54 | 11,515,752 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2009-10-06 11:52:50 | 00,007,936 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2009-10-06 11:52:34 | 00,022,016 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2009-10-06 11:52:34 | 00,017,664 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2009-10-06 11:52:34 | 00,007,936 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2009-08-04 17:43:40 | 00,213,024 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\nvstor32.sys -- (nvstor32)
DRV - [2009-07-30 17:12:54 | 00,287,392 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvmf6232.sys -- (NVNET)
DRV - [2009-07-14 06:56:21 | 00,015,952 | ---- | M] (CMD Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\cmdide.sys -- (cmdide)
DRV - [2009-07-14 06:56:17 | 00,297,552 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adpahci.sys -- (adpahci)
DRV - [2009-07-14 06:56:15 | 00,422,976 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adp94xx.sys -- (adp94xx)
DRV - [2009-07-14 06:56:15 | 00,159,312 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdsbs.sys -- (amdsbs)
DRV - [2009-07-14 06:56:15 | 00,146,512 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\adpu320.sys -- (adpu320)
DRV - [2009-07-14 06:56:15 | 00,086,608 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\arcsas.sys -- (arcsas)
DRV - [2009-07-14 06:56:15 | 00,079,952 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdsata.sys -- (amdsata)
DRV - [2009-07-14 06:56:15 | 00,076,368 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\arc.sys -- (arc)
DRV - [2009-07-14 06:56:15 | 00,023,616 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\amdxata.sys -- (amdxata)
DRV - [2009-07-14 06:56:15 | 00,014,400 | ---- | M] (Acer Laboratories Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\aliide.sys -- (aliide)
DRV - [2009-07-14 06:50:44 | 00,142,416 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\nvstor.sys -- (nvstor)
DRV - [2009-07-14 06:50:44 | 00,117,312 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nvraid.sys -- (nvraid)
DRV - [2009-07-14 06:50:44 | 00,044,624 | ---- | M] (IBM Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\nfrd960.sys -- (nfrd960)
DRV - [2009-07-14 06:50:37 | 00,089,168 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_sas.sys -- (LSI_SAS)
DRV - [2009-07-14 06:50:36 | 00,332,352 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\iaStorV.sys -- (iaStorV)
DRV - [2009-07-14 06:50:36 | 00,235,584 | ---- | M] (LSI Corporation, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\MegaSR.sys -- (MegaSR)
DRV - [2009-07-14 06:50:36 | 00,133,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\ksecpkg.sys -- (KSecPkg)
DRV - [2009-07-14 06:50:36 | 00,096,848 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2009-07-14 06:50:36 | 00,095,824 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_fc.sys -- (LSI_FC)
DRV - [2009-07-14 06:50:36 | 00,054,864 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\lsi_sas2.sys -- (LSI_SAS2)
DRV - [2009-07-14 06:50:36 | 00,041,040 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\iirsp.sys -- (iirsp)
DRV - [2009-07-14 06:50:36 | 00,030,800 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\megasas.sys -- (megasas)
DRV - [2009-07-14 06:50:36 | 00,013,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\hwpolicy.sys -- (hwpolicy)
DRV - [2009-07-14 06:50:28 | 00,453,712 | ---- | M] (Emulex) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\elxstor.sys -- (elxstor)
DRV - [2009-07-14 06:50:28 | 00,070,720 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\djsvs.sys -- (aic78xx)
DRV - [2009-07-14 06:50:28 | 00,067,152 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\HpSAMD.sys -- (HpSAMD)
DRV - [2009-07-14 06:50:28 | 00,046,160 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\fsdepends.sys -- (FsDepends)
DRV - [2009-07-14 06:49:11 | 00,141,904 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vsmraid.sys -- (vsmraid)
DRV - [2009-07-14 06:49:10 | 00,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vmbus.sys -- (vmbus)
DRV - [2009-07-14 06:49:10 | 00,159,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vhdmp.sys -- (vhdmp)
DRV - [2009-07-14 06:49:10 | 00,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vmstorfl.sys -- (storflt)
DRV - [2009-07-14 06:49:10 | 00,032,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vdrvroot.sys -- (vdrvroot)
DRV - [2009-07-14 06:49:10 | 00,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\storvsc.sys -- (storvsc)
DRV - [2009-07-14 06:49:10 | 00,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\wimmount.sys -- (WIMMount)
DRV - [2009-07-14 06:49:10 | 00,016,976 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\viaide.sys -- (viaide)
DRV - [2009-07-14 06:49:04 | 01,383,488 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\ql2300.sys -- (ql2300)
DRV - [2009-07-14 06:49:04 | 00,173,648 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\rdyboost.sys -- (rdyboost)
DRV - [2009-07-14 06:49:04 | 00,106,064 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\ql40xx.sys -- (ql40xx)
DRV - [2009-07-14 06:49:04 | 00,077,888 | ---- | M] (Silicon Integrated Systems) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\sisraid4.sys -- (SiSRaid4)
DRV - [2009-07-14 06:49:04 | 00,043,088 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\pcw.sys -- (pcw)
DRV - [2009-07-14 06:49:04 | 00,040,016 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\SiSRaid2.sys -- (SiSRaid2)
DRV - [2009-07-14 06:49:04 | 00,021,072 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\stexstor.sys -- (stexstor)
DRV - [2009-07-14 06:47:54 | 00,369,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\cng.sys -- (CNG)
DRV - [2009-07-14 06:27:25 | 00,272,128 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\Brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2009-07-14 05:32:41 | 00,018,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\rdpbus.sys -- (rdpbus)
DRV - [2009-07-14 05:31:41 | 00,007,168 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\RDPREFMP.sys -- (RDPREFMP)
DRV - [2009-07-14 05:25:00 | 00,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2)
DRV - [2009-07-14 05:23:51 | 00,009,728 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\wfplwf.sys -- (WfpLwf)
DRV - [2009-07-14 05:22:44 | 00,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ndiscap.sys -- (NdisCap)
DRV - [2009-07-14 05:22:02 | 00,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vwifibus.sys -- (vwifibus)
DRV - [2009-07-14 05:22:00 | 00,163,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\1394ohci.sys -- (1394ohci)
DRV - [2009-07-14 05:21:35 | 00,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\umpass.sys -- (UmPass)
DRV - [2009-07-14 05:21:17 | 00,027,648 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser.sys -- (usbser)
DRV - [2009-07-14 05:21:11 | 00,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009-07-14 05:21:08 | 00,004,096 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV - [2009-07-14 05:16:55 | 00,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\MTConfig.sys -- (MTConfig)
DRV - [2009-07-14 05:15:26 | 00,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CompositeBus.sys -- (CompositeBus)
DRV - [2009-07-14 05:06:52 | 00,050,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\appid.sys -- (AppID)
DRV - [2009-07-14 05:03:50 | 00,026,624 | ---- | M] (Microsoft Corporation) [Kernel | Unknown | Stopped] -- C:\Windows\System32\drivers\scfilter.sys -- (scfilter)
DRV - [2009-07-14 04:58:47 | 00,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vms3cap.sys -- (s3cap)
DRV - [2009-07-14 04:58:45 | 00,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\VMBusHID.sys -- (VMBusHID)
DRV - [2009-07-14 04:54:05 | 00,032,256 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\discache.sys -- (discache)
DRV - [2009-07-14 04:49:21 | 00,021,504 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\HidBatt.sys -- (HidBatt)
DRV - [2009-07-14 04:46:36 | 00,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\acpipmi.sys -- (AcpiPmi)
DRV - [2009-07-14 04:41:04 | 00,052,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\amdppm.sys -- (AmdPPM)
DRV - [2009-07-14 04:24:14 | 00,026,624 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009-07-14 04:23:33 | 00,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrUsbMdm.sys -- (BrUsbMdm)
DRV - [2009-07-14 04:23:33 | 00,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrUsbSer.sys -- (BrUsbSer)
DRV - [2009-07-14 04:23:32 | 00,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\BrSerWdm.sys -- (BrSerWdm)
DRV - [2009-07-14 04:23:28 | 00,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\BrFiltLo.sys -- (BrFiltLo)
DRV - [2009-07-14 04:23:28 | 00,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\BrFiltUp.sys -- (BrFiltUp)
DRV - [2009-07-14 03:32:52 | 00,347,264 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvm62x32.sys -- (NVENETFD)
DRV - [2009-07-14 03:32:49 | 00,229,888 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\b57nd60x.sys -- (b57nd60x)
DRV - [2009-07-14 03:32:48 | 03,100,160 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\evbdx.sys -- (ebdrv)
DRV - [2009-07-14 03:32:48 | 00,430,080 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\bxvbdx.sys -- (b06bdrv)
DRV - [2009-07-14 02:20:20 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\secdrv.sys -- (secdrv)
DRV - [2009-06-18 18:48:04 | 00,142,832 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\System32\drivers\MpFilter.sys -- (MpFilter)
DRV - [2009-06-18 18:48:04 | 00,042,480 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\MpNWMon.sys -- (MpNWMon)
DRV - [2009-06-18 00:31:32 | 01,178,136 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HA20X2K.SYS -- (ha20x2k)
DRV - [2009-06-18 00:31:14 | 00,095,768 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\EMUPIA2K.SYS -- (emupia)
DRV - [2009-06-18 00:30:46 | 00,158,744 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CTSFM2K.SYS -- (ctsfm2k)
DRV - [2009-06-18 00:30:32 | 00,014,360 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CTPRXY2K.SYS -- (ctprxy2k)
DRV - [2009-06-18 00:30:16 | 00,129,560 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CTOSS2K.SYS -- (ossrv)
DRV - [2009-06-18 00:30:00 | 00,527,640 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CTAUD2K.SYS -- (ctaud2k) Creative Audio Driver (WDM)
DRV - [2009-06-18 00:29:44 | 00,511,000 | ---- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\CTAC32K.SYS -- (ctac32k)
DRV - [2009-06-18 00:29:22 | 01,324,568 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\CTEXFIFX.DLL -- (CTEXFIFX.DLL)
DRV - [2009-06-18 00:29:06 | 00,072,728 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\CTHWIUT.DLL -- (CTHWIUT.DLL)
DRV - [2009-06-18 00:28:48 | 00,171,032 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\CT20XUT.DLL -- (CT20XUT.DLL)
DRV - [2009-06-01 13:51:54 | 00,030,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\point32k.sys -- (Point32)
DRV - [2009-03-02 14:12:10 | 00,038,400 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\DGIVECP.SYS -- (DgiVecp)
DRV - [2009-03-02 14:12:10 | 00,005,120 | ---- | M] (Samsung Electronics) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\SSPORT.SYS -- (SSPORT)
DRV - [2008-08-26 09:26:12 | 00,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========



IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-2541689139-3194933077-2512120444-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-2541689139-3194933077-2512120444-1001\S-1-5-21-2541689139-3194933077-2512120444-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: support@lastpass.com:1.64.4
FF - prefs.js..extensions.enabledItems: foxmarks@kei.com:3.4.5

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-01-16 21:16:02 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.7\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-01-16 21:16:02 | 00,000,000 | ---D | M]

[2010-01-12 11:35:47 | 00,000,000 | ---D | M] -- C:\Users\Ruuchi D\AppData\Roaming\Mozilla\Extensions
[2010-01-24 07:58:48 | 00,000,000 | ---D | M] -- C:\Users\Ruuchi D\AppData\Roaming\Mozilla\Firefox\Profiles\3jn5jtxd.default\extensions
[2010-01-12 17:15:58 | 00,000,000 | ---D | M] -- C:\Users\Ruuchi D\AppData\Roaming\Mozilla\Firefox\Profiles\3jn5jtxd.default\extensions\foxmarks@kei.com
[2010-01-12 17:11:35 | 00,000,000 | ---D | M] -- C:\Users\Ruuchi D\AppData\Roaming\Mozilla\Firefox\Profiles\3jn5jtxd.default\extensions\support@lastpass.com
[2010-01-12 11:35:35 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2009-12-22 09:00:24 | 00,001,538 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-en-GB.xml
[2009-12-22 09:00:24 | 00,000,947 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\chambers-en-GB.xml
[2009-12-22 09:00:24 | 00,000,769 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-en-GB.xml
[2009-12-22 09:00:24 | 00,000,831 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-en-GB.xml

O1 HOSTS File: ([2010-01-13 08:56:04 | 00,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [CTxfiHlp] C:\Windows\System32\CTXFIHLP.EXE (Creative Technology Ltd)
O4 - HKLM..\Run: [IntelliPoint] C:\Program Files\Microsoft IntelliPoint\ipoint.exe (Microsoft Corporation)
O4 - HKLM..\Run: [itype] C:\Program Files\Microsoft IntelliType Pro\itype.exe (Microsoft Corporation)
O4 - HKLM..\Run: [MSSE] C:\Program Files\Microsoft Security Essentials\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe (Nokia)
O4 - HKLM..\Run: [nxpclient] C:\Program Files\Airtel\NetXpert\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [VolPanel] C:\Program Files\Creative\Volume Panel\VolPanlu.exe (Creative Technology Ltd)
O4 - HKU\S-1-5-21-2541689139-3194933077-2512120444-1001..\Run: [] File not found
O4 - HKU\S-1-5-21-2541689139-3194933077-2512120444-1001..\Run: [Xmarks] C:\Program Files\Xmarks\IE Extension\xmarkssync.exe (Xmarks.com)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://nvgate7.nvidia.com/dana-cached/sc/J...SetupClient.cab (JuniperSetupClientControl Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (livessp) - C:\Windows\System32\livessp.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-06-11 03:12:20 | 00,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{26bfe993-f813-11de-b20f-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{26bfe993-f813-11de-b20f-806e6f6e6963}\Shell\AutoRun\command - "" = H:\autorun.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010-01-24 13:26:15 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\Eidos
[2010-01-24 13:13:25 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Roaming\ImgBurn
[2010-01-24 12:26:53 | 00,000,000 | ---D | C] -- C:\Windows\6833245EDD86479A882A8360D62C8194.TMP
[2010-01-24 12:05:41 | 00,000,000 | ---D | C] -- C:\Program Files\Eidos
[2010-01-24 08:31:25 | 00,249,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\uxtheme.dll.backup
[2010-01-24 08:31:23 | 02,755,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\themeui.dll.backup
[2010-01-24 08:31:20 | 00,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\themeservice.dll.backup
[2010-01-23 22:16:49 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Akamai
[2010-01-23 12:56:47 | 00,000,000 | ---D | C] -- C:\ProgramData\Creative Labs
[2010-01-23 12:50:15 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Roaming\Creative
[2010-01-23 12:46:18 | 00,000,000 | ---D | C] -- C:\ProgramData\Creative
[2010-01-23 12:44:30 | 00,110,592 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\cttele32.dll
[2010-01-23 12:43:44 | 00,000,000 | ---D | C] -- C:\Program Files\OpenAL
[2010-01-23 12:43:43 | 00,444,952 | ---- | C] (Creative Labs) -- C:\Windows\System32\wrap_oal.dll
[2010-01-23 12:43:43 | 00,109,080 | ---- | C] (Portions © Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\System32\OpenAL32.dll
[2010-01-23 12:43:31 | 00,011,776 | ---- | C] (Creative Technology Limited) -- C:\Windows\INRES.DLL
[2010-01-23 12:43:31 | 00,000,000 | ---D | C] -- C:\Windows\System32\Data
[2010-01-23 12:41:44 | 00,171,680 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\CTOPT352.dll
[2010-01-23 12:41:43 | 00,061,440 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\CTChkAud.dll
[2010-01-23 12:39:06 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Creative Labs Shared
[2010-01-23 12:38:58 | 00,000,000 | ---D | C] -- C:\Program Files\Creative
[2010-01-23 12:37:59 | 01,178,136 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\drivers\HA20X2K.SYS
[2010-01-23 12:37:59 | 00,707,072 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\System32\UDAAPO32.DLL
[2010-01-23 12:37:59 | 00,527,640 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\drivers\CTAUD2K.SYS
[2010-01-23 12:37:59 | 00,511,000 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\drivers\CTAC32K.SYS
[2010-01-23 12:37:59 | 00,158,744 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\drivers\CTSFM2K.SYS
[2010-01-23 12:37:59 | 00,129,560 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\System32\drivers\CTOSS2K.SYS
[2010-01-23 12:37:59 | 00,108,544 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\SFMS32.DLL
[2010-01-23 12:37:59 | 00,095,768 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\drivers\EMUPIA2K.SYS
[2010-01-23 12:37:59 | 00,047,104 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\System32\UDAPLD32.DLL
[2010-01-23 12:37:59 | 00,015,384 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\System32\drivers\PFMODNT.SYS
[2010-01-23 12:37:59 | 00,014,360 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\drivers\CTPRXY2K.SYS
[2010-01-23 12:37:58 | 01,324,568 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\System32\CTEXFIFX.DLL
[2010-01-23 12:37:58 | 00,193,024 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\CT_OAL.DLL
[2010-01-23 12:37:58 | 00,163,328 | ---- | C] (Creative Technology Limited) -- C:\Windows\System32\CTDVINST.DLL
[2010-01-23 12:37:58 | 00,114,688 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\CTEMUPIA.DLL
[2010-01-23 12:37:58 | 00,086,016 | ---- | C] (Creative Technology Limited) -- C:\Windows\System32\CTCOINST.DLL
[2010-01-23 12:37:58 | 00,077,824 | ---- | C] (Creative Labs) -- C:\Windows\System32\EAXAC3.DLL
[2010-01-23 12:37:58 | 00,074,240 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\CTOSUSER.DLL
[2010-01-23 12:37:58 | 00,072,728 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\System32\CTHWIUT.DLL
[2010-01-23 12:37:58 | 00,068,608 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\PIAPROXY.DLL
[2010-01-23 12:37:58 | 00,062,976 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\CTMLFX32.DLL
[2010-01-23 12:37:58 | 00,053,248 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\CTDPROXY.DLL
[2010-01-23 12:37:58 | 00,041,984 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\CTXFIBTN.DLL
[2010-01-23 12:37:58 | 00,039,424 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\CTXFISPK.DLL
[2010-01-23 12:37:58 | 00,036,864 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\DEVREG.DLL
[2010-01-23 12:37:58 | 00,010,240 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\SFMAN32.DLL
[2010-01-23 12:37:57 | 00,171,032 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\System32\CT20XUT.DLL
[2010-01-23 12:37:57 | 00,060,928 | ---- | C] ( ) -- C:\Windows\System32\A3D.DLL
[2010-01-23 12:37:57 | 00,050,688 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\CTASIO.DLL
[2010-01-23 12:37:57 | 00,048,640 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\AC3API.DLL
[2010-01-23 12:37:57 | 00,015,360 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\CT20XSPI.DLL
[2010-01-23 12:37:54 | 00,620,514 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\UDAAIM32.EXE
[2010-01-23 12:37:53 | 01,225,216 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\CTXFISPI.EXE
[2010-01-23 12:37:53 | 00,809,496 | ---- | C] (Creative Labs Inc.) -- C:\Windows\System32\OALInst.exe
[2010-01-23 12:37:53 | 00,089,336 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\ctpxst32.exe
[2010-01-23 12:37:53 | 00,047,104 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\CTXFIREG.EXE
[2010-01-23 12:37:53 | 00,023,552 | ---- | C] (Creative Technology Ltd) -- C:\Windows\System32\CTXFIHLP.EXE
[2010-01-23 12:37:53 | 00,012,800 | ---- | C] ( ) -- C:\Windows\System32\KILLAPPS.EXE
[2010-01-23 12:37:52 | 00,048,400 | ---- | C] (Creative Technology Ltd.) -- C:\Windows\System32\AddCat.exe
[2010-01-22 18:06:35 | 00,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2010-01-22 18:06:35 | 00,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2010-01-19 21:34:12 | 00,000,000 | ---D | C] -- C:\dell
[2010-01-16 21:16:02 | 00,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2010-01-16 21:16:00 | 00,094,208 | ---- | C] (Apple Inc.) -- C:\Windows\System32\QuickTimeVR.qtx
[2010-01-16 21:16:00 | 00,069,632 | ---- | C] (Apple Inc.) -- C:\Windows\System32\QuickTime.qts
[2010-01-16 21:15:55 | 00,000,000 | ---D | C] -- C:\Program Files\QuickTime Alternative
[2010-01-16 08:56:32 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Local\SupportSoft
[2010-01-16 08:56:21 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\SupportSoft
[2010-01-16 08:56:20 | 00,000,000 | ---D | C] -- C:\ProgramData\SupportSoft
[2010-01-16 08:56:13 | 00,000,000 | ---D | C] -- C:\Program Files\Airtel
[2010-01-15 11:41:18 | 00,000,000 | ---D | C] -- C:\Program Files\Watch Stock
[2010-01-15 11:41:14 | 00,249,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\Setup1.exe
[2010-01-15 11:41:13 | 00,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\ST6UNST.EXE
[2010-01-13 16:03:43 | 00,108,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2010-01-13 16:03:43 | 00,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2010-01-13 08:49:03 | 00,398,632 | ---- | C] (Juniper Networks) -- C:\Windows\System32\dsNcSmartCardProv.dll
[2010-01-13 08:49:03 | 00,345,384 | ---- | C] (Juniper Networks) -- C:\Windows\System32\dsNcCredProv.dll
[2010-01-13 08:48:30 | 00,000,000 | ---D | C] -- C:\Program Files\Juniper Networks
[2010-01-13 08:47:13 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Roaming\Juniper Networks
[2010-01-12 11:35:39 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Local\Mozilla
[2010-01-12 11:35:38 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Roaming\Mozilla
[2010-01-12 11:35:34 | 00,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2010-01-12 08:12:29 | 00,000,000 | ---D | C] -- C:\Program Files\LastPass
[2010-01-11 08:41:47 | 00,000,000 | ---D | C] -- C:\Windows\Sun
[2010-01-10 20:58:31 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Roaming\vlc
[2010-01-10 11:12:16 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Roaming\Braid
[2010-01-08 20:26:59 | 00,000,000 | ---D | C] -- C:\Windows\System32\directx
[2010-01-08 20:26:56 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Roaming\XBMC
[2010-01-08 20:26:43 | 00,000,000 | ---D | C] -- C:\Program Files\XBMC
[2010-01-07 21:42:40 | 03,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_39.dll
[2010-01-07 21:28:06 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\Games for Windows - LIVE Demos
[2010-01-07 21:26:14 | 00,000,000 | ---D | C] -- C:\Windows\System32\xlive
[2010-01-07 21:26:13 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Games for Windows - LIVE
[2010-01-07 21:00:06 | 00,000,000 | ---D | C] -- C:\ProgramData\Media Center Programs
[2010-01-07 20:56:15 | 00,000,000 | ---D | C] -- C:\Program Files\Ubisoft
[2010-01-07 20:50:03 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft IntelliType Pro
[2010-01-07 20:39:22 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft IntelliPoint
[2010-01-07 20:26:10 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Roaming\Ubisoft
[2010-01-07 20:16:20 | 00,000,000 | ---D | C] -- C:\ProgramData\Ubisoft
[2010-01-06 20:34:04 | 00,000,000 | ---D | C] -- C:\Windows\SQLTools9_KB970892_ENU
[2010-01-06 20:32:36 | 00,000,000 | ---D | C] -- C:\Windows\SQL9_KB970892_ENU
[2010-01-05 20:53:23 | 00,000,000 | ---D | C] -- C:\Program Files\Binnerup Consult
[2010-01-05 20:48:32 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server
[2010-01-05 20:40:52 | 00,000,000 | ---D | C] -- C:\ProgramData\My Movies
[2010-01-04 21:20:27 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Roaming\Media Player Classic
[2010-01-04 21:20:18 | 00,000,000 | ---D | C] -- C:\Program Files\MPC HomeCinema
[2010-01-04 20:54:51 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Roaming\Stardock
[2010-01-04 20:54:28 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Local\PackageAware
[2010-01-04 20:44:52 | 00,000,000 | ---D | C] -- C:\Program Files\Axantum
[2010-01-04 20:40:26 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Local\Xmarks
[2010-01-04 20:40:25 | 00,000,000 | ---D | C] -- C:\Program Files\Xmarks
[2010-01-04 20:39:12 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Roaming\SmarThru4
[2010-01-04 20:39:00 | 00,041,984 | ---- | C] (Samsung Electronics Co., Ltd.) -- C:\Windows\System32\drivers\DgivEcpXP.sys
[2010-01-04 20:38:55 | 00,536,752 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LTRVW13N.OCX
[2010-01-04 20:38:55 | 00,470,720 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LTRPR13n.DLL
[2010-01-04 20:38:54 | 00,935,088 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LTR13N.DLL
[2010-01-04 20:38:54 | 00,747,008 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\ltocx13n.ocx
[2010-01-04 20:38:54 | 00,427,008 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LFCMP13s.DLL
[2010-01-04 20:38:54 | 00,313,008 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LTRIO13N.DLL
[2010-01-04 20:38:54 | 00,275,456 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LFJ2K13s.dll
[2010-01-04 20:38:54 | 00,185,856 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\Lfpng13s.dll
[2010-01-04 20:38:54 | 00,172,032 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lftif13s.dll
[2010-01-04 20:38:54 | 00,131,584 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfjbg13s.dll
[2010-01-04 20:38:54 | 00,114,176 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lffax13s.dll
[2010-01-04 20:38:54 | 00,111,104 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfpsd13s.dll
[2010-01-04 20:38:54 | 00,081,920 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfeps13s.dll
[2010-01-04 20:38:54 | 00,073,728 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lffax13n.dll
[2010-01-04 20:38:54 | 00,070,656 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfbmp13s.dll
[2010-01-04 20:38:54 | 00,068,096 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfiff13s.dll
[2010-01-04 20:38:54 | 00,065,536 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfpcx13s.dll
[2010-01-04 20:38:54 | 00,065,536 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfani13s.dll
[2010-01-04 20:38:54 | 00,065,024 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfclp13s.dll
[2010-01-04 20:38:54 | 00,062,976 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LFPNM13s.dll
[2010-01-04 20:38:54 | 00,060,928 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfimg13s.dll
[2010-01-04 20:38:54 | 00,060,416 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfitg13s.dll
[2010-01-04 20:38:54 | 00,059,904 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfpcd13s.dll
[2010-01-04 20:38:54 | 00,059,392 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfmsp13s.dll
[2010-01-04 20:38:54 | 00,058,880 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfavi13s.dll
[2010-01-04 20:38:54 | 00,044,032 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lttwn13n.dll
[2010-01-04 20:38:54 | 00,027,648 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfiff13n.dll
[2010-01-04 20:38:54 | 00,020,992 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfimg13n.dll
[2010-01-04 20:38:54 | 00,019,968 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfitg13n.dll
[2010-01-04 20:38:53 | 01,693,696 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LTCLR13n.dll
[2010-01-04 20:38:53 | 00,446,464 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\ltkrn13n.dll
[2010-01-04 20:38:53 | 00,445,440 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\ltimg13n.dll
[2010-01-04 20:38:53 | 00,408,576 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LFCMP13n.DLL
[2010-01-04 20:38:53 | 00,271,360 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LFJ2K13n.dll
[2010-01-04 20:38:53 | 00,269,312 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LTDIS13n.dll
[2010-01-04 20:38:53 | 00,212,480 | ---- | C] (Eastman Kodak) -- C:\Windows\System32\PCDLIB32.DLL
[2010-01-04 20:38:53 | 00,206,848 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\ltefx13n.dll
[2010-01-04 20:38:53 | 00,181,760 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\Lfpng13n.dll
[2010-01-04 20:38:53 | 00,158,720 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\Ltpnt13n.dll
[2010-01-04 20:38:53 | 00,132,096 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lftif13n.dll
[2010-01-04 20:38:53 | 00,114,176 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LTOCR13n.dll
[2010-01-04 20:38:53 | 00,108,032 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LTTLB13n.dll
[2010-01-04 20:38:53 | 00,095,232 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\ltpdg13n.dll
[2010-01-04 20:38:53 | 00,090,112 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfjbg13n.dll
[2010-01-04 20:38:53 | 00,069,632 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\ltbar13n.dll
[2010-01-04 20:38:53 | 00,055,808 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfpsd13n.dll
[2010-01-04 20:38:53 | 00,047,616 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfeps13n.dll
[2010-01-04 20:38:53 | 00,032,256 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lttmb13n.dll
[2010-01-04 20:38:53 | 00,031,744 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfclp13n.dll
[2010-01-04 20:38:53 | 00,031,232 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\LFPNM13n.dll
[2010-01-04 20:38:53 | 00,030,208 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfbmp13n.dll
[2010-01-04 20:38:53 | 00,026,624 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfpcx13n.dll
[2010-01-04 20:38:53 | 00,025,600 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfani13n.dll
[2010-01-04 20:38:53 | 00,019,968 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfpcd13n.dll
[2010-01-04 20:38:53 | 00,018,944 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfmsp13n.dll
[2010-01-04 20:38:53 | 00,018,944 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\lfavi13n.dll
[2010-01-04 20:38:52 | 01,402,368 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\ltdlg13n.dll
[2010-01-04 20:38:52 | 01,009,664 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\Ltwvc13n.dll
[2010-01-04 20:38:52 | 00,146,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Mfcoleui.dll
[2010-01-04 20:38:52 | 00,144,384 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\ltfil13n.DLL
[2010-01-04 20:38:52 | 00,051,200 | ---- | C] (LEAD Technologies, Inc.) -- C:\Windows\System32\ltlst13n.dll
[2010-01-04 20:38:52 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\SRC Shared
[2010-01-04 20:38:16 | 00,000,000 | ---D | C] -- C:\Program Files\Readiris10
[2010-01-04 20:38:01 | 00,000,000 | ---D | C] -- C:\Program Files\SmarThru 4
[2010-01-04 20:36:59 | 00,057,344 | ---- | C] (Samsung Electronics) -- C:\Windows\System32\ssdevm.dll
[2010-01-04 20:36:59 | 00,049,152 | ---- | C] (Samsung Electronics) -- C:\Windows\System32\ssusbpn.dll
[2010-01-04 20:35:21 | 00,151,552 | ---- | C] (SS) -- C:\Windows\System32\SSGR3ci.exe
[2010-01-04 20:35:21 | 00,065,536 | ---- | C] (SS) -- C:\Windows\System32\SSGR3ci.dll
[2010-01-04 20:35:18 | 00,038,400 | ---- | C] (Samsung Electronics Co., Ltd.) -- C:\Windows\System32\drivers\DGIVECP.SYS
[2010-01-04 20:35:18 | 00,005,120 | ---- | C] (Samsung Electronics) -- C:\Windows\System32\drivers\SSPORT.SYS
[2010-01-04 20:35:13 | 00,000,000 | ---D | C] -- C:\Program Files\SAMSUNG
[2010-01-04 20:34:58 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Local\Adobe
[2010-01-04 20:15:55 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Roaming\Yahoo!
[2010-01-04 20:15:55 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Local\Yahoo
[2010-01-04 08:05:39 | 00,000,000 | ---D | C] -- C:\Program Files\FastCopy
[2010-01-03 21:52:54 | 00,000,000 | ---D | C] -- C:\Windows\Panther
[2010-01-03 17:09:19 | 00,000,000 | ---D | C] -- C:\Windows\Minidump
[2010-01-03 16:41:55 | 00,000,000 | ---D | C] -- C:\Program Files\Paint.NET
[2010-01-03 16:41:43 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Local\Paint.NET
[2010-01-03 16:41:05 | 00,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2010-01-03 16:41:02 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2010-01-03 16:41:02 | 00,000,000 | ---D | C] -- C:\Program Files\Adobe
[2010-01-03 16:37:11 | 00,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2010-01-03 16:34:45 | 00,000,000 | ---D | C] -- C:\Program Files\Yahoo!
[2010-01-03 16:31:12 | 00,000,000 | ---D | C] -- C:\Program Files\Acro Software
[2010-01-03 16:31:00 | 00,000,000 | ---D | C] -- C:\Program Files\GPLGS
[2010-01-03 16:29:43 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Roaming\Winamp
[2010-01-03 16:29:43 | 00,000,000 | ---D | C] -- C:\Program Files\Winamp
[2010-01-03 16:28:22 | 00,000,000 | ---D | C] -- C:\Program Files\ImgBurn
[2010-01-03 16:28:03 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Local\Google
[2010-01-03 16:28:03 | 00,000,000 | ---D | C] -- C:\Program Files\Google
[2010-01-03 16:27:55 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Steam
[2010-01-03 16:27:54 | 00,000,000 | ---D | C] -- C:\Program Files\Steam
[2010-01-03 16:27:36 | 00,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2010-01-03 16:27:26 | 00,000,000 | ---D | C] -- C:\Program Files\RealVNC
[2010-01-03 16:27:25 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Roaming\uTorrent
[2010-01-03 16:27:25 | 00,000,000 | ---D | C] -- C:\Program Files\uTorrent
[2010-01-03 16:27:19 | 00,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\deploytk.dll
[2010-01-03 16:27:19 | 00,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2010-01-03 16:27:19 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2010-01-03 16:27:19 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2010-01-03 16:27:13 | 00,000,000 | ---D | C] -- C:\Program Files\Java
[2010-01-03 16:11:06 | 00,000,000 | ---D | C] -- C:\Program Files\Weys
[2010-01-03 16:06:09 | 01,703,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gdiplus.dll
[2010-01-03 16:06:09 | 00,991,232 | ---- | C] (Viscom Software ) -- C:\Windows\System32\imageviewer2.ocx
[2010-01-03 16:06:09 | 00,608,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\comctl32.ocx
[2010-01-03 16:06:09 | 00,224,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tabctl32.ocx
[2010-01-03 16:06:09 | 00,200,704 | ---- | C] (Sheridan Software Systems, Inc.) -- C:\Windows\System32\threed32.ocx
[2010-01-03 16:06:09 | 00,164,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\comct232.ocx
[2010-01-03 16:06:09 | 00,151,552 | ---- | C] (Domenico Statuto - CCRP) -- C:\Windows\System32\ccrpfd6.ocx
[2010-01-03 16:06:09 | 00,110,592 | ---- | C] (Common Controls Replacement Project (CCRP)) -- C:\Windows\System32\ccrpbds6.dll
[2010-01-03 16:06:09 | 00,106,496 | ---- | C] (Marco Bellinaso) -- C:\Windows\System32\mbprgbar.ocx
[2010-01-03 16:06:08 | 00,000,000 | ---D | C] -- C:\Program Files\PIXresizer
[2010-01-03 15:57:57 | 00,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2010-01-03 15:57:17 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2010-01-03 15:45:57 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\muvee Technologies
[2010-01-03 15:45:14 | 00,000,000 | ---D | C] -- C:\Windows\Downloaded Installations
[2010-01-03 15:38:14 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Roaming\Nokia Ovi Suite
[2010-01-03 14:05:06 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Roaming\Mp3tag
[2010-01-03 14:05:01 | 00,000,000 | ---D | C] -- C:\Program Files\Mp3tag
[2010-01-03 13:53:27 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Local\IsolatedStorage
[2010-01-03 13:24:06 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Local\Broadcom
[2010-01-03 13:23:20 | 00,029,472 | ---- | C] (Broadcom Corporation.) -- C:\Windows\System32\drivers\btwl2cap.sys
[2010-01-03 13:23:19 | 00,108,072 | ---- | C] (Broadcom Corporation.) -- C:\Windows\System32\drivers\btwavdt.sys
[2010-01-03 13:23:19 | 00,086,056 | ---- | C] (Broadcom Corporation.) -- C:\Windows\System32\drivers\btwaudio.sys
[2010-01-03 13:23:19 | 00,018,344 | ---- | C] (Broadcom Corporation.) -- C:\Windows\System32\drivers\btwrchid.sys
[2010-01-03 13:22:58 | 00,000,000 | ---D | C] -- C:\Program Files\WIDCOMM
[2010-01-03 12:43:28 | 00,000,000 | ---D | C] -- C:\ProgramData\Office Genuine Advantage
[2010-01-03 12:43:25 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Office Genuine Advantage
[2010-01-03 12:20:03 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Tracing
[2010-01-03 12:15:47 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2010-01-03 12:15:32 | 05,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_42.dll
[2010-01-03 12:15:32 | 01,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_42.dll
[2010-01-03 12:15:32 | 00,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_5.dll
[2010-01-03 12:15:32 | 00,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_5.dll
[2010-01-03 12:15:31 | 04,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_41.dll
[2010-01-03 12:15:31 | 01,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_42.dll
[2010-01-03 12:15:31 | 01,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_41.dll
[2010-01-03 12:15:31 | 00,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_42.dll
[2010-01-03 12:15:31 | 00,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_41.dll
[2010-01-03 12:15:31 | 00,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_42.dll
[2010-01-03 12:15:30 | 02,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_40.dll
[2010-01-03 12:15:30 | 00,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_4.dll
[2010-01-03 12:15:30 | 00,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_40.dll
[2010-01-03 12:15:30 | 00,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_4.dll
[2010-01-03 12:15:30 | 00,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_3.dll
[2010-01-03 12:15:30 | 00,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_6.dll
[2010-01-03 12:15:29 | 04,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_40.dll
[2010-01-03 12:15:29 | 00,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_3.dll
[2010-01-03 12:15:29 | 00,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_2.dll
[2010-01-03 12:15:29 | 00,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_3.dll
[2010-01-03 12:15:29 | 00,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_2.dll
[2010-01-03 12:15:29 | 00,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_1.dll
[2010-01-03 12:15:29 | 00,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_5.dll
[2010-01-03 12:15:28 | 01,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_39.dll
[2010-01-03 12:15:28 | 00,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_39.dll
[2010-01-03 12:15:28 | 00,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_2.dll
[2010-01-03 12:15:27 | 00,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_1.dll
[2010-01-03 12:15:27 | 00,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_1.dll
[2010-01-03 12:15:27 | 00,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_0.dll
[2010-01-03 12:15:27 | 00,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_4.dll
[2010-01-03 12:15:26 | 03,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_38.dll
[2010-01-03 12:15:26 | 01,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_38.dll
[2010-01-03 12:15:26 | 00,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_0.dll
[2010-01-03 12:15:26 | 00,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_38.dll
[2010-01-03 12:15:26 | 00,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_0.dll
[2010-01-03 12:15:26 | 00,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_3.dll
[2010-01-03 12:15:25 | 03,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_37.dll
[2010-01-03 12:15:25 | 01,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_37.dll
[2010-01-03 12:15:25 | 00,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_37.dll
[2010-01-03 12:15:25 | 00,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_10.dll
[2010-01-03 12:15:24 | 03,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_36.dll
[2010-01-03 12:15:24 | 01,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_36.dll
[2010-01-03 12:15:24 | 00,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_36.dll
[2010-01-03 12:15:23 | 03,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_35.dll
[2010-01-03 12:15:23 | 01,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_35.dll
[2010-01-03 12:15:23 | 01,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_34.dll
[2010-01-03 12:15:23 | 00,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_35.dll
[2010-01-03 12:15:23 | 00,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_34.dll
[2010-01-03 12:15:23 | 00,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_9.dll
[2010-01-03 12:15:23 | 00,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_8.dll
[2010-01-03 12:15:23 | 00,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_2.dll
[2010-01-03 12:15:22 | 03,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_34.dll
[2010-01-03 12:15:22 | 03,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_33.dll
[2010-01-03 12:15:22 | 01,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_33.dll
[2010-01-03 12:15:22 | 00,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_33.dll
[2010-01-03 12:15:22 | 00,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_7.dll
[2010-01-03 12:15:22 | 00,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_3.dll
[2010-01-03 12:15:21 | 03,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_32.dll
[2010-01-03 12:15:21 | 00,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10.dll
[2010-01-03 12:15:21 | 00,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_6.dll
[2010-01-03 12:15:21 | 00,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_5.dll
[2010-01-03 12:15:20 | 02,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_31.dll
[2010-01-03 12:15:20 | 00,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_4.dll
[2010-01-03 12:15:20 | 00,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_3.dll
[2010-01-03 12:15:20 | 00,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_2.dll
[2010-01-03 12:15:20 | 00,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_2.dll
[2010-01-03 12:15:20 | 00,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_1.dll
[2010-01-03 12:15:20 | 00,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_1.dll
[2010-01-03 12:15:19 | 00,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_1.dll
[2010-01-03 12:15:17 | 02,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_30.dll
[2010-01-03 12:15:16 | 02,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_29.dll
[2010-01-03 12:15:16 | 02,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_28.dll
[2010-01-03 12:15:16 | 02,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_27.dll
[2010-01-03 12:15:16 | 02,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_26.dll
[2010-01-03 12:15:16 | 00,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_0.dll
[2010-01-03 12:15:16 | 00,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_0.dll
[2010-01-03 12:15:15 | 02,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_25.dll
[2010-01-03 12:15:15 | 02,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_24.dll
[2010-01-03 12:15:08 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft
[2010-01-03 12:14:52 | 00,000,000 | ---D | C] -- C:\Users\Public\Documents\Microsoft
[2010-01-03 12:14:45 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Live SkyDrive
[2010-01-03 12:14:27 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Live
[2010-01-03 12:01:37 | 00,000,000 | ---D | C] -- C:\Temp
[2010-01-03 12:00:16 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Windows Live
[2010-01-03 11:59:55 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2010-01-03 11:59:27 | 00,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2010-01-03 11:48:26 | 00,030,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mdimon.dll
[2010-01-03 11:47:35 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2010-01-03 11:47:19 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2010-01-03 11:47:18 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2010-01-03 11:47:01 | 00,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2010-01-03 11:47:01 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2010-01-03 11:45:33 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Local\Microsoft Help
[2010-01-03 11:45:31 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2010-01-03 11:45:31 | 00,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2010-01-03 11:44:50 | 00,000,000 | RH-D | C] -- C:\MSOCache
[2010-01-03 11:36:00 | 00,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2010-01-03 11:35:41 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Roaming\DAEMON Tools Lite
[2010-01-03 11:35:39 | 00,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2010-01-03 11:26:53 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Essentials
[2010-01-03 11:26:48 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Roaming\KeePass
[2010-01-03 11:19:40 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\TrackMania United
[2010-01-03 11:19:39 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\TrackMania
[2010-01-03 11:19:39 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\Symantec
[2010-01-03 11:19:20 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\SPORE
[2010-01-03 11:19:20 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\Shree Prakriti Apartments
[2010-01-03 11:19:20 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\Shortcuts
[2010-01-03 11:19:18 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\Scanned Documents
[2010-01-03 11:19:18 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\Rainlendar
[2010-01-03 11:19:18 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\Prince of Persia
[2010-01-03 11:19:15 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\Ovi
[2010-01-03 11:19:01 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\Outlook
[2010-01-03 11:19:01 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\Nvidia
[2010-01-03 11:18:58 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\My Spore Creations
[2010-01-03 11:18:58 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\My Received Files
[2010-01-03 11:18:50 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\My Movies
[2010-01-03 11:18:46 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\My Games
[2010-01-03 11:18:44 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\My Backups
[2010-01-03 11:18:43 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\Money
[2010-01-03 11:18:43 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\Miscellaneous Documents
[2010-01-03 11:18:43 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\LockNote's
[2010-01-03 11:18:43 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\Legal Software
[2010-01-03 11:18:42 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\KeePass
[2010-01-03 11:18:42 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\GomPlayer
[2010-01-03 11:18:42 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\Gayathri Mansion
[2010-01-03 11:18:42 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\File&Folder List Generator
[2010-01-03 11:18:42 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\EA Games
[2010-01-03 11:18:42 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\Dictionaries
[2010-01-03 11:18:40 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\CoDWaW
[2010-01-03 11:18:40 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\Bluetooth Exchange Folder
[2010-01-03 11:18:40 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\BioWare
[2010-01-03 11:18:39 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\Documents\Airtel Broadband
[2010-01-03 11:17:51 | 00,000,000 | ---D | C] -- C:\Program Files\KeePass Password Safe 2
[2010-01-03 11:17:34 | 00,000,000 | ---D | C] -- C:\Program Files\KeePass Password Safe 1x
[2010-01-03 11:16:00 | 00,000,000 | ---D | C] -- C:\ProgramData\NokiaMusic
[2010-01-03 11:11:26 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Roaming\Macromedia
[2010-01-03 11:11:26 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Roaming\Adobe
[2010-01-03 11:11:25 | 00,000,000 | ---D | C] -- C:\Windows\System32\Macromed
[2010-01-03 11:07:42 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Roaming\Nokia
[2010-01-03 11:07:39 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Local\Nokia
[2010-01-03 11:07:38 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Roaming\PC Suite
[2010-01-03 11:07:38 | 00,000,000 | ---D | C] -- C:\ProgramData\PC Suite
[2010-01-03 11:07:37 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Local\NokiaAccount
[2010-01-03 11:07:04 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Nokia
[2010-01-03 11:06:49 | 00,000,000 | ---D | C] -- C:\Program Files\DIFX
[2010-01-03 11:06:48 | 00,018,816 | ---- | C] (Nokia) -- C:\Windows\System32\drivers\pccsmcfd.sys
[2010-01-03 11:06:47 | 00,000,000 | ---D | C] -- C:\Windows\System32\DRVSTORE
[2010-01-03 11:06:46 | 00,000,000 | ---D | C] -- C:\Program Files\PC Connectivity Solution
[2010-01-03 11:06:37 | 00,091,136 | ---- | C] (Nokia) -- C:\Windows\System32\nmwcdcls.dll
[2010-01-03 11:05:55 | 00,000,000 | ---D | C] -- C:\ProgramData\OviInstallerCache
[2010-01-03 11:05:55 | 00,000,000 | ---D | C] -- C:\Program Files\Nokia
[2010-01-03 11:02:36 | 00,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2010-01-03 11:02:00 | 00,000,000 | ---D | C] -- C:\Program Files\AGEIA Technologies
[2010-01-03 11:02:00 | 00,000,000 | ---D | C] -- C:\Windows\System32\AGEIA
[2010-01-03 11:01:55 | 00,000,000 | -HSD | C] -- C:\Windows\Installer
[2010-01-03 11:01:53 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2010-01-03 11:01:48 | 00,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2010-01-03 11:01:15 | 11,515,752 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys
[2010-01-03 11:01:15 | 00,795,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpinst.exe
[2010-01-03 11:01:15 | 00,076,392 | ---- | C] (Khronos Group) -- C:\Windows\System32\OpenCL.dll
[2010-01-03 11:01:15 | 00,010,920 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvBridge.kmd
[2010-01-03 11:01:14 | 14,064,232 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll
[2010-01-03 11:01:14 | 09,333,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll
[2010-01-03 11:01:14 | 04,147,816 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvencodemft.dll
[2010-01-03 11:01:14 | 00,289,384 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvdecodemft.dll
[2010-01-03 11:01:13 | 11,381,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll
[2010-01-03 11:01:13 | 04,001,384 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll
[2010-01-03 11:01:13 | 02,243,176 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll
[2010-01-03 11:01:13 | 01,989,224 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll
[2010-01-03 11:01:13 | 01,249,896 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll
[2010-01-03 11:01:13 | 00,182,888 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcod178.dll
[2010-01-03 11:01:13 | 00,182,888 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcod.dll
[2010-01-03 11:00:28 | 00,705,536 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\cohelper.dll
[2010-01-03 11:00:17 | 00,592,488 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\NVUNINST.EXE
[2010-01-03 11:00:12 | 00,000,000 | ---D | C] -- C:\NVIDIA
[2010-01-03 08:36:36 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2010-01-03 08:36:33 | 00,181,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2010-01-03 08:33:50 | 12,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2010-01-03 08:33:50 | 02,613,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2010-01-03 08:33:50 | 01,320,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CertEnroll.dll
[2010-01-03 08:33:50 | 00,507,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winload.exe
[2010-01-03 08:33:50 | 00,442,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe
[2010-01-03 08:33:50 | 00,293,888 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2010-01-03 08:30:40 | 00,000,000 | R--D | C] -- C:\Users\Ruuchi D\Searches
[2010-01-03 08:30:32 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Roaming\Identities
[2010-01-03 08:30:31 | 00,000,000 | R--D | C] -- C:\Users\Ruuchi D\Contacts
[2010-01-03 08:30:25 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Local\VirtualStore
[2010-01-03 08:30:24 | 00,000,000 | --SD | C] -- C:\Users\Ruuchi D\AppData\Roaming\Microsoft
[2010-01-03 08:30:24 | 00,000,000 | R--D | C] -- C:\Users\Ruuchi D\Pictures
[2010-01-03 08:30:24 | 00,000,000 | R--D | C] -- C:\Users\Ruuchi D\Music
[2010-01-03 08:30:24 | 00,000,000 | R--D | C] -- C:\Users\Ruuchi D\Links
[2010-01-03 08:30:24 | 00,000,000 | R--D | C] -- C:\Users\Ruuchi D\Favorites
[2010-01-03 08:30:24 | 00,000,000 | R--D | C] -- C:\Users\Ruuchi D\Downloads
[2010-01-03 08:30:24 | 00,000,000 | R--D | C] -- C:\Users\Ruuchi D\Documents
[2010-01-03 08:30:24 | 00,000,000 | R--D | C] -- C:\Users\Ruuchi D\Desktop
[2010-01-03 08:30:24 | 00,000,000 | -HSD | C] -- C:\Users\Ruuchi D\AppData\Local\Temporary Internet Files
[2010-01-03 08:30:24 | 00,000,000 | -HSD | C] -- C:\Users\Ruuchi D\Templates
[2010-01-03 08:30:24 | 00,000,000 | -HSD | C] -- C:\Users\Ruuchi D\Start Menu
[2010-01-03 08:30:24 | 00,000,000 | -HSD | C] -- C:\Users\Ruuchi D\SendTo
[2010-01-03 08:30:24 | 00,000,000 | -HSD | C] -- C:\Users\Ruuchi D\Recent
[2010-01-03 08:30:24 | 00,000,000 | -HSD | C] -- C:\Users\Ruuchi D\PrintHood
[2010-01-03 08:30:24 | 00,000,000 | -HSD | C] -- C:\Users\Ruuchi D\NetHood
[2010-01-03 08:30:24 | 00,000,000 | -HSD | C] -- C:\Users\Ruuchi D\Documents\My Videos
[2010-01-03 08:30:24 | 00,000,000 | -HSD | C] -- C:\Users\Ruuchi D\Documents\My Pictures
[2010-01-03 08:30:24 | 00,000,000 | -HSD | C] -- C:\Users\Ruuchi D\Documents\My Music
[2010-01-03 08:30:24 | 00,000,000 | -HSD | C] -- C:\Users\Ruuchi D\My Documents
[2010-01-03 08:30:24 | 00,000,000 | -HSD | C] -- C:\Users\Ruuchi D\Local Settings
[2010-01-03 08:30:24 | 00,000,000 | -HSD | C] -- C:\Users\Ruuchi D\AppData\Local\History
[2010-01-03 08:30:24 | 00,000,000 | -HSD | C] -- C:\Users\Ruuchi D\Cookies
[2010-01-03 08:30:24 | 00,000,000 | -HSD | C] -- C:\Users\Ruuchi D\Application Data
[2010-01-03 08:30:24 | 00,000,000 | -HSD | C] -- C:\Users\Ruuchi D\AppData\Local\Application Data
[2010-01-03 08:30:24 | 00,000,000 | -H-D | C] -- C:\Users\Ruuchi D\AppData
[2010-01-03 08:30:24 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Local\Temp
[2010-01-03 08:30:24 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Local\Microsoft
[2010-01-03 08:30:24 | 00,000,000 | ---D | C] -- C:\Users\Ruuchi D\AppData\Roaming\Media Center Programs
[2010-01-03 08:30:23 | 00,000,000 | R--D | C] -- C:\Users\Ruuchi D\Videos
[2010-01-03 08:30:23 | 00,000,000 | R--D | C] -- C:\Users\Ruuchi D\Saved Games
[2010-01-03 08:30:12 | 00,000,000 | -HSD | C] -- C:\Recovery
[2010-01-03 08:30:07 | 00,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2010-01-03 08:24:03 | 00,000,000 | ---D | C] -- C:\Windows\Prefetch
[2010-01-03 08:23:28 | 00,000,000 | -HSD | C] -- C:\System Volume Information
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010-01-24 18:33:49 | 02,359,296 | -HS- | M] () -- C:\Users\Ruuchi D\ntuser.dat
[2010-01-24 16:55:03 | 00,014,608 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2010-01-24 16:55:03 | 00,014,608 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2010-01-24 16:47:50 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010-01-24 16:47:40 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010-01-24 16:47:29 | 16,094,61760 | -HS- | M] () -- C:\hiberfil.sys
[2010-01-24 16:46:42 | 00,054,872 | ---- | M] () -- C:\Windows\System32\BMXStateBkp-{00000002-00000000-00000009-00001102-00000005-00211102}.rfx
[2010-01-24 16:46:42 | 00,054,872 | ---- | M] () -- C:\Windows\System32\BMXState-{00000002-00000000-00000009-00001102-00000005-00211102}.rfx
[2010-01-24 16:46:42 | 00,000,788 | ---- | M] () -- C:\Windows\System32\DVCState-{00000002-00000000-00000009-00001102-00000005-00211102}.rfx
[2010-01-24 16:46:18 | 03,264,911 | -H-- | M] () -- C:\Users\Ruuchi D\AppData\Local\IconCache.db
[2010-01-24 13:28:35 | 00,795,694 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010-01-24 13:28:35 | 00,677,144 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010-01-24 13:28:35 | 00,129,144 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010-01-24 11:54:31 | 00,001,912 | ---- | M] () -- C:\Users\Ruuchi D\Desktop\Team Fortress 2.lnk
[2010-01-24 11:54:31 | 00,001,912 | ---- | M] () -- C:\Users\Ruuchi D\Desktop\Portal.lnk
[2010-01-24 11:54:31 | 00,001,912 | ---- | M] () -- C:\Users\Ruuchi D\Desktop\Half-Life 2.lnk
[2010-01-24 11:54:31 | 00,001,912 | ---- | M] () -- C:\Users\Ruuchi D\Desktop\Half-Life 2 Episode Two.lnk
[2010-01-24 11:54:31 | 00,001,878 | ---- | M] () -- C:\Users\Ruuchi D\Desktop\Half-Life 2 Episode One.lnk
[2010-01-24 08:31:20 | 00,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\themeservice.dll
[2010-01-23 23:14:51 | 00,008,997 | ---- | M] () -- C:\Users\Ruuchi D\AppData\Roaming\SmarThruOptions.xml
[2010-01-23 12:43:44 | 00,444,952 | ---- | M] (Creative Labs) -- C:\Windows\System32\wrap_oal.dll
[2010-01-23 12:43:43 | 00,109,080 | ---- | M] (Portions © Creative Labs Inc. and NVIDIA Corp.) -- C:\Windows\System32\OpenAL32.dll
[2010-01-23 12:43:43 | 00,000,087 | RH-- | M] () -- C:\Windows\ctfile.rfc
[2010-01-16 10:08:32 | 00,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_PCCSWpdDriver_01_07_00.Wdf
[2010-01-15 11:41:14 | 00,249,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\Setup1.exe
[2010-01-15 11:41:13 | 00,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\ST6UNST.EXE
[2010-01-14 11:12:06 | 00,181,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2010-01-12 11:35:40 | 00,000,000 | ---- | M] () -- C:\Windows\nsreg.dat
[2010-01-11 12:42:38 | 00,381,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2010-01-10 11:55:49 | 00,002,169 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Google Calendar Sync.lnk
[2010-01-08 19:52:28 | 00,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2010-01-08 19:50:42 | 00,114,328 | ---- | M] () -- C:\Users\Ruuchi D\AppData\Local\GDIPFONTCACHEV1.DAT
[2010-01-08 19:50:16 | 00,419,312 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010-01-04 20:38:47 | 00,000,124 | ---- | M] () -- C:\Windows\Readiris.ini
[2010-01-03 17:09:05 | 24,109,8527 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2010-01-03 16:27:14 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deploytk.dll
[2010-01-03 16:27:14 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2010-01-03 16:27:14 | 00,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2010-01-03 16:27:14 | 00,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2010-01-03 13:23:55 | 00,000,834 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
[2010-01-03 13:22:05 | 00,108,072 | ---- | M] (Broadcom Corporation.) -- C:\Windows\System32\drivers\btwavdt.sys
[2010-01-03 13:22:05 | 00,086,056 | ---- | M] (Broadcom Corporation.) -- C:\Windows\System32\drivers\btwaudio.sys
[2010-01-03 13:22:05 | 00,029,472 | ---- | M] (Broadcom Corporation.) -- C:\Windows\System32\drivers\btwl2cap.sys
[2010-01-03 13:22:05 | 00,018,344 | ---- | M] (Broadcom Corporation.) -- C:\Windows\System32\drivers\btwrchid.sys
[2010-01-03 13:14:54 | 00,524,288 | -HS- | M] () -- C:\Users\Ruuchi D\ntuser.dat{c904d44c-f837-11de-a251-00044b0606b9}.TMContainer00000000000000000002.regtrans-ms
[2010-01-03 13:14:54 | 00,524,288 | -HS- | M] () -- C:\Users\Ruuchi D\ntuser.dat{c904d44c-f837-11de-a251-00044b0606b9}.TMContainer00000000000000000001.regtrans-ms
[2010-01-03 13:14:54 | 00,065,536 | -HS- | M] () -- C:\Users\Ruuchi D\ntuser.dat{c904d44c-f837-11de-a251-00044b0606b9}.TM.blf
[2010-01-03 11:48:58 | 00,000,478 | ---- | M] () -- C:\Windows\win.ini
[2010-01-03 11:36:15 | 00,691,696 | ---- | M] () -- C:\Windows\System32\drivers\sptd.sys
[2010-01-03 11:08:39 | 00,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2010-01-03 11:08:36 | 00,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_ccdcmb_01007.Wdf
[2010-01-03 10:57:50 | 00,524,288 | -HS- | M] () -- C:\Users\Ruuchi D\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms
[2010-01-03 10:57:50 | 00,524,288 | -HS- | M] () -- C:\Users\Ruuchi D\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms
[2010-01-03 10:57:50 | 00,065,536 | -HS- | M] () -- C:\Users\Ruuchi D\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf
[2010-01-03 08:30:24 | 00,000,020 | -HS- | M] () -- C:\Users\Ruuchi D\ntuser.ini
[2010-01-03 08:26:23 | 00,042,045 | ---- | M] () -- C:\Windows\System32\license.rtf
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010-01-24 11:54:31 | 00,001,912 | ---- | C] () -- C:\Users\Ruuchi D\Desktop\Team Fortress 2.lnk
[2010-01-24 11:54:31 | 00,001,912 | ---- | C] () -- C:\Users\Ruuchi D\Desktop\Portal.lnk
[2010-01-24 11:54:31 | 00,001,912 | ---- | C] () -- C:\Users\Ruuchi D\Desktop\Half-Life 2.lnk
[2010-01-24 11:54:31 | 00,001,912 | ---- | C] () -- C:\Users\Ruuchi D\Desktop\Half-Life 2 Episode Two.lnk
[2010-01-24 11:54:31 | 00,001,878 | ---- | C] () -- C:\Users\Ruuchi D\Desktop\Half-Life 2 Episode One.lnk
[2010-01-23 12:44:54 | 00,054,872 | ---- | C] () -- C:\Windows\System32\BMXStateBkp-{00000002-00000000-00000009-00001102-00000005-00211102}.rfx
[2010-01-23 12:44:54 | 00,054,872 | ---- | C] () -- C:\Windows\System32\BMXState-{00000002-00000000-00000009-00001102-00000005-00211102}.rfx
[2010-01-23 12:44:54 | 00,000,788 | ---- | C] () -- C:\Windows\System32\DVCState-{00000002-00000000-00000009-00001102-00000005-00211102}.rfx
[2010-01-23 12:44:31 | 07,572,224 | ---- | C] () -- C:\Windows\System32\CT8MGM.SF2
[2010-01-23 12:44:31 | 04,174,814 | ---- | C] () -- C:\Windows\System32\CT4MGM.SF2
[2010-01-23 12:43:43 | 00,172,544 | ---- | C] () -- C:\Windows\System32\APOMngr.DLL
[2010-01-23 12:43:43 | 00,073,728 | ---- | C] () -- C:\Windows\System32\CmdRtr.DLL
[2010-01-23 12:43:43 | 00,000,087 | RH-- | C] () -- C:\Windows\ctfile.rfc
[2010-01-23 12:43:31 | 00,037,889 | ---- | C] () -- C:\Windows\System32\instwdm.ini
[2010-01-23 12:43:31 | 00,002,560 | ---- | C] () -- C:\Windows\CTXFIRES.DLL
[2010-01-23 12:41:44 | 00,006,010 | ---- | C] () -- C:\Windows\System32\CTOPT352.cat
[2010-01-23 12:37:53 | 00,016,384 | ---- | C] () -- C:\Windows\System32\REGPLIB.EXE
[2010-01-23 12:37:53 | 00,007,680 | ---- | C] () -- C:\Windows\System32\ENLOCSTR.EXE
[2010-01-23 12:37:51 | 02,167,684 | ---- | C] () -- C:\Windows\System32\CT2MGM.SF2
[2010-01-23 12:37:51 | 01,048,576 | ---- | C] () -- C:\Windows\System32\CT1MGM.ROM
[2010-01-23 12:37:51 | 00,323,856 | ---- | C] () -- C:\Windows\System32\CTDLANG.DAT
[2010-01-23 12:37:51 | 00,056,405 | ---- | C] () -- C:\Windows\System32\CTDNLSTR.DAT
[2010-01-23 12:37:51 | 00,009,198 | ---- | C] () -- C:\Windows\System32\UDAAPO32.UDA
[2010-01-23 12:37:51 | 00,005,458 | ---- | C] () -- C:\Windows\System32\CTMLFX32.UDA
[2010-01-23 12:37:51 | 00,005,430 | ---- | C] () -- C:\Windows\System32\SBXFi.ico
[2010-01-23 12:37:51 | 00,001,688 | ---- | C] () -- C:\Windows\System32\XFi.bmp
[2010-01-23 12:37:51 | 00,000,307 | ---- | C] () -- C:\Windows\System32\KILL.INI
[2010-01-23 12:37:51 | 00,000,059 | ---- | C] () -- C:\Windows\System32\DEFAULT8.SFM
[2010-01-23 12:37:51 | 00,000,059 | ---- | C] () -- C:\Windows\System32\DEFAULT4.SFM
[2010-01-23 12:37:51 | 00,000,059 | ---- | C] () -- C:\Windows\System32\DEFAULT.SFM
[2010-01-23 12:37:51 | 00,000,054 | ---- | C] () -- C:\Windows\System32\ctzapxx.ini
[2010-01-16 10:08:32 | 00,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_PCCSWpdDriver_01_07_00.Wdf
[2010-01-12 11:35:40 | 00,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2010-01-10 11:55:49 | 00,002,169 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Google Calendar Sync.lnk
[2010-01-08 19:52:28 | 00,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2010-01-04 20:39:11 | 00,008,997 | ---- | C] () -- C:\Users\Ruuchi D\AppData\Roaming\SmarThruOptions.xml
[2010-01-04 20:39:00 | 00,036,864 | ---- | C] () -- C:\Windows\System32\SvcMan.exe
[2010-01-04 20:38:55 | 00,172,032 | ---- | C] () -- C:\Windows\System32\SecSNMP.dll
[2010-01-04 20:38:54 | 00,000,422 | ---- | C] () -- C:\Windows\System32\ltocx13.lic
[2010-01-04 20:38:47 | 00,000,124 | ---- | C] () -- C:\Windows\Readiris.ini
[2010-01-04 20:38:46 | 00,023,040 | ---- | C] () -- C:\Windows\System32\irisco32.dll
[2010-01-04 20:35:21 | 00,022,723 | ---- | C] () -- C:\Windows\System32\SSGR3l3.dll
[2010-01-04 20:35:21 | 00,000,293 | ---- | C] () -- C:\Windows\System32\SSGR3l3.smt
[2010-01-03 17:09:05 | 24,109,8527 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2010-01-03 16:31:13 | 00,087,552 | ---- | C] () -- C:\Windows\System32\cpwmon2k.dll
[2010-01-03 13:23:06 | 00,000,834 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
[2010-01-03 13:14:54 | 00,524,288 | -HS- | C] () -- C:\Users\Ruuchi D\ntuser.dat{c904d44c-f837-11de-a251-00044b0606b9}.TMContainer00000000000000000002.regtrans-ms
[2010-01-03 13:14:54 | 00,524,288 | -HS- | C] () -- C:\Users\Ruuchi D\ntuser.dat{c904d44c-f837-11de-a251-00044b0606b9}.TMContainer00000000000000000001.regtrans-ms
[2010-01-03 13:14:54 | 00,065,536 | -HS- | C] () -- C:\Users\Ruuchi D\ntuser.dat{c904d44c-f837-11de-a251-00044b0606b9}.TM.blf
[2010-01-03 11:36:15 | 00,691,696 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2010-01-03 11:08:39 | 00,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
[2010-01-03 11:08:36 | 00,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_ccdcmb_01007.Wdf
[2010-01-03 11:01:15 | 00,007,133 | ---- | C] () -- C:\Windows\System32\nvinfo.pb
[2010-01-03 11:00:28 | 00,006,136 | ---- | C] () -- C:\Windows\System32\drivers\nvphy.bin
[2010-01-03 08:30:24 | 00,524,288 | -HS- | C] () -- C:\Users\Ruuchi D\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms
[2010-01-03 08:30:24 | 00,524,288 | -HS- | C] () -- C:\Users\Ruuchi D\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms
[2010-01-03 08:30:24 | 00,065,536 | -HS- | C] () -- C:\Users\Ruuchi D\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf
[2010-01-03 08:30:24 | 00,000,020 | -HS- | C] () -- C:\Users\Ruuchi D\ntuser.ini
[2010-01-03 08:30:23 | 02,359,296 | -HS- | C] () -- C:\Users\Ruuchi D\ntuser.dat
[2010-01-03 08:23:28 | 16,094,61760 | -HS- | C] () -- C:\hiberfil.sys
[2009-11-06 10:58:04 | 00,178,975 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2009-08-03 15:07:42 | 00,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll
[2009-08-03 00:21:54 | 00,197,912 | ---- | C] () -- C:\Windows\System32\physxcudart_20.dll
[2009-08-03 00:21:54 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelTraditionalChinese.dll
[2009-08-03 00:21:54 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSwedish.dll
[2009-08-03 00:21:54 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSpanish.dll
[2009-08-03 00:21:54 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelSimplifiedChinese.dll
[2009-08-03 00:21:54 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelPortugese.dll
[2009-08-03 00:21:54 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelKorean.dll
[2009-08-03 00:21:54 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelJapanese.dll
[2009-08-03 00:21:52 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelGerman.dll
[2009-08-03 00:21:52 | 00,058,648 | ---- | C] () -- C:\Windows\System32\AgCPanelFrench.dll
[2009-07-14 05:21:43 | 00,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009-07-14 05:12:10 | 00,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
< End of report >
________________________________________________________________________________________________________________________



OTL Extras logfile created on: 24-01-2010 18:32:02 - Run 1
OTL by OldTimer - Version 3.1.26.0 Folder = C:\Users\Ruuchi D\Downloads
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00004009 | Country: India | Language: ENN | Date Format: dd-MM-yyyy

2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 63.00% Memory free
4.00 Gb Paging File | 3.00 Gb Available in Paging File | 70.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 297.99 Gb Total Space | 215.83 Gb Free Space | 72.43% Space Free | Partition Type: NTFS
Drive D: | 1397.26 Gb Total Space | 322.74 Gb Free Space | 23.10% Space Free | Partition Type: NTFS
Drive E: | 698.63 Gb Total Space | 490.67 Gb Free Space | 70.23% Space Free | Partition Type: NTFS
Drive F: | 698.63 Gb Total Space | 471.13 Gb Free Space | 67.44% Space Free | Partition Type: NTFS
Drive G: | 1397.26 Gb Total Space | 392.22 Gb Free Space | 28.07% Space Free | Partition Type: NTFS
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: CAPRICA6
Current User Name: Ruuchi D
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}" = Microsoft Games for Windows - LIVE Redistributable
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0EABFEF6-6D10-4C12-8667-3029C481D355}" = Nokia Photos
"{10A44844-4465-456E-8C97-80BDD4F68845}" = Windows Live ID Sign-in Assistant
"{14D08502-FEE4-40E5-90D3-8A967A1D8BA2}" = Readiris Pro 10
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{226b64e8-dc75-4eea-a6c8-abcb496320f2}-Google Talk" = Google Talk (remove only)
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1" = Media Player Classic - Home Cinema v. 1.3.1453.0 x86
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java™ 6 Update 17
"{2750B389-A2D2-4953-99CA-27C1F2A8E6FD}" = Microsoft SQL Server 2005 Tools Express Edition
"{2AFFFDD7-ED85-4A90-8C52-5DA9EBDC9B8F}" = Microsoft SQL Server 2005 Express Edition (MYMOVIES)
"{2FB5E6F3-AE50-45D9-8AE4-DD331FDD7C84}" = My Movies for Windows Media Center
"{3762698E-E9DF-4DD8-99F1-8192D0F8EE06}" = Nokia_Multimedia_Common_Components_2_5
"{3D5044A5-97B8-45C0-B956-BB2376569188}" = Windows Live Movie Maker
"{48B3FB4D-CE22-488C-8E9F-24EBB77EAC0F}" = Microsoft Security Essentials
"{4CE6B3C4-D8E2-4A5D-BEF5-5B69AF843B0C}" = PC Connectivity Solution
"{4E79A60F-15D2-4BEC-91AD-E41EC42E61B0}" = Batman: Arkham Asylum
"{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}" = Microsoft SQL Server Setup Support Files (English)
"{564B16F4-6B5B-47B0-9AB6-FF2E943947F7}" = Nokia Ovi Suite Software Updater
"{56B4002F-671C-49F4-984C-C760FE3806B5}" = Microsoft SQL Server VSS Writer
"{584109EB-4A5E-4467-B3C4-5C1000008300}" = Tinker
"{5BFB956C-3AB9-492A-9E91-5D8C87DCC598}" = Paint.NET v3.5.1
"{5C81AD72-BDF9-497B-A974-B7F3A91694A8}" = AxCrypt 1.7.1878.0
"{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2
"{6E36A172-06FB-4BC8-B7FC-D30D219E6776}" = Tom Clancy's H.A.W.X
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7E335164-78F5-4E5F-96D4-6B04408FBC02}" = Weys
"{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}" = Windows Live Sync
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8D100E0C-1A5A-43AD-93EF-76F94AE61C30}" = OviMPlatform
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_ENTERPRISE_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = 2007 Microsoft Office Suite Service Pack 2 (SP2)
"{90F1943D-EA4A-4460-B59F-30023F3BA69A}" = SmarThru 4
"{94A065E8-455D-41C1-AF1F-F0C1AF8F50F3}" = Microsoft IntelliType Pro 7.0
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}" = WIDCOMM Bluetooth Software
"{A0A77CDC-2419-4D5C-AD2C-E09E5926B806}" = Microsoft Antimalware
"{A1C962E2-2426-49C6-A38B-9A07E40D607C}" = Microsoft Games for Windows - LIVE
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A528306A-C5EC-481C-A619-6106334E6800}" = Nokia Ovi Player
"{A85FD55B-891B-4314-97A5-EA96C0BD80B5}" = Windows Live Messenger
"{AC76BA86-7AD7-1033-7B44-A92000000001}" = Adobe Reader 9.2
"{AE3CF174-872C-46C6-B9F6-C0593F3BC7B8}" = Microsoft Office Live Add-in 1.4
"{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{B6164ADA-55DA-4FA9-B78B-A7EB741742A1}" = Nokia Ovi Suite
"{BD68F46D-8A82-4664-8E68-F87C55BDEFD4}" = Microsoft SQL Server Native Client
"{C50EF365-2898-489A-B6C7-30DAA466E9A2}" = Nokia Connectivity Cable Driver
"{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}" = NVIDIA PhysX
"{D6C75F0B-3BC1-4FC9-B8C5-3F7E8ED059CA}" = Windows Live Photo Gallery
"{ED00D08A-3C5F-488D-93A0-A04F21F23956}" = Windows Live Communications Platform
"{EF71A531-5B6C-4B20-8D1E-E6379C7FB6D3}" = Microsoft IntelliPoint 7.0
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F1C3541D-5B93-4131-B440-692FBA3DD250}" = Ovi Desktop Sync Engine
"{F318330F-DE7D-4B22-AF7C-C3760DDC2EF3}" = Xmarks for IE
"{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call
"{FB838FDB-0C2D-44EC-8C40-F69C5CDABFCC}" = Samsung SCX-4100 Series - TWAIN
"504244733D18C8F63FF584AEB290E3904E791693" = Windows Driver Package - Nokia pccsmcfd (08/22/2008 7.0.0.0)
"7-Zip" = 7-Zip 9.10 beta
"A6A8668C0A13640CA28FE2A7D9654BE4AE478B13" = Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405)
"AcMgrDDL" = DDL and DTS Connect License Activation
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"AirtelNetXpert 2.3_is1" = Airtel NetXpert 2.3
"ALchemy" = Creative ALchemy
"AudioCS" = Creative Audio Control Panel
"B7541EC5F72AA713F557569278EB6273725F5607" = Windows Driver Package - Broadcom Bluetooth (06/15/2009 6.2.0.9000)
"BF20603967CFDCB2BBF91950E8A56DFBC5C833FE" = Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800)
"Console Launcher" = Creative Console Launcher
"Creative AutoMode Switcher" = Creative AutoMode Switcher
"Creative Sound Blaster Properties" = Creative Sound Blaster Properties
"Creative Volume Panel" = Volume Panel
"CutePDF Writer Installation" = CutePDF Writer 2.8
"Dolby Digital Live Pack" = Dolby Digital Live Pack
"DTS Connect Pack" = DTS Connect Pack
"ENTERPRISE" = Microsoft Office Enterprise 2007
"GFWL_{584109EB-4A5E-4467-B3C4-5C1000008300}" = Tinker
"Google Calendar Sync" = Google Calendar Sync
"ImgBurn" = ImgBurn
"Juniper Network Connect 6.5.0" = Juniper Networks Network Connect 6.5.0
"KeePass Password Safe_is1" = KeePass Password Safe 1.16
"KeePassPasswordSafe2_is1" = KeePass Password Safe 2.09
"Microsoft Security Essentials" = Microsoft Security Essentials
"Microsoft SQL Server 2005" = Microsoft SQL Server 2005
"Mozilla Firefox (3.5.7)" = Mozilla Firefox (3.5.7)
"Mp3tag" = Mp3tag v2.45a
"Nokia Ovi Suite" = Nokia Ovi Suite
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"OpenAL" = OpenAL
"Picasa 3" = Picasa 3
"PIXresizer_is1" = PIXresizer 2.0.4
"pyserial-py2.5" = Python 2.5 pyserial-2.2
"QuicktimeAlt_is1" = QuickTime Alternative 3.0.1
"RealVNC_is1" = VNC Free Edition 4.1.3
"Samsung SCX-4100 Series" = Samsung SCX-4100 Series
"SFBM" = SoundFont Bank Manager
"Steam App 12900" = Audiosurf
"Steam App 15100" = Assassin's Creed
"Steam App 220" = Half-Life 2
"Steam App 26800" = Braid
"Steam App 35700" = Trine
"Steam App 380" = Half-Life 2: Episode One
"Steam App 400" = Portal
"Steam App 420" = Half-Life 2: Episode Two
"Steam App 440" = Team Fortress 2
"THX_Console_Unicode" = THX Setup Console
"VLC media player" = VLC media player 1.0.3
"Winamp" = Winamp
"WinLiveSuite_Wave3" = Windows Live Essentials

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-2541689139-3194933077-2512120444-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Juniper_Setup_Client" = Juniper Networks Setup Client
"LastPass" = LastPass (uninstall only)
"Neoteris_Host_Checker" = Juniper Networks Host Checker
"XBMC" = XBMC

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 04-01-2010 15:02:22 | Computer Name = CAPRICA6 | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "e:\freeware_software\multimedia\required
av stuff\iTunes64Setup.exe". Dependent Assembly Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.

Error - 07-01-2010 10:45:37 | Computer Name = CAPRICA6 | Source = VSS | ID = 8194
Description =

Error - 11-01-2010 22:43:59 | Computer Name = CAPRICA6 | Source = Application Error | ID = 1000
Description = Faulting application name: iexplore.exe, version: 8.0.7600.16385,
time stamp: 0x4a5bc69e Faulting module name: msxml3.dll, version: 8.110.7600.16385,
time stamp: 0x4a5bda78 Exception code: 0xc0000005 Fault offset: 0x0002e65f Faulting
process id: 0x12bc Faulting application start time: 0x01ca933113547880 Faulting application
path: C:\Program Files\Internet Explorer\iexplore.exe Faulting module path: C:\Windows\System32\msxml3.dll
Report
Id: 55784340-ff24-11de-b551-00044b0606b9

Error - 14-01-2010 00:25:24 | Computer Name = CAPRICA6 | Source = Application Error | ID = 1000
Description = Faulting application name: LogonUI.exe, version: 6.1.7600.16385, time
stamp: 0x4a5bc50a Faulting module name: USER32.dll, version: 6.1.7600.16385, time
stamp: 0x4a5bdb2f Exception code: 0xc0000005 Fault offset: 0x00009ac8 Faulting process
id: 0x354 Faulting application start time: 0x01ca94d18a83b6e0 Faulting application
path: C:\Windows\system32\LogonUI.exe Faulting module path: C:\Windows\system32\USER32.dll
Report
Id: d53ed8e0-00c4-11df-b86c-00044b0606b9

Error - 18-01-2010 10:33:29 | Computer Name = CAPRICA6 | Source = SideBySide | ID = 16842785
Description = Activation context generation failed for "E:\Freeware_Software\Multimedia\Required
AV Stuff\iTunes64Setup.exe". Dependent Assembly Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"
could not be found. Please use sxstrace.exe for detailed diagnosis.

Error - 23-01-2010 03:08:45 | Computer Name = CAPRICA6 | Source = VSS | ID = 8194
Description =

Error - 23-01-2010 13:41:37 | Computer Name = CAPRICA6 | Source = Application Hang | ID = 1002
Description = The program steam.exe version 1.0.0.0 stopped interacting with Windows
and was closed. To see if more information about the problem is available, check
the problem history in the Action Center control panel. Process ID: 1768 Start Time:
01ca9c4ec0bd5480 Termination Time: 20 Application Path: C:\Program Files\Steam\steam.exe

Report
Id: 8948a2c1-0846-11df-9c7d-0017facee514

Error - 23-01-2010 22:57:44 | Computer Name = CAPRICA6 | Source = Application Hang | ID = 1002
Description = The program Steam.exe version 1.0.0.0 stopped interacting with Windows
and was closed. To see if more information about the problem is available, check
the problem history in the Action Center control panel. Process ID: d0 Start Time:
01ca9ca032288080 Termination Time: 38 Application Path: C:\Program Files\Steam\Steam.exe

Report
Id: 2dc00851-0894-11df-9c7d-0017facee514

Error - 24-01-2010 02:35:50 | Computer Name = CAPRICA6 | Source = VSS | ID = 8194
Description =

Error - 24-01-2010 02:56:56 | Computer Name = CAPRICA6 | Source = MsiInstaller | ID = 1013
Description =

[ System Events ]
Error - 24-01-2010 07:23:51 | Computer Name = CAPRICA6 | Source = Microsoft Antimalware | ID = 1008
Description = %%861 has encountered an error when taking action on spyware or other
potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=370...atid=2147610500

User:
CAPRICA6\Ruuchi D Name: Trojan:Win32/Boaxxe.E ID: 2147610500 Severity: Severe Category:
Trojan Path: Action: %%808 Error Code: 0x80508023 Error description: The program could
not find the spyware and other potentially unwanted software on this computer.
Status: Signature Version: AV: 1.73.77.0, AS: 1.73.77.0 Engine Version: 1.1.5405.0

Error - 24-01-2010 07:39:20 | Computer Name = CAPRICA6 | Source = Microsoft Antimalware | ID = 1008
Description = %%861 has encountered an error when taking action on spyware or other
potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=370...atid=2147610500

User:
NT AUTHORITY\SYSTEM Name: Trojan:Win32/Boaxxe.E ID: 2147610500 Severity: Severe Category:
Trojan Path: Action: %%808 Error Code: 0x80508023 Error description: The program could
not find the spyware and other potentially unwanted software on this computer.
Status: Signature Version: AV: 1.73.77.0, AS: 1.73.77.0 Engine Version: 1.1.5405.0

Error - 24-01-2010 07:44:39 | Computer Name = CAPRICA6 | Source = Microsoft Antimalware | ID = 1008
Description = %%861 has encountered an error when taking action on spyware or other
potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=370...atid=2147610500

User:
CAPRICA6\Ruuchi D Name: Trojan:Win32/Boaxxe.E ID: 2147610500 Severity: Severe Category:
Trojan Path: Action: %%808 Error Code: 0x80508023 Error description: The program could
not find the spyware and other potentially unwanted software on this computer.
Status: Signature Version: AV: 1.73.77.0, AS: 1.73.77.0 Engine Version: 1.1.5405.0

Error - 24-01-2010 07:57:00 | Computer Name = CAPRICA6 | Source = Microsoft Antimalware | ID = 1008
Description = %%861 has encountered an error when taking action on spyware or other
potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=370...atid=2147610500

User:
NT AUTHORITY\SYSTEM Name: Trojan:Win32/Boaxxe.E ID: 2147610500 Severity: Severe Category:
Trojan Path: Action: %%808 Error Code: 0x80508023 Error description: The program could
not find the spyware and other potentially unwanted software on this computer.
Status: Signature Version: AV: 1.73.77.0, AS: 1.73.77.0 Engine Version: 1.1.5405.0

Error - 24-01-2010 08:08:45 | Computer Name = CAPRICA6 | Source = Microsoft Antimalware | ID = 1008
Description = %%861 has encountered an error when taking action on spyware or other
potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=370...atid=2147610500

User:
NT AUTHORITY\SYSTEM Name: Trojan:Win32/Boaxxe.E ID: 2147610500 Severity: Severe Category:
Trojan Path: Action: %%808 Error Code: 0x80508023 Error description: The program could
not find the spyware and other potentially unwanted software on this computer.
Status: Signature Version: AV: 1.73.77.0, AS: 1.73.77.0 Engine Version: 1.1.5405.0

Error - 24-01-2010 08:20:35 | Computer Name = CAPRICA6 | Source = Microsoft Antimalware | ID = 1008
Description = %%861 has encountered an error when taking action on spyware or other
potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=370...atid=2147610500

User:
NT AUTHORITY\SYSTEM Name: Trojan:Win32/Boaxxe.E ID: 2147610500 Severity: Severe Category:
Trojan Path: Action: %%808 Error Code: 0x80508023 Error description: The program could
not find the spyware and other potentially unwanted software on this computer.
Status: Signature Version: AV: 1.73.77.0, AS: 1.73.77.0 Engine Version: 1.1.5405.0

Error - 24-01-2010 08:32:16 | Computer Name = CAPRICA6 | Source = Microsoft Antimalware | ID = 1008
Description = %%861 has encountered an error when taking action on spyware or other
potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=370...atid=2147610500

User:
NT AUTHORITY\SYSTEM Name: Trojan:Win32/Boaxxe.E ID: 2147610500 Severity: Severe Category:
Trojan Path: Action: %%808 Error Code: 0x80508023 Error description: The program could
not find the spyware and other potentially unwanted software on this computer.
Status: Signature Version: AV: 1.73.77.0, AS: 1.73.77.0 Engine Version: 1.1.5405.0

Error - 24-01-2010 08:44:10 | Computer Name = CAPRICA6 | Source = Microsoft Antimalware | ID = 1008
Description = %%861 has encountered an error when taking action on spyware or other
potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=370...atid=2147610500

User:
NT AUTHORITY\SYSTEM Name: Trojan:Win32/Boaxxe.E ID: 2147610500 Severity: Severe Category:
Trojan Path: Action: %%808 Error Code: 0x80508023 Error description: The program could
not find the spyware and other potentially unwanted software on this computer.
Status: Signature Version: AV: 1.73.77.0, AS: 1.73.77.0 Engine Version: 1.1.5405.0

Error - 24-01-2010 08:55:06 | Computer Name = CAPRICA6 | Source = Microsoft Antimalware | ID = 1008
Description = %%861 has encountered an error when taking action on spyware or other
potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=370...atid=2147610500

User:
CAPRICA6\Ruuchi D Name: Trojan:Win32/Boaxxe.E ID: 2147610500 Severity: Severe Category:
Trojan Path: Action: %%808 Error Code: 0x80508023 Error description: The program could
not find the spyware and other potentially unwanted software on this computer.
Status: Signature Version: AV: 1.73.77.0, AS: 1.73.77.0 Engine Version: 1.1.5405.0

Error - 24-01-2010 08:59:48 | Computer Name = CAPRICA6 | Source = Microsoft Antimalware | ID = 1008
Description = %%861 has encountered an error when taking action on spyware or other
potentially unwanted software. For more information please see the following: http://go.microsoft.com/fwlink/?linkid=370...atid=2147610500

User:
CAPRICA6\Ruuchi D Name: Trojan:Win32/Boaxxe.E ID: 2147610500 Severity: Severe Category:
Trojan Path: Action: %%808 Error Code: 0x80508023 Error description: The program could
not find the spyware and other potentially unwanted software on this computer.
Status: Signature Version: AV: 1.73.77.0, AS: 1.73.77.0 Engine Version: 1.1.5405.0


< End of report >


BC AdBot (Login to Remove)

 


#2 schrauber

schrauber

    Mr.Mechanic


  • Malware Response Team
  • 24,794 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Munich,Germany
  • Local time:09:48 PM

Posted 30 January 2010 - 01:11 PM

Hello and welcome to Bleeping Computer

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine.

If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.

Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.

If you have already posted a DDS log, please do so again, as your situation may have changed.
Use the 'Add Reply' and add the new log to this thread.


Thanks and again sorry for the delay.

We need to see some information about what is happening in your machine. Please perform the following scan:
  • Download DDS by sUBs from one of the following links. Save it to your desktop.
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explaination about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control HERE
regards,
schrauber

Posted Image
Posted Image

If I've not posted back within 48 hrs., feel free to send a PM with your topic link. Thank you!

If I have helped you then please consider donating to continue the fight against malware Posted Image

#3 schrauber

schrauber

    Mr.Mechanic


  • Malware Response Team
  • 24,794 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Munich,Germany
  • Local time:09:48 PM

Posted 04 February 2010 - 02:45 PM

Due to the lack of feedback, this topic is now closed.
If you need this topic reopened, please PM a staff member and we will reopen it for you (include the address of this thread in your request). This applies to the original topic starter only. Everyone else with similar problems, please start a new topic.
regards,
schrauber

Posted Image
Posted Image

If I've not posted back within 48 hrs., feel free to send a PM with your topic link. Thank you!

If I have helped you then please consider donating to continue the fight against malware Posted Image




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users