If I stay connected to the internet, iexplorer.exe will run in the background and play some video where the browser window is not viewable - I try to stay disconnected from the internet most of the time for now.
I was unable to use system restore for the same reason I was unable to use my antivirus/spyware removal programs. This was also the same reason I could not create a system restore point with sysrestorepoint.
TFC ran fine.
ERUNT ran fine.
Malwarebytes was only able to run for about 10 seconds before not being able to start ever again.
gmer could only start after renaming the file. After this it would run for a minute or two before iexplorer.exe will be closed by DEP windows software a couple times before completly freezing/hangs. Leaving me to switch off (by holding down the power button).
One thing I should mention is that I had deleted a folder in my C drive folder which was not there before the infecting, I had deleted it completely however I believe I'm going to be told off for doing this now!
I can only provide the OTL logs below.
OTL.txt
OTL logfile created on: 03/01/2010 05:53:19 - Run 1
OTL by OldTimer - Version 3.1.20.2 Folder = C:\Users\Sunil\Desktop
Windows Vista Home Premium Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.16809)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 59.00% Memory free
6.00 Gb Paging File | 5.00 Gb Available in Paging File | 82.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 149.04 Gb Total Space | 65.19 Gb Free Space | 43.74% Space Free | Partition Type: NTFS
Drive D: | 141.23 Gb Total Space | 50.47 Gb Free Space | 35.73% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: SUNILS--LAPTOP
Current User Name: Sunil
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Standard
Quick Scan
========== Processes (SafeList) ==========
PRC - [2010/01/03 05:49:17 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Users\Sunil\Desktop\OTL.exe
PRC - [2010/01/03 04:36:58 | 06,222,312 | ---- | M] (Prevx) -- C:\Program Files\Prevx\prevx.exe
PRC - [2010/01/02 22:33:08 | 00,189,392 | ---- | M] () -- C:\Windows\System32\PnkBstrB.exe
PRC - [2009/07/25 04:23:12 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009/06/05 12:39:22 | 00,292,136 | ---- | M] (Apple Inc.) -- D:\ITUNES!\iTunesHelper.exe
PRC - [2009/06/05 12:39:14 | 00,541,992 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe
PRC - [2009/06/05 10:48:14 | 00,144,712 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PRC - [2009/04/03 13:33:20 | 00,075,064 | ---- | M] () -- C:\Windows\System32\PnkBstrA.exe
PRC - [2009/01/15 04:14:36 | 00,634,024 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\iexplore.exe
PRC - [2008/12/12 10:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2008/10/29 06:20:29 | 02,923,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008/05/14 07:38:48 | 00,033,136 | ---- | M] () -- C:\Windows\ASScrPro.exe
PRC - [2008/01/07 08:25:13 | 04,853,760 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2007/12/20 14:00:23 | 00,643,072 | ---- | M] (ATI Technologies Inc.) -- C:\Windows\System32\Ati2evxx.exe
PRC - [2007/11/30 18:20:44 | 00,051,768 | ---- | M] () -- C:\Program Files\ASUS\ASUS Live Update\ALU.exe
PRC - [2007/09/03 05:37:18 | 00,630,784 | ---- | M] (Motorola Inc.) -- C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
PRC - [2007/08/08 07:08:40 | 00,094,208 | ---- | M] () -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe
PRC - [2007/07/10 17:59:56 | 00,851,968 | ---- | M] (ATK) -- C:\Program Files\ASUS\Splendid\ACMON.exe
PRC - [2007/06/28 18:31:38 | 00,079,136 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe
PRC - [2007/06/20 19:49:10 | 00,451,872 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
PRC - [2007/05/18 09:31:16 | 00,073,728 | ---- | M] () -- C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
PRC - [2007/04/19 18:32:08 | 00,225,280 | ---- | M] (ATK0100) -- C:\Program Files\ATK Hotkey\HControl.exe
PRC - [2007/04/17 20:39:42 | 00,077,824 | ---- | M] () -- C:\Program Files\ATK Hotkey\KBFiltr.exe
PRC - [2007/03/01 21:24:25 | 00,857,648 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
PRC - [2007/02/06 01:13:14 | 00,094,208 | ---- | M] () -- C:\Program Files\ATK Hotkey\ASLDRSrv.exe
PRC - [2007/01/18 02:26:36 | 07,708,672 | ---- | M] () -- C:\Program Files\ATKOSD2\ATKOSD2.exe
PRC - [2006/12/21 06:03:38 | 01,036,288 | ---- | M] () -- C:\Program Files\Wireless Console 2\wcourier.exe
PRC - [2006/12/19 00:26:26 | 02,420,736 | ---- | M] () -- C:\Program Files\ATK Hotkey\ATKOSD.exe
PRC - [2006/11/02 15:27:32 | 00,061,440 | ---- | M] (ASUSTeK Computer INC.) -- C:\Program Files\ASUS\ATK Media\DMedia.exe
PRC - [2006/11/02 12:34:48 | 00,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mobsync.exe
PRC - [2006/11/02 09:46:02 | 00,143,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WUDFHost.exe
PRC - [2006/11/02 09:45:50 | 00,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\unsecapp.exe
PRC - [2005/07/06 22:43:42 | 00,155,648 | ---- | M] (ASUSTeK) -- C:\Windows\System32\ACEngSvr.exe
========== Modules (SafeList) ==========
MOD - [2010/01/03 05:49:17 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Users\Sunil\Desktop\OTL.exe
MOD - [2008/11/11 20:00:26 | 00,079,112 | ---- | M] (Kaspersky Lab) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\mzvkbd3.dll
MOD - [2008/11/11 20:00:26 | 00,079,112 | ---- | M] (Kaspersky Lab) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\mzvkbd.dll
MOD - [2006/11/02 09:46:13 | 00,038,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sfc_os.dll
MOD - [2006/11/02 09:46:13 | 00,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sfc.dll
MOD - [2006/11/02 09:46:07 | 02,095,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msi.dll
MOD - [2006/11/02 09:46:07 | 00,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msiltcfg.dll
MOD - [2006/11/02 09:38:57 | 01,648,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
========== Win32 Services (SafeList) ==========
SRV - [2010/01/03 04:36:58 | 06,222,312 | ---- | M] (Prevx) [Auto | Running] -- C:\Program Files\Prevx\prevx.exe -- (CSIScanner)
SRV - [2010/01/02 22:33:08 | 00,189,392 | ---- | M] () [Auto | Running] -- C:\Windows\System32\PnkBstrB.exe -- (PnkBstrB)
SRV - [2009/07/05 21:13:02 | 00,316,664 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2009/06/05 12:39:14 | 00,541,992 | ---- | M] (Apple Inc.) [On_Demand | Running] -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service)
SRV - [2009/06/05 10:48:14 | 00,144,712 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2009/04/03 13:33:20 | 00,075,064 | ---- | M] () [Auto | Running] -- C:\Windows\System32\PnkBstrA.exe -- (PnkBstrA)
SRV - [2009/02/06 08:12:10 | 00,206,088 | ---- | M] (Kaspersky Lab) [Auto | Stopped] -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe -- (AVP)
SRV - [2009/01/26 15:31:10 | 01,153,368 | ---- | M] (Safer Networking Ltd.) [Auto | Stopped] -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService)
SRV - [2008/12/12 10:17:38 | 00,238,888 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service)
SRV - [2008/05/14 04:51:40 | 00,265,912 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/12/20 14:00:23 | 00,643,072 | ---- | M] (ATI Technologies Inc.) [Auto | Running] -- C:\Windows\System32\Ati2evxx.exe -- (Ati External Event Utility)
SRV - [2007/08/08 07:08:40 | 00,094,208 | ---- | M] () [Auto | Running] -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe -- (ATKGFNEXSrv)
SRV - [2007/06/28 18:31:38 | 00,079,136 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe -- (LightScribeService)
SRV - [2007/06/01 17:21:30 | 00,271,920 | ---- | M] (Nero AG) [On_Demand | Stopped] -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService)
SRV - [2007/05/18 09:31:16 | 00,073,728 | ---- | M] () [Auto | Running] -- C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe -- (ADSMService)
SRV - [2007/04/14 04:09:56 | 00,792,112 | ---- | M] (Nero AG) [On_Demand | Stopped] -- C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe -- (NBService)
SRV - [2007/02/06 01:13:14 | 00,094,208 | ---- | M] () [Auto | Running] -- C:\Program Files\ATK Hotkey\ASLDRSrv.exe -- (ASLDRService)
SRV - [2006/11/02 12:35:29 | 00,013,312 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\ehome\ehstart.dll -- (ehstart)
SRV - [2006/10/26 20:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2005/04/03 23:41:10 | 00,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.asus.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..extensions.enabledItems: [email protected]:4.0.27.0
FF - prefs.js..extensions.enabledItems: {89506680-e3f4-484c-a2c0-ed711d481eda}:0.9.5.1
FF - prefs.js..extensions.enabledItems: {7694c49c-9fbd-11dc-8314-0800200c9a66}:3.0.2
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.16\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/12/18 18:47:25 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.16\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009/12/18 18:47:25 | 00,000,000 | ---D | M]
[2008/09/27 15:14:38 | 00,000,000 | ---D | M] -- C:\Users\Sunil\AppData\Roaming\Mozilla\Extensions
[2010/01/03 04:18:11 | 00,000,000 | ---D | M] -- C:\Users\Sunil\AppData\Roaming\Mozilla\Firefox\Profiles\4956bnvf.default\extensions
[2008/12/05 01:47:51 | 00,000,000 | ---D | M] (No name found) -- C:\Users\Sunil\AppData\Roaming\Mozilla\Firefox\Profiles\4956bnvf.default\extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe}(73)
[2008/10/16 22:44:26 | 00,000,000 | ---D | M] (Aquatint Black Gloss) -- C:\Users\Sunil\AppData\Roaming\Mozilla\Firefox\Profiles\4956bnvf.default\extensions\{7694c49c-9fbd-11dc-8314-0800200c9a66}
[2009/10/01 15:50:46 | 00,000,000 | ---D | M] (Firefox Showcase) -- C:\Users\Sunil\AppData\Roaming\Mozilla\Firefox\Profiles\4956bnvf.default\extensions\{89506680-e3f4-484c-a2c0-ed711d481eda}
[2009/10/23 03:49:30 | 00,000,000 | ---D | M] -- C:\Users\Sunil\AppData\Roaming\Mozilla\Firefox\Profiles\4956bnvf.default\extensions\[email protected]
[2008/12/06 02:30:43 | 00,000,000 | ---D | M] -- C:\Users\Sunil\AppData\Roaming\Mozilla\Firefox\Profiles\4956bnvf.default\extensions\nasanightlaunch@example(72).com
[2008/10/16 15:59:22 | 00,001,146 | ---- | M] () -- C:\Users\Sunil\AppData\Roaming\Mozilla\Firefox\Profiles\4956bnvf.default\searchplugins\bbc-news.xml
[2008/10/16 15:59:31 | 00,001,504 | ---- | M] () -- C:\Users\Sunil\AppData\Roaming\Mozilla\Firefox\Profiles\4956bnvf.default\searchplugins\imdb.xml
[2010/01/01 10:24:41 | 00,004,857 | ---- | M] () -- C:\Users\Sunil\AppData\Roaming\Mozilla\Firefox\Profiles\4956bnvf.default\searchplugins\isohunt---bt-search.xml
[2009/02/24 02:28:15 | 00,002,298 | ---- | M] () -- C:\Users\Sunil\AppData\Roaming\Mozilla\Firefox\Profiles\4956bnvf.default\searchplugins\lastfm.xml
[2009/03/03 00:58:09 | 00,002,006 | ---- | M] () -- C:\Users\Sunil\AppData\Roaming\Mozilla\Firefox\Profiles\4956bnvf.default\searchplugins\urban-dictionary.xml
[2009/02/07 17:44:42 | 00,001,337 | ---- | M] () -- C:\Users\Sunil\AppData\Roaming\Mozilla\Firefox\Profiles\4956bnvf.default\searchplugins\whois-lookup.xml
[2008/10/16 15:59:51 | 00,001,032 | ---- | M] () -- C:\Users\Sunil\AppData\Roaming\Mozilla\Firefox\Profiles\4956bnvf.default\searchplugins\wikipedia-eng.xml
[2008/10/16 16:00:06 | 00,002,108 | ---- | M] () -- C:\Users\Sunil\AppData\Roaming\Mozilla\Firefox\Profiles\4956bnvf.default\searchplugins\youtube-video-search.xml
[2010/01/03 04:18:11 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2008/01/04 15:36:50 | 00,001,538 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-en-GB.xml
[2008/01/04 15:36:50 | 00,000,947 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\chambers-en-GB.xml
[2008/11/14 19:50:55 | 00,000,759 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\eBay-en-GB.xml
[2008/01/04 15:36:50 | 00,000,831 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-en-GB.xml
O1 HOSTS File: (292165 bytes) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 10061 more lines...
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\ievkbd.dll (Kaspersky Lab)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {4F11ACBB-393F-4C86-A214-FF3D0D155CC3} - No CLSID value found.
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [ASUS Screen Saver Protector] C:\Windows\ASScrPro.exe ()
O4 - HKLM..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMedia.exe (ASUSTeK Computer INC.)
O4 - HKLM..\Run: [AVP] C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe (Kaspersky Lab)
O4 - HKLM..\Run: [iTunesHelper] D:\ITUNES!\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe (Motorola Inc.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [Google Update] C:\Users\Sunil\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.)
O4 - HKCU..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe (Hewlett-Packard Company)
O4 - HKCU..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\wmpnscfg.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O9 - Extra Button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\SCIEPlgn.dll (Kaspersky Lab)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKLM\..Trusted Domains: 48 domain(s) and sub-domain(s) not assigned to a zone.
O15 - HKCU\..Trusted Domains: 48 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} http://messenger.zon...kr.cab56986.cab (Checkers Class)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.micros...b?1242104793887 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zon...nt.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} http://messenger.zon...er.cab56986.cab (Minesweeper Flags Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll) - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\mzvkbd.dll (Kaspersky Lab)
O20 - AppInit_DLLs: (C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll) - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\mzvkbd3.dll (Kaspersky Lab)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\klogon: DllName - C:\Windows\system32\klogon.dll - C:\Windows\System32\klogon.dll (Kaspersky Lab)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 21:43:36 | 00,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{ea7666e3-a23f-11dd-b758-001fc6534de3}\Shell\Auto\command - "" = setup.exe
O33 - MountPoints2\{ea7666e6-a23f-11dd-b758-001fc6534de3}\Shell - "" = AutoRun
O33 - MountPoints2\{ea7666e6-a23f-11dd-b758-001fc6534de3}\Shell\AutoRun\command - "" = H:\LaunchU3.exe -- File not found
O33 - MountPoints2\{eb06d7a1-d9a6-11dd-8e3d-001fc6534de3}\Shell\AutoRun\command - "" = udhpatvz.exe
O33 - MountPoints2\{eb06d7a1-d9a6-11dd-8e3d-001fc6534de3}\Shell\explore\Command - "" = udhpatvz.exe
O33 - MountPoints2\{eb06d7a1-d9a6-11dd-8e3d-001fc6534de3}\Shell\open\Command - "" = udhpatvz.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*
NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias [2006/11/02 11:18:47 | 00,000,000 | ---D | M]
NetSvcs: Irmon - C:\Windows\System32\irmon.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: Wmi - C:\Windows\System32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found
OTL cannot create restorepoints on Vista OSs!
========== Files/Folders - Created Within 14 Days ==========
[2010/01/03 05:49:16 | 00,513,536 | ---- | C] (OldTimer Tools) -- C:\Users\Sunil\Desktop\OTL.exe
[2010/01/03 05:11:24 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2010/01/03 05:11:21 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2010/01/03 05:11:21 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010/01/03 05:09:35 | 00,000,000 | ---D | C] -- C:\Windows\ERDNT
[2010/01/03 05:08:38 | 00,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2010/01/03 05:02:16 | 05,061,512 | ---- | C] (Malwarebytes Corporation ) -- C:\Users\Sunil\Desktop\m-bam-setup.exe
[2010/01/03 05:02:06 | 00,791,393 | ---- | C] (Lars Hederer ) -- C:\Users\Sunil\Desktop\erunt_setup.exe
[2010/01/03 05:01:56 | 00,021,504 | ---- | C] (Doug Knox) -- C:\Users\Sunil\Desktop\Sys-RestorePoint.exe
[2010/01/03 04:53:19 | 00,410,624 | ---- | C] (OldTimer Tools) -- C:\Users\Sunil\Desktop\TFC.exe
[2010/01/03 04:37:00 | 00,053,136 | ---- | C] (Prevx) -- C:\Windows\System32\PxSecure.dll
[2010/01/03 04:37:00 | 00,047,408 | ---- | C] (Prevx) -- C:\Windows\System32\drivers\pxrts.sys
[2010/01/03 04:37:00 | 00,030,280 | ---- | C] (Prevx) -- C:\Windows\System32\drivers\pxscan.sys
[2010/01/03 04:36:59 | 00,024,496 | ---- | C] (Prevx) -- C:\Windows\System32\drivers\pxkbf.sys
[2010/01/03 04:36:58 | 00,000,000 | ---D | C] -- C:\Program Files\Prevx
[2010/01/03 04:36:48 | 00,000,000 | ---D | C] -- C:\ProgramData\PrevxCSI
[2010/01/03 04:20:26 | 00,910,072 | ---- | C] (Prevx) -- C:\Users\Sunil\Desktop\PREVX-CSIFREE.EXE
[2010/01/03 01:37:40 | 00,000,000 | ---D | C] -- C:\Users\Public\Desktop\TrendMicro_TIS_17.50_en-US_32-bit
[2010/01/03 01:36:32 | 45,347,568 | ---- | C] (Trend Micro Inc.) -- C:\Users\Public\Desktop\TrendMicro_TIS_17.50_en-US_32-bit.exe
[2010/01/03 01:36:27 | 00,000,000 | ---D | C] -- C:\Users\Sunil\Desktop\TrendMicro_Downloader
[2010/01/03 01:36:09 | 01,992,152 | ---- | C] (Trend Micro Inc.) -- C:\Users\Sunil\Desktop\TrendMicro_Downloader.exe
[2009/12/30 06:47:04 | 00,000,000 | ---D | C] -- C:\Users\Sunil\Downloads\Flash Forward Season 1
[2009/12/30 02:30:30 | 00,000,000 | ---D | C] -- C:\Program Files\mkv2vob
[2009/12/29 13:22:44 | 00,000,000 | ---D | C] -- C:\Users\Sunil\Downloads\Flash Forward HD s01e09
[2009/12/29 13:21:44 | 00,000,000 | ---D | C] -- C:\Users\Sunil\Downloads\Flash Forward HD s01e08
[2009/12/29 13:21:13 | 00,000,000 | ---D | C] -- C:\Users\Sunil\Downloads\Flash Forward HD s01e07
[2009/12/29 13:20:05 | 00,000,000 | ---D | C] -- C:\Users\Sunil\Downloads\Flash Forward HD s01e06
[2009/12/28 15:19:11 | 00,000,000 | ---D | C] -- C:\Users\Sunil\Desktop\originals
[2007/01/24 18:08:39 | 00,005,632 | ---- | C] ( ) -- C:\Windows\System32\drivers\kbfiltr.sys
========== Files - Modified Within 14 Days ==========
[2010/01/03 05:54:54 | 05,242,880 | -HS- | M] () -- C:\Users\Sunil\ntuser.dat
[2010/01/03 05:49:17 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Users\Sunil\Desktop\OTL.exe
[2010/01/03 05:35:04 | 00,003,072 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010/01/03 05:35:04 | 00,003,072 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010/01/03 05:35:02 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/01/03 05:34:51 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/01/03 05:34:48 | 32,204,63616 | -HS- | M] () -- C:\hiberfil.sys
[2010/01/03 05:18:47 | 00,047,408 | ---- | M] (Prevx) -- C:\Windows\System32\drivers\pxrts.sys
[2010/01/03 05:18:47 | 00,030,280 | ---- | M] (Prevx) -- C:\Windows\System32\drivers\pxscan.sys
[2010/01/03 05:18:46 | 00,024,496 | ---- | M] (Prevx) -- C:\Windows\System32\drivers\pxkbf.sys
[2010/01/03 05:15:17 | 00,284,915 | ---- | M] () -- C:\Users\Sunil\Desktop\gmer.zip
[2010/01/03 05:11:45 | 00,000,906 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2299308901-2864604730-1019191112-1000UA.job
[2010/01/03 05:11:26 | 00,000,825 | ---- | M] () -- C:\Users\Public\Desktop\Mal warebytes' AntiMalware.lnk
[2010/01/03 05:08:38 | 00,000,740 | ---- | M] () -- C:\Users\Sunil\Desktop\NTREGOPT.lnk
[2010/01/03 05:08:38 | 00,000,721 | ---- | M] () -- C:\Users\Sunil\Desktop\ERUNT.lnk
[2010/01/03 05:02:20 | 05,061,512 | ---- | M] (Malwarebytes Corporation ) -- C:\Users\Sunil\Desktop\m-bam-setup.exe
[2010/01/03 05:02:07 | 00,791,393 | ---- | M] (Lars Hederer ) -- C:\Users\Sunil\Desktop\erunt_setup.exe
[2010/01/03 05:02:02 | 00,021,504 | ---- | M] (Doug Knox) -- C:\Users\Sunil\Desktop\Sys-RestorePoint.exe
[2010/01/03 04:55:30 | 05,895,712 | -HS- | M] () -- C:\Windows\System32\drivers\fidbox.dat
[2010/01/03 04:55:30 | 00,999,456 | -HS- | M] () -- C:\Windows\System32\drivers\fidbox2.dat
[2010/01/03 04:55:30 | 00,048,188 | -HS- | M] () -- C:\Windows\System32\drivers\fidbox.idx
[2010/01/03 04:55:30 | 00,005,544 | -HS- | M] () -- C:\Windows\System32\drivers\fidbox2.idx
[2010/01/03 04:55:10 | 00,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2010/01/03 04:53:21 | 00,410,624 | ---- | M] (OldTimer Tools) -- C:\Users\Sunil\Desktop\TFC.exe
[2010/01/03 04:43:27 | 00,000,202 | ---- | M] () -- C:\Windows\System32\srcr.dat
[2010/01/03 04:41:30 | 00,000,050 | ---- | M] () -- C:\Windows\wininit.ini
[2010/01/03 04:37:00 | 00,053,136 | ---- | M] (Prevx) -- C:\Windows\System32\PxSecure.dll
[2010/01/03 04:20:28 | 00,910,072 | ---- | M] (Prevx) -- C:\Users\Sunil\Desktop\PREVX-CSIFREE.EXE
[2010/01/03 04:10:15 | 00,000,854 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2299308901-2864604730-1019191112-1000Core.job
[2010/01/03 02:18:04 | 00,045,056 | ---- | M] () -- C:\Windows\System32\acovcnt.exe
[2010/01/03 01:37:32 | 45,347,568 | ---- | M] (Trend Micro Inc.) -- C:\Users\Public\Desktop\TrendMicro_TIS_17.50_en-US_32-bit.exe
[2010/01/03 01:36:11 | 01,992,152 | ---- | M] (Trend Micro Inc.) -- C:\Users\Sunil\Desktop\TrendMicro_Downloader.exe
[2010/01/03 00:35:54 | 00,000,875 | ---- | M] () -- C:\Windows\System32\krl32mainweq.dll
[2010/01/03 00:34:10 | 00,000,008 | ---- | M] () -- C:\ProgramData\sysReserve.ini
[2010/01/02 22:33:08 | 00,189,392 | ---- | M] () -- C:\Windows\System32\PnkBstrB.xtr
[2010/01/02 22:33:08 | 00,189,392 | ---- | M] () -- C:\Windows\System32\PnkBstrB.exe
[2010/01/02 21:01:23 | 00,138,016 | ---- | M] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2010/01/02 20:36:30 | 00,243,007 | ---- | M] () -- C:\Users\Sunil\Desktop\Shot01320.png
[2010/01/01 10:35:12 | 00,000,069 | ---- | M] () -- C:\Windows\NeroDigital.ini
[2009/12/31 08:16:41 | 00,031,232 | ---- | M] () -- C:\Users\Sunil\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/12/30 14:55:24 | 00,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2009/12/30 14:54:58 | 00,019,160 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2009/12/30 02:30:31 | 00,001,794 | ---- | M] () -- C:\Users\Sunil\Desktop\mkv2vob.lnk
[2009/12/30 02:28:06 | 08,192,000 | ---- | M] () -- C:\Users\Sunil\Desktop\mkv2vob.exe
[2009/12/30 02:13:15 | 00,692,118 | ---- | M] () -- C:\Windows\System32\perfh013.dat
[2009/12/30 02:13:15 | 00,623,342 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2009/12/30 02:13:15 | 00,126,808 | ---- | M] () -- C:\Windows\System32\perfc013.dat
[2009/12/30 02:13:15 | 00,108,526 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2009/12/30 02:13:13 | 01,515,942 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2009/12/28 15:29:17 | 00,026,478 | ---- | M] () -- C:\Users\Sunil\Desktop\server.ini
[2009/12/28 15:24:11 | 00,033,376 | ---- | M] () -- C:\Users\Sunil\Desktop\ArmyOps.ini
========== Files Created - No Company Name ==========
[2010/01/03 05:15:24 | 00,293,376 | ---- | C] () -- C:\Users\Sunil\Desktop\g-mer.exe
[2010/01/03 05:15:16 | 00,284,915 | ---- | C] () -- C:\Users\Sunil\Desktop\gmer.zip
[2010/01/03 05:11:26 | 00,000,825 | ---- | C] () -- C:\Users\Public\Desktop\Mal warebytes' AntiMalware.lnk
[2010/01/03 05:08:38 | 00,000,740 | ---- | C] () -- C:\Users\Sunil\Desktop\NTREGOPT.lnk
[2010/01/03 05:08:38 | 00,000,721 | ---- | C] () -- C:\Users\Sunil\Desktop\ERUNT.lnk
[2010/01/03 04:40:18 | 32,204,63616 | -HS- | C] () -- C:\hiberfil.sys
[2010/01/03 04:36:48 | 00,000,050 | ---- | C] () -- C:\Windows\wininit.ini
[2010/01/03 00:35:54 | 00,000,875 | ---- | C] () -- C:\Windows\System32\krl32mainweq.dll
[2010/01/03 00:34:53 | 00,000,202 | ---- | C] () -- C:\Windows\System32\srcr.dat
[2010/01/03 00:34:10 | 00,000,008 | ---- | C] () -- C:\ProgramData\sysReserve.ini
[2010/01/02 20:36:29 | 00,243,007 | ---- | C] () -- C:\Users\Sunil\Desktop\Shot01320.png
[2009/12/30 02:30:31 | 00,001,794 | ---- | C] () -- C:\Users\Sunil\Desktop\mkv2vob.lnk
[2009/12/30 02:27:47 | 08,192,000 | ---- | C] () -- C:\Users\Sunil\Desktop\mkv2vob.exe
[2009/12/20 21:51:00 | 00,033,376 | ---- | C] () -- C:\Users\Sunil\Desktop\ArmyOps.ini
[2009/06/11 22:29:50 | 00,041,808 | ---- | C] () -- C:\Windows\System32\xfcodec.dll
[2009/03/01 22:53:04 | 00,000,262 | ---- | C] () -- C:\Windows\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
[2009/02/04 03:07:09 | 00,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2008/12/24 17:21:58 | 00,000,680 | ---- | C] () -- C:\Users\Sunil\AppData\Local\d3d9caps.dat
[2008/11/28 18:01:01 | 00,138,056 | ---- | C] () -- C:\Users\Sunil\AppData\Roaming\PnkBstrK.sys
[2008/11/10 00:25:12 | 00,000,552 | ---- | C] () -- C:\Users\Sunil\AppData\Local\d3d8caps.dat
[2008/09/30 16:04:06 | 00,138,016 | ---- | C] () -- C:\Windows\System32\drivers\PnkBstrK.sys
[2008/09/29 14:03:28 | 00,000,069 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2008/09/28 00:19:15 | 00,031,232 | ---- | C] () -- C:\Users\Sunil\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/09/26 17:36:42 | 00,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2008/09/19 21:57:34 | 03,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll
[2008/09/19 21:55:10 | 00,000,416 | ---- | C] () -- C:\Windows\System32\dtu100.dll.manifest
[2008/09/19 21:55:10 | 00,000,416 | ---- | C] () -- C:\Windows\System32\dpl100.dll.manifest
[2008/09/19 21:54:18 | 00,012,288 | ---- | C] () -- C:\Windows\System32\DivXWMPExtType.dll
[2008/05/14 07:38:35 | 00,012,288 | ---- | C] () -- C:\Windows\impborl.dll
[2007/12/20 14:02:19 | 00,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2007/04/18 09:06:01 | 00,000,010 | ---- | C] () -- C:\Windows\System32\ABLKSR.ini
[2007/03/06 06:39:19 | 00,049,152 | ---- | C] () -- C:\Windows\revdevdll.dll
[2006/11/02 12:35:32 | 00,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 07:40:29 | 00,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/03/09 10:57:59 | 01,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll
[2003/01/07 22:05:08 | 00,002,695 | ---- | C] () -- C:\Windows\System32\OUTLPERF.INI
========== LOP Check ==========
[2010/01/03 04:55:10 | 00,032,532 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
========== Custom Scans ==========
< %SYSTEMDRIVE%\*.exe >
< MD5 for: AGP440.SYS >
[2008/01/19 07:42:25 | 00,056,376 | ---- | M] (Microsoft Corporation) MD5=13F9E33747E6B41A3FF305C37DB0D360 -- C:\Windows\SoftwareDistribution\Download\1c436700711381f954e9ff3f0c4b052b\x86_machine.inf_31bf3856ad364e35_6.0.6001.18000_none_ba12ed3bbeb0d97a\AGP440.sys
[2008/05/14 06:14:21 | 00,056,504 | ---- | M] (Microsoft Corporation) MD5=198636E76971EBC96404547EC0FD5E75 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_cb7c81c7\AGP440.sys
[2008/05/14 06:14:21 | 00,056,504 | ---- | M] (Microsoft Corporation) MD5=198636E76971EBC96404547EC0FD5E75 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.0.6000.20598_none_b85cfa98dae9b436\AGP440.sys
[2006/11/02 09:49:52 | 00,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\drivers\AGP440.sys
[2006/11/02 09:49:52 | 00,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys
< MD5 for: ATAPI.SYS >
[2008/01/19 07:41:30 | 00,021,560 | ---- | M] (Microsoft Corporation) MD5=2D9C903DC76A66813D350A562DE40ED9 -- C:\Windows\SoftwareDistribution\Download\1c436700711381f954e9ff3f0c4b052b\x86_mshdc.inf_31bf3856ad364e35_6.0.6001.18000_none_dd38281a2189ce9c\atapi.sys
[2006/11/02 09:49:36 | 00,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys
[2008/09/26 16:09:43 | 00,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\Windows\System32\drivers\atapi.sys
[2008/09/26 16:09:43 | 00,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_7de13c21\atapi.sys
[2008/09/26 16:09:43 | 00,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.16632_none_db337a442479c42c\atapi.sys
[2008/09/26 16:09:43 | 00,021,560 | ---- | M] (Microsoft Corporation) MD5=E03E8C99D15D0381E02743C36AFC7C6F -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.20757_none_dbac78a93da31a8b\atapi.sys
< MD5 for: CNGAUDIT.DLL >
[2006/11/02 09:46:03 | 00,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\System32\cngaudit.dll
[2006/11/02 09:46:03 | 00,011,776 | ---- | M] (Microsoft Corporation) MD5=7F15B4953378C8B5161D65C26D5FED4D -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.0.6000.16386_none_e62d292932a96ce6\cngaudit.dll
< MD5 for: IASTORV.SYS >
[2008/01/19 07:42:51 | 00,235,064 | ---- | M] (Intel Corporation) MD5=54155EA1B0DF185878E0FC9EC3AC3A14 -- C:\Windows\SoftwareDistribution\Download\1c436700711381f954e9ff3f0c4b052b\x86_iastorv.inf_31bf3856ad364e35_6.0.6001.18000_none_af11527887c7fa8f\iaStorV.sys
[2006/11/02 09:51:25 | 00,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\drivers\iaStorV.sys
[2006/11/02 09:51:25 | 00,232,040 | ---- | M] (Intel Corporation) MD5=C957BF4B5D80B46C5017BF0101E6C906 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_37cdafa4\iaStorV.sys
< MD5 for: NETLOGON.DLL >
[2006/11/02 09:46:11 | 00,559,616 | ---- | M] (Microsoft Corporation) MD5=889A2C9F2AACCD8F64EF50AC0B3D553B -- C:\Windows\System32\netlogon.dll
[2006/11/02 09:46:11 | 00,559,616 | ---- | M] (Microsoft Corporation) MD5=889A2C9F2AACCD8F64EF50AC0B3D553B -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6000.16386_none_fb80f5473b0ed783\netlogon.dll
[2008/01/19 07:35:36 | 00,592,384 | ---- | M] (Microsoft Corporation) MD5=A8EFC0B6E75B789F7FD3BA5025D4E37F -- C:\Windows\SoftwareDistribution\Download\1c436700711381f954e9ff3f0c4b052b\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.0.6001.18000_none_fdb7b74337f9e857\netlogon.dll
< MD5 for: NVSTOR.SYS >
[2006/11/02 09:50:13 | 00,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\drivers\nvstor.sys
[2006/11/02 09:50:13 | 00,040,040 | ---- | M] (NVIDIA Corporation) MD5=9E0BA19A28C498A6D323D065DB76DFFC -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_733654ff\nvstor.sys
[2008/01/19 07:42:09 | 00,045,112 | ---- | M] (NVIDIA Corporation) MD5=ABED0C09758D1D97DB0042DBB2688177 -- C:\Windows\SoftwareDistribution\Download\1c436700711381f954e9ff3f0c4b052b\x86_nvraid.inf_31bf3856ad364e35_6.0.6001.18000_none_39dac327befea467\nvstor.sys
< MD5 for: SCECLI.DLL >
[2008/01/19 07:36:19 | 00,177,152 | ---- | M] (Microsoft Corporation) MD5=28B84EB538F7E8A0FE8B9299D591E0B9 -- C:\Windows\SoftwareDistribution\Download\1c436700711381f954e9ff3f0c4b052b\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6001.18000_none_380de25bd91b6f12\scecli.dll
[2006/11/02 09:46:12 | 00,176,640 | ---- | M] (Microsoft Corporation) MD5=80E2839D05CA5970A86D7BE2A08BFF61 -- C:\Windows\System32\scecli.dll
[2006/11/02 09:46:12 | 00,176,640 | ---- | M] (Microsoft Corporation) MD5=80E2839D05CA5970A86D7BE2A08BFF61 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.0.6000.16386_none_35d7205fdc305e3e\scecli.dll
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
[2006/11/02 09:46:02 | 00,770,048 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\advapi32.dll
[2008/09/26 16:01:08 | 00,162,816 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\dnsapi.dll
[2008/10/21 05:16:20 | 00,297,472 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\gdi32.dll
[2009/01/15 04:16:00 | 00,267,776 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\iertutil.dll
[2006/11/02 09:46:05 | 00,115,200 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\imm32.dll
[2006/11/02 09:46:05 | 00,874,496 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\kernel32.dll
[2006/11/02 09:46:05 | 00,024,064 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\lpk.dll
[2008/05/14 06:20:34 | 00,805,888 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\msctf.dll
[2006/11/02 09:46:10 | 00,681,472 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\msvcrt.dll
[2006/11/02 08:33:06 | 00,002,560 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\normaliz.dll
[2006/11/02 09:46:12 | 00,010,240 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\nsi.dll
[2006/11/02 09:47:26 | 01,162,656 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\ntdll.dll
[2006/11/02 09:46:12 | 01,314,816 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\ole32.dll
[2008/05/14 05:39:54 | 00,788,992 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\rpcrt4.dll
[2006/11/02 09:47:18 | 00,228,968 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\rsaenh.dll
[2006/11/02 09:46:12 | 00,072,704 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\secur32.dll
[2008/11/06 12:59:14 | 11,320,832 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\shell32.dll
[2006/11/02 09:46:13 | 00,339,968 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\shlwapi.dll
[2006/11/02 09:46:13 | 00,221,184 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\SLC.dll
[2008/05/14 04:50:39 | 00,633,856 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\user32.dll
[2006/11/02 09:46:13 | 00,107,008 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\userenv.dll
[2006/11/02 09:46:13 | 00,502,784 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\usp10.dll
[2009/01/15 04:16:03 | 00,826,368 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\wininet.dll
[2006/11/02 09:46:14 | 00,178,688 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\ws2_32.dll
< %systemroot%\Tasks\*.job /lockedfiles >
< End of report >
extras.txt
OTL Extras logfile created on: 03/01/2010 05:53:19 - Run 1
OTL by OldTimer - Version 3.1.20.2 Folder = C:\Users\Sunil\Desktop
Windows Vista Home Premium Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.16809)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy
3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 59.00% Memory free
6.00 Gb Paging File | 5.00 Gb Available in Paging File | 82.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 149.04 Gb Total Space | 65.19 Gb Free Space | 43.74% Space Free | Partition Type: NTFS
Drive D: | 141.23 Gb Total Space | 50.47 Gb Free Space | 35.73% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: SUNILS--LAPTOP
Current User Name: Sunil
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Standard
Quick Scan
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- Reg Error: Key error. File not found
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"UacDisableNotify" = 1
"InternetSettingsDisableNotify" = 1
"AutoUpdateDisableNotify" = 1
"AntiVirusDisableNotify" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring" = 1
"" =
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{5760BD42-5005-45F4-94D8-E30A95F5F597}" = rport=137 | protocol=17 | dir=out | app=system |
"{613B6AB6-895D-42FA-B7D2-643265E84FA5}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{6D338166-CFCE-496A-BEC4-782B958B39B2}" = lport=137 | protocol=17 | dir=in | app=system |
"{7CE72F15-3F92-4502-8F0C-CCCE6C25D726}" = rport=138 | protocol=17 | dir=out | app=system |
"{A3D0EA85-286F-47F0-B4D0-F6DD5B2ED2F1}" = rport=445 | protocol=6 | dir=out | app=system |
"{A8BE2625-F4A3-4C21-A53D-69B61B7BDCF0}" = lport=2869 | protocol=6 | dir=in | app=system |
"{B4AB4C34-4DBF-49CC-B175-CC98AF148465}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{C0FC4478-AF4C-47EF-A872-F92C7C1ABF18}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{D3FDAAB6-6D27-4427-8A38-19C63349648F}" = lport=2869 | protocol=6 | dir=in | app=system |
"{DBB7E189-CF1D-4D5C-B8C8-0312F6EDF6A0}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{E0653FAB-C5FA-4050-8125-8E4446778146}" = lport=138 | protocol=17 | dir=in | app=system |
"{EC74977A-BA7C-47CF-8545-812221AF67B0}" = lport=139 | protocol=6 | dir=in | app=system |
"{EF2B7C3B-865C-47F6-A17D-9FD4BE6EE4A2}" = rport=139 | protocol=6 | dir=out | app=system |
"{F05ED7DA-7A31-4C50-9DEB-807902547BB9}" = lport=445 | protocol=6 | dir=in | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00B17D17-734B-4B58-B21A-F7BCAD658387}" = protocol=17 | dir=in | app=d:\itunes.exe |
"{05CC44C4-91E8-4417-B21D-BC6B0EB01A95}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{07E42E8B-683A-47AE-8CB9-9A6E35403E91}" = dir=in | app=c:\program files\windows live\messenger\livecall.exe |
"{13DFEA9B-9097-4D4F-8E5A-2CBE42471010}" = protocol=17 | dir=in | app=c:\program files\kontiki\kservice.exe |
"{1AC18BD2-2B6A-42D2-BF54-8226681B307B}" = protocol=58 | dir=out | [email protected],-28546 |
"{1D69F916-829F-44A0-B89E-846ED6EA15D2}" = protocol=6 | dir=in | app=c:\program files\winamp remote\bin\orbtray.exe |
"{24482675-33C9-4137-8A96-6F1AFE0902D3}" = protocol=6 | dir=in | app=d:\itunes.exe |
"{376B7D8C-3E97-48DF-AEA0-5141E74336DF}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{42168979-97AB-4AF5-8720-5136E08BF589}" = protocol=6 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"{4EE18189-6A6E-49A1-8A03-95CDF435D90E}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{51887F65-65BA-4AD7-9DE9-0A71BBE827D3}" = protocol=6 | dir=in | app=c:\program files\winamp remote\bin\orbir.exe |
"{51E4B671-B31B-4530-879B-B5290A6068BA}" = protocol=6 | dir=in | app=c:\program files\kontiki\kservice.exe |
"{553549FA-F470-4109-AF26-57A6822C1546}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{55A26F36-642D-43BF-AA43-94366FEB7761}" = protocol=17 | dir=in | app=d:\itunes!\itunes.exe |
"{59F3E7E2-93BB-4BCD-9F61-2F3B82FB7680}" = protocol=6 | dir=in | app=d:\itunes!\itunes.exe |
"{5A296A7B-CCB3-4FE6-BF5C-08FAA1FC394F}" = protocol=17 | dir=in | app=c:\program files\winamp remote\bin\orbir.exe |
"{5C6FE0A4-598C-4124-B43D-4896E8EE9FDA}" = protocol=6 | dir=in | app=c:\users\sunil\desktop\utorrent.exe |
"{681FFFCE-5833-49D2-B6E6-A3BCE097B656}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{6874040B-7692-46E3-8C72-796A0DF53B98}" = protocol=58 | dir=in | [email protected],-28545 |
"{69FEE916-B106-419C-B0FD-D7ED0D06A4E6}" = protocol=17 | dir=in | app=c:\program files\winamp remote\bin\orbstreamerclient.exe |
"{6D07A9B2-E688-4ADD-B8E0-70CD71929D1F}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{6D2B15FA-43E1-488D-9909-813BD373C73E}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{6E43470B-24EA-4F9D-8B91-43582F8286DD}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{71703133-2238-4301-95DB-A7C35FF36BEB}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{777D5333-4125-4BB8-A7E9-79EF1706E577}" = protocol=6 | dir=in | app=c:\program files\winamp remote\bin\orbstreamerclient.exe |
"{77998FA4-E4CC-4D4C-925B-91EB413509C5}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\america's army 3\binaries\aa3game.exe |
"{79A39790-86BD-4948-9AD9-1E587AC258A2}" = protocol=6 | dir=in | app=c:\program files\spotify\spotify.exe |
"{7E698090-84B6-471F-968A-E6AA106159E5}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{7E842D29-3DEC-4C48-B6CE-60FD90877A37}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{80F903CC-EA7C-4353-B27B-F080B10AD9E8}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{85C0A866-6573-4613-A83B-1AB046F99BCC}" = protocol=17 | dir=in | app=c:\users\sunil\desktop\utorrent.exe |
"{893DFBC7-5FC8-4FBF-A93A-64D49E84D390}" = protocol=17 | dir=in | app=c:\program files\winamp remote\bin\orbtray.exe |
"{97EA56D5-9CF9-4D3D-88D4-E401F628C00E}" = protocol=1 | dir=in | [email protected],-28543 |
"{9A8ED968-E335-4287-B3E4-55C213F84AEA}" = protocol=17 | dir=in | app=c:\program files\ventrilo\ventrilo.exe |
"{9F0C8CA8-433B-4A76-9AE3-047395B5B0A3}" = protocol=1 | dir=in | [email protected],-28543 |
"{A0CC141A-4D30-44E0-9ADA-9DD614813986}" = protocol=58 | dir=out | [email protected],-28546 |
"{AB5CF6DF-60EF-4C6E-BF90-1523DD292FF1}" = protocol=17 | dir=in | app=c:\program files\spotify\spotify.exe |
"{ACDFFF4C-CB9D-4D6A-B702-F55A8633F901}" = protocol=6 | dir=in | app=c:\program files\spotify\spotify.exe |
"{B05A0614-0A63-4143-AD5F-09DA338A0F3D}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\america's army 3\binaries\aa3game.exe |
"{B69530F4-9E84-4FD8-9C43-A02864B65CF1}" = protocol=17 | dir=in | app=c:\users\sunil\downloads\csa.exe |
"{B79F83C5-C224-4466-BB01-661C008204C8}" = protocol=17 | dir=in | app=c:\program files\spotify\spotify.exe |
"{BB3B0A11-4DEE-4D30-9694-B1BC70CE700B}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{BFAF44D4-05E0-4788-8AA0-B9B960A2913D}" = protocol=1 | dir=out | [email protected],-28544 |
"{C02E3D39-F565-4752-BA44-C714B2D1565E}" = protocol=17 | dir=in | app=c:\program files\winamp remote\bin\orb.exe |
"{C10BB66D-81CF-4A6E-9F55-D0AD1F79CC35}" = protocol=1 | dir=out | [email protected],-28544 |
"{C8B9B6DF-C94A-4AA7-9A18-D5B9E538D0BB}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{CCB7155D-CC17-4C0A-B959-79F0A656F134}" = protocol=6 | dir=in | app=c:\users\sunil\downloads\csa.exe |
"{D231B49F-E339-4731-9D7C-96E81916688C}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{D349B08B-4B63-4830-A88A-DB2D760F853F}" = protocol=6 | dir=in | app=c:\program files\ventrilo\ventrilo.exe |
"{DDF7DDB4-4800-4202-B67D-AB099CBB2260}" = protocol=17 | dir=in | app=c:\program files\utorrent\utorrent.exe |
"{DE58A9F0-74C5-44ED-9170-2B9D74EF8135}" = protocol=6 | dir=in | app=c:\program files\winamp remote\bin\orb.exe |
"{DFDC7C57-84DA-4295-8D52-C8EC1D900FEA}" = protocol=58 | dir=in | [email protected],-28545 |
"{E60FEFE8-EF0E-4B95-9561-4DD099A2EE9D}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"TCP Query User{38908767-4E1D-45B2-8DC3-CA08867A8B6F}C:\program files\america's army\system\armyops.exe" = protocol=6 | dir=in | app=c:\program files\america's army\system\armyops.exe |
"TCP Query User{4FCDB6F6-C74F-4026-87A2-4732C4528B85}C:\program files\xfire\xfire.exe" = protocol=6 | dir=in | app=c:\program files\xfire\xfire.exe |
"TCP Query User{5531FDBE-2FF3-4304-9408-6BD4094A5816}C:\program files\america's army\system\armyops.exe" = protocol=6 | dir=in | app=c:\program files\america's army\system\armyops.exe |
"TCP Query User{7FCBE7F3-F806-4073-82AA-A86F90CA536B}C:\program files\xfire\xfire.exe" = protocol=6 | dir=in | app=c:\program files\xfire\xfire.exe |
"TCP Query User{84056752-56DE-41B0-8D49-430842FBEB0A}C:\users\sunil\desktop\torrents\utorrent.exe" = protocol=6 | dir=in | app=c:\users\sunil\desktop\torrents\utorrent.exe |
"TCP Query User{9305627F-B0AB-4BE1-AB4B-03EA1F0F9491}D:\itunes!\itunes.exe" = protocol=6 | dir=in | app=d:\itunes!\itunes.exe |
"TCP Query User{EB3890CE-D245-4D0F-BD96-551D2547E0FB}C:\program files\winamp remote\bin\orbtray.exe" = protocol=6 | dir=in | app=c:\program files\winamp remote\bin\orbtray.exe |
"TCP Query User{EC12E32A-4F4B-4D7E-8B2C-80D94332A1F8}C:\program files\america's army deploy client\aadeployclient.exe" = protocol=6 | dir=in | app=c:\program files\america's army deploy client\aadeployclient.exe |
"UDP Query User{38899A6A-6CC5-4F59-992E-0F219CB336BD}C:\program files\america's army\system\armyops.exe" = protocol=17 | dir=in | app=c:\program files\america's army\system\armyops.exe |
"UDP Query User{7ABCF4D3-7C4B-4493-95AE-37512DD8F5BA}C:\program files\america's army deploy client\aadeployclient.exe" = protocol=17 | dir=in | app=c:\program files\america's army deploy client\aadeployclient.exe |
"UDP Query User{99319F34-A26F-41E7-A9CC-6533AAEED057}C:\program files\winamp remote\bin\orbtray.exe" = protocol=17 | dir=in | app=c:\program files\winamp remote\bin\orbtray.exe |
"UDP Query User{A8709345-5EB2-4B49-A75A-C38212B3BDEB}C:\users\sunil\desktop\torrents\utorrent.exe" = protocol=17 | dir=in | app=c:\users\sunil\desktop\torrents\utorrent.exe |
"UDP Query User{CEA4B7A0-CAD8-4CE5-9F52-E583A9364A16}C:\program files\america's army\system\armyops.exe" = protocol=17 | dir=in | app=c:\program files\america's army\system\armyops.exe |
"UDP Query User{D66E3A0A-55A3-4AFD-99EC-DFDBE7E0A563}C:\program files\xfire\xfire.exe" = protocol=17 | dir=in | app=c:\program files\xfire\xfire.exe |
"UDP Query User{ED622071-159D-495B-8330-683308CE58DC}C:\program files\xfire\xfire.exe" = protocol=17 | dir=in | app=c:\program files\xfire\xfire.exe |
"UDP Query User{EF1C30DA-7FD0-4561-9040-2B3F76F49E82}D:\itunes!\itunes.exe" = protocol=17 | dir=in | app=d:\itunes!\itunes.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{025F9C8B-27B3-76B0-08E8-4EB918DE287B}" = Catalyst Control Center Localization Dutch
"{02EBDBB9-4600-41D3-B566-40CB861511D2}" = World of Warcraft FREE Trial
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{07287123-B8AC-41CE-8346-3D777245C35B}" = Bonjour
"{0813BDD1-7E8E-4F18-A13C-037CDD7F9A48}" = Catalyst Control Center Localization Chinese Traditional
"{0A47C6E1-9BB2-023C-BBEC-2D3DBEA91A9A}" = ATI Catalyst Install Manager
"{0B3ED35F-3BDC-72FE-3477-A7CA54325F06}" = CCC Help Chinese Traditional
"{0B950F52-0FD9-C679-6FD0-C4D4F43ACA3E}" = Catalyst Control Center Localization Greek
"{0E4DC8EF-9438-AEEF-A042-851C2EA86FEA}" = Catalyst Control Center Localization Finnish
"{11D3D948-2789-2E3D-03D7-282B537D8C01}" = BBC iPlayer Desktop
"{139B0FFA-187E-4BA1-BCA6-6B56B2B6AB8C}" = ATK Media
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{1A915E9E-75A0-5FD6-53C3-D2E5EDA27B52}" = Catalyst Control Center Localization Polish
"{1BDCA62C-699A-A3C2-57C6-D496414BA297}" = Catalyst Control Center Graphics Full New
"{1C8521E5-5A7B-4A4E-A9CD-AD53116EAEE0}" = ASUS Data Security Manager
"{1CE34A07-F95C-C749-B8FB-10BEFBB5D917}" = Catalyst Control Center Localization Swedish
"{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}" = LifeFrame2
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{21AE04E8-EBF6-40DB-9AA9-B7A80C5D057D}" = mkv2vob
"{22AD2DF3-00C4-68EB-8D2A-C5AC60BDA907}" = CCC Help Greek
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{24339461-1E3B-290E-613E-B0B234B64ABE}" = Catalyst Control Center Localization Japanese
"{26A24AE4-039D-4CA4-87B4-2F83216012FF}" = Java 6 Update 15
"{27DB888F-A703-E898-6261-D84260EF93DA}" = Catalyst Control Center Core Implementation
"{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Atheros Driver Installation Program
"{337C0055-BE59-63E5-72AE-DAED46ED980B}" = CCC Help Korean
"{342D2010-703F-2098-441E-F96F532EBD09}" = CCC Help Chinese Standard
"{38D189B1-C43A-46DE-9518-EE67560002FC}" = America's Army
"{3912D529-02BC-4CA8-B5ED-0D0C20EB6003}" = ATK Hotkey
"{3A9A74B7-DAE0-EB01-E51A-D2A6720CF135}" = CCC Help Japanese
"{3E7CE151-F6EC-8550-9B73-427F6A89AC42}" = CCC Help Polish
"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
"{45936E5D-5CEB-A100-8694-B62523FD99C6}" = Catalyst Control Center Localization German
"{4BE52CD7-9B51-F4D8-ED51-8E89324F3EBD}" = Catalyst Control Center Localization Norwegian
"{4EE9DA0A-4CED-1FB9-3231-24C85855A387}" = Catalyst Control Center Localization Spanish
"{50DD51CF-31D8-7831-D4E8-E13E0A736D93}" = Catalyst Control Center Localization Russian
"{52159193-1EA1-B129-7C03-7120CB0C502E}" = CCC Help Portuguese
"{52E43F33-7D7C-3209-0539-1B2A43010E0D}" = Catalyst Control Center Localization Turkish
"{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}" = Skype web features
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57B15AD4-8C9D-4164-82BB-E33D8644E757}" = ASUS InstantFun
"{58752780-E21C-A458-2397-BD8D5E3CB0C1}" = Catalyst Control Center Localization Portuguese
"{5C1DB4ED-E9B4-402D-BB14-D75D97D6C1A6}" = ATKOSD2
"{5D601655-6D54-4384-B52C-17EC5385FBBD}" = iTunes
"{6412CECE-8172-4BE5-935B-6CECACD2CA87}" = Windows Live Mail
"{6580C5A3-2336-4EC5-85F1-3448C5F6208A}" = Kaspersky Anti-Virus 2009
"{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
"{6602C18D-52EC-BB1F-C3B9-EFF2F1463A58}" = Catalyst Control Center Localization Thai
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6D6204C8-6B1D-4FBA-ADA9-CB6DFF9BF80D}" = America's Army Deploy Client
"{6E32B134-CA8D-49DD-B94C-0DB155CE70B5}" = ccc-Branding
"{767CC44C-9BBC-438D-BAD3-FD4595DD148B}" = VC80CRTRedist - 8.0.50727.762
"{77AD4A77-F70F-84BC-B52B-91DAB868EF27}" = CCC Help Czech
"{77DCDCE3-2DED-62F3-8154-05E745472D07}" = Acrobat.com
"{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo Client
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials
"{8355F970-601D-442D-A79B-1D7DB4F24CAD}" = Apple Mobile Device Support
"{83F73CB1-7705-49D1-9852-84D839CA2A45}" = Wireless Console 2
"{872717DD-EE82-F142-4DF7-0308772A8DE4}" = ccc-utility
"{88D44595-9B8E-38FF-7CD9-F5A1423BA2D6}" = Catalyst Control Center Graphics Light
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8D3D4041-DA1D-F814-B37E-ABF774556DAA}" = Catalyst Control Center Localization Italian
"{900F0963-B211-5692-EEEC-4DFF6F7321F6}" = CCC Help Swedish
"{90110409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{91AA9814-7B89-DA53-5FCA-EBDCDAC4F611}" = CCC Help Italian
"{92C98289-5C00-4A4E-03ED-6E59F7D73435}" = Catalyst Control Center Localization Chinese Standard
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{97C9E93A-7DEA-37C2-50F0-E6172D91DEE6}" = CCC Help German
"{97F73E68-213C-6F88-A590-9C600186E36C}" = CCC Help Finnish
"{9BF9D522-7FA6-D442-9769-558E3B4503F0}" = Skins
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A85FD55B-891B-4314-97A5-EA96C0BD80B5}" = Windows Live Messenger
"{AB870B63-94EF-0B0A-340E-62CAF5D48B17}" = CCC Help French
"{AC76BA86-7AD7-1033-7B44-A91000000001}" = Adobe Reader 9.1
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B6512E97-FFA8-6A76-4B07-036784E56A7B}" = Catalyst Control Center Localization Czech
"{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
"{B8F1FA25-D1F3-5DEB-5AE2-18E72A2955CA}" = Catalyst Control Center Localization Danish
"{B935DAF9-605C-A1F8-7A4E-BE87E82B7237}" = CCC Help Norwegian
"{BC61F51E-8AF7-46B9-AF20-B33B5EE81033}" = Nero 7 Essentials
"{C0BAF48F-940E-7AC7-63B3-BDFAF8A6CCA5}" = CCC Help Thai
"{C0FC1C14-4824-4A73-87A6-9E888C9C3102}" = ASUS Splendid Video Enhancement Technology
"{C1B22596-9F6C-6795-F374-D6843ABA8A9A}" = Catalyst Control Center Localization Korean
"{C2F0B002-52DC-470E-BB48-8D1C8C9F1795}" = XAC
"{C376495E-6F9D-2A3A-329E-960682A22B3B}" = Catalyst Control Center Localization Hungarian
"{C6FB5BC4-823A-FE8B-01CB-3A7F51B4C9C2}" = ccc-core-static
"{C78EAC6F-7A73-452E-8134-DBB2165C5A68}" = QuickTime
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE86A0E7-818D-43EC-A181-59BA9BD3EF2E}" = LightScribe 1.8.13.1
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"{D3D54F3E-C5C3-443D-978F-87A72E5616E8}" = ATK Generic Function Service
"{D8438AE5-4BE7-CEC7-D0AA-189B34C4628F}" = CCC Help Dutch
"{D873FA4B-C374-4F8A-8D9A-130DB56FAB16}" = America's Army
"{DC24971E-1946-445D-8A82-CE685433FA7D}" = Realtek USB 2.0 Card Reader
"{DF4EB70F-6EBF-AD9E-AF89-D1398A284C86}" = Catalyst Control Center Graphics Previews Common
"{E037311F-0715-DB85-4394-6B09A66605C0}" = CCC Help Spanish
"{E1D0A2DB-9B8D-E7B1-295B-DDAB0B9A423F}" = Catalyst Control Center Localization French
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}" = ASUS Live Update
"{EAF8F949-849D-9E39-2A86-0DB83A90405B}" = Catalyst Control Center Graphics Full Existing
"{ED00D08A-3C5F-488D-93A0-A04F21F23956}" = Windows Live Communications Platform
"{EDFE36E7-B60E-BF8E-F2DF-0DD61B1E3CAE}" = CCC Help Hungarian
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F656696C-CF30-03E5-03A8-05078E02ACEB}" = CCC Help Danish
"{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call
"{F6CAF803-A534-705F-A673-A04FCEC5AFC9}" = CCC Help Russian
"{FCABF3BF-D716-980B-F463-32D5734A3DB4}" = CCC Help English
"{FE0C4C63-56C1-087C-3404-C547405FCEA7}" = Catalyst Control Center Graphics Previews Vista
"{FE44D8AC-80B2-A8BA-291F-59109DE96C11}" = CCC Help Turkish
"Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"BBCiPlayerDesktop.61DB7A798358575D6A969CCD73DDBBD723A6DA9D.1" = BBC iPlayer Desktop
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"ERUNT_is1" = ERUNT 1.1j
"InstallWIX_{6580C5A3-2336-4EC5-85F1-3448C5F6208A}" = Kaspersky Anti-Virus 2009
"LastFM_is1" = Last.fm 1.5.4.24567
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.0.16)" = Mozilla Firefox (3.0.16)
"Orb" = Winamp Remote
"PCSI" = Prevx
"PunkBusterSvc" = PunkBuster Services
"SMSERIAL" = Motorola SM56 Speakerphone Modem
"Steam App 13140" = America's Army 3
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"USB2.0 1.3M UVC WebCam" = USB2.0 1.3M UVC WebCam
"uTorrent" = µTorrent
"vis_milk.dllWinamp" = MilkDrop for Winamp 2x (remove only)
"VLC media player" = VideoLAN VLC media player 0.8.6d
"Winamp" = Winamp
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
"Xfire" = Xfire (remove only)
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{8DC910CD-8EE3-4ffc-A4EB-9B02701059C4}" = Battlefield Heroes (Sunil)
"Google Chrome" = Google Chrome
"InstallShield_{38D189B1-C43A-46DE-9518-EE67560002FC}" = America's Army
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 02/10/2009 05:55:50 | Computer Name = Sunils--Laptop | Source = WerSvc | ID = 5007
Description =
Error - 02/10/2009 14:54:10 | Computer Name = Sunils--Laptop | Source = WerSvc | ID = 5007
Description =
Error - 02/10/2009 20:08:33 | Computer Name = Sunils--Laptop | Source = Application Error | ID = 1000
Description = Faulting application firefox.exe, version 1.9.0.3526, time stamp 0x4a96afb2,
faulting module MSVCR71.dll, version 7.10.3052.4, time stamp 0x3e561eac, exception
code 0xc0000005, fault offset 0x000128fe, process id 0xbac, application start time
0x01ca43bd9f3af3e8.
Error - 02/10/2009 21:03:09 | Computer Name = Sunils--Laptop | Source = WerSvc | ID = 5007
Description =
Error - 03/10/2009 16:33:16 | Computer Name = Sunils--Laptop | Source = WerSvc | ID = 5007
Description =
Error - 03/10/2009 17:06:12 | Computer Name = Sunils--Laptop | Source = WerSvc | ID = 5007
Description =
Error - 03/10/2009 17:26:51 | Computer Name = Sunils--Laptop | Source = WerSvc | ID = 5007
Description =
Error - 04/10/2009 17:41:53 | Computer Name = Sunils--Laptop | Source = WerSvc | ID = 5007
Description =
Error - 04/10/2009 19:51:30 | Computer Name = Sunils--Laptop | Source = WerSvc | ID = 5007
Description =
Error - 05/10/2009 15:32:08 | Computer Name = Sunils--Laptop | Source = WerSvc | ID = 5007
Description =
[ System Events ]
Error - 03/01/2010 01:53:18 | Computer Name = Sunils--Laptop | Source = Microsoft-Windows-Servicing | ID = 4375
Description =
Error - 03/01/2010 01:53:18 | Computer Name = Sunils--Laptop | Source = Microsoft-Windows-Servicing | ID = 4375
Description =
Error - 03/01/2010 01:53:18 | Computer Name = Sunils--Laptop | Source = Microsoft-Windows-Servicing | ID = 4375
Description =
Error - 03/01/2010 01:53:18 | Computer Name = Sunils--Laptop | Source = Microsoft-Windows-Servicing | ID = 4375
Description =
Error - 03/01/2010 01:53:18 | Computer Name = Sunils--Laptop | Source = Microsoft-Windows-Servicing | ID = 4375
Description =
Error - 03/01/2010 01:53:18 | Computer Name = Sunils--Laptop | Source = Microsoft-Windows-Servicing | ID = 4375
Description =
Error - 03/01/2010 01:53:18 | Computer Name = Sunils--Laptop | Source = Microsoft-Windows-Servicing | ID = 4375
Description =
Error - 03/01/2010 01:53:18 | Computer Name = Sunils--Laptop | Source = Microsoft-Windows-Servicing | ID = 4375
Description =
Error - 03/01/2010 01:53:18 | Computer Name = Sunils--Laptop | Source = Microsoft-Windows-Servicing | ID = 4375
Description =
Error - 03/01/2010 01:53:18 | Computer Name = Sunils--Laptop | Source = Microsoft-Windows-LanguagePackSetup | ID = 1003
Description =
< End of report >
Edited by Skag, 03 January 2010 - 12:26 AM.