Don't like ads? PRO users don't see any ads ;-)
Public Pastes
Guest

OTL Extras.txt

By: a guest on May 22nd, 2012  |  syntax: None  |  size: 40.01 KB  |  hits: 32  |  expires: Never
download  |  raw  |  embed  |  report abuse  |  print
Text below is selected. Please press Ctrl+C to copy to your clipboard. (⌘+C on Mac)
  1. OTL Extras logfile created on: 5/22/2012 5:43:21 PM - Run 1
  2. OTL by OldTimer - Version 3.2.43.1     Folder = C:\Users\Owner\Downloads
  3. 64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
  4. Internet Explorer (Version = 9.0.8112.16421)
  5. Locale: 00000409 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy
  6.  
  7. 5.68 Gb Total Physical Memory | 4.27 Gb Available Physical Memory | 75.13% Memory free
  8. 11.36 Gb Paging File | 9.84 Gb Available in Paging File | 86.65% Paging File free
  9. Paging file location(s): ?:\pagefile.sys [binary data]
  10.  
  11. %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
  12. Drive C: | 450.66 Gb Total Space | 333.31 Gb Free Space | 73.96% Space Free | Partition Type: NTFS
  13.  
  14. Computer Name: OWNER-PC | User Name: Owner | Logged in as Administrator.
  15. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
  16. Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
  17.  
  18. [color=#E56717]========== Extra Registry (SafeList) ==========[/color]
  19.  
  20.  
  21. [color=#E56717]========== File Associations ==========[/color]
  22.  
  23. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
  24. .html[@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
  25. .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
  26.  
  27. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
  28. .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
  29. .html [@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
  30.  
  31. [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
  32. .html [@ = ChromeHTML] -- Reg Error: Key error. File not found
  33.  
  34. [color=#E56717]========== Shell Spawning ==========[/color]
  35.  
  36. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
  37. batfile [open] -- "%1" %*
  38. cmdfile [open] -- "%1" %*
  39. comfile [open] -- "%1" %*
  40. exefile [open] -- "%1" %*
  41. helpfile [open] -- Reg Error: Key error.
  42. htmlfile [edit] -- Reg Error: Key error.
  43. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
  44. http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
  45. https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
  46. inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
  47. InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
  48. InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
  49. piffile [open] -- "%1" %*
  50. regfile [merge] -- Reg Error: Key error.
  51. scrfile [config] -- "%1"
  52. scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
  53. scrfile [open] -- "%1" /S
  54. txtfile [edit] -- Reg Error: Key error.
  55. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
  56. Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
  57. Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5.1\Bridge.exe "%L" (Adobe Systems, Inc.)
  58. Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
  59. Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  60. Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
  61. Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  62. Folder [explore] -- Reg Error: Value error.
  63. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  64.  
  65. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
  66. batfile [open] -- "%1" %*
  67. cmdfile [open] -- "%1" %*
  68. comfile [open] -- "%1" %*
  69. cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
  70. exefile [open] -- "%1" %*
  71. helpfile [open] -- Reg Error: Key error.
  72. htmlfile [edit] -- Reg Error: Key error.
  73. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
  74. http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
  75. https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
  76. inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
  77. piffile [open] -- "%1" %*
  78. regfile [merge] -- Reg Error: Key error.
  79. scrfile [config] -- "%1"
  80. scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
  81. scrfile [open] -- "%1" /S
  82. txtfile [edit] -- Reg Error: Key error.
  83. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
  84. Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
  85. Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5.1\Bridge.exe "%L" (Adobe Systems, Inc.)
  86. Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
  87. Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  88. Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
  89. Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  90. Folder [explore] -- Reg Error: Value error.
  91. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  92.  
  93. [color=#E56717]========== Security Center Settings ==========[/color]
  94.  
  95. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
  96. "cval" = 1
  97.  
  98. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
  99.  
  100. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
  101. "VistaSp1" = 28 4D B2 76 41 04 CA 01  [binary data]
  102. "AntiVirusOverride" = 0
  103. "AntiSpywareOverride" = 0
  104. "FirewallOverride" = 0
  105.  
  106. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
  107.  
  108. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
  109.  
  110. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
  111.  
  112. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
  113. "DisableMonitoring" = 1
  114.  
  115. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
  116.  
  117. [color=#E56717]========== Firewall Settings ==========[/color]
  118.  
  119. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
  120. "EnableFirewall" = 1
  121. "DisableNotifications" = 0
  122.  
  123. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
  124. "EnableFirewall" = 0
  125. "DisableNotifications" = 0
  126.  
  127. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
  128. "EnableFirewall" = 0
  129. "DisableNotifications" = 0
  130.  
  131. [color=#E56717]========== Authorized Applications List ==========[/color]
  132.  
  133.  
  134. [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]
  135.  
  136. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
  137. "{18618D32-D219-41C6-A718-3DEDE47E676C}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
  138. "{304D2016-5531-4188-8DF0-B0EE5CFF8D4E}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
  139.  
  140. [color=#E56717]========== Vista Active Application Exception List ==========[/color]
  141.  
  142. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
  143. "{0225B9B2-FBA6-4BC2-9FE7-5C8309E1B497}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.868\agent.exe |
  144. "{0739AEEA-2D9E-4F42-B59F-C094F14D32BC}" = protocol=6 | dir=in | app=c:\program files (x86)\gamersfirst\apb reloaded\binaries\vivoxvoiceservice.exe |
  145. "{0AB7C27C-6B27-4BFD-8E24-6D230542182A}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.524\agent.exe |
  146. "{0D66C2A9-1C61-4D54-AE98-04CED179D3E9}" = protocol=6 | dir=in | app=c:\program files (x86)\diablo iii beta\diablo iii.exe |
  147. "{14CC3D97-C0D3-4307-A7C4-42CB0FA0059A}" = protocol=17 | dir=in | app=c:\program files (x86)\bittorrent\bittorrent.exe |
  148. "{23378AC6-1FD8-434A-97C2-64F109070E94}" = protocol=6 | dir=in | app=c:\program files (x86)\yahoo!\messenger\yahoomessenger.exe |
  149. "{2A1ECE91-313D-44AA-933D-E51DE023FEA7}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
  150. "{351248B9-0BA5-4FCB-B3E4-C6919CF39C0D}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
  151. "{3625C8E7-657A-46B2-9054-7B3BD5272916}" = protocol=17 | dir=in | app=c:\program files (x86)\gamersfirst\apb reloaded\binaries\apb.exe |
  152. "{3B0D2EC2-A8B1-4C91-9E75-D242F50FC401}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.868\agent.exe |
  153. "{3C7B0B0D-95E4-4A42-A9BA-B36297506148}" = protocol=6 | dir=in | app=c:\program files (x86)\bittorrent\bittorrent.exe |
  154. "{439EFF63-232D-46A7-A6C3-7F173267226E}" = protocol=17 | dir=in | app=c:\users\owner\appdata\roaming\dropbox\bin\dropbox.exe |
  155. "{4C590229-BD67-4D68-B4BB-E71A8B07906B}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.954\agent.exe |
  156. "{4E92027A-5E2C-446E-AC2F-CA079A5E6056}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
  157. "{6334385B-F965-489C-B458-EC72B7A20A0E}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
  158. "{65D9A90A-4087-48FA-8F6E-32DAC494547A}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer.exe |
  159. "{67C92084-0AF0-48E9-9BED-118D4A3A4984}" = protocol=17 | dir=in | app=c:\program files (x86)\diablo iii beta\diablo iii.exe |
  160. "{6C32A8F7-0BC5-4165-B4F2-E07499CAFBBD}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
  161. "{6E69A150-0D09-4FD5-865E-D6EDEDF72BA3}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
  162. "{75EDF554-0792-4E2E-A147-869812A07C5B}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
  163. "{7822754A-4088-4195-A8E2-3C7D7BB4279E}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
  164. "{8170E34C-C5A5-4565-A7F4-2ABDE134AE6C}" = protocol=17 | dir=in | app=c:\program files (x86)\gamersfirst\apb reloaded\binaries\vivoxvoiceservice.exe |
  165. "{833A748A-1C10-48DE-B47F-A42F3D583B4F}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
  166. "{88B542C1-0A5F-4118-A158-9584CC0A2F31}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer.exe |
  167. "{9E9727BC-3D80-423D-9221-037BE3489D3D}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.515\agent.exe |
  168. "{AFD1CB17-46AF-4FF7-AAC1-7527F1E4018D}" = protocol=17 | dir=in | app=c:\program files (x86)\yahoo!\messenger\yahoomessenger.exe |
  169. "{B9734BE4-563F-4D25-8795-33397BD7B56F}" = dir=in | app=c:\users\owner\appdata\local\facebook\video\skype\facebookvideocalling.exe |
  170. "{BE17B321-CB22-4F4F-8D20-5F2EBB5420CA}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
  171. "{C80950B8-D844-46B8-A785-6899BA217B85}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer_service.exe |
  172. "{CB332158-E93B-4576-AA00-B6E9CA2AC1C9}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
  173. "{CDF384FF-C6E8-4381-BAA4-D388B02A7313}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer_service.exe |
  174. "{D465309C-68CF-4AAA-9C97-51DF042DA92F}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.954\agent.exe |
  175. "{D7D81BA7-3F81-47E0-8DD3-37A40C2BAF17}" = protocol=6 | dir=in | app=c:\program files (x86)\gamersfirst\apb reloaded\binaries\apb.exe |
  176. "{E0D071A5-6CAF-4F06-AD5A-22E9CCF3BD12}" = protocol=6 | dir=in | app=c:\users\owner\appdata\roaming\dropbox\bin\dropbox.exe |
  177. "{E33D4176-5EE3-4C7F-B62D-6DC357492E7E}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.524\agent.exe |
  178. "{FB20F45A-B15F-4A2B-B25B-2DAB1D1CB376}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.515\agent.exe |
  179. "TCP Query User{102B2FEF-D6BE-4B1A-AC27-F8C6FA3CD3D8}C:\users\owner\desktop\cgr\dc\darkcomet.exe" = protocol=6 | dir=in | app=c:\users\owner\desktop\cgr\dc\darkcomet.exe |
  180. "TCP Query User{1FD65DE5-2BA7-4357-B601-6F08A62B2DC0}C:\users\owner\desktop\cgr\cybergate rat v1.03.0 (cracked).exe" = protocol=6 | dir=in | app=c:\users\owner\desktop\cgr\cybergate rat v1.03.0 (cracked).exe |
  181. "TCP Query User{2271A94D-2DC4-4924-9C47-4DBCC14235D8}C:\program files (x86)\starcraft ii\versions\base19679\sc2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base19679\sc2.exe |
  182. "TCP Query User{2B179DDA-2DF1-4C38-BC4A-99D9DABF4914}C:\program files (x86)\pando networks\media booster\pmb.exe" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
  183. "TCP Query User{544F76F1-1661-42AF-99E5-051CF7BAD75C}C:\users\owner\desktop\darkcometrat42\darkcometrat42\darkcomet\darkcomet.exe" = protocol=6 | dir=in | app=c:\users\owner\desktop\darkcometrat42\darkcometrat42\darkcomet\darkcomet.exe |
  184. "TCP Query User{603FFA47-44F8-436B-9C2C-E1180AA55EF2}C:\users\owner\desktop\darkcomet-rat\darkcomet.exe" = protocol=6 | dir=in | app=c:\users\owner\desktop\darkcomet-rat\darkcomet.exe |
  185. "TCP Query User{67B22AA8-5E71-4E49-95D6-DAC9CF29B8E2}C:\users\owner\desktop\teamspeak3-server_win64\ts3server_win64.exe" = protocol=6 | dir=in | app=c:\users\owner\desktop\teamspeak3-server_win64\ts3server_win64.exe |
  186. "TCP Query User{764EDBF4-944B-4C67-A428-E7F3FDBB6ED9}C:\program files (x86)\diablo ii\game.exe" = protocol=6 | dir=in | app=c:\program files (x86)\diablo ii\game.exe |
  187. "TCP Query User{79942046-2DA7-4DDB-B5F2-4049C8E0DDA9}C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base21029\sc2.exe |
  188. "TCP Query User{8678623E-7C8C-4EC2-A6F3-ABB6154BBDDA}C:\program files (x86)\diablo iii\diablo iii.exe" = protocol=6 | dir=in | app=c:\program files (x86)\diablo iii\diablo iii.exe |
  189. "TCP Query User{A137B318-EFA3-427D-9FF2-E016F3CC6E99}C:\program files (x86)\pando networks\media booster\pmb.exe" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
  190. "TCP Query User{A7867E09-241E-4BA3-BBF3-7E67D1179D98}C:\program files (x86)\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
  191. "TCP Query User{B6917A97-C9C2-45E1-8FBB-D210D98899F4}C:\users\owner\documents\special\rats\darkcomet-rat\darkcomet.exe" = protocol=6 | dir=in | app=c:\users\owner\documents\special\rats\darkcomet-rat\darkcomet.exe |
  192. "TCP Query User{BB11E1F5-F411-4F4A-BFF7-CC187A8A6F9C}C:\program files (x86)\lolreplay\lolreplay.exe" = protocol=6 | dir=in | app=c:\program files (x86)\lolreplay\lolreplay.exe |
  193. "TCP Query User{D28A50AC-59E7-47F6-8D8E-B59C377A5487}C:\program files (x86)\starcraft ii\starcraft ii.exe" = protocol=6 | dir=in | app=c:\program files (x86)\starcraft ii\starcraft ii.exe |
  194. "TCP Query User{D343ABE7-E35C-4B2D-BAE9-7020DBE76C23}C:\program files (x86)\pfportchecker\pfportchecker.exe" = protocol=6 | dir=in | app=c:\program files (x86)\pfportchecker\pfportchecker.exe |
  195. "TCP Query User{D39FC43C-CCED-430C-ADAE-EDD46C141FAD}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe |
  196. "TCP Query User{DDD441DE-D7BD-4FBC-A19F-8B324918A48A}C:\program files (x86)\skype\phone\skype.exe" = protocol=6 | dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
  197. "TCP Query User{F814DD16-9996-4D34-97CC-B1C517791B02}C:\program files (x86)\starcraft ii\support\blizzarddownloader.exe" = protocol=6 | dir=in | app=c:\program files (x86)\starcraft ii\support\blizzarddownloader.exe |
  198. "UDP Query User{24B86164-C02C-4BA0-B938-67C5AA7D9991}C:\program files (x86)\pando networks\media booster\pmb.exe" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
  199. "UDP Query User{30C6AFC8-F602-4D4C-B1BD-6CB563A0FC49}C:\program files (x86)\starcraft ii\versions\base21029\sc2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base21029\sc2.exe |
  200. "UDP Query User{56062F67-D0A2-41E1-AD62-1576ABBB3AAE}C:\program files (x86)\starcraft ii\starcraft ii.exe" = protocol=17 | dir=in | app=c:\program files (x86)\starcraft ii\starcraft ii.exe |
  201. "UDP Query User{574BAD15-48BE-48D1-AC69-EBEC335419D0}C:\users\owner\desktop\cgr\dc\darkcomet.exe" = protocol=17 | dir=in | app=c:\users\owner\desktop\cgr\dc\darkcomet.exe |
  202. "UDP Query User{5A987CF3-1371-42B0-B541-9E8927EA0BE5}C:\program files (x86)\starcraft ii\versions\base19679\sc2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base19679\sc2.exe |
  203. "UDP Query User{6C0B825B-BAEA-4D0B-8103-DE0FBA925C4A}C:\program files (x86)\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
  204. "UDP Query User{84E19A0E-A7B7-488B-A035-648AF2EDEED2}C:\users\owner\desktop\cgr\cybergate rat v1.03.0 (cracked).exe" = protocol=17 | dir=in | app=c:\users\owner\desktop\cgr\cybergate rat v1.03.0 (cracked).exe |
  205. "UDP Query User{937C76F5-C6EB-4F3A-9EF6-B8472096C001}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe |
  206. "UDP Query User{96644E13-55B9-4554-9A38-551EE7A2E957}C:\users\owner\documents\special\rats\darkcomet-rat\darkcomet.exe" = protocol=17 | dir=in | app=c:\users\owner\documents\special\rats\darkcomet-rat\darkcomet.exe |
  207. "UDP Query User{9A1568AE-CD67-4475-A422-87BD77BF84E6}C:\program files (x86)\lolreplay\lolreplay.exe" = protocol=17 | dir=in | app=c:\program files (x86)\lolreplay\lolreplay.exe |
  208. "UDP Query User{9B26BE6C-37AB-42FC-89C0-3389A700A0D3}C:\program files (x86)\pfportchecker\pfportchecker.exe" = protocol=17 | dir=in | app=c:\program files (x86)\pfportchecker\pfportchecker.exe |
  209. "UDP Query User{9B4A8B64-73E4-4601-9B21-C78B8640A832}C:\program files (x86)\diablo iii\diablo iii.exe" = protocol=17 | dir=in | app=c:\program files (x86)\diablo iii\diablo iii.exe |
  210. "UDP Query User{A0F38A91-2CA7-4431-B0C2-65CCFE1B2B14}C:\program files (x86)\diablo ii\game.exe" = protocol=17 | dir=in | app=c:\program files (x86)\diablo ii\game.exe |
  211. "UDP Query User{A26C04E5-FF77-407A-ABA7-C9AD4B086F65}C:\program files (x86)\starcraft ii\support\blizzarddownloader.exe" = protocol=17 | dir=in | app=c:\program files (x86)\starcraft ii\support\blizzarddownloader.exe |
  212. "UDP Query User{B3B8A3E9-C6B5-4D1A-A3CB-8D9455CE9054}C:\program files (x86)\pando networks\media booster\pmb.exe" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
  213. "UDP Query User{BBB1CE8C-0A5A-4065-A15A-84E977980B6E}C:\users\owner\desktop\darkcometrat42\darkcometrat42\darkcomet\darkcomet.exe" = protocol=17 | dir=in | app=c:\users\owner\desktop\darkcometrat42\darkcometrat42\darkcomet\darkcomet.exe |
  214. "UDP Query User{BF171972-F652-4B99-8903-E5919D25E84A}C:\users\owner\desktop\darkcomet-rat\darkcomet.exe" = protocol=17 | dir=in | app=c:\users\owner\desktop\darkcomet-rat\darkcomet.exe |
  215. "UDP Query User{DD9C7FD2-BE1B-4DBD-8169-2A6F5F8BDAF6}C:\users\owner\desktop\teamspeak3-server_win64\ts3server_win64.exe" = protocol=17 | dir=in | app=c:\users\owner\desktop\teamspeak3-server_win64\ts3server_win64.exe |
  216. "UDP Query User{E76D3F88-7726-4A23-9C52-C393414AA7A7}C:\program files (x86)\skype\phone\skype.exe" = protocol=17 | dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
  217.  
  218. [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
  219.  
  220. 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
  221. "_{08A8CCEA-36DC-4634-AAAA-79463D644C0E}" = Corel Painter 12
  222. "{08A8CCEA-36DC-4634-AAAA-79463D644C0E}" = Painter 12 - Setup Files
  223. "{0B78ECB0-1A6B-4E6D-89D7-0E7CE77F0427}" = MyWinLocker
  224. "{180C8888-50F1-426B-A9DC-AB83A1989C65}" = Windows Live Language Selector
  225. "{1ACC8FFB-9D84-4C05-A4DE-D28A9BC91698}" = Windows Live ID Sign-in Assistant
  226. "{1B1D83BE-BAB8-4220-A850-036C67590C73}" = TortoiseSVN 1.7.4.22459 (64 bit)
  227. "{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64
  228. "{1F557316-CFC0-41BD-AFF7-8BC49CE444D7}" = Shredder
  229. "{1FB31F44-D4D0-4D76-944A-A1A5D79FD321}" = Windows Live Family Safety
  230. "{42CD49CD-4B05-4A2D-8FD1-E37CC9315FA5}" = Painter 12 - Core
  231. "{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64
  232. "{4E82E2E9-668B-4F8A-814A-78E163FCDBCD}" = IconHandler 64 bit
  233. "{5E2CD4FB-4538-4831-8176-05D653C3E6D4}" = Windows Live Remote Service Resources
  234. "{5FD7D415-F562-4767-913F-26E7F463DF8B}" = Painter 12 - Corex64
  235. "{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}" = Windows Live Remote Service Resources
  236. "{77013803-5BA9-4C8A-BFC4-99AE7151C4B7}" = Painter 12 - EN
  237. "{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}" = Windows Live Remote Client Resources
  238. "{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64
  239. "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
  240. "{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
  241. "{90140000-006D-0409-1000-0000000FF1CE}" = Microsoft Office Click-to-Run 2010
  242. "{90BF0360-A1DB-4599-A643-95AB90A52C1E}" = Microsoft_VC90_MFCLOC_x86_x64
  243. "{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64
  244. "{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64
  245. "{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
  246. "{97759DE4-0A6A-4ACF-A511-4DA791BEAA1A}" = Painter 12 - Content
  247. "{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64
  248. "{AC6FC993-CCD1-41A5-B61C-AD61F90549BE}" = Painter 12 - IPM
  249. "{B750FA38-7AB0-42CB-ACBB-E7DBE9FF603F}" = Windows Live Remote Client Resources
  250. "{C616FD4F-11F5-11E0-A38F-0013D3D69929}" = Vegas Pro 10.0 (64-bit)
  251. "{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64
  252. "{C9608300-11F5-11E0-A64B-0013D3D69929}" = MSVCRT Redists
  253. "{CEA21F20-DBF4-464C-8B81-28B8508AFDDD}" = Windows Live Family Safety
  254. "{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
  255. "{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
  256. "{E01819BD-709F-43A1-9600-6F5E4C584C37}" = Windows Live Family Safety
  257. "{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
  258. "{EFFCC1E3-35FF-4F61-9DEC-7871DBA39A17}" = Hex Workshop v6.5
  259. "{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
  260. "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX 64-bit
  261. "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin 64-bit
  262. "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
  263. "Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
  264. "Pen Tablet Driver" = Bamboo
  265. "Sandboxie" = Sandboxie 3.58 (64-bit)
  266. "SynTPDeinstKey" = Synaptics Pointing Device Driver
  267. "TeamSpeak 3 Client" = TeamSpeak 3 Client
  268. "WinRAR archiver" = WinRAR 4.01 (64-bit)
  269.  
  270. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
  271. "{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = Acer Crystal Eye Webcam
  272. "{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
  273. "{05E379CC-F626-4E7D-8354-463865B303BF}" = Windows Live UX Platform Language Pack
  274. "{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
  275. "{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
  276. "{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}" = MyWinLocker Suite
  277. "{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
  278. "{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
  279. "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
  280. "{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
  281. "{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
  282. "{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java(TM) 6 Update 31
  283. "{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
  284. "{2902F983-B4C1-44BA-B85D-5C6D52E2C441}" = Windows Live Mesh ActiveX Control for Remote Connections
  285. "{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}" = Windows Live Messenger
  286. "{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App" = Update Installer for WildTangent Games App
  287. "{325045C9-F040-3D98-892D-53D5E840266C}" = Google Talk Plugin
  288. "{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
  289. "{34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}" = Windows Live
  290. "{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
  291. "{3521BDBD-D453-5D9F-AA55-44B75D214629}" = Adobe Community Help
  292. "{37E9AFC0-BE43-470A-8903-318DFA9B4B72}_is1" = ScreenSnapr version 4.0.0.2
  293. "{39F15B50-A977-4CA6-B1C3-6A8724CDA025}" = MyWinLocker 4
  294. "{3AF8C37F-696E-871C-0851-CDE980FD665E}" = Bamboo Dock
  295. "{3B9A92DA-6374-4872-B646-253F18624D5F}" = Windows Live Writer
  296. "{3DB0448D-AD82-4923-B305-D001E521A964}" = Acer ePower Management
  297. "{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
  298. "{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
  299. "{45E557D6-2271-4F13-8101-C620B4285AB0}" = Kaspersky Anti-Virus 2012
  300. "{47FA2C44-D148-4DBC-AF60-B91934AA4842}" = Adobe AIR
  301. "{488F0347-C4A7-4374-91A7-30818BEDA710}" = Galerie de photos Windows Live
  302. "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
  303. "{50816F92-1652-4A7C-B9BC-48F682742C4B}" = Messenger Companion
  304. "{5546CDB5-2CE2-498B-B059-5B3BF81FC41F}" = Macromedia Extension Manager
  305. "{55D003F4-9599-44BF-BA9E-95D060730DD3}" = Contrôle ActiveX Windows Live Mesh pour connexions à distance
  306. "{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
  307. "{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Earth
  308. "{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
  309. "{613C0AC5-3A67-4B94-8B13-9176AD83F5BF}" = newsXpresso
  310. "{62687B11-58B5-4A18-9BC3-9DF4CE03F194}" = Windows Live Writer Resources
  311. "{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
  312. "{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
  313. "{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
  314. "{6B1A1AD8-301F-46A8-9AB3-816AD02EE752}" = XSplit
  315. "{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1" = Gyazo 1.0
  316. "{6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}" = Windows Live Movie Maker
  317. "{6E0C3C3D-CF8A-4AEC-AD6C-B4486A96BE8E}" = Bamboo Tablets Tutorial
  318. "{6E5324C1-84FC-4F76-9A3A-C65E07F80EE6}" = Complément Messenger
  319. "{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-acer" = WildTangent Games App (Acer Games)
  320. "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
  321. "{72B776E5-4530-4C4B-9453-751DF87D9D93}" = Backup Manager Basic
  322. "{738CA369-3B94-4E20-ADC8-994A1409F7DC}_is1" = ScreenSnapr version 3.0.0.3
  323. "{767CC44C-9BBC-438D-BAD3-FD4595DD148B}" = VC80CRTRedist - 8.0.50727.762
  324. "{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core
  325. "{7BE15435-2D3E-4B58-867F-9C75BED0208C}" = QuickTime
  326. "{7CAC6A44-C3DE-4153-ACA6-7524602C789E}" = Facebook Video Calling 1.2.0.159
  327. "{7F811A54-5A09-4579-90E1-C93498E230D9}" = Acer eRecovery Management
  328. "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
  329. "{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
  330. "{841F1FB4-FDF8-461C-A496-3E1CFD84C0B5}" = Windows Live Mesh
  331. "{8BF2C401-02CE-424D-BC26-6C4F9FB446B6}" = Macromedia Flash 8 Video Encoder
  332. "{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
  333. "{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
  334. "{90140011-0066-0409-0000-0000000FF1CE}" = Microsoft Office Starter 2010 - English
  335. "{9158FF30-78D7-40EF-B83E-451AC5334640}" = Adobe Photoshop CS5.1
  336. "{92606477-9366-4D3B-8AE3-6BE4B29727AB}" = League of Legends
  337. "{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
  338. "{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
  339. "{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010
  340. "{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader
  341. "{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
  342. "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
  343. "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
  344. "{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
  345. "{9FAE6E8D-E686-49F5-A574-0A58DFD9580C}" = Windows Live Mail
  346. "{A0C91188-C88F-4E86-93E6-CD7C9A266649}" = Windows Live Mesh
  347. "{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
  348. "{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
  349. "{A83279FD-CA4B-4206-9535-90974DE76654}" = Apple Application Support
  350. "{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}" = CyberLink PowerDVD 9
  351. "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
  352. "{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
  353. "{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
  354. "{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
  355. "{AB61A2E9-37D3-485D-9085-19FBDF8CEF4A}" = Windows Live Messenger
  356. "{AC76BA86-7AD7-FFFF-7B44-A91000000001}" = Adobe Reader 9.5.1 MUI
  357. "{AF322EC1-3499-45FD-9EDD-DCC7FD5C18DF}" = Autodesk SketchBookExpress 2011
  358. "{B4E343DD-BAAB-4D59-AD9C-DEA0AFE09DF1}" = Mumble 1.2.3
  359. "{B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}" = PMB
  360. "{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
  361. "{B6D38690-755E-4F40-A35A-23F8BC2B86AC}" = Microsoft_VC90_MFCLOC_x86
  362. "{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player
  363. "{C2695E83-CF1D-43D1-84FE-B3BEC561012A}" = Shredder
  364. "{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
  365. "{C7E3FF32-7E00-4703-9C34-5777C08A56AA}" = Toon Boom Studio 4.5
  366. "{C893D8C0-1BA0-4517-B11C-E89B65E72F70}" = Windows Live Photo Common
  367. "{C912EFA0-0076-11d5-B04A-BD6C80DF2479}" = IconChanger
  368. "{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
  369. "{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
  370. "{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
  371. "{D3D5C4E8-040F-4C6F-8105-41D43CF94F44}" = NTI Media Maker 9
  372. "{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
  373. "{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
  374. "{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
  375. "{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
  376. "{DEA314C4-0929-4250-BC92-98E4C105F28D}" = NVIDIA PhysX
  377. "{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
  378. "{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
  379. "{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
  380. "{EE171732-BEB4-4576-887D-CB62727F01CA}" = Acer Updater
  381. "{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.8
  382. "{EFE3D683-903C-4B58-AB8F-C68C69F33758}" = System Requirements Lab for Intel
  383. "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
  384. "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
  385. "{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
  386. "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
  387. "{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
  388. "{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
  389. "{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
  390. "Acer Registration" = Acer Registration
  391. "Acer Screensaver" = Acer ScreenSaver
  392. "Adobe AIR" = Adobe AIR
  393. "Adobe Shockwave Player" = Adobe Shockwave Player 11.6
  394. "ASIO4ALL" = ASIO4ALL
  395. "Audacity 1.3 Beta (Unicode)_is1" = Audacity 1.3.13 (Unicode)
  396. "BabylonToolbar" = Babylon toolbar on IE
  397. "Bamboo Dock" = Bamboo Dock
  398. "BitTorrent" = BitTorrent
  399. "BitTorrentBar Toolbar" = BitTorrentBar Toolbar
  400. "Cain & Abel v4.9.43" = Cain & Abel v4.9.43
  401. "chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
  402. "Combined Community Codec Pack_is1" = Combined Community Codec Pack 2011-11-11
  403. "Diablo II" = Diablo II
  404. "Diablo III Beta" = Diablo III Beta
  405. "Dorgem_is1" = Dorgem 2.1.0
  406. "EpicBot" = EpicBot
  407. "FastStone Capture" = FastStone Capture 6.7
  408. "FileASSASSIN" = FileASSASSIN
  409. "FL Studio 10" = FL Studio 10
  410. "Fraps" = Fraps (remove only)
  411. "GamersFirst LIVE!" = GamersFirst LIVE!
  412. "Google Chrome" = Google Chrome
  413. "Havij_is1" = Havij 1.15 Free
  414. "Identity Card" = Identity Card
  415. "IL Download Manager" = IL Download Manager
  416. "InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = Acer Crystal Eye Webcam
  417. "InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}" = MyWinLocker Suite
  418. "InstallShield_{613C0AC5-3A67-4B94-8B13-9176AD83F5BF}" = newsXpresso
  419. "InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}" = Acer Backup Manager
  420. "InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}" = CyberLink PowerDVD 9
  421. "InstallShield_{D3D5C4E8-040F-4C6F-8105-41D43CF94F44}" = NTI Media Maker 9
  422. "InstallWIX_{45E557D6-2271-4F13-8101-C620B4285AB0}" = Kaspersky Anti-Virus 2012
  423. "KLiteCodecPack_is1" = K-Lite Codec Pack 8.1.0 (Basic)
  424. "Kobo" = Kobo
  425. "LManager" = Launch Manager
  426. "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.61.0.1400
  427. "Mozilla Firefox 9.0.1 (x86 en-GB)" = Mozilla Firefox 9.0.1 (x86 en-GB)
  428. "NoIPDUC" = No-IP DUC
  429. "Notepad++" = Notepad++
  430. "Office14.Click2Run" = Microsoft Office Click-to-Run 2010
  431. "OpenVPN" = OpenVPN 2.1.4
  432. "PFPortChecker" = PFPortChecker 1.0.39
  433. "proXPN" = proXPN 2.4.11
  434. "PunkBusterSvc" = PunkBuster Services
  435. "ReMouse Micro_is1" = ReMouse Micro
  436. "StarCraft II" = StarCraft II
  437. "TeamViewer 6" = TeamViewer 6
  438. "TeamViewer 7" = TeamViewer 7
  439. "VLC media player" = VLC media player 1.1.11
  440. "Wacom WebTabletPlugin for IE" = WebTablet IE Plugin
  441. "Wacom WebTabletPlugin for Internet Explorer and Netscape" = WebTablet FB Plugin
  442. "Wacom WebTabletPlugin for Netscape" = WebTablet Netscape Plugin
  443. "wacomid-desktop-launcher.DCFD4B89A63EE70BC162777F06D4B93B6397AEC7.1" = Bamboo Dock
  444. "WildTangent acer Master Uninstall" = Acer Games
  445. "WinGimp-2.0_is1" = GIMP 2.6.11
  446. "WinLiveSuite" = Windows Live Essentials
  447. "WinPcapInst" = WinPcap 4.1.2
  448. "WTA-0e971e06-dc4d-4814-9647-977c62d9e896" = Polar Bowler
  449. "WTA-1e3c7201-e74d-4c85-9cde-4a73242a0e82" = Jewel Quest Heritage
  450. "WTA-25a609ca-f3be-4dca-9aad-cce4c3ffb6db" = Bejeweled 2 Deluxe
  451. "WTA-2c801913-9804-4178-a25a-74b28ffda065" = Namco All-Stars: PAC-MAN
  452. "WTA-3867d487-934d-403f-89cb-096fa5eecf47" = FATE - The Traitor Soul
  453. "WTA-4e7fea7f-6246-4d9d-9e44-37ab368c24e5" = Polar Golfer
  454. "WTA-53869132-003a-42b7-9dfd-55314fb028b9" = Mystery P.I. - Stolen in San Francisco
  455. "WTA-63fd4bd6-e331-41e5-93eb-4147f16e6ce7" = Zuma's Revenge
  456. "WTA-681f59f4-741c-4db2-9872-1aeecb80a083" = Plants vs. Zombies - Game of the Year
  457. "WTA-6f7e2c2a-6ac2-457b-b68a-2e78928d7e30" = Final Drive: Nitro
  458. "WTA-74a58c06-dba4-4d5e-914e-7500e0e3e52a" = Dora's World Adventure
  459. "WTA-756ac77d-65b7-4fe3-a7d4-a021d9cff5ec" = Penguins!
  460. "WTA-7e283dba-02b2-464e-8bb0-ae6337740dac" = Chuzzle Deluxe
  461. "WTA-9abce64b-70b2-4e6c-aa2b-a1445f5a1061" = Build-a-lot 2
  462. "WTA-9eb1eb18-28b0-44ef-8599-eadb939c120c" = Poker Superstars III
  463. "WTA-b06a8e6f-21da-4813-b668-523f34eb5d32" = Virtual Villagers 4 - The Tree of Life
  464. "WTA-e0e9b893-8e23-41ad-bbc7-5c82ce3dacfb" = Torchlight
  465. "WTA-f84c3457-ba0b-4fe4-9d58-8db9ae949ff9" = Diner Dash 2 Restaurant Rescue
  466. "WTA-fe4c5f6d-89fa-4247-89ca-9c188f648323" = Agatha Christie - 4:50 from Paddington
  467. "Yahoo! Companion" = Yahoo! Toolbar
  468. "Yahoo! Messenger" = Yahoo! Messenger
  469. "Yahoo! Software Update" = Yahoo! Software Update
  470.  
  471. [color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color]
  472.  
  473. [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
  474. "CodeBlocks" = CodeBlocks
  475. "Dropbox" = Dropbox
  476. "JoinMe" = join.me
  477.  
  478. [color=#E56717]========== Last 10 Event Log Errors ==========[/color]
  479.  
  480. [ Application Events ]
  481. Error - 4/30/2012 9:35:19 PM | Computer Name = Owner-PC | Source = WinMgmt | ID = 10
  482. Description =
  483.  
  484. Error - 4/30/2012 9:39:32 PM | Computer Name = Owner-PC | Source = WinMgmt | ID = 10
  485. Description =
  486.  
  487. Error - 4/30/2012 10:14:05 PM | Computer Name = Owner-PC | Source = .NET Runtime | ID = 1026
  488. Description =
  489.  
  490. Error - 4/30/2012 10:14:05 PM | Computer Name = Owner-PC | Source = Application Error | ID = 1000
  491. Description = Faulting application name: Cryptex_V3.1.exe, version: 3.2.0.0, time
  492.  stamp: 0x4f92e16f  Faulting module name: KERNELBASE.dll, version: 6.1.7601.17651,
  493.  time stamp: 0x4e21213c  Exception code: 0xe0434352  Fault offset: 0x000000000000cacd
  494. Faulting
  495.  process id: 0x1260  Faulting application start time: 0x01cd274014cc0030  Faulting application
  496.  path: C:\Users\Owner\Desktop\CGR\DC\Cryptex_V3.1.exe  Faulting module path: C:\Windows\system32\KERNELBASE.dll
  497. Report
  498.  Id: 53632538-9333-11e1-97fe-a6573eaade95
  499.  
  500. Error - 5/1/2012 12:27:09 AM | Computer Name = Owner-PC | Source = SideBySide | ID = 16842827
  501. Description = Activation context generation failed for "C:\Program Files (x86)\Skype\Toolbars\Internet
  502.  Explorer\SkypeIEPluginBroker.exe".Error in manifest or policy file "C:\Program
  503. Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPluginBroker.exe" on line 2.
  504. Multiple
  505.  requestedPrivileges elements are not allowed in manifest.
  506.  
  507. Error - 5/1/2012 1:37:41 AM | Computer Name = Owner-PC | Source = VSS | ID = 8194
  508. Description =
  509.  
  510. Error - 5/1/2012 7:15:08 AM | Computer Name = Owner-PC | Source = .NET Runtime | ID = 1026
  511. Description =
  512.  
  513. Error - 5/1/2012 7:15:08 AM | Computer Name = Owner-PC | Source = Application Error | ID = 1000
  514. Description = Faulting application name: Cryptex_V3.1.exe, version: 3.2.0.0, time
  515.  stamp: 0x4f92e16f  Faulting module name: KERNELBASE.dll, version: 6.1.7601.17651,
  516.  time stamp: 0x4e21213c  Exception code: 0xe0434352  Fault offset: 0x000000000000cacd
  517. Faulting
  518.  process id: 0x1264  Faulting application start time: 0x01cd278baa349ae0  Faulting application
  519.  path: C:\Users\Owner\Desktop\CGR\DC\Cryptex_V3.1.exe  Faulting module path: C:\Windows\system32\KERNELBASE.dll
  520. Report
  521.  Id: e8bc7d70-937e-11e1-97fe-a6573eaade95
  522.  
  523. Error - 5/1/2012 7:31:17 PM | Computer Name = Owner-PC | Source = .NET Runtime | ID = 1026
  524. Description =
  525.  
  526. Error - 5/1/2012 7:31:18 PM | Computer Name = Owner-PC | Source = Application Error | ID = 1000
  527. Description = Faulting application name: Cryptex_V3.1.exe, version: 3.3.0.0, time
  528.  stamp: 0x4f9fbdc4  Faulting module name: KERNELBASE.dll, version: 6.1.7601.17651,
  529.  time stamp: 0x4e21213c  Exception code: 0xe0434352  Fault offset: 0x000000000000cacd
  530. Faulting
  531.  process id: 0x22a0  Faulting application start time: 0x01cd27f280b59c73  Faulting application
  532.  path: C:\Users\Owner\Desktop\CGR\DC\Cryptex_V3.1.exe  Faulting module path: C:\Windows\system32\KERNELBASE.dll
  533. Report
  534.  Id: c0223d0b-93e5-11e1-97fe-a6573eaade95
  535.  
  536. [ System Events ]
  537. Error - 4/2/2012 5:22:23 PM | Computer Name = Owner-PC | Source = DCOM | ID = 10010
  538. Description =
  539.  
  540. Error - 4/2/2012 10:43:28 PM | Computer Name = Owner-PC | Source = EventLog | ID = 6008
  541. Description = The previous system shutdown at 11:29:54 PM on ?02/?04/?2012 was unexpected.
  542.  
  543. Error - 4/2/2012 10:46:13 PM | Computer Name = Owner-PC | Source = Service Control Manager | ID = 7009
  544. Description = A timeout was reached (30000 milliseconds) while waiting for the No-IP
  545.  DUC Service service to connect.
  546.  
  547. Error - 4/6/2012 12:03:10 PM | Computer Name = Owner-PC | Source = Tcpip | ID = 4199
  548. Description = The system detected an address conflict for IP address 192.168.0.101
  549.  with the system  having network hardware address 00-22-48-2B-80-4A. Network operations
  550.  on this system may  be disrupted as a result.
  551.  
  552. Error - 4/9/2012 10:24:48 AM | Computer Name = Owner-PC | Source = DCOM | ID = 10010
  553. Description =
  554.  
  555. Error - 4/27/2012 3:18:05 PM | Computer Name = Owner-PC | Source = EventLog | ID = 6008
  556. Description = The previous system shutdown at 4:16:25 PM on ?27/?04/?2012 was unexpected.
  557.  
  558. Error - 4/27/2012 3:18:12 PM | Computer Name = Owner-PC | Source = BugCheck | ID = 1001
  559. Description =
  560.  
  561. Error - 4/29/2012 5:42:35 AM | Computer Name = Owner-PC | Source = Microsoft-Windows-Kernel-General | ID = 6
  562. Description =
  563.  
  564. Error - 4/30/2012 2:06:07 AM | Computer Name = Owner-PC | Source = Tcpip | ID = 4199
  565. Description = The system detected an address conflict for IP address 192.168.0.100
  566.  with the system  having network hardware address 00-0D-56-5B-F8-F1. Network operations
  567.  on this system may  be disrupted as a result.
  568.  
  569. Error - 4/30/2012 2:29:58 AM | Computer Name = Owner-PC | Source = Tcpip | ID = 4199
  570. Description = The system detected an address conflict for IP address 192.168.0.100
  571.  with the system  having network hardware address 00-0D-56-5B-F8-F1. Network operations
  572.  on this system may  be disrupted as a result.
  573.  
  574.  
  575. < End of report >
create a new version of this paste RAW Paste Data