API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jul 7th, 2017
142
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 88.53 KB | None | 0 0
raw download clone embed print report
  1. OTL Extras logfile created on: 12/22/2010 12:31:15 AM - Run 1
  2. OTL by OldTimer - Version 3.2.14.1 Folder = c:\Users\wade\Downloads\Downloads
  3. 64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
  4. Internet Explorer (Version = 8.0.6001.18928)
  5. Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
  6.  
  7. 4.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 28.00% Memory free
  8. 8.00 Gb Paging File | 6.00 Gb Available in Paging File | 70.00% Paging File free
  9. Paging file location(s): ?:\pagefile.sys [binary data]
  10.  
  11. %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
  12. Drive C: | 285.14 Gb Total Space | 155.83 Gb Free Space | 54.65% Space Free | Partition Type: NTFS
  13. Drive D: | 12.95 Gb Total Space | 2.43 Gb Free Space | 18.77% Space Free | Partition Type: NTFS
  14. E: Drive not present or media not loaded
  15. F: Drive not present or media not loaded
  16. G: Drive not present or media not loaded
  17. H: Drive not present or media not loaded
  18. I: Drive not present or media not loaded
  19.  
  20. Computer Name: WADE-PC
  21. Current User Name: wade
  22. Logged in as Administrator.
  23.  
  24. Current Boot Mode: Normal
  25. Scan Mode: Current user
  26. Include 64bit Scans
  27. Company Name Whitelist: Off
  28. Skip Microsoft Files: Off
  29. File Age = 30 Days
  30. Output = Standard
  31.  
  32. [color=#E56717]========== Extra Registry (SafeList) ==========[/color]
  33.  
  34.  
  35. [color=#E56717]========== File Associations ==========[/color]
  36.  
  37. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
  38.  
  39. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
  40. .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
  41.  
  42. [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
  43. .html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
  44.  
  45. [color=#E56717]========== Shell Spawning ==========[/color]
  46.  
  47. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
  48. batfile [open] -- "%1" %* File not found
  49. cmdfile [open] -- "%1" %* File not found
  50. comfile [open] -- "%1" %* File not found
  51. exefile [open] -- "%1" %* File not found
  52. helpfile [open] -- Reg Error: Key error.
  53. htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
  54. htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
  55. inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
  56. InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
  57. piffile [open] -- "%1" %* File not found
  58. regfile [merge] -- Reg Error: Key error.
  59. scrfile [config] -- "%1" File not found
  60. scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
  61. scrfile [open] -- "%1" /S File not found
  62. txtfile [edit] -- Reg Error: Key error.
  63. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
  64. Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
  65. Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
  66. Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  67. Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~2\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
  68. Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
  69. Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
  70. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  71.  
  72. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
  73. batfile [open] -- "%1" %*
  74. cmdfile [open] -- "%1" %*
  75. comfile [open] -- "%1" %*
  76. cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
  77. exefile [open] -- "%1" %*
  78. helpfile [open] -- Reg Error: Key error.
  79. htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
  80. htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
  81. inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
  82. piffile [open] -- "%1" %*
  83. regfile [merge] -- Reg Error: Key error.
  84. scrfile [config] -- "%1"
  85. scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
  86. scrfile [open] -- "%1" /S
  87. txtfile [edit] -- Reg Error: Key error.
  88. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
  89. Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
  90. Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
  91. Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  92. Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~2\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
  93. Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
  94. Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
  95. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  96.  
  97. [color=#E56717]========== Security Center Settings ==========[/color]
  98.  
  99. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
  100. "cval" = 1
  101. "UacDisableNotify" = 0
  102. "InternetSettingsDisableNotify" = 0
  103. "AutoUpdateDisableNotify" = 0
  104.  
  105. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
  106.  
  107. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
  108. "AntiVirusOverride" = 0
  109. "AntiSpywareOverride" = 0
  110. "FirewallOverride" = 0
  111. "VistaSp1" = 9F 9E 16 8C DC 5B C8 01 [binary data]
  112. "VistaSp2" = C8 AB DF 71 37 2C CB 01 [binary data]
  113.  
  114. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
  115.  
  116. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
  117.  
  118. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
  119.  
  120. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
  121. "DisableMonitoring" = 1
  122.  
  123. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
  124. "oobe_av" = 1
  125.  
  126. [color=#E56717]========== Firewall Settings ==========[/color]
  127.  
  128. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
  129. "EnableFirewall" = 0
  130. "DisableNotifications" = 0
  131.  
  132. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
  133. "EnableFirewall" = 0
  134. "DisableNotifications" = 0
  135.  
  136. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
  137. "EnableFirewall" = 0
  138. "DisableNotifications" = 0
  139.  
  140. [color=#E56717]========== Authorized Applications List ==========[/color]
  141.  
  142. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
  143. "C:\Program Files (x86)\EarthLink TotalAccess\TaskPanl.exe" = C:\Program Files (x86)\EarthLink TotalAccess\TaskPanl.exe:*:Enabled:Earthlink -- (EarthLink, Inc.)
  144. "C:\Program Files (x86)\EarthLink TotalAccess\TaskPanl.exe" = C:\Program Files (x86)\EarthLink TotalAccess\TaskPanl.exe:*:Enabled:Earthlink -- (EarthLink, Inc.)
  145.  
  146.  
  147. [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]
  148.  
  149. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
  150. "{0EB122F0-D4CE-40D1-9E55-9CFA649EF3D8}" = rport=137 | protocol=17 | dir=out | app=system |
  151. "{1D33C729-3A93-4C1C-9E38-75CB8962E1FE}" = lport=138 | protocol=17 | dir=in | app=system |
  152. "{1F201FCE-2B6C-45E6-BE08-EB4BA5F41B8F}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
  153. "{3C89564C-AA6B-499E-982E-4C2CF06E52DE}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
  154. "{616E8297-2BB7-41B4-A3FF-A5A2C99BCC6D}" = rport=445 | protocol=6 | dir=out | app=system |
  155. "{61E3E31B-D678-4CC5-98A9-1D9A749FB4FB}" = lport=139 | protocol=6 | dir=in | app=system |
  156. "{9D3F476A-F874-4207-97FA-E3BEA5E88541}" = rport=138 | protocol=17 | dir=out | app=system |
  157. "{9E6537F0-95AF-4DBB-8B43-0B9202857FC3}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
  158. "{C0622E65-BC8B-41E7-81CB-3C923ED8E227}" = lport=2869 | protocol=6 | dir=in | app=system |
  159. "{D649207F-3517-45BF-872A-AF061292FFD4}" = lport=137 | protocol=17 | dir=in | app=system |
  160. "{EB545A08-E049-43B6-8DAA-544AC5258137}" = rport=139 | protocol=6 | dir=out | app=system |
  161. "{FBED967A-7370-4028-9B0A-9EF54FB0CA8C}" = lport=445 | protocol=6 | dir=in | app=system |
  162.  
  163. [color=#E56717]========== Vista Active Application Exception List ==========[/color]
  164.  
  165. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
  166. "{053D4F85-E698-4CA6-BA31-60B8CE78A409}" = protocol=17 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\rm.exe |
  167. "{109647F6-8FDA-479B-B52D-DE2AC5911B61}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\aol\loader\aolload.exe |
  168. "{23DB0F8E-27F2-45C7-8559-C7A5AB13A790}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
  169. "{280AC4D3-36D6-44AD-B055-30B8B4EC2F83}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
  170. "{2BF1C382-DD1A-464A-873F-427CFEF15880}" = protocol=6 | dir=in | app=c:\program files (x86)\limewire\limewire.exe |
  171. "{2F7B2ECF-7F5C-49CE-A6D8-55CA7CD841DD}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
  172. "{35A95501-F9ED-44F5-BED5-3050C2D1EEC4}" = protocol=6 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\umi.exe |
  173. "{3A4800D8-98B9-4CCF-A417-0DCC913048B5}" = protocol=17 | dir=in | app=c:\program files (x86)\aim\aim.exe |
  174. "{47FCFBBC-5B25-4D06-BDAB-377FD7DD71E5}" = protocol=6 | dir=in | app=c:\program files (x86)\aim\aim.exe |
  175. "{4FAFB9EC-E9EC-4F71-BF92-22DF0A846217}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
  176. "{55C3119D-9F01-4529-A19F-9CBD3EA8C513}" = protocol=17 | dir=in | app=c:\program files (x86)\frostwire\frostwire.exe |
  177. "{61F7AD8E-139E-42B7-9C5C-A7BD525CFFBC}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\aol\loader\aolload.exe |
  178. "{7FBEC699-474B-484A-A8AD-6643FC693B3D}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
  179. "{7FE71BB0-A2B0-4FA8-9F14-4158F572C46A}" = protocol=17 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\studio.exe |
  180. "{82D2F441-8926-47DE-ABEB-440D9B21D97C}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
  181. "{86941A74-9A28-45CE-8360-01ED8750B50C}" = dir=in | app=c:\program files (x86)\windows live\messenger\wlcsdk.exe |
  182. "{8AFE2D87-C48C-458A-AC2C-4457FBAC3195}" = protocol=6 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\rm.exe |
  183. "{9480CE52-8E38-4CE8-8C2C-C8DCB9E8039D}" = dir=in | app=c:\program files (x86)\cyberlink\powerdirector\pdr.exe |
  184. "{977A9C6D-E12E-491C-B347-2A074382EE0C}" = protocol=17 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\umi.exe |
  185. "{97FB783E-64CF-4CFC-A9F3-EB6CF83F6129}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version5\teamviewer.exe |
  186. "{A42972CF-C3D8-47DD-954C-95D54A3EA0CB}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
  187. "{A7F2AD09-8325-46B7-9784-532F9A86D8AC}" = protocol=6 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\studio.exe |
  188. "{A97F0D12-DA60-4F12-9BAC-444E5EBBADF0}" = dir=in | app=c:\program files (x86)\hp\quickplay\qp.exe |
  189. "{B3FB5EBB-B394-4BCC-8FAD-C8D7546E1635}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
  190. "{B4334F49-0200-431D-85F1-2F06FB198FD3}" = protocol=6 | dir=in | app=c:\program files (x86)\frostwire\frostwire.exe |
  191. "{C7BAB41F-E76E-493C-AD4E-D18B9C4E74D0}" = dir=in | app=c:\program files (x86)\hp\quickplay\qpservice.exe |
  192. "{CA65151C-D35A-4C46-9D03-E62C1893295A}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
  193. "{CB5C2E33-8C7C-4010-8418-38B0AE8A63C0}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
  194. "{D7E04CAC-AEEE-4068-8E4C-B2EB8C872C1A}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
  195. "{DB3548E4-6F0D-4BFF-B1AB-A6515B43F997}" = protocol=17 | dir=in | app=c:\program files (x86)\limewire\limewire.exe |
  196. "{E64DC106-7ED4-4364-972E-7BD784BA3079}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
  197. "{EAC90A03-33EF-4D50-A2A4-4BC69994E2EA}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version5\teamviewer.exe |
  198. "{F18FE077-29FF-45D0-8590-1529F4ED27A6}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
  199. "TCP Query User{10AA50EF-7F96-4A53-B1E4-1655FE70A3ED}C:\program files (x86)\cain\cain.exe" = protocol=6 | dir=in | app=c:\program files (x86)\cain\cain.exe |
  200. "TCP Query User{2FE3DB93-8306-4DDD-8803-DB6190B96579}C:\programdata\kaspersky lab setup files\kaspersky anti-virus 2011 11.0.1.400\english\setup.exe" = protocol=6 | dir=in | app=c:\programdata\kaspersky lab setup files\kaspersky anti-virus 2011 11.0.1.400\english\setup.exe |
  201. "TCP Query User{5A58B7D0-C4A0-4202-A623-F65700C56001}C:\program files (x86)\pfportchecker\pfportchecker.exe" = protocol=6 | dir=in | app=c:\program files (x86)\pfportchecker\pfportchecker.exe |
  202. "TCP Query User{5BE2AF84-1E1F-4E5C-906F-AFD34226E8BD}C:\users\wade\desktop\262\blackshades 2.6.2 cracked by vincent.exe" = protocol=6 | dir=in | app=c:\users\wade\desktop\262\blackshades 2.6.2 cracked by vincent.exe |
  203. "TCP Query User{631D7CEC-337C-442C-88CC-516345DB5B2C}C:\program files (x86)\pinnacle\studio 14\programs\studio.exe" = protocol=6 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\studio.exe |
  204. "TCP Query User{9B2CCD68-D46C-4A79-8AD9-F82F5CBE4A91}C:\program files (x86)\aim\aim.exe" = protocol=6 | dir=in | app=c:\program files (x86)\aim\aim.exe |
  205. "TCP Query User{A213B56E-83A5-4A2D-9321-910845588433}C:\program files\oracle\virtualbox\virtualbox.exe" = protocol=6 | dir=in | app=c:\program files\oracle\virtualbox\virtualbox.exe |
  206. "TCP Query User{B3E32F79-77BA-40CB-9C40-A444B94BAA12}C:\users\wade\hacking tools\cybergate v1.07.5.exe" = protocol=6 | dir=in | app=c:\users\wade\hacking tools\cybergate v1.07.5.exe |
  207. "TCP Query User{D46AA9E6-04D6-4940-9566-00A165287CF2}C:\program files (x86)\limewire\limewire.exe" = protocol=6 | dir=in | app=c:\program files (x86)\limewire\limewire.exe |
  208. "UDP Query User{009EEBE8-FB6D-47D1-8248-41290C620A11}C:\program files (x86)\pfportchecker\pfportchecker.exe" = protocol=17 | dir=in | app=c:\program files (x86)\pfportchecker\pfportchecker.exe |
  209. "UDP Query User{18D32CA3-01F8-485E-BE04-29C51A688FA7}C:\program files (x86)\pinnacle\studio 14\programs\studio.exe" = protocol=17 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\studio.exe |
  210. "UDP Query User{2CB715D4-3047-4DFC-BFD6-A2A67F8D0401}C:\program files (x86)\limewire\limewire.exe" = protocol=17 | dir=in | app=c:\program files (x86)\limewire\limewire.exe |
  211. "UDP Query User{5905798C-C651-45CA-94EB-16451ECAD1C2}C:\program files (x86)\cain\cain.exe" = protocol=17 | dir=in | app=c:\program files (x86)\cain\cain.exe |
  212. "UDP Query User{69A5C4CE-DFF5-43A8-84B8-78C2349727EC}C:\users\wade\desktop\262\blackshades 2.6.2 cracked by vincent.exe" = protocol=17 | dir=in | app=c:\users\wade\desktop\262\blackshades 2.6.2 cracked by vincent.exe |
  213. "UDP Query User{882BB820-ABC8-4E7B-9A5B-3C9D981986F8}C:\users\wade\hacking tools\cybergate v1.07.5.exe" = protocol=17 | dir=in | app=c:\users\wade\hacking tools\cybergate v1.07.5.exe |
  214. "UDP Query User{905245F0-C4B4-40E4-B326-C1C31B7CCDDE}C:\program files\oracle\virtualbox\virtualbox.exe" = protocol=17 | dir=in | app=c:\program files\oracle\virtualbox\virtualbox.exe |
  215. "UDP Query User{E54A287C-936A-4B7C-A366-DE65165D8C79}C:\programdata\kaspersky lab setup files\kaspersky anti-virus 2011 11.0.1.400\english\setup.exe" = protocol=17 | dir=in | app=c:\programdata\kaspersky lab setup files\kaspersky anti-virus 2011 11.0.1.400\english\setup.exe |
  216. "UDP Query User{E5E278F2-7355-4681-B837-AB9F92DEABD3}C:\program files (x86)\aim\aim.exe" = protocol=17 | dir=in | app=c:\program files (x86)\aim\aim.exe |
  217.  
  218. [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
  219.  
  220. 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
  221. "{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
  222. "{104FB32A-7CE3-4C4B-B2AA-70C613FF9DFA}" = iTunes
  223. "{11192F89-510C-4E23-A62A-D3BEA9139596}" = HP QuickTouch 1.00 C3
  224. "{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64
  225. "{209CDA54-D390-46A2-A97C-7BF61734418D}" = WeatherBug Gadget
  226. "{33EB1061-ABF1-4470-A540-32E97A610536}" = Apple Mobile Device Support
  227. "{3CC023A9-CE6C-44E5-BB0E-457F84F0B895}" = Sprint SmartView
  228. "{41BF0DE4-5BAE-4B88-AFD3-86A30B222186}" = Bonjour
  229. "{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64
  230. "{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
  231. "{6DE721A5-5E89-4D74-994C-652BB3C0672E}" = Pinnacle Video Driver
  232. "{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
  233. "{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64
  234. "{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
  235. "{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
  236. "{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007
  237. "{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
  238. "{90B5B05F-AFDA-4922-A153-45B14200BA77}" = SPBBC 64bit
  239. "{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64
  240. "{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64
  241. "{94D70749-4281-39AC-AD90-B56A0E0A402E}" = Microsoft Visual C++ 2010 x64 Runtime - 10.0.30319
  242. "{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
  243. "{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = Touch Pad Driver
  244. "{A2422B02-0D41-43F5-B62E-C7A5E55FCBA8}" = Vegas Pro 9.0 (64-bit)
  245. "{A348C751-0EFF-4B9D-8065-B5339BEFBE27}" = HP Help and Support
  246. "{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64
  247. "{BCA26999-EC22-3007-BB79-638913079C9A}" = Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU
  248. "{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64
  249. "{CC95E3FF-822B-47CD-9B4D-C89536615461}" = Oracle VM VirtualBox 3.2.8
  250. "{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
  251. "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
  252. "{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}" = Microsoft SQL Server Compact 3.5 SP2 x64 ENU
  253. "{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
  254. "{FCADA26A-5672-31DD-BF0E-BA76ECF9B02D}" = Microsoft Help Viewer 1.0
  255. "Broadcom 802.11b Network Adapter" = Broadcom 802.11 Wireless LAN Adapter
  256. "CNXT_AUDIO_HDA" = Conexant HD Audio
  257. "CNXT_MODEM_HDAUDIO_HERMOSA_HSF" = HDAUDIO Soft Data Fax Modem with SmartCP
  258. "CyberGhost VPN_is1" = CyberGhost VPN Patch 4.6.9
  259. "HashCheck Shell Extension" = HashCheck Shell Extension (x86-64)
  260. "HP Photosmart Essential" = HP Photosmart Essential 2.5
  261. "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
  262. "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
  263. "Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
  264. "Microsoft Help Viewer 1.0" = Microsoft Help Viewer 1.0
  265. "NVIDIA Drivers" = NVIDIA Drivers
  266. "Sandboxie" = Sandboxie 3.48 (64-bit)
  267. "WinRAR archiver" = WinRAR archiver
  268.  
  269. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
  270. "{004B0DCB-4C60-465B-8F01-44B0A4111187}" = SlingPlayer
  271. "{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
  272. "{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
  273. "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
  274. "{06E74B9B-631F-4378-BF3A-40D868450C05}" = HPPhotoSmartPhotobookHolidayPack1
  275. "{082702D5-5DD8-4600-BCE5-48B15174687F}" = HP Doc Viewer
  276. "{082F8ABA-84D5-4837-9DFC-F365D91A07D4}" = HP Smart Web Printing
  277. "{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
  278. "{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
  279. "{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
  280. "{112C23F2-C036-4D40-BED4-0CB47BF5555C}" = Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU
  281. "{11BB336F-0E58-4977-B866-F24FA334616B}" = HP Active Support Library
  282. "{12A76360-388E-4B27-ABEB-D5FC5378DD2A}" = HPPhotoSmartPhotobookWebPack1
  283. "{14DD7530-CCD2-3798-B37D-3839ED6A441C}" = Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools
  284. "{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}" = Microsoft Works
  285. "{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
  286. "{172AEB5E-CBB2-4CDD-A4CF-388600825839}" = HPPhotoSmartPhotobookPlayfulPack1
  287. "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
  288. "{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = DVD Suite
  289. "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
  290. "{2284D904-C138-4B58-93EC-5C362AB5130A}" = The Sims™ Life Stories
  291. "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
  292. "{250E9609-E830-43EB-B379-DAB7546A2422}" = muvee autoProducer 6.1
  293. "{254C37AA-6B72-4300-84F6-98A82419187E}" = Hewlett-Packard Active Check
  294. "{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 21
  295. "{2A2F3AE8-246A-4252-BB26-1BEB45627074}" = Microsoft SQL Server System CLR Types
  296. "{306BAE03-2FF8-4794-8B96-C6E8CF4F54B9}" = FBP - Facebook Blaster Pro
  297. "{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
  298. "{3248F0A8-6813-11D6-A77B-00B0D0160020}" = Java(TM) 6 Update 2
  299. "{34BFB099-07B2-4E95-A673-7362D60866A2}" = PSSWCORE
  300. "{34D2AB40-150D-475D-AE32-BD23FB5EE355}" = HP Quick Launch Buttons 6.30 E1
  301. "{38EAC694-0D90-445F-8C17-8B50ADFE3162}" = Slingbox Flash Tour
  302. "{3A2AD071-AABD-4712-A43E-11D06BAA661D}" = ImageMixer 3 SE Ver.6 Transfer Utility
  303. "{3A9FC03D-C685-4831-94CF-4EDFD3749497}" = Microsoft SQL Server Compact 3.5 SP2 ENU
  304. "{3F92ABBB-6BBF-11D5-B229-002078017FBF}" = NetWaiting
  305. "{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
  306. "{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
  307. "{45D707E9-F3C4-11D9-A373-0050BAE317E1}" = HP QuickPlay 3.6
  308. "{474F25F5-BDC9-40E5-B1B6-F6BF23FC106F}" = Windows Live Essentials
  309. "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
  310. "{4CACFCD9-F71B-413A-8DF5-1A6419D5CDC6}" = Cards_Calendar_OrderGift_DoMorePlugout
  311. "{4E968D9C-21A7-4915-B698-F7AEB913541D}" = Microsoft SQL Server 2008 R2 Management Objects
  312. "{59F6A514-9813-47A3-948C-8A155460CC2A}" = RICOH R5C83x/84x Flash Media Controller Driver Ver.3.52.02
  313. "{62CA119E-C5A7-42FC-85E8-4B55AA9E4072}" = ImageMixer 3 SE Ver.6 Video Tools
  314. "{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
  315. "{6412CECE-8172-4BE5-935B-6CECACD2CA87}" = Windows Live Mail
  316. "{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
  317. "{669D4A35-146B-4314-89F1-1AC3D7B88367}" = Hewlett-Packard Asset Agent for Health Check
  318. "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
  319. "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
  320. "{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
  321. "{89E052B2-5CA5-4B7A-AF0C-28CA2836B030}" = HPPhotoSmartPhotobookModernPack1
  322. "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
  323. "{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update
  324. "{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
  325. "{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
  326. "{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
  327. "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
  328. "{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
  329. "{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
  330. "{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
  331. "{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
  332. "{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
  333. "{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
  334. "{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
  335. "{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
  336. "{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
  337. "{943B6738-4801-4982-90EC-0442EF7AEB16}" = Kaspersky Anti-Virus 2010
  338. "{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)
  339. "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
  340. "{9885A11E-60E4-417C-B58B-8B31B21C0B8A}" = HP Easy Setup - Frontend
  341. "{A07840FC-CE63-4CB8-8030-EF4B9805925A}" = HPPhotoSmartDiscLabel_PaperLabel
  342. "{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
  343. "{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
  344. "{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
  345. "{AADD1C8F-D59F-4D55-A726-768C71A205A8}" = Pinnacle Studio 14
  346. "{AB05F2C8-F608-403b-95E1-FD8ADFACD31E}" = Windows 7 Upgrade Advisor
  347. "{AC76BA86-7AD7-1033-7B44-A81000000003}" = Adobe Reader 8.1.0
  348. "{AC95121F-1576-45B8-82F7-3911D27882E6}" = HPPhotoSmartPhotobookScrapbookPack1
  349. "{ADFB9653-F44C-460C-BF58-189CC552DFFE}" = hpphotosmartdisclabelplugin
  350. "{B4E91E95-A5BA-4E50-A465-DB7EFEB176E8}" = HPPhotoSmartDiscLabel_PrintOnDisc
  351. "{B53620C0-3A83-4F50-A7AB-175DB64C1CE3}" = HP User Guides 0090
  352. "{B57EAFF2-D6EE-4C6C-9175-ED9F17BFC1BC}" = Windows Live Messenger
  353. "{B7E38540-E355-3503-AFD7-635B2F2F76E1}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974
  354. "{BAD0FA60-09CF-4411-AE6A-C2844C8812FA}" = HP Photosmart Essential 2.5
  355. "{BD0E2B92-3814-46F0-893B-4612EA010C7E}" = HP Customer Experience Enhancements
  356. "{BEAD39CD-901D-4267-8B8B-EAA83CB4B70D}" = Pivot Stickfigure Animator
  357. "{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
  358. "{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
  359. "{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
  360. "{CBAE4F50-9FC9-4557-AB36-9826DF3C103C}" = HP Wireless Assistant
  361. "{CC4A73BF-938E-4C19-A553-853C035C9BA1}" = LightScribe System Software 1.10.13.1
  362. "{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}" = Skype Toolbars
  363. "{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}" = Microsoft .NET Framework 4 Multi-Targeting Pack
  364. "{D063F201-FAC4-4D5C-B10B-615058ADE5A7}" = HP Update
  365. "{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
  366. "{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
  367. "{DAEAFD68-BB4A-4507-A241-C8804D2EA66D}" = Apple Application Support
  368. "{DD3C88A0-C53C-41D0-A21B-6D021981D23E}" = HPPhotoSmartDiscLabelContent1
  369. "{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = Adobe Media Player
  370. "{E08DC77E-D09A-4e36-8067-D6DBBCC5F8DC}" = VideoToolkit01
  371. "{E6158D07-2637-4ECF-B576-37C489669174}" = Windows Live Call
  372. "{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.0
  373. "{E7004147-2CCA-431C-AA05-2AB166B9785D}" = QuickTime
  374. "{E80F62FF-5D3C-4A19-8409-9721F2928206}" = LiveUpdate (Symantec Corporation)
  375. "{ED784556-66AA-3F17-9B58-7246ACB5C7E4}" = Microsoft Visual Basic 2010 Express - ENU
  376. "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
  377. "{F5577101-33CC-4711-8235-3A95BCD49DB0}" = EA Link
  378. "{F636EE9A-F9EC-4606-BCFA-77DD0E210788}" = HPPhotoSmartDiscLabel_Tattoo
  379. "{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
  380. "Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
  381. "Adobe AIR" = Adobe AIR
  382. "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
  383. "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
  384. "AIM_7" = AIM 7
  385. "Ardamax Keylogger" = Ardamax Keylogger 2.9
  386. "Cain & Abel v4.9.35" = Cain & Abel v4.9.35
  387. "chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
  388. "com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
  389. "FileZilla Client" = FileZilla Client 3.3.4.1
  390. "FileZilla Server" = FileZilla Server (remove only)
  391. "HashCheck Shell Extension" = HashCheck Shell Extension (x86-32)
  392. "Hauppauge MCE2005 Software Encoder" = Hauppauge MCE XP/Vista Software Encoder (2.0.25149)
  393. "HOMESTUDENTR" = Microsoft Office Home and Student 2007
  394. "HP Smart Web Printing" = HP Smart Web Printing
  395. "InstallShield_{004B0DCB-4C60-465B-8F01-44B0A4111187}" = SlingPlayer
  396. "InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
  397. "InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
  398. "InstallShield_{F5577101-33CC-4711-8235-3A95BCD49DB0}" = EA Link
  399. "InstallWIX_{943B6738-4801-4982-90EC-0442EF7AEB16}" = Kaspersky Anti-Virus 2010
  400. "LimeWire" = LimeWire 5.5.16
  401. "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
  402. "Microsoft Visual Basic 2010 Express - ENU" = Microsoft Visual Basic 2010 Express - ENU
  403. "Mozilla Firefox (3.6.13)" = Mozilla Firefox (3.6.13)
  404. "MSNINST" = MSN
  405. "NoIPDUC" = No-IP DUC
  406. "OJOsoft Total Video Converter_is1" = OJOsoft Total Video Converter
  407. "OpenVPN" = OpenVPN 2.1.1
  408. "PFPortChecker" = PFPortChecker 1.0.36
  409. "Portforward Static IP Address" = Portforward Static IP Address 1.0.44
  410. "ProxyFirewall_is1" = ProxyFirewall 1.0.4 Beta
  411. "PsuedoLiveUpdate" = LiveUpdate (Symantec Corporation)
  412. "Rainmeter" = Rainmeter (remove only)
  413. "SlingMedia.QPSlingPlayer_is1" = QuickPlay SlingPlayer 0.4.6
  414. "SoftwareUpdUtility" = Download Updater (AOL LLC)
  415. "TeamViewer 5" = TeamViewer 5
  416. "ViewpointMediaPlayer" = Viewpoint Media Player
  417. "West Point Bridge Designer 2010 (2nd Edition)" = West Point Bridge Designer 2010 (2nd Edition) (remove only)
  418. "WildTangent hp Master Uninstall" = My HP Games
  419. "WinLiveSuite_Wave3" = Windows Live Essentials
  420. "WinPcapInst" = WinPcap 4.1.1
  421. "Wisdom-soft Set up ScreenHunter 5.1 Free" = Wisdom-soft Set up ScreenHunter 5.1 Free
  422. "Yahoo! Companion" = Yahoo! Toolbar
  423. "Yahoo! Toolbar" = Yahoo! Toolbar
  424.  
  425. [color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color]
  426.  
  427. [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
  428. "{8EB85C0E-DE7D-4A53-BD66-708B8F2C80B0}" = HHD Software Free Hex Editor Neo 4.95
  429. "Xilisoft Download YouTube Video" = Xilisoft Download YouTube Video
  430.  
  431. [color=#E56717]========== Last 10 Event Log Errors ==========[/color]
  432.  
  433. Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!
  434.  
  435. < End of report >
  436.  
  437. [color=#E56717]========== Extra Registry (SafeList) ==========[/color]
  438.  
  439.  
  440. [color=#E56717]========== File Associations ==========[/color]
  441.  
  442. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
  443.  
  444. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
  445. .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
  446.  
  447. [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
  448. .html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
  449.  
  450. [color=#E56717]========== Shell Spawning ==========[/color]
  451.  
  452. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
  453. batfile [open] -- "%1" %* File not found
  454. cmdfile [open] -- "%1" %* File not found
  455. comfile [open] -- "%1" %* File not found
  456. exefile [open] -- "%1" %* File not found
  457. helpfile [open] -- Reg Error: Key error.
  458. htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
  459. htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
  460. inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
  461. InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
  462. piffile [open] -- "%1" %* File not found
  463. regfile [merge] -- Reg Error: Key error.
  464. scrfile [config] -- "%1" File not found
  465. scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
  466. scrfile [open] -- "%1" /S File not found
  467. txtfile [edit] -- Reg Error: Key error.
  468. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
  469. Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
  470. Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
  471. Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  472. Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~2\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
  473. Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
  474. Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
  475. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  476.  
  477. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
  478. batfile [open] -- "%1" %*
  479. cmdfile [open] -- "%1" %*
  480. comfile [open] -- "%1" %*
  481. cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
  482. exefile [open] -- "%1" %*
  483. helpfile [open] -- Reg Error: Key error.
  484. htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
  485. htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
  486. inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
  487. piffile [open] -- "%1" %*
  488. regfile [merge] -- Reg Error: Key error.
  489. scrfile [config] -- "%1"
  490. scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
  491. scrfile [open] -- "%1" /S
  492. txtfile [edit] -- Reg Error: Key error.
  493. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
  494. Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
  495. Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
  496. Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  497. Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~2\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
  498. Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
  499. Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
  500. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  501.  
  502. [color=#E56717]========== Security Center Settings ==========[/color]
  503.  
  504. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
  505. "cval" = 1
  506. "UacDisableNotify" = 0
  507. "InternetSettingsDisableNotify" = 0
  508. "AutoUpdateDisableNotify" = 0
  509.  
  510. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
  511.  
  512. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
  513. "AntiVirusOverride" = 0
  514. "AntiSpywareOverride" = 0
  515. "FirewallOverride" = 0
  516. "VistaSp1" = 9F 9E 16 8C DC 5B C8 01 [binary data]
  517. "VistaSp2" = C8 AB DF 71 37 2C CB 01 [binary data]
  518.  
  519. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
  520.  
  521. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
  522.  
  523. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
  524.  
  525. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
  526. "DisableMonitoring" = 1
  527.  
  528. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
  529. "oobe_av" = 1
  530.  
  531. [color=#E56717]========== Firewall Settings ==========[/color]
  532.  
  533. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
  534. "EnableFirewall" = 0
  535. "DisableNotifications" = 0
  536.  
  537. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
  538. "EnableFirewall" = 0
  539. "DisableNotifications" = 0
  540.  
  541. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
  542. "EnableFirewall" = 0
  543. "DisableNotifications" = 0
  544.  
  545. [color=#E56717]========== Authorized Applications List ==========[/color]
  546.  
  547. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
  548. "C:\Program Files (x86)\EarthLink TotalAccess\TaskPanl.exe" = C:\Program Files (x86)\EarthLink TotalAccess\TaskPanl.exe:*:Enabled:Earthlink -- (EarthLink, Inc.)
  549. "C:\Program Files (x86)\EarthLink TotalAccess\TaskPanl.exe" = C:\Program Files (x86)\EarthLink TotalAccess\TaskPanl.exe:*:Enabled:Earthlink -- (EarthLink, Inc.)
  550.  
  551.  
  552. [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]
  553.  
  554. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
  555. "{0EB122F0-D4CE-40D1-9E55-9CFA649EF3D8}" = rport=137 | protocol=17 | dir=out | app=system |
  556. "{1D33C729-3A93-4C1C-9E38-75CB8962E1FE}" = lport=138 | protocol=17 | dir=in | app=system |
  557. "{1F201FCE-2B6C-45E6-BE08-EB4BA5F41B8F}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
  558. "{3C89564C-AA6B-499E-982E-4C2CF06E52DE}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
  559. "{616E8297-2BB7-41B4-A3FF-A5A2C99BCC6D}" = rport=445 | protocol=6 | dir=out | app=system |
  560. "{61E3E31B-D678-4CC5-98A9-1D9A749FB4FB}" = lport=139 | protocol=6 | dir=in | app=system |
  561. "{9D3F476A-F874-4207-97FA-E3BEA5E88541}" = rport=138 | protocol=17 | dir=out | app=system |
  562. "{9E6537F0-95AF-4DBB-8B43-0B9202857FC3}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
  563. "{C0622E65-BC8B-41E7-81CB-3C923ED8E227}" = lport=2869 | protocol=6 | dir=in | app=system |
  564. "{D649207F-3517-45BF-872A-AF061292FFD4}" = lport=137 | protocol=17 | dir=in | app=system |
  565. "{EB545A08-E049-43B6-8DAA-544AC5258137}" = rport=139 | protocol=6 | dir=out | app=system |
  566. "{FBED967A-7370-4028-9B0A-9EF54FB0CA8C}" = lport=445 | protocol=6 | dir=in | app=system |
  567.  
  568. [color=#E56717]========== Vista Active Application Exception List ==========[/color]
  569.  
  570. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
  571. "{053D4F85-E698-4CA6-BA31-60B8CE78A409}" = protocol=17 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\rm.exe |
  572. "{109647F6-8FDA-479B-B52D-DE2AC5911B61}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\aol\loader\aolload.exe |
  573. "{23DB0F8E-27F2-45C7-8559-C7A5AB13A790}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
  574. "{280AC4D3-36D6-44AD-B055-30B8B4EC2F83}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
  575. "{2BF1C382-DD1A-464A-873F-427CFEF15880}" = protocol=6 | dir=in | app=c:\program files (x86)\limewire\limewire.exe |
  576. "{2F7B2ECF-7F5C-49CE-A6D8-55CA7CD841DD}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
  577. "{35A95501-F9ED-44F5-BED5-3050C2D1EEC4}" = protocol=6 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\umi.exe |
  578. "{3A4800D8-98B9-4CCF-A417-0DCC913048B5}" = protocol=17 | dir=in | app=c:\program files (x86)\aim\aim.exe |
  579. "{47FCFBBC-5B25-4D06-BDAB-377FD7DD71E5}" = protocol=6 | dir=in | app=c:\program files (x86)\aim\aim.exe |
  580. "{4FAFB9EC-E9EC-4F71-BF92-22DF0A846217}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
  581. "{55C3119D-9F01-4529-A19F-9CBD3EA8C513}" = protocol=17 | dir=in | app=c:\program files (x86)\frostwire\frostwire.exe |
  582. "{61F7AD8E-139E-42B7-9C5C-A7BD525CFFBC}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\aol\loader\aolload.exe |
  583. "{7FBEC699-474B-484A-A8AD-6643FC693B3D}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
  584. "{7FE71BB0-A2B0-4FA8-9F14-4158F572C46A}" = protocol=17 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\studio.exe |
  585. "{82D2F441-8926-47DE-ABEB-440D9B21D97C}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
  586. "{86941A74-9A28-45CE-8360-01ED8750B50C}" = dir=in | app=c:\program files (x86)\windows live\messenger\wlcsdk.exe |
  587. "{8AFE2D87-C48C-458A-AC2C-4457FBAC3195}" = protocol=6 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\rm.exe |
  588. "{9480CE52-8E38-4CE8-8C2C-C8DCB9E8039D}" = dir=in | app=c:\program files (x86)\cyberlink\powerdirector\pdr.exe |
  589. "{977A9C6D-E12E-491C-B347-2A074382EE0C}" = protocol=17 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\umi.exe |
  590. "{97FB783E-64CF-4CFC-A9F3-EB6CF83F6129}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version5\teamviewer.exe |
  591. "{A42972CF-C3D8-47DD-954C-95D54A3EA0CB}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
  592. "{A7F2AD09-8325-46B7-9784-532F9A86D8AC}" = protocol=6 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\studio.exe |
  593. "{A97F0D12-DA60-4F12-9BAC-444E5EBBADF0}" = dir=in | app=c:\program files (x86)\hp\quickplay\qp.exe |
  594. "{B3FB5EBB-B394-4BCC-8FAD-C8D7546E1635}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
  595. "{B4334F49-0200-431D-85F1-2F06FB198FD3}" = protocol=6 | dir=in | app=c:\program files (x86)\frostwire\frostwire.exe |
  596. "{C7BAB41F-E76E-493C-AD4E-D18B9C4E74D0}" = dir=in | app=c:\program files (x86)\hp\quickplay\qpservice.exe |
  597. "{CA65151C-D35A-4C46-9D03-E62C1893295A}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
  598. "{CB5C2E33-8C7C-4010-8418-38B0AE8A63C0}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
  599. "{D7E04CAC-AEEE-4068-8E4C-B2EB8C872C1A}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
  600. "{DB3548E4-6F0D-4BFF-B1AB-A6515B43F997}" = protocol=17 | dir=in | app=c:\program files (x86)\limewire\limewire.exe |
  601. "{E64DC106-7ED4-4364-972E-7BD784BA3079}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
  602. "{EAC90A03-33EF-4D50-A2A4-4BC69994E2EA}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version5\teamviewer.exe |
  603. "{F18FE077-29FF-45D0-8590-1529F4ED27A6}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
  604. "TCP Query User{10AA50EF-7F96-4A53-B1E4-1655FE70A3ED}C:\program files (x86)\cain\cain.exe" = protocol=6 | dir=in | app=c:\program files (x86)\cain\cain.exe |
  605. "TCP Query User{2FE3DB93-8306-4DDD-8803-DB6190B96579}C:\programdata\kaspersky lab setup files\kaspersky anti-virus 2011 11.0.1.400\english\setup.exe" = protocol=6 | dir=in | app=c:\programdata\kaspersky lab setup files\kaspersky anti-virus 2011 11.0.1.400\english\setup.exe |
  606. "TCP Query User{5A58B7D0-C4A0-4202-A623-F65700C56001}C:\program files (x86)\pfportchecker\pfportchecker.exe" = protocol=6 | dir=in | app=c:\program files (x86)\pfportchecker\pfportchecker.exe |
  607. "TCP Query User{5BE2AF84-1E1F-4E5C-906F-AFD34226E8BD}C:\users\wade\desktop\262\blackshades 2.6.2 cracked by vincent.exe" = protocol=6 | dir=in | app=c:\users\wade\desktop\262\blackshades 2.6.2 cracked by vincent.exe |
  608. "TCP Query User{631D7CEC-337C-442C-88CC-516345DB5B2C}C:\program files (x86)\pinnacle\studio 14\programs\studio.exe" = protocol=6 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\studio.exe |
  609. "TCP Query User{9B2CCD68-D46C-4A79-8AD9-F82F5CBE4A91}C:\program files (x86)\aim\aim.exe" = protocol=6 | dir=in | app=c:\program files (x86)\aim\aim.exe |
  610. "TCP Query User{A213B56E-83A5-4A2D-9321-910845588433}C:\program files\oracle\virtualbox\virtualbox.exe" = protocol=6 | dir=in | app=c:\program files\oracle\virtualbox\virtualbox.exe |
  611. "TCP Query User{B3E32F79-77BA-40CB-9C40-A444B94BAA12}C:\users\wade\hacking tools\cybergate v1.07.5.exe" = protocol=6 | dir=in | app=c:\users\wade\hacking tools\cybergate v1.07.5.exe |
  612. "TCP Query User{D46AA9E6-04D6-4940-9566-00A165287CF2}C:\program files (x86)\limewire\limewire.exe" = protocol=6 | dir=in | app=c:\program files (x86)\limewire\limewire.exe |
  613. "UDP Query User{009EEBE8-FB6D-47D1-8248-41290C620A11}C:\program files (x86)\pfportchecker\pfportchecker.exe" = protocol=17 | dir=in | app=c:\program files (x86)\pfportchecker\pfportchecker.exe |
  614. "UDP Query User{18D32CA3-01F8-485E-BE04-29C51A688FA7}C:\program files (x86)\pinnacle\studio 14\programs\studio.exe" = protocol=17 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\studio.exe |
  615. "UDP Query User{2CB715D4-3047-4DFC-BFD6-A2A67F8D0401}C:\program files (x86)\limewire\limewire.exe" = protocol=17 | dir=in | app=c:\program files (x86)\limewire\limewire.exe |
  616. "UDP Query User{5905798C-C651-45CA-94EB-16451ECAD1C2}C:\program files (x86)\cain\cain.exe" = protocol=17 | dir=in | app=c:\program files (x86)\cain\cain.exe |
  617. "UDP Query User{69A5C4CE-DFF5-43A8-84B8-78C2349727EC}C:\users\wade\desktop\262\blackshades 2.6.2 cracked by vincent.exe" = protocol=17 | dir=in | app=c:\users\wade\desktop\262\blackshades 2.6.2 cracked by vincent.exe |
  618. "UDP Query User{882BB820-ABC8-4E7B-9A5B-3C9D981986F8}C:\users\wade\hacking tools\cybergate v1.07.5.exe" = protocol=17 | dir=in | app=c:\users\wade\hacking tools\cybergate v1.07.5.exe |
  619. "UDP Query User{905245F0-C4B4-40E4-B326-C1C31B7CCDDE}C:\program files\oracle\virtualbox\virtualbox.exe" = protocol=17 | dir=in | app=c:\program files\oracle\virtualbox\virtualbox.exe |
  620. "UDP Query User{E54A287C-936A-4B7C-A366-DE65165D8C79}C:\programdata\kaspersky lab setup files\kaspersky anti-virus 2011 11.0.1.400\english\setup.exe" = protocol=17 | dir=in | app=c:\programdata\kaspersky lab setup files\kaspersky anti-virus 2011 11.0.1.400\english\setup.exe |
  621. "UDP Query User{E5E278F2-7355-4681-B837-AB9F92DEABD3}C:\program files (x86)\aim\aim.exe" = protocol=17 | dir=in | app=c:\program files (x86)\aim\aim.exe |
  622.  
  623. [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
  624.  
  625. 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
  626. "{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
  627. "{104FB32A-7CE3-4C4B-B2AA-70C613FF9DFA}" = iTunes
  628. "{11192F89-510C-4E23-A62A-D3BEA9139596}" = HP QuickTouch 1.00 C3
  629. "{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64
  630. "{209CDA54-D390-46A2-A97C-7BF61734418D}" = WeatherBug Gadget
  631. "{33EB1061-ABF1-4470-A540-32E97A610536}" = Apple Mobile Device Support
  632. "{3CC023A9-CE6C-44E5-BB0E-457F84F0B895}" = Sprint SmartView
  633. "{41BF0DE4-5BAE-4B88-AFD3-86A30B222186}" = Bonjour
  634. "{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64
  635. "{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
  636. "{6DE721A5-5E89-4D74-994C-652BB3C0672E}" = Pinnacle Video Driver
  637. "{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
  638. "{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64
  639. "{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
  640. "{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
  641. "{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007
  642. "{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
  643. "{90B5B05F-AFDA-4922-A153-45B14200BA77}" = SPBBC 64bit
  644. "{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64
  645. "{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64
  646. "{94D70749-4281-39AC-AD90-B56A0E0A402E}" = Microsoft Visual C++ 2010 x64 Runtime - 10.0.30319
  647. "{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
  648. "{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = Touch Pad Driver
  649. "{A2422B02-0D41-43F5-B62E-C7A5E55FCBA8}" = Vegas Pro 9.0 (64-bit)
  650. "{A348C751-0EFF-4B9D-8065-B5339BEFBE27}" = HP Help and Support
  651. "{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64
  652. "{BCA26999-EC22-3007-BB79-638913079C9A}" = Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU
  653. "{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64
  654. "{CC95E3FF-822B-47CD-9B4D-C89536615461}" = Oracle VM VirtualBox 3.2.8
  655. "{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
  656. "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
  657. "{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}" = Microsoft SQL Server Compact 3.5 SP2 x64 ENU
  658. "{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
  659. "{FCADA26A-5672-31DD-BF0E-BA76ECF9B02D}" = Microsoft Help Viewer 1.0
  660. "Broadcom 802.11b Network Adapter" = Broadcom 802.11 Wireless LAN Adapter
  661. "CNXT_AUDIO_HDA" = Conexant HD Audio
  662. "CNXT_MODEM_HDAUDIO_HERMOSA_HSF" = HDAUDIO Soft Data Fax Modem with SmartCP
  663. "CyberGhost VPN_is1" = CyberGhost VPN Patch 4.6.9
  664. "HashCheck Shell Extension" = HashCheck Shell Extension (x86-64)
  665. "HP Photosmart Essential" = HP Photosmart Essential 2.5
  666. "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
  667. "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
  668. "Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
  669. "Microsoft Help Viewer 1.0" = Microsoft Help Viewer 1.0
  670. "NVIDIA Drivers" = NVIDIA Drivers
  671. "Sandboxie" = Sandboxie 3.48 (64-bit)
  672. "WinRAR archiver" = WinRAR archiver
  673.  
  674. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
  675. "{004B0DCB-4C60-465B-8F01-44B0A4111187}" = SlingPlayer
  676. "{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
  677. "{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
  678. "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
  679. "{06E74B9B-631F-4378-BF3A-40D868450C05}" = HPPhotoSmartPhotobookHolidayPack1
  680. "{082702D5-5DD8-4600-BCE5-48B15174687F}" = HP Doc Viewer
  681. "{082F8ABA-84D5-4837-9DFC-F365D91A07D4}" = HP Smart Web Printing
  682. "{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
  683. "{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
  684. "{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
  685. "{112C23F2-C036-4D40-BED4-0CB47BF5555C}" = Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU
  686. "{11BB336F-0E58-4977-B866-F24FA334616B}" = HP Active Support Library
  687. "{12A76360-388E-4B27-ABEB-D5FC5378DD2A}" = HPPhotoSmartPhotobookWebPack1
  688. "{14DD7530-CCD2-3798-B37D-3839ED6A441C}" = Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools
  689. "{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}" = Microsoft Works
  690. "{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
  691. "{172AEB5E-CBB2-4CDD-A4CF-388600825839}" = HPPhotoSmartPhotobookPlayfulPack1
  692. "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
  693. "{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = DVD Suite
  694. "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
  695. "{2284D904-C138-4B58-93EC-5C362AB5130A}" = The Sims™ Life Stories
  696. "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
  697. "{250E9609-E830-43EB-B379-DAB7546A2422}" = muvee autoProducer 6.1
  698. "{254C37AA-6B72-4300-84F6-98A82419187E}" = Hewlett-Packard Active Check
  699. "{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 21
  700. "{2A2F3AE8-246A-4252-BB26-1BEB45627074}" = Microsoft SQL Server System CLR Types
  701. "{306BAE03-2FF8-4794-8B96-C6E8CF4F54B9}" = FBP - Facebook Blaster Pro
  702. "{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
  703. "{3248F0A8-6813-11D6-A77B-00B0D0160020}" = Java(TM) 6 Update 2
  704. "{34BFB099-07B2-4E95-A673-7362D60866A2}" = PSSWCORE
  705. "{34D2AB40-150D-475D-AE32-BD23FB5EE355}" = HP Quick Launch Buttons 6.30 E1
  706. "{38EAC694-0D90-445F-8C17-8B50ADFE3162}" = Slingbox Flash Tour
  707. "{3A2AD071-AABD-4712-A43E-11D06BAA661D}" = ImageMixer 3 SE Ver.6 Transfer Utility
  708. "{3A9FC03D-C685-4831-94CF-4EDFD3749497}" = Microsoft SQL Server Compact 3.5 SP2 ENU
  709. "{3F92ABBB-6BBF-11D5-B229-002078017FBF}" = NetWaiting
  710. "{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
  711. "{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
  712. "{45D707E9-F3C4-11D9-A373-0050BAE317E1}" = HP QuickPlay 3.6
  713. "{474F25F5-BDC9-40E5-B1B6-F6BF23FC106F}" = Windows Live Essentials
  714. "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
  715. "{4CACFCD9-F71B-413A-8DF5-1A6419D5CDC6}" = Cards_Calendar_OrderGift_DoMorePlugout
  716. "{4E968D9C-21A7-4915-B698-F7AEB913541D}" = Microsoft SQL Server 2008 R2 Management Objects
  717. "{59F6A514-9813-47A3-948C-8A155460CC2A}" = RICOH R5C83x/84x Flash Media Controller Driver Ver.3.52.02
  718. "{62CA119E-C5A7-42FC-85E8-4B55AA9E4072}" = ImageMixer 3 SE Ver.6 Video Tools
  719. "{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
  720. "{6412CECE-8172-4BE5-935B-6CECACD2CA87}" = Windows Live Mail
  721. "{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
  722. "{669D4A35-146B-4314-89F1-1AC3D7B88367}" = Hewlett-Packard Asset Agent for Health Check
  723. "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
  724. "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
  725. "{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
  726. "{89E052B2-5CA5-4B7A-AF0C-28CA2836B030}" = HPPhotoSmartPhotobookModernPack1
  727. "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
  728. "{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update
  729. "{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
  730. "{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
  731. "{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
  732. "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
  733. "{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
  734. "{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
  735. "{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
  736. "{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
  737. "{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
  738. "{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
  739. "{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
  740. "{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
  741. "{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
  742. "{943B6738-4801-4982-90EC-0442EF7AEB16}" = Kaspersky Anti-Virus 2010
  743. "{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)
  744. "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
  745. "{9885A11E-60E4-417C-B58B-8B31B21C0B8A}" = HP Easy Setup - Frontend
  746. "{A07840FC-CE63-4CB8-8030-EF4B9805925A}" = HPPhotoSmartDiscLabel_PaperLabel
  747. "{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
  748. "{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
  749. "{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
  750. "{AADD1C8F-D59F-4D55-A726-768C71A205A8}" = Pinnacle Studio 14
  751. "{AB05F2C8-F608-403b-95E1-FD8ADFACD31E}" = Windows 7 Upgrade Advisor
  752. "{AC76BA86-7AD7-1033-7B44-A81000000003}" = Adobe Reader 8.1.0
  753. "{AC95121F-1576-45B8-82F7-3911D27882E6}" = HPPhotoSmartPhotobookScrapbookPack1
  754. "{ADFB9653-F44C-460C-BF58-189CC552DFFE}" = hpphotosmartdisclabelplugin
  755. "{B4E91E95-A5BA-4E50-A465-DB7EFEB176E8}" = HPPhotoSmartDiscLabel_PrintOnDisc
  756. "{B53620C0-3A83-4F50-A7AB-175DB64C1CE3}" = HP User Guides 0090
  757. "{B57EAFF2-D6EE-4C6C-9175-ED9F17BFC1BC}" = Windows Live Messenger
  758. "{B7E38540-E355-3503-AFD7-635B2F2F76E1}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974
  759. "{BAD0FA60-09CF-4411-AE6A-C2844C8812FA}" = HP Photosmart Essential 2.5
  760. "{BD0E2B92-3814-46F0-893B-4612EA010C7E}" = HP Customer Experience Enhancements
  761. "{BEAD39CD-901D-4267-8B8B-EAA83CB4B70D}" = Pivot Stickfigure Animator
  762. "{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
  763. "{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
  764. "{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
  765. "{CBAE4F50-9FC9-4557-AB36-9826DF3C103C}" = HP Wireless Assistant
  766. "{CC4A73BF-938E-4C19-A553-853C035C9BA1}" = LightScribe System Software 1.10.13.1
  767. "{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}" = Skype Toolbars
  768. "{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}" = Microsoft .NET Framework 4 Multi-Targeting Pack
  769. "{D063F201-FAC4-4D5C-B10B-615058ADE5A7}" = HP Update
  770. "{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
  771. "{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
  772. "{DAEAFD68-BB4A-4507-A241-C8804D2EA66D}" = Apple Application Support
  773. "{DD3C88A0-C53C-41D0-A21B-6D021981D23E}" = HPPhotoSmartDiscLabelContent1
  774. "{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = Adobe Media Player
  775. "{E08DC77E-D09A-4e36-8067-D6DBBCC5F8DC}" = VideoToolkit01
  776. "{E6158D07-2637-4ECF-B576-37C489669174}" = Windows Live Call
  777. "{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.0
  778. "{E7004147-2CCA-431C-AA05-2AB166B9785D}" = QuickTime
  779. "{E80F62FF-5D3C-4A19-8409-9721F2928206}" = LiveUpdate (Symantec Corporation)
  780. "{ED784556-66AA-3F17-9B58-7246ACB5C7E4}" = Microsoft Visual Basic 2010 Express - ENU
  781. "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
  782. "{F5577101-33CC-4711-8235-3A95BCD49DB0}" = EA Link
  783. "{F636EE9A-F9EC-4606-BCFA-77DD0E210788}" = HPPhotoSmartDiscLabel_Tattoo
  784. "{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
  785. "Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
  786. "Adobe AIR" = Adobe AIR
  787. "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
  788. "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
  789. "AIM_7" = AIM 7
  790. "Ardamax Keylogger" = Ardamax Keylogger 2.9
  791. "Cain & Abel v4.9.35" = Cain & Abel v4.9.35
  792. "chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
  793. "com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
  794. "FileZilla Client" = FileZilla Client 3.3.4.1
  795. "FileZilla Server" = FileZilla Server (remove only)
  796. "HashCheck Shell Extension" = HashCheck Shell Extension (x86-32)
  797. "Hauppauge MCE2005 Software Encoder" = Hauppauge MCE XP/Vista Software Encoder (2.0.25149)
  798. "HOMESTUDENTR" = Microsoft Office Home and Student 2007
  799. "HP Smart Web Printing" = HP Smart Web Printing
  800. "InstallShield_{004B0DCB-4C60-465B-8F01-44B0A4111187}" = SlingPlayer
  801. "InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
  802. "InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
  803. "InstallShield_{F5577101-33CC-4711-8235-3A95BCD49DB0}" = EA Link
  804. "InstallWIX_{943B6738-4801-4982-90EC-0442EF7AEB16}" = Kaspersky Anti-Virus 2010
  805. "LimeWire" = LimeWire 5.5.16
  806. "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
  807. "Microsoft Visual Basic 2010 Express - ENU" = Microsoft Visual Basic 2010 Express - ENU
  808. "Mozilla Firefox (3.6.13)" = Mozilla Firefox (3.6.13)
  809. "MSNINST" = MSN
  810. "NoIPDUC" = No-IP DUC
  811. "OJOsoft Total Video Converter_is1" = OJOsoft Total Video Converter
  812. "OpenVPN" = OpenVPN 2.1.1
  813. "PFPortChecker" = PFPortChecker 1.0.36
  814. "Portforward Static IP Address" = Portforward Static IP Address 1.0.44
  815. "ProxyFirewall_is1" = ProxyFirewall 1.0.4 Beta
  816. "PsuedoLiveUpdate" = LiveUpdate (Symantec Corporation)
  817. "Rainmeter" = Rainmeter (remove only)
  818. "SlingMedia.QPSlingPlayer_is1" = QuickPlay SlingPlayer 0.4.6
  819. "SoftwareUpdUtility" = Download Updater (AOL LLC)
  820. "TeamViewer 5" = TeamViewer 5
  821. "ViewpointMediaPlayer" = Viewpoint Media Player
  822. "West Point Bridge Designer 2010 (2nd Edition)" = West Point Bridge Designer 2010 (2nd Edition) (remove only)
  823. "WildTangent hp Master Uninstall" = My HP Games
  824. "WinLiveSuite_Wave3" = Windows Live Essentials
  825. "WinPcapInst" = WinPcap 4.1.1
  826. "Wisdom-soft Set up ScreenHunter 5.1 Free" = Wisdom-soft Set up ScreenHunter 5.1 Free
  827. "Yahoo! Companion" = Yahoo! Toolbar
  828. "Yahoo! Toolbar" = Yahoo! Toolbar
  829.  
  830. [color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color]
  831.  
  832. [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
  833. "{8EB85C0E-DE7D-4A53-BD66-708B8F2C80B0}" = HHD Software Free Hex Editor Neo 4.95
  834. "Xilisoft Download YouTube Video" = Xilisoft Download YouTube Video
  835.  
  836. [color=#E56717]========== Last 10 Event Log Errors ==========[/color]
  837.  
  838. Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!
  839.  
  840. < End of report >
  841.  
  842. [color=#E56717]========== Extra Registry (SafeList) ==========[/color]
  843.  
  844.  
  845. [color=#E56717]========== File Associations ==========[/color]
  846.  
  847. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
  848.  
  849. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
  850. .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
  851.  
  852. [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
  853. .html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
  854.  
  855. [color=#E56717]========== Shell Spawning ==========[/color]
  856.  
  857. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
  858. batfile [open] -- "%1" %* File not found
  859. cmdfile [open] -- "%1" %* File not found
  860. comfile [open] -- "%1" %* File not found
  861. exefile [open] -- "%1" %* File not found
  862. helpfile [open] -- Reg Error: Key error.
  863. htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
  864. htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
  865. inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
  866. InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
  867. piffile [open] -- "%1" %* File not found
  868. regfile [merge] -- Reg Error: Key error.
  869. scrfile [config] -- "%1" File not found
  870. scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
  871. scrfile [open] -- "%1" /S File not found
  872. txtfile [edit] -- Reg Error: Key error.
  873. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
  874. Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
  875. Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
  876. Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  877. Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~2\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
  878. Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
  879. Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
  880. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  881.  
  882. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
  883. batfile [open] -- "%1" %*
  884. cmdfile [open] -- "%1" %*
  885. comfile [open] -- "%1" %*
  886. cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
  887. exefile [open] -- "%1" %*
  888. helpfile [open] -- Reg Error: Key error.
  889. htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
  890. htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
  891. inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
  892. piffile [open] -- "%1" %*
  893. regfile [merge] -- Reg Error: Key error.
  894. scrfile [config] -- "%1"
  895. scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
  896. scrfile [open] -- "%1" /S
  897. txtfile [edit] -- Reg Error: Key error.
  898. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
  899. Directory [Bridge] -- C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe "%L" (Adobe Systems, Inc.)
  900. Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
  901. Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  902. Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~2\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
  903. Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
  904. Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
  905. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  906.  
  907. [color=#E56717]========== Security Center Settings ==========[/color]
  908.  
  909. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
  910. "cval" = 1
  911. "UacDisableNotify" = 0
  912. "InternetSettingsDisableNotify" = 0
  913. "AutoUpdateDisableNotify" = 0
  914.  
  915. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
  916.  
  917. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
  918. "AntiVirusOverride" = 0
  919. "AntiSpywareOverride" = 0
  920. "FirewallOverride" = 0
  921. "VistaSp1" = 9F 9E 16 8C DC 5B C8 01 [binary data]
  922. "VistaSp2" = C8 AB DF 71 37 2C CB 01 [binary data]
  923.  
  924. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
  925.  
  926. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
  927.  
  928. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
  929.  
  930. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
  931. "DisableMonitoring" = 1
  932.  
  933. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
  934. "oobe_av" = 1
  935.  
  936. [color=#E56717]========== Firewall Settings ==========[/color]
  937.  
  938. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
  939. "EnableFirewall" = 0
  940. "DisableNotifications" = 0
  941.  
  942. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
  943. "EnableFirewall" = 0
  944. "DisableNotifications" = 0
  945.  
  946. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
  947. "EnableFirewall" = 0
  948. "DisableNotifications" = 0
  949.  
  950. [color=#E56717]========== Authorized Applications List ==========[/color]
  951.  
  952. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
  953. "C:\Program Files (x86)\EarthLink TotalAccess\TaskPanl.exe" = C:\Program Files (x86)\EarthLink TotalAccess\TaskPanl.exe:*:Enabled:Earthlink -- (EarthLink, Inc.)
  954. "C:\Program Files (x86)\EarthLink TotalAccess\TaskPanl.exe" = C:\Program Files (x86)\EarthLink TotalAccess\TaskPanl.exe:*:Enabled:Earthlink -- (EarthLink, Inc.)
  955.  
  956.  
  957. [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]
  958.  
  959. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
  960. "{0EB122F0-D4CE-40D1-9E55-9CFA649EF3D8}" = rport=137 | protocol=17 | dir=out | app=system |
  961. "{1D33C729-3A93-4C1C-9E38-75CB8962E1FE}" = lport=138 | protocol=17 | dir=in | app=system |
  962. "{1F201FCE-2B6C-45E6-BE08-EB4BA5F41B8F}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
  963. "{3C89564C-AA6B-499E-982E-4C2CF06E52DE}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
  964. "{616E8297-2BB7-41B4-A3FF-A5A2C99BCC6D}" = rport=445 | protocol=6 | dir=out | app=system |
  965. "{61E3E31B-D678-4CC5-98A9-1D9A749FB4FB}" = lport=139 | protocol=6 | dir=in | app=system |
  966. "{9D3F476A-F874-4207-97FA-E3BEA5E88541}" = rport=138 | protocol=17 | dir=out | app=system |
  967. "{9E6537F0-95AF-4DBB-8B43-0B9202857FC3}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
  968. "{C0622E65-BC8B-41E7-81CB-3C923ED8E227}" = lport=2869 | protocol=6 | dir=in | app=system |
  969. "{D649207F-3517-45BF-872A-AF061292FFD4}" = lport=137 | protocol=17 | dir=in | app=system |
  970. "{EB545A08-E049-43B6-8DAA-544AC5258137}" = rport=139 | protocol=6 | dir=out | app=system |
  971. "{FBED967A-7370-4028-9B0A-9EF54FB0CA8C}" = lport=445 | protocol=6 | dir=in | app=system |
  972.  
  973. [color=#E56717]========== Vista Active Application Exception List ==========[/color]
  974.  
  975. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
  976. "{053D4F85-E698-4CA6-BA31-60B8CE78A409}" = protocol=17 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\rm.exe |
  977. "{109647F6-8FDA-479B-B52D-DE2AC5911B61}" = protocol=6 | dir=in | app=c:\program files (x86)\common files\aol\loader\aolload.exe |
  978. "{23DB0F8E-27F2-45C7-8559-C7A5AB13A790}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
  979. "{280AC4D3-36D6-44AD-B055-30B8B4EC2F83}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
  980. "{2BF1C382-DD1A-464A-873F-427CFEF15880}" = protocol=6 | dir=in | app=c:\program files (x86)\limewire\limewire.exe |
  981. "{2F7B2ECF-7F5C-49CE-A6D8-55CA7CD841DD}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
  982. "{35A95501-F9ED-44F5-BED5-3050C2D1EEC4}" = protocol=6 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\umi.exe |
  983. "{3A4800D8-98B9-4CCF-A417-0DCC913048B5}" = protocol=17 | dir=in | app=c:\program files (x86)\aim\aim.exe |
  984. "{47FCFBBC-5B25-4D06-BDAB-377FD7DD71E5}" = protocol=6 | dir=in | app=c:\program files (x86)\aim\aim.exe |
  985. "{4FAFB9EC-E9EC-4F71-BF92-22DF0A846217}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
  986. "{55C3119D-9F01-4529-A19F-9CBD3EA8C513}" = protocol=17 | dir=in | app=c:\program files (x86)\frostwire\frostwire.exe |
  987. "{61F7AD8E-139E-42B7-9C5C-A7BD525CFFBC}" = protocol=17 | dir=in | app=c:\program files (x86)\common files\aol\loader\aolload.exe |
  988. "{7FBEC699-474B-484A-A8AD-6643FC693B3D}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
  989. "{7FE71BB0-A2B0-4FA8-9F14-4158F572C46A}" = protocol=17 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\studio.exe |
  990. "{82D2F441-8926-47DE-ABEB-440D9B21D97C}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
  991. "{86941A74-9A28-45CE-8360-01ED8750B50C}" = dir=in | app=c:\program files (x86)\windows live\messenger\wlcsdk.exe |
  992. "{8AFE2D87-C48C-458A-AC2C-4457FBAC3195}" = protocol=6 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\rm.exe |
  993. "{9480CE52-8E38-4CE8-8C2C-C8DCB9E8039D}" = dir=in | app=c:\program files (x86)\cyberlink\powerdirector\pdr.exe |
  994. "{977A9C6D-E12E-491C-B347-2A074382EE0C}" = protocol=17 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\umi.exe |
  995. "{97FB783E-64CF-4CFC-A9F3-EB6CF83F6129}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version5\teamviewer.exe |
  996. "{A42972CF-C3D8-47DD-954C-95D54A3EA0CB}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
  997. "{A7F2AD09-8325-46B7-9784-532F9A86D8AC}" = protocol=6 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\studio.exe |
  998. "{A97F0D12-DA60-4F12-9BAC-444E5EBBADF0}" = dir=in | app=c:\program files (x86)\hp\quickplay\qp.exe |
  999. "{B3FB5EBB-B394-4BCC-8FAD-C8D7546E1635}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
  1000. "{B4334F49-0200-431D-85F1-2F06FB198FD3}" = protocol=6 | dir=in | app=c:\program files (x86)\frostwire\frostwire.exe |
  1001. "{C7BAB41F-E76E-493C-AD4E-D18B9C4E74D0}" = dir=in | app=c:\program files (x86)\hp\quickplay\qpservice.exe |
  1002. "{CA65151C-D35A-4C46-9D03-E62C1893295A}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
  1003. "{CB5C2E33-8C7C-4010-8418-38B0AE8A63C0}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
  1004. "{D7E04CAC-AEEE-4068-8E4C-B2EB8C872C1A}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
  1005. "{DB3548E4-6F0D-4BFF-B1AB-A6515B43F997}" = protocol=17 | dir=in | app=c:\program files (x86)\limewire\limewire.exe |
  1006. "{E64DC106-7ED4-4364-972E-7BD784BA3079}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
  1007. "{EAC90A03-33EF-4D50-A2A4-4BC69994E2EA}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version5\teamviewer.exe |
  1008. "{F18FE077-29FF-45D0-8590-1529F4ED27A6}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
  1009. "TCP Query User{10AA50EF-7F96-4A53-B1E4-1655FE70A3ED}C:\program files (x86)\cain\cain.exe" = protocol=6 | dir=in | app=c:\program files (x86)\cain\cain.exe |
  1010. "TCP Query User{2FE3DB93-8306-4DDD-8803-DB6190B96579}C:\programdata\kaspersky lab setup files\kaspersky anti-virus 2011 11.0.1.400\english\setup.exe" = protocol=6 | dir=in | app=c:\programdata\kaspersky lab setup files\kaspersky anti-virus 2011 11.0.1.400\english\setup.exe |
  1011. "TCP Query User{5A58B7D0-C4A0-4202-A623-F65700C56001}C:\program files (x86)\pfportchecker\pfportchecker.exe" = protocol=6 | dir=in | app=c:\program files (x86)\pfportchecker\pfportchecker.exe |
  1012. "TCP Query User{5BE2AF84-1E1F-4E5C-906F-AFD34226E8BD}C:\users\wade\desktop\262\blackshades 2.6.2 cracked by vincent.exe" = protocol=6 | dir=in | app=c:\users\wade\desktop\262\blackshades 2.6.2 cracked by vincent.exe |
  1013. "TCP Query User{631D7CEC-337C-442C-88CC-516345DB5B2C}C:\program files (x86)\pinnacle\studio 14\programs\studio.exe" = protocol=6 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\studio.exe |
  1014. "TCP Query User{9B2CCD68-D46C-4A79-8AD9-F82F5CBE4A91}C:\program files (x86)\aim\aim.exe" = protocol=6 | dir=in | app=c:\program files (x86)\aim\aim.exe |
  1015. "TCP Query User{A213B56E-83A5-4A2D-9321-910845588433}C:\program files\oracle\virtualbox\virtualbox.exe" = protocol=6 | dir=in | app=c:\program files\oracle\virtualbox\virtualbox.exe |
  1016. "TCP Query User{B3E32F79-77BA-40CB-9C40-A444B94BAA12}C:\users\wade\hacking tools\cybergate v1.07.5.exe" = protocol=6 | dir=in | app=c:\users\wade\hacking tools\cybergate v1.07.5.exe |
  1017. "TCP Query User{D46AA9E6-04D6-4940-9566-00A165287CF2}C:\program files (x86)\limewire\limewire.exe" = protocol=6 | dir=in | app=c:\program files (x86)\limewire\limewire.exe |
  1018. "UDP Query User{009EEBE8-FB6D-47D1-8248-41290C620A11}C:\program files (x86)\pfportchecker\pfportchecker.exe" = protocol=17 | dir=in | app=c:\program files (x86)\pfportchecker\pfportchecker.exe |
  1019. "UDP Query User{18D32CA3-01F8-485E-BE04-29C51A688FA7}C:\program files (x86)\pinnacle\studio 14\programs\studio.exe" = protocol=17 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\studio.exe |
  1020. "UDP Query User{2CB715D4-3047-4DFC-BFD6-A2A67F8D0401}C:\program files (x86)\limewire\limewire.exe" = protocol=17 | dir=in | app=c:\program files (x86)\limewire\limewire.exe |
  1021. "UDP Query User{5905798C-C651-45CA-94EB-16451ECAD1C2}C:\program files (x86)\cain\cain.exe" = protocol=17 | dir=in | app=c:\program files (x86)\cain\cain.exe |
  1022. "UDP Query User{69A5C4CE-DFF5-43A8-84B8-78C2349727EC}C:\users\wade\desktop\262\blackshades 2.6.2 cracked by vincent.exe" = protocol=17 | dir=in | app=c:\users\wade\desktop\262\blackshades 2.6.2 cracked by vincent.exe |
  1023. "UDP Query User{882BB820-ABC8-4E7B-9A5B-3C9D981986F8}C:\users\wade\hacking tools\cybergate v1.07.5.exe" = protocol=17 | dir=in | app=c:\users\wade\hacking tools\cybergate v1.07.5.exe |
  1024. "UDP Query User{905245F0-C4B4-40E4-B326-C1C31B7CCDDE}C:\program files\oracle\virtualbox\virtualbox.exe" = protocol=17 | dir=in | app=c:\program files\oracle\virtualbox\virtualbox.exe |
  1025. "UDP Query User{E54A287C-936A-4B7C-A366-DE65165D8C79}C:\programdata\kaspersky lab setup files\kaspersky anti-virus 2011 11.0.1.400\english\setup.exe" = protocol=17 | dir=in | app=c:\programdata\kaspersky lab setup files\kaspersky anti-virus 2011 11.0.1.400\english\setup.exe |
  1026. "UDP Query User{E5E278F2-7355-4681-B837-AB9F92DEABD3}C:\program files (x86)\aim\aim.exe" = protocol=17 | dir=in | app=c:\program files (x86)\aim\aim.exe |
  1027.  
  1028. [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
  1029.  
  1030. 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
  1031. "{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
  1032. "{104FB32A-7CE3-4C4B-B2AA-70C613FF9DFA}" = iTunes
  1033. "{11192F89-510C-4E23-A62A-D3BEA9139596}" = HP QuickTouch 1.00 C3
  1034. "{1E9FC118-651D-4934-97BE-E53CAE5C7D45}" = Microsoft_VC80_MFCLOC_x86_x64
  1035. "{209CDA54-D390-46A2-A97C-7BF61734418D}" = WeatherBug Gadget
  1036. "{33EB1061-ABF1-4470-A540-32E97A610536}" = Apple Mobile Device Support
  1037. "{3CC023A9-CE6C-44E5-BB0E-457F84F0B895}" = Sprint SmartView
  1038. "{41BF0DE4-5BAE-4B88-AFD3-86A30B222186}" = Bonjour
  1039. "{4569AD91-47F4-4D9E-8FC9-717EC32D7AE1}" = Microsoft_VC80_CRT_x86_x64
  1040. "{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
  1041. "{6DE721A5-5E89-4D74-994C-652BB3C0672E}" = Pinnacle Video Driver
  1042. "{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
  1043. "{8557397C-A42D-486F-97B3-A2CBC2372593}" = Microsoft_VC90_ATL_x86_x64
  1044. "{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
  1045. "{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
  1046. "{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007
  1047. "{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
  1048. "{90B5B05F-AFDA-4922-A153-45B14200BA77}" = SPBBC 64bit
  1049. "{925D058B-564A-443A-B4B2-7E90C6432E55}" = Microsoft_VC80_ATL_x86_x64
  1050. "{92A3CA0D-55CD-4C5D-BA95-5C2600C20F26}" = Microsoft_VC90_CRT_x86_x64
  1051. "{94D70749-4281-39AC-AD90-B56A0E0A402E}" = Microsoft Visual C++ 2010 x64 Runtime - 10.0.30319
  1052. "{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
  1053. "{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = Touch Pad Driver
  1054. "{A2422B02-0D41-43F5-B62E-C7A5E55FCBA8}" = Vegas Pro 9.0 (64-bit)
  1055. "{A348C751-0EFF-4B9D-8065-B5339BEFBE27}" = HP Help and Support
  1056. "{A472B9E4-0AFF-4F7B-B25D-F64F8E928AAB}" = Microsoft_VC90_MFC_x86_x64
  1057. "{BCA26999-EC22-3007-BB79-638913079C9A}" = Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU
  1058. "{C8C1BAD5-54E6-4146-AD07-3A8AD36569C3}" = Microsoft_VC80_MFC_x86_x64
  1059. "{CC95E3FF-822B-47CD-9B4D-C89536615461}" = Oracle VM VirtualBox 3.2.8
  1060. "{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
  1061. "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
  1062. "{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}" = Microsoft SQL Server Compact 3.5 SP2 x64 ENU
  1063. "{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
  1064. "{FCADA26A-5672-31DD-BF0E-BA76ECF9B02D}" = Microsoft Help Viewer 1.0
  1065. "Broadcom 802.11b Network Adapter" = Broadcom 802.11 Wireless LAN Adapter
  1066. "CNXT_AUDIO_HDA" = Conexant HD Audio
  1067. "CNXT_MODEM_HDAUDIO_HERMOSA_HSF" = HDAUDIO Soft Data Fax Modem with SmartCP
  1068. "CyberGhost VPN_is1" = CyberGhost VPN Patch 4.6.9
  1069. "HashCheck Shell Extension" = HashCheck Shell Extension (x86-64)
  1070. "HP Photosmart Essential" = HP Photosmart Essential 2.5
  1071. "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
  1072. "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
  1073. "Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
  1074. "Microsoft Help Viewer 1.0" = Microsoft Help Viewer 1.0
  1075. "NVIDIA Drivers" = NVIDIA Drivers
  1076. "Sandboxie" = Sandboxie 3.48 (64-bit)
  1077. "WinRAR archiver" = WinRAR archiver
  1078.  
  1079. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
  1080. "{004B0DCB-4C60-465B-8F01-44B0A4111187}" = SlingPlayer
  1081. "{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
  1082. "{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
  1083. "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
  1084. "{06E74B9B-631F-4378-BF3A-40D868450C05}" = HPPhotoSmartPhotobookHolidayPack1
  1085. "{082702D5-5DD8-4600-BCE5-48B15174687F}" = HP Doc Viewer
  1086. "{082F8ABA-84D5-4837-9DFC-F365D91A07D4}" = HP Smart Web Printing
  1087. "{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
  1088. "{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}" = Adobe Community Help
  1089. "{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
  1090. "{112C23F2-C036-4D40-BED4-0CB47BF5555C}" = Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU
  1091. "{11BB336F-0E58-4977-B866-F24FA334616B}" = HP Active Support Library
  1092. "{12A76360-388E-4B27-ABEB-D5FC5378DD2A}" = HPPhotoSmartPhotobookWebPack1
  1093. "{14DD7530-CCD2-3798-B37D-3839ED6A441C}" = Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools
  1094. "{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}" = Microsoft Works
  1095. "{15FEDA5F-141C-4127-8D7E-B962D1742728}" = Adobe Photoshop CS5
  1096. "{172AEB5E-CBB2-4CDD-A4CF-388600825839}" = HPPhotoSmartPhotobookPlayfulPack1
  1097. "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
  1098. "{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = DVD Suite
  1099. "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
  1100. "{2284D904-C138-4B58-93EC-5C362AB5130A}" = The Sims™ Life Stories
  1101. "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
  1102. "{250E9609-E830-43EB-B379-DAB7546A2422}" = muvee autoProducer 6.1
  1103. "{254C37AA-6B72-4300-84F6-98A82419187E}" = Hewlett-Packard Active Check
  1104. "{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 21
  1105. "{2A2F3AE8-246A-4252-BB26-1BEB45627074}" = Microsoft SQL Server System CLR Types
  1106. "{306BAE03-2FF8-4794-8B96-C6E8CF4F54B9}" = FBP - Facebook Blaster Pro
  1107. "{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform
  1108. "{3248F0A8-6813-11D6-A77B-00B0D0160020}" = Java(TM) 6 Update 2
  1109. "{34BFB099-07B2-4E95-A673-7362D60866A2}" = PSSWCORE
  1110. "{34D2AB40-150D-475D-AE32-BD23FB5EE355}" = HP Quick Launch Buttons 6.30 E1
  1111. "{38EAC694-0D90-445F-8C17-8B50ADFE3162}" = Slingbox Flash Tour
  1112. "{3A2AD071-AABD-4712-A43E-11D06BAA661D}" = ImageMixer 3 SE Ver.6 Transfer Utility
  1113. "{3A9FC03D-C685-4831-94CF-4EDFD3749497}" = Microsoft SQL Server Compact 3.5 SP2 ENU
  1114. "{3F92ABBB-6BBF-11D5-B229-002078017FBF}" = NetWaiting
  1115. "{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
  1116. "{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
  1117. "{45D707E9-F3C4-11D9-A373-0050BAE317E1}" = HP QuickPlay 3.6
  1118. "{474F25F5-BDC9-40E5-B1B6-F6BF23FC106F}" = Windows Live Essentials
  1119. "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
  1120. "{4CACFCD9-F71B-413A-8DF5-1A6419D5CDC6}" = Cards_Calendar_OrderGift_DoMorePlugout
  1121. "{4E968D9C-21A7-4915-B698-F7AEB913541D}" = Microsoft SQL Server 2008 R2 Management Objects
  1122. "{59F6A514-9813-47A3-948C-8A155460CC2A}" = RICOH R5C83x/84x Flash Media Controller Driver Ver.3.52.02
  1123. "{62CA119E-C5A7-42FC-85E8-4B55AA9E4072}" = ImageMixer 3 SE Ver.6 Video Tools
  1124. "{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
  1125. "{6412CECE-8172-4BE5-935B-6CECACD2CA87}" = Windows Live Mail
  1126. "{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
  1127. "{669D4A35-146B-4314-89F1-1AC3D7B88367}" = Hewlett-Packard Asset Agent for Health Check
  1128. "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
  1129. "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
  1130. "{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
  1131. "{89E052B2-5CA5-4B7A-AF0C-28CA2836B030}" = HPPhotoSmartPhotobookModernPack1
  1132. "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
  1133. "{8E5233E1-7495-44FB-8DEB-4BE906D59619}" = Junk Mail filter update
  1134. "{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
  1135. "{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
  1136. "{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
  1137. "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
  1138. "{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
  1139. "{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
  1140. "{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
  1141. "{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
  1142. "{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
  1143. "{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
  1144. "{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
  1145. "{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
  1146. "{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
  1147. "{943B6738-4801-4982-90EC-0442EF7AEB16}" = Kaspersky Anti-Virus 2010
  1148. "{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)
  1149. "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
  1150. "{9885A11E-60E4-417C-B58B-8B31B21C0B8A}" = HP Easy Setup - Frontend
  1151. "{A07840FC-CE63-4CB8-8030-EF4B9805925A}" = HPPhotoSmartDiscLabel_PaperLabel
  1152. "{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
  1153. "{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
  1154. "{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
  1155. "{AADD1C8F-D59F-4D55-A726-768C71A205A8}" = Pinnacle Studio 14
  1156. "{AB05F2C8-F608-403b-95E1-FD8ADFACD31E}" = Windows 7 Upgrade Advisor
  1157. "{AC76BA86-7AD7-1033-7B44-A81000000003}" = Adobe Reader 8.1.0
  1158. "{AC95121F-1576-45B8-82F7-3911D27882E6}" = HPPhotoSmartPhotobookScrapbookPack1
  1159. "{ADFB9653-F44C-460C-BF58-189CC552DFFE}" = hpphotosmartdisclabelplugin
  1160. "{B4E91E95-A5BA-4E50-A465-DB7EFEB176E8}" = HPPhotoSmartDiscLabel_PrintOnDisc
  1161. "{B53620C0-3A83-4F50-A7AB-175DB64C1CE3}" = HP User Guides 0090
  1162. "{B57EAFF2-D6EE-4C6C-9175-ED9F17BFC1BC}" = Windows Live Messenger
  1163. "{B7E38540-E355-3503-AFD7-635B2F2F76E1}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974
  1164. "{BAD0FA60-09CF-4411-AE6A-C2844C8812FA}" = HP Photosmart Essential 2.5
  1165. "{BD0E2B92-3814-46F0-893B-4612EA010C7E}" = HP Customer Experience Enhancements
  1166. "{BEAD39CD-901D-4267-8B8B-EAA83CB4B70D}" = Pivot Stickfigure Animator
  1167. "{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
  1168. "{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint
  1169. "{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
  1170. "{CBAE4F50-9FC9-4557-AB36-9826DF3C103C}" = HP Wireless Assistant
  1171. "{CC4A73BF-938E-4C19-A553-853C035C9BA1}" = LightScribe System Software 1.10.13.1
  1172. "{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}" = Skype Toolbars
  1173. "{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}" = Microsoft .NET Framework 4 Multi-Targeting Pack
  1174. "{D063F201-FAC4-4D5C-B10B-615058ADE5A7}" = HP Update
  1175. "{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
  1176. "{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
  1177. "{DAEAFD68-BB4A-4507-A241-C8804D2EA66D}" = Apple Application Support
  1178. "{DD3C88A0-C53C-41D0-A21B-6D021981D23E}" = HPPhotoSmartDiscLabelContent1
  1179. "{DE3A9DC5-9A5D-6485-9662-347162C7E4CA}" = Adobe Media Player
  1180. "{E08DC77E-D09A-4e36-8067-D6DBBCC5F8DC}" = VideoToolkit01
  1181. "{E6158D07-2637-4ECF-B576-37C489669174}" = Windows Live Call
  1182. "{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.0
  1183. "{E7004147-2CCA-431C-AA05-2AB166B9785D}" = QuickTime
  1184. "{E80F62FF-5D3C-4A19-8409-9721F2928206}" = LiveUpdate (Symantec Corporation)
  1185. "{ED784556-66AA-3F17-9B58-7246ACB5C7E4}" = Microsoft Visual Basic 2010 Express - ENU
  1186. "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
  1187. "{F5577101-33CC-4711-8235-3A95BCD49DB0}" = EA Link
  1188. "{F636EE9A-F9EC-4606-BCFA-77DD0E210788}" = HPPhotoSmartDiscLabel_Tattoo
  1189. "{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
  1190. "Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
  1191. "Adobe AIR" = Adobe AIR
  1192. "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
  1193. "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
  1194. "AIM_7" = AIM 7
  1195. "Ardamax Keylogger" = Ardamax Keylogger 2.9
  1196. "Cain & Abel v4.9.35" = Cain & Abel v4.9.35
  1197. "chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
  1198. "com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Media Player
  1199. "FileZilla Client" = FileZilla Client 3.3.4.1
  1200. "FileZilla Server" = FileZilla Server (remove only)
  1201. "HashCheck Shell Extension" = HashCheck Shell Extension (x86-32)
  1202. "Hauppauge MCE2005 Software Encoder" = Hauppauge MCE XP/Vista Software Encoder (2.0.25149)
  1203. "HOMESTUDENTR" = Microsoft Office Home and Student 2007
  1204. "HP Smart Web Printing" = HP Smart Web Printing
  1205. "InstallShield_{004B0DCB-4C60-465B-8F01-44B0A4111187}" = SlingPlayer
  1206. "InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
  1207. "InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector
  1208. "InstallShield_{F5577101-33CC-4711-8235-3A95BCD49DB0}" = EA Link
  1209. "InstallWIX_{943B6738-4801-4982-90EC-0442EF7AEB16}" = Kaspersky Anti-Virus 2010
  1210. "LimeWire" = LimeWire 5.5.16
  1211. "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
  1212. "Microsoft Visual Basic 2010 Express - ENU" = Microsoft Visual Basic 2010 Express - ENU
  1213. "Mozilla Firefox (3.6.13)" = Mozilla Firefox (3.6.13)
  1214. "MSNINST" = MSN
  1215. "NoIPDUC" = No-IP DUC
  1216. "OJOsoft Total Video Converter_is1" = OJOsoft Total Video Converter
  1217. "OpenVPN" = OpenVPN 2.1.1
  1218. "PFPortChecker" = PFPortChecker 1.0.36
  1219. "Portforward Static IP Address" = Portforward Static IP Address 1.0.44
  1220. "ProxyFirewall_is1" = ProxyFirewall 1.0.4 Beta
  1221. "PsuedoLiveUpdate" = LiveUpdate (Symantec Corporation)
  1222. "Rainmeter" = Rainmeter (remove only)
  1223. "SlingMedia.QPSlingPlayer_is1" = QuickPlay SlingPlayer 0.4.6
  1224. "SoftwareUpdUtility" = Download Updater (AOL LLC)
  1225. "TeamViewer 5" = TeamViewer 5
  1226. "ViewpointMediaPlayer" = Viewpoint Media Player
  1227. "West Point Bridge Designer 2010 (2nd Edition)" = West Point Bridge Designer 2010 (2nd Edition) (remove only)
  1228. "WildTangent hp Master Uninstall" = My HP Games
  1229. "WinLiveSuite_Wave3" = Windows Live Essentials
  1230. "WinPcapInst" = WinPcap 4.1.1
  1231. "Wisdom-soft Set up ScreenHunter 5.1 Free" = Wisdom-soft Set up ScreenHunter 5.1 Free
  1232. "Yahoo! Companion" = Yahoo! Toolbar
  1233. "Yahoo! Toolbar" = Yahoo! Toolbar
  1234.  
  1235. [color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color]
  1236.  
  1237. [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
  1238. "{8EB85C0E-DE7D-4A53-BD66-708B8F2C80B0}" = HHD Software Free Hex Editor Neo 4.95
  1239. "Xilisoft Download YouTube Video" = Xilisoft Download YouTube Video
  1240.  
  1241. [color=#E56717]========== Last 10 Event Log Errors ==========[/color]
  1242.  
  1243. Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!
  1244.  
  1245. < End of report >
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!