API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jul 9th, 2017
125
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 55.71 KB | None | 0 0
raw download clone embed print report
  1. OTL Extras logfile created on: 12/31/2010 5:37:48 PM - Run 1
  2. OTL by OldTimer - Version 3.2.18.2 Folder = C:\Documents and Settings\Compaq_Owner\My Documents\Downloads
  3. Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
  4. Internet Explorer (Version = 6.0.2900.2180)
  5. Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
  6.  
  7. 247.00 Mb Total Physical Memory | 32.00 Mb Available Physical Memory | 13.00% Memory free
  8. 606.00 Mb Paging File | 247.00 Mb Available in Paging File | 41.00% Paging File free
  9. Paging file location(s): C:\pagefile.sys 372 744 [binary data]
  10.  
  11. %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
  12. Drive C: | 69.86 Gb Total Space | 61.17 Gb Free Space | 87.57% Space Free | Partition Type: NTFS
  13. Drive D: | 4.66 Gb Total Space | 0.79 Gb Free Space | 16.90% Space Free | Partition Type: FAT32
  14.  
  15. Computer Name: COOLCOMPUTER | User Name: Compaq_Owner | Logged in as Administrator.
  16. Boot Mode: Normal | Scan Mode: Current user
  17. Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
  18.  
  19. [color=#E56717]========== Extra Registry (SafeList) ==========[/color]
  20.  
  21.  
  22. [color=#E56717]========== File Associations ==========[/color]
  23.  
  24. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
  25.  
  26. [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
  27. .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
  28.  
  29. [color=#E56717]========== Shell Spawning ==========[/color]
  30.  
  31. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
  32. batfile [open] -- "%1" %*
  33. cmdfile [open] -- "%1" %*
  34. comfile [open] -- "%1" %*
  35. exefile [open] -- "%1" %*
  36. htmlfile [edit] -- Reg Error: Key error.
  37. piffile [open] -- "%1" %*
  38. regfile [merge] -- Reg Error: Key error.
  39. scrfile [config] -- "%1"
  40. scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
  41. scrfile [open] -- "%1" /S
  42. txtfile [edit] -- Reg Error: Key error.
  43. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
  44. Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  45. Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
  46. Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
  47. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  48.  
  49. [color=#E56717]========== Security Center Settings ==========[/color]
  50.  
  51. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
  52. "FirstRunDisabled" = 1
  53. "AntiVirusDisableNotify" = 0
  54. "FirewallDisableNotify" = 1
  55. "UpdatesDisableNotify" = 0
  56. "AntiVirusOverride" = 0
  57. "FirewallOverride" = 0
  58.  
  59. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
  60.  
  61. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
  62.  
  63. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
  64.  
  65. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
  66.  
  67. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
  68.  
  69. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
  70.  
  71. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
  72.  
  73. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
  74.  
  75. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
  76.  
  77. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
  78. "DisableMonitoring" = 1
  79.  
  80. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
  81.  
  82. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
  83.  
  84. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
  85.  
  86. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
  87.  
  88. [color=#E56717]========== System Restore Settings ==========[/color]
  89.  
  90. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
  91. "DisableSR" = 0
  92.  
  93. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
  94. "Start" = 0
  95.  
  96. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
  97. "Start" = 2
  98.  
  99. [color=#E56717]========== Firewall Settings ==========[/color]
  100.  
  101. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
  102.  
  103. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
  104. "139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
  105. "445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
  106. "137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
  107. "138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
  108.  
  109. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
  110. "EnableFirewall" = 0
  111.  
  112. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
  113. "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
  114. "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
  115. "139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
  116. "445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
  117. "137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
  118. "138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
  119.  
  120. [color=#E56717]========== Authorized Applications List ==========[/color]
  121.  
  122. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
  123.  
  124. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
  125. "C:\Program Files\Compaq Connections\6750491\Program\Compaq Connections.exe" = C:\Program Files\Compaq Connections\6750491\Program\Compaq Connections.exe:*:Enabled:BackWeb for Presario -- ()
  126. "C:\Program Files\EarthLink TotalAccess\TaskPanl.exe" = C:\Program Files\EarthLink TotalAccess\TaskPanl.exe:*:Enabled:Earthlink -- File not found
  127. "C:\WINDOWS\system32\MPK\Mpk.exe" = C:\WINDOWS\system32\MPK\Mpk.exe:*:Enabled:TCP\IP -- ()
  128. "C:\WINDOWS\system32\MPK\MpkView.exe" = C:\WINDOWS\system32\MPK\MpkView.exe:*:Enabled:TCP\IP -- ()
  129. "C:\Program Files\AIM\aim.exe" = C:\Program Files\AIM\aim.exe:*:Enabled:AIM -- File not found
  130.  
  131.  
  132. [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
  133.  
  134. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
  135. "{07FCBED5-94C3-4F94-B9D3-360FA27C7B06}" = Microsoft Windows SDK for Visual Studio 2008 Express Tools for Win32
  136. "{0EB5D9B7-8E6C-4A9E-B74F-16B7EE89A67B}" = Microsoft Plus! Photo Story 2 LE
  137. "{12E2B9E9-05B1-407d-B0FD-B5F350535125}" = Norton Internet Security
  138. "{14589F05-C658-4594-9429-D437BA688686}" = IntelliMover Data Transfer Demo
  139. "{1526D87C-A955-4FAB-BF18-697BA457E352}" = Norton WMI Update
  140. "{1A103D70-5C9B-4E1A-B306-5106C68F9914}" = Microsoft Plus! Dancer LE
  141. "{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
  142. "{3BD0196C-6553-460c-A0C4-90D8AE5D60D2}" = Norton Personal Firewall
  143. "{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
  144. "{470419EB-C5BE-41D3-8323-0E5DEBF69FAE}" = ccCommon
  145. "{48185814-A224-447a-81DA-71BD20580E1B}" = Norton Internet Security
  146. "{503AA035-41E2-4858-B31F-1E49AC66C309}" = Norton Security Center
  147. "{526AD5DC-CFC4-4f2a-8442-C84CC91D6C7F}" = Norton Internet Security
  148. "{7148F0A8-6813-11D6-A77B-00B0D0142030}" = Java 2 Runtime Environment, SE v1.4.2_03
  149. "{764D06D8-D8DE-411E-A1C8-D9E9380F8A84}" = Microsoft Works 7.0
  150. "{91AA4B1F-B918-4e0b-A304-F8D4EC5D7726}" = Norton Internet Security
  151. "{9C2DC81B-8114-37D9-A922-95E460A1FAFB}" = Microsoft Visual Basic 2008 Express Edition - ENU
  152. "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
  153. "{A398F2DC-D706-4bb2-AC38-5532CD229D08}" = CC_ccProxyMSI
  154. "{AC76BA86-0000-0000-0000-6028747ADE01}" = Adobe Acrobat - Reader 6.0.2 Update
  155. "{AC76BA86-7AD7-1033-7B44-A00000000001}" = Adobe Reader 6.0.1
  156. "{B1E27F87-795B-4350-869B-A5527FB60976}" = CC_ccStart
  157. "{B4C0A315-07FB-39F9-85CD-8CE20C019350}" = Microsoft Windows SDK for Visual Studio 2008 Express Tools for .NET Framework
  158. "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
  159. "{C9D599E1-6B68-4a1f-8A4F-A1DB433DB1BF}" = Norton Internet Security
  160. "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
  161. "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
  162. "{DB518BA6-CB74-4EB6-9ABD-880B6D6E1F38}" = HpSdpAppCoreApp
  163. "{E895DA24-F96E-4729-9E38-E996E6297E55}" = Norton Internet Security
  164. "{FC2C0536-583C-46c0-844A-62CECAE01F22}" = Norton Internet Security
  165. "{FC37ABD0-2108-4beb-B010-1254E0662B5A}" = MSRedist
  166. "Adobe Flash Player Plugin" = Adobe Flash Player Plugin
  167. "BackWeb-6750491 Uninstaller" = Compaq Connections
  168. "Help and Support Additions" = Help and Support Additions
  169. "LiveReg" = LiveReg (Symantec Corporation)
  170. "LiveUpdate" = LiveUpdate 1.90 (Symantec Corporation)
  171. "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
  172. "McAfee Security Scan" = McAfee Security Scan
  173. "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
  174. "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
  175. "Microsoft Visual Basic 2008 Express Edition - ENU" = Microsoft Visual Basic 2008 Express Edition - ENU
  176. "Mozilla Firefox (3.5.6)" = Mozilla Firefox (3.5.6)
  177. "NVIDIA GART Driver" = NVIDIA GART Driver
  178. "PS2" = PS2
  179. "S3" = UniChrome Series Driver and Utilities
  180. "SoftwareUpdUtility" = Download Updater (AOL LLC)
  181. "SymSetup.{3BD0196C-6553-460c-A0C4-90D8AE5D60D2}" = Norton Personal Firewall (Symantec Corporation)
  182. "VTDisplay" = S3 S3Display
  183. "VTGamma2" = S3 S3Gamma2
  184. "VTInfo2" = S3 S3Info2
  185. "VTOverlay" = S3 S3Overlay
  186. "WIC" = Windows Imaging Component
  187. "WinRAR archiver" = WinRAR archiver
  188.  
  189. [color=#E56717]========== Last 10 Event Log Errors ==========[/color]
  190.  
  191. [ Application Events ]
  192. Error - 12/21/2009 3:52:47 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1002
  193. Description = Hanging application firefox.exe, version 1.9.1.3523, hang module hungapp,
  194. version 0.0.0.0, hang address 0x00000000.
  195.  
  196. Error - 12/21/2009 4:00:00 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1001
  197. Description = Fault bucket 1437517761.
  198.  
  199. Error - 12/21/2009 4:00:00 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1001
  200. Description = Fault bucket 1437517761.
  201.  
  202. Error - 12/21/2009 4:00:00 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1001
  203. Description = Fault bucket 1437517761.
  204.  
  205. Error - 12/22/2009 3:20:42 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1002
  206. Description = Hanging application firefox.exe, version 1.9.1.3523, hang module hungapp,
  207. version 0.0.0.0, hang address 0x00000000.
  208.  
  209. Error - 8/18/2010 4:56:59 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1002
  210. Description = Hanging application nda.exe, version 1.0.0.206, hang module hungapp,
  211. version 0.0.0.0, hang address 0x00000000.
  212.  
  213. Error - 8/18/2010 5:01:24 PM | Computer Name = COOLCOMPUTER | Source = MsiInstaller | ID = 11001
  214. Description =
  215.  
  216. Error - 8/18/2010 5:06:40 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1002
  217. Description = Hanging application UnWisePW32.exe, version 0.0.0.0, hang module hungapp,
  218. version 0.0.0.0, hang address 0x00000000.
  219.  
  220. Error - 8/18/2010 5:50:09 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1002
  221. Description = Hanging application firefox.exe, version 1.9.1.3622, hang module hungapp,
  222. version 0.0.0.0, hang address 0x00000000.
  223.  
  224. Error - 8/18/2010 5:50:15 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1001
  225. Description = Fault bucket 1589847310.
  226.  
  227. [ System Events ]
  228. Error - 8/18/2010 5:08:38 PM | Computer Name = COOLCOMPUTER | Source = Service Control Manager | ID = 7023
  229. Description = The Application Management service terminated with the following error:
  230. %%126
  231.  
  232. Error - 8/18/2010 5:08:38 PM | Computer Name = COOLCOMPUTER | Source = Service Control Manager | ID = 7023
  233. Description = The Application Management service terminated with the following error:
  234. %%126
  235.  
  236. Error - 8/18/2010 5:08:39 PM | Computer Name = COOLCOMPUTER | Source = Service Control Manager | ID = 7023
  237. Description = The Application Management service terminated with the following error:
  238. %%126
  239.  
  240. Error - 8/18/2010 5:52:46 PM | Computer Name = COOLCOMPUTER | Source = Windows Update Agent | ID = 20
  241. Description = Installation Failure: Windows failed to install the following update
  242. with error 0x80070643: Internet Explorer 8 for Windows XP.
  243.  
  244. Error - 9/12/2010 8:12:57 AM | Computer Name = COOLCOMPUTER | Source = W32Time | ID = 39452689
  245. Description = Time Provider NtpClient: An error occurred during DNS lookup of the
  246. manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup
  247. again in 15 minutes. The error was: A socket operation was attempted to an unreachable
  248. host. (0x80072751)
  249.  
  250. Error - 9/12/2010 8:12:57 AM | Computer Name = COOLCOMPUTER | Source = W32Time | ID = 39452701
  251. Description = The time provider NtpClient is configured to acquire time from one
  252. or more time sources, however none of the sources are currently accessible. No attempt
  253. to contact a source will be made for 14 minutes. NtpClient has no source of accurate
  254. time.
  255.  
  256. Error - 9/12/2010 9:52:30 AM | Computer Name = COOLCOMPUTER | Source = W32Time | ID = 39452689
  257. Description = Time Provider NtpClient: An error occurred during DNS lookup of the
  258. manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup
  259. again in 15 minutes. The error was: A socket operation was attempted to an unreachable
  260. host. (0x80072751)
  261.  
  262. Error - 9/12/2010 9:52:30 AM | Computer Name = COOLCOMPUTER | Source = W32Time | ID = 39452701
  263. Description = The time provider NtpClient is configured to acquire time from one
  264. or more time sources, however none of the sources are currently accessible. No attempt
  265. to contact a source will be made for 14 minutes. NtpClient has no source of accurate
  266. time.
  267.  
  268. Error - 9/12/2010 9:52:46 AM | Computer Name = COOLCOMPUTER | Source = W32Time | ID = 39452689
  269. Description = Time Provider NtpClient: An error occurred during DNS lookup of the
  270. manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup
  271. again in 15 minutes. The error was: A socket operation was attempted to an unreachable
  272. host. (0x80072751)
  273.  
  274. Error - 9/12/2010 9:52:46 AM | Computer Name = COOLCOMPUTER | Source = W32Time | ID = 39452701
  275. Description = The time provider NtpClient is configured to acquire time from one
  276. or more time sources, however none of the sources are currently accessible. No attempt
  277. to contact a source will be made for 14 minutes. NtpClient has no source of accurate
  278. time.
  279.  
  280.  
  281. < End of report >
  282.  
  283. [color=#E56717]========== Extra Registry (SafeList) ==========[/color]
  284.  
  285.  
  286. [color=#E56717]========== File Associations ==========[/color]
  287.  
  288. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
  289.  
  290. [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
  291. .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
  292.  
  293. [color=#E56717]========== Shell Spawning ==========[/color]
  294.  
  295. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
  296. batfile [open] -- "%1" %*
  297. cmdfile [open] -- "%1" %*
  298. comfile [open] -- "%1" %*
  299. exefile [open] -- "%1" %*
  300. htmlfile [edit] -- Reg Error: Key error.
  301. piffile [open] -- "%1" %*
  302. regfile [merge] -- Reg Error: Key error.
  303. scrfile [config] -- "%1"
  304. scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
  305. scrfile [open] -- "%1" /S
  306. txtfile [edit] -- Reg Error: Key error.
  307. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
  308. Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  309. Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
  310. Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
  311. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  312.  
  313. [color=#E56717]========== Security Center Settings ==========[/color]
  314.  
  315. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
  316. "FirstRunDisabled" = 1
  317. "AntiVirusDisableNotify" = 0
  318. "FirewallDisableNotify" = 1
  319. "UpdatesDisableNotify" = 0
  320. "AntiVirusOverride" = 0
  321. "FirewallOverride" = 0
  322.  
  323. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
  324.  
  325. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
  326.  
  327. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
  328.  
  329. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
  330.  
  331. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
  332.  
  333. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
  334.  
  335. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
  336.  
  337. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
  338.  
  339. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
  340.  
  341. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
  342. "DisableMonitoring" = 1
  343.  
  344. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
  345.  
  346. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
  347.  
  348. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
  349.  
  350. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
  351.  
  352. [color=#E56717]========== System Restore Settings ==========[/color]
  353.  
  354. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
  355. "DisableSR" = 0
  356.  
  357. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
  358. "Start" = 0
  359.  
  360. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
  361. "Start" = 2
  362.  
  363. [color=#E56717]========== Firewall Settings ==========[/color]
  364.  
  365. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
  366.  
  367. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
  368. "139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
  369. "445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
  370. "137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
  371. "138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
  372.  
  373. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
  374. "EnableFirewall" = 0
  375.  
  376. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
  377. "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
  378. "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
  379. "139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
  380. "445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
  381. "137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
  382. "138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
  383.  
  384. [color=#E56717]========== Authorized Applications List ==========[/color]
  385.  
  386. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
  387.  
  388. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
  389. "C:\Program Files\Compaq Connections\6750491\Program\Compaq Connections.exe" = C:\Program Files\Compaq Connections\6750491\Program\Compaq Connections.exe:*:Enabled:BackWeb for Presario -- ()
  390. "C:\Program Files\EarthLink TotalAccess\TaskPanl.exe" = C:\Program Files\EarthLink TotalAccess\TaskPanl.exe:*:Enabled:Earthlink -- File not found
  391. "C:\WINDOWS\system32\MPK\Mpk.exe" = C:\WINDOWS\system32\MPK\Mpk.exe:*:Enabled:TCP\IP -- ()
  392. "C:\WINDOWS\system32\MPK\MpkView.exe" = C:\WINDOWS\system32\MPK\MpkView.exe:*:Enabled:TCP\IP -- ()
  393. "C:\Program Files\AIM\aim.exe" = C:\Program Files\AIM\aim.exe:*:Enabled:AIM -- File not found
  394.  
  395.  
  396. [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
  397.  
  398. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
  399. "{07FCBED5-94C3-4F94-B9D3-360FA27C7B06}" = Microsoft Windows SDK for Visual Studio 2008 Express Tools for Win32
  400. "{0EB5D9B7-8E6C-4A9E-B74F-16B7EE89A67B}" = Microsoft Plus! Photo Story 2 LE
  401. "{12E2B9E9-05B1-407d-B0FD-B5F350535125}" = Norton Internet Security
  402. "{14589F05-C658-4594-9429-D437BA688686}" = IntelliMover Data Transfer Demo
  403. "{1526D87C-A955-4FAB-BF18-697BA457E352}" = Norton WMI Update
  404. "{1A103D70-5C9B-4E1A-B306-5106C68F9914}" = Microsoft Plus! Dancer LE
  405. "{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
  406. "{3BD0196C-6553-460c-A0C4-90D8AE5D60D2}" = Norton Personal Firewall
  407. "{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
  408. "{470419EB-C5BE-41D3-8323-0E5DEBF69FAE}" = ccCommon
  409. "{48185814-A224-447a-81DA-71BD20580E1B}" = Norton Internet Security
  410. "{503AA035-41E2-4858-B31F-1E49AC66C309}" = Norton Security Center
  411. "{526AD5DC-CFC4-4f2a-8442-C84CC91D6C7F}" = Norton Internet Security
  412. "{7148F0A8-6813-11D6-A77B-00B0D0142030}" = Java 2 Runtime Environment, SE v1.4.2_03
  413. "{764D06D8-D8DE-411E-A1C8-D9E9380F8A84}" = Microsoft Works 7.0
  414. "{91AA4B1F-B918-4e0b-A304-F8D4EC5D7726}" = Norton Internet Security
  415. "{9C2DC81B-8114-37D9-A922-95E460A1FAFB}" = Microsoft Visual Basic 2008 Express Edition - ENU
  416. "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
  417. "{A398F2DC-D706-4bb2-AC38-5532CD229D08}" = CC_ccProxyMSI
  418. "{AC76BA86-0000-0000-0000-6028747ADE01}" = Adobe Acrobat - Reader 6.0.2 Update
  419. "{AC76BA86-7AD7-1033-7B44-A00000000001}" = Adobe Reader 6.0.1
  420. "{B1E27F87-795B-4350-869B-A5527FB60976}" = CC_ccStart
  421. "{B4C0A315-07FB-39F9-85CD-8CE20C019350}" = Microsoft Windows SDK for Visual Studio 2008 Express Tools for .NET Framework
  422. "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
  423. "{C9D599E1-6B68-4a1f-8A4F-A1DB433DB1BF}" = Norton Internet Security
  424. "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
  425. "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
  426. "{DB518BA6-CB74-4EB6-9ABD-880B6D6E1F38}" = HpSdpAppCoreApp
  427. "{E895DA24-F96E-4729-9E38-E996E6297E55}" = Norton Internet Security
  428. "{FC2C0536-583C-46c0-844A-62CECAE01F22}" = Norton Internet Security
  429. "{FC37ABD0-2108-4beb-B010-1254E0662B5A}" = MSRedist
  430. "Adobe Flash Player Plugin" = Adobe Flash Player Plugin
  431. "BackWeb-6750491 Uninstaller" = Compaq Connections
  432. "Help and Support Additions" = Help and Support Additions
  433. "LiveReg" = LiveReg (Symantec Corporation)
  434. "LiveUpdate" = LiveUpdate 1.90 (Symantec Corporation)
  435. "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
  436. "McAfee Security Scan" = McAfee Security Scan
  437. "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
  438. "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
  439. "Microsoft Visual Basic 2008 Express Edition - ENU" = Microsoft Visual Basic 2008 Express Edition - ENU
  440. "Mozilla Firefox (3.5.6)" = Mozilla Firefox (3.5.6)
  441. "NVIDIA GART Driver" = NVIDIA GART Driver
  442. "PS2" = PS2
  443. "S3" = UniChrome Series Driver and Utilities
  444. "SoftwareUpdUtility" = Download Updater (AOL LLC)
  445. "SymSetup.{3BD0196C-6553-460c-A0C4-90D8AE5D60D2}" = Norton Personal Firewall (Symantec Corporation)
  446. "VTDisplay" = S3 S3Display
  447. "VTGamma2" = S3 S3Gamma2
  448. "VTInfo2" = S3 S3Info2
  449. "VTOverlay" = S3 S3Overlay
  450. "WIC" = Windows Imaging Component
  451. "WinRAR archiver" = WinRAR archiver
  452.  
  453. [color=#E56717]========== Last 10 Event Log Errors ==========[/color]
  454.  
  455. [ Application Events ]
  456. Error - 12/21/2009 3:52:47 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1002
  457. Description = Hanging application firefox.exe, version 1.9.1.3523, hang module hungapp,
  458. version 0.0.0.0, hang address 0x00000000.
  459.  
  460. Error - 12/21/2009 4:00:00 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1001
  461. Description = Fault bucket 1437517761.
  462.  
  463. Error - 12/21/2009 4:00:00 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1001
  464. Description = Fault bucket 1437517761.
  465.  
  466. Error - 12/21/2009 4:00:00 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1001
  467. Description = Fault bucket 1437517761.
  468.  
  469. Error - 12/22/2009 3:20:42 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1002
  470. Description = Hanging application firefox.exe, version 1.9.1.3523, hang module hungapp,
  471. version 0.0.0.0, hang address 0x00000000.
  472.  
  473. Error - 8/18/2010 4:56:59 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1002
  474. Description = Hanging application nda.exe, version 1.0.0.206, hang module hungapp,
  475. version 0.0.0.0, hang address 0x00000000.
  476.  
  477. Error - 8/18/2010 5:01:24 PM | Computer Name = COOLCOMPUTER | Source = MsiInstaller | ID = 11001
  478. Description =
  479.  
  480. Error - 8/18/2010 5:06:40 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1002
  481. Description = Hanging application UnWisePW32.exe, version 0.0.0.0, hang module hungapp,
  482. version 0.0.0.0, hang address 0x00000000.
  483.  
  484. Error - 8/18/2010 5:50:09 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1002
  485. Description = Hanging application firefox.exe, version 1.9.1.3622, hang module hungapp,
  486. version 0.0.0.0, hang address 0x00000000.
  487.  
  488. Error - 8/18/2010 5:50:15 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1001
  489. Description = Fault bucket 1589847310.
  490.  
  491. [ System Events ]
  492. Error - 8/18/2010 5:08:38 PM | Computer Name = COOLCOMPUTER | Source = Service Control Manager | ID = 7023
  493. Description = The Application Management service terminated with the following error:
  494. %%126
  495.  
  496. Error - 8/18/2010 5:08:38 PM | Computer Name = COOLCOMPUTER | Source = Service Control Manager | ID = 7023
  497. Description = The Application Management service terminated with the following error:
  498. %%126
  499.  
  500. Error - 8/18/2010 5:08:39 PM | Computer Name = COOLCOMPUTER | Source = Service Control Manager | ID = 7023
  501. Description = The Application Management service terminated with the following error:
  502. %%126
  503.  
  504. Error - 8/18/2010 5:52:46 PM | Computer Name = COOLCOMPUTER | Source = Windows Update Agent | ID = 20
  505. Description = Installation Failure: Windows failed to install the following update
  506. with error 0x80070643: Internet Explorer 8 for Windows XP.
  507.  
  508. Error - 9/12/2010 8:12:57 AM | Computer Name = COOLCOMPUTER | Source = W32Time | ID = 39452689
  509. Description = Time Provider NtpClient: An error occurred during DNS lookup of the
  510. manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup
  511. again in 15 minutes. The error was: A socket operation was attempted to an unreachable
  512. host. (0x80072751)
  513.  
  514. Error - 9/12/2010 8:12:57 AM | Computer Name = COOLCOMPUTER | Source = W32Time | ID = 39452701
  515. Description = The time provider NtpClient is configured to acquire time from one
  516. or more time sources, however none of the sources are currently accessible. No attempt
  517. to contact a source will be made for 14 minutes. NtpClient has no source of accurate
  518. time.
  519.  
  520. Error - 9/12/2010 9:52:30 AM | Computer Name = COOLCOMPUTER | Source = W32Time | ID = 39452689
  521. Description = Time Provider NtpClient: An error occurred during DNS lookup of the
  522. manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup
  523. again in 15 minutes. The error was: A socket operation was attempted to an unreachable
  524. host. (0x80072751)
  525.  
  526. Error - 9/12/2010 9:52:30 AM | Computer Name = COOLCOMPUTER | Source = W32Time | ID = 39452701
  527. Description = The time provider NtpClient is configured to acquire time from one
  528. or more time sources, however none of the sources are currently accessible. No attempt
  529. to contact a source will be made for 14 minutes. NtpClient has no source of accurate
  530. time.
  531.  
  532. Error - 9/12/2010 9:52:46 AM | Computer Name = COOLCOMPUTER | Source = W32Time | ID = 39452689
  533. Description = Time Provider NtpClient: An error occurred during DNS lookup of the
  534. manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup
  535. again in 15 minutes. The error was: A socket operation was attempted to an unreachable
  536. host. (0x80072751)
  537.  
  538. Error - 9/12/2010 9:52:46 AM | Computer Name = COOLCOMPUTER | Source = W32Time | ID = 39452701
  539. Description = The time provider NtpClient is configured to acquire time from one
  540. or more time sources, however none of the sources are currently accessible. No attempt
  541. to contact a source will be made for 14 minutes. NtpClient has no source of accurate
  542. time.
  543.  
  544.  
  545. < End of report >
  546.  
  547. [color=#E56717]========== Extra Registry (SafeList) ==========[/color]
  548.  
  549.  
  550. [color=#E56717]========== File Associations ==========[/color]
  551.  
  552. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
  553.  
  554. [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
  555. .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
  556.  
  557. [color=#E56717]========== Shell Spawning ==========[/color]
  558.  
  559. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
  560. batfile [open] -- "%1" %*
  561. cmdfile [open] -- "%1" %*
  562. comfile [open] -- "%1" %*
  563. exefile [open] -- "%1" %*
  564. htmlfile [edit] -- Reg Error: Key error.
  565. piffile [open] -- "%1" %*
  566. regfile [merge] -- Reg Error: Key error.
  567. scrfile [config] -- "%1"
  568. scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
  569. scrfile [open] -- "%1" /S
  570. txtfile [edit] -- Reg Error: Key error.
  571. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
  572. Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  573. Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
  574. Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
  575. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  576.  
  577. [color=#E56717]========== Security Center Settings ==========[/color]
  578.  
  579. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
  580. "FirstRunDisabled" = 1
  581. "AntiVirusDisableNotify" = 0
  582. "FirewallDisableNotify" = 1
  583. "UpdatesDisableNotify" = 0
  584. "AntiVirusOverride" = 0
  585. "FirewallOverride" = 0
  586.  
  587. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
  588.  
  589. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
  590.  
  591. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
  592.  
  593. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
  594.  
  595. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
  596.  
  597. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
  598.  
  599. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
  600.  
  601. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
  602.  
  603. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
  604.  
  605. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
  606. "DisableMonitoring" = 1
  607.  
  608. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
  609.  
  610. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
  611.  
  612. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
  613.  
  614. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
  615.  
  616. [color=#E56717]========== System Restore Settings ==========[/color]
  617.  
  618. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
  619. "DisableSR" = 0
  620.  
  621. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
  622. "Start" = 0
  623.  
  624. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
  625. "Start" = 2
  626.  
  627. [color=#E56717]========== Firewall Settings ==========[/color]
  628.  
  629. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
  630.  
  631. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
  632. "139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
  633. "445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
  634. "137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
  635. "138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
  636.  
  637. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
  638. "EnableFirewall" = 0
  639.  
  640. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
  641. "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
  642. "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
  643. "139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
  644. "445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
  645. "137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
  646. "138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
  647.  
  648. [color=#E56717]========== Authorized Applications List ==========[/color]
  649.  
  650. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
  651.  
  652. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
  653. "C:\Program Files\Compaq Connections\6750491\Program\Compaq Connections.exe" = C:\Program Files\Compaq Connections\6750491\Program\Compaq Connections.exe:*:Enabled:BackWeb for Presario -- ()
  654. "C:\Program Files\EarthLink TotalAccess\TaskPanl.exe" = C:\Program Files\EarthLink TotalAccess\TaskPanl.exe:*:Enabled:Earthlink -- File not found
  655. "C:\WINDOWS\system32\MPK\Mpk.exe" = C:\WINDOWS\system32\MPK\Mpk.exe:*:Enabled:TCP\IP -- ()
  656. "C:\WINDOWS\system32\MPK\MpkView.exe" = C:\WINDOWS\system32\MPK\MpkView.exe:*:Enabled:TCP\IP -- ()
  657. "C:\Program Files\AIM\aim.exe" = C:\Program Files\AIM\aim.exe:*:Enabled:AIM -- File not found
  658.  
  659.  
  660. [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
  661.  
  662. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
  663. "{07FCBED5-94C3-4F94-B9D3-360FA27C7B06}" = Microsoft Windows SDK for Visual Studio 2008 Express Tools for Win32
  664. "{0EB5D9B7-8E6C-4A9E-B74F-16B7EE89A67B}" = Microsoft Plus! Photo Story 2 LE
  665. "{12E2B9E9-05B1-407d-B0FD-B5F350535125}" = Norton Internet Security
  666. "{14589F05-C658-4594-9429-D437BA688686}" = IntelliMover Data Transfer Demo
  667. "{1526D87C-A955-4FAB-BF18-697BA457E352}" = Norton WMI Update
  668. "{1A103D70-5C9B-4E1A-B306-5106C68F9914}" = Microsoft Plus! Dancer LE
  669. "{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
  670. "{3BD0196C-6553-460c-A0C4-90D8AE5D60D2}" = Norton Personal Firewall
  671. "{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
  672. "{470419EB-C5BE-41D3-8323-0E5DEBF69FAE}" = ccCommon
  673. "{48185814-A224-447a-81DA-71BD20580E1B}" = Norton Internet Security
  674. "{503AA035-41E2-4858-B31F-1E49AC66C309}" = Norton Security Center
  675. "{526AD5DC-CFC4-4f2a-8442-C84CC91D6C7F}" = Norton Internet Security
  676. "{7148F0A8-6813-11D6-A77B-00B0D0142030}" = Java 2 Runtime Environment, SE v1.4.2_03
  677. "{764D06D8-D8DE-411E-A1C8-D9E9380F8A84}" = Microsoft Works 7.0
  678. "{91AA4B1F-B918-4e0b-A304-F8D4EC5D7726}" = Norton Internet Security
  679. "{9C2DC81B-8114-37D9-A922-95E460A1FAFB}" = Microsoft Visual Basic 2008 Express Edition - ENU
  680. "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
  681. "{A398F2DC-D706-4bb2-AC38-5532CD229D08}" = CC_ccProxyMSI
  682. "{AC76BA86-0000-0000-0000-6028747ADE01}" = Adobe Acrobat - Reader 6.0.2 Update
  683. "{AC76BA86-7AD7-1033-7B44-A00000000001}" = Adobe Reader 6.0.1
  684. "{B1E27F87-795B-4350-869B-A5527FB60976}" = CC_ccStart
  685. "{B4C0A315-07FB-39F9-85CD-8CE20C019350}" = Microsoft Windows SDK for Visual Studio 2008 Express Tools for .NET Framework
  686. "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
  687. "{C9D599E1-6B68-4a1f-8A4F-A1DB433DB1BF}" = Norton Internet Security
  688. "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
  689. "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
  690. "{DB518BA6-CB74-4EB6-9ABD-880B6D6E1F38}" = HpSdpAppCoreApp
  691. "{E895DA24-F96E-4729-9E38-E996E6297E55}" = Norton Internet Security
  692. "{FC2C0536-583C-46c0-844A-62CECAE01F22}" = Norton Internet Security
  693. "{FC37ABD0-2108-4beb-B010-1254E0662B5A}" = MSRedist
  694. "Adobe Flash Player Plugin" = Adobe Flash Player Plugin
  695. "BackWeb-6750491 Uninstaller" = Compaq Connections
  696. "Help and Support Additions" = Help and Support Additions
  697. "LiveReg" = LiveReg (Symantec Corporation)
  698. "LiveUpdate" = LiveUpdate 1.90 (Symantec Corporation)
  699. "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
  700. "McAfee Security Scan" = McAfee Security Scan
  701. "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
  702. "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
  703. "Microsoft Visual Basic 2008 Express Edition - ENU" = Microsoft Visual Basic 2008 Express Edition - ENU
  704. "Mozilla Firefox (3.5.6)" = Mozilla Firefox (3.5.6)
  705. "NVIDIA GART Driver" = NVIDIA GART Driver
  706. "PS2" = PS2
  707. "S3" = UniChrome Series Driver and Utilities
  708. "SoftwareUpdUtility" = Download Updater (AOL LLC)
  709. "SymSetup.{3BD0196C-6553-460c-A0C4-90D8AE5D60D2}" = Norton Personal Firewall (Symantec Corporation)
  710. "VTDisplay" = S3 S3Display
  711. "VTGamma2" = S3 S3Gamma2
  712. "VTInfo2" = S3 S3Info2
  713. "VTOverlay" = S3 S3Overlay
  714. "WIC" = Windows Imaging Component
  715. "WinRAR archiver" = WinRAR archiver
  716.  
  717. [color=#E56717]========== Last 10 Event Log Errors ==========[/color]
  718.  
  719. [ Application Events ]
  720. Error - 12/21/2009 3:52:47 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1002
  721. Description = Hanging application firefox.exe, version 1.9.1.3523, hang module hungapp,
  722. version 0.0.0.0, hang address 0x00000000.
  723.  
  724. Error - 12/21/2009 4:00:00 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1001
  725. Description = Fault bucket 1437517761.
  726.  
  727. Error - 12/21/2009 4:00:00 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1001
  728. Description = Fault bucket 1437517761.
  729.  
  730. Error - 12/21/2009 4:00:00 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1001
  731. Description = Fault bucket 1437517761.
  732.  
  733. Error - 12/22/2009 3:20:42 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1002
  734. Description = Hanging application firefox.exe, version 1.9.1.3523, hang module hungapp,
  735. version 0.0.0.0, hang address 0x00000000.
  736.  
  737. Error - 8/18/2010 4:56:59 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1002
  738. Description = Hanging application nda.exe, version 1.0.0.206, hang module hungapp,
  739. version 0.0.0.0, hang address 0x00000000.
  740.  
  741. Error - 8/18/2010 5:01:24 PM | Computer Name = COOLCOMPUTER | Source = MsiInstaller | ID = 11001
  742. Description =
  743.  
  744. Error - 8/18/2010 5:06:40 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1002
  745. Description = Hanging application UnWisePW32.exe, version 0.0.0.0, hang module hungapp,
  746. version 0.0.0.0, hang address 0x00000000.
  747.  
  748. Error - 8/18/2010 5:50:09 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1002
  749. Description = Hanging application firefox.exe, version 1.9.1.3622, hang module hungapp,
  750. version 0.0.0.0, hang address 0x00000000.
  751.  
  752. Error - 8/18/2010 5:50:15 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1001
  753. Description = Fault bucket 1589847310.
  754.  
  755. [ System Events ]
  756. Error - 8/18/2010 5:08:38 PM | Computer Name = COOLCOMPUTER | Source = Service Control Manager | ID = 7023
  757. Description = The Application Management service terminated with the following error:
  758. %%126
  759.  
  760. Error - 8/18/2010 5:08:38 PM | Computer Name = COOLCOMPUTER | Source = Service Control Manager | ID = 7023
  761. Description = The Application Management service terminated with the following error:
  762. %%126
  763.  
  764. Error - 8/18/2010 5:08:39 PM | Computer Name = COOLCOMPUTER | Source = Service Control Manager | ID = 7023
  765. Description = The Application Management service terminated with the following error:
  766. %%126
  767.  
  768. Error - 8/18/2010 5:52:46 PM | Computer Name = COOLCOMPUTER | Source = Windows Update Agent | ID = 20
  769. Description = Installation Failure: Windows failed to install the following update
  770. with error 0x80070643: Internet Explorer 8 for Windows XP.
  771.  
  772. Error - 9/12/2010 8:12:57 AM | Computer Name = COOLCOMPUTER | Source = W32Time | ID = 39452689
  773. Description = Time Provider NtpClient: An error occurred during DNS lookup of the
  774. manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup
  775. again in 15 minutes. The error was: A socket operation was attempted to an unreachable
  776. host. (0x80072751)
  777.  
  778. Error - 9/12/2010 8:12:57 AM | Computer Name = COOLCOMPUTER | Source = W32Time | ID = 39452701
  779. Description = The time provider NtpClient is configured to acquire time from one
  780. or more time sources, however none of the sources are currently accessible. No attempt
  781. to contact a source will be made for 14 minutes. NtpClient has no source of accurate
  782. time.
  783.  
  784. Error - 9/12/2010 9:52:30 AM | Computer Name = COOLCOMPUTER | Source = W32Time | ID = 39452689
  785. Description = Time Provider NtpClient: An error occurred during DNS lookup of the
  786. manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup
  787. again in 15 minutes. The error was: A socket operation was attempted to an unreachable
  788. host. (0x80072751)
  789.  
  790. Error - 9/12/2010 9:52:30 AM | Computer Name = COOLCOMPUTER | Source = W32Time | ID = 39452701
  791. Description = The time provider NtpClient is configured to acquire time from one
  792. or more time sources, however none of the sources are currently accessible. No attempt
  793. to contact a source will be made for 14 minutes. NtpClient has no source of accurate
  794. time.
  795.  
  796. Error - 9/12/2010 9:52:46 AM | Computer Name = COOLCOMPUTER | Source = W32Time | ID = 39452689
  797. Description = Time Provider NtpClient: An error occurred during DNS lookup of the
  798. manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup
  799. again in 15 minutes. The error was: A socket operation was attempted to an unreachable
  800. host. (0x80072751)
  801.  
  802. Error - 9/12/2010 9:52:46 AM | Computer Name = COOLCOMPUTER | Source = W32Time | ID = 39452701
  803. Description = The time provider NtpClient is configured to acquire time from one
  804. or more time sources, however none of the sources are currently accessible. No attempt
  805. to contact a source will be made for 14 minutes. NtpClient has no source of accurate
  806. time.
  807.  
  808.  
  809. < End of report >
  810.  
  811. [color=#E56717]========== Extra Registry (SafeList) ==========[/color]
  812.  
  813.  
  814. [color=#E56717]========== File Associations ==========[/color]
  815.  
  816. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
  817.  
  818. [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
  819. .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
  820.  
  821. [color=#E56717]========== Shell Spawning ==========[/color]
  822.  
  823. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
  824. batfile [open] -- "%1" %*
  825. cmdfile [open] -- "%1" %*
  826. comfile [open] -- "%1" %*
  827. exefile [open] -- "%1" %*
  828. htmlfile [edit] -- Reg Error: Key error.
  829. piffile [open] -- "%1" %*
  830. regfile [merge] -- Reg Error: Key error.
  831. scrfile [config] -- "%1"
  832. scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
  833. scrfile [open] -- "%1" /S
  834. txtfile [edit] -- Reg Error: Key error.
  835. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
  836. Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  837. Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
  838. Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
  839. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  840.  
  841. [color=#E56717]========== Security Center Settings ==========[/color]
  842.  
  843. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
  844. "FirstRunDisabled" = 1
  845. "AntiVirusDisableNotify" = 0
  846. "FirewallDisableNotify" = 1
  847. "UpdatesDisableNotify" = 0
  848. "AntiVirusOverride" = 0
  849. "FirewallOverride" = 0
  850.  
  851. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
  852.  
  853. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
  854.  
  855. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
  856.  
  857. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
  858.  
  859. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
  860.  
  861. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
  862.  
  863. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
  864.  
  865. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
  866.  
  867. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
  868.  
  869. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
  870. "DisableMonitoring" = 1
  871.  
  872. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
  873.  
  874. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
  875.  
  876. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
  877.  
  878. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
  879.  
  880. [color=#E56717]========== System Restore Settings ==========[/color]
  881.  
  882. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
  883. "DisableSR" = 0
  884.  
  885. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
  886. "Start" = 0
  887.  
  888. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
  889. "Start" = 2
  890.  
  891. [color=#E56717]========== Firewall Settings ==========[/color]
  892.  
  893. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
  894.  
  895. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
  896. "139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
  897. "445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
  898. "137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
  899. "138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
  900.  
  901. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
  902. "EnableFirewall" = 0
  903.  
  904. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
  905. "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
  906. "2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
  907. "139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
  908. "445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
  909. "137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
  910. "138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
  911.  
  912. [color=#E56717]========== Authorized Applications List ==========[/color]
  913.  
  914. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
  915.  
  916. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
  917. "C:\Program Files\Compaq Connections\6750491\Program\Compaq Connections.exe" = C:\Program Files\Compaq Connections\6750491\Program\Compaq Connections.exe:*:Enabled:BackWeb for Presario -- ()
  918. "C:\Program Files\EarthLink TotalAccess\TaskPanl.exe" = C:\Program Files\EarthLink TotalAccess\TaskPanl.exe:*:Enabled:Earthlink -- File not found
  919. "C:\WINDOWS\system32\MPK\Mpk.exe" = C:\WINDOWS\system32\MPK\Mpk.exe:*:Enabled:TCP\IP -- ()
  920. "C:\WINDOWS\system32\MPK\MpkView.exe" = C:\WINDOWS\system32\MPK\MpkView.exe:*:Enabled:TCP\IP -- ()
  921. "C:\Program Files\AIM\aim.exe" = C:\Program Files\AIM\aim.exe:*:Enabled:AIM -- File not found
  922.  
  923.  
  924. [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
  925.  
  926. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
  927. "{07FCBED5-94C3-4F94-B9D3-360FA27C7B06}" = Microsoft Windows SDK for Visual Studio 2008 Express Tools for Win32
  928. "{0EB5D9B7-8E6C-4A9E-B74F-16B7EE89A67B}" = Microsoft Plus! Photo Story 2 LE
  929. "{12E2B9E9-05B1-407d-B0FD-B5F350535125}" = Norton Internet Security
  930. "{14589F05-C658-4594-9429-D437BA688686}" = IntelliMover Data Transfer Demo
  931. "{1526D87C-A955-4FAB-BF18-697BA457E352}" = Norton WMI Update
  932. "{1A103D70-5C9B-4E1A-B306-5106C68F9914}" = Microsoft Plus! Dancer LE
  933. "{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
  934. "{3BD0196C-6553-460c-A0C4-90D8AE5D60D2}" = Norton Personal Firewall
  935. "{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
  936. "{470419EB-C5BE-41D3-8323-0E5DEBF69FAE}" = ccCommon
  937. "{48185814-A224-447a-81DA-71BD20580E1B}" = Norton Internet Security
  938. "{503AA035-41E2-4858-B31F-1E49AC66C309}" = Norton Security Center
  939. "{526AD5DC-CFC4-4f2a-8442-C84CC91D6C7F}" = Norton Internet Security
  940. "{7148F0A8-6813-11D6-A77B-00B0D0142030}" = Java 2 Runtime Environment, SE v1.4.2_03
  941. "{764D06D8-D8DE-411E-A1C8-D9E9380F8A84}" = Microsoft Works 7.0
  942. "{91AA4B1F-B918-4e0b-A304-F8D4EC5D7726}" = Norton Internet Security
  943. "{9C2DC81B-8114-37D9-A922-95E460A1FAFB}" = Microsoft Visual Basic 2008 Express Edition - ENU
  944. "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
  945. "{A398F2DC-D706-4bb2-AC38-5532CD229D08}" = CC_ccProxyMSI
  946. "{AC76BA86-0000-0000-0000-6028747ADE01}" = Adobe Acrobat - Reader 6.0.2 Update
  947. "{AC76BA86-7AD7-1033-7B44-A00000000001}" = Adobe Reader 6.0.1
  948. "{B1E27F87-795B-4350-869B-A5527FB60976}" = CC_ccStart
  949. "{B4C0A315-07FB-39F9-85CD-8CE20C019350}" = Microsoft Windows SDK for Visual Studio 2008 Express Tools for .NET Framework
  950. "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
  951. "{C9D599E1-6B68-4a1f-8A4F-A1DB433DB1BF}" = Norton Internet Security
  952. "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
  953. "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
  954. "{DB518BA6-CB74-4EB6-9ABD-880B6D6E1F38}" = HpSdpAppCoreApp
  955. "{E895DA24-F96E-4729-9E38-E996E6297E55}" = Norton Internet Security
  956. "{FC2C0536-583C-46c0-844A-62CECAE01F22}" = Norton Internet Security
  957. "{FC37ABD0-2108-4beb-B010-1254E0662B5A}" = MSRedist
  958. "Adobe Flash Player Plugin" = Adobe Flash Player Plugin
  959. "BackWeb-6750491 Uninstaller" = Compaq Connections
  960. "Help and Support Additions" = Help and Support Additions
  961. "LiveReg" = LiveReg (Symantec Corporation)
  962. "LiveUpdate" = LiveUpdate 1.90 (Symantec Corporation)
  963. "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
  964. "McAfee Security Scan" = McAfee Security Scan
  965. "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
  966. "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
  967. "Microsoft Visual Basic 2008 Express Edition - ENU" = Microsoft Visual Basic 2008 Express Edition - ENU
  968. "Mozilla Firefox (3.5.6)" = Mozilla Firefox (3.5.6)
  969. "NVIDIA GART Driver" = NVIDIA GART Driver
  970. "PS2" = PS2
  971. "S3" = UniChrome Series Driver and Utilities
  972. "SoftwareUpdUtility" = Download Updater (AOL LLC)
  973. "SymSetup.{3BD0196C-6553-460c-A0C4-90D8AE5D60D2}" = Norton Personal Firewall (Symantec Corporation)
  974. "VTDisplay" = S3 S3Display
  975. "VTGamma2" = S3 S3Gamma2
  976. "VTInfo2" = S3 S3Info2
  977. "VTOverlay" = S3 S3Overlay
  978. "WIC" = Windows Imaging Component
  979. "WinRAR archiver" = WinRAR archiver
  980.  
  981. [color=#E56717]========== Last 10 Event Log Errors ==========[/color]
  982.  
  983. [ Application Events ]
  984. Error - 12/21/2009 3:52:47 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1002
  985. Description = Hanging application firefox.exe, version 1.9.1.3523, hang module hungapp,
  986. version 0.0.0.0, hang address 0x00000000.
  987.  
  988. Error - 12/21/2009 4:00:00 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1001
  989. Description = Fault bucket 1437517761.
  990.  
  991. Error - 12/21/2009 4:00:00 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1001
  992. Description = Fault bucket 1437517761.
  993.  
  994. Error - 12/21/2009 4:00:00 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1001
  995. Description = Fault bucket 1437517761.
  996.  
  997. Error - 12/22/2009 3:20:42 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1002
  998. Description = Hanging application firefox.exe, version 1.9.1.3523, hang module hungapp,
  999. version 0.0.0.0, hang address 0x00000000.
  1000.  
  1001. Error - 8/18/2010 4:56:59 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1002
  1002. Description = Hanging application nda.exe, version 1.0.0.206, hang module hungapp,
  1003. version 0.0.0.0, hang address 0x00000000.
  1004.  
  1005. Error - 8/18/2010 5:01:24 PM | Computer Name = COOLCOMPUTER | Source = MsiInstaller | ID = 11001
  1006. Description =
  1007.  
  1008. Error - 8/18/2010 5:06:40 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1002
  1009. Description = Hanging application UnWisePW32.exe, version 0.0.0.0, hang module hungapp,
  1010. version 0.0.0.0, hang address 0x00000000.
  1011.  
  1012. Error - 8/18/2010 5:50:09 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1002
  1013. Description = Hanging application firefox.exe, version 1.9.1.3622, hang module hungapp,
  1014. version 0.0.0.0, hang address 0x00000000.
  1015.  
  1016. Error - 8/18/2010 5:50:15 PM | Computer Name = COOLCOMPUTER | Source = Application Hang | ID = 1001
  1017. Description = Fault bucket 1589847310.
  1018.  
  1019. [ System Events ]
  1020. Error - 8/18/2010 5:08:38 PM | Computer Name = COOLCOMPUTER | Source = Service Control Manager | ID = 7023
  1021. Description = The Application Management service terminated with the following error:
  1022. %%126
  1023.  
  1024. Error - 8/18/2010 5:08:38 PM | Computer Name = COOLCOMPUTER | Source = Service Control Manager | ID = 7023
  1025. Description = The Application Management service terminated with the following error:
  1026. %%126
  1027.  
  1028. Error - 8/18/2010 5:08:39 PM | Computer Name = COOLCOMPUTER | Source = Service Control Manager | ID = 7023
  1029. Description = The Application Management service terminated with the following error:
  1030. %%126
  1031.  
  1032. Error - 8/18/2010 5:52:46 PM | Computer Name = COOLCOMPUTER | Source = Windows Update Agent | ID = 20
  1033. Description = Installation Failure: Windows failed to install the following update
  1034. with error 0x80070643: Internet Explorer 8 for Windows XP.
  1035.  
  1036. Error - 9/12/2010 8:12:57 AM | Computer Name = COOLCOMPUTER | Source = W32Time | ID = 39452689
  1037. Description = Time Provider NtpClient: An error occurred during DNS lookup of the
  1038. manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup
  1039. again in 15 minutes. The error was: A socket operation was attempted to an unreachable
  1040. host. (0x80072751)
  1041.  
  1042. Error - 9/12/2010 8:12:57 AM | Computer Name = COOLCOMPUTER | Source = W32Time | ID = 39452701
  1043. Description = The time provider NtpClient is configured to acquire time from one
  1044. or more time sources, however none of the sources are currently accessible. No attempt
  1045. to contact a source will be made for 14 minutes. NtpClient has no source of accurate
  1046. time.
  1047.  
  1048. Error - 9/12/2010 9:52:30 AM | Computer Name = COOLCOMPUTER | Source = W32Time | ID = 39452689
  1049. Description = Time Provider NtpClient: An error occurred during DNS lookup of the
  1050. manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup
  1051. again in 15 minutes. The error was: A socket operation was attempted to an unreachable
  1052. host. (0x80072751)
  1053.  
  1054. Error - 9/12/2010 9:52:30 AM | Computer Name = COOLCOMPUTER | Source = W32Time | ID = 39452701
  1055. Description = The time provider NtpClient is configured to acquire time from one
  1056. or more time sources, however none of the sources are currently accessible. No attempt
  1057. to contact a source will be made for 14 minutes. NtpClient has no source of accurate
  1058. time.
  1059.  
  1060. Error - 9/12/2010 9:52:46 AM | Computer Name = COOLCOMPUTER | Source = W32Time | ID = 39452689
  1061. Description = Time Provider NtpClient: An error occurred during DNS lookup of the
  1062. manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup
  1063. again in 15 minutes. The error was: A socket operation was attempted to an unreachable
  1064. host. (0x80072751)
  1065.  
  1066. Error - 9/12/2010 9:52:46 AM | Computer Name = COOLCOMPUTER | Source = W32Time | ID = 39452701
  1067. Description = The time provider NtpClient is configured to acquire time from one
  1068. or more time sources, however none of the sources are currently accessible. No attempt
  1069. to contact a source will be made for 14 minutes. NtpClient has no source of accurate
  1070. time.
  1071.  
  1072.  
  1073. < End of report >
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!