Yep.
Extras
OTL Extras logfile created on: 5/6/2011 5:18:05 PM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Owner\Desktop
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
3.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 84.00% Memory free
6.00 Gb Paging File | 6.00 Gb Available in Paging File | 95.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 298.09 Gb Total Space | 188.38 Gb Free Space | 63.20% Space Free | Partition Type: NTFS
Drive D: | 362.58 Gb Total Space | 171.94 Gb Free Space | 47.42% Space Free | Partition Type: NTFS
Drive E: | 10.03 Gb Total Space | 4.41 Gb Free Space | 44.01% Space Free | Partition Type: NTFS
Computer Name: OWNER-PC | User Name: Owner | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
[HKEY_CURRENT_USER\SOFTWARE\Classes\]
.exe [@ = exefile] -- Reg Error: Key error. File not found
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{456D508D-3441-4415-B39D-A90BCA2786F8}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework\v4.0.30319\smsvchost.exe |
"{CE931490-018C-48F5-9223-46DCDFE1B378}" = lport=5432 | protocol=6 | dir=in | name=postgres |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{023FA88C-493F-482E-AFEF-9DB4CE91B476}" = protocol=17 | dir=in | app=c:\program files\microsoft games\rise of nations\thrones.exe |
"{0EAA9BA4-9D76-4DDD-BB7D-09DE60154D88}" = protocol=6 | dir=in | app=c:\program files\microsoft games\rise of nations\thrones.exe |
"{116427A9-8D39-4FA2-8CDC-DF772C9826D8}" = protocol=6 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
"{213850B3-867B-4905-B406-05BD41C04F83}" = protocol=6 | dir=in | app=c:\program files\aim\aim.exe |
"{265C0894-D343-45D1-A147-FE4B9881A45A}" = protocol=17 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
"{27429348-643C-44E1-AFAE-48957D36D41C}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version6\teamviewer.exe |
"{37708900-D581-4BCB-AD57-1FE5B914203A}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version6\teamviewer.exe |
"{4E39E2D7-C634-4687-BABD-21F618C6849D}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version5\teamviewer_service.exe |
"{5C02A22B-7D43-4402-8F79-ACD2C0DFA2C7}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{5CA3279D-9029-4498-94A5-841FA0EB3BAE}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{62695464-041F-42F2-BA88-F6A8A9951F66}" = protocol=6 | dir=in | app=c:\program files\bittorrent\bittorrent.exe |
"{648C8851-02A0-47E3-BE3B-7B6666413C1D}" = protocol=6 | dir=in | app=c:\program files\cake poker 2.0\pokerclient.exe |
"{66B6B2E1-0A95-4F69-835C-75B7884324D9}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{76B61E22-9DEC-4391-ABA3-C658CCFB694C}" = protocol=17 | dir=in | app=c:\program files\aim\aim.exe |
"{9ABC77B6-FBAF-4DDB-BD98-C5F8CE11F474}" = protocol=17 | dir=in | app=c:\program files\bittorrent\bittorrent.exe |
"{ACEA0D84-E02F-4B0A-92BD-9EDD136ED455}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{AD1BF3CE-D8FE-45FD-8AE6-10A2200BE22C}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version6\teamviewer_service.exe |
"{B7145A55-CB50-491C-95B0-C1A082C10264}" = protocol=17 | dir=in | app=c:\program files\cake poker 2.0\pokerclient.exe |
"{BBDF635A-8D9E-4165-80C6-B085FAB1347D}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version6\teamviewer_service.exe |
"{C20D5A73-719C-499F-90AC-776D7466D365}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version5\teamviewer_service.exe |
"{FCC85D29-E498-407D-A549-9470744562AA}" = dir=in | app=c:\program files\skype\plugin manager\skypepm.exe |
"TCP Query User{3EF5C7CF-41CB-4B08-8148-B5C10F766D61}C:\program files\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"TCP Query User{5205804B-16A9-4176-9D54-9747E413F95C}C:\users\owner\downloads\command & conquer red alert 2\command & conquer red alert 2\command & conquer red alert 2\game.exe" = protocol=6 | dir=in | app=c:\users\owner\downloads\command & conquer red alert 2\command & conquer red alert 2\command & conquer red alert 2\game.exe |
"TCP Query User{79D3BA8B-D684-432E-AA4B-0CD08889DAA7}C:\games\world_of_tanks\worldoftanks.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"TCP Query User{90051241-D547-41AB-B12C-37D3A98A7CCD}C:\games\world_of_tanks\wotlauncher.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
"UDP Query User{3ED740D0-6A99-42A3-B42E-60C9745C8B8C}C:\program files\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"UDP Query User{5D1EC0F2-F2DD-4BBD-B120-2FAAE095E181}C:\users\owner\downloads\command & conquer red alert 2\command & conquer red alert 2\command & conquer red alert 2\game.exe" = protocol=17 | dir=in | app=c:\users\owner\downloads\command & conquer red alert 2\command & conquer red alert 2\command & conquer red alert 2\game.exe |
"UDP Query User{83890D2B-AEC0-4013-9ECE-194AB23B43C2}C:\games\world_of_tanks\wotlauncher.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
"UDP Query User{968339F4-21AA-4334-9AC1-A5665AEE79A6}C:\games\world_of_tanks\worldoftanks.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01501EBA-EC35-4F9F-8889-3BE346E5DA13}" = MSXML4 Parser
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{235BBFC6-D863-4066-A01A-3BD504C31033}" = Nero 7 Ultra Edition
"{26A24AE4-039D-4CA4-87B4-2F83216022FF}" = Java(TM) 6 Update 22
"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1
"{2A981294-F14C-4F0F-9627-D793270922F8}" = Bonjour
"{308B6AEA-DE50-4666-996D-0FA461719D6B}" = Apple Mobile Device Support
"{33BC9D7E-E790-495E-A4EA-CFB160C17A91}" = Logitech Gaming Software 5.08
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{6D0C6BE4-F674-43D2-96BC-3509345108C9}_is1" = PokerStove version 1.23
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{75996651-6C2D-4291-B9B9-FD66085F3E5A}" = TableNinja
"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{862ACB14-04CE-46BC-8652-9EA203178DD7}" = STOPzilla
"{90850409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Word Viewer 2003
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{BA801B94-C28D-46EE-B806-E1E021A3D519}" = Company of Heroes
"{C0698BDA-0D29-40EE-8570-A31106DF9AB1}" = Medieval II Total War
"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
"{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}" = Skype Toolbars
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D4C9692E-4EFA-4DA0-8B7F-9439466D9E31}" = Full Tilt Poker
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.1
"{E7004147-2CCA-431C-AA05-2AB166B9785D}" = QuickTime
"{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support
"{FAE36873-1941-4076-A9A5-48812B5EA0B7}" = iTunes
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"AIM_7" = AIM 7
"avast5" = avast! Free Antivirus
"BitTorrent" = BitTorrent
"Blitzkrieg" = Blitzkrieg
"Cake Poker 2.0" = Cake Poker 2.0
"CNXT_MODEM_PCI_HSF" = Soft Data Fax Modem with SmartCP
"Combined Community Codec Pack_is1" = Combined Community Codec Pack 2008-09-21 16:18
"DivX Setup.divx.com" = DivX Setup
"Doxillion" = Doxillion Document Converter
"Free PDF Tablet" = Free PDF Tablet 0.1
"GameSpy Arcade" = GameSpy Arcade
"HoldemManager" = Holdem Manager
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Mikogo" = Mikogo
"Mozilla Firefox (3.6.17)" = Mozilla Firefox (3.6.17)
"PokerStars" = PokerStars
"PokerStars.net" = PokerStars.net
"PostgreSQL 8.4" = PostgreSQL 8.4
"RealPlayer 12.0" = RealPlayer
"RiseOfNationsExpansion 1.0" = Rise of Nations
"RunBetterPoker.com MergeKeys Beta" = RunBetterPoker.com MergeKeys Beta
"SoftwareUpdUtility" = Download Updater (AOL LLC)
"TeamViewer 6" = TeamViewer 6
"TripleAVersion1_2_5_5" = TripleA Version 1_2_5_5
"VirtualCloneDrive" = VirtualCloneDrive
"VLC media player" = VLC media player 1.1.9
"WinRAR archiver" = WinRAR archiver
"Yahoo!7 Messenger" = Yahoo!7 Messenger
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"CarbonPoker" = CarbonPoker
"Flux" = F.lux
"Lock Poker" = Lock Poker
"RPM Poker" = RPM Poker
"UnityWebPlayer" = Unity Web Player
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 5/6/2011 6:04:23 PM | Computer Name = Owner-PC | Source = Application Error | ID = 1000
Description = Faulting application DllHost.exe, version 6.0.6000.16386, time stamp
0x4549b14e, faulting module unknown, version 0.0.0.0, time stamp 0x00000000, exception
code 0xc0000005, fault offset 0x00deb5ed, process id 0x1210, application start time
0x01cc0c3989a7a983.
Error - 5/6/2011 6:04:31 PM | Computer Name = Owner-PC | Source = Application Error | ID = 1000
Description = Faulting application DllHost.exe, version 6.0.6000.16386, time stamp
0x4549b14e, faulting module unknown, version 0.0.0.0, time stamp 0x00000000, exception
code 0xc0000005, fault offset 0x0235b5ed, process id 0x12e4, application start time
0x01cc0c3992d0f023.
Error - 5/6/2011 6:06:13 PM | Computer Name = Owner-PC | Source = PostgreSQL | ID = 0
Description = 2011-05-06 17:06:13 CDTFATAL: the database system is starting up
Error - 5/6/2011 6:06:35 PM | Computer Name = Owner-PC | Source = Application Error | ID = 1000
Description = Faulting application DllHost.exe, version 6.0.6000.16386, time stamp
0x4549b14e, faulting module unknown, version 0.0.0.0, time stamp 0x00000000, exception
code 0xc0000005, fault offset 0x01b8b5ed, process id 0xcd8, application start time
0x01cc0c39d61bb6a2.
Error - 5/6/2011 6:08:30 PM | Computer Name = Owner-PC | Source = PostgreSQL | ID = 0
Description = 2011-05-06 17:08:30 CDTFATAL: the database system is starting up
Error - 5/6/2011 6:08:47 PM | Computer Name = Owner-PC | Source = Application Error | ID = 1000
Description = Faulting application DllHost.exe, version 6.0.6000.16386, time stamp
0x4549b14e, faulting module unknown, version 0.0.0.0, time stamp 0x00000000, exception
code 0xc0000005, fault offset 0x03a7b5ed, process id 0xcdc, application start time
0x01cc0c3a2578d25f.
Error - 5/6/2011 6:10:26 PM | Computer Name = Owner-PC | Source = Winlogon | ID = 4103
Description = Windows license activation failed. Error 0x00000000.
Error - 5/6/2011 6:10:32 PM | Computer Name = Owner-PC | Source = PostgreSQL | ID = 0
Description = 2011-05-06 17:10:32 CDTFATAL: the database system is starting up
Error - 5/6/2011 6:12:22 PM | Computer Name = Owner-PC | Source = EventSystem | ID = 4609
Description =
Error - 5/6/2011 6:13:26 PM | Computer Name = Owner-PC | Source = WinMgmt | ID = 10
Description =
[ System Events ]
Error - 4/23/2011 11:23:40 AM | Computer Name = Owner-PC | Source = HTTP | ID = 15016
Description =
Error - 4/24/2011 11:23:28 AM | Computer Name = Owner-PC | Source = Dhcp | ID = 1000
Description = Your computer has lost the lease to its IP address 192.168.1.101 on
the Network Card with network address 001BB9FBDA92.
Error - 4/24/2011 6:19:57 PM | Computer Name = Owner-PC | Source = Dhcp | ID = 1002
Description = The IP address lease 192.168.1.100 for the Network Card with network
address 001BB9FBDA92 has been denied by the DHCP server 192.168.1.1 (The DHCP Server
sent a DHCPNACK message).
Error - 4/24/2011 6:20:16 PM | Computer Name = Owner-PC | Source = Server | ID = 2505
Description = The server could not bind to the transport \Device\NetBT_Tcpip_{32572978-77FA-456C-AC4B-D131EDFC09E5}
because another computer on the network has the same name. The server could not
start.
Error - 4/24/2011 6:20:16 PM | Computer Name = Owner-PC | Source = netbt | ID = 4321
Description = The name "OWNER-PC :0" could not be registered on the interface
with IP address 192.168.1.101. The computer with the IP address 192.168.1.100 did
not allow the name to be claimed by this computer.
Error - 4/24/2011 6:20:16 PM | Computer Name = Owner-PC | Source = netbt | ID = 4321
Description = The name "OWNER-PC :0" could not be registered on the interface
with IP address 192.168.1.101. The computer with the IP address 192.168.1.100 did
not allow the name to be claimed by this computer.
Error - 4/24/2011 6:20:16 PM | Computer Name = Owner-PC | Source = netbt | ID = 4321
Description = The name "OWNER-PC :20" could not be registered on the interface
with IP address 192.168.1.101. The computer with the IP address 192.168.1.100 did
not allow the name to be claimed by this computer.
Error - 4/25/2011 1:30:39 PM | Computer Name = Owner-PC | Source = HTTP | ID = 15016
Description =
Error - 4/25/2011 7:43:27 PM | Computer Name = Owner-PC | Source = Dhcp | ID = 1002
Description = The IP address lease 192.168.1.101 for the Network Card with network
address 001BB9FBDA92 has been denied by the DHCP server 192.168.1.1 (The DHCP Server
sent a DHCPNACK message).
Error - 4/26/2011 2:50:27 PM | Computer Name = Owner-PC | Source = HTTP | ID = 15016
Description =
< End of report >
Extras
OTL Extras logfile created on: 5/6/2011 5:18:05 PM - Run 1
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Owner\Desktop
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
3.00 Gb Total Physical Memory | 3.00 Gb Available Physical Memory | 84.00% Memory free
6.00 Gb Paging File | 6.00 Gb Available in Paging File | 95.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 298.09 Gb Total Space | 188.38 Gb Free Space | 63.20% Space Free | Partition Type: NTFS
Drive D: | 362.58 Gb Total Space | 171.94 Gb Free Space | 47.42% Space Free | Partition Type: NTFS
Drive E: | 10.03 Gb Total Space | 4.41 Gb Free Space | 44.01% Space Free | Partition Type: NTFS
Computer Name: OWNER-PC | User Name: Owner | Logged in as Administrator.
Boot Mode: SafeMode with Networking | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l
[HKEY_CURRENT_USER\SOFTWARE\Classes\
.exe [@ = exefile] -- Reg Error: Key error. File not found
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{456D508D-3441-4415-B39D-A90BCA2786F8}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework\v4.0.30319\smsvchost.exe |
"{CE931490-018C-48F5-9223-46DCDFE1B378}" = lport=5432 | protocol=6 | dir=in | name=postgres |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{023FA88C-493F-482E-AFEF-9DB4CE91B476}" = protocol=17 | dir=in | app=c:\program files\microsoft games\rise of nations\thrones.exe |
"{0EAA9BA4-9D76-4DDD-BB7D-09DE60154D88}" = protocol=6 | dir=in | app=c:\program files\microsoft games\rise of nations\thrones.exe |
"{116427A9-8D39-4FA2-8CDC-DF772C9826D8}" = protocol=6 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
"{213850B3-867B-4905-B406-05BD41C04F83}" = protocol=6 | dir=in | app=c:\program files\aim\aim.exe |
"{265C0894-D343-45D1-A147-FE4B9881A45A}" = protocol=17 | dir=in | app=c:\program files\yahoo!\messenger\yahoomessenger.exe |
"{27429348-643C-44E1-AFAE-48957D36D41C}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version6\teamviewer.exe |
"{37708900-D581-4BCB-AD57-1FE5B914203A}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version6\teamviewer.exe |
"{4E39E2D7-C634-4687-BABD-21F618C6849D}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version5\teamviewer_service.exe |
"{5C02A22B-7D43-4402-8F79-ACD2C0DFA2C7}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{5CA3279D-9029-4498-94A5-841FA0EB3BAE}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{62695464-041F-42F2-BA88-F6A8A9951F66}" = protocol=6 | dir=in | app=c:\program files\bittorrent\bittorrent.exe |
"{648C8851-02A0-47E3-BE3B-7B6666413C1D}" = protocol=6 | dir=in | app=c:\program files\cake poker 2.0\pokerclient.exe |
"{66B6B2E1-0A95-4F69-835C-75B7884324D9}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{76B61E22-9DEC-4391-ABA3-C658CCFB694C}" = protocol=17 | dir=in | app=c:\program files\aim\aim.exe |
"{9ABC77B6-FBAF-4DDB-BD98-C5F8CE11F474}" = protocol=17 | dir=in | app=c:\program files\bittorrent\bittorrent.exe |
"{ACEA0D84-E02F-4B0A-92BD-9EDD136ED455}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{AD1BF3CE-D8FE-45FD-8AE6-10A2200BE22C}" = protocol=17 | dir=in | app=c:\program files\teamviewer\version6\teamviewer_service.exe |
"{B7145A55-CB50-491C-95B0-C1A082C10264}" = protocol=17 | dir=in | app=c:\program files\cake poker 2.0\pokerclient.exe |
"{BBDF635A-8D9E-4165-80C6-B085FAB1347D}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version6\teamviewer_service.exe |
"{C20D5A73-719C-499F-90AC-776D7466D365}" = protocol=6 | dir=in | app=c:\program files\teamviewer\version5\teamviewer_service.exe |
"{FCC85D29-E498-407D-A549-9470744562AA}" = dir=in | app=c:\program files\skype\plugin manager\skypepm.exe |
"TCP Query User{3EF5C7CF-41CB-4B08-8148-B5C10F766D61}C:\program files\videolan\vlc\vlc.exe" = protocol=6 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"TCP Query User{5205804B-16A9-4176-9D54-9747E413F95C}C:\users\owner\downloads\command & conquer red alert 2\command & conquer red alert 2\command & conquer red alert 2\game.exe" = protocol=6 | dir=in | app=c:\users\owner\downloads\command & conquer red alert 2\command & conquer red alert 2\command & conquer red alert 2\game.exe |
"TCP Query User{79D3BA8B-D684-432E-AA4B-0CD08889DAA7}C:\games\world_of_tanks\worldoftanks.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
"TCP Query User{90051241-D547-41AB-B12C-37D3A98A7CCD}C:\games\world_of_tanks\wotlauncher.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
"UDP Query User{3ED740D0-6A99-42A3-B42E-60C9745C8B8C}C:\program files\videolan\vlc\vlc.exe" = protocol=17 | dir=in | app=c:\program files\videolan\vlc\vlc.exe |
"UDP Query User{5D1EC0F2-F2DD-4BBD-B120-2FAAE095E181}C:\users\owner\downloads\command & conquer red alert 2\command & conquer red alert 2\command & conquer red alert 2\game.exe" = protocol=17 | dir=in | app=c:\users\owner\downloads\command & conquer red alert 2\command & conquer red alert 2\command & conquer red alert 2\game.exe |
"UDP Query User{83890D2B-AEC0-4013-9ECE-194AB23B43C2}C:\games\world_of_tanks\wotlauncher.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe |
"UDP Query User{968339F4-21AA-4334-9AC1-A5665AEE79A6}C:\games\world_of_tanks\worldoftanks.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01501EBA-EC35-4F9F-8889-3BE346E5DA13}" = MSXML4 Parser
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{235BBFC6-D863-4066-A01A-3BD504C31033}" = Nero 7 Ultra Edition
"{26A24AE4-039D-4CA4-87B4-2F83216022FF}" = Java(TM) 6 Update 22
"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1
"{2A981294-F14C-4F0F-9627-D793270922F8}" = Bonjour
"{308B6AEA-DE50-4666-996D-0FA461719D6B}" = Apple Mobile Device Support
"{33BC9D7E-E790-495E-A4EA-CFB160C17A91}" = Logitech Gaming Software 5.08
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{6D0C6BE4-F674-43D2-96BC-3509345108C9}_is1" = PokerStove version 1.23
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{75996651-6C2D-4291-B9B9-FD66085F3E5A}" = TableNinja
"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{862ACB14-04CE-46BC-8652-9EA203178DD7}" = STOPzilla
"{90850409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Word Viewer 2003
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{BA801B94-C28D-46EE-B806-E1E021A3D519}" = Company of Heroes
"{C0698BDA-0D29-40EE-8570-A31106DF9AB1}" = Medieval II Total War
"{C41300B9-185D-475E-BFEC-39EF732F19B1}" = Apple Software Update
"{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}" = Skype Toolbars
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D4C9692E-4EFA-4DA0-8B7F-9439466D9E31}" = Full Tilt Poker
"{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}" = Skype™ 5.1
"{E7004147-2CCA-431C-AA05-2AB166B9785D}" = QuickTime
"{EE6097DD-05F4-4178-9719-D3170BF098E8}" = Apple Application Support
"{FAE36873-1941-4076-A9A5-48812B5EA0B7}" = iTunes
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"AIM_7" = AIM 7
"avast5" = avast! Free Antivirus
"BitTorrent" = BitTorrent
"Blitzkrieg" = Blitzkrieg
"Cake Poker 2.0" = Cake Poker 2.0
"CNXT_MODEM_PCI_HSF" = Soft Data Fax Modem with SmartCP
"Combined Community Codec Pack_is1" = Combined Community Codec Pack 2008-09-21 16:18
"DivX Setup.divx.com" = DivX Setup
"Doxillion" = Doxillion Document Converter
"Free PDF Tablet" = Free PDF Tablet 0.1
"GameSpy Arcade" = GameSpy Arcade
"HoldemManager" = Holdem Manager
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Mikogo" = Mikogo
"Mozilla Firefox (3.6.17)" = Mozilla Firefox (3.6.17)
"PokerStars" = PokerStars
"PokerStars.net" = PokerStars.net
"PostgreSQL 8.4" = PostgreSQL 8.4
"RealPlayer 12.0" = RealPlayer
"RiseOfNationsExpansion 1.0" = Rise of Nations
"RunBetterPoker.com MergeKeys Beta" = RunBetterPoker.com MergeKeys Beta
"SoftwareUpdUtility" = Download Updater (AOL LLC)
"TeamViewer 6" = TeamViewer 6
"TripleAVersion1_2_5_5" = TripleA Version 1_2_5_5
"VirtualCloneDrive" = VirtualCloneDrive
"VLC media player" = VLC media player 1.1.9
"WinRAR archiver" = WinRAR archiver
"Yahoo!7 Messenger" = Yahoo!7 Messenger
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"CarbonPoker" = CarbonPoker
"Flux" = F.lux
"Lock Poker" = Lock Poker
"RPM Poker" = RPM Poker
"UnityWebPlayer" = Unity Web Player
========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 5/6/2011 6:04:23 PM | Computer Name = Owner-PC | Source = Application Error | ID = 1000
Description = Faulting application DllHost.exe, version 6.0.6000.16386, time stamp
0x4549b14e, faulting module unknown, version 0.0.0.0, time stamp 0x00000000, exception
code 0xc0000005, fault offset 0x00deb5ed, process id 0x1210, application start time
0x01cc0c3989a7a983.
Error - 5/6/2011 6:04:31 PM | Computer Name = Owner-PC | Source = Application Error | ID = 1000
Description = Faulting application DllHost.exe, version 6.0.6000.16386, time stamp
0x4549b14e, faulting module unknown, version 0.0.0.0, time stamp 0x00000000, exception
code 0xc0000005, fault offset 0x0235b5ed, process id 0x12e4, application start time
0x01cc0c3992d0f023.
Error - 5/6/2011 6:06:13 PM | Computer Name = Owner-PC | Source = PostgreSQL | ID = 0
Description = 2011-05-06 17:06:13 CDTFATAL: the database system is starting up
Error - 5/6/2011 6:06:35 PM | Computer Name = Owner-PC | Source = Application Error | ID = 1000
Description = Faulting application DllHost.exe, version 6.0.6000.16386, time stamp
0x4549b14e, faulting module unknown, version 0.0.0.0, time stamp 0x00000000, exception
code 0xc0000005, fault offset 0x01b8b5ed, process id 0xcd8, application start time
0x01cc0c39d61bb6a2.
Error - 5/6/2011 6:08:30 PM | Computer Name = Owner-PC | Source = PostgreSQL | ID = 0
Description = 2011-05-06 17:08:30 CDTFATAL: the database system is starting up
Error - 5/6/2011 6:08:47 PM | Computer Name = Owner-PC | Source = Application Error | ID = 1000
Description = Faulting application DllHost.exe, version 6.0.6000.16386, time stamp
0x4549b14e, faulting module unknown, version 0.0.0.0, time stamp 0x00000000, exception
code 0xc0000005, fault offset 0x03a7b5ed, process id 0xcdc, application start time
0x01cc0c3a2578d25f.
Error - 5/6/2011 6:10:26 PM | Computer Name = Owner-PC | Source = Winlogon | ID = 4103
Description = Windows license activation failed. Error 0x00000000.
Error - 5/6/2011 6:10:32 PM | Computer Name = Owner-PC | Source = PostgreSQL | ID = 0
Description = 2011-05-06 17:10:32 CDTFATAL: the database system is starting up
Error - 5/6/2011 6:12:22 PM | Computer Name = Owner-PC | Source = EventSystem | ID = 4609
Description =
Error - 5/6/2011 6:13:26 PM | Computer Name = Owner-PC | Source = WinMgmt | ID = 10
Description =
[ System Events ]
Error - 4/23/2011 11:23:40 AM | Computer Name = Owner-PC | Source = HTTP | ID = 15016
Description =
Error - 4/24/2011 11:23:28 AM | Computer Name = Owner-PC | Source = Dhcp | ID = 1000
Description = Your computer has lost the lease to its IP address 192.168.1.101 on
the Network Card with network address 001BB9FBDA92.
Error - 4/24/2011 6:19:57 PM | Computer Name = Owner-PC | Source = Dhcp | ID = 1002
Description = The IP address lease 192.168.1.100 for the Network Card with network
address 001BB9FBDA92 has been denied by the DHCP server 192.168.1.1 (The DHCP Server
sent a DHCPNACK message).
Error - 4/24/2011 6:20:16 PM | Computer Name = Owner-PC | Source = Server | ID = 2505
Description = The server could not bind to the transport \Device\NetBT_Tcpip_{32572978-77FA-456C-AC4B-D131EDFC09E5}
because another computer on the network has the same name. The server could not
start.
Error - 4/24/2011 6:20:16 PM | Computer Name = Owner-PC | Source = netbt | ID = 4321
Description = The name "OWNER-PC :0" could not be registered on the interface
with IP address 192.168.1.101. The computer with the IP address 192.168.1.100 did
not allow the name to be claimed by this computer.
Error - 4/24/2011 6:20:16 PM | Computer Name = Owner-PC | Source = netbt | ID = 4321
Description = The name "OWNER-PC :0" could not be registered on the interface
with IP address 192.168.1.101. The computer with the IP address 192.168.1.100 did
not allow the name to be claimed by this computer.
Error - 4/24/2011 6:20:16 PM | Computer Name = Owner-PC | Source = netbt | ID = 4321
Description = The name "OWNER-PC :20" could not be registered on the interface
with IP address 192.168.1.101. The computer with the IP address 192.168.1.100 did
not allow the name to be claimed by this computer.
Error - 4/25/2011 1:30:39 PM | Computer Name = Owner-PC | Source = HTTP | ID = 15016
Description =
Error - 4/25/2011 7:43:27 PM | Computer Name = Owner-PC | Source = Dhcp | ID = 1002
Description = The IP address lease 192.168.1.101 for the Network Card with network
address 001BB9FBDA92 has been denied by the DHCP server 192.168.1.1 (The DHCP Server
sent a DHCPNACK message).
Error - 4/26/2011 2:50:27 PM | Computer Name = Owner-PC | Source = HTTP | ID = 15016
Description =
< End of report >