Hi,
I ran Malwarebytes for no particular reason except routine maintenance.
It reported-
Registry Keys: 1
PUP.Optional.Softonic.A, HKU\S-1-5-21-3019073540-286944912-3486399463-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\Softonic, , [809d88db8af283b362adec6dea19857b],
Malwarebytes removed it successfully.
I then scanned with-
Microsoft Security Essentials
Panda Free Antivirus 2015
Malwarebytes
SUPERAntiSpyware
Kaspersky Virus Removal Tool (in Safe Mode)
They all came back clean.
My computer seems to be running normally. I was wondering if anything was missed.
Thank you,
whynot53
------------------------------------------------------------------------------------------------------------------
OTL logfile created on: 1/12/2015 10:30:52 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Dan\Desktop
Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.17183)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
3.00 Gb Total Physical Memory | 2.35 Gb Available Physical Memory | 78.32% Memory free
5.99 Gb Paging File | 5.25 Gb Available in Paging File | 87.56% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 931.41 Gb Total Space | 673.41 Gb Free Space | 72.30% Space Free | Partition Type: NTFS
Drive D: | 114.49 Gb Total Space | 28.61 Gb Free Space | 24.99% Space Free | Partition Type: NTFS
Computer Name: DANIEL | User Name: Dan | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ==========
PRC - [2015/01/12 10:22:05 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Dan\Desktop\OTL.exe
PRC - [2014/12/02 22:31:36 | 003,498,728 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
PRC - [2014/12/02 22:31:16 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2014/10/16 05:21:23 | 000,038,136 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Security Protection\PSUAService.exe
PRC - [2014/10/16 05:21:22 | 000,037,624 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Security Protection\PSUAMain.exe
PRC - [2014/10/13 12:03:10 | 000,142,072 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Security Protection\PSANHost.exe
PRC - [2014/10/09 15:40:48 | 000,066,808 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Devices Agent\AgentSvc.exe
PRC - [2014/03/27 21:35:18 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2011/02/24 21:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2002/09/04 13:11:04 | 000,073,728 | ---- | M] (Iomega Corporation) -- C:\Program Files\Iomega\System32\AppServices.exe
========== Modules (No Company Name) ==========
MOD - [2014/10/11 12:06:16 | 000,073,544 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2014/10/11 12:05:58 | 001,044,776 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
========== Services (SafeList) ==========
SRV - File not found [Disabled | Stopped] -- -- (Iomega Activity Disk2)
SRV - [2014/12/09 03:17:52 | 000,114,800 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2014/12/02 22:31:16 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2014/10/16 05:21:23 | 000,038,136 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Security Protection\PSUAService.exe -- (PSUAService)
SRV - [2014/10/13 12:03:10 | 000,142,072 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Security Protection\PSANHost.exe -- (NanoServiceMain)
SRV - [2014/10/09 15:40:48 | 000,066,808 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Devices Agent\AgentSvc.exe -- (PandaAgent)
SRV - [2014/03/28 02:15:29 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2013/05/26 20:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/07/13 17:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2009/07/13 17:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/13 17:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2002/09/04 13:11:04 | 000,073,728 | ---- | M] (Iomega Corporation) [Auto | Running] -- C:\Program Files\Iomega\System32\AppServices.exe -- (Iomega App Services)
========== Driver Services (SafeList) ==========
DRV - [2014/10/13 12:04:20 | 000,100,112 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\PSINReg.sys -- (PSINReg)
DRV - [2014/10/13 12:04:19 | 000,105,232 | ---- | M] (Panda Security, S.L.) [File_System | Auto | Running] -- C:\Windows\System32\drivers\PSINFile.sys -- (PSINFile)
DRV - [2014/10/13 12:04:18 | 000,139,536 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\PSINAflt.sys -- (PSINAflt)
DRV - [2014/10/02 06:16:38 | 000,124,688 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\PSINProt.sys -- (PSINProt)
DRV - [2014/10/02 06:16:38 | 000,113,936 | ---- | M] (Panda Security, S.L.) [File_System | Auto | Running] -- C:\Windows\System32\drivers\PSINProc.sys -- (PSINProc)
DRV - [2014/10/02 06:16:37 | 000,168,208 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\System32\drivers\PSINKNC.sys -- (PSINKNC)
DRV - [2014/06/18 02:18:22 | 000,166,816 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\System32\drivers\NNSHttp.sys -- (NNSHTTP)
DRV - [2014/06/04 07:59:21 | 000,244,000 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\System32\drivers\NNSStrm.sys -- (NNSSTRM)
DRV - [2014/06/04 07:59:21 | 000,109,856 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\System32\drivers\NNSSmtp.sys -- (NNSSMTP)
DRV - [2014/06/04 07:59:21 | 000,096,928 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\System32\drivers\NNStlsc.sys -- (NNSTLSC)
DRV - [2014/06/04 07:59:20 | 000,288,032 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\System32\drivers\NNSProt.sys -- (NNSPROT)
DRV - [2014/06/04 07:59:20 | 000,208,800 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\System32\drivers\NNSPrv.sys -- (NNSPRV)
DRV - [2014/06/04 07:59:19 | 000,121,888 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\System32\drivers\NNSPop3.sys -- (NNSPOP3)
DRV - [2014/06/04 07:59:19 | 000,061,984 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\System32\drivers\NNSPihsw.sys -- (NNSPIHSW)
DRV - [2014/06/04 07:59:18 | 000,125,216 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\System32\drivers\NNSIds.sys -- (NNSIDS)
DRV - [2014/06/04 07:59:18 | 000,096,160 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\System32\drivers\NNSpicc.sys -- (NNSPICC)
DRV - [2014/06/04 07:59:17 | 000,110,624 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\System32\drivers\NNSHttps.sys -- (NNSHTTPS)
DRV - [2014/06/04 07:59:17 | 000,088,992 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\System32\drivers\NNSAlpc.sys -- (NNSALPC)
DRV - [2014/03/25 05:15:08 | 000,048,736 | ---- | M] (Panda Security, S.L.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\PSKMAD.sys -- (PSKMAD)
DRV - [2014/02/10 22:24:44 | 000,020,616 | ---- | M] () [Kernel | System | Stopped] -- C:\Windows\System32\drivers\uim_devim.sys -- (Uim_DEVIM)
DRV - [2014/01/16 09:41:53 | 000,040,192 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\Windows\System32\drivers\NNSNAHSL.sys -- (NNSNAHSL)
DRV - [2013/10/01 16:42:31 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2012/08/23 06:44:32 | 000,014,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2011/07/22 08:27:02 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys -- (SASDIFSV)
DRV - [2011/07/12 13:55:22 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS -- (SASKUTIL)
DRV - [2011/05/18 07:09:04 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dc3d.sys -- (dc3d)
DRV - [2010/11/20 13:29:03 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010/11/20 13:29:03 | 000,062,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dmvsc.sys -- (dmvsc)
DRV - [2010/11/20 13:29:03 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010/11/20 13:29:03 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010/11/20 13:29:03 | 000,027,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2010/11/20 13:29:03 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010/11/20 13:29:03 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010/04/13 15:06:20 | 000,017,064 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\SiWinAcc.sys -- (SiFilter)
DRV - [2010/04/13 15:06:20 | 000,012,200 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\SiRemFil.sys -- (SiRemFil)
DRV - [2010/04/13 15:06:16 | 000,216,616 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\Si3124r5.sys -- (Si3124r5)
DRV - [2010/01/17 12:10:54 | 000,385,544 | ---- | M] (Paragon) [Kernel | System | Running] -- C:\Windows\System32\drivers\Uim_IM.sys -- (Uim_IM)
DRV - [2010/01/17 12:10:54 | 000,040,560 | ---- | M] (Paragon Software Group) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\hotcore3.sys -- (hotcore3)
DRV - [2010/01/17 12:10:54 | 000,034,392 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | System | Running] -- C:\Windows\System32\drivers\UimBus.sys -- (UimBus)
DRV - [2009/07/13 14:09:17 | 004,194,816 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2009/06/18 18:45:02 | 004,172,832 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RTKVAC.SYS -- (ALCXWDM)
DRV - [2008/07/22 06:42:58 | 000,051,200 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtnicxp.sys -- (RTL8023xp)
DRV - [2006/07/06 11:16:12 | 000,064,000 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\AIC78XX.SYS -- (aic78xx)
DRV - [2002/09/04 13:11:08 | 000,030,258 | ---- | M] (Iomega Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\IomDisk.sys -- (iomdisk)
========== Standard Registry (SafeList) ==========
========== Internet Explorer ==========
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default Download Directory = C:\Users\Dan\Desktop
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0F 76 6E 5B 3E 4A CF 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {9CA3110E-B07F-4EDC-8E79-4F1C8B7E02D3}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE10SR
IE - HKCU\..\SearchScopes\{9CA3110E-B07F-4EDC-8E79-4F1C8B7E02D3}: "URL" = http://www.google.co...utputEncoding?}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
========== FireFox ==========
FF - prefs.js..browser.search.defaultenginename: "Google"
FF - prefs.js..browser.search.hiddenOneOffs: "Yahoo,Bing,Amazon.com,DuckDuckGo,eBay,Twitter,Wikipedia (en)"
FF - prefs.js..browser.search.highlightCount: 0
FF - prefs.js..browser.search.isUS: true
FF - prefs.js..browser.startup.homepage: "http://att.yahoo.com/"
FF - prefs.js..extensions.enabledAddons: %7Bd40f5e7b-d2cf-4856-b441-cc613eeffbe3%7D:1.68
FF - prefs.js..extensions.enabledAddons: anticontainer%40downthemall.net:1.3
FF - prefs.js..extensions.enabledAddons: %7BDDC359D1-844A-42a7-9AA1-88A850A938A8%7D:2.0.17
FF - prefs.js..extensions.enabledAddons: adblockpopups%40jessehakanen.net:0.9.2
FF - prefs.js..extensions.enabledAddons: %7Bb9db16a4-6edc-47ec-a1f4-b86292ed211d%7D:4.9.24
FF - prefs.js..extensions.enabledAddons: thumbnailZoom%40dadler.github.com:3.2
FF - prefs.js..extensions.enabledAddons: web2pdfextension%40web2pdf.adobedotcom:2.0
FF - prefs.js..extensions.enabledAddons: ClassicThemeRestorer%40ArisT2Noia4dev:1.2.8.2
FF - prefs.js..extensions.enabledAddons: %7B73a6fe31-595d-460b-a920-fcc0f8843232%7D:2.6.9.10
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:34.0.5
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_16_0_0_235.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.25.2: C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.25.2: C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.3: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.5: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Acrobat: C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2014/12/11 06:47:35 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 34.0.5\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 34.0.5\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 31.3.0\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 31.3.0\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 34.0.5\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 34.0.5\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 31.3.0\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Thunderbird 31.3.0\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins
[2014/03/27 23:54:25 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dan\AppData\Roaming\Mozilla\Extensions
[2014/12/26 13:25:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Dan\AppData\Roaming\Mozilla\Firefox\Profiles\zzxsrq5o.default\extensions
[2014/09/11 15:20:35 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Dan\AppData\Roaming\Mozilla\Firefox\Profiles\zzxsrq5o.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2014/05/28 18:11:29 | 000,133,000 | ---- | M] () (No name found) -- C:\Users\Dan\AppData\Roaming\Mozilla\Firefox\Profiles\zzxsrq5o.default\extensions\[email protected]
[2014/04/02 09:54:34 | 000,098,595 | ---- | M] () (No name found) -- C:\Users\Dan\AppData\Roaming\Mozilla\Firefox\Profiles\zzxsrq5o.default\extensions\[email protected]
[2014/12/24 15:38:55 | 000,433,727 | ---- | M] () (No name found) -- C:\Users\Dan\AppData\Roaming\Mozilla\Firefox\Profiles\zzxsrq5o.default\extensions\[email protected]
[2014/05/01 17:05:28 | 000,126,171 | ---- | M] () (No name found) -- C:\Users\Dan\AppData\Roaming\Mozilla\Firefox\Profiles\zzxsrq5o.default\extensions\[email protected]
[2014/12/05 14:31:46 | 000,197,276 | ---- | M] () (No name found) -- C:\Users\Dan\AppData\Roaming\Mozilla\Firefox\Profiles\zzxsrq5o.default\extensions\[email protected]
[2014/12/26 13:25:23 | 000,544,302 | ---- | M] () (No name found) -- C:\Users\Dan\AppData\Roaming\Mozilla\Firefox\Profiles\zzxsrq5o.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
[2014/11/12 20:43:48 | 000,979,699 | ---- | M] () (No name found) -- C:\Users\Dan\AppData\Roaming\Mozilla\Firefox\Profiles\zzxsrq5o.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2014/03/28 22:58:50 | 000,138,614 | ---- | M] () (No name found) -- C:\Users\Dan\AppData\Roaming\Mozilla\Firefox\Profiles\zzxsrq5o.default\extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi
[2014/05/01 23:16:48 | 000,731,942 | ---- | M] () (No name found) -- C:\Users\Dan\AppData\Roaming\Mozilla\Firefox\Profiles\zzxsrq5o.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi
[2014/12/09 03:17:36 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2014/12/09 03:17:54 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2014/12/11 06:47:35 | 000,000,000 | ---D | M] (Adobe Acrobat - Create PDF) -- C:\PROGRAM FILES\ADOBE\ACROBAT 11.0\ACROBAT\BROWSER\WCFIREFOXEXTN
O1 HOSTS File: ([2014/12/11 05:10:16 | 000,003,384 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 209.34.83.73:443
O1 - Hosts: 127.0.0.1 209.34.83.73:43
O1 - Hosts: 127.0.0.1 209.34.83.73
O1 - Hosts: 127.0.0.1 209.34.83.67:443
O1 - Hosts: 127.0.0.1 209.34.83.67:43
O1 - Hosts: 127.0.0.1 209.34.83.67
O1 - Hosts: 127.0.0.1 ood.opsource.net
O1 - Hosts: 127.0.0.1 199.7.52.190:80
O1 - Hosts: 127.0.0.1 199.7.52.190
O1 - Hosts: 127.0.0.1 OCSP.SPO1.VERISIGN.COM
O1 - Hosts: 127.0.0.1 199.7.54.72:80
O1 - Hosts: 127.0.0.1 199.7.54.72
O1 - Hosts: 127.0.0.1 192.150.14.69
O1 - Hosts: 127.0.0.1 192.150.18.101
O1 - Hosts: 127.0.0.1 192.150.18.108
O1 - Hosts: 127.0.0.1 192.150.22.40
O1 - Hosts: 127.0.0.1 192.150.8.100
O1 - Hosts: 127.0.0.1 192.150.8.118
O1 - Hosts: 127.0.0.1 209-34-83-73.ood.opsource.net
O1 - Hosts: 127.0.0.1 3dns-1.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 127.0.0.1 3dns-2.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-3.adobe.com
O1 - Hosts: 127.0.0.1 3dns-4.adobe.com
O1 - Hosts: 60 more lines...
O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Adobe Acrobat Create PDF Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Adobe Acrobat Create PDF from Selection) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Adobe Acrobat Create PDF Toolbar) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe Acrobat Create PDF Toolbar) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [PSUAMain] C:\Program Files\Panda Security\Panda Security Protection\PSUAMain.exe (Panda Security, S.L.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8 - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Append to Existing PDF - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} http://catalog.updat...b?1396045450596 (MUCatalogWebControl Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2653FD28-EDFE-4851-8147-C85463D51608}: DhcpNameServer = 192.168.1.254
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 13:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2013/08/03 17:27:59 | 000,000,000 | ---- | M] () - D:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
========== Files/Folders - Created Within 30 Days ==========
[2015/01/12 05:37:51 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Dan\Desktop\OTL.exe
[2015/01/08 15:03:54 | 000,048,736 | ---- | C] (Panda Security, S.L.) -- C:\Windows\System32\drivers\PSKMAD.sys
[2015/01/01 15:22:46 | 000,000,000 | ---D | C] -- C:\Users\Dan\AppData\Roaming\Panda Security
[2015/01/01 15:22:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Free Antivirus
[2015/01/01 15:22:23 | 000,000,000 | ---D | C] -- C:\Program Files\Panda Security
[2015/01/01 15:20:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Panda Security
[2014/12/25 13:30:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2014/12/24 15:44:20 | 000,000,000 | ---D | C] -- C:\Sans Digital 3-7 (AB)
[2014/12/21 10:30:57 | 000,000,000 | ---D | C] -- C:\Users\Dan\Desktop\Virus
[2014/03/28 10:39:56 | 003,765,464 | ---- | C] (COMODO) -- C:\ProgramData\cisB50E.exe
========== Files - Modified Within 30 Days ==========
[2015/01/12 10:22:05 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Dan\Desktop\OTL.exe
[2015/01/12 05:55:43 | 000,031,520 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2015/01/12 05:55:43 | 000,031,520 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2015/01/12 05:52:37 | 000,661,656 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2015/01/12 05:52:37 | 000,121,524 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2015/01/12 05:48:22 | 000,447,992 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2015/01/12 05:48:19 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015/01/12 05:48:12 | 2414,977,024 | -HS- | M] () -- C:\hiberfil.sys
[2015/01/11 10:00:06 | 000,000,382 | -H-- | M] () -- C:\Windows\tasks\{B57402BF-A753-41D2-98BD-7C2D6C60C154}.job
[2015/01/09 12:24:38 | 094,510,612 | ---- | M] () -- C:\Users\Dan\Desktop\Innocence of Muslims - Sam Bacile.mp4
[2015/01/02 21:36:28 | 014,743,686 | ---- | M] () -- C:\Users\Dan\Desktop\TR8MB_TR8M_Detailed_Manual.pdf
[2015/01/02 18:27:04 | 000,379,731 | ---- | M] () -- C:\Users\Dan\Desktop\towerraid_tr8mbp.pdf
[2015/01/02 18:20:35 | 001,801,932 | ---- | M] () -- C:\Users\Dan\Desktop\tr8xb_tr8x_quickstart_web.pdf
[2014/12/31 10:07:43 | 000,001,945 | ---- | M] () -- C:\Windows\epplauncher.mif
[2014/12/24 17:57:45 | 008,185,402 | ---- | M] () -- C:\Users\Dan\Desktop\Using the Cat-in-the-bag Cozy Comfort Carrier.mp4
[2014/12/23 21:41:37 | 000,114,904 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys
[2014/12/21 05:57:34 | 003,588,608 | ---- | M] (x264vfw project) -- C:\Windows\System32\x264vfw.dll
========== Files Created - No Company Name ==========
[2015/01/12 05:48:14 | 000,447,992 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2015/01/09 12:22:06 | 094,510,612 | ---- | C] () -- C:\Users\Dan\Desktop\Innocence of Muslims - Sam Bacile.mp4
[2015/01/02 21:36:28 | 014,743,686 | ---- | C] () -- C:\Users\Dan\Desktop\TR8MB_TR8M_Detailed_Manual.pdf
[2015/01/02 18:27:03 | 000,379,731 | ---- | C] () -- C:\Users\Dan\Desktop\towerraid_tr8mbp.pdf
[2015/01/02 18:20:35 | 001,801,932 | ---- | C] () -- C:\Users\Dan\Desktop\tr8xb_tr8x_quickstart_web.pdf
[2015/01/01 15:25:21 | 000,000,382 | -H-- | C] () -- C:\Windows\tasks\{B57402BF-A753-41D2-98BD-7C2D6C60C154}.job
[2014/12/31 09:52:50 | 000,001,994 | ---- | C] () -- C:\Users\Dan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileHippo App Manager.lnk
[2014/12/24 17:57:27 | 008,185,402 | ---- | C] () -- C:\Users\Dan\Desktop\Using the Cat-in-the-bag Cozy Comfort Carrier.mp4
[2014/12/11 00:33:30 | 000,655,872 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2014/12/11 00:33:30 | 000,240,128 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2014/12/11 00:33:30 | 000,216,064 | ---- | C] ( ) -- C:\Windows\System32\lagarith.dll
[2014/12/11 00:33:24 | 000,112,640 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2014/05/27 01:48:09 | 000,000,032 | ---- | C] () -- C:\Windows\GetFLV.ini
[2014/04/29 00:29:19 | 000,000,017 | ---- | C] () -- C:\Users\Dan\AppData\Local\resmon.resmoncfg
[2014/03/29 16:30:39 | 000,000,291 | ---- | C] () -- C:\Windows\System32\Remover.ini
[2014/03/29 16:30:33 | 000,000,566 | ---- | C] () -- C:\Windows\System32\SP7302.ini
[2014/03/28 20:35:36 | 000,218,712 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2014/03/28 10:52:33 | 000,000,000 | ---- | C] () -- C:\ProgramData\cisDB55.exe
[2014/03/27 20:19:10 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2014/03/27 20:19:10 | 000,000,000 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2014/02/10 22:24:44 | 000,020,616 | ---- | C] () -- C:\Windows\System32\drivers\uim_devim.sys
========== ZeroAccess Check ==========
[2009/07/13 20:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/06/24 17:41:30 | 012,874,240 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 13:29:20 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/13 17:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ==========
[2014/04/01 10:25:48 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\abelhadigital.com
[2014/04/29 03:44:16 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\Active Disk
[2014/12/11 05:59:19 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\com.adobe.formscentral.FormsCentralForAcrobat
[2014/07/24 15:23:53 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\ImgBurn
[2014/12/11 09:11:25 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\MediaInfo
[2014/03/28 20:39:14 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\MPC-HC
[2014/11/15 21:22:56 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\Oracle
[2015/01/01 15:22:46 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\Panda Security
[2014/03/29 23:40:35 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\Thunderbird
[2014/04/22 14:58:35 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\TumblRipper2
[2015/01/07 17:14:46 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\uTorrent
[2014/03/30 06:16:47 | 000,000,000 | ---D | M] -- C:\Users\Dan\AppData\Roaming\XnView
========== Purity Check ==========
========== Alternate Data Streams ==========
@Alternate Data Stream - 88 bytes -> C:\Users\Dan\Desktop\PSY Gangnam Style.flv:SummaryInformation
@Alternate Data Stream - 172 bytes -> C:\Users\Dan\Desktop\Turner's Receipt 2.jpg:3or4kl4x13tuuug3Byamue2s4b
@Alternate Data Stream - 172 bytes -> C:\Users\Dan\Desktop\Turner's Receipt 1.jpg:3or4kl4x13tuuug3Byamue2s4b
< End of report >
--------------------------------------------------------------------------------------------------------------------------------------------------------
OTL Extras logfile created on: 1/12/2015 10:30:52 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Dan\Desktop
Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.17183)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
3.00 Gb Total Physical Memory | 2.35 Gb Available Physical Memory | 78.32% Memory free
5.99 Gb Paging File | 5.25 Gb Available in Paging File | 87.56% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 931.41 Gb Total Space | 673.41 Gb Free Space | 72.30% Space Free | Partition Type: NTFS
Drive D: | 114.49 Gb Total Space | 28.61 Gb Free Space | 24.99% Space Free | Partition Type: NTFS
Computer Name: DANIEL | User Name: Dan | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Directory [runas] -- cmd.exe /c takeown /f "%1" /r /d y && icacls "%1" /grant administrators:F /t (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0324A6BF-BC62-42F7-B8A8-123365C47E7A}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{063A61AD-09CB-4A1A-82D9-333B1DFE0C7F}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{2723993A-239F-4E86-B463-A6B416BCD2EA}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{3247827B-F6F5-479D-9B94-06A304A44C14}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{36CEFFC9-15A4-42AA-8586-B9FE3986A703}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{4A23F577-A4DF-4113-A69D-9BB6BDB803DC}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{4CAFF5F4-6F80-4F92-A1BC-DD0D964112E6}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{5105BE80-A295-4D27-B41E-4A1CF845AC50}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{61F4DDAC-E26B-4522-8DC9-0AE160520D97}" = rport=445 | protocol=6 | dir=out | app=system |
"{7609DFB0-BD91-45E3-AC20-B73DB2D4BA18}" = lport=137 | protocol=17 | dir=in | app=system |
"{7721BC58-4679-42B2-AEF9-D47A98AD2872}" = rport=138 | protocol=17 | dir=out | app=system |
"{851D0424-BB4A-4374-8A49-FF343F5C128E}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8EFC82A0-42FB-446F-9B9C-230A3735C754}" = lport=2869 | protocol=6 | dir=in | app=system |
"{98149266-3D96-4242-B9B1-2045F0E33E8A}" = rport=10243 | protocol=6 | dir=out | app=system |
"{A8606C78-CE0D-4795-BCF4-04D2D5D88C01}" = lport=10243 | protocol=6 | dir=in | app=system |
"{ACA6D711-62EE-4460-8C48-33B7E427D7B2}" = lport=445 | protocol=6 | dir=in | app=system |
"{B032C2ED-52BE-4953-B151-86A52C013961}" = rport=139 | protocol=6 | dir=out | app=system |
"{B157DECE-E0B6-4F59-8939-F8B23F033699}" = rport=137 | protocol=17 | dir=out | app=system |
"{BCEDE212-3674-4EC8-9AEF-AE2056447086}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{CAC5854C-E2AC-44B7-A829-F85DA21F3CAB}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{D8EAEFE1-0A31-4279-A20B-F68830D6AC44}" = lport=138 | protocol=17 | dir=in | app=system |
"{E2A3391B-A017-4082-AFAE-CD92D17CEFCA}" = lport=139 | protocol=6 | dir=in | app=system |
"{E7822C8E-3E34-49F0-ACE3-6CE2E960D761}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{EE07F40F-C794-45CE-9EB0-D7269AB45EA1}" = lport=3389 | protocol=6 | dir=in | app=system |
"{F040BF7C-C0A6-438D-B65E-BC7F053B73FC}" = lport=3389 | protocol=17 | dir=in | svc=termservice | app=%systemroot%\system32\svchost.exe |
"{F98513E7-ADE1-4047-92B5-2AB2114653D7}" = lport=3389 | protocol=6 | dir=in | svc=termservice | app=%systemroot%\system32\svchost.exe |
"{FF3DC6C2-BB0F-447B-8309-56A47CFEEE4B}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{082AFEC2-B6C7-4BD7-A142-A72982AF5CC1}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{0C65AEC7-CED1-4AE6-9F9B-BBA57CA3445F}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{0FA76C42-B9A5-4192-90BB-1CFD75391799}" = protocol=58 | dir=out | [email protected],-28546 |
"{19B589D7-0374-42A3-8E49-728F0F4D5275}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{1C4B7BE6-D854-4530-B82D-636B48F231A8}" = protocol=6 | dir=in | app=c:\program files\elcomsoft password recovery\advanced archive password recovery\archpr.exe |
"{1D2B052E-6978-429A-AD56-9FD6C0BB08F5}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{2369F598-0A75-4C5F-BF77-36F93E6B9D17}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{2A475B7F-A623-419C-A334-AD76A6922677}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{389C57D1-2C41-47F5-82C0-901EF66EA883}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{4DCACB48-2D05-41C5-BCEA-4B8A2D2B8696}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{4E0CD5FE-C65F-4461-AB1E-7865E8AB0162}" = protocol=1 | dir=out | [email protected],-28544 |
"{50B99B7A-5C29-4029-8011-1921BFBD14DA}" = protocol=17 | dir=in | app=c:\program files\elcomsoft password recovery\advanced archive password recovery\archpr.exe |
"{53C60734-4A49-4285-8586-9B67AE1E0373}" = protocol=58 | dir=in | [email protected],-28545 |
"{5E05D8FA-8505-4911-8545-DD53ED8D8A15}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{715C1228-189F-41A0-8706-4D15344AA5AF}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{7BD019CB-40A6-45E3-8095-0D3843726CA3}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{7F9366E4-DC3E-4170-BFDD-E28F49AE7102}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{8FF63E81-A557-4DC3-A310-525E94B46099}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{93DF2670-4549-4C7C-882A-8A3325C71074}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{A3F0CFAE-E7F9-4575-B823-3EDA743F08D1}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{AAE10660-0E2F-4CE0-9871-FA82D49BB9C2}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{B683B6D0-CE83-4441-AE25-54B8985B3308}" = protocol=1 | dir=in | [email protected],-28543 |
"{B99334BC-2957-4D52-BB72-B1DE9BB8D7EF}" = protocol=6 | dir=out | app=system |
"{CDAD3F01-E6CD-4017-BB2C-DB1EF370E1F1}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{D4FBA0AC-A817-48EF-9C6A-37B10967E052}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"TCP Query User{560B9951-BC33-42CD-BFB6-46F2F990A143}C:\users\dan\appdata\roaming\utorrent\utorrent 3.4.2.37122.exe" = protocol=6 | dir=in | app=c:\users\dan\appdata\roaming\utorrent\utorrent 3.4.2.37122.exe |
"TCP Query User{570487E2-B3DF-409F-A34D-0210876020AB}C:\users\dan\appdata\local\jdownloader 2.0\jdownloader2.exe" = protocol=6 | dir=in | app=c:\users\dan\appdata\local\jdownloader 2.0\jdownloader2.exe |
"TCP Query User{DEC7B5B4-41E3-40AC-B383-BC868CE84011}C:\computer stuff\hostman\hostsserver_2.0.59.1_win32\hostssrv.exe" = protocol=6 | dir=in | app=c:\computer stuff\hostman\hostsserver_2.0.59.1_win32\hostssrv.exe |
"TCP Query User{E1EAA42F-7E1C-4835-9884-762390933E93}C:\users\dan\appdata\roaming\utorrent\utorrent 3.4.2.36802.exe" = protocol=6 | dir=in | app=c:\users\dan\appdata\roaming\utorrent\utorrent 3.4.2.36802.exe |
"UDP Query User{16DFB213-1E94-423F-9422-31FE52FBD525}C:\computer stuff\hostman\hostsserver_2.0.59.1_win32\hostssrv.exe" = protocol=17 | dir=in | app=c:\computer stuff\hostman\hostsserver_2.0.59.1_win32\hostssrv.exe |
"UDP Query User{266D3018-C6A3-4C30-AAD1-A2A99DFB2C0F}C:\users\dan\appdata\roaming\utorrent\utorrent 3.4.2.36802.exe" = protocol=17 | dir=in | app=c:\users\dan\appdata\roaming\utorrent\utorrent 3.4.2.36802.exe |
"UDP Query User{2FC02A30-851D-4B35-B76A-1434E8B6F703}C:\users\dan\appdata\local\jdownloader 2.0\jdownloader2.exe" = protocol=17 | dir=in | app=c:\users\dan\appdata\local\jdownloader 2.0\jdownloader2.exe |
"UDP Query User{740727CE-C2D4-4C1D-AFA9-3188777FBD1C}C:\users\dan\appdata\roaming\utorrent\utorrent 3.4.2.37122.exe" = protocol=17 | dir=in | app=c:\users\dan\appdata\roaming\utorrent\utorrent 3.4.2.37122.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01011662-76A8-41E8-B1A8-4F8821570AC5}" = Advanced Archive Password Recovery
"{1E104AF0-EA49-11DE-AC07-005056C00008}" = Paragon Hard Disk Manager™ 2010 Professional
"{235EBB33-3DA1-46DF-AADE-9955123409CB}" = Apple Mobile Device Support
"{254BEB3E-1085-4D66-9CDC-0152C0DC2E93}" = EPSON TWAIN 5
"{26A24AE4-039D-4CA4-87B4-2F83218025F0}" = Java 8 Update 25
"{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}" = QuickTime 7
"{4903D172-DCCB-392F-93A3-34CA9D47FE3D}" = Microsoft .NET Framework 4.5.1
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{5AE4765D-040B-4652-BB15-BA95DE42B6ED}" = Panda Free Antivirus
"{5D928931-D1D2-4A93-A82D-BF60D0E7CFA5}" = iTunes
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}" = Apple Application Support
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{98333358-268C-4164-B6D4-C96DF5153727}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-00B2-0409-0000-0000000FF1CE}" = Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_ENTERPRISE_{98333358-268C-4164-B6D4-C96DF5153727}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_ENTERPRISE_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1
"{949F1EA1-D3E2-472E-BC7C-CB72374C0E55}" = Panda Devices Agent
"{AC76BA86-1033-FFFF-7760-000000000006}" = Adobe Acrobat XI Pro
"{AC76BA86-7AD7-1033-7B44-AB0000000001}" = Adobe Reader XI (11.0.10)
"{B2920232-19DA-44FC-835F-68E427EAE2CE}" = Telescope Driver
"{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"7-Zip" = 7-Zip 9.35 beta
"Adobe Flash Player ActiveX" = Adobe Flash Player 16 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 16 NPAPI
"Any to Icon" = Any to Icon
"CCleaner" = CCleaner
"ENTERPRISE" = Microsoft Office Enterprise 2007
"FileASSASSIN" = FileASSASSIN
"FileHippo.com" = FileHippo App Manager
"ImgBurn" = ImgBurn
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 10.9.1
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware version 2.0.4.1028
"MediaInfo" = MediaInfo 0.7.71
"Mozilla Firefox 34.0.5 (x86 en-US)" = Mozilla Firefox 34.0.5 (x86 en-US)
"Mozilla Thunderbird 31.3.0 (x86 en-US)" = Mozilla Thunderbird 31.3.0 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Panda Devices Agent" = Panda Devices Agent
"Panda Universal Agent Endpoint" = Panda Free Antivirus
"Revo Uninstaller" = Revo Uninstaller 1.95
"VLC media player" = VLC media player
"WinRAR archiver" = WinRAR 5.20 (32-bit)
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"62ee1b5ad72c0341" = FlatFolder
"uTorrent" = µTorrent
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 1/12/2015 9:49:05 AM | Computer Name = Daniel | Source = Windows Search Service | ID = 9002
Description =
Error - 1/12/2015 9:49:05 AM | Computer Name = Daniel | Source = Windows Search Service | ID = 3029
Description =
Error - 1/12/2015 9:49:06 AM | Computer Name = Daniel | Source = Windows Search Service | ID = 3029
Description =
Error - 1/12/2015 9:49:06 AM | Computer Name = Daniel | Source = Windows Search Service | ID = 3028
Description =
Error - 1/12/2015 9:49:06 AM | Computer Name = Daniel | Source = Windows Search Service | ID = 3058
Description =
Error - 1/12/2015 9:49:06 AM | Computer Name = Daniel | Source = Windows Search Service | ID = 7010
Description =
Error - 1/12/2015 10:00:01 AM | Computer Name = Daniel | Source = .NET Runtime | ID = 1022
Description =
Error - 1/12/2015 10:01:53 AM | Computer Name = Daniel | Source = .NET Runtime | ID = 1022
Description =
Error - 1/12/2015 10:04:51 AM | Computer Name = Daniel | Source = .NET Runtime | ID = 1022
Description =
Error - 1/12/2015 10:21:47 AM | Computer Name = Daniel | Source = .NET Runtime | ID = 1022
Description =
[ System Events ]
Error - 1/12/2015 9:45:03 AM | Computer Name = Daniel | Source = Service Control Manager | ID = 7034
Description = The Adobe Acrobat Update Service service terminated unexpectedly.
It has done this 1 time(s).
Error - 1/12/2015 9:48:41 AM | Computer Name = Daniel | Source = Service Control Manager | ID = 7006
Description = The ScRegSetValueExW call failed for FailureActions with the following
error: %%5
Error - 1/12/2015 9:48:41 AM | Computer Name = Daniel | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
Uim_DEVIM
Error - 1/12/2015 9:49:06 AM | Computer Name = Daniel | Source = Service Control Manager | ID = 7024
Description = The Windows Search service terminated with service-specific error
%%-1073473535.
Error - 1/12/2015 9:49:09 AM | Computer Name = Daniel | Source = Service Control Manager | ID = 7031
Description = The Windows Search service terminated unexpectedly. It has done this
1 time(s). The following corrective action will be taken in 30000 milliseconds:
Restart the service.
< End of report >