superfox3740
Posts: 33 +0
Extras.txt
OTL Extras logfile created on: 10/27/2012 8:21:57 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Eric\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
3.86 Gb Total Physical Memory | 2.52 Gb Available Physical Memory | 65.30% Memory free
7.73 Gb Paging File | 6.17 Gb Available in Paging File | 79.86% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 451.07 Gb Total Space | 99.50 Gb Free Space | 22.06% Space Free | Partition Type: NTFS
Computer Name: ERIC-PC | User Name: Eric | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection DefaultInstall 132 %1 (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02BB4363-CDD2-40A6-8B97-8ADCE444CD4E}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{0D1E5964-01E0-4778-94CD-BBDBF2D93D9A}" = lport=2869 | protocol=6 | dir=in | app=system |
"{10D29792-5DDA-4E69-97D3-F7215D74886A}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{2572E287-5002-4A47-BB7F-924B8633ABF3}" = lport=137 | protocol=17 | dir=in | app=system |
"{4B64D2D3-A391-4E99-AF1D-B1339E334FD9}" = rport=445 | protocol=6 | dir=out | app=system |
"{4C426657-4044-4D9E-AFE3-2B2FAA479F0D}" = rport=10243 | protocol=6 | dir=out | app=system |
"{553E6078-9F56-48D9-BB10-C74759732F5E}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{823500BA-D602-440B-952B-72D285BC5F98}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{A119AD80-A670-4669-B2E1-34E98205571C}" = lport=445 | protocol=6 | dir=in | app=system |
"{B49444B9-3FE2-4406-A35D-891C38BE9527}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{CDCF8527-6311-4F00-8BE8-33882706D408}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{CE7BF0E6-5252-41A0-A511-52E5AF60B594}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{D703F0CA-0CC9-4A3D-BD1C-B019930A2A5D}" = lport=139 | protocol=6 | dir=in | app=system |
"{E061BE56-BA20-417D-A95F-F5599929A9DE}" = lport=138 | protocol=17 | dir=in | app=system |
"{E2F9F291-9409-496F-965D-090305A204DC}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{E6435431-55E5-48FB-B943-AAC4E458F791}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{ED1D9F69-30ED-4D28-8392-1CB3A9D0C338}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{EF759817-7CA4-4717-905D-BB70006E50FF}" = rport=137 | protocol=17 | dir=out | app=system |
"{F28579BA-F718-4327-B426-5AA8CC0D2B01}" = rport=138 | protocol=17 | dir=out | app=system |
"{F6A4EC55-BAD8-42F6-BE07-1E8F2359DFD6}" = lport=10243 | protocol=6 | dir=in | app=system |
"{F77970E7-3A69-447F-B5FD-9B87A2235764}" = rport=139 | protocol=6 | dir=out | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{05AD99A4-6EBF-4F33-8E49-5D11712B1EBE}" = protocol=6 | dir=in | app=c:\program files\ventrilo\ventrilo.exe |
"{07E4D0A1-1227-4677-B10D-BDAD7C436898}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1040\agent.exe |
"{0AC289FA-2EAE-4E3C-AB9A-5F4F1DCFF994}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1363\agent.exe |
"{0F5983B9-B657-44DA-9F95-4F33C0617119}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{0F7B2D89-CF92-4673-9B5E-948F894E2567}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{168BC5CF-948B-44C9-83FD-C77237F401ED}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{3B1F0DE1-C823-494E-915E-53921576E068}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{40EF3F97-99D1-4C2B-BBC8-7F109131E2A0}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{496283F3-FE56-4233-89C7-3894445609A4}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{53ED6B03-544A-464B-9FB3-0B0D1B2B99FF}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{60B7DC9E-974B-4239-8291-17BF2569C861}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{64D1C13F-0CCB-4A0B-90D8-70591438083F}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{6F8B3CDB-A5BA-42D6-BDDC-3858946B06C9}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7A62F5C6-5434-43C7-AE5A-375AD30EF22F}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{7D40EE4E-F55B-4930-AE6D-72906E6E3CE2}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1040\agent.exe |
"{91C4AB9D-E715-49D7-9792-5D5CB9B93E81}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{A45EE886-68B8-47C5-B44F-50FDCAADC762}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{A4B6D6BD-2923-4EEF-A3F4-1A9380FD1FFA}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{AE6FD45D-4B14-4E65-B59F-B49033869AB9}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C99C430A-B48C-45FA-BA1E-E9B284552FA1}" = protocol=6 | dir=out | app=system |
"{D1F79F6F-9D4C-45EA-AAE0-46549317ECCC}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{DC5818D4-57B2-4ABB-8E16-3D78D88A93BF}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{F04C4E4E-2551-4E44-BDF0-DE27FABFC87D}" = protocol=17 | dir=in | app=c:\program files\ventrilo\ventrilo.exe |
"{F4E7A32A-201E-4B18-B7B6-D580283038F7}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1363\agent.exe |
"{F9917202-A275-4C54-8DAD-839E0C638464}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{54445B9F-E694-7A31-11F9-9D4EBA630ACB}" = ATI Catalyst Install Manager
"{7B48B358-4729-AA29-1C25-35A1CB8C3302}" = ATI AVIVO64 Codecs
"{AE124EE9-EF32-69C5-60F9-FFA0FFF7F9B1}" = ccc-utility64
"{C78D3032-9DFD-41D0-9DE9-58EAE750CBA4}" = Microsoft Security Client
"{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}" = Ventrilo Client for Windows x64
"Microsoft Security Client" = Microsoft Security Essentials
"SynTPDeinstKey" = Dell Touchpad
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1DC7DFF9-2180-0E7E-DB49-817280EE4E93}" = Catalyst Control Center Graphics Light
"{23EEC842-57ED-4055-A056-9D4185DFB1AA}" = Dell Mobile Broadband Manager
"{27B94460-B1A6-BE42-D92A-4FCDCF4A719F}" = CCC Help German
"{47BC5D36-B837-B2A8-FB46-F6EC602A7F9C}" = Catalyst Control Center Graphics Previews Common
"{4B8C6616-F310-60D3-71FD-057C16DB3E8A}" = CCC Help Finnish
"{59F6A514-9813-47A3-948C-8A155460CC2A}" = RICOH R5U8xx Media Driver ver.3.62.02
"{5FEF1894-CF67-B16C-11B6-5818358B3FC9}" = CCC Help Russian
"{60E9E76A-FB31-67CB-8071-A1D38A499A86}" = CCC Help French
"{69533745-1E2D-4C98-8B4A-B7643EF9E1A2}" = Catalyst Control Center - Branding
"{6ED86F6F-7130-48F5-2AF7-5D693098057F}" = CCC Help Norwegian
"{9B9F49A2-6791-761F-6077-22977B0FD03D}" = CCC Help Dutch
"{9D583F01-A973-4B04-90BD-FB7886779090}" = Dell Wireless HSPA Mini-Card Drivers
"{A697D62C-643B-5315-204B-D43055A86649}" = CCC Help Swedish
"{A6B483B0-E8E8-0EE1-D678-FEEBDF27FE15}" = Catalyst Control Center Localization All
"{A9316AC7-CAB2-C29B-F8B6-6239817B1B45}" = CCC Help Chinese Standard
"{AFF254B3-ABBC-15E7-200E-FABF74314C13}" = ccc-core-static
"{B27E389B-AE9B-BEB6-8FCF-BA293F884C70}" = CCC Help Japanese
"{B5AB153E-59F3-AB56-F8A7-43E531368327}" = Catalyst Control Center Graphics Full New
"{BA214394-CDD8-BB3C-3FCC-8294C9A02ACA}" = CCC Help Chinese Traditional
"{BF8DC895-9CC3-E284-6ADF-67077E3FBCA2}" = CCC Help Danish
"{D0016802-8E49-0DED-0B9C-F8946945998F}" = Catalyst Control Center Graphics Full Existing
"{DC068C99-4AF6-C4B4-178F-790CC62B93ED}" = Catalyst Control Center Graphics Previews Vista
"{DD786529-8C5E-4C64-9FA6-D47FBF17C392}" = Catalyst Control Center InstallProxy
"{DDBBE693-E9E5-A743-4C11-D693F94A80D7}" = Catalyst Control Center Core Implementation
"{DF6BCD20-50DC-4DE6-4798-948DF8CAC38A}" = CCC Help Korean
"{DF8F8A4A-C9EB-79EC-7597-166D3042EAA8}" = CCC Help Spanish
"{E19F161D-7FD0-FECB-41B1-A036862C3E47}" = CCC Help English
"{E393AA7A-33AE-1F62-0C33-D107BB03E74E}" = CCC Help Portuguese
"{EE7BEE99-4C13-DF3E-142B-5E4BA8D10CEC}" = CCC Help Italian
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.65.1.1000
"Mozilla Firefox 16.0.1 (x86 en-US)" = Mozilla Firefox 16.0.1 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"World of Warcraft" = World of Warcraft
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 10/26/2012 4:06:23 PM | Computer Name = Eric-PC | Source = Application Hang | ID = 1002
Description = The program iexplore.exe version 8.0.7601.17514 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: dd0 Start
Time: 01cdb3b507520a54 Termination Time: 0 Application Path: C:\Program Files (x86)\Internet
Explorer\iexplore.exe Report Id: 95b323ff-1fa8-11e2-977b-b8ac6f6d1df0
Error - 10/26/2012 4:07:36 PM | Computer Name = Eric-PC | Source = Application Hang | ID = 1002
Description = The program iexplore.exe version 8.0.7601.17514 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: fc0 Start
Time: 01cdb3b55f6263cb Termination Time: 0 Application Path: C:\Program Files (x86)\Internet
Explorer\iexplore.exe Report Id: c49124ac-1fa8-11e2-977b-b8ac6f6d1df0
Error - 10/26/2012 4:10:46 PM | Computer Name = Eric-PC | Source = Application Hang | ID = 1002
Description = The program iexplore.exe version 8.0.7601.17514 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: e80 Start
Time: 01cdb3b58b303e00 Termination Time: 0 Application Path: C:\Program Files (x86)\Internet
Explorer\iexplore.exe Report Id: 355d1196-1fa9-11e2-977b-b8ac6f6d1df0
Error - 10/26/2012 6:10:49 PM | Computer Name = Eric-PC | Source = WinMgmt | ID = 10
Description =
Error - 10/27/2012 6:28:20 AM | Computer Name = Eric-PC | Source = MsiInstaller | ID = 11935
Description =
Error - 10/27/2012 11:21:29 AM | Computer Name = Eric-PC | Source = Application Error | ID = 1000
Description = Faulting application name: mbamscheduler.exe, version: 1.65.0.0, time
stamp: 0x50678504 Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception
code: 0xc0000005 Fault offset: 0x74626cdc Faulting process id: 0x534 Faulting application
start time: 0x01cdb3c68b54c180 Faulting application path: C:\Program Files (x86)\Malwarebytes'
Anti-Malware\mbamscheduler.exe Faulting module path: unknown Report Id: fa697fb7-2049-11e2-9de0-b8ac6f6d1df0
Error - 10/27/2012 11:21:32 AM | Computer Name = Eric-PC | Source = Application Error | ID = 1000
Description = Faulting application name: mbamservice.exe, version: 1.65.0.0, time
stamp: 0x506784f8 Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception
code: 0xc0000005 Fault offset: 0x74626cdc Faulting process id: 0x5a0 Faulting application
start time: 0x01cdb3c68c798ac1 Faulting application path: C:\Program Files (x86)\Malwarebytes'
Anti-Malware\mbamservice.exe Faulting module path: unknown Report Id: fcae4f7a-2049-11e2-9de0-b8ac6f6d1df0
Error - 10/27/2012 7:56:04 PM | Computer Name = Eric-PC | Source = WinMgmt | ID = 10
Description =
Error - 10/27/2012 11:08:06 PM | Computer Name = Eric-PC | Source = Software Protection Platform Service | ID = 8200
Description = License acquisition failure details. hr=0x80072EE7
Error - 10/27/2012 11:08:06 PM | Computer Name = Eric-PC | Source = Software Protection Platform Service | ID = 8208
Description = Acquisition of genuine ticket failed (hr=0x80072EE7) for template
Id 66c92734-d682-4d71-983e-d6ec3f16059f
[ System Events ]
Error - 10/27/2012 4:39:26 AM | Computer Name = Eric-PC | Source = Service Control Manager | ID = 7000
Description = The Windows Presentation Foundation Font Cache 3.0.0.0 service failed
to start due to the following error: %%31
Error - 10/27/2012 4:44:37 AM | Computer Name = Eric-PC | Source = Service Control Manager | ID = 7034
Description = The Mobile Broadband Service service terminated unexpectedly. It
has done this 1 time(s).
Error - 10/27/2012 4:46:45 AM | Computer Name = Eric-PC | Source = Service Control Manager | ID = 7030
Description = The PEVSystemStart service is marked as an interactive service. However,
the system is configured to not allow interactive services. This service may not
function properly.
Error - 10/27/2012 4:47:57 AM | Computer Name = Eric-PC | Source = Application Popup | ID = 1060
Description = \??\C:\ComboFix\catchme.sys has been blocked from loading due to incompatibility
with this system. Please contact your software vendor for a compatible version
of the driver.
Error - 10/27/2012 4:48:26 AM | Computer Name = Eric-PC | Source = Service Control Manager | ID = 7030
Description = The PEVSystemStart service is marked as an interactive service. However,
the system is configured to not allow interactive services. This service may not
function properly.
Error - 10/27/2012 6:49:32 AM | Computer Name = Eric-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070643: Security Update for Microsoft Visual C++ 2008 Service Pack
1 Redistributable Package (KB2538243).
Error - 10/27/2012 11:21:32 AM | Computer Name = Eric-PC | Source = Service Control Manager | ID = 7034
Description = The MBAMScheduler service terminated unexpectedly. It has done this
1 time(s).
Error - 10/27/2012 7:56:36 PM | Computer Name = Eric-PC | Source = Service Control Manager | ID = 7023
Description = The Windows Modules Installer service terminated with the following
error: %%16405
Error - 10/27/2012 7:58:49 PM | Computer Name = Eric-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80242016: Security Update for Internet Explorer 8 for Windows 7 for
x64-based Systems (KB2544521).
Error - 10/27/2012 7:58:49 PM | Computer Name = Eric-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80242016: Update for Internet Explorer 8 Compatibility View List for
Windows 7 for x64-based Systems (KB2598845).
< End of report >
OTL Extras logfile created on: 10/27/2012 8:21:57 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Eric\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
3.86 Gb Total Physical Memory | 2.52 Gb Available Physical Memory | 65.30% Memory free
7.73 Gb Paging File | 6.17 Gb Available in Paging File | 79.86% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 451.07 Gb Total Space | 99.50 Gb Free Space | 22.06% Space Free | Partition Type: NTFS
Computer Name: ERIC-PC | User Name: Eric | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection DefaultInstall 132 %1 (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== System Restore Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
========== Firewall Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02BB4363-CDD2-40A6-8B97-8ADCE444CD4E}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{0D1E5964-01E0-4778-94CD-BBDBF2D93D9A}" = lport=2869 | protocol=6 | dir=in | app=system |
"{10D29792-5DDA-4E69-97D3-F7215D74886A}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{2572E287-5002-4A47-BB7F-924B8633ABF3}" = lport=137 | protocol=17 | dir=in | app=system |
"{4B64D2D3-A391-4E99-AF1D-B1339E334FD9}" = rport=445 | protocol=6 | dir=out | app=system |
"{4C426657-4044-4D9E-AFE3-2B2FAA479F0D}" = rport=10243 | protocol=6 | dir=out | app=system |
"{553E6078-9F56-48D9-BB10-C74759732F5E}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{823500BA-D602-440B-952B-72D285BC5F98}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{A119AD80-A670-4669-B2E1-34E98205571C}" = lport=445 | protocol=6 | dir=in | app=system |
"{B49444B9-3FE2-4406-A35D-891C38BE9527}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{CDCF8527-6311-4F00-8BE8-33882706D408}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{CE7BF0E6-5252-41A0-A511-52E5AF60B594}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{D703F0CA-0CC9-4A3D-BD1C-B019930A2A5D}" = lport=139 | protocol=6 | dir=in | app=system |
"{E061BE56-BA20-417D-A95F-F5599929A9DE}" = lport=138 | protocol=17 | dir=in | app=system |
"{E2F9F291-9409-496F-965D-090305A204DC}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{E6435431-55E5-48FB-B943-AAC4E458F791}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{ED1D9F69-30ED-4D28-8392-1CB3A9D0C338}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{EF759817-7CA4-4717-905D-BB70006E50FF}" = rport=137 | protocol=17 | dir=out | app=system |
"{F28579BA-F718-4327-B426-5AA8CC0D2B01}" = rport=138 | protocol=17 | dir=out | app=system |
"{F6A4EC55-BAD8-42F6-BE07-1E8F2359DFD6}" = lport=10243 | protocol=6 | dir=in | app=system |
"{F77970E7-3A69-447F-B5FD-9B87A2235764}" = rport=139 | protocol=6 | dir=out | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{05AD99A4-6EBF-4F33-8E49-5D11712B1EBE}" = protocol=6 | dir=in | app=c:\program files\ventrilo\ventrilo.exe |
"{07E4D0A1-1227-4677-B10D-BDAD7C436898}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1040\agent.exe |
"{0AC289FA-2EAE-4E3C-AB9A-5F4F1DCFF994}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1363\agent.exe |
"{0F5983B9-B657-44DA-9F95-4F33C0617119}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{0F7B2D89-CF92-4673-9B5E-948F894E2567}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{168BC5CF-948B-44C9-83FD-C77237F401ED}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{3B1F0DE1-C823-494E-915E-53921576E068}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{40EF3F97-99D1-4C2B-BBC8-7F109131E2A0}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{496283F3-FE56-4233-89C7-3894445609A4}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{53ED6B03-544A-464B-9FB3-0B0D1B2B99FF}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{60B7DC9E-974B-4239-8291-17BF2569C861}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{64D1C13F-0CCB-4A0B-90D8-70591438083F}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{6F8B3CDB-A5BA-42D6-BDDC-3858946B06C9}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7A62F5C6-5434-43C7-AE5A-375AD30EF22F}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{7D40EE4E-F55B-4930-AE6D-72906E6E3CE2}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1040\agent.exe |
"{91C4AB9D-E715-49D7-9792-5D5CB9B93E81}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{A45EE886-68B8-47C5-B44F-50FDCAADC762}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{A4B6D6BD-2923-4EEF-A3F4-1A9380FD1FFA}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{AE6FD45D-4B14-4E65-B59F-B49033869AB9}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C99C430A-B48C-45FA-BA1E-E9B284552FA1}" = protocol=6 | dir=out | app=system |
"{D1F79F6F-9D4C-45EA-AAE0-46549317ECCC}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{DC5818D4-57B2-4ABB-8E16-3D78D88A93BF}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{F04C4E4E-2551-4E44-BDF0-DE27FABFC87D}" = protocol=17 | dir=in | app=c:\program files\ventrilo\ventrilo.exe |
"{F4E7A32A-201E-4B18-B7B6-D580283038F7}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1363\agent.exe |
"{F9917202-A275-4C54-8DAD-839E0C638464}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{54445B9F-E694-7A31-11F9-9D4EBA630ACB}" = ATI Catalyst Install Manager
"{7B48B358-4729-AA29-1C25-35A1CB8C3302}" = ATI AVIVO64 Codecs
"{AE124EE9-EF32-69C5-60F9-FFA0FFF7F9B1}" = ccc-utility64
"{C78D3032-9DFD-41D0-9DE9-58EAE750CBA4}" = Microsoft Security Client
"{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}" = Ventrilo Client for Windows x64
"Microsoft Security Client" = Microsoft Security Essentials
"SynTPDeinstKey" = Dell Touchpad
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1DC7DFF9-2180-0E7E-DB49-817280EE4E93}" = Catalyst Control Center Graphics Light
"{23EEC842-57ED-4055-A056-9D4185DFB1AA}" = Dell Mobile Broadband Manager
"{27B94460-B1A6-BE42-D92A-4FCDCF4A719F}" = CCC Help German
"{47BC5D36-B837-B2A8-FB46-F6EC602A7F9C}" = Catalyst Control Center Graphics Previews Common
"{4B8C6616-F310-60D3-71FD-057C16DB3E8A}" = CCC Help Finnish
"{59F6A514-9813-47A3-948C-8A155460CC2A}" = RICOH R5U8xx Media Driver ver.3.62.02
"{5FEF1894-CF67-B16C-11B6-5818358B3FC9}" = CCC Help Russian
"{60E9E76A-FB31-67CB-8071-A1D38A499A86}" = CCC Help French
"{69533745-1E2D-4C98-8B4A-B7643EF9E1A2}" = Catalyst Control Center - Branding
"{6ED86F6F-7130-48F5-2AF7-5D693098057F}" = CCC Help Norwegian
"{9B9F49A2-6791-761F-6077-22977B0FD03D}" = CCC Help Dutch
"{9D583F01-A973-4B04-90BD-FB7886779090}" = Dell Wireless HSPA Mini-Card Drivers
"{A697D62C-643B-5315-204B-D43055A86649}" = CCC Help Swedish
"{A6B483B0-E8E8-0EE1-D678-FEEBDF27FE15}" = Catalyst Control Center Localization All
"{A9316AC7-CAB2-C29B-F8B6-6239817B1B45}" = CCC Help Chinese Standard
"{AFF254B3-ABBC-15E7-200E-FABF74314C13}" = ccc-core-static
"{B27E389B-AE9B-BEB6-8FCF-BA293F884C70}" = CCC Help Japanese
"{B5AB153E-59F3-AB56-F8A7-43E531368327}" = Catalyst Control Center Graphics Full New
"{BA214394-CDD8-BB3C-3FCC-8294C9A02ACA}" = CCC Help Chinese Traditional
"{BF8DC895-9CC3-E284-6ADF-67077E3FBCA2}" = CCC Help Danish
"{D0016802-8E49-0DED-0B9C-F8946945998F}" = Catalyst Control Center Graphics Full Existing
"{DC068C99-4AF6-C4B4-178F-790CC62B93ED}" = Catalyst Control Center Graphics Previews Vista
"{DD786529-8C5E-4C64-9FA6-D47FBF17C392}" = Catalyst Control Center InstallProxy
"{DDBBE693-E9E5-A743-4C11-D693F94A80D7}" = Catalyst Control Center Core Implementation
"{DF6BCD20-50DC-4DE6-4798-948DF8CAC38A}" = CCC Help Korean
"{DF8F8A4A-C9EB-79EC-7597-166D3042EAA8}" = CCC Help Spanish
"{E19F161D-7FD0-FECB-41B1-A036862C3E47}" = CCC Help English
"{E393AA7A-33AE-1F62-0C33-D107BB03E74E}" = CCC Help Portuguese
"{EE7BEE99-4C13-DF3E-142B-5E4BA8D10CEC}" = CCC Help Italian
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.65.1.1000
"Mozilla Firefox 16.0.1 (x86 en-US)" = Mozilla Firefox 16.0.1 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"World of Warcraft" = World of Warcraft
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 10/26/2012 4:06:23 PM | Computer Name = Eric-PC | Source = Application Hang | ID = 1002
Description = The program iexplore.exe version 8.0.7601.17514 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: dd0 Start
Time: 01cdb3b507520a54 Termination Time: 0 Application Path: C:\Program Files (x86)\Internet
Explorer\iexplore.exe Report Id: 95b323ff-1fa8-11e2-977b-b8ac6f6d1df0
Error - 10/26/2012 4:07:36 PM | Computer Name = Eric-PC | Source = Application Hang | ID = 1002
Description = The program iexplore.exe version 8.0.7601.17514 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: fc0 Start
Time: 01cdb3b55f6263cb Termination Time: 0 Application Path: C:\Program Files (x86)\Internet
Explorer\iexplore.exe Report Id: c49124ac-1fa8-11e2-977b-b8ac6f6d1df0
Error - 10/26/2012 4:10:46 PM | Computer Name = Eric-PC | Source = Application Hang | ID = 1002
Description = The program iexplore.exe version 8.0.7601.17514 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: e80 Start
Time: 01cdb3b58b303e00 Termination Time: 0 Application Path: C:\Program Files (x86)\Internet
Explorer\iexplore.exe Report Id: 355d1196-1fa9-11e2-977b-b8ac6f6d1df0
Error - 10/26/2012 6:10:49 PM | Computer Name = Eric-PC | Source = WinMgmt | ID = 10
Description =
Error - 10/27/2012 6:28:20 AM | Computer Name = Eric-PC | Source = MsiInstaller | ID = 11935
Description =
Error - 10/27/2012 11:21:29 AM | Computer Name = Eric-PC | Source = Application Error | ID = 1000
Description = Faulting application name: mbamscheduler.exe, version: 1.65.0.0, time
stamp: 0x50678504 Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception
code: 0xc0000005 Fault offset: 0x74626cdc Faulting process id: 0x534 Faulting application
start time: 0x01cdb3c68b54c180 Faulting application path: C:\Program Files (x86)\Malwarebytes'
Anti-Malware\mbamscheduler.exe Faulting module path: unknown Report Id: fa697fb7-2049-11e2-9de0-b8ac6f6d1df0
Error - 10/27/2012 11:21:32 AM | Computer Name = Eric-PC | Source = Application Error | ID = 1000
Description = Faulting application name: mbamservice.exe, version: 1.65.0.0, time
stamp: 0x506784f8 Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception
code: 0xc0000005 Fault offset: 0x74626cdc Faulting process id: 0x5a0 Faulting application
start time: 0x01cdb3c68c798ac1 Faulting application path: C:\Program Files (x86)\Malwarebytes'
Anti-Malware\mbamservice.exe Faulting module path: unknown Report Id: fcae4f7a-2049-11e2-9de0-b8ac6f6d1df0
Error - 10/27/2012 7:56:04 PM | Computer Name = Eric-PC | Source = WinMgmt | ID = 10
Description =
Error - 10/27/2012 11:08:06 PM | Computer Name = Eric-PC | Source = Software Protection Platform Service | ID = 8200
Description = License acquisition failure details. hr=0x80072EE7
Error - 10/27/2012 11:08:06 PM | Computer Name = Eric-PC | Source = Software Protection Platform Service | ID = 8208
Description = Acquisition of genuine ticket failed (hr=0x80072EE7) for template
Id 66c92734-d682-4d71-983e-d6ec3f16059f
[ System Events ]
Error - 10/27/2012 4:39:26 AM | Computer Name = Eric-PC | Source = Service Control Manager | ID = 7000
Description = The Windows Presentation Foundation Font Cache 3.0.0.0 service failed
to start due to the following error: %%31
Error - 10/27/2012 4:44:37 AM | Computer Name = Eric-PC | Source = Service Control Manager | ID = 7034
Description = The Mobile Broadband Service service terminated unexpectedly. It
has done this 1 time(s).
Error - 10/27/2012 4:46:45 AM | Computer Name = Eric-PC | Source = Service Control Manager | ID = 7030
Description = The PEVSystemStart service is marked as an interactive service. However,
the system is configured to not allow interactive services. This service may not
function properly.
Error - 10/27/2012 4:47:57 AM | Computer Name = Eric-PC | Source = Application Popup | ID = 1060
Description = \??\C:\ComboFix\catchme.sys has been blocked from loading due to incompatibility
with this system. Please contact your software vendor for a compatible version
of the driver.
Error - 10/27/2012 4:48:26 AM | Computer Name = Eric-PC | Source = Service Control Manager | ID = 7030
Description = The PEVSystemStart service is marked as an interactive service. However,
the system is configured to not allow interactive services. This service may not
function properly.
Error - 10/27/2012 6:49:32 AM | Computer Name = Eric-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070643: Security Update for Microsoft Visual C++ 2008 Service Pack
1 Redistributable Package (KB2538243).
Error - 10/27/2012 11:21:32 AM | Computer Name = Eric-PC | Source = Service Control Manager | ID = 7034
Description = The MBAMScheduler service terminated unexpectedly. It has done this
1 time(s).
Error - 10/27/2012 7:56:36 PM | Computer Name = Eric-PC | Source = Service Control Manager | ID = 7023
Description = The Windows Modules Installer service terminated with the following
error: %%16405
Error - 10/27/2012 7:58:49 PM | Computer Name = Eric-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80242016: Security Update for Internet Explorer 8 for Windows 7 for
x64-based Systems (KB2544521).
Error - 10/27/2012 7:58:49 PM | Computer Name = Eric-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80242016: Update for Internet Explorer 8 Compatibility View List for
Windows 7 for x64-based Systems (KB2598845).
< End of report >