API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Aug 26th, 2018
273
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 14.04 KB | None | 0 0
raw download clone embed print report
  1. OTL Extras logfile created on: 2012.06.08. 22:47:43 - Run 1
  2. OTL by OldTimer - Version 3.2.47.0 Folder = C:\Users\QE\Desktop
  3. 64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
  4. Internet Explorer (Version = 9.0.8112.16421)
  5. Locale: 00000426 | Country: Latvija | Language: LVI | Date Format: yyyy.MM.dd.
  6.  
  7. 2,00 Gb Total Physical Memory | 1,17 Gb Available Physical Memory | 58,46% Memory free
  8. 4,00 Gb Paging File | 2,79 Gb Available in Paging File | 69,67% Paging File free
  9. Paging file location(s): ?:\pagefile.sys [binary data]
  10.  
  11. %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
  12. Drive C: | 298,08 Gb Total Space | 226,10 Gb Free Space | 75,85% Space Free | Partition Type: NTFS
  13. Drive T: | 999,75 Mb Total Space | 330,81 Mb Free Space | 33,09% Space Free | Partition Type: NTFS
  14.  
  15. Computer Name: QE-PC | User Name: QE | Logged in as Administrator.
  16. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
  17. Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
  18.  
  19. [color=#E56717]========== Extra Registry (SafeList) ==========[/color]
  20.  
  21.  
  22. [color=#E56717]========== File Associations ==========[/color]
  23.  
  24. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
  25. .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
  26.  
  27. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
  28. .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
  29.  
  30. [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
  31. .html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
  32.  
  33. [color=#E56717]========== Shell Spawning ==========[/color]
  34.  
  35. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
  36. batfile [open] -- "%1" %*
  37. cmdfile [open] -- "%1" %*
  38. comfile [open] -- "%1" %*
  39. exefile [open] -- "%1" %*
  40. helpfile [open] -- Reg Error: Key error.
  41. htmlfile [edit] -- Reg Error: Key error.
  42. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
  43. inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
  44. InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
  45. InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
  46. piffile [open] -- "%1" %*
  47. regfile [merge] -- Reg Error: Key error.
  48. scrfile [config] -- "%1"
  49. scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
  50. scrfile [open] -- "%1" /S
  51. txtfile [edit] -- Reg Error: Key error.
  52. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
  53. Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
  54. Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  55. Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  56. Folder [explore] -- Reg Error: Value error.
  57. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  58.  
  59. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
  60. batfile [open] -- "%1" %*
  61. cmdfile [open] -- "%1" %*
  62. comfile [open] -- "%1" %*
  63. cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
  64. exefile [open] -- "%1" %*
  65. helpfile [open] -- Reg Error: Key error.
  66. htmlfile [edit] -- Reg Error: Key error.
  67. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
  68. inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
  69. piffile [open] -- "%1" %*
  70. regfile [merge] -- Reg Error: Key error.
  71. scrfile [config] -- "%1"
  72. scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
  73. scrfile [open] -- "%1" /S
  74. txtfile [edit] -- Reg Error: Key error.
  75. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
  76. Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
  77. Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  78. Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  79. Folder [explore] -- Reg Error: Value error.
  80. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  81.  
  82. [color=#E56717]========== Security Center Settings ==========[/color]
  83.  
  84. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
  85. "cval" = 1
  86.  
  87. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
  88.  
  89. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
  90. "VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
  91. "AntiVirusOverride" = 0
  92. "AntiSpywareOverride" = 0
  93. "FirewallOverride" = 0
  94.  
  95. [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
  96.  
  97. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
  98.  
  99. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
  100.  
  101. [color=#E56717]========== Firewall Settings ==========[/color]
  102.  
  103. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
  104. "DisableNotifications" = 0
  105. "EnableFirewall" = 1
  106.  
  107. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
  108. "DisableNotifications" = 0
  109. "EnableFirewall" = 0
  110.  
  111. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
  112. "DisableNotifications" = 0
  113. "EnableFirewall" = 0
  114.  
  115. [color=#E56717]========== Authorized Applications List ==========[/color]
  116.  
  117.  
  118. [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]
  119.  
  120. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
  121.  
  122. [color=#E56717]========== Vista Active Application Exception List ==========[/color]
  123.  
  124. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
  125. "{0703569D-BF5F-4A53-8DE2-D75B366589FC}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
  126. "{7DF6DA11-FC7E-4CBA-9571-D0A5477D070D}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
  127. "{97077D32-8A3E-4528-A90B-A9183F10080B}" = protocol=6 | dir=in | app=t:\pele\darkcomet.exe |
  128. "{EBE9E0D5-A608-4C59-B063-8FA0769CF43B}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
  129. "{F546FC46-A33A-4799-BAA3-D4A1F152836B}" = protocol=17 | dir=in | app=t:\pele\darkcomet.exe |
  130. "TCP Query User{19B2FF81-BC48-4F58-8952-4B7AC4F09F52}T:\pele\darkcomet.exe" = protocol=6 | dir=in | app=t:\pele\darkcomet.exe |
  131. "TCP Query User{8963F876-8D42-4398-8D97-C4C512DDD3D0}C:\xampp\apache\bin\httpd.exe" = protocol=6 | dir=in | app=c:\xampp\apache\bin\httpd.exe |
  132. "TCP Query User{A9010678-6B5C-441F-ACDA-C97BB24B6032}C:\program files (x86)\steam\steamapps\neparsteidzmani\team fortress 2\hl2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\neparsteidzmani\team fortress 2\hl2.exe |
  133. "TCP Query User{BA4C3B08-B5E3-4038-B6AA-D8698DDA6C79}C:\program files (x86)\steam\steamapps\toms12346\team fortress 2\hl2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\toms12346\team fortress 2\hl2.exe |
  134. "TCP Query User{C5908935-410D-48F4-9088-EF15BD00B5C5}C:\users\qe\desktop\micro-pele\1.client\microrat.exe" = protocol=6 | dir=in | app=c:\users\qe\desktop\micro-pele\1.client\microrat.exe |
  135. "TCP Query User{F0DA3FF6-A443-4D94-8881-1D70287AD3B5}C:\xampp\mysql\bin\mysqld.exe" = protocol=6 | dir=in | app=c:\xampp\mysql\bin\mysqld.exe |
  136. "UDP Query User{42B6F34A-9DF9-4CAB-9121-843FBAF1A83F}C:\program files (x86)\steam\steamapps\neparsteidzmani\team fortress 2\hl2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\neparsteidzmani\team fortress 2\hl2.exe |
  137. "UDP Query User{86BFE924-BB90-4FB6-99E7-43486E240E25}C:\xampp\apache\bin\httpd.exe" = protocol=17 | dir=in | app=c:\xampp\apache\bin\httpd.exe |
  138. "UDP Query User{9BD34D70-4888-40E1-93D9-0D73C0A89E88}C:\xampp\mysql\bin\mysqld.exe" = protocol=17 | dir=in | app=c:\xampp\mysql\bin\mysqld.exe |
  139. "UDP Query User{C9858F85-D313-407C-9F04-00EFD0AD5131}C:\program files (x86)\steam\steamapps\toms12346\team fortress 2\hl2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\toms12346\team fortress 2\hl2.exe |
  140. "UDP Query User{D3B22284-7CCF-4D4E-A525-BFD67E392E7B}C:\users\qe\desktop\micro-pele\1.client\microrat.exe" = protocol=17 | dir=in | app=c:\users\qe\desktop\micro-pele\1.client\microrat.exe |
  141. "UDP Query User{E1964D1D-F4CF-4BB1-BEEA-E3E1AD0B2244}T:\pele\darkcomet.exe" = protocol=17 | dir=in | app=t:\pele\darkcomet.exe |
  142.  
  143. [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
  144.  
  145. 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
  146. "{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
  147. "{AAB8D5E4-22C4-4670-9457-5AD361D71C84}" = Latvian (Apostrofs v0.3; punkts)
  148. "{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
  149. "{FD67869B-C97B-4F2C-AD80-ABF130238441}" = Oracle VM VirtualBox 4.1.16
  150. "CCleaner" = CCleaner
  151. "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
  152. "Sandboxie" = Sandboxie 3.70 (64-bit)
  153.  
  154. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
  155. "{0147A0F8-C239-4C0E-A6E5-0E04560267F8}" = DNSCrypt
  156. "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
  157. "{1111706F-666A-4037-7777-210328764D10}" = JavaFX 2.1.0
  158. "{26A24AE4-039D-4CA4-87B4-2F83217004FF}" = Java(TM) 7 Update 4
  159. "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
  160. "{4C552FD3-2CCD-4E00-AC64-0681DBB3F8B5}" = OpenOffice.org 3.4
  161. "{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411
  162. "{72263053-50D1-4598-9502-51ED64E54C51}" = Borland Delphi 7
  163. "{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.3)
  164. "{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
  165. "{C0E8FE43-C35B-451D-B35F-D4BD056D70E7}" = Camtasia Studio 7
  166. "{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.9
  167. "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
  168. "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.61.0.1400
  169. "Mozilla Firefox 13.0 (x86 lv)" = Mozilla Firefox 13.0 (x86 lv)
  170. "MozillaMaintenanceService" = Mozilla Maintenance Service
  171. "NoIPDUC" = No-IP DUC
  172. "Notepad++" = Notepad++
  173. "OpenVPN" = OpenVPN 2.2.2
  174. "ResourceHacker_is1" = Resource Hacker Version 3.6.0
  175. "Steam App 440" = Team Fortress 2
  176. "TrueCrypt" = TrueCrypt
  177. "WinRAR archiver" = WinRAR 4.11 (32-bit)
  178. "xampp" = XAMPP 1.7.7
  179.  
  180. [color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color]
  181.  
  182. [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
  183. "CodeBlocks" = CodeBlocks
  184. "Google Chrome" = Google Chrome
  185.  
  186. [color=#E56717]========== Last 20 Event Log Errors ==========[/color]
  187.  
  188. [ Application Events ]
  189. Error - 2012.06.07. 4:19:19 | Computer Name = QE-PC | Source = ESENT | ID = 455
  190. Description = Windows (1812) Windows: Error -1811 occurred while opening logfile
  191. C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS000A5.log.
  192.  
  193. Error - 2012.06.07. 4:19:20 | Computer Name = QE-PC | Source = Windows Search Service | ID = 9000
  194. Description =
  195.  
  196. Error - 2012.06.07. 4:19:21 | Computer Name = QE-PC | Source = Windows Search Service | ID = 7040
  197. Description =
  198.  
  199. Error - 2012.06.07. 4:19:21 | Computer Name = QE-PC | Source = Windows Search Service | ID = 7042
  200. Description =
  201.  
  202. Error - 2012.06.07. 4:19:21 | Computer Name = QE-PC | Source = Windows Search Service | ID = 9002
  203. Description =
  204.  
  205. Error - 2012.06.07. 4:19:21 | Computer Name = QE-PC | Source = Windows Search Service | ID = 3029
  206. Description =
  207.  
  208. Error - 2012.06.07. 4:19:23 | Computer Name = QE-PC | Source = Windows Search Service | ID = 3029
  209. Description =
  210.  
  211. Error - 2012.06.07. 4:19:23 | Computer Name = QE-PC | Source = Windows Search Service | ID = 3028
  212. Description =
  213.  
  214. Error - 2012.06.07. 4:19:23 | Computer Name = QE-PC | Source = Windows Search Service | ID = 3058
  215. Description =
  216.  
  217. Error - 2012.06.07. 4:19:23 | Computer Name = QE-PC | Source = Windows Search Service | ID = 7010
  218. Description =
  219.  
  220. [ System Events ]
  221. Error - 2012.06.07. 4:19:23 | Computer Name = QE-PC | Source = Service Control Manager | ID = 7024
  222. Description = The Windows Search service terminated with service-specific error
  223. %%-1073473535.
  224.  
  225. Error - 2012.06.07. 4:19:23 | Computer Name = QE-PC | Source = Service Control Manager | ID = 7031
  226. Description = The Windows Search service terminated unexpectedly. It has done this
  227. 1 time(s). The following corrective action will be taken in 30000 milliseconds:
  228. Restart the service.
  229.  
  230. Error - 2012.06.07. 4:19:46 | Computer Name = QE-PC | Source = Service Control Manager | ID = 7009
  231. Description = A timeout was reached (30000 milliseconds) while waiting for the Windows
  232. Search service to connect.
  233.  
  234. Error - 2012.06.07. 4:19:46 | Computer Name = QE-PC | Source = Service Control Manager | ID = 7000
  235. Description = The Windows Search service failed to start due to the following error:
  236. %%1053
  237.  
  238. Error - 2012.06.08. 8:22:44 | Computer Name = QE-PC | Source = DCOM | ID = 10010
  239. Description =
  240.  
  241. Error - 2012.06.08. 8:23:04 | Computer Name = QE-PC | Source = DCOM | ID = 10005
  242. Description =
  243.  
  244. Error - 2012.06.08. 8:23:04 | Computer Name = QE-PC | Source = Service Control Manager | ID = 7038
  245. Description = The upnphost service was unable to log on as NT AUTHORITY\LocalService
  246. with the currently configured password due to the following error: %%1352 To ensure
  247. that the service is configured properly, use the Services snap-in in Microsoft
  248. Management Console (MMC).
  249.  
  250. Error - 2012.06.08. 8:23:04 | Computer Name = QE-PC | Source = Service Control Manager | ID = 7000
  251. Description = The UPnP Device Host service failed to start due to the following
  252. error: %%1069
  253.  
  254. Error - 2012.06.08. 13:21:48 | Computer Name = QE-PC | Source = EventLog | ID = 6008
  255. Description = The previous system shutdown at 19:18:54 on ?2012.?06.?08. was unexpected.
  256.  
  257. Error - 2012.06.08. 13:31:51 | Computer Name = QE-PC | Source = DCOM | ID = 10010
  258. Description =
  259.  
  260.  
  261. < End of report >
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!