Windows Update Disabled, Link for "Free" Software

[Maniac]

I would like to check if Windows Update is working properly again.

[PantokratorMC]

It is not. No change that I can see in the Windows Update screen.

[Maniac]

Please download Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatibale with your system.  You can check here if you're not sure if your computer is 32-bit or 64-bit

• Double-click to run it. When the tool opens click Yes to disclaimer.
• Press Scan button.
• It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
• The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

[PantokratorMC]

I didn't get a chance to run that before I left for the holidays. I'll need to put this on hold until Monday.

[Maniac]

Merry Christmas!

Don't worry. Take your time!

[PantokratorMC]

I got the Windows Update notification right after running the Farbar scan (not fix). It looks like the update feature is working, but it's using Microsoft Update now. I didn't connect the computer to the internet after running the windows repair utility last week, so maybe that's the difference?

 

 

Addition Log is attached. FRST Log.:

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-12-2013 01
Ran by Matthew (administrator) on KRATORMC on 30-12-2013 11:31:32
Running from C:\Users\Matthew\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\VirusScan Enterprise\x64\engineserver.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\Common Framework\FrameworkService.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\VirusScan Enterprise\vstskmgr.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
(Pharos Systems International) C:\Program Files (x86)\PharosSystems\Core\CTskMstr.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\Common Framework\naPrdMgr.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\VirusScan Enterprise\x64\mcshield.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\VirusScan Enterprise\x64\mfeann.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Flux Software LLC) C:\Users\Matthew\AppData\Local\FluxSoftware\Flux\flux.exe
(Google Inc.) C:\Users\Matthew\AppData\Local\Programs\Google\MusicManager\MusicManager.exe
() C:\Users\Matthew\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\Common Framework\UdaterUI.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\VirusScan Enterprise\shstat.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(EnTech Taiwan) C:\Program Files (x86)\Dell\Dell Display Manager\ddm.exe
(Dropbox, Inc.) C:\Users\Matthew\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10135584 2010-03-26] (Realtek Semiconductor)
HKLM\...\Run: [bCSSync] - C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation)
HKLM\...\Run: [XboxStat] - C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM-x32\...\Run: [McAfeeUpdaterUI] - C:\Program Files (x86)\McAfee\Common Framework\UdaterUI.exe [136512 2009-08-25] (McAfee, Inc.)
HKLM-x32\...\Run: [shStatEXE] - C:\Program Files (x86)\McAfee\VirusScan Enterprise\shstat.exe [124224 2010-08-25] (McAfee, Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [1996200 2012-08-29] (LogMeIn Inc.)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] - C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [685048 2012-08-03] (Cisco Systems, Inc.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-10-01] (Apple Inc.)
HKCU\...\Run: [steam] - C:\Program Files (x86)\Steam\Steam.exe [1823656 2013-12-11] (Valve Corporation)
HKCU\...\Run: [F.lux] - C:\Users\Matthew\AppData\Local\FluxSoftware\Flux\flux.exe [1016712 2013-10-15] (Flux Software LLC)
HKCU\...\Run: [MusicManager] - C:\Users\Matthew\AppData\Local\Programs\Google\MusicManager\MusicManager.exe [7380992 2013-11-11] (Google Inc.)
HKCU\...\Run: [AmazonMP3DownloaderHelper] - C:\Users\Matthew\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe [400704 2013-05-22] ()
Startup: C:\Users\Matthew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Matthew\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Matthew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk
ShortcutTarget: OneNote 2010 Screen Clipper and Launcher.lnk -> C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\Matthew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk
ShortcutTarget: Send to OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xB90D50EF179BCC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\office15\OCHelper.dll (Microsoft Corporation)
BHO: Windows Live Family Safety Browser Helper Class - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll (Microsoft Corporation)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: No Name - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -  No File
BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\McAfee\VirusScan Enterprise\x64\scriptsn.dll (McAfee, Inc.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: No Name - {DBC80044-A445-435b-BC74-9C25C1C588A9} -  No File
BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} -  No File
BHO-x32: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll (Microsoft Corp.)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\McAfee\VirusScan Enterprise\scriptsn.dll (McAfee, Inc.)
BHO-x32: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX86\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX86\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX86\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Matthew\AppData\Roaming\Mozilla\Firefox\Profiles\opfrwtb6.default
FF Homepage: www.google.com
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @java.com/DTPlugin,version=1.6.0_32 - C:\Windows\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @comrade.gamespy.com/comrade - C:\Program Files (x86)\GameSpy\Comrade\npcomrade.dll (IGN Entertainment)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @wolfram.com/Mathematica - C:\Program Files (x86)\Common Files\Wolfram Research\Browser\8.0.1.2063897\npmathplugin.dll (Wolfram Research, Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Matthew\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Matthew\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Matthew\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin - C:\Users\Matthew\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll (Amazon.com, Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
FF Extension: LavaFox V2-Blue - C:\Users\Matthew\AppData\Roaming\Mozilla\Firefox\Profiles\opfrwtb6.default\Extensions\djziggy@gmail.com
FF Extension: ColorfulTabs - C:\Users\Matthew\AppData\Roaming\Mozilla\Firefox\Profiles\opfrwtb6.default\Extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe}
FF Extension: Browser Backgrounds - C:\Users\Matthew\AppData\Roaming\Mozilla\Firefox\Profiles\opfrwtb6.default\Extensions\{3e0c7f3a-3f50-4730-beb5-4a9a10e2831c}
FF Extension: FT DeepDark - C:\Users\Matthew\AppData\Roaming\Mozilla\Firefox\Profiles\opfrwtb6.default\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66}
FF Extension: DownloadHelper - C:\Users\Matthew\AppData\Roaming\Mozilla\Firefox\Profiles\opfrwtb6.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF Extension: Firebug - C:\Users\Matthew\AppData\Roaming\Mozilla\Firefox\Profiles\opfrwtb6.default\Extensions\firebug@software.joehewitt.com.xpi
FF Extension: All-in-One Sidebar - C:\Users\Matthew\AppData\Roaming\Mozilla\Firefox\Profiles\opfrwtb6.default\Extensions\{097d3191-e6fa-4728-9826-b533d755359d}.xpi
FF Extension: NoScript - C:\Users\Matthew\AppData\Roaming\Mozilla\Firefox\Profiles\opfrwtb6.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
FF Extension: Adblock Plus - C:\Users\Matthew\AppData\Roaming\Mozilla\Firefox\Profiles\opfrwtb6.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: BetterPrivacy - C:\Users\Matthew\AppData\Roaming\Mozilla\Firefox\Profiles\opfrwtb6.default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi
FF Extension: Tab Mix Plus - C:\Users\Matthew\AppData\Roaming\Mozilla\Firefox\Profiles\opfrwtb6.default\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi
FF Extension: Greasemonkey - C:\Users\Matthew\AppData\Roaming\Mozilla\Firefox\Profiles\opfrwtb6.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}

==================== Services (Whitelisted) =================

S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
R2 McAfeeEngineService; C:\Program Files (x86)\McAfee\VirusScan Enterprise\x64\engineserver.exe [20792 2010-08-25] (McAfee, Inc.)
R2 McAfeeFramework; C:\Program Files (x86)\McAfee\Common Framework\FrameworkService.exe [103744 2009-08-25] (McAfee, Inc.)
R2 McShield; C:\Program Files (x86)\McAfee\VirusScan Enterprise\x64\mcshield.exe [181480 2010-08-25] (McAfee, Inc.)
R2 McTaskManager; C:\Program Files (x86)\McAfee\VirusScan Enterprise\vstskmgr.exe [66880 2010-08-25] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [77968 2010-08-25] (McAfee, Inc.)
R2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1907896 2013-11-02] (Microsoft Corporation)
R2 Pharos Systems ComTaskMaster; C:\Program Files (x86)\PharosSystems\Core\CTskMstr.exe [345600 2010-01-14] (Pharos Systems International)

==================== Drivers (Whitelisted) ====================

R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21544 2010-04-27] ()
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2010-12-03] ()
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2010-12-03] ()
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [98088 2010-08-25] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [120224 2010-08-25] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [470808 2010-08-25] (McAfee, Inc.)
S3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [78768 2010-08-25] (McAfee, Inc.)
R1 mfetdik; C:\Windows\System32\drivers\mfetdik.sys [84424 2010-08-25] (McAfee, Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
S3 BCMH43XX; system32\DRIVERS\bcmwlhigh664.sys [x]
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 gdrv; \??\C:\Windows\gdrv.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-30 11:31 - 2013-12-30 11:32 - 00019671 _____ C:\Users\Matthew\Desktop\FRST.txt
2013-12-30 11:31 - 2013-12-30 11:31 - 00000000 ____D C:\FRST
2013-12-30 11:30 - 2013-12-30 11:30 - 01931302 _____ (Farbar) C:\Users\Matthew\Desktop\FRST64.exe
2013-12-21 11:10 - 2013-12-21 11:10 - 00003160 _____ C:\Windows\System32\Tasks\SidebarExecute
2013-12-21 10:38 - 2013-12-21 11:11 - 00181064 _____ (Sysinternals) C:\Windows\PSEXESVC.EXE
2013-12-21 10:36 - 2013-12-21 10:36 - 00000207 _____ C:\Windows\tweaking.com-regbackup-KRATORMC-Microsoft-Windows-7-Home-Premium-(64-bit).dat
2013-12-21 10:35 - 2013-12-21 10:35 - 00000000 ____D C:\RegBackup
2013-12-21 10:34 - 2013-12-21 10:34 - 00002163 _____ C:\Users\Matthew\Desktop\Tweaking.com - Windows Repair (All in One).lnk
2013-12-21 10:34 - 2013-12-21 10:34 - 00000000 ____D C:\Users\Matthew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2013-12-21 10:34 - 2013-12-21 10:34 - 00000000 ____D C:\Program Files (x86)\Tweaking.com
2013-12-21 10:33 - 2013-12-21 10:33 - 05045639 _____ C:\Users\Matthew\Desktop\tweaking.com_windows_repair_aio_setup.exe
2013-12-21 10:11 - 2013-12-21 10:11 - 00001888 _____ C:\Users\Matthew\Desktop\FSS.txt
2013-12-21 10:09 - 2013-12-21 10:09 - 00708597 _____ (Farbar) C:\Users\Matthew\Desktop\FSS.exe
2013-12-19 18:58 - 2013-12-19 18:58 - 00038586 _____ C:\Users\Matthew\Desktop\sfcdetails.txt
2013-12-19 07:37 - 2013-12-19 08:02 - 00000207 _____ C:\Users\Matthew\Desktop\failed dll.txt
2013-12-19 07:12 - 2013-12-19 07:12 - 419585318 _____ C:\Users\Matthew\Desktop\reg_backup.reg
2013-12-18 17:47 - 2013-12-18 17:47 - 00002620 _____ C:\Users\Matthew\Desktop\Rkill.txt
2013-12-18 17:46 - 2013-12-18 17:47 - 01937144 _____ (Bleeping Computer, LLC) C:\Users\Matthew\Desktop\rkill.exe
2013-12-18 11:32 - 2013-12-18 11:41 - 822177616 _____ C:\Users\Matthew\Desktop\kaspersky.txt
2013-12-17 17:44 - 2013-12-17 17:44 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-12-17 17:42 - 2013-12-17 17:43 - 130267040 _____ C:\Users\Matthew\Desktop\setup_11.0.1.1245.x01_2013_12_18_01_35.exe
2013-12-16 08:48 - 2013-12-16 08:48 - 00000000 ____D C:\Program Files (x86)\ESET
2013-12-16 08:45 - 2013-12-16 08:45 - 02347384 _____ (ESET) C:\Users\Matthew\Desktop\esetsmartinstaller_enu.exe
2013-12-15 16:57 - 2013-12-15 16:57 - 00022891 _____ C:\ComboFix.txt
2013-12-15 16:27 - 2011-06-26 00:45 - 00256000 _____ C:\Windows\PEV.exe
2013-12-15 16:27 - 2010-11-07 11:20 - 00208896 _____ C:\Windows\MBR.exe
2013-12-15 16:27 - 2009-04-19 22:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-12-15 16:27 - 2000-08-30 18:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-12-15 16:27 - 2000-08-30 18:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-12-15 16:27 - 2000-08-30 18:00 - 00098816 _____ C:\Windows\sed.exe
2013-12-15 16:27 - 2000-08-30 18:00 - 00080412 _____ C:\Windows\grep.exe
2013-12-15 16:27 - 2000-08-30 18:00 - 00068096 _____ C:\Windows\zip.exe
2013-12-15 16:26 - 2013-12-15 16:57 - 00000000 ____D C:\Qoobox
2013-12-15 16:26 - 2013-12-15 16:56 - 00000000 ____D C:\Windows\erdnt
2013-12-15 16:24 - 2013-12-15 16:25 - 05154339 ____R (Swearware) C:\Users\Matthew\Desktop\ComboFix.exe
2013-12-15 10:58 - 2013-12-15 10:58 - 00002892 _____ C:\Users\Matthew\Desktop\AdwCleaner[s0].txt
2013-12-15 10:47 - 2013-12-15 10:51 - 00000000 ____D C:\AdwCleaner
2013-12-15 10:40 - 2013-12-15 10:40 - 00002004 _____ C:\Users\Matthew\Desktop\JRT.txt
2013-12-15 10:36 - 2013-12-15 10:36 - 00000000 ____D C:\Windows\ERUNT
2013-12-15 10:33 - 2013-12-15 10:34 - 01226750 _____ C:\Users\Matthew\Desktop\AdwCleaner.exe
2013-12-15 10:33 - 2013-12-15 10:33 - 01034531 _____ (Thisisu) C:\Users\Matthew\Desktop\JRT.exe
2013-12-15 01:21 - 2013-12-15 01:21 - 00020825 _____ C:\Users\Matthew\Desktop\dds.txt
2013-12-15 01:21 - 2013-12-15 01:21 - 00011015 _____ C:\Users\Matthew\Desktop\attach.txt
2013-12-15 01:18 - 2013-12-15 01:19 - 00688992 ____R (Swearware) C:\Users\Matthew\Downloads\dds.com
2013-12-14 12:12 - 2013-12-14 12:12 - 00000930 _____ C:\Users\Public\Desktop\CPUID HWMonitor.lnk
2013-12-14 12:11 - 2013-12-14 12:11 - 01126296 _____ (                                                            ) C:\Users\Matthew\Downloads\hwmonitor_1.24-setup.exe
2013-12-12 21:54 - 2013-12-12 21:54 - 00983720 _____ (EnTech Taiwan                                               ) C:\Users\Matthew\Downloads\ddmsetup1392.exe
2013-12-12 21:53 - 2013-12-12 21:53 - 00000000 ____D C:\Program Files (x86)\Dell
2013-12-08 22:17 - 2013-12-14 12:12 - 00000000 ____D C:\Program Files\CPUID
2013-12-08 22:17 - 2013-12-08 22:17 - 01460512 _____ (                                                            ) C:\Users\Matthew\Downloads\cpu-z_1.67-setup-en.exe
2013-12-07 11:45 - 2013-12-21 11:13 - 00012736 _____ C:\Windows\PFRO.log
2013-12-07 00:26 - 2013-12-11 08:12 - 00000000 ____D C:\Program Files\Microsoft Office 15
2013-12-07 00:26 - 2013-12-07 00:26 - 00800440 _____ (Microsoft Corporation) C:\Users\Matthew\Downloads\Setup.x64.en-US_ProPlusRetail_VJCDP-XNTMH-Y2FX7-KBCT8-XWYG3_TX_PR_act_1_.exe
2013-12-07 00:25 - 2013-12-07 00:25 - 00572088 _____ (Microsoft Corporation) C:\Users\Matthew\Downloads\Setup.x86.en-US_ProPlusRetail_VJCDP-XNTMH-Y2FX7-KBCT8-XWYG3_TX_PR_act_1_.exe

==================== One Month Modified Files and Folders =======

2013-12-30 11:32 - 2013-12-30 11:31 - 00019671 _____ C:\Users\Matthew\Desktop\FRST.txt
2013-12-30 11:32 - 2010-10-21 15:16 - 01132876 _____ C:\Windows\WindowsUpdate.log
2013-12-30 11:31 - 2013-12-30 11:31 - 00000000 ____D C:\FRST
2013-12-30 11:30 - 2013-12-30 11:30 - 01931302 _____ (Farbar) C:\Users\Matthew\Desktop\FRST64.exe
2013-12-30 11:30 - 2013-03-24 22:55 - 00000916 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2826018383-1786829328-2171721535-1000UA.job
2013-12-30 11:29 - 2009-07-13 23:13 - 00779266 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-30 11:28 - 2011-02-28 23:15 - 00000000 ___RD C:\Users\Matthew\Dropbox
2013-12-30 11:28 - 2011-02-28 23:13 - 00000000 ____D C:\Users\Matthew\AppData\Roaming\Dropbox
2013-12-30 11:27 - 2010-12-04 01:38 - 00000000 ____D C:\Program Files (x86)\Steam
2013-12-30 11:25 - 2013-10-01 17:18 - 00005441 _____ C:\Windows\setupact.log
2013-12-30 11:25 - 2012-10-07 08:13 - 00000896 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-30 11:25 - 2012-03-14 12:20 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-30 11:25 - 2011-09-02 17:09 - 00000000 ____D C:\Users\Matthew\AppData\Local\LogMeIn Hamachi
2013-12-30 11:25 - 2009-07-13 23:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-21 14:08 - 2013-03-16 09:17 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-21 13:51 - 2012-10-07 08:13 - 00000900 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-21 11:18 - 2009-07-13 22:45 - 00015152 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-21 11:18 - 2009-07-13 22:45 - 00015152 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-21 11:13 - 2013-12-07 11:45 - 00012736 _____ C:\Windows\PFRO.log
2013-12-21 11:13 - 2009-07-13 22:45 - 00463112 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-21 11:11 - 2013-12-21 10:38 - 00181064 _____ (Sysinternals) C:\Windows\PSEXESVC.EXE
2013-12-21 11:10 - 2013-12-21 11:10 - 00003160 _____ C:\Windows\System32\Tasks\SidebarExecute
2013-12-21 11:06 - 2009-07-13 20:34 - 00000514 _____ C:\Windows\win.ini
2013-12-21 11:01 - 2011-09-02 16:12 - 00779266 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-12-21 10:36 - 2013-12-21 10:36 - 00000207 _____ C:\Windows\tweaking.com-regbackup-KRATORMC-Microsoft-Windows-7-Home-Premium-(64-bit).dat
2013-12-21 10:35 - 2013-12-21 10:35 - 00000000 ____D C:\RegBackup
2013-12-21 10:34 - 2013-12-21 10:34 - 00002163 _____ C:\Users\Matthew\Desktop\Tweaking.com - Windows Repair (All in One).lnk
2013-12-21 10:34 - 2013-12-21 10:34 - 00000000 ____D C:\Users\Matthew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2013-12-21 10:34 - 2013-12-21 10:34 - 00000000 ____D C:\Program Files (x86)\Tweaking.com
2013-12-21 10:33 - 2013-12-21 10:33 - 05045639 _____ C:\Users\Matthew\Desktop\tweaking.com_windows_repair_aio_setup.exe
2013-12-21 10:11 - 2013-12-21 10:11 - 00001888 _____ C:\Users\Matthew\Desktop\FSS.txt
2013-12-21 10:09 - 2013-12-21 10:09 - 00708597 _____ (Farbar) C:\Users\Matthew\Desktop\FSS.exe
2013-12-21 00:37 - 2013-03-24 22:55 - 00000864 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2826018383-1786829328-2171721535-1000Core.job
2013-12-19 18:58 - 2013-12-19 18:58 - 00038586 _____ C:\Users\Matthew\Desktop\sfcdetails.txt
2013-12-19 08:02 - 2013-12-19 07:37 - 00000207 _____ C:\Users\Matthew\Desktop\failed dll.txt
2013-12-19 07:16 - 2010-12-02 16:17 - 00000000 ___RD C:\Users\Matthew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-19 07:12 - 2013-12-19 07:12 - 419585318 _____ C:\Users\Matthew\Desktop\reg_backup.reg
2013-12-18 17:47 - 2013-12-18 17:47 - 00002620 _____ C:\Users\Matthew\Desktop\Rkill.txt
2013-12-18 17:47 - 2013-12-18 17:46 - 01937144 _____ (Bleeping Computer, LLC) C:\Users\Matthew\Desktop\rkill.exe
2013-12-18 11:41 - 2013-12-18 11:32 - 822177616 _____ C:\Users\Matthew\Desktop\kaspersky.txt
2013-12-17 17:44 - 2013-12-17 17:44 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-12-17 17:43 - 2013-12-17 17:42 - 130267040 _____ C:\Users\Matthew\Desktop\setup_11.0.1.1245.x01_2013_12_18_01_35.exe
2013-12-16 08:48 - 2013-12-16 08:48 - 00000000 ____D C:\Program Files (x86)\ESET
2013-12-16 08:45 - 2013-12-16 08:45 - 02347384 _____ (ESET) C:\Users\Matthew\Desktop\esetsmartinstaller_enu.exe
2013-12-15 16:57 - 2013-12-15 16:57 - 00022891 _____ C:\ComboFix.txt
2013-12-15 16:57 - 2013-12-15 16:26 - 00000000 ____D C:\Qoobox
2013-12-15 16:57 - 2009-07-13 21:20 - 00000000 ___RD C:\Users\Default
2013-12-15 16:56 - 2013-12-15 16:26 - 00000000 ____D C:\Windows\erdnt
2013-12-15 16:52 - 2009-07-13 20:34 - 00000215 _____ C:\Windows\system.ini
2013-12-15 16:52 - 2009-07-13 20:34 - 00000027 _____ C:\Windows\system32\Drivers\etc\hosts_bak_70
2013-12-15 16:50 - 2009-07-13 20:34 - 95420416 _____ C:\Windows\system32\config\SOFTWARE.bak
2013-12-15 16:50 - 2009-07-13 20:34 - 21495808 _____ C:\Windows\system32\config\SYSTEM.bak
2013-12-15 16:50 - 2009-07-13 20:34 - 00524288 _____ C:\Windows\system32\config\DEFAULT.bak
2013-12-15 16:50 - 2009-07-13 20:34 - 00262144 _____ C:\Windows\system32\config\SECURITY.bak
2013-12-15 16:50 - 2009-07-13 20:34 - 00262144 _____ C:\Windows\system32\config\SAM.bak
2013-12-15 16:25 - 2013-12-15 16:24 - 05154339 ____R (Swearware) C:\Users\Matthew\Desktop\ComboFix.exe
2013-12-15 10:58 - 2013-12-15 10:58 - 00002892 _____ C:\Users\Matthew\Desktop\AdwCleaner[s0].txt
2013-12-15 10:51 - 2013-12-15 10:47 - 00000000 ____D C:\AdwCleaner
2013-12-15 10:40 - 2013-12-15 10:40 - 00002004 _____ C:\Users\Matthew\Desktop\JRT.txt
2013-12-15 10:36 - 2013-12-15 10:36 - 00000000 ____D C:\Windows\ERUNT
2013-12-15 10:34 - 2013-12-15 10:33 - 01226750 _____ C:\Users\Matthew\Desktop\AdwCleaner.exe
2013-12-15 10:33 - 2013-12-15 10:33 - 01034531 _____ (Thisisu) C:\Users\Matthew\Desktop\JRT.exe
2013-12-15 01:21 - 2013-12-15 01:21 - 00020825 _____ C:\Users\Matthew\Desktop\dds.txt
2013-12-15 01:21 - 2013-12-15 01:21 - 00011015 _____ C:\Users\Matthew\Desktop\attach.txt
2013-12-15 01:19 - 2013-12-15 01:18 - 00688992 ____R (Swearware) C:\Users\Matthew\Downloads\dds.com
2013-12-14 12:12 - 2013-12-14 12:12 - 00000930 _____ C:\Users\Public\Desktop\CPUID HWMonitor.lnk
2013-12-14 12:12 - 2013-12-08 22:17 - 00000000 ____D C:\Program Files\CPUID
2013-12-14 12:11 - 2013-12-14 12:11 - 01126296 _____ (                                                            ) C:\Users\Matthew\Downloads\hwmonitor_1.24-setup.exe
2013-12-14 12:00 - 2010-10-21 15:18 - 00000000 ____D C:\Program Files (x86)\InstallShield Installation Information
2013-12-14 11:47 - 2013-06-18 20:09 - 00007637 _____ C:\Users\Matthew\AppData\Local\Resmon.ResmonCfg
2013-12-13 19:20 - 2011-01-13 19:18 - 00000000 ____D C:\Users\Matthew\AppData\Roaming\Skype
2013-12-13 19:16 - 2010-12-02 20:31 - 00000000 ____D C:\Users\Matthew\AppData\Local\PMB Files
2013-12-13 19:16 - 2010-12-02 20:31 - 00000000 ____D C:\ProgramData\PMB Files
2013-12-12 21:54 - 2013-12-12 21:54 - 00983720 _____ (EnTech Taiwan                                               ) C:\Users\Matthew\Downloads\ddmsetup1392.exe
2013-12-12 21:53 - 2013-12-12 21:53 - 00000000 ____D C:\Program Files (x86)\Dell
2013-12-11 09:08 - 2013-03-16 09:17 - 00003768 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-12-11 09:08 - 2012-04-05 08:28 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-12-11 09:08 - 2011-05-15 08:52 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-11 08:28 - 2011-02-15 17:12 - 00002210 _____ C:\Users\Matthew\Documents\Default.rdp
2013-12-11 08:16 - 2009-07-13 23:32 - 00000000 ____D C:\Windows\system32\FxsTmp
2013-12-11 08:14 - 2010-12-02 23:56 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-12-11 08:12 - 2013-12-07 00:26 - 00000000 ____D C:\Program Files\Microsoft Office 15
2013-12-10 20:24 - 2011-01-13 19:18 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-12-10 20:24 - 2011-01-13 19:18 - 00000000 ____D C:\ProgramData\Skype
2013-12-08 22:17 - 2013-12-08 22:17 - 01460512 _____ (                                                            ) C:\Users\Matthew\Downloads\cpu-z_1.67-setup-en.exe
2013-12-08 21:05 - 2010-12-02 17:09 - 00118520 _____ C:\Users\Matthew\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-07 12:46 - 2012-10-07 08:13 - 00003896 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-12-07 12:46 - 2012-10-07 08:13 - 00003644 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-12-07 00:42 - 2010-07-28 14:07 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2013-12-07 00:41 - 2010-12-03 00:00 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2013-12-07 00:41 - 2009-07-13 21:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-12-07 00:30 - 2010-12-02 23:56 - 00000000 ____D C:\Program Files\Microsoft Office
2013-12-07 00:26 - 2013-12-07 00:26 - 00800440 _____ (Microsoft Corporation) C:\Users\Matthew\Downloads\Setup.x64.en-US_ProPlusRetail_VJCDP-XNTMH-Y2FX7-KBCT8-XWYG3_TX_PR_act_1_.exe
2013-12-07 00:25 - 2013-12-07 00:25 - 00572088 _____ (Microsoft Corporation) C:\Users\Matthew\Downloads\Setup.x86.en-US_ProPlusRetail_VJCDP-XNTMH-Y2FX7-KBCT8-XWYG3_TX_PR_act_1_.exe
2013-12-07 00:25 - 2013-03-24 22:55 - 00003890 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2826018383-1786829328-2171721535-1000UA
2013-12-07 00:25 - 2013-03-24 22:55 - 00003494 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2826018383-1786829328-2171721535-1000Core

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-20 00:33

==================== End Of Log ============================

 

 

Addition.txt

[Maniac]

Maybe. Please try to update your system, reboot and let me know.

[PantokratorMC]

Updates finished and computer restarted without issue.

[Maniac]

Do you still have any problem?

[PantokratorMC]

Doesn't look like it, but I'm still not clear on what the problem was or what actually fixed it.

[Maniac]

The way you run FRST is read-only mode, it couldn't change anything, so it could be something that you do previously.

[PantokratorMC]

I've been testing the computer out, and I noticed something else strange today. I'm using the (legitmate) copy of Windows 7 that came with my machine, but when I was playing a game yesterday I noticed a message in white text on the bottom right of my screen saying "This copy of Windows is not genuine". However, when I go to My Computer ->right click -> properties I see "Windows is activated" with the product key that came with my disc.

 

Could one of the repair utilities have caused this or is this part of the original issue?

[Maniac]

None of the tools can't do that.

Do you still have the same problem?

[AdvancedSetup]

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!