Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

now indows update works, no homegroups, cannot install office [Closed]


  • This topic is locked This topic is locked

#16
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Certainly, it is not a problem :)

Then go here to run the windows update fixit
  • 0

Advertisements


#17
nobbyburton

nobbyburton

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 173 posts
Have run the winows update fixit. Still not able to

1, Perform a windows update

2. Create a home group

3. Install microsoft office (ERROR 1935)


  • 0

#18
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Could you run the MS SURT tool please
  • 0

#19
nobbyburton

nobbyburton

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 173 posts
MS SURT now installed. Await further instructions.


  • 0

#20
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Did you run it ? If so now try and install Office and check updates
  • 0

#21
nobbyburton

nobbyburton

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 173 posts
Have run MS SURT, tried installing Office but did not install. Restarted computer and tried again but did not install. Error 1935. Checked for updates but same error. Thanks for your continued patience and support!!!!!


  • 0

#22
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
This could be a .Net problem, so we will need to uninstall and then re-install .Net framework

Download Dontetfx cleanup tool. zip to your desktop
Unzip the tool
Run the exe file
Click throught the EULA popups
Select All Version
Posted Image

Once done reboot the computer
Download then run the Net 4.0 installer from here
Then install
Reboot and try Updates and Office again please
  • 0

#23
nobbyburton

nobbyburton

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 173 posts
:confused: Instructions followed and rebooted. Updates unsuccessful, error code 8008005. Microsoft Office will still not install, error code 1935. Many thanks.
  • 0

#24
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
The problem with the codes stated is that they just say "it's broke"

So it will take some work to fix it unless I hit the right service first time

Download Windows Repair (all in one) from this site

Install the programme then run

Posted Image

Go to step 3 and allow it to run SFC
Posted Image


On the start repairs tab click start
Posted Image

Select the following items and tick restart system when finished
Posted Image

Could you then attach the logs generated
  • 0

#25
nobbyburton

nobbyburton

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 173 posts
If u look at my other thread before I was advised to go to malware forum, sure I downloaded this already and tried this, but may work this time round?
  • 0

Advertisements


#26
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
We have done a few changes since so this may repair the problem
  • 0

#27
nobbyburton

nobbyburton

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 173 posts
Have made a mistake: Ran the programme but didn't untick restart the computer so lost the log. What is the log file called so I can try and find it. I re ran the programme and the following is the log from it but I guess thisis of no use? :confused:



Log:
Starting Repairs...
Start (09/02/2013 15:59:40)

Reset Registry Permissions 01/03
HKEY_CURRENT_USER & Sub Keys
Start (09/02/2013 15:59:40)
Running Repair Under Current User Account
Done (09/02/2013 15:59:46)

Reset Registry Permissions 02/03
HKEY_LOCAL_MACHINE & Sub Keys
Start (09/02/2013 15:59:46)
Running Repair Under System Account
Done (09/02/2013 16:00:48)

Reset Registry Permissions 03/03
HKEY_CLASSES_ROOT & Sub Keys
Start (09/02/2013 16:00:48)
Running Repair Under System Account
Done (09/02/2013 16:01:27)

Reset File Permissions 01/30
C:\$AVG & Sub Folders
Start (09/02/2013 16:01:27)
Running Repair Under System Account
Done (09/02/2013 16:01:29)

Reset File Permissions 02/30
C:\$UPGRADE.~OS & Sub Folders
Start (09/02/2013 16:01:29)
Running Repair Under System Account
Done (09/02/2013 16:01:32)

Reset File Permissions 03/30
C:\$WINDOWS.~BT & Sub Folders
Start (09/02/2013 16:01:32)
Running Repair Under System Account
Done (09/02/2013 16:01:36)

Reset File Permissions 04/30
C:\$WINDOWS.~LS & Sub Folders
Start (09/02/2013 16:01:36)
Running Repair Under System Account
Done (09/02/2013 16:01:39)

Reset File Permissions 05/30
C:\348dec85c72aed69b605c38d06 & Sub Folders
Start (09/02/2013 16:01:39)
Running Repair Under System Account
Done (09/02/2013 16:01:41)

Reset File Permissions 06/30
C:\Config.Msi & Sub Folders
Start (09/02/2013 16:01:41)
Running Repair Under System Account
Done (09/02/2013 16:01:44)

Reset File Permissions 07/30
C:\found.000 & Sub Folders
Start (09/02/2013 16:01:44)
Running Repair Under System Account
Done (09/02/2013 16:01:46)

Reset File Permissions 08/30
C:\found.001 & Sub Folders
Start (09/02/2013 16:01:46)
Running Repair Under System Account
Done (09/02/2013 16:01:49)

Reset File Permissions 09/30
C:\found.002 & Sub Folders
Start (09/02/2013 16:01:49)
Running Repair Under System Account
Done (09/02/2013 16:01:51)

Reset File Permissions 10/30
C:\found.003 & Sub Folders
Start (09/02/2013 16:01:51)
Running Repair Under System Account
Done (09/02/2013 16:01:54)

Reset File Permissions 11/30
C:\found.004 & Sub Folders
Start (09/02/2013 16:01:54)
Running Repair Under System Account
Done (09/02/2013 16:01:56)

Reset File Permissions 12/30
C:\found.005 & Sub Folders
Start (09/02/2013 16:01:56)
Running Repair Under System Account
Done (09/02/2013 16:01:59)

Reset File Permissions 13/30
C:\found.006 & Sub Folders
Start (09/02/2013 16:01:59)
Running Repair Under System Account
Done (09/02/2013 16:02:01)

Reset File Permissions 14/30
C:\found.007 & Sub Folders
Start (09/02/2013 16:02:01)
Running Repair Under System Account
Done (09/02/2013 16:02:04)

Reset File Permissions 15/30
C:\found.008 & Sub Folders
Start (09/02/2013 16:02:04)
Running Repair Under System Account
Done (09/02/2013 16:02:06)

Reset File Permissions 16/30
C:\Intel & Sub Folders
Start (09/02/2013 16:02:06)
Running Repair Under System Account
Done (09/02/2013 16:02:09)

Reset File Permissions 17/30
C:\MSOCache & Sub Folders
Start (09/02/2013 16:02:09)
Running Repair Under System Account
Done (09/02/2013 16:02:11)

Reset File Permissions 18/30
C:\MyWorks & Sub Folders
Start (09/02/2013 16:02:11)
Running Repair Under System Account
Done (09/02/2013 16:02:14)

Reset File Permissions 19/30
C:\PerfLogs & Sub Folders
Start (09/02/2013 16:02:14)
Running Repair Under System Account
Done (09/02/2013 16:02:16)

Reset File Permissions 20/30
C:\Program Files & Sub Folders
Start (09/02/2013 16:02:16)
Running Repair Under System Account
Done (09/02/2013 16:02:25)

Reset File Permissions 21/30
C:\Program Files (x86) & Sub Folders
Start (09/02/2013 16:02:25)
Running Repair Under System Account
Done (09/02/2013 16:02:58)

Reset File Permissions 22/30
C:\ProgramData & Sub Folders
Start (09/02/2013 16:02:58)
Running Repair Under System Account
Done (09/02/2013 16:03:28)

Reset File Permissions 23/30
C:\Qoobox & Sub Folders
Start (09/02/2013 16:03:28)
Running Repair Under System Account
Done (09/02/2013 16:03:30)

Reset File Permissions 24/30
C:\Recovery & Sub Folders
Start (09/02/2013 16:03:30)
Running Repair Under System Account
Done (09/02/2013 16:03:33)

Reset File Permissions 25/30
C:\RegBackup & Sub Folders
Start (09/02/2013 16:03:33)
Running Repair Under System Account
Done (09/02/2013 16:03:35)

Reset File Permissions 26/30
C:\rei & Sub Folders
Start (09/02/2013 16:03:35)
Running Repair Under System Account
Done (09/02/2013 16:03:38)

Reset File Permissions 27/30
C:\temp & Sub Folders
Start (09/02/2013 16:03:38)
Running Repair Under System Account
Done (09/02/2013 16:03:40)

Reset File Permissions 28/30
C:\Tweaking.com_Windows_Repair_Logs & Sub Folders
Start (09/02/2013 16:03:40)
Running Repair Under System Account
Done (09/02/2013 16:03:43)

Reset File Permissions 29/30
C:\Windows & Sub Folders
Start (09/02/2013 16:03:43)
Running Repair Under System Account
Done (09/02/2013 16:05:39)

Reset File Permissions 30/30
C:\_OTL & Sub Folders
Start (09/02/2013 16:05:39)
Running Repair Under System Account
Done (09/02/2013 16:05:42)

Reset File Permissions: Cleanup
& Sub Folders
Start (09/02/2013 16:05:42)
Running Repair Under System Account
Done (09/02/2013 16:05:46)

Register System Files
Start (09/02/2013 16:05:46)
Running Repair Under Current User Account
Running Repair Under System Account
Done (09/02/2013 16:06:33)

Repair WMI
Start (09/02/2013 16:06:33)
Running Repair Under Current User Account
Running Repair Under System Account
Done (09/02/2013 16:08:21)

Remove Policies Set By Infections
Start (09/02/2013 16:08:21)
Running Repair Under Current User Account
Running Repair Under System Account
Done (09/02/2013 16:08:25)

Repair Missing Start Menu Icons Removed By Infections
Start (09/02/2013 16:08:25)
Running Repair Under System Account
Done (09/02/2013 16:08:28)

Repair Icons
Start (09/02/2013 16:08:28)
Running Repair Under System Account
Done (09/02/2013 16:08:30)

Repair Winsock & DNS Cache
Start (09/02/2013 16:08:30)
Running Repair Under Current User Account
Running Repair Under System Account
Done (09/02/2013 16:08:43)

Unhide Non System Files
Start (09/02/2013 16:08:43)
C:\ - Total Files Unhidden: 7
Done (09/02/2013 16:09:41)

Repair Windows Updates
Start (09/02/2013 16:09:41)
Running Repair Under Current User Account
Running Repair Under System Account
Done (09/02/2013 16:10:29)

Set Windows Services To Default Startup
Start (09/02/2013 16:10:29)
Running Repair Under Current User Account
Running Repair Under System Account
Done (09/02/2013 16:10:36)

Repair bat Association
Start (09/02/2013 16:10:36)
Running Repair Under Current User Account
Running Repair Under System Account
Done (09/02/2013 16:10:41)

Repair cmd Association
Start (09/02/2013 16:10:41)
Running Repair Under Current User Account
Running Repair Under System Account
Done (09/02/2013 16:10:46)

Repair com Association
Start (09/02/2013 16:10:46)
Running Repair Under Current User Account
Running Repair Under System Account
Done (09/02/2013 16:10:50)

Repair Directory Association
Start (09/02/2013 16:10:51)
Running Repair Under Current User Account
Running Repair Under System Account
Done (09/02/2013 16:10:55)

Repair Drive Association
Start (09/02/2013 16:10:55)
Running Repair Under Current User Account
Running Repair Under System Account
Done (09/02/2013 16:11:00)

Repair exe Association
Start (09/02/2013 16:11:00)
Running Repair Under Current User Account
Running Repair Under System Account
Done (09/02/2013 16:11:05)

Repair Folder Association
Start (09/02/2013 16:11:05)
Running Repair Under Current User Account
Running Repair Under System Account
Done (09/02/2013 16:11:09)

Repair inf Association
Start (09/02/2013 16:11:10)
Running Repair Under Current User Account
Running Repair Under System Account
Done (09/02/2013 16:11:14)

Repair lnk (Shortcuts) Association
Start (09/02/2013 16:11:14)
Running Repair Under Current User Account
Running Repair Under System Account
Done (09/02/2013 16:11:19)

Repair msc Association
Start (09/02/2013 16:11:19)
Running Repair Under Current User Account
Running Repair Under System Account
Done (09/02/2013 16:11:24)

Repair reg Association
Start (09/02/2013 16:11:24)
Running Repair Under Current User Account
Running Repair Under System Account
Done (09/02/2013 16:11:28)

Repair scr Association
Start (09/02/2013 16:11:28)
Running Repair Under Current User Account
Running Repair Under System Account
Done (09/02/2013 16:11:33)

Repair Windows Safe Mode
Start (09/02/2013 16:11:33)
Running Repair Under Current User Account
Running Repair Under System Account
Done (09/02/2013 16:11:38)

Cleaning up empty logs...

All Selected Repairs Done.
Done (09/02/2013 16:11:38)
Total Repair Time: 00:12:02


...YOU MUST RESTART YOUR SYSTEM...


  • 0

#28
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
If windows updates is still not working then could you run the following OTL scan


  • Run OTL.

    Posted Image
  • Select All Users
  • Under the Custom Scan box paste this in

    netsvcs
    BASESERVICES
    %SYSTEMDRIVE%\*.exe
    /md5start
    msapsspc.*
    digest.*
    msnsspc.*
    /md5stop
    CREATERESTOREPOINT

  • Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
  • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
  • Post both logs

  • 0

#29
nobbyburton

nobbyburton

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 173 posts
There is only one OTL.text and no Extras. The log is below:



OTL logfile created on: 09/02/2013 16:44:23 - Run 4
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Owner\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000809 | Country: United Kingdom | Language: ENG | Date Format: dd/MM/yyyy

3.97 Gb Total Physical Memory | 2.34 Gb Available Physical Memory | 58.91% Memory free
7.93 Gb Paging File | 6.06 Gb Available in Paging File | 76.47% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 931.41 Gb Total Space | 884.78 Gb Free Space | 94.99% Space Free | Partition Type: NTFS

Computer Name: OWNER-PC | User Name: Owner | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/02/08 13:49:25 | 000,699,248 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_149_ActiveX.exe
PRC - [2013/02/04 18:54:45 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Owner\Downloads\OTL.exe
PRC - [2012/12/19 22:41:25 | 000,733,808 | ---- | M] (Webroot) -- C:\Program Files\Webroot\WRSA.exe
PRC - [2012/12/18 19:08:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/12/17 13:16:21 | 000,308,368 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
PRC - [2012/12/11 12:49:06 | 000,013,824 | ---- | M] (Smartbar) -- C:\Users\Owner\AppData\Local\Smartbar\Application\Smartbar.exe
PRC - [2012/07/29 19:52:22 | 000,976,728 | ---- | M] (Trusteer Ltd.) -- C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
PRC - [2012/07/29 19:52:20 | 001,673,048 | ---- | M] (Trusteer Ltd.) -- C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
PRC - [2009/02/25 11:27:42 | 000,397,312 | ---- | M] (OLYMPUS IMAGING CORP.) -- C:\Program Files (x86)\OLYMPUS\DeviceDetector\DeviceDetector4.exe
PRC - [2009/02/25 11:22:58 | 000,167,936 | ---- | M] (OLYMPUS IMAGING CORP.) -- C:\Program Files (x86)\Common Files\Olympus Shared\DeviceManager\olydvrsv.exe
PRC - [2006/06/09 18:38:00 | 000,294,912 | ---- | M] (FUJI PHOTO FILM CO., LTD.) -- C:\Program Files\FinePixViewer\QuickDCF2.exe
PRC - [2005/06/02 14:54:34 | 000,086,606 | ---- | M] (Canon Inc.) -- C:\Program Files (x86)\Canon\CAL\CALMAIN.exe


========== Modules (No Company Name) ==========

MOD - [2013/02/09 13:38:54 | 008,013,664 | ---- | M] () -- C:\Windows\assembly\GAC\Microsoft.mshtml\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.mshtml.dll
MOD - [2013/02/09 13:38:54 | 000,118,784 | ---- | M] () -- C:\Windows\assembly\GAC\Microsoft.VisualStudio.OLE.Interop\7.1.40304.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.OLE.Interop.dll
MOD - [2013/02/09 13:38:53 | 000,139,264 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\Interop.SHDocVw\1.1.0.0__84542ff99aed6a4d\Interop.SHDocVw.dll
MOD - [2012/12/11 12:49:06 | 000,023,040 | ---- | M] () -- C:\Users\Owner\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Core.dll
MOD - [2012/12/11 12:49:04 | 001,493,504 | ---- | M] () -- C:\Users\Owner\AppData\Local\Smartbar\Application\Smartbar.GUI.MainClient.dll
MOD - [2012/12/11 12:49:04 | 000,035,840 | ---- | M] () -- C:\Users\Owner\AppData\Local\Smartbar\Application\Smartbar.Resources.AutomaticUpdates.dll
MOD - [2012/12/11 12:49:02 | 000,559,104 | ---- | M] () -- C:\Users\Owner\AppData\Local\Smartbar\Application\Smartbar.GUI.Controls.dll
MOD - [2012/12/11 12:49:02 | 000,007,680 | ---- | M] () -- C:\Users\Owner\AppData\Local\Smartbar\Application\Smartbar.GUI.Multimedia.Loader.dll
MOD - [2012/12/11 12:49:00 | 000,049,152 | ---- | M] () -- C:\Users\Owner\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.InternetExplorerLocalPlugin.dll
MOD - [2012/12/11 12:48:58 | 000,073,216 | ---- | M] () -- C:\Users\Owner\AppData\Local\Smartbar\Application\Smartbar.Personalization.BusinessLogic.dll
MOD - [2012/12/11 12:48:58 | 000,040,960 | ---- | M] () -- C:\Users\Owner\AppData\Local\Smartbar\Application\Smartbar.Resources.SocialNetsSharer.XmlSerializers.dll
MOD - [2012/12/11 12:48:58 | 000,019,456 | ---- | M] () -- C:\Users\Owner\AppData\Local\Smartbar\Application\Smartbar.Resources.SocialNetsSharer.dll
MOD - [2012/12/11 12:48:58 | 000,013,824 | ---- | M] () -- C:\Users\Owner\AppData\Local\Smartbar\Application\Smartbar.Resources.SideBySide.dll
MOD - [2012/12/11 12:48:46 | 000,091,992 | ---- | M] () -- C:\Users\Owner\AppData\Local\Smartbar\Application\SmartbarInternetExplorerExtension.dll
MOD - [2012/12/11 12:48:44 | 000,132,952 | ---- | M] () -- C:\Users\Owner\AppData\Local\Smartbar\Application\SmartbarInternetExplorerBHO.dll
MOD - [2012/12/11 12:47:46 | 000,190,296 | ---- | M] () -- C:\Users\Owner\AppData\Local\Smartbar\Application\Smartbar.GUI.Multimedia.dll
MOD - [2012/12/11 12:47:10 | 000,067,416 | ---- | M] () -- C:\Users\Owner\AppData\Local\Smartbar\Application\AxInterop.WMPLib.dll
MOD - [2012/12/11 12:46:56 | 000,062,976 | ---- | M] () -- C:\Users\Owner\AppData\Local\Smartbar\Application\Smartbar.Resources.HistoryAndStatsWrapper.dll
MOD - [2012/12/11 12:46:56 | 000,041,472 | ---- | M] () -- C:\Users\Owner\AppData\Local\Smartbar\Application\Smartbar.Resources.LanguageSettings.dll
MOD - [2012/12/11 12:46:56 | 000,012,800 | ---- | M] () -- C:\Users\Owner\AppData\Local\Smartbar\Application\Smartbar.Resources.Utilities.dll
MOD - [2012/12/11 12:46:56 | 000,007,680 | ---- | M] () -- C:\Users\Owner\AppData\Local\Smartbar\Application\Smartbar.Resources.BrowserHelperUtils.dll
MOD - [2012/12/11 12:46:56 | 000,007,168 | ---- | M] () -- C:\Users\Owner\AppData\Local\Smartbar\Application\Smartbar.Resources.ProcessDownMonitor.dll
MOD - [2012/12/11 12:46:54 | 000,012,288 | ---- | M] () -- C:\Users\Owner\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Utilities.dll
MOD - [2012/12/11 12:46:54 | 000,009,728 | ---- | M] () -- C:\Users\Owner\AppData\Local\Smartbar\Application\Smartbar.Personalization.Common.dll
MOD - [2012/12/11 12:44:40 | 000,074,752 | ---- | M] () -- C:\Users\Owner\AppData\Local\Smartbar\Application\Smartbar.GUI.Docking.dll
MOD - [2012/12/11 12:44:40 | 000,007,168 | ---- | M] () -- C:\Users\Owner\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.BusinessEntities.dll
MOD - [2012/12/11 12:44:40 | 000,006,144 | ---- | M] () -- C:\Users\Owner\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.EventManager.dll
MOD - [2012/12/11 12:44:38 | 000,040,960 | ---- | M] () -- C:\Users\Owner\AppData\Local\Smartbar\Application\MACTrackBarLib.dll
MOD - [2012/09/28 11:13:44 | 001,624,576 | ---- | M] () -- C:\Users\Owner\AppData\LocalLow\FCTB000061465\Toolbar\Toolbar.dll
MOD - [2012/05/28 20:40:25 | 000,520,464 | ---- | M] () -- C:\ProgramData\Trusteer\Rapport\store\exts\RapportMS\39624\RapportMS.dll
MOD - [2012/02/01 13:43:10 | 000,557,056 | ---- | M] () -- C:\Program Files (x86)\Trusteer\Rapport\bin\js32.dll
MOD - [2011/07/08 22:33:43 | 004,550,656 | ---- | M] () -- C:\Windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
MOD - [2011/06/22 09:41:04 | 001,544,192 | ---- | M] () -- C:\Program Files (x86)\Nectar Search Toolbar\Toolbar.dll
MOD - [2011/05/04 22:32:40 | 003,190,784 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
MOD - [2011/03/29 22:33:52 | 005,025,792 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
MOD - [2010/11/21 03:24:32 | 000,425,984 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.dll
MOD - [2010/11/21 03:24:26 | 005,251,072 | ---- | M] () -- C:\Windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
MOD - [2010/11/21 03:24:16 | 000,626,688 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
MOD - [2010/11/21 03:24:08 | 000,839,680 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll
MOD - [2010/11/21 03:24:01 | 000,069,120 | ---- | M] () -- C:\Windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
MOD - [2010/11/21 03:23:48 | 002,048,000 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.Xml.dll
MOD - [2009/06/10 21:22:40 | 000,010,752 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
MOD - [2007/08/14 11:59:54 | 006,365,184 | ---- | M] () -- C:\Program Files (x86)\Common Files\LightScribe\QtGui4.dll
MOD - [2007/07/12 11:55:52 | 000,131,072 | ---- | M] () -- C:\Program Files (x86)\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll
MOD - [2007/07/12 11:55:28 | 001,581,056 | ---- | M] () -- C:\Program Files (x86)\Common Files\LightScribe\QtCore4.dll
MOD - [2006/02/22 11:44:00 | 000,061,440 | ---- | M] () -- C:\Program Files\FinePixViewer\wia_register_event.dll


========== Services (SafeList) ==========

SRV:64bit: - [2012/12/19 22:41:25 | 000,733,808 | ---- | M] (Webroot) [Auto | Running] -- C:\Program Files\Webroot\WRSA.exe -- (WRSVC)
SRV:64bit: - [2012/07/11 18:54:58 | 000,140,672 | ---- | M] (SUPERAntiSpyware.com) [Auto | Running] -- C:\Program Files\SUPERAntiSpyware\SASCore64.exe -- (!SASCORE)
SRV:64bit: - [2010/09/22 17:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2009/07/14 01:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013/02/08 13:49:29 | 000,251,248 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/12/18 19:08:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/07/29 19:52:22 | 000,976,728 | ---- | M] (Trusteer Ltd.) [Auto | Running] -- C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe -- (RapportMgmtService)
SRV - [2009/06/10 21:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/02/25 11:22:58 | 000,167,936 | ---- | M] (OLYMPUS IMAGING CORP.) [On_Demand | Running] -- C:\Program Files (x86)\Common Files\Olympus Shared\DeviceManager\olydvrsv.exe -- (Olympus DVR Service)
SRV - [2005/06/02 14:54:34 | 000,086,606 | ---- | M] (Canon Inc.) [Auto | Running] -- C:\Program Files (x86)\Canon\CAL\CALMAIN.exe -- (CCALib8)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/12/19 22:41:26 | 000,111,776 | ---- | M] (Webroot) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\WRkrn.sys -- (WRkrn)
DRV:64bit: - [2012/07/29 19:52:38 | 000,101,688 | ---- | M] (Trusteer Ltd.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\RapportKE64.sys -- (RapportKE64)
DRV:64bit: - [2012/03/08 17:40:52 | 000,048,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2011/07/22 16:26:56 | 000,014,928 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys -- (SASDIFSV)
DRV:64bit: - [2011/07/12 21:55:18 | 000,012,368 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys -- (SASKUTIL)
DRV:64bit: - [2011/03/11 06:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 06:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/11/21 03:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/21 03:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/21 03:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010/04/21 03:18:44 | 010,326,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2009/10/05 16:34:00 | 001,542,656 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)
DRV:64bit: - [2009/09/04 05:39:10 | 000,062,464 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C62x64.sys -- (L1C)
DRV:64bit: - [2009/07/16 03:38:40 | 000,015,416 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor)
DRV:64bit: - [2009/07/14 01:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 01:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 01:47:48 | 000,023,104 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2009/07/14 01:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 20:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 20:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 20:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 20:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2012/10/30 08:36:26 | 000,505,720 | ---- | M] () [Kernel | System | Running] -- C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\43926\RapportCerberus64_43926.sys -- (RapportCerberus_43926)
DRV - [2012/07/29 19:52:40 | 000,055,096 | ---- | M] (Trusteer Ltd.) [Kernel | System | Running] -- C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys -- (RapportEI64)
DRV - [2012/07/29 19:52:38 | 000,297,240 | ---- | M] (Trusteer Ltd.) [Kernel | System | Running] -- C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys -- (RapportPG64)
DRV - [2009/07/14 01:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE:64bit: - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {006ee092-9658-4fd6-bd8e-a21a348e59f5}
IE - HKLM\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = http://feed.helperba...&q={searchTerms}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7


IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://feed.helperba...&q={searchTerms}
IE - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://feed.helperba...&q={searchTerms}
IE - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://feed.helperba...3&searchtype=hp
IE - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://uk.msn.com/?ocid=iehp
IE - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-gb
IE - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 20 E2 22 F3 D6 06 CE 01 [binary data]
IE - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://feed.helperba...&q={searchTerms}
IE - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://feed.helperba...&q={searchTerms}
IE - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = http://feed.helperba...&q={searchTerms}
IE - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRC
IE - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\..\SearchScopes\{08E4E36B-9439-4675-A473-C6B209DD10E6}: "URL" = http://uk.search.yah...&p={searchTerms}
IE - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\..\SearchScopes\{509D84A2-1C2A-4EBC-859D-29A8575CF256}: "URL" = http://websearch.ask...C5-601FC6C0CAEA
IE - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...GGHP_en-GBGB431
IE - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@ei.MyScrapNook_12.com/Plugin: C:\Program Files (x86)\MyScrapNook_12EI\Installr\1.bin\NP12EISB.dll File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011/05/12 18:56:08 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011/05/12 18:56:08 | 000,000,000 | ---D | M]


O1 HOSTS File: ([2013/02/05 19:39:23 | 000,000,098 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:64bit: - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.8313.1002\swg64.dll (Google Inc.)
O2:64bit: - BHO: (Webroot Vault) - {c8d5d964-2be8-4c5b-8cf5-6e975aa88504} - C:\ProgramData\WRData\PKG\LPBar64.dll ()
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll (Google Inc.)
O2 - BHO: (Nectar Search Toolbar BHO) - {B7C2F0D8-2209-4693-A15D-5A537211D48B} - C:\Program Files (x86)\Nectar Search Toolbar\Toolbar.dll ()
O2 - BHO: (Webroot Vault) - {c8d5d964-2be8-4c5b-8cf5-6e975aa88504} - C:\ProgramData\WRData\PKG\LPBar.dll ()
O2 - BHO: (Search Results Toolbar) - {fa63398e-322b-4833-9af3-15837ad12138} - C:\Program Files (x86)\searchresults\searchresultsDx.dll File not found
O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (Yahoo! Inc)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (Webroot Toolbar) - {97ab88ef-346b-4179-a0b1-7445896547a5} - C:\ProgramData\WRData\PKG\LPBar64.dll ()
O3 - HKLM\..\Toolbar: (Nectar Search Toolbar) - {8020143D-5926-4394-A04D-DD0B649DA121} - C:\Program Files (x86)\Nectar Search Toolbar\Toolbar.dll ()
O3 - HKLM\..\Toolbar: (Webroot Toolbar) - {97ab88ef-346b-4179-a0b1-7445896547a5} - C:\ProgramData\WRData\PKG\LPBar.dll ()
O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKLM\..\Toolbar: (Search Results Toolbar) - {fa63398e-322b-4833-9af3-15837ad12138} - C:\Program Files (x86)\searchresults\searchresultsDx.dll File not found
O3:64bit: - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\..\Toolbar\WebBrowser: (Nectar Search Toolbar) - {8020143D-5926-4394-A04D-DD0B649DA121} - C:\Program Files (x86)\Nectar Search Toolbar\Toolbar.dll ()
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [LanguageShortcut] C:\Program Files (x86)\CyberLink\PowerDVD\Language\Language.exe ()
O4 - HKLM..\Run: [REGSHAVE] C:\Program Files (x86)\REGSHAVE\REGSHAVE.EXE (FUJI PHOTO FILM CO., LTD.)
O4 - HKLM..\Run: [WRSVC] C:\Program Files\Webroot\WRSA.exe (Webroot)
O4 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000..\Run: [Browser Infrastructure Helper] C:\Users\Owner\AppData\Local\Smartbar\Application\Smartbar.exe (Smartbar)
O4 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewOnDrive = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableLocalMachineRun = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableLocalMachineRunOnce = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableCurrentUserRun = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableCurrentUserRunOnce = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewContextMenu = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoShellSearchButton = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFile = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideClock = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTrayContextMenu = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTrayItemsDisplay = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetFolders = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDevMgrUpdate = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoClose = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetTaskbar = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDeletePrinter = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDFSTab = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeStartMenu = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLogoff = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: StartMenuLogoff = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoWindowsUpdate = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoEncryptOnMove = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRunasInstallPrompt = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoHardwareTab = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuSubFolders = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispAppearancePage = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispSettingsPage = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewOnDrive = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableLocalMachineRun = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableLocalMachineRunOnce = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableCurrentUserRun = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableCurrentUserRunOnce = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewContextMenu = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoShellSearchButton = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFile = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideClock = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTrayContextMenu = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTrayItemsDisplay = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetFolders = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDevMgrUpdate = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoClose = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetTaskbar = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDeletePrinter = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDFSTab = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeStartMenu = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLogoff = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: StartMenuLogoff = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoWindowsUpdate = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoEncryptOnMove = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRunasInstallPrompt = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoHardwareTab = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuSubFolders = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispAppearancePage = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispSettingsPage = 0
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewOnDrive = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableLocalMachineRun = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableLocalMachineRunOnce = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableCurrentUserRun = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableCurrentUserRunOnce = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewContextMenu = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoShellSearchButton = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFile = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideClock = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTrayContextMenu = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTrayItemsDisplay = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetFolders = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDevMgrUpdate = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoClose = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetTaskbar = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDeletePrinter = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDFSTab = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeStartMenu = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLogoff = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: StartMenuLogoff = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoWindowsUpdate = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoEncryptOnMove = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRunasInstallPrompt = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoHardwareTab = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuSubFolders = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispAppearancePage = 0
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispSettingsPage = 0
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewOnDrive = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableLocalMachineRun = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableLocalMachineRunOnce = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableCurrentUserRun = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableCurrentUserRunOnce = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewContextMenu = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoShellSearchButton = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFile = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideClock = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTrayContextMenu = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTrayItemsDisplay = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetFolders = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDevMgrUpdate = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoClose = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetTaskbar = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDeletePrinter = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDFSTab = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeStartMenu = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLogoff = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: StartMenuLogoff = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoWindowsUpdate = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoEncryptOnMove = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRunasInstallPrompt = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoHardwareTab = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuSubFolders = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispAppearancePage = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispBackgroundPage = 0
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispSettingsPage = 0
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewOnDrive = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableLocalMachineRun = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableLocalMachineRunOnce = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableCurrentUserRun = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableCurrentUserRunOnce = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewContextMenu = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoShellSearchButton = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFile = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideClock = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTrayContextMenu = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTrayItemsDisplay = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetFolders = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDevMgrUpdate = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoClose = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetTaskbar = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDeletePrinter = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDFSTab = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeStartMenu = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLogoff = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: StartMenuLogoff = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoWindowsUpdate = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoEncryptOnMove = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRunasInstallPrompt = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoHardwareTab = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuSubFolders = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispAppearancePage = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispBackgroundPage = 0
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispSettingsPage = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewOnDrive = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableLocalMachineRun = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableLocalMachineRunOnce = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableCurrentUserRun = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisableCurrentUserRunOnce = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewContextMenu = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoShellSearchButton = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFile = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideClock = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTrayContextMenu = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoTrayItemsDisplay = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetFolders = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDevMgrUpdate = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoClose = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetTaskbar = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDeletePrinter = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDFSTab = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoChangeStartMenu = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLogoff = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: StartMenuLogoff = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoWindowsUpdate = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoEncryptOnMove = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoRunasInstallPrompt = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoHardwareTab = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuSubFolders = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispAppearancePage = 0
O7 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispSettingsPage = 0
O9:64bit: - Extra Button: Webroot - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\ProgramData\WRData\PKG\LPBar64.dll ()
O9:64bit: - Extra 'Tools' menuitem : Webroot - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\ProgramData\WRData\PKG\LPBar64.dll ()
O9 - Extra Button: Webroot - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\ProgramData\WRData\PKG\LPBar.dll ()
O9 - Extra 'Tools' menuitem : Webroot - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\ProgramData\WRData\PKG\LPBar.dll ()
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\..Trusted Domains: microsoft.com ([*.windowsupdate] https in Trusted sites)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.micr...heckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0B1C47F2-13DD-4F6A-8199-330AC8935ADC}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DE1E871A-6655-4FCC-9502-FC45A1472441}: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\ipp - No CLSID value found
O18:64bit: - Protocol\Handler\ipp\0x00000001 - No CLSID value found
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\oledb - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O29:64bit: - HKLM SecurityProviders - (msapsspc.dll) - File not found
O29:64bit: - HKLM SecurityProviders - (digest.dll) - File not found
O29:64bit: - HKLM SecurityProviders - (msnsspc.dll) - File not found
O29 - HKLM SecurityProviders - (msapsspc.dll) - File not found
O29 - HKLM SecurityProviders - (digest.dll) - File not found
O29 - HKLM SecurityProviders - (msnsspc.dll) - File not found
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O35 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKU\.DEFAULT\...exe [@ = exefile] -- "%1" %*
O37 - HKU\S-1-5-18\...exe [@ = exefile] -- "%1" %*
O37 - HKU\S-1-5-21-2565913153-275030290-2916907130-1000\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)


CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2013/02/09 16:10:26 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2013/02/09 14:26:17 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tweaking.com
[2013/02/09 13:39:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair
[2013/02/09 13:39:40 | 000,000,000 | ---D | C] -- C:\rei
[2013/02/09 13:39:32 | 000,000,000 | ---D | C] -- C:\Program Files\Reimage
[2013/02/09 13:38:51 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\Smartbar
[2013/02/09 11:55:43 | 000,000,000 | ---D | C] -- C:\Users\Owner\Desktop\dotnetfx_cleanup_tool
[2013/02/09 11:36:04 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{A078923A-547E-417D-BB76-D530F099CCCF}
[2013/02/08 17:10:28 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{49A7DD45-D681-4B11-BB94-350F20D06A0A}
[2013/02/08 00:02:29 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{9903B267-2FDB-4D69-B11D-10B380E998E1}
[2013/02/07 10:41:32 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{57FF54F2-9661-421A-A087-88988C05BE5B}
[2013/02/06 23:15:00 | 000,000,000 | ---D | C] -- C:\Windows\softwaredistribution.bak1
[2013/02/06 22:41:08 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{6A319A7D-C889-4391-B81E-D0C07C19B90F}
[2013/02/06 22:20:07 | 000,450,352 | ---- | C] (Microsoft Corporation) -- C:\Users\Owner\Desktop\FixitCenter_Run.exe
[2013/02/06 10:40:44 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{AFF61EE8-2EA6-40DD-9606-FD7B2F8472C6}
[2013/02/05 21:39:55 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{15A5D7B0-AD86-43CB-93B6-3CD9999AB89F}
[2013/02/05 19:39:22 | 000,000,000 | ---D | C] -- C:\_OTL
[2013/02/05 12:45:10 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2013/02/05 12:27:02 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2013/02/05 12:16:23 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2013/02/05 12:16:23 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2013/02/05 12:16:23 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2013/02/05 12:16:19 | 000,000,000 | ---D | C] -- C:\Qoobox
[2013/02/05 12:16:08 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2013/02/05 11:10:37 | 005,029,686 | R--- | C] (Swearware) -- C:\Users\Owner\Desktop\ComboFix.exe
[2013/02/05 09:39:31 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{DF02E440-B901-43CA-98B7-1857827B98BF}
[2013/02/04 21:39:07 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{B7108D44-95EE-4FE5-9374-749F60126841}
[2013/02/04 09:05:25 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{FD0BC90F-8486-49F3-B5B1-11F0C83A4E9B}
[2013/02/03 13:18:56 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{D799B5B8-CEB7-489F-85A6-F2B4C145F6A1}
[2013/02/02 23:43:06 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{61E08BFF-615B-4A50-A2D3-97FA0FC7E529}
[2013/02/02 15:08:55 | 000,000,000 | ---D | C] -- C:\Windows\softwaredistribution.bak
[2013/02/02 14:19:39 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\catroot2.bak
[2013/02/02 14:07:42 | 000,000,000 | ---D | C] -- C:\Users\Owner\Desktop\PC Repair programs (Andy)
[2013/02/02 13:29:46 | 000,181,064 | ---- | C] (Sysinternals) -- C:\Windows\PSEXESVC.EXE
[2013/02/02 13:22:33 | 000,000,000 | ---D | C] -- C:\RegBackup
[2013/02/02 13:17:03 | 000,000,000 | ---D | C] -- C:\Tweaking.com_Windows_Repair_Logs
[2013/02/02 13:16:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
[2013/02/02 13:16:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Tweaking.com
[2013/02/02 11:42:42 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{2F2EB67B-369B-4DC2-A1F1-92CA190A89CA}
[2013/02/01 22:25:41 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{0BF9AF08-AAE5-4103-A341-D73460E67D70}
[2013/02/01 10:25:17 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{8BF61C14-7864-413C-A572-58E3A341D9FB}
[2013/01/31 22:24:53 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{CF3AD9B9-CBE2-4286-8091-1DB6523704CC}
[2013/01/31 14:56:07 | 000,000,000 | ---D | C] -- C:\Users\Owner\Documents\My Scans
[2013/01/31 10:24:30 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{71BE2265-5D9C-4488-89F8-1F5101329E23}
[2013/01/30 22:24:06 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{31FB9DEA-6BE7-4F76-AB12-3624AC633FBF}
[2013/01/30 10:23:42 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{7AEBD21B-BD3B-4973-8D03-E4D8A37D972E}
[2013/01/29 22:23:19 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{073703C9-8217-433E-9FB1-A82226ED8189}
[2013/01/29 10:22:55 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{C7CEA331-640D-49D8-8E94-A932B6085FFC}
[2013/01/28 22:22:31 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{C284E0E3-CCBA-4EB6-84DD-A376BC54AD0C}
[2013/01/28 10:22:07 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{2A1C4759-8078-4BE1-BFDA-59078C37AD55}
[2013/01/27 10:21:32 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{9692B6EA-AF3F-4E5E-8F2B-F49248D09D03}
[2013/01/26 22:21:21 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{9142C3F0-285D-4236-B350-C73FBA10DFC6}
[2013/01/26 10:22:22 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{1284D964-9AEF-4A02-BA7A-72ABA0113A9F}
[2013/01/26 10:18:17 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{41422658-7F0E-49E6-8C24-1954893DE05E}
[2013/01/25 22:33:10 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{61EDC0BA-1D53-40AC-92CF-CBE677A80CDB}
[2013/01/25 10:32:56 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{F878B478-1717-4A55-97E8-77AB0944208D}
[2013/01/25 10:29:06 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{BA0C85B0-AC5E-4CC7-9FFC-31509B376C98}
[2013/01/24 10:28:31 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{693DAEAD-C47D-4B0C-9D2B-3D9CDEF503C8}
[2013/01/23 22:28:07 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{3C825D24-89BF-4F07-92AA-14AC7DD7EB20}
[2013/01/23 10:27:56 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{020FF02A-93CE-48A1-B78C-6D991801865B}
[2013/01/22 22:27:32 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{87F53A34-7BE1-491B-A59A-EEA4A561A436}
[2013/01/22 10:27:21 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{7DB30DF6-B6B0-4C87-8EC3-F105CC487AE7}
[2013/01/21 22:26:57 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{A030D6D2-AD5A-4722-BB39-61CF2D1AACEC}
[2013/01/21 10:26:45 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{66A8F72D-627A-4A7C-91C9-3F422ABFD5AE}
[2013/01/20 22:26:21 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{86BFCCB3-78D6-47C2-BE14-CE70A48021FA}
[2013/01/20 10:26:10 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{C6BA7321-E5D8-4E7C-B8F9-028BBAB2CE56}
[2013/01/19 10:25:47 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{789CD718-FC1D-49A5-8023-F712EFD75DC9}
[2013/01/18 21:39:29 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{F478A046-7A1E-48FE-95C4-15325B0D2064}
[2013/01/18 09:39:05 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{144B3D1B-9053-4FB5-9B3A-5C3A74D79E93}
[2013/01/17 21:38:41 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{292FDDDD-F557-4E99-B7AD-3CC982D7AC40}
[2013/01/17 09:38:29 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{4981FAAE-F5C8-4800-8711-E80D2914BA9A}
[2013/01/16 21:38:06 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{F8215B13-FEA5-4B11-87E5-E71C7301FCC9}
[2013/01/16 09:37:54 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{133898D0-FD91-4AEB-A2DE-68C7BF0C7D6E}
[2013/01/15 21:37:30 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{76581335-5B96-4077-9AAB-A9C12133637D}
[2013/01/15 09:37:19 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{8F5B4B83-812E-4C27-9198-C75CA872A7C9}
[2013/01/14 09:36:43 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{FC06476A-1A6B-419F-957A-F416CD0A52EC}
[2013/01/13 16:51:41 | 000,000,000 | ---D | C] -- C:\$WINDOWS.~LS
[2013/01/13 16:50:54 | 000,000,000 | ---D | C] -- C:\$UPGRADE.~OS
[2013/01/13 16:50:06 | 000,000,000 | ---D | C] -- C:\$WINDOWS.~BT
[2013/01/13 16:27:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ESET
[2013/01/13 16:02:35 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\SUPERAntiSpyware.com
[2013/01/13 16:02:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
[2013/01/13 16:02:18 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2013/01/13 16:02:18 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2013/01/13 11:25:21 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{81C69645-99F3-4E59-BA17-53084C98C732}
[2013/01/12 23:25:09 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{A323B206-2F9A-4822-A6F6-BF27941805DF}
[2013/01/12 11:24:45 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{88CCDE96-2AD8-448E-9A9E-C599B3B65A68}
[2013/01/11 10:24:33 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{61082CF1-031F-4503-855D-7116C9AF07A9}
[2013/01/10 22:24:09 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{F71BC8AB-5EAB-486F-A2D5-9277753906C4}
[2012/06/26 07:44:14 | 009,842,040 | ---- | C] (Webroot Software, Inc.) -- C:\Program Files (x86)\Common Files\wruninstall.exe

========== Files - Modified Within 30 Days ==========

[2013/02/09 16:15:01 | 000,000,896 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/02/09 16:11:36 | 000,181,064 | ---- | M] (Sysinternals) -- C:\Windows\PSEXESVC.EXE
[2013/02/09 16:11:25 | 000,710,770 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/02/09 16:11:25 | 000,617,358 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/02/09 16:11:25 | 000,106,402 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/02/09 15:48:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/02/09 15:01:37 | 000,022,064 | ---- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/02/09 15:01:37 | 000,022,064 | ---- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/02/09 14:56:44 | 000,000,892 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/02/09 14:56:26 | 000,402,520 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/02/09 14:56:22 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/02/09 14:56:14 | 3193,790,464 | -HS- | M] () -- C:\hiberfil.sys
[2013/02/09 14:26:17 | 000,002,287 | ---- | M] () -- C:\Users\Owner\Desktop\Tweaking.com - Windows Repair (All in One).lnk
[2013/02/09 13:40:48 | 000,000,162 | ---- | M] () -- C:\Windows\reimage.ini
[2013/02/09 13:39:41 | 000,001,901 | ---- | M] () -- C:\Users\Public\Desktop\PC Scan & Repair by Reimage.lnk
[2013/02/09 13:39:32 | 000,001,069 | ---- | M] () -- C:\Users\Owner\Desktop\Install Bitdefender free trial.lnk
[2013/02/09 11:53:57 | 000,265,598 | ---- | M] () -- C:\Users\Owner\Desktop\dotnetfx_cleanup_tool.zip
[2013/02/08 13:49:26 | 000,697,712 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013/02/08 13:49:26 | 000,074,096 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013/02/07 09:59:32 | 000,001,136 | ---- | M] () -- C:\Users\Owner\Desktop\Windows Update Troubleshooting Info.lnk
[2013/02/06 22:39:26 | 000,450,352 | ---- | M] (Microsoft Corporation) -- C:\Users\Owner\Desktop\FixitCenter_Run.exe
[2013/02/06 19:44:50 | 000,000,193 | ---- | M] () -- C:\Windows\WORDPAD.INI
[2013/02/05 19:39:23 | 000,000,098 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\Hosts
[2013/02/05 11:10:50 | 005,029,686 | R--- | M] (Swearware) -- C:\Users\Owner\Desktop\ComboFix.exe
[2013/02/04 22:37:41 | 000,000,512 | ---- | M] () -- C:\Users\Owner\Desktop\MBR.dat
[2013/02/02 16:02:31 | 000,000,436 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts.ics
[2013/02/02 15:35:16 | 000,000,134 | ---- | M] () -- C:\Users\Owner\Desktop\Microsoft Fix it.url
[2013/02/02 14:46:54 | 000,761,720 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013/02/02 13:58:30 | 000,000,855 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts_bak_432
[2013/02/02 13:23:26 | 000,000,207 | ---- | M] () -- C:\Windows\tweaking.com-regbackup-OWNER-PC-Microsoft-Windows-7-Home-Premium-(64-bit).dat
[2013/02/02 13:16:59 | 000,002,287 | ---- | M] () -- C:\Users\Public\Desktop\Tweaking.com - Windows Repair (All in One).lnk
[2013/01/13 16:55:54 | 000,001,908 | ---- | M] () -- C:\Windows\diagwrn.xml
[2013/01/13 16:55:54 | 000,001,908 | ---- | M] () -- C:\Windows\diagerr.xml
[2013/01/13 16:51:41 | 000,000,002 | ---- | M] () -- C:\$UpgDrv$
[2013/01/13 16:02:20 | 000,001,808 | ---- | M] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk

========== Files Created - No Company Name ==========

[2013/02/09 14:26:17 | 000,002,287 | ---- | C] () -- C:\Users\Owner\Desktop\Tweaking.com - Windows Repair (All in One).lnk
[2013/02/09 13:39:42 | 000,000,162 | ---- | C] () -- C:\Windows\reimage.ini
[2013/02/09 13:39:41 | 000,001,901 | ---- | C] () -- C:\Users\Public\Desktop\PC Scan & Repair by Reimage.lnk
[2013/02/09 13:39:32 | 000,001,069 | ---- | C] () -- C:\Users\Owner\Desktop\Install Bitdefender free trial.lnk
[2013/02/09 11:53:56 | 000,265,598 | ---- | C] () -- C:\Users\Owner\Desktop\dotnetfx_cleanup_tool.zip
[2013/02/06 23:14:17 | 000,001,136 | ---- | C] () -- C:\Users\Owner\Desktop\Windows Update Troubleshooting Info.lnk
[2013/02/06 18:39:28 | 000,000,193 | ---- | C] () -- C:\Windows\WORDPAD.INI
[2013/02/05 12:16:23 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2013/02/05 12:16:23 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2013/02/05 12:16:23 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2013/02/05 12:16:23 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2013/02/05 12:16:23 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2013/02/04 22:37:41 | 000,000,512 | ---- | C] () -- C:\Users\Owner\Desktop\MBR.dat
[2013/02/02 15:25:59 | 000,000,134 | ---- | C] () -- C:\Users\Owner\Desktop\Microsoft Fix it.url
[2013/02/02 13:23:26 | 000,000,207 | ---- | C] () -- C:\Windows\tweaking.com-regbackup-OWNER-PC-Microsoft-Windows-7-Home-Premium-(64-bit).dat
[2013/02/02 13:16:59 | 000,002,287 | ---- | C] () -- C:\Users\Public\Desktop\Tweaking.com - Windows Repair (All in One).lnk
[2013/01/13 16:51:41 | 000,000,002 | ---- | C] () -- C:\$UpgDrv$
[2013/01/13 16:37:40 | 000,001,908 | ---- | C] () -- C:\Windows\diagwrn.xml
[2013/01/13 16:37:40 | 000,001,908 | ---- | C] () -- C:\Windows\diagerr.xml
[2013/01/13 16:02:20 | 000,001,808 | ---- | C] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2012/06/09 10:16:55 | 000,034,764 | ---- | C] () -- C:\Users\Owner\AppData\Local\dt.dat
[2012/01/06 23:45:01 | 000,000,000 | ---- | C] () -- C:\Users\Owner\AppData\Local\{CF5FC710-C747-4A0B-BE54-AB4A289EC8BD}
[2011/11/15 21:33:06 | 000,000,000 | ---- | C] () -- C:\Windows\Dssole.INI
[2011/11/15 21:32:32 | 000,000,242 | ---- | C] () -- C:\Windows\Support.ini
[2011/06/16 08:22:28 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2011/05/28 07:43:41 | 000,000,000 | ---- | C] () -- C:\Windows\OpPrintServer.INI
[2011/05/12 18:53:12 | 000,170,134 | ---- | C] () -- C:\Windows\hpoins14.dat
[2011/05/12 18:53:11 | 000,001,498 | ---- | C] () -- C:\Windows\hpomdl14.dat
[2011/05/05 08:44:54 | 000,761,720 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011/05/03 11:16:52 | 000,982,240 | ---- | C] () -- C:\Windows\SysWow64\igkrng500.bin
[2011/05/03 11:16:52 | 000,439,308 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng500.bin
[2011/05/03 11:16:52 | 000,208,896 | ---- | C] () -- C:\Windows\SysWow64\iglhsip32.dll
[2011/05/03 11:16:52 | 000,143,360 | ---- | C] () -- C:\Windows\SysWow64\iglhcp32.dll
[2011/05/03 11:16:52 | 000,092,356 | ---- | C] () -- C:\Windows\SysWow64\igfcg500m.bin
[2011/05/03 11:14:02 | 000,027,963 | ---- | C] () -- C:\Windows\Ascd_log.ini
[2011/05/03 11:12:58 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
[2011/05/03 11:12:54 | 000,020,969 | ---- | C] () -- C:\Windows\Ascd_tmp.ini

========== ZeroAccess Check ==========

[2009/07/14 04:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2010/11/21 03:23:55 | 014,174,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\SysWow64\shell32.dll -- [2010/11/21 03:24:02 | 012,872,192 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 01:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\Windows\sysWOW64\wbem\fastprox.dll -- [2010/11/21 03:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 01:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== Custom Scans ==========

========== Base Services ==========
SRV:64bit: - [2009/07/14 01:40:01 | 000,072,192 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\aelupsvc.dll -- (AeLookupSvc)
SRV:64bit: - [2010/11/21 03:24:08 | 000,070,656 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\appinfo.dll -- (Appinfo)
SRV:64bit: - [2009/07/14 01:38:55 | 000,079,360 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\alg.exe -- (ALG)
SRV:64bit: - [2010/11/21 03:23:51 | 000,849,920 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\qmgr.dll -- (BITS)
SRV:64bit: - [2010/11/21 03:24:00 | 000,705,024 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\BFE.DLL -- (BFE)
SRV:64bit: - [2009/07/14 01:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\lsass.exe -- (KeyIso)
SRV:64bit: - [2009/07/14 01:40:50 | 000,402,944 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\es.dll -- (EventSystem)
SRV - [2009/07/14 01:15:19 | 000,271,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\es.dll -- (EventSystem)
SRV:64bit: - [2010/11/21 03:24:16 | 000,136,192 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\browser.dll -- (Browser)
SRV:64bit: - [2010/11/21 03:24:16 | 000,177,152 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cryptsvc.dll -- (CryptSvc)
SRV - [2010/11/21 03:24:32 | 000,136,192 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\cryptsvc.dll -- (CryptSvc)
SRV:64bit: - [2010/11/21 03:24:01 | 000,512,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (DcomLaunch)
SRV:64bit: - [2010/11/21 03:24:00 | 000,317,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV - [2010/11/21 03:24:09 | 000,254,464 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV:64bit: - [2011/03/03 06:24:16 | 000,183,296 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dnsrslvr.dll -- (Dnscache)
SRV:64bit: - [2009/07/14 01:40:35 | 000,111,104 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\eapsvc.dll -- (EapHost)
SRV:64bit: - [2009/07/14 01:41:00 | 000,038,912 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\hidserv.dll -- (hidserv)
SRV - [2009/07/14 01:15:24 | 000,049,152 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\hidserv.dll -- (hidserv)
SRV:64bit: - [2009/07/14 01:41:10 | 000,359,424 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\ipnathlp.dll -- (SharedAccess)
SRV:64bit: - [2010/11/21 03:23:48 | 000,501,248 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IPSECSVC.DLL -- (PolicyAgent)
No service found with a name of MsMpSvc
No service found with a name of NisSrv
SRV:64bit: - [2009/07/14 01:41:54 | 000,524,288 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\swprv.dll -- (swprv)
SRV:64bit: - [2009/07/14 01:41:26 | 000,067,584 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\mmcss.dll -- (MMCSS)
SRV:64bit: - [2009/07/14 01:41:52 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netman.dll -- (Netman)
SRV:64bit: - [2009/07/14 01:41:52 | 000,459,776 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofm.dll -- (netprofm)
SRV - [2009/07/14 01:16:03 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\netprofm.dll -- (netprofm)
SRV:64bit: - [2010/11/21 03:23:54 | 000,303,616 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nlasvc.dll -- (NlaSvc)
SRV:64bit: - [2009/07/14 01:41:53 | 000,025,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\nsisvc.dll -- (nsi)
SRV:64bit: - [2011/05/24 11:42:55 | 000,404,480 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\umpnpmgr.dll -- (PlugPlay)
SRV:64bit: - [2010/11/21 03:24:27 | 000,559,104 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\spoolsv.exe -- (Spooler)
SRV:64bit: - [2009/07/14 01:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\lsass.exe -- (ProtectedStorage)
No service found with a name of EMDMgmt
SRV:64bit: - [2009/07/14 01:41:53 | 000,099,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rasauto.dll -- (RasAuto)
SRV:64bit: - [2010/11/21 03:24:17 | 000,344,064 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\rasmans.dll -- (RasMan)
SRV:64bit: - [2010/11/21 03:24:01 | 000,512,000 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\rpcss.dll -- (RpcSs)
SRV:64bit: - [2010/11/21 03:24:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\seclogon.dll -- (seclogon)
SRV:64bit: - [2009/07/14 01:39:16 | 000,031,232 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsass.exe -- (SamSs)
SRV:64bit: - [2009/07/14 01:41:58 | 000,097,280 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\wscsvc.dll -- (wscsvc)
SRV:64bit: - [2010/11/21 03:23:48 | 000,236,032 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\srvsvc.dll -- (LanmanServer)
SRV:64bit: - [2010/11/21 03:23:55 | 000,370,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\shsvcs.dll -- (ShellHWDetection)
SRV - [2010/11/21 03:24:03 | 000,328,192 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\shsvcs.dll -- (ShellHWDetection)
No service found with a name of slsvc
SRV:64bit: - [2010/11/21 03:24:16 | 001,110,016 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\schedsvc.dll -- (Schedule)
SRV:64bit: - [2010/11/21 03:24:32 | 000,316,928 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\tapisrv.dll -- (TapiSrv)
SRV - [2010/11/21 03:24:00 | 000,242,176 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\tapisrv.dll -- (TapiSrv)
SRV:64bit: - [2009/07/14 01:41:55 | 000,044,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\themeservice.dll -- (Themes)
SRV:64bit: - [2010/11/21 03:24:01 | 000,209,920 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\profsvc.dll -- (ProfSvc)
SRV:64bit: - [2010/11/21 03:23:55 | 001,600,512 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\VSSVC.exe -- (VSS)
SRV:64bit: - [2010/11/21 03:24:32 | 000,679,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (AudioSrv)
SRV:64bit: - [2010/11/21 03:24:32 | 000,679,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\audiosrv.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2010/11/21 03:25:06 | 000,170,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\sdrsvc.dll -- (SDRSVC)
SRV:64bit: - [2009/07/14 01:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2010/11/21 03:23:55 | 001,646,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wevtsvc.dll -- (eventlog)
SRV:64bit: - [2010/11/21 03:24:28 | 000,828,416 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\MPSSVC.dll -- (MpsSvc)
SRV:64bit: - [2010/11/21 03:24:48 | 000,580,096 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wiaservc.dll -- (stisvc)
SRV:64bit: - [2010/11/21 03:24:15 | 000,128,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\msiexec.exe -- (msiserver)
SRV - [2010/11/21 03:24:28 | 000,073,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWow64\msiexec.exe -- (msiserver)
SRV:64bit: - [2009/07/14 01:41:56 | 000,242,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wbem\WMIsvc.dll -- (Winmgmt)
SRV:64bit: - [2010/11/21 03:24:25 | 002,420,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wuaueng.dll -- (wuauserv)
SRV:64bit: - [2010/11/21 03:24:09 | 000,252,416 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\dot3svc.dll -- (dot3svc)
SRV:64bit: - [2009/07/14 01:41:56 | 000,886,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wlansvc.dll -- (Wlansvc)
SRV:64bit: - [2010/11/21 03:24:32 | 000,118,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wkssvc.dll -- (LanmanWorkstation)

< %SYSTEMDRIVE%\*.exe >

< MD5 for: DIGEST.S >
[2011/05/12 18:24:15 | 000,002,834 | ---- | M] () MD5=DA1E1CE86B6E20F66A558E8B032B2337 -- C:\Program Files (x86)\Adobe\Flash Player\AddIns\airappinstaller\digest.s
[2011/05/12 18:24:15 | 000,002,834 | ---- | M] () MD5=DA1E1CE86B6E20F66A558E8B032B2337 -- C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\digest.s

< >

========== Alternate Data Streams ==========

@Alternate Data Stream - 793 bytes -> C:\Users\Owner\Documents\Southwell Minster Programme 7 Dec 2011.eml:OECustomProperty

< End of report >



  • 0

#30
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK a few things to try next

Open Windows Update
click on Change Settings
select 'Never check for updates' in the dropdown - click OK
Exit Windows Update
now go back to Windows Update
Click on Change Settings
Select 'Install Updates Automatically'
Click OK
now try manually checking for updates.

If that fails then download the following batch file to the desktop
Right click it and select run as administrator
[attachment=63093:netstop.bat]
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP