Jump to content

MB won't start/run


Recommended Posts

Results posted to FRST.txt:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 20-07-2014Ran by Joan (administrator) on JOANIE on 20-07-2014 13:37:01Running from C:\Users\Joan\DesktopPlatform: Windows 8 (X64) OS Language: English (United States)Internet Explorer Version 10Boot Mode: NormalThe only official download link for FRST:Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated.See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/==================== Processes (Whitelisted) =================(Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AdminService.exe(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe() C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareService.exe(McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe(McAfee, Inc.) C:\Windows\System32\mfevtps.exe() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe(Atheros) C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe(McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe(McAfee, Inc.) C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe(McAfee, Inc.) C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe(Microsoft Corporation) C:\Windows\System32\dasHost.exe(Microsoft Corporation) C:\Windows\System32\dllhost.exe(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe(SoftThinks SAS) C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe(Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe() C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\ActivateDesktop.exe(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe(Intel Corporation) C:\Windows\System32\igfxtray.exe(Intel Corporation) C:\Windows\System32\igfxsrvc.exe(Intel Corporation) C:\Windows\System32\hkcmd.exe(Intel Corporation) C:\Windows\System32\igfxpers.exe(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe() C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareTray.exe(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe(McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McUICnt.exe(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe(SoftThinks - Dell) C:\Program Files (x86)\Dell Backup and Recovery\Toaster.exe(SoftThinks - Dell) C:\Program Files (x86)\Dell Backup and Recovery\Components\DBRUpdate\DBRUpd.exe() C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRCrawler.exe==================== Registry (Whitelisted) ==================HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7188552 2013-05-28] (Realtek Semiconductor)HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1308232 2013-05-21] (Realtek Semiconductor)HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1308232 2013-05-21] (Realtek Semiconductor)HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [5762408 2013-03-05] (Dell Inc.)HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [36352 2013-04-30] (Intel Corporation)HKLM\...\Run: [] => [X]HKLM\...\Run: [AdAwareTray] => C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareTray.exe [7715160 2014-06-03] ()HKLM-x32\...\Run: [mcpltui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [537992 2014-04-25] (McAfee, Inc.)HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe [132224 2013-02-28] ( (Qualcomm Atheros Commnucations))HKLM\...\Policies\Explorer: [NoControlPanel] 0HKLM\...\Policies\Explorer: [NoFolderOptions] 0HKU\S-1-5-21-3391838110-2860751068-2881016458-1001\...\Run: [Spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [4566952 2014-06-24] (Safer-Networking Ltd.)AppInit_DLLs: 0 => 0 File Not FoundAppInit_DLLs-x32: 0 => "0" File Not FoundStartup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnkShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)ShellIconOverlayIdentifiers:  SkyDrivePro1 (ErrorConflict) -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)ShellIconOverlayIdentifiers:  SkyDrivePro2 (SyncInProgress) -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)ShellIconOverlayIdentifiers:  SkyDrivePro3 (InSync) -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)ShellIconOverlayIdentifiers: DBARFileBackuped -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\Windows\system32\mscoree.dll (Microsoft Corporation)ShellIconOverlayIdentifiers: DBARFileNotBackuped -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\Windows\system32\mscoree.dll (Microsoft Corporation)ShellIconOverlayIdentifiers-x32:  SkyDrivePro1 (ErrorConflict) -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)ShellIconOverlayIdentifiers-x32:  SkyDrivePro2 (SyncInProgress) -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)ShellIconOverlayIdentifiers-x32:  SkyDrivePro3 (InSync) -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)==================== Internet (Whitelisted) ====================HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://dell13.msn.com/?pc=DCJBHKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blankHKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blankSearchScopes: HKLM - DefaultScope {9DA163F9-0CA0-4207-8A3E-DFDAD8B51A03} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=DCJBSearchScopes: HKLM - {9DA163F9-0CA0-4207-8A3E-DFDAD8B51A03} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=DCJBSearchScopes: HKLM-x32 - DefaultScope {9DA163F9-0CA0-4207-8A3E-DFDAD8B51A03} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=DCJBSearchScopes: HKLM-x32 - {9DA163F9-0CA0-4207-8A3E-DFDAD8B51A03} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=DCJBSearchScopes: HKCU - DefaultScope {9DA163F9-0CA0-4207-8A3E-DFDAD8B51A03} URL = SearchScopes: HKCU - {9DA163F9-0CA0-4207-8A3E-DFDAD8B51A03} URL = BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll (McAfee, Inc.)BHO-x32: The Amazon 1Button App for IE -> {26B19FA4-E8A1-4A1B-A163-1A1E46F830DD} -> C:\AmazonAppIE.dll (Amazon Inc.)BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll (Microsoft Corporation)BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll (McAfee, Inc.)Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll (McAfee, Inc.)FireFox:========FF ProfilePath: C:\Users\Joan\AppData\Roaming\Mozilla\Firefox\Profiles\epv6zw7a.defaultFF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()FF Plugin: @mcafee.com/MSC,version=10 - c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)FF Plugin-x32: @mcafee.com/MSC,version=10 - c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL ()FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)FF Plugin HKCU: @lightspark.github.com/Lightspark;version=1 - C:\Program Files (x86)\Lightspark 0.5.3-git\nplightsparkplugin.dll No FileFF user.js: detected! => C:\Users\Joan\AppData\Roaming\Mozilla\Firefox\Profiles\epv6zw7a.default\user.jsFF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSKFF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2013-09-20]FF HKCU\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpiFF Extension: McAfee Security Scan Plus - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]FF StartMenuInternet: FIREFOX.EXE - C:\Program Files\Mozilla Firefox\firefox.exeChrome: =======CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-07-14]CHR Extension: (McAfee Security Scan+) - C:\Users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\bopakagnckmlgajfccecajhnimjiiedh [2014-05-31]CHR Extension: (Google Wallet) - C:\Users\Joan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-07]CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION==================== Services (Whitelisted) =================S2 0217321405880791mcinstcleanup; C:\Windows\TEMP\021732~1.EXE [836168 2014-03-13] (McAfee, Inc.)R2 AtherosSvc; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe [227968 2013-02-28] (Qualcomm Atheros Commnucations)R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2279608 2014-05-21] (Microsoft Corporation)R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-04-30] (Intel Corporation)R2 Intel(R) Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [File not signed]S3 Intel(R) Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-06-01] (Intel Corporation)R2 LavasoftAdAwareService11; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareService.exe [706864 2014-06-03] ()R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [178528 2014-04-25] (McAfee, Inc.)S3 McAWFwk; c:\Program Files\Common Files\mcafee\ActWiz\McAWFwk.exe [334760 2012-12-21] (McAfee, Inc.)S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)R2 McNaiAnn; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [602944 2013-08-02] (McAfee, Inc.)R2 McOobeSv2; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)R2 mcpltsvc; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)R2 McProxy; C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)R2 mfecore; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [1041192 2014-03-18] (McAfee, Inc.)R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219752 2014-04-03] (McAfee, Inc.)R2 mfevtp; C:\Windows\system32\mfevtps.exe [189912 2014-04-03] (McAfee, Inc.)R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [245832 2013-05-18] (Realtek Semiconductor)R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)R2 SftService; C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe [1915480 2013-05-23] (SoftThinks SAS)R2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [1025408 2014-01-09] (Enigma Software Group USA, LLC.)S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2014-03-29] (Microsoft Corporation)R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe [81536 2013-03-02] (Atheros)==================== Drivers (Whitelisted) ====================R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-02-28] (Qualcomm Atheros)R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-25] (Microsoft Corporation)R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70592 2014-04-03] (McAfee, Inc.)R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)R3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [10752 2013-01-24] (OSR Open Systems Resources, Inc.)R3 esgiguard; C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [14872 2014-01-07] ()S2 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2012-06-22] ()S0 fhhfso; No ImagePathS3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [197704 2013-09-23] (McAfee, Inc.)R3 MEIx64; C:\Windows\System32\drivers\TeeDriverx64.sys [99800 2013-06-01] (Intel Corporation)R3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [177544 2014-04-03] (McAfee, Inc.)R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [311856 2014-04-03] (McAfee, Inc.)S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [69352 2014-04-03] (McAfee, Inc.)R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [522360 2014-04-03] (McAfee, Inc.)R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [784760 2014-04-03] (McAfee, Inc.)R3 mfencbdc; C:\Windows\system32\DRIVERS\mfencbdc.sys [441264 2014-03-18] (McAfee, Inc.)S3 mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [96592 2014-03-18] (McAfee, Inc.)R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [346760 2014-04-03] (McAfee, Inc.)S0 mtqjxm; No ImagePathS0 ovanvq; No ImagePathS3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [28400 2013-03-05] (Synaptics Incorporated)R3 SmbDrvI; C:\Windows\System32\drivers\Smb_driver_Intel.sys [31984 2013-03-05] (Synaptics Incorporated)S0 tcoifh; No ImagePathS3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [389240 2014-04-22] (BitDefender S.R.L.)S0 uotote; No ImagePathS3 SPPD; \??\C:\Windows\system32\drivers\SPPD.sys [X]S1 {9d5747ee-0448-4681-8337-1555de75a3b6}Gw64; system32\drivers\{9d5747ee-0448-4681-8337-1555de75a3b6}Gw64.sys [X]==================== NetSvcs (Whitelisted) ======================================= One Month Created Files and Folders ========2014-07-20 13:37 - 2014-07-20 13:37 - 00020622 _____ () C:\Users\Joan\Desktop\FRST.txt2014-07-20 13:36 - 2014-07-20 13:37 - 00000000 ____D () C:\FRST2014-07-20 13:33 - 2014-07-20 13:32 - 02089984 _____ (Farbar) C:\Users\Joan\Desktop\FRST64.exe2014-07-20 13:32 - 2014-07-20 13:32 - 02089984 _____ (Farbar) C:\Users\Joan\Downloads\FRST64.exe2014-07-20 13:31 - 2014-07-20 13:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee2014-07-20 13:27 - 2014-07-20 13:27 - 00000000 ___RD () C:\Users\Joan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices2014-07-20 10:09 - 2014-07-20 10:16 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)2014-07-20 10:08 - 2014-07-20 10:16 - 00000000 ____D () C:\Users\Joan\Desktop\mbar2014-07-19 23:10 - 2014-07-19 23:10 - 00000000 ____D () C:\Users\Joan\Downloads\tdsskiller2014-07-19 22:21 - 2014-07-19 22:21 - 00013450 _____ () C:\Users\Joan\Documents\cc_20140719_222103.reg2014-07-19 22:10 - 2014-07-19 22:10 - 00000000 ____D () C:\TDSSKiller_Quarantine2014-07-17 22:23 - 2014-07-17 22:23 - 00085504 _____ () C:\Users\Joan\Downloads\Inherit.exe2014-07-17 22:20 - 2014-07-19 21:53 - 00030312 _____ () C:\Windows\system32\Drivers\TrueSight.sys2014-07-17 22:20 - 2014-07-17 22:20 - 00000000 ____D () C:\ProgramData\RogueKiller2014-07-17 22:19 - 2014-07-17 22:19 - 05336664 _____ () C:\Users\Joan\Downloads\RogueKillerX64.exe2014-07-16 00:04 - 2014-07-16 00:04 - 00001165 _____ () C:\Users\Public\Desktop\RegHunter.lnk2014-07-16 00:04 - 2014-07-16 00:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegHunter2014-07-16 00:00 - 2014-07-20 13:17 - 00000154 _____ () C:\sh4_service.log2014-07-15 23:59 - 2010-08-05 17:01 - 00014680 _____ () C:\Windows\system32\sh4native.exe2014-07-15 22:51 - 2014-07-16 00:04 - 00000000 ____D () C:\Program Files\Enigma Software Group2014-07-15 22:51 - 2014-07-15 22:51 - 00002258 _____ () C:\Users\Joan\Desktop\SpyHunter.lnk2014-07-15 22:51 - 2014-07-15 22:51 - 00000000 ____D () C:\Users\Joan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter2014-07-15 22:51 - 2014-07-15 22:51 - 00000000 ____D () C:\sh4ldr2014-07-15 22:51 - 2014-07-15 22:51 - 00000000 _____ () C:\autoexec.bat2014-07-15 22:51 - 2012-06-22 11:01 - 00022704 _____ () C:\Windows\system32\Drivers\EsgScanner.sys2014-07-15 22:50 - 2014-07-15 22:51 - 00000000 ____D () C:\Windows\1F7E4FF9D2E542589AE1E16E6CB3252A.TMP2014-07-15 22:25 - 2014-07-15 22:25 - 00333389 _____ () C:\Users\Joan\AppData\Local\census.cache2014-07-15 22:25 - 2014-07-15 22:25 - 00176985 _____ () C:\Users\Joan\AppData\Local\ars.cache2014-07-15 22:24 - 2014-07-15 22:24 - 00000010 _____ () C:\Users\Joan\AppData\Local\sponge.last.runtime.cache2014-07-15 22:22 - 2014-07-15 22:22 - 00000000 _____ () C:\Windows\system32\olepro32.dll2014-07-15 22:22 - 2014-07-15 22:22 - 00000000 _____ () C:\Windows\system32\igdusc32.dll2014-07-15 22:22 - 2014-07-15 22:22 - 00000000 _____ () C:\Windows\system32\igdumdim32.dll2014-07-15 22:09 - 2013-09-02 02:58 - 00175528 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmcomm.sys2014-07-15 22:08 - 2014-07-15 22:08 - 00000036 _____ () C:\Users\Joan\AppData\Local\housecall.guid.cache2014-07-15 22:07 - 2014-07-15 22:08 - 02473936 _____ (Trend Micro Inc.) C:\Users\Joan\Downloads\HousecallLauncher64.exe2014-07-15 21:54 - 2014-07-15 21:55 - 00016330 _____ () C:\Users\Joan\Documents\cc_20140715_215444.reg2014-07-15 19:51 - 2014-07-15 22:58 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware2014-07-15 19:51 - 2014-07-15 19:51 - 01942776 _____ (Bleeping Computer, LLC) C:\Users\Joan\Downloads\rkill.com2014-07-15 19:51 - 2014-07-15 19:51 - 00000000 ____D () C:\Users\Joan\AppData\Roaming\SUPERAntiSpyware.com2014-07-14 21:01 - 2014-07-20 10:23 - 00005098 _____ () C:\Users\Joan\Desktop\Rkill.txt2014-07-14 21:01 - 2014-07-14 21:01 - 01942776 _____ (Bleeping Computer, LLC) C:\Users\Joan\Downloads\rkill.exe2014-07-14 20:46 - 2014-07-14 20:46 - 00001397 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk2014-07-14 20:46 - 2014-07-14 20:46 - 00001385 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk2014-07-14 20:46 - 2014-07-14 20:46 - 00000656 _____ () C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job2014-07-14 20:46 - 2014-07-14 20:46 - 00000628 _____ () C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job2014-07-14 20:46 - 2014-07-14 20:46 - 00000458 _____ () C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job2014-07-14 20:46 - 2014-07-14 20:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 22014-07-14 20:45 - 2014-07-14 20:48 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy2014-07-14 20:45 - 2014-07-14 20:47 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 22014-07-14 20:45 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe2014-07-14 20:42 - 2014-07-14 20:44 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Joan\Downloads\spybot-2.4.exe2014-07-14 17:44 - 2014-07-14 19:16 - 00000000 ____D () C:\CCE_Quarantine2014-07-14 17:35 - 2014-07-14 17:35 - 00000000 ____D () C:\Users\Joan\Downloads\cce_2.5.242177.201_x642014-07-14 17:34 - 2014-07-14 17:34 - 25543261 _____ () C:\Users\Joan\Downloads\cce_2.5.242177.201_x64.zip2014-07-14 17:30 - 2014-07-14 17:30 - 04161313 _____ () C:\Users\Joan\Downloads\tdsskiller.zip2014-07-06 17:41 - 2014-07-06 17:41 - 10769912 _____ (SparkTrust) C:\Users\Joan\Downloads\SparkTrust AntiVirus Setup.exe2014-07-06 17:40 - 2014-07-06 17:40 - 06769280 _____ (SparkTrust) C:\Users\Joan\Downloads\SparkTrust PC Cleaner Plus Setup_cdc9f00_.exe2014-07-06 17:40 - 2014-07-06 17:40 - 06769280 _____ (SparkTrust) C:\Users\Joan\Downloads\SparkTrust PC Cleaner Plus Setup_cdc9ee3_.exe2014-07-06 17:40 - 2014-07-06 17:40 - 06769280 _____ (SparkTrust) C:\Users\Joan\Downloads\SparkTrust PC Cleaner Plus Setup_cdc9ed0_.exe2014-07-06 17:40 - 2014-07-06 17:40 - 00228728 _____ (System Applet ) C:\Users\Joan\Downloads\Java_Updater_Setup.exe2014-07-06 17:35 - 2014-07-06 17:35 - 00176247 _____ () C:\Users\Joan\Downloads\Google.htm2014-07-06 17:35 - 2014-07-06 17:35 - 00000000 ____D () C:\Users\Joan\Downloads\Google_files2014-07-06 17:27 - 2014-07-20 13:18 - 00002307 _____ () C:\Users\Public\Desktop\Ad-Aware Antivirus.lnk2014-07-06 17:27 - 2014-07-06 17:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ad-Aware Antivirus2014-07-06 17:26 - 2014-07-06 17:26 - 00000000 ____D () C:\Program Files\Common Files\Lavasoft2014-07-06 17:16 - 2014-07-06 17:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightspark 0.5.3-git2014-07-06 17:15 - 2014-07-20 13:27 - 00002190 _____ () C:\Windows\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-4.job2014-07-06 17:15 - 2014-07-20 13:27 - 00001554 _____ () C:\Windows\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-1.job2014-07-06 17:15 - 2014-07-20 13:27 - 00001436 _____ () C:\Windows\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-5_user.job2014-07-06 17:15 - 2014-07-20 13:27 - 00001414 _____ () C:\Windows\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-5.job2014-07-06 17:15 - 2014-07-20 13:27 - 00001304 _____ () C:\Windows\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-2.job2014-07-06 17:15 - 2014-07-06 17:15 - 00005194 _____ () C:\Windows\System32\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-42014-07-06 17:15 - 2014-07-06 17:15 - 00004558 _____ () C:\Windows\System32\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-12014-07-06 17:15 - 2014-07-06 17:15 - 00004418 _____ () C:\Windows\System32\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-52014-07-06 17:15 - 2014-07-06 17:15 - 00004308 _____ () C:\Windows\System32\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-22014-07-06 17:14 - 2014-07-20 13:27 - 00003814 _____ () C:\Windows\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-11.job2014-07-06 17:14 - 2014-07-06 17:14 - 00006818 _____ () C:\Windows\System32\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-112014-07-06 17:14 - 2014-07-06 17:14 - 00000000 ____D () C:\Users\Joan\AppData\Local\CrashRpt2014-07-06 10:13 - 2014-07-06 10:13 - 04812672 _____ (Piriform Ltd) C:\Users\Joan\Downloads\ccsetup415.exe2014-06-29 20:07 - 2014-07-06 08:32 - 00004962 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for Joanie-Joan Joanie2014-06-21 22:46 - 2014-07-20 10:17 - 00001108 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk2014-06-21 22:46 - 2014-07-20 10:09 - 00128728 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys2014-06-21 22:45 - 2014-07-20 10:17 - 00092888 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys2014-06-21 22:45 - 2014-07-20 10:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware2014-06-21 22:45 - 2014-07-20 10:17 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware2014-06-21 22:45 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys==================== One Month Modified Files and Folders =======2014-07-20 13:37 - 2014-07-20 13:37 - 00020622 _____ () C:\Users\Joan\Desktop\FRST.txt2014-07-20 13:37 - 2014-07-20 13:36 - 00000000 ____D () C:\FRST2014-07-20 13:32 - 2014-07-20 13:33 - 02089984 _____ (Farbar) C:\Users\Joan\Desktop\FRST64.exe2014-07-20 13:32 - 2014-07-20 13:32 - 02089984 _____ (Farbar) C:\Users\Joan\Downloads\FRST64.exe2014-07-20 13:32 - 2013-09-20 20:16 - 00000000 ____D () C:\Program Files (x86)\Dell Backup and Recovery2014-07-20 13:31 - 2014-07-20 13:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee2014-07-20 13:30 - 2013-12-25 16:59 - 00000000 ____D () C:\Users\Joan\AppData\Local\CrashDumps2014-07-20 13:27 - 2014-07-20 13:27 - 00000000 ___RD () C:\Users\Joan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices2014-07-20 13:27 - 2014-07-06 17:15 - 00002190 _____ () C:\Windows\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-4.job2014-07-20 13:27 - 2014-07-06 17:15 - 00001554 _____ () C:\Windows\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-1.job2014-07-20 13:27 - 2014-07-06 17:15 - 00001436 _____ () C:\Windows\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-5_user.job2014-07-20 13:27 - 2014-07-06 17:15 - 00001414 _____ () C:\Windows\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-5.job2014-07-20 13:27 - 2014-07-06 17:15 - 00001304 _____ () C:\Windows\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-2.job2014-07-20 13:27 - 2014-07-06 17:14 - 00003814 _____ () C:\Windows\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-11.job2014-07-20 13:27 - 2013-12-07 11:58 - 00000904 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job2014-07-20 13:26 - 2013-09-20 20:21 - 00000000 ____D () C:\Program Files (x86)\McAfee2014-07-20 13:25 - 2012-07-26 02:28 - 00850046 _____ () C:\Windows\system32\PerfStringBackup.INI2014-07-20 13:18 - 2014-07-06 17:27 - 00002307 _____ () C:\Users\Public\Desktop\Ad-Aware Antivirus.lnk2014-07-20 13:17 - 2014-07-16 00:00 - 00000154 _____ () C:\sh4_service.log2014-07-20 13:17 - 2012-07-26 02:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT2014-07-20 13:15 - 2013-12-06 23:26 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3391838110-2860751068-2881016458-10012014-07-20 13:04 - 2012-07-26 03:12 - 00000000 ____D () C:\Windows\system32\sru2014-07-20 12:57 - 2013-12-07 11:58 - 00000908 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job2014-07-20 12:27 - 2014-01-25 21:43 - 00007168 ___SH () C:\Users\Joan\Desktop\Thumbs.db2014-07-20 10:23 - 2014-07-14 21:01 - 00005098 _____ () C:\Users\Joan\Desktop\Rkill.txt2014-07-20 10:17 - 2014-06-21 22:46 - 00001108 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk2014-07-20 10:17 - 2014-06-21 22:45 - 00092888 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys2014-07-20 10:17 - 2014-06-21 22:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware2014-07-20 10:17 - 2014-06-21 22:45 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware2014-07-20 10:16 - 2014-07-20 10:09 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)2014-07-20 10:16 - 2014-07-20 10:08 - 00000000 ____D () C:\Users\Joan\Desktop\mbar2014-07-20 10:09 - 2014-06-21 22:46 - 00128728 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys2014-07-19 23:10 - 2014-07-19 23:10 - 00000000 ____D () C:\Users\Joan\Downloads\tdsskiller2014-07-19 22:21 - 2014-07-19 22:21 - 00013450 _____ () C:\Users\Joan\Documents\cc_20140719_222103.reg2014-07-19 22:10 - 2014-07-19 22:10 - 00000000 ____D () C:\TDSSKiller_Quarantine2014-07-19 21:53 - 2014-07-17 22:20 - 00030312 _____ () C:\Windows\system32\Drivers\TrueSight.sys2014-07-17 22:23 - 2014-07-17 22:23 - 00085504 _____ () C:\Users\Joan\Downloads\Inherit.exe2014-07-17 22:20 - 2014-07-17 22:20 - 00000000 ____D () C:\ProgramData\RogueKiller2014-07-17 22:19 - 2014-07-17 22:19 - 05336664 _____ () C:\Users\Joan\Downloads\RogueKillerX64.exe2014-07-16 00:04 - 2014-07-16 00:04 - 00001165 _____ () C:\Users\Public\Desktop\RegHunter.lnk2014-07-16 00:04 - 2014-07-16 00:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegHunter2014-07-16 00:04 - 2014-07-15 22:51 - 00000000 ____D () C:\Program Files\Enigma Software Group2014-07-16 00:02 - 2013-12-07 12:08 - 00001165 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk2014-07-16 00:02 - 2013-12-06 23:20 - 00001436 _____ () C:\Users\Joan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk2014-07-16 00:00 - 2014-06-06 07:35 - 00000000 ____D () C:\Users\Joan\AppData\Roaming\systweak2014-07-15 22:58 - 2014-07-15 19:51 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware2014-07-15 22:51 - 2014-07-15 22:51 - 00002258 _____ () C:\Users\Joan\Desktop\SpyHunter.lnk2014-07-15 22:51 - 2014-07-15 22:51 - 00000000 ____D () C:\Users\Joan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter2014-07-15 22:51 - 2014-07-15 22:51 - 00000000 ____D () C:\sh4ldr2014-07-15 22:51 - 2014-07-15 22:51 - 00000000 _____ () C:\autoexec.bat2014-07-15 22:51 - 2014-07-15 22:50 - 00000000 ____D () C:\Windows\1F7E4FF9D2E542589AE1E16E6CB3252A.TMP2014-07-15 22:49 - 2013-12-07 12:09 - 00000824 _____ () C:\Users\Public\Desktop\CCleaner.lnk2014-07-15 22:49 - 2013-12-07 12:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner2014-07-15 22:49 - 2013-12-07 12:09 - 00000000 ____D () C:\Program Files\CCleaner2014-07-15 22:37 - 2012-07-26 03:12 - 00000000 ____D () C:\Program Files\Common Files\System2014-07-15 22:25 - 2014-07-15 22:25 - 00333389 _____ () C:\Users\Joan\AppData\Local\census.cache2014-07-15 22:25 - 2014-07-15 22:25 - 00176985 _____ () C:\Users\Joan\AppData\Local\ars.cache2014-07-15 22:24 - 2014-07-15 22:24 - 00000010 _____ () C:\Users\Joan\AppData\Local\sponge.last.runtime.cache2014-07-15 22:22 - 2014-07-15 22:22 - 00000000 _____ () C:\Windows\system32\olepro32.dll2014-07-15 22:22 - 2014-07-15 22:22 - 00000000 _____ () C:\Windows\system32\igdusc32.dll2014-07-15 22:22 - 2014-07-15 22:22 - 00000000 _____ () C:\Windows\system32\igdumdim32.dll2014-07-15 22:08 - 2014-07-15 22:08 - 00000036 _____ () C:\Users\Joan\AppData\Local\housecall.guid.cache2014-07-15 22:08 - 2014-07-15 22:07 - 02473936 _____ (Trend Micro Inc.) C:\Users\Joan\Downloads\HousecallLauncher64.exe2014-07-15 21:55 - 2014-07-15 21:54 - 00016330 _____ () C:\Users\Joan\Documents\cc_20140715_215444.reg2014-07-15 20:22 - 2013-09-20 20:11 - 00000000 ____D () C:\ProgramData\Temp2014-07-15 19:51 - 2014-07-15 19:51 - 01942776 _____ (Bleeping Computer, LLC) C:\Users\Joan\Downloads\rkill.com2014-07-15 19:51 - 2014-07-15 19:51 - 00000000 ____D () C:\Users\Joan\AppData\Roaming\SUPERAntiSpyware.com2014-07-14 21:01 - 2014-07-14 21:01 - 01942776 _____ (Bleeping Computer, LLC) C:\Users\Joan\Downloads\rkill.exe2014-07-14 20:48 - 2014-07-14 20:45 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy2014-07-14 20:47 - 2014-07-14 20:45 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 22014-07-14 20:46 - 2014-07-14 20:46 - 00001397 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk2014-07-14 20:46 - 2014-07-14 20:46 - 00001385 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk2014-07-14 20:46 - 2014-07-14 20:46 - 00000656 _____ () C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job2014-07-14 20:46 - 2014-07-14 20:46 - 00000628 _____ () C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job2014-07-14 20:46 - 2014-07-14 20:46 - 00000458 _____ () C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job2014-07-14 20:46 - 2014-07-14 20:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 22014-07-14 20:44 - 2014-07-14 20:42 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Joan\Downloads\spybot-2.4.exe2014-07-14 20:34 - 2013-12-25 20:00 - 00000000 ____D () C:\Program Files (x86)\SpywareBlaster2014-07-14 19:23 - 2013-12-29 11:50 - 00002090 _____ () C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk2014-07-14 19:18 - 2012-07-26 00:26 - 00262144 ___SH () C:\Windows\system32\config\ELAM2014-07-14 19:17 - 2012-07-26 00:26 - 00000226 _____ () C:\Windows\win.ini2014-07-14 19:16 - 2014-07-14 17:44 - 00000000 ____D () C:\CCE_Quarantine2014-07-14 17:56 - 2013-09-20 20:18 - 00000000 ____D () C:\Windows\System32\Tasks\Dell2014-07-14 17:44 - 2012-07-26 00:26 - 00262144 ___SH () C:\Windows\system32\config\BBI2014-07-14 17:35 - 2014-07-14 17:35 - 00000000 ____D () C:\Users\Joan\Downloads\cce_2.5.242177.201_x642014-07-14 17:34 - 2014-07-14 17:34 - 25543261 _____ () C:\Users\Joan\Downloads\cce_2.5.242177.201_x64.zip2014-07-14 17:30 - 2014-07-14 17:30 - 04161313 _____ () C:\Users\Joan\Downloads\tdsskiller.zip2014-07-06 17:41 - 2014-07-06 17:41 - 10769912 _____ (SparkTrust) C:\Users\Joan\Downloads\SparkTrust AntiVirus Setup.exe2014-07-06 17:40 - 2014-07-06 17:40 - 06769280 _____ (SparkTrust) C:\Users\Joan\Downloads\SparkTrust PC Cleaner Plus Setup_cdc9f00_.exe2014-07-06 17:40 - 2014-07-06 17:40 - 06769280 _____ (SparkTrust) C:\Users\Joan\Downloads\SparkTrust PC Cleaner Plus Setup_cdc9ee3_.exe2014-07-06 17:40 - 2014-07-06 17:40 - 06769280 _____ (SparkTrust) C:\Users\Joan\Downloads\SparkTrust PC Cleaner Plus Setup_cdc9ed0_.exe2014-07-06 17:40 - 2014-07-06 17:40 - 00228728 _____ (System Applet ) C:\Users\Joan\Downloads\Java_Updater_Setup.exe2014-07-06 17:35 - 2014-07-06 17:35 - 00176247 _____ () C:\Users\Joan\Downloads\Google.htm2014-07-06 17:35 - 2014-07-06 17:35 - 00000000 ____D () C:\Users\Joan\Downloads\Google_files2014-07-06 17:27 - 2014-07-06 17:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ad-Aware Antivirus2014-07-06 17:26 - 2014-07-06 17:26 - 00000000 ____D () C:\Program Files\Common Files\Lavasoft2014-07-06 17:16 - 2014-07-06 17:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightspark 0.5.3-git2014-07-06 17:15 - 2014-07-06 17:15 - 00005194 _____ () C:\Windows\System32\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-42014-07-06 17:15 - 2014-07-06 17:15 - 00004558 _____ () C:\Windows\System32\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-12014-07-06 17:15 - 2014-07-06 17:15 - 00004418 _____ () C:\Windows\System32\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-52014-07-06 17:15 - 2014-07-06 17:15 - 00004308 _____ () C:\Windows\System32\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-22014-07-06 17:14 - 2014-07-06 17:14 - 00006818 _____ () C:\Windows\System32\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-112014-07-06 17:14 - 2014-07-06 17:14 - 00000000 ____D () C:\Users\Joan\AppData\Local\CrashRpt2014-07-06 10:13 - 2014-07-06 10:13 - 04812672 _____ (Piriform Ltd) C:\Users\Joan\Downloads\ccsetup415.exe2014-07-06 08:32 - 2014-06-29 20:07 - 00004962 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for Joanie-Joan Joanie2014-06-29 20:14 - 2013-12-06 23:19 - 00000000 ____D () C:\Users\Joan\AppData\Local\Packages2014-06-26 08:52 - 2013-12-07 11:58 - 00003880 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA2014-06-26 08:52 - 2013-12-07 11:58 - 00003644 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore2014-06-21 22:46 - 2013-12-25 19:56 - 00000000 ____D () C:\Users\Joan\AppData\Roaming\Malwarebytes2014-06-21 22:45 - 2013-12-25 19:56 - 00000000 ____D () C:\ProgramData\Malwarebytes2014-06-21 08:56 - 2012-07-26 03:12 - 00000000 ____D () C:\Windows\rescache2014-06-20 08:22 - 2013-12-07 20:37 - 00000000 ____D () C:\Program Files\Microsoft Office 152014-06-20 08:07 - 2012-07-26 03:12 - 00000000 ____D () C:\Windows\AUInstallAgentSome content of TEMP:====================C:\Users\Joan\AppData\Local\Temp\{6EC09C14-B91A-458E-8E8C-7BFAA42CBB1F}.exe==================== Bamital & volsnap Check =================C:\Windows\System32\winlogon.exe => File is digitally signedC:\Windows\System32\wininit.exe => File is digitally signedC:\Windows\explorer.exe => File is digitally signedC:\Windows\SysWOW64\explorer.exe => File is digitally signedC:\Windows\System32\svchost.exe => File is digitally signedC:\Windows\SysWOW64\svchost.exe => File is digitally signedC:\Windows\System32\services.exe => File is digitally signedC:\Windows\System32\User32.dll => File is digitally signedC:\Windows\SysWOW64\User32.dll => File is digitally signedC:\Windows\System32\userinit.exe => File is digitally signedC:\Windows\SysWOW64\userinit.exe => File is digitally signedC:\Windows\System32\rpcss.dll => File is digitally signedC:\Windows\System32\Drivers\volsnap.sys => File is digitally signedLastRegBack: 2014-07-20 13:15==================== End Of Log ============================

Results of Addition.txt

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-07-2014Ran by Joan at 2014-07-20 13:37:26Running from C:\Users\Joan\DesktopBoot Mode: Normal============================================================================== Security Center ========================AV: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892}AV: Ad-Aware Antivirus (Disabled - Out of date) {D87B6541-12A1-DAEA-0033-9B8057AAB996}AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}AS: Ad-Aware Antivirus (Disabled - Out of date) {631A84A5-349B-D564-3A83-A0F22C2DF32B}AS: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {16C7C823-5972-5907-58FA-0004E2F9422F}AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}FW: McAfee Firewall (Enabled) {959DA8E2-3527-57D1-4915-924367AD4FE9}FW: Ad-Aware Firewall (Disabled) {E040E464-58CE-DBB2-2B6C-32B5A979FEED}==================== Installed Programs ======================Ad-Aware Antivirus (HKLM\...\{9F965DAA-2FFD-41E3-8125-893BFBBE01D6}_AdAwareUpdater) (Version: 11.2.5952.0 - Lavasoft)AdAwareInstaller (Version: 11.2.5952.0 - Lavasoft) HiddenAdAwareUpdater (Version: 11.2.5952.0 - Lavasoft) HiddenAdobe Flash Player 11 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 11.9.900.170 - Adobe Systems Incorporated)Amazon 1Button App for Windows Taskbar (HKLM-x32\...\{0A7D6F3C-F2AB-48ED-BE23-99791BFF87D6}) (Version: 1.0.0.2 - Amazon)AntimalwareEngine (Version: 3.0.0.56 - Lavasoft) HiddenCCleaner (HKLM\...\CCleaner) (Version: 4.15 - Piriform)CyberLink LabelPrint 2.5 (x32 Version: 2.5.5415 - CyberLink Corp.) HiddenCyberLink Media Suite 10 (x32 Version: 10.0.1.2417 - CyberLink Corp.) HiddenCyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)CyberLink Power2Go 8 (x32 Version: 8.0.0.2126 - CyberLink Corp.) HiddenCyberLink PowerDirector 10 (x32 Version: 10.0.1.2413 - CyberLink Corp.) HiddenCyberLink PowerDVD 10 (x32 Version: 10.0.4828.52 - CyberLink Corp.) HiddenD3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) HiddenDell Backup and Recovery - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.5.0.0 - Dell Inc.)Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.5.0.0 - Dell Inc.)Dell Digital Delivery (HKLM-x32\...\{B96348BD-6B0D-42E3-80B1-FA6718067BFE}) (Version: 2.8.1000.0 - Dell Products, LP)Dell Product Registration (HKLM-x32\...\{2A0F2CC5-3065-492C-8380-B03AA7106B1A}) (Version: 1.16.1 - Dell Inc.)Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 16.3.13.5 - Synaptics Incorporated)Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Dell Inc.)DSC/AA Factory Installer (Version: 3.3.6261.27 - PC-Doctor, Inc.) HiddenGoogle Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.)Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.4805.320 - Google Inc.)Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) HiddenGoogle Update Helper (x32 Version: 1.3.24.15 - Google Inc.) HiddenIntel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.3.1520 - Intel Corporation)Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.18.10.3165 - Intel Corporation)Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.6.0.1033 - Intel Corporation)Intel(R) Rapid Storage Technology (Version: 12.6.0.1033 - Intel Corporation) HiddenIntel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.63463 - Intel Corporation)Intel® Trusted Connect Service Client (Version: 1.28.487.1 - Intel Corporation) HiddenLightspark 0.5.3-git (HKLM-x32\...\Lightspark) (Version: 0.5.3-git - Lightspark Team)Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)McAfee LiveSafe – Internet Security (HKLM-x32\...\MSC) (Version: 12.8.958 - McAfee, Inc.)McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) HiddenMicrosoft Office Professional Plus 2013 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 15.0.4623.1003 - Microsoft Corporation)Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) HiddenMozilla Firefox 27.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 27.0.1 (x86 en-US)) (Version: 27.0.1 - Mozilla)Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 27.0.1 - Mozilla)MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) HiddenMSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) HiddenMSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) HiddenMy Dell (HKLM\...\PC-Doctor for Windows) (Version: 3.5.6426.22 - PC-Doctor, Inc.)Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4623.1003 - Microsoft Corporation) HiddenOffice 15 Click-to-Run Licensing Component (Version: 15.0.4623.1003 - Microsoft Corporation) HiddenOffice 15 Click-to-Run Localization Component (x32 Version: 15.0.4623.1003 - Microsoft Corporation) HiddenPhoto Gallery (x32 Version: 16.4.3505.0912 - Microsoft Corporation) HiddenQualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.222 - Qualcomm Atheros Communications)Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 10.15.018 - Dell Inc.)Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6927 - Realtek Semiconductor Corp.)RegHunter (HKLM\...\{F94A63D7-9A61-403B-8F6F-90B1BF77211A}) (Version: 1.3.3.1613 - Enigma Software Group USA, LLC)Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)SpyHunter (HKLM\...\{1F7E4FF9-D2E5-4258-9AE1-E16E6CB3252A}) (Version: 4.17.6.4336 - Enigma Software Group USA, LLC)SpywareBlaster 5.0 (HKLM-x32\...\SpywareBlaster_is1) (Version: 5.0.0 - BrightFort LLC)Windows Live Communications Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) HiddenWindows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)Windows Live Essentials (x32 Version: 16.4.3505.0912 - Microsoft Corporation) HiddenWindows Live Installer (x32 Version: 16.4.3505.0912 - Microsoft Corporation) HiddenWindows Live Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) HiddenWindows Live PIMT Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) HiddenWindows Live SOXE (x32 Version: 16.4.3505.0912 - Microsoft Corporation) HiddenWindows Live SOXE Definitions (x32 Version: 16.4.3505.0912 - Microsoft Corporation) HiddenWindows Live UX Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) HiddenWindows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden==================== Restore Points  =========================04-07-2014 14:32:04 Scheduled Checkpoint06-07-2014 22:25:37 AA1116-07-2014 03:51:05 Installed SpyHunter==================== Hosts content: ==========================2012-07-26 00:26 - 2012-07-26 00:26 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts==================== Scheduled Tasks (whitelisted) =============Task: {0D27CAAC-8B60-42EF-A323-6460854A15DD} - System32\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-5 => C:\Program Files (x86)\Object Browser\4dd58b88-2ac6-4715-814d-33f6d3433c93-5.exeTask: {1909BE79-E623-4527-BA97-4A52AD5FE805} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2012-12-03] (CyberLink Corp.)Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTaskTask: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsListTask: {276E2C4E-23CB-45B5-959B-6ED12CC30661} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\My Dell\uaclauncher.exe [2014-01-31] (PC-Doctor, Inc.)Task: {35C7594F-A951-484B-9076-FC644C1FBC18} - System32\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-11 => C:\Program Files (x86)\Object Browser\4dd58b88-2ac6-4715-814d-33f6d3433c93-11.exeTask: {38DC7B7B-D9B7-4C35-8720-A3FF99007145} - System32\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-1 => C:\Program Files (x86)\Object Browser\Object Browser-codedownloader.exeTask: {3935AE30-6AE6-497C-A12E-6E75598D2434} - System32\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-4 => C:\Program Files (x86)\Object Browser\4dd58b88-2ac6-4715-814d-33f6d3433c93-4.exeTask: {481A94F1-3970-47F7-A221-E81C02426164} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-06-14] (Microsoft Corporation)Task: {51371F61-45C0-490A-8B11-5416252B6A81} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\My Dell\sessionchecker.exe [2014-01-31] (PC-Doctor, Inc.)Task: {67A3A8F2-DBF7-4D12-A03D-BA35D8B9EEB1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-07] (Google Inc.)Task: {70612C96-1CA8-4109-B941-D7A2AF42D8FC} - System32\Tasks\Dell\Dell Product Registration (Joan) => C:\Program Files (x86)\System Registration\prodreg.exe [2012-07-09] (Dell, Inc.)Task: {7849628C-F46B-4E4A-B243-EF9EB24000FA} - \RegClean Pro No Task File <==== ATTENTIONTask: {7D086D62-642F-4EB4-BA91-8C79F1BDFB34} - \globalUpdateUpdateTaskMachineUA No Task File <==== ATTENTIONTask: {7EDA2CAF-DDC9-4BD9-B201-C3D543DB55B3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2014-06-20] (Microsoft Corporation)Task: {812BCBCF-77C8-4234-8E93-98BEDE6CCB35} - System32\Tasks\Synaptics TouchPad Enhancements => \Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-03-05] (Synaptics Incorporated)Task: {8A924437-C3D6-4435-9AE3-ACF405D7A98C} - System32\Tasks\Dell\Dell System Registration => C:\Program Files (x86)\System Registration\prodreg.exe [2012-07-09] (Dell, Inc.)Task: {931E6218-D710-4184-A025-CC78FAD48CEF} - System32\Tasks\Microsoft Office 15 Sync Maintenance for Joanie-Joan Joanie => C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe [2014-06-20] (Microsoft Corporation)Task: {9472D113-9968-4416-BA05-36D2A3E54505} - System32\Tasks\Advanced System Protector_startup => C:\Program Files (x86)\Advanced System Protector\AdvancedSystemProtector.exe <==== ATTENTIONTask: {955FABEE-43DF-4811-AC21-3AFF457A4D68} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-06-24] (Piriform Ltd)Task: {99A2E8D3-DDC9-438E-B03E-8E43FF02E542} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exeTask: {A4919369-2655-4D10-95D6-E1A4652B9D8B} - \SMW_UpdateTask_Time_3834393932323939342d555b373434412d45325a5b6c No Task File <==== ATTENTIONTask: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensingTask: {A7EE5872-2F1B-4825-B1A4-381F3A05E593} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2014-05-13] (Microsoft Corporation)Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryStateTask: {D19B1ADC-F970-4DE2-B622-969FF83B2C5E} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2012-12-03] (CyberLink)Task: {D94464C4-9651-4EC0-86A4-4A9C4364757D} - System32\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-2 => C:\Program Files (x86)\Object Browser\4dd58b88-2ac6-4715-814d-33f6d3433c93-2.exeTask: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTaskTask: {EE6D90CB-2DAE-4885-88E9-2BFE46019D8F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2014-06-20] (Microsoft Corporation)Task: {EEABDDC3-DE1C-41AE-809D-645B67D52F5C} - \globalUpdateUpdateTaskMachineCore No Task File <==== ATTENTIONTask: {FBE39FA0-D10F-457B-BC5B-5A74CBF23C4E} - System32\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-5_user => C:\Program Files (x86)\Object Browser\4dd58b88-2ac6-4715-814d-33f6d3433c93-5.exeTask: {FD8C04C8-EB59-4322-A9AA-B61971A389BF} - System32\Tasks\Microsoft\Windows\Setup\Pre-staged GDR Notification => C:\Windows\system32\NotificationUI.exe [2014-04-19] (Microsoft Corporation)Task: {FE019DC8-BE85-46D1-96DB-92C8ABA2A65D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-07] (Google Inc.)Task: C:\Windows\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-1.job => C:\Program Files (x86)\Object Browser\Object Browser-codedownloader.exeTask: C:\Windows\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-11.job => C:\Program Files (x86)\Object Browser\4dd58b88-2ac6-4715-814d-33f6d3433c93-11.exeTask: C:\Windows\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-2.job => C:\Program Files (x86)\Object Browser\4dd58b88-2ac6-4715-814d-33f6d3433c93-2.exeTask: C:\Windows\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-4.job => C:\Program Files (x86)\Object Browser\4dd58b88-2ac6-4715-814d-33f6d3433c93-4.exeTask: C:\Windows\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-5.job => C:\Program Files (x86)\Object Browser\4dd58b88-2ac6-4715-814d-33f6d3433c93-5.exeTask: C:\Windows\Tasks\4dd58b88-2ac6-4715-814d-33f6d3433c93-5_user.job => C:\Program Files (x86)\Object Browser\4dd58b88-2ac6-4715-814d-33f6d3433c93-5.exeTask: C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exeTask: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exeTask: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exeTask: C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exeTask: C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe==================== Loaded Modules (whitelisted) =============2014-03-22 12:55 - 2013-10-31 18:13 - 00102568 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll2014-06-03 15:47 - 2014-06-03 15:47 - 00706864 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareService.exe2014-06-03 16:19 - 2014-06-03 16:19 - 00103800 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\boost_thread-vc100-mt-1_55.dll2014-06-03 16:19 - 2014-06-03 16:19 - 00024440 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\boost_system-vc100-mt-1_55.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00055680 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\boost_date_time-vc100-mt-1_55.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00123776 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\boost_filesystem-vc100-mt-1_55.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00033656 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\boost_chrono-vc100-mt-1_55.dll2014-06-03 16:18 - 2014-06-03 16:18 - 10070888 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareServiceKernel.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00685904 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\SQLite.dll2014-06-03 16:18 - 2014-06-03 16:18 - 03393352 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\RCF.dll2014-06-03 16:19 - 2014-06-03 16:19 - 00788856 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\boost_regex-vc100-mt-1_55.dll2014-06-03 16:17 - 2014-06-03 16:17 - 00604520 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareActivation.dll2014-06-03 16:19 - 2014-06-03 16:19 - 00158032 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\pugixml.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00360312 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareApplicationUpdater.dll2014-06-03 16:19 - 2014-06-03 16:19 - 00149840 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\libssh2.dll2014-06-03 16:19 - 2014-06-03 16:19 - 00106824 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\zlib.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00142696 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareGamingMode.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00098648 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareReset.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00120152 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareTime.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00290168 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareDefinitionsUpdater.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00198024 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareDefinitionsUpdaterScheduler.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00417128 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareIgnoreList.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00245608 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareQuarantine.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00336752 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareAntiMalwareEngine.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00212336 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareAntiRootkitEngine.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00509808 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareScannerHistory.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00610144 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareScanner.dll2014-06-03 16:19 - 2014-06-03 16:19 - 00035192 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\boost_timer-vc100-mt-1_55.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00326000 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareScannerScheduler.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00453496 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareRealTimeProtection.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00227688 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareIncompatibles.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00218976 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareAntiSpam.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00171368 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareAntiPhishing.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00786800 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareParentalControl.dll2014-06-03 16:18 - 2014-06-03 16:18 - 01936744 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareWebProtection.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00422256 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareEmailProtection.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00650608 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareNetworkProtection.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00358744 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwarePromo.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00298336 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareFeedback.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00371576 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareThreatWorkAlliance.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00154464 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\SecurityCenter.dll2013-09-20 20:14 - 2012-04-24 21:43 - 00254512 ____N () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe2014-06-20 08:20 - 2014-06-20 08:20 - 08890536 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll2013-09-20 20:17 - 2013-04-19 17:51 - 00020256 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBROverlayIcon.dll2013-09-20 20:17 - 2013-04-19 17:52 - 00049440 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\STCommonShellIntegration.dll2013-09-20 20:17 - 2013-04-19 17:51 - 00019232 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBROverlayNotBackuped.dll2014-06-03 16:18 - 2014-06-03 16:18 - 02082160 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareShellExtension.dll2013-09-20 20:17 - 2013-04-19 17:51 - 00034080 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRShellExtension.dll2013-02-28 21:14 - 2013-02-28 21:14 - 00011264 _____ () C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll2013-02-28 21:11 - 2013-02-28 21:11 - 00086016 _____ () C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Modules\Map\MAP.dll2013-02-28 21:15 - 2013-02-28 21:15 - 00012928 _____ () C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\ActivateDesktop.exe2014-06-03 16:18 - 2014-06-03 16:18 - 07715160 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareTray.exe2014-06-03 16:18 - 2014-06-03 16:18 - 00500088 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\boost_locale-vc100-mt-1_55.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00364896 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\HtmlFramework.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00066904 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\DllStorage.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00803696 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\AdAwareTrayDefaultSkin.dll2014-06-03 16:18 - 2014-06-03 16:18 - 00139608 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.2.5952.0\Localization.dll2013-09-20 20:17 - 2013-04-19 17:51 - 00023328 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRCrawler.exe2014-07-14 20:45 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl2014-07-14 20:45 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl2014-07-14 20:45 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl2014-07-14 20:45 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll2014-07-15 22:22 - 2014-07-15 22:22 - 00000000 _____ () C:\Windows\SYSTEM32\olepro32.dll2014-07-14 20:45 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll2013-09-20 20:03 - 2013-06-01 07:31 - 01199576 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll2014-02-16 12:59 - 2014-02-16 12:59 - 03578992 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll2014-07-15 22:22 - 2014-07-15 22:22 - 00000000 _____ () C:\Windows\SYSTEM32\igdusc32.dll2013-09-20 20:12 - 2012-06-07 22:34 - 00627216 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll2012-06-08 13:34 - 2012-06-08 13:34 - 00016400 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll2013-09-20 20:17 - 2013-05-02 18:01 - 01813792 _____ () C:\Program Files (x86)\Dell Backup and Recovery\OLCoreWrapper.dll2014-07-15 22:22 - 2014-07-15 22:22 - 00000000 _____ () C:\Windows\SYSTEM32\igdumdim32.dll==================== Alternate Data Streams (whitelisted) =========AlternateDataStreams: C:\ProgramData\Temp:373E1720AlternateDataStreams: C:\ProgramData\Temp:5C321E34==================== Safe Mode (whitelisted) ===================HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\31733167.sys => ""="Driver"HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\31733167.sys => ""="Driver"HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"==================== EXE Association (whitelisted) ================================= MSCONFIG/TASK MANAGER disabled items ============================= Faulty Device Manager Devices =============Name: Teredo Tunneling Pseudo-InterfaceDescription: Microsoft Teredo Tunneling AdapterClass Guid: {4d36e972-e325-11ce-bfc1-08002be10318}Manufacturer: MicrosoftService: tunnelProblem: : This device cannot start. (Code10)Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.==================== Event log errors: =========================Application errors:==================Error: (07/20/2014 01:30:14 PM) (Source: Application Error) (EventID: 1000) (User: )Description: Faulting application name: mbam.exe, version: 1.0.0.532, time stamp: 0x53518532Faulting module name: MSVCR100.dll, version: 10.0.40219.325, time stamp: 0x4df2be1eException code: 0x40000015Fault offset: 0x0008d6fdFaulting process id: 0x1924Faulting application start time: 0xmbam.exe0Faulting application path: mbam.exe1Faulting module path: mbam.exe2Report Id: mbam.exe3Faulting package full name: mbam.exe4Faulting package-relative application ID: mbam.exe5Error: (07/20/2014 01:28:07 PM) (Source: Application Error) (EventID: 1000) (User: )Description: Faulting application name: mbam.exe, version: 1.0.0.532, time stamp: 0x53518532Faulting module name: MSVCR100.dll, version: 10.0.40219.325, time stamp: 0x4df2be1eException code: 0x40000015Fault offset: 0x0008d6fdFaulting process id: 0x1950Faulting application start time: 0xmbam.exe0Faulting application path: mbam.exe1Faulting module path: mbam.exe2Report Id: mbam.exe3Faulting package full name: mbam.exe4Faulting package-relative application ID: mbam.exe5Error: (07/20/2014 01:27:47 PM) (Source: Application Error) (EventID: 1000) (User: )Description: Faulting application name: mbam.exe, version: 1.0.0.532, time stamp: 0x53518532Faulting module name: MSVCR100.dll, version: 10.0.40219.325, time stamp: 0x4df2be1eException code: 0x40000015Fault offset: 0x0008d6fdFaulting process id: 0x10c4Faulting application start time: 0xmbam.exe0Faulting application path: mbam.exe1Faulting module path: mbam.exe2Report Id: mbam.exe3Faulting package full name: mbam.exe4Faulting package-relative application ID: mbam.exe5Error: (07/20/2014 10:18:53 AM) (Source: Application Error) (EventID: 1000) (User: )Description: Faulting application name: mbam.com, version: 1.0.0.532, time stamp: 0x53518532Faulting module name: MSVCR100.dll, version: 10.0.40219.325, time stamp: 0x4df2be1eException code: 0x40000015Fault offset: 0x0008d6fdFaulting process id: 0x7f4Faulting application start time: 0xmbam.com0Faulting application path: mbam.com1Faulting module path: mbam.com2Report Id: mbam.com3Faulting package full name: mbam.com4Faulting package-relative application ID: mbam.com5Error: (07/20/2014 10:17:55 AM) (Source: Application Error) (EventID: 1000) (User: )Description: Faulting application name: mbam.exe, version: 1.0.0.532, time stamp: 0x53518532Faulting module name: MSVCR100.dll, version: 10.0.40219.325, time stamp: 0x4df2be1eException code: 0x40000015Fault offset: 0x0008d6fdFaulting process id: 0x18cFaulting application start time: 0xmbam.exe0Faulting application path: mbam.exe1Faulting module path: mbam.exe2Report Id: mbam.exe3Faulting package full name: mbam.exe4Faulting package-relative application ID: mbam.exe5Error: (07/20/2014 10:17:30 AM) (Source: Application Error) (EventID: 1000) (User: )Description: Faulting application name: mbam.exe, version: 1.0.0.532, time stamp: 0x53518532Faulting module name: MSVCR100.dll, version: 10.0.40219.325, time stamp: 0x4df2be1eException code: 0x40000015Fault offset: 0x0008d6fdFaulting process id: 0x628Faulting application start time: 0xmbam.exe0Faulting application path: mbam.exe1Faulting module path: mbam.exe2Report Id: mbam.exe3Faulting package full name: mbam.exe4Faulting package-relative application ID: mbam.exe5Error: (07/19/2014 11:08:37 PM) (Source: Application Error) (EventID: 1000) (User: )Description: Faulting application name: mbamservice.exe, version: 3.0.2.0, time stamp: 0x5318d363Faulting module name: mbamservice.exe, version: 3.0.2.0, time stamp: 0x5318d363Exception code: 0x40000015Fault offset: 0x0007da8aFaulting process id: 0x9dcFaulting application start time: 0xmbamservice.exe0Faulting application path: mbamservice.exe1Faulting module path: mbamservice.exe2Report Id: mbamservice.exe3Faulting package full name: mbamservice.exe4Faulting package-relative application ID: mbamservice.exe5Error: (07/19/2014 11:08:21 PM) (Source: Application Error) (EventID: 1000) (User: )Description: Faulting application name: mbamscheduler.exe, version: 3.0.2.0, time stamp: 0x5339cec3Faulting module name: MSVCR100.dll, version: 10.0.40219.325, time stamp: 0x4df2be1eException code: 0x40000015Fault offset: 0x0008d6fdFaulting process id: 0x78cFaulting application start time: 0xmbamscheduler.exe0Faulting application path: mbamscheduler.exe1Faulting module path: mbamscheduler.exe2Report Id: mbamscheduler.exe3Faulting package full name: mbamscheduler.exe4Faulting package-relative application ID: mbamscheduler.exe5Error: (07/19/2014 10:47:32 PM) (Source: Application Error) (EventID: 1000) (User: )Description: Faulting application name: mbam.exe, version: 1.0.0.532, time stamp: 0x53518532Faulting module name: MSVCR100.dll, version: 10.0.40219.325, time stamp: 0x4df2be1eException code: 0x40000015Fault offset: 0x0008d6fdFaulting process id: 0x11ecFaulting application start time: 0xmbam.exe0Faulting application path: mbam.exe1Faulting module path: mbam.exe2Report Id: mbam.exe3Faulting package full name: mbam.exe4Faulting package-relative application ID: mbam.exe5Error: (07/19/2014 10:46:25 PM) (Source: Application Error) (EventID: 1000) (User: )Description: Faulting application name: mbam.exe, version: 1.0.0.532, time stamp: 0x53518532Faulting module name: MSVCR100.dll, version: 10.0.40219.325, time stamp: 0x4df2be1eException code: 0x40000015Fault offset: 0x0008d6fdFaulting process id: 0x8d8Faulting application start time: 0xmbam.exe0Faulting application path: mbam.exe1Faulting module path: mbam.exe2Report Id: mbam.exe3Faulting package full name: mbam.exe4Faulting package-relative application ID: mbam.exe5System errors:=============Error: (07/20/2014 01:29:00 PM) (Source: Service Control Manager) (EventID: 7017) (User: )Description: Detected circular dependencies demand starting EsgScanner. Check the service dependency tree.Error: (07/20/2014 01:29:00 PM) (Source: Service Control Manager) (EventID: 7019) (User: )Description: The EsgScanner service depends on a service in a group which starts later. Change the order in the service dependency tree to ensure that all services required to start this service are starting before this service is started.Error: (07/20/2014 01:29:00 PM) (Source: NETLOGON) (EventID: 3095) (User: )Description: This computer is configured as a member of a workgroup, not asa member of a domain. The Netlogon service does not need to run in thisconfiguration.Error: (07/20/2014 01:27:37 PM) (Source: Service Control Manager) (EventID: 7011) (User: )Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.Error: (07/20/2014 01:17:48 PM) (Source: NETLOGON) (EventID: 3095) (User: )Description: This computer is configured as a member of a workgroup, not asa member of a domain. The Netlogon service does not need to run in thisconfiguration.Error: (07/20/2014 01:17:43 PM) (Source: Service Control Manager) (EventID: 7018) (User: )Description: Detected circular dependencies auto-starting services. Check the service dependency tree.Error: (07/20/2014 01:17:43 PM) (Source: Service Control Manager) (EventID: 7019) (User: )Description: The EsgScanner service depends on a service in a group which starts later. Change the order in the service dependency tree to ensure that all services required to start this service are starting before this service is started.Error: (07/20/2014 00:31:58 PM) (Source: Service Control Manager) (EventID: 7017) (User: )Description: Detected circular dependencies demand starting EsgScanner. Check the service dependency tree.Error: (07/20/2014 00:31:58 PM) (Source: Service Control Manager) (EventID: 7019) (User: )Description: The EsgScanner service depends on a service in a group which starts later. Change the order in the service dependency tree to ensure that all services required to start this service are starting before this service is started.Error: (07/20/2014 00:31:58 PM) (Source: NETLOGON) (EventID: 3095) (User: )Description: This computer is configured as a member of a workgroup, not asa member of a domain. The Netlogon service does not need to run in thisconfiguration.Microsoft Office Sessions:=========================Error: (07/20/2014 01:30:14 PM) (Source: Application Error) (EventID: 1000) (User: )Description: mbam.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd192401cfa448a5618da9C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exeC:\Program Files (x86)\Malwarebytes Anti-Malware\MSVCR100.dlle34e4aa1-103b-11e4-beb0-3c77e674cba6Error: (07/20/2014 01:28:07 PM) (Source: Application Error) (EventID: 1000) (User: )Description: mbam.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd195001cfa4485a20b628C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exeC:\Program Files (x86)\Malwarebytes Anti-Malware\MSVCR100.dll9801b53e-103b-11e4-beb0-3c77e674cba6Error: (07/20/2014 01:27:47 PM) (Source: Application Error) (EventID: 1000) (User: )Description: mbam.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd10c401cfa4484e01308fC:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exeC:\Program Files (x86)\Malwarebytes Anti-Malware\MSVCR100.dll8c1441e5-103b-11e4-beb0-3c77e674cba6Error: (07/20/2014 10:18:53 AM) (Source: Application Error) (EventID: 1000) (User: )Description: mbam.com1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd7f401cfa42dea8720c0e:\mbam-chameleon-3.1.4.0\chameleon\windows\cqbknqjcs\mbam.come:\mbam-chameleon-3.1.4.0\chameleon\windows\cqbknqjcs\MSVCR100.dll2865be1f-1021-11e4-bead-d0ed1d1296ebError: (07/20/2014 10:17:55 AM) (Source: Application Error) (EventID: 1000) (User: )Description: mbam.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd18c01cfa42dc8354e27C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exeC:\Program Files (x86)\Malwarebytes Anti-Malware\MSVCR100.dll0607ffc9-1021-11e4-bead-d0ed1d1296ebError: (07/20/2014 10:17:30 AM) (Source: Application Error) (EventID: 1000) (User: )Description: mbam.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd62801cfa42db96405fdC:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exeC:\Program Files (x86)\Malwarebytes Anti-Malware\MSVCR100.dllf7260716-1020-11e4-bead-d0ed1d1296ebError: (07/19/2014 11:08:37 PM) (Source: Application Error) (EventID: 1000) (User: )Description: mbamservice.exe3.0.2.05318d363mbamservice.exe3.0.2.05318d363400000150007da8a9dc01cfa3d03f0a38b1C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exeC:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe85b84edb-0fc3-11e4-beac-3c77e674cba6Error: (07/19/2014 11:08:21 PM) (Source: Application Error) (EventID: 1000) (User: )Description: mbamscheduler.exe3.0.2.05339cec3MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd78c01cfa3d034d77d4fC:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exeC:\Program Files (x86)\Malwarebytes Anti-Malware\MSVCR100.dll7c7d8bea-0fc3-11e4-beac-3c77e674cba6Error: (07/19/2014 10:47:32 PM) (Source: Application Error) (EventID: 1000) (User: )Description: mbam.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd11ec01cfa3cd555326efC:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exeC:\Program Files (x86)\Malwarebytes Anti-Malware\MSVCR100.dll93c0d1e0-0fc0-11e4-beab-3c77e674cba6Error: (07/19/2014 10:46:25 PM) (Source: Application Error) (EventID: 1000) (User: )Description: mbam.exe1.0.0.53253518532MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd8d801cfa3cd2d412313C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exeC:\Program Files (x86)\Malwarebytes Anti-Malware\MSVCR100.dll6baecdfc-0fc0-11e4-beab-3c77e674cba6==================== Memory info =========================== Percentage of memory in use: 26%Total physical RAM: 7908.96 MBAvailable physical RAM: 5804.98 MBTotal Pagefile: 9124.96 MBAvailable Pagefile: 6689.87 MBTotal Virtual: 8192 MBAvailable Virtual: 8191.77 MB==================== Drives ================================Drive c: (OS) (Fixed) (Total:918.16 GB) (Free:875.85 GB) NTFSDrive y: (WINRETOOLS) (Fixed) (Total:0.48 GB) (Free:0.19 GB) NTFS==================== MBR & Partition Table ====================================== End Of Log ============================

As stated in the title MalwareBytes will not run (it does show for a moment in Task Manager then goes away).

Please let me know what to do next.

Thanks!

Addition.txt

FRST.txt

Link to post
Share on other sites

  • 2 weeks later...
Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.