Cpu runs 50% to 100% at idle

B

Billwaterski

Scan Result of Farbar Recovery
Sc

an Tool ( First ) (x64) Version: 20-07-2016
Ran by Este (administrator) on ESTE-PC (23-07-2016 00:26:16)
Running from C:\Users\Este\Downloads
Loaded Profiles: Este (Available Profiles: Este)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool:

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(Stardock Corporation) C:\Program Files\Dell\DellDock\DockLogin.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
() C:\Program Files (x86)\Flip Video\FlipShare\FlipShareService.exe
(Alcatel-Lucent) C:\Program Files (x86)\Common Files\Motive\McciCMService.exe
(Alcatel-Lucent) C:\Program Files\Common Files\Motive\McciCMService.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Intel Security, Inc.) C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
() C:\Program Files (x86)\Dell DataSafe Local Backup\Components\scheduler\STService.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(McAfee, Inc.) C:\Program Files\McAfee\MSC\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\1.9.741.0\McCSPServiceHost.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe
(Dell Inc.) C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVault.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKU\S-1-5-21-928187507-283903971-1354544283-1001\...\Policies\system: [NoDispCPL] 0
HKU\S-1-5-21-928187507-283903971-1354544283-1001\...\Policies\Explorer: [NoInstrumentation] 1
HKU\S-1-5-21-928187507-283903971-1354544283-1001\...\Policies\Explorer: [NoSetTaskbar] 0
HKU\S-1-5-21-928187507-283903971-1354544283-1001\...\MountPoints2: I - I:\autorun.exe
HKU\S-1-5-21-928187507-283903971-1354544283-1001\Control Panel\Desktop\\SCRNSAVE.EXE ->
Startup: C:\Users\Este\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip [2016-06-19] ()
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
CHR HKU\S-1-5-21-928187507-283903971-1354544283-1001\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 205.171.2.226
Tcpip\..\Interfaces\{D8309F82-0678-4A18-93C6-148595D836C1}: [DhcpNameServer] 192.168.0.1 205.171.2.226

Internet Explorer:
==================
HKU\S-1-5-21-928187507-283903971-1354544283-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-928187507-283903971-1354544283-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://centurylink.net/
SearchScopes: HKLM -> DefaultScope {AE5CC408-B0A3-47EE-AB85-4204F204FD4D} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {AE5CC408-B0A3-47EE-AB85-4204F204FD4D} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {117DB037-2A39-4BAE-BDF0-8DAF36ADC782} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {89CF1AB2-644E-42B7-A844-ECE10AB08615} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-928187507-283903971-1354544283-1001 -> DefaultScope {117DB037-2A39-4BAE-BDF0-8DAF36ADC782} URL = hxxp://www.bing.com/search?FORM=U004DF&PC=U004&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-928187507-283903971-1354544283-1001 -> {117DB037-2A39-4BAE-BDF0-8DAF36ADC782} URL = hxxp://www.bing.com/search?FORM=U004DF&PC=U004&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-928187507-283903971-1354544283-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-928187507-283903971-1354544283-1001 -> {89CF1AB2-644E-42B7-A844-ECE10AB08615} URL =
SearchScopes: HKU\S-1-5-21-928187507-283903971-1354544283-1001 -> {A531D99C-5A22-449b-83DA-872725C6D0ED} URL = hxxp://search.alot.com/web?q={searchTerms}&pr=prov&client_id=C19AD2A001CE7FF4011F63F5&install_time=2013-07-13T18:14:08Z&src_id=31154&camp_id=5105&tb_version=1.3.4000.0(B)
SearchScopes: HKU\S-1-5-21-928187507-283903971-1354544283-1001 -> {AE5CC408-B0A3-47EE-AB85-4204F204FD4D} URL =
SearchScopes: HKU\S-1-5-21-928187507-283903971-1354544283-1001 -> {BF677AAE-AE1C-49AD-951E-F39E95ABDB3B} URL = hxxps://search.yahoo.com/search?fr=mcafee&type=C011US739D20100821&p={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-04-20] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-20] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-04-20] (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2012-03-08] (Microsoft Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-20] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-928187507-283903971-1354544283-1001 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: HKLM-x32 {02BCC737-B171-4746-94C9-0D8A0B2C0089} hxxp://office.microsoft.com/_layouts/ClientBin/ieawsdc32.cab
DPF: HKLM-x32 {C6A47FBB-2ECA-430E-8466-5523772CA4FA} hxxp://www.uscconlinealbum.com/tlc/script/ext/bulkuploader/Uploader8.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2016-07-11] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2016-07-11] (McAfee, Inc.)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - No File
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - No File
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2016-07-11] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2016-07-11] (McAfee, Inc.)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll [2016-05-24] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2016-05-24] (McAfee, Inc.)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll [2016-04-15] ()
FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-20] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-20] (Oracle Corporation)
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2016-05-24] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-15] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-20] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-20] (Oracle Corporation)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2016-05-24] ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @Motive.com/NpMotive,version=1.0 -> C:\Program Files (x86)\Common Files\Motive\npMotive.dll [2011-08-20] (Alcatel-Lucent)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-10] (Google Inc.)
FF Plugin-x32: @unity3d.com/UnityPlayer -> C:\Program Files (x86)\Unity\WebPlayer\loader\npUnity3D32.dll [2013-04-07] (Unity Technologies ApS)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-928187507-283903971-1354544283-1001: @citrixonline.com/appdetectorplugin -> C:\Users\Este\AppData\Local\Citrix\Plugins\104\npappdetector.dll [2016-04-28] (Citrix Online)
FF Plugin HKU\S-1-5-21-928187507-283903971-1354544283-1001: @nsroblox.roblox.com/launcher -> C:\Users\Este\AppData\Local\Roblox\Versions\version-8484f0d4199b4d0f\\NPRobloxProxy.dll [2013-08-21] ( ROBLOX Corporation)
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF Extension: McAfee WebAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2016-05-24]
FF HKLM-x32\...\Firefox\Extensions: [{3252b9ae-c69a-4eaf-9502-dc9c1f6c009e}] - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DMExtension
FF Extension: Default Manager - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DMExtension [2010-10-27] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2016-06-22] [not signed]

Chrome:
=======
CHR DefaultSearchURL: Default -> hxxps://search.yahoo.com/search?fr=mcafee&type=C211US739D20160622&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR Profile: C:\Users\Este\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (SiteAdvisor) - C:\Users\Este\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2016-06-22]
CHR Extension: (SearchLock) - C:\Users\Este\AppData\Local\Google\Chrome\User Data\Default\Extensions\madakpajlmcpaodhfbekojajlhbdklol [2016-07-19]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Este\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-06-22]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-928187507-283903971-1354544283-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [cbjibcbpmbcabnfnohhgjjmkgkimajko] - <no Path/update_url>
CHR HKU\S-1-5-21-928187507-283903971-1354544283-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [kldbiondcoemmofebkcgcnbigliglcnl] - <no Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [abepbblpkilpjohncjbccmdjhdhbnhdj] - <no Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [cbjibcbpmbcabnfnohhgjjmkgkimajko] - <no Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-06-22]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [kldbiondcoemmofebkcgcnbigliglcnl] - <no Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2016-05-25]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1863688 2016-06-01] ()
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1364096 2016-05-25] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1687680 2016-05-25] (Microsoft Corporation)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2010-03-12] (Creative Labs) [File not signed]
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2010-03-05] (Creative Labs) [File not signed]
S3 Creative Media Toolbox 6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\MT6Licensing.exe [79360 2010-03-12] (Creative Labs) [File not signed]
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [307200 2009-02-23] (Creative Technology Ltd) [File not signed]
R2 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2574168 2015-09-11] (Dell Inc.)
R2 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [201560 2015-09-11] (Dell Inc.)
R2 DockLoginService; C:\Program Files\Dell\DellDock\DockLogin.exe [155648 2009-06-09] (Stardock Corporation) [File not signed]
R2 FlipShare Service; C:\Program Files (x86)\Flip Video\FlipShare\FlipShareService.exe [451904 2009-06-04] ()
R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [599864 2016-04-23] (McAfee, Inc.)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [163592 2016-07-11] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [989192 2016-05-24] (McAfee, Inc.)
R2 McBootDelayStartSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [599864 2016-04-23] (McAfee, Inc.)
R2 McciCMService; C:\Program Files (x86)\Common Files\Motive\McciCMService.exe [361472 2011-06-13] (Alcatel-Lucent) [File not signed]
R2 McciCMService64; C:\Program Files\Common Files\Motive\McciCMService.exe [441344 2011-06-13] (Alcatel-Lucent) [File not signed]
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.9.741.0\\McCSPServiceHost.exe [1903320 2016-04-18] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [599864 2016-04-23] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [599864 2016-04-23] (McAfee, Inc.)
S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [795528 2016-04-20] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [599864 2016-04-23] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [599864 2016-04-23] (McAfee, Inc.)
R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232688 2016-03-07] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [382456 2016-04-01] (McAfee, Inc.)
R3 mfevtp; C:\Windows\system32\mfevtps.exe [277744 2016-03-07] (McAfee, Inc.)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1424352 2016-04-21] (McAfee, Inc.)
R2 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [599864 2016-04-23] (McAfee, Inc.)
R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [1029856 2016-04-21] (Intel Security, Inc.)
R2 SupportAssistAgent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [21160 2015-09-30] (Dell Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [78632 2016-03-11] (McAfee, Inc.)
R0 ctsrddrv; C:\Windows\System32\DRIVERS\ctsrddrv.sys [112376 2016-01-11] (Centurion Technologies)
R3 DDDriver; C:\Windows\System32\drivers\DDDriver64Dcsa.sys [32464 2015-09-11] (Dell Computer Corporation)
R3 DellProf; C:\Windows\System32\drivers\DellProf.sys [24240 2015-05-22] (Dell Computer Corporation)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [207968 2016-02-24] (McAfee, Inc.)
S3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30304 2010-05-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30304 2010-05-07] ()
R3 mfeaack; C:\Windows\System32\drivers\mfeaack.sys [419624 2016-03-11] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [349480 2016-03-11] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [493352 2016-03-11] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [842536 2016-03-11] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [543488 2016-02-10] (McAfee, Inc.)
S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [109480 2016-02-10] (McAfee, Inc.)
R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [46240 2016-06-06] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [243496 2016-03-11] (McAfee, Inc.)
S3 MREMP50; C:\Program Files (x86)\Common Files\Motive\MREMP50.sys [21248 2011-08-20] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 MRESP50; C:\Program Files (x86)\Common Files\Motive\MRESP50.sys [20096 2011-08-20] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S2 PDFsFilter; C:\Windows\SysWOW64\DRIVERS\PDFsFilter.sys [82160 2014-12-29] (Raxco Software, Inc.)
R2 RtNdPt60; C:\Windows\System32\DRIVERS\RtNdPt60.sys [26624 2007-12-11] (Windows (R) Codename Longhorn DDK provider)
S4 secdrv; C:\Windows\SysWow64\Drivers\secdrv.sys [11973 2015-09-23] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [File not signed]
S3 usbbus; C:\Windows\System32\DRIVERS\lgx64bus.sys [17920 2008-11-11] (LG Electronics Inc.)
S3 UsbDiag; C:\Windows\System32\DRIVERS\lgx64diag.sys [27136 2008-11-11] (LG Electronics Inc.)
S3 UsbGps; C:\Windows\System32\DRIVERS\lgx64gps.sys [27136 2008-11-11] (LG Electronics Inc.)
S3 USBModem; C:\Windows\System32\DRIVERS\lgx64modem.sys [33792 2008-11-11] (LG Electronics Inc.)
S3 lvpopf64; system32\DRIVERS\lvpopf64.sys [X]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
S3 MREMP50a64; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS [X]
S3 MREMPR5; \??\C:\PROGRA~2\COMMON~1\Motive\MREMPR5.SYS [X]
S3 MRENDIS5; \??\C:\PROGRA~2\COMMON~1\Motive\MRENDIS5.SYS [X]
S3 MRESP50a64; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS [X]
S3 PcdrNdisuio; syswow64\drivers\pcdrndisuio.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-23 00:26 - 2016-07-23 00:27 - 00025025 _____ C:\Users\Este\Downloads\FRST.txt
2016-07-23 00:24 - 2016-07-23 00:26 - 00000000 ____D C:\FRST
2016-07-23 00:24 - 2016-07-23 00:24 - 02393600 _____ (Farbar) C:\Users\Este\Downloads\FRST64.exe
2016-07-22 23:05 - 2016-07-22 23:05 - 00000000 ____D C:\Windows\System32\Tasks\Event Viewer Tasks
2016-07-22 22:39 - 2016-07-22 22:39 - 00000000 ____D C:\Users\Este\AppData\Local\ElevatedDiagnostics
2016-07-22 12:31 - 2016-07-22 12:31 - 00002952 _____ C:\Windows\System32\Tasks\{52FA45CA-ED35-4E9A-B0FC-7A8DA2B215C4}
2016-07-21 19:12 - 2016-07-22 21:48 - 00003846 _____ C:\Windows\System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse
2016-07-21 19:12 - 2016-07-22 13:41 - 00004020 _____ C:\Windows\System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse
2016-07-21 13:34 - 2016-07-21 13:34 - 22851472 _____ (Malwarebytes ) C:\Users\Este\Downloads\mbam-setup-2.2.1.1043.exe
2016-07-20 13:47 - 2016-07-20 13:47 - 00215142 ____T C:\Users\Este\Documents\mv.pdf
2016-07-12 21:19 - 2016-07-12 21:19 - 00156032 ____T C:\Users\Este\Documents\dmv reciept for dodge tk.pdf
2016-07-07 19:02 - 2016-07-07 19:03 - 02959376 _____ (Microsoft Corporation) C:\Users\Este\Downloads\dotnetfx35setup.exe
2016-07-07 18:41 - 2016-07-07 18:42 - 02416788 _____ C:\Users\Este\Downloads\AA.Net.Client-x64.rar
2016-07-04 20:15 - 2016-07-04 20:16 - 03390815 _____ C:\Users\Este\Downloads\07-2016 The Down Easterner.pdf

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-07-23 00:21 - 2010-03-09 19:58 - 00000000 ____D C:\Users\Este\AppData\Local\SoftThinks
2016-07-23 00:21 - 2010-03-05 20:52 - 00000000 ____D C:\Users\Default\AppData\Local\SoftThinks
2016-07-23 00:21 - 2010-03-05 20:52 - 00000000 ____D C:\Users\Default User\AppData\Local\SoftThinks
2016-07-23 00:21 - 2010-03-05 20:34 - 00000000 ____D C:\Program Files (x86)\Dell DataSafe Local Backup
2016-07-23 00:20 - 2016-05-20 12:49 - 00000892 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-07-23 00:20 - 2015-12-12 07:45 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d134d2994b4ce8.job
2016-07-23 00:20 - 2015-12-12 07:45 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d134d2980791c3.job
2016-07-23 00:20 - 2010-03-22 18:55 - 00000000 _____ C:\Windows\system32\Drivers\lvuvc.hs
2016-07-23 00:20 - 2009-07-14 01:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-07-23 00:17 - 2016-06-16 20:37 - 00000000 ____D C:\ProgramData\SpeedyPC Software
2016-07-23 00:02 - 2016-06-17 10:43 - 00000000 ____D C:\Users\Este\AppData\Roaming\USTechSupport
2016-07-23 00:02 - 2016-06-17 10:42 - 00000000 ____D C:\ProgramData\USTechSupport
2016-07-22 23:27 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\inf
2016-07-22 22:43 - 2009-07-14 00:45 - 00022464 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-07-22 22:43 - 2009-07-14 00:45 - 00022464 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-07-22 11:23 - 2016-06-16 20:38 - 00000569 _____ C:\Windows\Tasks\SpeedyPC Pro_sch_C41F7B77-3423-11E6-B865-002170609D8D.job
2016-07-21 22:13 - 2015-12-13 11:59 - 00000153 _____ C:\ADRInfos.xml
2016-07-21 16:37 - 2013-07-18 20:26 - 00000000 ____D C:\Windows\system32\MRT
2016-07-21 16:37 - 2013-05-14 18:02 - 00000000 __SHD C:\Windows\SysWOW64\AI_RecycleBin
2016-07-21 16:37 - 2011-05-19 07:07 - 00000000 ____D C:\Windows\system32\SPReview
2016-07-21 16:37 - 2011-05-19 07:05 - 00000000 ____D C:\Windows\system32\EventProviders
2016-07-21 16:37 - 2010-12-20 18:18 - 00000000 ____D C:\Windows\SysWOW64\QuickTime
2016-07-21 16:37 - 2010-10-08 07:58 - 00000000 ____D C:\Windows\SysWOW64\logishrd
2016-07-21 16:37 - 2010-10-08 07:58 - 00000000 ____D C:\Windows\system32\logishrd
2016-07-21 16:37 - 2010-03-26 18:07 - 00000000 ____D C:\Windows\SysWOW64\Adobe
2016-07-21 16:37 - 2010-03-09 19:58 - 00000000 ____D C:\Users\Este
2016-07-21 16:37 - 2010-03-05 20:18 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-07-21 16:37 - 2009-07-14 03:45 - 00000000 ____D C:\Windows\ShellNew
2016-07-21 16:37 - 2009-07-13 23:20 - 00000000 __RSD C:\Windows\Media
2016-07-21 16:37 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\system32\NDF
2016-07-21 16:37 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2016-07-21 16:37 - 2009-07-13 23:20 - 00000000 ____D C:\Windows\LiveKernelReports
2016-07-21 16:36 - 2016-06-16 13:27 - 00000000 ____D C:\Users\Este\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2016-07-21 16:36 - 2016-05-31 23:41 - 00000000 ____D C:\Users\Este\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-07-21 16:36 - 2016-04-30 22:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Tanks - Common Test
2016-07-21 16:36 - 2016-03-18 15:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-07-21 16:36 - 2016-03-09 20:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Tanks
2016-07-21 16:36 - 2016-01-11 22:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Kure
2016-07-21 16:36 - 2015-12-12 02:41 - 00000000 ____D C:\Windows\System32\Tasks\Remediation
2016-07-21 16:36 - 2015-09-23 20:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warships
2016-07-21 16:36 - 2015-07-09 06:32 - 00000000 ____D C:\Users\Este\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\World of Warplanes
2016-07-21 16:36 - 2015-07-03 00:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2016-07-21 16:36 - 2014-04-15 17:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-07-21 16:36 - 2013-08-06 17:02 - 00000000 ____D C:\Users\Este\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2016-07-21 16:36 - 2013-04-08 17:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Disney Pirates of the Caribbean Online
2016-07-21 16:36 - 2013-03-13 11:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-07-21 16:36 - 2012-06-24 14:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2016-07-21 16:36 - 2012-04-13 08:29 - 00000000 ____D C:\Windows\en
2016-07-21 16:36 - 2012-01-16 18:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CenturyLink™ Game Player
2016-07-21 16:36 - 2011-08-28 08:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CenturyLink Help
2016-07-21 16:36 - 2011-06-25 10:37 - 00000000 ____D C:\Users\Este\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell Inc
2016-07-21 16:36 - 2011-04-06 10:57 - 00000000 ____D C:\Users\Este\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\2nd Story Software
2016-07-21 16:36 - 2011-04-06 10:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\2nd Story Software
2016-07-21 16:36 - 2010-10-18 09:27 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-07-21 16:36 - 2010-05-27 08:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in
2016-07-21 16:36 - 2010-04-28 19:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Call of Duty - United Offensive
2016-07-21 16:36 - 2010-04-27 18:31 - 00000000 ____D C:\Users\Este\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2016-07-21 16:36 - 2010-04-06 18:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WildTangent Games
2016-07-21 16:36 - 2010-04-01 08:59 - 00000000 ____D C:\Users\Este\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\File Extension Finder
2016-07-21 16:36 - 2010-03-22 18:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2016-07-21 16:36 - 2010-03-22 18:55 - 00000000 ____D C:\Program Files\Common Files\logishrd
2016-07-21 16:36 - 2010-03-05 20:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roxio
2016-07-21 16:36 - 2010-03-05 20:39 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2016-07-21 16:36 - 2010-03-05 20:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell DataSafe
2016-07-21 16:36 - 2010-03-05 20:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-07-21 16:36 - 2010-03-05 20:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2016-07-21 16:36 - 2010-03-05 20:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
2016-07-21 16:36 - 2010-03-05 20:20 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2016-07-21 16:36 - 2009-07-14 03:44 - 00000000 ___RD C:\Users\Public\Recorded TV
2016-07-21 16:36 - 2009-07-14 01:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2016-07-21 16:36 - 2009-07-13 23:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2016-07-21 14:08 - 2011-06-25 10:37 - 00000000 ____D C:\Users\Este\AppData\Local\Deployment
2016-07-21 14:06 - 2009-07-14 01:32 - 00000000 ____D C:\Windows\addins
2016-07-21 13:26 - 2015-07-03 00:18 - 00000000 ____D C:\Users\Este\AppData\Roaming\TS3Client
2016-07-21 13:07 - 2012-07-25 09:14 - 00000000 ____D C:\Users\Este\AppData\Roaming\Spyzooka
2016-07-21 12:50 - 2009-07-14 01:13 - 00792614 _____ C:\Windows\system32\PerfStringBackup.INI
2016-07-21 12:46 - 2016-04-27 03:46 - 00000000 ___HD C:\$WINDOWS.~BT
2016-07-18 19:23 - 2016-06-22 12:10 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-07-14 12:59 - 2016-06-22 12:11 - 00003142 _____ C:\Windows\System32\Tasks\McAfeeLogon
2016-07-14 12:59 - 2010-03-05 20:45 - 00000000 ____D C:\ProgramData\McAfee
2016-07-13 15:04 - 2013-04-25 09:42 - 00000000 ____D C:\Users\Este\AppData\Roaming\Skype
2016-07-13 13:55 - 2010-03-12 09:41 - 144749672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-07-10 17:14 - 2015-07-03 00:18 - 00000000 ____D C:\Program Files (x86)\TeamSpeak 3 Client
2016-07-08 15:30 - 2014-11-16 20:02 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-07-08 11:15 - 2016-05-20 12:49 - 00004016 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2016-07-07 04:50 - 2012-07-27 00:30 - 00000000 ____D C:\Users\Este\AppData\Roaming\Malwarebytes
2016-07-07 04:49 - 2012-07-27 00:14 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-07-07 04:44 - 2012-07-27 00:09 - 00000000 ____D C:\zookaplus
2016-07-05 23:54 - 2013-04-25 09:42 - 00000000 ____D C:\ProgramData\Skype
2016-07-04 15:05 - 2015-04-21 18:10 - 00000000 ____D C:\ProgramData\Norton
2016-07-01 13:04 - 2011-03-21 19:18 - 00002080 _____ C:\Users\Public\Desktop\Logitech Vid HD.lnk
2016-06-24 11:37 - 2013-05-26 19:05 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-06-24 09:21 - 2013-03-13 11:27 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-06-24 09:21 - 2013-03-13 11:27 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight

==================== Files in the root of some directories =======

2010-04-29 14:18 - 2010-04-30 09:35 - 8656832 _____ (Dell, Inc. ) C:\Users\Este\AppData\Roaming\DataSafeDotNet.exe
2016-06-16 20:38 - 2016-07-22 23:54 - 0000115 _____ () C:\Users\Este\AppData\Roaming\LogFile.txt
2010-11-08 16:28 - 2014-12-20 14:27 - 0116736 _____ () C:\Users\Este\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2010-10-14 08:03 - 2016-06-20 22:13 - 0007606 _____ () C:\Users\Este\AppData\Local\Resmon.ResmonCfg
2012-01-10 08:21 - 2012-01-10 08:21 - 0000000 _____ () C:\Users\Este\AppData\Local\{03B732AB-95C2-4166-8C82-A4FC6F32A5B2}
2014-09-30 19:44 - 2014-09-30 19:44 - 0000000 _____ () C:\Users\Este\AppData\Local\{7484980D-3102-4B7A-867E-00216215DBA5}
2014-08-20 22:25 - 2014-08-20 22:25 - 0000000 _____ () C:\Users\Este\AppData\Local\{79861E96-7B0E-43F4-BDED-94EDC2D0242E}
2014-10-01 19:44 - 2014-10-01 19:44 - 0000000 _____ () C:\Users\Este\AppData\Local\{A68034FE-4CD7-47EC-9B37-96D084B0542C}
2015-03-19 14:40 - 2015-03-19 14:40 - 0000000 _____ () C:\Users\Este\AppData\Local\{A8C3C37A-E398-4CB7-8960-09E9708CB5CE}
2016-01-11 22:11 - 2016-01-11 22:11 - 0000000 _____ () C:\ProgramData\doinstall

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-11-20 11:46
Hi I think the program The Kure has compatabily issues..not sure though that is why I am here. Thank you for any help you could give ps at Idle the cpu runs 50% to 100%
 
Ran by Este (2016-07-23 00:27:59)
Running from C:\Users\Este\Downloads
Windows 7 Home Premium Service Pack 1 (X64) (2010-03-09 23:58:52)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-928187507-283903971-1354544283-500 - Administrator - Disabled)
Este (S-1-5-21-928187507-283903971-1354544283-1001 - Administrator - Enabled) => C:\Users\Este
Guest (S-1-5-21-928187507-283903971-1354544283-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-928187507-283903971-1354544283-1002 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB}
FW: McAfee Firewall (Enabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

3ivx MPEG-4 5.0.3 (remove only) (HKLM-x32\...\3ivx MPEG-4 5.0.3) (Version: 5.0.3 - 3ivx Technologies, Pty. Ltd.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
7-Zip 9.38 beta (HKLM-x32\...\7-Zip) (Version: - )
Acrobat.com (HKLM-x32\...\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 2.1.0.0 - Adobe Systems Incorporated)
Acrobat.com (x32 Version: 2.1.0 - Adobe Systems Incorporated) Hidden CameraHelperMsi (x32 Version: 13.50.854.0 - Logitech) Hidden
ccc-core-static (x32 Version: 2009.0614.2131.36800 - ATI) Hidden
ccc-core-static (x32 Version: 2009.0625.1812.30825 - ATI) Hidden
CenturyLink Help (HKLM-x32\...\CLink) (Version: - )
CenturyLink™ Game Player (HKLM-x32\...\CenturyLink™ Game Player) (Version: - )
Citrix Online Launcher (HKLM-x32\...\{09DA5EE2-7E46-4DC4-96F9-BFEE50D40659}) (Version: 1.0.408 - Citrix)
Creative ALchemy (HKLM-x32\...\ALchemy) (Version: 1.41 - Creative Technology Limited)
Creative Audio Control Panel (HKLM-x32\...\AudioCS) (Version: 3.00 - Creative Technology Limited)
Creative Diagnostics (HKLM-x32\...\Diagnostics 4_5) (Version: 5.11 - Creative Technology Limited)
Creative Media Toolbox 6 (HKLM-x32\...\{F1A14CB2-A048-45A6-AFDA-3571296E1D76}) (Version: 6.02 - Creative Technology Limited)
Creative Media Toolbox 6 (Shared Components) (HKLM-x32\...\Uninstaller_B4736000_Creative Media Toolbox 6) (Version: 2.80.12 - Creative Labs)
Creative MediaSource 5 (HKLM-x32\...\{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}) (Version: 5.26 - Creative Technology Limited)
Creative Software AutoUpdate (HKLM-x32\...\Creative Software AutoUpdate) (Version: 1.40 - Creative Technology Limited)
Creative Sound Blaster Properties x64 Edition (HKLM-x32\...\Creative Sound Blaster Properties x64 Edition) (Version: - Creative Technology Limited)
Creative WaveStudio 7 (HKLM-x32\...\WaveStudio 7) (Version: 7.12 - Creative Technology Limited)
Curse Client (HKU\S-1-5-21-928187507-283903971-1354544283-1001\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dell Data Vault (Version: 4.3.5.1 - Dell Inc.) Hidden
Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 9.4.60 - Dell)
Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.60 - Dell)
Dell DataSafe Online (HKLM-x32\...\{13766F76-6C8C-4E57-A9F3-3212D1C6E0D1}) (Version: 1.2.0011 - Dell, Inc.)
Dell Dock (HKLM\...\{E60B7350-EA5F-41E0-9D6F-E508781E36D2}) (Version: 2.0.0 - Dell)
Dell Driver Download Manager (HKU\S-1-5-21-928187507-283903971-1354544283-1001\...\f031ef6ac137efc5) (Version: 2.1.0.0 - Dell Inc.)
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Dell Getting Started Guide (HKLM-x32\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.)
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.1.6664.93 - Dell)
Dell SupportAssistAgent (HKLM-x32\...\{287348C8-8B47-4C36-AF28-441A3B7D8722}) (Version: 1.1.1.14 - Dell)
Dell System Detect (HKU\S-1-5-21-928187507-283903971-1354544283-1001\...\58d94f3ce2c27db0) (Version: 7.6.0.4 - Dell)
Diagnostic Utility (HKLM-x32\...\{7236672F-6430-439E-9B27-27EDEAF1D676}) (Version: 1.00.0000 - Realtek)
Diner Dash 5 - Boom! The Collector's Edition (x32 Version: 2.2.0.95 - WildTangent) Hidden
Disney Pirates of the Caribbean Online (HKLM-x32\...\Disney Pirates of the Caribbean Online) (Version: - Walt Disney Internet Group)
erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
Etch A Sketch (x32 Version: 2.2.0.95 - WildTangent) Hidden
Farm Frenzy 3 - Madagascar (x32 Version: 2.2.0.95 - WildTangent) Hidden
File Extension Finder (HKLM-x32\...\File Extension Finder) (Version: 1.0 - Deeds Media Ltd)
FlipShare (HKLM-x32\...\{0D3F9802-689F-9B6D-8E44-B55971F0CCBB}) (Version: 4.5.0.39816 - Flip Video)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
Host OpenAL (HKLM-x32\...\Host OpenAL) (Version: 1.00 - Creative Technology Limited)
Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LG USB Modem driver (HKLM-x32\...\{C3ABE126-2BB2-4246-BFE1-6797679B3579}) (Version: - )
Logitech Vid HD (HKLM-x32\...\Logitech Vid) (Version: 7.2 (7240) - Logitech Inc..)
Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.0 - Logitech Inc.)
LWS VideoEffects (Version: 13.30.1379.0 - Logitech) Hidden
McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 14.0.9029 - McAfee, Inc.)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.0.198 - McAfee, Inc.)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Age of Empires Gold (HKLM-x32\...\Age of Empires Gold 1.0) (Version: - )
Microsoft Combat Flight Simulator (HKLM-x32\...\Combat Flight Simulator 1.00) (Version: - )
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41105.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (HKLM-x32\...\{a0fe116e-9a8a-466f-aee0-625cb7c207e3}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{052bac4a-6f79-46d4-a024-1ce1b4f73cd4}) (Version: 8.0.58299 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
PowerDVD DX (HKLM-x32\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: 8.3.5424 - CyberLink Corp.)
Project Aftermath (x32 Version: 2.2.0.95 - WildTangent) Hidden
QualXServ Service Agreement (HKLM-x32\...\{903679E8-44C8-4C07-9600-05C92654FC50}) (Version: 2.0.0 - Dell Inc.)
Realtek 8136 8168 8169 Ethernet Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0005 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5864 - Realtek Semiconductor Corp.)
ROBLOX Player for Este (HKU\S-1-5-21-928187507-283903971-1354544283-1001\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation)
Roxio Burn (HKLM-x32\...\{B2E47DE7-800B-40BB-BD1F-9F221C3AEE87}) (Version: 1.01 - Roxio)
Skins (x32 Version: 2009.0614.2131.36800 - ATI) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.3.0.9150 - Microsoft Corporation)
Skype™ 7.24 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.)
Sound Blaster X-Fi (HKLM-x32\...\{C93170A0-CBF9-481F-B972-B4FA5AEE0E06}) (Version: 1.0 - Creative Technology Limited)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Kure (HKLM\...\{53DABA79-6C8C-46E3-A421-FBA214C65C49}) (Version: 1.0.15.0 - Centurion Technologies)
Unity Web Player (HKLM-x32\...\UnityWebPlayer) (Version: 2.5.5b4_50 - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WildTangent Games (HKLM-x32\...\WildTangent dell Master Uninstall) (Version: 1.0.1.5 - WildTangent)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live OneCare safety scanner (HKLM-x32\...\Windows Live OneCare safety scanner) (Version: - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)
Wizard101 (HKLM-x32\...\{A9E27FF5-6294-46A8-B8FD-77B1DECA3021}) (Version: 1.0.0 - KingsIsle Entertainment, Inc.)
World of Tanks - Common Test (HKU\S-1-5-21-928187507-283903971-1354544283-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812ct}_is1) (Version: - Wargaming.net)
World of Tanks (HKU\S-1-5-21-928187507-283903971-1354544283-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812na}_is1) (Version: - Wargaming.net)
World of Warplanes (HKU\S-1-5-21-928187507-283903971-1354544283-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C813na}_is1) (Version: - Wargaming.net)
World of Warships (HKU\S-1-5-21-928187507-283903971-1354544283-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814na}_is1) (Version: - Wargaming.net)
Yahoo! Software Update (HKLM-x32\...\Yahoo! Software Update) (Version: - )

======================= CUSTOM CLSID ( Whitelisted )

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {005C298C-8CEC-44C5-97FA-150EDE70419E} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe [2016-03-31] (McAfee, Inc.)
Task: {04720CB5-8018-46F1-B881-1DEA4CE093E0} - System32\Tasks\{03CA9D2C-FA8F-4C76-B9B5-00DB491A29CB} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {062DF74F-9ED4-410A-86F9-7BE7254AF871} - System32\Tasks\{AAF52E8D-3D50-4D6B-80FC-D4B70E9059B0} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {06AE1B12-2572-4C87-BBAC-068F1BC28664} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {099C0DEC-3E90-4D69-8245-7CB43C78A8A0} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2015-10-29] (PC-Doctor, Inc.)
Task: {09F43049-22E8-411A-B6C2-0A19773B6DEA} - System32\Tasks\McAfee\McAfee Idle Detection Task
Task: {09FAF84D-8260-44C0-A07C-05C92310FCF4} - System32\Tasks\{4DCB6C55-F260-43AE-8D66-53C4E6AB3140} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {0A2E1414-7424-4903-BA53-9138C07A6507} - System32\Tasks\Adobe online update program => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {0B6AFAAE-0E17-4F7A-9C9F-5CA70797B058} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [2016-04-23] (McAfee, Inc.)
Task: {0C4809D6-10FA-43BD-8D0C-B7C110D983C5} - System32\Tasks\{A7A4AD10-4813-4B6D-B248-151A69260E88} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {0D4E53C0-8556-4AC1-8604-FA53D3291C32} - System32\Tasks\{BB615F87-98BC-46C2-A978-54A8A4C694D0} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {0E86A3B8-2813-47A6-976B-D5C8118CEA2C} - System32\Tasks\{F26EF167-1FFF-41E6-AFFE-5F70DD697879} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {106E1390-5DF8-4F50-A005-D23C001D1982} - System32\Tasks\{BEDAB778-DEB5-4591-BC1B-4E09B21E6E75} => C:\Program Files (x86)\Norton Security\Engine64\22.2.0.31\uistub.exe
Task: {1099DE06-C7D9-4BF1-A8C5-6C2244B692CD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {10D2C92A-CD10-4F6F-B8E0-B4E80696D134} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe [2015-09-30] (Dell Inc.)
Task: {15A84E34-91DF-4673-AA20-37E0813C71B8} - System32\Tasks\{EA389543-DD77-45DD-B353-88D5A282608F} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {19EDD6BF-4C2B-4628-B23E-C81EB60365A0} - System32\Tasks\{F193953A-D536-4A78-80D8-036B0076363F} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {1C30E573-D6A8-4FA6-91D9-4B6C453FD1F4} - System32\Tasks\AdobeFlashPlayerUpdate 2 => C:\Windows\SysWOW64\FlashPlayerUpdateService.exe
Task: {21D34E55-3774-4912-8C15-E74C8EDBA909} - System32\Tasks\{FEE6C012-23F1-4444-B56B-960AC64CEC4F} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {243A9EB5-34EB-4013-B574-6AA3836B27C0} - System32\Tasks\{E06051D7-4BB5-4259-A356-A41A678FB9E2} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {293392A8-F594-472F-8E81-92339AAC25B6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-08] (Adobe Systems Incorporated)
Task: {2BCF0233-1232-4105-B876-A62E2C67898C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {2DC6B842-0685-499C-9366-E17D8FD68912} - System32\Tasks\{71971EEE-83D9-40B7-99B5-A69970387550} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> No File <==== ATTENTION
Task: {3A3732DE-B9B2-4B54-A513-369F382206BD} - System32\Tasks\{E1811883-B584-4285-A969-83D5FA3CCDE4} => C:\Program Files (x86)\Logitech\Vid HD\Vid.exe [2011-06-01] (Logitech Inc.)
Task: {3A3DED57-BF52-4775-9BC5-6228AEF496BC} - System32\Tasks\{CE1E7F17-3B45-4DF3-B6C4-570D860BA341} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {3AD517B4-045C-4DE8-81F6-80B85DFC4FA6} - System32\Tasks\{25D03816-1694-43A5-9331-ED6841E1AF65} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {3FDDCE4A-802D-4D5C-BCCD-83E814062DB3} - System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\54.0\mcdatrep.exe [2016-01-27] (McAfee, Inc.)
Task: {40553619-A21A-402A-AC83-E4CBBA9E2D54} - System32\Tasks\{1049A4B1-F2E4-4DC5-B3DA-E05BBB165716} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {4742B775-9C58-46B9-A211-2BEA7351586D} - System32\Tasks\{92C1255D-D498-45E4-A4B1-AD952C83073A} => pcalua.exe -a D:\Autorun.exe -d D:\
Task: {4C36A012-2C3E-4719-ABBA-98CF84BC9EA4} - System32\Tasks\{0AE0C0CE-E7C3-43B4-8055-04C42B728948} => pcalua.exe -a D:\eFilmLt.exe -d D:\
Task: {4EE16FEE-6E74-4781-BC94-8E575AFA7BBB} - System32\Tasks\{B25B0D0E-0CB3-457E-A1C1-F4307AD42AA6} => C:\Program Files (x86)\Norton Security\Engine64\22.2.0.31\uistub.exe
Task: {5985512A-A3BA-4C71-9DD6-8F6DE9E74AB1} - System32\Tasks\{04A8C221-5EF2-44D2-8BDE-26BAA22F2165} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {5EA90317-5DD0-4ACB-8E0B-C4CB6AFE129C} - System32\Tasks\{788D2240-73AF-4BB6-8DB3-AAB804221B6E} => pcalua.exe -a C:\Users\Este\AppData\Local\Temp\Low\{690FAE64-F446-4077-869F-50767019C7C8}\adobeshockwavextrabundle.exe -d C:\Users\Este\Desktop -c /xtrabundle=BC_SwaStrm
Task: {5F648562-A53A-4CDA-9929-02C258BD3C0A} - System32\Tasks\{21EA76A0-840B-4A18-A61E-416D520D15F6} => Chrome.exe
Task: {5F7D0FD4-DE1D-4B29-A208-A059810D34B9} - \Microsoft\Windows\Windows Activation Technologies\ValidationTask -> No File <==== ATTENTION
Task: {61EE0881-11A0-47BD-A448-584E24E617C1} - System32\Tasks\{0B44D1D4-141E-4B37-9C0C-148825ADCDF0} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {656A1EA5-2475-4031-935B-52692C6704E4} - System32\Tasks\{28D7010F-4005-42E3-BB20-D02661B75DEA} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {65BBC766-1F5C-4DBF-8A7F-F7928B2288AA} - System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\54.0\mcdatrep.exe [2016-01-27] (McAfee, Inc.)
Task: {6B60CCC2-24F4-43F6-8CA8-32A818854911} - System32\Tasks\{424A1996-12E3-41A1-94BF-9A63A556A378} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {6C87C143-365D-4A29-B172-B557D77F1A1E} - System32\Tasks\0 => Iexplore.exe <==== ATTENTION
Task: {6D5593C4-6E21-495A-BF25-14CC4FDDE719} - System32\Tasks\{3C4B110A-28B7-49D8-92ED-D1E0CF3D869F} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {723501B4-6DAB-4E52-ABAB-11623428540B} - System32\Tasks\{0348D94F-6335-4A0B-BB40-580C3AEBB288} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {76F5F72B-F667-49B9-ABE3-226B723EC9B8} - System32\Tasks\{554E38FB-7331-4F60-A146-E263F98378D7} => C:\Games\World_of_Tanks_CT\WoTLauncher.exe [2016-06-22] (Wargaming.net)
Task: {7838B7AA-6FEA-4CAC-9644-C48993160770} - System32\Tasks\AdobeFlashPlayerUpdate => C:\Windows\SysWOW64\FlashPlayerUpdateService.exe
Task: {78CC5ECA-EF51-4F39-986F-080C66F2E03B} - System32\Tasks\c9fd1e86-2144-42f2-8b17-1e3a483deb4f => C:\Program Files (x86)\Browsers App\ef29e16a-de42-47d5-8eae-ac0c572a9538-4.exe <==== ATTENTION
Task: {7F3ABE2E-48D8-4AF0-8481-E4C0238082C6} - System32\Tasks\{F79092F5-9D43-4A81-8D01-C809C8175B78} => Chrome.exe
Task: {7FC56B5B-E941-42A9-8416-6E5556F10236} - System32\Tasks\{8008E263-35EC-4824-8A6A-0529C9E47CC1} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {85B9C8FA-9F2C-47C3-9F5D-0512A36334D1} - System32\Tasks\{BFF5392F-4E31-4DA7-A170-A735AA5516EF} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {8613B187-6B1E-4B4A-A2C9-772EBA71AEB8} - System32\Tasks\{011D7FD6-1C31-4EB6-8D82-88A40BD01942} => C:\Games\World_of_Warplanes\WoWPLauncher.exe [2016-03-10] (Wargaming.net)
Task: {87870FBE-B0D4-48A1-B9C0-6C6095BBFCF6} - System32\Tasks\{C0A069ED-C3E1-4F21-8CDF-A808A7052F46} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {926F7DF5-1A59-40EA-AB21-7AB842057626} - System32\Tasks\{FF2D3DFD-5C65-4D87-8932-8EA430A4F70E} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {92A8B71C-09DE-4EBE-955F-921F57BD4CD3} - System32\Tasks\{52FA45CA-ED35-4E9A-B0FC-7A8DA2B215C4} => C:\Program Files\McAfee.com\Agent\mcagent.exe [2016-05-24] (McAfee, Inc.)
Task: {92C71F12-B321-4AD5-B90D-72A740C1C5A8} - System32\Tasks\GoogleUpdateTaskMachineCore1d134d2980791c3 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {9489E6FD-8DCF-44E1-9DCB-2188D52D9B44} - System32\Tasks\SpeedyPC Pro_sch_C41F7B77-3423-11E6-B865-002170609D8D => C:\Program Files (x86)\SpeedyPC Software\SpeedyPC\SpeedyPC.exe <==== ATTENTION
Task: {962A328E-8EE2-48FD-BDE1-A695A3C82FCA} - System32\Tasks\{9432B4B6-526B-4879-8E09-072A7F05928B} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {964CE271-265F-4E64-A84C-1896EEA7E0D5} - System32\Tasks\{835C5567-3D58-4F90-99EC-39D8D149BA71} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {971B4036-89DD-4438-ADBA-94C36D56362A} - System32\Tasks\{A2169528-CEEA-4826-91DA-B163CC282EAF} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {98E4F7F7-E98A-4364-96EC-1B2236125641} - System32\Tasks\{C5F91497-F0DC-4ABB-8155-E1B26FD6199F} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {994C86AD-A929-4B2C-88A0-4E25A107A029} - System32\Tasks\Microsoft\Windows\SystemRestore\SR => C:\Windows\system32\srtasks.exe
Task: {9AB97BE9-5A84-47EC-9C3D-29CC0C62A435} - System32\Tasks\4582 => Wscript.exe C:\Users\Este\AppData\Local\Temp\launchie.vbs //B <==== ATTENTION
Task: {A13BC289-EC7B-45C1-8058-1D0853FEF0E5} - System32\Tasks\{581CB816-7164-4BCE-89E4-7DE662E3FAB4} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {A6AF9377-77CE-47AB-AD7D-EC32CAD0C82D} - System32\Tasks\Microsoft\Windows\Location\Notifications => C:\Windows\System32\LocationNotificationWindows.exe
Task: {A6D71F6C-1312-40AF-B98D-E725529CC7EB} - System32\Tasks\{09B8C4E9-DA91-45AA-B17A-7970643E178C} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {ABAF5497-4286-42A7-96B1-421CB29A96B9} - System32\Tasks\{98F2AD8D-3E98-4E15-82D9-7F0A2F39327E} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
Task: {B1E2E46D-AD49-4801-92AC-0A2C1AE7075E} - System32\Tasks\{AE6F6D7C-F0B2-4468-A36A-5B326D2304C8} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {B29A43DB-792F-47B5-96A2-FCAA9314B207} - System32\Tasks\{CEE9CE82-187F-442E-8F9F-8CE62BA1B6F8} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {BB1123D9-7C86-46A8-8528-FCC2199002D9} - System32\Tasks\{50DDFAEF-F11F-4EA6-89E2-2F34FBB3F5F2} => C:\Program Files (x86)\Logitech\Vid HD\Vid.exe [2011-06-01] (Logitech Inc.)
Task: {BE76E240-D271-4D66-A494-5F658730AEC6} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_22_0_0_192_pepper.exe [2016-07-08] (Adobe Systems Incorporated)
Task: {BF0943B8-CBB9-44E7-BE9D-B93AE68C284C} - System32\Tasks\GoogleUpdateTaskMachineUA1d134d2994b4ce8 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {C158B7CB-9A6C-445B-90D1-EE66ED90FB4E} - System32\Tasks\{736A1F10-FFF3-49F3-BE53-69A2622EC70B} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {C2BDB71E-FAFF-404D-A08E-987B34D863CF} - System32\Tasks\{123B068F-6AC4-43C3-A1C0-CA2E424D9887} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {C5553AFE-F8D4-43D8-B7B3-41C6EEE83AB1} - System32\Tasks\{4F0C8E0D-68B8-4B63-B07D-60E93E56901E} => C:\Games\World_of_Tanks_CT\WoTLauncher.exe [2016-06-22] (Wargaming.net)
Task: {C674527C-A7E8-428B-BE90-B5C9B2E18A21} - System32\Tasks\{882CB533-51FF-4C8A-B36D-0C6FC99FC84E} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {C958B3B8-CBD6-48BD-98D1-92A3B5471636} - System32\Tasks\{6F771953-1B6C-401F-94F0-CA42C01645E5} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {CD95D8C0-0BF4-48A9-A814-B979D37B5C68} - System32\Tasks\{91851647-1DE4-43B6-9123-35E5C576B5C0} => pcalua.exe -a D:\setup.exe -d D:\
Task: {CDD8F285-AFA0-41E0-9341-48F8CB8B8440} - System32\Tasks\{9F6C43A2-0D1D-4BB3-A5F3-C55247DD47A8} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {CEE64558-E1A7-4D9D-80A7-2001912BE5B5} - \Microsoft\Windows\MemoryDiagnostic\CorruptionDetector -> No File <==== ATTENTION
Task: {D02627D7-32B4-43F2-92D8-1CED76A7F499} - System32\Tasks\{6E58A7E1-BE85-49D2-BA59-CED033F9AB21} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {D31013C4-ED1C-4ED0-8392-61C428916B72} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2015-10-29] (PC-Doctor, Inc.)
Task: {D33C7D13-6BA1-4C8B-95A5-48DF4CC29047} - System32\Tasks\{4D3EEC11-464D-4D64-AA5C-B09BAAF945F3} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {D46FC99A-54FC-4B5B-8810-17490C64311E} - System32\Tasks\{25297713-0454-43B3-B93F-31737B8FE98F} => C:\Games\World_of_Tanks\WoTLauncher.exe [2016-06-22] (Wargaming.net)
Task: {DCE54355-9BDA-4911-90CA-BA762C0957A4} - System32\Tasks\{B92D69D8-B24B-4597-BF88-7A5A3E2FFCD0} => Chrome.exe
Task: {E6400263-FB1A-4A5F-9FFF-95D75F72BF2D} - System32\Tasks\{8FB5E139-CEE9-467E-A294-A78C8CDAED33} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {E970DA8E-5635-4E9D-9221-8BD17996D306} - \Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline -> No File <==== ATTENTION
Task: {EB236272-BC25-436B-8682-614FBAC90051} - System32\Tasks\{5E70C3CE-EADE-44FD-AA93-0FD13D925E39} => Chrome.exe
Task: {F1B704B5-FA63-4A51-9182-0206B694D751} - System32\Tasks\{2E87F146-7EF3-4750-A429-61D91E855C35} => pcalua.exe -a D:\Launch.exe -d D:\
Task: {F482A90E-879A-4F7A-B80E-51AEEDD2E98B} - System32\Tasks\{A2FF0C06-20CC-43F4-BEEB-4F97F20DC801} => pcalua.exe -a "C:\Users\Este\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\34C1F15M\magicJackOutlookAddin[1].exe" -d C:\Users\Este\Desktop
Task: {F49E800C-77D8-4C66-83D4-6E027FC180FE} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe
Task: {F61FF103-4917-485B-BEC9-E170F0F540DD} - System32\Tasks\{0610FEC9-C2F4-4EA0-9C03-9CDA8032C46E} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {FA2BC0A6-8D4B-458A-85C8-2B8C72487513} - \Microsoft\Windows\MemoryDiagnostic\DecompressionFailureDetector -> No File <==== ATTENTION
Task: {FC0DD9FD-51C2-4E7C-BF0F-A7DD3090D17A} - System32\Tasks\{99E3A212-ECD5-4A52-BA98-0C18DC566573} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {FF7DB806-0050-45B8-9669-628E5B1CDA1C} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {005C298C-8CEC-44C5-97FA-150EDE70419E} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe [2016-03-31] (McAfee, Inc.)
Task: {04720CB5-8018-46F1-B881-1DEA4CE093E0} - System32\Tasks\{03CA9D2C-FA8F-4C76-B9B5-00DB491A29CB} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {062DF74F-9ED4-410A-86F9-7BE7254AF871} - System32\Tasks\{AAF52E8D-3D50-4D6B-80FC-D4B70E9059B0} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {06AE1B12-2572-4C87-BBAC-068F1BC28664} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {099C0DEC-3E90-4D69-8245-7CB43C78A8A0} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2015-10-29] (PC-Doctor, Inc.)
Task: {09F43049-22E8-411A-B6C2-0A19773B6DEA} - System32\Tasks\McAfee\McAfee Idle Detection Task
Task: {09FAF84D-8260-44C0-A07C-05C92310FCF4} - System32\Tasks\{4DCB6C55-F260-43AE-8D66-53C4E6AB3140} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {0A2E1414-7424-4903-BA53-9138C07A6507} - System32\Tasks\Adobe online update program => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {0B6AFAAE-0E17-4F7A-9C9F-5CA70797B058} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [2016-04-23] (McAfee, Inc.)
Task: {0C4809D6-10FA-43BD-8D0C-B7C110D983C5} - System32\Tasks\{A7A4AD10-4813-4B6D-B248-151A69260E88} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {0D4E53C0-8556-4AC1-8604-FA53D3291C32} - System32\Tasks\{BB615F87-98BC-46C2-A978-54A8A4C694D0} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {0E86A3B8-2813-47A6-976B-D5C8118CEA2C} - System32\Tasks\{F26EF167-1FFF-41E6-AFFE-5F70DD697879} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {106E1390-5DF8-4F50-A005-D23C001D1982} - System32\Tasks\{BEDAB778-DEB5-4591-BC1B-4E09B21E6E75} => C:\Program Files (x86)\Norton Security\Engine64\22.2.0.31\uistub.exe
Task: {1099DE06-C7D9-4BF1-A8C5-6C2244B692CD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {10D2C92A-CD10-4F6F-B8E0-B4E80696D134} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe [2015-09-30] (Dell Inc.)
Task: {15A84E34-91DF-4673-AA20-37E0813C71B8} - System32\Tasks\{EA389543-DD77-45DD-B353-88D5A282608F} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {19EDD6BF-4C2B-4628-B23E-C81EB60365A0} - System32\Tasks\{F193953A-D536-4A78-80D8-036B0076363F} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {1C30E573-D6A8-4FA6-91D9-4B6C453FD1F4} - System32\Tasks\AdobeFlashPlayerUpdate 2 => C:\Windows\SysWOW64\FlashPlayerUpdateService.exe
Task: {21D34E55-3774-4912-8C15-E74C8EDBA909} - System32\Tasks\{FEE6C012-23F1-4444-B56B-960AC64CEC4F} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {243A9EB5-34EB-4013-B574-6AA3836B27C0} - System32\Tasks\{E06051D7-4BB5-4259-A356-A41A678FB9E2} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {293392A8-F594-472F-8E81-92339AAC25B6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-08] (Adobe Systems Incorporated)
Task: {2BCF0233-1232-4105-B876-A62E2C67898C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {2DC6B842-0685-499C-9366-E17D8FD68912} - System32\Tasks\{71971EEE-83D9-40B7-99B5-A69970387550} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> No File <==== ATTENTION
Task: {3A3732DE-B9B2-4B54-A513-369F382206BD} - System32\Tasks\{E1811883-B584-4285-A969-83D5FA3CCDE4} => C:\Program Files (x86)\Logitech\Vid HD\Vid.exe [2011-06-01] (Logitech Inc.)
Task: {3A3DED57-BF52-4775-9BC5-6228AEF496BC} - System32\Tasks\{CE1E7F17-3B45-4DF3-B6C4-570D860BA341} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {3AD517B4-045C-4DE8-81F6-80B85DFC4FA6} - System32\Tasks\{25D03816-1694-43A5-9331-ED6841E1AF65} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {3FDDCE4A-802D-4D5C-BCCD-83E814062DB3} - System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\54.0\mcdatrep.exe [2016-01-27] (McAfee, Inc.)
Task: {40553619-A21A-402A-AC83-E4CBBA9E2D54} - System32\Tasks\{1049A4B1-F2E4-4DC5-B3DA-E05BBB165716} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {4742B775-9C58-46B9-A211-2BEA7351586D} - System32\Tasks\{92C1255D-D498-45E4-A4B1-AD952C83073A} => pcalua.exe -a D:\Autorun.exe -d D:\
Task: {4C36A012-2C3E-4719-ABBA-98CF84BC9EA4} - System32\Tasks\{0AE0C0CE-E7C3-43B4-8055-04C42B728948} => pcalua.exe -a D:\eFilmLt.exe -d D:\
Task: {4EE16FEE-6E74-4781-BC94-8E575AFA7BBB} - System32\Tasks\{B25B0D0E-0CB3-457E-A1C1-F4307AD42AA6} => C:\Program Files (x86)\Norton Security\Engine64\22.2.0.31\uistub.exe
Task: {5985512A-A3BA-4C71-9DD6-8F6DE9E74AB1} - System32\Tasks\{04A8C221-5EF2-44D2-8BDE-26BAA22F2165} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {5EA90317-5DD0-4ACB-8E0B-C4CB6AFE129C} - System32\Tasks\{788D2240-73AF-4BB6-8DB3-AAB804221B6E} => pcalua.exe -a C:\Users\Este\AppData\Local\Temp\Low\{690FAE64-F446-4077-869F-50767019C7C8}\adobeshockwavextrabundle.exe -d C:\Users\Este\Desktop -c /xtrabundle=BC_SwaStrm
Task: {5F648562-A53A-4CDA-9929-02C258BD3C0A} - System32\Tasks\{21EA76A0-840B-4A18-A61E-416D520D15F6} => Chrome.exe
Task: {5F7D0FD4-DE1D-4B29-A208-A059810D34B9} - \Microsoft\Windows\Windows Activation Technologies\ValidationTask -> No File <==== ATTENTION
Task: {61EE0881-11A0-47BD-A448-584E24E617C1} - System32\Tasks\{0B44D1D4-141E-4B37-9C0C-148825ADCDF0} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {656A1EA5-2475-4031-935B-52692C6704E4} - System32\Tasks\{28D7010F-4005-42E3-BB20-D02661B75DEA} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {65BBC766-1F5C-4DBF-8A7F-F7928B2288AA} - System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\54.0\mcdatrep.exe [2016-01-27] (McAfee, Inc.)
Task: {6B60CCC2-24F4-43F6-8CA8-32A818854911} - System32\Tasks\{424A1996-12E3-41A1-94BF-9A63A556A378} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {6C87C143-365D-4A29-B172-B557D77F1A1E} - System32\Tasks\0 => Iexplore.exe <==== ATTENTION
Task: {6D5593C4-6E21-495A-BF25-14CC4FDDE719} - System32\Tasks\{3C4B110A-28B7-49D8-92ED-D1E0CF3D869F} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {723501B4-6DAB-4E52-ABAB-11623428540B} - System32\Tasks\{0348D94F-6335-4A0B-BB40-580C3AEBB288} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {76F5F72B-F667-49B9-ABE3-226B723EC9B8} - System32\Tasks\{554E38FB-7331-4F60-A146-E263F98378D7} => C:\Games\World_of_Tanks_CT\WoTLauncher.exe [2016-06-22] (Wargaming.net)
Task: {7838B7AA-6FEA-4CAC-9644-C48993160770} - System32\Tasks\AdobeFlashPlayerUpdate => C:\Windows\SysWOW64\FlashPlayerUpdateService.exe
Task: {78CC5ECA-EF51-4F39-986F-080C66F2E03B} - System32\Tasks\c9fd1e86-2144-42f2-8b17-1e3a483deb4f => C:\Program Files (x86)\Browsers App\ef29e16a-de42-47d5-8eae-ac0c572a9538-4.exe <==== ATTENTION
Task: {7F3ABE2E-48D8-4AF0-8481-E4C0238082C6} - System32\Tasks\{F79092F5-9D43-4A81-8D01-C809C8175B78} => Chrome.exe
Task: {7FC56B5B-E941-42A9-8416-6E5556F10236} - System32\Tasks\{8008E263-35EC-4824-8A6A-0529C9E47CC1} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {85B9C8FA-9F2C-47C3-9F5D-0512A36334D1} - System32\Tasks\{BFF5392F-4E31-4DA7-A170-A735AA5516EF} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {8613B187-6B1E-4B4A-A2C9-772EBA71AEB8} - System32\Tasks\{011D7FD6-1C31-4EB6-8D82-88A40BD01942} => C:\Games\World_of_Warplanes\WoWPLauncher.exe [2016-03-10] (Wargaming.net)
Task: {87870FBE-B0D4-48A1-B9C0-6C6095BBFCF6} - System32\Tasks\{C0A069ED-C3E1-4F21-8CDF-A808A7052F46} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {926F7DF5-1A59-40EA-AB21-7AB842057626} - System32\Tasks\{FF2D3DFD-5C65-4D87-8932-8EA430A4F70E} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {92A8B71C-09DE-4EBE-955F-921F57BD4CD3} - System32\Tasks\{52FA45CA-ED35-4E9A-B0FC-7A8DA2B215C4} => C:\Program Files\McAfee.com\Agent\mcagent.exe [2016-05-24] (McAfee, Inc.)
Task: {92C71F12-B321-4AD5-B90D-72A740C1C5A8} - System32\Tasks\GoogleUpdateTaskMachineCore1d134d2980791c3 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {9489E6FD-8DCF-44E1-9DCB-2188D52D9B44} - System32\Tasks\SpeedyPC Pro_sch_C41F7B77-3423-11E6-B865-002170609D8D => C:\Program Files (x86)\SpeedyPC Software\SpeedyPC\SpeedyPC.exe <==== ATTENTION
Task: {962A328E-8EE2-48FD-BDE1-A695A3C82FCA} - System32\Tasks\{9432B4B6-526B-4879-8E09-072A7F05928B} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {964CE271-265F-4E64-A84C-1896EEA7E0D5} - System32\Tasks\{835C5567-3D58-4F90-99EC-39D8D149BA71} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {971B4036-89DD-4438-ADBA-94C36D56362A} - System32\Tasks\{A2169528-CEEA-4826-91DA-B163CC282EAF} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {98E4F7F7-E98A-4364-96EC-1B2236125641} - System32\Tasks\{C5F91497-F0DC-4ABB-8155-E1B26FD6199F} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {994C86AD-A929-4B2C-88A0-4E25A107A029} - System32\Tasks\Microsoft\Windows\SystemRestore\SR => C:\Windows\system32\srtasks.exe
Task: {9AB97BE9-5A84-47EC-9C3D-29CC0C62A435} - System32\Tasks\4582 => Wscript.exe C:\Users\Este\AppData\Local\Temp\launchie.vbs //B <==== ATTENTION
Task: {A13BC289-EC7B-45C1-8058-1D0853FEF0E5} - System32\Tasks\{581CB816-7164-4BCE-89E4-7DE662E3FAB4} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {A6AF9377-77CE-47AB-AD7D-EC32CAD0C82D} - System32\Tasks\Microsoft\Windows\Location\Notifications => C:\Windows\System32\LocationNotificationWindows.exe
Task: {A6D71F6C-1312-40AF-B98D-E725529CC7EB} - System32\Tasks\{09B8C4E9-DA91-45AA-B17A-7970643E178C} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {ABAF5497-4286-42A7-96B1-421CB29A96B9} - System32\Tasks\{98F2AD8D-3E98-4E15-82D9-7F0A2F39327E} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
Task: {B1E2E46D-AD49-4801-92AC-0A2C1AE7075E} - System32\Tasks\{AE6F6D7C-F0B2-4468-A36A-5B326D2304C8} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {B29A43DB-792F-47B5-96A2-FCAA9314B207} - System32\Tasks\{CEE9CE82-187F-442E-8F9F-8CE62BA1B6F8} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {BB1123D9-7C86-46A8-8528-FCC2199002D9} - System32\Tasks\{50DDFAEF-F11F-4EA6-89E2-2F34FBB3F5F2} => C:\Program Files (x86)\Logitech\Vid HD\Vid.exe [2011-06-01] (Logitech Inc.)
Task: {BE76E240-D271-4D66-A494-5F658730AEC6} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_22_0_0_192_pepper.exe [2016-07-08] (Adobe Systems Incorporated)
Task: {BF0943B8-CBB9-44E7-BE9D-B93AE68C284C} - System32\Tasks\GoogleUpdateTaskMachineUA1d134d2994b4ce8 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {C158B7CB-9A6C-445B-90D1-EE66ED90FB4E} - System32\Tasks\{736A1F10-FFF3-49F3-BE53-69A2622EC70B} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {C2BDB71E-FAFF-404D-A08E-987B34D863CF} - System32\Tasks\{123B068F-6AC4-43C3-A1C0-CA2E424D9887} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {C5553AFE-F8D4-43D8-B7B3-41C6EEE83AB1} - System32\Tasks\{4F0C8E0D-68B8-4B63-B07D-60E93E56901E} => C:\Games\World_of_Tanks_CT\WoTLauncher.exe [2016-06-22] (Wargaming.net)
Task: {C674527C-A7E8-428B-BE90-B5C9B2E18A21} - System32\Tasks\{882CB533-51FF-4C8A-B36D-0C6FC99FC84E} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {C958B3B8-CBD6-48BD-98D1-92A3B5471636} - System32\Tasks\{6F771953-1B6C-401F-94F0-CA42C01645E5} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {CD95D8C0-0BF4-48A9-A814-B979D37B5C68} - System32\Tasks\{91851647-1DE4-43B6-9123-35E5C576B5C0} => pcalua.exe -a D:\setup.exe -d D:\
Task: {CDD8F285-AFA0-41E0-9341-48F8CB8B8440} - System32\Tasks\{9F6C43A2-0D1D-4BB3-A5F3-C55247DD47A8} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {CEE64558-E1A7-4D9D-80A7-2001912BE5B5} - \Microsoft\Windows\MemoryDiagnostic\CorruptionDetector -> No File <==== ATTENTION
Task: {D02627D7-32B4-43F2-92D8-1CED76A7F499} - System32\Tasks\{6E58A7E1-BE85-49D2-BA59-CED033F9AB21} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {D31013C4-ED1C-4ED0-8392-61C428916B72} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2015-10-29] (PC-Doctor, Inc.)
Task: {D33C7D13-6BA1-4C8B-95A5-48DF4CC29047} - System32\Tasks\{4D3EEC11-464D-4D64-AA5C-B09BAAF945F3} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {D46FC99A-54FC-4B5B-8810-17490C64311E} - System32\Tasks\{25297713-0454-43B3-B93F-31737B8FE98F} => C:\Games\World_of_Tanks\WoTLauncher.exe [2016-06-22] (Wargaming.net)
Task: {DCE54355-9BDA-4911-90CA-BA762C0957A4} - System32\Tasks\{B92D69D8-B24B-4597-BF88-7A5A3E2FFCD0} => Chrome.exe
Task: {E6400263-FB1A-4A5F-9FFF-95D75F72BF2D} - System32\Tasks\{8FB5E139-CEE9-467E-A294-A78C8CDAED33} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {E970DA8E-5635-4E9D-9221-8BD17996D306} - \Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline -> No File <==== ATTENTION
Task: {EB236272-BC25-436B-8682-614FBAC90051} - System32\Tasks\{5E70C3CE-EADE-44FD-AA93-0FD13D925E39} => Chrome.exe
Task: {F1B704B5-FA63-4A51-9182-0206B694D751} - System32\Tasks\{2E87F146-7EF3-4750-A429-61D91E855C35} => pcalua.exe -a D:\Launch.exe -d D:\
Task: {F482A90E-879A-4F7A-B80E-51AEEDD2E98B} - System32\Tasks\{A2FF0C06-20CC-43F4-BEEB-4F97F20DC801} => pcalua.exe -a "C:\Users\Este\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\34C1F15M\magicJackOutlookAddin[1].exe" -d C:\Users\Este\Desktop
Task: {F49E800C-77D8-4C66-83D4-6E027FC180FE} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe
Task: {F61FF103-4917-485B-BEC9-E170F0F540DD} - System32\Tasks\{0610FEC9-C2F4-4EA0-9C03-9CDA8032C46E} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {FA2BC0A6-8D4B-458A-85C8-2B8C72487513} - \Microsoft\Windows\MemoryDiagnostic\DecompressionFailureDetector -> No File <==== ATTENTION
Task: {FC0DD9FD-51C2-4E7C-BF0F-A7DD3090D17A} - System32\Tasks\{99E3A212-ECD5-4A52-BA98-0C18DC566573} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {FF7DB806-0050-45B8-9669-628E5B1CDA1C} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {005C298C-8CEC-44C5-97FA-150EDE70419E} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe [2016-03-31] (McAfee, Inc.)
Task: {04720CB5-8018-46F1-B881-1DEA4CE093E0} - System32\Tasks\{03CA9D2C-FA8F-4C76-B9B5-00DB491A29CB} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {062DF74F-9ED4-410A-86F9-7BE7254AF871} - System32\Tasks\{AAF52E8D-3D50-4D6B-80FC-D4B70E9059B0} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {06AE1B12-2572-4C87-BBAC-068F1BC28664} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {099C0DEC-3E90-4D69-8245-7CB43C78A8A0} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2015-10-29] (PC-Doctor, Inc.)
Task: {09F43049-22E8-411A-B6C2-0A19773B6DEA} - System32\Tasks\McAfee\McAfee Idle Detection Task
Task: {09FAF84D-8260-44C0-A07C-05C92310FCF4} - System32\Tasks\{4DCB6C55-F260-43AE-8D66-53C4E6AB3140} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {0A2E1414-7424-4903-BA53-9138C07A6507} - System32\Tasks\Adobe online update program => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {0B6AFAAE-0E17-4F7A-9C9F-5CA70797B058} - System32\Tasks\McAfeeLogon => C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe [2016-04-23] (McAfee, Inc.)
Task: {0C4809D6-10FA-43BD-8D0C-B7C110D983C5} - System32\Tasks\{A7A4AD10-4813-4B6D-B248-151A69260E88} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {0D4E53C0-8556-4AC1-8604-FA53D3291C32} - System32\Tasks\{BB615F87-98BC-46C2-A978-54A8A4C694D0} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {0E86A3B8-2813-47A6-976B-D5C8118CEA2C} - System32\Tasks\{F26EF167-1FFF-41E6-AFFE-5F70DD697879} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {106E1390-5DF8-4F50-A005-D23C001D1982} - System32\Tasks\{BEDAB778-DEB5-4591-BC1B-4E09B21E6E75} => C:\Program Files (x86)\Norton Security\Engine64\22.2.0.31\uistub.exe
Task: {1099DE06-C7D9-4BF1-A8C5-6C2244B692CD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {10D2C92A-CD10-4F6F-B8E0-B4E80696D134} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe [2015-09-30] (Dell Inc.)
Task: {15A84E34-91DF-4673-AA20-37E0813C71B8} - System32\Tasks\{EA389543-DD77-45DD-B353-88D5A282608F} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {19EDD6BF-4C2B-4628-B23E-C81EB60365A0} - System32\Tasks\{F193953A-D536-4A78-80D8-036B0076363F} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {1C30E573-D6A8-4FA6-91D9-4B6C453FD1F4} - System32\Tasks\AdobeFlashPlayerUpdate 2 => C:\Windows\SysWOW64\FlashPlayerUpdateService.exe
Task: {21D34E55-3774-4912-8C15-E74C8EDBA909} - System32\Tasks\{FEE6C012-23F1-4444-B56B-960AC64CEC4F} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {243A9EB5-34EB-4013-B574-6AA3836B27C0} - System32\Tasks\{E06051D7-4BB5-4259-A356-A41A678FB9E2} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {293392A8-F594-472F-8E81-92339AAC25B6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-08] (Adobe Systems Incorporated)
Task: {2BCF0233-1232-4105-B876-A62E2C67898C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {2DC6B842-0685-499C-9366-E17D8FD68912} - System32\Tasks\{71971EEE-83D9-40B7-99B5-A69970387550} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> No File <==== ATTENTION
Task: {3A3732DE-B9B2-4B54-A513-369F382206BD} - System32\Tasks\{E1811883-B584-4285-A969-83D5FA3CCDE4} => C:\Program Files (x86)\Logitech\Vid HD\Vid.exe [2011-06-01] (Logitech Inc.)
Task: {3A3DED57-BF52-4775-9BC5-6228AEF496BC} - System32\Tasks\{CE1E7F17-3B45-4DF3-B6C4-570D860BA341} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {3AD517B4-045C-4DE8-81F6-80B85DFC4FA6} - System32\Tasks\{25D03816-1694-43A5-9331-ED6841E1AF65} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {3FDDCE4A-802D-4D5C-BCCD-83E814062DB3} - System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\54.0\mcdatrep.exe [2016-01-27] (McAfee, Inc.)
Task: {40553619-A21A-402A-AC83-E4CBBA9E2D54} - System32\Tasks\{1049A4B1-F2E4-4DC5-B3DA-E05BBB165716} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {4742B775-9C58-46B9-A211-2BEA7351586D} - System32\Tasks\{92C1255D-D498-45E4-A4B1-AD952C83073A} => pcalua.exe -a D:\Autorun.exe -d D:\
Task: {4C36A012-2C3E-4719-ABBA-98CF84BC9EA4} - System32\Tasks\{0AE0C0CE-E7C3-43B4-8055-04C42B728948} => pcalua.exe -a D:\eFilmLt.exe -d D:\
Task: {4EE16FEE-6E74-4781-BC94-8E575AFA7BBB} - System32\Tasks\{B25B0D0E-0CB3-457E-A1C1-F4307AD42AA6} => C:\Program Files (x86)\Norton Security\Engine64\22.2.0.31\uistub.exe
Task: {5985512A-A3BA-4C71-9DD6-8F6DE9E74AB1} - System32\Tasks\{04A8C221-5EF2-44D2-8BDE-26BAA22F2165} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {5EA90317-5DD0-4ACB-8E0B-C4CB6AFE129C} - System32\Tasks\{788D2240-73AF-4BB6-8DB3-AAB804221B6E} => pcalua.exe -a C:\Users\Este\AppData\Local\Temp\Low\{690FAE64-F446-4077-869F-50767019C7C8}\adobeshockwavextrabundle.exe -d C:\Users\Este\Desktop -c /xtrabundle=BC_SwaStrm
Task: {5F648562-A53A-4CDA-9929-02C258BD3C0A} - System32\Tasks\{21EA76A0-840B-4A18-A61E-416D520D15F6} => Chrome.exe
Task: {5F7D0FD4-DE1D-4B29-A208-A059810D34B9} - \Microsoft\Windows\Windows Activation Technologies\ValidationTask -> No File <==== ATTENTION
Task: {61EE0881-11A0-47BD-A448-584E24E617C1} - System32\Tasks\{0B44D1D4-141E-4B37-9C0C-148825ADCDF0} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {656A1EA5-2475-4031-935B-52692C6704E4} - System32\Tasks\{28D7010F-4005-42E3-BB20-D02661B75DEA} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {65BBC766-1F5C-4DBF-8A7F-F7928B2288AA} - System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse => C:\Program Files\Common Files\McAfee\AMContent\scanners\x86_64\datrep\54.0\mcdatrep.exe [2016-01-27] (McAfee, Inc.)
Task: {6B60CCC2-24F4-43F6-8CA8-32A818854911} - System32\Tasks\{424A1996-12E3-41A1-94BF-9A63A556A378} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {6C87C143-365D-4A29-B172-B557D77F1A1E} - System32\Tasks\0 => Iexplore.exe <==== ATTENTION
Task: {6D5593C4-6E21-495A-BF25-14CC4FDDE719} - System32\Tasks\{3C4B110A-28B7-49D8-92ED-D1E0CF3D869F} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {723501B4-6DAB-4E52-ABAB-11623428540B} - System32\Tasks\{0348D94F-6335-4A0B-BB40-580C3AEBB288} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {76F5F72B-F667-49B9-ABE3-226B723EC9B8} - System32\Tasks\{554E38FB-7331-4F60-A146-E263F98378D7} => C:\Games\World_of_Tanks_CT\WoTLauncher.exe [2016-06-22] (Wargaming.net)
Task: {7838B7AA-6FEA-4CAC-9644-C48993160770} - System32\Tasks\AdobeFlashPlayerUpdate => C:\Windows\SysWOW64\FlashPlayerUpdateService.exe
Task: {78CC5ECA-EF51-4F39-986F-080C66F2E03B} - System32\Tasks\c9fd1e86-2144-42f2-8b17-1e3a483deb4f => C:\Program Files (x86)\Browsers App\ef29e16a-de42-47d5-8eae-ac0c572a9538-4.exe <==== ATTENTION
Task: {7F3ABE2E-48D8-4AF0-8481-E4C0238082C6} - System32\Tasks\{F79092F5-9D43-4A81-8D01-C809C8175B78} => Chrome.exe
Task: {7FC56B5B-E941-42A9-8416-6E5556F10236} - System32\Tasks\{8008E263-35EC-4824-8A6A-0529C9E47CC1} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {85B9C8FA-9F2C-47C3-9F5D-0512A36334D1} - System32\Tasks\{BFF5392F-4E31-4DA7-A170-A735AA5516EF} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {8613B187-6B1E-4B4A-A2C9-772EBA71AEB8} - System32\Tasks\{011D7FD6-1C31-4EB6-8D82-88A40BD01942} => C:\Games\World_of_Warplanes\WoWPLauncher.exe [2016-03-10] (Wargaming.net)
Task: {87870FBE-B0D4-48A1-B9C0-6C6095BBFCF6} - System32\Tasks\{C0A069ED-C3E1-4F21-8CDF-A808A7052F46} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {926F7DF5-1A59-40EA-AB21-7AB842057626} - System32\Tasks\{FF2D3DFD-5C65-4D87-8932-8EA430A4F70E} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {92A8B71C-09DE-4EBE-955F-921F57BD4CD3} - System32\Tasks\{52FA45CA-ED35-4E9A-B0FC-7A8DA2B215C4} => C:\Program Files\McAfee.com\Agent\mcagent.exe [2016-05-24] (McAfee, Inc.)
Task: {92C71F12-B321-4AD5-B90D-72A740C1C5A8} - System32\Tasks\GoogleUpdateTaskMachineCore1d134d2980791c3 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {9489E6FD-8DCF-44E1-9DCB-2188D52D9B44} - System32\Tasks\SpeedyPC Pro_sch_C41F7B77-3423-11E6-B865-002170609D8D => C:\Program Files (x86)\SpeedyPC Software\SpeedyPC\SpeedyPC.exe <==== ATTENTION
Task: {962A328E-8EE2-48FD-BDE1-A695A3C82FCA} - System32\Tasks\{9432B4B6-526B-4879-8E09-072A7F05928B} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {964CE271-265F-4E64-A84C-1896EEA7E0D5} - System32\Tasks\{835C5567-3D58-4F90-99EC-39D8D149BA71} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {971B4036-89DD-4438-ADBA-94C36D56362A} - System32\Tasks\{A2169528-CEEA-4826-91DA-B163CC282EAF} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {98E4F7F7-E98A-4364-96EC-1B2236125641} - System32\Tasks\{C5F91497-F0DC-4ABB-8155-E1B26FD6199F} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {994C86AD-A929-4B2C-88A0-4E25A107A029} - System32\Tasks\Microsoft\Windows\SystemRestore\SR => C:\Windows\system32\srtasks.exe
Task: {9AB97BE9-5A84-47EC-9C3D-29CC0C62A435} - System32\Tasks\4582 => Wscript.exe C:\Users\Este\AppData\Local\Temp\launchie.vbs //B <==== ATTENTION
Task: {A13BC289-EC7B-45C1-8058-1D0853FEF0E5} - System32\Tasks\{581CB816-7164-4BCE-89E4-7DE662E3FAB4} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {A6AF9377-77CE-47AB-AD7D-EC32CAD0C82D} - System32\Tasks\Microsoft\Windows\Location\Notifications => C:\Windows\System32\LocationNotificationWindows.exe
Task: {A6D71F6C-1312-40AF-B98D-E725529CC7EB} - System32\Tasks\{09B8C4E9-DA91-45AA-B17A-7970643E178C} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {ABAF5497-4286-42A7-96B1-421CB29A96B9} - System32\Tasks\{98F2AD8D-3E98-4E15-82D9-7F0A2F39327E} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - \Microsoft\Windows\Application Experience\AitAgent -> No File <==== ATTENTION
Task: {B1E2E46D-AD49-4801-92AC-0A2C1AE7075E} - System32\Tasks\{AE6F6D7C-F0B2-4468-A36A-5B326D2304C8} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {B29A43DB-792F-47B5-96A2-FCAA9314B207} - System32\Tasks\{CEE9CE82-187F-442E-8F9F-8CE62BA1B6F8} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {BB1123D9-7C86-46A8-8528-FCC2199002D9} - System32\Tasks\{50DDFAEF-F11F-4EA6-89E2-2F34FBB3F5F2} => C:\Program Files (x86)\Logitech\Vid HD\Vid.exe [2011-06-01] (Logitech Inc.)
Task: {BE76E240-D271-4D66-A494-5F658730AEC6} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_22_0_0_192_pepper.exe [2016-07-08] (Adobe Systems Incorporated)
Task: {BF0943B8-CBB9-44E7-BE9D-B93AE68C284C} - System32\Tasks\GoogleUpdateTaskMachineUA1d134d2994b4ce8 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {C158B7CB-9A6C-445B-90D1-EE66ED90FB4E} - System32\Tasks\{736A1F10-FFF3-49F3-BE53-69A2622EC70B} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {C2BDB71E-FAFF-404D-A08E-987B34D863CF} - System32\Tasks\{123B068F-6AC4-43C3-A1C0-CA2E424D9887} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {C5553AFE-F8D4-43D8-B7B3-41C6EEE83AB1} - System32\Tasks\{4F0C8E0D-68B8-4B63-B07D-60E93E56901E} => C:\Games\World_of_Tanks_CT\WoTLauncher.exe [2016-06-22] (Wargaming.net)
Task: {C674527C-A7E8-428B-BE90-B5C9B2E18A21} - System32\Tasks\{882CB533-51FF-4C8A-B36D-0C6FC99FC84E} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {C958B3B8-CBD6-48BD-98D1-92A3B5471636} - System32\Tasks\{6F771953-1B6C-401F-94F0-CA42C01645E5} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {CD95D8C0-0BF4-48A9-A814-B979D37B5C68} - System32\Tasks\{91851647-1DE4-43B6-9123-35E5C576B5C0} => pcalua.exe -a D:\setup.exe -d D:\
Task: {CDD8F285-AFA0-41E0-9341-48F8CB8B8440} - System32\Tasks\{9F6C43A2-0D1D-4BB3-A5F3-C55247DD47A8} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {CEE64558-E1A7-4D9D-80A7-2001912BE5B5} - \Microsoft\Windows\MemoryDiagnostic\CorruptionDetector -> No File <==== ATTENTION
Task: {D02627D7-32B4-43F2-92D8-1CED76A7F499} - System32\Tasks\{6E58A7E1-BE85-49D2-BA59-CED033F9AB21} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {D31013C4-ED1C-4ED0-8392-61C428916B72} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2015-10-29] (PC-Doctor, Inc.)
Task: {D33C7D13-6BA1-4C8B-95A5-48DF4CC29047} - System32\Tasks\{4D3EEC11-464D-4D64-AA5C-B09BAAF945F3} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {D46FC99A-54FC-4B5B-8810-17490C64311E} - System32\Tasks\{25297713-0454-43B3-B93F-31737B8FE98F} => C:\Games\World_of_Tanks\WoTLauncher.exe [2016-06-22] (Wargaming.net)
Task: {DCE54355-9BDA-4911-90CA-BA762C0957A4} - System32\Tasks\{B92D69D8-B24B-4597-BF88-7A5A3E2FFCD0} => Chrome.exe
Task: {E6400263-FB1A-4A5F-9FFF-95D75F72BF2D} - System32\Tasks\{8FB5E139-CEE9-467E-A294-A78C8CDAED33} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {E970DA8E-5635-4E9D-9221-8BD17996D306} - \Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline -> No File <==== ATTENTION
Task: {EB236272-BC25-436B-8682-614FBAC90051} - System32\Tasks\{5E70C3CE-EADE-44FD-AA93-0FD13D925E39} => Chrome.exe
Task: {F1B704B5-FA63-4A51-9182-0206B694D751} - System32\Tasks\{2E87F146-7EF3-4750-A429-61D91E855C35} => pcalua.exe -a D:\Launch.exe -d D:\
Task: {F482A90E-879A-4F7A-B80E-51AEEDD2E98B} - System32\Tasks\{A2FF0C06-20CC-43F4-BEEB-4F97F20DC801} => pcalua.exe -a "C:\Users\Este\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\34C1F15M\magicJackOutlookAddin[1].exe" -d C:\Users\Este\Desktop
Task: {F49E800C-77D8-4C66-83D4-6E027FC180FE} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe
Task: {F61FF103-4917-485B-BEC9-E170F0F540DD} - System32\Tasks\{0610FEC9-C2F4-4EA0-9C03-9CDA8032C46E} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {FA2BC0A6-8D4B-458A-85C8-2B8C72487513} - \Microsoft\Windows\MemoryDiagnostic\DecompressionFailureDetector -> No File <==== ATTENTION
Task: {FC0DD9FD-51C2-4E7C-BF0F-A7DD3090D17A} - System32\Tasks\{99E3A212-ECD5-4A52-BA98-0C18DC566573} => C:\Program Files (x86)\SpyZooka\spyzookaldr.exe
Task: {FF7DB806-0050-45B8-9669-628E5B1CDA1C} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
 
( If an entry is icluded in the fixlist, the task ( .job ) file will be moved
The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_22_0_0_192_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\c9fd1e86-2144-42f2-8b17-1e3a483deb4f.job => C:\Program Files (x86)\Browsers App\ef29e16a-de42-47d5-8eae-ac0c572a9538-4.exe <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d134d2980791c3.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d134d2994b4ce8.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\SpeedyPC Pro_sch_C41F7B77-3423-11E6-B865-002170609D8D.job => C:\Program Files (x86)\SpeedyPC Software\SpeedyPC\SpeedyPC.exe <==== ATTENTION

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\Este\AppData\Local\Microsoft\Windows\GameExplorer\{D95F5543-67A4-42AA-A720-23C63FED2015}\SupportTasks\1\Support.lnk -> hxxp://www.microsoft.com/games/
Shortcut: C:\Users\Este\AppData\Local\Microsoft\Windows\GameExplorer\{D95F5543-67A4-42AA-A720-23C63FED2015}\SupportTasks\0\More Games from Microsoft.lnk -> hxxp://www.microsoft.com/games/combatfs1/
Shortcut: C:\Users\Este\AppData\Local\Microsoft\Windows\GameExplorer\{CBFCD542-4374-4656-A3E1-045A13AEE05E}\SupportTasks\1\Support.lnk -> hxxp://www.activision.com/support/
Shortcut: C:\Users\Este\AppData\Local\Microsoft\Windows\GameExplorer\{CBFCD542-4374-4656-A3E1-045A13AEE05E}\SupportTasks\0\More Games from Microsoft.lnk -> hxxp://www.callofduty.com/
Shortcut: C:\Users\Este\AppData\Local\Microsoft\Windows\GameExplorer\{8A5DB015-7C6F-465B-A488-D4E786612546}\SupportTasks\1\Support.lnk -> hxxp://support.microsoft.com/directory/
Shortcut: C:\Users\Este\AppData\Local\Microsoft\Windows\GameExplorer\{8A5DB015-7C6F-465B-A488-D4E786612546}\SupportTasks\0\More Games from Microsoft.lnk -> hxxp://www.microsoft.com/games/empires/
Shortcut: C:\Users\Este\AppData\Local\Microsoft\Windows\GameExplorer\{48F878A5-6C2E-427E-8DF8-B78E99080EB2}\SupportTasks\1\Support.lnk -> hxxp://www.groovegames.com/
Shortcut: C:\Users\Este\AppData\Local\Microsoft\Windows\GameExplorer\{48F878A5-6C2E-427E-8DF8-B78E99080EB2}\SupportTasks\0\More Games from Microsoft.lnk -> hxxp://www.jarheadgames.com/games_sniper.html/
Shortcut: C:\Users\Este\AppData\Local\Microsoft\Windows\GameExplorer\{30ae8059-d8ad-49c8-8d4f-7ce01ccdd9c2}\SupportTasks\0\More Games.lnk -> hxxp://dell.wildgames.com/?dp=dellc&mc=gameexplorer_support

==================== Loaded Modules (Whitelisted) ==============

2010-12-15 14:31 - 2009-06-04 18:41 - 00451904 _____ () C:\Program Files (x86)\Flip Video\FlipShare\FlipShareService.exe
2010-03-05 20:34 - 2011-08-18 11:05 - 02751808 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
2010-10-26 00:06 - 2009-06-04 18:37 - 01581056 _____ () C:\Program Files (x86)\Flip Video\FlipShare\QtCore4.dll
2016-06-17 20:28 - 2016-06-15 05:15 - 01745560 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libglesv2.dll
2016-06-17 20:28 - 2016-06-15 05:15 - 00091288 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libegl.dll
2016-07-13 13:25 - 2016-07-06 18:01 - 17602240 _____ () C:\Users\Este\AppData\Local\Google\Chrome\User Data\PepperFlash\22.0.0.209\pepflashplayer.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:373E1720 [134]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcapexe => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McNaiAnn => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-928187507-283903971-1354544283-1001\...\dell.com -> dell.com

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 22:34 - 2016-03-10 00:25 - 00000008 ____A C:\Windows\system32\Drivers\etc\hosts



==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-928187507-283903971-1354544283-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Este\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1 - 205.171.2.226
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{DB95ABFF-604B-4717-9A67-FB94E3955068}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD DX\PowerDVD.exe
FirewallRules: [{ED34ACDF-CC7B-440A-A97E-F16F0CDB9F30}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
FirewallRules: [{C961AADD-2593-455E-BD47-D7C023C66C70}] => (Allow) C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [{AC11CAF2-0884-49BF-BB21-B84DD0B6AD11}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{1B0EA249-1739-4B27-B391-F8C89F1B0D0B}] => (Allow) LPort=2869
FirewallRules: [{43225217-E677-47BF-9E9C-83FD9012BDD1}] => (Allow) LPort=1900
FirewallRules: [{4DC738B2-9B87-4A48-8F9A-3EB3B077F36E}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{0D350AEA-CC36-43E6-92D7-A88E07D298E2}] => (Allow) C:\Program Files (x86)\Logitech\Vid HD\Vid.exe
FirewallRules: [{7A942D43-4665-48F7-9094-FEFAF4C62BBB}] => (Allow) C:\Program Files (x86)\Logitech\Vid HD\Vid.exe
FirewallRules: [{A214EE01-242C-4103-A5AC-D889F300B75E}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{FC8DEA4D-623A-4C2A-950A-64C2D0B21428}] => (Allow) C:\Games\World_of_Tanks\WOTLauncher.exe
FirewallRules: [{C33B582B-0902-4165-8976-C7473DFFE7CE}] => (Allow) C:\Games\World_of_Tanks\WOTLauncher.exe
FirewallRules: [TCP Query User{1532CA72-EE54-4EE5-B67C-28323560BA42}C:\program files (x86)\logitech\vid hd\vid.exe] => (Block) C:\program files (x86)\logitech\vid hd\vid.exe
FirewallRules: [UDP Query User{93ED2F02-08C0-4023-9955-4B1130E6C903}C:\program files (x86)\logitech\vid hd\vid.exe] => (Block) C:\program files (x86)\logitech\vid hd\vid.exe
FirewallRules: [TCP Query User{A8774423-DDEE-4C35-8608-317241B504DA}C:\games\world_of_warplanes\wowplauncher.exe] => (Allow) C:\games\world_of_warplanes\wowplauncher.exe
FirewallRules: [UDP Query User{1C840D05-CB0F-4ABF-934E-9908EEE825AF}C:\games\world_of_warplanes\wowplauncher.exe] => (Allow) C:\games\world_of_warplanes\wowplauncher.exe
FirewallRules: [{3C1C4090-413D-4CC9-AA96-9613C4D3C79C}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{26653445-FFF8-445F-93FC-B2091B0B3498}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{0D984717-F64C-4876-B5D5-F576E76E5FCA}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{2F1C1202-EA71-4422-8E56-51E83F055DC2}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{F7C9358C-B6EE-43AA-AA31-D4CFFE8D3F15}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{6DED4CA4-5621-459F-BAEC-A5603A79552E}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{8AE834E4-F038-4DB9-BD49-D0443775DA05}] => (Allow) C:\Games\World_of_Warships\WoWSLauncher.exe
FirewallRules: [{11CA67F5-1537-4CD6-A727-097806FED74F}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe
FirewallRules: [{1FA9630C-07B6-41BF-96E8-30178E434FE4}] => (Allow) C:\Games\World_of_Warships\worldofwarships.exe
FirewallRules: [{7FC9DE17-B895-4490-AB6E-A89477644392}] => (Allow) C:\Games\World_of_Tanks_CT\WoTLauncher.exe
FirewallRules: [{A5FA8614-91EF-425A-A6E5-54647CAF2BE9}] => (Allow) C:\Games\World_of_Tanks_CT\WoTLauncher.exe
FirewallRules: [{F3EAC32D-1E9A-417B-8B43-12BB88C0A6A7}] => (Allow) C:\Games\World_of_Tanks_CT\worldoftanks.exe
FirewallRules: [{F13EADF0-2415-4F59-9CE1-903BB87C5476}] => (Allow) C:\Games\World_of_Tanks_CT\worldoftanks.exe
FirewallRules: [{153B8E7A-7BEB-4836-80A2-2DCE6E197FD9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{B5796A8B-DAA2-40CA-98CE-4056E7279540}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{837154FB-3A88-4728-8406-4F719D75C961}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{CC757C53-609C-49DB-A21A-BF1B2A674B3E}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{2FAAEAE3-E0A7-47CE-BD9D-B61D6C4C5CA6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{29E22C35-4E38-43D6-805D-F5836DC668A6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe
FirewallRules: [{A5C7F86D-F125-4A27-9254-9395944F895E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

22-07-2016 14:44:36 7/22/16
22-07-2016 23:43:09 MyCleanPCPCOptimizer_BeforeFixingIssues

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (07/22/2016 04:42:39 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program worldoftanks.exe version 0.9.15.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: da0

Start Time: 01d1e4593ccfb2f4

Termination Time: 70

Application Path: C:\Games\World_of_Tanks\worldoftanks.exe

Report Id:

Error: (07/22/2016 03:30:58 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.

Error: (07/21/2016 10:13:16 PM) (Source: DataSafe.exe) (EventID: 0) (User: )
Description: Recovery Environment incorrect, file 'C:\dell\Image\Factory.wim' missing

Error: (07/21/2016 10:11:43 PM) (Source: DataSafe.exe) (EventID: 0) (User: )
Description: Recovery Environment incorrect, file 'C:\dell\Image\Factory.wim' missing

Error: (07/21/2016 08:33:10 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: The Windows Search Service is being stopped because there is a problem with the indexer: The catalog is corrupt.

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/21/2016 08:33:10 PM) (Source: Windows Search Service) (EventID: 7040) (User: )
Description: The search service has detected corrupted data files in the index {id=4400}. The service will attempt to automatically correct this problem by rebuilding the index.

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/21/2016 08:33:10 PM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: The index cannot be initialized.

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/21/2016 08:33:10 PM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: The application cannot be initialized.

Context: Windows Application

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/21/2016 08:33:10 PM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: The gatherer object cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
The content index catalog is corrupt. (HRESULT : 0xc0041801) (0xc0041801)

Error: (07/21/2016 08:33:10 PM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.

Context: Windows Application, SystemIndex Catalog

Details:
Element not found. (HRESULT : 0x80070490) (0x80070490)


System errors:
=============
Error: (07/23/2016 12:20:26 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The PDFsFilter service failed to start due to the following error:
%%2 = The system cannot find the file specified.


Error: (07/22/2016 10:38:12 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the FlipShare Service service.

Error: (07/22/2016 09:38:20 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the FlipShare Service service.

Error: (07/22/2016 07:38:17 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the UMVPFSrv service.

Error: (07/22/2016 05:38:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The PDFsFilter service failed to start due to the following error:
%%2 = The system cannot find the file specified.


Error: (07/22/2016 04:36:01 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The PDFsFilter service failed to start due to the following error:
%%2 = The system cannot find the file specified.


Error: (07/22/2016 02:13:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The PDFsFilter service failed to start due to the following error:
%%2 = The system cannot find the file specified.


Error: (07/22/2016 11:23:40 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The PDFsFilter service failed to start due to the following error:
%%2 = The system cannot find the file specified.


Error: (07/22/2016 04:04:13 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.

Error: (07/22/2016 03:53:18 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.


CodeIntegrity:
===================================
Date: 2016-07-22 14:08:44.561
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\Este\AppData\Roaming\The Kure\The Kure 2.0.0.0\install\A0BAC80\Other\Zalsdk\32\hitmanpro.exe because the set of per-page image hashes could not be found on the system.

Date: 2016-07-22 14:08:44.293
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\Este\AppData\Roaming\The Kure\The Kure 2.0.0.0\install\A0BAC80\Other\Zalsdk\32\hitmanpro.exe because the set of per-page image hashes could not be found on the system.

Date: 2016-07-22 14:08:44.044
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\Este\AppData\Roaming\The Kure\The Kure 2.0.0.0\install\A0BAC80\Other\Zalsdk\32\hitmanpro.exe because the set of per-page image hashes could not be found on the system.

Date: 2016-06-03 16:42:49.808
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\Este\AppData\Roaming\The Kure\The Kure 2.0.0.0\install\A0BAC80\Other\Zalsdk\32\hitmanpro.exe because the set of per-page image hashes could not be found on the system.

Date: 2016-06-03 16:42:49.558
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\Este\AppData\Roaming\The Kure\The Kure 2.0.0.0\install\A0BAC80\Other\Zalsdk\32\hitmanpro.exe because the set of per-page image hashes could not be found on the system.

Date: 2016-06-03 16:42:49.324
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\Este\AppData\Roaming\The Kure\The Kure 2.0.0.0\install\A0BAC80\Other\Zalsdk\32\hitmanpro.exe because the set of per-page image hashes could not be found on the system.

Date: 2016-05-13 11:01:35.069
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\Este\AppData\Roaming\The Kure\The Kure 2.0.0.0\install\A0BAC80\Other\Zalsdk\32\hitmanpro.exe because the set of per-page image hashes could not be found on the system.

Date: 2016-05-13 11:01:34.780
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\Este\AppData\Roaming\The Kure\The Kure 2.0.0.0\install\A0BAC80\Other\Zalsdk\32\hitmanpro.exe because the set of per-page image hashes could not be found on the system.

Date: 2016-05-13 11:01:34.496
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\Este\AppData\Roaming\The Kure\The Kure 2.0.0.0\install\A0BAC80\Other\Zalsdk\32\hitmanpro.exe because the set of per-page image hashes could not be found on the system.

Date: 2016-04-22 10:55:40.450
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\Este\AppData\Roaming\The Kure\The Kure 2.0.0.0\install\A0BAC80\Other\Zalsdk\32\hitmanpro.exe because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Pentium(R) Dual-Core CPU E5400 @ 2.70GHz
Percentage of memory in use: 38%
Total physical RAM: 6143.18 MB
Available physical RAM: 3765.77 MB
Total Virtual: 6791.36 MB
Available Virtual: 3982.77 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:687.88 GB) (Free:455.1 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: B8000000)
Partition 1: (Not Active) - (Size=71 MB) - (Type=DE)
Partition 2: (Active) - (Size=10.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=687.9 GB) - (Type=07 NTFS)
 
You must log in or register to reply here.

Similar threads

uber_beetle
Infected with fake ad pop-ups - posting FRST and Addition
Replies
12
Views
785
uber_beetle
uber_beetle
E
Solved Svchost.exe launching multiple iexplore.exe - unknown cause
Replies
23
Views
3K
Broni
Broni
wshknwntlprtmn
  • Locked
Inactive Not sure what's going on here....
Replies
12
Views
2K
Broni
Broni

Latest posts

Back