Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24-01-2015 01 Ran by Clockwork at 2015-01-25 16:23:19 Running from C:\Users\Clockwork\Downloads Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-1414089619-1553986795-2700891581-1000\...\uTorrent) (Version: 3.4.2.37594 - BitTorrent Inc.) Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.223 - Adobe Systems Incorporated) Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.257 - Adobe Systems Incorporated) Archeage (HKLM-x32\...\Glyph Archeage) (Version: - Trion Worlds, Inc.) Arma 2 (HKLM-x32\...\Steam App 33900) (Version: - Bohemia Interactive) Arma 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version: - Bohemia Interactive) BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version: - ) BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version: - ) CCleaner (HKLM\...\CCleaner) (Version: 4.19 - Piriform) DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd) Divinity: Original Sin (HKLM-x32\...\Steam App 230230) (Version: - Larian Studios) DivX H.264 decoder 8.2.0.26 (HKLM-x32\...\divxh264_is1) (Version: 8.2.0.26 - ) Epson Customer Participation (HKLM\...\{814FA673-A085-403C-9545-747FC1495069}) (Version: 1.0.0.0 - SEIKO EPSON CORPORATION) Epson Event Manager (HKLM-x32\...\{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}) (Version: 2.50.0000 - SEIKO EPSON CORPORATION) EPSON NX230 Series Printer Uninstall (HKLM\...\EPSON NX230 Series) (Version: - SEIKO EPSON Corporation) EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation) EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j - SEIKO EPSON CORPORATION) Glyph (HKLM-x32\...\Glyph) (Version: - Trion Worlds, Inc.) Java 8 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation) Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation) Killing Floor - Toy Master (HKLM-x32\...\Steam App 326960) (Version: - David Hensley) Killing Floor (HKLM-x32\...\Steam App 1250) (Version: - Tripwire Interactive) Logitech Gaming Software 8.57 (HKLM\...\Logitech Gaming Software) (Version: 8.57.145 - Logitech Inc.) Lost Planet: Extreme Condition (HKLM-x32\...\Steam App 6510) (Version: - CAPCOM Co., Ltd.) Magicite (HKLM-x32\...\Steam App 268750) (Version: - SmashGames) MechWarrior Online (HKLM-x32\...\{9f17023b-d04f-432b-b08a-3bb4c3a7ed3c}) (Version: 1.6.0.0 - Piranha Games Inc.) MechWarrior Online (x32 Version: 1.6.1.0 - Piranha Games Inc.) Hidden Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation) Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.60310.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Mozilla Firefox 35.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 35.0 (x86 en-US)) (Version: 35.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 31.2.0 - Mozilla) Mozilla Thunderbird 31.4.0 (x86 en-US) (HKLM-x32\...\Mozilla Thunderbird 31.4.0 (x86 en-US)) (Version: 31.4.0 - Mozilla) MPC-HC 1.7.7 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.7 - MPC-HC Team) NVIDIA Graphics Driver 307.83 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 307.83 - NVIDIA Corporation) NVIDIA PhysX System Software 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation) Rust (HKLM-x32\...\Steam App 252490) (Version: - Facepunch Studios) Search Module Plus (HKLM-x32\...\Search Module Plus) (Version: - Goobzo) Skype™ 6.22 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.22.105 - Skype Technologies S.A.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Sunrider: Mask of Arcadius (HKLM-x32\...\Steam App 313730) (Version: - Love in Space) Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) TeamTalk 4 (HKLM\...\TeamTalk4_is1) (Version: - BearWare.dk) TeraCopy 2.3 (HKLM\...\TeraCopy_is1) (Version: - Code Sector) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN) WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH) XSplit Broadcaster (HKLM-x32\...\{6BC12A2C-6B3D-4158-ACCE-C3602F7C6CF3}) (Version: 2.0.1411.1039 - SplitmediaLabs) ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) ==================== Restore Points ========================= ATTENTION: System Restore is disabled. ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-13 18:34 - 2009-06-10 13:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {06B5E59C-DD08-4E4D-800E-2A992E1FE96F} - System32\Tasks\{D404FC82-2E27-42B2-B277-E7474FDB76C1} => pcalua.exe -a "C:\Users\Clockwork\Desktop\SAVE ME\evac 11-14-14\drivers\win7-64\CPSetup.exe" -d "C:\Users\Clockwork\Desktop\SAVE ME\evac 11-14-14\drivers\win7-64" Task: {0A70A148-5C98-42B7-A476-461902DBAFA7} - System32\Tasks\PastaLeads => C:\Program Files (x86)\pastaleads\ScheduledTask.exe Task: {2FC2E3C6-31F9-4BF1-93EB-F551BC921673} - System32\Tasks\Microsoft\Windows\Multimedia\SMupdate3 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update3 <==== ATTENTION Task: {5DC96D56-DF29-42F2-9535-BAA4CCBDFD46} - System32\Tasks\SMWPUpd => C:\Program Files\Common Files\Goobzo\GBUpdatePlus\updater.exe <==== ATTENTION Task: {67C2E7A1-5C85-4ECF-93D5-4407DBD32AC9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-10-30] (Piriform Ltd) Task: {DAD871FF-F915-4BC9-BAF0-E46F13876136} - System32\Tasks\SMW_UpdateTask_Time_3131363031343633352d3437415a556c2a3223346c41 => Wscript.exe //B "C:\ProgramData\SearchModulePlus\smhe.js" smu.exe /invoke /f:check_services /l:0 <==== ATTENTION Task: {E13B7965-FF9E-4DB0-8552-713B26F6EE88} - System32\Tasks\{A929CD59-96EE-4BA7-95EE-A959ABFF50BB} => pcalua.exe -a "C:\Users\Clockwork\Desktop\SAVE ME\evac 11-14-14\drivers\win7-64\setup.exe" -d "C:\Users\Clockwork\Desktop\SAVE ME\evac 11-14-14\drivers\win7-64" Task: {F307BBC2-92B8-44F6-911F-C23235F6E168} - System32\Tasks\Microsoft\Windows\Maintenance\SMupdate2 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update2 <==== ATTENTION ==================== Loaded Modules (whitelisted) ============= 2014-11-18 10:11 - 2013-01-31 01:25 - 00087328 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2014-11-17 21:30 - 2012-01-20 14:55 - 00678400 _____ () C:\Program Files\TeraCopy\TeraCopyExt64.dll 2014-09-17 23:23 - 2014-09-17 23:23 - 00866584 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll 2014-10-14 10:51 - 2014-10-14 10:51 - 01050904 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll 2014-09-17 23:23 - 2014-09-17 23:23 - 00059160 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll 2014-10-14 10:51 - 2014-10-14 10:51 - 00242456 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll 2015-01-13 11:43 - 2015-01-13 11:43 - 03925104 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (whitelisted) ============= (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== MSCONFIG/TASK MANAGER disabled items ========= (Currently there is no automatic fix for this section.) MSCONFIG\Services: BEService => 3 MSCONFIG\Services: MozillaMaintenance => 3 MSCONFIG\Services: SkypeUpdate => 2 MSCONFIG\Services: Steam Client Service => 3 MSCONFIG\Services: WindowsVNT_R3 => 2 MSCONFIG\Services: YouTubeDownload_P4 => 2 MSCONFIG\startupfolder: C:^Users^Clockwork^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^intr.lnk => C:\Windows\pss\intr.lnk.Startup MSCONFIG\startupreg: autoauto => 39414105.bat MSCONFIG\startupreg: cutoauto => C:\a\wincheckfe.exe MSCONFIG\startupreg: dutoauto => C:\a\wincheckfe.exe MSCONFIG\startupreg: interpee => C:\a\internetport3.exe MSCONFIG\startupreg: rutoauto => 39414105.bat MSCONFIG\startupreg: smoother => C:\Users\Clockwork\AppData\Roaming\Booster-Web\Booster-Web-Installer.exe ========================= Accounts: ========================== Administrator (S-1-5-21-1414089619-1553986795-2700891581-500 - Administrator - Disabled) Clockwork (S-1-5-21-1414089619-1553986795-2700891581-1000 - Administrator - Enabled) => C:\Users\Clockwork Guest (S-1-5-21-1414089619-1553986795-2700891581-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1414089619-1553986795-2700891581-1002 - Limited - Enabled) ==================== Faulty Device Manager Devices ============= Name: High Definition Audio Device Description: High Definition Audio Device Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: HdAudAddService Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: High Definition Audio Device Description: High Definition Audio Device Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: HdAudAddService Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: High Definition Audio Device Description: High Definition Audio Device Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: HdAudAddService Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: High Definition Audio Device Description: High Definition Audio Device Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: HdAudAddService Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Event log errors: ========================= Application errors: ================== System errors: ============= Error: (01/25/2015 04:21:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The Search Module Plus Update service failed to start due to the following error: %%2 Microsoft Office Sessions: ========================= ==================== Memory info =========================== Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 5600+ Percentage of memory in use: 15% Total physical RAM: 8190.55 MB Available physical RAM: 6928.98 MB Total Pagefile: 16379.26 MB Available Pagefile: 14963.66 MB Total Virtual: 8192 MB Available Virtual: 8191.82 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:500 GB) (Free:329.24 GB) NTFS Drive g: (New Volume) (Fixed) (Total:431.41 GB) (Free:431.3 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 368DFBD2) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=500 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=431.4 GB) - (Type=07 NTFS) ==================== End Of Log ============================