Here's the combofix log:
ComboFix 13-05-21.01 - Shane Livingston 05/21/2013 17:28:19.3.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.5943.4491 [GMT -4:00]
Running from: c:\users\Shane Livingston\Desktop\ComboFix.exe
AV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {ADA629C7-7F48-5689-624A-3B76997E0892}
FW: McAfee Firewall *Enabled* {959DA8E2-3527-57D1-4915-924367AD4FE9}
SP: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {16C7C823-5972-5907-58FA-0004E2F9422F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Files Created from 2013-04-21 to 2013-05-21 )))))))))))))))))))))))))))))))
.
.
2013-05-21 21:33 . 2013-05-21 21:33 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-05-19 14:04 . 2013-05-19 14:04 -------- d-----w- c:\windows\en
2013-05-19 14:02 . 2013-02-06 02:06 57840 ----a-w- c:\windows\system32\drivers\fssfltr.sys
2013-05-19 14:02 . 2013-05-19 14:02 -------- d-----w- c:\program files\Windows Live
2013-05-19 14:00 . 2010-06-02 08:55 77656 ----a-w- c:\windows\system32\XAPOFX1_5.dll
2013-05-19 14:00 . 2010-06-02 08:55 74072 ----a-w- c:\windows\SysWow64\XAPOFX1_5.dll
2013-05-19 14:00 . 2010-06-02 08:55 527192 ----a-w- c:\windows\SysWow64\XAudio2_7.dll
2013-05-19 14:00 . 2010-06-02 08:55 518488 ----a-w- c:\windows\system32\XAudio2_7.dll
2013-05-19 14:00 . 2010-05-26 15:41 2526056 ----a-w- c:\windows\system32\D3DCompiler_43.dll
2013-05-19 14:00 . 2010-05-26 15:41 2106216 ----a-w- c:\windows\SysWow64\D3DCompiler_43.dll
2013-05-19 14:00 . 2010-05-26 15:41 276832 ----a-w- c:\windows\system32\d3dx11_43.dll
2013-05-19 14:00 . 2010-05-26 15:41 248672 ----a-w- c:\windows\SysWow64\d3dx11_43.dll
2013-05-19 13:52 . 2013-05-19 13:52 -------- d-----w- c:\program files (x86)\FileHippo.com
2013-05-19 12:58 . 2013-05-19 12:58 -------- d-----w- c:\users\Shane Livingston\AppData\Roaming\WinPatrol
2013-05-19 12:58 . 2013-05-19 12:58 -------- d-----w- c:\program files (x86)\BillP Studios
2013-05-19 11:17 . 2013-05-19 11:17 -------- d-----w- c:\users\Shane Livingston\AppData\Local\Adobe
2013-05-19 03:20 . 2013-05-19 14:58 -------- d-----w- c:\users\Shane Livingston\AppData\Local\ElevatedDiagnostics
2013-05-18 22:43 . 2013-05-19 11:17 -------- d-----w- c:\users\Shane Livingston\AppData\Local\Apple Computer
2013-05-17 22:51 . 2013-05-17 22:51 -------- d-----w- c:\program files\Common Files\Intel
2013-05-17 22:51 . 2013-05-17 22:51 -------- d-----w- c:\program files (x86)\Common Files\Intel
2013-05-17 22:44 . 2013-05-17 22:44 -------- d-----w- c:\program files (x86)\SystemRequirementsLab
2013-05-17 22:44 . 2013-05-17 22:44 -------- d-----w- c:\users\Shane Livingston\AppData\Roaming\SystemRequirementsLab
2013-05-17 13:55 . 2013-05-17 13:55 -------- d-----w- c:\program files\iPod
2013-05-17 13:55 . 2013-05-17 13:56 -------- d-----w- c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-05-17 13:55 . 2013-05-17 13:56 -------- d-----w- c:\program files\iTunes
2013-05-17 13:55 . 2013-05-17 13:56 -------- d-----w- c:\program files (x86)\iTunes
2013-05-17 13:44 . 2013-05-13 06:37 9460464 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{7135BB5A-B209-464C-9AC3-BC3E731D6FFD}\mpengine.dll
2013-05-15 21:10 . 2013-04-10 06:01 983400 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2013-05-15 21:10 . 2013-04-10 06:01 265064 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2013-05-15 21:10 . 2011-02-03 11:25 144384 ----a-w- c:\windows\system32\cdd.dll
2013-05-15 21:10 . 2013-02-27 05:52 14172672 ----a-w- c:\windows\system32\shell32.dll
2013-05-15 21:10 . 2013-02-27 05:52 197120 ----a-w- c:\windows\system32\shdocvw.dll
2013-05-15 21:10 . 2013-02-27 05:48 1930752 ----a-w- c:\windows\system32\authui.dll
2013-05-15 21:10 . 2013-02-27 06:02 111448 ----a-w- c:\windows\system32\consent.exe
2013-05-15 21:10 . 2013-02-27 05:47 70144 ----a-w- c:\windows\system32\appinfo.dll
2013-05-15 21:10 . 2013-02-27 04:49 1796096 ----a-w- c:\windows\SysWow64\authui.dll
2013-05-15 21:09 . 2013-03-19 05:53 48640 ----a-w- c:\windows\system32\wwanprotdim.dll
2013-05-15 21:09 . 2013-03-19 05:53 230400 ----a-w- c:\windows\system32\wwansvc.dll
2013-05-15 21:09 . 2013-04-10 03:30 3153920 ----a-w- c:\windows\system32\win32k.sys
2013-05-05 23:23 . 2013-05-17 22:41 -------- d-----w- c:\users\Shane Livingston\AppData\Roaming\Skype
2013-05-05 23:22 . 2013-05-17 22:41 -------- d-----w- c:\programdata\Skype
2013-04-23 21:07 . 2013-04-12 14:45 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-19 14:01 . 2012-06-25 03:36 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-05-16 07:06 . 2011-01-17 21:16 75016696 ----a-w- c:\windows\system32\MRT.exe
2013-05-15 22:49 . 2012-05-16 03:36 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-05-15 22:49 . 2011-06-22 23:12 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-05-02 06:06 . 2012-03-24 15:03 278800 ------w- c:\windows\system32\MpSigStub.exe
2013-04-16 21:48 . 2013-04-16 21:48 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-04-16 21:48 . 2012-05-13 18:38 866720 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-04-16 21:48 . 2010-10-11 13:11 788896 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-04-13 05:49 . 2013-05-15 21:10 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49 . 2013-05-15 21:10 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49 . 2013-05-15 21:10 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49 . 2013-05-15 21:10 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45 . 2013-05-15 21:10 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45 . 2013-05-15 21:10 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-04-04 18:50 . 2011-06-22 23:19 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-03-23 07:06 . 2013-03-23 07:06 1054720 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-03-23 07:06 . 2013-03-23 07:06 73728 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-03-23 07:06 . 2013-03-23 07:06 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-03-23 07:06 . 2013-03-23 07:06 61952 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-03-23 07:06 . 2013-03-23 07:06 523264 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-03-23 07:06 . 2013-03-23 07:06 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-03-23 07:06 . 2013-03-23 07:06 38400 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-03-23 07:06 . 2013-03-23 07:06 361984 ----a-w- c:\windows\SysWow64\html.iec
2013-03-23 07:06 . 2013-03-23 07:06 226304 ----a-w- c:\windows\system32\elshyph.dll
2013-03-23 07:06 . 2013-03-23 07:06 185344 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-03-23 07:06 . 2013-03-23 07:06 158720 ----a-w- c:\windows\SysWow64\msls31.dll
2013-03-23 07:06 . 2013-03-23 07:06 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-03-23 07:06 . 2013-03-23 07:06 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2013-03-23 07:06 . 2013-03-23 07:06 138752 ----a-w- c:\windows\SysWow64\wextract.exe
2013-03-23 07:06 . 2013-03-23 07:06 137216 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-03-23 07:06 . 2013-03-23 07:06 12800 ----a-w- c:\windows\SysWow64\mshta.exe
2013-03-23 07:06 . 2013-03-23 07:06 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-03-23 07:06 . 2013-03-23 07:06 97280 ----a-w- c:\windows\system32\mshtmled.dll
2013-03-23 07:06 . 2013-03-23 07:06 92160 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-03-23 07:06 . 2013-03-23 07:06 905728 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-03-23 07:06 . 2013-03-23 07:06 81408 ----a-w- c:\windows\system32\icardie.dll
2013-03-23 07:06 . 2013-03-23 07:06 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-03-23 07:06 . 2013-03-23 07:06 762368 ----a-w- c:\windows\system32\ieapfltr.dll
2013-03-23 07:06 . 2013-03-23 07:06 62976 ----a-w- c:\windows\system32\pngfilt.dll
2013-03-23 07:06 . 2013-03-23 07:06 599552 ----a-w- c:\windows\system32\vbscript.dll
2013-03-23 07:06 . 2013-03-23 07:06 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-03-23 07:06 . 2013-03-23 07:06 51200 ----a-w- c:\windows\system32\imgutil.dll
2013-03-23 07:06 . 2013-03-23 07:06 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-03-23 07:06 . 2013-03-23 07:06 452096 ----a-w- c:\windows\system32\dxtmsft.dll
2013-03-23 07:06 . 2013-03-23 07:06 441856 ----a-w- c:\windows\system32\html.iec
2013-03-23 07:06 . 2013-03-23 07:06 281600 ----a-w- c:\windows\system32\dxtrans.dll
2013-03-23 07:06 . 2013-03-23 07:06 27648 ----a-w- c:\windows\system32\licmgr10.dll
2013-03-23 07:06 . 2013-03-23 07:06 270848 ----a-w- c:\windows\system32\iedkcs32.dll
2013-03-23 07:06 . 2013-03-23 07:06 247296 ----a-w- c:\windows\system32\webcheck.dll
2013-03-23 07:06 . 2013-03-23 07:06 235008 ----a-w- c:\windows\system32\url.dll
2013-03-23 07:06 . 2013-03-23 07:06 23040 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-03-23 07:06 . 2013-03-23 07:06 216064 ----a-w- c:\windows\system32\msls31.dll
2013-03-23 07:06 . 2013-03-23 07:06 197120 ----a-w- c:\windows\system32\msrating.dll
2013-03-23 07:06 . 2013-03-23 07:06 173568 ----a-w- c:\windows\system32\ieUnatt.exe
2013-03-23 07:06 . 2013-03-23 07:06 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-03-23 07:06 . 2013-03-23 07:06 1509376 ----a-w- c:\windows\system32\inetcpl.cpl
2013-03-23 07:06 . 2013-03-23 07:06 149504 ----a-w- c:\windows\system32\occache.dll
2013-03-23 07:06 . 2013-03-23 07:06 144896 ----a-w- c:\windows\system32\wextract.exe
2013-03-23 07:06 . 2013-03-23 07:06 1400416 ----a-w- c:\windows\system32\ieapfltr.dat
2013-03-23 07:06 . 2013-03-23 07:06 13824 ----a-w- c:\windows\system32\mshta.exe
2013-03-23 07:06 . 2013-03-23 07:06 136192 ----a-w- c:\windows\system32\iepeers.dll
2013-03-23 07:06 . 2013-03-23 07:06 135680 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-03-23 07:06 . 2013-03-23 07:06 12800 ----a-w- c:\windows\system32\msfeedssync.exe
2013-03-23 07:06 . 2013-03-23 07:06 102912 ----a-w- c:\windows\system32\inseng.dll
2013-03-23 07:05 . 2013-03-23 07:05 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-03-23 07:05 . 2013-03-23 07:05 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-03-23 07:05 . 2013-03-23 07:05 648192 ----a-w- c:\windows\system32\d3d10level9.dll
2013-03-23 07:05 . 2013-03-23 07:05 604160 ----a-w- c:\windows\SysWow64\d3d10level9.dll
2013-03-23 07:05 . 2013-03-23 07:05 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-03-23 07:05 . 2013-03-23 07:05 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-03-23 07:05 . 2013-03-23 07:05 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-03-23 07:05 . 2013-03-23 07:05 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-03-23 07:05 . 2013-03-23 07:05 522752 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2013-03-23 07:05 . 2013-03-23 07:05 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2013-03-23 07:05 . 2013-03-23 07:05 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2013-03-23 07:05 . 2013-03-23 07:05 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-03-23 07:05 . 2013-03-23 07:05 4096 ---ha-w- c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-03-23 07:05 . 2013-03-23 07:05 3928064 ----a-w- c:\windows\system32\d2d1.dll
2013-03-23 07:05 . 2013-03-23 07:05 364544 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll
2013-03-23 07:05 . 2013-03-23 07:05 363008 ----a-w- c:\windows\system32\dxgi.dll
2013-03-23 07:05 . 2013-03-23 07:05 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-03-23 07:05 . 2013-03-23 07:05 3584 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-03-23 07:05 . 2013-03-23 07:05 3419136 ----a-w- c:\windows\SysWow64\d2d1.dll
2013-03-23 07:05 . 2013-03-23 07:05 333312 ----a-w- c:\windows\system32\d3d10_1core.dll
2013-03-23 07:05 . 2013-03-23 07:05 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
2013-03-23 07:05 . 2013-03-23 07:05 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-03-23 07:05 . 2013-03-23 07:05 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-03-23 07:05 . 2013-03-23 07:05 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-03-23 07:05 . 2013-03-23 07:05 296960 ----a-w- c:\windows\system32\d3d10core.dll
2013-03-23 07:05 . 2013-03-23 07:05 293376 ----a-w- c:\windows\SysWow64\dxgi.dll
2013-03-23 07:05 . 2013-03-23 07:05 2776576 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2013-03-23 07:05 . 2013-03-23 07:05 2565120 ----a-w- c:\windows\system32\d3d10warp.dll
2013-03-23 07:05 . 2013-03-23 07:05 2560 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-03-23 07:05 . 2013-03-23 07:05 2560 ---ha-w- c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-03-23 07:05 . 2013-03-23 07:05 249856 ----a-w- c:\windows\SysWow64\d3d10_1core.dll
2013-03-23 07:05 . 2013-03-23 07:05 245248 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2013-03-23 07:05 . 2013-03-23 07:05 2284544 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll
2013-03-23 07:05 . 2013-03-23 07:05 220160 ----a-w- c:\windows\SysWow64\d3d10core.dll
2013-03-23 07:05 . 2013-03-23 07:05 207872 ----a-w- c:\windows\SysWow64\WindowsCodecsExt.dll
2013-03-23 07:05 . 2013-03-23 07:05 1988096 ----a-w- c:\windows\SysWow64\d3d10warp.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2013-05-19 13:58 220632 ----a-w- c:\users\Shane Livingston\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2013-05-19 13:58 220632 ----a-w- c:\users\Shane Livingston\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2013-05-19 13:58 220632 ----a-w- c:\users\Shane Livingston\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"WinPatrol"="c:\program files (x86)\BillP Studios\WinPatrol\winpatrol.exe" [2013-04-26 423144]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"ShwiconXP9106"="c:\program files (x86)\Multimedia Card Reader(9106)\ShwiconXP9106.exe" [2010-01-27 237568]
"Desktop Disc Tool"="c:\program files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe" [2009-10-15 498160]
"mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2013-03-13 1532992]
"AppleSyncNotifier"="c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" [2011-11-02 59240]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-05-11 958576]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-22 59720]
"HTC Sync Loader"="c:\program files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" [2012-04-17 651264]
"Adobe Acrobat Speed Launcher"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe" [2012-07-27 39136]
"Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe" [2012-07-27 825560]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2012-10-25 421888]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2013-05-15 152392]
.
c:\users\Shane Livingston\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dell Dock.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-12-15 1324384]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
McAfee Security Scan Plus.lnk - c:\program files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe [2013-2-5 272248]
.
c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dell Dock First Run.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-12-15 1324384]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 HipShieldK;McAfee Inc. HipShieldK;c:\windows\system32\drivers\HipShieldK.sys [2012-04-20 196440]
R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [2009-11-01 33736]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [2010-06-25 36928]
R3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [2010-02-27 158976]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe [2013-02-05 235216]
R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2013-02-19 106552]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-12-13 54784]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2011-01-13 1255736]
R4 McOobeSv;McAfee OOBE Service;c:\program files\Common Files\mcafee\McSvcHost\McSvHost.exe [2012-08-31 201304]
S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2013-02-19 340216]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2009-07-09 55280]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624]
S2 DockLoginService;Dock Login Service;c:\program files\Dell\DellDock\DockLogin.exe [2009-06-09 155648]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]
S2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [2012-08-31 201304]
S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\mcafee\McSvcHost\McSvHost.exe [2012-08-31 201304]
S2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [2013-02-19 218760]
S2 mfevtp;McAfee Validation Trust Protection Service;c:\program files\Common Files\McAfee\SystemCore\mfevtps.exe [2013-02-19 182752]
S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2012-03-23 87040]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776]
S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2013-02-19 70112]
S3 HECIx64;Intel® Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2011-08-23 317440]
S3 k57nd60a;Broadcom NetLink ™ Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [2009-10-16 321064]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-04-04 25928]
S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2013-02-19 515968]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [2011-10-01 764264]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [2011-10-01 268648]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [2011-10-01 25960]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [2011-10-01 22376]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496]
.
.
--- Other Services/Drivers In Memory ---
.
*Deregistered* - mfeavfk01
.
Contents of the 'Scheduled Tasks' folder
.
2013-05-21 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-16 22:49]
.
2013-05-21 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-10-10 14:34]
.
2013-05-21 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-10-10 14:34]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2013-05-19 13:58 244696 ----a-w- c:\users\Shane Livingston\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2013-05-19 13:58 244696 ----a-w- c:\users\Shane Livingston\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2013-05-19 13:58 244696 ----a-w- c:\users\Shane Livingston\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-02-09 10060832]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-08-09 167744]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-08-09 392512]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-08-09 417088]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local;<local>
TCP: DhcpNameServer = 208.180.42.68 208.180.42.100
FF - ProfilePath - c:\users\Shane Livingston\AppData\Roaming\Mozilla\Firefox\Profiles\6guzfwxp.default\
FF - prefs.js: browser.startup.homepage - www.facebook.com
FF - ExtSQL: 2019-09-25 22:40; {c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}; c:\users\Shane Livingston\AppData\Roaming\Mozilla\Firefox\Profiles\6guzfwxp.default\extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpi
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Wow6432Node-HKLM-RunOnce-c:\program files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe - c:\program files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe
AddRemove-Shockwave - c:\windows\System32\Macromed\SHOCKW~1\UNWISE.EXE
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-637680162-3269796017-186903447-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-637680162-3269796017-186903447-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2013-05-21 17:35:09
ComboFix-quarantined-files.txt 2013-05-21 21:35
ComboFix2.txt 2013-05-21 21:03
ComboFix3.txt 2013-05-21 03:03
.
Pre-Run: 621,741,064,192 bytes free
Post-Run: 621,667,979,264 bytes free
.
- - End Of File - - DE95D528E04BBC8CF3F24A9D29096D9E
Sign In
Create Account
