Hi! Here is the log:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-12-2017
Ran by SYSTEM on MININT-3PBRA65 (30-12-2017 18:27:36)
Running from e:\
Platform: Windows 7 Home Premium (X64) Language: English (United States)
Internet Explorer Version 8
Boot Mode: Recovery
Default: ControlSet001
ATTENTION!:=====> If the system is bootable FRST must be run from normal or Safe mode to create a complete log.
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1890088 2010-03-17] (Synaptics Incorporated)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1436224 2010-11-30] (Microsoft Corporation)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe [5712896 2010-02-03] (Dell Inc.)
HKLM-x32\...\Run: [Redirector] => C:\Program Files (x86)\Citrix\ICA Client\redirector.exe [231776 2015-06-24] (Citrix Systems, Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157456 2015-09-12] (Apple Inc.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [284696 2010-06-08] (Intel Corporation)
HKLM-x32\...\Run: [Desktop Disc Tool] => C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe [498160 2009-10-15] ()
HKLM-x32\...\Run: [DellSupportCenter] => C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe [206064 2009-05-21] (SupportSoft, Inc.)
HKLM-x32\...\Run: [Dell Webcam Central] => C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [409744 2009-06-24] (Creative Technology Ltd)
HKLM-x32\...\Run: [ConnectionCenter] => C:\Program Files (x86)\Citrix\ICA Client\concentr.exe [518496 2015-06-24] (Citrix Systems, Inc.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-03-20] (Apple Inc.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [5KPlayer.exe] => C:\Program Files (x86)\DearMob\5KPlayer\5KPlayer.exe [4188560 2017-01-03] ()
HKLM-x32\...\Run: [ApnTBMon] => C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1928776 2016-11-08] (APN)
Winlogon\Notify\GoToAssist: C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll [X]
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\Default\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\Default User\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\Kayla\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1421224 2017-10-09] (Garmin Ltd. or its subsidiaries)
HKU\Kayla\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9363672 2017-02-07] (Piriform Ltd)
HKU\Kayla\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [899584 2009-07-13] (Microsoft Corporation)
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk [2010-10-12]
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk [2010-10-12]
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Kayla\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk [2010-10-20]
ShortcutTarget: Dell Dock.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [201800 2016-11-08] (APN LLC.)
S4 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [1085968 2017-10-09] (Garmin Ltd. or its subsidiaries)
S4 MsMpSvc; c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [12784 2010-11-11] (Microsoft Corporation)
S4 NisSrv; c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [282616 2010-11-11] (Microsoft Corporation)
S4 ReimageRealTimeProtector; C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe [8602992 2017-09-11] (Reimage®)
S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)
S4 wltrysvc; C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe [5088256 2010-02-03] (Dell Inc.)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [44480 2013-09-23] (hxxp://libusb-win32.sourceforge.net)
S1 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [188928 2010-10-24] (Microsoft Corporation)
S1 MpKsl3ded797b; c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{2449CB5B-681D-4EA6-8F9F-7AF3FB4FF52E}\MpKsl3ded797b.sys [58120 2017-12-25] (Microsoft Corporation)
S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [72064 2010-10-24] (Microsoft Corporation)
S2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13784 2009-11-02] ()
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-12-30 18:27 - 2017-12-30 18:27 - 000000000 ____D C:\FRST
2017-12-23 10:47 - 2017-12-23 10:47 - 000000000 _____ C:\4092.dummy.001
2017-12-23 10:44 - 2017-12-23 10:44 - 000000000 _____ C:\4092.dummy.000
2017-12-23 09:22 - 2017-12-23 09:22 - 000000000 __SHD C:\found.003
2017-12-23 00:50 - 2017-12-23 08:37 - 000000000 ___SD C:\32788R22FWJFW
2017-12-22 18:00 - 2017-12-22 18:01 - 000000000 ___SD C:\ComboFix
2017-12-22 06:29 - 2017-12-30 16:30 - 000873492 _____ C:\Windows\ntbtlog.txt
2017-12-22 03:13 - 2017-12-22 03:13 - 000006768 ____N C:\bootsqm.dat
2017-12-21 23:02 - 2017-12-21 23:02 - 000000000 __SHD C:\found.002
2017-12-21 00:13 - 2017-12-23 16:30 - 000000000 ____D C:\Users\Kayla\Desktop\IG
2017-12-21 00:00 - 2017-12-21 00:00 - 000004274 _____ C:\Windows\System32\Tasks\ReimageUpdater
2017-12-20 23:59 - 2017-12-22 05:46 - 000000000 ____D C:\ProgramData\Reimage Protector
2017-12-20 23:58 - 2017-12-20 23:58 - 000001843 _____ C:\Users\Public\Desktop\PC Scan & Repair by Reimage.lnk
2017-12-20 23:58 - 2017-12-20 23:58 - 000001843 _____ C:\ProgramData\Desktop\PC Scan & Repair by Reimage.lnk
2017-12-20 23:57 - 2017-12-21 00:00 - 000000000 ____D C:\Program Files\Reimage
2017-12-20 23:57 - 2017-12-20 23:58 - 000000000 ____D C:\rei
2017-12-20 23:41 - 2017-12-23 17:30 - 000000121 _____ C:\Windows\Reimage.ini
2017-12-20 23:30 - 2017-12-20 23:30 - 000605424 _____ (Reimage) C:\Users\Kayla\Downloads\ReimageRepair.exe
2017-12-19 08:25 - 2017-12-19 08:25 - 000109089 _____ C:\Users\Kayla\Downloads\archive.zip
2017-12-19 01:21 - 2017-12-19 01:22 - 083316440 _____ (Malwarebytes ) C:\Users\Kayla\Downloads\mb3-setup-consumer-
2017-12-19 00:51 - 2017-12-19 00:51 - 000000000 ____D C:\found.001
2017-12-15 07:44 - 2011-06-26 00:45 - 000256000 _____ C:\Windows\PEV.exe
2017-12-15 07:44 - 2010-11-07 11:20 - 000208896 _____ C:\Windows\MBR.exe
2017-12-15 07:44 - 2009-04-19 22:56 - 000060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2017-12-15 07:44 - 2000-08-30 18:00 - 000518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2017-12-15 07:44 - 2000-08-30 18:00 - 000406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2017-12-15 07:44 - 2000-08-30 18:00 - 000098816 _____ C:\Windows\sed.exe
2017-12-15 07:44 - 2000-08-30 18:00 - 000080412 _____ C:\Windows\grep.exe
2017-12-15 07:44 - 2000-08-30 18:00 - 000068096 _____ C:\Windows\zip.exe
2017-12-15 07:35 - 2017-12-15 07:36 - 005659243 ____R (Swearware) C:\Users\Kayla\Desktop\ComboFix.exe
2017-12-13 23:12 - 2017-12-26 11:49 - 000000000 ____D C:\Windows\pss
2017-12-13 20:22 - 2017-12-21 00:17 - 000000000 ____D C:\Users\Kayla\Desktop\error
2017-12-13 20:22 - 2017-12-13 20:22 - 001434504 _____ (Microsoft Corporation) C:\Users\Kayla\Downloads\NDP471-KB4033344-Web (1).exe
2017-12-12 23:43 - 2017-12-12 23:44 - 134500624 _____ (Microsoft Corporation) C:\Users\Kayla\Downloads\msert.exe
2017-12-12 23:41 - 2017-12-12 23:41 - 000000000 ____D C:\$Windows.~WS
2017-12-12 23:40 - 2017-12-12 23:40 - 018617536 _____ (Microsoft Corporation) C:\Users\Kayla\Downloads\MediaCreationTool.exe
2017-11-30 08:39 - 2017-11-30 08:39 - 000010679 _____ C:\Users\Kayla\Desktop\Book1.xlsx
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-12-30 10:38 - 2017-02-01 21:35 - 000000000 ____D C:\Users\Kayla\AppData\Roaming\5kplayer
2017-12-30 09:44 - 2009-07-13 22:45 - 000013664 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-12-30 09:44 - 2009-07-13 22:45 - 000013664 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-12-25 08:11 - 2009-07-13 23:13 - 000785536 _____ C:\Windows\System32\PerfStringBackup.INI
2017-12-25 08:11 - 2009-07-13 21:20 - 000000000 ____D C:\Windows\inf
2017-12-25 02:19 - 2009-07-13 23:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-12-22 16:19 - 2017-09-17 15:55 - 000000000 ____D C:\Qoobox
2017-12-21 00:16 - 2017-11-20 12:21 - 000000000 ____D C:\Users\Kayla\Desktop\North Face
2017-12-19 01:29 - 2009-07-13 20:34 - 000000215 _____ C:\Windows\system.ini
2017-12-19 00:02 - 2017-09-17 15:54 - 000000000 ____D C:\Windows\erdnt
2017-12-18 00:36 - 2016-11-25 22:30 - 000000000 ____D C:\Users\Kayla\Desktop\(MD Links)
2017-12-13 08:22 - 2016-12-17 12:14 - 000000000 ____D C:\Program Files (x86)\Garmin
2017-12-12 08:25 - 2017-08-29 00:54 - 000002185 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-12-12 08:25 - 2017-08-29 00:54 - 000002185 _____ C:\ProgramData\Desktop\Google Chrome.lnk
Some files in TEMP:
2017-12-20 23:57 - 2017-12-20 23:57 - 014769392 _____ (Reimage) C:\Users\Kayla\AppData\Local\Temp\ReimagePackage.exe
2017-10-26 02:07 - 2017-10-26 02:07 - 000488960 _____ () C:\Users\Kayla\AppData\Local\Temp\sqlite3.exe
==================== Known DLLs (Whitelisted) =========================
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\dnsapi.dll => MD5 is legit
C:\Windows\SysWOW64\dnsapi.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
safeboot: Network => The system is configured to boot to Safe Mode <==== ATTENTION
==================== Association (Whitelisted) =============
==================== Restore Points =========================
==================== Memory info ===========================
Percentage of memory in use: 12%
Total physical RAM: 5942.69 MB
Available physical RAM: 5208.33 MB
Total Virtual: 5940.84 MB
Available Virtual: 5205.52 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:581.42 GB) (Free:90.47 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Recovery) (Fixed) (Total:14.65 GB) (Free:8.16 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive e: () (Removable) (Total:7.45 GB) (Free:4.09 GB) FAT32
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
==================== MBR & Partition Table ==================
Disk: 0 (Size: 596.2 GB) (Disk ID: D0487305)
Partition 1: (Not Active) - (Size=100 MB) - (Type=DE)
Partition 2: (Active) - (Size=14.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=581.4 GB) - (Type=07 NTFS)
Disk: 1 (Size: 7.5 GB) (Disk ID: 00000000)
Partition: GPT.
LastRegBack: 2017-12-19 20:20
==================== End of FRST.txt ============================