Computer wont start after removing alureon virus with defender offline

==================== One Month Modified Files and Folders =======

2013-10-15 14:41 - 2012-10-22 22:09 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-15 14:20 - 2012-08-10 13:04 - 01233147 _____ C:\Windows\WindowsUpdate.log
2013-10-15 14:12 - 2013-09-30 00:32 - 00000000 ____D C:\ProgramData\Oracle
2013-10-15 14:12 - 2012-08-10 13:09 - 00003934 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{6C5CD60A-31F7-41D4-A5FB-FAE9D506F321}
2013-10-15 14:11 - 2013-10-15 14:11 - 00004154 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-15 14:11 - 2012-08-26 16:40 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-15 14:10 - 2009-07-13 23:45 - 00031472 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-15 14:10 - 2009-07-13 23:45 - 00031472 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-15 14:09 - 2009-07-14 00:13 - 00783812 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-15 14:07 - 2013-10-15 14:07 - 00028101 _____ C:\Users\Thomas\Downloads\FRST.txt
2013-10-15 14:04 - 2013-10-15 14:04 - 00000000 ____D C:\Users\Thomas\AppData\Local\{F99F3C16-183A-4CEA-A7E8-B8C30205E214}
2013-10-15 14:04 - 2012-09-07 17:49 - 00000000 ____D C:\Users\Thomas\Tracing
2013-10-15 14:03 - 2012-10-22 22:09 - 00000894 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-15 14:03 - 2012-08-10 13:05 - 00000000 ____D C:\Users\Thomas
2013-10-15 14:03 - 2009-07-14 00:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-15 14:03 - 2009-07-13 23:51 - 00061499 _____ C:\Windows\setupact.log
2013-10-11 04:11 - 2013-10-11 04:11 - 00000000 ____D C:\FRST
2013-10-11 03:40 - 2013-09-30 00:32 - 00000000 ____D C:\ProgramData\McAfee Security Scan
2013-10-11 03:37 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\registration
2013-10-11 01:59 - 2013-10-11 01:59 - 00000000 _____ C:\Windows\system32\config\SOFTWARE296d3e66
2013-10-10 19:33 - 2013-10-10 19:33 - 00000000 ____D C:\Windows\Microsoft Antimalware
2013-10-10 16:07 - 2013-10-10 16:07 - 00000000 ____D C:\Users\Thomas\Desktop\ME 210 homework
2013-10-10 16:07 - 2013-10-10 16:07 - 00000000 ____D C:\Users\Thomas\Desktop\CE 301 lab
2013-10-10 16:06 - 2013-10-10 16:06 - 00000000 ____D C:\Users\Thomas\Desktop\CE 301 Course Hero
2013-10-10 15:54 - 2013-10-10 15:54 - 00000000 ____D C:\Users\Thomas\AppData\Local\{5F3FC84E-2FBD-4453-80EB-5BE0C94825CE}
2013-10-09 16:39 - 2013-10-07 16:29 - 00000000 ____D C:\Users\Thomas\AppData\Local\{6ABB75AE-E56B-48AB-BE14-CD5C2E5496D2}
2013-10-08 20:36 - 2012-10-22 22:09 - 00003894 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-08 20:36 - 2012-10-22 22:09 - 00003642 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-08 07:50 - 2013-10-15 14:11 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-08 07:46 - 2013-10-15 14:11 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-08 07:46 - 2013-10-15 14:11 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-08 07:46 - 2013-10-15 14:11 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-07 16:59 - 2012-10-22 22:09 - 00002143 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-10-06 16:35 - 2013-03-26 20:37 - 00003192 _____ C:\Windows\System32\Tasks\HPCeeScheduleForThomas
2013-10-06 16:35 - 2013-03-26 20:37 - 00000336 _____ C:\Windows\Tasks\HPCeeScheduleForThomas.job
2013-10-02 16:58 - 2013-10-02 16:58 - 00000000 ____D C:\Users\Thomas\AppData\Local\{CE243D4A-0C8F-4F38-833E-BF78C6E4242F}
2013-10-02 16:56 - 2010-11-20 22:47 - 00080528 _____ C:\Windows\PFRO.log
2013-09-30 02:27 - 2013-09-30 00:37 - 00000000 ____D C:\Users\Thomas\AppData\Roaming\Systweak
2013-09-30 00:45 - 2013-09-30 00:31 - 00000000 ____D C:\Program Files (x86)\McAfee Security Scan
2013-09-30 00:44 - 2012-08-21 14:50 - 00000000 ____D C:\Users\Thomas\AppData\Local\Adobe
2013-09-30 00:43 - 2013-09-30 00:43 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-09-30 00:43 - 2013-09-30 00:43 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-09-30 00:42 - 2013-09-30 00:38 - 00000000 ____D C:\Program Files (x86)\MyPC Backup
2013-09-30 00:42 - 2012-08-10 13:09 - 00000000 ___RD C:\Users\Thomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-09-30 00:38 - 2013-09-30 00:38 - 00000000 ____D C:\Users\Thomas\AppData\Local\avgchrome
2013-09-30 00:37 - 2013-09-30 00:37 - 00000000 ____D C:\ProgramData\DSearchLink
2013-09-30 00:36 - 2013-09-30 00:36 - 00142258 _____ C:\Users\Thomas\Downloads\Adobe_Flash_Player.exe
2013-09-30 00:33 - 2013-09-30 00:33 - 00881168 _____ (Microsoft Corporation) C:\Users\Thomas\Downloads\mssstool64 (1).exe
2013-09-29 19:14 - 2013-09-29 19:14 - 00881168 _____ (Microsoft Corporation) C:\Users\Thomas\Downloads\mssstool64.exe
2013-09-29 17:32 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\rescache
2013-09-29 16:38 - 2013-09-29 16:37 - 00000000 ____D C:\Users\Thomas\AppData\Local\{020ED3BF-5DB2-4DAF-87F0-F57DE4492BFF}
2013-09-28 17:43 - 2013-09-28 17:43 - 00001945 _____ C:\Windows\epplauncher.mif
2013-09-28 17:42 - 2013-03-19 23:10 - 00000000 ____D C:\Program Files (x86)\Microsoft Security Client
2013-09-28 17:42 - 2013-03-19 23:09 - 00000000 ____D C:\Program Files\Microsoft Security Client
2013-09-28 17:40 - 2013-09-28 17:39 - 13813944 _____ (Microsoft Corporation) C:\Users\Thomas\Downloads\mseinstall.exe
2013-09-28 17:34 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\system32\NDF
2013-09-23 21:31 - 2013-08-28 14:21 - 00000000 ____D C:\Windows\system32\MpEngineStore
2013-09-23 14:30 - 2013-09-23 14:30 - 00000000 ____D C:\Users\Thomas\AppData\Local\{E524E8F5-ABDF-4F0F-89F4-5E3339DABF67}
2013-09-23 14:29 - 2012-08-10 13:09 - 00000000 ___RD C:\Users\Thomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-09-23 03:50 - 2013-08-26 15:52 - 00000000 ____D C:\Windows\system32\MRT
2013-09-23 03:50 - 2009-07-13 22:20 - 00000000 ____D C:\Windows\AppCompat
2013-09-23 03:49 - 2009-07-13 22:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-09-23 03:47 - 2012-10-22 22:03 - 00000000 ____D C:\ProgramData\Real
2013-09-23 00:57 - 2013-09-23 00:56 - 00000000 ____D C:\Users\Thomas\AppData\Local\{957C27E9-24D7-4B94-B489-6EF5238C2006}
2013-09-23 00:54 - 2009-07-13 23:45 - 00416688 _____ C:\Windows\system32\FNTCACHE.DAT
2013-09-17 21:32 - 2012-11-20 22:50 - 00000000 ____D C:\Users\Thomas\Documents\Outlook Files
2013-09-17 14:12 - 2012-08-10 16:35 - 00000000 ____D C:\Users\Thomas\AppData\Local\CrashDumps
2013-09-17 14:10 - 2013-09-17 14:09 - 00000000 ____D C:\Users\Thomas\AppData\Local\{F18A33F7-88CA-4626-9629-9F160DF8DABE}
2013-09-16 16:40 - 2012-08-21 14:39 - 00000000 ____D C:\Program Files (x86)\Microsoft Application Virtualization Client
2013-09-16 16:40 - 2012-05-12 15:15 - 00800508 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-09-16 16:36 - 2012-08-31 10:14 - 79143768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-09-16 16:36 - 2012-08-30 19:45 - 00000000 ____D C:\ProgramData\Microsoft Help

ZeroAccess:
C:\$Recycle.Bin\S-1-5-21-1682970989-2299201136-1404161508-1001\$286bf40a02ffec57eae78ccedc6b55bb

ZeroAccess:
C:\$Recycle.Bin\S-1-5-18\$286bf40a02ffec57eae78ccedc6b55bb

Files to move or delete:
====================
C:\Windows\svchost.exe
ATTENTION ====> Check for partition/boot infection.
C:\ProgramData\eM1y4153.dat
C:\ProgramData\xhietgwvfjxqvqgabbr.reg


Some content of TEMP:
====================
C:\Users\Thomas\AppData\Local\Temp\adobe-reader.exe
C:\Users\Thomas\AppData\Local\Temp\BackupSetup.exe
C:\Users\Thomas\AppData\Local\Temp\contentDATs.exe
C:\Users\Thomas\AppData\Local\Temp\CouponDropDown.exe
C:\Users\Thomas\AppData\Local\Temp\DeltaTB.exe
C:\Users\Thomas\AppData\Local\Temp\Extract.exe
C:\Users\Thomas\AppData\Local\Temp\iet7CC4.tmp.exe
C:\Users\Thomas\AppData\Local\Temp\jre-7u40-windows-i586-iftw.exe
C:\Users\Thomas\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe
C:\Users\Thomas\AppData\Local\Temp\jre-7u7-windows-i586-iftw.exe
C:\Users\Thomas\AppData\Local\Temp\jre-7u9-windows-i586-iftw.exe
C:\Users\Thomas\AppData\Local\Temp\mssinstaller.exe
C:\Users\Thomas\AppData\Local\Temp\npp.6.2.Installer.exe
C:\Users\Thomas\AppData\Local\Temp\nsj6798.exe
C:\Users\Thomas\AppData\Local\Temp\nsj696D.exe
C:\Users\Thomas\AppData\Local\Temp\nsoAF83.exe
C:\Users\Thomas\AppData\Local\Temp\nsoFF84.exe
C:\Users\Thomas\AppData\Local\Temp\nstE39A.exe
C:\Users\Thomas\AppData\Local\Temp\SecurityScan_Release.exe
C:\Users\Thomas\AppData\Local\Temp\setup-Jutera_US_pscombined-bunndle-cb-1.1-x86x64_20120808.exe
C:\Users\Thomas\AppData\Local\Temp\setup_coupondropdown.exe
C:\Users\Thomas\AppData\Local\Temp\SP57698.exe
C:\Users\Thomas\AppData\Local\Temp\SP57935.exe
C:\Users\Thomas\AppData\Local\Temp\SP57965.exe
C:\Users\Thomas\AppData\Local\Temp\SP58871.exe
C:\Users\Thomas\AppData\Local\Temp\sp58915.exe
C:\Users\Thomas\AppData\Local\Temp\SP59202.exe
C:\Users\Thomas\AppData\Local\Temp\SPStub.exe
C:\Users\Thomas\AppData\Local\Temp\tbedrs.dll
C:\Users\Thomas\AppData\Local\Temp\tbuTor.dll
C:\Users\Thomas\AppData\Local\Temp\tbWhi0.dll
C:\Users\Thomas\AppData\Local\Temp\ToolbarHelper.exe
C:\Users\Thomas\AppData\Local\Temp\uninst1.exe
C:\Users\Thomas\AppData\Local\Temp\UninstallHPSA.exe
C:\Users\Thomas\AppData\Local\Temp\UpdUninstall.exe
C:\Users\Thomas\AppData\Local\Temp\utt1677.tmp.exe
C:\Users\Thomas\AppData\Local\Temp\xmlUpdater.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-15 14:35

==================== End Of Log ============================

fixlog

and heres the other file

These are them.

https://www.sevenforums.com/attachmen...1&d=1467720495
Result
HERE IS MY RESULT!
Please visit this and help me i cant run my PC! :/