Crazy Spigot virus

Followed online directions - now what?

  • fix spigot virus

    Votes: 0 0.0%
  • spigot virus removal tood

    Votes: 0 0.0%

  • Total voters
    0
Status
Not open for further replies.

RTM

New Member
Thread author
Jul 28, 2014
2
Hi everybody, I read the forums faithfully now I need help with this crazy spigot virus. Here are the 2 files I downloanded.
 
Last edited by a moderator:

TwinHeadedEagle

Level 41
Verified
Mar 8, 2013
22,627
Hi,

Before we begin, I want you to have this in mind:
  • At the top of your post, please click on the "Watch thread" button and make sure to check Watch this thread...and receive email notifications. This will send an email to you as soon as I reply to your topic, allowing me to solve your problem faster.
  • Please do not install any new software during the cleaning process other than the tools I provide for you. This can hinder the cleaning process. Please do not perform System Restore or any other restore.
  • Instructions I give to you are very simple and made for complete beginner to follow. That's why you need to read through my instructions carefully and completely before executing them.
  • Please do not run any tools other than the ones I ask you to, when I ask you to. Some of these tools can be very dangerous if used improperly. Also, if you use a tool that I have not requested you use, it can cause false positives, thereby delaying the complete cleaning of your machine.
  • All tools we use here are completely clean and do not contain any malware. If your antivirus detects them as malicious, please disable your antivirus and then continue.
  • If during the process you run across anything that is not in my instructions, please stop and ask. If any tool is running too much time (few hours), please stop and inform me.
  • I visit forum several times at day, making sure to respond to everyone's topic as fast as possible. But bear in mind that I have private life like everyone and I cannot be here 24/7. So please be patient with me. Also, some infections require less, and some more time to be removed completely, so bear this in mind and be patient.
  • Please stay with me until the end of all steps and procedures and I declare your system clean. Just because there is a lack of symptoms does not indicate a clean machine. If you solved your problem yourself, set aside two minutes to let me know.
  • Please attach all report using
    fjqb1h.png
    button below. Doing this, you make it easier for me to analyze and fix your problem.



51a612a8b27e2-Zoek.png
Scan with ZOEK

Please download ZOEK by Smeenk and save it to your desktop (preferred version is the *.exe one)
Temporary disable your AntiVirus and AntiSpyware protection - instructions here.

  • Right-click on
    51a612a8b27e2-Zoek.png
    icon and select
    RunAsAdmin.jpg
    Run as Administrator to start the tool.
  • Wait patiently until the main console will appear, it may take a minute or two.
  • In the main box please paste in the following script:
    Code:
    createsrpoint;
    gpt.ini;z 
    C:\Windows\System32\GroupPolicy;v
    C:\Windows\SysWOW64\GroupPolicy;v
    process;
    services-list;
    systemspecs;
    startupall;
    skipfix-iedefaults;
    firefoxlook;
    chromelook;
    filesrcm;
    installedprogs;
  • Make sure that Scan All Users option is checked.
  • Push Run Script and wait patiently. The scan may take a couple of minutes.
  • When the scan completes, a zoek-results logfile should open in notepad.
  • If a reboot is needed, it will be opened after it. You may also find it at your main drive (usually C:\ drive)

Post its content into your next reply.
 

RTM

New Member
Thread author
Jul 28, 2014
2
Hi everybody, I read the forums faithfully now I need help with this crazy spigot virus. Here are the 2 files I downloanded.
Ok Here are the results:

Zoek.exe v5.0.0.0 Updated 28-07-2014
Tool run by Rosemary T on Tue 07/29/2014 at 12:42:29.67.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Rosemary T\Downloads\zoek (1).exe [Scan all users] [Script inserted]

==== System Restore Info ======================

7/29/2014 12:45:50 PM Zoek.exe System Restore Point Created Succesfully.

==== Installed Programs ======================

Updater
7-Zip 9.22beta
ABBYY FineReader for ScanSnap (TM) 4.1
Adobe AIR
Adobe Download Assistant
Adobe Flash Player 14 ActiveX
Adobe Flash Player 14 Plugin
Adobe Illustrator 10.0.3
Adobe Photoshop Elements 11
Adobe Reader XI (11.0.07)
Adobe SVG Viewer 3.0
Advanced Audio FX Engine
Advanced SystemCare 7
AnyMeeting Plug-in
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Ask Toolbar
ATI AVIVO64 Codecs
ATI Catalyst Install Manager
BCL easyConverter 3.0 Licensing Module (BCL License)
BCL easyConverter 3.0 Loader SDK Module
BCL easyConverter 3.0 Module (Loader, BCL License)
BCL easyConverter 3.0 Module (RTF, BCL License)
BCL easyConverter 3.0 RTF SDK Module
BCL easyConverter 3.0 SDK Module
Bonjour
Bullzip PDF Printer 9.7.0.1592
Camtasia Studio 8
CardMinder
CardMinder V4.1
Catalyst Control Center - Branding
Catalyst Control Center Graphics Previews Common
Catalyst Control Center Graphics Previews Vista
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-core-static
ccc-utility64
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
CCleaner
Citrix Online Launcher
D3DX10
Dell DataSafe Local Backup
Dell MusicStage
Dell PhotoStage
Dell Stage
Dell Support Center
Dell VideoStage
Dell Webcam Central
DellOSD
DirectX 9 Runtime
Driver Booster
DYMO Label v.8
Elements 11 Organizer
Everything 1.2.1.371
FileHippo.com Update Checker
Google Apps Migration For Microsoft Outlookr 2.3.12.34
Google Apps SyncT for Microsoft Outlookr 3.3.355.950
Google Chrome
Google Drive
Google Earth
Google Update Helper
GoToMeeting 6.2.0.1350
GoToMyPC
iCloud
IObit Malware Fighter
IObit Uninstaller
iTunes
Java 7 Update 55
Java Auto Updater
join.me
Junk Mail filter update
LastPass (uninstall only)
LogMeIn
magicJack
Malwarebytes Anti-Malware version 2.0.2.1012
Method Integration Engine for use with QuickBooks
Method Listener for use with QuickBooks
Method Report Designer
Microsoft .NET Framework 4.5.1
Microsoft Application Error Reporting
Microsoft Office 365 - en-us
Microsoft Office Click-to-Run 2010
Microsoft Office Starter 2010 - English
Microsoft OneDrive
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft SQL Server Compact 3.5 SP2 ENU
Microsoft SQL Server Compact 3.5 SP2 x64 ENU
Microsoft VirtualEarth Birdseye Downloader 5.1
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable (x64)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
MSVCRT
MSVCRT_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP2 Parser and SDK
Neat Core Files
NETGEAR Genie
Norton Security Scan
Norton Security Suite
Office 15 Click-to-Run Extensibility Component
Office 15 Click-to-Run Licensing Component
Office 15 Click-to-Run Localization Component
PDF2Word Converter Version 1.0.8 (Build 164, bioPDF)
PDFJobReady
PhotoShowExpress
PSE11 STI Installer
QBSetup
QuickBooks Pro 2012
QuickTime
RBVirtualFolder64Inst
RDADriver
Realtek Ethernet Controller Driver
Realtek High Definition Audio Driver
RegClean-Pro
Roxio Activation Module
Roxio BackOnTrack
Roxio Burn
Roxio Creator Starter
Roxio Express Labeler 3
Roxio File Backup
Safari
ScanSnap
ScanSnap Manager
ScanSnap Organizer
Search Protection
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
Security Update for Microsoft .NET Framework 4.5.1 (KB2931368)
Shared C Run-time for x64
SlimDrivers
Smart Defrag 3
SmartVault
Sonic CinePlayer Decoder Pack
StickyNotes
Sublime Text 2.0.2
Surfing Protection
TimeTracker 2014 Lite (Free Edition)
Unlocker 1.9.1
Windows Driver Package - Citrix Systems monblanking Citrix Driver (04/25/2013 6.2.101.0)
Windows Driver Package - Realtek Semiconductor Corp. HD Audio Driver (03/29/2013 6.0.1.6873)
Windows Driver Package - Realtek Semiconductor Corp. HD Audio Driver (07/16/2013 6.0.1.6971)
Windows Driver Package - Realtek Semiconductor Corp. HD Audio Driver (09/13/2013 6.0.1.7040)
Windows Installer Clean Up
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Language Selector
Windows Live Mail
Windows Live Messenger
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
ZoneAlarm LTD Toolbar

==== Running Processes ======================

C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe
C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\Citrix\GoToMyPC\g2svc.exe
C:\Program Files (x86)\Citrix\GoToMyPC\g2comm.exe
C:\Program Files (x86)\Citrix\GoToMyPC\g2pre.exe
C:\Program Files (x86)\Norton Security Suite\Engine\21.3.0.12\N360.exe
C:\Program Files (x86)\Citrix\GoToMyPC\g2tray.exe
C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
C:\Program Files (x86)\Norton Security Suite\Engine\21.3.0.12\N360.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe
C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Users\Rosemary T\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\Updater\updater.exe
C:\Program Files (x86)\PFU\ScanSnap\CardMinder\CardLauncher.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Windows\SSDriver\fi5110\SsWiaChecker.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe
C:\Program Files (x86)\Intuit\QuickBooks 2012\QBW32.EXE
C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Users\Rosemary T\AppData\Roaming\mjusbsp\magicJack.exe
C:\Program Files (x86)\NETGEAR Genie\bin\genie2_tray.exe
C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
C:\Users\Rosemary T\AppData\Local\Intuit\SyncManager\Current\IntuitSyncManager.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\PROGRA~2\INTUIT\QUICKB~1\QBDBMgr.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\PROGRA~2\INTUIT\QUICKB~1\dbextclr11.exe
C:\Program Files\Microsoft Office 15\Root\Office15\WINWORD.EXE
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Rosemary T\Downloads\zoek (1).exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\SysWOW64\cmd.exe

==== Services (whitelist) ======================
Powered by E Dev

R2 - [AdobeARMservice] - Adobe Acrobat Update Service - "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
R2 - [AMD External Events Utility] - AMD External Events Utility - C:\Windows\system32\atiesrxx.exe
R2 - [Apple Mobile Device] - Apple Mobile Device - "C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
R2 - [Bonjour Service] - Bonjour Service - "C:\Program Files\Bonjour\mDNSResponder.exe"
R2 - [ClickToRunSvc] - Microsoft Office ClickToRun Service - "C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service
R2 - [cvhsvc] - Client Virtualization Handler - "C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
R2 - [DellOSDservice] - DellOSDservice - "C:\Program Files\Dell\OSD\DellOSDservice.exe"
R2 - [DymoPnpService] - DYMO PnP Service - "C:\Program Files (x86)\DYMO\DYMO Label Software\DymoPnpService.exe"
R2 - [GoToMyPC] - GoToMyPC - "C:\Program Files (x86)\Citrix\GoToMyPC\g2svc.exe" "Start=service"
R2 - [IMFservice] - IMF Service - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
R2 - [LMIGuardianSvc] - LMIGuardianSvc - "C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe"
R2 - [LMIMaint] - LogMeIn Maintenance Service - "C:\Program Files (x86)\LogMeIn\x64\RaMaint.exe"
R2 - [LogMeIn] - LogMeIn - "C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe"
R2 - [N360] - Norton Security Suite - "C:\Program Files (x86)\Norton Security Suite\Engine\21.3.0.12\N360.exe" /s "N360" /m "C:\Program Files (x86)\Norton Security Suite\Engine\21.3.0.12\diMaster.dll" /prefetch:1
R2 - [QBCFMonitorService] - QBCFMonitorService - "C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe"
R2 - [sftlist] - Application Virtualization Client - "C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
R2 - [SpyHunter 4 Service] - SpyHunter 4 Service - C:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE
R2 - [VSS] - Volume Shadow Copy - C:\Windows\system32\vssvc.exe
R2 - [wlidsvc] - Windows Live ID Sign-in Assistant - "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
R2 - [WMPNetworkSvc] - Windows Media Player Network Sharing Service - "C:\Program Files\Windows Media Player\wmpnetwk.exe"
R2 - [WSearch] - Windows Search - C:\Windows\system32\SearchIndexer.exe /Embedding
R3 - [iPod Service] - iPod Service - "C:\Program Files\iPod\bin\iPodService.exe"
R3 - [sftvsa] - Application Virtualization Service Agent - "C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
S2 - [clr_optimization_v4.0.30319_32] - Microsoft .NET Framework NGEN v4.0.30319_X86 - C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
S2 - [clr_optimization_v4.0.30319_64] - Microsoft .NET Framework NGEN v4.0.30319_X64 - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
S2 - [gupdate] - Google Update Service (gupdate) - "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc
S2 - [LiveUpdateSvc] - LiveUpdate - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
S2 - [sppsvc] - Software Protection - C:\Windows\system32\sppsvc.exe
S3 - [AdobeActiveFileMonitor11.0] - Adobe Active File Monitor V11 - C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe
S3 - [AdobeFlashPlayerUpdateSvc] - Adobe Flash Player Update Service - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
S3 - [ALG] - Application Layer Gateway Service - C:\Windows\System32\alg.exe
S3 - [aspnet_state] - ASP.NET State Service - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
S3 - [COMSysApp] - COM+ System Application - C:\Windows\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
S3 - [ehRecvr] - Windows Media Center Receiver Service - C:\Windows\ehome\ehRecvr.exe
S3 - [ehSched] - Windows Media Center Scheduler Service - C:\Windows\ehome\ehsched.exe
S3 - [Fax] - Fax - C:\Windows\system32\fxssvc.exe
S3 - [FontCache3.0.0.0] - Windows Presentation Foundation Font Cache 3.0.0.0 - C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
S3 - [gupdatem] - Google Update Service (gupdatem) - "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc
S3 - [IEEtwCollectorService] - Internet Explorer ETW Collector Service - C:\Windows\system32\IEEtwCollector.exe /V
S3 - [MSDTC] - Distributed Transaction Coordinator - C:\Windows\System32\msdtc.exe
S3 - [msiserver] - Windows Installer - C:\Windows\system32\msiexec.exe /V
S3 - [Neat Startup Service] - Neat Startup Service - "C:\Program Files (x86)\Neat\exec\NeatStartupService.exe"
S3 - [NETGEARGenieDaemon] - NETGEARGenieDaemon - C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe
S3 - [ose] - Office Source Engine - "C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE"
S3 - [osppsvc] - Office Software Protection Platform - "C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
S3 - [PerfHost] - Performance Counter DLL Host - C:\Windows\SysWow64\perfhost.exe
S3 - [QBFCService] - Intuit QuickBooks FCS - "C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe"
S3 - [RpcLocator] - Remote Procedure Call (RPC) Locator - C:\Windows\system32\locator.exe
S3 - [SftService] - SoftThinks Agent Service - "C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE"
S3 - [SNMPTRAP] - SNMP Trap - C:\Windows\System32\snmptrap.exe
S3 - [stllssvr] - stllssvr - "C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe"
S3 - [TrustedInstaller] - Windows Modules Installer - C:\Windows\servicing\TrustedInstaller.exe
S3 - [vds] - Virtual Disk - C:\Windows\System32\vds.exe
S3 - [WatAdminSvc] - Windows Activation Technologies Service - C:\Windows\system32\Wat\WatAdminSvc.exe
S3 - [wbengine] - Block Level Backup Engine Service - "C:\Windows\system32\wbengine.exe"
S3 - [wmiApSrv] - WMI Performance Adapter - C:\Windows\system32\wbem\WmiApSrv.exe
S4 - [clr_optimization_v2.0.50727_32] - Microsoft .NET Framework NGEN v2.0.50727_X86 - C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
S4 - [clr_optimization_v2.0.50727_64] - Microsoft .NET Framework NGEN v2.0.50727_X64 - C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

==== Folders Found ======================


==== Files Found ======================


==== System Specs ======================

Windows: Windows 7 Home Premium Edition (64-bit) Service Pack 1 (Build 7601)
Memory (RAM): 3836 MB
CPU Info: AMD Athlon(tm) II X2 250u Processor
CPU Speed: 1598.4 MHz
Sound Card: Speakers / Headphones (Realtek |
Handset (2- USB Internet Phone |
Display Adapters: ATI Mobility Radeon HD 4200 Series | ATI Mobility Radeon HD 4200 Series | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver | LogMeIn Mirror Driver
Monitors: 1x; Generic PnP Monitor |
Screen Resolution: 1920 X 1080 - 32 bit
Network: Network Present
Network Adapters: Microsoft Virtual WiFi Miniport Adapter | DW1501 Wireless-N WLAN Half-Mini Card | Realtek PCIe GBE Family Controller
CD / DVD Drives: 1x (E: | ) E: YMaxCorpmagicJackPlus CD
Ports: COM Ports NOT Present. LPT Port NOT Present.
Mouse: 3 Button Wheel Mouse Present
Hard Disks: C: 917.8GB | Q: 0.0MB
Hard Disks - Free: C: 837.6GB | Q: 0.0MB
Manufacturer *: Dell Inc.
BIOS Info: AT/AT COMPATIBLE | 09/23/09 | DELL - 1072009
Time Zone: Eastern Standard Time
Motherboard *: Dell Inc. 0DPRF9
Country: United States
Language: ENU

==== System Specs (Software) ======================

Anti-Virus: Norton Security Suite On-access scanning disabled (Outdated)
Anti-Spyware: Norton Security Suite disabled (Outdated)
Anti-Spyware: Windows Defender disabled (Outdated)
Anti-Spyware: IObit Malware Fighter disabled (Outdated)
Firewall: Norton Security Suite disabled
Internet Explorer Version: 11.0.9600.16663
Google Chrome version: 35.0.1916.153
Adobe Reader version: 11.0.07.79
Sun Java version: 1.7.0_55 (32-bit)
Flash Player version: 14.0.0.145

==== Files Recently Created / Modified ======================

====== C:\Windows ====
====== C:\Users\ROSEMA~1\AppData\Local\Temp ====
2014-07-29 12:07:21 1EF62B1B63E87DFECC85BA8CE29CF523 13824 ----a-w- C:\Users\Rosemary T\AppData\Local\Temp\oyjujadk.dll
2014-07-28 15:20:15 07256332B3DBC138F558704BD24A97A0 3011752 ----a-w- C:\Users\Rosemary T\AppData\Local\Temp\is1291555389\30E4230C_stp.EXE
2014-07-28 13:45:01 3B32CAA07D672F8A2E0DF5CB3A873F45 22704 ----a-w- C:\Users\Rosemary T\AppData\Local\Temp\ESGScanner.sys
2014-07-28 13:42:27 DCB0B55017256D985C34C9277A4DA0F6 47329360 ----a-w- C:\Users\Rosemary T\AppData\Local\Temp\SHSetup.exe
2014-07-28 12:43:54 1A0D6B2B047B97947DFE2E327CC188EC 4096 ----a-w- C:\Users\Rosemary T\AppData\Local\Temp\sikakiae.dll
2014-07-27 12:26:12 F77E1AFAA8DA8DA8DF9074A0E0FB6038 825848 ------w- C:\Users\Rosemary T\AppData\Local\Temp\is1291555389\53E9472D_stp\pm.exe
2014-07-25 19:01:05 BCA3126D50F1314099A107820A980FA5 774656 ----a-w- C:\Users\Rosemary T\AppData\Local\Temp\{16AA8FB8-4A98-4757-B7A5-0FF22C0A6E33}_1101_1\dbdata11.dll
2014-07-25 14:34:42 055D63C09F028F6EE1DFD44575A29BFC 777216 ----a-w- C:\Users\Rosemary T\AppData\Local\Temp\{16AA8FB8-4A98-4757-B7A5-0FF22C0A6E33}_0\dbdata.dll
2014-07-17 15:20:42 EF2E5FE2FACC168B62450D2BE0DA4640 4312600 ------w- C:\Users\Rosemary T\AppData\Local\Temp\is1291555389\747561EA_stp\rcpsetup_adppi14_adppi14.exe
====== Java Cache =====
2014-06-30 13:17:14 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Users\AFREC\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\32\6c34baa0-149d20b6
====== C:\Windows\SysWOW64 =====
2014-07-25 14:56:48 E3F5B1B129A5D44A036C16D3910995E2 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb
2014-07-25 14:56:48 94DB8DB7088D8AB9E33C34D00DA680A7 69632 ----a-w- C:\Windows\SysWOW64\mshtmled.dll
2014-07-25 14:56:46 0C81FB54D859FA2BA2680C7803A77CB6 17073152 ----a-w- C:\Windows\SysWOW64\mshtml.dll
2014-07-23 12:59:23 8D14EDC8AD0AD9C5C5A44B92FD16D944 1728280 ----a-w- C:\Windows\SysWOW64\MBAPO232.dll
2014-07-23 11:44:37 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Windows\SysWOW64\sho15CC.tmp
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2014-07-25 14:56:49 571E110DBAA3424175B43749766E271F 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb
2014-07-25 14:56:49 31121C313E2FF75BF4B1402B6B3B0842 23134208 ----a-w- C:\Windows\Sysnative\mshtml.dll
2014-07-25 14:56:48 FC5CBFCB53FD402CE4EF547234B1658B 84992 ----a-w- C:\Windows\Sysnative\mshtmled.dll
2014-07-25 14:29:07 8EDCA73978126F3356D40FD40F097864 893384 ----a-w- C:\Windows\Sysnative\FNTCACHE.DAT
2014-07-23 12:59:50 D61708735E3A42A09DDA19E811F3A9A8 2101848 ----a-w- C:\Windows\Sysnative\WavesGUILib64.dll
2014-07-23 12:59:43 F0D94C5786977B4C44A914683DEBAA9A 1958616 ----a-w- C:\Windows\Sysnative\RTSnMg64.cpl
2014-07-23 12:59:41 80B20B593B6E1A6739DCC02A6F9E7B01 2825432 ----a-w- C:\Windows\Sysnative\RtPgEx64.dll
2014-07-23 12:59:37 9F1152244ACE17E902AB52109E538CDE 2792152 ----a-w- C:\Windows\Sysnative\RtkAPO64.dll
2014-07-23 12:59:36 AB41DE46A8AF724A2F3AFA9196BADD6E 624344 ----a-w- C:\Windows\Sysnative\RtDataProc64.dll
2014-07-23 12:59:36 859A6A3DCA742EA7ECDB4165ACDE835B 1024216 ----a-w- C:\Windows\Sysnative\RtkApi64.dll
2014-07-23 12:59:36 14034C2BA3D17139EEC0CB1D4D213DA6 1286872 ----a-w- C:\Windows\Sysnative\RTCOM64.dll
2014-07-23 12:59:34 67EFC411D07A73BF4F894A363850C73D 946392 ----a-w- C:\Windows\Sysnative\RCoInstII64.dll
2014-07-23 12:59:24 36544621023139B4604460CC81113543 397592 ----a-w- C:\Windows\Sysnative\MBWrp64.dll
2014-07-23 12:59:23 F2CF5B74DDD994214CF3BE7A263DA2F1 1999128 ----a-w- C:\Windows\Sysnative\MBAPO264.dll
2014-07-23 12:58:49 E66E3CB8375C8F03E68C7488D3833FE8 2037336 ----a-w- C:\Windows\Sysnative\MaxxAudioEQ64.dll
2014-07-23 12:58:48 5569CE8D7A4E362EC68F8C1DD8AEB3C5 1033304 ----a-w- C:\Windows\Sysnative\MaxxAudioAPOShell64.dll
2014-07-23 12:58:41 D42713208E6847C2854963B81BC8AF2E 2770976 ----a-w- C:\Windows\Sysnative\FMAPO64.dll
2014-07-23 12:58:37 6E14F444A2506049EEC25CB5EDFE0905 113576 ----a-w- C:\Windows\Sysnative\CONEQMSAPOGUILibrary.dll
2014-07-23 12:58:32 2CBDC11690656A1A2D03EC65AE2BCE68 209096 ----a-w- C:\Windows\Sysnative\AERTAC64.dll
2014-07-23 12:52:53 4D5D8058F17C873B4F0792678BAA6534 34080 ----a-w- C:\Windows\Sysnative\SmartDefragBootTime.exe
2014-07-23 12:52:35 84E8B979BBBDD23AD84E88FD12236306 128288 ----a-w- C:\Windows\Sysnative\IObitSmartDefragExtension.dll
2014-07-15 17:56:55 F9CE67E9E0226079B59107B649851F96 6144 ------w- C:\Windows\Sysnative\CB4B.tmp
2014-07-15 17:55:28 F9CE67E9E0226079B59107B649851F96 6144 ------w- C:\Windows\Sysnative\757D.tmp
====== C:\Windows\Sysnative\drivers =====
2014-07-28 13:45:01 3B32CAA07D672F8A2E0DF5CB3A873F45 22704 ----a-w- C:\Windows\Sysnative\drivers\EsgScanner.sys
2014-07-23 12:59:41 ECA5E9DA350D2D21376260CD3602449A 3872984 ----a-w- C:\Windows\Sysnative\drivers\RTKVHD64.sys
2014-07-23 12:59:36 D53A0800A3E7E720F12C1FD2854CC97B 757301 ----a-w- C:\Windows\Sysnative\drivers\RTAIODAT.DAT
2014-07-23 12:52:07 E77CB3736A702D46A6FB15FB4A9894E3 21184 ----a-w- C:\Windows\Sysnative\drivers\SmartDefragDriver.sys
2014-07-16 11:40:49 8A50D5304E6AE48664CF5838EC32F647 122584 ----a-w- C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys
2014-07-16 11:40:27 F92B0E478C0FAA6D6661E6E977247E60 25816 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys
2014-07-16 11:40:27 9D9ED48F841EA37AA5310D54B9E5D3C7 91352 ----a-w- C:\Windows\Sysnative\drivers\mbamchameleon.sys
2014-07-16 11:40:27 15E8ABC06843672955CE26A009533BAD 63704 ----a-w- C:\Windows\Sysnative\drivers\mwac.sys
2014-07-15 13:07:48 E16E2431516D904CED3946AD3FF8C86B 854 ----a-w- C:\Windows\Sysnative\drivers\SYMEVENT64x86.INF
2014-07-15 13:07:48 97E11C50CE52277B377396EA8838E539 177752 ----a-w- C:\Windows\Sysnative\drivers\SYMEVENT64x86.SYS
2014-07-15 13:07:48 7846ED59291A134CC5DD017C6EC7B433 8222 ----a-w- C:\Windows\Sysnative\drivers\SYMEVENT64x86.CAT
2014-07-14 23:13:07 353009DEDF918B2A51414F330CF72DEC 95680 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys
2014-07-14 23:13:07 1C2D8E18AA8FD50CD04C15CC27F7F5AB 155072 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys
2014-07-14 19:10:06 FA886682CFC5D36718D3E436AACF10B9 497152 ----a-w- C:\Windows\Sysnative\drivers\afd.sys
2014-07-14 19:10:01 17F685B67C74B8F7BFED4308790B71DE 288192 ----a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS
2014-07-14 19:10:01 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E 1903552 ----a-w- C:\Windows\Sysnative\drivers\tcpip.sys
2014-07-14 19:09:47 B3222734D80013D2C73841B0C549FA63 27584 ----a-w- C:\Windows\Sysnative\drivers\Diskdump.sys
2014-07-14 19:09:47 A3F0BC5897F9D3786A3CB695B163633A 190912 ----a-w- C:\Windows\Sysnative\drivers\storport.sys
2014-07-14 19:09:47 96BB922A0981BC7432C8CF52B5410FE6 274880 ----a-w- C:\Windows\Sysnative\drivers\msiscsi.sys
2014-07-14 19:08:44 1A29A59A4C5BA6F8C85062A613B7E2B2 1684928 ----a-w- C:\Windows\Sysnative\drivers\ntfs.sys
====== C:\Windows\Tasks ======
2014-07-28 15:21:13 29A8519EC6E3AEA5D5F5AC62BA56B92D 3340 ----a-w- C:\Windows\Sysnative\Tasks\ASP
2014-07-28 15:21:00 FD8E0BB70FF0127D129E68B09F6FFFAA 3090 ----a-w- C:\Windows\Sysnative\Tasks\RegClean Pro
2014-07-28 13:45:00 41C3F0BE915A2E69FC3B8D05027F320B 3346 ----a-w- C:\Windows\Sysnative\Tasks\SpyHunter4Startup
2014-07-28 12:44:43 B14AC22CAA8F8F1373928817FC3EC19D 3014 ----a-w- C:\Windows\Sysnative\Tasks\{875E3C2E-A42E-4B89-8F23-A4A288E3A11C}
2014-07-24 14:45:29 6FDC84B32C127896A7183B87DE38172D 3184 ----a-w- C:\Windows\Sysnative\Tasks\{0BE92C18-893C-4769-8FB6-4714B7ED496C}
2014-07-23 12:54:38 9F60FE1EAAACFA8F5D15CA04319BF789 2864 ----a-w- C:\Windows\Sysnative\Tasks\ASC7_SkipUac_Rosemary T
2014-07-23 12:53:36 F00A7FA85CAD9EB1B61EBC565A8EDA3F 2892 ----a-w- C:\Windows\Sysnative\Tasks\Uninstaller_SkipUac_Administrator
2014-07-23 12:52:57 64F01D68E7A4BD79D4619F159C326C29 3170 ----a-w- C:\Windows\Sysnative\Tasks\SmartDefrag3_Update
2014-07-23 12:52:24 143E7B0F153FEEA55D0E4D603BAC8DFE 2860 ----a-w- C:\Windows\Sysnative\Tasks\Driver Booster SkipUAC (SYSTEM)
2014-07-23 12:51:47 6EE64C22A5368F9BE7BE9FDF362D341D 3220 ----a-w- C:\Windows\Sysnative\Tasks\Driver Booster Scan
2014-07-23 12:51:44 F9978FA81A8D4C941C55EC3E456C22C9 3164 ----a-w- C:\Windows\Sysnative\Tasks\Driver Booster Update
2014-07-15 14:45:37 10C4619668FFDACF43AB690C9787D614 3186 ----a-w- C:\Windows\Sysnative\Tasks\{845AF372-F536-43D8-AEE2-D3091C5B2516}
2014-07-15 14:38:34 6CB06E1CFCDE3A5993E7BE2ADBE180D7 3178 ----a-w- C:\Windows\Sysnative\Tasks\{C83FDD28-76B1-4647-8058-B99AB28E39A3}
2014-07-14 14:57:41 8218CEFF4B7813CBBBD35CBAD9F0A6B4 308 ----a-w- C:\Windows\Tasks\Rocket Updater.job
2014-07-14 14:57:41 2B75FDE1AC6E62669144BA7EA5DCC002 3258 ----a-w- C:\Windows\Sysnative\Tasks\Rocket Updater
====== C:\Windows\Temp ======
======= C:\Program Files =====
2014-07-28 13:44:46 -------- d-----w- C:\Program Files\Enigma Software Group
2014-07-14 19:29:40 302388 ----a-w- C:\Program Files\5 Offline and Online Ways AFREC Keeps You in the Vanguard.docx
2014-07-14 16:14:25 17192588 ----a-w- C:\Program Files\mbam-setup-2.0.2.1012.exe
======= C:\PROGRA~2 =====
2014-07-28 15:20:42 -------- d-----w- C:\PROGRA~2\RCP
2014-07-28 15:20:31 -------- d-----w- C:\PROGRA~2\PennyBee
2014-07-28 13:43:02 -------- d-----w- C:\PROGRA~2\COMMON~1\Wise Installation Wizard
2014-07-24 15:11:35 -------- d-----w- C:\PROGRA~2\DYMO
2014-07-23 12:49:42 -------- d-----w- C:\PROGRA~2\IObit
2014-07-21 17:31:16 -------- d-----w- C:\PROGRA~2\SmartVault
======= C: =====
2014-07-28 15:12:14 1E942E02EE2BC96F492DDD62A25E83A6 351 ----a-w- C:\DelFix.txt
2014-07-28 13:46:09 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\autoexec.bat
2014-07-15 14:32:02 D350E2843C37D40D13CD5DDA00D568F0 2048 ----a-w- C:\Uninstall.dat
====== C:\Users\Rosemary T\AppData\Roaming ======
2014-07-28 15:49:43 -------- d-----w- C:\Users\Rosemary T\AppData\Locallow\AskToolbar
2014-07-28 15:21:15 -------- d-----w- C:\Users\Rosemary T\AppData\Roaming\ASP
2014-07-28 15:20:58 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Smartbar
2014-07-28 13:44:47 -------- d-----w- C:\Users\Rosemary T\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2014-07-28 12:50:22 -------- d-----w- C:\Users\Rosemary T\AppData\Local\ElevatedDiagnostics
2014-07-25 14:22:24 E825B04C2B907AD659AE40211F27CA6C 127168 ----a-w- C:\Users\Rosemary T\AppData\Local\GDIPFONTCACHEV1.DAT
2014-07-24 15:51:42 -------- d-----w- C:\Users\Rosemary T\AppData\Local\DYMO
2014-07-23 13:26:03 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\ProductData
2014-07-23 13:25:55 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\IObit
2014-07-23 12:54:00 -------- d-----w- C:\Users\Rosemary T\AppData\Roaming\ProductData
2014-07-23 12:51:52 -------- d-----w- C:\Users\Rosemary T\AppData\Locallow\IObit
2014-07-23 12:50:59 8ED2DC1E4A19F555BCF486302657B736 127168 ----a-w- C:\Windows\sysWoW64\config\systemprofile\AppData\Local\GDIPFONTCACHEV1.DAT
2014-07-23 12:50:38 -------- d-----w- C:\Users\Rosemary T\AppData\Roaming\Search Protection
2014-07-23 12:50:03 -------- d-----w- C:\Users\Rosemary T\AppData\Locallow\ADSRemoval
2014-07-23 12:49:46 -------- d-----w- C:\Users\Rosemary T\AppData\Roaming\IObit
2014-07-21 17:31:46 -------- d-----w- C:\Users\Rosemary T\AppData\Roaming\SmartVault
2014-07-14 19:00:35 -------- d-----w- C:\Users\Rosemary T\AppData\Roaming\IDM2
2014-07-14 14:58:03 -------- d-----w- C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\Systweak
2014-07-14 14:57:41 -------- d-----w- C:\Users\Rosemary T\AppData\Roaming\RocketUpdater
2014-07-14 14:57:13 -------- d-----w- C:\Users\Rosemary T\AppData\Roaming\Systweak
2014-07-06 22:43:01 -------- d-----w- C:\Users\AFREC\AppData\Local\Apple
2014-06-30 13:17:09 -------- d-----w- C:\Users\AFREC\AppData\Locallow\Sun
2014-06-29 22:43:01 -------- d-----w- C:\Users\Default\AppData\Local\Apple
2014-06-29 22:43:01 -------- d-----w- C:\Users\Default User\AppData\Local\Apple
====== C:\Users\Rosemary T ======
2014-07-28 17:36:44 4128AE55522EFFB4CE9611E8E62B779A 4813544 ----a-w- C:\Users\Rosemary T\Downloads\ccsetup416.exe
2014-07-28 15:23:21 AD1A336BEEE75032A9E07DBBE6F30372 2093568 ----a-w- C:\Users\Rosemary T\Downloads\FRST64.exe
2014-07-28 15:20:45 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro
2014-07-28 15:19:43 A357A0A4B400E6FC6CD2C923B5A4D3FB 802552 ----a-w- C:\Users\Rosemary T\Downloads\FileExtractorSetup.exe
2014-07-24 15:16:04 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DYMO
2014-07-24 15:11:31 -------- d-----w- C:\ProgramData\DYMO
2014-07-24 15:06:46 881007C684CC4557800E391ADB5B3193 119087088 ----a-w- C:\Users\Rosemary T\Downloads\DLS8Setup.8.5.1.exe
2014-07-24 14:44:14 93DCBCE54E1280F2B7D6438C94DA4621 8460496 ----a-w- C:\Users\Rosemary T\Downloads\SmartVaultSetup (1).exe
2014-07-23 12:52:55 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2014-07-23 12:52:55 -------- d-----w- C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2014-07-23 12:52:49 -------- d-----w- C:\ProgramData\ProductData
2014-07-23 12:52:13 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 7
2014-07-23 12:51:58 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 3
2014-07-23 12:51:13 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster
2014-07-23 12:50:06 -------- d-----w- C:\ProgramData\IObit
2014-07-23 12:49:53 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter
2014-07-21 17:31:16 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SmartVault
2014-07-21 17:30:57 -------- dc-h--w- C:\ProgramData\{7CA10EC8-3DFF-41B3-99D4-D4B3CF22C102}
2014-07-21 17:29:40 93DCBCE54E1280F2B7D6438C94DA4621 8460496 ----a-w- C:\Users\Rosemary T\Downloads\SmartVaultSetup.exe
2014-07-16 13:07:23 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Citrix
2014-07-16 11:39:17 E90BF9E1562F40140161573B79CD5720 17292760 ----a-w- C:\Users\Rosemary T\Downloads\mbam-setup-2.0.2.1012 (1).exe
2014-07-16 11:36:41 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-07-16 05:20:39 -------- d-----r- C:\Windows\SysNative\config\systemprofile\Searches
2014-07-15 19:22:18 -------- d-----w- C:\ProgramData\Sophos

====== C: exe-files ==
2014-07-28 17:36:44 4128AE55522EFFB4CE9611E8E62B779A 4813544 ----a-w- C:\Users\Rosemary T\Downloads\ccsetup416.exe
2014-07-28 16:04:33 CDE2B3E090FC244BC79BD0FAE198065F 11427488 ---ha-w- C:\Users\Rosemary T\AppData\Roaming\mjusbsp\in00000\setup.exe
2014-07-28 15:23:21 AD1A336BEEE75032A9E07DBBE6F30372 2093568 ----a-w- C:\Users\Rosemary T\Downloads\FRST64.exe
2014-07-28 15:20:44 9A13E56FA4A07E91E60A3A8E4D7A923F 593088 ----a-w- C:\Program Files (x86)\RCP\systweakasp.exe
2014-07-28 15:20:44 51494E1690A608D63FC4FD838D519A83 547128 ----a-w- C:\Program Files (x86)\RCP\RCPUninstall.exe
2014-07-28 15:20:44 3904882F17BFEFF3DF716419C98A3319 114488 ----a-w- C:\Program Files (x86)\RCP\CleanSchedule.exe
2014-07-28 15:20:42 538D51C21DC915F0B065ADBAC8C52B7A 1199928 ----a-w- C:\Program Files (x86)\RCP\unins000.exe
2014-07-28 15:20:15 07256332B3DBC138F558704BD24A97A0 3011752 ----a-w- C:\Users\Rosemary T\AppData\Local\Temp\is1291555389\30E4230C_stp.EXE
2014-07-28 15:19:43 A357A0A4B400E6FC6CD2C923B5A4D3FB 802552 ----a-w- C:\Users\Rosemary T\Downloads\FileExtractorSetup.exe
2014-07-28 13:43:12 EDB10586A061A621BBA2CB32E5E3220B 190429 ----a-w- C:\Windows\ACF5FE1B377240688B872D2A6EFD0A05.TMP\WiseCustomCalla37.exe
2014-07-28 13:42:27 DCB0B55017256D985C34C9277A4DA0F6 47329360 ----a-w- C:\Users\Rosemary T\AppData\Local\Temp\SHSetup.exe
2014-07-27 12:26:12 F77E1AFAA8DA8DA8DF9074A0E0FB6038 825848 ------w- C:\Users\Rosemary T\AppData\Local\Temp\is1291555389\53E9472D_stp\pm.exe
2014-07-27 10:35:48 C47CF2B8A28E64650BC6E9749302E61C 54272 ----a-w- C:\Program Files (x86)\PennyBee\PennyBee.exe
2014-07-25 19:09:55 F05C4E60A7598C8F8ED740A9C6D5D780 50552 ----a-w- C:\Users\Rosemary T\Google Drive\Datamar\QuickBooks 2009\dbextclr11.exe
2014-07-25 19:09:45 79F35610E4D7ABF1C029772ACE64073E 89488 ----a-w- C:\Users\Rosemary T\Google Drive\Datamar\QuickBooks 2009\DBManagerExe.exe
2014-07-25 19:09:22 19A8B0433F3140296ED9E0DA51EBC3C3 4537856 ----a-w- C:\Users\Rosemary T\Google Drive\Datamar\QuickBooks 2009\convertible_noAE.exe
2014-07-25 19:07:30 5EEDEE598B029F8FCB00051287D589EB 76688 ----a-w- C:\Users\Rosemary T\Google Drive\Datamar\QuickBooks 2009\AutoBackupEXE.exe
2014-07-25 19:07:27 C8689C9026212AB7E2A16573BAFB24AD 685968 ----a-w- C:\Users\Rosemary T\Google Drive\Datamar\QuickBooks 2009\FileManagement.exe
2014-07-25 19:06:10 7A828D594FDD9FE3304B85A6B4037161 17808 ----a-w- C:\Users\Rosemary T\Google Drive\Datamar\QuickBooks 2009\FileMovementExe.exe
2014-07-25 19:05:49 3909F2EC0F5AB43FCF98CA6E123F9888 1831824 ----a-w- C:\Users\Rosemary T\Google Drive\Datamar\QuickBooks 2009\GoogleDesktopSetup.exe
2014-07-25 19:05:18 18B1E621FC217DBBFF992E1C1F3372F6 4537856 ----a-w- C:\Users\Rosemary T\Google Drive\Datamar\QuickBooks 2009\convertible.exe
2014-07-25 19:04:54 9E762B1035F48FE6FA71EB9D181094A2 335872 ----a-w- C:\Users\Rosemary T\Google Drive\Datamar\QuickBooks 2009\askforcd.exe
2014-07-25 19:04:42 C9A4A061F4A8C7F43095F62E42FE1214 463224 ----a-w- C:\Users\Rosemary T\Google Drive\Datamar\QuickBooks 2009\dbmlsync.exe
2014-07-25 14:52:10 198788158C8E8D270AE5AD1349267C1B 1944624 ----a-w- C:\Users\Rosemary T\AppData\Local\Citrix\GoToMyPC\gotomypc_1427.exe
2014-07-24 15:13:56 378831F9F00049711DE99F18D72FEA80 247427 ----a-w- C:\Program Files (x86)\DYMO\DYMO Label Software\Uninstall DYMO Label.exe
2014-07-24 15:06:46 881007C684CC4557800E391ADB5B3193 119087088 ----a-w- C:\Users\Rosemary T\Downloads\DLS8Setup.8.5.1.exe
2014-07-24 14:44:14 93DCBCE54E1280F2B7D6438C94DA4621 8460496 ----a-w- C:\Users\Rosemary T\Downloads\SmartVaultSetup (1).exe
2014-07-24 14:07:45 0B71A17CA510778B8B1CE0C040EBEAEC 454656 ------w- C:\Users\Rosemary T\AppData\Local\Apps\2.0\MEMA39ZC.13X\2RE2HNZW.4HT\meth..tion_04fe38fa582ebedb_0001.0000_bd2be0a3af444a42\MethodReportDesigner.exe
2014-07-23 12:59:41 72C58C9DE23EE6B9B15E9D3A33E5B59E 1719512 ----a-w- C:\Program Files\Realtek\Audio\HDA\RtlUpd64.exe
2014-07-23 12:59:29 37C6C318D6AFAFA2EBA99820EDF21DA6 13667032 ----a-w- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
2014-07-23 12:59:28 AAA55BD633DBDB39746CC2394A04187F 1381744 ----a-w- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
2014-07-23 12:58:41 FE0F50965B1C2418CB217835F6405816 78880 ----a-w- C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
2014-07-23 12:52:55 F0D13521B4723FD213ED9CDCB5A50F6E 7664928 ----a-w- C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
2014-07-23 12:52:53 4D5D8058F17C873B4F0792678BAA6534 34080 ----a-w- C:\Windows\System32\SmartDefragBootTime.exe
2014-07-23 12:52:49 C098B4EA64D8C957486ACD736031435C 588608 ----a-w- C:\Program Files (x86)\IObit\IObit Uninstaller\Install_PintoStartMenu.exe
2014-07-23 12:52:49 78148DC7BA8C46551929FF7E47FA4133 1114944 ----a-w- C:\Program Files (x86)\IObit\IObit Uninstaller\Uninstaler_SkipUac.exe
2014-07-23 12:52:49 5D4ACF36CF6B3E2453C2E39216BD173B 629568 ----a-w- C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallDisplay.exe
2014-07-23 12:52:45 F1A522373D76B164ED357FD60314854D 1195808 ----a-w- C:\Program Files (x86)\IObit\Surfing Protection\unins000.exe
2014-07-23 12:52:45 747BAE652E61A124AB29A6210015B02D 1256224 ----a-w- C:\Program Files (x86)\IObit\Surfing Protection\PluginInstall.exe
2014-07-23 12:52:45 497AF28F6231FA74DE734C9628F30FAD 1362240 ----a-w- C:\Program Files (x86)\IObit\Surfing Protection\SPUpdate.exe
2014-07-23 12:52:44 88B7F951A2DD14BFF31AD74B4E624E98 2130720 ----a-w- C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallPromote.exe
2014-07-23 12:52:42 FA149A9A6DDDCC222865077D07DD1C51 2152736 ----a-w- C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
2014-07-23 12:52:11 D2F7C7DD5828AD6AA1BD74A336833E2A 24384 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\drivers\win7_x86\RegistryDefragBootTime.exe
2014-07-23 12:52:11 CB89633C0495D54654FC5A6441EB3894 23872 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\drivers\wnet_x86\RegistryDefragBootTime.exe
2014-07-23 12:52:11 9689B85C7E3C33F6C7788BC72C31C8B4 24384 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\drivers\wlh_x86\RegistryDefragBootTime.exe
2014-07-23 12:52:11 78282F48B994EB1A2E9F942DF0749052 27456 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\drivers\wlh_amd64\RegistryDefragBootTime.exe
2014-07-23 12:52:11 30E954BC3C98E9419DEA06F42D861010 23872 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\drivers\wxp_x86\RegistryDefragBootTime.exe
2014-07-23 12:52:11 2BA0E72EEB74142DEE05D80392DD21AB 26432 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\drivers\wnet_amd64\RegistryDefragBootTime.exe
2014-07-23 12:52:11 2A99F3410342F2B058109CFEEDF45F64 27456 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\drivers\win7_amd64\RegistryDefragBootTime.exe
2014-07-23 12:52:11 16BE2D88119757E7B32E12901E35E58A 26432 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\drivers\wxp_amd64\RegistryDefragBootTime.exe
2014-07-23 12:52:08 FB095D321D05F7B9999829650B059FC6 949024 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\Suo12_StartupManager.exe
2014-07-23 12:52:08 D68B87B1F80E8C15C969B88F7BF08D4E 544544 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\Suo10_SmartRAM.exe
2014-07-23 12:52:08 B7600792B16CA0D6811D4297BE8BDDA5 1852192 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\Suo11_InternetBooster.exe
2014-07-23 12:52:08 9100EA060BA3D3EEC330CE791E9BACA9 243488 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\TbAppCaller.exe
2014-07-23 12:52:08 85CC4370FBA31C5B98719A791D63603C 580384 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\Suc12_DiskCleaner.exe
2014-07-23 12:52:08 5AE7353BCD47D0C04A377844A9C9AC6F 900384 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\Sur13_WinFix.exe
2014-07-23 12:52:08 0D04AD9AE622152557CDEF18135D8F31 5420792 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\SPSetup.exe
2014-07-23 12:52:07 F0D13521B4723FD213ED9CDCB5A50F6E 7664928 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\IObitUninstaller.exe
2014-07-23 12:52:07 743E8C8E1A56B6065DB83BD3EE2A7901 2229024 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\Suc11_RegistryCleaner.exe
2014-07-23 12:52:07 5C74AD321FDD45D4562F6F67D9A75C84 1145120 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ProjectOnUninstall.exe
2014-07-23 12:52:07 21DB3A2FEA6E43EA830925331778A980 1900832 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\Sua11_DiskExplorer.exe
2014-07-23 12:52:07 1157313BE0C81895F49B1D25CE77826A 687392 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ProgramDeactivator.exe
2014-07-23 12:52:07 093CE9D2C6E64F23107DFB07DA1721B6 703776 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\Homepage.exe
2014-07-23 12:52:06 A2D598483C3D21ABC0B41C56704BB6C7 578336 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\UpgradeTip.exe
2014-07-23 12:52:06 88B7F951A2DD14BFF31AD74B4E624E98 2130720 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\UninstallPromote.exe
2014-07-23 12:52:06 4BDF61C15E6D117DD76FA5FA62C923D7 1082144 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\Wizard.exe
2014-07-23 12:52:06 3EF183CD81F9792303812714D883FBF6 1264928 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\SPInit.exe
2014-07-23 12:52:06 212BE27E48344EFD78BF173C5CA27C4A 167712 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\AutoReactivator.exe
2014-07-23 12:52:05 7B44D4796E929393EC9B330AD52DFF4F 562464 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\SendBugReportNew.exe
2014-07-23 12:52:05 13D946D32A1E816341D7FA3D48F5B468 947488 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\SendBugReport.exe
2014-07-23 12:52:04 D2F3674FB4BCB1244E6028755B90AC27 603424 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\Report.exe
2014-07-23 12:52:04 9EFC08CE346349C6BFA3B25A63FF286A 838432 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\Reinforce.exe
2014-07-23 12:52:04 3B74149C570AD751B377132D7C28411F 1084192 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\RescueCenter.exe
2014-07-23 12:52:03 DFBA16F3983B2FB5C9B479B577BCDE67 92960 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\PerformUpdate.exe
2014-07-23 12:52:03 D3029F71E7F453C833D28AA8CD08D14A 1873184 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\QuickSettings.exe
2014-07-23 12:52:03 BE6DAB0C8CCB34AF60FCC907EF371346 2042144 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\Register.exe
2014-07-23 12:52:03 99E9041F77D7988C2851153E3E0F5EBF 236320 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ProTip.exe
2014-07-23 12:52:03 0C2F9B66D80EE02A51D0CB15E2F61864 1214240 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\RealTimeProtector.exe
2014-07-23 12:52:02 FA149A9A6DDDCC222865077D07DD1C51 2152736 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\LiveUpdate.exe
2014-07-23 12:52:02 8E13CA0B48A1298F46F8739B95DBE4BF 781600 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe
2014-07-23 12:52:02 3EB3B7885DD64FB1E360710790320D22 323360 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\Nfeatures.exe
2014-07-23 12:52:02 32AE2F1A4CEB3588F50611FD27BFA7E8 441120 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\MonitorDisk.exe
2014-07-23 12:52:01 FBC25AE0FF76FFFE0FCC7F4CEC5E6489 44320 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\DiskScan.exe
2014-07-23 12:52:01 F5ADB51BC6EBF55B052B581FBC23C1E1 1107744 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\CheckDevice.exe
2014-07-23 12:52:01 E382AF1BEBEAB8CA249E0064E0B2F161 1141536 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\AutoSweep.exe
2014-07-23 12:52:01 67CD9833ECFE329A35892321E71E9FE8 1327392 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\AutoUpdate.exe
2014-07-23 12:52:01 66ED963FBA998E887C88FE6FCA46E2B9 43808 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\DiskDefrag.exe
2014-07-23 12:52:01 49F4367F0885E9A77210EA9AC5835A16 468768 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\DelayLoad.exe
2014-07-23 12:52:01 1F98172C060A5328459A56CB7ECDA779 96032 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\Display.exe
2014-07-23 12:52:00 E94D75A9D6E4724075BB6E6CC6FE3DD3 548128 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCUpgrade.exe
2014-07-23 12:52:00 CC6B26C922B4480FCBDFF565C9ABFB6F 36640 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCFixer.exe
2014-07-23 12:52:00 BD429CB2468C641E17EF8484953F183A 4474144 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASC.exe
2014-07-23 12:52:00 6C856C581ACE1785CE3FC2414E9859A3 881952 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe
2014-07-23 12:52:00 6A30A6E6164C1AC03B4F00356DED9607 645408 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCDownload.exe
2014-07-23 12:52:00 350E1CE270A22CF8D9584D508F0DC850 1863456 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\AutoCare.exe
2014-07-23 12:52:00 22B9972EB524057C8CDE6168845C579C 580896 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCInit.exe
2014-07-23 12:52:00 127687F1D171D0820D02851A9FA62525 2295584 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe
2014-07-23 12:51:59 E13E1FC432E031C164B241E38C214949 1757472 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ActionCenterDownloader.exe
2014-07-23 12:51:59 37E24A946C409B7A0F7BE1FBC02218ED 1198368 ----a-w- C:\Program Files (x86)\IObit\Advanced SystemCare 7\unins000.exe
2014-07-23 12:51:58 B748E0B82FC12BCBAC185E79B0F74C74 1756448 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 3\ActionCenterDownloader.exe
2014-07-23 12:51:57 381AB044E9617E914AC349AA057501D5 2335008 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 3\AutoUpdate.exe
2014-07-23 12:51:57 0DF1D3EE56D1A2915F6770A082926148 2129184 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 3\UninstallPromote.exe
2014-07-23 12:51:56 FD862E75F14941280BFD4CC2FA8906C9 34080 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\wxp_x64\SmartDefragBootTime.exe
2014-07-23 12:51:56 C7D5606AFDDA7C2DACF5A249AC1DA0BC 34592 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\wlh_x64\SmartDefragBootTime.exe
2014-07-23 12:51:56 AA5489F0109BFFC72B5F953ADC5B64A1 31008 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\wnet_x86\SmartDefragBootTime.exe
2014-07-23 12:51:56 A3B72D00DB31F38F816C4855F46B00B5 3431712 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 3\SmartDefrag.exe
2014-07-23 12:51:56 95FB4A65214A9E3F3FC040F9398822CB 34080 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\wnet_x64\SmartDefragBootTime.exe
2014-07-23 12:51:56 7A5B0AA932941D3D809BBBF3A2E27694 31008 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\win8_x86\SmartDefragBootTime.exe
2014-07-23 12:51:56 7A5B0AA932941D3D809BBBF3A2E27694 31008 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\win7_x86\SmartDefragBootTime.exe
2014-07-23 12:51:56 4D5D8058F17C873B4F0792678BAA6534 34080 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\win8_x64\SmartDefragBootTime.exe
2014-07-23 12:51:56 4D5D8058F17C873B4F0792678BAA6534 34080 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\win7_x64\SmartDefragBootTime.exe
2014-07-23 12:51:56 2BE91085B88B7CC27060422237D8CA04 31008 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\wxp_x86\SmartDefragBootTime.exe
2014-07-23 12:51:56 0844717E02574A22DDE810BB4E45FBE7 31520 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\wlh_x86\SmartDefragBootTime.exe
2014-07-23 12:51:53 648634759661BD37596CC9CF256C4921 1884448 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 3\SDInit.exe
2014-07-23 12:51:52 EB89A9AF76685854985B59F496096316 1085728 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 3\SDSendBugReport.exe
2014-07-23 12:51:52 98E338DE91D9FD770C65B35294903498 1195808 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 3\unins000.exe
2014-07-23 12:51:15 11E199726A2E20DF3B129116ABFB2D92 7602504 ----a-w- C:\ProgramData\IObit\ASCDownloader\Smart Defrag.exe
2014-07-23 12:51:13 D52B5027C0298C40C771D243E162A841 2265408 ----a-w- C:\Program Files (x86)\IObit\Driver Booster\IObitDownloader.exe
2014-07-23 12:51:13 D52B5027C0298C40C771D243E162A841 2265408 ----a-w- C:\Program Files (x86)\IObit\Driver Booster\Freeware\Driver_Booster_FreeSoftwareDownloader.exe
2014-07-23 12:51:08 E09B71554EE08FBD9BD831217375141C 921408 ----a-w- C:\Program Files (x86)\IObit\Driver Booster\DpInst\x86\dpinst.exe
2014-07-23 12:51:08 DE233E49446AD7F4A74F713B06C1F5F3 508224 ----a-w- C:\Program Files (x86)\IObit\Driver Booster\DrvInstall\DpInstX32.exe
2014-07-23 12:51:08 96ECD1B615D2A336CD2122BCBAA23B88 768320 ----a-w- C:\Program Files (x86)\IObit\Driver Booster\DrvInstall\DpInstX64.exe
2014-07-23 12:51:08 415CA45B55DA3DFCA8E7453534BA0772 1046848 ----a-w- C:\Program Files (x86)\IObit\Driver Booster\DpInst\x64\dpinst.exe
2014-07-23 12:51:08 1FC26DB833F4B59FFB025AC9490872B7 397632 ----a-w- C:\Program Files (x86)\IObit\Driver Booster\DrvInstall\DrvInstall.exe
2014-07-23 12:51:07 FAE8504103FF06F943B3A364438E7F37 129856 ----a-w- C:\Program Files (x86)\IObit\Driver Booster\FixPlugin.exe
2014-07-23 12:51:07 DACEED2363AC68F6CA9FD0C1F6A0E41A 202560 ----a-w- C:\Program Files (x86)\IObit\Driver Booster\SkipUacExec.exe
2014-07-23 12:51:07 57CA09D5BB68FE5CD5F70BCBDA643A2B 229184 ----a-w- C:\Program Files (x86)\IObit\Driver Booster\MakeSFX.exe
2014-07-23 12:51:07 2EC38ACDDE95F801522E4002DB923F1A 61760 ----a-w- C:\Program Files (x86)\IObit\Driver Booster\AUpdate.exe
2014-07-23 12:51:07 18CC69F64D24820D6F60F4483698BD50 192832 ----a-w- C:\Program Files (x86)\IObit\Driver Booster\SkipUacTask.exe
2014-07-23 12:51:06 F2FA2DDDAD5468C8B8DA4DECC57C95AF 1044800 ----a-w- C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
2014-07-23 12:51:06 CD864C0D3EDC36D05016EC15817BFDC4 801088 ----a-w- C:\Program Files (x86)\IObit\Driver Booster\UpdateDB.exe
2014-07-23 12:51:06 98F90600A1B3148BD2E757F9D8B20F16 1021248 ----a-w- C:\Program Files (x86)\IObit\Driver Booster\SetupHlp.exe
2014-07-23 12:51:06 60AEEF27441951D4B0AF8DFB040CE552 55104 ----a-w- C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe
2014-07-23 12:51:06 106647F0947EA449431037DDEEE91FC6 1823040 ----a-w- C:\Program Files (x86)\IObit\Driver Booster\Promote.exe
2014-07-23 12:51:05 68017DDDAEF60AD5A056C6BA34D44FEC 3796800 ----a-w- C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
2014-07-23 12:51:05 58F1D8E95E8D061EEAC3A04E4CBD1DB0 1197376 ----a-w- C:\Program Files (x86)\IObit\Driver Booster\unins000.exe
2014-07-23 12:50:48 4D621342C6CCA258D61C2F01A1EEC613 36957360 ----a-w- C:\ProgramData\IObit\ASCDownloader\Advanced SystemCare.exe
2014-07-23 12:50:38 9946BB41A6CDC349827FF97F85E5E499 494892 ----a-w- C:\Users\Rosemary T\AppData\Roaming\Search Protection\Uninstall.exe
2014-07-23 12:50:34 2C588DF3B6DE7B277DB1B34C0CA3AEF5 16527392 ----a-w- C:\ProgramData\IObit\ASCDownloader\Driver Booster.exe
2014-07-23 12:50:02 FEA17CB23BC6CACEDCADFCFF8E6D6B33 2416464 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\adsremoval\IE\AdbUpdate.exe
2014-07-23 12:50:01 D538C584573F177E2FDB5DFD590F04D4 4213072 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\adsremoval\IE\Adblock.exe
2014-07-23 12:50:01 4A37C6206D2757A710D972C73E9F3572 1177920 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\adsremoval\unins000.exe
2014-07-23 12:49:53 B1B3E882E40F951D11737883A2827146 2256704 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Freeware\IMF_FreeSoftwareDownloader.exe
2014-07-23 12:49:53 15555B340E6C8F41F2BAC68235A94ACB 138048 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\FixPlugin.exe
2014-07-23 12:49:46 0A7B768FF06DF3C7E838CBC046EC7044 3747624 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\ADSRemovalSetup.exe
2014-07-23 12:49:45 CFDBEB401F024071CEDD39D3A1B9BE70 1222464 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Reinforce.exe
2014-07-23 12:49:45 2F28FCA1AECCCA9C06A5043B0702FBBE 1753920 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF_ActionCenterDownloader.exe
2014-07-23 12:49:44 F946C49D799F86F4879AB27C1362EBF5 2130240 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\UninstallPromote.exe
2014-07-23 12:49:44 DF551690EEB462238A09BE3AB6D43ECE 547672 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\TaskSchedule.exe
2014-07-23 12:49:44 C0227B33BAB59AE7BDF36FF7D4EFDD9A 50640 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\IWsIMF.exe
2014-07-23 12:49:43 8694160CEE1C408813B4902DDEFCD595 444736 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\SendBugReport.exe
2014-07-23 12:49:43 7B69F9C901948D1E777A1387D76848D0 1601856 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
2014-07-23 12:49:43 33F6F3131EE8854F05C6BEAEA233B85F 342336 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
2014-07-23 12:49:42 E5076260591798F7AADB8941A3FFAD5F 1195840 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\unins000.exe
2014-07-23 12:49:42 D9A3A088C517B8C94EE12184A389F4D5 128832 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\BlueBirdInit.exe
2014-07-23 11:53:26 CDE2B3E090FC244BC79BD0FAE198065F 11427488 ---ha-w- C:\Users\Rosemary T\AppData\Roaming\mjusbsp\Upgrade\setup2.exe
2014-07-23 11:53:25 2608EB3DB2AD14E9B1CEC36970CDC8D8 1097504 ---ha-w- C:\Users\Rosemary T\AppData\Roaming\mjusbsp\Upgrade\install2.exe
2014-07-23 11:52:54 A90960549511E9A2A8B5B224DC0A6615 13532192 ----a-w- C:\Users\Rosemary T\AppData\Local\magicJack\UpdateDownload\Update2.exe
=== C: other files ==
2014-07-28 16:04:38 82F5C942549405F61A8808D0EA0FA9E2 25575 ----a-w- C:\Users\Rosemary T\AppData\Local\Temp\_MEI60842\resources\chrome_ext\apdfllckaahabafndbhieahigkjlhalf_live.crx
2014-07-28 13:46:09 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\autoexec.bat
2014-07-28 13:45:30 B97BE69C0A4230C285C087A726540F79 7538560 ----a-w- C:\Program Files\Enigma Software Group\SpyHunter\SH4.com
2014-07-28 13:45:01 3B32CAA07D672F8A2E0DF5CB3A873F45 22704 ----a-w- C:\Windows\System32\drivers\EsgScanner.sys
2014-07-28 13:45:01 3B32CAA07D672F8A2E0DF5CB3A873F45 22704 ----a-w- C:\Users\Rosemary T\AppData\Local\Temp\ESGScanner.sys
2014-07-27 12:53:44 294A7396C1A219C8EA6BCFDB89A62AFF 47255827 ----a-w- C:\Users\Rosemary T\Google Drive\CSV to QBO\access-all-pc.zip
2014-07-25 19:34:25 9A995CADCDB613CC3AFFB104708ABDE5 181 ----a-w- C:\Users\Rosemary T\Google Drive\Datamar\Safe file\Quickbooks\DownloadQB19\Profile\.update\.target\99283913\content\profile-99283913.zip
2014-07-25 19:34:23 DA5B345D4E4F36BB5BC9E1A1DDFE206B 181 ----a-w- C:\Users\Rosemary T\Google Drive\Datamar\Company Files\Company Files\DownloadQB19\Profile\.update\.target\99283913\content\profile-99283913.zip
2014-07-25 19:32:23 DA5B345D4E4F36BB5BC9E1A1DDFE206B 181 ----a-w- C:\Users\Rosemary T\Google Drive\Datamar\Company Files\DownloadQB19\Profile\.update\.target\99283913\content\profile-99283913.zip
2014-07-25 04:42:46 68D2DD5FAFCA1ED97D146E40BB4DA1F0 1788 ----a-w- C:\Program Files (x86)\Intuit\QuickBooks 2012\Components\RegisteredUI\UI_sdk_printdymola1406216827.SYS
2014-07-23 12:59:41 ECA5E9DA350D2D21376260CD3602449A 3872984 ----a-w- C:\Windows\System32\drivers\RTKVHD64.sys
2014-07-23 12:52:46 032694B0FE8D2AE6EC544B989E1CBF75 341164 ----a-w- C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASC_GhromePlugin.crx
2014-07-23 12:52:07 E77CB3736A702D46A6FB15FB4A9894E3 21184 ----a-w- C:\Windows\System32\drivers\SmartDefragDriver.sys
2014-07-23 12:51:56 EBAF78B71431E8729A7809C89FAF5EF9 21184 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\win8_x64\SmartDefragDriver.sys
2014-07-23 12:51:56 E77CB3736A702D46A6FB15FB4A9894E3 21184 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\win7_x64\SmartDefragDriver.sys
2014-07-23 12:51:56 E5373CBF10497C4473E91479F9F339EC 17088 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\wxp_x64\SmartDefragDriver.sys
2014-07-23 12:51:56 A5FF19BCD851B3FE87281011E9F04CA7 17088 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\wnet_x64\SmartDefragDriver.sys
2014-07-23 12:51:56 853DADF45A76CB18EBC415EEBFFE0065 15808 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\wxp_x86\SmartDefragDriver.sys
2014-07-23 12:51:56 70C20DDD0B62E7325962349FCF9F36F2 18624 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\wlh_x86\SmartDefragDriver.sys
2014-07-23 12:51:56 536F48D55FFE7AD973B393B4124B13B3 16064 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\wnet_x86\SmartDefragDriver.sys
2014-07-23 12:51:56 11011926F2C4C853693C9ED909D2B059 18624 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\win8_x86\SmartDefragDriver.sys
2014-07-23 12:51:56 081E92E85F03C0BD757F7D3A1F454FD0 21184 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\wlh_x64\SmartDefragDriver.sys
2014-07-23 12:51:56 01411333E125717D9D0C1193FC08EDD5 18624 ----a-w- C:\Program Files (x86)\IObit\Smart Defrag 3\drivers\win7_x86\SmartDefragDriver.sys
2014-07-23 12:49:46 FD0057DFB7BB0A32C6FBFE43E9F901E1 66128 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\wlh_ia64\RegFilter.sys
2014-07-23 12:49:46 F5DBCF84176C62B4BEDF22DB56444CBD 21480 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_x86\FileMonitor.sys
2014-07-23 12:49:46 EDFC44468C59A19FB810AFC85320536B 36896 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\wlh_ia64\FileMonitor.sys
2014-07-23 12:49:46 D409D4A4517865131999FAC96D366CBF 23048 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys
2014-07-23 12:49:46 D39E6B769F8BD7F26949FD9C950F7358 34848 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\wlh_amd64\RegFilter.sys
2014-07-23 12:49:46 BA8DFA3826B6348863F736F506184454 18384 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\wnet_x86\UrlFilter.sys
2014-07-23 12:49:46 B53B59305D9B10D84D5AA5CE323E6A9B 41504 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_ia64\UrlFilter.sys
2014-07-23 12:49:46 B38026FE5CA420C6A22B7F7F6C6D6547 64592 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\wnet_ia64\RegFilter.sys
2014-07-23 12:49:46 B1C51A3CB466C0C4AFA54F0FA199F6B8 17360 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\wxp_x86\UrlFilter.sys
2014-07-23 12:49:46 AA1639ED5610A85C95CEAB38978CED5A 23048 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\wlh_amd64\FileMonitor.sys
2014-07-23 12:49:46 A89FF59E9162127053F5F9F632BA3D5D 20432 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\wnet_amd64\UrlFilter.sys
2014-07-23 12:49:46 A507B0EB01980FED379D82EF7D3CB43F 34848 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\wnet_amd64\RegFilter.sys
2014-07-23 12:49:46 9D6B3BF280120750A88BC8E08A2DE9CB 20944 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\wlh_x86\UrlFilter.sys
2014-07-23 12:49:46 9AF784DE16723A51BADB1EC48D4F704E 23016 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\wlh_amd64\UrlFilter.sys
2014-07-23 12:49:46 9840396B26E424046AD335C98B3F16C3 247968 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\wxp_x86\FileMonitor.sys
2014-07-23 12:49:46 9075C95322A94C355DFD3B614E9E3532 35848 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\wnet_ia64\UrlFilter.sys
2014-07-23 12:49:46 8BD175378BE3455B8F821EB807C7F4BC 32288 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_x86\RegFilter.sys
2014-07-23 12:49:46 893A6B67C8AA502648AD946CF50DDFD1 23016 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\UrlFilter.sys
2014-07-23 12:49:46 7EBAB88FEE6E97397C183ED3B71F0797 21480 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\wlh_x86\FileMonitor.sys
2014-07-23 12:49:46 7752291EA190FBDC3F001861261C2B59 41504 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\wlh_ia64\UrlFilter.sys
2014-07-23 12:49:46 6EF92564A06AEDA36F2E2414B4EA7D02 64592 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\wxp_ia64\RegFilter.sys
2014-07-23 12:49:46 6BB17E7A108A5D5B21ECD95C6297B4AE 21480 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\wnet_x86\FileMonitor.sys
2014-07-23 12:49:46 69AA6AF470BA8D8CE13FA45DE0D49C1C 31776 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\wxp_x86\RegFilter.sys
2014-07-23 12:49:46 60CA7D495DA23089E4F4D70F4DC2B11C 35848 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\wxp_ia64\UrlFilter.sys
2014-07-23 12:49:46 5623E2CC4F1F6DE24BE9DB3319E42D23 34848 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\RegFilter.sys
2014-07-23 12:49:46 4A03296A4F482D877FEF95FB7488216D 36384 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\wnet_ia64\FileMonitor.sys
2014-07-23 12:49:46 4351FD537D4B5BFB5CC73ABBECD9D678 32288 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\wlh_x86\RegFilter.sys
2014-07-23 12:49:46 415821AD05A3A19DF44A27FB72119473 20944 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_x86\UrlFilter.sys
2014-07-23 12:49:46 3C7682F5BC9E65A0AB6CA980009D5631 39992 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_ia64\FileMonitor.sys
2014-07-23 12:49:46 2AC63E2EBD94A7788B6D91A15DDC2D41 23048 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\wnet_amd64\FileMonitor.sys
2014-07-23 12:49:46 23450BAFD5439114FB6F8DC1371F4CB8 32288 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\wnet_x86\RegFilter.sys
2014-07-23 12:49:46 00BF94C463D1B768E2F36848888268F3 66128 ----a-w- C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_ia64\RegFilter.sys
2014-07-23 11:53:17 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\Program Files (x86)\Intuit\QuickBooks 2012\Components\RegisteredUI\sdksubscription.sys
2014-07-23 11:53:17 D000243373A1E38C19AE745C5A29BD63 4608 ----a-w- C:\Program Files (x86)\Intuit\QuickBooks 2012\Components\RegisteredUI\UI_sdk_smartvault1405963924.SYS

==== Startup Registry Enabled ======================

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 7"="C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe /Auto"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-3972060076-1261491416-1826647647-1003\Software\Microsoft\Windows\CurrentVersion\Run]
"GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart"
"SkyDrive"="C:\Users\Rosemary T\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe /background"
"NETGEARGenie"="C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe -mini -redirect"
"cdloader"="C:\Users\Rosemary T\AppData\Roaming\mjusbsp\cdloader2.exe MAGICJACK"
"iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
"3373A1C3D583ED47BD090987F747C520FB222973._service_run"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --type=service"
"RESTART_STICKY_NOTES"="C:\Windows\System32\StikyNot.exe"
"Updater"="C:\Program Files (x86)\Common Files\Updater\updater.exe"

[HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 7"="C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe /Auto"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-21-3972060076-1261491416-1826647647-1003\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\Rosemary T\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64"="C:\Windows\system32\cmd.exe /q /c rmdir /s /q C:\Users\Rosemary T\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64"
"Uninstall C:\Users\Rosemary T\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64"="C:\Windows\system32\cmd.exe /q /c rmdir /s /q C:\Users\Rosemary T\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64"
"Uninstall C:\Users\Rosemary T\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314\amd64"="C:\Windows\system32\cmd.exe /q /c rmdir /s /q C:\Users\Rosemary T\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314\amd64"
"Uninstall C:\Users\Rosemary T\AppData\Local\Microsoft\SkyDrive\17.0.2010.0530\amd64"="C:\Windows\system32\cmd.exe /q /c rmdir /s /q C:\Users\Rosemary T\AppData\Local\Microsoft\SkyDrive\17.0.2010.0530\amd64"
"Uninstall C:\Users\Rosemary T\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627\amd64"="C:\Windows\system32\cmd.exe /q /c rmdir /s /q C:\Users\Rosemary T\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627\amd64"
"Application Restart #6"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --flag-switches-begin --enable-experimental-extension-apis --flag-switches-end --restore-last-session -- http://www.outfox.tv/application/su...-729E-4770-8CA6-B82E52FEBEC2}&version=1.8.8.2"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Intuit SyncManager"="C:\Program Files (x86)\Common Files\Intuit\Sync\IntuitSyncManager.exe startup"
"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"ScanSnap WIA Service Checker"="C:\Windows\SSDriver\fi5110\SsWiaChecker.exe"
"iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"Dell Webcam Central"="C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe /mode2"
"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
"RoxWatchTray"="C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe"
"IObit Malware Fighter"="C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe /autostart"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"GoogleDriveSync"="C:\Program Files (x86)\Google\Drive\googledrivesync.exe /autostart"
"SkyDrive"="C:\Users\Rosemary T\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe /background"
"NETGEARGenie"="C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe -mini -redirect"
"cdloader"="C:\Users\Rosemary T\AppData\Roaming\mjusbsp\cdloader2.exe MAGICJACK"
"iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
"3373A1C3D583ED47BD090987F747C520FB222973._service_run"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --type=service"
"RESTART_STICKY_NOTES"="C:\Windows\System32\StikyNot.exe"
"Updater"="C:\Program Files (x86)\Common Files\Updater\updater.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\Rosemary T\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64"="C:\Windows\system32\cmd.exe /q /c rmdir /s /q C:\Users\Rosemary T\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64"
"Uninstall C:\Users\Rosemary T\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64"="C:\Windows\system32\cmd.exe /q /c rmdir /s /q C:\Users\Rosemary T\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64"
"Uninstall C:\Users\Rosemary T\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314\amd64"="C:\Windows\system32\cmd.exe /q /c rmdir /s /q C:\Users\Rosemary T\AppData\Local\Microsoft\SkyDrive\17.0.2006.0314\amd64"
"Uninstall C:\Users\Rosemary T\AppData\Local\Microsoft\SkyDrive\17.0.2010.0530\amd64"="C:\Windows\system32\cmd.exe /q /c rmdir /s /q C:\Users\Rosemary T\AppData\Local\Microsoft\SkyDrive\17.0.2010.0530\amd64"
"Uninstall C:\Users\Rosemary T\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627\amd64"="C:\Windows\system32\cmd.exe /q /c rmdir /s /q C:\Users\Rosemary T\AppData\Local\Microsoft\SkyDrive\17.0.2011.0627\amd64"
"Application Restart #6"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --flag-switches-begin --enable-experimental-extension-apis --flag-switches-end --restore-last-session -- http://www.outfox.tv/application/su...-729E-4770-8CA6-B82E52FEBEC2}&version=1.8.8.2"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
"LogMeIn GUI"="C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe"
"AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
"DellStage"=""C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\start.umj" --startup"

==== Startup Registry Disabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AccuWeatherWidget]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AccuWeatherWidget"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\Dell Stage\\Dell Stage\\AccuWeather\\accuweather.exe\" \"C:\\Program Files (x86)\\Dell Stage\\Dell Stage\\AccuWeather\\start.umj\" --startup"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ApplePhotoStreams]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ApplePhotoStreams"
"hkey"="HKCU"
"command"="C:\\Program Files (x86)\\Common Files\\Apple\\Internet Services\\ApplePhotoStreams.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iCloudServices]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="iCloudServices"
"hkey"="HKCU"
"command"="C:\\Program Files (x86)\\Common Files\\Apple\\Internet Services\\iCloudServices.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iTunesHelper]
"key"="SOFTWARE\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="iTunesHelper"
"hkey"="HKLM"
"command"="\"C:\\Program Files (x86)\\iTunes\\iTunesHelper.exe\""



[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Users^Rosemary T^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Send to OneNote.lnk]
"item"="Send to OneNote"
"path"="C:\\Users\\Rosemary T\\AppData\\Roaming\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Send to OneNote.lnk"
"backup"="C:\\Windows\\pss\\Send to OneNote.lnk.Startup"
"backupExtension"=".Startup"
"command"="C:\\PROGRA~1\\MICB8F~1\\root\\office15\\onenotem.exe"


==== Startup Folders ======================

2014-03-11 15:32:02 1317 ----a-w- C:\Users\Rosemary T\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Fujitsu S1300i Registration.lnk
2013-01-28 15:33:33 2205 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk
2014-03-11 15:06:45 960 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CardMinder Viewer.lnk
2014-03-11 14:59:10 964 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Conversion to PDF with ScanSnap Organizer.lnk
2014-04-10 15:37:09 2154 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass IE RunOnce.lnk
2013-01-23 18:32:46 2227 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Intuit Data Protect.lnk
2013-01-23 18:32:47 2440 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickBooks Update Agent.lnk
2013-01-23 18:32:47 2036 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickBooks_Standard_21.lnk
2014-07-21 17:31:23 1953 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SmartVault.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [07/16/2014 04:21 PM]
C:\Windows\tasks\G2MUpdateTask-S-1-5-21-3972060076-1261491416-1826647647-1003.job --a------ C:\Program Files (x86)\Citrix\GoToMeeting\1350\g2mupdate.exe [06/18/2014 01:07 PM]
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [01/28/2013 02:02 PM]
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [01/28/2013 02:02 PM]
C:\Windows\tasks\Norton Security Scan for Rosemary T.job --ah----- C:\PROGRA2\NORTON3\Engine\4101.28\Nss.exe []
C:\Windows\tasks\Rocket Updater.job --a------ C:\Users\ROSEMA1\AppData\Roaming\ROCKET1\UPDATE1\UPDATE1.exe []
C:\Windows\tasks\SlimDrivers Startup.job --a------ C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe [07/10/2013 08:58 AM]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]
"C:\Windows\SysNative\tasks\AdobeAAMUpdater-1.0-ROSEMARY-Rosemary T" [C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe]
"C:\Windows\SysNative\tasks\ASC7_SkipUac_Rosemary T" ["C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASC.exe" /SkipUac]
"C:\Windows\SysNative\tasks\ASP" ["C:\Program Files (x86)\RegClean Pro\SystweakASP.exe"]
"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
"C:\Windows\SysNative\tasks\Driver Booster Scan" [C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe]
"C:\Windows\SysNative\tasks\Driver Booster SkipUAC (SYSTEM)" [C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe]
"C:\Windows\SysNative\tasks\Driver Booster Update" [C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe]
"C:\Windows\SysNative\tasks\G2MUpdateTask-S-1-5-21-3972060076-1261491416-1826647647-1003" [C:\Program Files (x86)\Citrix\GoToMeeting\1350\g2mupdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
"C:\Windows\SysNative\tasks\IHUninstallTrackingTASK" [CMD]
"C:\Windows\SysNative\tasks\Norton Security Scan for Rosemary T" [C:\PROGRA~2\NORTON~3\Engine\410~1.28\Nss.exe]
"C:\Windows\SysNative\tasks\Norton WSC Integration" ["C:\Program Files (x86)\Norton Security Suite\Engine\21.3.0.12\WSCStub.exe"]
"C:\Windows\SysNative\tasks\PCDEventLauncher" ["C:\Program Files\Dell Support Center\sessionchecker.exe"]
"C:\Windows\SysNative\tasks\RegClean Pro" [C:\Program Files (x86)\RCP\RegCleanPro.exe]
"C:\Windows\SysNative\tasks\Rocket Updater" [C:\Users\ROSEMA~1\AppData\Roaming\ROCKET~1\UPDATE~1\UPDATE~1.EXE]
"C:\Windows\SysNative\tasks\Scheduled Update for Ask Toolbar" [C:\Program Files (x86)\Ask.com\UpdateTask.exe]
"C:\Windows\SysNative\tasks\SlimDrivers Startup" [C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe]
"C:\Windows\SysNative\tasks\SmartDefrag3_Update" [C:\Program Files (x86)\IObit\Smart Defrag 3\AutoUpdate.exe]
"C:\Windows\SysNative\tasks\SpyHunter4Startup" ["C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe"]
"C:\Windows\SysNative\tasks\Uninstaller_SkipUac_Administrator" [C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe]
"C:\Windows\SysNative\tasks\{07F7AC82-D640-48C5-AB66-AC477967EB80}" [C:\Program Files (x86)\Neat\exec\Neat.exe]
"C:\Windows\SysNative\tasks\{5406F786-FE9C-42B2-BF17-15318238954C}" [C:\Program Files\Common Files\The Neat Company\Neat\Setup\vcredist_x64.exe]
"C:\Windows\SysNative\tasks\{875E3C2E-A42E-4B89-8F23-A4A288E3A11C}" [C:\Program Files (x86)\IObit\IObit Uninstaller\Uninstaler_SkipUac.exe]
"C:\Windows\SysNative\tasks\{8B886680-0002-4A48-84FB-B1F5213D5ABF}" [C:\Program Files (x86)\Neat\exec\Neat.exe]
"C:\Windows\SysNative\tasks\{B9740DCF-EACD-4AED-8C55-FD2D6E5889FF}" [C:\Program Files\Common Files\The Neat Company\Neat\Setup\vcredist_x64.exe]
"C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
"C:\Windows\SysNative\tasks\Norton Security Suite\Norton Error Analyzer" [C:\Program Files (x86)\Norton Security Suite\Engine\21.3.0.12\SymErr.exe]
"C:\Windows\SysNative\tasks\Norton Security Suite\Norton Error Processor" [C:\Program Files (x86)\Norton Security Suite\Engine\21.3.0.12\SymErr.exe]
"C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}"="C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn" [07/28/2014 12:03 PM]

==== Firefox Extensions ======================

ProfilePath: C:\Users\ROSEMA~1\AppData\Roaming\Mozilla\Firefox\Profiles\g6wqyxnu.default
- Ads Removal - %ProfilePath%\extensions\adremoveext@adremoveext.net
- Advanced SystemCare Surfing Protection - %ProfilePath%\extensions\ascsurfingprotection@iobit.com
- Undetermined - %ProfilePath%\extensions\toolbar@ask.com

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Motive Extension - %AppDir%\extensions\mcciwbch@motive.com.xpi

==== Firefox Plugins ======================


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
aaaaojmikegpiepcfdkkjaplodkpfmlo - C:\Users\Rosemary T\AppData\Local\APN\GoogleCRXs\apnorjtoolbar.crx[03/31/2013 02:53 PM]
bakijjialdiiboeaknfpmflphhmljfkd - No path found[]
klibnahbojhkanfgaglnlalfkgpcppfi - C:\Users\Rosemary T\AppData\Local\CRE\klibnahbojhkanfgaglnlalfkgpcppfi.crx[]
lonndllmbldmmoefheenkmgkencnkdkh - C:\Users\Rosemary T\AppData\Local\CRE\lonndllmbldmmoefheenkmgkencnkdkh.crx[03/04/2013 12:37 PM]
mkfokfffehpeedafpekjeddnmnjhmcmk - C:\Program Files (x86)\Norton Security Suite\Engine\21.3.0.12\Exts\Chrome.crx[04/28/2014 08:52 AM]
pbofibgamhkgoonaocfgemncghhadmgb - C:\Users\Rosemary T\AppData\Local\CRE\pbofibgamhkgoonaocfgemncghhadmgb.crx[02/04/2013 12:56 PM]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
apdfllckaahabafndbhieahigkjlhalf - C:\Users\ROSEMA~1\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx[07/01/2013 04:16 PM]
bakijjialdiiboeaknfpmflphhmljfkd - No path found[]
klibnahbojhkanfgaglnlalfkgpcppfi - C:\Users\Rosemary T\AppData\Local\CRE\klibnahbojhkanfgaglnlalfkgpcppfi.crx[]
lonndllmbldmmoefheenkmgkencnkdkh - C:\Users\Rosemary T\AppData\Local\CRE\lonndllmbldmmoefheenkmgkencnkdkh.crx[03/04/2013 12:37 PM]
pbofibgamhkgoonaocfgemncghhadmgb - C:\Users\Rosemary T\AppData\Local\CRE\pbofibgamhkgoonaocfgemncghhadmgb.crx[02/04/2013 12:56 PM]

Docs - AFREC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - AFREC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - AFREC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - AFREC\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Motive Extension - AFREC\AppData\Local\Google\Chrome\User Data\Default\Extensions\edmgmpmklgfbohogafcfobonnkogchec
Norton Identity Protection - AFREC\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk
Gmail - AFREC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Ask Toolbar - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaojmikegpiepcfdkkjaplodkpfmlo
Awesome Screenshot: Capture Annotate - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\alelhddbbhepgpmgidjdcjakblofbmce
Google Docs - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
SmartVault Browser Extension - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\beflnephjnapefbofpgcjkncdojndodl
Google Voice Search Hotword (Beta) - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn
Password Recovery - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkikehajnoflehcbikieohifhaabneng
YouTube - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Firebug Lite for Google Chrome\u2122 - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmagokdooijbeehmkpknfglimnifench
The Ebates Cash Back Button makes earning Cash Back and finding Hot Deals easier than ever. - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\chhjbpecpncaggjpdakmflnfcopglcmi
Google Search - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Cloud Save - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlbemabjbfhjcccahjioenmkgimjbbkd
ShopAtHome.com extension - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlmebkoiahbppacaicbgncnjhbpdfkcc
Search All - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\eekjldapjblgadclklmgolijbagmdnfk
MailChimp - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\einnfnfpkbbebamphappjlmbedgjbnoe
Google Font Previewer for Chrome - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\engndlnldodigdjamndkplafgmkkencc
Print or PDF with CleanPrint - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\fklmmmdcofimkjmfjdnobmmgmefbapkf
Smartr Inbox for Gmail - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\gakklmehjhhdfjjgnmpkjoemjmeomnli
AdBlock - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
Untitled audio - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbmikajjgmnabiglmofipeabaddhgne
chrome - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\gncemjbbfkgdhfiigkdebleebbhlelap
Website Blocker Beta - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\hclgegipaehbigmbhdpfapmjadbaldib
LastPass - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd
InvisibleHand - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\lghjfnfolmcikomdjmoiemllfnlmmoko
KeyBar 1.6 - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\lonndllmbldmmoefheenkmgkencnkdkh
Norton Identity Protection - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk
FastestFox for Chrome - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmffncokckfccddfenhkhnllmlobdahm
Norton Identity Safe - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\njgpiocdhdmnglomggfjkkonjjfahnom
Google Wallet - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Print Friendly & PDF - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohlencieiipommannpdfcmfdpjjmeolj
Send from Gmail (by Google) - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgphcomnlaojlmmcjmiddhdapjpbgeoc
Gmail - Rosemary T\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== IE Start and Search Settings ======================

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{2F0AF3FC-F2F0-4AF3-9463-870E11CAAD8B}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR"
{2F0AF3FC-F2F0-4AF3-9463-870E11CAAD8B} WSE Rocket Url="http://rocket-find.com/results.php?...tGtDtDyDyBtAtCtB0E0FtCtD0F2Q&cr=438038456&ir="
{31090377-0740-419E-BEFC-A56E50500D5B} Unknown Url="Not_Found"

==== C:\zoek_backup content ======================

C:\zoek_backup (files=0 folders=0 0 bytes)

==== EOF on Tue 07/29/2014 at 13:02:03.89 ======================
 

TwinHeadedEagle

Level 41
Verified
Mar 8, 2013
22,627
Can you please Attach reports next time?


51a612a8b27e2-Zoek.png
Scan with ZOEK

Temporary disable your AntiVirus and AntiSpyware protection - instructions here.

  • Right-click on
    51a612a8b27e2-Zoek.png
    icon and select
    RunAsAdmin.jpg
    Run as Administrator to start the tool.
  • Wait patiently until the main console will appear, it may take a minute or two.
  • In the main box please paste in the following script:
    Code:
    createsrpoint;
    Search Protection;u
    ZoneAlarm LTD Toolbar;u
    C:\PROGRA~2\RCP;fs
    C:\PROGRA~2\PennyBee;fs
    C:\Users\Rosemary T\AppData\Locallow\AskToolbar;fs
    C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Smartbar;fs
    C:\Windows\sysWoW64\config\systemprofile\AppData\Roaming\Systweak;fs
    C:\Users\Rosemary T\AppData\Roaming\RocketUpdater;fs
    C:\Users\Rosemary T\AppData\Roaming\Systweak;fs
    [HKEY_USERS\S-1-5-21-3972060076-1261491416-1826647647-1003\Software\Microsoft\Windows\CurrentVersion\Run];r
    "Updater"=-;r
    C:\Program Files (x86)\Common Files\Updater;fs
    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run];r
    "Updater"=-;r
    C:\Users\ROSEMA1\AppData\Roaming\ROCKET1;fs
    C:\Windows\SysNative\tasks\RegClean Pro;f
    C:\Windows\SysNative\tasks\Rocket Updater;f
    Ads Removal;ff
    Undetermined;ff
    C:\Users\Rosemary T\AppData\Local\APN;fs
    aaaaojmikegpiepcfdkkjaplodkpfmlo;chr
    bakijjialdiiboeaknfpmflphhmljfkd;chr
    klibnahbojhkanfgaglnlalfkgpcppfi;chr
    lonndllmbldmmoefheenkmgkencnkdkh;chr
    pbofibgamhkgoonaocfgemncghhadmgb;chr
    autoclean;
    emptyalltemp;
  • Make sure that Scan All Users option is checked.
  • Push Run Script and wait patiently. The scan may take a couple of minutes.
  • When the scan completes, a zoek-results logfile should open in notepad.
  • If a reboot is needed, it will be opened after it. You may also find it at your main drive (usually C:\ drive)

Post its content into your next reply.
 

TwinHeadedEagle

Level 41
Verified
Mar 8, 2013
22,627
Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to me or any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!
 
Status
Not open for further replies.

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top