CreateRestorePoint:
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-4142645300-81699424-4017103561-1001\...\Policies\Explorer: [HideSCAHealth] 1
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Best Buy pc app.lnk
ShortcutTarget: Best Buy pc app.lnk -> C:\ProgramData\Best Buy pc app\ClickOnceSetup.exe (No File)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Best Buy pc app.lnk
ShortcutTarget: Best Buy pc app.lnk -> C:\ProgramData\Best Buy pc app\ClickOnceSetup.exe (No File)
Startup: C:\Users\Gina Riebel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Stardock ObjectDock.lnk
ShortcutTarget: Stardock ObjectDock.lnk -> C:\Program Files (x86)\Stardock\ObjectDockFree\ObjectDock.exe (No File)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\avg_igeared.xml
FF Extension: No Name - C:\Users\Gina Riebel\AppData\Roaming\Mozilla\Firefox\Profiles\9y60w7s5.default\extensions\{c2f863cd-0429-48c7-bb54-db756a951760} [Not Found]
FF Extension: No Name - C:\Users\Gina Riebel\AppData\Roaming\Mozilla\Firefox\Profiles\9y60w7s5.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [Not Found]
FF Extension: No Name - C:\Users\Gina Riebel\AppData\Roaming\Mozilla\Firefox\Profiles\9y60w7s5.default\extensions\adremoveext@adremoveext.net [Not Found]
FF Extension: No Name - C:\Users\Gina Riebel\AppData\Roaming\Mozilla\Firefox\Profiles\9y60w7s5.default\extensions\faststartff@gmail.com [Not Found]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]
S2 7c1130c3; c:\Program Files (x86)\TampaRunner\TampaRunner.dll [1606144 2015-02-04] () [File not signed]
S0 SmartDefragDriver; System32\Drivers\SmartDefragDriver.sys [X]
2015-02-04 13:58 - 2015-02-04 14:01 - 00000020 _____ () C:\Users\Gina Riebel\AppData\Roaming\appdataFr3.bin
2015-02-04 13:48 - 2015-02-04 13:48 - 00003190 _____ () C:\Windows\System32\Tasks\{2A0516D3-2A34-4481-9C44-C94BF34E5D04}
2015-02-04 13:26 - 2015-02-04 13:26 - 00003216 _____ () C:\Windows\System32\Tasks\{9DAB43F3-3ED9-465F-8658-685F4C3FAA6C}
2015-02-04 13:47 - 2011-01-28 13:33 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2015-02-04 13:47 - 2011-01-28 13:33 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy
Task: {5F0F7602-9CD4-41AB-8312-2E67383891C4} - System32\Tasks\SmartDefrag_Startup => C:\Program Files (x86)\IObit\Smart Defrag 2\SmartDefrag.exe
Task: {88ED527A-D1B2-4F44-8A66-C199FF068B95} - System32\Tasks\{9DAB43F3-3ED9-465F-8658-685F4C3FAA6C} => pcalua.exe -a "C:\Program Files (x86)\LucKyShoPPer\UVOftsp6CkC5Rl.exe" -c /s /n /i:"ExecuteCommands;UninstallCommands" ""
Task: {F8F3214B-0BB3-4B77-A0B4-15AA8FC24CC2} - System32\Tasks\AutoSmartDefrag => C:\Program Files (x86)\IObit\IObit SmartDefrag\IObit SmartDefrag.exe
Task: {FCF80CE1-A5B2-4D86-96FA-F605E0E099B5} - System32\Tasks\{2A0516D3-2A34-4481-9C44-C94BF34E5D04} => pcalua.exe -a C:\ProgramData\SoftCouPo\Z3uqYnV23x77oA.exe -c /s /n /i:"ExecuteCommands;UninstallCommands" ""
Task: C:\Windows\Tasks\AutoSmartDefrag.job => C:\Program Files (x86)\IObit\IObit SmartDefrag\IObit SmartDefrag.exe
C:\ProgramData\Best Buy pc app
C:\Program Files (x86)\mozilla firefox\searchplugins\avg_igeared.xml
c:\Program Files (x86)\TampaRunner
hosts:
EmptyTemp: