CreateRestorePoint: HKLM\...\Run: [SpaceSoundPro] => C:\Program Files\SpaceSoundPro\SpaceSoundPro.exe [4203520 2015-08-03] (Space Sound Pro) HKLM-x32\...\Run: [ospd_us_014010200] => [X] HKLM-x32\...\Run: [gmsd_us_005010200] => C:\Program Files (x86)\gmsd_us_005010200\gmsd_us_005010200.exe [3972784 2016-01-07] () HKLM-x32\...\RunOnce: [IOPROTECT] => C:\Program Files (x86)\SpaceSondPro_v53.11772\ioproduct_service.bat [164 2016-01-07] () HKLM-x32\...\RunOnce: [upgmsd_us_005010200.exe] => C:\Users\Scott\AppData\Local\gmsd_us_005010200\upgmsd_us_005010200.exe [3262640 2016-01-07] () HKU\S-1-5-21-667926241-938725764-3588881007-1000\...\Run: [SushiLeadsApplication] => C:\Program Files (x86)\sushileads\SushiLeadsApplication.exe [381952 2015-10-11] () HKU\S-1-5-21-667926241-938725764-3588881007-1000\...\Run: [DeskBar] => C:\Users\Scott\AppData\Local\DeskBar\dblaunch.exe [243200 2015-10-29] () HKU\S-1-5-21-667926241-938725764-3588881007-1000\...\Run: [Itibiti.exe] => C:\Program Files (x86)\Itibiti Soft Phone\Itibiti.exe [7342080 2013-06-26] () HKU\S-1-5-21-667926241-938725764-3588881007-1000\...\MountPoints2: I - I:\LaunchU3.exe -a HKU\S-1-5-21-667926241-938725764-3588881007-1000\...\MountPoints2: {91b984ca-2f84-11e4-b2ba-180373b1ac40} - I:\VZW_Software_upgrade_assistant.exe AppInit_DLLs: C:\ProgramData\FlashBeat\THIHPQ64.dll => C:\ProgramData\FlashBeat\THIHPQ64.dll [1096704 2016-01-06] (FlashBeat) AppInit_DLLs-x32: C:\ProgramData\FlashBeat\THIHPQ32.dll => C:\ProgramData\FlashBeat\THIHPQ32.dll [855552 2016-01-06] (FlashBeat) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AllPCoptimizer.exe.lnk [2016-01-07] ShortcutTarget: AllPCoptimizer.exe.lnk -> C:\Windows\Installer\{20A647C6-0C59-42A7-B3B4-1E95674496BB}\NewShortcut1_4CA89A60165741188EC12DF8484E49A4.exe (Flexera Software LLC) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\PlutoTV.lnk [2016-01-07] ShortcutTarget: PlutoTV.lnk -> C:\Program Files (x86)\Pluto TV\PlutoTV.exe () Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SearchTooKnowDesktopSearch.lnk [2016-01-07] ShortcutTarget: SearchTooKnowDesktopSearch.lnk -> C:\ProgramData\Search Too Know\SearchTooKnowDesktopSearch.exe () HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggacwoIUlsVEhgSeA0BTA0VGQ0OeQ9ZAxQXQg0QclsJA19BRQAFIk0FA1ADB0VXfVBdFElXTwhwJVhKAlElTlpoLlZP HKU\S-1-5-21-667926241-938725764-3588881007-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggacwoIUlsVEhgSeA0BTA0VGQ0OeQ9ZAxQXQg0QclsJA19BRQAFIk0FA1ADB0VXfVBdFElXTwhwJVhKAlElTlpoLlZP SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQALUglCQ1EQbQgAVQBcFVEbeBQBV1gTDFNAeAoKAwgTRwVHdR9aFQQTSEcFME0FCFwEURNNfWpdAEsSSWFML3JWDk4=&q={searchTerms} SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQALUglCQ1EQbQgAVQBcFVEbeBQBV1gTDFNAeAoKAwgTRwVHdR9aFQQTSEcFME0FCFwEURNNfWpdAEsSSWFML3JWDk4=&q={searchTerms} SearchScopes: HKLM-x32 -> {49606DC7-976D-4030-A74E-9FB5C842FA68} URL = hxxp://www.bing.com/search?q={searchTerms}&form=DLCDF8&pc=MDDC&src=IE-SearchBox SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-667926241-938725764-3588881007-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQALUglCQ1EQbQgAVQBcFVEbeBQBV1gTDFNAeAoKAwgTRwVHdR9aFQQTSEcFME0FCFwEURNNfWpdAEsSSWFML3JWDk4=&q={searchTerms} SearchScopes: HKU\S-1-5-21-667926241-938725764-3588881007-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQALUglCQ1EQbQgAVQBcFVEbeBQBV1gTDFNAeAoKAwgTRwVHdR9aFQQTSEcFME0FCFwEURNNfWpdAEsSSWFML3JWDk4=&q={searchTerms} SearchScopes: HKU\S-1-5-21-667926241-938725764-3588881007-1000 -> {4E6D4C86-0930-4323-98A4-1F372305E93C} URL = hxxp://www-mysearch.com/s.ashx?prd=opensearch&q={searchTerms}&s=G17zftptn095001,472a1e06-2237-4588-ab7d-fb291cdec2e9, SearchScopes: HKU\S-1-5-21-667926241-938725764-3588881007-1000 -> {B9FC1626-B751-4C59-9FB3-99C00CF86539} URL = hxxp://search.yahoo.com/yhs/search?hspart=ddc&hsimp=yhs-ddc_bd&type=bl-bir-dd__alt__ddc_dss_bd_com&p={searchTerms} FF ProfilePath: C:\Users\Scott\AppData\Roaming\Mozilla\Firefox\Profiles\gb4oydtu.default-1387666270504 FF Homepage: hxxp://searchinterneat-a.akamaihd.net/h?eq=U0EeCFZVBB8SRggacwoIUlsVEhgSeA0BTA0VGQ0OeQ9ZAxQXQg0QclsJA19BRQAFIk0FA18DB0VXfV9eFElXTwhwJVhKAlElTlpoLlZP FF NewTab: hxxp://searchinterneat-a.akamaihd.net/t?eq=U0EeFFhaR1oWHAwQcwkLA11CDAQbdAAVVV1JGRgadlhaTF8SGQYRIghaBwkVFBNBNARaB0tXUUEeJl9NER8fHGZGIUtbCW0eTn5NL04= FF Keyword.URL: hxxp://searchinterneat-a.akamaihd.net/s?eq=U0EeE1xZE1oZB1ZEfQALUglCQ1EQbQgAVQBcFVEbeBQBV1gTDFNAeAoKAwgTRwVHdR9aFQQTR0cFME0FB18EURNNfWpdAEsSSWFML3JWDk4=&q={searchTerms} FF Plugin: @microsoft.com/GENUINE -> disabled [No File] FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [No File] FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File] FF user.js: detected! => C:\Users\Scott\AppData\Roaming\Mozilla\Firefox\Profiles\gb4oydtu.default-1387666270504\user.js [2016-01-07] FF SearchPlugin: C:\Users\Scott\AppData\Roaming\Mozilla\Firefox\Profiles\gb4oydtu.default-1387666270504\searchplugins\search-simple.xml [2016-01-07] FF SearchPlugin: C:\Users\Scott\AppData\Roaming\Mozilla\Firefox\Profiles\gb4oydtu.default-1387666270504\searchplugins\smod.xml [2016-01-07] FF Extension: Search Too Know - C:\Users\Scott\AppData\Roaming\Mozilla\Firefox\Profiles\gb4oydtu.default-1387666270504\Extensions\{926a21b7-3759-4709-b3b4-19e3d3e49b40}.xpi [2016-01-07] [not signed] FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\firefox.cfg [2013-07-08] <==== ATTENTION S2 AmazingTab; C:\Program Files\amztab\amztab.exe [383488 2016-01-07] () [File not signed] S2 dTqFXWThya; C:\ProgramData\JwDgdEtp\dTqFXWThya.exe [3002336 2016-01-07] (Ratio Applications) S2 Service Mgr SearchTooKnow; C:\ProgramData\457082ba-095e-4f86-8a98-c078f3146538\plugincontainer.exe [783584 2016-01-07] () <==== ATTENTION S2 SushiLeadsUpdaterService; C:\Program Files (x86)\sushileads\NpUpdaterService.exe [10240 2015-10-11] () [File not signed] S2 swsesrvc_1.10.0.25; C:\Program Files (x86)\SwiftSearch_1.10.0.25\Service\swsesrvc.exe [301648 2015-09-22] (SS) S2 TheScreenSnapshotService; C:\Program Files (x86)\ScreenSnapshotTool\1.1.0.11130\ScreenShotServ.exe [153248 2015-12-07] () S2 Update Mgr SearchTooKnow; C:\Program Files (x86)\Common Files\457082ba-095e-4f86-8a98-c078f3146538\updater.exe [646368 2016-01-07] () <==== ATTENTION S2 wucotusy; C:\Program Files (x86)\4C4C4544-1452189802-3310-8048-B7C04F305231\hnskBC18.tmp [416256 2016-01-07] () [File not signed] S2 zigipyro; C:\Users\Scott\AppData\Local\4C4C4544-1452174645-3310-8048-B7C04F305231\qnshB57B.tmp [158720 2015-12-26] () [File not signed] S2 zutuzuni; C:\Program Files (x86)\4C4C4544-1452189802-3310-8048-B7C04F305231\jnskA710.tmp [307712 2016-01-07] () [File not signed] S2 lufolegozbt; C:\Program Files (x86)\4C4C4544-1452189802-3310-8048-B7C04F305231\knsz91C5.tmpfs [X] S1 swsedrvr_vt_1_10_0_25; C:\Windows\System32\drivers\swsedrvr_vt_1_10_0_25.sys [61304 2015-09-22] (SS) 2016-01-07 14:23 - 2016-01-07 14:23 - 00000000 ____D C:\Users\Scott\AppData\Local\ElevatedDiagnostics 2016-01-07 14:12 - 2016-01-07 14:12 - 00000000 ____D C:\Users\Scott\AppData\Local\TVTime 2016-01-07 14:10 - 2016-01-07 14:15 - 00000362 _____ C:\Windows\Tasks\AmiUpdXp.job 2016-01-07 14:10 - 2016-01-07 14:10 - 00003400 _____ C:\Windows\System32\Tasks\AmiUpdXp 2016-01-07 14:10 - 2016-01-07 14:10 - 00000000 ____D C:\Users\Scott\AppData\Local\3473 2016-01-07 13:57 - 2016-01-07 14:05 - 00000000 ____D C:\Users\Scott\AppData\Roaming\ScreenSnapshotTool 2016-01-07 13:57 - 2016-01-07 13:57 - 00000000 ____D C:\Users\Public\Documents\Guid 2016-01-07 13:57 - 2016-01-07 13:57 - 00000000 ____D C:\Program Files (x86)\ScreenSnapshotTool 2016-01-07 13:56 - 2016-01-07 14:15 - 00000292 _____ C:\Windows\Tasks\PC-Mechanic Startup.job 2016-01-07 13:56 - 2016-01-07 14:15 - 00000000 ____D C:\Users\Scott\AppData\Local\PlutoTV 2016-01-07 13:56 - 2016-01-07 14:14 - 00000278 _____ C:\Windows\Tasks\PC-Mechanic Maintenance.job 2016-01-07 13:56 - 2016-01-07 13:56 - 00003216 _____ C:\Windows\System32\Tasks\PC-Mechanic Maintenance 2016-01-07 13:56 - 2016-01-07 13:56 - 00002584 _____ C:\Windows\System32\Tasks\PC-Mechanic Startup 2016-01-07 13:56 - 2016-01-07 13:56 - 00001172 _____ C:\Users\Public\Desktop\PC Mechanic.lnk 2016-01-07 13:56 - 2016-01-07 13:56 - 00001093 _____ C:\Users\Public\Desktop\PlutoTV.lnk 2016-01-07 13:56 - 2016-01-07 13:56 - 00000013 _____ C:\Users\Scott\.pluto.tv 2016-01-07 13:56 - 2016-01-07 13:56 - 00000000 ____D C:\Users\Scott\AppData\Roaming\Uniblue 2016-01-07 13:56 - 2016-01-07 13:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue 2016-01-07 13:56 - 2016-01-07 13:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pluto TV 2016-01-07 13:56 - 2016-01-07 13:56 - 00000000 ____D C:\Program Files (x86)\Uniblue 2016-01-07 13:56 - 2016-01-07 13:56 - 00000000 ____D C:\Program Files (x86)\Pluto TV 2016-01-07 13:55 - 2016-01-07 14:14 - 00000000 ____D C:\Program Files (x86)\Search Too Know 2016-01-07 13:55 - 2016-01-07 13:56 - 00000000 ____D C:\ProgramData\457082ba-095e-4f86-8a98-c078f3146538 2016-01-07 13:55 - 2016-01-07 13:55 - 00000000 ____D C:\Users\Scott\AppData\Roaming\OpenCandy 2016-01-07 13:55 - 2016-01-07 13:55 - 00000000 ____D C:\ProgramData\Search Too Know 2016-01-07 13:55 - 2016-01-07 13:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search Too Know 2016-01-07 13:54 - 2016-01-07 13:54 - 00003428 _____ C:\Windows\System32\Tasks\Eotnuaivg 2016-01-07 13:54 - 2016-01-07 13:54 - 00000000 ____D C:\ProgramData\Eotnuaivg 2016-01-07 13:52 - 2016-01-07 14:17 - 00000000 ____D C:\Users\Scott\AppData\Local\gmsd_us_005010200 2016-01-07 13:52 - 2016-01-07 13:52 - 00003442 _____ C:\Windows\System32\Tasks\IBUpd 2016-01-07 13:52 - 2016-01-07 13:52 - 00000000 ____D C:\Users\Scott\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TheBrowser 2016-01-07 13:52 - 2016-01-07 13:52 - 00000000 ____D C:\Users\Scott\AppData\Local\TheBrowser 2016-01-07 13:52 - 2016-01-07 13:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GAMESDESKTOP 2016-01-07 13:52 - 2016-01-07 13:52 - 00000000 ____D C:\Program Files (x86)\gmsd_us_005010200 2016-01-07 13:51 - 2016-01-07 13:51 - 00001077 _____ C:\Users\Public\Desktop\KNCTR.lnk 2016-01-07 13:51 - 2016-01-07 13:51 - 00000000 ____D C:\Users\Scott\AppData\Roaming\Itibiti 2016-01-07 13:51 - 2016-01-07 13:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KNCTR 2016-01-07 13:51 - 2016-01-07 13:51 - 00000000 ____D C:\Program Files (x86)\Itibiti Soft Phone 2016-01-07 13:50 - 2016-01-07 14:17 - 00003734 _____ C:\Windows\System32\Tasks\SecurityApps2 2016-01-07 13:50 - 2016-01-07 13:50 - 00000000 ____D C:\Users\Scott\AppData\Local\SecurityApps 2016-01-07 13:50 - 2016-01-07 13:50 - 00000000 ____D C:\Users\Scott\AppData\Local\4C4C4544-1452174645-3310-8048-B7C04F305231 2016-01-07 13:50 - 2016-01-07 13:50 - 00000000 ____D C:\Program Files (x86)\PC Optimizer 2016-01-07 13:49 - 2016-01-07 14:11 - 00000000 ____D C:\ProgramData\JwDgdEtp 2016-01-07 13:49 - 2016-01-07 13:51 - 00000000 ____D C:\Program Files (x86)\SpaceSondPro_v53.11772 2016-01-07 13:49 - 2016-01-07 13:50 - 00000000 ____D C:\ProgramData\DataFile 2016-01-07 13:49 - 2016-01-07 13:49 - 00002615 _____ C:\Users\Public\Desktop\AllPCOptimizer.exe.lnk 2016-01-07 13:49 - 2016-01-07 13:49 - 00000008 _____ C:\END 2016-01-07 13:49 - 2016-01-07 13:49 - 00000000 ____D C:\Users\Scott\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpaceSoundPro 1.0 2016-01-07 13:49 - 2016-01-07 13:49 - 00000000 ____D C:\ProgramData\TVTime 2016-01-07 13:49 - 2016-01-07 13:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\All PC Optimizer 2016-01-07 13:49 - 2016-01-07 13:49 - 00000000 ____D C:\Program Files\SpaceSoundPro 2016-01-07 13:49 - 2016-01-07 13:49 - 00000000 ____D C:\Program Files (x86)\SpaceSondPro 2016-01-07 13:49 - 2016-01-07 13:49 - 00000000 ____D C:\Program Files (x86)\AllPCOptimizer 2016-01-07 13:48 - 2016-01-07 14:14 - 00000342 ____H C:\Windows\Tasks\IKRNRNFTJUKUGYYE.job 2016-01-07 13:48 - 2016-01-07 14:14 - 00000330 _____ C:\Windows\Tasks\AKAJBNYC1.job 2016-01-07 13:48 - 2016-01-07 13:52 - 00000000 ____D C:\Users\Scott\AppData\Local\DeskBar 2016-01-07 13:48 - 2016-01-07 13:48 - 00004220 _____ C:\Windows\System32\Tasks\amiupdaterExi 2016-01-07 13:48 - 2016-01-07 13:48 - 00004182 _____ C:\Windows\System32\Tasks\SwiftSearch Auto Updater 1.10.0.25 Pending Update 2016-01-07 13:48 - 2016-01-07 13:48 - 00004176 _____ C:\Windows\System32\Tasks\SwiftSearch Auto Updater 1.10.0.25 Core 2016-01-07 13:48 - 2016-01-07 13:48 - 00003402 _____ C:\Windows\System32\Tasks\amiupdaterExd 2016-01-07 13:48 - 2016-01-07 13:48 - 00003376 _____ C:\Windows\System32\Tasks\IKRNRNFTJUKUGYYE 2016-01-07 13:48 - 2016-01-07 13:48 - 00002852 _____ C:\Windows\System32\Tasks\AKAJBNYC1 2016-01-07 13:48 - 2016-01-07 13:48 - 00000000 ____D C:\ProgramData\Service1291 2016-01-07 13:48 - 2016-01-07 13:48 - 00000000 ____D C:\ProgramData\FlashBeat 2016-01-07 13:48 - 2016-01-07 13:48 - 00000000 ____D C:\ProgramData\28341ff220e0446c9fff27c4493d622e 2016-01-07 13:48 - 2016-01-07 13:48 - 00000000 ____D C:\Program Files (x86)\SwiftSearch_1.10.0.25 2016-01-07 13:06 - 2016-01-07 13:06 - 00000000 ____D C:\ProgramData\sushileads 2016-01-07 13:05 - 2016-01-07 13:05 - 00001443 _____ C:\ProgramData\tempimage.bmp 2016-01-07 13:04 - 2016-01-07 13:14 - 00000000 ____D C:\Users\Scott\AppData\Local\4C4C4544-1452171875-3310-8048-B7C04F305231 2016-01-07 13:04 - 2016-01-07 13:02 - 00000178 _____ C:\Windows\system32\Drivers\etc\hp.bak 2016-01-07 13:03 - 2016-01-07 13:03 - 00001826 _____ C:\Users\Scott\Desktop\Note-Up.lnk 2016-01-07 13:03 - 2016-01-07 13:03 - 00001826 _____ C:\Users\Guest\Desktop\Note-Up.lnk 2016-01-07 13:03 - 2016-01-07 13:03 - 00000000 ___HD C:\Program Files\AmazingTab 2016-01-07 13:03 - 2016-01-07 13:03 - 00000000 ____D C:\Program Files\amztab 2016-01-07 13:03 - 2016-01-07 13:03 - 00000000 ____D C:\Program Files (x86)\4C4C4544-1452189802-3310-8048-B7C04F305231 2016-01-07 13:01 - 2016-01-07 13:06 - 00000000 ____D C:\Program Files (x86)\sushileads 2016-01-07 13:01 - 2016-01-07 13:01 - 00003512 _____ C:\Windows\System32\Tasks\SushiLeads 2015-12-17 16:08 - 2015-12-17 16:08 - 02560512 _____ (winpcoptimizerbetatwo) C:\Windows\Allpcoptimizer.exe 2015-12-17 16:08 - 2015-12-17 16:08 - 00155136 _____ C:\Windows\Allpcoptimizer.pdb C:\Windows\System32\drivers\swsedrvr_vt_1_10_0_25.sys 2015-12-10 18:22 - 2015-12-10 18:22 - 00188104 _____ C:\ods.exe 2015-12-08 13:52 - 2015-12-08 13:52 - 00000151 _____ C:\ods.exe.config 2016-01-07 13:05 - 2016-01-07 13:05 - 0001443 _____ () C:\ProgramData\tempimage.bmp Task: {09F90E68-DA1C-4F6C-B841-F8C69B801FAA} - System32\Tasks\SecurityApps2 => C:\Program Files (x86)\PC Optimizer\PC Optimizer\Wiindows.exe [2015-12-16] () Task: {10AB3684-CFE2-4409-A56C-28866FAA4C7E} - System32\Tasks\SwiftSearch Auto Updater 1.10.0.25 Core => C:\Program Files (x86)\SwiftSearch_1.10.0.25\Update\SwiftSearchAutoUpdateClient.exe [2015-09-22] (SS) <==== ATTENTION Task: {1B81F6F7-D661-4C10-99D7-CBE22D8CAB1C} - System32\Tasks\amiupdaterExi => C:\Users\Scott\AppData\Local\Temp\amiupdater1359.exe <==== ATTENTION Task: {265116BC-ACF3-45BC-B4AF-47CD03882CE6} - System32\Tasks\AmiUpdXp => C:\Users\Scott\AppData\Local\3473\Updater.exe [2016-01-07] () <==== ATTENTION Task: {2D4E93B2-2EDD-4B1E-818D-1BD4C3A1FA3D} - System32\Tasks\AKAJBNYC1 => C:\ProgramData\FlashBeat\FlashBeat.exe [2016-01-06] (FlashBeat) <==== ATTENTION Task: {43DDC59A-A7C0-453C-A8AB-67428EE055C6} - System32\Tasks\IKRNRNFTJUKUGYYE => C:\ProgramData\Service1291\Service1291.exe [2016-01-07] () <==== ATTENTION Task: {52246412-D952-4727-9F88-7D621A958CFD} - System32\Tasks\amiupdaterExd => C:\Users\Scott\AppData\Local\Temp\task.vbs <==== ATTENTION Task: {59713759-E2A7-4E46-AF24-6E2D53B3AE74} - System32\Tasks\Eotnuaivg => C:\ProgramData\Eotnuaivg\1.0.7.1\ejletode.exe [2016-01-07] () Task: {7A88CC93-A7A4-4AB8-96F2-49C4BE6BFC89} - System32\Tasks\SwiftSearch Auto Updater 1.10.0.25 Pending Update => C:\Program Files (x86)\SwiftSearch_1.10.0.25\Update\SwiftSearchAutoUpdateClient.exe [2015-09-22] (SS) <==== ATTENTION Task: {927C15B7-1E5C-44DC-AC06-6EF662B1CB48} - System32\Tasks\SushiLeads => C:\Program Files (x86)\sushileads\ScheduledTask.exe [2015-10-11] () Task: {A993F337-A89A-4059-90E1-449F3125E2E6} - System32\Tasks\IBUpd => C:\Users\Scott\AppData\Local\TheBrowser\Application\updater.exe [2015-12-02] () Task: {ADC6F1F9-C81A-4094-A4DC-9B4A1D0A5177} - System32\Tasks\PC-Mechanic Startup => C:\Program Files (x86)\Uniblue\PC-Mechanic\pc-mechanic.exe [2015-11-30] (Uniblue Systems Limited) Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc Task: {E0E79F92-5B4C-47E1-8E7A-A934E27190D0} - System32\Tasks\PC-Mechanic Maintenance => C:\Program Files (x86)\Uniblue\PC-Mechanic\pc-mechanic.exe [2015-11-30] (Uniblue Systems Limited) Task: C:\Windows\Tasks\AKAJBNYC1.job => C:\ProgramData\FlashBeat\FlashBeat.exe <==== ATTENTION Task: C:\Windows\Tasks\AmiUpdXp.job => C:\Users\Scott\AppData\Local\3473\Updater.exe <==== ATTENTION Task: C:\Windows\Tasks\IKRNRNFTJUKUGYYE.job => C:\ProgramData\Service1291\Service1291.exe <==== ATTENTION Task: C:\Windows\Tasks\PC-Mechanic Maintenance.job => C:\Program Files (x86)\Uniblue\PC-Mechanic\pc-mechanic.exe Task: C:\Windows\Tasks\PC-Mechanic Startup.job => C:\Program Files (x86)\Uniblue\PC-Mechanic\pc-mechanic.exe ShortcutWithArgument: C:\Users\Scott\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www%2dmysearch.com/?prd=set_epc&s=G17zftptn095001,472a1e06-2237-4588-ab7d-fb291cdec2e9, ShortcutWithArgument: C:\Users\Scott\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www%2dmysearch.com/?prd=set_epc&s=G17zftptn095001,472a1e06-2237-4588-ab7d-fb291cdec2e9, ShortcutWithArgument: C:\Users\Scott\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet-Explorer Browser.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www%2dmysearch.com/?prd=set_epc&s=G17zftptn095001,472a1e06-2237-4588-ab7d-fb291cdec2e9, ShortcutWithArgument: C:\Users\Scott\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer (2).lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www%2dmysearch.com/?prd=set_epc&s=G17zftptn095001,472a1e06-2237-4588-ab7d-fb291cdec2e9, ShortcutWithArgument: C:\Users\Scott\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer (3).lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www%2dmysearch.com/?prd=set_epc&s=G17zftptn095001,472a1e06-2237-4588-ab7d-fb291cdec2e9, ShortcutWithArgument: C:\Users\Scott\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer (4).lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www%2dmysearch.com/?prd=set_epc&s=G17zftptn095001,472a1e06-2237-4588-ab7d-fb291cdec2e9, ShortcutWithArgument: C:\Users\Scott\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www%2dmysearch.com/?prd=set_epc&s=G17zftptn095001,472a1e06-2237-4588-ab7d-fb291cdec2e9, ShortcutWithArgument: C:\Users\Scott\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www-mysearch.com/?prd=set_epc&s=G17zftptn095001,472a1e06-2237-4588-ab7d-fb291cdec2e9, ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www-mysearch.com/?prd=set_epc&s=G17zftptn095001,472a1e06-2237-4588-ab7d-fb291cdec2e9, ShortcutWithArgument: C:\Users\Public\Desktop\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www-mysearch.com/?prd=set_epc&s=G17zftptn095001,472a1e06-2237-4588-ab7d-fb291cdec2e9, CMD: bitsadmin /reset /allusers CMD: netsh advfirewall reset CMD: netsh advfirewall set allprofiles state on CMD: ipconfig /flushdns CMD: netsh winsock reset catalog CMD: netsh int ip reset c:\resetlog.txt CMD: ipconfig /release CMD: ipconfig /renew CMD: netsh int ipv4 reset CMD: netsh int ipv6 reset Hosts: RemoveProxy: EmptyTemp: