dllhost.exe*32 problems Logs posted

Juliet · Nov 15, 2014

It's a mistake to leave your computer on and running while your gone.

You should had canceled the scan.

gurleygirl · Nov 17, 2014

ESET Scan:

C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe a variant of Win32/HiddenStart.A potentially unsafe application
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe a variant of Win32/HiddenStart.A potentially unsafe application
C:\ProgramData\Dell\DellDock\Shortcuts\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Images\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Images\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Images\B8500\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Images\B8500\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Images\B8800\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Images\B8800\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Images\C5300\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Images\C5300\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Images\C5500\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Images\C5500\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Images\C6300\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Images\C6300\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Images\D2500\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Images\D2500\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Images\D730\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Images\D730\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Images\generic\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Images\generic\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Images\J4500\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Images\J4500\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Images\J4660\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Images\J4660\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Images\J4680\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Images\J4680\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Images\J6400\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Images\J6400\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Movies\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Models\Movies\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Templates\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Templates\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Templates\Images\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT\Data\Templates\Images\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT 2.0\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT 2.0\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT 2.0\data\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT 2.0\data\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT 2.0\data\Models\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT 2.0\data\Models\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT 2.0\data\Models\HP Officejet 4500 G510n-z\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT 2.0\data\Models\HP Officejet 4500 G510n-z\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT 2.0\data\Models\HP Officejet 4500 G510n-z\Images\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT 2.0\data\Models\HP Officejet 4500 G510n-z\Images\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT 2.0\data\sessions\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT 2.0\data\sessions\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT 2.0\data\templates\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT 2.0\data\templates\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT 2.0\data\templates\Images\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\HP\LGT 2.0\data\templates\Images\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\Entitlement Client\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\Entitlement Client\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\Entitlement Client\v5\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\Entitlement Client\v5\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\Entitlement Client\v6.0\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\Entitlement Client\v6.0\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\Entitlement Client\v8\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\Entitlement Client\v8\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks\ReportCenter\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks\ReportCenter\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\Components\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\Components\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\.target\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\.target\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\.target\85216424\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\.target\85216424\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\.target\85216424\content\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\.target\85216424\content\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Patch\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Patch\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\.target\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\.target\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\.target\85216424\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\.target\85216424\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\.target\85216424\content\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\.target\85216424\content\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DataProtect\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DataProtect\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DataProtect\OCD\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DataProtect\OCD\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DataProtect\ROLLBACK\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DataProtect\ROLLBACK\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\.target\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\.target\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\.target\85216424\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\.target\85216424\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\.target\85216424\content\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\.target\85216424\content\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\NewFeatures\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\NewFeatures\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\NewFeatures\.update\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\NewFeatures\.update\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\NewFeatures\.update\.target\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\NewFeatures\.update\.target\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Patch\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Patch\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Payroll\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Payroll\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Payroll\.update\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Payroll\.update\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Payroll\.update\.target\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Payroll\.update\.target\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\.target\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\.target\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\.target\85216424\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\.target\85216424\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\.target\85216424\content\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\.target\85216424\content\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\StateForms\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\StateForms\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\StateForms\.update\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\StateForms\.update\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\StateForms\.update\.target\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\StateForms\.update\.target\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\SyncMgr\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\SyncMgr\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\SyncMgr\OCD\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\SyncMgr\OCD\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2012\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2012\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2012\Components\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2012\Components\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2012\Components\DataProtect\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2012\Components\DataProtect\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2012\Components\DataProtect\OCD\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2012\Components\DataProtect\OCD\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2012\Components\DownloadQB22\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2012\Components\DownloadQB22\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2012\Components\DownloadQB22\SPatch\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2012\Components\DownloadQB22\SPatch\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2012\Components\OLB\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2012\Components\OLB\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2012\Components\OLB\branding\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2012\Components\OLB\branding\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2012\Components\OLB\branding\filist\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2012\Components\OLB\branding\filist\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2012\Components\OLB\workflow\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2012\Components\OLB\workflow\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2012\Components\PDFDownload\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2012\Components\PDFDownload\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2012\Components\SyncMgr\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2012\Components\SyncMgr\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2012\Components\SyncMgr\OCD\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2012\Components\SyncMgr\OCD\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2013\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2013\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2013\Components\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2013\Components\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2013\Components\DataProtect\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2013\Components\DataProtect\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2013\Components\DataProtect\OCD\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\QuickBooks 2013\Components\DataProtect\OCD\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\SyncManager\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Intuit\SyncManager\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\LeapPad2\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\LeapPad2\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\LeapPad2\290E220001011026A25A\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\LeapPad2\290E220001011026A25A\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\LeapPad2\2919220001011025F7B3\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\LeapPad2\2919220001011025F7B3\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\AltHomepage\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\AltHomepage\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\AltHomepage\Landing\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\AltHomepage\Landing\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\AltHomepage\Landing\images\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\AltHomepage\Landing\images\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\Homepage\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\Homepage\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\Homepage\Landing\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\Homepage\Landing\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\Expandables\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\Expandables\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\Landing\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\Landing\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\My Device\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\My Device\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\My Device\images\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\My Device\images\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\Expandables\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\Expandables\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\Landing\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\Landing\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\My Device\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\My Device\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\My Device\images\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\My Device\images\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\Tag\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\Tag\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\Tag\Landing\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\Tag\Landing\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\Tag\Landing\panels\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\Tag\Landing\panels\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Light-O-Rama\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Light-O-Rama\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Light-O-Rama\Samples\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Light-O-Rama\Samples\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Macrovision\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Macrovision\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Macrovision\FLEXnet Connect\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Macrovision\FLEXnet Connect\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Macrovision\FLEXnet Connect\11\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Macrovision\FLEXnet Connect\11\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Macrovision\FLEXnet Connect\11\ui\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Macrovision\FLEXnet Connect\11\ui\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Macrovision\FLEXnet Connect\11\ui\images\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Macrovision\FLEXnet Connect\11\ui\images\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Microsoft\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Microsoft\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Microsoft\eHome\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Microsoft\eHome\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Microsoft\RAC\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Microsoft\RAC\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Microsoft\RAC\PublishedData\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Microsoft\RAC\PublishedData\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Microsoft\RAC\StateData\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Microsoft\RAC\StateData\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\PCDr\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\PCDr\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\PCDr\6426\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\PCDr\6426\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\PCDr\6426\AddOnContent\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\PCDr\6426\AddOnContent\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\PCDr\6426\AddOnContent\ba005e12-3139-4327-9f7a-9f2ea6a6c841-d3dc259c-4fe5-45a6-a2aa-aaba450ab883\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\PCDr\6426\AddOnContent\ba005e12-3139-4327-9f7a-9f2ea6a6c841-d3dc259c-4fe5-45a6-a2aa-aaba450ab883\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\PCDr\6426\AddOnDownloaderCache\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\PCDr\6426\AddOnDownloaderCache\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\PCDr\6426\datastore\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\PCDr\6426\datastore\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\PCDr\6426\Tonopah\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\PCDr\6426\Tonopah\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\PCDr\6426\Tonopah\db\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\PCDr\6426\Tonopah\db\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\PCDr\6426\Tonopah\manifest\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\PCDr\6426\Tonopah\manifest\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\PCDr\6426\Tonopah\upload\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\PCDr\6426\Tonopah\upload\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\PCDr\Tonopah\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\PCDr\Tonopah\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Skype\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Skype\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Skype\Plugins\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Skype\Plugins\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Skype\Plugins\Local Cache\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Skype\Plugins\Local Cache\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Skype\Plugins\Plugins\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Skype\Plugins\Plugins\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Skype\Plugins\Plugins\F57B48ADF2224F088EDD1A2B9BAD84E8\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Skype\Plugins\Plugins\F57B48ADF2224F088EDD1A2B9BAD84E8\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Skype\Plugins\Plugins\F57B48ADF2224F088EDD1A2B9BAD84E8\Local Cache\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Skype\Plugins\Plugins\F57B48ADF2224F088EDD1A2B9BAD84E8\Local Cache\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Sonic\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Sonic\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Spybot - Search & Destroy\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Spybot - Search & Destroy\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Spybot - Search & Destroy\Logs\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Spybot - Search & Destroy\Logs\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Spybot - Search & Destroy\Quarantine\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Spybot - Search & Destroy\Quarantine\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-PcWarranty\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-PcWarranty\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-PcWarranty\en\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-PcWarranty\en\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingEcare\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingEcare\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingEcare\en\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingEcare\en\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingSecurityAndBackup\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingSecurityAndBackup\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingSecurityAndBackup\en\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingSecurityAndBackup\en\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Upsell\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Upsell\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Upsell\Upsell-Bundles\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Upsell\Upsell-Bundles\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Upsell\Upsell-Bundles\en\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Upsell\Upsell-Bundles\en\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\RADIALPOINT-UI-HSD-1-0-0-A962FBAB\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\RADIALPOINT-UI-HSD-1-0-0-A962FBAB\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\RADIALPOINT-UI-HSD-1-0-0-A962FBAB\en\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\RADIALPOINT-UI-HSD-1-0-0-A962FBAB\en\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\RADIALPOINT-UI-HSD-1-0-0-A962FBAB\en\help\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\ProgramData\Windstream\Service Agent\UiSections\RADIALPOINT-UI-HSD-1-0-0-A962FBAB\en\help\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Dell\DellDock\Shortcuts\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Images\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Images\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Images\B8500\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Images\B8500\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Images\B8800\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Images\B8800\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Images\C5300\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Images\C5300\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Images\C5500\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Images\C5500\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Images\C6300\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Images\C6300\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Images\D2500\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Images\D2500\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Images\D730\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Images\D730\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Images\generic\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Images\generic\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Images\J4500\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Images\J4500\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Images\J4660\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Images\J4660\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Images\J4680\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Images\J4680\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Images\J6400\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Images\J6400\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Movies\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Models\Movies\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Templates\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Templates\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Templates\Images\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT\Data\Templates\Images\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT 2.0\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT 2.0\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT 2.0\data\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT 2.0\data\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT 2.0\data\Models\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT 2.0\data\Models\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT 2.0\data\Models\HP Officejet 4500 G510n-z\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT 2.0\data\Models\HP Officejet 4500 G510n-z\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT 2.0\data\Models\HP Officejet 4500 G510n-z\Images\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT 2.0\data\Models\HP Officejet 4500 G510n-z\Images\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT 2.0\data\sessions\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT 2.0\data\sessions\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT 2.0\data\templates\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT 2.0\data\templates\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT 2.0\data\templates\Images\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\HP\LGT 2.0\data\templates\Images\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\Entitlement Client\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\Entitlement Client\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\Entitlement Client\v5\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\Entitlement Client\v5\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\Entitlement Client\v6.0\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\Entitlement Client\v6.0\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\Entitlement Client\v8\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\Entitlement Client\v8\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks\ReportCenter\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks\ReportCenter\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\Components\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\Components\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\Components\DownloadQB18\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\Components\DownloadQB18\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\.target\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\.target\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\.target\85216424\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\.target\85216424\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\.target\85216424\content\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\.target\85216424\content\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\Components\DownloadQB18\Patch\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\Components\DownloadQB18\Patch\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\.target\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\.target\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\.target\85216424\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\.target\85216424\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\.target\85216424\content\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\.target\85216424\content\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DataProtect\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DataProtect\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DataProtect\OCD\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DataProtect\OCD\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DataProtect\ROLLBACK\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DataProtect\ROLLBACK\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\.target\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\.target\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\.target\85216424\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\.target\85216424\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\.target\85216424\content\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\.target\85216424\content\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\NewFeatures\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\NewFeatures\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\NewFeatures\.update\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\NewFeatures\.update\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\NewFeatures\.update\.target\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\NewFeatures\.update\.target\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Patch\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Patch\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Payroll\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Payroll\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Payroll\.update\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Payroll\.update\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Payroll\.update\.target\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Payroll\.update\.target\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\.target\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\.target\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\.target\85216424\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\.target\85216424\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\.target\85216424\content\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\.target\85216424\content\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\StateForms\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\StateForms\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\StateForms\.update\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\StateForms\.update\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\StateForms\.update\.target\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\StateForms\.update\.target\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\SyncMgr\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\SyncMgr\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\SyncMgr\OCD\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2011_03.15.04.57\Components\SyncMgr\OCD\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2012\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2012\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2012\Components\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2012\Components\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2012\Components\DataProtect\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2012\Components\DataProtect\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2012\Components\DataProtect\OCD\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2012\Components\DataProtect\OCD\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2012\Components\DownloadQB22\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2012\Components\DownloadQB22\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2012\Components\DownloadQB22\SPatch\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2012\Components\DownloadQB22\SPatch\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2012\Components\OLB\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2012\Components\OLB\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2012\Components\OLB\branding\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2012\Components\OLB\branding\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2012\Components\OLB\branding\filist\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2012\Components\OLB\branding\filist\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2012\Components\OLB\workflow\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2012\Components\OLB\workflow\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2012\Components\PDFDownload\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2012\Components\PDFDownload\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2012\Components\SyncMgr\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2012\Components\SyncMgr\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2012\Components\SyncMgr\OCD\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2012\Components\SyncMgr\OCD\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2013\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2013\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2013\Components\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2013\Components\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2013\Components\DataProtect\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2013\Components\DataProtect\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2013\Components\DataProtect\OCD\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\QuickBooks 2013\Components\DataProtect\OCD\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\SyncManager\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Intuit\SyncManager\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\LeapPad2\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\LeapPad2\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\LeapPad2\290E220001011026A25A\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\LeapPad2\290E220001011026A25A\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\LeapPad2\2919220001011025F7B3\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\LeapPad2\2919220001011025F7B3\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\AltHomepage\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\AltHomepage\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\AltHomepage\Landing\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\AltHomepage\Landing\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\AltHomepage\Landing\images\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\AltHomepage\Landing\images\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\Homepage\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\Homepage\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\Homepage\Landing\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\Homepage\Landing\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\Expandables\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\Expandables\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\Landing\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\Landing\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\My Device\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\My Device\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\My Device\images\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\My Device\images\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\Expandables\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\Expandables\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\Landing\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\Landing\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\My Device\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\My Device\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\My Device\images\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\My Device\images\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\Tag\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\Tag\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\Tag\Landing\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\Tag\Landing\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\Tag\Landing\panels\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Leapfrog\LeapFrog Connect\TempFlashFiles\Tag\Landing\panels\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Light-O-Rama\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Light-O-Rama\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Light-O-Rama\Samples\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Light-O-Rama\Samples\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Macrovision\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Macrovision\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Macrovision\FLEXnet Connect\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Macrovision\FLEXnet Connect\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Macrovision\FLEXnet Connect\11\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Macrovision\FLEXnet Connect\11\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Macrovision\FLEXnet Connect\11\ui\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Macrovision\FLEXnet Connect\11\ui\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Macrovision\FLEXnet Connect\11\ui\images\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Macrovision\FLEXnet Connect\11\ui\images\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Microsoft\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Microsoft\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Microsoft\eHome\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Microsoft\eHome\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Microsoft\RAC\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Microsoft\RAC\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Microsoft\RAC\PublishedData\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Microsoft\RAC\PublishedData\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Microsoft\RAC\StateData\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Microsoft\RAC\StateData\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\PCDr\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\PCDr\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\PCDr\6426\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\PCDr\6426\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\PCDr\6426\AddOnContent\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\PCDr\6426\AddOnContent\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\PCDr\6426\AddOnContent\ba005e12-3139-4327-9f7a-9f2ea6a6c841-d3dc259c-4fe5-45a6-a2aa-aaba450ab883\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\PCDr\6426\AddOnContent\ba005e12-3139-4327-9f7a-9f2ea6a6c841-d3dc259c-4fe5-45a6-a2aa-aaba450ab883\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\PCDr\6426\AddOnDownloaderCache\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\PCDr\6426\AddOnDownloaderCache\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\PCDr\6426\datastore\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\PCDr\6426\datastore\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\PCDr\6426\Tonopah\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\PCDr\6426\Tonopah\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\PCDr\6426\Tonopah\db\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\PCDr\6426\Tonopah\db\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\PCDr\6426\Tonopah\manifest\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\PCDr\6426\Tonopah\manifest\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\PCDr\6426\Tonopah\upload\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\PCDr\6426\Tonopah\upload\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\PCDr\Tonopah\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\PCDr\Tonopah\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Skype\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Skype\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Skype\Plugins\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Skype\Plugins\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Skype\Plugins\Local Cache\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Skype\Plugins\Local Cache\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Skype\Plugins\Plugins\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Skype\Plugins\Plugins\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Skype\Plugins\Plugins\F57B48ADF2224F088EDD1A2B9BAD84E8\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Skype\Plugins\Plugins\F57B48ADF2224F088EDD1A2B9BAD84E8\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Skype\Plugins\Plugins\F57B48ADF2224F088EDD1A2B9BAD84E8\Local Cache\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Skype\Plugins\Plugins\F57B48ADF2224F088EDD1A2B9BAD84E8\Local Cache\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Sonic\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Sonic\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Spybot - Search & Destroy\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Spybot - Search & Destroy\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Spybot - Search & Destroy\Logs\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Spybot - Search & Destroy\Logs\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Spybot - Search & Destroy\Quarantine\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Spybot - Search & Destroy\Quarantine\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\DataDefinition-Services\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\DataDefinition-Services\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-PcWarranty\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-PcWarranty\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-PcWarranty\en\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-PcWarranty\en\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingEcare\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingEcare\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingEcare\en\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingEcare\en\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingSecurityAndBackup\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingSecurityAndBackup\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingSecurityAndBackup\en\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingSecurityAndBackup\en\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\DataDefinition-Upsell\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\DataDefinition-Upsell\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\DataDefinition-Upsell\Upsell-Bundles\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\DataDefinition-Upsell\Upsell-Bundles\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\DataDefinition-Upsell\Upsell-Bundles\en\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\DataDefinition-Upsell\Upsell-Bundles\en\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\RADIALPOINT-UI-HSD-1-0-0-A962FBAB\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\RADIALPOINT-UI-HSD-1-0-0-A962FBAB\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\RADIALPOINT-UI-HSD-1-0-0-A962FBAB\en\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\RADIALPOINT-UI-HSD-1-0-0-A962FBAB\en\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\RADIALPOINT-UI-HSD-1-0-0-A962FBAB\en\help\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\All Users\Windstream\Service Agent\UiSections\RADIALPOINT-UI-HSD-1-0-0-A962FBAB\en\help\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Apple Computer\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Apple Computer\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Apple Computer\iTunes\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Apple Computer\iTunes\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\DIRECTV Player\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\DIRECTV Player\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\DIRECTV Player\Legal\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\DIRECTV Player\Legal\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Google\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Google\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Google\Chrome\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Google\Chrome\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Google\Chrome\User Data\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Google\Chrome\User Data\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Google\Chrome\User Data\Default\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Google\Chrome\User Data\Default\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Google\Chrome\User Data\Default\databases\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Google\Chrome\User Data\Default\databases\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\QBDataSync_OfflineLogs\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\QBDataSync_OfflineLogs\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\QBDataSync_OfflineLogs\CB8D650F50892B47E040900A441A5554_Logs\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\QBDataSync_OfflineLogs\CB8D650F50892B47E040900A441A5554_Logs\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.2.23.4037\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.2.23.4037\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.4.23.4010\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.4.23.4010\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.4.23.4011\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.4.23.4011\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.5.23.4005\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.5.23.4005\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.5.23.4007\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.5.23.4007\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.6.23.4001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.6.23.4001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.7.23.4002\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.7.23.4002\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.7.23.4007\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.7.23.4007\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.7.23.4016\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.7.23.4016\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\6.0.24.4009\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\6.0.24.4009\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\6.2.24.4107\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\6.2.24.4107\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\6.3.24.4012\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\6.3.24.4012\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\Current\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\SyncManager\Current\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\TempSyncLogs\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Intuit\TempSyncLogs\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\ehome\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\ehome\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Internet Explorer\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Internet Explorer\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Media Player\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Media Player\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Media Player\Art Cache\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Media Player\Art Cache\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Media Player\Art Cache\LocalMLS\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Media Player\Art Cache\LocalMLS\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Messenger\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Messenger\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Office\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Office\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Office\15.0\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Office\15.0\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Office\15.0\OfficeFileCache\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Office\15.0\OfficeFileCache\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Photo Acquisition\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Photo Acquisition\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Windows Live Mail\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Windows Live Mail\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Windows Live Mail\Backup\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Windows Live Mail\Backup\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Windows Live Mail\Backup\new\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Windows Live Mail\Backup\new\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Windows Live Mail\Sentinel\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Windows Live Mail\Sentinel\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Windows Live Photo Acquisition\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Windows Live Photo Acquisition\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Windows Mail\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Windows Mail\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Windows Mail\Backup\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Windows Mail\Backup\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Windows Mail\Backup\old\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Windows Mail\Backup\old\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Windows Mail\Stationery\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Windows Mail\Stationery\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Windows Media\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Windows Media\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Windows Media\12.0\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Windows Media\12.0\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Windows Photo Gallery\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Windows Photo Gallery\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Windows Photo Gallery\Original Images\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft\Windows Photo Gallery\Original Images\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft Games\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft Games\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft Games\FreeCell\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Microsoft Games\FreeCell\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Local\Temp\11544\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HN6ECFET\h5v0iiglnm[1].htm JS/Exploit.Agent.NHX trojan
C:\Users\Melissa\AppData\Local\Temp\7e94\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HN6ECFET\e0kih564qj[1].htm JS/Exploit.Agent.NHY trojan
C:\Users\Melissa\AppData\Local\Temp\9d10\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HN6ECFET\0xgnob24tu[1].htm JS/Exploit.Agent.NHX trojan
C:\Users\Melissa\AppData\Local\Temp\befc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HN6ECFET\shbff1zqit[1].htm JS/Exploit.Agent.NHX trojan
C:\Users\Melissa\AppData\Local\Temp\c054\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M4DWYY19\87e89ufcaz[1].htm JS/Exploit.Agent.NHX trojan
C:\Users\Melissa\AppData\Local\Temp\cda8\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HN6ECFET\sl4tlkited[1].htm JS/Exploit.Agent.NHX trojan
C:\Users\Melissa\AppData\LocalLow\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Adobe\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Adobe\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Adobe\Acrobat\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Adobe\Acrobat\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Adobe\Acrobat\10.0\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Adobe\Acrobat\10.0\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\DTV\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\DTV\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\DTV\PCShow\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\DTV\PCShow\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\DTV\PCShow\catalogs\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\DTV\PCShow\catalogs\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Microsoft\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Microsoft\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\s\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\s\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\s\eer4rru2aqwqtonnnklwiobyo3um0pgyaz3owxdir1tygg0egsaaacca\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\s\eer4rru2aqwqtonnnklwiobyo3um0pgyaz3owxdir1tygg0egsaaacca\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\s\eer4rru2aqwqtonnnklwiobyo3um0pgyaz3owxdir1tygg0egsaaacca\f\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\s\eer4rru2aqwqtonnnklwiobyo3um0pgyaz3owxdir1tygg0egsaaacca\f\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\s\psld1rq2evnjg2ki2ziatkouhebg2l4klzm3vvurqxwtu41pinaaahda\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\s\psld1rq2evnjg2ki2ziatkouhebg2l4klzm3vvurqxwtu41pinaaahda\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\s\psld1rq2evnjg2ki2ziatkouhebg2l4klzm3vvurqxwtu41pinaaahda\f\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\s\psld1rq2evnjg2ki2ziatkouhebg2l4klzm3vvurqxwtu41pinaaahda\f\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Sun\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Sun\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Sun\Java\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Sun\Java\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\11\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\11\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\26\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\26\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\3\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\3\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\32\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\32\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\4\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\4\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\42\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\42\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Sun\Java\jre1.6.0_22\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\LocalLow\Sun\Java\jre1.6.0_22\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\OICE_15_974FA576_32C1D314_1139\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\OICE_15_974FA576_32C1D314_1139\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\OICE_15_974FA576_32C1D314_2CDE\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\OICE_15_974FA576_32C1D314_2CDE\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Adobe\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Adobe\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Adobe\Flash Player\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Adobe\Flash Player\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Adobe\Flash Player\AssetCache\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Adobe\Flash Player\AssetCache\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Adobe\Flash Player\AssetCache\T4QJTQHZ\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Adobe\Flash Player\AssetCache\T4QJTQHZ\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Amazon\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Amazon\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Amazon\MP3 Downloader\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Amazon\MP3 Downloader\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Dell\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Dell\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Dell\Dell Stage\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Dell\Dell Stage\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Dell\Dell Stage\{6dedbe25-1baa-49d5-a314-3524143af6f7}\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Dell\Dell Stage\{6dedbe25-1baa-49d5-a314-3524143af6f7}\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\HP\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\HP\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\HP\WebRegLogs\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\HP\WebRegLogs\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Access\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Access\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\DbgClr\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\DbgClr\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\DbgClr\8.0\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\DbgClr\8.0\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Document Building Blocks\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Document Building Blocks\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Document Building Blocks\1033\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Document Building Blocks\1033\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Document Building Blocks\1033\14\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Document Building Blocks\1033\14\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Document Building Blocks\1033\15\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Document Building Blocks\1033\15\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\2013%20group%20schedule303277132184948787\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\2013%20group%20schedule303277132184948787\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\Field%20trip%20schedule%202014303920862365260351\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\Field%20trip%20schedule%202014303920862365260351\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\Field%20trip%20schedule%202014303970643328640619\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\Field%20trip%20schedule%202014303970643328640619\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\Field%20trip%20schedule%202014304010691630387985\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\Field%20trip%20schedule%202014304010691630387985\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\Field%20trip%20schedule%202014304028803416694882\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\Field%20trip%20schedule%202014304028803416694882\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\Field%20trip%20schedule%202014304039061652633985\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\Field%20trip%20schedule%202014304039061652633985\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Signatures\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Signatures\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\Managed\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\Managed\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\Managed\SmartArt Graphics\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\Managed\SmartArt Graphics\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\Managed\SmartArt Graphics\1033\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\Managed\SmartArt Graphics\1033\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\Managed\Word Document Building Blocks\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\Managed\Word Document Building Blocks\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\Managed\Word Document Building Blocks\1033\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\Managed\Word Document Building Blocks\1033\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\Managed\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\Managed\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\Managed\Word Document Building Blocks\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\Managed\Word Document Building Blocks\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\Managed\Word Document Building Blocks\1033\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\Managed\Word Document Building Blocks\1033\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\PCDr\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\PCDr\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\PCDr\Installer\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\PCDr\Installer\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\PCDr\Installer\Logs\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\PCDr\Installer\Logs\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Skype\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Skype\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Skype\melissa.reagan2\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Skype\melissa.reagan2\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Skype\shared_dynco\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Skype\shared_dynco\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Skype\shared_httpfe\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\AppData\Roaming\Skype\shared_httpfe\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Desktop\Audio\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Desktop\Audio\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Desktop\Sequences\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Desktop\Sequences\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Desktop\Visualizations\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Desktop\Visualizations\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Desktop\Visualizations\Editor\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Desktop\Visualizations\Editor\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Desktop\Visualizations\Editor\LOR Visualizer Tutorial\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Desktop\Visualizations\Editor\LOR Visualizer Tutorial\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Amazon MP3\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Amazon MP3\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Amazon MP3\logs\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Amazon MP3\logs\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Bell computer\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Bell computer\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Bible Lutheran\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Bible Lutheran\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\business forms\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\business forms\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Coffee bluff Marina\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Coffee bluff Marina\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\commercial bids\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\commercial bids\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\commercial bids\Marchesee\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\commercial bids\Marchesee\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Contractors\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Contractors\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Contractors\clay pevey\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Contractors\clay pevey\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Contractors\jen jacs\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Contractors\jen jacs\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Contractors\Long Builders\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Contractors\Long Builders\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Countryside\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Countryside\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\employee documents\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\employee documents\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\FT. Stewart Training Facility\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\FT. Stewart Training Facility\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\gaffney's cheap seats\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\gaffney's cheap seats\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\gaffney's cheap seats\cheap seats\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\gaffney's cheap seats\cheap seats\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\gaffney's cheap seats\Cheap Seats menu landscape_files\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\gaffney's cheap seats\Cheap Seats menu landscape_files\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\gaffney's cheap seats\promos\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\gaffney's cheap seats\promos\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Guerry\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Guerry\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\HAAF engagement\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\HAAF engagement\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Heard elementary\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Heard elementary\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Invoices\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Invoices\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Largo Tibet\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Largo Tibet\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\2012\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\2012\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\Country Christmas\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\Country Christmas\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\farmers market\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\farmers market\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\newsletters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\newsletters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\old stuff\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\old stuff\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\old stuff\bag letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\old stuff\bag letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\press releases\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\press releases\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\pumpkin chunkin\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\pumpkin chunkin\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\pumpkin patch\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\pumpkin patch\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\pumpkin patch\2014\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\pumpkin patch\2014\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\pumpkin patch\signs\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\pumpkin patch\signs\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\recipes\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\recipes\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\Signs\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\Signs\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\Snow Day 2014_files\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\Snow Day 2014_files\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\taxes\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\MAdrac Farms\taxes\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\My Scans\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\My Scans\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OgeeChee\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OgeeChee\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\1259\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\1259\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\1259\1259 bid documents\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\1259\1259 bid documents\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\1259\CEFS\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\1259\CEFS\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\1259\cerified payroll\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\1259\cerified payroll\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\1259\pay app stuff\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\1259\pay app stuff\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\1259\VNI\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\1259\VNI\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\728A\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\728A\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\AMC inc\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\AMC inc\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\AMC inc\certified payroll\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\AMC inc\certified payroll\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\blackshear\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\blackshear\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\commissary stuff\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\commissary stuff\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\Davita\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\Davita\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\Eff Hospital\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\Eff Hospital\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\Post office\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\Post office\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\certified payroll\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\certified payroll\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\pay application\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\pay application\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\pay application\10.25.10\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\pay application\10.25.10\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\pay application\11.24.10\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\pay application\11.24.10\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\pay application\8.25.10\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\pay application\8.25.10\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\pay application\9.25.10\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\pay application\9.25.10\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\southeastern contract - sub\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\southeastern contract - sub\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\waivers\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\waivers\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\tom triplett park\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\tom triplett park\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\Verizon\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\Verizon\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\WT Dubois\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\OLD jobs\WT Dubois\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\personal\bank statements\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\personal\bank statements\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\personal\blogs\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\personal\blogs\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\personal\resumes\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\personal\resumes\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\pics\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\pics\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\pics\mel&gue\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\pics\mel&gue\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\pics\Rachel\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\pics\Rachel\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\pics\RES photos\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\pics\RES photos\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\pics\wedding\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\pics\wedding\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Scanned Documents\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Scanned Documents\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Taxes\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Taxes\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Taxes\2011\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Taxes\2011\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Taxes\2011\1Q\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Taxes\2011\1Q\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Taxes\2011\2Q\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Taxes\2011\2Q\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Taxes\2011\3Q\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Taxes\2011\3Q\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Taxes\2011\end of year\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Taxes\2011\end of year\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Taxes\2012\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Taxes\2012\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Taxes\2012\1Q\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\Taxes\2012\1Q\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\WBENC\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Documents\WBENC\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Music\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Music\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Music\Amazon MP3\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Music\Amazon MP3\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Music\Amazon MP3\Trans-Siberian Orchestra\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Music\Amazon MP3\Trans-Siberian Orchestra\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Music\Amazon MP3\Trans-Siberian Orchestra\Christmas Eve And Other Stories\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Music\Amazon MP3\Trans-Siberian Orchestra\Christmas Eve And Other Stories\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Music\Amazon MP3\Trans-Siberian Orchestra\The Lost Christmas Eve (U.S. Version)\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Music\Amazon MP3\Trans-Siberian Orchestra\The Lost Christmas Eve (U.S. Version)\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Music\iTunes\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Music\iTunes\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Music\iTunes\iTunes Media\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Music\iTunes\iTunes Media\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Music\iTunes\iTunes Media\Movies\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Music\iTunes\iTunes Media\Movies\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Music\iTunes\iTunes Media\Movies\The Heat\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Music\iTunes\iTunes Media\Movies\The Heat\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Music\iTunes\iTunes Media\TV Shows\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Music\iTunes\iTunes Media\TV Shows\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Music\iTunes\iTunes Media\TV Shows\Grey's Anatomy\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Music\iTunes\iTunes Media\TV Shows\Grey's Anatomy\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Music\iTunes\iTunes Media\TV Shows\Grey's Anatomy\Season 8\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Music\iTunes\iTunes Media\TV Shows\Grey's Anatomy\Season 8\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Music\iTunes\iTunes Media\TV Shows\Grey's Anatomy\Season 9\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Music\iTunes\iTunes Media\TV Shows\Grey's Anatomy\Season 9\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2009-01-01 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2009-01-01 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2009-01-01 002\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2009-01-01 002\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2009-01-01 003\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2009-01-01 003\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2009-01-01 004\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2009-01-01 004\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2009-01-01 005\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2009-01-01 005\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2009-11-10 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2009-11-10 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2013-10-26 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2013-10-26 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2013-12-28 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2013-12-28 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2013-12-29 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2013-12-29 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2014-02-24 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2014-02-24 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2014-02-28 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2014-02-28 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2014-02-28 002\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2014-02-28 002\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2014-03-08 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2014-03-08 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2014-03-08 002\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2014-03-08 002\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2014-07-13\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\2014-07-13\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\A Country Christmas 2011\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\A Country Christmas 2011\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\A Country Christmas 2011\2011-11-07 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\A Country Christmas 2011\2011-11-07 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\A Country Christmas 2011\2011-11-30 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\A Country Christmas 2011\2011-11-30 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\A Country Christmas 2011\2011-12-01 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\A Country Christmas 2011\2011-12-01 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\A Country Christmas 2011\2011-12-09 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\A Country Christmas 2011\2011-12-09 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\A Country Christmas 2011\2011-12-09 002\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\A Country Christmas 2011\2011-12-09 002\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\cats\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\cats\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\cats\buddy\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\cats\buddy\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\children's museum NE\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\children's museum NE\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Christmas 2010\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Christmas 2010\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Christmas 2010\2010-12-25 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Christmas 2010\2010-12-25 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\christmas decorations\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\christmas decorations\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Falcons game\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Falcons game\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\fall 2010\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\fall 2010\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\animals\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\animals\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\animals\2009-10-11 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\animals\2009-10-11 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\animals\2011-03-25 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\animals\2011-03-25 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\animals\2012-01-22 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\animals\2012-01-22 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2009-09-28 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2009-09-28 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-03-15 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-03-15 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-03-31 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-03-31 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-05-02 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-05-02 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-05-12 002\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-05-12 002\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-09 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-09 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-15 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-15 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-15 002\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-15 002\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-21 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-21 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-22 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-22 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-30 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-30 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-07-06 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-07-06 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-07-30 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-07-30 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-08-05 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-08-05 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-09-06 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-09-06 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-09-16 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2011-09-16 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2012-02-01 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2012-02-01 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2012-02-01 001\2012-02-01 002\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2012-02-01 001\2012-02-01 002\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2012-02-07 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2012-02-07 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2012-04-16 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2012-04-16 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2012-04-18 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2012-04-18 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2012-04-19 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\crops\2012-04-19 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\grand opening\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\grand opening\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\grand opening\2011-05-19 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\grand opening\2011-05-19 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\grand opening\2011-06-30 002\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\grand opening\2011-06-30 002\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\LOGO\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\LOGO\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\LOGO\2011-06-13 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\LOGO\2011-06-13 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\LOGO\2011-06-17 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\LOGO\2011-06-17 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\LOGO\2011-06-28 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\LOGO\2011-06-28 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\misc\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\misc\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\misc\2011-03-08 002\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\misc\2011-03-08 002\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\misc\2011-04-13 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\misc\2011-04-13 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\misc\2011-05-12 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\misc\2011-05-12 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\misc\2011-08-13 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\misc\2011-08-13 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\misc\2011-09-04 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\misc\2011-09-04 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\misc\2012-02-14 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Farm photos\misc\2012-02-14 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\fishing oct '10\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\fishing oct '10\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\fishing oct '10\fishing '10\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\fishing oct '10\fishing '10\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\FOR SALE items\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\FOR SALE items\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\FOR SALE items\2009-01-07 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\FOR SALE items\2009-01-07 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\FOR SALE items\2009-09-12 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\FOR SALE items\2009-09-12 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\FOR SALE items\2009-09-12 002\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\FOR SALE items\2009-09-12 002\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\FOR SALE items\2009-09-12 003\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\FOR SALE items\2009-09-12 003\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\FOR SALE items\2009-09-22 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\FOR SALE items\2009-09-22 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\FOR SALE items\2009-10-05 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\FOR SALE items\2009-10-05 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\FOR SALE items\2009-10-08 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\FOR SALE items\2009-10-08 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\gaffneys\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\gaffneys\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\gaffneys\2009-01-12 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\gaffneys\2009-01-12 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\gaffneys\Cheap Seats\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\gaffneys\Cheap Seats\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\gaffneys\food pics\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\gaffneys\food pics\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\guerry\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\guerry\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\halloween 09\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\halloween 09\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\halloween 2010\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\halloween 2010\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Halloween 2011\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Halloween 2011\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\ideas\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\ideas\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Jesse DEA graduation\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Jesse DEA graduation\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\JesseCourtney Wedding\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\JesseCourtney Wedding\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\mady\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\mady\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\mady\2009-03-03 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\mady\2009-03-03 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\mady\2011-01-29 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\mady\2011-01-29 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\mady\2012-01-28 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\mady\2012-01-28 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\mady\mady 1st bday\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\mady\mady 1st bday\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\omaha zoo\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\omaha zoo\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Pumpkin patch 2011\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Pumpkin patch 2011\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-08-04 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-08-04 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-08-28 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-08-28 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-09-07 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-09-07 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-09-13 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-09-13 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-10-05 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-10-05 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-10-06 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-10-06 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-10-31 002\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-10-31 002\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\pumpkin patch 2012\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\pumpkin patch 2012\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\pumpkin patch 2012\photo contest\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\pumpkin patch 2012\photo contest\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\pumpkin patch 2013\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\pumpkin patch 2013\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\pumpkin patch 2013\2009-11-02 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\pumpkin patch 2013\2009-11-02 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\pumpkin patch NE\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\pumpkin patch NE\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Rachel\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Rachel\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Rachel\2010-11-26 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Rachel\2010-11-26 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Rachel\2010-11-26 002\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\Rachel\2010-11-26 002\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\randon\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\randon\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\randon\2011-03-10 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\randon\2011-03-10 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\randon\2011-09-09 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\randon\2011-09-09 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\randon\2011-09-18 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\randon\2011-09-18 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\randon\2012-01-28 002\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\randon\2012-01-28 002\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\randon\2012-01-29 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\randon\2012-01-29 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\randon\random\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\randon\random\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\RES photos\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\RES photos\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\RES photos\1st self storage gate\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\RES photos\1st self storage gate\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\RES photos\2009-01-09 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\RES photos\2009-01-09 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\RES photos\2009-01-09 002\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\RES photos\2009-01-09 002\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\RES photos\2009-02-08 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\RES photos\2009-02-08 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\RES photos\2011-03-08 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\RES photos\2011-03-08 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\RES photos\2011-03-23 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\RES photos\2011-03-23 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\RES photos\2011-03-23 002\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\RES photos\2011-03-23 002\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\RES photos\mars theatre\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\RES photos\mars theatre\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\snowstorm '10\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\snowstorm '10\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\snowstorm '10\2010-12-26 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\snowstorm '10\2010-12-26 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\snowstorm '10\2011-03-27 001\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\snowstorm '10\2011-03-27 001\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\thanksgiving 09\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\Pictures\thanksgiving 09\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Melissa\SkyDrive\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Melissa\SkyDrive\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Gaffney's Cheap Seats 1 - Images\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Gaffney's Cheap Seats 1 - Images\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Madrac Farms LLC Tax Form History\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Madrac Farms LLC Tax Form History\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Madrac Farms LLC Tax Form History\INWKS941\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Madrac Farms LLC Tax Form History\INWKS941\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Fri, Aug 17 2012 10 01 01 PM\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Fri, Aug 17 2012 10 01 01 PM\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Fri, Aug 17 2012 10 01 01 PM\TempCopyBeforeValidate\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Fri, Aug 17 2012 10 01 01 PM\TempCopyBeforeValidate\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Fri, Oct 07 2011 08 21 23 AM\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Fri, Oct 07 2011 08 21 23 AM\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Fri, Oct 07 2011 08 21 23 AM\TempCopyBeforeValidate\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Fri, Oct 07 2011 08 21 23 AM\TempCopyBeforeValidate\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Mon, Feb 11 2013 10 45 24 AM\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Mon, Feb 11 2013 10 45 24 AM\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Mon, Mar 11 2013 12 52 45 PM\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Mon, Mar 11 2013 12 52 45 PM\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Mon, Mar 11 2013 12 52 45 PM\TempCopyBeforeValidate\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Mon, Mar 11 2013 12 52 45 PM\TempCopyBeforeValidate\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Sat, Apr 07 2012 06 01 06 PM\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Sat, Apr 07 2012 06 01 06 PM\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Sun, Aug 03 2014 04 33 38 AM\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Sun, Aug 03 2014 04 33 38 AM\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Sun, Aug 03 2014 04 33 38 AM\TempCopyBeforeValidate\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Sun, Aug 03 2014 04 33 38 AM\TempCopyBeforeValidate\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Thu, Nov 07 2013 09 01 02 AM\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Thu, Nov 07 2013 09 01 02 AM\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Tue, Jun 14 2011 07 42 31 PM\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Tue, Jun 14 2011 07 42 31 PM\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Wed, Jun 12 2013 10 53 21 AM\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Wed, Jun 12 2013 10 53 21 AM\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Wed, Jun 12 2013 10 53 21 AM\TempCopyBeforeValidate\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Wed, Jun 12 2013 10 53 21 AM\TempCopyBeforeValidate\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Collection Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Collection Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Customer Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Customer Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Employee Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Employee Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Estimate Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Estimate Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Invoice Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Invoice Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Other Names Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Other Names Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Vendor Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Vendor Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Rahn's Electric - Images\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Rahn's Electric - Images\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Rahn's Electric Tax Form History\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Rahn's Electric Tax Form History\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Rahn's Electric Tax Form History\GADOL4NI\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Rahn's Electric Tax Form History\GADOL4NI\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Rahn's Electric Tax Form History\INWKS941\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Rahn's Electric Tax Form History\INWKS941\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Collection Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Collection Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Customer Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Customer Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Employee Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Employee Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Estimate Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Estimate Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Invoice Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Invoice Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Other Names Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Other Names Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Vendor Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Vendor Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Collection Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Collection Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Customer Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Customer Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Employee Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Employee Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Estimate Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Estimate Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Invoice Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Invoice Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Other Names Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Other Names Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Vendor Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Vendor Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Images\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Images\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Collection Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Collection Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Customer Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Customer Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Employee Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Employee Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Estimate Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Estimate Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Invoice Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Invoice Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Other Names Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Other Names Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Vendor Letters\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Vendor Letters\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Sample Company Files\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Sample Company Files\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Sample Company Files\QuickBooks 2012\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\Intuit\QuickBooks\Sample Company Files\QuickBooks 2012\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan
C:\Users\Public\Documents\ntr\DECRYPT_INSTRUCTION.HTML Win32/Filecoder.CR trojan
C:\Users\Public\Documents\ntr\DECRYPT_INSTRUCTION.TXT Win32/Filecoder.CR trojan

Juliet · Nov 17, 2014

Do you realize that you've been hit by an encryption malware?

Open notepad. Please copy the contents of the quote box below. To do this highlight the contents of the box and right click on it and select copy.
Paste this into the open notepad. save it to the Desktop as fixlist.txt
NOTE. It's important that both files, FRST/FRST64 and fixlist.txt are in the same location or the fix will not work.
It needs to be saved Next to the "Farbar Recovery Scan Tool" (If asked to overwrite existing one please allow)

start
CloseProcesses:
CMD: del /F /Q /S "C:\DECRYPT_INSTRUCTION.HTML"
CMD: del /F /Q /S "C:\DECRYPT_INSTRUCTION.TXT"
CMD: del /F /Q /S "C:\DECRYPT_INSTRUCTION.URL"
EmptyTemp:
End

Open FRST/FRST64 and press the Fix button just once and wait.
If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
When finished FRST will generate a log on the Desktop (Fixlog.txt). Please post it to your reply.

After you run this please run a new scan with FRST.

Don´t change the checkboxes just click on Scan.
Logfiles are created on your desktop.
Post the FRST.txt
Please ensure Addition.txt -button has a check next to it.
Please also paste that along with the FRST.txt into your reply.

gurleygirl · Nov 17, 2014

I do! And they wanted $500 in bitcoin to give me the encryption code. Not sure what I'm going to get my files back. Most are expendable, but the pics of my kids most important. Scanning now.

gurleygirl · Nov 17, 2014

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 16-11-2014 03
Ran by Melissa at 2014-11-17 12:13:53 Run:2
Running from C:\Users\Melissa\Desktop
Loaded Profile: Melissa (Available profiles: Melissa & QBDataServiceUser21)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
start
CloseProcesses:
CMD: del /F /Q /S "C:\DECRYPT_INSTRUCTION.HTML"
CMD: del /F /Q /S "C:\DECRYPT_INSTRUCTION.TXT"
CMD: del /F /Q /S "C:\DECRYPT_INSTRUCTION.URL"
EmptyTemp:
End
*****************

Processes closed successfully.

========= del /F /Q /S "C:\DECRYPT_INSTRUCTION.HTML" =========

Deleted file - C:\ProgramData\HP\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\HP\LGT\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\HP\LGT\Data\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\HP\LGT\Data\Models\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\B8500\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\B8800\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\C5300\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\C5500\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\C6300\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\D2500\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\D730\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\generic\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\J4500\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\J4660\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\J4680\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\J6400\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Movies\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\HP\LGT\Data\Templates\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\HP\LGT\Data\Templates\Images\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\HP\LGT 2.0\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\HP\LGT 2.0\data\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\HP\LGT 2.0\data\Models\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\HP\LGT 2.0\data\Models\HP Officejet 4500 G510n-z\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\HP\LGT 2.0\data\Models\HP Officejet 4500 G510n-z\Images\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\HP\LGT 2.0\data\sessions\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\HP\LGT 2.0\data\templates\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\HP\LGT 2.0\data\templates\Images\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\Entitlement Client\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\Entitlement Client\v5\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\Entitlement Client\v6.0\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\Entitlement Client\v8\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks\ReportCenter\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\.target\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\.target\85216424\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\.target\85216424\content\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Patch\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\.target\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\.target\85216424\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\.target\85216424\content\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DataProtect\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DataProtect\OCD\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DataProtect\ROLLBACK\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\.target\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\.target\85216424\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\.target\85216424\content\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\NewFeatures\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\NewFeatures\.update\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\NewFeatures\.update\.target\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Patch\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Payroll\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Payroll\.update\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Payroll\.update\.target\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\.target\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\.target\85216424\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\.target\85216424\content\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\StateForms\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\StateForms\.update\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\StateForms\.update\.target\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\SyncMgr\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\SyncMgr\OCD\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\DataProtect\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\DataProtect\OCD\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\DownloadQB22\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\DownloadQB22\SPatch\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\OLB\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\OLB\branding\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\OLB\branding\filist\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\OLB\workflow\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\PDFDownload\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\SyncMgr\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\SyncMgr\OCD\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2013\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2013\Components\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2013\Components\DataProtect\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\QuickBooks 2013\Components\DataProtect\OCD\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Intuit\SyncManager\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Leapfrog\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\LeapPad2\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\LeapPad2\290E220001011026A25A\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\LeapPad2\2919220001011025F7B3\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\AltHomepage\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\AltHomepage\Landing\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\AltHomepage\Landing\images\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\Homepage\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\Homepage\Landing\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\Expandables\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\Landing\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\My Device\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\My Device\images\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\Expandables\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\Landing\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\My Device\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\My Device\images\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\Tag\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\Tag\Landing\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\Tag\Landing\panels\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Light-O-Rama\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Light-O-Rama\Samples\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Macrovision\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Macrovision\FLEXnet Connect\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Macrovision\FLEXnet Connect\11\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Macrovision\FLEXnet Connect\11\ui\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Macrovision\FLEXnet Connect\11\ui\images\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Microsoft\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Microsoft\eHome\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Microsoft\RAC\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Microsoft\RAC\PublishedData\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Microsoft\RAC\StateData\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\PCDr\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\PCDr\6426\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\PCDr\6426\AddOnContent\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\PCDr\6426\AddOnContent\ba005e12-3139-4327-9f7a-9f2ea6a6c841-d3dc259c-4fe5-45a6-a2aa-aaba450ab883\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\PCDr\6426\AddOnDownloaderCache\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\PCDr\6426\datastore\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\PCDr\6426\Tonopah\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\PCDr\6426\Tonopah\db\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\PCDr\6426\Tonopah\manifest\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\PCDr\6426\Tonopah\upload\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\PCDr\Tonopah\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Skype\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Skype\Plugins\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Skype\Plugins\Local Cache\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Skype\Plugins\Plugins\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Skype\Plugins\Plugins\F57B48ADF2224F088EDD1A2B9BAD84E8\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Skype\Plugins\Plugins\F57B48ADF2224F088EDD1A2B9BAD84E8\Local Cache\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Sonic\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Spybot - Search & Destroy\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Spybot - Search & Destroy\Logs\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Spybot - Search & Destroy\Quarantine\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Windstream\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Windstream\Service Agent\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-PcWarranty\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-PcWarranty\en\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingEcare\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingEcare\en\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingSecurityAndBackup\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingSecurityAndBackup\en\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Upsell\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Upsell\Upsell-Bundles\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Upsell\Upsell-Bundles\en\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\RADIALPOINT-UI-HSD-1-0-0-A962FBAB\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\RADIALPOINT-UI-HSD-1-0-0-A962FBAB\en\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\RADIALPOINT-UI-HSD-1-0-0-A962FBAB\en\help\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Apple Computer\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Apple Computer\iTunes\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\DIRECTV Player\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\DIRECTV Player\Legal\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Google\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Google\Chrome\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Google\Chrome\User Data\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Google\Chrome\User Data\Default\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Google\Chrome\User Data\Default\databases\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\QBDataSync_OfflineLogs\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\QBDataSync_OfflineLogs\CB8D650F50892B47E040900A441A5554_Logs\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.2.23.4037\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.4.23.4010\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.4.23.4011\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.5.23.4005\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.5.23.4007\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.6.23.4001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.7.23.4002\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.7.23.4007\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.7.23.4016\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\6.0.24.4009\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\6.2.24.4107\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\6.3.24.4012\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\Current\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\TempSyncLogs\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\ehome\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Internet Explorer\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Media Player\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Media Player\Art Cache\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Media Player\Art Cache\LocalMLS\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Messenger\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Office\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Office\15.0\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Office\15.0\OfficeFileCache\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Photo Acquisition\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Live Mail\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Live Mail\Backup\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Live Mail\Backup\new\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Live Mail\Sentinel\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Live Photo Acquisition\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Mail\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Mail\Backup\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Mail\Backup\old\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Mail\Stationery\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Media\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Media\12.0\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Photo Gallery\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Photo Gallery\Original Images\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft Games\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft Games\FreeCell\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\Adobe\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\Adobe\Acrobat\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\Adobe\Acrobat\10.0\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\DTV\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\DTV\PCShow\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\DTV\PCShow\catalogs\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\s\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\s\eer4rru2aqwqtonnnklwiobyo3um0pgyaz3owxdir1tygg0egsaaacca\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\s\eer4rru2aqwqtonnnklwiobyo3um0pgyaz3owxdir1tygg0egsaaacca\f\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\s\psld1rq2evnjg2ki2ziatkouhebg2l4klzm3vvurqxwtu41pinaaahda\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\s\psld1rq2evnjg2ki2ziatkouhebg2l4klzm3vvurqxwtu41pinaaahda\f\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\11\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\26\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\3\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\32\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\4\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\42\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\jre1.6.0_22\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\OICE_15_974FA576_32C1D314_1139\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\OICE_15_974FA576_32C1D314_2CDE\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Adobe\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Adobe\Flash Player\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Adobe\Flash Player\AssetCache\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Adobe\Flash Player\AssetCache\T4QJTQHZ\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Amazon\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Amazon\MP3 Downloader\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Dell\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Dell\Dell Stage\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Dell\Dell Stage\{6dedbe25-1baa-49d5-a314-3524143af6f7}\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\HP\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\HP\WebRegLogs\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Access\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\DbgClr\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\DbgClr\8.0\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Document Building Blocks\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Document Building Blocks\1033\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Document Building Blocks\1033\14\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Document Building Blocks\1033\15\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\2013%20group%20schedule303277132184948787\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\Field%20trip%20schedule%202014303920862365260351\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\Field%20trip%20schedule%202014303970643328640619\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\Field%20trip%20schedule%202014304010691630387985\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\Field%20trip%20schedule%202014304028803416694882\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\Field%20trip%20schedule%202014304039061652633985\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Signatures\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\Managed\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\Managed\SmartArt Graphics\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\Managed\SmartArt Graphics\1033\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\Managed\Word Document Building Blocks\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\Managed\Word Document Building Blocks\1033\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\Managed\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\Managed\Word Document Building Blocks\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\Managed\Word Document Building Blocks\1033\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\PCDr\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\PCDr\Installer\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\PCDr\Installer\Logs\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Skype\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Skype\melissa.reagan2\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Skype\shared_dynco\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\AppData\Roaming\Skype\shared_httpfe\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Desktop\Audio\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Desktop\Sequences\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Desktop\Visualizations\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Desktop\Visualizations\Editor\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Desktop\Visualizations\Editor\LOR Visualizer Tutorial\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\Amazon MP3\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\Amazon MP3\logs\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\Bell computer\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\Bible Lutheran\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\business forms\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\Coffee bluff Marina\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\commercial bids\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\commercial bids\Marchesee\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\Contractors\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\Contractors\clay pevey\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\Contractors\jen jacs\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\Contractors\Long Builders\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\Countryside\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\employee documents\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\FT. Stewart Training Facility\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\gaffney's cheap seats\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\gaffney's cheap seats\cheap seats\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\gaffney's cheap seats\Cheap Seats menu landscape_files\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\gaffney's cheap seats\promos\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\Guerry\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\HAAF engagement\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\Heard elementary\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\Invoices\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\Largo Tibet\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\2012\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\Country Christmas\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\farmers market\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\newsletters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\old stuff\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\old stuff\bag letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\press releases\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\pumpkin chunkin\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\pumpkin patch\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\pumpkin patch\2014\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\pumpkin patch\signs\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\recipes\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\Signs\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\Snow Day 2014_files\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\taxes\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\My Scans\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OgeeChee\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OLD jobs\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OLD jobs\1259\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OLD jobs\1259\1259 bid documents\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OLD jobs\1259\CEFS\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OLD jobs\1259\cerified payroll\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OLD jobs\1259\pay app stuff\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OLD jobs\1259\VNI\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OLD jobs\728A\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OLD jobs\AMC inc\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OLD jobs\AMC inc\certified payroll\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OLD jobs\blackshear\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OLD jobs\commissary stuff\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Davita\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Eff Hospital\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Post office\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\certified payroll\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\pay application\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\pay application\10.25.10\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\pay application\11.24.10\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\pay application\8.25.10\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\pay application\9.25.10\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\southeastern contract - sub\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\waivers\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OLD jobs\tom triplett park\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Verizon\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\OLD jobs\WT Dubois\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\personal\bank statements\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\personal\blogs\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\personal\resumes\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\pics\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\pics\mel&gue\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\pics\Rachel\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\pics\RES photos\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\pics\wedding\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\Scanned Documents\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\Taxes\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\Taxes\2011\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\Taxes\2011\1Q\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\Taxes\2011\2Q\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\Taxes\2011\3Q\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\Taxes\2011\end of year\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\Taxes\2012\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\Taxes\2012\1Q\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Documents\WBENC\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Music\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Music\Amazon MP3\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Music\Amazon MP3\Trans-Siberian Orchestra\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Music\Amazon MP3\Trans-Siberian Orchestra\Christmas Eve And Other Stories\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Music\Amazon MP3\Trans-Siberian Orchestra\The Lost Christmas Eve (U.S. Version)\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Music\iTunes\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Music\iTunes\iTunes Media\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Music\iTunes\iTunes Media\Movies\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Music\iTunes\iTunes Media\Movies\The Heat\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Music\iTunes\iTunes Media\TV Shows\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Music\iTunes\iTunes Media\TV Shows\Grey's Anatomy\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Music\iTunes\iTunes Media\TV Shows\Grey's Anatomy\Season 8\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Music\iTunes\iTunes Media\TV Shows\Grey's Anatomy\Season 9\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\2009-01-01 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\2009-01-01 002\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\2009-01-01 003\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\2009-01-01 004\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\2009-01-01 005\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\2009-11-10 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\2013-10-26 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\2013-12-28 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\2013-12-29 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\2014-02-24 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\2014-02-28 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\2014-02-28 002\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\2014-03-08 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\2014-03-08 002\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\2014-07-13\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\A Country Christmas 2011\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\A Country Christmas 2011\2011-11-07 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\A Country Christmas 2011\2011-11-30 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\A Country Christmas 2011\2011-12-01 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\A Country Christmas 2011\2011-12-09 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\A Country Christmas 2011\2011-12-09 002\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\cats\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\cats\buddy\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\children's museum NE\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Christmas 2010\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Christmas 2010\2010-12-25 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\christmas decorations\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Falcons game\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\fall 2010\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\animals\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\animals\2009-10-11 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\animals\2011-03-25 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\animals\2012-01-22 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2009-09-28 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-03-15 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-03-31 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-05-02 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-05-12 002\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-09 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-15 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-15 002\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-21 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-22 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-30 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-07-06 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-07-30 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-08-05 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-09-06 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-09-16 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2012-02-01 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2012-02-01 001\2012-02-01 002\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2012-02-07 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2012-04-16 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2012-04-18 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2012-04-19 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\grand opening\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\grand opening\2011-05-19 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\grand opening\2011-06-30 002\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\LOGO\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\LOGO\2011-06-13 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\LOGO\2011-06-17 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\LOGO\2011-06-28 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\misc\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\misc\2011-03-08 002\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\misc\2011-04-13 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\misc\2011-05-12 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\misc\2011-08-13 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\misc\2011-09-04 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Farm photos\misc\2012-02-14 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\fishing oct '10\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\fishing oct '10\fishing '10\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\FOR SALE items\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\FOR SALE items\2009-01-07 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\FOR SALE items\2009-09-12 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\FOR SALE items\2009-09-12 002\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\FOR SALE items\2009-09-12 003\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\FOR SALE items\2009-09-22 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\FOR SALE items\2009-10-05 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\FOR SALE items\2009-10-08 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\gaffneys\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\gaffneys\2009-01-12 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\gaffneys\Cheap Seats\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\gaffneys\food pics\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\guerry\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\halloween 09\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\halloween 2010\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Halloween 2011\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\ideas\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Jesse DEA graduation\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\JesseCourtney Wedding\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\mady\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\mady\2009-03-03 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\mady\2011-01-29 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\mady\2012-01-28 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\mady\mady 1st bday\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\omaha zoo\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Pumpkin patch 2011\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-08-04 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-08-28 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-09-07 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-09-13 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-10-05 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-10-06 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-10-31 002\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\pumpkin patch 2012\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\pumpkin patch 2012\photo contest\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\pumpkin patch 2013\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\pumpkin patch 2013\2009-11-02 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\pumpkin patch NE\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Rachel\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Rachel\2010-11-26 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\Rachel\2010-11-26 002\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\randon\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\randon\2011-03-10 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\randon\2011-09-09 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\randon\2011-09-18 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\randon\2012-01-28 002\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\randon\2012-01-29 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\randon\random\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\RES photos\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\RES photos\1st self storage gate\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\RES photos\2009-01-09 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\RES photos\2009-01-09 002\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\RES photos\2009-02-08 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\RES photos\2011-03-08 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\RES photos\2011-03-23 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\RES photos\2011-03-23 002\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\RES photos\mars theatre\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\snowstorm '10\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\snowstorm '10\2010-12-26 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\snowstorm '10\2011-03-27 001\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\Pictures\thanksgiving 09\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Melissa\SkyDrive\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Gaffney's Cheap Seats 1 - Images\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Madrac Farms LLC Tax Form History\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Madrac Farms LLC Tax Form History\INWKS941\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Fri, Aug 17 2012 10 01 01 PM\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Fri, Aug 17 2012 10 01 01 PM\TempCopyBeforeValidate\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Fri, Oct 07 2011 08 21 23 AM\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Fri, Oct 07 2011 08 21 23 AM\TempCopyBeforeValidate\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Mon, Feb 11 2013 10 45 24 AM\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Mon, Mar 11 2013 12 52 45 PM\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Mon, Mar 11 2013 12 52 45 PM\TempCopyBeforeValidate\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Sat, Apr 07 2012 06 01 06 PM\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Sun, Aug 03 2014 04 33 38 AM\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Sun, Aug 03 2014 04 33 38 AM\TempCopyBeforeValidate\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Thu, Nov 07 2013 09 01 02 AM\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Tue, Jun 14 2011 07 42 31 PM\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Wed, Jun 12 2013 10 53 21 AM\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Wed, Jun 12 2013 10 53 21 AM\TempCopyBeforeValidate\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Collection Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Customer Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Employee Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Estimate Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Invoice Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Other Names Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Vendor Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Rahn's Electric - Images\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Rahn's Electric Tax Form History\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Rahn's Electric Tax Form History\GADOL4NI\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Rahn's Electric Tax Form History\INWKS941\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Collection Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Customer Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Employee Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Estimate Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Invoice Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Other Names Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Vendor Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Collection Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Customer Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Employee Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Estimate Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Invoice Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Other Names Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Vendor Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Images\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Collection Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Customer Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Employee Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Estimate Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Invoice Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Other Names Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Vendor Letters\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Sample Company Files\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Sample Company Files\QuickBooks 2012\DECRYPT_INSTRUCTION.HTML
Deleted file - C:\Users\Public\Documents\ntr\DECRYPT_INSTRUCTION.HTML

========= End of CMD: =========

========= del /F /Q /S "C:\DECRYPT_INSTRUCTION.TXT" =========

Deleted file - C:\ProgramData\Dell\DellDock\Shortcuts\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\LGT\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\LGT\Data\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\LGT\Data\Models\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\B8500\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\B8800\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\C5300\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\C5500\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\C6300\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\D2500\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\D730\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\generic\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\J4500\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\J4660\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\J4680\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\J6400\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Movies\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\LGT\Data\Templates\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\LGT\Data\Templates\Images\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\LGT 2.0\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\LGT 2.0\data\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\LGT 2.0\data\Models\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\LGT 2.0\data\Models\HP Officejet 4500 G510n-z\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\LGT 2.0\data\Models\HP Officejet 4500 G510n-z\Images\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\LGT 2.0\data\sessions\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\LGT 2.0\data\templates\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\HP\LGT 2.0\data\templates\Images\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\Entitlement Client\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\Entitlement Client\v5\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\Entitlement Client\v6.0\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\Entitlement Client\v8\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks\ReportCenter\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\.target\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\.target\85216424\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\.target\85216424\content\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Patch\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\.target\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\.target\85216424\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\.target\85216424\content\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DataProtect\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DataProtect\OCD\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DataProtect\ROLLBACK\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\.target\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\.target\85216424\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\.target\85216424\content\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\NewFeatures\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\NewFeatures\.update\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\NewFeatures\.update\.target\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Patch\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Payroll\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Payroll\.update\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Payroll\.update\.target\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\.target\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\.target\85216424\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\.target\85216424\content\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\StateForms\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\StateForms\.update\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\StateForms\.update\.target\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\SyncMgr\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\SyncMgr\OCD\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\DataProtect\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\DataProtect\OCD\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\DownloadQB22\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\DownloadQB22\SPatch\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\OLB\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\OLB\branding\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\OLB\branding\filist\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\OLB\workflow\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\PDFDownload\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\SyncMgr\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\SyncMgr\OCD\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2013\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2013\Components\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2013\Components\DataProtect\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\QuickBooks 2013\Components\DataProtect\OCD\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Intuit\SyncManager\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Leapfrog\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\LeapPad2\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\LeapPad2\290E220001011026A25A\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\LeapPad2\2919220001011025F7B3\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\AltHomepage\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\AltHomepage\Landing\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\AltHomepage\Landing\images\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\Homepage\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\Homepage\Landing\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\Expandables\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\Landing\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\My Device\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\My Device\images\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\Expandables\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\Landing\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\My Device\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\My Device\images\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\Tag\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\Tag\Landing\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\Tag\Landing\panels\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Light-O-Rama\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Light-O-Rama\Samples\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Macrovision\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Macrovision\FLEXnet Connect\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Macrovision\FLEXnet Connect\11\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Macrovision\FLEXnet Connect\11\ui\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Macrovision\FLEXnet Connect\11\ui\images\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Microsoft\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Microsoft\eHome\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Microsoft\RAC\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Microsoft\RAC\PublishedData\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Microsoft\RAC\StateData\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\PCDr\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\PCDr\6426\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\PCDr\6426\AddOnContent\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\PCDr\6426\AddOnContent\ba005e12-3139-4327-9f7a-9f2ea6a6c841-d3dc259c-4fe5-45a6-a2aa-aaba450ab883\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\PCDr\6426\AddOnDownloaderCache\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\PCDr\6426\datastore\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\PCDr\6426\Tonopah\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\PCDr\6426\Tonopah\db\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\PCDr\6426\Tonopah\manifest\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\PCDr\6426\Tonopah\upload\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\PCDr\Tonopah\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Skype\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Skype\Plugins\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Skype\Plugins\Local Cache\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Skype\Plugins\Plugins\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Skype\Plugins\Plugins\F57B48ADF2224F088EDD1A2B9BAD84E8\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Skype\Plugins\Plugins\F57B48ADF2224F088EDD1A2B9BAD84E8\Local Cache\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Sonic\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Spybot - Search & Destroy\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Spybot - Search & Destroy\Logs\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Spybot - Search & Destroy\Quarantine\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Windstream\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Windstream\Service Agent\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-PcWarranty\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-PcWarranty\en\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingEcare\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingEcare\en\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingSecurityAndBackup\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingSecurityAndBackup\en\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Upsell\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Upsell\Upsell-Bundles\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Upsell\Upsell-Bundles\en\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\RADIALPOINT-UI-HSD-1-0-0-A962FBAB\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\RADIALPOINT-UI-HSD-1-0-0-A962FBAB\en\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\RADIALPOINT-UI-HSD-1-0-0-A962FBAB\en\help\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Apple Computer\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Apple Computer\iTunes\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\DIRECTV Player\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\DIRECTV Player\Legal\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Google\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Google\Chrome\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Google\Chrome\User Data\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Google\Chrome\User Data\Default\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Google\Chrome\User Data\Default\databases\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\QBDataSync_OfflineLogs\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\QBDataSync_OfflineLogs\CB8D650F50892B47E040900A441A5554_Logs\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.2.23.4037\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.4.23.4010\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.4.23.4011\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.5.23.4005\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.5.23.4007\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.6.23.4001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.7.23.4002\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.7.23.4007\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.7.23.4016\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\6.0.24.4009\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\6.2.24.4107\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\6.3.24.4012\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\Current\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\TempSyncLogs\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\ehome\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Internet Explorer\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Media Player\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Media Player\Art Cache\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Media Player\Art Cache\LocalMLS\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Messenger\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Office\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Office\15.0\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Office\15.0\OfficeFileCache\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Photo Acquisition\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Live Mail\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Live Mail\Backup\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Live Mail\Backup\new\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Live Mail\Sentinel\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Live Photo Acquisition\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Mail\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Mail\Backup\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Mail\Backup\old\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Mail\Stationery\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Media\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Media\12.0\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Photo Gallery\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Photo Gallery\Original Images\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft Games\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft Games\FreeCell\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\Adobe\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\Adobe\Acrobat\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\Adobe\Acrobat\10.0\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\DTV\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\DTV\PCShow\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\DTV\PCShow\catalogs\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\s\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\s\eer4rru2aqwqtonnnklwiobyo3um0pgyaz3owxdir1tygg0egsaaacca\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\s\eer4rru2aqwqtonnnklwiobyo3um0pgyaz3owxdir1tygg0egsaaacca\f\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\s\psld1rq2evnjg2ki2ziatkouhebg2l4klzm3vvurqxwtu41pinaaahda\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\s\psld1rq2evnjg2ki2ziatkouhebg2l4klzm3vvurqxwtu41pinaaahda\f\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\11\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\26\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\3\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\32\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\4\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\42\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\jre1.6.0_22\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\OICE_15_974FA576_32C1D314_1139\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\OICE_15_974FA576_32C1D314_2CDE\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Adobe\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Adobe\Flash Player\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Adobe\Flash Player\AssetCache\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Adobe\Flash Player\AssetCache\T4QJTQHZ\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Amazon\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Amazon\MP3 Downloader\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Dell\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Dell\Dell Stage\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Dell\Dell Stage\{6dedbe25-1baa-49d5-a314-3524143af6f7}\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\HP\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\HP\WebRegLogs\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Access\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\DbgClr\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\DbgClr\8.0\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Document Building Blocks\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Document Building Blocks\1033\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Document Building Blocks\1033\14\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Document Building Blocks\1033\15\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\2013%20group%20schedule303277132184948787\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\Field%20trip%20schedule%202014303920862365260351\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\Field%20trip%20schedule%202014303970643328640619\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\Field%20trip%20schedule%202014304010691630387985\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\Field%20trip%20schedule%202014304028803416694882\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\Field%20trip%20schedule%202014304039061652633985\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Signatures\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\Managed\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\Managed\SmartArt Graphics\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\Managed\SmartArt Graphics\1033\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\Managed\Word Document Building Blocks\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\Managed\Word Document Building Blocks\1033\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\Managed\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\Managed\Word Document Building Blocks\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\Managed\Word Document Building Blocks\1033\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\PCDr\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\PCDr\Installer\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\PCDr\Installer\Logs\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Skype\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Skype\melissa.reagan2\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Skype\shared_dynco\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\AppData\Roaming\Skype\shared_httpfe\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Desktop\Audio\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Desktop\Sequences\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Desktop\Visualizations\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Desktop\Visualizations\Editor\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Desktop\Visualizations\Editor\LOR Visualizer Tutorial\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\Amazon MP3\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\Amazon MP3\logs\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\Bell computer\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\Bible Lutheran\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\business forms\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\Coffee bluff Marina\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\commercial bids\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\commercial bids\Marchesee\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\Contractors\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\Contractors\clay pevey\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\Contractors\jen jacs\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\Contractors\Long Builders\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\Countryside\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\employee documents\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\FT. Stewart Training Facility\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\gaffney's cheap seats\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\gaffney's cheap seats\cheap seats\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\gaffney's cheap seats\Cheap Seats menu landscape_files\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\gaffney's cheap seats\promos\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\Guerry\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\HAAF engagement\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\Heard elementary\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\Invoices\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\Largo Tibet\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\2012\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\Country Christmas\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\farmers market\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\newsletters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\old stuff\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\old stuff\bag letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\press releases\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\pumpkin chunkin\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\pumpkin patch\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\pumpkin patch\2014\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\pumpkin patch\signs\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\recipes\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\Signs\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\Snow Day 2014_files\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\taxes\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\My Scans\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OgeeChee\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OLD jobs\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OLD jobs\1259\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OLD jobs\1259\1259 bid documents\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OLD jobs\1259\CEFS\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OLD jobs\1259\cerified payroll\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OLD jobs\1259\pay app stuff\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OLD jobs\1259\VNI\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OLD jobs\728A\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OLD jobs\AMC inc\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OLD jobs\AMC inc\certified payroll\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OLD jobs\blackshear\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OLD jobs\commissary stuff\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Davita\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Eff Hospital\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Post office\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\certified payroll\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\pay application\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\pay application\10.25.10\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\pay application\11.24.10\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\pay application\8.25.10\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\pay application\9.25.10\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\southeastern contract - sub\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\waivers\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OLD jobs\tom triplett park\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Verizon\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\OLD jobs\WT Dubois\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\personal\bank statements\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\personal\blogs\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\personal\resumes\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\pics\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\pics\mel&gue\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\pics\Rachel\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\pics\RES photos\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\pics\wedding\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\Scanned Documents\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\Taxes\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\Taxes\2011\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\Taxes\2011\1Q\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\Taxes\2011\2Q\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\Taxes\2011\3Q\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\Taxes\2011\end of year\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\Taxes\2012\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\Taxes\2012\1Q\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Documents\WBENC\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Music\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Music\Amazon MP3\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Music\Amazon MP3\Trans-Siberian Orchestra\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Music\Amazon MP3\Trans-Siberian Orchestra\Christmas Eve And Other Stories\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Music\Amazon MP3\Trans-Siberian Orchestra\The Lost Christmas Eve (U.S. Version)\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Music\iTunes\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Music\iTunes\iTunes Media\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Music\iTunes\iTunes Media\Movies\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Music\iTunes\iTunes Media\Movies\The Heat\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Music\iTunes\iTunes Media\TV Shows\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Music\iTunes\iTunes Media\TV Shows\Grey's Anatomy\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Music\iTunes\iTunes Media\TV Shows\Grey's Anatomy\Season 8\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Music\iTunes\iTunes Media\TV Shows\Grey's Anatomy\Season 9\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\2009-01-01 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\2009-01-01 002\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\2009-01-01 003\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\2009-01-01 004\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\2009-01-01 005\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\2009-11-10 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\2013-10-26 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\2013-12-28 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\2013-12-29 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\2014-02-24 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\2014-02-28 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\2014-02-28 002\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\2014-03-08 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\2014-03-08 002\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\2014-07-13\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\A Country Christmas 2011\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\A Country Christmas 2011\2011-11-07 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\A Country Christmas 2011\2011-11-30 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\A Country Christmas 2011\2011-12-01 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\A Country Christmas 2011\2011-12-09 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\A Country Christmas 2011\2011-12-09 002\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\cats\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\cats\buddy\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\children's museum NE\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Christmas 2010\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Christmas 2010\2010-12-25 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\christmas decorations\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Falcons game\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\fall 2010\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\animals\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\animals\2009-10-11 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\animals\2011-03-25 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\animals\2012-01-22 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2009-09-28 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-03-15 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-03-31 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-05-02 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-05-12 002\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-09 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-15 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-15 002\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-21 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-22 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-30 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-07-06 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-07-30 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-08-05 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-09-06 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-09-16 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2012-02-01 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2012-02-01 001\2012-02-01 002\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2012-02-07 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2012-04-16 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2012-04-18 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2012-04-19 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\grand opening\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\grand opening\2011-05-19 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\grand opening\2011-06-30 002\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\LOGO\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\LOGO\2011-06-13 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\LOGO\2011-06-17 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\LOGO\2011-06-28 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\misc\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\misc\2011-03-08 002\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\misc\2011-04-13 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\misc\2011-05-12 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\misc\2011-08-13 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\misc\2011-09-04 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Farm photos\misc\2012-02-14 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\fishing oct '10\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\fishing oct '10\fishing '10\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\FOR SALE items\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\FOR SALE items\2009-01-07 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\FOR SALE items\2009-09-12 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\FOR SALE items\2009-09-12 002\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\FOR SALE items\2009-09-12 003\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\FOR SALE items\2009-09-22 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\FOR SALE items\2009-10-05 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\FOR SALE items\2009-10-08 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\gaffneys\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\gaffneys\2009-01-12 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\gaffneys\Cheap Seats\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\gaffneys\food pics\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\guerry\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\halloween 09\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\halloween 2010\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Halloween 2011\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\ideas\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Jesse DEA graduation\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\JesseCourtney Wedding\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\mady\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\mady\2009-03-03 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\mady\2011-01-29 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\mady\2012-01-28 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\mady\mady 1st bday\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\omaha zoo\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Pumpkin patch 2011\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-08-04 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-08-28 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-09-07 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-09-13 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-10-05 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-10-06 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-10-31 002\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\pumpkin patch 2012\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\pumpkin patch 2012\photo contest\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\pumpkin patch 2013\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\pumpkin patch 2013\2009-11-02 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\pumpkin patch NE\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Rachel\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Rachel\2010-11-26 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\Rachel\2010-11-26 002\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\randon\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\randon\2011-03-10 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\randon\2011-09-09 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\randon\2011-09-18 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\randon\2012-01-28 002\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\randon\2012-01-29 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\randon\random\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\RES photos\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\RES photos\1st self storage gate\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\RES photos\2009-01-09 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\RES photos\2009-01-09 002\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\RES photos\2009-02-08 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\RES photos\2011-03-08 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\RES photos\2011-03-23 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\RES photos\2011-03-23 002\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\RES photos\mars theatre\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\snowstorm '10\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\snowstorm '10\2010-12-26 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\snowstorm '10\2011-03-27 001\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\Pictures\thanksgiving 09\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Melissa\SkyDrive\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Gaffney's Cheap Seats 1 - Images\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Madrac Farms LLC Tax Form History\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Madrac Farms LLC Tax Form History\INWKS941\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Fri, Aug 17 2012 10 01 01 PM\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Fri, Aug 17 2012 10 01 01 PM\TempCopyBeforeValidate\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Fri, Oct 07 2011 08 21 23 AM\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Fri, Oct 07 2011 08 21 23 AM\TempCopyBeforeValidate\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Mon, Feb 11 2013 10 45 24 AM\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Mon, Mar 11 2013 12 52 45 PM\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Mon, Mar 11 2013 12 52 45 PM\TempCopyBeforeValidate\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Sat, Apr 07 2012 06 01 06 PM\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Sun, Aug 03 2014 04 33 38 AM\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Sun, Aug 03 2014 04 33 38 AM\TempCopyBeforeValidate\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Thu, Nov 07 2013 09 01 02 AM\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Tue, Jun 14 2011 07 42 31 PM\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Wed, Jun 12 2013 10 53 21 AM\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Wed, Jun 12 2013 10 53 21 AM\TempCopyBeforeValidate\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Collection Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Customer Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Employee Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Estimate Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Invoice Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Other Names Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Vendor Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Rahn's Electric - Images\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Rahn's Electric Tax Form History\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Rahn's Electric Tax Form History\GADOL4NI\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Rahn's Electric Tax Form History\INWKS941\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Collection Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Customer Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Employee Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Estimate Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Invoice Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Other Names Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Vendor Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Collection Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Customer Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Employee Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Estimate Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Invoice Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Other Names Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Vendor Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Images\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Collection Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Customer Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Employee Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Estimate Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Invoice Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Other Names Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Vendor Letters\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Sample Company Files\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Sample Company Files\QuickBooks 2012\DECRYPT_INSTRUCTION.TXT
Deleted file - C:\Users\Public\Documents\ntr\DECRYPT_INSTRUCTION.TXT

========= End of CMD: =========

========= del /F /Q /S "C:\DECRYPT_INSTRUCTION.URL" =========

Deleted file - C:\DECRYPT_INSTRUCTION.URL
Deleted file - C:\$Recycle.Bin\DECRYPT_INSTRUCTION.URL
Deleted file - C:\$Recycle.Bin\S-1-5-21-3154378874-1875084861-2286133563-1001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Dell\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Dell\SEULAS\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69\x64\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Dell\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Dell\DellDock\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Dell\DellDock\images\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Dell\DellDock\Shortcuts\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\LGT\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\LGT\Data\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\LGT\Data\Models\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\B8500\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\B8800\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\C5300\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\C5500\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\C6300\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\D2500\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\D730\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\generic\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\J4500\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\J4660\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\J4680\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Images\J6400\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\LGT\Data\Models\Movies\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\LGT\Data\Templates\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\LGT\Data\Templates\Images\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\LGT 2.0\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\LGT 2.0\data\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\LGT 2.0\data\Models\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\LGT 2.0\data\Models\HP Officejet 4500 G510n-z\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\LGT 2.0\data\Models\HP Officejet 4500 G510n-z\Images\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\LGT 2.0\data\sessions\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\LGT 2.0\data\templates\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\HP\LGT 2.0\data\templates\Images\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\Entitlement Client\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\Entitlement Client\v5\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\Entitlement Client\v6.0\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\Entitlement Client\v8\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks\ReportCenter\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\.target\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\.target\85216424\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Message\.update\.target\85216424\content\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Patch\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\.target\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\.target\85216424\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2008\Components\DownloadQB18\Profile\.update\.target\85216424\content\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DataProtect\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DataProtect\OCD\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DataProtect\ROLLBACK\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\.target\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\.target\85216424\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Message\.update\.target\85216424\content\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\NewFeatures\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\NewFeatures\.update\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\NewFeatures\.update\.target\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Patch\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Payroll\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Payroll\.update\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Payroll\.update\.target\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\.target\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\.target\85216424\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\Profile\.update\.target\85216424\content\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\StateForms\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\StateForms\.update\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\DownloadQB21\StateForms\.update\.target\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\SyncMgr\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2011_03.15.04.57\Components\SyncMgr\OCD\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\DataProtect\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\DataProtect\OCD\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\DownloadQB22\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\DownloadQB22\SPatch\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\OLB\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\OLB\branding\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\OLB\branding\filist\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\OLB\workflow\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\PDFDownload\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\SyncMgr\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2012\Components\SyncMgr\OCD\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2013\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2013\Components\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2013\Components\DataProtect\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\QuickBooks 2013\Components\DataProtect\OCD\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Intuit\SyncManager\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Leapfrog\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\LeapPad2\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\LeapPad2\290E220001011026A25A\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\LeapPad2\2919220001011025F7B3\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\AltHomepage\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\AltHomepage\Landing\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\AltHomepage\Landing\images\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\Homepage\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\Homepage\Landing\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\Expandables\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\Landing\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\My Device\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPad2\My Device\images\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\Expandables\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\Landing\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\My Device\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\LeapPadExplorer\My Device\images\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\Tag\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\Tag\Landing\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Leapfrog\LeapFrog Connect\TempFlashFiles\Tag\Landing\panels\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Light-O-Rama\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Light-O-Rama\Samples\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Macrovision\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Macrovision\FLEXnet Connect\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Macrovision\FLEXnet Connect\11\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Macrovision\FLEXnet Connect\11\ui\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Macrovision\FLEXnet Connect\11\ui\images\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Microsoft\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Microsoft\eHome\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Microsoft\RAC\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Microsoft\RAC\PublishedData\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Microsoft\RAC\StateData\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\PCDr\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\PCDr\6426\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\PCDr\6426\AddOnContent\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\PCDr\6426\AddOnContent\ba005e12-3139-4327-9f7a-9f2ea6a6c841-d3dc259c-4fe5-45a6-a2aa-aaba450ab883\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\PCDr\6426\AddOnDownloaderCache\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\PCDr\6426\datastore\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\PCDr\6426\Tonopah\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\PCDr\6426\Tonopah\db\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\PCDr\6426\Tonopah\manifest\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\PCDr\6426\Tonopah\upload\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\PCDr\Tonopah\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Skype\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Skype\Plugins\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Skype\Plugins\Local Cache\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Skype\Plugins\Plugins\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Skype\Plugins\Plugins\F57B48ADF2224F088EDD1A2B9BAD84E8\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Skype\Plugins\Plugins\F57B48ADF2224F088EDD1A2B9BAD84E8\Local Cache\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Sonic\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Spybot - Search & Destroy\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Spybot - Search & Destroy\Logs\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Spybot - Search & Destroy\Quarantine\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Windstream\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Windstream\Service Agent\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-PcWarranty\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-PcWarranty\en\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingEcare\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingEcare\en\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingSecurityAndBackup\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Services\Service-RankingSecurityAndBackup\en\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Upsell\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Upsell\Upsell-Bundles\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\DataDefinition-Upsell\Upsell-Bundles\en\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\RADIALPOINT-UI-HSD-1-0-0-A962FBAB\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\RADIALPOINT-UI-HSD-1-0-0-A962FBAB\en\DECRYPT_INSTRUCTION.URL
Deleted file - C:\ProgramData\Windstream\Service Agent\UiSections\RADIALPOINT-UI-HSD-1-0-0-A962FBAB\en\help\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Apple Computer\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Apple Computer\iTunes\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\DIRECTV Player\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\DIRECTV Player\Legal\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Google\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Google\Chrome\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Google\Chrome\User Data\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Google\Chrome\User Data\Default\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Google\Chrome\User Data\Default\databases\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\QBDataSync_OfflineLogs\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\QBDataSync_OfflineLogs\CB8D650F50892B47E040900A441A5554_Logs\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.2.23.4037\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.4.23.4010\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.4.23.4011\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.5.23.4005\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.5.23.4007\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.6.23.4001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.7.23.4002\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.7.23.4007\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\5.7.23.4016\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\6.0.24.4009\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\6.2.24.4107\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\6.3.24.4012\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\SyncManager\Current\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Intuit\TempSyncLogs\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\ehome\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Internet Explorer\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Media Player\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Media Player\Art Cache\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Media Player\Art Cache\LocalMLS\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Messenger\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Office\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Office\15.0\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Office\15.0\OfficeFileCache\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Photo Acquisition\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Live Mail\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Live Mail\Backup\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Live Mail\Backup\new\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Live Mail\Sentinel\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Live Photo Acquisition\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Mail\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Mail\Backup\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Mail\Backup\old\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Mail\Stationery\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Media\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Media\12.0\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Photo Gallery\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft\Windows Photo Gallery\Original Images\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft Games\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Local\Microsoft Games\FreeCell\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\Adobe\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\Adobe\Acrobat\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\Adobe\Acrobat\10.0\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\DTV\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\DTV\PCShow\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\DTV\PCShow\catalogs\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\s\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\s\eer4rru2aqwqtonnnklwiobyo3um0pgyaz3owxdir1tygg0egsaaacca\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\s\eer4rru2aqwqtonnnklwiobyo3um0pgyaz3owxdir1tygg0egsaaacca\f\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\s\psld1rq2evnjg2ki2ziatkouhebg2l4klzm3vvurqxwtu41pinaaahda\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\Microsoft\Silverlight\is\wbrubsjg.qge\dvruwf3b.m52\1\s\psld1rq2evnjg2ki2ziatkouhebg2l4klzm3vvurqxwtu41pinaaahda\f\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\11\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\26\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\3\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\32\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\4\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\Deployment\SystemCache\6.0\42\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\LocalLow\Sun\Java\jre1.6.0_22\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\OICE_15_974FA576_32C1D314_1139\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\OICE_15_974FA576_32C1D314_2CDE\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Adobe\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Adobe\Flash Player\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Adobe\Flash Player\AssetCache\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Adobe\Flash Player\AssetCache\T4QJTQHZ\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Amazon\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Amazon\MP3 Downloader\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Dell\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Dell\Dell Stage\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Dell\Dell Stage\{6dedbe25-1baa-49d5-a314-3524143af6f7}\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\HP\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\HP\WebRegLogs\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Access\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\DbgClr\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\DbgClr\8.0\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Document Building Blocks\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Document Building Blocks\1033\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Document Building Blocks\1033\14\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Document Building Blocks\1033\15\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\2013%20group%20schedule303277132184948787\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\Field%20trip%20schedule%202014303920862365260351\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\Field%20trip%20schedule%202014303970643328640619\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\Field%20trip%20schedule%202014304010691630387985\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\Field%20trip%20schedule%202014304028803416694882\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Excel\Field%20trip%20schedule%202014304039061652633985\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Signatures\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\Managed\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\Managed\SmartArt Graphics\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\Managed\SmartArt Graphics\1033\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\Managed\Word Document Building Blocks\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\15\Managed\Word Document Building Blocks\1033\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\Managed\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\Managed\Word Document Building Blocks\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Microsoft\Templates\LiveContent\Managed\Word Document Building Blocks\1033\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\PCDr\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\PCDr\Installer\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\PCDr\Installer\Logs\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Skype\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Skype\melissa.reagan2\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Skype\shared_dynco\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\AppData\Roaming\Skype\shared_httpfe\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Desktop\Audio\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Desktop\Sequences\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Desktop\Visualizations\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Desktop\Visualizations\Editor\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Desktop\Visualizations\Editor\LOR Visualizer Tutorial\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\Amazon MP3\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\Amazon MP3\logs\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\Bell computer\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\Bible Lutheran\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\business forms\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\Coffee bluff Marina\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\commercial bids\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\commercial bids\Marchesee\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\Contractors\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\Contractors\clay pevey\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\Contractors\jen jacs\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\Contractors\Long Builders\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\Countryside\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\employee documents\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\FT. Stewart Training Facility\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\gaffney's cheap seats\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\gaffney's cheap seats\cheap seats\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\gaffney's cheap seats\Cheap Seats menu landscape_files\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\gaffney's cheap seats\promos\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\Guerry\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\HAAF engagement\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\Heard elementary\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\Invoices\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\Largo Tibet\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\2012\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\Country Christmas\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\farmers market\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\newsletters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\old stuff\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\old stuff\bag letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\press releases\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\pumpkin chunkin\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\pumpkin patch\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\pumpkin patch\2014\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\pumpkin patch\signs\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\recipes\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\Signs\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\Snow Day 2014_files\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\MAdrac Farms\taxes\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\My Scans\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OgeeChee\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OLD jobs\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OLD jobs\1259\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OLD jobs\1259\1259 bid documents\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OLD jobs\1259\CEFS\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OLD jobs\1259\cerified payroll\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OLD jobs\1259\pay app stuff\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OLD jobs\1259\VNI\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OLD jobs\728A\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OLD jobs\AMC inc\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OLD jobs\AMC inc\certified payroll\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OLD jobs\blackshear\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OLD jobs\commissary stuff\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Davita\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Eff Hospital\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Post office\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\certified payroll\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\pay application\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\pay application\10.25.10\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\pay application\11.24.10\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\pay application\8.25.10\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\pay application\9.25.10\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\southeastern contract - sub\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Savannah Fire\waivers\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OLD jobs\tom triplett park\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OLD jobs\Verizon\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\OLD jobs\WT Dubois\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\personal\bank statements\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\personal\blogs\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\personal\resumes\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\pics\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\pics\mel&gue\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\pics\Rachel\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\pics\RES photos\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\pics\wedding\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\Scanned Documents\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\Taxes\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\Taxes\2011\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\Taxes\2011\1Q\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\Taxes\2011\2Q\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\Taxes\2011\3Q\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\Taxes\2011\end of year\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\Taxes\2012\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\Taxes\2012\1Q\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Documents\WBENC\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Music\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Music\Amazon MP3\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Music\Amazon MP3\Trans-Siberian Orchestra\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Music\Amazon MP3\Trans-Siberian Orchestra\Christmas Eve And Other Stories\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Music\Amazon MP3\Trans-Siberian Orchestra\The Lost Christmas Eve (U.S. Version)\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Music\iTunes\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Music\iTunes\iTunes Media\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Music\iTunes\iTunes Media\Movies\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Music\iTunes\iTunes Media\Movies\The Heat\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Music\iTunes\iTunes Media\TV Shows\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Music\iTunes\iTunes Media\TV Shows\Grey's Anatomy\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Music\iTunes\iTunes Media\TV Shows\Grey's Anatomy\Season 8\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Music\iTunes\iTunes Media\TV Shows\Grey's Anatomy\Season 9\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\2009-01-01 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\2009-01-01 002\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\2009-01-01 003\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\2009-01-01 004\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\2009-01-01 005\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\2009-11-10 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\2013-10-26 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\2013-12-28 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\2013-12-29 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\2014-02-24 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\2014-02-28 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\2014-02-28 002\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\2014-03-08 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\2014-03-08 002\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\2014-07-13\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\A Country Christmas 2011\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\A Country Christmas 2011\2011-11-07 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\A Country Christmas 2011\2011-11-30 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\A Country Christmas 2011\2011-12-01 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\A Country Christmas 2011\2011-12-09 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\A Country Christmas 2011\2011-12-09 002\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\cats\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\cats\buddy\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\children's museum NE\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Christmas 2010\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Christmas 2010\2010-12-25 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\christmas decorations\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Falcons game\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\fall 2010\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\animals\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\animals\2009-10-11 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\animals\2011-03-25 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\animals\2012-01-22 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2009-09-28 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-03-15 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-03-31 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-05-02 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-05-12 002\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-09 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-15 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-15 002\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-21 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-22 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-06-30 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-07-06 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-07-30 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-08-05 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-09-06 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2011-09-16 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2012-02-01 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2012-02-01 001\2012-02-01 002\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2012-02-07 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2012-04-16 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2012-04-18 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\crops\2012-04-19 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\grand opening\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\grand opening\2011-05-19 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\grand opening\2011-06-30 002\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\LOGO\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\LOGO\2011-06-13 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\LOGO\2011-06-17 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\LOGO\2011-06-28 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\misc\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\misc\2011-03-08 002\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\misc\2011-04-13 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\misc\2011-05-12 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\misc\2011-08-13 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\misc\2011-09-04 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Farm photos\misc\2012-02-14 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\fishing oct '10\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\fishing oct '10\fishing '10\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\FOR SALE items\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\FOR SALE items\2009-01-07 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\FOR SALE items\2009-09-12 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\FOR SALE items\2009-09-12 002\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\FOR SALE items\2009-09-12 003\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\FOR SALE items\2009-09-22 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\FOR SALE items\2009-10-05 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\FOR SALE items\2009-10-08 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\gaffneys\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\gaffneys\2009-01-12 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\gaffneys\Cheap Seats\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\gaffneys\food pics\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\guerry\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\halloween 09\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\halloween 2010\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Halloween 2011\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\ideas\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Jesse DEA graduation\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\JesseCourtney Wedding\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\mady\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\mady\2009-03-03 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\mady\2011-01-29 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\mady\2012-01-28 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\mady\mady 1st bday\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\omaha zoo\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Pumpkin patch 2011\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-08-04 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-08-28 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-09-07 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-09-13 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-10-05 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-10-06 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Pumpkin patch 2011\2011-10-31 002\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\pumpkin patch 2012\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\pumpkin patch 2012\photo contest\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\pumpkin patch 2013\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\pumpkin patch 2013\2009-11-02 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\pumpkin patch NE\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Rachel\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Rachel\2010-11-26 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\Rachel\2010-11-26 002\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\randon\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\randon\2011-03-10 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\randon\2011-09-09 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\randon\2011-09-18 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\randon\2012-01-28 002\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\randon\2012-01-29 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\randon\random\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\RES photos\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\RES photos\1st self storage gate\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\RES photos\2009-01-09 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\RES photos\2009-01-09 002\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\RES photos\2009-02-08 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\RES photos\2011-03-08 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\RES photos\2011-03-23 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\RES photos\2011-03-23 002\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\RES photos\mars theatre\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\snowstorm '10\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\snowstorm '10\2010-12-26 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\snowstorm '10\2011-03-27 001\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\Pictures\thanksgiving 09\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Melissa\SkyDrive\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Gaffney's Cheap Seats 1 - Images\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Madrac Farms LLC Tax Form History\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Madrac Farms LLC Tax Form History\INWKS941\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Fri, Aug 17 2012 10 01 01 PM\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Fri, Aug 17 2012 10 01 01 PM\TempCopyBeforeValidate\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Fri, Oct 07 2011 08 21 23 AM\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Fri, Oct 07 2011 08 21 23 AM\TempCopyBeforeValidate\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Mon, Feb 11 2013 10 45 24 AM\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Mon, Mar 11 2013 12 52 45 PM\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Mon, Mar 11 2013 12 52 45 PM\TempCopyBeforeValidate\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Sat, Apr 07 2012 06 01 06 PM\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Sun, Aug 03 2014 04 33 38 AM\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Sun, Aug 03 2014 04 33 38 AM\TempCopyBeforeValidate\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Thu, Nov 07 2013 09 01 02 AM\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Tue, Jun 14 2011 07 42 31 PM\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Wed, Jun 12 2013 10 53 21 AM\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QBBackupTemp Wed, Jun 12 2013 10 53 21 AM\TempCopyBeforeValidate\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Collection Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Customer Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Employee Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Estimate Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Invoice Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Other Names Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\QuickBooks Letter Templates\Vendor Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Rahn's Electric - Images\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Rahn's Electric Tax Form History\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Rahn's Electric Tax Form History\GADOL4NI\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Rahn's Electric Tax Form History\INWKS941\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Collection Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Customer Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Employee Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Estimate Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Invoice Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Other Names Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Gaffney's Cheap Seats 1_Files\Letters_Templates\Vendor Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Collection Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Customer Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Employee Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Estimate Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Invoice Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Other Names Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_melissa & guerry_Files\Letters_Templates\Vendor Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Images\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Collection Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Customer Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Employee Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Estimate Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Invoice Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Other Names Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Company Files\Restored_Rahn's Electric_Files\Letters_Templates\Vendor Letters\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Sample Company Files\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\Intuit\QuickBooks\Sample Company Files\QuickBooks 2012\DECRYPT_INSTRUCTION.URL
Deleted file - C:\Users\Public\Documents\ntr\DECRYPT_INSTRUCTION.URL

========= End of CMD: =========

EmptyTemp: => Removed 11.5 GB temporary data.

The system needed a reboot.

==== End of Fixlog ====

gurleygirl · Nov 17, 2014

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 16-11-2014 03
Ran by Melissa (administrator) on LAPTOP on 17-11-2014 14:36:36
Running from C:\Users\Melissa\Desktop
Loaded Profile: Melissa (Available profiles: Melissa & QBDataServiceUser21)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Stardock Corporation) C:\Program Files\Dell\DellDock\DockLogin.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Windstream) C:\Program Files (x86)\Windstream\Diagnostic Tools\HsdService.exe
(LeapFrog Enterprises, Inc.) C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
(Alcatel-Lucent) C:\Program Files (x86)\Common Files\Motive\McciCMService.exe
(Alcatel-Lucent) C:\Program Files\Common Files\Motive\McciCMService.exe
(Intuit) C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
(Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(Radialpoint SafeCare Inc.) C:\Program Files (x86)\Windstream\Service Agent\ServicepointService.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
() C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Windstream) C:\Program Files (x86)\Windstream\Service Agent\Windstream Service Agent.exe
(LeapFrog Enterprises, Inc.) C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\ielowutil.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil64_15_0_0_223_ActiveX.exe
(Radialpoint SafeCare Inc.) C:\Program Files (x86)\Windstream\Service Agent\Windstream Service AgentComHandler.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intuit, Inc.) C:\Program Files (x86)\Intuit\QuickBooks 2012\QBDBMgr.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [QuickSet] => C:\Program Files\Dell\QuickSet\QuickSet.exe [3200672 2010-06-30] (Dell Inc.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10918504 2010-06-14] (Realtek Semiconductor)
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [392048 2010-06-04] (Alps Electric Co., Ltd.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2010-06-08] (Intel Corporation)
HKLM-x32\...\Run: [Windstream Service Agent.exe] => C:\Program Files (x86)\Windstream\Service Agent\Windstream Service Agent.exe [10204472 2011-10-13] (Windstream)
HKLM-x32\...\Run: [Monitor] => C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe [298376 2012-09-28] (LeapFrog Enterprises, Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2011-05-10] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
HKLM-x32\...\RunOnce: ["C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe"] => C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpdate.exe [560128 2011-09-19] (Dell)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3154378874-1875084861-2286133563-1001\...\Run: [Spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [4566952 2014-06-24] (Safer-Networking Ltd.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Intuit Data Protect.lnk
ShortcutTarget: Intuit Data Protect.lnk -> C:\Program Files (x86)\Common Files\Intuit\DataProtect\IntuitDataProtect.exe (Intuit Inc.)
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\QBDataServiceUser21\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
BootExecute: autocheck autochk * sdnclean64.exebddel.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [.DEFAULT] => http=127.0.0.1:50370
HKU\S-1-5-21-3154378874-1875084861-2286133563-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKCU - DefaultScope {38E8554E-EFF1-4E7A-A9FA-700C7D4C906D} URL = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=ie8
SearchScopes: HKCU - {38E8554E-EFF1-4E7A-A9FA-700C7D4C906D} URL = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=ie8
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: Search Helper -> {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} -> C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: SingleInstance Class -> {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} -> C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (Yahoo! Inc)
BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKU\S-1-5-21-3154378874-1875084861-2286133563-1001 -> No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
DPF: HKLM-x32 {1E54D648-B804-468d-BC78-4AFFED8E262F} http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
DPF: HKLM-x32 {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} http://h20614.www2.hp.com/ediags/gmd/Install/Cab/hpdetect119b.cab
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
DPF: HKLM-x32 {BEA7310D-06C4-4339-A784-DC3804819809} http://www.cvsphoto.com/upload/activex/v3_0_0_7/PhotoCenter_ActiveX_Control.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.254.254

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @radialpoint.com/SPA,version=1 -> C:\Program Files (x86)\Windstream\Service Agent\nprpspa.dll (Windstream)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=1.6.0_35 -> C:\Windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @Motive.com/NpMotive,version=1.0 -> C:\Program Files (x86)\Common Files\Motive\npMotive.dll (Alcatel-Lucent)
FF Plugin-x32: @radialpoint.com/SPA,version=1 -> C:\Program Files (x86)\Windstream\Service Agent\nprpspa.dll (Windstream)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3154378874-1875084861-2286133563-1001: @nds.com/PCShowPlugin -> C:\Users\Melissa\AppData\Local\DIRECTV Player\npPCShowPlugin.dll No File
FF Plugin HKU\S-1-5-21-3154378874-1875084861-2286133563-1001: @nds.com/PlayerPlugin -> C:\Users\Melissa\AppData\Local\DIRECTV Player\npPlayerPlugin.dll (DIRECTV)
FF Plugin HKU\S-1-5-21-3154378874-1875084861-2286133563-1001: amazon.com/AmazonMP3DownloaderPlugin -> C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101752.dll (Amazon.com, Inc.)
FF Plugin HKU\S-1-5-21-3154378874-1875084861-2286133563-1001: NDS.com/PlayerPlugin -> C:\Users\Melissa\AppData\Local\DIRECTV Player\npPlayerPlugin.dll (DIRECTV)
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010-12-08]

Chrome:
=======
CHR Profile: C:\Users\Melissa\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Melissa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-11-20]
CHR Extension: (Google Drive) - C:\Users\Melissa\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-11-20]
CHR Extension: (YouTube) - C:\Users\Melissa\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-11-20]
CHR Extension: (Google Search) - C:\Users\Melissa\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-11-20]
CHR Extension: (Radialpoint SPD Extension) - C:\Users\Melissa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmmhpfbhngkongobaoibpmnijjokabmj [2012-09-19]
CHR Extension: (Google Wallet) - C:\Users\Melissa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-20]
CHR Extension: (Gmail) - C:\Users\Melissa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-11-20]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2436280 2014-09-25] (Microsoft Corporation)
R2 DockLoginService; C:\Program Files\Dell\DellDock\DockLogin.exe [155648 2009-06-09] (Stardock Corporation) [File not signed]
R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [File not signed]
R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-05-21] (Hewlett-Packard Co.) [File not signed]
R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2010-10-22] (Hewlett-Packard Co.) [File not signed]
R2 HsdService; C:\Program Files (x86)\Windstream\Diagnostic Tools\HsdService.exe [1393976 2011-04-25] (Windstream)
R2 McciCMService; C:\Program Files (x86)\Common Files\Motive\McciCMService.exe [319488 2010-05-13] (Alcatel-Lucent) [File not signed]
R2 McciCMService64; C:\Program Files\Common Files\Motive\McciCMService.exe [517632 2010-05-13] (Alcatel-Lucent) [File not signed]
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 QBCFMonitorService; C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe [45056 2013-11-08] (Intuit) [File not signed]
S3 QBFCService; C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe [61440 2012-01-10] (Intuit Inc.) [File not signed]
R2 QBVSS; C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe [1248256 2012-01-10] (Intuit Inc.) [File not signed]
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1740760 2014-09-03] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
S2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
R2 ServicepointService; C:\Program Files (x86)\Windstream\Service Agent\ServicepointService.exe [10315064 2011-10-13] (Radialpoint SafeCare Inc.)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 FlyUsb; C:\Windows\System32\DRIVERS\FlyUsb.sys [24576 2008-04-01] (LeapFrog)
S3 MREMP50; C:\Program Files (x86)\Common Files\Motive\MREMP50.sys [21248 2010-03-02] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 MRESP50; C:\Program Files (x86)\Common Files\Motive\MRESP50.sys [20096 2010-03-02] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 Normandy; C:\Windows\SysWow64\Drivers\Normandy.sys [34560 2010-11-18] () [File not signed]
S3 sscdserd; C:\Windows\System32\DRIVERS\sscdserd.sys [114856 2007-07-03] (MCCI Corporation)
S3 MREMP50a64; \??\C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS [X]
S3 MREMPR5; \??\C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS [X]
S3 MRENDIS5; \??\C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS [X]
S3 MRESP50a64; \??\C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-17 12:13 - 2014-11-17 12:13 - 00000000 ____D () C:\Users\Melissa\Desktop\FRST-OlderVersion
2014-11-16 19:54 - 2014-11-16 19:54 - 00178405 _____ () C:\Users\Melissa\Desktop\eset.txt
2014-11-14 16:19 - 2014-11-14 16:19 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-11-14 15:22 - 2014-11-14 16:00 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-11-14 15:22 - 2014-11-14 15:22 - 00131800 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-11-14 15:22 - 2014-11-14 15:22 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-11-14 15:21 - 2014-11-14 16:00 - 00000000 ____D () C:\Users\Melissa\Desktop\mbar
2014-11-14 15:21 - 2014-11-14 15:21 - 00096472 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-11-14 15:20 - 2014-11-14 15:20 - 14439696 _____ (Malwarebytes Corp.) C:\Users\Melissa\Desktop\mbar-1.08.1.1001.exe
2014-11-14 11:49 - 2014-11-14 11:49 - 00000635 _____ () C:\Users\Melissa\Desktop\JRT.txt
2014-11-13 17:20 - 2014-11-13 17:20 - 01706808 _____ (Thisisu) C:\Users\Melissa\Desktop\JRT.exe
2014-11-13 17:20 - 2014-11-13 17:20 - 00000000 ____D () C:\Windows\ERUNT
2014-11-13 16:27 - 2014-11-13 16:34 - 00000000 ____D () C:\AdwCleaner
2014-11-13 16:27 - 2014-11-13 16:27 - 02140160 _____ () C:\Users\Melissa\Desktop\AdwCleaner.exe
2014-11-12 20:17 - 2014-11-12 22:56 - 00001178 _____ () C:\Users\Melissa\Desktop\ListCWall.txt
2014-11-12 20:17 - 2014-11-12 20:17 - 00400632 _____ (Bleeping Computer, LLC) C:\Users\Melissa\Desktop\ListCWall.exe
2014-11-12 20:11 - 2014-11-12 20:11 - 02744965 _____ () C:\Users\Melissa\Desktop\idtool.zip
2014-11-11 18:58 - 2014-11-11 18:58 - 00001800 _____ () C:\Users\Melissa\Desktop\aswMBR.txt
2014-11-11 18:58 - 2014-11-11 18:58 - 00000512 _____ () C:\Users\Melissa\Desktop\MBR.dat
2014-11-11 18:16 - 2014-11-11 18:50 - 05194752 _____ (AVAST Software) C:\Users\Melissa\Desktop\aswMBR.exe
2014-11-11 18:05 - 2014-11-11 18:10 - 00041309 _____ () C:\Users\Melissa\Desktop\Addition.txt
2014-11-11 17:48 - 2014-11-17 14:37 - 00019053 _____ () C:\Users\Melissa\Desktop\FRST.txt
2014-11-11 17:46 - 2014-11-17 14:36 - 00000000 ____D () C:\FRST
2014-11-11 17:44 - 2014-11-17 12:13 - 02117120 _____ (Farbar) C:\Users\Melissa\Desktop\FRST64.exe
2014-11-11 17:37 - 2014-11-11 17:37 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-LAPTOP-Microsoft-Windows-7-Home-Premium-(64-bit).dat
2014-11-11 17:33 - 2014-11-11 17:33 - 17926832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2014-11-11 17:29 - 2014-11-11 17:29 - 00000000 ____D () C:\RegBackup
2014-11-11 17:27 - 2014-11-11 17:27 - 00002201 _____ () C:\Users\Public\Desktop\Tweaking.com - Registry Backup.lnk
2014-11-11 17:27 - 2014-11-11 17:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tweaking.com
2014-11-11 17:27 - 2014-11-11 17:27 - 00000000 ____D () C:\Program Files (x86)\Tweaking.com
2014-11-11 17:24 - 2014-11-11 17:25 - 04215584 _____ () C:\Users\Melissa\Desktop\tweaking.com_registry_backup_setup.exe
2014-11-11 13:03 - 2014-11-11 13:03 - 00000000 ____D () C:\ProgramData\Windows Genuine Advantage
2014-11-07 19:08 - 2014-11-08 07:59 - 00047082 _____ () C:\Windows\SysWOW64\bddel.dat
2014-11-07 18:40 - 2014-11-07 18:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Browser Features
2014-11-07 18:36 - 2014-11-07 18:36 - 00000000 ____D () C:\Users\Melissa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-11-07 11:46 - 2009-06-10 16:00 - 00000824 _____ () C:\Windows\system32\Drivers\etc\hosts.20141107-114626.backup
2014-11-06 12:50 - 2014-11-06 12:50 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-11-06 12:49 - 2014-11-06 12:49 - 00001357 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-11-06 12:49 - 2014-11-06 12:49 - 00001345 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-11-06 12:49 - 2014-11-06 12:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2014-11-06 12:47 - 2014-11-17 12:19 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-11-06 12:47 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2014-11-06 11:39 - 2014-11-06 11:40 - 00560968 _____ (Safer-Networking Ltd. ) C:\Users\Melissa\Downloads\spybot2-license.exe
2014-11-06 11:34 - 2014-11-06 13:15 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-11-06 09:35 - 2014-11-06 09:45 - 00000046 _____ () C:\Users\Melissa\AppData\Roaming\FactoryInstaller.xml
2014-11-06 09:35 - 2014-11-06 09:35 - 00000000 ____D () C:\Users\Melissa\AppData\Local\Absolute_Software
2014-11-05 12:21 - 2014-11-05 12:21 - 00000000 ____D () C:\Windows\pss
2014-11-05 12:04 - 2014-03-19 22:24 - 00114688 _____ () C:\Users\Melissa\AppData\Local\ChromeHitoryDB
2014-11-04 08:50 - 2014-11-07 21:54 - 00004974 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for Laptop-Melissa Laptop
2014-10-18 07:25 - 2014-10-18 07:27 - 00019968 ___SH () C:\Users\Melissa\Documents\Thumbs.db

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-17 14:34 - 2012-03-26 13:20 - 00000000 ____D () C:\ProgramData\Radialpoint
2014-11-17 14:33 - 2010-10-11 16:41 - 00000000 ____D () C:\Users\Default\AppData\Local\SoftThinks
2014-11-17 14:33 - 2010-10-11 16:41 - 00000000 ____D () C:\Users\Default User\AppData\Local\SoftThinks
2014-11-17 14:33 - 2010-09-18 13:05 - 00000000 ____D () C:\Program Files (x86)\Dell DataSafe Local Backup
2014-11-17 14:32 - 2013-11-20 09:24 - 00000484 _____ () C:\Windows\Tasks\SDMsgUpdate (Local).job
2014-11-17 14:32 - 2013-11-20 09:24 - 00000476 _____ () C:\Windows\Tasks\SDMsgUpdate (TE).job
2014-11-17 14:32 - 2012-04-03 16:13 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-17 14:32 - 2010-10-11 17:14 - 00453740 _____ () C:\Windows\PFRO.log
2014-11-17 14:32 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-17 14:32 - 2009-07-13 23:51 - 00067700 _____ () C:\Windows\setupact.log
2014-11-17 12:20 - 2014-06-12 10:52 - 00000000 ____D () C:\Users\Melissa\Documents\Invoices
2014-11-17 12:20 - 2014-05-16 10:41 - 00000000 ____D () C:\Users\Melissa\AppData\OICE_15_974FA576_32C1D314_1139
2014-11-17 12:20 - 2014-04-08 13:00 - 00000000 ____D () C:\Users\Melissa\Documents\Contractors
2014-11-17 12:20 - 2014-02-10 08:16 - 00000000 ____D () C:\Users\Melissa\Documents\Guerry
2014-11-17 12:20 - 2013-08-27 12:47 - 00000000 ____D () C:\Users\Melissa\AppData\OICE_15_974FA576_32C1D314_2CDE
2014-11-17 12:20 - 2013-05-06 15:15 - 00000000 ____D () C:\Users\Melissa\Documents\Heard elementary
2014-11-17 12:20 - 2013-04-02 10:52 - 00000000 ____D () C:\Users\Melissa\Documents\gaffney's cheap seats
2014-11-17 12:20 - 2013-03-18 09:36 - 00000000 ___RD () C:\Users\Melissa\SkyDrive
2014-11-17 12:20 - 2012-10-31 10:52 - 00000000 ____D () C:\Users\Melissa\Documents\Amazon MP3
2014-11-17 12:20 - 2012-10-31 10:52 - 00000000 ____D () C:\Users\Melissa\AppData\Roaming\Amazon
2014-11-17 12:20 - 2012-09-05 15:29 - 00000000 ____D () C:\Users\Melissa\Documents\Coffee bluff Marina
2014-11-17 12:20 - 2012-09-05 09:51 - 00000000 ____D () C:\Users\Melissa\Documents\Bible Lutheran
2014-11-17 12:20 - 2012-08-09 16:14 - 00000000 ____D () C:\Users\Melissa\Documents\FT. Stewart Training Facility
2014-11-17 12:20 - 2012-02-10 12:51 - 00000000 ____D () C:\Users\Melissa\Documents\Largo Tibet
2014-11-17 12:20 - 2011-11-28 16:42 - 00000000 ____D () C:\Users\Melissa\Desktop\Visualizations
2014-11-17 12:20 - 2011-11-28 16:42 - 00000000 ____D () C:\Users\Melissa\Desktop\Sequences
2014-11-17 12:20 - 2011-11-28 16:42 - 00000000 ____D () C:\Users\Melissa\Desktop\Audio
2014-11-17 12:20 - 2011-11-28 11:16 - 00000000 ____D () C:\Users\Melissa\Documents\Countryside
2014-11-17 12:20 - 2011-10-18 09:23 - 00000000 ____D () C:\Users\Melissa\Documents\OLD jobs
2014-11-17 12:20 - 2011-09-26 11:01 - 00000000 ____D () C:\Users\Melissa\Documents\OgeeChee
2014-11-17 12:20 - 2011-08-10 10:29 - 00000000 ____D () C:\Users\Melissa\Documents\HAAF engagement
2014-11-17 12:20 - 2011-05-21 15:38 - 00000000 ____D () C:\Users\Melissa\AppData\Roaming\PCDr
2014-11-17 12:20 - 2011-04-15 07:58 - 00000000 ____D () C:\Users\Melissa\Documents\Taxes
2014-11-17 12:20 - 2011-04-07 12:23 - 00000000 ____D () C:\Users\Melissa\Documents\MAdrac Farms
2014-11-17 12:20 - 2010-12-17 11:52 - 00000000 ____D () C:\Users\Melissa\Documents\My Scans
2014-11-17 12:20 - 2010-12-08 16:35 - 00000000 ____D () C:\Users\Melissa\AppData\Roaming\HP
2014-11-17 12:20 - 2010-10-25 08:43 - 00000000 ____D () C:\Users\Melissa\Documents\WBENC
2014-11-17 12:20 - 2010-10-25 08:43 - 00000000 ____D () C:\Users\Melissa\Documents\pics
2014-11-17 12:20 - 2010-10-25 08:43 - 00000000 ____D () C:\Users\Melissa\Documents\business forms
2014-11-17 12:20 - 2010-10-25 08:42 - 00000000 ____D () C:\Users\Melissa\Documents\commercial bids
2014-11-17 12:20 - 2010-10-25 08:42 - 00000000 ____D () C:\Users\Melissa\Documents\Bell computer
2014-11-17 12:20 - 2010-10-18 13:32 - 00000000 ____D () C:\Users\Public\Documents\ntr
2014-11-17 12:20 - 2010-10-15 18:30 - 00000000 ____D () C:\Users\Melissa\AppData\Roaming\Skype
2014-11-17 12:20 - 2010-10-12 14:03 - 00000000 ____D () C:\Users\Public\Documents\Intuit
2014-11-17 12:20 - 2010-10-11 16:45 - 00000000 ____D () C:\Users\Melissa\AppData\Roaming\Adobe
2014-11-17 12:20 - 2010-10-11 16:42 - 00000000 ____D () C:\Users\Melissa\AppData\Roaming\Dell
2014-11-17 12:19 - 2014-03-25 22:12 - 00000000 ____D () C:\Users\Melissa\AppData\Local\DIRECTV Player
2014-11-17 12:19 - 2014-02-24 12:26 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-11-17 12:19 - 2014-01-12 21:11 - 00000000 ____D () C:\Users\Melissa\AppData\Local\Apple Computer
2014-11-17 12:19 - 2012-03-26 13:20 - 00000000 ____D () C:\ProgramData\Windstream
2014-11-17 12:19 - 2011-11-28 16:20 - 00000000 ____D () C:\ProgramData\Light-O-Rama
2014-11-17 12:19 - 2010-12-08 16:18 - 00000000 ____D () C:\ProgramData\HP
2014-11-17 12:19 - 2010-12-03 17:13 - 00000000 ____D () C:\Users\Melissa\AppData\Local\Microsoft Games
2014-11-17 12:19 - 2010-11-28 15:15 - 00000000 ____D () C:\ProgramData\Leapfrog
2014-11-17 12:19 - 2010-10-21 13:38 - 00000000 ____D () C:\Users\Melissa\AppData\Local\Google
2014-11-17 12:19 - 2010-10-12 14:14 - 00000000 ____D () C:\Users\Melissa\AppData\Local\Intuit
2014-11-17 12:19 - 2010-10-12 14:03 - 00000000 ____D () C:\ProgramData\Intuit
2014-11-17 12:19 - 2010-10-11 16:38 - 00000000 ____D () C:\Users\Melissa
2014-11-17 12:19 - 2010-09-18 16:16 - 00000000 ____D () C:\Dell
2014-11-17 12:19 - 2010-09-18 12:57 - 00000000 ____D () C:\ProgramData\Skype
2014-11-17 12:19 - 2010-09-18 12:43 - 00000000 ____D () C:\ProgramData\Sonic
2014-11-17 12:19 - 2010-09-18 12:42 - 00000000 ____D () C:\ProgramData\Macrovision
2014-11-17 12:19 - 2010-09-18 12:41 - 00000000 ____D () C:\ProgramData\PCDr
2014-11-17 12:19 - 2010-09-18 12:32 - 00000000 ____D () C:\ProgramData\Dell
2014-11-17 12:09 - 2009-07-14 00:13 - 00006320 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-16 18:13 - 2012-03-26 13:20 - 00000000 ____D () C:\Users\Melissa\AppData\Roaming\Radialpoint
2014-11-14 15:59 - 2010-10-18 14:03 - 00000000 ____D () C:\Users\QBDataServiceUser21
2014-11-14 11:42 - 2009-07-13 23:45 - 00013872 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-14 11:42 - 2009-07-13 23:45 - 00013872 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-13 11:27 - 2011-06-23 15:10 - 00000000 ____D () C:\Users\Melissa\Documents\Outlook Files
2014-11-11 19:20 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-11-11 18:26 - 2010-10-11 16:58 - 00000000 ____D () C:\Users\Melissa\Tracing
2014-11-11 17:34 - 2012-04-03 16:13 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-11-11 17:34 - 2012-04-03 16:13 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-11-11 17:34 - 2011-05-21 15:29 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-11-11 16:40 - 2010-10-25 08:43 - 00000000 ____D () C:\Users\Melissa\Documents\personal
2014-11-11 13:19 - 2012-03-26 13:18 - 00000000 ____D () C:\ProgramData\Motive
2014-11-10 16:06 - 2010-09-18 11:58 - 02081760 _____ () C:\Windows\WindowsUpdate.log
2014-11-10 16:02 - 2013-05-22 13:17 - 00003440 _____ () C:\Windows\System32\Tasks\PCDEventLauncherTask
2014-11-08 07:46 - 2014-09-02 20:23 - 00000000 ____D () C:\Program Files (x86)\FUPM Browser
2014-11-07 19:02 - 2010-10-11 18:00 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-11-07 18:56 - 2013-03-18 08:45 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2014-11-06 11:03 - 2012-06-12 18:19 - 02656768 ___SH () C:\Users\Melissa\Desktop\Thumbs.db
2014-11-05 12:10 - 2012-09-19 09:58 - 00000000 ____D () C:\Program Files (x86)\Google
2014-10-24 07:45 - 2012-09-19 09:59 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-11-16 19:11

==================== End Of Log ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-11-2014 03
Ran by Melissa at 2014-11-17 14:38:26
Running from C:\Users\Melissa\Desktop
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

4500_G510nz_Help (x32 Version: 000.0.439.000 - Hewlett-Packard) Hidden
4500G510nz (x32 Version: 000.0.439.000 - Hewlett-Packard) Hidden
4500G510nz_Software_Min (x32 Version: 000.0.423.000 - Hewlett-Packard) Hidden
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
ABBYY FineReader 6.0 Sprint (HKLM-x32\...\{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}) (Version: 6.00.1990.41618 - ABBYY Software House)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.0.4.13090 - Adobe Systems Inc.)
Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.223 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.223 - Adobe Systems Incorporated)
Adobe Reader X (10.1.8) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.8 - Adobe Systems Incorporated)
Advanced Audio FX Engine (HKLM-x32\...\Advanced Audio FX Engine) (Version: 1.12.05 - Creative Technology Ltd)
Amazon MP3 Downloader 1.0.17 (HKLM-x32\...\Amazon MP3 Downloader) (Version: 1.0.17 - Amazon Services LLC)
Apple Application Support (HKLM-x32\...\{21FC2093-6E43-460B-B9B0-5F5AA35BBB0F}) (Version: 3.0 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{FE86CB0C-FCB3-4358-B4B0-B0A41E33B3DD}) (Version: 7.1.0.32 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Browser Enhancements version 3.17 (HKLM-x32\...\{85A37836-5888-4152-8990-EF4502A5EFB1}}_is1) (Version: 3.17 - Browser Enhancements)
Browser Features version 2.22 (HKLM-x32\...\{6C250DDC-A10E-4F36-95B4-59A76592DA20}}_is1) (Version: 2.22 - Browser Features)
BufferChm (x32 Version: 130.0.331.000 - Hewlett-Packard) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 9.4.60 - Dell)
Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.60 - Dell)
Dell DataSafe Online (HKLM-x32\...\{13766F76-6C8C-4E57-A9F3-3212D1C6E0D1}) (Version: 1.2.0011 - Dell, Inc.)
Dell Dock (HKLM-x32\...\Dell Dock) (Version: - Stardock Corporation)
Dell Dock (Version: 2.0 - Stardock Corporation) Hidden
Dell Getting Started Guide (HKLM-x32\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.)
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 7.1107.101.209 - ALPS ELECTRIC CO., LTD.)
Dell Webcam Central (HKLM-x32\...\Dell Webcam Central) (Version: 1.40.05 - Creative Technology Ltd)
Destinations (x32 Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 130.0.372.000 - Hewlett-Packard) Hidden
DIRECTV Player (HKLM-x32\...\{a1bb9be6-729f-4049-a36a-aad335c86c01}) (Version: 9.2 - DIRECTV)
DocMgr (x32 Version: 130.0.000.000 - Hewlett-Packard) Hidden
DocProc (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
Fax (x32 Version: 130.0.418.000 - Hewlett-Packard) Hidden
FUPM Browser version 1.2.1 (HKLM-x32\...\{B86A5F28-E714-49DD-9C61-6DC5BB867255}}_is1) (Version: 1.2.1 - Find Ultra Premium Merchants)
GPBaseService2 (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Document Manager 2.0 (HKLM\...\HP Document Manager) (Version: 2.0 - HP)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP Officejet 4500 G510n-z (HKLM\...\{7E0E61CC-1C99-429D-BEA7-C4DD5B898D2A}) (Version: 13.0 - HP)
HP Product Detection (HKLM-x32\...\{4F38594F-2C4A-4C42-B2C4-505E225F6F80}) (Version: 11.14.0004 - HP)
HP Smart Web Printing 4.5 (HKLM\...\HP Smart Web Printing) (Version: 4.5 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM-x32\...\{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}) (Version: 5.003.001.001 - Hewlett-Packard)
HPDiagnosticAlert (x32 Version: 1.00.0000 - Microsoft) Hidden
HPProductAssistant (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.2202 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.4.1002 - Intel Corporation)
iTunes (HKLM\...\{96B53CA8-5ABB-49D8-96F1-F6C0D73A76C6}) (Version: 11.1.4.62 - Apple Inc.)
Java(TM) 6 Update 18 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416018F0}) (Version: 6.0.180 - Sun Microsystems, Inc.)
Java(TM) 6 Update 20 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416020FF}) (Version: 6.0.200 - Sun Microsystems, Inc.)
Java(TM) 6 Update 35 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216035FF}) (Version: 6.0.350 - Oracle)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LeapFrog Connect (HKLM-x32\...\UPCShell) (Version: 4.2.9.15649 - LeapFrog)
LeapFrog Connect (x32 Version: 4.2.9.15649 - LeapFrog) Hidden
LeapFrog LeapPad Explorer Plugin (x32 Version: 4.2.11.15696 - LeapFrog) Hidden
LeapFrog Tag Plugin (x32 Version: 4.2.9.15649 - LeapFrog) Hidden
Light-O-Rama (HKLM-x32\...\{E744BFEA-E027-441E-83A2-36202F661E31}) (Version: 3.0.2 - Light-O-Rama)
LoJack Factory Installer (HKLM-x32\...\{40F4FF7A-B214-4453-B973-080B09CED019}) (Version: 1.0.0 - Absolute Software)
MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 2.0 SDK (x64) - ENU (HKLM\...\Microsoft .NET Framework 2.0 SDK (x64) - ENU) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office 2010 Service Pack 1 (SP1) (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{047B0968-E622-4FAA-9B4B-121FA109EDDE}) (Version: - Microsoft)
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 15.0.4659.1001 - Microsoft Corporation)
Microsoft Office Home and Student 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3154378874-1875084861-2286133563-1001\...\OneDriveSetup.exe) (Version: 17.3.1229.0918 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (HKLM-x32\...\{a0fe116e-9a8a-466f-aee0-625cb7c207e3}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{052bac4a-6f79-46d4-a024-1ce1b4f73cd4}) (Version: 8.0.58299 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.31007 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
My Dell (HKLM\...\PC-Doctor for Windows) (Version: 3.5.6426.22 - PC-Doctor, Inc.)
Network64 (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Network64 (Version: 140.0.221.000 - Hewlett-Packard) Hidden
OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4659.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4659.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4659.1001 - Microsoft Corporation) Hidden
QuickBooks (x32 Version: 22.0.4015.2206 - Intuit Inc.) Hidden
QuickBooks Pro 2012 (HKLM-x32\...\{22057D8D-7CC8-46FF-AD8C-9BD24F9014F3}) (Version: 22.0.4015.2206 - Intuit Inc.)
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 10.06.02 - Dell Inc.)
Radialpoint Security Advisor 2.5.15 (x32 Version: 2.5.15 - Radialpoint SafeCare Inc.) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6136 - Realtek Semiconductor Corp.)
Roxio Burn (HKLM-x32\...\{B2E47DE7-800B-40BB-BD1F-9F221C3AEE87}) (Version: 1.01 - Roxio)
SAMSUNG Mobile Modem Driver Set (HKLM\...\SAMSUNG Mobile Modem) (Version: - )
Samsung Mobile phone USB driver Software (HKLM\...\Samsung Mobile phone USB driver) (Version: - )
SAMSUNG Mobile USB Modem 1.0 Software (HKLM\...\SAMSUNG Mobile USB Modem 1.0) (Version: - )
SAMSUNG Mobile USB Modem Software (HKLM\...\SAMSUNG Mobile USB Modem) (Version: - )
Samsung PC Studio 3 USB Driver Installer (HKLM-x32\...\{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}) (Version: 3.2.0.70701 - Samsung Electronics Co., Ltd.)
Scan (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
Skype™ 5.10 (HKLM-x32\...\{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}) (Version: 5.10.116 - Skype Technologies S.A.)
SmartWebPrinting (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
SolutionCenter (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Status (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
SupportSoft Assisted Service (HKLM-x32\...\{5A3F6A80-7913-475E-8B96-477A952CFA43}) (Version: 15 - SupportSoft)
System Requirements Lab (HKLM-x32\...\SystemRequirementsLab) (Version: - )
Toolbox (x32 Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 130.0.376.000 - Hewlett-Packard) Hidden
Tweaking.com - Registry Backup (HKLM-x32\...\Tweaking.com - Registry Backup) (Version: 1.10.1 - Tweaking.com)
Use the entry named LeapFrog Connect to uninstall (LeapFrog LeapPad Explorer Plugin) (HKLM-x32\...\LeapPadExplorerPlugin) (Version: - LeapFrog)
Use the entry named LeapFrog Connect to uninstall (LeapFrog Tag Plugin) (HKLM-x32\...\TagPlugin) (Version: 4.2.9.15649 - LeapFrog)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
WebReg (x32 Version: 130.0.132.017 - Hewlett-Packard) Hidden
Windows Driver Package - LeapFrog (FlyUsb) USB (11/05/2008 1.1.1.0) (HKLM\...\781745E87AFF80C0C1388CFF79D19ECAB2E9BB47) (Version: 11/05/2008 1.1.1.0 - LeapFrog)
Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net (09/10/2009 02.03.05.012) (HKLM\...\8F14F2ECEDE68D26EA515B48DC25B39103C4FE8D) (Version: 09/10/2009 02.03.05.012 - Leapfrog)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)
Windstream Diagnostic Tools 3.0.21 (x32 Version: 3.0.21 - Windstream) Hidden
Windstream Service Agent 4.1.15 (HKLM-x32\...\RadialpointClientGateway_is1) (Version: 4.1.15 - Windstream)
Yahoo! Detect (HKLM-x32\...\YTdetect) (Version: - )
Yahoo! Toolbar (HKLM-x32\...\Yahoo! Companion) (Version: - )

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-3154378874-1875084861-2286133563-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Melissa\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3154378874-1875084861-2286133563-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Melissa\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3154378874-1875084861-2286133563-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Melissa\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3154378874-1875084861-2286133563-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Melissa\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3154378874-1875084861-2286133563-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Melissa\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points =========================

14-11-2014 03:54:59 Scheduled Checkpoint
14-11-2014 20:59:17 Malwarebytes Anti-Rootkit Restore Point

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 21:34 - 2014-11-13 09:01 - 00000035 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {03AFC8D3-C38E-4AAF-92C7-E9381AD98AD3} - System32\Tasks\LoJack for Laptops Install => C:\Program Files (x86)\Absolute Software\LoJack Install\FactoryInstaller.exe [2009-11-26] (Absolute Software)
Task: {18C6765E-5D46-4C5F-8848-72EF568C4659} - System32\Tasks\SDMsgUpdate (Local) => C:\Program Files (x86)\SmartDraw CI\Messages\SDNotify.exe [2012-08-13] ()
Task: {3E48F351-0754-4911-83AA-353F3119CA4F} - System32\Tasks\Microsoft Office 15 Sync Maintenance for Laptop-Melissa Laptop => C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe [2014-10-19] (Microsoft Corporation)
Task: {5AC44A0B-3312-4E1D-9BF7-3C2E821F64C0} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-11] (Adobe Systems Incorporated)
Task: {62616662-CF62-4526-A7A6-CED697EC2426} - System32\Tasks\IHUninstallTrackingTASK => CMD
Task: {63E0ED59-4C66-4CC0-99A3-3DE6FAB83924} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {683A5625-6256-47DA-9826-603CA72B75B6} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\My Dell\uaclauncher.exe [2014-01-31] (PC-Doctor, Inc.)
Task: {7956B706-6AF6-46AC-93E3-CD43C90CFA00} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2014-09-25] (Microsoft Corporation)
Task: {9CC368BA-943A-4114-9FC4-A624E96FA95C} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Task: {A5452B19-D4D6-414C-8816-F8FA28ABD812} - System32\Tasks\SDMsgUpdate (TE) => C:\Program Files (x86)\SmartDraw CI\Messages\SDNotify.exe [2012-08-13] ()
Task: {ABE4E42F-B172-4B4C-A399-FE26F426F5A4} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
Task: {B5F2B017-85B0-471B-A3E4-8D437BE2ADD8} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2014-10-19] (Microsoft Corporation)
Task: {BB2C18C8-08A9-4BA7-8A70-71A878A6E49E} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\My Dell\sessionchecker.exe [2014-01-31] (PC-Doctor, Inc.)
Task: {BF8469D9-CF86-4312-AB10-4DEE368B374D} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
Task: {CF448ED9-A4F5-4B3D-8B26-CEBAF27DC871} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {DA59EBEE-9F99-4A87-9BD1-D11E4D367E4B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {E037F955-36E3-41F5-946A-B2A2370049C3} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\SDMsgUpdate (Local).job => C:\PROGRA~2\SMARTD~1\Messages\SDNotify.exe
Task: C:\Windows\Tasks\SDMsgUpdate (TE).job => C:\PROGRA~2\SMARTD~1\Messages\SDNotify.exe

==================== Loaded Modules (whitelisted) =============

2014-11-07 18:53 - 2014-05-20 09:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2014-01-15 12:19 - 2014-10-19 12:58 - 08896160 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2010-09-18 13:05 - 2011-08-18 10:05 - 02751808 _____ () C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
2014-02-06 00:52 - 2014-02-06 00:52 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-06 00:52 - 2014-02-06 00:52 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-11-06 12:47 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-11-06 12:47 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2014-11-06 12:47 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-11-06 12:47 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2014-11-06 12:47 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2012-05-12 02:45 - 2012-05-12 02:45 - 00170496 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\97d05107b8c95b1a62a45a87a7c8165f\IsdiInterop.ni.dll
2010-09-18 12:32 - 2010-06-08 10:44 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HsdService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ServicepointService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HsdService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ntrexeservice => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NTRSupport => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ServicepointService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^QuickBooks Update Agent.lnk => C:\Windows\pss\QuickBooks Update Agent.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^QuickBooks_Standard_21.lnk => C:\Windows\pss\QuickBooks_Standard_21.lnk.CommonStartup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: Dell DataSafe Online => "C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe" /m
MSCONFIG\startupreg: Dell Webcam Central => "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
MSCONFIG\startupreg: DellSupportCenter => "C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
MSCONFIG\startupreg: Desktop Disc Tool => "C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe"
MSCONFIG\startupreg: DiagnosticTools.exe => "C:\Program Files (x86)\Windstream\Diagnostic Tools\DiagnosticTools.exe" /AUTORUN
MSCONFIG\startupreg: Intuit SyncManager => C:\Program Files (x86)\Common Files\Intuit\Sync\IntuitSyncManager.exe startup
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

========================= Accounts: ==========================

Administrator (S-1-5-21-3154378874-1875084861-2286133563-500 - Administrator - Disabled)
Guest (S-1-5-21-3154378874-1875084861-2286133563-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3154378874-1875084861-2286133563-1002 - Limited - Enabled)
Melissa (S-1-5-21-3154378874-1875084861-2286133563-1001 - Administrator - Enabled) => C:\Users\Melissa
QBDataServiceUser21 (S-1-5-21-3154378874-1875084861-2286133563-1003 - Limited - Enabled) => C:\Users\QBDataServiceUser21

==================== Faulty Device Manager Devices =============

Name: Officejet 4500 G510n-z
Description: Officejet 4500 G510n-z
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Officejet 4500 G510n-z
Description: Officejet 4500 G510n-z
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

==================== Event log errors: =========================

Application errors:
==================
Error: (11/17/2014 00:09:22 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (11/17/2014 00:09:22 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (11/16/2014 07:13:13 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (11/16/2014 07:00:01 PM) (Source: Windows Backup) (EventID: 4103) (User: )
Description: The backup did not complete because of an error writing to the backup location E:\. The error is: The backup location cannot be found or is not valid. Review your backup settings and check the backup location. (0x81000006).

Error: (11/16/2014 03:50:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: pcdrcui.exe, version: 6.0.6426.22, time stamp: 0x52cfadb3
Faulting module name: KERNELBASE.dll, version: 6.1.7601.18015, time stamp: 0x50b8479b
Exception code: 0xe0434352
Fault offset: 0x0000000000009e5d
Faulting process id: 0x12b8
Faulting application start time: 0xpcdrcui.exe0
Faulting application path: pcdrcui.exe1
Faulting module path: pcdrcui.exe2
Report Id: pcdrcui.exe3

Error: (11/16/2014 03:50:10 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: pcdrcui.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: Pcd.DataStore.DatabaseError
Stack:
at wpfview.Program.StartController_HandelAsapiAuthenticationErrors(System.String[])
at wpfview.Program.Main(System.String[])

Error: (11/16/2014 02:54:47 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (11/16/2014 02:54:47 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (11/14/2014 03:03:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: pcdrcui.exe, version: 6.0.6426.22, time stamp: 0x52cfadb3
Faulting module name: KERNELBASE.dll, version: 6.1.7601.18015, time stamp: 0x50b8479b
Exception code: 0xe0434352
Fault offset: 0x0000000000009e5d
Faulting process id: 0x110c
Faulting application start time: 0xpcdrcui.exe0
Faulting application path: pcdrcui.exe1
Faulting module path: pcdrcui.exe2
Report Id: pcdrcui.exe3

Error: (11/14/2014 03:03:18 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: pcdrcui.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: Pcd.DataStore.DatabaseError
Stack:
at Pcd.DataStore.AppStateDataStore..ctor()
at pcd.models.properties.UserSetting.Init()
at pcd.controllers.MainController.InitializeProperties()
at pcd.controllers.MainController.BackgroundStartThread()
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ThreadHelper.ThreadStart()

System errors:
=============
Error: (11/17/2014 02:34:27 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (11/17/2014 02:34:27 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (11/17/2014 02:33:53 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (11/17/2014 02:33:13 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Computer Browser service terminated with the following error:
%%1060

Error: (11/17/2014 02:33:01 PM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: The Spybot-S&D 2 Security Center Service service depends the following service: wscsvc. This service might not be installed.

Error: (11/17/2014 02:32:41 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (11/17/2014 02:31:31 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ServicepointService service.

Error: (11/17/2014 00:13:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Media Player Network Sharing Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (11/17/2014 00:13:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (11/17/2014 00:13:54 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Intel(R) Rapid Storage Technology service terminated unexpectedly. It has done this 1 time(s).

Microsoft Office Sessions:
=========================
Error: (11/17/2014 00:09:22 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: WmiApRplWmiApRpl8F20300004D070000

Error: (11/17/2014 00:09:22 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Performance1637070000000000000000000009030000

Error: (11/16/2014 07:13:13 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (11/16/2014 07:00:01 PM) (Source: Windows Backup) (EventID: 4103) (User: )
Description: E:\The backup location cannot be found or is not valid. Review your backup settings and check the backup location. (0x81000006)

Error: (11/16/2014 03:50:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: pcdrcui.exe6.0.6426.2252cfadb3KERNELBASE.dll6.1.7601.1801550b8479be04343520000000000009e5d12b801d001deacbfa504C:\Program Files\My Dell\pcdrcui.exeC:\Windows\system32\KERNELBASE.dll28469894-6dd2-11e4-97fd-061bb1456f9c

Error: (11/16/2014 03:50:10 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: pcdrcui.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: Pcd.DataStore.DatabaseError
Stack:
at wpfview.Program.StartController_HandelAsapiAuthenticationErrors(System.String[])
at wpfview.Program.Main(System.String[])

Error: (11/16/2014 02:54:47 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT AUTHORITY)
Description: WmiApRplWmiApRpl8F20300004D070000

Error: (11/16/2014 02:54:47 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY)
Description: Performance1637070000000000000000000009030000

Error: (11/14/2014 03:03:18 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: pcdrcui.exe6.0.6426.2252cfadb3KERNELBASE.dll6.1.7601.1801550b8479be04343520000000000009e5d110c01d00045ff3dc946C:\Program Files\My Dell\pcdrcui.exeC:\Windows\system32\KERNELBASE.dll461a4ac6-6c39-11e4-97fd-061bb1456f9c

Error: (11/14/2014 03:03:18 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: pcdrcui.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: Pcd.DataStore.DatabaseError
Stack:
at Pcd.DataStore.AppStateDataStore..ctor()
at pcd.models.properties.UserSetting.Init()
at pcd.controllers.MainController.InitializeProperties()
at pcd.controllers.MainController.BackgroundStartThread()
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
at System.Threading.ThreadHelper.ThreadStart()

CodeIntegrity Errors:
===================================
Date: 2014-11-14 11:29:29.825
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDHook64.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-11-14 08:03:31.381
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDHook64.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-11-14 01:53:17.783
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDHook64.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-11-13 17:16:37.636
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDHook64.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-11-13 17:02:33.618
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDHook64.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-11-13 16:57:12.830
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDHook64.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-11-13 16:21:36.802
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDHook64.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-11-13 16:21:36.802
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDHook64.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-11-13 11:26:17.216
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDHook64.dll because the set of per-page image hashes could not be found on the system.

Date: 2014-11-13 11:26:17.216
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Spybot - Search & Destroy 2\SDHook64.dll because the set of per-page image hashes could not be found on the system.

==================== Memory info ===========================

Processor: Pentium(R) Dual-Core CPU T4500 @ 2.30GHz
Percentage of memory in use: 38%
Total physical RAM: 4058.36 MB
Available physical RAM: 2487.16 MB
Total Pagefile: 8114.91 MB
Available Pagefile: 6186.46 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:451.01 GB) (Free:336.87 GB) NTFS ==>[Drive with boot components (obtained from BCD)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 51ED4EC9)
Partition 1: (Not Active) - (Size=100 MB) - (Type=DE)
Partition 2: (Active) - (Size=14.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=451 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Juliet · Nov 17, 2014

Empty flash cache.
http://www.macromedia.com/support/documentation/en/flashplayer/help/settings_manager07.html
<<<>>>

Click the

button. In the Search box, type Command Prompt, and then, in the list of results, double-click Command Prompt.

at the cursor type:
ipconfig /flushdns <-- (A space between g and / is needed)

repeat with
ipconfig /renew

Then hit Enter, type Exit, hit the Enter key.
You may need to run CMD - Command Prompt on Vista - Windows 7/8 with Elevated Privilege
http://www.bleepingcomputer.com/tutorials/windows-elevated-command-prompt/
<<<>>>

If you had backed up any of the photos there is a chance you have copies.
From the applications listed that the infection attached to seems most can be re downloaded.

This is a horrible infection to have on a computer. From here since the infection has been removed is really, to do a reformat of the machine.
If you like, the links I posted previously at BleepingComputers shows the struggles and attempts of other Victims.
To follow or read the links you do not have to join but, if you did have questions you would need to join and create a User ID.

What we can do from here now is to remove the tools and quarantine folders from your computer and I'll post preventive tips.

gurleygirl · Nov 17, 2014

I completed the last task, now what can I do? Also, I really need to get into my QB files, but am scared too. I backed them up last Tuesday as I saw the infection coming in, but if I open them (not sure if I can even open QB!) and the backed up files are infected, will it infect my computer all over again?

Most of the pics are saved, just none of my work for 2014. I'm ok with a reformat - which means getting my machine back to all its original hardware/software without any programs/files saved on it? Yes?

Lastly, should I turn on the antivirus?

Thanks again!!!!!

Juliet · Nov 17, 2014

I completed the last task, now what can I do? Also, I really need to get into my QB files, but am scared too. I backed them up last Tuesday as I saw the infection coming in, but if I open them (not sure if I can even open QB!) and the backed up files are infected, will it infect my computer all over again?

As far as removing the infection we have, but I cannot remove the damage and stated this when we first started.
If these things had been backed up before seeing an infection you would have them to redownload, and from what I saw in the log results, I say they are probably non-retrievable now. From here the files are encrypted, if you look at the files they will have extensions are just wont open. It shouldn't reinfect you but nothing is impossible.

Most of the pics are saved, just none of my work for 2014. I'm ok with a reformat - which means getting my machine back to all its original hardware/software without any programs/files saved on it? Yes?

Yes. At this point theres nothing more you really can do but, you really should read over the links supplied and read how this infection enters a computer.

Yes, please turn your antivirus back on.

Let's remove tools and quarantine folders now then make sure to read over my preventive tips.

~~~~~~~~~~~~~~~~~~~~~`

Download Delfix from here
Ensure Remove disinfection tools is ticked
Also tick:
Create registry backup
Click Run
Purge system restore

Any other tools and files found can simply be deleted or uninstall via Add/Remove Programs in the Control Panel etc.

~~~~~~~~~~~~~~~~~

Answers to common security questions - Best Practices by quietman7, MVP
How Malware Spreads - How did I get infected? by quietman7, MVP
Simple and easy ways to keep your computer safe and secure on the Internet by Lawrence Abrams, MVP
How to Prevent Malware by miekiemoes, MVP
How to backup and restore your data using Cobian Backup by YourHighness
Slow Computer/browser? It May Not Be Malware by quietman7, MVP

The following programmes come highly recommended in the security community.

AdBlock is a browser add-on that blocks annoying banners, pop-ups and video ads.
CryptoPrevent places policy restrictions on loading points for ransomware (eg.CryptoPrevent), preventing your files from being encrypted.
Important.
Malwarebytes Anti-Exploit (MBAE) is designed to prevent zero-day malware from exploiting vulnerable software.
Malwarebytes Anti-Malware Premium (MBAM) works in real-time along side your Anti-Virus to prevent malware execution.
NoScript is a Firefox add-on that blocks the actions of malicious scripts by using whitelisting and other technology.
Sandboxie isolates programmes of your choice, preventing files from being written to your HDD unless approved by you.
Secuina PSI will scan your computer for vulnerable software that is outdated, and automatically find the latest update for you.
SpywareBlaster is a form of passive protection, designed to block the actions of malicious websites and tracking cookies.
Web of Trust (WOT) is a browser add-on designed to alert you before interacting with a potentially malicious website.

gurleygirl · Nov 17, 2014

Didn't know if you needed this.

# DelFix v10.8 - Logfile created 17/11/2014 at 17:44:27
# Updated 29/07/2014 by Xplode
# Username : Melissa - LAPTOP
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)

~ Removing disinfection tools ...

Deleted : C:\FRST
Deleted : C:\AdwCleaner
Deleted : C:\Users\Melissa\Desktop\FRST-OlderVersion
Deleted : C:\Users\Melissa\Desktop\mbar
Deleted : C:\Users\Melissa\Desktop\Addition.txt
Deleted : C:\Users\Melissa\Desktop\AdwCleaner.exe
Deleted : C:\Users\Melissa\Desktop\aswMBR.exe
Deleted : C:\Users\Melissa\Desktop\aswMBR.txt
Deleted : C:\Users\Melissa\Desktop\Fixlog.txt
Deleted : C:\Users\Melissa\Desktop\FRST.txt
Deleted : C:\Users\Melissa\Desktop\FRST64.exe
Deleted : C:\Users\Melissa\Desktop\JRT.exe
Deleted : C:\Users\Melissa\Desktop\JRT.txt
Deleted : C:\Users\Melissa\Desktop\MBR.dat
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWMBR

~ Creating registry backup ... OK

~ Cleaning system restore ...

Deleted : RP #219 [Scheduled Checkpoint | 11/14/2014 03:54:59]
Deleted : RP #220 [Malwarebytes Anti-Rootkit Restore Point | 11/14/2014 20:59:17]

New restore point created !

########## - EOF - ##########

I will review everything you posted. I knew you wouldn't be able to get my files back to normal, but I appreciate all your help in getting me back to as normal as possible. I have a friend coming over to help with reformatting. Let me know if there is anything else I need to do.

Thanks again so much Juliet, you are a talented individual!

Juliet · Nov 17, 2014

I will review everything you posted. I knew you wouldn't be able to get my files back to normal, but I appreciate all your help in getting me back to as normal as possible. I have a friend coming over to help with reformatting. Let me know if there is anything else I need to do.

Thanks again so much Juliet, you are a talented individual!

We're glad to help

Juliet · Nov 19, 2014

Glad we could help.

Since this issue appears resolved ... this Topic is closed.

dllhost.exe*32 problems Logs posted

Juliet

Security Expert-emeritus

gurleygirl

New member

Juliet

Security Expert-emeritus

gurleygirl

New member

gurleygirl

New member

gurleygirl

New member

Juliet

Security Expert-emeritus

gurleygirl

New member

Juliet

Security Expert-emeritus

gurleygirl

New member

Juliet

Security Expert-emeritus

Juliet

Security Expert-emeritus