KillProcesses: (Just Develop It) C:\Program Files (x86)\MyPC Backup\BackupStack.exe () C:\Windows\SysWOW64\dsrvprn.exe () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.4.6792.0\AdAwareService.exe (The Chromium Authors) C:\Users\Owner\AppData\Local\I.d.l.e C.r.a.w.l.e.r\Chrome-bin\chrome.exe (The Chromium Authors) C:\Users\Owner\AppData\Local\I.d.l.e C.r.a.w.l.e.r\Chrome-bin\chrome.exe cmd: tskill chrome /A () C:\Program Files (x86)\SupTab\HpUI.exe () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.4.6792.0\AdAwareTray.exe (MyPCBackup.com) C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe () C:\Users\Owner\AppData\Local\SevereWeatherAlerts\SevereWeatherAlertsApp.exe (Weather Notifications, LLC) C:\Users\Owner\AppData\Local\SevereWeatherAlerts\SevereWeatherAlerts.exe (PC Utilities Software Limited) C:\Program Files (x86)\Driver Pro\DPTray.exe () C:\Users\Owner\AppData\Local\I.d.l.e C.r.a.w.l.e.r\I._C._Runner.exe () C:\Users\Owner\AppData\Local\SevereWeatherAlerts\SevereWeatherAlertsBrowser.exe HKLM\...\Run: [] => [X] HKLM\...\Run: [AdAwareTray] => C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.4.6792.0\AdAwareTray.exe [8925504 2014-10-15] () HKLM-x32\...\Run: [ospd_us_349] => [X] HKU\S-1-5-21-77919763-808462472-1795383770-1001\...\Run: [GoogleChromeAutoLaunch_721577D41E77D440C916E2687EBA0267] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [854344 2014-10-21] (Google Inc.) AppInit_DLLs: C:\Users\Owner\AppData\Local\Smartbar\Application\Resources\crdlil64.dll => C:\Users\Owner\AppData\Local\Smartbar\Application\Resources\crdlil64.dll [77856 2014-11-01] () AppInit_DLLs-x32: c:\users\owner\appdata\local\smartbar\application\resources\crdlil.dll => c:\users\owner\appdata\local\smartbar\application\resources\crdlil.dll [67104 2014-11-01] () Startup: C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk ShortcutTarget: MyPC Backup.lnk -> C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe (MyPCBackup.com) Startup: C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Severe Weather Alerts App.lnk ShortcutTarget: Severe Weather Alerts App.lnk -> C:\Users\Owner\AppData\Local\SevereWeatherAlerts\SevereWeatherAlertsApp.exe () Startup: C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Severe Weather Alerts.lnk ShortcutTarget: Severe Weather Alerts.lnk -> C:\Users\Owner\AppData\Local\SevereWeatherAlerts\SevereWeatherAlerts.exe (Weather Notifications, LLC) GroupPolicy: Group Policy on Chrome detected <======= ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION BootExecute: autocheck autochk * bddel.exe HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://feed.snapdo.c...q={searchTerms} HKU\S-1-5-21-77919763-808462472-1795383770-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.v9.com...q={searchTerms} SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://astromenda.co...r=106507692&ir= SearchScopes: HKLM - {2E00D31D-D171-423D-836D-1A4D7EA7F1A9} URL = SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.v9.com...q={searchTerms} SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.v9.com...q={searchTerms} SearchScopes: HKLM-x32 - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = http://feed.snapdo.c...q={searchTerms} SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.v9.com...q={searchTerms} SearchScopes: HKCU - DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://astromenda.co...r=456815432&ir= SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = http://feed.snapdo.c...q={searchTerms} SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://astromenda.co...r=456815432&ir= SearchScopes: HKCU - {2E00D31D-D171-423D-836D-1A4D7EA7F1A9} URL = http://www.trovi.com...rchTerms}&SSPV= SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.v9.com...q={searchTerms} SearchScopes: HKCU - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = BHO: Snap.DoEngine -> {31ad400d-1b06-4e33-a59a-90c2c140cba0} -> C:\Windows\system32\mscoree.dll (Microsoft Corporation) BHO: Ad-Aware Security Toolbar -> {6c97a91e-4524-4019-86af-2aa2d567bf5c} -> C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\adawareDx64.dll () BHO-x32: Snap.DoEngine -> {31ad400d-1b06-4e33-a59a-90c2c140cba0} -> C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation) BHO-x32: Ad-Aware Security Toolbar -> {6c97a91e-4524-4019-86af-2aa2d567bf5c} -> C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\adawareDx.dll () BHO-x32: TermTutor -> {6CB99040-7828-4C37-AC01-F15758F43E4D} -> C:\Program Files (x86)\TermTutor\IE\TermTutorClientIE.dll (Term Tutor) Toolbar: HKLM - Ad-Aware Security Toolbar - {6c97a91e-4524-4019-86af-2aa2d567bf5c} - C:\Program Files (x86)\Lavasoft\AdAware SecureSearch Toolbar\adawareDx64.dll () Toolbar: HKLM - Snap.Do - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\system32\mscoree.dll (Microsoft Corporation) Toolbar: HKLM-x32 - Snap.Do - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation) FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate) FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate) FF HKLM\...\Firefox\Extensions: [{BF883488-0379-470e-8BF2-C5D1F3828428}] - C:\Program Files\Shop For Rewards\Firefox FF HKLM-x32\...\Firefox\Extensions: [{BF883488-0379-470e-8BF2-C5D1F3828428}] - C:\Program Files\Shop For Rewards\Firefox CHR StartupUrls: Default -> "hxxp://www.trovi.com/?gd=&ctid=CT3330394&octid=EB_ORIGINAL_CTID&ISID=ME102B91A-A79C-4FCF-B3C0-DD4C6A5AB8C9&SearchSource=55&CUI=&UM=6&UP=SPAC1F7BEC-782D-463C-81D2-E4E44DF1F3D9&SSPV=", "hxxp://search.conduit.com/?ctid=CT3317822&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SP2520F31A-7AA7-4B22-BDE3-CE7CC94F140F&SSPV=", "hxxp://mysearch.avg.com/?cid={EAA7AA15-D81A-43A5-B32E-9F6E7CF4F37F}&mid=8663c7dcad4e47d2a1376939b21ce5e1-3e07e213711093ba2a513882b8c4339a3739fffa&lang=en&ds=ub011&coid=avgtbdisub&cmpid=&pr=sa&d=2014-02-06%2021:07:48&v=17.3.1.204&pid=safeguard&sg=&sap=hp", "hxxp://astromenda.com/?f=7&a=ast_cmi_14_45_ch&cd=2XzuyEtN2Y1L1Qzu0AtDtC0DyEzz0D0A0CyB0D0AtBzz0E0AtN0D0Tzu0StCtDtAzztN1L2XzutAtFyCtFtDtFtAtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyD0A0BtCyD0FzzzytGtD0EtCtAtGtC0FyC0CtG0A0Czy0DtGtAyCtBtBzz0CtAyBtDtCyBtA2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szy0FyB0CyEzz0C0CtGyEzytCtCtGyE0D0D0FtG0Bzy0DyBtGzz0DyEzytCyCyB0Czy0FtD0F2Q&cr=456815432&ir=", "hxxp://www.v9.com/?type=hp&ts=1415323537&from=pjr&uid=TOSHIBAXMQ01ABD075_Z3GCS98OSXXZ3GCS98OS&i=psd&t=34b993bae" CHR DefaultSearchKeyword: Default -> v9 CHR Extension: (Browsers+Apps+1.1) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\hoidflomjnnnbiemmkjdjkkialmhbago [2014-11-01] CHR Extension: (Value apps) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\lcnnhcneegeeojhgpfijnlnocjdmlaon [2014-02-22] CHR Extension: (Astromenda New Tab) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfkfdlcdbajamklbneflfbcmfgddmpae [2014-11-01] R2 BackupStack; C:\Program Files (x86)\MyPC Backup\BackupStack.exe [36936 2014-10-30] (Just Develop It) <==== ATTENTION R2 dsrvprn; C:\Windows\SysWOW64\dsrvprn.exe [268600 2014-11-02] () S2 globalUpdate; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-11-06] (globalUpdate) [File not signed] S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-11-06] (globalUpdate) [File not signed] R2 LavasoftAdAwareService11; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.4.6792.0\AdAwareService.exe [707888 2014-10-15] () S4 LPTSystemUpdater; C:\Program Files (x86)\LPT\srpts.exe [34336 2014-10-28] () [File not signed] <==== ATTENTION R2 Orbiter; C:/Program Files (x86)/ORBTR/orbiter.dll [492496 2014-11-02] (Client Connect LTD) S3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [389240 2014-07-10] (BitDefender S.R.L.) S3 SPPD; \??\C:\Windows\system32\drivers\SPPD.sys [X] 2014-11-07 19:03 - 2014-11-07 19:05 - 00028672 _____ () C:\Windows\system32\bddel.exe 2014-11-07 19:03 - 2014-11-07 19:05 - 00010234 _____ () C:\Windows\system32\bddel.dat C:\Windows\Tasks\53846bfa-df38-4813-824c-7f71cc0e54c5-*.job 2014-11-06 09:56 - 2014-11-07 18:11 - 00001364 _____ () C:\Windows\Tasks\GQRWQQA.job 2014-11-06 09:56 - 2014-11-06 09:56 - 01535408 _____ (HQuality3V06.11) C:\Users\Owner\AppData\Roaming\GQRWQQA.exe 2014-11-06 09:56 - 2014-11-06 09:56 - 00007178 _____ () C:\Windows\System32\Tasks\53846bfa-df38-4813-824c-7f71cc0e54c5-* 2014-11-06 09:55 - 2014-11-07 18:11 - 00001708 _____ () C:\Windows\Tasks\CJVEYMH.job 2014-11-06 09:55 - 2014-11-06 09:55 - 02021296 _____ (HQuality3V06.11) C:\Users\Owner\AppData\Roaming\CJVEYMH.exe 2014-11-06 09:55 - 2014-11-06 09:55 - 00004718 _____ () C:\Windows\System32\Tasks\CJVEYMH 2014-11-06 09:55 - 2014-11-06 16:00 - 00000986 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job 2014-11-06 09:55 - 2014-11-06 09:55 - 00003958 _____ () C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA 2014-11-06 09:47 - 2014-11-06 09:47 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage 2014-11-05 06:12 - 2014-11-05 17:27 - 00000000 ____D () C:\Program Files\Shop For Rewards 2014-11-05 06:12 - 2014-11-05 06:12 - 01482640 _____ () C:\ProgramData\Setup.exe 2014-11-05 06:12 - 2014-11-05 06:12 - 00000045 _____ () C:\user.js 2014-11-03 11:53 - 2014-11-03 11:53 - 00003104 _____ () C:\Windows\System32\Tasks\{5AA26A89-6E5D-49A8-B570-B6A8ECE2D7A7} 2014-11-03 11:19 - 2014-11-03 11:19 - 00000000 ____D () C:\Program Files (x86)\predm 2014-11-03 10:12 - 2014-11-03 10:12 - 00000000 ____D () C:\ProgramData\374311380 2014-11-03 07:18 - 2014-11-03 07:18 - 00022528 _____ () C:\Users\Owner\AppData\Local\84021875dsisetup840276712.exe 2014-11-03 07:18 - 2014-11-03 07:18 - 00000001 _____ () C:\Users\Owner\AppData\Local\DSI.DAT 2014-11-01 09:18 - 2014-11-07 18:23 - 00000316 _____ () C:\Windows\Tasks\WSE_Astromenda.job 2014-11-01 09:18 - 2014-11-03 11:54 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Systweak 2014-11-01 09:18 - 2014-11-03 11:23 - 00002654 _____ () C:\Windows\System32\Tasks\WSE_Astromenda 2014-11-01 09:18 - 2014-11-03 11:22 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\WSE_Astromenda 2014-11-01 09:18 - 2014-10-06 16:36 - 00020296 _____ () C:\Windows\system32\roboot64.exe C:\Windows\Tasks\b03f950d-028f-4765-b7eb-ba357f9aa6dd*.job C:\Windows\System32\Tasks\b03f950d-028f-4765-b7eb-ba357f9aa6dd* 2014-11-01 09:13 - 2014-11-07 18:11 - 00000982 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job 2014-11-01 09:13 - 2014-11-06 09:55 - 00003722 _____ () C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore 2014-11-01 09:13 - 2014-11-01 09:13 - 01974688 _____ (app) C:\Users\Owner\AppData\Roaming\YLEIWO.exe 2014-11-01 09:13 - 2014-11-01 09:13 - 00000000 ____D () C:\Users\Owner\AppData\Local\globalUpdate 2014-11-01 09:12 - 2014-11-06 10:46 - 00000000 ___HD () C:\Users\Public\Temp 2014-11-01 09:12 - 2014-11-01 09:13 - 00000000 ____D () C:\Users\Owner\AppData\Local\LPT 2014-11-01 09:12 - 2014-11-01 09:12 - 00000000 ____D () C:\Users\Owner\AppData\Local\Smartbar 2014-11-01 09:11 - 2014-11-01 09:11 - 00001984 _____ () C:\Users\Owner\Desktop\Sync Folder.lnk 2014-11-01 09:11 - 2014-11-01 09:11 - 00000000 ____D () C:\Users\Owner\Documents\Optimizer Pro 2014-11-01 09:10 - 2014-11-03 11:33 - 00000000 ____D () C:\Program Files (x86)\Consumer Input 2014-11-01 09:10 - 2014-11-03 08:54 - 00000000 ____D () C:\Program Files (x86)\MyPC Backup 2014-11-01 09:10 - 2014-11-01 09:38 - 00001929 _____ () C:\Windows\patsearch.bin 2014-11-01 09:10 - 2014-11-01 09:10 - 00001102 _____ () C:\Users\Owner\Desktop\MyPC Backup.lnk 2014-11-01 09:10 - 2014-11-01 09:10 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_webinstrNew_01009.Wdf 2014-11-01 09:10 - 2014-11-01 09:10 - 00000000 ____D () C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup 2014-11-01 09:08 - 2014-11-06 09:57 - 00000004 _____ () C:\end 2014-10-25 20:47 - 2014-10-25 20:47 - 00073656 _____ () C:\Users\Owner\Downloads\FLVPlayer-Chrome.exe 2014-10-24 19:23 - 2014-10-24 19:23 - 00366056 _____ () C:\Users\Owner\Downloads\Player Setup.exe 2014-10-19 19:52 - 2014-10-19 19:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft 2014-10-19 19:50 - 2014-10-19 19:50 - 00000000 ____D () C:\Program Files\Common Files\Lavasoft 2014-10-19 19:47 - 2014-10-19 19:47 - 01753736 _____ () C:\Users\Owner\Downloads\Adaware_Installer (1).exe 2014-11-10 08:36 - 2014-08-30 14:33 - 00003228 _____ () C:\Windows\System32\Tasks\Driver Pro Schedule 2014-11-10 08:33 - 2014-02-22 18:23 - 00003938 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{50E71491-A125-42E1-8253-648F19D90BBC} 2014-11-05 02:43 - 2014-08-30 14:20 - 00000000 ____D () C:\Program Files (x86)\WSE_Astromenda Task: {0052B76E-E7AC-45C1-97D2-DC7C2D2B0146} - System32\Tasks\b03f950d-028f-4765-b7eb-ba357f9aa6dd-5_user => C:\Program Files (x86)\Browsers+Apps+1.1\b03f950d-028f-4765-b7eb-ba357f9aa6dd-5.exe [2014-11-01] (app) Task: {008F1528-2535-40E8-A724-081B3DB433B9} - System32\Tasks\Microsoft\Windows\Maintenance\IC Update Procedure => %LOCALAPPDATA%\I.d.l.e C.r.a.w.l.e.r\I._C._Runner.exe Task: {0B235C81-D72B-4706-8E36-5467267D7815} - System32\Tasks\GQRWQQA => C:\Users\Owner\AppData\Roaming\GQRWQQA.exe [2014-11-06] (HQuality3V06.11) <==== ATTENTION Task: {230864E9-9C8B-465E-A955-4A5E64251067} - System32\Tasks\IC Runner Procedure => %LOCALAPPDATA%\I.d.l.e C.r.a.w.l.e.r\I._C._Runner.exe Task: {30565CD3-1B8B-4683-B962-BA6E3F4ED452} - System32\Tasks\LaunchSignup => C:\Program Files (x86)\MyPC Backup\Signup Wizard.exe [2014-10-30] (MyPC Backup) <==== ATTENTION Task: {371057A4-4DAD-4189-8F57-F549A1C8DEB7} - System32\Tasks\b03f950d-028f-4765-b7eb-ba357f9aa6dd-11 => C:\Program Files (x86)\Browsers+Apps+1.1\b03f950d-028f-4765-b7eb-ba357f9aa6dd-11.exe [2014-11-01] (app) Task: {3D569F1C-8F19-43BB-8E74-B866E00C589A} - System32\Tasks\Driver Pro Schedule => C:\Program Files (x86)\Driver Pro\DPTray.exe [2014-08-26] (PC Utilities Software Limited) <==== ATTENTION Task: {56E9A489-E4D9-4026-A0A9-6CC2EC7C76C6} - System32\Tasks\b03f950d-028f-4765-b7eb-ba357f9aa6dd-2 => C:\Program Files (x86)\Browsers+Apps+1.1\b03f950d-028f-4765-b7eb-ba357f9aa6dd-2.exe [2014-11-01] (app) Task: {5A500579-64B5-408D-A92F-2D7F859F28F1} - System32\Tasks\b03f950d-028f-4765-b7eb-ba357f9aa6dd-4 => C:\Program Files (x86)\Browsers+Apps+1.1\b03f950d-028f-4765-b7eb-ba357f9aa6dd-4.exe [2014-11-01] (app) Task: {60E8AF3C-C697-4CA9-9D4E-E768E42C3C99} - System32\Tasks\53846bfa-df38-4813-824c-7f71cc0e54c5-6 => C:\Program Files (x86)\HQuality-v3V06.11\53846bfa-df38-4813-824c-7f71cc0e54c5-6.exe [2014-11-06] (HQuality3V06.11) <==== ATTENTION Task: {65D5802A-F244-4662-BD4A-E9EB841418D1} - System32\Tasks\CJVEYMH => C:\Users\Owner\AppData\Roaming\CJVEYMH.exe [2014-11-06] (HQuality3V06.11) <==== ATTENTION Task: {687010BC-5B05-4D51-87E5-04FEA3202FA6} - System32\Tasks\WSE_Astromenda => C:\Users\Owner\AppData\Roaming\WSE_Astromenda\UpdateProc\UpdateTask.exe [2014-11-03] () Task: {68B8E1EA-333D-49EA-AAFA-D1D437377EF6} - System32\Tasks\53846bfa-df38-4813-824c-7f71cc0e54c5-4 => C:\Program Files (x86)\HQuality-v3V06.11\53846bfa-df38-4813-824c-7f71cc0e54c5-4.exe [2014-11-06] (HQuality3V06.11) <==== ATTENTION Task: {8ABE6366-0E30-425E-B9C4-75A6F52BB490} - System32\Tasks\b03f950d-028f-4765-b7eb-ba357f9aa6dd-7 => C:\Program Files (x86)\Browsers+Apps+1.1\b03f950d-028f-4765-b7eb-ba357f9aa6dd-7.exe [2014-11-01] (app) Task: {8C5ED063-EEBE-45FD-90C2-85520F0FB153} - System32\Tasks\53846bfa-df38-4813-824c-7f71cc0e54c5-1 => C:\Program Files (x86)\HQuality-v3V06.11\HQuality-v3V06.11-codedownloader.exe [2014-11-06] (HQuality3V06.11) <==== ATTENTION Task: {900E3E13-61F6-4AC7-AD53-39F7A320E5BB} - System32\Tasks\b03f950d-028f-4765-b7eb-ba357f9aa6dd-3 => C:\Program Files (x86)\Browsers+Apps+1.1\b03f950d-028f-4765-b7eb-ba357f9aa6dd-3.exe [2014-11-01] (app) Task: {90A39AB9-1F55-4720-BCA6-39B876D650BF} - System32\Tasks\53846bfa-df38-4813-824c-7f71cc0e54c5-5_user => C:\Program Files (x86)\HQuality-v3V06.11\53846bfa-df38-4813-824c-7f71cc0e54c5-5.exe [2014-11-06] (HQuality3V06.11) <==== ATTENTION Task: {AEAAA720-5384-4023-A6D9-EA5E1D297CAA} - System32\Tasks\53846bfa-df38-4813-824c-7f71cc0e54c5-2 => C:\Program Files (x86)\HQuality-v3V06.11\53846bfa-df38-4813-824c-7f71cc0e54c5-2.exe [2014-11-06] (HQuality3V06.11) <==== ATTENTION Task: {B4BE5F03-91FD-4819-BE72-B2A38123B87F} - System32\Tasks\b03f950d-028f-4765-b7eb-ba357f9aa6dd-6 => C:\Program Files (x86)\Browsers+Apps+1.1\b03f950d-028f-4765-b7eb-ba357f9aa6dd-6.exe [2014-11-01] (app) Task: {BF061D0D-4BF0-4AB9-811B-8FFBFEC06668} - System32\Tasks\53846bfa-df38-4813-824c-7f71cc0e54c5-5 => C:\Program Files (x86)\HQuality-v3V06.11\53846bfa-df38-4813-824c-7f71cc0e54c5-5.exe [2014-11-06] (HQuality3V06.11) <==== ATTENTION Task: {D5C7EADF-9EF1-4F59-9DB3-A66CAB2DFF27} - System32\Tasks\53846bfa-df38-4813-824c-7f71cc0e54c5-7 => C:\Program Files (x86)\HQuality-v3V06.11\53846bfa-df38-4813-824c-7f71cc0e54c5-7.exe [2014-11-06] (HQuality3V06.11) <==== ATTENTION Task: {D658A849-3508-4367-BAAC-75C0998012C7} - System32\Tasks\b03f950d-028f-4765-b7eb-ba357f9aa6dd-5 => C:\Program Files (x86)\Browsers+Apps+1.1\b03f950d-028f-4765-b7eb-ba357f9aa6dd-5.exe [2014-11-01] (app) Task: {E1303E4E-4489-4037-81E7-6374D4E3BDD6} - System32\Tasks\b03f950d-028f-4765-b7eb-ba357f9aa6dd-1 => C:\Program Files (x86)\Browsers+Apps+1.1\Browsers+Apps+1.1-codedownloader.exe [2014-11-01] (app) Task: {F124C809-5676-4E10-BE70-41CF6A4D2A31} - System32\Tasks\53846bfa-df38-4813-824c-7f71cc0e54c5-3 => C:\Program Files (x86)\HQuality-v3V06.11\53846bfa-df38-4813-824c-7f71cc0e54c5-3.exe [2014-11-06] (HQuality3V06.11) <==== ATTENTION Task: {F61DA9E1-53F1-47AD-9F67-65817E502381} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [2014-11-06] (globalUpdate) <==== ATTENTION Task: C:\Windows\Tasks\53846bfa-df38-4813-824c-7f71cc0e54c5-1.job => C:\Program Files (x86)\HQuality-v3V06.11\HQuality-v3V06.11-codedownloader.exe <==== ATTENTION Task: C:\Windows\Tasks\53846bfa-df38-4813-824c-7f71cc0e54c5-11.job => C:\Program Files (x86)\HQuality-v3V06.11\53846bfa-df38-4813-824c-7f71cc0e54c5-11.exe <==== ATTENTION Task: C:\Windows\Tasks\53846bfa-df38-4813-824c-7f71cc0e54c5-2.job => C:\Program Files (x86)\HQuality-v3V06.11\53846bfa-df38-4813-824c-7f71cc0e54c5-2.exe <==== ATTENTION Task: C:\Windows\Tasks\53846bfa-df38-4813-824c-7f71cc0e54c5-3.job => C:\Program Files (x86)\HQuality-v3V06.11\53846bfa-df38-4813-824c-7f71cc0e54c5-3.exe <==== ATTENTION Task: C:\Windows\Tasks\53846bfa-df38-4813-824c-7f71cc0e54c5-4.job => C:\Program Files (x86)\HQuality-v3V06.11\53846bfa-df38-4813-824c-7f71cc0e54c5-4.exe <==== ATTENTION Task: C:\Windows\Tasks\53846bfa-df38-4813-824c-7f71cc0e54c5-5.job => C:\Program Files (x86)\HQuality-v3V06.11\53846bfa-df38-4813-824c-7f71cc0e54c5-5.exe <==== ATTENTION Task: C:\Windows\Tasks\53846bfa-df38-4813-824c-7f71cc0e54c5-5_user.job => C:\Program Files (x86)\HQuality-v3V06.11\53846bfa-df38-4813-824c-7f71cc0e54c5-5.exe <==== ATTENTION Task: C:\Windows\Tasks\53846bfa-df38-4813-824c-7f71cc0e54c5-6.job => C:\Program Files (x86)\HQuality-v3V06.11\53846bfa-df38-4813-824c-7f71cc0e54c5-6.exe <==== ATTENTION Task: C:\Windows\Tasks\53846bfa-df38-4813-824c-7f71cc0e54c5-7.job => C:\Program Files (x86)\HQuality-v3V06.11\53846bfa-df38-4813-824c-7f71cc0e54c5-7.exe <==== ATTENTION Task: C:\Windows\Tasks\b03f950d-028f-4765-b7eb-ba357f9aa6dd-1.job => C:\Program Files (x86)\Browsers+Apps+1.1\Browsers+Apps+1.1-codedownloader.exe Task: C:\Windows\Tasks\b03f950d-028f-4765-b7eb-ba357f9aa6dd-11.job => C:\Program Files (x86)\Browsers+Apps+1.1\b03f950d-028f-4765-b7eb-ba357f9aa6dd-11.exe Task: C:\Windows\Tasks\b03f950d-028f-4765-b7eb-ba357f9aa6dd-2.job => C:\Program Files (x86)\Browsers+Apps+1.1\b03f950d-028f-4765-b7eb-ba357f9aa6dd-2.exe Task: C:\Windows\Tasks\b03f950d-028f-4765-b7eb-ba357f9aa6dd-3.job => C:\Program Files (x86)\Browsers+Apps+1.1\b03f950d-028f-4765-b7eb-ba357f9aa6dd-3.exe Task: C:\Windows\Tasks\b03f950d-028f-4765-b7eb-ba357f9aa6dd-4.job => C:\Program Files (x86)\Browsers+Apps+1.1\b03f950d-028f-4765-b7eb-ba357f9aa6dd-4.exe Task: C:\Windows\Tasks\b03f950d-028f-4765-b7eb-ba357f9aa6dd-5.job => C:\Program Files (x86)\Browsers+Apps+1.1\b03f950d-028f-4765-b7eb-ba357f9aa6dd-5.exe Task: C:\Windows\Tasks\b03f950d-028f-4765-b7eb-ba357f9aa6dd-5_user.job => C:\Program Files (x86)\Browsers+Apps+1.1\b03f950d-028f-4765-b7eb-ba357f9aa6dd-5.exe Task: C:\Windows\Tasks\b03f950d-028f-4765-b7eb-ba357f9aa6dd-6.job => C:\Program Files (x86)\Browsers+Apps+1.1\b03f950d-028f-4765-b7eb-ba357f9aa6dd-6.exe Task: C:\Windows\Tasks\b03f950d-028f-4765-b7eb-ba357f9aa6dd-7.job => C:\Program Files (x86)\Browsers+Apps+1.1\b03f950d-028f-4765-b7eb-ba357f9aa6dd-7.exe Task: C:\Windows\Tasks\CJVEYMH.job => C:\Users\Owner\AppData\Roaming\CJVEYMH.exe <==== ATTENTION Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION Task: C:\Windows\Tasks\GQRWQQA.job => C:\Users\Owner\AppData\Roaming\GQRWQQA.exe <==== ATTENTION Task: C:\Windows\Tasks\WSE_Astromenda.job => C:\Users\Owner\AppData\Roaming\WSE_AS~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION 2014-10-30 06:30 - 2014-10-30 06:30 - 01102336 _____ () C:\Program Files (x86)\MyPC Backup\x64\System.Data.SQLite.dll 2014-11-05 06:12 - 2014-11-02 15:57 - 00268600 _____ () C:\Windows\SysWOW64\dsrvprn.exe 2014-11-01 09:10 - 2014-11-01 02:52 - 04959744 _____ () C:\Windows\rcore.exe C:\Program Files (x86)\MyPC Backup C:\Program Files (x86)\Browsers+Apps+1.1 C:\Users\Owner\AppData\Local\I.d.l.e C.r.a.w.l.e.r C:\Program Files\Lavasoft\Ad-Aware Antivirus C:\Users\Owner\AppData\Local\SevereWeatherAlerts C:\Program Files (x86)\SupTab C:\Program Files (x86)\HQuality-v3V06.11 C:\Users\Owner\AppData\Local\ospd_us_349 C:\Program Files (x86)\Krab Web C:\ProgramData\VCRZNU C:\Program Files (x86)\ORBTR C:\Users\Owner\AppData\Roaming\VOPackage C:\Program Files (x86)\Consumer Input C:\Program Files (x86)\Driver Pro C:\Users\Owner\AppData\Local\IDLECR~1.R C:\Users\Owner\AppData\Local\Smartbar C:\Program Files\TermTutor C:\Program Files (x86)\TermTutor C:\Program Files (x86)\globalUpdate C:\Program Files (x86)\LPT C:\Users\Owner\AppData\Roaming\WSE_AS~1 C:\Program Files (x86)\SearchProtect C:\ProgramData\e435d908-8e15-4e0c-ae35-3dc1cb10ee1e C:\Windows\System32\Tasks\IC Runner Procedure C:\Users\Owner\Downloads\Unconfirmed*.crdownload EmptyTemp: