CloseProcesses:
CreateRestorePoint:
C:\Program Files (x86)\Crossbrowse
C:\Program Files (x86)\Coupon Time
C:\Program Files (x86)\Cinema PlusV09.08-ntf
C:\Users\Owner\AppData\Roaming\TWV\winpl.exe
HKLM-x32\...\RunOnce: [SpUninstallCleanUp] => REG delete HKEY_LOCAL_MACHINE\Software\SearchProtect /f
C:\Program Files (x86)\gmsd_us_005010055
HKU\S-1-5-21-3206371679-4115178929-761777742-1000\...\Run: [GoogleChromeAutoLaunch_9C0C11CE362BB547A69B6E9BF20A1C96] => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe [770048 2015-05-11] (Crossbrowse)
ShortcutTarget: crossbrowse.lnk -> C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe (Crossbrowse)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKU\S-1-5-21-3206371679-4115178929-761777742-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGIjVkxlyIPc7-luTLJrDFH_OAl5xepwpv3-4PetSpjaods9wnDA5nvbYmSuSlpWW7ap_CCsSOH1dggE-RLHQxN834pnSc9ZcIfYkJQaTd2e43jD5vUfrOkEHWR2wx8kNBKNRyIGv3LeD-cQWeXvjqDFigNfEfClzMCCS1kemXJkp&q={searchTerms}
HKU\S-1-5-21-3206371679-4115178929-761777742-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://%66%65%65%64.%73%6E%61%70%64%6F.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGIjVkxlyIPc7-luTLJrDFH_OAl5xepwpv3-4PetSpjaods9wnDA5nvbYmSuSlpWW7ap_CCsSOH1dggE-RLHQxN834pnSc9ZcLQac9KvezFib9CWstoW67OAiRnlLqG9XDeTal_Qzbc4cJqypSIMA-n55M4QrunQCZJIzmdHd4nf2
HKU\S-1-5-21-3206371679-4115178929-761777742-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGIjVkxlyIPc7-luTLJrDFH_OAl5xepwpv3-4PetSpjaods9wnDA5nvbYmSuSlpWW7ap_CCsSOH1dggE-RLHQxN834pnSc9ZcIfYkJQaTd2e43jD5vUfrOkEHWR2wx8kNBKNRyIGv3LeD-cQWeXvjqDFigNfEfClzMCCS1kemXJkp&q={searchTerms}
HKU\S-1-5-21-3206371679-4115178929-761777742-1000\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGIjVkxlyIPc7-luTLJrDFH_OAl5xepwpv3-4PetSpjaods9wnDA5nvbYmSuSlpWW7ap_CCsSOH1dggE-RLHQxN834pnSc9ZcIfYkJQaTd2e43jD5vUfrOkEHWR2wx8kNBKNRyIGv3LeD-cQWeXvjqDFigNfEfClzMCCS1kemXJkp&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {ielnksrch} URL = 
SearchScopes: HKLM-x32 -> ielnksrch URL = http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGIjVkxlyIPc7-luTLJrDFH_OAl5xepwpv3-4PetSpjaods9wnDA5nvbYmSuSlpWW7ap_CCsSOH1dggE-RLHQxN834pnSc9ZcIfYkJQaTd2e43jD5vUfrOkEHWR2wx8kNBKNRyIGv3LeD-cQWeXvjqDFigNfEfClzMCCS1kemXJkp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3206371679-4115178929-761777742-1000 -> {015DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://www.trovi.com...rchTerms}&SSPV=
SearchScopes: HKU\S-1-5-21-3206371679-4115178929-761777742-1000 -> {ielnksrch} URL = http://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGIjVkxlyIPc7-luTLJrDFH_OAl5xepwpv3-4PetSpjaods9wnDA5nvbYmSuSlpWW7ap_CCsSOH1dggE-RLHQxN834pnSc9ZcIfYkJQaTd2e43jD5vUfrOkEHWR2wx8kNBKNRyIGv3LeD-cQWeXvjqDFigNfEfClzMCCS1kemXJkp&q={searchTerms}
BHO-x32: Babylon toolbar helper -> {2EECD738-5844-4a99-B4B6-146BF802613B} -> C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll [2011-08-14] (Babylon BHO)
BHO-x32: TunePro360 -> {5E04457F-D6D4-4A7E-8277-5EF1CA591CC7} -> C:\Program Files (x86)\adlevel\TunePRO360.dll No File
Toolbar: HKLM-x32 - Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll [2011-08-14] (Babylon Ltd.)
FF user.js: detected! => C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\lghuf863.default\user.js [2015-08-08]
FF Extension: Cinema PlusV09.08 - C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\lghuf863.default\Extensions\d4db60df25f14dae9dd18@185c395f9e794c9ab86be3eb.com [2015-08-09]
FF Extension: SpecialSavings - C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\lghuf863.default\Extensions\specialsavings@superfish.com [2012-03-18]
FF Extension: TunePro360 - C:\Program Files (x86)\Mozilla Firefox\distribution\bundles\temp [2015-08-08]
FF Extension: DrSpeedyPc - C:\Program Files (x86)\Mozilla Firefox\distribution\bundles\{88d83554-2fdc-4bb9-8dcd-f2d46d175f88} [2015-08-08]
FF HKLM\...\Firefox\Extensions: [{0a0e29f6-0ab0-44e1-a98e-bd050ee692ec}] - C:\Program Files\shopperz04082015\Firefox
FF HKLM-x32\...\Firefox\Extensions: [{845257EF-A892-484e-8EB0-47F563D75939}] - C:\Program Files (x86)\iSkysoft\Video Converter Ultimate\SVRFirefoxExt
FF Extension: iSkysoft Video Converter Ultimate - C:\Program Files (x86)\iSkysoft\Video Converter Ultimate\SVRFirefoxExt [2013-03-24]
FF HKLM-x32\...\Firefox\Extensions: [{0a0e29f6-0ab0-44e1-a98e-bd050ee692ec}] - C:\Program Files\shopperz04082015\Firefox
FF Extension: SpecialSavings - C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles/lghuf863.default\extensions\specialsavings@superfish.com [2012-03-18]
CHR Extension: (Cinema PlusV09.08) - C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\papbadoldddalgcjcicnikcfenodpghp [2015-08-09]
S2 globalUpdate; C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe [68608 2015-08-09] (globalUpdate) [File not signed] <==== ATTENTION
S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe [68608 2015-08-09] (globalUpdate) [File not signed] <==== ATTENTION
R2 dezyloje; C:\Program Files (x86)\07599E80-1439095677-81E1-3676-5404A63C37F3\knsfD0EE.tmpfs [X]
U3 Winsock; no ImagePath
S1 cherimoya; system32\drivers\cherimoya.sys [X]
S1 snqjhjan; \??\C:\Windows\system32\drivers\snqjhjan.sys [X]
S3 SWUMX20; system32\DRIVERS\swumx20.sys [X]
2015-08-09 08:50 - 2015-08-09 09:50 - 00005510 _____ C:\Windows\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-6.job
2015-08-09 08:50 - 2015-08-09 09:50 - 00003130 _____ C:\Windows\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-1-6.job
2015-08-09 08:50 - 2015-08-09 09:44 - 00005174 _____ C:\Windows\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-7.job
2015-08-09 08:50 - 2015-08-09 09:44 - 00004486 _____ C:\Windows\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-4.job
2015-08-09 08:50 - 2015-08-09 09:44 - 00003466 _____ C:\Windows\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-1-7.job
2015-08-09 08:50 - 2015-08-09 09:44 - 00002438 _____ C:\Windows\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-5_user.job
2015-08-09 08:50 - 2015-08-09 09:44 - 00002438 _____ C:\Windows\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-5.job
2015-08-09 08:50 - 2015-08-09 09:44 - 00001014 _____ C:\Windows\Tasks\DK8is89dyPzmla2uemyT3.job
2015-08-09 08:50 - 2015-08-09 09:44 - 00000996 _____ C:\Windows\Tasks\dum3wyST49Ex.job
2015-08-09 08:50 - 2015-08-09 08:50 - 00008538 _____ C:\Windows\System32\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-6
2015-08-09 08:50 - 2015-08-09 08:50 - 00008204 _____ C:\Windows\System32\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-7
2015-08-09 08:50 - 2015-08-09 08:50 - 00007516 _____ C:\Windows\System32\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-4
2015-08-09 08:50 - 2015-08-09 08:50 - 00006496 _____ C:\Windows\System32\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-1-7
2015-08-09 08:50 - 2015-08-09 08:50 - 00006158 _____ C:\Windows\System32\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-1-6
2015-08-09 08:50 - 2015-08-09 08:50 - 00005468 _____ C:\Windows\System32\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-5
2015-08-09 08:50 - 2015-08-09 08:50 - 00004040 _____ C:\Windows\System32\Tasks\DK8is89dyPzmla2uemyT3
2015-08-09 08:50 - 2015-08-09 08:50 - 00004022 _____ C:\Windows\System32\Tasks\dum3wyST49Ex
2015-08-09 08:50 - 2015-08-09 08:50 - 00000000 ____D C:\Program Files (x86)\e0e47087-3946-45d1-aaf1-7bd4f3f3a0b2
2015-08-09 08:49 - 2015-08-09 09:54 - 00000000 ____D C:\Program Files (x86)\ORBTR
2015-08-09 08:49 - 2015-08-09 09:49 - 00002112 _____ C:\Windows\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-10_user.job
2015-08-09 08:49 - 2015-08-09 09:44 - 00004486 _____ C:\Windows\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-3.job
2015-08-09 08:49 - 2015-08-09 08:50 - 00000000 ____D C:\Program Files (x86)\Cinema PlusV09.08
2015-08-09 08:49 - 2015-08-09 08:49 - 00007516 _____ C:\Windows\System32\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-3
2015-08-09 08:49 - 2015-08-09 08:49 - 00000000 ____D C:\Program Files (x86)\Cinema PlusV09.08-ntf
2015-08-08 23:36 - 2015-08-09 09:48 - 00000000 ____D C:\Users\Owner\AppData\Local\gmsd_us_005010055
2015-08-08 23:36 - 2015-08-09 08:52 - 00000000 ____D C:\Program Files (x86)\gmsd_us_005010055
2015-08-08 23:36 - 2015-08-08 23:36 - 00003490 _____ C:\Windows\System32\Tasks\snp
2015-08-08 23:36 - 2015-08-08 23:36 - 00003122 _____ C:\Windows\System32\Tasks\snf
2015-08-08 23:36 - 2015-08-08 23:36 - 00000000 ____D C:\Users\Owner\AppData\Local\McAfeeSecurity
2015-08-08 23:36 - 2015-08-08 23:36 - 00000000 ____D C:\ProgramData\Soltops
2015-08-08 23:36 - 2015-08-08 23:36 - 00000000 ____D C:\ProgramData\Package Cache
2015-08-08 23:36 - 2015-08-08 23:36 - 00000000 ____D C:\Program Files\Controller
2015-08-08 23:07 - 2015-08-08 23:07 - 00003072 _____ C:\Windows\System32\Tasks\DrspeedyPc Secure
2015-08-08 23:05 - 2015-08-09 09:55 - 00000000 ____D C:\Program Files (x86)\DrSpeedyPC
2015-08-08 23:00 - 2015-08-08 23:00 - 00003206 _____ C:\Windows\System32\Tasks\{A4190820-604B-403C-B3CC-528674BB0D72}
2015-08-08 22:52 - 2015-08-09 08:52 - 00000005 _____ C:\END
2015-08-08 22:51 - 2015-08-08 22:52 - 00000000 ____D C:\Program Files (x86)\DNS Unlocker
2015-08-08 22:51 - 2015-08-08 22:51 - 00026348 _____ C:\Windows\System32\Tasks\DNSWABENO
2015-08-08 22:51 - 2015-08-08 22:51 - 00002065 _____ C:\Users\Owner\Desktop\Continue SpaceSoundPro Uninstaller.lnk
2015-08-08 22:51 - 2015-08-08 22:51 - 00001009 _____ C:\Users\Owner\Desktop\GUPlayer.lnk
2015-08-08 22:51 - 2015-08-08 22:51 - 00000000 ____D C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GUPlayer
2015-08-08 22:51 - 2015-08-08 22:51 - 00000000 ____D C:\Program Files (x86)\GUPlayer
2015-08-08 22:48 - 2015-08-08 22:48 - 00000000 ____D C:\Program Files (x86)\predm
2015-08-08 22:46 - 2015-08-08 22:46 - 00000000 ____D C:\ProgramData\2e33e05a00007796
2015-08-08 22:31 - 2015-08-08 22:31 - 00555640 _____ C:\Users\Owner\Downloads\Unconfirmed 671830.crdownload
2015-08-08 22:30 - 2015-08-08 23:03 - 00000378 _____ C:\Windows\Tasks\APSnotifierPP1.job
2015-08-08 22:30 - 2015-08-08 23:03 - 00000376 _____ C:\Windows\Tasks\APSnotifierPP3.job
2015-08-08 22:30 - 2015-08-08 23:03 - 00000376 _____ C:\Windows\Tasks\APSnotifierPP2.job
2015-08-08 22:30 - 2015-08-08 22:32 - 00002828 _____ C:\Windows\System32\Tasks\APSnotifierPP1
2015-08-08 22:30 - 2015-08-08 22:32 - 00002826 _____ C:\Windows\System32\Tasks\APSnotifierPP3
2015-08-08 22:30 - 2015-08-08 22:32 - 00002826 _____ C:\Windows\System32\Tasks\APSnotifierPP2
2015-08-08 22:29 - 2015-08-08 23:03 - 00000340 _____ C:\Windows\Tasks\Superclean.job
2015-08-08 22:29 - 2015-08-08 22:29 - 00613255 _____ (CMI Limited) C:\Users\Owner\AppData\Local\nsz777.tmp
2015-08-08 22:29 - 2015-08-08 22:29 - 00003252 _____ C:\Windows\System32\Tasks\Superclean
2015-08-08 22:29 - 2015-08-08 22:29 - 00000000 __SHD C:\Users\Owner\AppData\Roaming\AnyProtectEx
2015-08-08 22:29 - 2015-08-08 22:29 - 00000000 ____D C:\ProgramData\{4d917b50-ca18-1849-4d91-17b50ca1ed43}
2015-08-08 22:26 - 2015-08-09 09:44 - 00001018 _____ C:\Windows\Tasks\YeUBBA7OfsskP753cAqWAW4.job
2015-08-08 22:26 - 2015-08-09 09:44 - 00001016 _____ C:\Windows\Tasks\YeUBBA7OfsskP753cAqWAW.job
2015-08-08 22:26 - 2015-08-08 22:26 - 00004044 _____ C:\Windows\System32\Tasks\YeUBBA7OfsskP753cAqWAW4
2015-08-08 22:26 - 2015-08-08 22:26 - 00004042 _____ C:\Windows\System32\Tasks\YeUBBA7OfsskP753cAqWAW
2015-08-08 22:25 - 2015-08-09 09:44 - 00000970 _____ C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
2015-08-08 22:25 - 2015-08-09 09:43 - 00000004 _____ C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-08-08 22:25 - 2015-08-09 08:54 - 00000974 _____ C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
2015-08-08 22:25 - 2015-08-09 08:49 - 00003972 _____ C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA
2015-08-08 22:25 - 2015-08-09 08:49 - 00003718 _____ C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore
2015-08-08 22:25 - 2015-08-08 22:25 - 00000000 ____D C:\Users\Owner\AppData\Local\globalUpdate
2015-08-08 22:25 - 2015-08-08 22:25 - 00000000 ____D C:\Program Files (x86)\globalUpdate
2015-08-08 22:24 - 2015-08-09 08:50 - 00000000 ____D C:\Program Files (x86)\adlevel
2015-08-08 22:24 - 2015-08-08 22:24 - 00154826 _____ C:\Program Files (x86)\uninstaller.exe
2015-08-08 22:24 - 2015-08-08 22:24 - 00003060 _____ C:\Windows\System32\Tasks\TunePro360 Updater
2015-08-08 22:24 - 2015-08-08 22:24 - 00002528 _____ C:\Windows\system32\PeakoarOff.ini
2015-08-08 22:24 - 2015-08-08 22:24 - 00000000 ____D C:\Program Files (x86)\TechVedic
2015-08-08 22:23 - 2015-08-09 09:44 - 00001056 _____ C:\Windows\Tasks\Crossbrowse.job
2015-08-08 22:23 - 2015-08-08 23:03 - 00000000 ____D C:\Program Files\shopperz04082015
2015-08-08 22:23 - 2015-08-08 22:24 - 00004808 _____ C:\Windows\SysWOW64\Peakoar.ini
2015-08-08 22:23 - 2015-08-08 22:24 - 00002528 _____ C:\Windows\SysWOW64\PeakoarOff.ini
2015-08-08 22:23 - 2015-08-08 22:23 - 00004082 _____ C:\Windows\System32\Tasks\Crossbrowse
2015-08-08 22:23 - 2015-08-08 22:23 - 00000000 ____D C:\Windows\system32\aby
2015-08-08 22:23 - 2015-08-08 22:23 - 00000000 ____D C:\Users\Owner\AppData\Local\Crossbrowse
2015-08-08 22:23 - 2015-08-08 22:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossbrowse
2015-08-08 22:23 - 2015-08-08 22:23 - 00000000 ____D C:\Program Files (x86)\Crossbrowse
2015-08-08 22:23 - 2015-08-02 07:50 - 00353632 _____ C:\Windows\system32\Peakoar64.dll
2015-08-08 22:23 - 2015-08-02 07:50 - 00283488 _____ C:\Windows\SysWOW64\Peakoar.dll
2015-08-08 21:53 - 2015-08-09 09:58 - 00000342 ____H C:\Windows\Tasks\SFNPKXCMWVMXYUKG.job
2015-08-08 21:53 - 2015-08-09 09:55 - 00000000 ____D C:\Users\Owner\AppData\Local\SmartWeb
2015-08-08 21:53 - 2015-08-09 09:43 - 00000330 _____ C:\Windows\Tasks\OMYQNNDMU1.job
2015-08-08 21:53 - 2015-08-09 08:49 - 00000000 ____D C:\ProgramData\FlashBeat
2015-08-08 21:53 - 2015-08-08 21:53 - 00004034 _____ C:\Windows\System32\Tasks\SmartWeb Upgrade Trigger Task
2015-08-08 21:53 - 2015-08-08 21:53 - 00003376 _____ C:\Windows\System32\Tasks\SFNPKXCMWVMXYUKG
2015-08-08 21:53 - 2015-08-08 21:53 - 00002852 _____ C:\Windows\System32\Tasks\OMYQNNDMU1
2015-08-08 21:53 - 2015-08-08 21:53 - 00000000 ____D C:\ProgramData\Service1291
2015-08-08 21:53 - 2015-08-08 21:53 - 00000000 ____D C:\ProgramData\28341ff220e0446c9fff27c4493d622e
2015-08-08 21:50 - 2015-08-08 18:39 - 00048784 _____ (StdLib) C:\Windows\system32\Drivers\{949ba8b6-a9ea-4b6b-a97d-688a70f2ea0b}Gw64.sys
2015-08-08 21:49 - 2009-06-10 14:00 - 00000824 _____ C:\Windows\system32\Drivers\etc\hp.bak
2015-08-08 21:48 - 2015-08-08 21:56 - 00000000 ____D C:\Users\Owner\AppData\Local\07599E80-1439070532-81E1-3676-5404A63C37F3
2015-08-08 21:48 - 2015-08-08 21:48 - 00003542 _____ C:\Windows\System32\Tasks\Inst_Rep
2015-08-08 21:47 - 2015-08-09 09:53 - 00000000 ____D C:\Program Files (x86)\Coupoon
2015-08-08 21:47 - 2015-08-09 09:50 - 00000000 ____D C:\Program Files (x86)\Coupon Time
2015-08-08 21:47 - 2015-08-09 09:01 - 00000000 ____D C:\ProgramData\abc
2015-08-08 21:47 - 2015-08-09 08:53 - 00000000 ____D C:\Program Files\Coupoon
2015-08-08 21:47 - 2015-08-08 21:49 - 00000000 ____D C:\Program Files (x86)\07599E80-1439095677-81E1-3676-5404A63C37F3
2015-08-08 21:45 - 2015-08-08 21:46 - 00000000 ____D C:\Users\Owner\AppData\Roaming\TWV
Task: {1290AA52-EC88-4431-8DB1-A12AFAB33ACC} - System32\Tasks\OMYQNNDMU1 => C:\ProgramData\FlashBeat\FlashBeat.exe <==== ATTENTION
Task: {184AC837-F3CE-4D07-A0B9-E34D8CCE8B7A} - System32\Tasks\SmartWeb Upgrade Trigger Task => C:\Users\Owner\AppData\Local\SmartWeb\SmartWebHelper.exe <==== ATTENTION
Task: {1B7043CE-18E3-47DC-A9E0-D85BF587E190} - System32\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-10_user => C:\Program Files (x86)\Cinema PlusV09.08-ntf\418780ce-3d28-4b57-8fc4-c70230d4f25e-10.exe [2015-08-09] (Cinema PlusV09.08) <==== ATTENTION
Task: {209793CF-2F7A-46BB-94E7-5839D7F1D0EC} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe [2015-08-09] (globalUpdate) <==== ATTENTION
Task: {23DBCB30-02B3-4C4A-9BDB-E6F772CB7BED} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [2010-11-15] (ASUS)
Task: {23F87188-439B-4D1E-9F01-4CB7BAC5AA13} - System32\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-1-6 => C:\Program Files (x86)\Cinema PlusV09.08\418780ce-3d28-4b57-8fc4-c70230d4f25e-1-6.exe [2015-08-09] (Cinema PlusV09.08) <==== ATTENTION
Task: {2A6EA2D8-85D7-4D91-B0F4-FEF81D8DC820} - System32\Tasks\Crossbrowse => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe [2015-08-08] () <==== ATTENTION
Task: {417D8296-86E9-44C1-A842-150D0E81971D} - System32\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-3 => C:\Program Files (x86)\Cinema PlusV09.08\418780ce-3d28-4b57-8fc4-c70230d4f25e-3.exe [2015-08-09] (Cinema PlusV09.08) <==== ATTENTION
Task: {5056504F-6CE5-4BD7-9665-286431E81D7D} - System32\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-5_user => C:\Program Files (x86)\Cinema PlusV09.08\418780ce-3d28-4b57-8fc4-c70230d4f25e-5.exe [2015-08-09] (Cinema PlusV09.08) <==== ATTENTION
Task: {570A1AD0-975E-4E8B-8C79-A55973A92FE2} - System32\Tasks\APSnotifierPP3 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: {5787D16F-8B36-468B-B00A-D993BE5F4D5E} - System32\Tasks\DK8is89dyPzmla2uemyT3 => C:\Users\Owner\AppData\Roaming\DK8is89dyPzmla2uemyT3.exe [2015-04-20] () <==== ATTENTION
C:\Program Files (x86)\AnyProtectEx
Task: {5E57DCEA-B730-4E34-B747-B3B2F8DBFDFD} - System32\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-5 => C:\Program Files (x86)\Cinema PlusV09.08\418780ce-3d28-4b57-8fc4-c70230d4f25e-5.exe [2015-08-09] (Cinema PlusV09.08) <==== ATTENTION
Task: {66BF42E4-3DEC-46B5-9173-08F913E4966C} - System32\Tasks\DNSWABENO => C:\Program Files (x86)\DNS Unlocker\dnswabeno.exe [2015-07-15] ()
Task: {6A2D9BBF-9585-4DB7-871A-2C50751E5942} - \AdobeFlashPlayerUpdate 2 -> No File <==== ATTENTION
Task: {7258C0C7-1D18-4A99-9C7D-7D094BA06E37} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2010-08-02] (ASUS)
Task: {73BF7A7B-53F0-4B43-9B19-5F45809C414D} - System32\Tasks\bProtector => Sc.exe start bProtector
Task: {7BE0C2FB-9FED-4218-9C95-2F75C6CD836F} - System32\Tasks\LaunchPreSignup => C:\Program Files (x86)\OLBPre\OLBPre.exe <==== ATTENTION
Task: {8A89261B-9149-4D70-8C86-004AC210BAD2} - System32\Tasks\dum3wyST49Ex => C:\Users\Owner\AppData\Roaming\dum3wyST49Ex.exe [2015-04-20] () <==== ATTENTION
Task: {8AA9E63F-BF5B-4896-9C74-09383AAA3A30} - System32\Tasks\YeUBBA7OfsskP753cAqWAW4 => C:\Users\Owner\AppData\Roaming\YeUBBA7OfsskP753cAqWAW4.exe [2015-04-20] () <==== ATTENTION
Task: {92FEAD3D-5CA4-414D-8242-01D83E308F78} - System32\Tasks\YeUBBA7OfsskP753cAqWAW => C:\Users\Owner\AppData\Roaming\YeUBBA7OfsskP753cAqWAW.exe [2015-04-20] () <==== ATTENTION
Task: {9B061F3F-012E-4613-8FC2-DEF45441DFD7} - System32\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-4 => C:\Program Files (x86)\Cinema PlusV09.08\418780ce-3d28-4b57-8fc4-c70230d4f25e-4.exe [2015-08-09] (Cinema PlusV09.08) <==== ATTENTION
Task: {9F9CBAFE-4063-4658-AAC8-5A7E770711BB} - System32\Tasks\Superclean => c:\programdata\{4d917b50-ca18-1849-4d91-17b50ca1ed43}\hqghumeaylnlf.exe [2014-08-08] (Super PC Tools Ltd) <==== ATTENTION
Task: {A0150A35-6F4B-4E69-9ACC-F319AAB271AB} - System32\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-7 => C:\Program Files (x86)\Cinema PlusV09.08\418780ce-3d28-4b57-8fc4-c70230d4f25e-7.exe [2015-08-09] (Cinema PlusV09.08) <==== ATTENTION
Task: {A0B36402-EBDA-4D05-B40A-5151EC10AD82} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe [2015-08-09] (globalUpdate) <==== ATTENTION
C:\Program Files (x86)\globalUpdate
Task: {A1C5E39C-8392-481E-9CA2-4F070AEA782B} - System32\Tasks\TunePro360 Updater => C:\Program Files (x86)\adlevel\TunePro360Updater.exe [2015-08-08] ()
Task: {AD3C4602-C0E1-4CA4-9E72-AA85A1480A45} - System32\Tasks\APSnotifierPP1 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: {B308FD4F-2BB2-4FE8-82AA-7FC233CC8E6F} - System32\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-1-7 => C:\Program Files (x86)\Cinema PlusV09.08\418780ce-3d28-4b57-8fc4-c70230d4f25e-1-7.exe [2015-08-09] (Cinema PlusV09.08) <==== ATTENTION
Task: {CA586909-A8D8-4F2F-8AED-F473EB14C968} - \AdobeFlashPlayerUpdate -> No File <==== ATTENTION
Task: {DBC13FF3-DA83-4E8F-BF4A-4C49D5A800B0} - System32\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-6 => C:\Program Files (x86)\Cinema PlusV09.08\418780ce-3d28-4b57-8fc4-c70230d4f25e-6.exe [2015-08-09] (Cinema PlusV09.08) <==== ATTENTION
Task: {E57A1D11-C2B9-4423-904C-45352BA05DEC} - System32\Tasks\SFNPKXCMWVMXYUKG => C:\ProgramData\Service1291\Service1291.exe [2015-06-28] () <==== ATTENTION
Task: {F03A0068-6773-4A95-8A6C-E8FF9FB18614} - System32\Tasks\DrspeedyPc Secure => C:\Program Files (x86)\DrSpeedyPC\secure\secureupdater.exe [2015-05-26] () <==== ATTENTION
C:\Program Files (x86)\DrSpeedyPC
Task: {F2EFC929-73AC-457B-AF5A-0C7E2E09177E} - System32\Tasks\APSnotifierPP2 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\Windows\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-1-6.job => C:\Program Files (x86)\Cinema PlusV09.08\418780ce-3d28-4b57-8fc4-c70230d4f25e-1-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-1-7.job => C:\Program Files (x86)\Cinema PlusV09.08\418780ce-3d28-4b57-8fc4-c70230d4f25e-1-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-10_user.job => C:\Program Files (x86)\Cinema PlusV09.08-ntf\418780ce-3d28-4b57-8fc4-c70230d4f25e-10.exe <==== ATTENTION
Task: C:\Windows\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-3.job => C:\Program Files (x86)\Cinema PlusV09.08\418780ce-3d28-4b57-8fc4-c70230d4f25e-3.exe <==== ATTENTION
Task: C:\Windows\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-4.job => C:\Program Files (x86)\Cinema PlusV09.08\418780ce-3d28-4b57-8fc4-c70230d4f25e-4.exe <==== ATTENTION
Task: C:\Windows\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-5.job => C:\Program Files (x86)\Cinema PlusV09.08\418780ce-3d28-4b57-8fc4-c70230d4f25e-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-5_user.job => C:\Program Files (x86)\Cinema PlusV09.08\418780ce-3d28-4b57-8fc4-c70230d4f25e-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-6.job => C:\Program Files (x86)\Cinema PlusV09.08\418780ce-3d28-4b57-8fc4-c70230d4f25e-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\418780ce-3d28-4b57-8fc4-c70230d4f25e-7.job => C:\Program Files (x86)\Cinema PlusV09.08\418780ce-3d28-4b57-8fc4-c70230d4f25e-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\APSnotifierPP1.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\Windows\Tasks\APSnotifierPP2.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\Windows\Tasks\APSnotifierPP3.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\Windows\Tasks\Crossbrowse.job => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe <==== ATTENTION
Task: C:\Windows\Tasks\DK8is89dyPzmla2uemyT3.job => C:\Users\Owner\AppData\Roaming\DK8is89dyPzmla2uemyT3.exe <==== ATTENTION
Task: C:\Windows\Tasks\dum3wyST49Ex.job => C:\Users\Owner\AppData\Roaming\dum3wyST49Ex.exe <==== ATTENTION
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe <==== ATTENTION
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\OMYQNNDMU1.job => C:\ProgramData\FlashBeat\FlashBeat.exe <==== ATTENTION
Task: C:\Windows\Tasks\SFNPKXCMWVMXYUKG.job => C:\ProgramData\Service1291\Service1291.exe <==== ATTENTION
Task: C:\Windows\Tasks\Superclean.job => c:\programdata\{4d917b50-ca18-1849-4d91-17b50ca1ed43}\hqghumeaylnlf.exe <==== ATTENTION
Task: C:\Windows\Tasks\YeUBBA7OfsskP753cAqWAW.job => C:\Users\Owner\AppData\Roaming\YeUBBA7OfsskP753cAqWAW.exe <==== ATTENTION
Task: C:\Windows\Tasks\YeUBBA7OfsskP753cAqWAW4.job => C:\Users\Owner\AppData\Roaming\YeUBBA7OfsskP753cAqWAW4.exe <==== ATTENTION
AlternateDataStreams: C:\Users\Owner\Downloads\7 Wonders_ Treasures of Seven__3422_il1095080.exe:typelib
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WRkrn => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WRSVC => ""="Service"
FirewallRules: [{A31AA8E0-B0EB-4912-A9F1-B53421EE4B6F}] => (Allow) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe  
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset catalog
CMD: ipconfig /flushdns
RemoveProxy:
hosts:
Emptytemp: