CreateRestorePoint:
() C:\Users\Shawn&Stacy\AppData\Local\Crsoft\crsvc.exe
() C:\Program Files (x86)\DCE8D5F2-1446302749-11E3-BA14-F80F41B551A7\knsqBC8F.tmp
() C:\Users\Shawn&Stacy\AppData\Roaming\NetService\netservice.exe
() C:\Program Files (x86)\DCE8D5F2-1446302749-11E3-BA14-F80F41B551A7\hnsl1934.tmp
(ShopperPro) C:\Program Files\Common Files\ShopperPro\spbiu.exe
(FlashBeat) C:\ProgramData\FlashBeat\FlashBeat.exe
() C:\Users\Shawn&Stacy\AppData\Local\gmsd_us_005010133\upgmsd_us_005010133.exe
() C:\Users\Public\Documents\windows.exe
() C:\Program Files (x86)\gmsd_us_005010133\gmsd_us_005010133.exe
() C:\Users\Shawn&Stacy\AppData\Roaming\DailyWiki\DailyWiki.exe
HKLM\...\Run: [SpaceSoundPro] => "C:\Program Files\SpaceSoundPro\SpaceSoundPro.exe"
HKLM-x32\...\Run: [gmsd_us_005010132] => [X]
HKLM-x32\...\Run: [gmsd_us_005010133] => C:\Program Files (x86)\gmsd_us_005010133\gmsd_us_005010133.exe [3972784 2015-11-01] ()
HKLM-x32\...\Run: [DailyWiki] => C:\Users\Shawn&Stacy\AppData\Roaming\DailyWiki\DailyWiki.exe [48673472 2015-10-13] ()
HKLM-x32\...\RunOnce: [upgmsd_us_005010133.exe] => C:\Users\Shawn&Stacy\AppData\Local\gmsd_us_005010133\upgmsd_us_005010133.exe [3332784 2015-11-01] ()
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-1384006192-1193351791-2402037821-1001\...\Run: [DV] => C:\ProgramData\DataFile\Downloads\DV.exe [277504 2015-09-04] ()
HKU\S-1-5-21-1384006192-1193351791-2402037821-1001\...\Run: [Wixkv] => C:\ProgramData\DataFile\DV.exe [283648 2015-11-01] ()
HKU\S-1-5-21-1384006192-1193351791-2402037821-1001\...\Run: [Application] => C:\Users\Public\Documents\windows.exe [7601110 2015-09-27] ()
HKU\S-1-5-21-1384006192-1193351791-2402037821-1001\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-21-1384006192-1193351791-2402037821-1001\...\Policies\Explorer: [NoLogOff] 0
HKU\S-1-5-21-1384006192-1193351791-2402037821-1001\...\MountPoints2: {d7cfe58a-9aea-11e3-8250-806e6f6e6963} - "D:\Setup.exe"
AppInit_DLLs: C:\ProgramData\FlashBeat\FlashBeat64.dll => C:\ProgramData\FlashBeat\FlashBeat64.dll [989696 2015-09-27] (FlashBeat)
AppInit_DLLs-x32: C:\ProgramData\FlashBeat\FlashBeat32.dll => C:\ProgramData\FlashBeat\FlashBeat32.dll [755200 2015-09-27] (FlashBeat)
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.tohotweb.com?oem=sunadusv3&uid=S2ANG3CL_ST500DM002-1BD142&tm=1446414608
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.tohotweb.com?oem=sunadusv3&uid=S2ANG3CL_ST500DM002-1BD142&tm=1446414608
HKU\S-1-5-21-1384006192-1193351791-2402037821-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.tohotweb.com?oem=sunadusv3&uid=S2ANG3CL_ST500DM002-1BD142&tm=1446414608
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://us.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://us.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1384006192-1193351791-2402037821-1001 -> DefaultScope {FC657D0B-7E98-44D7-B45D-496A95A05471} URL = hxxp://www-searching.com/search.aspx?s=FB1ztutbl011,27728558-f312-4ba6-87db-f8177ba16063&site=shyosie&prd=set&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1384006192-1193351791-2402037821-1001 -> {30E9E740-D162-11E4-8278-28E347809B30} URL = hxxp://search.homepage-web.com/?src=omnibox&partner=acer&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1384006192-1193351791-2402037821-1001 -> {7817E5E7-AA31-11E4-8273-28E347809B30} URL = hxxp://search.homepage-web.com/?src=omnibox&partner=acer&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1384006192-1193351791-2402037821-1001 -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://us.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1384006192-1193351791-2402037821-1001 -> {FC657D0B-7E98-44D7-B45D-496A95A05471} URL = hxxp://www-searching.com/search.aspx?s=FB1ztutbl011,27728558-f312-4ba6-87db-f8177ba16063&site=shyosie&prd=set&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe www.tohotweb.com?oem=sunadusv3&uid=S2ANG3CL_ST500DM002-1BD142&tm=1446414608
FF HKLM\...\Firefox\Extensions: [{9DBE6922-419B-4936-84AE-4D1FE3A06BAC}] - C:\Program Files\shopperz311020151629\Firefox\{9DBE6922-419B-4936-84AE-4D1FE3A06BAC}.xpi => not found
FF HKLM-x32\...\Firefox\Extensions: [{9DBE6922-419B-4936-84AE-4D1FE3A06BAC}] - C:\Program Files\shopperz311020151629\Firefox\{9DBE6922-419B-4936-84AE-4D1FE3A06BAC}.xpi => not found
R2 Crashhd; C:\Users\Shawn&Stacy\AppData\Local\Crsoft\crsvc.exe [185800 2015-09-24] () [File not signed]
R2 jofoqyze; C:\Program Files (x86)\DCE8D5F2-1446302749-11E3-BA14-F80F41B551A7\knsqBC8F.tmp [460800 2015-11-01] () [File not signed]
R2 NetTcpHandler; C:\Users\Shawn&Stacy\AppData\Roaming\NetService\netservice.exe [173088 2015-07-08] () [File not signed]
R2 qymylofy; C:\Program Files (x86)\DCE8D5F2-1446302749-11E3-BA14-F80F41B551A7\hnsl1934.tmp [624640 2015-10-31] () [File not signed]
R2 SPBIUpd; C:\Program Files\Common Files\ShopperPro\spbiu.exe [2346416 2015-10-27] (ShopperPro)
R1 cherimoya; C:\Windows\System32\drivers\cherimoya.sys [56736 2015-10-31] (Windows Ž Win 7 DDK provider)
R3 SPBIUpdd; C:\Program Files\Common Files\ShopperPro\spbiw.sys [41632 2015-10-27] ()
R3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
S1 swsedrvr_vw_1_10_0_25; system32\drivers\swsedrvr_vw_1_10_0_25.sys [X]
2015-11-01 19:34 - 2015-11-04 16:32 - 00000000 ____D C:\Users\Shawn&Stacy\AppData\Local\gmsd_us_005010133
2015-11-01 19:33 - 2015-11-04 16:30 - 00000000 ____D C:\Users\Shawn&Stacy\AppData\Local\DailyWiki
2015-11-01 19:33 - 2015-11-01 19:34 - 00001360 _____ C:\Windows\unins000.dat
2015-11-01 19:33 - 2015-11-01 19:33 - 00929953 _____ C:\Windows\unins000.exe
2015-11-01 19:33 - 2015-11-01 19:33 - 00004272 _____ C:\Windows\System32\Tasks\F6E70F42-AA4B-47A7-9CC8-E592976436A7
2015-11-01 19:33 - 2015-11-01 19:33 - 00000000 ____D C:\Users\Shawn&Stacy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DailyWiki
2015-11-01 19:33 - 2015-11-01 19:33 - 00000000 ____D C:\Users\Shawn&Stacy\AppData\Roaming\DailyWiki
2015-11-01 19:33 - 2015-11-01 19:33 - 00000000 ____D C:\Users\Shawn&Stacy\AppData\Local\F6E70F42-AA4B-47A7-9CC8-E592976436A7
2015-11-01 19:33 - 2015-11-01 19:33 - 00000000 ____D C:\Program Files (x86)\MyRegCleaner
2015-11-01 19:33 - 2015-11-01 19:33 - 00000000 ____D C:\Program Files (x86)\CinePlus-1.44V01.11
2015-11-01 19:33 - 2015-09-27 23:48 - 07601110 _____ C:\Users\Public\Documents\windows.exe
2015-11-01 18:07 - 2015-11-01 18:21 - 00000000 ____D C:\Users\Shawn\AppData\Local\WebBar
2015-11-01 18:04 - 2015-11-01 18:04 - 00000000 ____D C:\Users\Shawn\AppData\Roaming\PCAcceleratePro
2015-11-01 18:04 - 2015-11-01 18:04 - 00000000 ____D C:\Users\Shawn\AppData\Roaming\InstantSupport
2015-11-01 15:17 - 2015-11-01 15:17 - 00000008 _____ C:\END
2015-11-01 15:14 - 2015-11-01 18:32 - 00003790 _____ C:\Windows\System32\Tasks\SecurityApps2
2015-11-01 15:13 - 2015-11-01 19:34 - 00000000 ____D C:\Program Files (x86)\gmsd_us_005010133
2015-11-01 15:13 - 2015-11-01 15:13 - 00000000 ____D C:\Program Files (x86)\PCAPDownloader
2015-11-01 14:50 - 2015-11-01 14:50 - 00000000 ____D C:\Users\Shawn&Stacy\AppData\Roaming\shortCutStore
2015-11-01 14:50 - 2015-11-01 14:50 - 00000000 ____D C:\Users\Shawn&Stacy\AppData\Local\Crsoft
2015-11-01 14:45 - 2015-11-01 14:45 - 00000000 ____D C:\ProgramData\Radio
2015-11-01 13:48 - 2015-11-01 13:48 - 00002393 _____ C:\Users\Shawn&Stacy\Desktop\BrowserAir.lnk
2015-11-01 13:48 - 2015-11-01 13:48 - 00000000 ____D C:\Users\Shawn&Stacy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserAir
2015-11-01 13:47 - 2015-11-01 13:48 - 00000000 ____D C:\Users\Shawn&Stacy\AppData\Local\BrowserAir
2015-11-01 13:47 - 2015-11-01 13:47 - 00004282 _____ C:\Windows\System32\Tasks\SPBIW_UpdateTask_Time_313335333032383432342d324a574123346c2a556c2a5a
2015-11-01 13:47 - 2015-11-01 13:47 - 00000000 ____D C:\ProgramData\ShopperPro
2015-11-01 13:46 - 2015-11-01 13:47 - 00000000 ____D C:\Program Files\Common Files\ShopperPro
2015-11-01 13:46 - 2015-11-01 13:47 - 00000000 ____D C:\Program Files (x86)\ShopperPro
2015-11-01 13:46 - 2015-11-01 13:46 - 00004430 _____ C:\Windows\System32\Tasks\Installer_smknnodesk
2015-11-01 13:46 - 2015-11-01 13:46 - 00000000 ____D C:\Users\Public\Documents\ShopperPro
2015-11-01 11:55 - 2015-11-01 11:55 - 00000000 ____D C:\Users\Shawn\AppData\Local\TVTime
2015-11-01 11:54 - 2015-11-01 11:54 - 00000000 ____D C:\ProgramData\Browser
2015-10-31 08:04 - 2015-11-04 16:34 - 00000000 ____D C:\ProgramData\Ruwsiawi
2015-10-31 08:02 - 2015-10-31 08:02 - 00000000 ____D C:\Program Files (x86)\Crossbrowse
2015-10-31 08:01 - 2015-10-31 08:01 - 00004228 _____ C:\Windows\System32\Tasks\A282C480-6087-4AB1-A04A-7C7516C6330
2015-10-31 08:01 - 2015-10-31 08:01 - 00000000 ____D C:\Users\Shawn&Stacy\AppData\Local\A282C480-6087-4AB1-A04A-7C7516C6330
C:\Windows\Tasks\f52*.job
2015-10-31 08:00 - 2015-10-31 08:00 - 00006184 _____ C:\Windows\System32\Tasks\f52c8f69-3487-4ac4-bfff-b1aa07793633-1-7
2015-10-31 08:00 - 2015-10-31 08:00 - 00006184 _____ C:\Windows\System32\Tasks\f52c8f69-3487-4ac4-bfff-b1aa07793633-1-6
2015-10-31 08:00 - 2015-10-31 08:00 - 00005492 _____ C:\Windows\System32\Tasks\f52c8f69-3487-4ac4-bfff-b1aa07793633-5
2015-10-31 08:00 - 2015-10-31 08:00 - 00003620 _____ C:\Windows\System32\Tasks\GoogleUp
2015-10-31 08:00 - 2015-10-31 08:00 - 00003612 _____ C:\Windows\System32\Tasks\import
2015-10-31 08:00 - 2015-10-31 08:00 - 00003610 _____ C:\Windows\System32\Tasks\impo
2015-10-31 08:00 - 2015-10-31 08:00 - 00003502 _____ C:\Windows\System32\Tasks\Googleuptodate
2015-10-31 08:00 - 2015-10-31 08:00 - 00003494 _____ C:\Windows\System32\Tasks\MyDailyBackup
2015-10-31 08:00 - 2015-10-31 08:00 - 00003490 _____ C:\Windows\System32\Tasks\win
2015-10-31 08:00 - 2015-10-31 08:00 - 00000000 ____D C:\Users\Shawn&Stacy\AppData\Roaming\dlg
2015-10-31 08:00 - 2015-10-31 08:00 - 00000000 ____D C:\Program Files (x86)\CinePlus-1.44V31.10
2015-10-31 07:59 - 2015-11-01 18:32 - 00000000 ____D C:\ProgramData\DataFile
2015-10-31 07:58 - 2015-11-01 14:50 - 00000000 ____D C:\Users\Shawn&Stacy\AppData\Roaming\RunDir
2015-10-31 07:58 - 2015-11-01 14:40 - 00004792 _____ C:\Windows\SysWOW64\Localadsiw.ini
2015-10-31 07:58 - 2015-11-01 14:40 - 00002504 _____ C:\Windows\SysWOW64\LocaladsiwOff.ini
2015-10-31 07:58 - 2015-11-01 14:40 - 00002504 _____ C:\Windows\system32\LocaladsiwOff.ini
2015-10-31 07:58 - 2015-10-31 07:58 - 00003362 _____ C:\Windows\System32\Tasks\Gelomo
2015-10-31 07:58 - 2015-10-31 07:58 - 00000000 ____D C:\Windows\system32\sek
2015-10-31 07:58 - 2015-10-31 07:58 - 00000000 ____D C:\Users\Shawn&Stacy\AppData\Roaming\ortmp
2015-10-31 07:58 - 2015-10-31 07:58 - 00000000 ____D C:\Users\Shawn&Stacy\AppData\Roaming\NetService
2015-10-31 07:58 - 2015-10-31 07:58 - 00000000 ____D C:\Users\Shawn&Stacy\AppData\Local\Tempfolder
2015-10-31 07:58 - 2015-10-31 07:31 - 00353640 _____ C:\Windows\system32\Localadsiw64.dll
2015-10-31 07:58 - 2015-10-31 07:30 - 00283496 _____ C:\Windows\SysWOW64\Localadsiw.dll
2015-10-31 07:57 - 2015-11-01 15:01 - 00000000 ____D C:\Program Files\shopperz311020151629
2015-10-31 07:57 - 2015-10-31 07:57 - 00000000 ____D C:\Users\Shawn&Stacy\AppData\LocalLow\Company
2015-10-31 07:57 - 2015-10-31 07:57 - 00000000 ____D C:\Users\Shawn&Stacy\AppData\LocalLow\{D2020D47-707D-4E26-B4D9-739C4F4C2E9A}
2015-10-31 07:57 - 2015-10-31 07:57 - 00000000 ____D C:\uninst
2015-10-31 07:56 - 2015-11-04 16:29 - 00000368 _____ C:\Windows\Tasks\DGPUOYA1.job
2015-10-31 07:56 - 2015-10-31 07:56 - 00002890 _____ C:\Windows\System32\Tasks\DGPUOYA1
2015-10-31 07:56 - 2015-10-31 07:56 - 00000000 ____D C:\ProgramData\Service1291
2015-10-31 07:56 - 2015-10-31 07:56 - 00000000 ____D C:\ProgramData\FlashBeat
2015-10-31 07:56 - 2015-10-31 07:56 - 00000000 ____D C:\ProgramData\28341ff220e0446c9fff27c4493d622e
2015-10-31 07:46 - 2015-11-01 14:44 - 00000000 ____D C:\Users\Shawn&Stacy\AppData\Local\DCE8D5F2-1446281210-11E3-BA14-F80F41B551A7
2015-10-31 07:45 - 2015-11-01 13:55 - 00000000 ____D C:\Program Files (x86)\DCE8D5F2-1446302749-11E3-BA14-F80F41B551A7
2015-10-31 07:45 - 2015-10-31 07:45 - 00000000 ____D C:\Users\Shawn&Stacy\Documents\DailyPCClean
2015-10-31 07:44 - 2015-11-01 14:56 - 00000000 ____D C:\Program Files (x86)\DailyPcClean Support
2015-10-31 07:43 - 2015-11-01 15:22 - 00000158 _____ C:\prefs.js
2015-10-31 07:43 - 2015-10-31 07:43 - 00000000 ____D C:\searchplugins
2015-10-31 07:42 - 2015-11-01 14:39 - 00002976 _____ C:\Windows\SysWOW64\LavasoftTcpServiceOff.ini
2015-10-31 07:42 - 2015-11-01 14:39 - 00002976 _____ C:\Windows\system32\LavasoftTcpServiceOff.ini
2015-10-31 07:42 - 2015-10-31 07:42 - 00425744 _____ (Lavasoft Limited) C:\Windows\system32\LavasoftTcpService64.dll
2015-10-31 07:42 - 2015-10-31 07:42 - 00345360 _____ (Lavasoft Limited) C:\Windows\SysWOW64\LavasoftTcpService.dll
2015-10-31 07:42 - 2015-10-31 07:42 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2015-10-31 07:32 - 2015-10-31 07:57 - 00056736 _____ (Windows Ž Win 7 DDK provider) C:\Windows\system32\Drivers\cherimoya.sys
2015-10-31 07:16 - 2015-10-31 07:17 - 00003286 _____ C:\Windows\System32\Tasks\SweetLabs App Platform
2015-10-31 07:16 - 2015-10-31 07:16 - 00000000 ____D C:\Users\Shawn\AppData\Local\SweetLabs App Platform
2015-10-31 07:17 - 2014-07-05 14:02 - 00000000 ____D C:\Users\Shawn\AppData\Local\Pokki
2014-02-21 04:57 - 2014-02-21 04:57 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Task: {02318FF0-DF16-46D3-9A4C-3B1AF3E75C00} - System32\Tasks\MyDailyBackup => C:\Windows\system32\winupd.exe <==== ATTENTION
Task: {064C78EB-8723-446D-AE33-FCAC638EA4E9} - System32\Tasks\f52c8f69-3487-4ac4-bfff-b1aa07793633-1-6 => C:\Program Files (x86)\CinePlus-1.44V31.10\f52c8f69-3487-4ac4-bfff-b1aa07793633-1-6.exe <==== ATTENTION
Task: {11E3DEA9-8E3A-4D7C-9E8E-765D58B6C675} - System32\Tasks\A282C480-6087-4AB1-A04A-7C7516C6330 => C:\Users\Shawn&Stacy\AppData\Local\A282C480-6087-4AB1-A04A-7C7516C6330\A282C480-6087-4AB1-A04A-7C7516C6330.exe [2015-10-31] () <==== ATTENTION
Task: {0D1E3881-F144-4D72-8D66-9EB30FEE3687} - System32\Tasks\GoogleUp => C:\Windows\system32\hsysinfo.exe
Task: {10A72AE7-1A25-4DAE-BE5A-37C564FD4554} - System32\Tasks\import => C:\Windows\system32\Mint.exe
Task: {11E3DEA9-8E3A-4D7C-9E8E-765D58B6C675} - System32\Tasks\A282C480-6087-4AB1-A04A-7C7516C6330 => C:\Users\Shawn&Stacy\AppData\Local\A282C480-6087-4AB1-A04A-7C7516C6330\A282C480-6087-4AB1-A04A-7C7516C6330.exe [2015-10-31] () <==== ATTENTION
Task: {2B90FF25-DA06-41C1-BC94-412150ECAA58} - System32\Tasks\DGPUOYA1 => C:\ProgramData\FlashBeat\FlashBeat.exe [2015-09-27] (FlashBeat) <==== ATTENTION
Task: {2DA13C03-D570-453A-870A-0D4855211503} - System32\Tasks\f52c8f69-3487-4ac4-bfff-b1aa07793633-10_user => C:\Program Files (x86)\CinePlus-1.44V31.10\f52c8f69-3487-4ac4-bfff-b1aa07793633-10.exe <==== ATTENTION
Task: {2F8736E1-91A2-4D76-BD42-D0B88FA53A3D} - System32\Tasks\win => C:\Windows\system32\win.exe
Task: {3C6CA005-6220-4BFE-9DB6-F46B194CB55E} - System32\Tasks\f52c8f69-3487-4ac4-bfff-b1aa07793633-5 => C:\Program Files (x86)\CinePlus-1.44V31.10\f52c8f69-3487-4ac4-bfff-b1aa07793633-5.exe <==== ATTENTION
Task: {6042C362-59D5-4245-AAD6-4DDF8ACE0EFE} - System32\Tasks\Gelomo => C:\PROGRA~1\SHOPPE~1\Uifevfan.bat
Task: {703FE3C1-2E63-4DE7-8E29-E09399DA4143} - System32\Tasks\f52c8f69-3487-4ac4-bfff-b1aa07793633-1-7 => C:\Program Files (x86)\CinePlus-1.44V31.10\f52c8f69-3487-4ac4-bfff-b1aa07793633-1-7.exe <==== ATTENTION
Task: {74D43DA1-A8B5-4CD8-B706-ACDEBF1D5E28} - System32\Tasks\SweetLabs App Platform => %LOCALAPPDATA%\Pokki\Engine\ServiceHostAppUpdater.exe
ask: {8884467B-CFCC-4E17-964F-6DB84BDB63FD} - System32\Tasks\Installer_smknnodesk => C:\Users\Shawn&Stacy\AppData\Local\Installer\Installsmknnodesk_27399\brakietut_tutbl_setup.exe [2015-11-01] () <==== ATTENTION
Task: {8DD1FD75-546E-4AF8-BB44-02BFD98B11ED} - System32\Tasks\impo => C:\Windows\system32\bs1.exe
Task: {B4063394-9776-4FAA-ABDF-EE9D892572A9} - System32\Tasks\f52c8f69-3487-4ac4-bfff-b1aa07793633-5_user => C:\Program Files (x86)\CinePlus-1.44V31.10\f52c8f69-3487-4ac4-bfff-b1aa07793633-5.exe <==== ATTENTION
Task: {C3DA6889-734A-418E-A830-A911999F1D43} - System32\Tasks\Googleuptodate => C:\Windows\system32\Wimboldon.exe
Task: {C8543B43-2872-45EC-BD11-D1602E420070} - System32\Tasks\SPBIW_UpdateTask_Time_313335333032383432342d324a574123346c2a556c2a5a => Wscript.exe //B "C:\ProgramData\ShopperPro\spbihe.js" spbiu.exe /invoke /f:check_services /l:0 <==== ATTENTION
Task: {E49C164B-1294-43C0-9318-B08E06A7965F} - System32\Tasks\F6E70F42-AA4B-47A7-9CC8-E592976436A7 => C:\Users\Shawn&Stacy\AppData\Local\F6E70F42-AA4B-47A7-9CC8-E592976436A7\F6E70F42-AA4B-47A7-9CC8-E592976436A7.exe [2015-11-01] () <==== ATTENTION
Task: {F40101A4-305F-40EF-ABF1-51EC9F3DB20C} - System32\Tasks\Inst_Rep => C:\Users\Shawn&Stacy\AppData\Local\Installer\Install_23488\brakietut_tutbl_setup.exe [2015-11-01] () <==== ATTENTION
Task: C:\Windows\Tasks\DGPUOYA1.job => C:\ProgramData\FlashBeat\FlashBeat.exe <==== ATTENTION
Task: C:\Windows\Tasks\f52c8f69-3487-4ac4-bfff-b1aa07793633-1-6.job => C:\Program Files (x86)\CinePlus-1.44V31.10\f52c8f69-3487-4ac4-bfff-b1aa07793633-1-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\f52c8f69-3487-4ac4-bfff-b1aa07793633-1-7.job => C:\Program Files (x86)\CinePlus-1.44V31.10\f52c8f69-3487-4ac4-bfff-b1aa07793633-1-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\f52c8f69-3487-4ac4-bfff-b1aa07793633-10_user.job => C:\Program Files (x86)\CinePlus-1.44V31.10\f52c8f69-3487-4ac4-bfff-b1aa07793633-10.exe <==== ATTENTION
Task: C:\Windows\Tasks\f52c8f69-3487-4ac4-bfff-b1aa07793633-5.job => C:\Program Files (x86)\CinePlus-1.44V31.10\f52c8f69-3487-4ac4-bfff-b1aa07793633-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\f52c8f69-3487-4ac4-bfff-b1aa07793633-5_user.job => C:\Program Files (x86)\CinePlus-1.44V31.10\f52c8f69-3487-4ac4-bfff-b1aa07793633-5.exe <==== ATTENTION
Task: {CCA551B1-CC04-4C17-8B3C-87CE5ED4A5A0} - System32\Tasks\SecurityApps2 => C:\Program Files (x86)\PC FIX LABS LLC\Smart Security Suite\SecurityApps.exe
D:\Setup.exe
C:\Program Files (x86)\PC FIX LABS LLC
C:\Program Files\SpaceSoundPro
CMD: sfc /scanfile=c:\windows\system32\dnsapi.dll
CMD: sfc /scanfile=c:\windows\syswow64\dnsapi.dll
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state on
CMD: netsh winsock reset
Hosts:
EmptyTemp: