CreateRestorePoint:
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3533201534-3151003976-604284548-1000\...\MountPoints2: {38414e47-d893-11e2-b47c-f46d04ed47dd} - H:\AutoRun.exe
HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local: [ActivePolicy] SOFTWARE\Policies\Microsoft\Windows\IPSEC\Policy\Local\ipsecPolicy{bf0bfe4a-d00a-4a75-b989-a8e5e3b8b032} <======= ATTENTION (Policy restriction on IP)
URLSearchHook: HKU\S-1-5-21-3533201534-3151003976-604284548-1000 - YTNavAssistPlugin Class - {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn2\yt.dll No File
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKLM-x32 -> DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL =
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll No File
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll No File
BHO: Hotspot Shield Class -> {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} -> C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE_64.dll No File
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll No File
BHO-x32: &Yahoo! Toolbar Helper -> {02478D38-C3F9-4efb-9B51-7695ECA05670} -> C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn2\yt.dll No File
BHO-x32: ContributeBHO Class -> {074C1DC5-9320-4A9A-947D-C042949C6216} -> C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll No File
BHO-x32: Groove GFS Browser Helper -> {12DB2EA6-0BB3-01EB-26E9-41BB5AF16DF1} -> C:\Windows\SysWow64\pngfilllllllllllllllt.dll [2013-08-28] ()
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll No File
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll No File
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll No File
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\PROGRA~2\Microsoft Office\Office15\URLREDIR.DLL No File
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll No File
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  No File
Toolbar: HKLM-x32 - Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll No File
Toolbar: HKLM-x32 - Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn2\yt.dll No File
Tcpip\..\Interfaces\{1A0FE36E-6B87-4B5E-8300-2191D6D2AC57}: [NameServer] 127.0.0.1
Tcpip\..\Interfaces\{74F1D621-EDEE-44EC-A2BC-5665A6C33D72}: [NameServer] 127.0.0.1
Tcpip\..\Interfaces\{A73D24AD-45A2-4272-94A8-9669AEFBEE02}: [NameServer] 127.0.0.1
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - No Path Or update_url value
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - No Path Or update_url value
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - No Path Or update_url value
C:\Windows\Tasks\At1.job
CustomCLSID: HKU\S-1-5-21-3533201534-3151003976-604284548-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Home\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-3533201534-3151003976-604284548-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Home\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-3533201534-3151003976-604284548-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Home\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-3533201534-3151003976-604284548-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Home\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll No File
Task: {0141E709-7C17-41F1-AA64-AC840D481733} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe
Task: {2464992C-DC04-4263-A99E-E4715679F5DC} - System32\Tasks\RegistryBooster => C:\Program Files (x86)\Uniblue\RegistryBooster\rbmonitor.exe [2010-07-27] (Uniblue Systems Limited)
Task: {4E4FA811-435D-48FC-8000-B07463C28062} - System32\Tasks\At1 => C:\Windows\SysWOW64\ieUnattt.exe [2013-08-28] () <==== ATTENTION
Task: {B936AD63-5FED-43AB-A2D2-5B4665D00532} - \DealPlyUpdate No Task File <==== ATTENTION
Task: C:\Windows\Tasks\At1.job => C:\Windows\SysWOW64\ieUnattt.exe C:\Windows\SysWOW64\appmgrr.dll
Task: C:\Windows\Tasks\RegistryBooster.job => C:\Program Files (x86)\Uniblue\RegistryBooster\rbmonitor.exe
AlternateDataStreams: C:\Program Files\Common Files\System:DVT313707QXOECFteCcBM6aK
AlternateDataStreams: C:\ProgramData\Microsoft:bmMA8Zg5vlwGwrlAg9iSlntDgrrC3
AlternateDataStreams: C:\ProgramData\Microsoft:hNWaDknxzPcIroJh4eLPM2af
C:\Windows\SysWow64\pngfilllllllllllllllt.dll
C:\Windows\AutoKMS\AutoKMS.exe
C:\Program Files (x86)\Uniblue
C:\Windows\SysWOW64\ieUnattt.exe
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state on
Hosts:
EmptyTemp: