CreateRestorePoint:
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.4.0\ToolbarUpdater.exe
() C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.4.0\loggingserver.exe
() C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
(AVG Secure Search) C:\Program Files (x86)\AVG Web TuneUp\avgcefrend.exe
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [3033112 2015-05-21] ()
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-3885472579-1108122147-446255320-1001\...\MountPoints2: {b4d5dd8e-f9f4-11e4-8288-2025647d9230} - "F:\LaunchU3.exe" -a
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-hom...LNSXX6411JWLNSX
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-hom...LNSXX6411JWLNSX
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://istart.websse...q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-hom...LNSXX6411JWLNSX
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-hom...LNSXX6411JWLNSX
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://istart.websse...q={searchTerms}
HKU\S-1-5-21-3885472579-1108122147-446255320-1001\Software\Microsoft\Internet Explorer\Main,Start Page = https://mysearch.avg...r=&d=2015-05-2116:18:35&v=4.1.0.411&pid=wtu&sg=&sap=hp
HKU\S-1-5-21-3885472579-1108122147-446255320-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-hom...LNSXX6411JWLNSX
HKU\S-1-5-21-3885472579-1108122147-446255320-1001\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.delta-...q={searchTerms}
HKU\S-1-5-21-3885472579-1108122147-446255320-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.delta-...q={searchTerms}
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://istart.websse...q={searchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://istart.websse...q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKU\S-1-5-21-3885472579-1108122147-446255320-1001 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.delta-...q={searchTerms}
SearchScopes: HKU\S-1-5-21-3885472579-1108122147-446255320-1001 -> {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = http://www.mystart.c...q={searchTerms}
SearchScopes: HKU\S-1-5-21-3885472579-1108122147-446255320-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = https://mysearch.avg...r=&d=2015-05-2116:18:35&v=4.1.0.411&pid=wtu&sg=&sap=dsp&q={searchTerms}
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.1.0.411\AVG Web TuneUp.dll [2015-05-21] (AVG)
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\18.4.0\\npsitesafety.dll No File
BHO-x32: YoutubeAdBlocke -> {2236f71c-8d91-44de-97a7-32cee07188eb} -> C:\Program Files (x86)\YoutubeAdBlocke\XSLM4P7WcHUe6i.dll No File
BHO-x32: GoSave -> {4a152079-0435-4fbf-891e-c6d6100d304c} -> C:\Program Files (x86)\GoSave\Ed7ea57fY2tD8a.dll No File
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.1.0.411\AVG Web TuneUp.dll [2015-05-21] (AVG)
CHR Extension: (GoSave) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\eicibjbpklfamlfgeghpfmmioddpddbg [2014-11-05]
CHR Extension: (Shareaholic for Pinterest) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\kfjkehmceppcpjoaoegdmffmkdhiegmc [2014-11-05]
CHR Extension: (Security Protection) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\noajmlkipclmeolfcnflkjhijkigpfjh [2015-01-15]
CHR Extension: (Quick start) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma [2014-09-30]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.goo...ice/update2/crx
CHR HKU\S-1-5-21-3885472579-1108122147-446255320-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - https://clients2.goo...ice/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [dfachbhccemanebkkbeppgnnhkpicifp] - https://clients2.goo...ice/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.goo...ice/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [pelmeidfhdlhlbjimpabfcbnnojbboma] - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv3.crx [2014-09-30]
R2 vToolbarUpdater18.4.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.4.0\ToolbarUpdater.exe [1875480 2015-05-21] (AVG Secure Search)
R2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [620056 2015-05-21] ()
S3 X6va029; \??\C:\windows\SysWOW64\Drivers\X6va029 [X]
2015-03-14 12:59 - 2015-03-14 12:59 - 184702896 _____ () C:\Users\David\AppData\Local\ACCCx2_9_1_474.zip.aamdownload
2015-03-14 12:59 - 2015-03-14 12:59 - 0002216 _____ () C:\Users\David\AppData\Local\ACCCx2_9_1_474.zip.aamdownload.aamd
Task: {D1784A67-57E0-4F91-961D-2A23C9BAC100} - System32\Tasks\SW-Booster-S-792098896 => c:\programdata\trusted publisher\sw-booster\SW-Booster.exe <==== ATTENTION
Task: {D404DEEE-0087-41B9-BB3D-8E45D092C99A} - System32\Tasks\Update Service GoForFiles => C:\Program Files (x86)\GoForFilesUpdater\GoForFilesUpdater.exe <==== ATTENTION
Task: C:\windows\Tasks\SW-Booster-S-792098896.job => c:\programdata\trusted publisher\sw-booster\SW-Booster.exeO/schedule /profile c:\programdata\trusted publisher\sw-booster\792098896.ini <==== ATTENTION
C:\Program Files (x86)\AVG Web TuneUp
C:\Program Files (x86)\Common Files\AVG Secure Search
C:\Program Files (x86)\GoForFilesUpdater
c:\programdata\trusted publisher\sw-booster
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state off
Hosts:
EmptyTemp: