CloseProcesses:
CreateRestorePoint:
HKLM-x32\...\Run: [PCFixSpeed] => "C:\Program Files (x86)\PCFixSpeed\PCFixTray.exe" /startup
HKLM-x32\...\Run: [WinCheck] => C:\Users\MIKE\AppData\Local\wincheck\wincheck.exe [529408 2014-12-26] ()
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
HKU\S-1-5-21-2606864514-3428416984-990069431-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?pc=BDT3&ocid=BDT3DHP
HKU\S-1-5-21-2606864514-3428416984-990069431-1001\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.msn.com/1ewenusDefaultPack/SK2M_FRPage
HKU\S-1-5-21-2606864514-3428416984-990069431-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://search.conduit.com/?gd=&ctid=CT3319613&octid=EB_ORIGINAL_CTID&ISID=M7AF3CB0D-C160-4F3E-949B-0BC650B2FB20&SearchSource=55&CUI=&UM=5&UP=SPDA6AA57B-2BE6-4BA2-96E1-8DF2CB1F072C&SSPV=
SearchScopes: HKLM -> {642C7DEF-F70A-4866-8943-657403176A37} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 -> {642C7DEF-F70A-4866-8943-657403176A37} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKU\S-1-5-21-2606864514-3428416984-990069431-1001 -> {0F9D0265-3BCD-4481-A866-843D0E73C062} URL = hxxp://www.search.ask.com/web?tpid=ORJ-V7-SAT&o=APN11460&pf=V7&p2=%5EBE6%5EOSJ000%5EYY%5EUS&gct=&itbv=12.10.6.53&apn_uid=085BDFC2-1643-488A-A8BA-FECBCD3BF215&apn_ptnrs=BE6&apn_dtid=%5EOSJ000%5EYY%5EUS&apn_dbr=ie_11.0.9600.16518&doi=2014-04-16&trgb=IE&q={searchTerms}&psv=
SearchScopes: HKU\S-1-5-21-2606864514-3428416984-990069431-1001 -> {642C7DEF-F70A-4866-8943-657403176A37} URL = hxxp://www.amazon.com/s/ref=azs_osd_iea?ie=UTF-8&tag=hp-us2-vsb-20&link%5Fcode=qs&index=aps&field-keywords={searchTerms} 
SearchScopes: HKU\S-1-5-21-2606864514-3428416984-990069431-1001 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/711-154371-11896-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
BHO: No Name -> {4F524A2D-5637-2D53-4154-7A786E7484D7} -> No File
BHO: No Name -> {4F524A2D-5637-4300-76A7-7A786E7484D7} -> No File
Toolbar: HKLM-x32 - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
Toolbar: HKU\S-1-5-21-2606864514-3428416984-990069431-1001 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
2015-11-06 19:41 - 2014-12-26 13:57 - 00000000 ____D C:\Users\MIKE\Documents\ProPCCleaner
Task: {FA1468C7-2D9C-4D21-A529-18AB2A05FF43} - System32\Tasks\ProPCCleaner_Popup => C:\Program Files (x86)\Pro PC Cleaner\Splash.exe [2014-08-21] () <==== ATTENTION
C:\Program Files (x86)\Pro PC Cleaner
AlternateDataStreams: C:\0f937d3fe5f84657893737f51af0c1e9:Win32App
AlternateDataStreams: C:\5387046297f1cf8b4c4eaea8:Win32App
AlternateDataStreams: C:\58ec50f2259d21d24d:Win32App
AlternateDataStreams: C:\5aca73d3da7d335f4573b8:Win32App
AlternateDataStreams: C:\66d39c2e044a8b29a4e18f44c12298:Win32App
AlternateDataStreams: C:\705f7252cd437fccf0:Win32App
AlternateDataStreams: C:\970f2d4fd258fdfb925aefb8b348849a:Win32App
AlternateDataStreams: C:\ebfbfe91264ddf6fbd592819:Win32App
AlternateDataStreams: C:\Program Files\Microsoft Office 15:Win32App
AlternateDataStreams: C:\Program Files (x86)\Hewlett-Packard:Win32App
AlternateDataStreams: C:\Program Files (x86)\Microsoft SQL Server Compact Edition:Win32App
AlternateDataStreams: C:\Program Files (x86)\PCFixSpeed:Win32App
AlternateDataStreams: C:\Program Files (x86)\Pixelmon Launcher:Win32App
AlternateDataStreams: C:\Program Files (x86)\Pro PC Cleaner:Win32App
AlternateDataStreams: C:\Program Files (x86)\Qualcomm Atheros:Win32App
AlternateDataStreams: C:\Program Files (x86)\QuickTime:Win32App
AlternateDataStreams: C:\Program Files (x86)\WildGames:Win32App
AlternateDataStreams: C:\Program Files (x86)\Windows Live:Win32App
AlternateDataStreams: C:\WINDOWS\My Product Name:Win32App
AlternateDataStreams: C:\WINDOWS\SysWOW64\Adobe:Win32App
AlternateDataStreams: C:\ProgramData\regid.1991-06.com.microsoft:Win32App
AlternateDataStreams: C:\ProgramData\{18165758-115C-4DC0-9EC2-FF89F725767F}:Win32App
AlternateDataStreams: C:\Users\MIKE\AppData\Local\Temp:Win32App
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset catalog
CMD: ipconfig /flushdns
hosts:
Emptytemp: