CloseProcesses:
CreateRestorePoint:
2015-12-17 00:23 - 2015-12-17 00:23 - 01481976 _____ (Device Doctor Software Inc. ) C:\Users\Claral\Downloads\DeviceDoctor_Bundle.exe
C:\Users\Claral\SETUP1.EXE
Itibiti RTC (x32 Version: 0.0.1 - Itibiti Inc) Hidden
CustomCLSID: HKU\S-1-5-21-3535517013-3125498312-2091486022-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\Claral\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-3535517013-3125498312-2091486022-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Claral\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3535517013-3125498312-2091486022-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\Claral\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => No File
AlternateDataStreams: C:\ProgramData\TEMP:0B4227B4
FirewallRules: [{45EE3A5C-7F11-4C59-A935-6F2CAC0928A9}] => (Allow) C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe
FirewallRules: [{0B63817C-35FA-4B0C-8F74-5AFA2E1FE25A}] => (Allow) C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe
FirewallRules: [{60DA028C-56FD-413C-83B3-F4A7DF55C3EA}] => (Allow) C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe
FirewallRules: [{F0829A67-ED5D-4173-800D-0DD79A24D732}] => (Allow) C:\Program Files (x86)\360\Total Security\LiveUpdate360.exe
FirewallRules: [{FD30A42F-4FE0-4347-8513-FCBC7B4CDC66}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
FirewallRules: [{9D34D57B-1EE3-46D4-AC6C-5C6AB634E2A5}] => (Allow) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
HKLM-x32\...\Run: [] => [X]
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -  No File
CHR StartupUrls: Default -> "hxxp://rts.dsrlte.com"
2015-12-17 02:30 - 2015-12-17 02:30 - 00000000 ____D C:\Users\Claral\AppData\LocalLow\BitTorrent
2015-12-18 22:06 - 2013-11-13 10:05 - 00000000 ____D C:\ProgramData\APN
CMD: bitsadmin /reset /allusers
CMD: netsh winsock reset catalog
CMD: ipconfig /flushdns
RemoveProxy:
hosts:
Emptytemp: