CreateRestorePoint:
HKU\S-1-5-21-3932258823-1374462109-926273279-1001\...\Policies\Explorer: [NoInternetIcon] 1
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
Winsock: Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc.)
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2015-12-24] [not signed]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2015-12-24] [not signed]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2015-12-24] [not signed]
S3 CpqDfw; system32\drivers\CpqDfw.sys [X]
S3 FTD2XX; System32\Drivers\FTD2XX.sys [X]
CustomCLSID: HKU\S-1-5-21-3932258823-1374462109-926273279-1001_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\da\AppData\Local\Google\Update\1.3.29.1\psuser.dll => No File
Task: {1344DDC1-A85C-4CBA-A0E6-4AB2B67A0447} - System32\Tasks\sab3009 => C:\PROGRA~1\FASTSE~1\sab3009.exe <==== ATTENTION
Task: {315F6AF9-FEC3-4FB0-AD2B-7B62378C8DA4} - \Installer_geforce -> No File <==== ATTENTION
Task: {7CF75C28-F407-4AED-BC21-FD1784B7CE13} - System32\Tasks\LUAYNFMQTAELIMQM => C:\ProgramData\Service1291\Service1291.exe <==== ATTENTION
Task: {9543E45D-45B7-43BA-AA9C-69281ED10418} - System32\Tasks\TrafficMaster => c:\programdata\{6cade594-c848-cef1-6cad-de594c849653}\pricelessinstaller.exe <==== ATTENTION
Task: C:\windows\Tasks\LUAYNFMQTAELIMQM.job => C:\ProgramData\Service1291\Service1291.exe <==== ATTENTION
Task: C:\windows\Tasks\TrafficMaster.job => c:\programdata\{6cade594-c848-cef1-6cad-de594c849653}\pricelessinstaller.exe <==== ATTENTION
c:\programdata\{6cade594-c848-cef1-6cad-de594c849653}\pricelessinstaller.exe <==== ATTENTION
C:\ProgramData\Service1291
C:\PROGRA~1\FASTSE~1
c:\programdata\{6cade594-c848-cef1-6cad-de594c849653}
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state on
Hosts:
EmptyTemp: