CreateRestorePoint: Task: {8C4417BD-F630-499D-BF04-ACAEBACCED52} - \Driver Booster Scan No Task File <==== ATTENTION Task: {B4626FA9-8A95-4462-83B0-A95ADF723175} - \Driver Booster Update No Task File <==== ATTENTION Task: {D96F5CD0-8EBE-47CA-8505-C9C6EF5F643F} - \Driver Booster SkipUAC (Muneeb Khan Lodhi) No Task File <==== ATTENTION AlternateDataStreams: C:\ProgramData\Temp:373E1720 AlternateDataStreams: C:\ProgramData\Temp:56E2E879 HKLM-x32\...\Run: [] => [X] HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1 HKU\S-1-5-21-2238753014-2711977962-2677134643-1001\...\MountPoints2: {0b9dce3d-df46-11e2-876c-a0b3cc6a6f9f} - H:\TotalLock.exe HKU\S-1-5-21-2238753014-2711977962-2677134643-1001\...\MountPoints2: {3dc4fec7-55b6-11e3-a797-a0b3cc6a6f9f} - G:\aocsetup.exe /autorun HKU\S-1-5-21-2238753014-2711977962-2677134643-1001\...\MountPoints2: {47f3196b-4b00-11e3-9d96-a0b3cc6a6f9f} - H:\TotalLock.exe HKU\S-1-5-21-2238753014-2711977962-2677134643-1001\...\MountPoints2: {589452d6-6cc6-11e2-af8d-a0b3cc6a6f9f} - G:\SETUP.EXE HKU\S-1-5-21-2238753014-2711977962-2677134643-1001\...\MountPoints2: {a1fb54a9-1d21-11e3-a744-a0b3cc6a6f9f} - H:\TotalLock.exe HKU\S-1-5-21-2238753014-2711977962-2677134643-1001\...\MountPoints2: {e5550dae-58dd-11e3-940c-a0b3cc6a6f9f} - H:\Setup.exe /Auto HKU\S-1-5-21-2238753014-2711977962-2677134643-1001\...\MountPoints2: {ea3c9d21-1b96-11e3-b5c4-a0b3cc6a6f9f} - H:\LaunchU3.exe HKU\S-1-5-21-2238753014-2711977962-2677134643-1001\...\MountPoints2: {ea3c9d31-1b96-11e3-b5c4-a0b3cc6a6f9f} - H:\TotalLock.exe CHR HKU\S-1-5-21-2238753014-2711977962-2677134643-1001\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION URLSearchHook: HKU\S-1-5-21-2238753014-2711977962-2677134643-1001 - (No Name) - {3c35ad63-af1d-4e21-b484-b6651a8efcf9} - No File SearchScopes: HKU\S-1-5-21-2238753014-2711977962-2677134643-1001 -> DefaultScope {E1AA69FC-FAEF-4C30-8A70-229B05AC4029} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3282698&CUI=UN42458783422007152&UM=2 SearchScopes: HKU\S-1-5-21-2238753014-2711977962-2677134643-1001 -> {E1AA69FC-FAEF-4C30-8A70-229B05AC4029} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3282698&CUI=UN42458783422007152&UM=2 Toolbar: HKU\S-1-5-21-2238753014-2711977962-2677134643-1001 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File FF Plugin HKU\S-1-5-21-2238753014-2711977962-2677134643-1001: @tightropeinteractive.com/Plugin -> C:\Users\Muneeb Khan Lodhi\AppData\Local\TNT2\2.0.0.1627\npTNT2.dll No File FF Plugin HKU\S-1-5-21-2238753014-2711977962-2677134643-1001: @tnt2ghost.com/Plugin -> C:\Users\Muneeb Khan Lodhi\AppData\Local\TNT2\2.0.0.1627\npTNT2ghost.dll No File CHR Plugin: (Facebook Video Calling Plugin) - C:\Users\Muneeb Khan Lodhi\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll No File CHR Plugin: (npAPI Plugin) - C:\Users\Muneeb Khan Lodhi\AppData\Local\TNT2\2.0.0.1627\npTNT2.dll No File CHR Plugin: (npAPI Ghost Plugin) - C:\Users\Muneeb Khan Lodhi\AppData\Local\TNT2\2.0.0.1627\npTNT2ghost.dll No File CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\Windows\SysWOW64\npDeployJava1.dll No File CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll No File EmptyTemp: