Start::
CloseProcesses:
CreateRestorePoint:
Removeproxy:
Hosts:
CustomCLSID: HKU\S-1-5-21-448322351-3195172183-1875800185-1001_Classes\CLSID\{D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-448322351-3195172183-1875800185-1001_Classes\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\InprocServer32 -> no filepath
AlternateDataStreams: C:\ProgramData\TEMP:373E1720 [280]
HKU\S-1-5-21-448322351-3195172183-1875800185-1001\Software\Classes\.exe:  =>  <==== ATTENTION
HKU\S-1-5-21-448322351-3195172183-1875800185-1001\Software\Classes\.reg:  =>  <==== ATTENTION
HKU\S-1-5-21-448322351-3195172183-1875800185-1001\Software\Classes\.bat:  =>  <==== ATTENTION
HKU\S-1-5-21-448322351-3195172183-1875800185-1001\Software\Classes\.cmd:  =>  <==== ATTENTION
HKU\S-1-5-21-448322351-3195172183-1875800185-1001\Software\Classes\.com:  =>  <==== ATTENTION
HKU\S-1-5-21-448322351-3195172183-1875800185-1001\Software\Classes\.scr:  =>  <==== ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-21] (Oracle America, Inc. -> Oracle Corporation)
BHO: OffresShopping -> {F4A9D6FE-8C16-4D72-B845-7AE0FFAB2DAB} -> C:\Program Files\WikiMotInstaller\BHO.dll [2015-02-10] (Prestafind) [File not signed]
Toolbar: HKU\S-1-5-21-448322351-3195172183-1875800185-1001 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16" <==== ATTENTION
FF ExtraCheck: C:\Program Files\mozilla firefox\firefox.cfg [2013-05-28] <==== ATTENTION
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
cmd: ipconfig /flushdns
cmd: netsh advfirewall reset
cmd: netsh advfirewall set allprofiles state on
cmd: netsh winsock reset
Emptytemp: 
End::