start
CreateRestorePoint:
CloseProcesses:
RemoveProxy: 

FFxtension: IDM CC - C:\Users\Yondaime\AppData\Roaming\IDM\idmmzcc3 [2015-07-12] [not signed]


HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-4099662633-3521346365-417894702-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-4099662633-3521346365-417894702-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
FF HKU\S-1-5-21-4099662633-3521346365-417894702-1000\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Yondaime\AppData\Roaming\IDM\idmmzcc3
FF HKU\S-1-5-21-4099662633-3521346365-417894702-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Yondaime\AppData\Roaming\IDM\idmmzcc5
FF Extension: IDM CC - C:\Users\Yondaime\AppData\Roaming\IDM\idmmzcc5 [2016-07-10] [not signed]
CHR HomePage: ChromeDefaultData -> msn.com/?pc=__PARAM__&ocid=__PARAM__DHP&osmkt=en-gb
CHR Session Restore: ChromeDefaultData -> is enabled.
CHR Profile: C:\Users\Yondaime\AppData\Local\Google\Chrome\User Data\ChromeDefaultData
CHR Extension: (Salty Game Music Player) - C:\Users\Yondaime\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\leooadmebmmjogbfhdcbfldndllfkhpg [2015-10-10]
CHR Extension: (IDM Integration Module) - C:\Users\Yondaime\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2016-06-10]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Yondaime\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
U3 au8icl4l; C:\Windows\system32\Drivers\au8icl4l.sys [0 ] (LSI Corporation) <==== ATTENTION (zero byte File/Folder)
S3 catchme; \??\C:\Users\Yondaime\AppData\Local\Temp\catchme.sys [X]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [4096 2010-07-04] () [File not signed]
Shortcut: C:\Users\Yondaime\AppData\Local\Microsoft\Windows\GameExplorer\{AB6B076D-C02F-40CD-A4DD-A17E922436CC}\SupportTasks\1\Support.lnk -> hxxp://www.ina-support.com/faq/beachhead2k_pc.asp/ (No File) 
Shortcut: C:\Users\Yondaime\AppData\Local\Microsoft\Windows\GameExplorer\{AB6B076D-C02F-40CD-A4DD-A17E922436CC}\SupportTasks\0\More Games from Microsoft.lnk -> hxxp://www.wizardworks.com/bh2000.htm/ (No File)

CMD: netsh winsock reset all
CMD: ipconfig /flushdns
hosts:
EmptyTemp:
Reboot:
end
Read more at http://www.cjoint.com/c/FGjr7yy0kzy#wfGb9I05m4YELlyl.99