IOBit - Driver Booster PRO (crack __FULL__ED X86) W SERIALS 2015 .rar
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17.03.2019Ran by gaming (administrator) on LAPTOP-RD8OALJ1 (12-04-2019 14:29:40)Running from C:\Users\gaming\DownloadsLoaded Profiles: gaming (Available Profiles: defaultuser0 & Yaokeroa & louis & gaming)Platform: Windows 10 Home Single Language Version 1803 17134.523 (X64) Language: English (United States)Default browser: "C:\Program Files (x86)\Comodo\Dragon\dragon.exe" -- "%1"Boot Mode: NormalTutorial for Farbar Recovery Scan Tool: -frst-tutorial-how-to-use-farbar-recovery-scan-tool/==================== Processes (Whitelisted) =================(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)(Garena Online Pte Ltd -> Garena Online ) C:\Program Files (x86)\Garena\Garena\2.0.1902.0110\gxxsvc.exe(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Locator.exe(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cis.exe(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe(Microsoft Corporation -> Sysinternals - www.sysinternals.com) C:\Users\gaming\Desktop\PROCEXP.exe(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe(Comodo Security Solutions, Inc. -> COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe==================== Registry (Whitelisted) ===========================(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3665872 2018-01-29] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [231640 2016-09-21] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2670056 2018-09-10] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)HKLM\...\Run: [COMODO Autostart D5EFF3B3-E126-4AF6-BCE9-852A72129E10] => C:\Program Files\COMODO\COMODO Internet Security\cis.exe [13064896 2019-03-22] (Comodo Security Solutions, Inc. -> COMODO)HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [705784 2016-06-21] (HP Inc. -> HP Inc.)HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2409944 2018-06-22] (Adobe Systems Incorporated -> Adobe Systems Incorporated)HKLM-x32\...\Run: [WD Drive Unlocker] => C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe [1694080 2013-04-01] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133728 2017-09-12] (Wondershare Technology Co.,Ltd -> Wondershare)HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-07-07] (Oracle America, Inc. -> Oracle Corporation)HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [98024 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)HKLM-x32\...\Run: [IseUI] => C:\Program Files (x86)\COMODO\Internet Security Essentials\vkise.exeHKLM\ DisallowedCertificates: 03D22C9C66915D58C88912B64C1F984B8344EF09 (Comodo Security Solutions) C:\rewis\Apps\Rainmeter\Rainmeter.exe (Firebit OU -> Rainmeter)Startup: C:\Users\louis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2019-04-08]ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\louis\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook, Inc. -> Facebook)Startup: C:\Users\Yaokeroa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitor Ink Alerts - HP DeskJet 5810 series.lnk [2018-06-22]ShortcutTarget: Monitor Ink Alerts - HP DeskJet 5810 series.lnk -> C:\Program Files\HP\HP DeskJet 5810 series\Bin\HPStatusBL.dll (Hewlett Packard -> Hewlett-Packard Development Company, LP)CHR HKLM\SOFTWARE\Policies\Google: Restriction DefaultScope 0633EE93-D776-472f-A0FF-E1416B8B2E3A URL = hxxps://ph.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_softjug_18_13_ssg0514¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dph%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzutA0EzyyDtDzy0E0D0ByBzzzy0C0AyE0BtN0D0Tzu0StBtByBzztN1L2XzuyEtFtByEtFtDtFyCyCtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2StAtDyCtDtAyDtByCtGyByC0EyBtG0AyD0B0BtGyE0FyEyEtGyDyC0ByEtB0A0ByByEyBzz0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2S1QyCtC1SyDtC1Q1QtGyC1SyCtAtGyEyD1OyBtGzyzyzzyDtGzy1P1OzzyE1P1SzyyD1OtDtA2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCyCyEtByBtN1Q2Z1B1P1RzutCyDtBtBtByEyEzzyDyE%26cr%3D1063928213%26a%3Dwbf_softjug_18_13_ssg0514%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome%2BSingle%2BLanguage&p=searchTermsSearchScopes: HKLM -> 0633EE93-D776-472f-A0FF-E1416B8B2E3A URL = hxxps://ph.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_softjug_18_13_ssg0514¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dph%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzutA0EzyyDtDzy0E0D0ByBzzzy0C0AyE0BtN0D0Tzu0StBtByBzztN1L2XzuyEtFtByEtFtDtFyCyCtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2StAtDyCtDtAyDtByCtGyByC0EyBtG0AyD0B0BtGyE0FyEyEtGyDyC0ByEtB0A0ByByEyBzz0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2S1QyCtC1SyDtC1Q1QtGyC1SyCtAtGyEyD1OyBtGzyzyzzyDtGzy1P1OzzyE1P1SzyyD1OtDtA2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCyCyEtByBtN1Q2Z1B1P1RzutCyDtBtBtByEyEzzyDyE%26cr%3D1063928213%26a%3Dwbf_softjug_18_13_ssg0514%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome%2BSingle%2BLanguage&p=searchTermsSearchScopes: HKLM-x32 -> DefaultScope ielnksrch URL =SearchScopes: HKLM-x32 -> ielnksrch URL = hxxps://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoGkzD5pDvVJeyNgjks8VJWt1cG1TNK6LsXAMvN9gBInFSyFks-vHO08iJOqpENsPWRij67NVz33aZlxkjq1oVxNvwJGvUKem_Pq8HP1lN_qyav9tPkW3oW4mfNNEf-q2dkhaqLESXJPSvFc-wGn30FOEm1AOZyeRZ2I9coyYP7Nb&q=searchTermsSearchScopes: HKLM-x32 -> 0633EE93-D776-472f-A0FF-E1416B8B2E3A URL = hxxps://ph.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_softjug_18_13_ssg0514¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dph%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzutA0EzyyDtDzy0E0D0ByBzzzy0C0AyE0BtN0D0Tzu0StBtByBzztN1L2XzuyEtFtByEtFtDtFyCyCtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2StAtDyCtDtAyDtByCtGyByC0EyBtG0AyD0B0BtGyE0FyEyEtGyDyC0ByEtB0A0ByByEyBzz0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2S1QyCtC1SyDtC1Q1QtGyC1SyCtAtGyEyD1OyBtGzyzyzzyDtGzy1P1OzzyE1P1SzyyD1OtDtA2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCyCyEtByBtN1Q2Z1B1P1RzutCyDtBtBtByEyEzzyDyE%26cr%3D1063928213%26a%3Dwbf_softjug_18_13_ssg0514%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome%2BSingle%2BLanguage&p=searchTermsSearchScopes: HKU\S-1-5-21-3470749901-1448784153-1402439068-1003 -> DefaultScope ielnksrch URL = hxxps://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKA1VtC1mRJr0-ErUX9LRVRJoPYFrh23LfWS_NUPcNkJhFlB9XEC_AEilFYLBtYLuthiSUbc6DeTIYVrjb-BWVVAMAJG8trf0DuVSXmXOyCoOHOR7oxsx7ZEhoeHYsUSKqw_eKYj6cZ0rg-Iv6B87G1qA7PRgIF0_Ll_SjO1UzNnBKZlEc8TUyc7&q=searchTermsSearchScopes: HKU\S-1-5-21-3470749901-1448784153-1402439068-1003 -> 0633EE93-D776-472f-A0FF-E1416B8B2E3A URL = hxxps://ph.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_softjug_18_13_ssg0514¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dph%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzutA0EzyyDtDzy0E0D0ByBzzzy0C0AyE0BtN0D0Tzu0StBtByBzztN1L2XzuyEtFtByEtFtDtFyCyCtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2StAtDyCtDtAyDtByCtGyByC0EyBtG0AyD0B0BtGyE0FyEyEtGyDyC0ByEtB0A0ByByEyBzz0B2QtN1M1F1B2Z1V1N2Y1L1Qzu2S1QyCtC1SyDtC1Q1QtGyC1SyCtAtGyEyD1OyBtGzyzyzzyDtGzy1P1OzzyE1P1SzyyD1OtDtA2QtN0A0LzuyEtN1B2Z1V1T1S1NzutCyCyEtByBtN1Q2Z1B1P1RzutCyDtBtBtByEyEzzyDyE%26cr%3D1063928213%26a%3Dwbf_softjug_18_13_ssg0514%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome%2BSingle%2BLanguage&p=searchTermsSearchScopes: HKU\S-1-5-21-3470749901-1448784153-1402439068-1003 -> 2f23ab71-4ac6-41f2-a955-ea576e553146 URL =SearchScopes: HKU\S-1-5-21-3470749901-1448784153-1402439068-1003 -> BDF61FAE-9D19-40F0-8F34-688DEB334CA9 URL = hxxp://securedsearch.lavasoft.com/results.php?pr=vmn&id=webcompa&ent=ch_WCYID10454__180811&q=searchTermsSearchScopes: HKU\S-1-5-21-3470749901-1448784153-1402439068-1003 -> E1CA3C1E-284F-4558-A218-35B521DAE198 URL = hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q=searchTerms&src=IE-SearchBoxSearchScopes: HKU\S-1-5-21-3470749901-1448784153-1402439068-1003 -> ielnksrch URL = hxxps://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKA1VtC1mRJr0-ErUX9LRVRJoPYFrh23LfWS_NUPcNkJhFlB9XEC_AEilFYLBtYLuthiSUbc6DeTIYVrjb-BWVVAMAJG8trf0DuVSXmXOyCoOHOR7oxsx7ZEhoeHYsUSKqw_eKYj6cZ0rg-Iv6B87G1qA7PRgIF0_Ll_SjO1UzNnBKZlEc8TUyc7&q=searchTermsSearchScopes: HKU\S-1-5-21-3470749901-1448784153-1402439068-1009 -> DefaultScope 0AA24E16-07B3-4694-8357-3C21ACC5F516 URL = hxxps://ph.search.yahoo.com/yhs/search?hspart=comodo&hsimp=yhs-com_chrome&type=33010001005_12.0.0.6810_i_ds_sp&p=searchTermsSearchScopes: HKU\S-1-5-21-3470749901-1448784153-1402439068-1009 -> 0AA24E16-07B3-4694-8357-3C21ACC5F516 URL = hxxps://ph.search.yahoo.com/yhs/search?hspart=comodo&hsimp=yhs-com_chrome&type=33010001005_12.0.0.6810_i_ds_sp&p=searchTermsSearchScopes: HKU\S-1-5-21-3470749901-1448784153-1402439068-1009 -> ielnksrch URL = hxxps://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoGkzD5pDvVJeyNgjks8VJWt1cG1TNK6LsXAMvN9gBInFSyFks-vHO08iJOqpENsPWRij67NVz33aZlxkjq1oVxNvwJGvUKem_Pq8HP1lN_qyav9tPkW3oW4mfNNEf-q2dkhaqLESXJPSvFc-wGn30FOEm1AOZyeRZ2I9coyYP7Nb&q=searchTermsBHO: IDM integration (IDMIEHlprObj Class) -> 0055C089-8582-441B-A0BF-17B458C2A3A8 -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2018-11-21] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)BHO: ExplorerWnd Helper -> 10921475-03CE-4E04-90CE-E2E7EF20C814 -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2018-07-19] (IObit Information Technology -> IObit)BHO: Java™ Plug-In SSV Helper -> 761497BB-D6F0-462C-B6EB-D4DAF1D92D43 -> C:\Program Files\Java\jre1.8.0_181\bin\ssv.dll [2019-04-02] (Oracle America, Inc. -> Oracle Corporation)BHO: Java™ Plug-In 2 SSV Helper -> DBC80044-A445-435b-BC74-9C25C1C588A9 -> C:\Program Files\Java\jre1.8.0_181\bin\jp2ssv.dll [2019-04-02] (Oracle America, Inc. -> Oracle Corporation)BHO: HP Network Check Helper -> E76FD755-C1BA-4DCB-9F13-99BD91223ADE -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-12-07] (HP Inc. -> HP Inc.)BHO-x32: IDM integration (IDMIEHlprObj Class) -> 0055C089-8582-441B-A0BF-17B458C2A3A8 -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2018-11-21] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)BHO-x32: FlashGetBHO -> b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0 -> C:\Users\123\AppData\Roaming\FlashGetBHO\FlashGetBHO.dll [2012-11-01] (Trend Media Corporation Limited -> Trend Media Group)BHO-x32: HP Network Check Helper -> E76FD755-C1BA-4DCB-9F13-99BD91223ADE -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-12-07] (HP Inc. -> HP Inc.)Handler: ms-help - 314111c7-a502-11d2-bbca-00c04f8ec294 - No FileHandler: mso-minsb-roaming.16 - No CLSID ValueHandler: osf-roaming.16 - No CLSID ValueFilter: text/xml - No CLSID ValueFireFox:========FF DefaultProfile: fuytv3cg.defaultFF ProfilePath: C:\Users\gaming\AppData\Roaming\Mozilla\Firefox\Profiles\fuytv3cg.default [2019-04-12]FF SearchPlugin: C:\Users\gaming\AppData\Roaming\Mozilla\Firefox\Profiles\fuytv3cg.default\searchplugins\AdTrustMediaSafeSearch.xml [2019-04-08]FF HKU\S-1-5-21-3470749901-1448784153-1402439068-1003\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\123\AppData\Roaming\IDM\idmmzcc5 => not foundFF HKU\S-1-5-21-3470749901-1448784153-1402439068-1003\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpiFF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-12-20] [Legacy]FF HKU\S-1-5-21-3470749901-1448784153-1402439068-1009\...\Firefox\Extensions: [mozilla_cc3@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpiFF Extension: (IDM Integration Module) - C:\Program Files (x86)\Internet Download Manager\idmmzcc3.xpi [2019-03-19] [UpdateUrl:hxxps://data.internetdownloadmanager.com/idmmzcc3/update.json]FF HKU\S-1-5-21-3470749901-1448784153-1402439068-1009\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\gaming\AppData\Roaming\IDM\idmmzcc5FF Extension: (IDM CC) - C:\Users\gaming\AppData\Roaming\IDM\idmmzcc5 [2019-04-08] [Legacy] [not signed]FF HKU\S-1-5-21-3470749901-1448784153-1402439068-1009\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpiFF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_156.dll [2019-03-22] (Adobe Systems Incorporated -> )FF Plugin: @java.com/DTPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\dtplugin\npDeployJava1.dll [2019-04-02] (Oracle America, Inc. -> Oracle Corporation)FF Plugin: @java.com/JavaPlugin,version=11.181.2 -> C:\Program Files\Java\jre1.8.0_181\bin\plugin2\npjp2.dll [2019-04-02] (Oracle America, Inc. -> Oracle Corporation)FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [No File]FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_156.dll [2019-03-22] (Adobe Systems Incorporated -> )FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\TXE Components\IPT\npIntelWebAPIIPT.dll [2014-07-02] (Intel Identity Protection Technology Software -> Intel Corporation)FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\TXE Components\IPT\npIntelWebAPIUpdater.dll [2014-07-02] (Intel Identity Protection Technology Software -> Intel Corporation)FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA2\MICROS2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [No File]FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [No File]Chrome:=======CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2019-03-21]CHR HKLM\...\Chrome\Extension: [pdpcpceofkopegffcdnffeenbfdldock] - hxxps://clients2.google.com/service/update2/crxCHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crxCHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crxCHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2019-03-21]CHR HKLM-x32\...\Chrome\Extension: [nladljmabboanhihfkjacnnkgjhnokhj] - hxxps://clients2.google.com/service/update2/crx==================== Services (Whitelisted) ====================(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [818128 2018-06-22] (Adobe Systems Incorporated -> Adobe Systems Incorporated)S4 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2910696 2018-09-10] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2704872 2018-09-10] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)S3 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [466280 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)S4 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [126944 2017-03-08] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11398752 2019-03-22] (Comodo Security Solutions, Inc. -> COMODO)R2 CmdAgentProt; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [11398752 2019-03-22] (Comodo Security Solutions, Inc. -> COMODO)S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2651840 2019-03-26] (Comodo Security Solutions, Inc. -> COMODO)S4 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-09-10] (Dropbox, Inc -> Dropbox, Inc.)S4 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-09-10] (Dropbox, Inc -> Dropbox, Inc.)S4 EsgShKernel; C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe [10191664 2019-02-22] (EnigmaSoft Limited -> EnigmaSoft Limited)S4 esifsvc; C:\WINDOWS\system32\Intel\DPTF\esif_uf.exe [1701480 2018-01-29] (Intel