HKU\S-1-5-21-3001920249-2789374724-3985487498-1000\...\MountPoints2: {4225b781-c823-11e4-b7b2-0024818fd89b} - G:\HPLauncher.exe GroupPolicy: Restriction - Chrome <======= ATTENTION SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = CHR HKLM\...\Chrome\Extension: [dflinnddekagfkncpgojoppgnppfkbkj] - CHR HKLM\...\Chrome\Extension: [idkknaphebegndgimgdpfnconcickdfn] - R2 Amsp; "C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=rb -dt=60000 -ad -bt=0 [X] S3 rpcapd; "%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini" [X] U2 TMAgent; no ImagePath C:\Users\user\AppData\Local\Temp\CertificatesDLL.dll C:\Users\user\AppData\Local\Temp\i4jdel0.exe C:\Users\user\AppData\Local\Temp\SamsungAPInstaller_1429531037792.exe C:\Users\user\AppData\Local\Temp\SamsungAPInstaller_1432029816872.exe C:\Users\user\AppData\Local\Temp\SkypeSetup.exe C:\Users\user\AppData\Local\Temp\tmp4433.exe CustomCLSID: HKU\S-1-5-21-3001920249-2789374724-3985487498-1000_Classes\CLSID\{FBC48F05-1A1E-4536-AB4B-75C7EEA56CD6}\InprocServer32 -> no filepath FirewallRules: [{3C211A48-9AAE-4970-B96B-2F7B58022F37}] => (Allow) C:\Users\user\AppData\Local\Temp\nsz846D.tmp\CnetInstaller-10068658.exe FirewallRules: [{E5A9F9CE-180D-4BB7-AE6D-DD707B117FAF}] => (Allow) C:\Users\user\AppData\Local\Temp\nsz846D.tmp\CnetInstaller-10068658.exe FirewallRules: [{A797ACAA-B2DC-47D1-995B-50AEC5372C95}] => (Allow) C:\Users\user\AppData\Local\Temp\nsg7B2A.tmp\CnetInstaller-10068658.exe FirewallRules: [{0ADFF978-07D2-4BAE-A28F-FF14E5F88A4D}] => (Allow) C:\Users\user\AppData\Local\Temp\nsg7B2A.tmp\CnetInstaller-10068658.exe CMD: ipconfig /flushdns Hosts: EmptyTemp: