start CreateRestorePoint: ShortcutWithArgument: C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default Task: {4F935BD8-72EB-4AF5-BB9D-A84F0F20B410} - System32\Tasks\ASC_SkipUac_Admin => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe CHR Notifications: Default -> hxxps://arenubeforeign.club; hxxps://bobs-tube.com; hxxps://dlp-imgsrc.femvxitrquzretxzdq.info; hxxps://mobnootiffy.com; hxxps://sesono.com; hxxps://vidcopa.me; hxxps://vtm.be; hxxps://www.facebook.com; hxxps://www.hln.be; hxxps://www.nieuwsblad.be; hxxps://www.reddit.com; hxxps://www.tomtom.com; hxxps://www.youtube.com; hxxps://yoku.pro S3 AscFileControl; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileControl.sys [X] S3 AscFileFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscFileFilter.sys [X] S3 AscRegistryFilter; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\win10_amd64\AscRegistryFilter.sys [X] S3 cpuz143; \??\C:\WINDOWS\temp\cpuz143\cpuz143_x64.sys [X] S3 cpuz145; \??\C:\WINDOWS\temp\cpuz145\cpuz145_x64.sys [X] 2019-11-27 15:33 - 2019-11-27 15:33 - 085712896 _____ C:\WINDOWS\system32\config\SOFTWARE.iobit 2019-11-27 15:33 - 2019-11-27 15:33 - 033017856 _____ C:\WINDOWS\system32\config\COMPONENTS.iobit 2019-11-27 15:33 - 2019-11-27 15:33 - 004243456 _____ C:\WINDOWS\system32\config\DRIVERS.iobit 2019-11-27 15:33 - 2019-11-27 15:33 - 000581632 _____ C:\WINDOWS\system32\config\DEFAULT.iobit 2019-11-27 15:33 - 2019-11-27 15:33 - 000069632 _____ C:\WINDOWS\system32\config\SAM.iobit 2019-11-27 15:33 - 2019-11-27 15:33 - 000028672 _____ C:\WINDOWS\system32\config\SECURITY.iobit 2019-11-27 15:17 - 2019-11-27 15:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 7 2019-11-27 15:15 - 2019-11-27 15:15 - 000002878 _____ C:\WINDOWS\system32\Tasks\ASC_SkipUac_Admin 2019-11-27 15:51 - 2018-08-01 17:30 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\IObit 2019-11-27 15:51 - 2018-08-01 17:29 - 000000000 ____D C:\Users\Admin\AppData\Roaming\IObit 2019-11-27 15:51 - 2018-08-01 17:29 - 000000000 ____D C:\Program Files (x86)\IObit 2019-11-27 15:51 - 2018-08-01 17:28 - 000000000 ____D C:\ProgramData\IObit EmptyTemp: end