Start::
CreateRestorePoint:
CloseProcesses:
HKLM-x32\...\Winlogon: [Userinit] 
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
S3 mfeavfk01; \Device\mfeavfk01.sys [X]
S3 mfencbdc01; \Device\mfencbdc01.sys [X]
2019-05-24 23:00 - 2019-05-24 23:00 - 000000000 ____D C:\Users\bm silverlake\AppData\Local\mbam
2019-05-24 22:59 - 2019-05-24 22:59 - 000000000 ____D C:\Users\bm silverlake\AppData\Local\mbamtray
2019-05-24 22:06 - 2019-05-24 22:24 - 000000000 ____D C:\Users\bm silverlake\AppData\Roaming\Comodo
2019-05-24 22:02 - 2019-05-24 22:23 - 000000000 ____D C:\Users\bm silverlake\AppData\Local\Comodo
2019-05-24 21:07 - 2019-05-24 21:07 - 000000000 ____D C:\WINDOWS\System32\Tasks\S-1-5-21-3578812641-2531012994-4198522184-1003
2019-05-21 18:42 - 2019-05-24 21:47 - 000000000 ____D C:\Users\bm silverlake\AppData\LocalLow\uTorrent
2019-05-12 10:56 - 2019-05-24 20:16 - 000000000 ____D C:\found.000
2019-05-02 21:56 - 2019-05-24 21:26 - 000000000 ____D C:\Users\bm silverlake\AppData\Local\BitTorrentHelper
CustomCLSID: HKU\S-1-5-21-3578812641-2531012994-4198522184-1003_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\bm silverlake\AppData\Local\Microsoft\OneDrive\18.222.1104.0007\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-3578812641-2531012994-4198522184-1003_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\bm silverlake\AppData\Local\Microsoft\OneDrive\18.222.1104.0007\amd64\FileSyncShell64.dll => No File
CustomCLSID: HKU\S-1-5-21-3578812641-2531012994-4198522184-1003_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\bm silverlake\AppData\Local\Microsoft\OneDrive\18.222.1104.0007\amd64\FileSyncShell64.dll => No File
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> No File
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} =>  -> No File
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} =>  -> No File
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
IE trusted site: HKU\S-1-5-21-3578812641-2531012994-4198522184-1003\...\localhost -> localhost
FirewallRules: [{A59DDFF3-2AE0-4D7C-9E16-CD9EBBC00C8F}] => (Allow) C:\Users\bm silverlake\AppData\Roaming\uTorrent\uTorrent.exe No File
FirewallRules: [{659CCEEC-9D22-4B50-8973-A4685AFACEAB}] => (Allow) C:\Users\bm silverlake\AppData\Roaming\uTorrent\uTorrent.exe No File
EmptyTemp:
End::