CreateRestorePoint:
HKLM\...\Run: [] => [X]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-3634781665-3730177948-736442605-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled.
ProxyServer: [.DEFAULT] => http=127.0.0.1:5555
SearchScopes: HKLM -> DefaultScope value is missing.
FF user.js: detected! => C:\Users\Kwong\Application Data\Mozilla\Firefox\Profiles\u7fm3gfg.default\user.js
FF Extension: bbuYYandibrowse - C:\Users\Kwong\Application Data\Mozilla\Firefox\Profiles\u7fm3gfg.default\Extensions\whNp@0Dc6.net [2014-12-26]
FF Extension: Priezieecoupon - C:\Users\Kwong\Application Data\Mozilla\Firefox\Profiles\u7fm3gfg.default\Extensions\Ytww@Vd7.edu [2014-12-26] 
S1 bbnfd_1_10_0_2; system32\drivers\bbnfd_1_10_0_2.sys [X]
c:\windows\system32\drivers\bbnfd_1_10_0_2.sys
2014-12-26 08:00 - 2014-12-26 08:00 - 00000000 ____D () C:\Program Files\roeckketdueAl
2014-12-26 07:56 - 2014-12-26 07:56 - 00000000 ____D () C:\ProgramData\1737750139
2014-12-26 07:35 - 2014-12-26 07:35 - 00000000 ____D () C:\Program Files\offFerodeeal
2014-12-26 06:22 - 2014-12-26 08:00 - 00000000 ____D () C:\ProgramData\79fc7715d151d2da
2014-12-26 08:08 - 2013-05-23 20:17 - 00000410 _____ () C:\Windows\Tasks\PC Optimizer Pro startups.job
2014-12-25 16:55 - 2013-05-23 20:17 - 00000436 _____ () C:\Windows\Tasks\PC Optimizer Pro Idle.job
2014-12-25 15:52 - 2013-05-23 20:17 - 00000406 _____ () C:\Windows\Tasks\PC Optimizer Pro Scan.job
2014-12-21 21:07 - 2013-05-23 20:17 - 00000438 _____ () C:\Windows\Tasks\PC Optimizer Pro Updates.job
CustomCLSID: HKU\S-1-5-21-3634781665-3730177948-736442605-1000_Classes\CLSID\{0000002F-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-3634781665-3730177948-736442605-1000_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-3634781665-3730177948-736442605-1000_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-3634781665-3730177948-736442605-1000_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-3634781665-3730177948-736442605-1000_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-3634781665-3730177948-736442605-1000_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-3634781665-3730177948-736442605-1000_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-3634781665-3730177948-736442605-1000_Classes\CLSID\{0002E005-0000-0000-C000-000000000046}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-3634781665-3730177948-736442605-1000_Classes\CLSID\{0BE35203-8F91-11CE-9DE3-00AA004BB851}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-3634781665-3730177948-736442605-1000_Classes\CLSID\{0BE35204-8F91-11CE-9DE3-00AA004BB851}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-3634781665-3730177948-736442605-1000_Classes\CLSID\{46763EE0-CAB2-11CE-8C20-00AA0051E5D4}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-3634781665-3730177948-736442605-1000_Classes\CLSID\{4DF0C730-DF9D-4AE3-9153-AA6B82E9795A}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-3634781665-3730177948-736442605-1000_Classes\CLSID\{B196B286-BAB4-101A-B69C-00AA00341D07}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-3634781665-3730177948-736442605-1000_Classes\CLSID\{D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-3634781665-3730177948-736442605-1000_Classes\CLSID\{EB030009-6D26-11D3-B0F4-00C04F60B2A1}\InprocServer32 -> No File Path
CustomCLSID: HKU\S-1-5-21-3634781665-3730177948-736442605-1000_Classes\CLSID\{F6240000-66DA-4DCD-B1AF-5C59D05C44D5}\InprocServer32 -> No File Path
Task: {2EC11A74-D0FA-4416-8294-772E7C04AF17} - System32\Tasks\PC Optimizer Pro Scan => C:\Program Files\PC Optimizer Pro\StartApps.exe <==== ATTENTION
Task: {3CAF3A90-AB96-4169-BB73-A8543BE3E565} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: {444311AD-6327-4B41-AD02-430BD18C040C} - System32\Tasks\PC Optimizer Pro Updates => C:\Program Files\PC Optimizer Pro\StartApps.exe <==== ATTENTION
Task: {8B1E88BB-2915-4EC9-95E4-365250F8C485} - System32\Tasks\PC Optimizer Pro startups => C:\Program Files\PC Optimizer Pro\StartApps.exe <==== ATTENTION
Task: {B7814212-CD30-4396-9479-1D6A545EA6DB} - System32\Tasks\PC Optimizer Pro Idle => C:\Program Files\PC Optimizer Pro\StartApps.exe <==== ATTENTION
C:\Program Files\PC Optimizer Pro
Task: C:\Windows\Tasks\PC Optimizer Pro Idle.job => C:\Program Files\PC Optimizer Pro\StartApps.exe <==== ATTENTION
Task: C:\Windows\Tasks\PC Optimizer Pro Scan.job => C:\Program Files\PC Optimizer Pro\StartApps.exe <==== ATTENTION
Task: C:\Windows\Tasks\PC Optimizer Pro startups.job => C:\Program Files\PC Optimizer Pro\StartApps.exe <==== ATTENTION
Task: C:\Windows\Tasks\PC Optimizer Pro Updates.job => C:\Program Files\PC Optimizer Pro\StartApps.exe <==== ATTENTION
HKU\S-1-5-21-3634781665-3730177948-736442605-1000\Software\Classes\exefile: "%1" %* <===== ATTENTION!
FF HKLM\...\Firefox\Extensions: [{6311158d-1248-4c22-b80e-0fce899a0c7c}] - C:\Program Files\Mozilla Firefox\extensions\{6311158d-1248-4c22-b80e-0fce899a0c7c}
C:\ProgramData\uninstaller.exe 
EmptyTemp: