CreateRestorePoint:
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3004508294-471313756-1794315825-1000\...\MountPoints2: {0e686678-848b-11e4-8650-9ed87e179942} - F:\autorun.exe
HKU\S-1-5-21-3004508294-471313756-1794315825-1000\...\MountPoints2: {15d3a5be-6902-11e4-9f63-82faa1dae64f} - E:\Windows\AutoRun.exe {D2D77DC2-8299-11D1-8949-444553540000} 5.2088.1.A01B06 PID_0083 {01D42BF0-ED08-463f-8A28-99EB6FEE962B}
HKU\S-1-5-21-3004508294-471313756-1794315825-1000\...\MountPoints2: {49de773a-8272-11e4-9861-ac8112001b7c} - E:\Windows\AutoRun.exe {D2D77DC2-8299-11D1-8949-444553540000} 5.2088.1.A01B06 PID_0083 {01D42BF0-ED08-463f-8A28-99EB6FEE962B}
HKU\S-1-5-21-3004508294-471313756-1794315825-1000\...\MountPoints2: {fe8d0920-76ae-11e4-b095-f5ec430e490f} - E:\HTC_Sync_Manager_PC.exe
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
Toolbar: HKU\S-1-5-21-3004508294-471313756-1794315825-1000 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
FF user.js: detected! => C:\Users\The WABBIT\AppData\Roaming\Mozilla\Firefox\Profiles\3olbuafe.default\user.js
FF Extension: YoutubeAdBlocke - C:\Users\The WABBIT\AppData\Roaming\Mozilla\Firefox\Profiles\3olbuafe.default\Extensions\5GJU@Ye.com [2014-10-14]
FF Extension: {3de1f0d5-4b0f-41c4-9671-6b6df5d7cfd0} - C:\Users\The WABBIT\AppData\Roaming\Mozilla\Firefox\Profiles\3olbuafe.default\Extensions\{3de1f0d5-4b0f-41c4-9671-6b6df5d7cfd0}.xpi [2014-11-13]
FF HKLM\...\Firefox\Extensions: [{121C6AF3-6778-4360-AFDB-57BD4E3E4343}] - C:\Program Files\Playzy\Firefox
C:\Program Files\Playzy
FF HKLM-x32\...\Firefox\Extensions: [{121C6AF3-6778-4360-AFDB-57BD4E3E4343}] - C:\Program Files\Playzy\Firefox
CHR Extension: (HTML Coupon) - C:\Users\The WABBIT\AppData\Local\Google\Chrome\User Data\Default\Extensions\acgimceffoceigocablmjdpebeodphgc [2014-10-14]
CHR Extension: (GoSave) - C:\Users\The WABBIT\AppData\Local\Google\Chrome\User Data\Default\Extensions\heijamdgdffahhfmgibpphebmhekbhih [2014-10-14]
CHR Extension: (SafeNSearch) - C:\Users\The WABBIT\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkomdmnobcnfknncnajbdbecjaoobchb [2014-10-13]
CHR Extension: (GoSave) - C:\Users\The WABBIT\AppData\Local\Google\Chrome\User Data\Default\Extensions\nfaeehiddheakbpeklgkbglmajcdpbpn [2014-10-14]
C:\Users\The WABBIT\IP_Log_Data.js
Task: {015A7A90-8222-4436-AF30-EE93B919B54E} - System32\Tasks\JFZSHPA => C:\Users\The WABBIT\AppData\Roaming\JFZSHPA.exe <==== ATTENTION
Task: {F82F4DAA-4084-4BAE-8C35-469A77FB0F7F} - System32\Tasks\CIMT_S-1-5-21-3004508294-471313756-1794315825-1000 => C:\Program Files (x86)\Consumer Input\Monitoring\dca-monitoring.exe
Task: C:\Windows\Tasks\CIMT_S-1-5-21-3004508294-471313756-1794315825-1000.job => C:\Program Files (x86)\Consumer Input\Monitoring\dca-monitoring.exe
C:\Program Files (x86)\Consumer Input
Task: C:\Windows\Tasks\JFZSHPA.job => C:\Users\The WABBIT\AppData\Roaming\JFZSHPA.exe <==== ATTENTION
C:\Users\The WABBIT\AppData\Roaming\JFZSHPA.exe
AlternateDataStreams: C:\ProgramData\desktop.ini:d5f36fd32cd26dfb56e050c73be696f2
2014-12-23 13:12 - 2014-12-23 15:05 - 00092176 _____ () C:\s57c
2014-12-27 10:55 - 2014-10-14 14:09 - 00001360 _____ () C:\Windows\Tasks\JFZSHPA.job
Consumer Input Update Helper (x32 Version: 1.3.25.149 - Compete Inc.) Hidden
cmd: bitsadmin /reset /allusers
EmptyTemp: