CreateRestorePoint: 
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-19\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-20\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1993962763-287218729-682003330-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
S3 catchme; \??\C:\DOCUME~1\XPPOWE~1\LOCALS~1\Temp\catchme.sys [X]
2015-10-09 15:28 - 2015-10-09 16:30 - 00000000 ____D C:\Program Files\OnePCOptimizer
2015-10-09 15:28 - 2015-10-09 16:30 - 00000000 ____D C:\Program Files\jogotempo
2015-10-09 15:28 - 2015-10-09 16:30 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\DataFile
2015-10-09 15:28 - 2015-10-09 16:20 - 00000000 ____D C:\Documents and Settings\XP POWER\Application Data\RunDir
2015-10-09 15:28 - 2015-10-09 15:28 - 00000000 ____D C:\Documents and Settings\All Users\Start Menu\Programs\one pc optimizer
2015-10-09 15:27 - 2015-10-09 16:06 - 00004696 _____ C:\WINDOWS\system32\Diixexeqw.ini
2015-10-09 15:27 - 2015-10-09 16:06 - 00002408 _____ C:\WINDOWS\system32\DiixexeqwOff.ini
2015-10-09 15:27 - 2015-10-09 15:27 - 00000000 ____D C:\WINDOWS\system32\gyo
2015-10-09 15:27 - 2015-10-09 15:27 - 00000000 ____D C:\Documents and Settings\XP POWER\Local Settings\Tempfolder
2015-10-09 15:25 - 2015-10-09 15:25 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\28341ff220e0446c9fff27c4493d622e
2015-10-09 15:22 - 2015-10-09 15:53 - 00000004 _____ C:\WINDOWS\system32\029B560A371F4E00AB32838EBC01B9E7
2015-10-09 15:16 - 2015-10-09 16:06 - 00000000 ____D C:\Documents and Settings\XP POWER\Local Settings\Application Data\F004D280-1444403761-1013-9F4B-82111D8F605B
2015-10-08 06:35 - 2015-10-08 06:35 - 00186880 _____ (TODO: <Company name>) C:\WINDOWS\system32\rsrcs.dll
2015-04-14 09:28 - 2015-04-14 09:28 - 0004387 _____ () C:\Documents and Settings\XP POWER\Application Data\2DvsHKa4N
2015-04-19 05:20 - 2015-04-19 05:20 - 0005872 _____ () C:\Documents and Settings\XP POWER\Application Data\838w6fuWq9mlst
2015-04-14 09:28 - 2015-04-14 09:28 - 0004387 _____ () C:\Documents and Settings\XP POWER\Application Data\CM8G96KmgcfxB9FWM2i2jFL3
2015-04-19 05:20 - 2015-04-19 05:20 - 0005872 _____ () C:\Documents and Settings\XP POWER\Application Data\hTmLu7END
2015-04-19 05:20 - 2015-04-19 05:20 - 0005872 _____ () C:\Documents and Settings\XP POWER\Application Data\lwwYCLdvcFaBsAGu8H9qXFhu3
2015-04-19 05:20 - 2015-04-19 05:20 - 0005872 _____ () C:\Documents and Settings\XP POWER\Application Data\m09PmwEyEPlH8DJPaf0
2015-04-19 05:20 - 2015-04-19 05:20 - 0005872 _____ () C:\Documents and Settings\XP POWER\Application Data\p4lyApZNzpLUL7Og720FLvePKCM
2015-04-14 09:28 - 2015-04-14 09:28 - 0004387 _____ () C:\Documents and Settings\XP POWER\Application Data\UJdRn6iCLf98arYbdbTzVF
2015-04-14 09:28 - 2015-04-14 09:28 - 0004387 _____ () C:\Documents and Settings\XP POWER\Application Data\yLRTdARaq631ddySmyG0VyMwfnX
2015-04-14 09:28 - 2015-04-14 09:28 - 0004387 _____ () C:\Documents and Settings\XP POWER\Application Data\yUFcWfJev7
AlternateDataStreams: C:\Program Files\Common Files\System:qd78bsg6XZoCja2SskC
AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\Microsoft:6ZRwS98uqMtwgsykl9DaG
AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\Microsoft:ufqDOcyMVT5gBp0gBGekCEk1GH
AlternateDataStreams: C:\Documents and Settings\XP POWER\Local Settings\Application Data:ntJpmNQ53ewY4SvTFiJa
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Diixexeqw => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{1a3e09be-1e45-494b-9174-d7385b45bbf5} => ""=""
RemoveProxy:
EmptyTemp: