Script ZHPFix EmptyPrefetch FirewallRaz PROXYFix EmptyTemp EmptyFlash EmptyClsid SysRestore M2 - MFEP: RegExtension {9be7ee6d-441b-44d3-aeba-0c4e7f53fee6} . (...) -- C:\Program Files (x86)\Super_Lyrics\132.xpi (.not file.) =>Adware.AddLyrics O69 - SBI: SearchScopes [HKCU] {6D1C71F6-BA27-487C-BD57-A4190F46BD54} - (Search the web (Softonic)) - http://search.softonic.com =>Adware.IMBooster HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\BabMaint_RASAPI32 =>Hijacker.BabSolution HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\BabMaint_RASMANCS =>Hijacker.BabSolution HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\biclient_RASAPI32 =>Adware.MegaSearch HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\biclient_RASMANCS =>Adware.MegaSearch HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\giant savings-bg_RASAPI32 =>Adware.VidSaver HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\giant savings-bg_RASMANCS =>Adware.VidSaver HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updateBuzzSearch_RASAPI32 =>PUP.BuzzSearch HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\updateBuzzSearch_RASMANCS =>PUP.BuzzSearch HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utilBuzzSearch_RASAPI32 =>PUP.BuzzSearch HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\utilBuzzSearch_RASMANCS =>PUP.BuzzSearch HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\YontooSetup-S-1650_RASAPI32 =>Adware.Yontoo HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\YontooSetup-S-1650_RASMANCS =>Adware.Yontoo C:\Users\BOCQUET\AppData\Roaming\Mozilla\Firefox\Profiles\EP: RegExtension {9be7ee6d-441b-44d3-aeba-0c4e7f53fee6} . (...) -- C:\extensions\Program Files (x86)\Super_Lyrics\132.xpi (.not file.) =>Adware.AddLyrics^ [MD5.E2D3363D2298F8B4DEF484AB40E66C49] - (.APN LLC. - APN Updater.) -- C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166296] [PID.1192] R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.search.ask.com O2 - BHO: Search App by Ask BHO [64Bits] - {4F524A2D-5350-4500-76A7-7A786E7484D7} . (...) -- "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Passport.dll" (.not file.) O3 - Toolbar: Search App by Ask - [HKLM]{4F524A2D-5350-4500-76A7-7A786E7484D7} . (.APN LLC. - Passport.) -- C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-SPE\Passport_x64.dll O23 - Service: Service de mise à jour Ask (APNMCP) . (.APN LLC. - APN Updater.) - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe O42 - Logiciel: Search App by Ask - (.APN, LLC.) [HKLM][64Bits] -- {4F524A2D-5350-4500-76A7-A758B70C1200} [HKCU\Software\AskPartnerNetwork] [HKLM\Software\AskPartnerNetwork] [HKLM\Software\Wow6432Node\AskPartnerNetwork] O43 - CFD: 19/10/2014 - 07:51:00 - [] ----D C:\Program Files (x86)\AskPartnerNetwork O43 - CFD: 19/10/2014 - 07:50:46 - [] ----D C:\ProgramData\APN O43 - CFD: 19/10/2014 - 07:51:00 - [] ----D C:\ProgramData\AskPartnerNetwork O43 - CFD: 19/10/2014 - 07:51:08 - [] ----D C:\Users\BOCQUET\AppData\Local\AskPartnerNetwork O69 - SBI: SearchScopes [HKCU] {A43AD4BC-E01A-4767-94A0-9E620DB63E9C} - (Ask Search) - http://www.search.ask.com [MD5.617C31535C4B7EA4C4535F660CBA8D0B] [WIS][10/10/2014] (.APN, LLC - Search App by Ask.) -- C:\Windows\Installer\117e30.msi [507904] SR - | Auto 10/10/2014 166296 | (APNMCP) . (.APN LLC..) - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4F524A2D-5350-4500-76A7-7A786E7484D7}] [HKLM\SYSTEM\CurrentControlSet\Services\APNMCP] [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{4F524A2D-5350-4500-76A7-A758B70C1200}] [HKCU\Software\AskPartnerNetwork] [HKLM\Software\AskPartnerNetwork] [HKLM\Software\Wow6432Node\AskPartnerNetwork] [HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{4F524A2D-5350-4500-76A7-7A786E7484D7} C:\Program Files (x86)\AskPartnerNetwork C:\ProgramData\AskPartnerNetwork C:\Users\BOCQUET\AppData\Local\AskPartnerNetwork C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe C:\Windows\Installer\117e30.msi [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1 O61 - LFC: 27/10/2014 - 14:57:52 ---A- . (.fredodiable.) -- C:\Users\BOCQUET\Downloads\Infected Scanner.exe [6436864] O43 - CFD: 19/11/2013 - 19:18:21 - [] ----D C:\ProgramData\McAfee HKCU\Software\MCAFEE]