Script ZHPFix SysRestore M2 - MFEP: prefs.js [Starken - 706j9t26.default-1388991465355\{9A7DF664-82DC-020F-C190-9A665AF83389}] [] Ask New Tabs v5.0.0.12130 (..) [MD5.00000000000000000000000000000000] [APT] [AdobeFlashPlayerUpdate] (...) -- C:\windows\SysWOW64\FlashPlayerUpdateService.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [AdobeFlashPlayerUpdate 2] (...) -- C:\windows\SysWOW64\FlashPlayerUpdateService.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [Sk-Enhancer-S-5902107913] (...) -- c:\programdata\quickset\sk-enhancer\Sk-Enhancer.exe (.not file.) [0] O39 - APT: Sk-Enhancer-S-5902107913 - (...) -- C:\Windows\Tasks\Sk-Enhancer-S-5902107913.job [456] O39 - APT: Sk-Enhancer-S-5902107913 - (...) -- C:\Windows\System32\Tasks\Sk-Enhancer-S-5902107913 [456] [HKLM\Software\Wow6432Node\Webexp Enhanced] C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308} O53 - SMSR:HKLM\...\startupreg\Beamrise [Key] . (...) -- C:\Users\Starken\AppData\Local\Beamrise\Application\beamrise.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\IminentMessenger [Key] . (...) -- C:\Program Files (x86)\Iminent\Iminent.Messengers.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\mobilegeni daemon [Key] . (...) -- C:\Program Files (x86)\Mobogenie\DaemonProcess.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\NextLive [Key] . (...) -- C:\Users\Starken\AppData\Roaming\newnext.me\nengine.dll (.not file.) O53 - SMSR:HKLM\...\startupreg\OpenOffice [Key] . (...) -- C:\Users\Starken\AppData\Roaming\OpenOffice.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\SweetIM [Key] . (...) -- C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe (.not file.) HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\yontoo-C4-1F04_RASAPI32 HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\yontoo-C4-1F04_RASMANCS [HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Beamrise] [HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\IminentMessenger] [HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\mobilegeni daemon] [HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\NextLive] [HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\SweetIM] C:\Users\Starken\AppData\Roaming\Mozilla\Firefox\Profiles\706j9t26.default-1388991465355\extensions\{9A7DF664-82DC-020F-C190-9A665AF83389} C:\Windows\Tasks\Sk-Enhancer-S-5902107913.job C:\Windows\System32\Tasks\Sk-Enhancer-S-5902107913 O4 - HKLM\..\RunOnce: [BrowserChoice] . (.Microsoft Corporation - Choix de navigateur .) -- C:\Windows\System32\browserchoice.exe O4 - HKLM\..\RunOnce: [ConnecitfyTemp ] cmd /Q /C rmdir /S /Q C:\Users\Starken\AppData\Local\Temp\Connectify\ => Temporary file not necessary O4 - HKLM\..\RunOnce: [ConnecitfyTemp e] cmd /Q /C rmdir /S /Q C:\Users\Starken\AppData\Local\Temp\Connectify\e => Temporary file not necessary O4 - HKLM\..\RunOnce: [ConnecitfyTemp 5] cmd /Q /C rmdir /S /Q C:\Users\Starken\AppData\Local\Temp\Connectify\5 => Temporary file not necessary O4 - HKCU\..\Run: [AdobeBridge] Clé orpheline => Orphean Key not necessary O4 - HKUS\S-1-5-21-3905478184-3407929709-2893840352-1000\..\Run: [AdobeBridge] Clé orpheline => Orphean Key not necessary [MD5.00000000000000000000000000000000] [APT] [DLL-Files FixerASKUSER] (...) -- C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe (.not file.) [0] => Dll-FIles.com - Dll-Files.com Fixer [MD5.00000000000000000000000000000000] [APT] [FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000Core] (...) -- C:\Users\Starken\AppData\Local\Facebook\Update\FacebookUpdate.exe (.not file.) [0] => Facebook Update Task User [MD5.00000000000000000000000000000000] [APT] [FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000UA] (...) -- C:\Users\Starken\AppData\Local\Facebook\Update\FacebookUpdate.exe (.not file.) [0] => Facebook Update Task User [MD5.00000000000000000000000000000000] [APT] [{1293686E-E6FC-411C-9DF2-0B81E3006AC0}] (...) -- C:\Users\Starken\Desktop\Brutus_2006_Setup.exe (.not file.) [0] => Fichier absent [MD5.00000000000000000000000000000000] [APT] [{593C3E5A-8D85-4316-826A-AEEEA3B677BA}] (...) -- C:\Program Files (x86)\FIFA 14\Game\fifa14-www.skidrowcrack.com.exe (.not file.) [0] => Crack, KeyGen, Keymaker - Possible Malware [MD5.00000000000000000000000000000000] [APT] [{7A454568-AC98-44CB-B400-2FEA772D9A2B}] (...) -- C:\Program Files (x86)\Call of Duty Black Ops 2\t6sp.exe (.not file.) [0] => Fichier absent [MD5.00000000000000000000000000000000] [APT] [{AEA75979-8230-4DAF-8EE9-48F40CA1365E}] (...) -- C:\Program Files (x86)\FIFA 14\Game\fifa14-www.skidrowcrack.com.exe (.not file.) [0] => Crack, KeyGen, Keymaker - Possible Malware [MD5.00000000000000000000000000000000] [APT] [{C9AACD5F-7511-4D1E-8C13-9286BB0C7DC7}] (...) -- C:\Program Files (x86)\Activision\Call of Duty Black Ops II\t6mp.exe (.not file.) [0] => Fichier absent [MD5.00000000000000000000000000000000] [APT] [{CD678142-38E5-4829-88BD-EB2860CBA37A}] (...) -- C:\Program Files (x86)\Call of Duty Black Ops 2\t6sp.exe (.not file.) [0] => Fichier absent [MD5.00000000000000000000000000000000] [APT] [{F3E5C63B-642D-4B29-BDDB-12DDA6C9990D}] (...) -- C:\Program Files (x86)\FIFA 14\Game\fifa14-www.skidrowcrack.com.exe (.not file.) [0] => Crack, KeyGen, Keymaker - Possible Malware O39 - APT: FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000Core - (...) -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000Core.job [914] => Facebook Update Task User O39 - APT: FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000Core - (...) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000Core [914] => Facebook Update Task User O39 - APT: FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000UA - (...) -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000UA.job [936] => Facebook Update Task User O39 - APT: FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000UA - (...) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000UA [936] => Facebook Update Task User O42 - Logiciel: WildTangent ORB Game Console - (.WildTangent.) [HKLM][64Bits] -- Game Console - WildGames => WildTangent O43 - CFD: 16/09/2014 - 16:50:12 - [] ----D C:\Program Files (x86)\Spybot - Search & Destroy 2 => Safer Networking Ltd - Spybot S&D O43 - CFD: 23/04/2014 - 07:05:19 - [] ----D C:\ProgramData\Spybot - Search & Destroy => Safer Networking Ltd - Spybot S&D O51 - MPSK:{55320f7c-2d4b-11e3-9101-e8039afe6f45}\AutoRun\command. (...) -- G:\Startme.exe (.not file.) => Fichier absent O51 - MPSK:{7a45195d-dbb2-11e2-8641-e8039afe6f45}\AutoRun\command. (...) -- E:\Startme.exe (.not file.) => Fichier absent O51 - MPSK:{bb923c45-674a-11e2-a13d-e8039afe6f45}\AutoRun\command. (...) -- E:\WD Drive Unlock.exe (.not file.) => Fichier absent O61 - LFC: 12/09/2014 - 17:48:57 ---A- . (...) -- C:\Users\Starken\AppData\Local\Temp\Quarantine.exe [377099] => Temporary file not necessary O61 - LFC: 16/09/2014 - 17:48:57 ---A- . (...) -- C:\Users\Starken\AppData\Local\Temp\jrt\get.bat [15230] => Temporary file not necessary O61 - LFC: 16/09/2014 - 17:48:57 ---A- . (...) -- C:\Users\Starken\AppData\Local\Temp\jrt\misc.bat [161115] => Temporary file not necessary O51 - MPSK:{36889ea1-3953-11e4-bf47-ad8298ed99c0}\AutoRun\command. (...) -- E:\autorun.exe (.not file.) [MD5.96CC36C3CBBFA52A0A1889546E1C00A2] - (...) -- C:\ProgramData\Avg_Update_0814avt\AVG-Secure-Search-Update_0814avt.exe [2774040] [PID.3032] B1 - OSP: search.ini [Starken] URL=http://dts.search.ask.com/sr?src=opb&gct=ds&appid=102&systemid=473&v=a10918-202&apn_uid=2340531627804653&apn_dtid=BND101&o=APN10640&apn_ptnrs=AG1&q=%s G0 - GCSP: Preference [User Data\Default][StartupURLs] http://www.search.ask.com/?o=APN10645A&gct=hp&d=406-725&t=4 O4 - HKCU\..\Run: [AVG-Secure-Search-Update_0814avt] . (...) -- C:\Users\Starken\AppData\Roaming\Avg_Update_0814avt\AVG-Secure-Search-Update_0814avt.exe O4 - HKUS\S-1-5-21-3905478184-3407929709-2893840352-1000\..\Run: [AVG-Secure-Search-Update_0814avt] . (...) -- C:\Users\Starken\AppData\Roaming\Avg_Update_0814avt\AVG-Secure-Search-Update_0814avt.exe [MD5.96CC36C3CBBFA52A0A1889546E1C00A2] [APT] [AVG_SYS_TASK_0814avt] (...) -- C:\ProgramData\Avg_Update_0814avt\AVG-Secure-Search-Update_0814avt.exe [2774040] [MD5.96CC36C3CBBFA52A0A1889546E1C00A2] [APT] [AVG_SYS_TASK_0814avt_DELETE] (...) -- C:\ProgramData\Avg_Update_0814avt\AVG-Secure-Search-Update_0814avt.exe [2774040] [HKCU\Software\SMTTB2009] O53 - SMSR:HKLM\...\startupreg\AVG-Secure-Search-Update_0913b [Key] . (...) -- C:\Users\Starken\AppData\Roaming\AVG 0913b Campaign\AVG-Secure-Search-Update-0913b.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\vProt [Key] . (...) -- C:\Program Files (x86)\AVG Nation toolbar\vprot.exe (.not file.) [HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\AVG-Secure-Search-Update_0913b] C:\ProgramData\Avg_Update_0814avt\AVG-Secure-Search-Update_0814avt.exe OPT:O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe OPT:O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe OPT:SS - | Disabled 31/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe O4 - HKCU\..\Run: [AdobeBridge] Clé orpheline O4 - HKUS\S-1-5-21-3905478184-3407929709-2893840352-1000\..\Run: [AdobeBridge] Clé orpheline [MD5.00000000000000000000000000000000] [APT] [AdobeFlashPlayerUpdate] (...) -- C:\windows\SysWOW64\FlashPlayerUpdateService.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [AdobeFlashPlayerUpdate 2] (...) -- C:\windows\SysWOW64\FlashPlayerUpdateService.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{593C3E5A-8D85-4316-826A-AEEEA3B677BA}] (...) -- C:\Program Files (x86)\FIFA 14\Game\fifa14-www.skidrowcrack.com.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{7A454568-AC98-44CB-B400-2FEA772D9A2B}] (...) -- C:\Program Files (x86)\Call of Duty Black Ops 2\t6sp.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{AEA75979-8230-4DAF-8EE9-48F40CA1365E}] (...) -- C:\Program Files (x86)\FIFA 14\Game\fifa14-www.skidrowcrack.com.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{C9AACD5F-7511-4D1E-8C13-9286BB0C7DC7}] (...) -- C:\Program Files (x86)\Activision\Call of Duty Black Ops II\t6mp.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{CD678142-38E5-4829-88BD-EB2860CBA37A}] (...) -- C:\Program Files (x86)\Call of Duty Black Ops 2\t6sp.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{F3E5C63B-642D-4B29-BDDB-12DDA6C9990D}] (...) -- C:\Program Files (x86)\FIFA 14\Game\fifa14-www.skidrowcrack.com.exe (.not file.) [0] O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.) O51 - MPSK:{36889ea1-3953-11e4-bf47-ad8298ed99c0}\AutoRun\command. (...) -- E:\autorun.exe (.not file.) O51 - MPSK:{55320f7c-2d4b-11e3-9101-e8039afe6f45}\AutoRun\command. (...) -- G:\Startme.exe (.not file.) O51 - MPSK:{7a45195d-dbb2-11e2-8641-e8039afe6f45}\AutoRun\command. (...) -- E:\Startme.exe (.not file.) O51 - MPSK:{bb923c45-674a-11e2-a13d-e8039afe6f45}\AutoRun\command. (...) -- E:\WD Drive Unlock.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\mobilegeni daemon [Key] . (...) -- C:\Program Files (x86)\Mobogenie\DaemonProcess.exe (.not file.) O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Not Key.) O41 - Driver: (avgtp) . (.AVG Technologies - Pas de description.) - C:\windows\system32\drivers\avgtpx64.sys O42 - Logiciel: Visual Studio 2010 x64 Redistributables - (.AVG Technologies.) [HKLM][64Bits] -- {21B133D6-5979-47F0-BE1C-F6A6B304693F} O42 - Logiciel: Visual Studio 2012 x64 Redistributables - (.AVG Technologies.) [HKLM][64Bits] -- {8C775E70-A791-4DA8-BCC3-6AB7136F4484} O42 - Logiciel: Visual Studio 2012 x86 Redistributables - (.AVG Technologies CZ, s.r.o..) [HKLM][64Bits] -- {98EFF19A-30AB-4E4B-B943-F06B1C63EBF8} [HKCU\Software\Avg Secure Update] [HKCU\Software\MCAFEE] [HKLM\Software\Wow6432Node\Avg Secure Update] [HKLM\Software\Wow6432Node\McAfee.com] [HKLM\Software\Wow6432Node\Symantec] O43 - CFD: 24/01/2013 - 01:40:57 - [] ----D C:\Program Files (x86)\Norton Internet Security O43 - CFD: 16/09/2014 - 16:50:12 - [] ----D C:\Program Files (x86)\Spybot - Search & Destroy 2 O43 - CFD: 24/01/2013 - 01:12:43 - [] ----D C:\Program Files (x86)\Common Files\Symantec Shared O43 - CFD: 21/01/2014 - 11:36:30 - [] ----D C:\ProgramData\McAfee O43 - CFD: 23/04/2014 - 07:05:19 - [] ----D C:\ProgramData\Spybot - Search & Destroy O53 - SMSR:HKLM\...\startupreg\AVG-Secure-Search-Update_0913b [Key] . (...) -- C:\Users\Starken\AppData\Roaming\AVG 0913b Campaign\AVG-Secure-Search-Update-0913b.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\Norton Online Backup [Key] . (...) -- C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\vProt [Key] . (...) -- C:\Program Files (x86)\AVG Nation toolbar\vprot.exe (.not file.) O58 - SDL:02/10/2013 - 23:12:54 ---A- . (.AVG Technologies - Pas de description.) -- C:\Windows\System32\Drivers\avgtpx64.sys [46368] O64 - Services: CurCS - 02/10/2013 - C:\windows\system32\drivers\avgtpx64.sys (avgtp) .(.AVG Technologies - Pas de description.) - LEGACY_AVGTP O53 - SMSR:HKLM\...\startupreg\AVG_UI [Key] . (...) -- C:\Program Files (x86)\AVG\AVG2013\avgui.exe (.not file.) [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:8080 [MD5.96CC36C3CBBFA52A0A1889546E1C00A2] - (...) -- C:\ProgramData\Avg_Update_0814avt\AVG-Secure-Search-Update_0814avt.exe [2774040] [PID.3032] P2 - FPN: [HKCU] [@Skype Limited.com/Facebook Video Calling Plugin] - (...) -- C:\Users\Starken\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (.not file.) O4 - HKCU\..\Run: [AVG-Secure-Search-Update_0814avt] . (...) -- C:\Users\Starken\AppData\Roaming\Avg_Update_0814avt\AVG-Secure-Search-Update_0814avt.exe O4 - HKUS\S-1-5-21-3905478184-3407929709-2893840352-1000\..\Run: [AVG-Secure-Search-Update_0814avt] . (...) -- C:\Users\Starken\AppData\Roaming\Avg_Update_0814avt\AVG-Secure-Search-Update_0814avt.exe [MD5.00000000000000000000000000000000] [APT] [{1293686E-E6FC-411C-9DF2-0B81E3006AC0}] (...) -- C:\Users\Starken\Desktop\Brutus_2006_Setup.exe (.not file.) [0] O43 - CFD: 25/11/2013 - 21:45:30 - [] ----D C:\ProgramData\ma-config.com O53 - SMSR:HKLM\...\startupreg\Beamrise [Key] . (...) -- C:\Users\Starken\AppData\Local\Beamrise\Application\beamrise.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\Facebook Update [Key] . (...) -- C:\Users\Starken\AppData\Local\Facebook\Update\FacebookUpdate.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\NextLive [Key] . (...) -- C:\Users\Starken\AppData\Roaming\newnext.me\nengine.dll (.not file.) O61 - LFC: 12/09/2014 - 17:48:42 ---A- . (...) -- C:\Users\Starken\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Quarantine.exe [377099] O61 - LFC: 12/09/2014 - 17:48:44 ---A- . (...) -- C:\Users\Starken\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Quarantine.exe [377099] O61 - LFC: 12/09/2014 - 17:48:46 ---A- . (...) -- C:\Users\Starken\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Quarantine.exe [377099] O61 - LFC: 12/09/2014 - 17:48:48 ---A- . (...) -- C:\Users\Starken\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Quarantine.exe [377099] O61 - LFC: 12/09/2014 - 17:48:49 ---A- . (...) -- C:\Users\Starken\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Quarantine.exe [377099] O61 - LFC: 12/09/2014 - 17:48:51 ---A- . (...) -- C:\Users\Starken\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Quarantine.exe [377099] O61 - LFC: 12/09/2014 - 17:48:53 ---A- . (...) -- C:\Users\Starken\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Quarantine.exe [377099] O61 - LFC: 12/09/2014 - 17:48:54 ---A- . (...) -- C:\Users\Starken\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Quarantine.exe [377099] O61 - LFC: 12/09/2014 - 17:48:55 ---A- . (...) -- C:\Users\Starken\AppData\Local\Application Data\Application Data\Application Data\Application Data\Temp\Quarantine.exe [377099] O61 - LFC: 12/09/2014 - 17:48:55 ---A- . (...) -- C:\Users\Starken\AppData\Local\Application Data\Application Data\Application Data\Temp\Quarantine.exe [377099] O61 - LFC: 12/09/2014 - 17:48:56 ---A- . (...) -- C:\Users\Starken\AppData\Local\Application Data\Application Data\Temp\Quarantine.exe [377099] O61 - LFC: 12/09/2014 - 17:48:56 ---A- . (...) -- C:\Users\Starken\AppData\Local\Application Data\Temp\Quarantine.exe [377099] O61 - LFC: 12/09/2014 - 17:48:57 ---A- . (...) -- C:\Users\Starken\AppData\Local\Temp\Quarantine.exe [377099] O61 - LFC: 12/09/2014 - 17:49:24 ---A- . (...) -- C:\Users\Starken\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Quarantine.exe [377099] O61 - LFC: 12/09/2014 - 17:49:24 ---A- . (...) -- C:\Users\Starken\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Quarantine.exe [377099] O61 - LFC: 12/09/2014 - 17:49:25 ---A- . (...) -- C:\Users\Starken\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Quarantine.exe [377099] O61 - LFC: 12/09/2014 - 17:49:27 ---A- . (...) -- C:\Users\Starken\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Quarantine.exe [377099] O61 - LFC: 12/09/2014 - 17:49:28 ---A- . (...) -- C:\Users\Starken\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Quarantine.exe [377099] O61 - LFC: 12/09/2014 - 17:49:29 ---A- . (...) -- C:\Users\Starken\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Quarantine.exe [377099] O61 - LFC: 12/09/2014 - 17:49:31 ---A- . (...) -- C:\Users\Starken\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Quarantine.exe [377099] O61 - LFC: 12/09/2014 - 17:49:32 ---A- . (...) -- C:\Users\Starken\Local Settings\Application Data\Application Data\Application Data\Application Data\Application Data\Temp\Quarantine.exe [377099] O61 - LFC: 12/09/2014 - 17:49:33 ---A- . (...) -- C:\Users\Starken\Local Settings\Application Data\Application Data\Application Data\Application Data\Temp\Quarantine.exe [377099] O61 - LFC: 12/09/2014 - 17:49:34 ---A- . (...) -- C:\Users\Starken\Local Settings\Application Data\Application Data\Application Data\Temp\Quarantine.exe [377099] O61 - LFC: 12/09/2014 - 17:49:35 ---A- . (...) -- C:\Users\Starken\Local Settings\Application Data\Application Data\Temp\Quarantine.exe [377099] O61 - LFC: 12/09/2014 - 17:49:36 ---A- . (...) -- C:\Users\Starken\Local Settings\Application Data\Temp\Quarantine.exe [377099] O61 - LFC: 12/09/2014 - 17:49:36 ---A- . (...) -- C:\Users\Starken\Local Settings\Temp\Quarantine.exe [377099] C:\ProgramData\Avg_Update_0814avt\AVG-Secure-Search-Update_0814avt.exe B1 - OSP: search.ini [Starken] URL=http://dts.search.ask.com/sr?src=opb&gct=ds&appid=102&systemid=473&v=a10918-202&apn_uid=2340531627804653&apn_dtid=BND101&o=APN10640&apn_ptnrs=AG1&q=%s G0 - GCSP: Preference [User Data\Default][StartupURLs] http://www.search.ask.com/?o=APN10645A&gct=hp&d=406-725&t=4 M2 - MFEP: prefs.js [Starken - 706j9t26.default-1388991465355\{9A7DF664-82DC-020F-C190-9A665AF83389}] [] Ask New Tabs v5.0.0.12130 (..) [MD5.159910032BEAE78087AB6527B429005C] [APT] [ADNGamesUpdateTaskMachineCore] (.ADNGamesOU.) -- C:\Program Files (x86)\ADNGames\Update\GoogleUpdate.exe [141040] [MD5.159910032BEAE78087AB6527B429005C] [APT] [ADNGamesUpdateTaskMachineUA] (.ADNGamesOU.) -- C:\Program Files (x86)\ADNGames\Update\GoogleUpdate.exe [141040] [MD5.96CC36C3CBBFA52A0A1889546E1C00A2] [APT] [AVG_SYS_TASK_0814avt] (...) -- C:\ProgramData\Avg_Update_0814avt\AVG-Secure-Search-Update_0814avt.exe [2774040] [MD5.96CC36C3CBBFA52A0A1889546E1C00A2] [APT] [AVG_SYS_TASK_0814avt_DELETE] (...) -- C:\ProgramData\Avg_Update_0814avt\AVG-Secure-Search-Update_0814avt.exe [2774040] [MD5.00000000000000000000000000000000] [APT] [DLL-Files FixerASKUSER] (...) -- C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000Core] (...) -- C:\Users\Starken\AppData\Local\Facebook\Update\FacebookUpdate.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000UA] (...) -- C:\Users\Starken\AppData\Local\Facebook\Update\FacebookUpdate.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [Sk-Enhancer-S-5902107913] (...) -- c:\programdata\quickset\sk-enhancer\Sk-Enhancer.exe (.not file.) [0] O39 - APT: ADNGamesUpdateTaskMachineCore - (.ADNGamesOU.) -- C:\Windows\Tasks\ADNGamesUpdateTaskMachineCore.job [900] O39 - APT: ADNGamesUpdateTaskMachineCore - (.ADNGamesOU.) -- C:\Windows\System32\Tasks\ADNGamesUpdateTaskMachineCore [900] O39 - APT: ADNGamesUpdateTaskMachineUA - (.ADNGamesOU.) -- C:\Windows\Tasks\ADNGamesUpdateTaskMachineUA.job [904] O39 - APT: ADNGamesUpdateTaskMachineUA - (.ADNGamesOU.) -- C:\Windows\System32\Tasks\ADNGamesUpdateTaskMachineUA [904] O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002] O39 - APT: AVG_SYS_TASK_0814avt - (...) -- C:\Windows\Tasks\AVG_SYS_TASK_0814avt.job [528] O39 - APT: AVG_SYS_TASK_0814avt - (...) -- C:\Windows\System32\Tasks\AVG_SYS_TASK_0814avt [528] O39 - APT: AVG_SYS_TASK_0814avt_DELETE - (...) -- C:\Windows\Tasks\AVG_SYS_TASK_0814avt_DELETE.job [394] O39 - APT: AVG_SYS_TASK_0814avt_DELETE - (...) -- C:\Windows\System32\Tasks\AVG_SYS_TASK_0814avt_DELETE [394] O39 - APT: DLL-Files FixerASKUSER - (...) -- C:\Windows\Tasks\DLL-Files FixerASKUSER.job [288] O39 - APT: DLL-Files FixerASKUSER - (...) -- C:\Windows\System32\Tasks\DLL-Files FixerASKUSER [288] O39 - APT: FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000Core - (...) -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000Core.job [914] O39 - APT: FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000Core - (...) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000Core [914] O39 - APT: FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000UA - (...) -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000UA.job [936] O39 - APT: FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000UA - (...) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000UA [936] O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1066] O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1070] O39 - APT: ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon - (.Intel Corporation.) -- C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job [828] O39 - APT: ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon - (.Intel Corporation.) -- C:\Windows\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon [828] O39 - APT: ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d - (.Intel Corporation.) -- C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job [830] O39 - APT: ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d - (.Intel Corporation.) -- C:\Windows\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d [830] O39 - APT: Sk-Enhancer-S-5902107913 - (...) -- C:\Windows\Tasks\Sk-Enhancer-S-5902107913.job [456] O39 - APT: Sk-Enhancer-S-5902107913 - (...) -- C:\Windows\System32\Tasks\Sk-Enhancer-S-5902107913 [456] ~ Scheduled Task: 55 Scanned in 00mn 04s [HKCU\Software\Basket] O53 - SMSR:HKLM\...\startupreg\IminentMessenger [Key] . (...) -- C:\Program Files (x86)\Iminent\Iminent.Messengers.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\SweetIM [Key] . (...) -- C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe (.not file.) O4 - HKCU\..\Run: [AVG-Secure-Search-Update_0814avt] . (...) -- C:\Users\Starken\AppData\Roaming\Avg_Update_0814avt\AVG-Secure-Search-Update_0814avt.exe =>Toolbar.AVGSearch O4 - HKUS\S-1-5-21-3905478184-3407929709-2893840352-1000\..\Run: [AVG-Secure-Search-Update_0814avt] . (...) -- C:\Users\Starken\AppData\Roaming\Avg_Update_0814avt\AVG-Secure-Search-Update_0814avt.exe =>Toolbar.AVGSearch [MD5.159910032BEAE78087AB6527B429005C] [APT] [ADNGamesUpdateTaskMachineCore] (.ADNGamesOU.) -- C:\Program Files (x86)\ADNGames\Update\GoogleUpdate.exe [141040] [MD5.159910032BEAE78087AB6527B429005C] [APT] [ADNGamesUpdateTaskMachineUA] (.ADNGamesOU.) -- C:\Program Files (x86)\ADNGames\Update\GoogleUpdate.exe [141040] [MD5.FBB312C9DA3863673EC18F4AE4101778] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [267440] [MD5.320681DF28D82CDCA7E3EED0846625DB] [APT] [AdobeAAMUpdater-1.0-Starken-PC-Starken] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904] [MD5.00000000000000000000000000000000] [APT] [AdobeFlashPlayerUpdate] (...) -- C:\windows\SysWOW64\FlashPlayerUpdateService.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [AdobeFlashPlayerUpdate 2] (...) -- C:\windows\SysWOW64\FlashPlayerUpdateService.exe (.not file.) [0] [MD5.81471CD8F0A6B46DF021C507B56F47C4] [APT] [advSRS5] (.SEC.) -- C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe [4471416] [MD5.96CC36C3CBBFA52A0A1889546E1C00A2] [APT] [AVG_SYS_TASK_0814avt] (...) -- C:\ProgramData\Avg_Update_0814avt\AVG-Secure-Search-Update_0814avt.exe [2774040] =>Toolbar.AVGSearch [MD5.96CC36C3CBBFA52A0A1889546E1C00A2] [APT] [AVG_SYS_TASK_0814avt_DELETE] (...) -- C:\ProgramData\Avg_Update_0814avt\AVG-Secure-Search-Update_0814avt.exe [2774040] =>Toolbar.AVGSearch [MD5.E7CDBC01674477840A64965E784374DE] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [4370712] [MD5.00000000000000000000000000000000] [APT] [DLL-Files FixerASKUSER] (...) -- C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe (.not file.) [0] [MD5.0FD6066698EC53DCF1015839857958EE] [APT] [EasyDisplayMgr] (.Samsung Electronics Co., Ltd..) -- C:\Program Files (x86)\Samsung\Easy Settings\dmhkcore.exe [1113992] [MD5.00000000000000000000000000000000] [APT] [FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000Core] (...) -- C:\Users\Starken\AppData\Local\Facebook\Update\FacebookUpdate.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000UA] (...) -- C:\Users\Starken\AppData\Local\Facebook\Update\FacebookUpdate.exe (.not file.) [0] [MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648] [MD5.506708142BC63DABA64F2D3AD1DCD5BF] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648] [MD5.CD26C031E9BE9FF451FF082AE77F5284] [APT] [ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d] (.Intel Corporation.) -- C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [233792] [MD5.CD26C031E9BE9FF451FF082AE77F5284] [APT] [ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon] (.Intel Corporation.) -- C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [233792] [MD5.B00F98FF6FE8682FF941BEB2559BF191] [APT] [MirageAgent] (.CyberLink.) -- C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488] [MD5.013CBC83D1C8131EB623567EF4D3FFCC] [APT] [RealDownloaderDownloaderScheduledTaskS-1-5-21-3905478184-3407929709-2893840352-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [233048] [MD5.866EE842A198288A0F41F04E97930040] [APT] [RealDownloaderRealUpgradeLogonTaskS-1-5-21-3905478184-3407929709-2893840352-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [187984] [MD5.866EE842A198288A0F41F04E97930040] [APT] [RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3905478184-3407929709-2893840352-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [187984] [MD5.490D5ADBC56297DB10BC57496C14C357] [APT] [RealPlayerRealUpgradeLogonTaskS-1-5-21-3905478184-3407929709-2893840352-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [187984] [MD5.490D5ADBC56297DB10BC57496C14C357] [APT] [RealPlayerRealUpgradeScheduledTaskS-1-5-21-3905478184-3407929709-2893840352-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [187984] [MD5.00000000000000000000000000000000] [APT] [Sk-Enhancer-S-5902107913] (...) -- c:\programdata\quickset\sk-enhancer\Sk-Enhancer.exe (.not file.) [0] =>Adware.SurfAndKeep [MD5.65DAC8E18FA734305100566484433F3A] [APT] [{052E4CF2-EE0B-47C9-9841-CC4399DF3976}] (.Adobe Systems, Incorporated.) -- C:\Program Files\Adobe\Adobe Premiere Pro CS5\Adobe Premiere Pro.exe [632560] [MD5.00000000000000000000000000000000] [APT] [{1293686E-E6FC-411C-9DF2-0B81E3006AC0}] (...) -- C:\Users\Starken\Desktop\Brutus_2006_Setup.exe (.not file.) [0] [MD5.65DAC8E18FA734305100566484433F3A] [APT] [{1D17E23A-7890-4B6A-B25B-56DBA3F6A79E}] (.Adobe Systems, Incorporated.) -- C:\Program Files\Adobe\Adobe Premiere Pro CS5\Adobe Premiere Pro.exe [632560] [MD5.AF5C8DAB97C8895905F3D56EDAB6F05D] [APT] [{2DE95BDF-7BC8-4261-BEAB-F34430BD4A84}] (.2K Sports.) -- C:\Program Files (x86)\2K Sports\NBA 2K14\nba2k14.exe [17546240] [MD5.0ED4429047D0DE63FF94FFA265A16670] [APT] [{3EFEC4A0-9968-44ED-80F0-6A6A846FF0D8}] (...) -- C:\Program Files (x86)\The King Of Fighters XIII\kofxiii.exe [4271616] [MD5.00000000000000000000000000000000] [APT] [{593C3E5A-8D85-4316-826A-AEEEA3B677BA}] (...) -- C:\Program Files (x86)\FIFA 14\Game\fifa14-www.skidrowcrack.com.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{7A454568-AC98-44CB-B400-2FEA772D9A2B}] (...) -- C:\Program Files (x86)\Call of Duty Black Ops 2\t6sp.exe (.not file.) [0] [MD5.AF5C8DAB97C8895905F3D56EDAB6F05D] [APT] [{83643C3C-0C84-43F7-BBAE-0C6533411336}] (.2K Sports.) -- C:\Program Files (x86)\2K Sports\NBA 2K14\nba2k14.exe [17546240] [MD5.00000000000000000000000000000000] [APT] [{AEA75979-8230-4DAF-8EE9-48F40CA1365E}] (...) -- C:\Program Files (x86)\FIFA 14\Game\fifa14-www.skidrowcrack.com.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{C9AACD5F-7511-4D1E-8C13-9286BB0C7DC7}] (...) -- C:\Program Files (x86)\Activision\Call of Duty Black Ops II\t6mp.exe (.not file.) [0] [MD5.D0C5FF1B39AB6DC43DE2B5E35A2D8E4A] [APT] [{CBD641B9-1274-4F95-AF82-95B636B49BB6}] (.Apple Inc..) -- C:\Users\Starken\Documents\LOGICIEL\QuickTimeInstaller.exe [41945432] [MD5.00000000000000000000000000000000] [APT] [{CD678142-38E5-4829-88BD-EB2860CBA37A}] (...) -- C:\Program Files (x86)\Call of Duty Black Ops 2\t6sp.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{F3E5C63B-642D-4B29-BDDB-12DDA6C9990D}] (...) -- C:\Program Files (x86)\FIFA 14\Game\fifa14-www.skidrowcrack.com.exe (.not file.) [0] [MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984] O39 - APT: ADNGamesUpdateTaskMachineCore - (.ADNGamesOU.) -- C:\Windows\Tasks\ADNGamesUpdateTaskMachineCore.job [900] O39 - APT: ADNGamesUpdateTaskMachineCore - (.ADNGamesOU.) -- C:\Windows\System32\Tasks\ADNGamesUpdateTaskMachineCore [900] O39 - APT: ADNGamesUpdateTaskMachineUA - (.ADNGamesOU.) -- C:\Windows\Tasks\ADNGamesUpdateTaskMachineUA.job [904] O39 - APT: ADNGamesUpdateTaskMachineUA - (.ADNGamesOU.) -- C:\Windows\System32\Tasks\ADNGamesUpdateTaskMachineUA [904] O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002] O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002] O39 - APT: AVG_SYS_TASK_0814avt - (...) -- C:\Windows\Tasks\AVG_SYS_TASK_0814avt.job [528] O39 - APT: AVG_SYS_TASK_0814avt - (...) -- C:\Windows\System32\Tasks\AVG_SYS_TASK_0814avt [528] O39 - APT: AVG_SYS_TASK_0814avt_DELETE - (...) -- C:\Windows\Tasks\AVG_SYS_TASK_0814avt_DELETE.job [394] O39 - APT: AVG_SYS_TASK_0814avt_DELETE - (...) -- C:\Windows\System32\Tasks\AVG_SYS_TASK_0814avt_DELETE [394] O39 - APT: DLL-Files FixerASKUSER - (...) -- C:\Windows\Tasks\DLL-Files FixerASKUSER.job [288] O39 - APT: DLL-Files FixerASKUSER - (...) -- C:\Windows\System32\Tasks\DLL-Files FixerASKUSER [288] O39 - APT: FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000Core - (...) -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000Core.job [914] O39 - APT: FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000Core - (...) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000Core [914] O39 - APT: FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000UA - (...) -- C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000UA.job [936] O39 - APT: FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000UA - (...) -- C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3905478184-3407929709-2893840352-1000UA [936] O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1066] O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore [1066] O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1070] O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1070] O39 - APT: ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon - (.Intel Corporation.) -- C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job [828] O39 - APT: ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon - (.Intel Corporation.) -- C:\Windows\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon [828] O39 - APT: ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d - (.Intel Corporation.) -- C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job [830] O39 - APT: ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d - (.Intel Corporation.) -- C:\Windows\System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d [830] O39 - APT: Sk-Enhancer-S-5902107913 - (...) -- C:\Windows\Tasks\Sk-Enhancer-S-5902107913.job [456] =>Adware.SurfAndKeep O39 - APT: Sk-Enhancer-S-5902107913 - (...) -- C:\Windows\System32\Tasks\Sk-Enhancer-S-5902107913 [456] =>Adware.SurfAndKeep O42 - Logiciel: S?????? f?t???af??? - (.Microsoft Corporation.) [HKLM][64Bits] -- {2D5C287A-1D2D-46BA-8EF8-D2747575DB6E} O42 - Logiciel: ?????????? - (.Microsoft Corporation.) [HKLM][64Bits] -- {B27EB36C-9860-42FD-AA90-23648E49F15C} O42 - Logiciel: ??????????? - (.Microsoft Corporation.) [HKLM][64Bits] -- {3AAB928E-40E9-4DC5-A9CC-FB979E1B2C03} O42 - Logiciel: ?????????? (????????????? ??????) - (.Microsoft Corporation.) [HKLM][64Bits] -- {7D6C9057-7F50-4CAB-A557-A68A7932B48E} O42 - Logiciel: ?????? ??????? - (.Microsoft Corporation.) [HKLM][64Bits] -- {F1BEEA80-1419-45EE-A4C7-41FD4450ED92} O42 - Logiciel: ???? ????? - (.Microsoft Corporation.) [HKLM][64Bits] -- {CF15F988-98D4-479F-9750-85A495BF8233} O42 - Logiciel: ???? - (.Microsoft Corporation.) [HKLM][64Bits] -- {D3F0882C-4948-4BAA-9720-47CC4D9AEF54} O42 - Logiciel: ??? - (.Microsoft Corporation.) [HKLM][64Bits] -- {E9BAA7A4-4397-4DE7-8C01-5A39B24F17F2} O42 - Logiciel: ?? ??? - (.Microsoft Corporation.) [HKLM][64Bits] -- {72CA45B4-0A70-45F5-B447-F6FC0795918D} C:\Documents and Settings\Starken\Documents\LOGICIEL\Atomix Virtual DJ Pro 7.3 FINAL FULL CRACKED\install_virtualdj_pro_v7.3.msi C:\Documents and Settings\Starken\Documents\LOGICIEL\IDM 6.0.9 Build 3 Cracked BlinDHackeR\IDMan.exe C:\Documents and Settings\Starken\Documents\Mes images\Call of Duty Ghosts keygen 2013.rar =>.Crack,Keygen C:\Documents and Settings\Starken\Downloads\CCleaner 4.09.4471 Pro & Business Edtion + Crack - neilsp\Cracker - logiciel\Cracker.exe =>.Crack,Keygen C:\Documents and Settings\Starken\Downloads\Skullgirls.Incl.Squigly.DLC.Cracked-3DM\Skullgirls\SkullGirls.exe C:\Documents and Settings\Starken\Downloads\Skullgirls.Incl.Squigly.DLC.Cracked-3DM\Skullgirls\_CommonRedist\DirectX\dxwebsetup.exe C:\Documents and Settings\Starken\Downloads\Skullgirls.Incl.Squigly.DLC.Cracked-3DM\Skullgirls\_CommonRedist\vcredist\2008\vcredist_x64.exe C:\Documents and Settings\Starken\Downloads\Skullgirls.Incl.Squigly.DLC.Cracked-3DM\Skullgirls\_CommonRedist\vcredist\2008\vcredist_x86.exe C:\Documents and Settings\Starken\Downloads\Sony ACID Pro 7.0.641.Keygen\acidpro70.exe C:\Documents and Settings\Starken\Downloads\Sony ACID Pro 7.0.641.Keygen\Sony ACID Pro 7.0.641.Keygen.rar C:\Documents and Settings\Starken\Mes documents\LOGICIEL\Atomix Virtual DJ Pro 7.3 FINAL FULL CRACKED\install_virtualdj_pro_v7.3.msi C:\Documents and Settings\Starken\Mes documents\LOGICIEL\IDM 6.0.9 Build 3 Cracked BlinDHackeR\IDMan.exe C:\Documents and Settings\Starken\Mes documents\Mes images\Call of Duty Ghosts keygen 2013.rar C:\Documents and Settings\Starken\Pictures\Call of Duty Ghosts keygen 2013.rar C:\Users\Starken\Documents\LOGICIEL\Atomix Virtual DJ Pro 7.3 FINAL FULL CRACKED\install_virtualdj_pro_v7.3.msi C:\Users\Starken\Documents\LOGICIEL\IDM 6.0.9 Build 3 Cracked BlinDHackeR\IDMan.exe C:\Users\Starken\Documents\Mes images\Call of Duty Ghosts keygen 2013.rar C:\Users\Starken\Downloads\CCleaner 4.09.4471 Pro & Business Edtion + Crack - neilsp\Cracker - logiciel\Cracker.exe C:\Users\Starken\Downloads\Skullgirls.Incl.Squigly.DLC.Cracked-3DM\Skullgirls\SkullGirls.exe C:\Users\Starken\Downloads\Skullgirls.Incl.Squigly.DLC.Cracked-3DM\Skullgirls\_CommonRedist\DirectX\dxwebsetup.exe =>.Crack,Keygen C:\Users\Starken\Downloads\Skullgirls.Incl.Squigly.DLC.Cracked-3DM\Skullgirls\_CommonRedist\vcredist\2008\vcredist_x64.exe =>.Crack,Keygen C:\Users\Starken\Downloads\Skullgirls.Incl.Squigly.DLC.Cracked-3DM\Skullgirls\_CommonRedist\vcredist\2008\vcredist_x86.exe C:\Users\Starken\Downloads\Sony ACID Pro 7.0.641.Keygen\acidpro70.exe C:\Users\Starken\Downloads\Sony ACID Pro 7.0.641.Keygen\Sony ACID Pro 7.0.641.Keygen.rar C:\Users\Starken\Mes documents\LOGICIEL\Atomix Virtual DJ Pro 7.3 FINAL FULL CRACKED\install_virtualdj_pro_v7.3.msi C:\Users\Starken\Mes documents\LOGICIEL\IDM 6.0.9 Build 3 Cracked BlinDHackeR\IDMan.exe =>.Crack,Keygen C:\Users\Starken\Mes documents\Mes images\Call of Duty Ghosts keygen 2013.rar C:\Users\Starken\Pictures\Call of Duty Ghosts keygen 2013.rar ~ Files: Scanned in 03mn 42s O55 - MWPS:[HKCU\...\Policies\System] - "DisableTaskMgr"=0 HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\yontoo-C4-1F04_RASAPI32 HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\yontoo-C4-1F04_RASMANCS [HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\IminentMessenger] [HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\SweetIM] C:\Users\Starken\AppData\Roaming\Mozilla\Firefox\Profiles\706j9t26.default-1388991465355\extensions\{9A7DF664-82DC-020F-C190-9A665AF83389} C:\Windows\Tasks\Sk-Enhancer-S-5902107913.job C:\Windows\System32\Tasks\Sk-Enhancer-S-5902107913 G2 - GCE: Preference [User Data\Default] [bepbmhgboaologfdajaanbcjmnhjmhfn] Google Voice Search Hotword (Beta) v.0.1.1.5023, (Désactivé) G2 - GCE: Preference [User Data\Default] [fnefekibahpibgnllfjpckodgobkpije] ObviousIdea v.2.0 (Désactivé) G2 - GCE: Preference [User Data\Default] [idhngdhcfkoamngbedgpaokgjbnpdiji] RealDownloader v.1.3.2 (Désactivé) FirewallRaz ProxyFix EmptyPrefetch EmptyFlash EmptyTemp