Start
Winlogon\Notify\cryptnet32: cryptnet32.dll [X]
HKU\S-1-5-21-839522115-602609370-725345543-500\...\Winlogon: [Shell] C:\WINDOWS\Explorer.exe [1032192 2002-12-31] (Microsoft Corporation) <==== ATTENTION
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
IFEO\jumpflip: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\searchinstaller.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\searchprotector.exe: [Debugger] tasklist.exe
IFEO\searchsettings.exe: [Debugger] tasklist.exe
IFEO\searchsettings64.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\umbrella.exe: [Debugger] tasklist.exe
IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
IFEO\volaro: [Debugger] tasklist.exe
IFEO\vonteera: [Debugger] tasklist.exe
IFEO\websteroids.exe: [Debugger] tasklist.exe
IFEO\websteroidsservice.exe: [Debugger] tasklist.exe
U3 a9rbirm8; C:\WINDOWS\system32\Drivers\a9rbirm8.sys [0 ] (Microsoft Corporation)
C:\WINDOWS\system32\Drivers\a9rbirm8.sys
S3 247F0456; \??\c:\documents and settings\administrator\local settings\temp\247F0456.sys [X]
c:\documents and settings\administrator\local settings\temp\247F0456.sys
R1 F06DEFF2-5B9C-490D-910F-35D3A9119622; C:\Program Files\Settings Manager\systemk\systemkmgrc2.cfg [34192 2014-07-17] (Aztec Media Inc)
C:\Program Files\Settings Manager\systemk\systemkmgrc2.cfg 
NETSVC: SSHNAS -> No Registry Path.
(Aztec Media Inc) C:\Program Files\Settings Manager\systemk\SystemkService.exe
() C:\Program Files\AVG SafeGuard toolbar\AVG-Secure-Search-Update_0414c.exe
HKLM\...\AppCertDlls: [x86] -> C:\Program Files\Settings Manager\systemk\sysapcrt.dll [489488 2014-07-17] ()
HKLM\...\AppCertDlls: [x64] -> c:\program files\settings manager\systemk\x64\sysapcrt.dll
C:\Program Files\Settings Manager\systemk\sysapcrt.dll
c:\program files\settings manager\systemk\x64\sysapcrt.dll
URLSearchHook: HKCU - (No Name) - {00000000-6E41-4FD3-8538-502F5495E5FC} - No File
URLSearchHook: HKCU - Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll No File
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2455} URL = http://search.fantastigames.co...5&sr=0&q={searchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2503} URL = http://www.default-search.net/...amp;src=ds&p={searchTerms}
SearchScopes: HKCU - DefaultScope {AFEBF3B3-EA16-4D43-A16C-629A990B6BEC} URL = http://search.softonic.com/INF...00000000001d7d5161ca&r=593
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://mysearch.avg.com/search...id=&pr=sa&d=2014-03-24 17:35:39&v=18.0.5.292&pid=safeguard&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2455} URL = http://search.fantastigames.co...5&sr=0&q={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2503} URL = http://www.default-search.net/...amp;src=ds&p={searchTerms}
SearchScopes: HKCU - {AFEBF3B3-EA16-4D43-A16C-629A990B6BEC} URL = http://search.softonic.com/INF...00000000001d7d5161ca&r=593
BHO: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
CHR HomePage: hxxp://search.softonic.com/INF00176/tb_v1?SearchSource=48&cc=&mi=e844c02f000000000000001d7d5161ca
CHR RestoreOnStartup: "hxxp://search.softonic.com/INF00176/tb_v1?SearchSource=48&cc=&mi=e844c02f000000000000001d7d5161ca"
CHR DefaultSearchURL: http://search.softonic.com/INF...44c02f000000000000001d7d5161ca
R2 SystemkService; C:\Program Files\Settings Manager\systemk\SystemkService.exe [3572240 2014-07-17] (Aztec Media Inc)
S4 FAH@E:+FAH.exe; E:\FAH.exe -svcstart [X]
E:\FAH.exe
End