Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-02-2015
Ran by utilisateur (administrator) on UTILISAT-40B4F9 on 13-02-2015 17:43:50
Running from C:\Documents and Settings\utilisateur\Mes documents\Downloads
Loaded Profiles: utilisateur (Available profiles: utilisateur)
Platform: Microsoft Windows XP Professionnel Service Pack 3 (X86) OS Language: Français (France)
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AuthenTec, Inc.) C:\Program Files\Fingerprint Sensor\AtService.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe
(SafeBoot International) C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Microsoft Corporation) C:\WINDOWS\system32\scardsvr.exe
(ActivIdentity) C:\Program Files\ActivIdentity\ActivClient\accoca.exe
(Bioscrypt Inc.) C:\Program Files\Hewlett-Packard\IAM\Bin\asghost.exe
(Foxit Corporation) C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(CybelSoft) C:\Program Files\ma-config.com\MaConfigAgent.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANOTIF.EXE
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
( Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe
(Hewlett-Packard) C:\Program Files\Hp\HP Software Update\hpwuschd2.exe
(Microsoft Corporation) C:\Program Files\Microsoft IntelliPoint\ipoint.exe
(Razer USA Ltd.) C:\Program Files\n52te\razerhid.exe
(Oracle Corporation) C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
(SFX TEAM) C:\Program Files\SuperCopier2\SuperCopier2.exe
(Microsoft Corporation) C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMON.EXE
(Microsoft Corporation) C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
(Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [1044480 2009-07-20] (Analog Devices, Inc.)
HKLM\...\Run: [SoundMAX] => C:\Program Files\Analog Devices\SoundMAX\Smax4.exe [888832 2008-07-25] (Analog Devices, Inc.)
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-17] (Intel Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1430824 2009-02-06] (Synaptics Incorporated)
HKLM\...\Run: [accrdsub] => C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe [298536 2007-11-27] (ActivIdentity)
HKLM\...\Run: [CognizanceTS] => rundll32.exe C:\PROGRA~1\HEWLET~1\IAM\Bin\ASTSVCC.dll,RegisterModule
HKLM\...\Run: [QlbCtrl.exe] => C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [288312 2009-07-27] ( Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [Cpqset] => C:\Program Files\Hewlett-Packard\Default Settings\cpqset.exe [75264 2009-08-04] ()
HKLM\...\Run: [File Sanitizer] => C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe [11223040 2009-01-14] (Hewlett-Packard)
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard)
HKLM\...\Run: [IntelliPoint] => C:\Program Files\Microsoft IntelliPoint\ipoint.exe [1406024 2008-06-10] (Microsoft Corporation)
HKLM\...\Run: [Jomantha] => C:\Program Files\n52te\razerhid.exe [163840 2008-04-09] (Razer USA Ltd.)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [5479224 2012-11-29] (Logitech Inc.)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKLM\...\runonceex: [ContentMerger] => C:\Program Files\Fichiers communs\Roxio Shared\10.0\SharedCOM\ContentMerger10.exe
Winlogon\Notify\ackpbsc: C:\WINDOWS\system32\ackpbsc.dll (ActivIdentity)
Winlogon\Notify\acunlock: C:\Program Files\ActivIdentity\ActivClient\acunlock.dll (ActivIdentity)
Winlogon\Notify\DeviceNP: C:\WINDOWS\system32\DeviceNP.dll (Hewlett-Packard Limited)
Winlogon\Notify\OneCard: C:\Program Files\Hewlett-Packard\IAM\Bin\ASWLNPkg.dll (Bioscrypt Inc.)
HKLM\...\Policies\Explorer: [NoCDBurning] 0
HKU\S-1-5-21-1390067357-688789844-1177238915-1003\...\Run: [SuperCopier2.exe] => C:\Program Files\SuperCopier2\SuperCopier2.exe [955392 2009-08-16] (SFX TEAM)
HKU\S-1-5-21-1390067357-688789844-1177238915-1003\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2011-04-19] (Google Inc.)
HKU\S-1-5-21-1390067357-688789844-1177238915-1003\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-1390067357-688789844-1177238915-1003\...\MountPoints2: {1795c2ac-7219-11df-8b0c-e15f07153537} - G:\setupSNK.exe
HKU\S-1-5-21-1390067357-688789844-1177238915-1003\...\MountPoints2: {307aec90-7274-11e0-8ca2-9afbc3b55806} - F:\AutoRunCardDetector.exe
HKU\S-1-5-21-1390067357-688789844-1177238915-1003\...\MountPoints2: {a564e22e-726d-11e0-8ca0-9edacd843a2f} - F:\AutoRunCardDetector.exe
HKU\S-1-5-21-1390067357-688789844-1177238915-1003\...\MountPoints2: {a5be3043-698c-11e4-acbc-b2dcc0778206} - G:\LG_PC_Programs.exe
AppInit_DLLs: APSHook.dll => C:\WINDOWS\system32\APSHook.dll [76560 2009-03-25] (Bioscrypt Inc.)
Lsa: [Notification Packages] scecli ASWLNPkg
Startup: C:\Documents and Settings\utilisateur\Menu Démarrer\Programmes\Démarrage\Alertes de surveillance de l'encre - HP Deskjet 1050 J410 series.lnk
ShortcutTarget: Alertes de surveillance de l'encre - HP Deskjet 1050 J410 series.lnk -> C:\Program Files\Hp\HP Deskjet 1050 J410 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
ShellIconOverlayIdentifiers: [Fichiers hors connexion] -> {750fdf0e-2a26-11d1-a3ea-080036587f03} => C:\WINDOWS\System32\cscui.dll (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled.
ProxyServer: [.DEFAULT] => http=127.0.0.1:2437;https=127.0.0.1:2437;
HKU\S-1-5-21-1390067357-688789844-1177238915-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/
HKU\S-1-5-21-1390067357-688789844-1177238915-1003\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
URLSearchHook: [S-1-5-21-1390067357-688789844-1177238915-1003] ATTENTION ==> Default URLSearchHook is missing.
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "http://www.google.com" <======= ATTENTION
SearchScopes: HKLM -> DefaultScope value is missing.
SearchScopes: HKU\S-1-5-21-1390067357-688789844-1177238915-1003 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
BHO: BHO_Startup Class -> {3134413B-49B4-425C-98A5-893C1F195601} -> C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll (Hewlett-Packard)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Credential Manager for HP ProtectTools -> {DF21F1DB-80C6-11D3-9483-B03D0EC10000} -> C:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll (Bioscrypt Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKU\S-1-5-21-1390067357-688789844-1177238915-1003 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1270632004500
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Fichiers communs\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\utilisateur\Application Data\Mozilla\Firefox\Profiles\zvt23glx.default
FF Homepage: hxxp://google.fr
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\PROGRAM FILES\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\PROGRAM FILES\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=1.1.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (the VideoLAN Team)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF Extension: Dictionnaire français «Moderne» - C:\Documents and Settings\utilisateur\Application Data\Mozilla\Firefox\Profiles\zvt23glx.default\Extensions\fr-moderne@dictionaries.addons.mozilla.org [2011-10-08]
FF Extension: ImTranslator - C:\Documents and Settings\utilisateur\Application Data\Mozilla\Firefox\Profiles\zvt23glx.default\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2012-01-10]
FF Extension: Adblock Plus - C:\Documents and Settings\utilisateur\Application Data\Mozilla\Firefox\Profiles\zvt23glx.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-12-16]
FF Extension: Dictionnaire français «Moderne» - C:\Documents and Settings\utilisateur\Application Data\Mozilla\Firefox\Profiles\zvt23glx.default\Extensions\fr-moderne@dictionaries.addons.mozilla.org [2011-10-08]
FF Extension: ImTranslator - C:\Documents and Settings\utilisateur\Application Data\Mozilla\Firefox\Profiles\zvt23glx.default\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2012-01-10]
FF Extension: Adblock Plus - C:\Documents and Settings\utilisateur\Application Data\Mozilla\Firefox\Profiles\zvt23glx.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-12-16]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2015-01-29]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2015-01-29]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2015-01-29]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2010-04-07]
FF HKLM\...\Firefox\Extensions: [{3112ca9c-de6d-4884-a869-9855de68056c}] - C:\Documents and Settings\All Users\Application Data\Google\Toolbar for Firefox\{3112ca9c-de6d-4884-a869-9855de68056c}
FF Extension: Google Toolbar for Firefox - C:\Documents and Settings\All Users\Application Data\Google\Toolbar for Firefox\{3112ca9c-de6d-4884-a869-9855de68056c} [2011-04-19]

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://start.qone8.com/?type=hp&ts=1399476540&from=smt&uid=ST9250410AS_5VG3QZ54"
CHR Profile: C:\Documents and Settings\utilisateur\Local Settings\Application Data\Google\Chrome\User Data\Default
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Documents and Settings\utilisateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-11-07]
CHR Extension: (Adblock Plus) - C:\Documents and Settings\utilisateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-11-07]
CHR Extension: (Google Wallet) - C:\Documents and Settings\utilisateur\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-07]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 6to4; C:\WINDOWS\System32\6to4svc.dll [100864 2010-02-12] (Microsoft Corporation)
R2 accoca; C:\Program Files\ActivIdentity\ActivClient\accoca.exe [185896 2007-11-27] (ActivIdentity)
R2 ASBroker; C:\Program Files\Hewlett-Packard\IAM\Bin\ASWLNPkg.dll [186640 2009-03-25] (Bioscrypt Inc.)
R2 ASChannel; C:\Program Files\Hewlett-Packard\IAM\Bin\AsChnl.dll [149776 2009-03-25] (Bioscrypt Inc.)
R2 ATService; C:\Program Files\Fingerprint Sensor\AtService.exe [1185016 2008-10-03] (AuthenTec, Inc.)
S3 FLCDLOCK; C:\WINDOWS\system32\flcdlock.exe [349432 2008-08-06] (Hewlett-Packard Ltd)
R2 FoxitCloudUpdateService; C:\PROGRAM FILES\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe [242728 2014-07-01] (Foxit Corporation)
S3 HP ProtectTools Service; C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe [45056 2009-03-26] (Hewlett-Packard Development Company, L.P) [File not signed]
R2 HpFkCryptService; C:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [256544 2009-02-20] (SafeBoot International)
R2 HPFSService; C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe [77824 2009-01-14] (Hewlett-Packard) [File not signed]
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-08-11] (Oracle Corporation)
R2 MaConfigAgent; C:\Program Files\ma-config.com\MaConfigAgent.exe [2117448 2014-06-24] (CybelSoft)
R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
R2 MDM; C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE [322120 2003-06-19] (Microsoft Corporation)
S3 ose; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [89136 2003-07-28] (Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE [1529728 2009-08-18] (Microsoft Corporation)
S3 RoxMediaDB10; "C:\Program Files\Fichiers communs\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe" [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 5U876UVC; C:\WINDOWS\System32\DRIVERS\5U876.sys [118656 2009-06-30] (Ricoh co.,Ltd.)
R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21035 2010-06-09] (Meetinghouse Data Communications) [File not signed]
R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [279712 2012-05-18] ()
R3 BCM43XX; C:\WINDOWS\System32\DRIVERS\bcmwl5.sys [1746432 2010-04-07] (Broadcom Corporation)
S3 BrScnUsb; C:\WINDOWS\System32\DRIVERS\BrScnUsb.sys [15295 2004-10-15] (Brother Industries Ltd.)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
S3 DAMDrv; C:\WINDOWS\System32\DRIVERS\DAMDrv.sys [32256 2008-08-06] (Hewlett-Packard Development Company L.P.)
R1 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [243128 2014-03-28] (Disc Soft Ltd)
R2 EAPPkt; C:\WINDOWS\System32\DRIVERS\EAPPkt.sys [38144 2007-10-09] (Realtek) [File not signed]
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49664 2006-04-12] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2006-04-12] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2006-04-12] (HP)
S3 hwdatacard; C:\WINDOWS\System32\DRIVERS\ewusbmdm.sys [102400 2009-06-15] (Huawei Technologies Co., Ltd.) [File not signed]
S3 hwusbfake; C:\WINDOWS\System32\DRIVERS\ewusbfake.sys [102656 2009-06-15] (Huawei Technologies Co., Ltd.) [File not signed]
S3 JmtFltr; C:\WINDOWS\System32\Drivers\JmtFltr.sys [48896 2007-09-27] ()
R3 LGBusEnum; C:\WINDOWS\System32\drivers\LGBusEnum.sys [19720 2009-11-24] (Logitech Inc.)
S3 LGVirHid; C:\WINDOWS\System32\drivers\LGVirHid.sys [14856 2009-11-24] (Logitech Inc.)
S3 libusb0; C:\WINDOWS\System32\drivers\libusb0.sys [20864 2006-09-26] (http://libusb-win32.sourceforge.net) [File not signed]
R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [25888 2012-05-18] ()
S3 ma-config_x86; C:\Program Files\ma-config.com\Drivers\ma-config_x86.sys [16160 2014-02-24] (CybelSoft)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2014-11-21] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [114904 2015-02-13] (Malwarebytes Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
S3 PCAMPR5; C:\WINDOWS\system32\PCAMPR5.SYS [34688 2008-10-31] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 PCANDIS5; C:\WINDOWS\system32\PCANDIS5.SYS [32128 2008-10-31] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
R1 RsvLock; C:\WINDOWS\system32\Drivers\RsvLock.sys [12528 2009-02-20] (SafeBoot International)
S3 RTL8187B; C:\WINDOWS\System32\DRIVERS\wg111v3.sys [287232 2007-12-28] (Realtek Semiconductor Corporation ) [File not signed]
R0 SafeBoot; C:\WINDOWS\system32\Drivers\SafeBoot.sys [109216 2009-02-20] () [File not signed]
R0 SbAlg; C:\WINDOWS\system32\Drivers\SbAlg.sys [51408 2009-02-20] (SafeBoot N.V.)
R0 SbFsLock; C:\WINDOWS\system32\Drivers\SbFsLock.sys [12960 2009-02-20] (SafeBoot International)
R0 SFAUDIO; C:\WINDOWS\System32\drivers\sfaudio.sys [24064 2008-03-28] (Sonic Focus, Inc)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [320120 2014-03-28] (Duplex Secure Ltd.)
S3 tbhsd; C:\WINDOWS\System32\drivers\tbhsd.sys [37920 2010-07-02] (RapidSolution Software AG)
R1 Tcpip6; C:\WINDOWS\System32\DRIVERS\tcpip6.sys [226880 2010-02-11] (Microsoft Corporation)
R3 vhidmini; C:\WINDOWS\System32\DRIVERS\vhidmini.sys [12672 2007-09-19] (Windows (R) Codename Longhorn DDK provider)
S3 WsAudio_DeviceS(1); C:\WINDOWS\System32\drivers\WsAudio_DeviceS(1).sys [25704 2009-12-04] (Wondershare)
S3 WsAudio_DeviceS(2); C:\WINDOWS\System32\drivers\WsAudio_DeviceS(2).sys [25704 2009-12-04] (Wondershare)
S3 WsAudio_DeviceS(3); C:\WINDOWS\System32\drivers\WsAudio_DeviceS(3).sys [25704 2009-12-04] (Wondershare)
S3 WsAudio_DeviceS(4); C:\WINDOWS\System32\drivers\WsAudio_DeviceS(4).sys [25704 2009-12-04] (Wondershare)
S3 WsAudio_DeviceS(5); C:\WINDOWS\System32\drivers\WsAudio_DeviceS(5).sys [25704 2009-12-04] (Wondershare)
R3 yukonwxp; C:\WINDOWS\System32\DRIVERS\yk51x86.sys [296320 2008-11-24] (Marvell)
U3 amoxm6mf; C:\WINDOWS\system32\Drivers\amoxm6mf.sys [0 ] (Intel Corporation) <==== ATTENTION (zero size file/folder)
S3 btaudio; system32\drivers\btaudio.sys [X]
S3 BTDriver; system32\DRIVERS\btport.sys [X]
S3 btkrnl; system32\DRIVERS\btkrnl.sys [X]
S3 BTWDNDIS; system32\DRIVERS\btwdndis.sys [X]
S3 BTWUSB; System32\Drivers\btwusb.sys [X]
S4 IntelIde; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-13 17:42 - 2015-02-13 17:43 - 00000000 ____D () C:\FRST
2015-02-11 23:25 - 2015-02-11 23:35 - 00000000 ____D () C:\WINDOWS\system32\MpEngineStore
2015-01-30 09:54 - 2015-01-30 09:54 - 00000777 _____ () C:\Documents and Settings\All Users\Bureau\Malwarebytes Anti-Malware.lnk
2015-01-30 09:54 - 2015-01-30 09:54 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2015-01-30 09:54 - 2015-01-30 09:54 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Malwarebytes Anti-Malware
2015-01-30 09:54 - 2014-11-21 06:14 - 00054360 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-01-29 08:25 - 2015-01-29 08:26 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2015-01-20 21:22 - 2015-01-21 10:17 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\ParetoLogic
2015-01-20 21:22 - 2015-01-20 21:22 - 00000000 ____D () C:\Documents and Settings\utilisateur\Application Data\ParetoLogic
2015-01-20 21:22 - 2015-01-20 21:22 - 00000000 ____D () C:\Documents and Settings\utilisateur\Application Data\DriverCure

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-13 17:44 - 2010-04-07 09:28 - 00000000 ____D () C:\Documents and Settings\utilisateur\Local Settings\Temp
2015-02-13 17:40 - 2010-04-07 09:14 - 01194887 _____ () C:\WINDOWS\WindowsUpdate.log
2015-02-13 17:37 - 2012-10-13 21:33 - 00001002 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-02-13 17:30 - 2010-04-07 15:10 - 00114904 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2015-02-13 17:30 - 2008-04-14 18:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2015-02-13 17:28 - 2014-03-13 17:57 - 00000234 _____ () C:\WINDOWS\Tasks\Notification de fin de service de Microsoft Windows XP - à la connexion.job
2015-02-13 17:28 - 2011-06-15 18:30 - 00000322 ___SH () C:\WINDOWS\Tasks\kdoyh.job
2015-02-13 17:28 - 2010-12-15 17:11 - 00001052 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-13 17:28 - 2010-04-07 11:08 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2015-02-13 17:28 - 2010-04-07 11:08 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2015-02-13 17:28 - 2010-04-07 09:27 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-02-13 17:27 - 2010-04-07 09:28 - 00000284 ___SH () C:\Documents and Settings\utilisateur\ntuser.ini
2015-02-13 17:27 - 2010-04-07 09:27 - 00032466 _____ () C:\WINDOWS\SchedLgU.Txt
2015-02-13 17:24 - 2010-12-15 17:11 - 00001056 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-12 10:52 - 2010-04-07 11:00 - 00000000 ____D () C:\WINDOWS\Help
2015-02-11 23:25 - 2013-07-15 21:24 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-02-11 23:24 - 2010-04-07 14:11 - 113756392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-02-10 00:37 - 2013-12-29 14:39 - 00000000 ____D () C:\Documents and Settings\utilisateur\Application Data\BitTorrent
2015-02-10 00:24 - 2010-06-08 21:39 - 00042496 _____ () C:\Documents and Settings\utilisateur\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-02-08 15:00 - 2014-03-13 17:57 - 00000228 _____ () C:\WINDOWS\Tasks\Notification de fin de service de Microsoft Windows XP -mensuellement.job
2015-02-08 11:53 - 2010-07-04 11:42 - 00000000 ____D () C:\Documents and Settings\utilisateur\Application Data\vlc
2015-02-05 16:37 - 2012-10-13 21:33 - 00701616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-02-05 16:37 - 2011-09-24 08:03 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-02-02 10:36 - 2010-04-07 09:28 - 00000000 ___RD () C:\Documents and Settings\utilisateur\Mes documents\Ma musique
2015-01-30 10:19 - 2010-04-07 11:05 - 00000216 ___SH () C:\boot.ini
2015-01-30 10:07 - 2012-01-11 22:23 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2584146$
2015-01-30 10:06 - 2014-02-21 15:46 - 00000000 ____D () C:\Program Files\RarmaRadio
2015-01-30 09:54 - 2010-04-07 15:10 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes
2015-01-30 09:54 - 2010-04-07 11:07 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes
2015-01-30 09:54 - 2010-04-07 11:07 - 00000000 ____D () C:\Documents and Settings\All Users\Bureau
2015-01-30 09:25 - 2012-05-13 14:48 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2015-01-25 12:04 - 2009-07-08 18:49 - 00000000 ___RD () C:\Documents and Settings\utilisateur\Mes documents\Mes vidéos
2015-01-25 10:41 - 2010-10-24 09:30 - 00000000 ____D () C:\Documents and Settings\utilisateur\Mes documents\logiciel
2015-01-25 10:40 - 2010-04-07 09:28 - 00000000 ____D () C:\Documents and Settings\utilisateur
2015-01-24 10:57 - 2010-06-15 13:06 - 00000000 ____D () C:\Documents and Settings\utilisateur\Application Data\dvdcss
2015-01-24 10:51 - 2010-08-01 16:12 - 00000000 ____D () C:\Documents and Settings\utilisateur\Bureau\Raccourcis Bureau non utilisés
2015-01-24 10:51 - 2010-04-07 09:28 - 00000000 ____D () C:\Documents and Settings\utilisateur\Bureau
2015-01-21 10:17 - 2010-04-07 11:07 - 00000000 ____D () C:\Program Files\Fichiers communs
2015-01-21 10:17 - 2010-04-07 09:28 - 00000000 ____D () C:\Documents and Settings\utilisateur\Menu Démarrer\Programmes
2015-01-20 21:25 - 2010-04-07 09:15 - 00001599 _____ () C:\Documents and Settings\Default User\Menu Démarrer\Programmes\Assistance à distance.lnk
2015-01-20 21:25 - 2010-04-07 09:15 - 00001507 _____ () C:\Documents and Settings\All Users\Menu Démarrer\Windows Update.lnk
2015-01-20 11:38 - 2010-04-07 09:27 - 00000000 __SHD () C:\Documents and Settings\LocalService
2015-01-20 11:38 - 2010-04-07 09:18 - 00000000 __SHD () C:\Documents and Settings\NetworkService
2015-01-20 11:38 - 2010-04-07 09:13 - 00000000 ____D () C:\WINDOWS\Registration

==================== Files in the root of some directories =======

2010-11-21 09:48 - 2011-10-29 12:50 - 0087608 _____ () C:\Documents and Settings\utilisateur\Application Data\inst.exe
2010-11-21 09:48 - 2011-10-29 12:50 - 0007887 _____ () C:\Documents and Settings\utilisateur\Application Data\pcouffin.cat
2010-11-21 09:48 - 2011-10-29 12:50 - 0001144 _____ () C:\Documents and Settings\utilisateur\Application Data\pcouffin.inf
2010-11-21 09:48 - 2011-10-29 12:50 - 0000055 _____ () C:\Documents and Settings\utilisateur\Application Data\pcouffin.log
2010-11-21 09:48 - 2011-10-29 12:50 - 0047360 _____ (VSO Software) C:\Documents and Settings\utilisateur\Application Data\pcouffin.sys
2010-04-07 09:52 - 2010-04-07 09:52 - 0000000 _____ () C:\Documents and Settings\utilisateur\Local Settings\Application Data\AtStart.txt
2010-06-08 21:39 - 2015-02-10 00:24 - 0042496 _____ () C:\Documents and Settings\utilisateur\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2010-04-07 09:52 - 2010-04-07 09:52 - 0000000 _____ () C:\Documents and Settings\utilisateur\Local Settings\Application Data\DSwitch.txt
2011-03-26 20:57 - 2011-12-23 23:10 - 0000000 _____ () C:\Documents and Settings\utilisateur\Local Settings\Application Data\FnF4.txt
2010-06-02 16:23 - 2010-06-02 16:23 - 0000134 _____ () C:\Documents and Settings\utilisateur\Local Settings\Application Data\fusioncache.dat
2010-04-07 09:52 - 2010-04-07 09:52 - 0000000 _____ () C:\Documents and Settings\utilisateur\Local Settings\Application Data\QSwitch.txt
2010-10-04 15:25 - 2010-10-04 15:36 - 0258348 _____ () C:\Documents and Settings\utilisateur\Local Settings\Application Data\rx_image32.Cache

Some content of TEMP:
====================
C:\Documents and Settings\utilisateur\Local Settings\Temp\Foxit Reader Updater.exe
C:\Documents and Settings\utilisateur\Local Settings\Temp\jre-7u71-windows-i586-iftw.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================