Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-11-2013 01
Ran by pauline (administrator) on PC-PAULINE on 25-11-2013 21:33:40
Running from C:\Users\pauline\Downloads
Windows 8 (X64) OS Language: French Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(CybelSoft) C:\Program Files\ma-config.com\MaConfigAgent.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Atheros) C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.165\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Skillbrains) C:\Users\pauline\AppData\Local\Skillbrains\lightshot\4.4.2.10\Lightshot.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6548112 2012-06-12] (Realtek Semiconductor)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20549280 2013-10-21] (Skype Technologies S.A.)
HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\Steam.exe [1820584 2013-10-30] (Valve Corporation)
HKCU\...\Run: [LightShot] - C:\Users\pauline\AppData\Local\Skillbrains\lightshot\LightShot.exe [226592 2013-09-27] ()
HKLM-x32\...\Run: [IMSS] - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [133440 2012-07-19] (Intel Corporation)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-09-01] (Intel Corporation)
HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [102928 2012-10-23] (CyberLink Corp.)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\avastui.exe [3567800 2013-10-25] (AVAST Software)
HKLM-x32\...\Run: [20131121] - C:\Program Files\AVAST Software\Avast\setup\emupdate\6eb91335-a7af-4796-ae7c-ba58ad48faef.exe [180184 2013-11-23] (AVAST Software)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://dell13.msn.com/?pc=DCJB
SearchScopes: HKLM - DefaultScope {8A6EB502-6DDB-4063-8196-4A764139CF5E} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=DCJB
SearchScopes: HKLM - {8A6EB502-6DDB-4063-8196-4A764139CF5E} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=DCJB
SearchScopes: HKLM-x32 - DefaultScope {8A6EB502-6DDB-4063-8196-4A764139CF5E} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=DCJB
SearchScopes: HKLM-x32 - {8A6EB502-6DDB-4063-8196-4A764139CF5E} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=DCJB
SearchScopes: HKCU - DefaultScope {8A6EB502-6DDB-4063-8196-4A764139CF5E} URL =
SearchScopes: HKCU - {8A6EB502-6DDB-4063-8196-4A764139CF5E} URL =
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO-x32: The Amazon 1Button App for IE - {26B19FA4-E8A1-4A1B-A163-1A1E46F830DD} - C:\AmazonAppIE.dll (Amazon Inc.)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254

Chrome:
=======
CHR HomePage: https://www.google.fr/
CHR RestoreOnStartup: "https://www.google.fr/"
CHR Extension: (Google Docs) - C:\Users\pauline\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\pauline\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\pauline\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\pauline\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (avast! Online Security) - C:\Users\pauline\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2005.45_0
CHR Extension: (Google Wallet) - C:\Users\pauline\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0
CHR Extension: ( "name": "Smart Display",) - C:\Users\pauline\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbpohikckhbcljgombipcdoinkaedlfa\1.6_0
CHR Extension: (Gmail) - C:\Users\pauline\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx

==================== Services (Whitelisted) =================

S2 0087361384894963mcinstcleanup; C:\Users\pauline\AppData\Local\Temp\008736~1.EXE [834664 2013-07-30] (McAfee, Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-10-25] (AVAST Software)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-07-19] (Intel Corporation)
R2 MaConfigAgent; C:\Program Files\ma-config.com\MaConfigAgent.exe [2542416 2013-10-04] (CybelSoft)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-25] ()
R2 SftService; C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe [1911312 2013-08-30] (SoftThinks SAS)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-10-22] (Microsoft Corporation)
R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe [77824 2012-06-19] (Atheros)
S4 mfefire; "C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe" [x]
S2 mfevtp; "C:\Windows\system32\mfevtps.exe" [x]

==================== Drivers (Whitelisted) ====================

R2 aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [38984 2013-10-25] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [84328 2013-10-25] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-10-25] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-10-25] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1032416 2013-10-25] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [409832 2013-11-08] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [205320 2013-10-25] ()
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S0 cfwids; system32\drivers\cfwids.sys [x]
S0 mfeapfk; system32\drivers\mfeapfk.sys [x]
R0 mfeavfk; system32\drivers\mfeavfk.sys [x]
S0 mfeelamk; system32\drivers\mfeelamk.sys [x]
S0 mfefirek; system32\drivers\mfefirek.sys [x]
R0 mfehidk; system32\drivers\mfehidk.sys [x]
R0 mfewfpk; system32\drivers\mfewfpk.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-11-25 21:33 - 2013-11-25 21:34 - 00009653 _____ C:\Users\pauline\Downloads\FRST.txt
2013-11-25 21:31 - 2013-11-25 21:31 - 01958474 _____ (Farbar) C:\Users\pauline\Downloads\FRST64.exe
2013-11-25 21:31 - 2013-11-25 21:31 - 00003132 _____ C:\Windows\System32\Tasks\{0668ADF3-781B-4132-885B-944A4B647C3D}
2013-11-25 21:31 - 2013-11-25 21:31 - 00000000 ____D C:\FRST
2013-11-25 21:29 - 2013-11-25 21:30 - 01091605 _____ (Farbar) C:\Users\pauline\Downloads\FRST.exe
2013-11-19 21:31 - 2013-11-21 21:31 - 00000000 ____D C:\ProgramData\BoxUpdChk
2013-11-19 21:31 - 2013-11-19 21:34 - 00000954 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2013-11-19 21:31 - 2013-11-19 21:34 - 00000000 ____D C:\Program Files (x86)\IminentToolbar
2013-11-19 21:31 - 2013-11-19 21:31 - 00003284 _____ C:\Windows\System32\Tasks\BoxSoftwareUpdate
2013-11-19 21:31 - 2013-11-19 21:31 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-19 21:30 - 2013-11-21 18:35 - 00000000 ____D C:\Program Files (x86)\Software
2013-11-19 21:30 - 2013-11-19 21:43 - 00000000 ____D C:\Users\pauline\AppData\Local\Lollipop
2013-11-19 21:30 - 2013-11-19 21:30 - 00000000 ____D C:\Users\pauline\AppData\Local\Software
2013-11-19 21:29 - 2013-11-19 21:29 - 00165176 _____ (Frsera·sl) C:\Users\pauline\Downloads\Microsoft Office 2010.exe
2013-11-17 12:34 - 2013-11-17 12:35 - 00291392 _____ C:\Windows\system32\FNTCACHE.DAT
2013-11-16 17:33 - 2013-11-05 23:58 - 00694232 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-11-16 17:33 - 2013-11-05 23:58 - 00078296 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-13 22:12 - 2013-09-13 23:33 - 03279360 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2013-11-13 22:12 - 2013-08-30 06:20 - 01173504 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2013-11-13 22:12 - 2013-08-30 00:48 - 00914432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2013-11-13 22:12 - 2013-07-25 00:10 - 10799104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2013-11-13 22:12 - 2013-07-25 00:07 - 13661696 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2013-11-13 22:11 - 2013-09-14 02:15 - 00059416 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2013-11-13 22:11 - 2013-09-13 23:36 - 00628736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2013-11-13 22:11 - 2013-09-13 23:36 - 00247296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2013-11-13 22:11 - 2013-09-13 23:36 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2013-11-13 22:11 - 2013-09-13 23:36 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2013-11-13 22:11 - 2013-09-13 23:36 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2013-11-13 22:11 - 2013-09-13 23:34 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2013-11-13 22:11 - 2013-09-13 23:33 - 01622016 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2013-11-13 22:11 - 2013-09-13 23:33 - 00773120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2013-11-13 22:11 - 2013-09-13 23:33 - 00328192 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2013-11-13 22:11 - 2013-09-13 23:33 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2013-11-13 22:11 - 2013-09-13 23:33 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2013-11-13 22:11 - 2013-09-13 23:33 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2013-11-13 22:11 - 2013-09-13 23:33 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2013-11-13 22:11 - 2013-08-30 06:43 - 00061784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys
2013-11-13 22:11 - 2013-08-21 07:39 - 00465240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2013-11-13 22:11 - 2013-08-10 07:30 - 00151896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2013-11-13 22:11 - 2013-08-10 06:21 - 00817152 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2013-11-13 22:11 - 2013-08-10 04:58 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2013-11-13 22:11 - 2013-07-12 02:38 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2013-11-13 22:11 - 2013-07-12 02:30 - 00485376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll
2013-11-13 22:10 - 2013-10-03 00:25 - 01300992 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-13 22:10 - 2013-10-02 00:37 - 01569280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-13 22:10 - 2013-10-02 00:26 - 01890816 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-13 22:10 - 2013-10-01 23:22 - 01022976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-13 22:09 - 2013-10-10 12:53 - 00096600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2013-11-13 22:09 - 2013-10-10 10:21 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-13 22:09 - 2013-10-10 10:20 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2013-11-13 22:09 - 2013-09-23 23:30 - 00419328 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-13 22:09 - 2013-09-23 23:30 - 00323072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-13 22:09 - 2013-09-04 04:11 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-13 22:09 - 2013-08-23 08:22 - 02062848 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-11-13 22:09 - 2013-08-23 02:44 - 01711616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-11-13 22:08 - 2013-10-12 09:45 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-13 22:08 - 2013-10-12 09:45 - 01364992 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-13 22:08 - 2013-10-12 09:45 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-13 22:08 - 2013-10-12 09:43 - 19269632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-13 22:08 - 2013-10-12 09:43 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-13 22:08 - 2013-10-12 09:43 - 03959808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-13 22:08 - 2013-10-12 09:43 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-13 22:08 - 2013-10-12 09:43 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-13 22:08 - 2013-10-12 09:43 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-13 22:08 - 2013-10-12 08:03 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-13 22:08 - 2013-10-12 08:03 - 01138176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-13 22:08 - 2013-10-12 08:02 - 14355968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-13 22:08 - 2013-10-12 08:02 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-13 22:08 - 2013-10-12 08:02 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-13 22:08 - 2013-10-12 08:02 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-13 22:08 - 2013-10-12 08:02 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-13 22:08 - 2013-10-12 08:02 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-13 22:08 - 2013-10-02 00:37 - 02035712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-13 22:08 - 2013-10-02 00:26 - 02304512 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-10 16:25 - 2013-11-24 21:41 - 00000414 _____ C:\Windows\Tasks\update-sys.job
2013-11-10 16:25 - 2013-11-24 20:48 - 00000414 _____ C:\Windows\Tasks\update-S-1-5-21-349177713-374452297-19305794-1001.job
2013-11-10 16:25 - 2013-11-10 16:25 - 00003284 _____ C:\Windows\System32\Tasks\update-sys
2013-11-10 16:25 - 2013-11-10 16:25 - 00003266 _____ C:\Windows\System32\Tasks\update-S-1-5-21-349177713-374452297-19305794-1001
2013-11-10 16:25 - 2013-11-10 16:25 - 00000445 _____ C:\Users\pauline\AppData\Local\UserProducts.xml
2013-11-10 16:25 - 2013-11-10 16:25 - 00000003 _____ C:\Users\pauline\AppData\Local\updater.log
2013-11-10 16:25 - 2013-11-10 16:25 - 00000000 ____D C:\Program Files (x86)\Skillbrains
2013-11-10 16:24 - 2013-11-10 16:24 - 00000000 ____D C:\Users\pauline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LightShot
2013-11-10 16:24 - 2013-11-10 16:24 - 00000000 ____D C:\Users\pauline\AppData\Local\Skillbrains
2013-11-10 16:23 - 2013-11-10 16:24 - 02727456 _____ (Skillbrains ) C:\Users\pauline\Downloads\setup-lightshot.exe
2013-11-02 12:28 - 2013-11-17 19:32 - 00000000 ____D C:\Users\pauline\Documents\ManiaPlanet
2013-11-02 12:28 - 2013-11-02 12:28 - 00001081 _____ C:\Users\Public\Desktop\ManiaPlanet.lnk
2013-11-02 12:28 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2013-11-02 12:27 - 2013-11-17 19:30 - 00000000 ____D C:\ProgramData\ManiaPlanet
2013-11-02 12:27 - 2013-11-02 12:28 - 00000000 ____D C:\Program Files (x86)\ManiaPlanet
2013-11-02 11:59 - 2013-11-02 11:59 - 00000919 _____ C:\Users\Public\Desktop\Steam.lnk
2013-11-02 11:58 - 2013-11-25 21:18 - 00000000 ____D C:\Program Files (x86)\Steam
2013-11-02 11:56 - 2013-11-02 11:57 - 08532992 _____ C:\Users\pauline\Downloads\SteamInstall_French.msi
2013-11-02 11:53 - 2013-11-02 11:53 - 19333568 _____ (Gameforge ) C:\Users\pauline\Downloads\AION_GameforgeLiveSetup_EN.exe
2013-11-02 11:45 - 2013-11-02 12:10 - 1632859800 _____ C:\Users\pauline\Downloads\ManiaplanetSMStormEliteDemoSetup_jeuxvideocom_JeuxVideo.com_14963.exe
2013-10-30 14:55 - 2013-10-30 14:55 - 00000000 ___HD C:\ProgramData\CanonBJ
2013-10-30 14:54 - 2012-03-14 05:00 - 00385024 _____ (CANON INC.) C:\Windows\system32\CNMLMAT.DLL
2013-10-28 15:15 - 2013-11-22 15:45 - 00000000 ____D C:\Users\pauline\AppData\Local\Windows Live
2013-10-28 00:10 - 2013-10-28 00:10 - 00000000 ____D C:\Users\pauline\AppData\Local\softthinks
2013-10-28 00:10 - 2013-10-28 00:10 - 00000000 ____D C:\ProgramData\softthinks
2013-10-28 00:10 - 2013-09-04 09:47 - 00000117 ____H C:\DBAR_Ver.txt
2013-10-27 23:59 - 2013-10-28 00:03 - 00000000 ___RD C:\Windows\BrowserChoice
2013-10-27 23:53 - 2013-10-27 23:53 - 00936640 _____ C:\Users\pauline\Downloads\FLVPlayerSetup (1).exe
2013-10-27 23:53 - 2013-10-27 23:53 - 00000000 ____D C:\Program Files (x86)\FLV Player
2013-10-27 23:52 - 2013-10-27 23:53 - 00936640 _____ C:\Users\pauline\Downloads\FLVPlayerSetup.exe
2013-10-27 21:42 - 2013-10-27 21:42 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2013-10-27 21:32 - 2013-10-27 21:32 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2013-10-26 11:15 - 2013-11-14 20:52 - 00000000 ____D C:\Windows\system32\MRT
2013-10-26 11:15 - 2013-11-14 20:48 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

==================== One Month Modified Files and Folders =======

2013-11-25 21:34 - 2013-11-25 21:33 - 00009653 _____ C:\Users\pauline\Downloads\FRST.txt
2013-11-25 21:33 - 2013-10-25 18:08 - 00000000 ____D C:\Users\pauline\AppData\Roaming\Skype
2013-11-25 21:31 - 2013-11-25 21:31 - 01958474 _____ (Farbar) C:\Users\pauline\Downloads\FRST64.exe
2013-11-25 21:31 - 2013-11-25 21:31 - 00003132 _____ C:\Windows\System32\Tasks\{0668ADF3-781B-4132-885B-944A4B647C3D}
2013-11-25 21:31 - 2013-11-25 21:31 - 00000000 ____D C:\FRST
2013-11-25 21:30 - 2013-11-25 21:29 - 01091605 _____ (Farbar) C:\Users\pauline\Downloads\FRST.exe
2013-11-25 21:18 - 2013-11-02 11:58 - 00000000 ____D C:\Program Files (x86)\Steam
2013-11-25 21:15 - 2013-10-21 16:01 - 01116422 _____ C:\Windows\WindowsUpdate.log
2013-11-25 21:14 - 2013-10-25 17:48 - 00001088 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-11-25 21:13 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\system32\sru
2013-11-24 22:58 - 2013-10-25 17:48 - 00001092 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-11-24 21:41 - 2013-11-10 16:25 - 00000414 _____ C:\Windows\Tasks\update-sys.job
2013-11-24 20:48 - 2013-11-10 16:25 - 00000414 _____ C:\Windows\Tasks\update-S-1-5-21-349177713-374452297-19305794-1001.job
2013-11-24 20:12 - 2013-10-25 18:08 - 00000000 ____D C:\Users\pauline\AppData\Local\PMB Files
2013-11-24 18:58 - 2013-10-25 18:07 - 00000000 ____D C:\ProgramData\PMB Files
2013-11-24 14:06 - 2013-10-25 19:49 - 00012517 _____ C:\Windows\system32\lvcoinst.log
2013-11-22 15:45 - 2013-10-28 15:15 - 00000000 ____D C:\Users\pauline\AppData\Local\Windows Live
2013-11-21 21:31 - 2013-11-19 21:31 - 00000000 ____D C:\ProgramData\BoxUpdChk
2013-11-21 18:35 - 2013-11-19 21:30 - 00000000 ____D C:\Program Files (x86)\Software
2013-11-21 17:55 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\AUInstallAgent
2013-11-19 22:06 - 2013-10-21 16:29 - 00000000 ____D C:\Program Files (x86)\Dell Backup and Recovery
2013-11-19 22:05 - 2012-07-26 09:12 - 00000000 ___HD C:\Windows\ELAMBKUP
2013-11-19 22:04 - 2012-07-26 11:08 - 00800774 _____ C:\Windows\system32\perfh00C.dat
2013-11-19 22:04 - 2012-07-26 11:08 - 00155980 _____ C:\Windows\system32\perfc00C.dat
2013-11-19 22:04 - 2012-07-26 08:28 - 01796784 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-19 21:58 - 2013-10-21 15:50 - 00015178 _____ C:\Windows\PFRO.log
2013-11-19 21:58 - 2012-07-26 08:22 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-19 21:57 - 2012-07-26 06:26 - 00262144 ___SH C:\Windows\system32\config\BBI
2013-11-19 21:43 - 2013-11-19 21:30 - 00000000 ____D C:\Users\pauline\AppData\Local\Lollipop
2013-11-19 21:34 - 2013-11-19 21:31 - 00000954 _____ C:\Windows\SysWOW64\InstallUtil.InstallLog
2013-11-19 21:34 - 2013-11-19 21:31 - 00000000 ____D C:\Program Files (x86)\IminentToolbar
2013-11-19 21:31 - 2013-11-19 21:31 - 00003284 _____ C:\Windows\System32\Tasks\BoxSoftwareUpdate
2013-11-19 21:31 - 2013-11-19 21:31 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-19 21:30 - 2013-11-19 21:30 - 00000000 ____D C:\Users\pauline\AppData\Local\Software
2013-11-19 21:29 - 2013-11-19 21:29 - 00165176 _____ (Frsera·sl) C:\Users\pauline\Downloads\Microsoft Office 2010.exe
2013-11-17 23:03 - 2012-07-26 06:26 - 00262144 ___SH C:\Windows\system32\config\ELAM
2013-11-17 19:32 - 2013-11-02 12:28 - 00000000 ____D C:\Users\pauline\Documents\ManiaPlanet
2013-11-17 19:30 - 2013-11-02 12:27 - 00000000 ____D C:\ProgramData\ManiaPlanet
2013-11-17 12:35 - 2013-11-17 12:34 - 00291392 _____ C:\Windows\system32\FNTCACHE.DAT
2013-11-17 12:35 - 2013-10-21 16:27 - 00000000 ____D C:\Program Files (x86)\McAfee
2013-11-17 01:08 - 2013-10-25 17:49 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-11-17 00:12 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\rescache
2013-11-16 17:30 - 2012-07-26 09:12 - 00000000 ___RD C:\Windows\ToastData
2013-11-16 17:30 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\WinStore
2013-11-14 20:52 - 2013-10-26 11:15 - 00000000 ____D C:\Windows\system32\MRT
2013-11-14 20:48 - 2013-10-26 11:15 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-14 17:34 - 2013-10-21 16:27 - 00000000 ____D C:\ProgramData\McAfee
2013-11-14 17:23 - 2013-10-21 16:27 - 00000000 ____D C:\Program Files\Common Files\mcafee
2013-11-12 22:42 - 2013-10-25 18:07 - 00003924 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-11-12 18:33 - 2013-10-25 18:08 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-11-12 18:33 - 2013-10-25 18:07 - 00000000 ____D C:\ProgramData\Skype
2013-11-10 20:29 - 2013-10-25 18:02 - 00003592 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-349177713-374452297-19305794-1001
2013-11-10 16:25 - 2013-11-10 16:25 - 00003284 _____ C:\Windows\System32\Tasks\update-sys
2013-11-10 16:25 - 2013-11-10 16:25 - 00003266 _____ C:\Windows\System32\Tasks\update-S-1-5-21-349177713-374452297-19305794-1001
2013-11-10 16:25 - 2013-11-10 16:25 - 00000445 _____ C:\Users\pauline\AppData\Local\UserProducts.xml
2013-11-10 16:25 - 2013-11-10 16:25 - 00000003 _____ C:\Users\pauline\AppData\Local\updater.log
2013-11-10 16:25 - 2013-11-10 16:25 - 00000000 ____D C:\Program Files (x86)\Skillbrains
2013-11-10 16:24 - 2013-11-10 16:24 - 00000000 ____D C:\Users\pauline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LightShot
2013-11-10 16:24 - 2013-11-10 16:24 - 00000000 ____D C:\Users\pauline\AppData\Local\Skillbrains
2013-11-10 16:24 - 2013-11-10 16:23 - 02727456 _____ (Skillbrains ) C:\Users\pauline\Downloads\setup-lightshot.exe
2013-11-08 18:25 - 2013-10-25 18:07 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2013-11-05 23:58 - 2013-11-16 17:33 - 00694232 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-11-05 23:58 - 2013-11-16 17:33 - 00078296 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-02 12:28 - 2013-11-02 12:28 - 00001081 _____ C:\Users\Public\Desktop\ManiaPlanet.lnk
2013-11-02 12:28 - 2013-11-02 12:27 - 00000000 ____D C:\Program Files (x86)\ManiaPlanet
2013-11-02 12:10 - 2013-11-02 11:45 - 1632859800 _____ C:\Users\pauline\Downloads\ManiaplanetSMStormEliteDemoSetup_jeuxvideocom_JeuxVideo.com_14963.exe
2013-11-02 11:59 - 2013-11-02 11:59 - 00000919 _____ C:\Users\Public\Desktop\Steam.lnk
2013-11-02 11:59 - 2013-10-25 17:41 - 00000000 ____D C:\Users\pauline
2013-11-02 11:57 - 2013-11-02 11:56 - 08532992 _____ C:\Users\pauline\Downloads\SteamInstall_French.msi
2013-11-02 11:53 - 2013-11-02 11:53 - 19333568 _____ (Gameforge ) C:\Users\pauline\Downloads\AION_GameforgeLiveSetup_EN.exe
2013-10-30 14:56 - 2013-10-25 17:41 - 00000000 ____D C:\Users\pauline\AppData\Local\Packages
2013-10-30 14:55 - 2013-10-30 14:55 - 00000000 ___HD C:\ProgramData\CanonBJ
2013-10-28 11:05 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\LiveKernelReports
2013-10-28 00:10 - 2013-10-28 00:10 - 00000000 ____D C:\Users\pauline\AppData\Local\softthinks
2013-10-28 00:10 - 2013-10-28 00:10 - 00000000 ____D C:\ProgramData\softthinks
2013-10-28 00:03 - 2013-10-27 23:59 - 00000000 ___RD C:\Windows\BrowserChoice
2013-10-28 00:03 - 2013-10-25 17:43 - 00000000 ___RD C:\Users\pauline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-28 00:03 - 2013-10-25 17:43 - 00000000 ___RD C:\Users\pauline\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-28 00:03 - 2013-10-25 17:41 - 00000000 ____D C:\ProgramData\PRICache
2013-10-27 23:59 - 2012-07-26 09:12 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-10-27 23:59 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-10-27 23:53 - 2013-10-27 23:53 - 00936640 _____ C:\Users\pauline\Downloads\FLVPlayerSetup (1).exe
2013-10-27 23:53 - 2013-10-27 23:53 - 00000000 ____D C:\Program Files (x86)\FLV Player
2013-10-27 23:53 - 2013-10-27 23:52 - 00936640 _____ C:\Users\pauline\Downloads\FLVPlayerSetup.exe
2013-10-27 21:42 - 2013-10-27 21:42 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2013-10-27 21:42 - 2012-07-26 08:21 - 00012284 _____ C:\Windows\setupact.log
2013-10-27 21:32 - 2013-10-27 21:32 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf

Some content of TEMP:
====================
C:\Users\pauline\AppData\Local\Temp\0087361384894963mcinst.exe
C:\Users\pauline\AppData\Local\Temp\BoxoreInstaller.exe
C:\Users\pauline\AppData\Local\Temp\ICReinstall_FLVPlayerSetup.exe
C:\Users\pauline\AppData\Local\Temp\sfamcc00001.dll
C:\Users\pauline\AppData\Local\Temp\sfextra.dll
C:\Users\pauline\AppData\Local\Temp\swt-win32-3349.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-11-18 19:50

==================== End Of Log ============================