Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 02-01-2014 01
Ran by malglaive (administrator) on MAISON-3BC09697 on 02-01-2014 23:38:56
Running from C:\Documents and Settings\malglaive\Mes documents\Downloads
Microsoft Windows XP Édition familiale Service Pack 3 (X86) OS Language: French Standard
Internet Explorer Version 8
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files\CoolPic\ExtensionUpdaterService.exe
(Garmin Ltd or its subsidiaries) C:\Program Files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Microsoft Corporation) C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
(HP) C:\WINDOWS\system32\HPZipm12.exe
(Piriform) C:\Program Files\Agomo\AgomoClient.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Garmin Ltd or its subsidiaries) C:\Program Files\Garmin\Express Tray\ExpressTray.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [] - [x]
HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2012-11-16] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [HP Software Update] - C:\Program Files\HP\HP Software Update\hpwuschd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3568312 2014-01-02] (AVAST Software)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll (ATI Technologies Inc.)
HKCU\...\Run: [GarminExpressTrayApp] - C:\Program Files\Garmin\Express Tray\ExpressTray.exe [1093464 2013-07-09] (Garmin Ltd or its subsidiaries)
HKCU\...\Run: [HP Photosmart 5520 series (NET)] - C:\Program Files\HP\HP Photosmart 5520 series\Bin\ScanToPCActivationApp.exe [1837672 2012-10-17] (Hewlett-Packard Co.)
HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
AlternateShell:

==================== Internet (Whitelisted) ====================

ProxyServer: http=127.0.0.1:1036;https=127.0.0.1:1036
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/
BHO: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.)
BHO: No Name - {DBC80044-A445-435b-BC74-9C25C1C588A9} - No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - &Adresse - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Liens - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll [304128 2009-05-24] (Microsoft Corporation)
Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\..\Interfaces\{502EA0B2-D100-4E28-891A-E73418FE1DF9}: [NameServer]192.168.1.1

Chrome:
=======
CHR HomePage:
CHR Plugin: (Java(TM) Platform SE 7 U45) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll No File
CHR Extension: (Translation & Dictionary) - C:\Documents and Settings\malglaive\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\cdgpdmhkjniimkgnhelgogagpocggbeo\1.11_0
CHR Extension: (Search by Image (by Google)) - C:\Documents and Settings\malglaive\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dajedkncpodkggklbegccjpmnglmnflm\1.5.1_0
CHR Extension: (English - French Dictionary) - C:\Documents and Settings\malglaive\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ffaagcabgnkafbeicgomepgjnmjjgjia\1.0.0_0
CHR Extension: (AdBlock) - C:\Documents and Settings\malglaive\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.16_0
CHR Extension: (avast! Online Security) - C:\Documents and Settings\malglaive\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2005.45_0
CHR Extension: (Google Wallet) - C:\Documents and Settings\malglaive\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx

========================== Services (Whitelisted) =================

R2 AgomoService; C:\Program Files\Agomo\AgomoClient.exe [14057752 2013-11-20] (Piriform)
S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [593920 2009-05-15] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-01-02] (AVAST Software)
R2 CoolPic Updater; C:\Program Files\CoolPic\ExtensionUpdaterService.exe [185856 2013-10-08] ()
R2 Garmin Core Update Service; C:\Program Files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [219480 2013-07-09] (Garmin Ltd or its subsidiaries)
S3 InCDsrv; C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe [1554728 2007-11-26] (Nero AG)
R2 MDM; C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE [322120 2003-06-19] (Microsoft Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22208 2013-10-23] (Microsoft Corporation)
S3 NMIndexingService; C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe [279848 2007-06-27] (Nero AG)
S3 ose; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [89136 2003-07-28] (Microsoft Corporation)
R2 JavaQuickStarterService; "C:\Program Files\Java\jre7\bin\jqs.exe" -service -config "C:\Program Files\Java\jre7\lib\deploy\jqs\jqs.conf"

==================== Drivers (Whitelisted) ====================

S3 Ambfilt; C:\Windows\System32\drivers\Ambfilt.sys [1684736 2008-08-05] (Creative)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [67824 2014-01-02] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [54832 2014-01-02] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [49944 2014-01-02] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [775952 2014-01-02] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [410528 2014-01-02] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57672 2014-01-02] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [180248 2014-01-02] ()
R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdXP3.sys [103040 2012-05-14] (Advanced Micro Devices)
R1 avgtp; C:\WINDOWS\system32\drivers\avgtpx86.sys [37664 2013-09-28] (AVG Technologies)
S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [13896 2012-12-21] ()
S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [9160 2012-12-21] ()
S3 HPZid412; C:\Windows\System32\DRIVERS\HPZid412.sys [49664 2006-04-13] (HP)
S3 HPZipr12; C:\Windows\System32\DRIVERS\HPZipr12.sys [16496 2006-04-13] (HP)
S3 HPZius12; C:\Windows\System32\DRIVERS\HPZius12.sys [21568 2006-04-13] (HP)
R4 InCDfs; C:\Windows\System32\drivers\InCDFs.sys [118952 2007-11-26] (Nero AG)
R1 InCDPass; C:\Windows\System32\drivers\InCDPass.sys [36776 2007-11-26] (Nero AG)
U1 InCDrec; C:\Windows\System32\Drivers\InCDrec.sys [16040 2007-11-26] (Nero AG)
R1 incdrm; C:\Windows\System32\drivers\InCDRm.sys [38440 2007-11-26] (Nero AG)
S3 Monfilt; C:\Windows\System32\drivers\Monfilt.sys [1389056 2006-01-04] (Creative Technology Ltd.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [214696 2013-09-27] (Microsoft Corporation)
R1 MpKsla7a846e7; c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{048BEDC0-1A24-437F-B82C-BE52B37730D6}\MpKsla7a846e7.sys [40392 2014-01-02] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [5810 2004-08-12] ()
R3 NVENETFD; C:\Windows\System32\DRIVERS\NVENETFD.sys [54784 2008-08-01] (NVIDIA Corporation)
R3 nvnetbus; C:\Windows\System32\DRIVERS\nvnetbus.sys [22016 2008-08-01] (NVIDIA Corporation)
S1 AmdPPM; system32\DRIVERS\AmdPPM.sys [x]
R3 cpuz136; \??\C:\WINDOWS\TEMP\cpuz136\cpuz136_x32.sys [x]
S4 IntelIde; No ImagePath
S3 iSafeKrnl; \??\C:\Program Files\iSafe\iSafeKrnl.sys [x]
S1 iSafeNetFilter; \??\C:\Program Files\iSafe\iSafeNetFilter.sys [x]
U5 ScsiPort; C:\Windows\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U1 WS2IFSL;

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-02 21:33 - 2014-01-02 21:33 - 00000000 _____ C:\WINDOWS\setuperr.log
2014-01-02 21:33 - 2014-01-02 21:33 - 00000000 _____ C:\WINDOWS\setupact.log
2014-01-02 21:32 - 2014-01-02 21:33 - 00003190 _____ C:\WINDOWS\setupapi.log
2014-01-02 20:35 - 2014-01-02 20:35 - 00266208 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2014-01-02 16:38 - 2014-01-02 16:38 - 00069592 _____ C:\Documents and Settings\malglaive\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2014-01-02 15:54 - 2014-01-02 15:54 - 00000730 _____ C:\Documents and Settings\malglaive\Bureau\WinRAR.lnk
2014-01-02 15:54 - 2014-01-02 15:54 - 00000000 ____D C:\Documents and Settings\malglaive\Menu Démarrer\Programmes\WinRAR
2014-01-02 15:54 - 2014-01-02 15:54 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WinRAR
2014-01-02 12:34 - 2014-01-02 23:38 - 00000000 ____D C:\FRST
2014-01-02 12:00 - 2014-01-02 20:58 - 00001743 _____ C:\Documents and Settings\All Users\Bureau\avast! Free Antivirus.lnk
2014-01-02 12:00 - 2014-01-02 12:00 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Avast
2014-01-02 11:27 - 2014-01-02 20:57 - 00775952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2014-01-02 11:27 - 2014-01-02 20:57 - 00410528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2014-01-02 11:27 - 2014-01-02 20:57 - 00180248 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys
2014-01-02 11:27 - 2014-01-02 20:57 - 00067824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2014-01-02 11:27 - 2014-01-02 20:57 - 00057672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2014-01-02 11:27 - 2014-01-02 20:57 - 00054832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2014-01-02 11:27 - 2014-01-02 20:57 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-01-02 11:27 - 2014-01-02 11:27 - 00049944 _____ C:\WINDOWS\system32\Drivers\aswRvrt.sys
2014-01-02 11:26 - 2014-01-02 11:26 - 00000000 ____D C:\Program Files\AVAST Software
2013-12-19 15:29 - 2013-12-19 15:29 - 00000000 ____D C:\Avenger
2013-12-18 23:28 - 2014-01-02 17:57 - 00000440 ____H C:\WINDOWS\Tasks\User_Feed_Synchronization-{FCA9346C-2386-4839-8C1C-221FD44C3256}.job
2013-12-18 22:41 - 2013-12-18 22:41 - 00000000 ____D C:\Documents and Settings\malglaive\Application Data\eCyber
2013-12-18 22:34 - 2014-01-02 13:57 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\YAC
2013-12-18 19:37 - 2013-12-18 22:27 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\WPM
2013-12-13 13:16 - 2013-12-14 13:00 - 00000000 ____D C:\Documents and Settings\malglaive\Bureau\photos annonces
2013-12-11 09:32 - 2001-08-23 17:20 - 00006912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\serscan.sys
2013-12-11 09:32 - 2001-08-23 17:20 - 00006912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serscan.sys
2013-12-11 09:25 - 2013-12-11 09:25 - 00001752 _____ C:\Documents and Settings\All Users\Bureau\HP Photo Creations.lnk
2013-12-11 09:25 - 2013-12-11 09:25 - 00000000 ____D C:\Program Files\HP Photo Creations
2013-12-11 09:25 - 2013-12-11 09:25 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Visan
2013-12-11 09:25 - 2013-12-11 09:25 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\HP Photo Creations
2013-12-11 09:24 - 2014-01-02 20:40 - 00000458 _____ C:\WINDOWS\Tasks\At2.job
2013-12-11 09:24 - 2014-01-02 16:49 - 00000000 ____D C:\Documents and Settings\malglaive\Application Data\HpUpdate
2013-12-11 09:24 - 2014-01-02 14:00 - 00000458 _____ C:\WINDOWS\Tasks\At4.job
2013-12-11 09:24 - 2014-01-02 10:10 - 00000458 _____ C:\WINDOWS\Tasks\At1.job
2013-12-11 09:24 - 2014-01-02 09:24 - 00000458 _____ C:\WINDOWS\Tasks\At3.job
2013-12-11 09:23 - 2013-12-13 13:00 - 00002003 _____ C:\Documents and Settings\All Users\Bureau\HP Photosmart 5520 series.lnk
2013-12-11 09:23 - 2013-12-11 09:25 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HP
2013-12-11 09:23 - 2013-12-11 09:23 - 00000935 _____ C:\Documents and Settings\All Users\Bureau\Achat de consommables - HP Photosmart 5520 series.lnk
2013-12-11 09:23 - 2012-10-17 19:38 - 02216336 _____ (Hewlett-Packard Co.) C:\WINDOWS\system32\hpinkinsB111.exe
2013-12-11 09:23 - 2012-10-17 19:38 - 01979280 _____ (Hewlett-Packard Co.) C:\WINDOWS\system32\HPScanTRDrv_PS5520.dll
2013-12-11 09:23 - 2012-10-17 19:38 - 00529808 _____ (Hewlett-Packard Co.) C:\WINDOWS\system32\hpinkstsB111.dll
2013-12-11 09:23 - 2012-10-17 19:38 - 00495504 _____ (Hewlett-Packard) C:\WINDOWS\system32\HPWia1_PS5520.dll
2013-12-11 09:23 - 2012-10-17 19:38 - 00268688 _____ (Hewlett-Packard Co.) C:\WINDOWS\system32\hpinkstsB111LM.dll
2013-12-11 09:23 - 2012-10-17 19:38 - 00220560 _____ (Hewlett-Packard Co.) C:\WINDOWS\system32\hpinkcoiB111.dll
2013-12-11 09:23 - 2012-10-17 04:04 - 00580712 ____N (Hewlett-Packard Co.) C:\WINDOWS\system32\HPDiscoPMB111.dll
2013-12-11 09:22 - 2013-12-11 09:22 - 00000057 _____ C:\Documents and Settings\All Users\Application Data\Ament.ini
2013-12-11 09:05 - 2013-12-14 12:56 - 00000000 ____D C:\Documents and Settings\malglaive\Local Settings\Application Data\LogMeIn Rescue Applet

==================== One Month Modified Files and Folders =======

2014-01-02 23:38 - 2014-01-02 12:34 - 00000000 ____D C:\FRST
2014-01-02 23:35 - 2012-04-22 11:16 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-02 23:34 - 2009-06-24 15:08 - 00000000 ____D C:\Documents and Settings\malglaive\Bureau
2014-01-02 23:30 - 2013-11-20 09:44 - 00000366 ____H C:\WINDOWS\Tasks\MpIdleTask.job
2014-01-02 22:21 - 2010-01-06 13:49 - 01971897 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-02 21:33 - 2014-01-02 21:33 - 00000000 _____ C:\WINDOWS\setuperr.log
2014-01-02 21:33 - 2014-01-02 21:33 - 00000000 _____ C:\WINDOWS\setupact.log
2014-01-02 21:33 - 2014-01-02 21:32 - 00003190 _____ C:\WINDOWS\setupapi.log
2014-01-02 20:58 - 2014-01-02 12:00 - 00001743 _____ C:\Documents and Settings\All Users\Bureau\avast! Free Antivirus.lnk
2014-01-02 20:58 - 2013-11-15 18:52 - 00000316 ____H C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-01-02 20:57 - 2014-01-02 11:27 - 00775952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2014-01-02 20:57 - 2014-01-02 11:27 - 00410528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2014-01-02 20:57 - 2014-01-02 11:27 - 00180248 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys
2014-01-02 20:57 - 2014-01-02 11:27 - 00067824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2014-01-02 20:57 - 2014-01-02 11:27 - 00057672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2014-01-02 20:57 - 2014-01-02 11:27 - 00054832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2014-01-02 20:57 - 2014-01-02 11:27 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-01-02 20:57 - 2013-11-15 18:46 - 00270240 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-01-02 20:47 - 2009-06-24 16:59 - 00000159 _____ C:\WINDOWS\wiadebug.log
2014-01-02 20:46 - 2013-06-03 19:31 - 00001058 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cac677a566efb8.job
2014-01-02 20:46 - 2009-06-24 16:59 - 00000050 _____ C:\WINDOWS\wiaservc.log
2014-01-02 20:46 - 2009-06-24 15:07 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-02 20:44 - 2013-06-17 19:45 - 00524288 _____ C:\WINDOWS\system32\config\ACEEvent.evt
2014-01-02 20:44 - 2012-11-24 22:33 - 00288762 _____ C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat
2014-01-02 20:44 - 2010-01-28 09:41 - 00032570 _____ C:\WINDOWS\SchedLgU.Txt
2014-01-02 20:44 - 2009-06-24 15:08 - 00000000 ____D C:\Documents and Settings\malglaive
2014-01-02 20:40 - 2013-12-11 09:24 - 00000458 _____ C:\WINDOWS\Tasks\At2.job
2014-01-02 20:35 - 2014-01-02 20:35 - 00266208 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2014-01-02 20:35 - 2013-02-21 20:16 - 00000000 ____D C:\Program Files\WinRAR
2014-01-02 20:35 - 2013-01-06 18:48 - 00578410 _____ C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-602162358-1644491937-839522115-1004-0.dat
2014-01-02 20:34 - 2009-06-24 15:08 - 00000284 ___SH C:\Documents and Settings\malglaive\ntuser.ini
2014-01-02 18:16 - 2010-01-05 11:11 - 00002573 _____ C:\Documents and Settings\malglaive\Bureau\Microsoft Office Word 2003.lnk
2014-01-02 17:57 - 2013-12-18 23:28 - 00000440 ____H C:\WINDOWS\Tasks\User_Feed_Synchronization-{FCA9346C-2386-4839-8C1C-221FD44C3256}.job
2014-01-02 17:25 - 2004-08-05 13:00 - 00013646 _____ C:\WINDOWS\system32\wpa.dbl
2014-01-02 16:49 - 2013-12-11 09:24 - 00000000 ____D C:\Documents and Settings\malglaive\Application Data\HpUpdate
2014-01-02 16:44 - 2010-01-26 15:00 - 00000000 ____D C:\Documents and Settings\malglaive\Application Data\vlc
2014-01-02 16:42 - 2013-02-20 08:54 - 00000000 ____D C:\Documents and Settings\malglaive\Bureau\dessins animés
2014-01-02 16:42 - 2011-04-10 09:36 - 00000000 ____D C:\Documents and Settings\malglaive\Bureau\FILMS
2014-01-02 16:38 - 2014-01-02 16:38 - 00069592 _____ C:\Documents and Settings\malglaive\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2014-01-02 15:54 - 2014-01-02 15:54 - 00000730 _____ C:\Documents and Settings\malglaive\Bureau\WinRAR.lnk
2014-01-02 15:54 - 2014-01-02 15:54 - 00000000 ____D C:\Documents and Settings\malglaive\Menu Démarrer\Programmes\WinRAR
2014-01-02 15:54 - 2014-01-02 15:54 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WinRAR
2014-01-02 15:54 - 2009-06-24 16:58 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Démarrer\Programmes
2014-01-02 15:54 - 2009-06-24 15:08 - 00000000 ___RD C:\Documents and Settings\malglaive\Menu Démarrer\Programmes
2014-01-02 14:00 - 2013-12-11 09:24 - 00000458 _____ C:\WINDOWS\Tasks\At4.job
2014-01-02 14:00 - 2009-07-09 13:05 - 00000000 ____D C:\Documents and Settings\malglaive\Bureau\INSTALL
2014-01-02 13:57 - 2013-12-18 22:34 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\YAC
2014-01-02 13:57 - 2009-06-24 16:58 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Démarrer
2014-01-02 13:24 - 2009-07-13 18:39 - 00000000 ____D C:\Documents and Settings\malglaive\Application Data\Google
2014-01-02 12:44 - 2009-07-13 18:39 - 00000000 ____D C:\Documents and Settings\malglaive\Local Settings\Application Data\Google
2014-01-02 12:00 - 2014-01-02 12:00 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Avast
2014-01-02 12:00 - 2009-06-24 16:58 - 00000000 ____D C:\Documents and Settings\All Users\Bureau
2014-01-02 11:28 - 2009-07-13 18:39 - 00000000 ____D C:\Program Files\Google
2014-01-02 11:27 - 2014-01-02 11:27 - 00049944 _____ C:\WINDOWS\system32\Drivers\aswRvrt.sys
2014-01-02 11:26 - 2014-01-02 11:26 - 00000000 ____D C:\Program Files\AVAST Software
2014-01-02 11:26 - 2013-11-15 18:44 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\AVAST Software
2014-01-02 11:17 - 2012-04-22 10:31 - 00001919 _____ C:\WINDOWS\epplauncher.mif
2014-01-02 10:10 - 2013-12-11 09:24 - 00000458 _____ C:\WINDOWS\Tasks\At1.job
2014-01-02 09:24 - 2013-12-11 09:24 - 00000458 _____ C:\WINDOWS\Tasks\At3.job
2014-01-01 18:40 - 2013-11-07 21:10 - 00000000 ____D C:\AdwCleaner
2013-12-31 19:21 - 2009-06-24 15:08 - 00000813 _____ C:\Documents and Settings\malglaive\Menu Démarrer\Programmes\Internet Explorer.lnk
2013-12-31 19:21 - 2009-06-24 15:08 - 00000748 _____ C:\Documents and Settings\malglaive\Menu Démarrer\Programmes\Outlook Express.lnk
2013-12-30 18:00 - 2012-05-11 08:00 - 00000284 _____ C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
2013-12-30 17:54 - 2009-06-24 15:08 - 00000000 ___RD C:\Documents and Settings\malglaive\Menu Démarrer\Programmes\Accessoires
2013-12-30 12:59 - 2009-06-24 15:07 - 00000000 __SHD C:\Documents and Settings\NetworkService
2013-12-30 12:59 - 2009-06-24 15:07 - 00000000 __SHD C:\Documents and Settings\LocalService
2013-12-30 12:59 - 2009-06-24 15:02 - 00000000 ____D C:\WINDOWS\Registration
2013-12-19 15:45 - 2009-06-24 16:49 - 00000000 ____D C:\WINDOWS\Help
2013-12-19 15:29 - 2013-12-19 15:29 - 00000000 ____D C:\Avenger
2013-12-19 15:29 - 2013-06-03 19:34 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Google Chrome
2013-12-19 00:00 - 2013-06-18 10:44 - 00000927 _____ C:\Documents and Settings\malglaive\Bureau\Google Chrome.lnk
2013-12-19 00:00 - 2009-07-09 12:53 - 00000757 _____ C:\Documents and Settings\malglaive\Bureau\Démarrer Internet Explorer.lnk
2013-12-19 00:00 - 2009-06-24 16:58 - 00000000 ____D C:\Program Files\Fichiers communs
2013-12-18 23:03 - 2009-06-24 15:08 - 00000000 __SHD C:\Documents and Settings\malglaive\Local Settings\Historique
2013-12-18 22:42 - 2013-06-03 19:31 - 00001062 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-18 22:41 - 2013-12-18 22:41 - 00000000 ____D C:\Documents and Settings\malglaive\Application Data\eCyber
2013-12-18 22:35 - 2011-06-11 00:58 - 00773800 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100.dll
2013-12-18 22:35 - 2011-06-11 00:58 - 00421032 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp100.dll
2013-12-18 22:27 - 2013-12-18 19:37 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\WPM
2013-12-18 22:23 - 2009-07-09 13:05 - 00000000 ____D C:\Documents and Settings\malglaive\Bureau\ICONES INERTES
2013-12-18 20:00 - 2013-06-03 10:55 - 00001573 _____ C:\Documents and Settings\All Users\Menu Démarrer\Configurer les programmes par défaut.lnk
2013-12-18 20:00 - 2009-06-24 15:04 - 00001609 _____ C:\Documents and Settings\Default User\Menu Démarrer\Programmes\Assistance à distance.lnk
2013-12-14 13:00 - 2013-12-13 13:16 - 00000000 ____D C:\Documents and Settings\malglaive\Bureau\photos annonces
2013-12-14 12:56 - 2013-12-11 09:05 - 00000000 ____D C:\Documents and Settings\malglaive\Local Settings\Application Data\LogMeIn Rescue Applet
2013-12-13 13:18 - 2009-06-24 09:37 - 00000000 ____D C:\WINDOWS\ie8updates
2013-12-13 13:18 - 2009-06-24 09:34 - 00280650 _____ C:\WINDOWS\system32\TZLog.log
2013-12-13 13:17 - 2013-07-16 08:14 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-12-13 13:14 - 2009-06-24 09:36 - 88123800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-12-13 13:00 - 2013-12-11 09:23 - 00002003 _____ C:\Documents and Settings\All Users\Bureau\HP Photosmart 5520 series.lnk
2013-12-11 20:49 - 2012-03-06 19:11 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\VideoLAN
2013-12-11 20:49 - 2010-01-26 15:00 - 00000729 _____ C:\Documents and Settings\All Users\Bureau\VLC media player.lnk
2013-12-11 13:36 - 2012-04-22 11:16 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2013-12-11 13:36 - 2012-04-22 11:16 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2013-12-11 09:50 - 2009-07-09 14:29 - 00000000 ____D C:\Documents and Settings\malglaive\Local Settings\Application Data\HP
2013-12-11 09:25 - 2013-12-11 09:25 - 00001752 _____ C:\Documents and Settings\All Users\Bureau\HP Photo Creations.lnk
2013-12-11 09:25 - 2013-12-11 09:25 - 00000000 ____D C:\Program Files\HP Photo Creations
2013-12-11 09:25 - 2013-12-11 09:25 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Visan
2013-12-11 09:25 - 2013-12-11 09:25 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\HP Photo Creations
2013-12-11 09:25 - 2013-12-11 09:23 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HP
2013-12-11 09:24 - 2009-07-09 13:54 - 00000000 ____D C:\Program Files\HP
2013-12-11 09:23 - 2013-12-11 09:23 - 00000935 _____ C:\Documents and Settings\All Users\Bureau\Achat de consommables - HP Photosmart 5520 series.lnk
2013-12-11 09:22 - 2013-12-11 09:22 - 00000057 _____ C:\Documents and Settings\All Users\Application Data\Ament.ini
2013-12-11 09:22 - 2009-07-28 13:06 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\HP
2013-12-11 09:22 - 2009-06-24 16:49 - 00000000 ____D C:\WINDOWS\twain_32
2013-12-11 09:16 - 2009-07-09 13:52 - 00006393 ____C C:\Documents and Settings\All Users\Application Data\hpzinstall.log
2013-12-11 09:13 - 2009-06-24 16:58 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage

Files to move or delete:
====================
C:\Windows\Tasks\At1.job
C:\Windows\Tasks\At2.job
C:\Windows\Tasks\At3.job
C:\Windows\Tasks\At4.job


Some content of TEMP:
====================
C:\Documents and Settings\malglaive\Local Settings\Temp\GoogleUpdateSetup_1.3.21.169.exe
C:\Documents and Settings\NetworkService\Local Settings\Temp\mpam-5d21fec3.exe
C:\Documents and Settings\NetworkService\Local Settings\Temp\mpam-b3d11515.exe
C:\Documents and Settings\NetworkService\Local Settings\Temp\mpam-f4fb1aca.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe
[2004-08-05 13:00] - [2008-04-13 18:34] - 0512000 ____A (Microsoft Corporation) dd73d6b9f6b4cb630cf35b438b540174

C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll
[2004-08-05 13:00] - [2008-04-13 18:33] - 0579584 ____A (Microsoft Corporation) e853f84d3ce2faa2a802e33cf89ac023

C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== End Of Log ============================