Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:11-05-2014 01
Ran by HP_Administrateur (administrator) on NOM-FB9B15D2723 on 14-05-2014 12:26:16
Running from C:\Documents and Settings\HP_Administrateur\Bureau
Platform: Microsoft Windows XP Professionnel Service Pack 3 (X86) OS Language: French Standard
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.24.7\GoogleCrashHandler.exe
(Microsoft Corporation) C:\WINDOWS\ehome\ehtray.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Sonic Solutions) C:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
(RealNetworks, Inc.) C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Microsoft Corporation) C:\Program Files\Messenger\msmsgs.exe
() C:\Program Files\Orange\Orange Installer\OrangeInstaller.exe
(Orange) C:\Program Files\Orange\MailNotifier\MailNotifier.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Creative Technology Ltd) C:\Program Files\Creative\Shared Files\CamTray.exe
(Spigot, Inc.) C:\Documents and Settings\HP_Administrateur\Application Data\Search Protection\SearchProtection.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(Orange) C:\Program Files\Orange\Assistance Livebox\AssistanceLivebox.exe
(MyPCBackup.com) C:\Program Files\MyPC Backup\MyPC Backup.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Microsoft) C:\WINDOWS\arservice.exe
(Orange) C:\Program Files\Orange\Assistance Livebox\dist\ST2.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
(Microsoft Corporation) C:\WINDOWS\ehome\ehrecvr.exe
(Microsoft Corporation) C:\WINDOWS\ehome\ehSched.exe
(Hewlett-Packard Company) C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe
(Microsoft Corporation) C:\WINDOWS\ehome\ehmsas.exe
(Hewlett-Packard Company) C:\hp\KBD\kbd.exe
(Hewlett-Packard Company) C:\WINDOWS\system\hpsysdrv.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\realplay.exe
(Microsoft Corporation) C:\WINDOWS\system32\msfeedssync.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [ehTray] => C:\WINDOWS\ehome\ehtray.exe [64512 2005-08-05] (Microsoft Corporation)
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [16261632 2006-07-22] (Realtek Semiconductor Corp.)
HKLM\...\Run: [AlwaysReady Power Message APP] => C:\WINDOWS\ARPWRMSG.EXE [77312 2005-08-03] (Microsoft)
HKLM\...\Run: [NvCplDaemon] => C:\WINDOWS\system32\NvCpl.dll [7311360 2006-05-10] (NVIDIA Corporation)
HKLM\...\Run: [nwiz] => nwiz.exe /install
HKLM\...\Run: [DMAScheduler] => c:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe [90112 2006-04-13] (Sonic Solutions)
HKLM\...\Run: [Recguard] => C:\WINDOWS\SMINST\RECGUARD.EXE [237568 2005-07-22] ()
HKLM\...\Run: [HPBootOp] => C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe [249856 2006-02-15] (Hewlett-Packard Company)
HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [49152 2006-02-19] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [TkBellExe] => C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [180269 2006-09-12] (RealNetworks, Inc.)
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [689744 2014-03-13] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
HKLM\...\Policies\Explorer: [NoCDBurning] 0
HKU\S-1-5-21-3661372232-82253138-70622474-1007\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-13] (Microsoft Corporation)
HKU\S-1-5-21-3661372232-82253138-70622474-1007\...\Run: [orangeinside] => C:\Documents and Settings\HP_Administrateur\Application Data\Orange\OrangeInside\one\OrangeInside.exe [1526272 2012-11-22] (Orange)
HKU\S-1-5-21-3661372232-82253138-70622474-1007\...\Run: [Orange Installer] => C:\Program Files\Orange\Orange Installer\OrangeInstaller.exe [561320 2012-11-27] ()
HKU\S-1-5-21-3661372232-82253138-70622474-1007\...\Run: [MailNotifier] => C:\Program Files\Orange\MailNotifier\MailNotifier.exe [883800 2012-12-10] (Orange)
HKU\S-1-5-21-3661372232-82253138-70622474-1007\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [20922016 2014-02-10] (Skype Technologies S.A.)
HKU\S-1-5-21-3661372232-82253138-70622474-1007\...\Run: [Creative WebCam Tray] => C:\Program Files\Creative\Shared Files\CamTray.exe [258048 2005-03-29] (Creative Technology Ltd)
HKU\S-1-5-21-3661372232-82253138-70622474-1007\...\Run: [SearchProtection] => C:\Documents and Settings\HP_Administrateur\Application Data\Search Protection\SearchProtection.EXE [842088 2014-04-25] (Spigot, Inc.)
HKU\S-1-5-21-3661372232-82253138-70622474-1007\...\Run: [Browser Extensions] => C:\Documents and Settings\HP_Administrateur\Application Data\Browser Extensions\CouponsHelper.exe [961384 2014-04-23] (Spigot, Inc.)
Startup: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Development Company, L.P.)
Startup: C:\Documents and Settings\Default User\Menu Démarrer\Programmes\Démarrage\Pin.lnk
ShortcutTarget: Pin.lnk -> C:\hp\bin\cloaker.exe (Hewlett-Packard Co.)
Startup: C:\Documents and Settings\Default User\Menu Démarrer\Programmes\Démarrage\PinMcLnk.lnk
ShortcutTarget: PinMcLnk.lnk -> C:\hp\bin\cloaker.exe (Hewlett-Packard Co.)
Startup: C:\Documents and Settings\HP_Administrateur\Menu Démarrer\Programmes\Démarrage\Assistance Livebox.lnk
ShortcutTarget: Assistance Livebox.lnk -> C:\Program Files\Orange\Assistance Livebox\AssistanceLivebox.exe (Orange)
Startup: C:\Documents and Settings\HP_Administrateur\Menu Démarrer\Programmes\Démarrage\MyPC Backup.lnk
ShortcutTarget: MyPC Backup.lnk -> C:\Program Files\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.search.yahoo.com/?type=994519&fr=spigot-yhp-ie
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=64&bd=PAVILION&pf=desktop
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/?f=1&a=tele_14_20_ff&cd=2XzuyEtN2Y1L1QzutDtDtCzz0FtA0C0A0DyDyEyEyE0DyDzytN0D0Tzu0SzzyCyEtN1L2XzutBtFtBtDtFzytFtBtN1L1CzutCyEtDtAtDyD1V1RtN1L1G1B1V1N2Y1L1Qzu2StByE0CyB0F0B0DyDtG0Czz0EtAtG0D0C0AyDtGyCtBtDzztGyC0Azy0F0EtC0CtAyCyByDtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyDtD0AtCtDzyyD0FtG0C0D0FyEtGzztDtBzytGyE0C0CzytGtCyEtCyEtD0F0A0DyDtA0DtA2Q&cr=1502017945&ir=
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=64&bd=PAVILION&pf=desktop
SearchScopes: HKLM - DefaultScope {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = 
SearchScopes: HKCU - DefaultScope {960BF711-1356-4F06-A754-6CF0513C7D58} URL = http://fr.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=994519&p={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search
SearchScopes: HKCU - {960BF711-1356-4F06-A754-6CF0513C7D58} URL = http://fr.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=994519&p={searchTerms}
BHO: Browser Extensions - {34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} - C:\Documents and Settings\HP_Administrateur\Application Data\Browser Extensions\Coupons.dll (Spigot, Inc.)
BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: No Name - {AA58ED58-01DD-4d91-8333-CF10577473F7} -  No File
Toolbar: HKLM - barre d'outils Orange - {c9a6357b-25cc-4bcf-96c1-78736985d412} - C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation)
Toolbar: HKCU - &Adresse - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Liens - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1393770933328
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Fichiers communs\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\d4bct4oo.default
FF user.js: detected! => C:\Documents and Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\d4bct4oo.default\user.js
FF Homepage: https://boutique.orange.fr/mobile?utm_source=google&utm_medium=cpc&utm_term=orange&utm_content=mobile&utm_campaign=Shop%20-%20Marque_ESV
FF Keyword.URL: hxxp://fr.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=994519&p=
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_13_0_0_206.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=6.0.11.2321 - C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprjplug;version=1.0.2.2379 - C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.1483 - C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Documents and Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\d4bct4oo.default\searchplugins\Mysearchdial.xml
FF SearchPlugin: C:\Documents and Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\d4bct4oo.default\searchplugins\yahoo_ff.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazon-france.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-france.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-france.xml
FF Extension: Amazon Shopping Assistant by Spigot - C:\Documents and Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\d4bct4oo.default\Extensions\saamazon@mybrowserbar.com [2014-05-14]
FF Extension: Ebay Shopping Assistant by Spigot - C:\Documents and Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\d4bct4oo.default\Extensions\saebay@mybrowserbar.com [2014-05-14]
FF Extension: Slick Savings - C:\Documents and Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\d4bct4oo.default\Extensions\savingsslider@mybrowserbar.com [2014-05-14]
FF Extension: Start Page - C:\Documents and Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\d4bct4oo.default\Extensions\{58d2a791-6199-482f-a9aa-9b725ec61362} [2014-05-14]
FF Extension: MySearchDial NewTab - C:\Documents and Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\d4bct4oo.default\Extensions\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8} [2014-05-13]
FF Extension: Adblock Plus - C:\Documents and Settings\HP_Administrateur\Application Data\Mozilla\Firefox\Profiles\d4bct4oo.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-05-05]
FF HKLM\...\Firefox\Extensions: [{3112ca9c-de6d-4884-a869-9855de68056c}] - C:\Documents and Settings\All Users\Application Data\Google\Toolbar for Firefox\{3112ca9c-de6d-4884-a869-9855de68056c}
FF Extension: Google Toolbar for Firefox - C:\Documents and Settings\All Users\Application Data\Google\Toolbar for Firefox\{3112ca9c-de6d-4884-a869-9855de68056c} [2014-03-02]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []

========================== Services (Whitelisted) =================

S2 AntiVirMailService; C:\Program Files\Avira\AntiVir Desktop\avmailc.exe [896592 2014-02-25] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440400 2014-03-13] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440400 2014-03-13] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1017424 2014-03-13] (Avira Operations GmbH & Co. KG)
R2 ARSVC; C:\WINDOWS\arservice.exe [58880 2005-08-03] (Microsoft)
S2 BackupStack; C:\Program Files\MyPC Backup\BackupStack.exe [36392 2014-03-14] (Just Develop It)
S3 IDriverT; C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation)
R2 LightScribeService; C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe [49152 2006-06-21] (Hewlett-Packard Company)
R2 McrdSvc; C:\WINDOWS\ehome\mcrdsvc.exe [99328 2005-08-05] (Microsoft Corporation)
S3 odserv; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [441136 2006-10-26] (Microsoft Corporation)
S3 ose; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [145184 2006-10-26] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [43008 2005-03-09] (Advanced Micro Devices)
R3 aracpi; C:\WINDOWS\System32\DRIVERS\aracpi.sys [22784 2005-08-03] (Microsoft Corporation)
S3 arhidfltr; C:\WINDOWS\System32\DRIVERS\arhidfltr.sys [19200 2005-08-03] (Microsoft Corporation)
R3 arkbcfltr; C:\WINDOWS\System32\DRIVERS\arkbcfltr.sys [5376 2005-08-03] (Microsoft Corporation)
R3 armoucfltr; C:\WINDOWS\System32\DRIVERS\armoucfltr.sys [4992 2005-08-03] (Microsoft Corporation)
R3 ARPolicy; C:\WINDOWS\System32\DRIVERS\arpolicy.sys [10112 2005-08-03] (Microsoft Corporation)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [90400 2013-12-13] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\System32\DRIVERS\avipbb.sys [135648 2013-12-13] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\System32\DRIVERS\avkmgr.sys [37352 2013-12-13] (Avira Operations GmbH & Co. KG)
R0 bb-run; C:\WINDOWS\System32\DRIVERS\bb-run.sys [17408 2003-11-05] (Promise Technology, Inc.)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R0 ftsata2; C:\WINDOWS\System32\DRIVERS\ftsata2.sys [175104 2005-06-29] (Promise Technology, Inc.)
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49664 2006-04-12] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2006-04-12] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2006-04-12] (HP)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [35088 2011-02-11] (CACE Technologies, Inc.)
R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [34176 2006-03-04] (NVIDIA Corporation)
R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [13056 2006-03-04] (NVIDIA Corporation)
R3 P1171VID; C:\WINDOWS\System32\DRIVERS\P1171Vid.sys [91392 2004-03-19] (Creative Technology Ltd.)
R3 RT73; C:\WINDOWS\System32\DRIVERS\rt73.sys [252928 2006-01-13] (Ralink Technology, Corp.)
S3 rtl8139; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [20992 2004-08-03] (Realtek Semiconductor Corporation)
R1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [28520 2013-12-13] (Avira GmbH)
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U1 WS2IFSL; 

==================== NetSvcs (Whitelisted) ===================

NETSVC: MHN -> C:\Windows\System32\mhn.dll (Microsoft Corporation)

==================== One Month Created Files and Folders ========

2014-05-14 12:26 - 2014-05-14 12:26 - 00019654 _____ () C:\Documents and Settings\HP_Administrateur\Bureau\FRST.txt
2014-05-14 12:26 - 2014-05-14 12:26 - 00000000 ____D () C:\FRST
2014-05-14 12:24 - 2014-05-14 12:24 - 01056256 _____ (Farbar) C:\Documents and Settings\HP_Administrateur\Bureau\FRST.exe
2014-05-13 20:10 - 2014-05-13 20:10 - 00001516 _____ () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Vuze.lnk
2014-05-13 20:10 - 2014-05-13 20:10 - 00001516 _____ () C:\Documents and Settings\All Users\Bureau\Vuze.lnk
2014-05-13 20:10 - 2014-05-13 20:10 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Application Data\Search Protection
2014-05-13 20:09 - 2014-05-13 21:21 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Application Data\Azureus
2014-05-13 20:09 - 2014-05-13 20:09 - 00000416 _____ () C:\WINDOWS\Tasks\At1.job
2014-05-13 20:08 - 2014-05-13 20:08 - 00000000 ____D () C:\Program Files\Mysearchdial
2014-05-13 20:08 - 2014-05-13 20:07 - 10209312 _____ (Azureus Software, Inc.) C:\Documents and Settings\HP_Administrateur\Mes documents\Vuze_Installer32.exe
2014-05-13 19:55 - 2014-05-13 19:55 - 00000773 _____ () C:\Documents and Settings\HP_Administrateur\Bureau\MyPC Backup.lnk
2014-05-13 19:55 - 2014-05-13 19:55 - 00000000 ____D () C:\Program Files\MyPC Backup
2014-05-13 19:55 - 2014-05-13 19:55 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Menu Démarrer\Programmes\MyPC Backup
2014-05-13 19:55 - 2014-05-13 19:55 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\.swt
2014-05-13 19:53 - 2014-05-13 20:10 - 00000000 ____D () C:\Program Files\Vuze
2014-05-12 20:34 - 2014-05-12 20:34 - 00034096 _____ () C:\Documents and Settings\HP_Administrateur\Bureau\ZHPDiag2.txt
2014-05-12 20:31 - 2014-05-12 20:31 - 00034096 _____ () C:\Documents and Settings\HP_Administrateur\Bureau\ZHPDiag.txt
2014-05-12 20:26 - 2014-05-12 20:26 - 00001811 _____ () C:\Documents and Settings\HP_Administrateur\Bureau\ZHPFixReport.txt
2014-05-12 20:26 - 2014-05-12 20:26 - 00001811 _____ () C:\Documents and Settings\HP_Administrateur\Bureau\ZHPFix[R2].txt
2014-05-12 17:09 - 2014-05-12 20:28 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Application Data\ZHP
2014-05-12 17:09 - 2014-05-12 20:27 - 00000000 ____D () C:\Program Files\ZHPDiag
2014-05-12 17:09 - 2014-05-12 17:09 - 00001639 _____ () C:\Documents and Settings\HP_Administrateur\Bureau\ZHPFix.lnk
2014-05-12 17:09 - 2014-05-12 17:09 - 00001534 _____ () C:\Documents and Settings\HP_Administrateur\Bureau\ZHPDiag.lnk
2014-05-12 17:09 - 2014-05-12 17:09 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ZHP
2014-05-12 17:08 - 2014-05-12 17:08 - 06780874 _____ (Nicolas Coolman ) C:\Documents and Settings\HP_Administrateur\Bureau\zhpdiag2.exe
2014-05-12 17:04 - 2014-05-12 17:04 - 00004164 _____ () C:\Documents and Settings\HP_Administrateur\Bureau\JRT.txt
2014-05-12 16:56 - 2014-05-12 16:56 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-05-12 16:55 - 2014-05-12 16:55 - 01016261 _____ (Thisisu) C:\Documents and Settings\HP_Administrateur\Bureau\JRT.exe
2014-05-12 16:30 - 2014-05-12 16:30 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Mes documents\PC Speed Maximizer
2014-05-12 16:25 - 2014-05-12 16:25 - 00000000 ____D () C:\Program Files\Image Converter
2014-05-12 16:25 - 2014-05-12 16:25 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Menu Démarrer\Programmes\PriceMetér
2014-05-12 16:25 - 2014-05-12 16:25 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Application Data\DigitalSites
2014-05-12 16:25 - 2014-05-12 16:25 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Application Data\0D0S1L2Z1P1B0T1P1B2Z
2014-05-12 15:47 - 2014-05-12 20:21 - 00000000 ____D () C:\Program Files\webget
2014-05-12 15:46 - 2014-05-12 15:46 - 00000717 _____ () C:\Documents and Settings\All Users\Bureau\PDF Reader.lnk
2014-05-12 15:46 - 2014-05-12 15:46 - 00000000 ____D () C:\Program Files\PDF Reader
2014-05-12 15:46 - 2014-05-12 15:46 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\PDF Reader
2014-05-12 15:41 - 2014-05-12 15:41 - 00031681 _____ () C:\Documents and Settings\HP_Administrateur\Bureau\AdwCleaner[S0].txt
2014-05-12 15:05 - 2014-05-12 15:05 - 01325827 _____ () C:\Documents and Settings\HP_Administrateur\Bureau\adwcleaner.exe
2014-05-10 10:02 - 2014-05-10 10:02 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-05-08 17:03 - 2014-05-08 17:03 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Mes documents\Mes albums
2014-05-08 17:03 - 2014-05-08 17:03 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\IsolatedStorage
2014-05-08 17:02 - 2014-05-08 17:02 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\HP
2014-05-07 17:48 - 2014-05-08 13:56 - 00018944 _____ () C:\Documents and Settings\HP_Administrateur\Mes documents\Citroen Dinan.wps
2014-05-07 16:59 - 2014-05-08 13:56 - 00000166 _____ () C:\Documents and Settings\HP_Administrateur\Application Data\wklnhst.dat
2014-05-07 16:59 - 2014-05-07 16:59 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Application Data\Template
2014-05-07 16:58 - 2014-05-07 16:58 - 00000909 _____ () C:\Documents and Settings\HP_Administrateur\Bureau\Microsoft Works.LNK
2014-05-05 20:19 - 2014-05-05 20:19 - 00000693 _____ () C:\Documents and Settings\All Users\Bureau\CCleaner.lnk
2014-05-05 20:19 - 2014-05-05 20:19 - 00000000 ____D () C:\Program Files\CCleaner
2014-05-05 20:19 - 2014-05-05 20:19 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\CCleaner
2014-05-05 18:28 - 2014-05-05 18:28 - 00000000 ____D () C:\Program Files\Fichiers communs\muvee Technologies
2014-05-05 18:28 - 2014-05-05 18:28 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\muvee Technologies
2014-05-03 17:16 - 2014-05-13 20:10 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Application Data\Browser Extensions
2014-05-03 17:14 - 2014-05-05 18:28 - 00000000 ____D () C:\Program Files\Vuze(2)
2014-05-03 10:55 - 2014-05-03 10:55 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\DCB
2014-05-03 10:52 - 2014-05-03 10:52 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Mes documents\My Received Files
2014-04-30 14:05 - 2014-05-11 09:47 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-04-30 14:05 - 2014-04-30 14:05 - 00000735 _____ () C:\Documents and Settings\All Users\Bureau\Mozilla Firefox.lnk
2014-04-29 18:54 - 2014-05-12 20:39 - 00000000 ____D () C:\Program Files\Software
2014-04-29 18:54 - 2014-04-29 18:54 - 00000000 ____D () C:\Program Files\WinZip
2014-04-29 18:54 - 2014-04-29 18:54 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WinZip
2014-04-29 18:54 - 2014-04-29 18:54 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\PopCap Games
2014-04-29 18:11 - 2014-05-12 15:25 - 00000000 ____D () C:\AdwCleaner

==================== One Month Modified Files and Folders =======

2014-05-14 12:27 - 2014-03-03 16:41 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Application Data\Skype
2014-05-14 12:26 - 2014-05-14 12:26 - 00019654 _____ () C:\Documents and Settings\HP_Administrateur\Bureau\FRST.txt
2014-05-14 12:26 - 2014-05-14 12:26 - 00000000 ____D () C:\FRST
2014-05-14 12:26 - 2014-03-03 16:27 - 00000456 ____H () C:\WINDOWS\Tasks\User_Feed_Synchronization-{31696D80-EC4C-4979-B479-28C675D528D2}.job
2014-05-14 12:26 - 2014-03-02 15:34 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Bureau
2014-05-14 12:25 - 2014-03-02 17:28 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Mes documents\Téléchargements
2014-05-14 12:24 - 2014-05-14 12:24 - 01056256 _____ (Farbar) C:\Documents and Settings\HP_Administrateur\Bureau\FRST.exe
2014-05-14 12:13 - 2014-03-02 17:11 - 00001002 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-05-14 11:53 - 2014-03-14 15:35 - 00001078 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-14 11:38 - 2005-10-10 14:31 - 01590098 _____ () C:\WINDOWS\WindowsUpdate.log
2014-05-14 10:31 - 2014-03-02 14:30 - 00000183 _____ () C:\WINDOWS\system\hpsysdrv.DAT
2014-05-14 10:29 - 2005-11-15 04:58 - 00000000 ____D () C:\WINDOWS\Registration
2014-05-14 10:25 - 2014-03-03 17:10 - 00000608 _____ () C:\sti.log
2014-05-14 10:25 - 2005-10-10 15:27 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-05-14 10:25 - 2005-10-10 15:27 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2014-05-14 10:24 - 2014-04-02 18:52 - 00000246 _____ () C:\WINDOWS\Tasks\Notification de fin de service de Microsoft Windows XP - à la connexion.job
2014-05-14 10:24 - 2014-03-14 15:35 - 00001074 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-14 10:24 - 2006-09-12 05:31 - 00043531 _____ () C:\WINDOWS\system32\nvapps.xml
2014-05-14 10:24 - 2005-10-10 14:31 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-05-13 22:59 - 2005-10-10 14:31 - 00032476 _____ () C:\WINDOWS\SchedLgU.Txt
2014-05-13 22:58 - 2014-03-02 15:34 - 00000184 ___SH () C:\Documents and Settings\HP_Administrateur\ntuser.ini
2014-05-13 21:21 - 2014-05-13 20:09 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Application Data\Azureus
2014-05-13 20:10 - 2014-05-13 20:10 - 00001516 _____ () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Vuze.lnk
2014-05-13 20:10 - 2014-05-13 20:10 - 00001516 _____ () C:\Documents and Settings\All Users\Bureau\Vuze.lnk
2014-05-13 20:10 - 2014-05-13 20:10 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Application Data\Search Protection
2014-05-13 20:10 - 2014-05-13 19:53 - 00000000 ____D () C:\Program Files\Vuze
2014-05-13 20:10 - 2014-05-03 17:16 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Application Data\Browser Extensions
2014-05-13 20:10 - 2014-03-02 23:21 - 00000000 ___RD () C:\Documents and Settings\All Users\Menu Démarrer\Programmes
2014-05-13 20:10 - 2005-11-12 02:08 - 00000000 ____D () C:\Documents and Settings\All Users\Bureau
2014-05-13 20:09 - 2014-05-13 20:09 - 00000416 _____ () C:\WINDOWS\Tasks\At1.job
2014-05-13 20:08 - 2014-05-13 20:08 - 00000000 ____D () C:\Program Files\Mysearchdial
2014-05-13 20:07 - 2014-05-13 20:08 - 10209312 _____ (Azureus Software, Inc.) C:\Documents and Settings\HP_Administrateur\Mes documents\Vuze_Installer32.exe
2014-05-13 19:55 - 2014-05-13 19:55 - 00000773 _____ () C:\Documents and Settings\HP_Administrateur\Bureau\MyPC Backup.lnk
2014-05-13 19:55 - 2014-05-13 19:55 - 00000000 ____D () C:\Program Files\MyPC Backup
2014-05-13 19:55 - 2014-05-13 19:55 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Menu Démarrer\Programmes\MyPC Backup
2014-05-13 19:55 - 2014-05-13 19:55 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\.swt
2014-05-13 19:55 - 2014-03-02 15:34 - 00000000 ___RD () C:\Documents and Settings\HP_Administrateur\Menu Démarrer\Programmes\Démarrage
2014-05-13 19:55 - 2014-03-02 15:34 - 00000000 ___RD () C:\Documents and Settings\HP_Administrateur\Menu Démarrer\Programmes
2014-05-13 19:55 - 2014-03-02 15:34 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur
2014-05-13 17:34 - 2014-03-02 19:16 - 00000010 _____ () C:\WINDOWS\popcinfo.dat
2014-05-12 20:39 - 2014-04-29 18:54 - 00000000 ____D () C:\Program Files\Software
2014-05-12 20:34 - 2014-05-12 20:34 - 00034096 _____ () C:\Documents and Settings\HP_Administrateur\Bureau\ZHPDiag2.txt
2014-05-12 20:31 - 2014-05-12 20:31 - 00034096 _____ () C:\Documents and Settings\HP_Administrateur\Bureau\ZHPDiag.txt
2014-05-12 20:28 - 2014-05-12 17:09 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Application Data\ZHP
2014-05-12 20:27 - 2014-05-12 17:09 - 00000000 ____D () C:\Program Files\ZHPDiag
2014-05-12 20:26 - 2014-05-12 20:26 - 00001811 _____ () C:\Documents and Settings\HP_Administrateur\Bureau\ZHPFixReport.txt
2014-05-12 20:26 - 2014-05-12 20:26 - 00001811 _____ () C:\Documents and Settings\HP_Administrateur\Bureau\ZHPFix[R2].txt
2014-05-12 20:21 - 2014-05-12 15:47 - 00000000 ____D () C:\Program Files\webget
2014-05-12 17:09 - 2014-05-12 17:09 - 00001639 _____ () C:\Documents and Settings\HP_Administrateur\Bureau\ZHPFix.lnk
2014-05-12 17:09 - 2014-05-12 17:09 - 00001534 _____ () C:\Documents and Settings\HP_Administrateur\Bureau\ZHPDiag.lnk
2014-05-12 17:09 - 2014-05-12 17:09 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\ZHP
2014-05-12 17:08 - 2014-05-12 17:08 - 06780874 _____ (Nicolas Coolman ) C:\Documents and Settings\HP_Administrateur\Bureau\zhpdiag2.exe
2014-05-12 17:04 - 2014-05-12 17:04 - 00004164 _____ () C:\Documents and Settings\HP_Administrateur\Bureau\JRT.txt
2014-05-12 16:56 - 2014-05-12 16:56 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-05-12 16:55 - 2014-05-12 16:55 - 01016261 _____ (Thisisu) C:\Documents and Settings\HP_Administrateur\Bureau\JRT.exe
2014-05-12 16:30 - 2014-05-12 16:30 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Mes documents\PC Speed Maximizer
2014-05-12 16:25 - 2014-05-12 16:25 - 00000000 ____D () C:\Program Files\Image Converter
2014-05-12 16:25 - 2014-05-12 16:25 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Menu Démarrer\Programmes\PriceMetér
2014-05-12 16:25 - 2014-05-12 16:25 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Application Data\DigitalSites
2014-05-12 16:25 - 2014-05-12 16:25 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Application Data\0D0S1L2Z1P1B0T1P1B2Z
2014-05-12 15:46 - 2014-05-12 15:46 - 00000717 _____ () C:\Documents and Settings\All Users\Bureau\PDF Reader.lnk
2014-05-12 15:46 - 2014-05-12 15:46 - 00000000 ____D () C:\Program Files\PDF Reader
2014-05-12 15:46 - 2014-05-12 15:46 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\PDF Reader
2014-05-12 15:41 - 2014-05-12 15:41 - 00031681 _____ () C:\Documents and Settings\HP_Administrateur\Bureau\AdwCleaner[S0].txt
2014-05-12 15:25 - 2014-04-29 18:11 - 00000000 ____D () C:\AdwCleaner
2014-05-12 15:05 - 2014-05-12 15:05 - 01325827 _____ () C:\Documents and Settings\HP_Administrateur\Bureau\adwcleaner.exe
2014-05-11 09:47 - 2014-04-30 14:05 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-05-10 10:02 - 2014-05-10 10:02 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-05-08 17:03 - 2014-05-08 17:03 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Mes documents\Mes albums
2014-05-08 17:03 - 2014-05-08 17:03 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\IsolatedStorage
2014-05-08 17:02 - 2014-05-08 17:02 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\HP
2014-05-08 15:00 - 2014-04-02 18:52 - 00000240 _____ () C:\WINDOWS\Tasks\Notification de fin de service de Microsoft Windows XP -mensuellement.job
2014-05-08 13:56 - 2014-05-07 17:48 - 00018944 _____ () C:\Documents and Settings\HP_Administrateur\Mes documents\Citroen Dinan.wps
2014-05-08 13:56 - 2014-05-07 16:59 - 00000166 _____ () C:\Documents and Settings\HP_Administrateur\Application Data\wklnhst.dat
2014-05-08 13:54 - 2006-09-12 05:34 - 00000000 ____D () C:\WINDOWS\system32\FxsTmp
2014-05-07 16:59 - 2014-05-07 16:59 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Application Data\Template
2014-05-07 16:58 - 2014-05-07 16:58 - 00000909 _____ () C:\Documents and Settings\HP_Administrateur\Bureau\Microsoft Works.LNK
2014-05-05 20:24 - 2014-03-02 20:18 - 00000000 ____D () C:\WINDOWS\Minidump
2014-05-05 20:19 - 2014-05-05 20:19 - 00000693 _____ () C:\Documents and Settings\All Users\Bureau\CCleaner.lnk
2014-05-05 20:19 - 2014-05-05 20:19 - 00000000 ____D () C:\Program Files\CCleaner
2014-05-05 20:19 - 2014-05-05 20:19 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\CCleaner
2014-05-05 18:30 - 2006-09-12 05:03 - 00000000 __SHD () C:\Documents and Settings\NetworkService
2014-05-05 18:30 - 2006-09-12 05:03 - 00000000 __SHD () C:\Documents and Settings\LocalService
2014-05-05 18:30 - 2005-11-15 04:23 - 00000000 ____D () C:\Documents and Settings\Administrateur
2014-05-05 18:30 - 2005-10-10 13:38 - 00001158 _____ () C:\WINDOWS\system32\wpa.dbl
2014-05-05 18:28 - 2014-05-05 18:28 - 00000000 ____D () C:\Program Files\Fichiers communs\muvee Technologies
2014-05-05 18:28 - 2014-05-05 18:28 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\muvee Technologies
2014-05-05 18:28 - 2014-05-03 17:14 - 00000000 ____D () C:\Program Files\Vuze(2)
2014-05-05 18:28 - 2006-09-12 05:46 - 00000000 ____D () C:\Program Files\muvee Technologies
2014-05-05 18:28 - 2006-09-12 05:43 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-05-05 18:28 - 2005-11-15 04:24 - 00000000 ____D () C:\Program Files\Fichiers communs
2014-05-05 17:50 - 2014-03-02 23:20 - 00000000 ___RD () C:\Documents and Settings\Administrateur\Mes documents\Mes vidéos
2014-05-05 17:50 - 2014-03-02 23:20 - 00000000 ___RD () C:\Documents and Settings\Administrateur\Mes documents\Ma musique
2014-05-03 11:15 - 2014-03-04 20:59 - 00000000 ____D () C:\WINDOWS\ie8updates
2014-05-03 10:55 - 2014-05-03 10:55 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\DCB
2014-05-03 10:52 - 2014-05-03 10:52 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Mes documents\My Received Files
2014-05-03 10:52 - 2014-03-02 15:34 - 00000000 ___RD () C:\Documents and Settings\HP_Administrateur\Mes documents\Ma musique
2014-04-30 14:06 - 2014-03-02 17:27 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Application Data\Mozilla
2014-04-30 14:05 - 2014-04-30 14:05 - 00000735 _____ () C:\Documents and Settings\All Users\Bureau\Mozilla Firefox.lnk
2014-04-30 10:13 - 2009-03-08 05:41 - 06022144 ____N (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mshtml.dll
2014-04-30 10:13 - 2004-08-10 13:00 - 06022144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-04-29 20:19 - 2014-03-02 17:11 - 00692400 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-04-29 20:19 - 2014-03-02 17:11 - 00070832 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-04-29 18:54 - 2014-04-29 18:54 - 00000000 ____D () C:\Program Files\WinZip
2014-04-29 18:54 - 2014-04-29 18:54 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\WinZip
2014-04-29 18:54 - 2014-04-29 18:54 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Démarrer\Programmes\PopCap Games
2014-04-29 18:54 - 2014-03-18 13:25 - 00000000 ____D () C:\Program Files\PopCap Games
2014-04-29 18:53 - 2005-11-15 05:13 - 00000000 ____D () C:\WINDOWS\system32\Restore
2014-04-29 18:35 - 2005-11-15 05:10 - 00000000 ____D () C:\WINDOWS\system32\ias
2014-04-29 17:02 - 2014-03-02 19:33 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\WinZip
2014-04-20 11:53 - 2014-03-11 20:15 - 00000000 ____D () C:\WINDOWS\system32\NtmsData
2014-04-17 10:37 - 2014-03-02 16:02 - 00000000 ____D () C:\Documents and Settings\HP_Administrateur\Local Settings\Application Data\Adobe

Files to move or delete:
====================
C:\Windows\Tasks\At1.job


Some content of TEMP:
====================
C:\Documents and Settings\HP_Administrateur\Local Settings\Temp\avgnt.exe
C:\Documents and Settings\HP_Administrateur\Local Settings\Temp\BackupSetup.exe
C:\Documents and Settings\HP_Administrateur\Local Settings\Temp\ICReinstall_Vuze_Installer32.exe


==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe => MD5 is legit
C:\WINDOWS\system32\winlogon.exe
[2004-08-10 13:00] - [2008-04-13 20:34] - 0512000 ____A (Microsoft Corporation) dd73d6b9f6b4cb630cf35b438b540174 

C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit
C:\WINDOWS\system32\User32.dll
[2004-08-10 13:00] - [2008-04-13 20:33] - 0579584 ____A (Microsoft Corporation) e853f84d3ce2faa2a802e33cf89ac023 

C:\WINDOWS\system32\userinit.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll
[2004-08-10 13:00] - [2009-02-09 12:53] - 0401408 ____A (Microsoft Corporation) 0203b1aad358f206cb0a3c1f93cce17a 

 ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
C:\WINDOWS\system32\Drivers\volsnap.sys => MD5 is legit

==================== End Of Log ============================