Votre question

Page de publicité qui s'ouvre toute seule sur Explorer

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
25 Janvier 2011 19:47:48

Bonjour, mon internet explorer s'ouvre tout seul en présentant une page de publicité. Que-puis-je faire. Je suis sous windows 7.

Merci

Autres pages sur : page publicite ouvre seule explorer

25 Janvier 2011 22:18:19

Bonsoir
1

Télécharge DDS et sauvegarde-le sur ton bureau.
  • Désactive tout script bloquant, tels qu'un antivirus, un logiciel comme ad-block, noscript etc.
  • Double-clique sur dds.scr pour lancer l'outil.
  • Une fois le scan fini, un document texte, DDS.txt, va s'ouvrir .
  • Clique Oui à la prochaine invite Optional Scan.
  • Sauvegarde les deux rapports sur ton bureau et poste-moi uniquement le DDS.txt.

    <@_@>**<@_@>**<@_@>**<@_@>**<@_@>**@_@>**<@_@><@_@>**<@_@>**<@_@>**<@_@>**

    ++

    ****
    2


  • Télécharge Ad-Remover (de Cyrildu17 / C_XX) sur ton Bureau.

    /!\ Déconnecte-toi, désactive ton anti-virus et ferme toutes applications en cours /!\

  • Double-clique sur AD-R situé sur ton Bureau pour le lancer.
    (Sous Vista/Seven, il faut cliquer droit sur AD-R et choisir Exécuter en tant qu'administrateur)
  • Choisis la langue F pour français.
  • Au menu principal, choisis l'option Scanner.

    /!\ Laisse travailler l'outil /!\

  • Poste le rapport qui apparaît à la fin (C:\Ad-Report-CLEAN.log).
    /!\ Pense à réactiver ton antivirus /!\
    26 Janvier 2011 05:02:11

    Salut Sham_Rock,

    merci de prendre de ton temps pour m'aider à régler mon problème.

    Voila le rapport DDS.txt.
    Pour le rapport (C:\Ad-Report-CLEAN.log), je ne suis pas certain que ça m'a donné la bonne chose car je ne le trouve pas. Je te mets le rapport qu'il m'a sorti.

    Merci encore...
    _____________
    DDS.txt




    DDS (Ver_10-12-12.02) - NTFS_AMD64
    Run by Mathieu at 22:46:46,69 on 2011-01-25
    Internet Explorer: 8.0.7600.16385 BrowserJavaVersion: 1.6.0_23
    Microsoft Windows 7 Home Premium 6.1.7600.0.1252.2.1033.18.5879.4352 [GMT -5:00]

    AV: McAfee VirusScan *Enabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}
    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    SP: McAfee VirusScan *Enabled/Updated* {3D54B793-665E-3129-9103-206115370C8A}
    FW: McAfee Personal Firewall *Disabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C}

    ============== Running Processes ===============

    C:\Windows\system32\wininit.exe
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\nvvsvc.exe
    C:\Windows\system32\svchost.exe -k RPCSS
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Windows\system32\WLANExt.exe
    C:\Windows\system32\conhost.exe
    C:\Windows\system32\nvvsvc.exe
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
    C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    C:\Program Files (x86)\Bonjour\mDNSResponder.exe
    c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
    C:\ProgramData\Clickfree\C2NPlus\UACProxy.exe
    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
    C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
    C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
    C:\Windows\System32\svchost.exe -k HPZ12
    C:\Windows\System32\svchost.exe -k HPZ12
    C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
    C:\ProgramData\Clickfree\C2NPlus\Reminder\SacNetAgent.exe
    C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
    C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
    C:\Program Files\Intel\TurboBoost\TurboBoost.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    C:\Program Files\Intel\WiFi\bin\EvtEng.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
    C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
    C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
    C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
    C:\Windows\system32\taskhost.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\wbem\unsecapp.exe
    C:\Windows\System32\rundll32.exe
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
    C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
    C:\Windows\system32\conhost.exe
    C:\Windows\System32\vds.exe
    C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
    C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
    C:\Program Files\Dell\QuickSet\quickset.exe
    C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe
    C:\Windows\System32\igfxtray.exe
    C:\Windows\System32\igfxpers.exe
    C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
    C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
    C:\ProgramData\Clickfree\C2NPlus\Reminder\SacReminder.exe
    C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
    C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
    C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
    C:\Windows\system32\wbem\unsecapp.exe
    C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
    C:\Program Files (x86)\Larousse\Petit Larousse 2009\bin\Hyperappel.exe
    C:\Program Files (x86)\Common Files\Nikon\Monitor\NkMonitor.exe
    C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
    C:\Program Files\mcafee.com\agent\mcagent.exe
    C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
    C:\Program Files (x86)\Nuance\NaturallySpeaking10\Program\natspeak.exe
    C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
    C:\Windows\system32\svchost.exe -k imgsvc
    C:\Program Files (x86)\HP\HP Software Update\hpwuSchd2.exe
    C:\Program Files (x86)\iTunes\iTunesHelper.exe
    C:\Windows\system32\SearchIndexer.exe
    C:\Windows\SysWOW64\RunDll32.exe
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe
    C:\Program Files (x86)\Druide\Antidote 7\Programmes32\agentantidote.exe
    C:\Program Files (x86)\Druide\Antidote 7\Programmes64\AgentAntidote64.exe
    C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files (x86)\Common Files\Nuance\NaturallySpeaking10\dgnuiasvr.exe
    C:\Program Files (x86)\Common Files\Nuance\NaturallySpeaking10\dgnuiasvr_x64.exe
    C:\Windows\System32\svchost.exe -k LocalServicePeerNet
    C:\Windows\system32\DllHost.exe
    C:\Windows\system32\taskeng.exe
    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
    C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
    C:\Windows\System32\svchost.exe -k secsvcs
    C:\Windows\servicing\TrustedInstaller.exe
    C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_clipbook.exe
    C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
    C:\Users\Mathieu\Desktop\dds.scr
    C:\Windows\system32\conhost.exe
    C:\Windows\system32\wbem\wmiprvse.exe

    ============== Pseudo HJT Report ===============

    uStart Page = https://www.netclinic.ca/physioextra
    uInternet Settings,ProxyOverride = *.local
    uURLSearchHooks: H - No File
    mWinlogon: Userinit=userinit.exe
    BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
    BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    BHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20110123031052.dll
    BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
    BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
    BHO: Skype add-on for Internet Explorer: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
    BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
    BHO: SmartSelect Class: {f4971ee7-daa0-4053-9964-665d8ee6a077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
    BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
    TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
    TB: {EF79F67A-6AD7-4715-A0F8-932FCA442023} - No File
    EB: HP Smart Web Printing: {555d4d79-4bd2-4094-a395-cfc534424a05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
    uRun: [ISUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
    uRun: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
    uRun: [JP595IR86O] C:\Users\Mathieu\AppData\Local\Temp\Ksd.exe
    uRun: [SacReminderHDDV2N] C:\ProgramData\Clickfree\C2NPlus\reminder\SacReminder.exe
    uRun: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
    mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    mRun: [Desktop Disc Tool] "c:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe"
    mRun: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
    mRun: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
    mRun: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe
    mRun: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
    mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
    mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
    mRun: [SSBkgdUpdate] "C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
    mRun: [ISUSScheduler] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start
    mRun: [DNS7reminder] "C:\Program Files (x86)\Nuance\NaturallySpeaking10\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\NaturallySpeaking10\Ereg.ini
    mRun: [agentantidote.exe] "C:\Program Files (x86)\Druide\Antidote 7\Programmes32\agentantidote.exe" /LancementSession
    mRun: [agentantidote64.exe] "C:\Program Files (x86)\Druide\Antidote 7\Programmes64\agentantidote64.exe" /LancementSession
    mRun: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"
    mRun: [<NO NAME>]
    mRun: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
    mRunOnce: [Launcher] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\Launcher.exe
    mRunOnce: [DSUpdateLauncher] "C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe" /NOCONSOLE /D="C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate" /RUNAS "C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe"
    mRunOnce: [STToasterLauncher] C:\Program Files (x86)\Dell DataSafe Local Backup\toasterLauncher.exe
    StartupFolder: C:\Users\Mathieu\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\DRAGON~1.LNK - C:\Program Files (x86)\Nuance\NaturallySpeaking10\Program\natspeak.exe
    StartupFolder: C:\Users\Mathieu\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\ONENOT~1.LNK - C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
    StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BLUETO~1.LNK - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
    StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\HPDIGI~1.LNK - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
    StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\HYPERA~1.LNK - C:\Program Files (x86)\Larousse\Petit Larousse 2009\bin\Hyperappel.exe
    StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\NIKONM~1.LNK - C:\Program Files (x86)\Common Files\Nikon\Monitor\NkMonitor.exe
    mPolicies-explorer: NoActiveDesktop = 1 (0x1)
    mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
    mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
    mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
    mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
    IE: Ajouter la cible du lien à un fichier PDF existant - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
    IE: Ajouter à un fichier PDF existant - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
    IE: Convertir au format Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
    IE: Convertir la cible du lien au format Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
    IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
    IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
    IE: Send image to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
    IE: Send page to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
    IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
    IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
    IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
    IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
    Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
    Handler: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - c:\Program Files (x86)\Cozi Express\CoziProtocolHandler.dll
    Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
    Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
    AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
    BHO-X64: scriptproxy: {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20110121153232.dll
    BHO-X64: scriptproxy - No File
    BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    BHO-X64: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
    BHO-X64: URLRedirectionBHO - No File
    BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    TB-X64: {EF79F67A-6AD7-4715-A0F8-932FCA442023} - No File
    TB-X64: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File
    EB-X64: {555D4D79-4BD2-4094-A395-CFC534424A05} - No File
    mRun-x64: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
    mRun-x64: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s
    mRun-x64: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /MAXX3
    mRun-x64: [NVHotkey] rundll32.exe C:\Windows\system32\nvHotkey.dll,Start
    mRun-x64: [QuickSet] c:\Program Files\Dell\QuickSet\QuickSet.exe
    mRun-x64: [IntelTBRunOnce] wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
    mRun-x64: [FreeFallProtection] C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe
    mRun-x64: [IgfxTray] C:\Windows\system32\igfxtray.exe
    mRun-x64: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
    mRun-x64: [Persistence] C:\Windows\system32\igfxpers.exe
    mRun-x64: [IntelWireless] "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel Wireless Tray
    mRun-x64: [DellStage] "C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\start.umj"
    IE-X64: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    AppInit_DLLs-X64: C:\Windows\system32\nvinitx.dll
    Hosts: 127.0.0.1 www.spywareinfo.com

    ================= FIREFOX ===================

    FF - ProfilePath - C:\Users\Mathieu\AppData\Roaming\Mozilla\Firefox\Profiles\z0o8a5cw.default\
    FF - component: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpClipBook.dll
    FF - component: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpClipBookDB.dll
    FF - component: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpNeoLogger.dll
    FF - component: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSaturn.dll
    FF - component: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSeymour.dll
    FF - component: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSmartSelect.dll
    FF - component: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSmartWebPrinting.dll
    FF - component: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpSWPOperation.dll
    FF - component: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXPLogging.dll
    FF - component: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXPMTC.dll
    FF - component: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXPMTL.dll
    FF - component: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\components\hpXREStub.dll
    FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
    FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
    FF - plugin: C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll
    FF - plugin: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3\plugins\nphpclipbook.dll
    FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
    FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
    FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
    FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
    FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
    FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
    FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
    FF - Ext: HP Smart Web Printing: smartwebprinting@hp.com - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
    FF - Ext: HP Smart Web Printing: smartwebprinting@hp.com - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

    ============= SERVICES / DRIVERS ===============

    R0 mfehidk;McAfee Inc. mfehidk;C:\Windows\System32\drivers\mfehidk.sys [2010-1-5 529128]
    R0 mfewfpk;McAfee Inc. mfewfpk;C:\Windows\System32\drivers\mfewfpk.sys [2010-1-5 283360]
    R0 nvpciflt;nvpciflt;C:\Windows\System32\drivers\nvpciflt.sys [2011-1-14 24680]
    R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2011-1-14 55280]
    R0 stdcfltn;Disk Class Filter Driver for Accelerometer;C:\Windows\System32\drivers\stdcfltn.sys [2011-1-14 21616]
    R1 mfenlfk;McAfee NDIS Light Filter;C:\Windows\System32\drivers\mfenlfk.sys [2010-1-5 75032]
    R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\System32\drivers\vwififlt.sys [2009-7-13 59904]
    R2 AERTFilters;Andrea RT Filters Service;C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2011-1-14 98208]
    R2 CFUACProxy_c2nplus;CFUACProxy_c2nplus;C:\ProgramData\Clickfree\C2NPlus\UACProxy.exe [2011-1-25 87368]
    R2 McMPFSvc;McAfee Personal Firewall Service;"C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe" /McCoreSvc [2011-1-21 355440]
    R2 McNaiAnn;McAfee VirusScan Announcer;"C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe" /McCoreSvc [2011-1-21 355440]
    R2 McProxy;McAfee Proxy Service;"C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe" /McCoreSvc [2011-1-21 355440]
    R2 McShield;McShield;C:\Program Files\Common Files\mcafee\systemcore\mcshield.exe [2011-1-14 200056]
    R2 mfefire;McAfee Firewall Core Service;C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe [2011-1-14 245352]
    R2 mfevtp;McAfee Validation Trust Protection Service;C:\Program Files\Common Files\mcafee\systemcore\mfevtps.exe [2011-1-14 149032]
    R2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-1-14 1620584]
    R2 SacNetAgentService_C57C4F854F53;SacNetAgentService_C57C4F854F53;C:\ProgramData\Clickfree\C2NPlus\Reminder\SacNetAgent.exe [2011-1-25 163664]
    R2 SftService;SoftThinks Agent Service;C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe [2011-1-14 689472]
    R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-8-12 235624]
    R2 TurboB;Turbo Boost UI Monitor driver;C:\Windows\System32\drivers\TurboB.sys [2010-4-16 13832]
    R2 TurboBoost;Intel(R) Turbo Boost Technology Monitor;C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2010-4-16 134928]
    R2 UNS;Intel(R) Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-1-14 2320920]
    R3 Acceler;Accelerometer Service;C:\Windows\System32\drivers\Accelern.sys [2011-1-14 27760]
    R3 cfwids;McAfee Inc. cfwids;C:\Windows\System32\drivers\cfwids.sys [2010-1-5 62800]
    R3 CtClsFlt;Creative Camera Class Upper Filter Driver;C:\Windows\System32\drivers\CtClsFlt.sys [2011-1-14 175168]
    R3 HECIx64;Intel(R) Management Engine Interface;C:\Windows\System32\drivers\HECIx64.sys [2011-1-14 56344]
    R3 Impcd;Impcd;C:\Windows\System32\drivers\Impcd.sys [2011-1-14 158976]
    R3 IntcDAud;Intel(R) Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2011-1-14 287232]
    R3 JMCR;JMCR;C:\Windows\System32\drivers\jmcr.sys [2011-1-14 171608]
    R3 mfeavfk;McAfee Inc. mfeavfk;C:\Windows\System32\drivers\mfeavfk.sys [2010-1-5 190136]
    R3 mfefirek;McAfee Inc. mfefirek;C:\Windows\System32\drivers\mfefirek.sys [2010-1-5 441328]
    R3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;C:\Windows\System32\drivers\NETwNs64.sys [2011-1-14 7821312]
    R3 qicflt;upper Device Filter Driver;C:\Windows\System32\drivers\qicflt.sys [2011-1-14 29288]
    R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2011-1-14 344680]
    R3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\System32\drivers\vwifimp.sys [2009-7-13 17920]
    R3 wdkmd;Intel WiDi KMD;C:\Windows\System32\drivers\WDKMD.sys [2010-6-18 39832]
    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
    S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
    S3 btwampfl;Bluetooth AMP USB Filter;C:\Windows\System32\drivers\btwampfl.sys [2011-1-14 344616]
    S3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\System32\drivers\btwl2cap.sys [2011-1-14 39464]
    S3 mferkdet;McAfee Inc. mferkdet;C:\Windows\System32\drivers\mferkdet.sys [2010-1-5 94864]
    S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2010-7-19 340240]
    S3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\Windows\System32\drivers\nvhda64v.sys [2011-1-14 131688]
    S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]
    S3 PCDSRVC{1E208CE0-FB7451FF-06020101}_0;PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - PCDR Kernel Mode Service Helper Driver;C:\Program Files\Dell Support Center\pcdsrvc_x64.pkms [2010-7-30 25072]
    S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2010-9-28 51712]
    S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2011-1-22 1255736]
    S4 McOobeSv;McAfee OOBE Service;"C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe" /McCoreSvc [2011-1-21 355440]
    S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]

    =============== Created Last 30 ================

    2011-01-26 03:39:32 -------- d-----w- C:\Users\Mathieu\AppData\Local\{5D634837-645B-4FB6-911B-ED296DDF9640}
    2011-01-25 23:02:05 -------- d-----w- C:\PROGRA~3\CFTEMP
    2011-01-25 20:35:21 -------- d-----w- C:\PROGRA~3\Clickfree
    2011-01-25 17:42:08 -------- d-----w- C:\Program Files (x86)\Spybot - Search & Destroy
    2011-01-25 17:42:08 -------- d-----w- C:\PROGRA~3\Spybot - Search & Destroy
    2011-01-25 15:15:23 -------- d-----w- C:\Users\Mathieu\AppData\Roaming\Blackberry Desktop
    2011-01-25 15:14:10 -------- d-----w- C:\Users\Mathieu\AppData\Local\Research In Motion
    2011-01-25 15:14:09 -------- d-----w- C:\Users\Mathieu\AppData\Roaming\Research In Motion
    2011-01-25 14:25:01 209408 ----a-w- C:\Windows\Kvevoa.exe
    2011-01-25 14:18:19 -------- d-----w- C:\Users\Mathieu\AppData\Roaming\GetRightToGo
    2011-01-25 13:19:37 7844688 ----a-w- C:\PROGRA~3\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
    2011-01-25 13:19:34 7844688 ----a-w- C:\PROGRA~3\Microsoft\Windows Defender\Definition Updates\{BCE96CBA-F9C0-42EE-AD0D-28010A9048D3}\mpengine.dll
    2011-01-25 13:16:36 -------- d-----w- C:\Users\Mathieu\AppData\Local\{4E4CFCCF-54A1-4169-8676-35EC46AFA08A}
    2011-01-25 04:30:56 -------- d-----w- C:\Program Files (x86)\Common Files\Macrovision Shared
    2011-01-25 04:30:34 24416 ----a-r- C:\Windows\System32\AdobePDFUI.dll
    2011-01-25 02:14:24 472808 ----a-w- C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
    2011-01-25 01:19:48 -------- d-----w- C:\Users\Mathieu\AppData\Roaming\EndNote
    2011-01-25 01:17:42 -------- d-----w- C:\Program Files (x86)\Common Files\Risxtd
    2011-01-25 01:17:41 -------- d-----w- C:\Program Files (x86)\Common Files\ResearchSoft
    2011-01-25 01:17:23 -------- d-----w- C:\Program Files (x86)\EndNote X4
    2011-01-25 01:17:01 -------- d-----w- C:\PROGRA~3\Thomson.ResearchSoft.Installers
    2011-01-25 01:14:23 -------- d-----w- C:\Users\Mathieu\AppData\Local\{E2611902-A0F6-4582-918B-A10E4C8BA12F}
    2011-01-24 20:26:38 -------- d-----w- C:\Users\Mathieu\My Backup Files
    2011-01-24 13:13:48 -------- d-----w- C:\Users\Mathieu\AppData\Local\{E7B8DB67-7168-429E-AC3B-EBD288964083}
    2011-01-24 03:54:28 -------- d-----w- C:\Users\Mathieu\AppData\Roaming\WindSolutions
    2011-01-24 03:54:28 -------- d-----w- C:\PROGRA~3\WindSolutions
    2011-01-24 02:12:47 -------- d-----w- C:\Program Files (x86)\City Interactive
    2011-01-24 02:10:26 -------- d-----w- C:\Users\Mathieu\AppData\Local\{55DA1423-1442-4818-A481-31288D336028}
    2011-01-23 17:00:41 -------- d-----w- C:\Users\Mathieu\AppData\Roaming\PCDr
    2011-01-23 17:00:06 -------- d-----w- C:\PROGRA~3\PCDr
    2011-01-23 08:10:52 24376 ----a-w- C:\Program Files (x86)\Mozilla Firefox\components\Scriptff.dll
    2011-01-22 19:42:25 -------- d-----w- C:\Users\Mathieu\AppData\Local\{BE93F2C2-70F2-4ADF-B50B-959EA8381572}
    2011-01-22 19:39:44 -------- d-----w- C:\Windows\SysWow64\Wat
    2011-01-22 19:39:44 -------- d-----w- C:\Windows\System32\Wat
    2011-01-22 14:48:08 270720 ------w- C:\Windows\System32\MpSigStub.exe
    2011-01-22 14:41:57 3124224 ----a-w- C:\Windows\System32\win32k.sys
    2011-01-22 06:08:04 -------- d-----w- C:\Program Files (x86)\directx
    2011-01-22 06:07:26 -------- d-----w- C:\Program Files (x86)\MSXML 4.0
    2011-01-22 06:01:33 57344 ----a-w- C:\Windows\SysWow64\Mfc42loc.dll
    2011-01-22 06:00:52 -------- d-----w- C:\Program Files (x86)\Larousse
    2011-01-22 06:00:51 225280 ------w- C:\Windows\UnabridgedUninstall.exe
    2011-01-22 06:00:51 -------- d-----w- C:\Program Files (x86)\Harrap
    2011-01-22 06:00:24 77824 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\ctor.dll
    2011-01-22 06:00:24 32768 ------w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\objectps.dll
    2011-01-22 06:00:24 225280 ------w- C:\Program Files (x86)\Common Files\InstallShield\IScript\iscript.dll
    2011-01-22 06:00:24 176128 ------w- C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\iuser.dll
    2011-01-22 05:59:08 -------- d-----w- C:\Users\Mathieu\AppData\Local\{21D77236-E74D-4497-920A-3CC42889DCD6}
    2011-01-22 05:49:05 -------- d-----w- C:\Users\Mathieu\AppData\Roaming\Druide
    2011-01-22 05:43:51 97280 ----a-r- C:\Users\Mathieu\AppData\Roaming\Microsoft\Installer\{A474EA56-5DBD-4181-8230-806A4762EA7F}\IconA474EA561.exe
    2011-01-22 05:43:44 -------- d-----w- C:\Program Files (x86)\Druide
    2011-01-22 05:41:49 -------- d-----w- C:\Program Files (x86)\Multiple Image Resizer .NET 4
    2011-01-22 05:36:30 99176 ----a-w- C:\Windows\SysWow64\PresentationHostProxy.dll
    2011-01-22 05:36:30 49472 ----a-w- C:\Windows\SysWow64\netfxperf.dll
    2011-01-22 05:36:30 48960 ----a-w- C:\Windows\System32\netfxperf.dll
    2011-01-22 05:36:30 444752 ----a-w- C:\Windows\System32\mscoree.dll
    2011-01-22 05:36:30 320352 ----a-w- C:\Windows\System32\PresentationHost.exe
    2011-01-22 05:36:30 297808 ----a-w- C:\Windows\SysWow64\mscoree.dll
    2011-01-22 05:36:30 295264 ----a-w- C:\Windows\SysWow64\PresentationHost.exe
    2011-01-22 05:36:30 1942856 ----a-w- C:\Windows\System32\dfshim.dll
    2011-01-22 05:36:30 1130824 ----a-w- C:\Windows\SysWow64\dfshim.dll
    2011-01-22 05:36:30 109912 ----a-w- C:\Windows\System32\PresentationHostProxy.dll
    2011-01-22 05:33:19 -------- dc-h--w- C:\PROGRA~3\{6B2867A8-97D7-4917-AF0E-7350F0F4E9B8}
    2011-01-22 05:33:07 -------- d-----w- C:\Users\Mathieu\AppData\Local\PackageAware
    2011-01-22 05:28:40 6475096 ----a-w- C:\Windows\SysWow64\NEFcodec.dll
    2011-01-22 05:28:40 200704 ----a-r- C:\Windows\SysWow64\Strato7.dll
    2011-01-22 05:28:40 110592 ----a-r- C:\Windows\SysWow64\RCSigProc.dll
    2011-01-22 05:26:17 49152 ----a-r- C:\Users\Mathieu\AppData\Roaming\Microsoft\Installer\{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}\ARPPRODUCTICON.exe
    2011-01-22 05:25:47 57344 ----a-r- C:\Users\Mathieu\AppData\Roaming\Microsoft\Installer\{87441A59-5E64-4096-A170-14EFE67200C3}\ARPPRODUCTICON.exe
    2011-01-22 05:23:38 -------- d-----w- C:\PROGRA~3\Applause and Laugher
    2011-01-22 05:22:50 -------- d-----w- C:\Program Files (x86)\Common Files\muvee Technologies
    2011-01-22 05:22:49 -------- d-----w- C:\Program Files (x86)\Common Files\Nikon
    2011-01-22 05:22:40 -------- d-----w- C:\Program Files (x86)\Nikon
    2011-01-22 05:22:12 -------- d-----w- C:\PROGRA~3\vhosts
    2011-01-22 05:10:53 -------- d-----w- C:\Users\Mathieu\Tracing
    2011-01-22 05:01:33 -------- d-----w- C:\Users\Mathieu\AppData\Local\Scansoft
    2011-01-22 04:58:22 -------- d-----w- C:\Windows\fr
    2011-01-22 04:53:22 -------- d-----w- C:\Windows\en
    2011-01-22 04:50:41 15712 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\eb7c28bf1cbb9ef0e\MeshBetaRemover.exe
    2011-01-22 04:48:46 -------- d-----w- C:\Users\Mathieu\AppData\Local\Windows Live
    2011-01-22 04:47:05 -------- d-----w- C:\PROGRA~3\ESTsoft
    2011-01-22 04:47:04 -------- d-----w- C:\Users\Mathieu\AppData\Roaming\ESTsoft
    2011-01-22 04:47:04 -------- d-----w- C:\Program Files (x86)\ESTsoft
    2011-01-22 04:46:19 31744 ----a-w- C:\Windows\System32\drivers\RimSerial_AMD64.sys
    2011-01-22 04:45:58 -------- d-----w- C:\PROGRA~3\Research In Motion
    2011-01-22 04:45:54 -------- d-----w- C:\Program Files (x86)\Research In Motion
    2011-01-22 04:45:54 -------- d-----w- C:\Program Files (x86)\Common Files\Research In Motion
    2011-01-22 04:42:00 -------- d-----w- C:\Users\Mathieu\AppData\Roaming\Nuance
    2011-01-22 04:14:25 -------- d-----w- C:\Program Files (x86)\Common Files\ScanSoft Shared
    2011-01-22 04:14:25 -------- d-----w- C:\Program Files (x86)\Common Files\Nuance
    2011-01-22 04:11:38 -------- d-----w- C:\Program Files (x86)\VideoLAN
    2011-01-22 04:08:19 -------- d-----w- C:\Program Files (x86)\Nuance
    2011-01-22 04:08:19 -------- d-----w- C:\PROGRA~3\Nuance
    2011-01-22 03:58:44 -------- d-----w- C:\Users\Mathieu\AppData\Local\Apple Computer
    2011-01-22 03:58:26 34152 ----a-w- C:\Windows\System32\drivers\GEARAspiWDM.sys
    2011-01-22 03:58:26 126312 ----a-w- C:\Windows\System32\GEARAspi64.dll
    2011-01-22 03:58:26 107368 ----a-w- C:\Windows\SysWow64\GEARAspi.dll
    2011-01-22 03:58:14 -------- d-----w- C:\Program Files\iTunes
    2011-01-22 03:58:14 -------- d-----w- C:\Program Files\iPod
    2011-01-22 03:58:14 -------- d-----w- C:\Program Files (x86)\iTunes
    2011-01-22 03:58:14 -------- d-----w- C:\PROGRA~3\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
    2011-01-22 03:56:53 -------- d-----w- C:\Program Files\Bonjour
    2011-01-22 03:56:53 -------- d-----w- C:\Program Files (x86)\Bonjour
    2011-01-22 03:52:43 -------- d-----w- C:\Users\Mathieu\AppData\Local\HP
    2011-01-22 03:51:46 -------- d-----w- C:\PROGRA~3\WEBREG
    2011-01-22 03:50:55 230400 ----a-w- C:\Windows\System32\Spool\prtprocs\x64\hpzppw71.dll
    2011-01-22 03:46:53 -------- d-----w- C:\Program Files (x86)\Common Files\HP
    2011-01-22 03:46:52 -------- d-----w- C:\Program Files (x86)\Common Files\Hewlett-Packard
    2011-01-22 03:46:36 -------- d-----w- C:\Program Files (x86)\HP
    2011-01-22 03:45:39 -------- d-----w- C:\Program Files (x86)\BitTorrent
    2011-01-22 03:45:38 861184 ----a-w- C:\Windows\System32\hpowiax3.dll
    2011-01-22 03:45:38 729600 ----a-w- C:\Windows\System32\hpotscl3.dll
    2011-01-22 03:45:38 642360 ----a-w- C:\Windows\System32\hpzids40.dll
    2011-01-22 03:45:38 540672 ----a-w- C:\Windows\System32\hppldcoi.dll
    2011-01-22 03:45:38 497664 ----a-w- C:\Windows\System32\hpovst10.dll
    2011-01-22 03:45:13 -------- d-----w- C:\Users\Mathieu\AppData\Roaming\BitTorrent
    2011-01-22 03:09:16 -------- d-----w- C:\Program Files (x86)\Microsoft Visual Studio 8
    2011-01-22 03:01:09 -------- d-----w- C:\Windows\PCHEALTH
    2011-01-22 02:58:42 -------- d-----w- C:\Program Files (x86)\Microsoft Analysis Services
    2011-01-21 22:53:56 -------- d-----w- C:\Users\Mathieu\AppData\Local\Adobe
    2011-01-21 20:45:31 -------- d-----w- C:\Users\Mathieu\AppData\Local\Microsoft Help
    2011-01-21 17:54:50 -------- d-----w- C:\Users\Mathieu\AppData\Local\ArcSoft
    2011-01-21 17:53:55 -------- d-----w- C:\Users\Mathieu\AppData\Local\Microsoft Games
    2011-01-21 17:53:47 -------- d-sh--w- C:\System Recovery
    2011-01-21 17:52:56 -------- d-----w- C:\Users\Mathieu\AppData\Local\Dell
    2011-01-21 17:52:21 -------- d-----w- C:\Users\Mathieu\AppData\Roaming\Dell
    2011-01-21 17:52:21 -------- d-----w- C:\Users\Mathieu\AppData\Local\Broadcom
    2011-01-21 17:52:16 -------- d-----w- C:\Users\Mathieu\AppData\Roaming\Intel
    2011-01-21 17:52:13 -------- d-----w- C:\Users\Mathieu\AppData\Roaming\Dell Touch Zone
    2011-01-21 17:51:43 -------- d-----w- C:\Users\Mathieu\AppData\Local\VirtualStore
    2011-01-21 17:51:21 -------- d-----w- C:\Users\Mathieu\AppData\Local\SoftThinks
    2011-01-15 01:10:37 -------- d-sh--w- C:\Windows\Installer
    2011-01-15 01:10:33 -------- d-----w- C:\PROGRA~3\NVIDIA Corporation
    2011-01-15 01:10:30 -------- d-----w- C:\Program Files\NVIDIA Corporation
    2011-01-15 01:10:30 -------- d-----w- C:\Program Files (x86)\NVIDIA Corporation
    2011-01-15 01:10:12 24320 ----a-w- C:\Windows\System32\drivers\FactoryPresets.reg
    2011-01-15 01:09:25 -------- d-----w- C:\Program Files\Realtek
    2011-01-15 01:09:23 -------- d-----w- C:\Windows\SysWow64\RTCOM
    2011-01-15 01:09:19 -------- d-----w- C:\Intel
    2011-01-15 01:09:05 21616 ----a-w- C:\Windows\System32\drivers\stdcfltn.sys
    2011-01-15 01:01:39 -------- d-----w- C:\Program Files\STMicroelectronics
    2011-01-15 01:00:41 -------- d-----w- C:\Program Files\Synaptics
    2011-01-15 00:47:18 -------- d-----w- C:\apps
    2011-01-15 00:37:50 799232 ----a-w- C:\Windows\System32\NETwNc64.dll
    2011-01-15 00:36:44 39464 ----a-w- C:\Windows\System32\drivers\btwl2cap.sys
    2011-01-15 00:36:44 21544 ----a-w- C:\Windows\System32\drivers\btwrchid.sys
    2011-01-15 00:36:44 135720 ----a-w- C:\Windows\System32\drivers\btwavdt.sys
    2011-01-15 00:36:44 102952 ----a-w- C:\Windows\System32\drivers\btwaudio.sys
    2011-01-15 00:36:43 344616 ----a-w- C:\Windows\System32\drivers\btwampfl.sys
    2011-01-15 00:31:42 -------- d-----w- C:\Windows\System32\oem
    2011-01-15 00:31:40 -------- d-----w- C:\Windows\Panther
    2011-01-15 00:31:40 -------- d-----w- C:\Drivers
    2011-01-15 00:19:05 -------- d-----w- C:\dell
    2011-01-14 23:46:42 -------- d-----w- C:\Program Files\dell stage
    2011-01-14 23:45:09 -------- d-----w- C:\Program Files (x86)\Microsoft
    2011-01-14 23:44:43 -------- d-----w- C:\Program Files\Dell Support Center
    2011-01-14 23:43:39 -------- d-----w- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
    2011-01-14 23:42:25 69464 ----a-w- C:\Windows\SysWow64\XAPOFX1_3.dll
    2011-01-14 23:42:25 515416 ----a-w- C:\Windows\SysWow64\XAudio2_5.dll
    2011-01-14 23:42:15 523088 ----a-w- C:\Windows\System32\d3dx10_42.dll
    2011-01-14 23:42:00 453456 ----a-w- C:\Windows\SysWow64\d3dx10_42.dll
    2011-01-14 23:41:03 4398360 ----a-w- C:\Windows\System32\d3dx9_32.dll
    2011-01-14 23:41:03 3426072 ----a-w- C:\Windows\SysWow64\d3dx9_32.dll
    2011-01-14 23:39:47 3860992 ----a-w- C:\Windows\System32\UIRibbon.dll
    2011-01-14 23:39:47 2983424 ----a-w- C:\Windows\SysWow64\UIRibbon.dll
    2011-01-14 23:39:47 1164800 ----a-w- C:\Windows\SysWow64\UIRibbonRes.dll
    2011-01-14 23:39:47 1164800 ----a-w- C:\Windows\System32\UIRibbonRes.dll
    2011-01-14 23:39:24 257024 ----a-w- C:\Windows\System32\mfreadwrite.dll
    2011-01-14 23:39:24 206848 ----a-w- C:\Windows\System32\mfps.dll
    2011-01-14 23:39:24 196608 ----a-w- C:\Windows\SysWow64\mfreadwrite.dll
    2011-01-14 23:39:23 4068864 ----a-w- C:\Windows\System32\mf.dll
    2011-01-14 23:39:23 1888256 ----a-w- C:\Windows\System32\WMVDECOD.DLL
    2011-01-14 23:39:23 1619456 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL
    2011-01-14 23:39:22 3181568 ----a-w- C:\Windows\SysWow64\mf.dll
    2011-01-14 23:38:23 94040 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\222d4e2a1cbb44405\DSETUP.dll
    2011-01-14 23:38:23 94040 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\2204d6c51cbb44404\DSETUP.dll
    2011-01-14 23:38:23 525656 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\222d4e2a1cbb44405\DXSETUP.exe
    2011-01-14 23:38:23 525656 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\2204d6c51cbb44404\DXSETUP.exe
    2011-01-14 23:38:23 1691480 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\222d4e2a1cbb44405\dsetup32.dll
    2011-01-14 23:38:23 1691480 ----a-w- C:\Program Files (x86)\Common Files\Windows Live\.cache\2204d6c51cbb44404\dsetup32.dll
    2011-01-14 23:38:18 -------- d-----w- C:\Program Files (x86)\Common Files\Windows Live
    2011-01-14 23:36:23 -------- d-----w- C:\Program Files (x86)\Creative
    2011-01-14 23:35:57 -------- d-----w- C:\Program Files (x86)\Dell Webcam
    2011-01-14 23:35:55 224768 ----a-w- C:\Windows\System32\drivers\CtAudDrv.sys
    2011-01-14 23:35:55 175168 ----a-w- C:\Windows\System32\drivers\CtClsFlt.sys
    2011-01-14 23:35:52 -------- d-----w- C:\Program Files (x86)\Creative Live! Cam
    2011-01-14 23:35:37 729088 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iKernel.dll
    2011-01-14 23:35:37 69715 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\ctor.dll
    2011-01-14 23:35:37 5632 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\DotNetInstaller.exe
    2011-01-14 23:35:37 311428 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\setup.dll
    2011-01-14 23:35:37 266240 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iscript.dll
    2011-01-14 23:35:37 192512 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iuser.dll
    2011-01-14 23:35:37 188548 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iGdi.dll
    2011-01-14 23:35:25 -------- d-----w- C:\Program Files (x86)\Dell Stage
    2011-01-14 23:34:39 -------- d-----w- C:\Program Files (x86)\Dell
    2011-01-14 23:31:42 -------- d-----r- C:\Program Files (x86)\Skype
    2011-01-14 23:31:13 -------- d-----w- C:\Program Files (x86)\Cozi Express
    2011-01-14 23:31:13 -------- d-----w- C:\PROGRA~3\Cozi
    2011-01-14 23:30:23 -------- d-----w- C:\Temp
    2011-01-14 23:30:20 151656 ----a-w- C:\Windows\System32\drivers\WimFltr.sys
    2011-01-14 23:30:05 -------- d-----w- C:\Program Files (x86)\Dell DataSafe Local Backup
    2011-01-14 23:29:58 733184 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iKernel.dll
    2011-01-14 23:29:58 69715 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\ctor.dll
    2011-01-14 23:29:58 5632 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\DotNetInstaller.exe
    2011-01-14 23:29:58 303236 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\setup.dll
    2011-01-14 23:29:58 266240 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iscript.dll
    2011-01-14 23:29:58 180356 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iGdi.dll
    2011-01-14 23:29:58 172032 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iuser.dll
    2011-01-14 23:28:07 -------- d-----w- C:\Program Files (x86)\Citrix
    2011-01-14 23:26:55 -------- d-----w- C:\Program Files (x86)\Intel Corporation
    2011-01-14 23:26:55 -------- d-----w- C:\Program Files (x86)\Common Files\Intel Corporation
    2011-01-14 23:24:51 -------- d-----w- C:\Program Files (x86)\Cisco
    2011-01-14 23:24:13 -------- d-----w- C:\Program Files\Common Files\Intel
    2011-01-14 23:24:13 -------- d-----w- C:\Program Files (x86)\Common Files\Intel
    2011-01-14 23:22:52 -------- d-----w- C:\Program Files\WIDCOMM
    2011-01-14 23:22:09 -------- d-----w- C:\Program Files (x86)\STMicroelectronics
    2011-01-14 23:21:40 -------- d-----w- C:\Program Files (x86)\JMicron
    2011-01-14 23:21:38 -------- d-----w- C:\Windows\SysWow64\SDA
    2011-01-14 23:21:27 -------- d-----w- C:\Program Files (x86)\Common Files\postureAgent
    2011-01-14 23:19:51 521448 ----a-w- C:\Windows\System32\deployJava1.dll
    2011-01-14 23:19:14 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll
    2011-01-14 23:18:25 -------- d-----w- C:\Program Files\Dell Inc
    2011-01-14 23:13:52 -------- d-----w- C:\Windows\SysWow64\NV
    2011-01-14 23:13:52 -------- d-----w- C:\Windows\System32\NV

    ==================== Find3M ====================

    2011-01-22 05:22:10 106496 ----a-w- C:\Windows\SysWow64\ATL71.DLL
    2010-11-29 22:38:30 94208 ----a-w- C:\Windows\SysWow64\QuickTimeVR.qtx
    2010-11-29 22:38:30 69632 ----a-w- C:\Windows\SysWow64\QuickTime.qts
    2010-11-10 07:54:18 49016 ----a-w- C:\Windows\SysWow64\sirenacm.dll
    2010-11-10 07:28:46 301936 ----a-w- C:\Windows\WLXPGSS.SCR
    2010-11-04 06:35:53 1194496 ----a-w- C:\Windows\System32\wininet.dll
    2010-11-04 06:31:34 57856 ----a-w- C:\Windows\System32\licmgr10.dll
    2010-11-04 05:52:17 978944 ----a-w- C:\Windows\SysWow64\wininet.dll
    2010-11-04 05:48:36 44544 ----a-w- C:\Windows\SysWow64\licmgr10.dll
    2010-11-04 05:16:14 482816 ----a-w- C:\Windows\System32\html.iec
    2010-11-04 04:41:26 386048 ----a-w- C:\Windows\SysWow64\html.iec
    2010-11-04 04:35:37 1638912 ----a-w- C:\Windows\System32\mshtml.tlb
    2010-11-04 04:08:54 1638912 ----a-w- C:\Windows\SysWow64\mshtml.tlb
    2010-11-02 05:18:17 524288 ----a-w- C:\Windows\System32\wmicmiplugin.dll
    2010-11-02 05:17:38 473600 ----a-w- C:\Windows\System32\taskcomp.dll
    2010-11-02 05:17:38 1169408 ----a-w- C:\Windows\System32\taskschd.dll
    2010-11-02 05:16:53 1114624 ----a-w- C:\Windows\System32\schedsvc.dll
    2010-11-02 05:10:47 464384 ----a-w- C:\Windows\System32\taskeng.exe
    2010-11-02 05:10:32 285696 ----a-w- C:\Windows\System32\schtasks.exe
    2010-11-02 04:40:36 496128 ----a-w- C:\Windows\SysWow64\taskschd.dll
    2010-11-02 04:40:36 305152 ----a-w- C:\Windows\SysWow64\taskcomp.dll
    2010-11-02 04:34:44 192000 ----a-w- C:\Windows\SysWow64\taskeng.exe
    2010-11-02 04:34:33 179712 ----a-w- C:\Windows\SysWow64\schtasks.exe

    ============= FINISH: 22:47:50,15 ===============




    ___________________________________________________________________________

    Ad-Report scan



    ======= REPORT FROM AD-REMOVER 2.0.0.2,D | ONLY XP/VISTA/7 =======

    Updated by TeamXscript on 20/01/11 at 19:00
    Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
    website: http://www.teamxscript.org

    C:\Program Files (x86)\Ad-Remover\main.exe (SCAN [1]) -> Launched at 22:51:33 on 25/01/2011, Normal boot

    Microsoft Windows 7 Home Premium (X64)
    Mathieu@MATHIEU-PC (Dell Inc. XPS L401X)

    ============== SEARCH ==============


    Folder found: C:\Users\Mathieu\AppData\Roaming\Mozilla\FireFox\Profiles\z0o8a5cw.default\conduit
    Folder found: C:\Users\Mathieu\AppData\Roaming\Mozilla\FireFox\Profiles\z0o8a5cw.default\ConduitEngine
    Folder found: C:\Users\Mathieu\AppData\Roaming\Mozilla\FireFox\Profiles\z0o8a5cw.default\extensions\engine@conduit.com
    Folder found: C:\Users\Mathieu\AppData\LocalLow\Conduit
    Folder found: C:\Users\Mathieu\AppData\LocalLow\PriceGong

    -- File opened: C:\Users\Mathieu\AppData\Roaming\Mozilla\FireFox\Profiles\z0o8a5cw.default\Prefs.js --
    Line found: user_pref("CT2849852.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT284...
    Line found: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1241893/1237566/CA", "\"0\"...
    Line found: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/909619/905414/CA", "\"0\"")...
    Line found: user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2849852", ...
    Line found: user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&lo...
    Line found: user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&loc...
    Line found: user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&lo...
    Line found: user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&local...
    Line found: user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/toolbar/", "\"63428984078257...
    Line found: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=1/11/20...
    Line found: user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit.com/root/CT2849852/CT2849852...
    Line found: user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=fr", "\"634...
    Line found: user_pref("CommunityToolbar.EngineOwner", "CT2849852");
    Line found: user_pref("CommunityToolbar.EngineOwnerGuid", "{ef79f67a-6ad7-4715-a0f8-932fca442023}");
    Line found: user_pref("CommunityToolbar.EngineOwnerToolbarId", "bittorrentbar_fr");
    Line found: user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
    Line found: user_pref("CommunityToolbar.OriginalEngineOwner", "CT2849852");
    Line found: user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "{ef79f67a-6ad7-4715-a0f8-932fca442023}");
    Line found: user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "bittorrentbar_fr");
    Line found: user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.pr...
    Line found: user_pref("CommunityToolbar.ToolbarsList", "CT2849852,ConduitEngine");
    Line found: user_pref("CommunityToolbar.ToolbarsList2", "CT2849852,ConduitEngine");
    Line found: user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
    Line found: user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Sat Jan 22 2011 00:17:16 GMT-0500 (Easte...
    Line found: user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
    Line found: user_pref("CommunityToolbar.alert.locale", "en");
    Line found: user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
    Line found: user_pref("CommunityToolbar.alert.loginLastCheckTime", "Sat Jan 22 2011 00:17:16 GMT-0500 (Eastern S...
    Line found: user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1291052234");
    Line found: user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
    Line found: user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
    Line found: user_pref("CommunityToolbar.alert.showTrayIcon", false);
    Line found: user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
    Line found: user_pref("CommunityToolbar.alert.userId", "601485c2-c576-492d-aac1-f10c46758a85");
    Line found: user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Sat Jan 22 2011 00:17:19 GMT-0500 (Eas...
    Line found: user_pref("ConduitEngine.CTID", "ConduitEngine");
    Line found: user_pref("ConduitEngine.FirstServerDate", "01/22/2011 08");
    Line found: user_pref("ConduitEngine.FirstTime", true);
    Line found: user_pref("ConduitEngine.FirstTimeFF3", true);
    Line found: user_pref("ConduitEngine.FixPageNotFoundErrors", false);
    Line found: user_pref("ConduitEngine.HasUserGlobalKeys", true);
    Line found: user_pref("ConduitEngine.Initialize", true);
    Line found: user_pref("ConduitEngine.InitializeCommonPrefs", true);
    Line found: user_pref("ConduitEngine.InstallationType", "UnknownIntegration");
    Line found: user_pref("ConduitEngine.InstalledDate", "Sat Jan 22 2011 00:17:18 GMT-0500 (Eastern Standard Time)"...
    Line found: user_pref("ConduitEngine.IsMulticommunity", false);
    Line found: user_pref("ConduitEngine.IsOpenThankYouPage", false);
    Line found: user_pref("ConduitEngine.IsOpenUninstallPage", false);
    Line found: user_pref("ConduitEngine.LanguagePackLastCheckTime", "Sat Jan 22 2011 00:17:19 GMT-0500 (Eastern Sta...
    Line found: user_pref("ConduitEngine.LastLogin_3.2.5.2", "Sat Jan 22 2011 00:17:19 GMT-0500 (Eastern Standard Ti...
    Line found: user_pref("ConduitEngine.PublisherContainerWidth", 0);
    Line found: user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
    Line found: user_pref("ConduitEngine.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=C...
    Line found: user_pref("ConduitEngine.SettingsLastCheckTime", "Sat Jan 22 2011 00:17:19 GMT-0500 (Eastern Standar...
    Line found: user_pref("ConduitEngine.UserID", "UN90857934900769254");
    Line found: user_pref("ConduitEngine.engineLocale", "fr");
    Line found: user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Sat Jan 22 2011 00:17:20 GMT-0500 (Easte...
    Line found: user_pref("ConduitEngine.initDone", true);
    -- File closed --


    Key found: HKLM\Software\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
    Key found: HKLM\Software\Classes\Conduit.Engine
    Key found: HKLM\Software\Classes\Toolbar.CT2849852
    Key found: HKLM\Software\Conduit
    Key found: HKCU\Software\AppDataLow\Software\PriceGong


    ============== ADDITIONNAL SCAN ==============

    ** Mozilla Firefox Version [3.6.13 (fr)] **

    -- C:\Users\Mathieu\AppData\Roaming\Mozilla\FireFox\Profiles\z0o8a5cw.default\Prefs.js --
    browser.startup.homepage_override.mstone, rv:1.9.2.13

    ========================================

    ** Internet Explorer Version [8.0.7600.16385] **

    [HKCU\Software\Microsoft\Internet Explorer\Main]
    Default_Page_URL: hxxp://g.msn.com/USCON/23
    Do404Search: 0x01000000
    Enable Browser Extensions: yes
    Local Page: C:\Windows\system32\blank.htm
    Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896
    Show_ToolBar: yes
    Start Page: hxxps://www.netclinic.ca/physioextra
    Use Search Asst: no

    [HKLM\Software\Microsoft\Internet Explorer\Main]
    AutoHide: yes
    Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=69157
    Default_Search_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
    Delete_Temp_Files_On_Exit: yes
    Enable Browser Extensions: yes
    Local Page: C:\Windows\SysWOW64\blank.htm
    Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896
    Start Page: hxxp://go.microsoft.com/fwlink/?LinkId=69157
    Use Search Asst: no

    [HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]
    Tabs: res://ieframe.dll/tabswelcome.htm
    Blank: res://mshtml.dll/blank.htm

    ========================================

    C:\Program Files (x86)\Ad-Remover\Quarantine: 0 File(s)
    C:\Program Files (x86)\Ad-Remover\Backup: 1 File(s)

    C:\Ad-Report-SCAN[1].txt - 25/01/2011 (8064 Byte(s))

    End at: 22:52:22, 25/01/2011

    ============== E.O.F ==============

    Contenus similaires
    26 Janvier 2011 20:59:26

    Bonsoir

    Ouvre Spybot , clique sur l'onglet Mode et choisis Mode Avancé
    Ne tiens pas compte de l'avertissement
    En bas à gauche , clique sur Outils
    Toujours dans la colonne de gauche , clique sur Résident ( pas dans la fenêtre centrale )
    Et décoche l'option Resident "TeaTimer".......

    ++++++++++++++++++++++++


    /!\ Déconnecte-toi, désactive ton anti-virus et ferme toutes applications en cours /!\

  • Double-clique sur AD-R situé sur ton Bureau pour le lancer.
    (Sous Vista/Seven, il faut cliquer droit sur AD-R et choisir Exécuter en tant qu'administrateur)
  • Choisis la langue F pour français.
  • Au menu principal, choisis l'option Nettoyer.

    /!\ Laisse travailler l'outil /!\

  • Poste le rapport qui apparaît à la fin (C:\Ad-Report-CLEAN.log).
    /!\ Pense à réactiver ton antivirus /!\


    ++++++++++++++++++


    Rends toi sur ce lien : Virus Total
  • Clique sur Parcourir
  • Rends toi jusque sur ce fichier si tu le trouves :

    C:\Windows\Kvevoa.exe
    Tu scannes et tu postes le rapport


    :hello: 

    26 Janvier 2011 23:34:16

    Salut Sham_Rock,
    Voila le rapport C:\Ad-Report-CLEAN.log, mais je ne trouve pas le C:\Windows\Kvevoa.exe .

    Merci encore de ton aide...


    ======= REPORT FROM AD-REMOVER 2.0.0.2,D | ONLY XP/VISTA/7 =======

    Updated by TeamXscript on 20/01/11 at 19:00
    Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
    website: http://www.teamxscript.org

    C:\Program Files (x86)\Ad-Remover\main.exe (CLEAN [1]) -> Launched at 17:15:21 on 26/01/2011, Normal boot

    Microsoft Windows 7 Home Premium (X64)
    Mathieu@MATHIEU-PC (Dell Inc. XPS L401X)

    ============== ACTION(S) ==============


    Folder deleted: C:\Users\Mathieu\AppData\Roaming\Mozilla\FireFox\Profiles\z0o8a5cw.default\conduit
    Folder deleted: C:\Users\Mathieu\AppData\Roaming\Mozilla\FireFox\Profiles\z0o8a5cw.default\ConduitEngine
    Folder deleted: C:\Users\Mathieu\AppData\Roaming\Mozilla\FireFox\Profiles\z0o8a5cw.default\extensions\engine@conduit.com
    Folder deleted: C:\Users\Mathieu\AppData\LocalLow\Conduit
    Folder deleted: C:\Users\Mathieu\AppData\LocalLow\PriceGong

    (!) -- Temporary files deleted.


    -- File opened: C:\Users\Mathieu\AppData\Roaming\Mozilla\FireFox\Profiles\z0o8a5cw.default\Prefs.js --
    Line deleted: user_pref("CT2849852.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT284...
    Line deleted: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1241893/1237566/CA", "\"0\"...
    Line deleted: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/909619/905414/CA", "\"0\"")...
    Line deleted: user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2849852", ...
    Line deleted: user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&lo...
    Line deleted: user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&loc...
    Line deleted: user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&lo...
    Line deleted: user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&local...
    Line deleted: user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/toolbar/", "\"63428984078257...
    Line deleted: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=1/11/20...
    Line deleted: user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit.com/root/CT2849852/CT2849852...
    Line deleted: user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=fr", "\"634...
    Line deleted: user_pref("CommunityToolbar.EngineOwner", "CT2849852");
    Line deleted: user_pref("CommunityToolbar.EngineOwnerGuid", "{ef79f67a-6ad7-4715-a0f8-932fca442023}");
    Line deleted: user_pref("CommunityToolbar.EngineOwnerToolbarId", "bittorrentbar_fr");
    Line deleted: user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
    Line deleted: user_pref("CommunityToolbar.OriginalEngineOwner", "CT2849852");
    Line deleted: user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "{ef79f67a-6ad7-4715-a0f8-932fca442023}");
    Line deleted: user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "bittorrentbar_fr");
    Line deleted: user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.pr...
    Line deleted: user_pref("CommunityToolbar.ToolbarsList", "CT2849852,ConduitEngine");
    Line deleted: user_pref("CommunityToolbar.ToolbarsList2", "CT2849852,ConduitEngine");
    Line deleted: user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
    Line deleted: user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Sat Jan 22 2011 00:17:16 GMT-0500 (Easte...
    Line deleted: user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
    Line deleted: user_pref("CommunityToolbar.alert.locale", "en");
    Line deleted: user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
    Line deleted: user_pref("CommunityToolbar.alert.loginLastCheckTime", "Sat Jan 22 2011 00:17:16 GMT-0500 (Eastern S...
    Line deleted: user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1291052234");
    Line deleted: user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
    Line deleted: user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
    Line deleted: user_pref("CommunityToolbar.alert.showTrayIcon", false);
    Line deleted: user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
    Line deleted: user_pref("CommunityToolbar.alert.userId", "601485c2-c576-492d-aac1-f10c46758a85");
    Line deleted: user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Sat Jan 22 2011 00:17:19 GMT-0500 (Eas...
    Line deleted: user_pref("ConduitEngine.CTID", "ConduitEngine");
    Line deleted: user_pref("ConduitEngine.FirstServerDate", "01/22/2011 08");
    Line deleted: user_pref("ConduitEngine.FirstTime", true);
    Line deleted: user_pref("ConduitEngine.FirstTimeFF3", true);
    Line deleted: user_pref("ConduitEngine.FixPageNotFoundErrors", false);
    Line deleted: user_pref("ConduitEngine.HasUserGlobalKeys", true);
    Line deleted: user_pref("ConduitEngine.Initialize", true);
    Line deleted: user_pref("ConduitEngine.InitializeCommonPrefs", true);
    Line deleted: user_pref("ConduitEngine.InstallationType", "UnknownIntegration");
    Line deleted: user_pref("ConduitEngine.InstalledDate", "Sat Jan 22 2011 00:17:18 GMT-0500 (Eastern Standard Time)"...
    Line deleted: user_pref("ConduitEngine.IsMulticommunity", false);
    Line deleted: user_pref("ConduitEngine.IsOpenThankYouPage", false);
    Line deleted: user_pref("ConduitEngine.IsOpenUninstallPage", false);
    Line deleted: user_pref("ConduitEngine.LanguagePackLastCheckTime", "Sat Jan 22 2011 00:17:19 GMT-0500 (Eastern Sta...
    Line deleted: user_pref("ConduitEngine.LastLogin_3.2.5.2", "Sat Jan 22 2011 00:17:19 GMT-0500 (Eastern Standard Ti...
    Line deleted: user_pref("ConduitEngine.PublisherContainerWidth", 0);
    Line deleted: user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
    Line deleted: user_pref("ConduitEngine.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=C...
    Line deleted: user_pref("ConduitEngine.SettingsLastCheckTime", "Sat Jan 22 2011 00:17:19 GMT-0500 (Eastern Standar...
    Line deleted: user_pref("ConduitEngine.UserID", "UN90857934900769254");
    Line deleted: user_pref("ConduitEngine.engineLocale", "fr");
    Line deleted: user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Sat Jan 22 2011 00:17:20 GMT-0500 (Easte...
    Line deleted: user_pref("ConduitEngine.initDone", true);
    -- File closed --


    Key deleted: HKLM\Software\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
    Key deleted: HKLM\Software\Classes\Conduit.Engine
    Key deleted: HKLM\Software\Classes\Toolbar.CT2849852
    Key deleted: HKLM\Software\Conduit
    Key deleted: HKCU\Software\AppDataLow\Software\PriceGong


    ============== ADDITIONNAL SCAN ==============

    ** Mozilla Firefox Version [3.6.13 (fr)] **

    -- C:\Users\Mathieu\AppData\Roaming\Mozilla\FireFox\Profiles\z0o8a5cw.default\Prefs.js --
    browser.download.lastDir, X:\\Photo\\web
    browser.startup.homepage_override.mstone, rv:1.9.2.13

    ========================================

    ** Internet Explorer Version [8.0.7600.16385] **

    [HKCU\Software\Microsoft\Internet Explorer\Main]
    Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnh...
    Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    Do404Search: 0x01000000
    Enable Browser Extensions: yes
    Local Page: C:\Windows\system32\blank.htm
    Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
    Show_ToolBar: yes
    Start Page: hxxp://fr.msn.com/
    Use Search Asst: no

    [HKLM\Software\Microsoft\Internet Explorer\Main]
    AutoHide: yes
    Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896
    Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    Delete_Temp_Files_On_Exit: yes
    Enable Browser Extensions: yes
    Local Page: C:\Windows\SysWOW64\blank.htm
    Search bar: hxxp://search.msn.com/spbasic.htm
    Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    Start Page: hxxp://fr.msn.com/
    Use Search Asst: no

    [HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]
    Tabs: res://ieframe.dll/tabswelcome.htm
    Blank: res://mshtml.dll/blank.htm

    ========================================

    C:\Program Files (x86)\Ad-Remover\Quarantine: 69 File(s)
    C:\Program Files (x86)\Ad-Remover\Backup: 16 File(s)

    C:\Ad-Report-CLEAN[1].txt - 26/01/2011 (8438 Byte(s))
    C:\Ad-Report-SCAN[1].txt - 26/01/2011 (8235 Byte(s))

    End at: 17:16:51, 26/01/2011

    ============== E.O.F ==============


    28 Janvier 2011 21:19:48

    bonsoir
    Désactive ton antivirus et tout autre type de protection.
    Télécharge ComboFix de sUBs : Combofix
    Sauvegarde-le sur ton bureau et pas ailleurs!

    Double-clic sur ComboFix, Il va te poser une question, suis les invites puis attends que combofix ait terminé, il est possible que ton PC reboot, c’est normal, un rapport sera créé.Poste le rapport:C:\Combofix.txt
    clique dessus pour l'ouvrir, puis édition "sélectionner tout", édition "copier"

    viens sur le forum et édition "coller"

    AIDE : Un guide et un tutoriel sur l'utilisation de ComboFix
    * le nom de la partition peut changer

    <@_@>

    28 Janvier 2011 23:36:11

    Voila... j'espère que cette fois-ci c'est bon.. désolé pour les inconvénients


    ComboFix 11-01-28.01 - Mathieu 2011-01-28 17:26:45.1.4 - x64
    Microsoft Windows 7 Home Premium 6.1.7600.0.1252.2.1033.18.5879.4213 [GMT -5:00]
    Lancé depuis: c:\users\Mathieu\Desktop\ComboFix.exe
    AV: McAfee VirusScan *Disabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}
    FW: McAfee Personal Firewall *Enabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C}
    SP: McAfee VirusScan *Disabled/Updated* {3D54B793-665E-3129-9103-206115370C8A}
    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .

    (((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
    .

    C:\Install.exe

    .
    ((((((((((((((((((((((((((((( Fichiers créés du 2010-12-28 au 2011-01-28 ))))))))))))))))))))))))))))))))))))
    .

    2011-01-28 22:31 . 2011-01-28 22:31 -------- d-----w- c:\users\Default\AppData\Local\temp
    2011-01-28 18:20 . 2011-01-28 18:21 -------- d-----w- c:\program files\iTunes
    2011-01-28 18:20 . 2011-01-28 18:20 -------- d-----w- c:\program files\iPod
    2011-01-28 13:20 . 2011-01-20 15:39 7844688 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{E7F07C34-FFC2-43B0-91C7-9CAC3C7A9027}\mpengine.dll
    2011-01-28 04:55 . 2011-01-28 04:55 -------- d-----w- c:\program files (x86)\Common Files\Macrovision Shared
    2011-01-28 04:47 . 2011-01-28 04:47 -------- d-----w- c:\program files (x86)\Adobe Media Player
    2011-01-28 04:46 . 2011-01-28 04:49 -------- d-----w- c:\program files (x86)\Common Files\Adobe AIR
    2011-01-27 21:41 . 2011-01-28 04:57 -------- d-----w- c:\program files\Common Files\Adobe
    2011-01-27 17:21 . 2011-01-28 05:15 -------- d-----w- c:\programdata\regid.1986-12.com.adobe
    2011-01-26 03:51 . 2011-01-26 22:13 -------- d-----w- c:\program files (x86)\Ad-Remover
    2011-01-25 23:02 . 2011-01-25 23:02 -------- d-----w- c:\programdata\CFTEMP
    2011-01-25 20:35 . 2011-01-25 20:35 -------- d-----w- c:\programdata\Clickfree
    2011-01-25 17:42 . 2011-01-26 22:10 -------- d-----w- c:\programdata\Spybot - Search & Destroy
    2011-01-25 17:42 . 2011-01-26 22:10 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy
    2011-01-25 14:27 . 2011-01-25 14:27 -------- d-----w- c:\windows\Sun
    2011-01-25 14:25 . 2011-01-25 14:24 209408 ----a-w- c:\windows\Kvevoa.exe
    2011-01-25 04:41 . 2011-01-25 04:41 -------- d-----w- c:\programdata\FLEXnet
    2011-01-25 01:17 . 2011-01-25 01:17 -------- d-----w- c:\program files (x86)\Common Files\Risxtd
    2011-01-25 01:17 . 2011-01-25 01:17 -------- d-----w- c:\program files (x86)\Common Files\ResearchSoft
    2011-01-25 01:17 . 2011-01-25 01:17 -------- d-----w- c:\program files (x86)\EndNote X4
    2011-01-25 01:17 . 2011-01-25 01:17 -------- d-----w- c:\programdata\Thomson.ResearchSoft.Installers
    2011-01-24 03:54 . 2011-01-24 04:02 -------- d-----w- c:\programdata\WindSolutions
    2011-01-24 02:12 . 2011-01-24 02:12 -------- d-----w- c:\program files (x86)\City Interactive
    2011-01-23 17:00 . 2011-01-25 17:33 -------- d-----w- c:\programdata\PCDr
    2011-01-22 19:39 . 2011-01-22 19:39 -------- d-----w- c:\windows\SysWow64\Wat
    2011-01-22 19:39 . 2011-01-22 19:39 -------- d-----w- c:\windows\system32\Wat
    2011-01-22 14:48 . 2010-10-19 15:41 270720 ------w- c:\windows\system32\MpSigStub.exe
    2011-01-22 14:41 . 2010-10-20 03:09 3124224 ----a-w- c:\windows\system32\win32k.sys
    2011-01-22 06:08 . 2011-01-22 06:08 -------- d-----w- c:\program files (x86)\directx
    2011-01-22 06:07 . 2011-01-22 06:07 -------- d-----w- c:\program files (x86)\MSXML 4.0
    2011-01-22 06:01 . 1998-06-18 00:07 57344 ----a-w- c:\windows\SysWow64\Mfc42loc.dll
    2011-01-22 06:00 . 2011-01-22 06:08 -------- d-----w- c:\program files (x86)\Larousse
    2011-01-22 06:00 . 2011-01-22 06:00 -------- d-----w- c:\program files (x86)\Harrap
    2011-01-22 06:00 . 2005-12-13 16:25 225280 ------w- c:\windows\UnabridgedUninstall.exe
    2011-01-22 05:43 . 2011-01-24 02:00 -------- d-----w- c:\program files (x86)\Druide
    2011-01-22 05:41 . 2011-01-22 05:41 -------- d-----w- c:\program files (x86)\Multiple Image Resizer .NET 4
    2011-01-22 05:36 . 2009-11-25 17:47 99176 ----a-w- c:\windows\SysWow64\PresentationHostProxy.dll
    2011-01-22 05:36 . 2009-11-25 17:47 49472 ----a-w- c:\windows\SysWow64\netfxperf.dll
    2011-01-22 05:36 . 2009-11-25 17:47 48960 ----a-w- c:\windows\system32\netfxperf.dll
    2011-01-22 05:36 . 2009-11-25 17:47 297808 ----a-w- c:\windows\SysWow64\mscoree.dll
    2011-01-22 05:36 . 2009-11-25 17:47 295264 ----a-w- c:\windows\SysWow64\PresentationHost.exe
    2011-01-22 05:36 . 2009-11-25 17:47 1130824 ----a-w- c:\windows\SysWow64\dfshim.dll
    2011-01-22 05:36 . 2009-11-25 17:47 109912 ----a-w- c:\windows\system32\PresentationHostProxy.dll
    2011-01-22 05:36 . 2009-11-25 17:47 444752 ----a-w- c:\windows\system32\mscoree.dll
    2011-01-22 05:36 . 2009-11-25 17:47 320352 ----a-w- c:\windows\system32\PresentationHost.exe
    2011-01-22 05:36 . 2009-11-25 17:47 1942856 ----a-w- c:\windows\system32\dfshim.dll
    2011-01-22 05:33 . 2011-01-22 05:41 -------- dc-h--w- c:\programdata\{6B2867A8-97D7-4917-AF0E-7350F0F4E9B8}
    2011-01-22 05:28 . 2008-06-12 15:29 6475096 ----a-w- c:\windows\SysWow64\NEFcodec.dll
    2011-01-22 05:28 . 2008-01-10 15:51 110592 ----a-r- c:\windows\SysWow64\RCSigProc.dll
    2011-01-22 05:28 . 2008-01-10 15:16 200704 ----a-r- c:\windows\SysWow64\Strato7.dll
    2011-01-22 05:23 . 2011-01-22 05:23 -------- d-----w- c:\programdata\Applause and Laugher
    2011-01-22 04:58 . 2011-01-22 04:58 -------- d-----w- c:\windows\fr
    2011-01-22 04:53 . 2011-01-22 04:53 -------- d-----w- c:\windows\en
    2011-01-22 04:47 . 2011-01-22 04:47 -------- d-----w- c:\programdata\ESTsoft
    2011-01-22 04:47 . 2011-01-22 04:47 -------- d-----w- c:\program files (x86)\ESTsoft
    2011-01-22 04:46 . 2009-01-09 21:02 31744 ----a-w- c:\windows\system32\drivers\RimSerial_AMD64.sys
    2011-01-22 04:45 . 2011-01-22 04:45 -------- d-----w- c:\programdata\Research In Motion
    2011-01-22 04:45 . 2011-01-22 04:45 -------- d-----w- c:\program files (x86)\Common Files\Research In Motion
    2011-01-22 04:45 . 2011-01-22 04:45 -------- d-----w- c:\program files (x86)\Research In Motion
    2011-01-22 04:42 . 2011-01-22 04:42 -------- d-----w- c:\programdata\InstallShield
    2011-01-22 04:14 . 2011-01-22 04:14 -------- d-----w- c:\programdata\ScanSoft
    2011-01-22 04:14 . 2011-01-22 04:14 -------- d-----w- c:\program files (x86)\Common Files\ScanSoft Shared
    2011-01-22 04:14 . 2011-01-22 04:14 -------- d-----w- c:\program files (x86)\Common Files\Nuance
    2011-01-22 04:11 . 2011-01-22 04:11 -------- d-----w- c:\program files (x86)\VideoLAN
    2011-01-22 04:08 . 2011-01-22 04:08 -------- d-----w- c:\programdata\Nuance
    2011-01-22 04:08 . 2011-01-22 04:08 -------- d-----w- c:\program files (x86)\Nuance
    2011-01-22 03:57 . 2011-01-22 03:57 -------- d-----w- c:\program files (x86)\QuickTime
    2011-01-22 03:57 . 2011-01-22 03:57 -------- d-----w- c:\program files (x86)\Apple Software Update
    2011-01-22 03:57 . 2011-01-22 03:57 -------- d-----w- c:\program files\Common Files\Apple
    2011-01-22 03:56 . 2011-01-22 03:56 -------- d-----w- c:\program files\Bonjour
    2011-01-22 03:56 . 2011-01-22 03:56 -------- d-----w- c:\program files (x86)\Bonjour
    2011-01-22 03:56 . 2011-01-28 18:20 -------- d-----w- c:\program files (x86)\Common Files\Apple
    2011-01-22 03:56 . 2011-01-22 03:56 -------- d-----w- c:\programdata\Apple
    2011-01-22 03:51 . 2011-01-22 03:51 -------- d-----w- c:\programdata\WEBREG
    2011-01-22 03:09 . 2011-01-22 03:09 -------- d-----w- c:\program files (x86)\Microsoft Visual Studio 8
    2011-01-22 03:01 . 2011-01-22 03:01 -------- d-----w- c:\windows\PCHEALTH
    2011-01-22 02:58 . 2011-01-22 02:58 -------- d-----w- c:\program files (x86)\Microsoft Analysis Services
    2011-01-22 02:58 . 2011-01-22 02:58 -------- d-----r- C:\MSOCache
    2011-01-21 20:45 . 2011-01-22 19:38 -------- d-----w- c:\programdata\Microsoft Help
    2011-01-21 17:53 . 2011-01-21 17:54 -------- d-sh--w- C:\System Recovery
    2011-01-21 17:51 . 2011-01-21 17:51 -------- d-----w- c:\users\Default\AppData\Local\SoftThinks
    2011-01-21 17:47 . 2011-01-25 01:17 -------- d-----w- c:\users\Mathieu
    2011-01-15 01:10 . 2011-01-28 18:22 -------- d-----w- c:\programdata\NVIDIA
    2011-01-15 01:10 . 2011-01-28 18:21 -------- d-sh--w- c:\windows\Installer
    2011-01-15 01:10 . 2011-01-15 01:10 -------- d-----w- c:\programdata\NVIDIA Corporation
    2011-01-15 01:10 . 2011-01-15 01:10 -------- d-----w- c:\program files\NVIDIA Corporation
    2011-01-15 01:10 . 2011-01-14 23:16 -------- d-----w- c:\program files (x86)\NVIDIA Corporation
    2011-01-15 01:10 . 2011-01-14 23:21 24320 ----a-w- c:\windows\system32\drivers\FactoryPresets.reg
    2011-01-15 01:09 . 2011-01-15 01:09 -------- d-----w- c:\program files\Realtek
    2011-01-15 01:09 . 2011-01-14 23:21 -------- d-----w- c:\windows\SysWow64\RTCOM
    2011-01-15 01:09 . 2011-01-14 23:24 -------- d-----w- c:\program files (x86)\Intel
    2011-01-15 01:09 . 2011-01-14 23:23 -------- d-----w- C:\Intel
    2011-01-15 01:09 . 2011-01-22 03:58 -------- dc----w- c:\windows\system32\DRVSTORE
    2011-01-15 01:09 . 2010-08-20 19:05 21616 ----a-w- c:\windows\system32\drivers\stdcfltn.sys
    2011-01-15 01:01 . 2011-01-15 01:01 -------- d-----w- c:\program files\STMicroelectronics
    2011-01-15 01:00 . 2011-01-15 01:00 -------- d-----w- c:\program files\Synaptics
    2011-01-15 00:47 . 2011-01-14 23:38 -------- d-----w- C:\apps
    2011-01-15 00:37 . 2010-08-06 07:32 799232 ----a-w- c:\windows\system32\NETwNc64.dll
    2011-01-15 00:36 . 2010-09-02 19:53 39464 ----a-w- c:\windows\system32\drivers\btwl2cap.sys
    2011-01-15 00:36 . 2010-09-02 19:53 21544 ----a-w- c:\windows\system32\drivers\btwrchid.sys
    2011-01-15 00:36 . 2010-09-02 19:53 135720 ----a-w- c:\windows\system32\drivers\btwavdt.sys
    2011-01-15 00:36 . 2010-09-02 19:53 102952 ----a-w- c:\windows\system32\drivers\btwaudio.sys
    2011-01-15 00:36 . 2010-09-02 19:53 344616 ----a-w- c:\windows\system32\drivers\btwampfl.sys
    2011-01-15 00:31 . 2011-01-21 20:25 -------- d-----w- c:\windows\system32\oem
    2011-01-15 00:31 . 2011-01-21 15:41 -------- d-----w- c:\windows\Panther
    2011-01-15 00:31 . 2011-01-15 00:37 -------- d-----w- C:\Drivers
    2011-01-15 00:19 . 2011-01-25 17:39 -------- d-----w- C:\dell
    2011-01-14 23:46 . 2011-01-14 23:46 -------- d-----w- c:\program files\dell stage
    2011-01-14 23:45 . 2011-01-21 20:22 -------- d-----w- c:\program files (x86)\Microsoft
    2011-01-14 23:44 . 2011-01-25 17:27 -------- d-----w- c:\program files\Dell Support Center
    2011-01-14 23:43 . 2011-01-21 23:15 -------- d-----w- c:\program files (x86)\Microsoft SQL Server Compact Edition
    2011-01-14 23:43 . 2011-01-22 04:51 -------- d-----w- c:\program files (x86)\Windows Live
    2011-01-14 23:42 . 2011-01-22 04:51 -------- d-----w- c:\program files\Windows Live
    2011-01-14 23:42 . 2009-09-04 23:44 69464 ----a-w- c:\windows\SysWow64\XAPOFX1_3.dll
    2011-01-14 23:42 . 2009-09-04 23:44 515416 ----a-w- c:\windows\SysWow64\XAudio2_5.dll
    2011-01-14 23:42 . 2009-09-04 23:29 523088 ----a-w- c:\windows\system32\d3dx10_42.dll
    2011-01-14 23:42 . 2009-09-04 23:29 453456 ----a-w- c:\windows\SysWow64\d3dx10_42.dll
    2011-01-14 23:41 . 2006-11-29 19:06 4398360 ----a-w- c:\windows\system32\d3dx9_32.dll
    2011-01-14 23:41 . 2006-11-29 19:06 3426072 ----a-w- c:\windows\SysWow64\d3dx9_32.dll
    2011-01-14 23:40 . 2011-01-24 02:08 -------- d-----w- c:\program files (x86)\Microsoft Silverlight
    2011-01-14 23:39 . 2010-08-11 05:19 3860992 ----a-w- c:\windows\system32\UIRibbon.dll
    2011-01-14 23:39 . 2010-08-11 05:13 1164800 ----a-w- c:\windows\system32\UIRibbonRes.dll
    2011-01-14 23:39 . 2010-08-11 04:44 2983424 ----a-w- c:\windows\SysWow64\UIRibbon.dll
    2011-01-14 23:39 . 2010-08-11 04:35 1164800 ----a-w- c:\windows\SysWow64\UIRibbonRes.dll
    2011-01-14 23:39 . 2010-05-23 10:11 196608 ----a-w- c:\windows\SysWow64\mfreadwrite.dll

    .
    (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2011-01-22 05:22 . 2003-03-19 17:05 106496 ----a-w- c:\windows\SysWow64\ATL71.DLL
    2011-01-15 00:58 . 2011-01-15 00:58 44032 ----a-w- c:\windows\apppatch\acwow64.dll
    2010-11-29 22:38 . 2010-11-29 22:38 94208 ----a-w- c:\windows\SysWow64\QuickTimeVR.qtx
    2010-11-29 22:38 . 2010-11-29 22:38 69632 ----a-w- c:\windows\SysWow64\QuickTime.qts
    2010-11-10 07:54 . 2010-11-10 07:54 49016 ----a-w- c:\windows\SysWow64\sirenacm.dll
    2010-11-10 07:28 . 2010-11-10 07:28 301936 ----a-w- c:\windows\WLXPGSS.SCR
    .

    ((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
    REGEDIT4

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "ISUSPM Startup"="c:\progra~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2005-02-16 221184]
    "msnmsgr"="c:\program files (x86)\Windows Live\Messenger\msnmsgr.exe" [2010-11-10 4240760]
    "SacReminderHDDV2N"="c:\programdata\Clickfree\C2NPlus\reminder\SacReminder.exe" [2011-01-20 870224]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
    "Desktop Disc Tool"="c:\program files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe" [2009-10-15 498160]
    "mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2010-11-22 1484856]
    "Dell Webcam Central"="c:\program files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" [2010-08-20 487562]
    "hpqSRMon"="c:\program files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe" [2008-07-22 150528]
    "HP Software Update"="c:\program files (x86)\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
    "QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2010-11-29 421888]
    "SSBkgdUpdate"="c:\program files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2006-10-25 210472]
    "ISUSScheduler"="c:\program files (x86)\Common Files\InstallShield\UpdateService\issch.exe" [2005-02-16 81920]
    "DNS7reminder"="c:\program files (x86)\Nuance\NaturallySpeaking10\Ereg\Ereg.exe" [2007-04-16 259624]
    "agentantidote.exe"="c:\program files (x86)\Druide\Antidote 7\Programmes32\agentantidote.exe" [2010-11-26 941440]
    "agentantidote64.exe"="c:\program files (x86)\Druide\Antidote 7\Programmes64\agentantidote64.exe" [2010-11-26 77696]
    "SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
    "AdobeCS5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
    "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-10-25 932288]
    "Adobe Acrobat Speed Launcher"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe" [2010-10-25 36760]
    "Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe" [2010-10-25 821144]
    "iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2011-01-25 421160]

    c:\users\Mathieu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
    Dragon NaturallySpeaking.lnk - c:\program files (x86)\Nuance\NaturallySpeaking10\Program\natspeak.exe [2009-4-13 2844008]
    OneNote 2010 - Capture d'‚cran et lancement.lnk - c:\program files (x86)\Microsoft Office\Office14\ONENOTEM.EXE [2010-3-29 227712]

    c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
    Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2010-7-29 1132320]
    HP Digital Imaging Monitor.lnk - c:\program files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [2009-9-20 270336]
    Hyperappel du Petit Larousse 2009.lnk - c:\program files (x86)\Larousse\Petit Larousse 2009\bin\Hyperappel.exe [2011-1-22 237568]
    Nikon Monitor.lnk - c:\program files (x86)\Common Files\Nikon\Monitor\NkMonitor.exe [2008-6-5 479232]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 5 (0x5)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableUIADesktopToggle"= 0 (0x0)

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
    Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
    @=""

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
    @=""

    R2 CFUACProxy_c2nplus;CFUACProxy_c2nplus;c:\programdata\Clickfree\C2NPlus\UACProxy.exe [2010-07-08 87368]
    R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
    R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
    R2 SacNetAgentService_C57C4F854F53;SacNetAgentService_C57C4F854F53;c:\programdata\Clickfree\C2NPlus\Reminder\SacNetAgent.exe [2011-01-20 163664]
    R3 btwampfl;Bluetooth AMP USB Filter;c:\windows\system32\drivers\btwampfl.sys [2010-09-02 344616]
    R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2010-09-02 39464]
    R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2010-10-14 94864]
    R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2010-07-19 340240]
    R3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2010-06-22 131688]
    R3 PCDSRVC{1E208CE0-FB7451FF-06020101}_0;PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - PCDR Kernel Mode Service Helper Driver;c:\program files\dell support center\pcdsrvc_x64.pkms [2010-07-30 25072]
    R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
    R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2010-09-28 51712]
    R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2011-01-22 1255736]
    R4 McOobeSv;McAfee OOBE Service;c:\program files\Common Files\mcafee\McSvcHost\McSvHost.exe [2010-03-10 355440]
    R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
    S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2010-10-14 283360]
    S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2010-08-13 24680]
    S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2009-07-09 55280]
    S0 stdcfltn;Disk Class Filter Driver for Accelerometer;c:\windows\system32\DRIVERS\stdcfltn.sys [2010-08-20 21616]
    S1 mfenlfk;McAfee NDIS Light Filter;c:\windows\system32\DRIVERS\mfenlfk.sys [2010-10-14 75032]
    S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
    S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [2010-10-22 98208]
    S2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [2010-03-10 355440]
    S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\mcafee\McSvcHost\McSvHost.exe [2010-03-10 355440]
    S2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [2010-10-14 245352]
    S2 mfevtp;McAfee Validation Trust Protection Service;c:\program files\Common Files\McAfee\SystemCore\mfevtps.exe [2010-10-14 149032]
    S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2010-08-12 1620584]
    S2 SftService;SoftThinks Agent Service;c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE [2010-08-20 689472]
    S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-08-12 235624]
    S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [2010-04-16 13832]
    S2 TurboBoost;Intel(R) Turbo Boost Technology Monitor;c:\program files\Intel\TurboBoost\TurboBoost.exe [2010-04-16 134928]
    S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-02-24 2320920]
    S3 Acceler;Accelerometer Service;c:\windows\system32\DRIVERS\Accelern.sys [2010-08-20 27760]
    S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2010-10-14 62800]
    S3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\DRIVERS\CtClsFlt.sys [2010-08-12 175168]
    S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2010-02-24 56344]
    S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [2010-02-27 158976]
    S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-06-21 287232]
    S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [2010-10-27 171608]
    S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2010-10-14 441328]
    S3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;c:\windows\system32\DRIVERS\NETwNs64.sys [2010-08-06 7821312]
    S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-10 4925184]
    S3 qicflt;upper Device Filter Driver;c:\windows\system32\DRIVERS\qicflt.sys [2010-07-09 29288]
    S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2010-07-19 344680]
    S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
    S3 wdkmd;Intel WiDi KMD;c:\windows\system32\DRIVERS\WDKMD.sys [2010-06-18 39832]


    --- Autres Services/Pilotes en mémoire ---

    *Deregistered* - mfeavfk01

    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
    hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
    .
    Contenu du dossier 'Tâches planifiées'

    2011-01-24 c:\windows\Tasks\NatSpeak Periodic Acoustic Optimization.job
    - c:\program files (x86)\Nuance\NaturallySpeaking10\Program\schedmgr.exe [2009-04-13 17:43]

    2011-01-26 c:\windows\Tasks\NatSpeak Periodic Language Model Optimization.job
    - c:\program files (x86)\Nuance\NaturallySpeaking10\Program\schedmgr.exe [2009-04-13 17:43]

    2011-01-21 c:\windows\Tasks\PCDoctorBackgroundMonitorTask.job
    - c:\program files\Dell Support Center\uaclauncher.exe [2010-12-03 20:06]

    2011-01-28 c:\windows\Tasks\SystemToolsDailyTest.job
    - c:\program files\Dell Support Center\pcdrcui.exe [2010-12-03 20:06]
    .

    --------- x86-64 -----------


    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2010-10-22 6486632]
    "RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2010-10-22 2120808]
    "NVHotkey"="c:\windows\system32\nvHotkey.dll" [2010-08-12 283240]
    "QuickSet"="c:\program files\Dell\QuickSet\QuickSet.exe" [2010-08-04 3221152]
    "IntelTBRunOnce"="wscript.exe" [2009-07-14 168960]
    "FreeFallProtection"="c:\program files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe" [2010-09-24 727664]
    "IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-08-10 161304]
    "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-08-10 386584]
    "Persistence"="c:\windows\system32\igfxpers.exe" [2010-08-10 415256]
    "IntelWireless"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2010-07-19 1931024]
    "DellStage"="c:\program files (x86)\Dell Stage\Dell Stage\stage_primary.exe" [2010-12-10 4775176]
    "AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-11-08 497648]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "LoadAppInit_DLLs"=0x1
    "AppInit_DLLs"=c:\windows\System32\nvinitx.dll
    .
    ------- Examen supplémentaire -------
    .
    uLocal Page = c:\windows\system32\blank.htm
    uStart Page = https://www.netclinic.ca/physioextra
    mLocal Page = c:\windows\SysWOW64\blank.htm
    uInternet Settings,ProxyOverride = *.local
    IE: Ajouter la cible du lien à un fichier PDF existant - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
    IE: Ajouter à un fichier PDF existant - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
    IE: Convertir au format Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
    IE: Convertir la cible du lien au format Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
    IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
    IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
    IE: Send image to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
    IE: Send page to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
    FF - ProfilePath - c:\users\Mathieu\AppData\Roaming\Mozilla\Firefox\Profiles\z0o8a5cw.default\
    FF - prefs.js: network.proxy.type - 2
    FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
    FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
    FF - Ext: HP Smart Web Printing: smartwebprinting@hp.com - c:\program files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
    FF - Ext: Adobe Acrobat - Create PDF: web2pdfextension@web2pdf.adobedotcom - c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
    FF - Ext: HP Smart Web Printing: smartwebprinting@hp.com - c:\program files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
    .
    - - - - ORPHELINS SUPPRIMES - - - -

    URLSearchHooks-{ef79f67a-6ad7-4715-a0f8-932fca442023} - (no file)
    Toolbar-Locked - (no file)
    Toolbar-Locked - (no file)
    WebBrowser-{EF79F67A-6AD7-4715-A0F8-932FCA442023} - (no file)
    HKLM-Run-SynTPEnh - %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe



    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\PCDSRVC{1E208CE0-FB7451FF-06020101}_0]
    "ImagePath"="\??\c:\program files\dell support center\pcdsrvc_x64.pkms"
    .
    --------------------- CLES DE REGISTRE BLOQUEES ---------------------

    [HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
    "SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
    00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\

    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
    @Denied: (A) (Everyone)
    "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
    @Denied: (A) (Everyone)

    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
    "Key"="ActionsPane3"
    "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"

    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000

    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
    @Denied: (Full) (Everyone)
    .
    Heure de fin: 2011-01-28 17:33:08
    ComboFix-quarantined-files.txt 2011-01-28 22:33

    Avant-CF: 193 319 432 192 bytes free
    Après-CF: 194 059 210 752 bytes free

    - - End Of File - - EB5BB88642211D708B72A8B4F1EE850D
    29 Janvier 2011 11:07:53

    re
    il est bien là:
    Citation :
    2011-01-25 14:25 . 2011-01-25 14:24 209408 ----a-w- c:\windows\Kvevoa.exe


    Copie (Ctrl+C) le texte ci-dessous :
    File::
    c:\windows\Kvevoa.exe



    Ouvre le Bloc-Notes puis colle (Ctrl+V) le texte que tu viens de copier.
    Sauvegarde ce fichier sous le nom de CFScript.txt

    Fait un glisser/déposer de ce fichier CFScript sur le fichier ComboFix.exe comme sur la capture


  • Combofix se lance, laisse toi guider..

  • Patiente le temps du scan. Le bureau va disparaître à plusieurs reprises: c'est normal!
    Ne touche à rien tant que le scan n'est pas terminé.
  • Une fois le scan achevé, un rapport va s'afficher: poste son contenu, en précisant où en sont tes soucis

  • Si le fichier ne s'ouvre pas, il se trouve ici > C:\ComboFix.txt

    AIDE : Un guide et un tutoriel sur l'utilisation de ComboFix
    * le nom de la partition peut changer



    +++++++++++++



    Puis dis moi comment se comporte ton pc




    31 Janvier 2011 19:28:15

    Salut Sham-Rock,

    j'ai effectué l'opération hier soir et, pour le moment, je n'ai pas eu d'autres fenêtres de publicités qui se sont ouvertes sur explorer. Merci beaucoup d'avoir pris de ton temps pour m'aider à résoudre mon problème, c'est très apprécié.

    Voila le rapport

    __________


    ComboFix 11-01-28.03 - Mathieu 2011-01-30 21:43:35.3.4 - x64
    Microsoft Windows 7 Home Premium 6.1.7600.0.1252.2.1033.18.5879.4210 [GMT -5:00]
    Lancé depuis: c:\users\Mathieu\Desktop\ComboFix.exe
    Commutateurs utilisés :: c:\users\Mathieu\Desktop\CFScript.txt
    AV: McAfee VirusScan *Disabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}
    FW: McAfee Personal Firewall *Disabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C}
    SP: McAfee VirusScan *Disabled/Updated* {3D54B793-665E-3129-9103-206115370C8A}
    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    * Un nouveau point de restauration a été créé
    .

    ((((((((((((((((((((((((((((( Fichiers créés du 2010-12-28 au 2011-01-31 ))))))))))))))))))))))))))))))))))))
    .

    2011-01-31 02:48 . 2011-01-31 02:48 -------- d-----w- c:\users\Default\AppData\Local\temp
    2011-01-28 18:20 . 2011-01-28 18:21 -------- d-----w- c:\program files\iTunes
    2011-01-28 18:20 . 2011-01-28 18:20 -------- d-----w- c:\program files\iPod
    2011-01-28 13:20 . 2011-01-20 15:39 7844688 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{E7F07C34-FFC2-43B0-91C7-9CAC3C7A9027}\mpengine.dll
    2011-01-28 04:55 . 2011-01-28 04:55 -------- d-----w- c:\program files (x86)\Common Files\Macrovision Shared
    2011-01-28 04:47 . 2011-01-28 04:47 -------- d-----w- c:\program files (x86)\Adobe Media Player
    2011-01-28 04:46 . 2011-01-28 04:49 -------- d-----w- c:\program files (x86)\Common Files\Adobe AIR
    2011-01-27 21:41 . 2011-01-28 04:57 -------- d-----w- c:\program files\Common Files\Adobe
    2011-01-27 17:21 . 2011-01-28 05:15 -------- d-----w- c:\programdata\regid.1986-12.com.adobe
    2011-01-26 03:51 . 2011-01-26 22:13 -------- d-----w- c:\program files (x86)\Ad-Remover
    2011-01-25 23:02 . 2011-01-25 23:02 -------- d-----w- c:\programdata\CFTEMP
    2011-01-25 20:35 . 2011-01-25 20:35 -------- d-----w- c:\programdata\Clickfree
    2011-01-25 17:42 . 2011-01-26 22:10 -------- d-----w- c:\programdata\Spybot - Search & Destroy
    2011-01-25 17:42 . 2011-01-26 22:10 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy
    2011-01-25 14:27 . 2011-01-25 14:27 -------- d-----w- c:\windows\Sun
    2011-01-25 04:41 . 2011-01-25 04:41 -------- d-----w- c:\programdata\FLEXnet
    2011-01-25 01:17 . 2011-01-25 01:17 -------- d-----w- c:\program files (x86)\Common Files\Risxtd
    2011-01-25 01:17 . 2011-01-25 01:17 -------- d-----w- c:\program files (x86)\Common Files\ResearchSoft
    2011-01-25 01:17 . 2011-01-25 01:17 -------- d-----w- c:\program files (x86)\EndNote X4
    2011-01-25 01:17 . 2011-01-25 01:17 -------- d-----w- c:\programdata\Thomson.ResearchSoft.Installers
    2011-01-24 03:54 . 2011-01-24 04:02 -------- d-----w- c:\programdata\WindSolutions
    2011-01-24 02:12 . 2011-01-24 02:12 -------- d-----w- c:\program files (x86)\City Interactive
    2011-01-23 17:00 . 2011-01-25 17:33 -------- d-----w- c:\programdata\PCDr
    2011-01-22 19:39 . 2011-01-22 19:39 -------- d-----w- c:\windows\SysWow64\Wat
    2011-01-22 19:39 . 2011-01-22 19:39 -------- d-----w- c:\windows\system32\Wat
    2011-01-22 14:48 . 2010-10-19 15:41 270720 ------w- c:\windows\system32\MpSigStub.exe
    2011-01-22 14:41 . 2010-10-20 03:09 3124224 ----a-w- c:\windows\system32\win32k.sys
    2011-01-22 06:08 . 2011-01-22 06:08 -------- d-----w- c:\program files (x86)\directx
    2011-01-22 06:07 . 2011-01-22 06:07 -------- d-----w- c:\program files (x86)\MSXML 4.0
    2011-01-22 06:01 . 1998-06-18 00:07 57344 ----a-w- c:\windows\SysWow64\Mfc42loc.dll
    2011-01-22 06:00 . 2011-01-22 06:08 -------- d-----w- c:\program files (x86)\Larousse
    2011-01-22 06:00 . 2011-01-22 06:00 -------- d-----w- c:\program files (x86)\Harrap
    2011-01-22 06:00 . 2005-12-13 16:25 225280 ------w- c:\windows\UnabridgedUninstall.exe
    2011-01-22 05:43 . 2011-01-24 02:00 -------- d-----w- c:\program files (x86)\Druide
    2011-01-22 05:41 . 2011-01-22 05:41 -------- d-----w- c:\program files (x86)\Multiple Image Resizer .NET 4
    2011-01-22 05:36 . 2009-11-25 17:47 99176 ----a-w- c:\windows\SysWow64\PresentationHostProxy.dll
    2011-01-22 05:36 . 2009-11-25 17:47 49472 ----a-w- c:\windows\SysWow64\netfxperf.dll
    2011-01-22 05:36 . 2009-11-25 17:47 48960 ----a-w- c:\windows\system32\netfxperf.dll
    2011-01-22 05:36 . 2009-11-25 17:47 297808 ----a-w- c:\windows\SysWow64\mscoree.dll
    2011-01-22 05:36 . 2009-11-25 17:47 295264 ----a-w- c:\windows\SysWow64\PresentationHost.exe
    2011-01-22 05:36 . 2009-11-25 17:47 1130824 ----a-w- c:\windows\SysWow64\dfshim.dll
    2011-01-22 05:36 . 2009-11-25 17:47 109912 ----a-w- c:\windows\system32\PresentationHostProxy.dll
    2011-01-22 05:36 . 2009-11-25 17:47 444752 ----a-w- c:\windows\system32\mscoree.dll
    2011-01-22 05:36 . 2009-11-25 17:47 320352 ----a-w- c:\windows\system32\PresentationHost.exe
    2011-01-22 05:36 . 2009-11-25 17:47 1942856 ----a-w- c:\windows\system32\dfshim.dll
    2011-01-22 05:33 . 2011-01-22 05:41 -------- dc-h--w- c:\programdata\{6B2867A8-97D7-4917-AF0E-7350F0F4E9B8}
    2011-01-22 05:28 . 2008-06-12 15:29 6475096 ----a-w- c:\windows\SysWow64\NEFcodec.dll
    2011-01-22 05:28 . 2008-01-10 15:51 110592 ----a-r- c:\windows\SysWow64\RCSigProc.dll
    2011-01-22 05:28 . 2008-01-10 15:16 200704 ----a-r- c:\windows\SysWow64\Strato7.dll
    2011-01-22 05:23 . 2011-01-22 05:23 -------- d-----w- c:\programdata\Applause and Laugher
    2011-01-22 04:58 . 2011-01-22 04:58 -------- d-----w- c:\windows\fr
    2011-01-22 04:53 . 2011-01-22 04:53 -------- d-----w- c:\windows\en
    2011-01-22 04:47 . 2011-01-22 04:47 -------- d-----w- c:\programdata\ESTsoft
    2011-01-22 04:47 . 2011-01-22 04:47 -------- d-----w- c:\program files (x86)\ESTsoft
    2011-01-22 04:46 . 2009-01-09 21:02 31744 ----a-w- c:\windows\system32\drivers\RimSerial_AMD64.sys
    2011-01-22 04:45 . 2011-01-22 04:45 -------- d-----w- c:\programdata\Research In Motion
    2011-01-22 04:45 . 2011-01-22 04:45 -------- d-----w- c:\program files (x86)\Common Files\Research In Motion
    2011-01-22 04:45 . 2011-01-22 04:45 -------- d-----w- c:\program files (x86)\Research In Motion
    2011-01-22 04:42 . 2011-01-22 04:42 -------- d-----w- c:\programdata\InstallShield
    2011-01-22 04:14 . 2011-01-22 04:14 -------- d-----w- c:\programdata\ScanSoft
    2011-01-22 04:14 . 2011-01-22 04:14 -------- d-----w- c:\program files (x86)\Common Files\ScanSoft Shared
    2011-01-22 04:14 . 2011-01-22 04:14 -------- d-----w- c:\program files (x86)\Common Files\Nuance
    2011-01-22 04:11 . 2011-01-22 04:11 -------- d-----w- c:\program files (x86)\VideoLAN
    2011-01-22 04:08 . 2011-01-22 04:08 -------- d-----w- c:\programdata\Nuance
    2011-01-22 04:08 . 2011-01-22 04:08 -------- d-----w- c:\program files (x86)\Nuance
    2011-01-22 03:57 . 2011-01-22 03:57 -------- d-----w- c:\program files (x86)\QuickTime
    2011-01-22 03:57 . 2011-01-22 03:57 -------- d-----w- c:\program files (x86)\Apple Software Update
    2011-01-22 03:57 . 2011-01-22 03:57 -------- d-----w- c:\program files\Common Files\Apple
    2011-01-22 03:56 . 2011-01-22 03:56 -------- d-----w- c:\program files\Bonjour
    2011-01-22 03:56 . 2011-01-22 03:56 -------- d-----w- c:\program files (x86)\Bonjour
    2011-01-22 03:56 . 2011-01-28 18:20 -------- d-----w- c:\program files (x86)\Common Files\Apple
    2011-01-22 03:56 . 2011-01-22 03:56 -------- d-----w- c:\programdata\Apple
    2011-01-22 03:51 . 2011-01-22 03:51 -------- d-----w- c:\programdata\WEBREG
    2011-01-22 03:09 . 2011-01-22 03:09 -------- d-----w- c:\program files (x86)\Microsoft Visual Studio 8
    2011-01-22 03:01 . 2011-01-22 03:01 -------- d-----w- c:\windows\PCHEALTH
    2011-01-22 02:58 . 2011-01-22 02:58 -------- d-----w- c:\program files (x86)\Microsoft Analysis Services
    2011-01-22 02:58 . 2011-01-22 02:58 -------- d-----r- C:\MSOCache
    2011-01-21 20:45 . 2011-01-22 19:38 -------- d-----w- c:\programdata\Microsoft Help
    2011-01-21 17:53 . 2011-01-21 17:54 -------- d-sh--w- C:\System Recovery
    2011-01-21 17:51 . 2011-01-21 17:51 -------- d-----w- c:\users\Default\AppData\Local\SoftThinks
    2011-01-21 17:47 . 2011-01-25 01:17 -------- d-----w- c:\users\Mathieu
    2011-01-15 01:10 . 2011-01-31 02:19 -------- d-----w- c:\programdata\NVIDIA
    2011-01-15 01:10 . 2011-01-28 18:21 -------- d-sh--w- c:\windows\Installer
    2011-01-15 01:10 . 2011-01-15 01:10 -------- d-----w- c:\programdata\NVIDIA Corporation
    2011-01-15 01:10 . 2011-01-15 01:10 -------- d-----w- c:\program files\NVIDIA Corporation
    2011-01-15 01:10 . 2011-01-14 23:16 -------- d-----w- c:\program files (x86)\NVIDIA Corporation
    2011-01-15 01:10 . 2011-01-14 23:21 24320 ----a-w- c:\windows\system32\drivers\FactoryPresets.reg
    2011-01-15 01:09 . 2011-01-15 01:09 -------- d-----w- c:\program files\Realtek
    2011-01-15 01:09 . 2011-01-14 23:21 -------- d-----w- c:\windows\SysWow64\RTCOM
    2011-01-15 01:09 . 2011-01-14 23:24 -------- d-----w- c:\program files (x86)\Intel
    2011-01-15 01:09 . 2011-01-14 23:23 -------- d-----w- C:\Intel
    2011-01-15 01:09 . 2011-01-22 03:58 -------- dc----w- c:\windows\system32\DRVSTORE
    2011-01-15 01:09 . 2010-08-20 19:05 21616 ----a-w- c:\windows\system32\drivers\stdcfltn.sys
    2011-01-15 01:01 . 2011-01-15 01:01 -------- d-----w- c:\program files\STMicroelectronics
    2011-01-15 01:00 . 2011-01-15 01:00 -------- d-----w- c:\program files\Synaptics
    2011-01-15 00:47 . 2011-01-14 23:38 -------- d-----w- C:\apps
    2011-01-15 00:37 . 2010-08-06 07:32 799232 ----a-w- c:\windows\system32\NETwNc64.dll
    2011-01-15 00:36 . 2010-09-02 19:53 39464 ----a-w- c:\windows\system32\drivers\btwl2cap.sys
    2011-01-15 00:36 . 2010-09-02 19:53 21544 ----a-w- c:\windows\system32\drivers\btwrchid.sys
    2011-01-15 00:36 . 2010-09-02 19:53 135720 ----a-w- c:\windows\system32\drivers\btwavdt.sys
    2011-01-15 00:36 . 2010-09-02 19:53 102952 ----a-w- c:\windows\system32\drivers\btwaudio.sys
    2011-01-15 00:36 . 2010-09-02 19:53 344616 ----a-w- c:\windows\system32\drivers\btwampfl.sys
    2011-01-15 00:31 . 2011-01-21 20:25 -------- d-----w- c:\windows\system32\oem
    2011-01-15 00:31 . 2011-01-21 15:41 -------- d-----w- c:\windows\Panther
    2011-01-15 00:31 . 2011-01-15 00:37 -------- d-----w- C:\Drivers
    2011-01-15 00:19 . 2011-01-25 17:39 -------- d-----w- C:\dell
    2011-01-14 23:46 . 2011-01-14 23:46 -------- d-----w- c:\program files\dell stage
    2011-01-14 23:45 . 2011-01-21 20:22 -------- d-----w- c:\program files (x86)\Microsoft
    2011-01-14 23:44 . 2011-01-25 17:27 -------- d-----w- c:\program files\Dell Support Center
    2011-01-14 23:43 . 2011-01-21 23:15 -------- d-----w- c:\program files (x86)\Microsoft SQL Server Compact Edition
    2011-01-14 23:43 . 2011-01-22 04:51 -------- d-----w- c:\program files (x86)\Windows Live
    2011-01-14 23:42 . 2011-01-22 04:51 -------- d-----w- c:\program files\Windows Live
    2011-01-14 23:42 . 2009-09-04 23:44 69464 ----a-w- c:\windows\SysWow64\XAPOFX1_3.dll
    2011-01-14 23:42 . 2009-09-04 23:44 515416 ----a-w- c:\windows\SysWow64\XAudio2_5.dll
    2011-01-14 23:42 . 2009-09-04 23:29 523088 ----a-w- c:\windows\system32\d3dx10_42.dll
    2011-01-14 23:42 . 2009-09-04 23:29 453456 ----a-w- c:\windows\SysWow64\d3dx10_42.dll
    2011-01-14 23:41 . 2006-11-29 19:06 4398360 ----a-w- c:\windows\system32\d3dx9_32.dll
    2011-01-14 23:41 . 2006-11-29 19:06 3426072 ----a-w- c:\windows\SysWow64\d3dx9_32.dll
    2011-01-14 23:40 . 2011-01-24 02:08 -------- d-----w- c:\program files (x86)\Microsoft Silverlight
    2011-01-14 23:39 . 2010-08-11 05:19 3860992 ----a-w- c:\windows\system32\UIRibbon.dll
    2011-01-14 23:39 . 2010-08-11 05:13 1164800 ----a-w- c:\windows\system32\UIRibbonRes.dll
    2011-01-14 23:39 . 2010-08-11 04:44 2983424 ----a-w- c:\windows\SysWow64\UIRibbon.dll
    2011-01-14 23:39 . 2010-08-11 04:35 1164800 ----a-w- c:\windows\SysWow64\UIRibbonRes.dll
    2011-01-14 23:39 . 2010-05-23 10:11 196608 ----a-w- c:\windows\SysWow64\mfreadwrite.dll
    2011-01-14 23:39 . 2010-05-23 08:35 257024 ----a-w- c:\windows\system32\mfreadwrite.dll

    .
    (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2011-01-22 05:22 . 2003-03-19 17:05 106496 ----a-w- c:\windows\SysWow64\ATL71.DLL
    2011-01-15 00:58 . 2011-01-15 00:58 44032 ----a-w- c:\windows\apppatch\acwow64.dll
    2010-11-29 22:38 . 2010-11-29 22:38 94208 ----a-w- c:\windows\SysWow64\QuickTimeVR.qtx
    2010-11-29 22:38 . 2010-11-29 22:38 69632 ----a-w- c:\windows\SysWow64\QuickTime.qts
    2010-11-10 07:54 . 2010-11-10 07:54 49016 ----a-w- c:\windows\SysWow64\sirenacm.dll
    2010-11-10 07:28 . 2010-11-10 07:28 301936 ----a-w- c:\windows\WLXPGSS.SCR
    .

    ((((((((((((((((((((((((((((( SnapShot@2011-01-28_22.31.09 )))))))))))))))))))))))))))))))))))))))))
    .
    + 2011-01-14 23:39 . 2011-01-31 02:20 50718 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
    + 2009-07-14 05:10 . 2011-01-31 02:20 29840 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
    + 2011-01-21 15:47 . 2011-01-31 02:19 32768 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
    - 2011-01-21 15:47 . 2011-01-28 18:22 32768 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
    + 2011-01-21 15:47 . 2011-01-31 02:19 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
    - 2011-01-21 15:47 . 2011-01-28 18:22 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
    - 2009-07-14 04:54 . 2011-01-28 18:22 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
    + 2009-07-14 04:54 . 2011-01-31 02:19 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
    - 2011-01-21 21:51 . 2011-01-28 18:23 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
    + 2011-01-21 21:51 . 2011-01-31 02:19 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
    - 2011-01-21 21:51 . 2011-01-28 18:23 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
    + 2011-01-21 21:51 . 2011-01-31 02:19 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
    + 2011-01-21 21:51 . 2011-01-31 02:19 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
    - 2011-01-21 21:51 . 2011-01-28 18:23 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
    + 2011-01-21 20:16 . 2011-01-31 02:19 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
    - 2011-01-21 20:16 . 2011-01-28 18:23 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
    + 2011-01-21 20:16 . 2011-01-31 02:19 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
    - 2011-01-21 20:16 . 2011-01-28 18:23 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
    + 2011-01-21 21:51 . 2011-01-31 02:20 9222 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1026475739-2209566706-199445893-1002_UserData.bin
    + 2011-01-31 02:19 . 2011-01-31 02:19 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
    - 2011-01-28 18:22 . 2011-01-28 18:22 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
    + 2011-01-31 02:19 . 2011-01-31 02:19 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
    - 2011-01-28 18:22 . 2011-01-28 18:22 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
    + 2011-01-21 20:16 . 2011-01-29 02:46 247134 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S3.bin
    + 2009-07-14 05:12 . 2011-01-30 06:35 262144 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
    - 2009-07-14 05:12 . 2011-01-28 17:49 262144 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
    + 2009-07-14 05:01 . 2011-01-30 07:17 483676 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
    - 2009-07-14 05:01 . 2011-01-28 18:21 483676 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
    + 2011-01-21 20:24 . 2011-01-30 07:17 2108888 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
    + 2011-01-22 06:15 . 2011-01-30 07:17 2625886 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-1026475739-2209566706-199445893-1002-8192.dat
    - 2009-07-14 02:34 . 2011-01-28 19:49 10223616 c:\windows\system32\SMI\Store\Machine\SCHEMA.DAT
    + 2009-07-14 02:34 . 2011-01-31 02:32 10223616 c:\windows\system32\SMI\Store\Machine\SCHEMA.DAT
    .
    ((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
    REGEDIT4

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "ISUSPM Startup"="c:\progra~2\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2005-02-16 221184]
    "msnmsgr"="c:\program files (x86)\Windows Live\Messenger\msnmsgr.exe" [2010-11-10 4240760]
    "SacReminderHDDV2N"="c:\programdata\Clickfree\C2NPlus\reminder\SacReminder.exe" [2011-01-20 870224]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
    "Desktop Disc Tool"="c:\program files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe" [2009-10-15 498160]
    "mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2010-11-22 1484856]
    "Dell Webcam Central"="c:\program files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" [2010-08-20 487562]
    "hpqSRMon"="c:\program files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe" [2008-07-22 150528]
    "HP Software Update"="c:\program files (x86)\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
    "QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2010-11-29 421888]
    "SSBkgdUpdate"="c:\program files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2006-10-25 210472]
    "ISUSScheduler"="c:\program files (x86)\Common Files\InstallShield\UpdateService\issch.exe" [2005-02-16 81920]
    "DNS7reminder"="c:\program files (x86)\Nuance\NaturallySpeaking10\Ereg\Ereg.exe" [2007-04-16 259624]
    "agentantidote.exe"="c:\program files (x86)\Druide\Antidote 7\Programmes32\agentantidote.exe" [2010-11-26 941440]
    "agentantidote64.exe"="c:\program files (x86)\Druide\Antidote 7\Programmes64\agentantidote64.exe" [2010-11-26 77696]
    "SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
    "AdobeCS5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
    "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-10-25 932288]
    "Adobe Acrobat Speed Launcher"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe" [2010-10-25 36760]
    "Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe" [2010-10-25 821144]
    "iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2011-01-25 421160]

    c:\users\Mathieu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
    Dragon NaturallySpeaking.lnk - c:\program files (x86)\Nuance\NaturallySpeaking10\Program\natspeak.exe [2009-4-13 2844008]
    OneNote 2010 - Capture d'‚cran et lancement.lnk - c:\program files (x86)\Microsoft Office\Office14\ONENOTEM.EXE [2010-3-29 227712]

    c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
    Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2010-7-29 1132320]
    HP Digital Imaging Monitor.lnk - c:\program files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [2009-9-20 270336]
    Hyperappel du Petit Larousse 2009.lnk - c:\program files (x86)\Larousse\Petit Larousse 2009\bin\Hyperappel.exe [2011-1-22 237568]
    Nikon Monitor.lnk - c:\program files (x86)\Common Files\Nikon\Monitor\NkMonitor.exe [2008-6-5 479232]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 5 (0x5)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableUIADesktopToggle"= 0 (0x0)

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
    Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
    @=""

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
    @=""

    R2 CFUACProxy_c2nplus;CFUACProxy_c2nplus;c:\programdata\Clickfree\C2NPlus\UACProxy.exe [2010-07-08 87368]
    R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
    R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
    R2 SacNetAgentService_C57C4F854F53;SacNetAgentService_C57C4F854F53;c:\programdata\Clickfree\C2NPlus\Reminder\SacNetAgent.exe [2011-01-20 163664]
    R3 btwampfl;Bluetooth AMP USB Filter;c:\windows\system32\drivers\btwampfl.sys [2010-09-02 344616]
    R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2010-09-02 39464]
    R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2010-10-14 94864]
    R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2010-07-19 340240]
    R3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2010-06-22 131688]
    R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
    R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2010-09-28 51712]
    R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2011-01-22 1255736]
    R4 McOobeSv;McAfee OOBE Service;c:\program files\Common Files\mcafee\McSvcHost\McSvHost.exe [2010-03-10 355440]
    R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
    S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2010-10-14 283360]
    S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2010-08-13 24680]
    S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2009-07-09 55280]
    S0 stdcfltn;Disk Class Filter Driver for Accelerometer;c:\windows\system32\DRIVERS\stdcfltn.sys [2010-08-20 21616]
    S1 mfenlfk;McAfee NDIS Light Filter;c:\windows\system32\DRIVERS\mfenlfk.sys [2010-10-14 75032]
    S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
    S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [2010-10-22 98208]
    S2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [2010-03-10 355440]
    S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\mcafee\McSvcHost\McSvHost.exe [2010-03-10 355440]
    S2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [2010-10-14 245352]
    S2 mfevtp;McAfee Validation Trust Protection Service;c:\program files\Common Files\McAfee\SystemCore\mfevtps.exe [2010-10-14 149032]
    S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2010-08-12 1620584]
    S2 SftService;SoftThinks Agent Service;c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE [2010-08-20 689472]
    S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-08-12 235624]
    S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [2010-04-16 13832]
    S2 TurboBoost;Intel(R) Turbo Boost Technology Monitor;c:\program files\Intel\TurboBoost\TurboBoost.exe [2010-04-16 134928]
    S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-02-24 2320920]
    S3 Acceler;Accelerometer Service;c:\windows\system32\DRIVERS\Accelern.sys [2010-08-20 27760]
    S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2010-10-14 62800]
    S3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\DRIVERS\CtClsFlt.sys [2010-08-12 175168]
    S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2010-02-24 56344]
    S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [2010-02-27 158976]
    S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-06-21 287232]
    S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [2010-10-27 171608]
    S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2010-10-14 441328]
    S3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;c:\windows\system32\DRIVERS\NETwNs64.sys [2010-08-06 7821312]
    S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-10 4925184]
    S3 PCDSRVC{1E208CE0-FB7451FF-06020101}_0;PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - PCDR Kernel Mode Service Helper Driver;c:\program files\dell support center\pcdsrvc_x64.pkms [2010-07-30 25072]
    S3 qicflt;upper Device Filter Driver;c:\windows\system32\DRIVERS\qicflt.sys [2010-07-09 29288]
    S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2010-07-19 344680]
    S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
    S3 wdkmd;Intel WiDi KMD;c:\windows\system32\DRIVERS\WDKMD.sys [2010-06-18 39832]


    --- Autres Services/Pilotes en mémoire ---

    *Deregistered* - mfeavfk01

    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
    hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
    .
    Contenu du dossier 'Tâches planifiées'

    2011-01-24 c:\windows\Tasks\NatSpeak Periodic Acoustic Optimization.job
    - c:\program files (x86)\Nuance\NaturallySpeaking10\Program\schedmgr.exe [2009-04-13 17:43]

    2011-01-26 c:\windows\Tasks\NatSpeak Periodic Language Model Optimization.job
    - c:\program files (x86)\Nuance\NaturallySpeaking10\Program\schedmgr.exe [2009-04-13 17:43]

    2011-01-21 c:\windows\Tasks\PCDoctorBackgroundMonitorTask.job
    - c:\program files\Dell Support Center\uaclauncher.exe [2010-12-03 20:06]

    2011-01-31 c:\windows\Tasks\SystemToolsDailyTest.job
    - c:\program files\Dell Support Center\pcdrcui.exe [2010-12-03 20:06]
    .

    --------- x86-64 -----------


    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe" [BU]
    "RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2010-10-22 6486632]
    "RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2010-10-22 2120808]
    "NVHotkey"="c:\windows\system32\nvHotkey.dll" [2010-08-12 283240]
    "IntelTBRunOnce"="wscript.exe" [2009-07-14 168960]
    "FreeFallProtection"="c:\program files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe" [2010-09-24 727664]
    "IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-08-10 161304]
    "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-08-10 386584]
    "Persistence"="c:\windows\system32\igfxpers.exe" [2010-08-10 415256]
    "IntelWireless"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2010-07-19 1931024]
    "DellStage"="c:\program files (x86)\Dell Stage\Dell Stage\stage_primary.exe" [2010-12-10 4775176]
    "AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-11-08 497648]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "AppInit_DLLs"=c:\windows\System32\nvinitx.dll
    .
    ------- Examen supplémentaire -------
    .
    uLocal Page = c:\windows\system32\blank.htm
    uStart Page = https://www.netclinic.ca/physioextra
    mLocal Page = c:\windows\SysWOW64\blank.htm
    uInternet Settings,ProxyOverride = *.local
    IE: Ajouter la cible du lien à un fichier PDF existant - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
    IE: Ajouter à un fichier PDF existant - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
    IE: Convertir au format Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
    IE: Convertir la cible du lien au format Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
    IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
    IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
    IE: Send image to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
    IE: Send page to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    Trusted Zone: netclinic.ca\www
    Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
    FF - ProfilePath - c:\users\Mathieu\AppData\Roaming\Mozilla\Firefox\Profiles\z0o8a5cw.default\
    FF - prefs.js: network.proxy.type - 2
    FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
    FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
    FF - Ext: HP Smart Web Printing: smartwebprinting@hp.com - c:\program files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
    FF - Ext: Adobe Acrobat - Create PDF: web2pdfextension@web2pdf.adobedotcom - c:\program files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
    FF - Ext: HP Smart Web Printing: smartwebprinting@hp.com - c:\program files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
    .
    - - - - ORPHELINS SUPPRIMES - - - -

    Toolbar-Locked - (no file)



    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\PCDSRVC{1E208CE0-FB7451FF-06020101}_0]
    "ImagePath"="\??\c:\program files\dell support center\pcdsrvc_x64.pkms"
    .
    --------------------- CLES DE REGISTRE BLOQUEES ---------------------

    [HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
    "SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
    00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\

    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
    @Denied: (A) (Everyone)
    "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"

    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
    @Denied: (A) (Everyone)

    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
    "Key"="ActionsPane3"
    "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"

    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000

    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
    @Denied: (Full) (Everyone)
    .
    Heure de fin: 2011-01-30 21:50:13
    ComboFix-quarantined-files.txt 2011-01-31 02:50
    ComboFix2.txt 2011-01-29 12:28
    ComboFix3.txt 2011-01-28 22:33

    Avant-CF: 189 921 771 520 bytes free
    Après-CF: 189 812 215 808 bytes free

    - - End Of File - - B5447CCFAD44AB39F025E0772D228112
    31 Janvier 2011 21:41:12

    Bonsoir



    Supprime/Désinstalle tous les programmes utilisés pour la désinfection.


    Merci de consulter ce dossier (en pdf) pour en connaître davantage sur les risques du Net.



    Si tu trouves ce document intéressant, n'hésite pas à le transmettre à tes contacts.

    Si tu en as assez d'être assailli de publicités durant ta navigation, installe Firefox sécurisé avec les extensions noscript et AdBlock Plus.

    Lire aussi:
  • Antispyware gratuit : ça sert à rien!


    ~Clique, sur ton premier message, sur le bouton "Editer" et marque [résolu] dans le titre.

    Clique ensuite sur "Valider votre message"

    Si ton nom de session correspond à ton véritable nom, tu as la possibilité de le changer en éditant tes posts.

    :hello: 

    +++
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS