Virus bloque toutes les actions - Fermé

Question

Bonjour, 

J'écris ce message depuis mon netbook. 
Mon 2e ordinateur, celui de la config d'en dessous, à reçu un beau cheval de troie qui s'active à chaque démarrage sans que je ne puis rien n'y faire. Il s'agit d'un logiciel copiant windows security, mais avec des différences flagrantes. Il me fait un scan (Que j'arrête immédiatement) mais qui détecte des virus. Bien sûr, il me demande d'envoyer mon e-mail pour avoir une nouvelle version pour les supprimer. Cette merde aurait pu rester anodine, mais elle bloque toute mes actions : Je ne peut plus lancer internet, et le gestionnaire de tâches se ferme automatiquement. J'ai accès à Avast et j'ai lancé un scan au démarrage qui se passe en ce moment, mais j'ai peur pour ma machine. 

Configuration: Clavier/souris
Ecran plat 1280x768 32 bits
AMD Athlon(tm) 64 X2 Dual Core Processor 5200+ 2.71 GHz
3.0 GB RAM
GeForce 8600 GT, Pixel Shader version 3.0 /Vertex Shader version 3.0/ Video RAM 512.0 MB
Windows xp professional LSD SP2.

juju666 · Answer

Bonjour.

&#9654 Télécharge sur le bureau RogueKiller  (par tigzy)   

&#9654 &#9654 Sous Windows XP, double clic gauche   

&#9654 &#9654  Sous Vista/Seven, clique droit, lancer en tant qu'administrateur   

&#9654 Quitte tous tes programmes en cours   
&#9654 Lance RogueKiller.exe.   
&#9654 Un scan se lance, puis tu verra d''indiqué dans la fenêtre  
&#9830 1. Recherche (écrit en vert) 
&#9830 2. Suppression(écrit en rouge)  
&#9830 3. Hosts RAZ (écrit en rouge)  
&#9830 4. Proxy RAZ (écrit en rouge) 
&#9830 5. DNS RAZ (écrit en rouge) 
&#9830 6. Raccourcis RAZ (écrit en rouge) 
&#9830 0. Quitter (écrit en vert) 
&#9654  A ce moment tape 1 et valide   

&#9654 Une fois terminé, un rapport (RKreport1.txt) a du se créer à côté de l'exécutable, colle son contenu dans la réponse.
&#9654 Utilise l'option 0 pour fermer RogueKiller à ce moment là.

&#9654 Si le programme a été bloqué, ne pas hésiter à essayer plusieurs fois ou a changer son nom en winlogon.exe

Tutoriel : http://forums-fec.be/entraide/viewtopic.php?f=55&t=24

Kamomil · Answer

J'ai eu un virus comme ça, c'est un marchand de logiciel qui vous dit d'acheter son truc pour protégéer votre ordi.
J'ai pu restaurer mon sys à une date antérieure et m'en suis ainsi débarrassé.

TomZanovich · Answer

Bon, j'ai terminé mon scan. Cela n'a rien changé. J'ai planifié un autre scan, celui ci pour les programmes se lançant au démarrage. Je m'en occuperai demain.

Au fait, à propos de Rogue Killer : Je ne peut pas accéder à internet, je ne peut donc pas le télécharger

juju666 · Answer

bah comment tu fais pour venir ici alors ? 
télécharge roguekiller depuis le netbook et transfère via clé usb sur le pc malade ;)

TomZanovich · Answer

C'est bizarre, mais... Mon ordinateur refonctionne ! Privacy Protection à disparu comme par magie...

juju666 · Answer

Passe RogueKiller, c'est un faux espoir :)

TomZanovich · Answer

OK : RogueKiller V6.1.10 [18/11/2011] par Tigzy mail: tigzyRKgmailcom Remontees: https://www.luanagames.com/index.fr.html Blog: http://tigzyrk.blogspot.com Systeme d'exploitation: Windows XP (5.1.2600 Service Pack 2) 32 bits version Demarrage : Mode normal Utilisateur: ChloÚ [Droits d'admin] Mode: Recherche -- Date : 21/11/2011 17:17:00 ¤¤¤ Processus malicieux: 0 ¤¤¤ ¤¤¤ Entrees de registre: 13 ¤¤¤ [SUSP PATH] HKCU\[...]\Run : engel (C:\Documents and Settings\ChloÚ\Application Data\updates\updates.exe) -> FOUND [SUSP PATH] HKCU\[...]\Run : CE8SIIFGSU (C:\DOCUME~1\CHLO~1\LOCALS~1\Temp\Usq.exe) -> FOUND [BLACKLIST DLL] HKCU\[...]\Run : Wyusi (rundll32.exe "C:\WINDOWS\mfdscdms.dll",Startup) -> FOUND [SUSP PATH] HKCU\[...]\Run : Privacy Protection (C:\Documents and Settings\All Users\Application Data\privacy.exe) -> FOUND [PREVRUN] HKLM\[...]\Run : NvMediaCenter (RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login) -> FOUND [PREVRUN] HKLM\[...]\Run : NvCplDaemon (RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup) -> FOUND [SUSP PATH] HKUS\S-1-5-21-1960408961-1425521274-725345543-1003[...]\Run : engel (C:\Documents and Settings\ChloÚ\Application Data\updates\updates.exe) -> FOUND [SUSP PATH] HKUS\S-1-5-21-1960408961-1425521274-725345543-1003[...]\Run : CE8SIIFGSU (C:\DOCUME~1\CHLO~1\LOCALS~1\Temp\Usq.exe) -> FOUND [BLACKLIST DLL] HKUS\S-1-5-21-1960408961-1425521274-725345543-1003[...]\Run : Wyusi (rundll32.exe "C:\WINDOWS\mfdscdms.dll",Startup) -> FOUND [SUSP PATH] HKUS\S-1-5-21-1960408961-1425521274-725345543-1003[...]\Run : Privacy Protection (C:\Documents and Settings\All Users\Application Data\privacy.exe) -> FOUND [BLACKLIST] HKLM\[...]\Root : LEGACY_SSHNAS () -> FOUND [HJ] HKLM\[...]\SystemRestore : DisableSR (1) -> FOUND [HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND ¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤ ¤¤¤ Driver: [LOADED] ¤¤¤ ¤¤¤ Infection : Rogue.AntiSpy-SP ¤¤¤ ¤¤¤ Fichier HOSTS: ¤¤¤ 127.0.0.1 localhost Termine : << RKreport[2].txt >> RKreport[1].txt ; RKreport[2].txt

TomZanovich · Answer

Quelqu'un sait quoi faire ? Je dois supprimer ?

TomZanovich · Answer

S'il vous plaît, il va falloir que je parte et je ne suis pas sûr que mon PC refonctionnera

juju666 · Answer

Je peux manger ? xD

Relance roguekiller en option 2 puis 0

poste le rapport.

TomZanovich · Answer

Pardon, J'apprécie ce que vous faites pour moi : RogueKiller V6.1.10 [18/11/2011] par Tigzy mail: tigzyRKgmailcom Remontees: https://www.luanagames.com/index.fr.html Blog: http://tigzyrk.blogspot.com Systeme d'exploitation: Windows XP (5.1.2600 Service Pack 2) 32 bits version Demarrage : Mode normal Utilisateur: ChloÚ [Droits d'admin] Mode: Suppression -- Date : 21/11/2011 17:36:57 ¤¤¤ Processus malicieux: 0 ¤¤¤ ¤¤¤ Entrees de registre: 9 ¤¤¤ [SUSP PATH] HKCU\[...]\Run : engel (C:\Documents and Settings\ChloÚ\Application Data\updates\updates.exe) -> DELETED [SUSP PATH] HKCU\[...]\Run : CE8SIIFGSU (C:\DOCUME~1\CHLO~1\LOCALS~1\Temp\Usq.exe) -> DELETED [BLACKLIST DLL] HKCU\[...]\Run : Wyusi (rundll32.exe "C:\WINDOWS\mfdscdms.dll",Startup) -> DELETED [SUSP PATH] HKCU\[...]\Run : Privacy Protection (C:\Documents and Settings\All Users\Application Data\privacy.exe) -> DELETED [PREVRUN] HKLM\[...]\Run : NvMediaCenter (RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login) -> DELETED [PREVRUN] HKLM\[...]\Run : NvCplDaemon (RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup) -> DELETED [BLACKLIST] HKLM\[...]\Root : LEGACY_SSHNAS () -> DELETED [HJ] HKLM\[...]\SystemRestore : DisableSR (1) -> REPLACED (0) [HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0) ¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤ ¤¤¤ Driver: [LOADED] ¤¤¤ ¤¤¤ Infection : Rogue.AntiSpy-SP ¤¤¤ ¤¤¤ Fichier HOSTS: ¤¤¤ 127.0.0.1 localhost Termine : << RKreport[1].txt >> RKreport[1].txt

juju666 · Answer

Là il est désactivé, mais l'infection est toujours présente.

Il y a également l'infection Renos.

Ton infection est donc une infection qui se propage par disques amovibles (clefs USB, disque dur externe, carte flash etc..).
Les disques amovibles que tu as insérés dans l'ordinateur quand celui-ci était infecté ont été infectés à leur tour.

Le simple faite d'ouvrir le poste de travail et de double-cliquer sur ta clef USB/disque dur externe va réinfecter ton système.
Tu trouveras un lien explicatif sur la propagation de ces infections, comment s'en protéger etc.... à partir de ces liens :

https://forum.malekal.com/viewtopic.php?t=5544&start= 

&#9654 Télécharge ici : USBFIX sur ton bureau

OU lien alternatif : http://general-changelog-team.fr/telechargements/logiciels/viewdownload/80-outils-de-el-desaparecido/32-usbfix

branche tous tes périphériques externes sans les ouvrir (MP3, MP4, clé USB, disque dur externe, GSM, ...)

/!\ Désactive provisoirement et seulement le temps de l'utilisation d'USBFIX, la protection en temps réel de ton Antivirus et de tes Antispywares, qui peuvent gêner fortement la procédure de recherche et de nettoyage de l'outil.

si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."

sur l'icône Usbfix située sur ton Bureau.
Sur la page, clique sur le bouton :

&#9654 choisi l option Suppression

&#9654 UsbFix scannera ton pc , laisse travailler l outil.

&#9654 Ensuite poste le rapport UsbFix.txt qui apparaitra avec le bureau .

&#9654 Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque.( C:\UsbFix.txt )

( CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )

Tutoriel : http://forums-fec.be/entraide/viewtopic.php?f=55&t=9

~~

&#9654 Télécharge MBAM et installe le selon l'emplacement par défaut
https://www.malwarebytes.com/mwb-download/
&#9654 Effectue la mise à jour et lance Malwarebytes' Anti-Malware

&#9654 &#9654 Si tu n''arrive pas à le mettre à jour, télécharge ce fichier , ferme MBAM, et exécute le

&#9654 Clique dans l'onglet du haut "Recherche"
&#9654 Coche l'option "Exécuter un examen complet" puis sur le bouton "Rechercher"
&#9654 Choisis de scanner tous tes disques durs, puis clique sur 'Lancer l'examen"

A la fin de l'analyse, si MBAM n'a rien trouvé :

&#9654 Clique sur OK, le rapport s'ouvre spontanément

Si des menaces ont été détectées :

&#9654 Clique sur OK puis "Afficher les résultats"
&#9654 Choisis l'option "Supprimer la sélection"
&#9654 Si MBAM demande le redémarrage de Windows : Clique sur "Oui"
&#9654 Une fois le PC redémarré, le rapport se trouve dans l'onglet "Rapports/Logs"
&#9654 Sinon le rapport s'ouvre automatiquement après la suppression

Quelque soit le résultat, copie/colle le rapport dans le prochain message

Tutoriel : http://forums-fec.be/entraide/viewtopic.php?f=55&t=10

TomZanovich · Answer

Rapport USB fix (Je fais Malwere en ce moment même) :

############################## | UsbFix V 7.069 | [Suppression]

Utilisateur: ChloÚ (Administrateur) # CHLOE
Mis à jour le 20/11/2011 par El Desaparecido
Lancé à 17:42:41 | 21/11/2011

Site Web: https://www.sosvirus.net/
Fichier suspect ? : http://eldesaparecido.com/support.php
Contact: contact@eldesaparecido.com

PC: Gigabyte Technology Co., Ltd. (GA-MA69GM-S2H) (X86-based PC) # Desktop Computer
CPU: AMD Athlon(tm) 64 X2 Dual Core Processor 5200+ (2706)
CPU: AMD Athlon(tm) 64 X2 Dual Core Processor 5200+ (2706)
RAM -> [ Total : 3326 | Free : 2493 ]
BIOS: Award Modular BIOS v6.00PG
BOOT: Normal boot

OS: Microsoft Windows XP Professionnel (5.1.2600 32-Bit) # Service Pack 2
WB: Windows Internet Explorer 6.0.2900.2180

SC: Security Center Service [ (!) Disabled ]
WU: Windows Update Service [ Enabled ]
FW: Windows FireWall Service [ Enabled ]

C:\ (%systemdrive%) -> Disque fixe # 298 Go (145 Go libre(s) - 49%) [] # NTFS
D:\ -> CD-ROM
G:\ -> Disque amovible # 4 Go (1 Go libre(s) - 36%) [KINGSTON] # FAT32

################## | Processus Actif |

C:\WINDOWS\System32\smss.exe (720)
C:\WINDOWS\system32\winlogon.exe (796)
C:\WINDOWS\system32\services.exe (840)
C:\WINDOWS\system32\lsass.exe (852)
C:\WINDOWS\system32
vsvc32.exe (1008)
C:\WINDOWS\system32\svchost.exe (1084)
C:\WINDOWS\System32\svchost.exe (1244)
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (1488)
C:\WINDOWS\Explorer.EXE (1708)
C:\Program Files\Vtune\TBPanel.exe (460)
C:\WINDOWS\RTHDCPL.EXE (476)
C:\Program Files\Microsoft IntelliType Pro	ype32.exe (492)
C:\Program Files\Microsoft IntelliPoint\point32.exe (504)
C:\WINDOWS\System32\svchost.exe (524)
C:\WINDOWS\system32\svchost.exe (748)
C:\Program Files\Google\Update\GoogleUpdate.exe (816)
C:\WINDOWS\system32\svchost.exe (856)
C:\Program Files\Java\jre6\bin\jqs.exe (1092)
C:\WINDOWS\System32\svchost.exe (1688)
C:\WINDOWS\System32\svchost.exe (1720)
C:\WINDOWS\system32\PnkBstrA.exe (1016)
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (2072)
C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe (2180)
C:\WINDOWS\system32\svchost.exe (2204)
C:\WINDOWS\system32\mspmspsv.exe (2256)
C:\WINDOWS\system32\wbem\wmiapsrv.exe (2892)
C:\Program Files\Java\jre6\bin\jusched.exe (3284)
C:\Program Files\Alwil Software\Avast5\avastUI.exe (3308)
C:\WINDOWS\VM_STI.EXE (3328)
C:\PROGRA~1\iMesh Applications\MediaBar\Datamngr\datamngrUI.exe (3368)
C:\Program Files\QuickTime\qttask.exe (3376)
C:\WINDOWS\system32\RunDLL32.exe (3392)
C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe (3512)
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe (3532)
C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe (3588)
C:\WINDOWS\system32\ctfmon.exe (3600)
C:\WINDOWS\lclock.exe (3624)
C:\Program Files\Windows Live\Messenger\msnmsgr.exe (3632)
C:\Documents and Settings\ChloÚ\Local Settings\Application Data\Google\Update\GoogleUpdate.exe (3652)
C:\Documents and Settings\ChloÚ\Local Settings\Application Data\Akamai
etsession_win.exe (3704)
C:\Documents and Settings\ChloÚ\Local Settings\Application Data\Akamai
etsession_win.exe (3948)
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (4020)
C:\Program Files\Sony Corporation\Image Transfer\SonyTray.exe (4032)
C:\Program Files\Philips\SPC 200NC PC Camera\TrayMin200.exe (4060)
C:\Program Files\MagicDisc\MagicDisc.exe (228)
C:\Program Files\OpenOffice.org 3\program\soffice.exe (1376)
C:\Program Files\OpenOffice.org 3\program\soffice.bin (2348)
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe (2536)
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe (3056)
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe (3244)
C:\Program Files\Java\jre6\bin\jucheck.exe (2156)
C:\Program Files\Mozilla Firefox\firefox.exe (3304)
C:\UsbFix\UsbFix.exe (1660)

################## | Processus Stoppés |

Stoppé! C:\WINDOWS\system32
vsvc32.exe (1008)
Stoppé! C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (1488)
Stoppé! C:\WINDOWS\Explorer.EXE (1708)
Stoppé! C:\Program Files\Vtune\TBPanel.exe (460)
Stoppé! C:\WINDOWS\RTHDCPL.EXE (476)
Stoppé! C:\Program Files\Microsoft IntelliType Pro	ype32.exe (492)
Stoppé! C:\Program Files\Microsoft IntelliPoint\point32.exe (504)
Stoppé! C:\Program Files\Google\Update\GoogleUpdate.exe (816)
Stoppé! C:\Program Files\Java\jre6\bin\jqs.exe (1092)
Stoppé! C:\WINDOWS\system32\PnkBstrA.exe (1016)
Stoppé! C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (2072)
Stoppé! C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe (2180)
Stoppé! C:\WINDOWS\system32\mspmspsv.exe (2256)
Stoppé! C:\WINDOWS\system32\wbem\wmiapsrv.exe (2892)
Stoppé! C:\Program Files\Java\jre6\bin\jusched.exe (3284)
Stoppé! C:\Program Files\Alwil Software\Avast5\avastUI.exe (3308)
Stoppé! C:\WINDOWS\VM_STI.EXE (3328)
Stoppé! C:\PROGRA~1\iMesh Applications\MediaBar\Datamngr\datamngrUI.exe (3368)
Stoppé! C:\Program Files\QuickTime\qttask.exe (3376)
Stoppé! C:\WINDOWS\system32\RunDLL32.exe (3392)
Stoppé! C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe (3512)
Stoppé! C:\Program Files\HP\HP Software Update\HPWuSchd2.exe (3532)
Stoppé! C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe (3588)
Stoppé! C:\WINDOWS\system32\ctfmon.exe (3600)
Stoppé! C:\WINDOWS\lclock.exe (3624)
Stoppé! C:\Program Files\Windows Live\Messenger\msnmsgr.exe (3632)
Stoppé! C:\Documents and Settings\ChloÚ\Local Settings\Application Data\Google\Update\GoogleUpdate.exe (3652)
Stoppé! C:\Documents and Settings\ChloÚ\Local Settings\Application Data\Akamai
etsession_win.exe (3704)
Stoppé! C:\Documents and Settings\ChloÚ\Local Settings\Application Data\Akamai
etsession_win.exe (3948)
Stoppé! C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (4020)
Stoppé! C:\Program Files\Sony Corporation\Image Transfer\SonyTray.exe (4032)
Stoppé! C:\Program Files\Philips\SPC 200NC PC Camera\TrayMin200.exe (4060)
Stoppé! C:\Program Files\MagicDisc\MagicDisc.exe (228)
Stoppé! C:\Program Files\OpenOffice.org 3\program\soffice.exe (1376)
Stoppé! C:\Program Files\OpenOffice.org 3\program\soffice.bin (2348)
Stoppé! C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe (2536)
Stoppé! C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe (3056)
Stoppé! C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe (3244)
Stoppé! C:\Program Files\Java\jre6\bin\jucheck.exe (2156)
Stoppé! C:\Program Files\Mozilla Firefox\firefox.exe (3304)

################## | Éléments infectieux |

Supprimé! C:\Recycler\S-1-5-21-1960408961-1425521274-725345543-1003

(!) Fichiers temporaires supprimés.

################## | Registre |

Supprimé! HKCU\Software\Microsoft\Handle
Supprimé! HKU\.DEFAULT\Software\Microsoft\Handle
Supprimé! HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\

################## | Mountpoints2 |

Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{f9ba8c98-134a-11e0-9122-001d7de62e8a}

################## | Listing |

[26/09/2008 - 18:14:45 | D ] 	C:\Alexandra Ledermann 6
[24/09/2008 - 04:09:56 | N | 0] 	C:\AUTOEXEC.BAT
[24/09/2008 - 12:47:05 | N | 224] 	C:\boot.ini
[28/08/2001 - 15:00:00 | N | 4952] 	C:\Bootfont.bin
[05/04/2009 - 13:34:24 | N | 362] 	C:\checkrun.txt
[23/03/2011 - 12:14:33 | D ] 	C:\Codemasters
[21/11/2011 - 17:04:55 | D ] 	C:\Config.Msi
[24/09/2008 - 04:09:56 | N | 0] 	C:\CONFIG.SYS
[24/09/2008 - 12:50:38 | N | 86] 	C:\csb.log
[08/05/2011 - 13:19:17 | D ] 	C:\Documents and Settings
[24/09/2008 - 06:02:24 | D ] 	C:\Drivers
[28/02/2009 - 21:31:14 | D ] 	C:\fa060d4d563105ba8bb351
[19/11/2011 - 16:41:23 | D ] 	C:\Fraps
[30/08/2010 - 18:02:13 | D ] 	C:\Games
[29/06/2010 - 13:09:44 | N | 253] 	C:\Info.txt
[24/09/2008 - 04:09:56 | N | 0] 	C:\IO.SYS
[24/09/2008 - 04:09:56 | N | 0] 	C:\MSDOS.SYS
[10/11/2010 - 14:07:13 | D ] 	C:\Nexon
[03/08/2004 - 23:38:34 | N | 47564] 	C:\NTDETECT.COM
[03/08/2004 - 23:59:44 | N | 251712] 	C:
tldr
[01/12/2010 - 14:58:44 | D ] 	C:\NVIDIA
[21/11/2011 - 16:59:01 | ASH | 2145386496] 	C:\pagefile.sys
[12/11/2011 - 17:56:55 | D ] 	C:\Program Files
[14/11/2010 - 18:13:01 | D ] 	C:\ProgramData
[14/09/2011 - 17:38:59 | N | 33664388] 	C:\ProvingGrounds_PMC.emf
[21/11/2011 - 17:45:36 | SHD ] 	C:\RECYCLER
[17/04/2011 - 13:44:01 | D ] 	C:\Red Storm Entertainment
[24/09/2008 - 12:47:55 | N | 797] 	C:\RHDSetup.log
[08/10/2010 - 20:02:57 | D ] 	C:\sierra
[28/10/2008 - 17:27:51 | N | 268] 	C:\sqmdata00.sqm
[30/10/2008 - 22:05:49 | N | 268] 	C:\sqmdata01.sqm
[13/01/2009 - 18:32:26 | N | 232] 	C:\sqmdata02.sqm
[28/01/2009 - 08:51:00 | N | 232] 	C:\sqmdata03.sqm
[28/01/2009 - 10:31:31 | N | 232] 	C:\sqmdata04.sqm
[29/01/2009 - 00:38:48 | N | 232] 	C:\sqmdata05.sqm
[29/01/2009 - 00:53:16 | N | 232] 	C:\sqmdata06.sqm
[29/01/2009 - 22:05:55 | N | 232] 	C:\sqmdata07.sqm
[30/01/2009 - 14:56:44 | N | 232] 	C:\sqmdata08.sqm
[31/01/2009 - 00:06:13 | N | 208] 	C:\sqmdata09.sqm
[31/01/2009 - 09:52:11 | N | 232] 	C:\sqmdata10.sqm
[28/10/2008 - 17:27:51 | N | 244] 	C:\sqmnoopt00.sqm
[30/10/2008 - 22:05:49 | N | 244] 	C:\sqmnoopt01.sqm
[13/01/2009 - 18:32:26 | N | 244] 	C:\sqmnoopt02.sqm
[28/01/2009 - 08:51:00 | N | 244] 	C:\sqmnoopt03.sqm
[28/01/2009 - 10:31:31 | N | 244] 	C:\sqmnoopt04.sqm
[29/01/2009 - 00:38:48 | N | 244] 	C:\sqmnoopt05.sqm
[29/01/2009 - 00:53:16 | N | 244] 	C:\sqmnoopt06.sqm
[29/01/2009 - 22:05:55 | N | 244] 	C:\sqmnoopt07.sqm
[30/01/2009 - 14:56:44 | N | 244] 	C:\sqmnoopt08.sqm
[31/01/2009 - 00:06:13 | N | 172] 	C:\sqmnoopt09.sqm
[31/01/2009 - 09:52:11 | N | 244] 	C:\sqmnoopt10.sqm
[14/03/2009 - 11:43:19 | N | 122] 	C:\ss_nb.dat
[14/03/2009 - 11:43:20 | N | 122] 	C:\ss_udp.dat
[14/03/2009 - 11:43:19 | N | 122] 	C:\ss_udp2.dat
[24/09/2008 - 12:45:50 | SHD ] 	C:\System Volume Information
[22/08/2010 - 10:02:00 | N | 3] 	C:	.tmp
[24/09/2011 - 12:22:45 | N | 59845568] 	C:\Takistan.emf
[25/10/2009 - 10:30:54 | D ] 	C:	emp
[04/05/2011 - 21:54:31 | D ] 	C:	mp
[31/10/2008 - 14:53:00 | N | 11] 	C:\TOMBPATH.TXT
[29/12/2008 - 10:23:05 | D ] 	C:\TOMBRAID
[26/12/2008 - 13:59:39 | D ] 	C:\TR2-1.net
[29/12/2008 - 10:23:05 | N | 22] 	C:\TUBPATH.BAT
[21/11/2011 - 17:45:36 | D ] 	C:\UsbFix
[21/11/2011 - 17:46:52 | A | 6919] 	C:\UsbFix.txt
[21/11/2011 - 17:00:23 | D ] 	C:\WINDOWS
[14/09/2011 - 16:33:21 | N | 43441916] 	C:\Zargabad.emf
[09/11/2011 - 13:38:36 | N | 346112] 	G:\O.doc
[05/09/2010 - 11:04:52 | N | 1335149] 	G:\cours_01-02.pdf
[21/08/2010 - 23:05:52 | N | 1969381] 	G:\arthrosethèse.pdf
[06/11/2011 - 18:02:20 | N | 9953280] 	G:\Bienvenue sur O.doc
[05/10/2011 - 14:46:44 | N | 4651254] 	G:\Copie de Sans titre 2.bmp
[15/10/2011 - 19:05:54 | N | 1885696] 	G:\Normal.dot
[10/10/2011 - 11:57:02 | N | 14717952] 	G:\O1.doc
[14/09/2011 - 16:21:12 | N | 5738496] 	G:\~WRL2820.tmp
[11/11/2011 - 14:46:04 | N | 1347512] 	G:\015.JPG
[11/11/2011 - 14:47:02 | N | 1218655] 	G:\018.JPG
[11/11/2011 - 14:47:24 | N | 1462301] 	G:\022.JPG
[11/11/2011 - 15:01:02 | N | 638281] 	G:\029.JPG
[11/11/2011 - 14:50:04 | N | 1431239] 	G:\030.JPG
[11/11/2011 - 14:50:16 | N | 1270616] 	G:\031.JPG
[11/11/2011 - 14:50:36 | N | 1230916] 	G:\032.JPG
[13/10/2011 - 11:26:44 | D ] 	G:\a garder
[17/10/2011 - 12:04:24 | N | 40448] 	G:\Oma.doc
[25/10/2011 - 10:04:02 | N | 32768] 	G:\Prologu111e.doc
[11/04/2008 - 07:23:32 | N | 58721180] 	G:\Leçon Salsa N°1.mov
[14/08/2010 - 15:37:24 | D ] 	G:\Musique

################## | Vaccin |

C:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
G:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

################## | Upload |

Veuillez envoyer le fichier: C:\UsbFix_Upload_Me_CHLOE.zip
http://eldesaparecido.com/upload.htmlp
Merci de votre contribution.

################## | Reboot |

(!) L'ordinateur n'à été redémarré!

################## | E.O.F |

TomZanovich · Answer

Tu est sûr ? Rien de grave ?

Malware bosse dur en ce moment même

TomZanovich · Answer

Waho... Déjà 74 éléments infectés après 12 minutes

juju666 · Answer

je sais :)

TomZanovich · Answer

Re mon ami !

Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Version de la base de données: 8209

Windows 5.1.2600 Service Pack 2
Internet Explorer 6.0.2900.2180

21/11/2011 19:08:45
mbam-log-2011-11-21 (19-08-45).txt

Type d'examen: Examen complet (C:\|D:\|G:\|)
Elément(s) analysé(s): 425524
Temps écoulé: 1 heure(s), 8 minute(s), 11 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 85
Valeur(s) du Registre infectée(s): 7
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 38
Fichier(s) infecté(s): 137

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\AppID\{0D82ACD6-A652-4496-A298-2BDE705F4227} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{7025E484-D4B0-441a-9F0B-69063BD679CE} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{8258B35C-05B8-4c0e-9525-9BCCC70F8F2D} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{A89256AD-EC17-4a83-BEF5-4B8BC4F39306} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{D2083641-E57F-4eab-BB85-0582424F4A29} (Adware.HotBar.CP) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{09325003-167C-483d-A4BA-8B3122ABB432} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{F1A1892C-2A6C-4817-98B4-FF81443CBA20} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{E25DA6D6-C365-46CF-ABAF-DC5893135D7A} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.HbGuru.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.HbGuru (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1602F07D-8BF3-4c08-BDD6-DDDB1C48AEDC} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{C55CA95C-324B-451c-B2D2-6E895AA75FEC} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{30B15818-E110-4527-9C05-46ACE5A3460D} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ClickPotatoLiteAX.info.1 (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ClickPotatoLiteAX.info (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1602F07D-8BF3-4C08-BDD6-DDDB1C48AEDC} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2721A8E5-BFDB-4562-9912-9E0531CA616C} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{5FE0CEAE-CB69-40af-A323-40F94257DACB} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{65A16874-2ED0-460E-A547-5FE2EC3A13A7} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.MozillaPSExecuter.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.MozillaPSExecuter (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{396CFC12-932D-496b-A0A8-5D7201E105E1} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{573F4ABB-A1A2-44ed-9BA9-A8DAD40AAC46} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{71E02280-5212-45C3-B174-4D5A35DA254F} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.MozillaNvgtnTrpr.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.MozillaNvgtnTrpr (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{6DD76B7B-6423-4df0-9A07-84A6CAD973A0} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Dwnldr.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Dwnldr (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{74C22317-5B90-471f-9AD2-FEC049870A16} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Scopes.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Scopes (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7A3D6D17-9DD5-4C60-8076-D1784DABAF8C} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{814BAA91-DC22-4350-87D6-0C86E93F7F08} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{419EDA30-6DFF-432C-B534-E15D899ABEE4} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MenuButtonIE.ButtonIE.1 (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\MenuButtonIE.ButtonIE (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7F6CFB6A-9227-4bb8-B941-F2B067E76F51} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.TriggerImmidiateOrRandomTS.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.TriggerImmidiateOrRandomTS (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{AB0EE208-DF60-4fa7-A617-C4269760033E} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Reporter.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Reporter (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{AC6D819E-AA8F-4418-A3BB-D165C1B18BB5} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ClickPotatoLiteAX.UserProfiles.1 (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ClickPotatoLiteAX.UserProfiles (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{AC6D819E-AA8F-4418-A3BB-D165C1B18BB5} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{DEE758B4-C3FB-4a5b-9939-848B9C77A2FB} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Stock.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.Stock (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{E12AEAB6-7D12-4c07-8E36-5892EFB4DAFB} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.TriggerImmidiate.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.TriggerImmidiate (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{E2F2C137-A782-4fb5-81AF-086156F5EB0A} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.AsyncReporter.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.AsyncReporter (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{F1D06C9F-51F0-4476-BEDE-5DDF91BE304E} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.ReportData.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.ReportData (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{F3A32DF2-7413-4fb1-B575-1AC920A17B76} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.TriggerOnceInDay.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ShopperReports.TriggerOnceInDay (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{ACC62306-9A63-4864-BD2F-C8825D2D7EA6} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{21BA420E-161C-413A-B21E-4E42AE1F4226} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{B58926D6-CFB0-45D2-9C28-4B5A0F0368AE} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B58926D6-CFB0-45D2-9C28-4B5A0F0368AE} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7} (Adware.Softomate) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{69725738-CD68-4f36-8D02-8C43722EE5DA} (Adware.Hotbar) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{89F88394-3828-4d03-A0CF-8203604C3DA6} (Adware.Hotbar) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D4233F04-1789-483c-A137-731E8F113DD5} (Adware.Hotbar) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\BRNstIE.DLL (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\CmndFF.DLL (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\MenuButtonIE.DLL (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\mozillaps.dll (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\Pltfrm.DLL (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\3ETECE6I8G (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\CE8SIIFGSU (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\ShopperReports3 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\clickpotatolitesa (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\EoRezo (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\ClickPotatoLite (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\ShopperReports3 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ClickPotatoLiteSA (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ShopperReportsSA (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdate_is1 (Adware.EoRezo) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{B58926D6-CFB0-45D2-9C28-4B5A0F0368AE} (Adware.ClickPotato) -> Value: {B58926D6-CFB0-45D2-9C28-4B5A0F0368AE} -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{B58926D6-CFB0-45d2-9C28-4B5A0F0368AE} (Adware.ClickPotato) -> Value: {B58926D6-CFB0-45d2-9C28-4B5A0F0368AE} -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform\ShopperReports 3.1.22.0 (Adware.HotBar) -> Value: ShopperReports 3.1.22.0 -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform\SRS_IT_E8790470B07659543FAD92 (Malware.Trace) -> Value: SRS_IT_E8790470B07659543FAD92 -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\eorezo (Rogue.Eorezo) -> Value: eorezo -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\extensions\ShopperReports@ShopperReports.com (ShopperReports) -> Value: ShopperReports@ShopperReports.com -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\extensions\ClickPotatoLite@ClickPotatoLite.com (Adware.ClickPotato) -> Value: ClickPotatoLite@ClickPotatoLite.com -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
c:\documents and settings\all users\application data\clickpotatolitesa (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\clickpotatolite (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\shopperreports3 (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\shopperreports3\Firefox (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\shopperreports3\Firefox\cs (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\shopperreports3\Firefox\cs\db (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\shopperreports3\Firefox\cs\dwld (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\shopperreports3\Firefox\cseport (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\shopperreports3\Firefox\cses1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\shopperreports3\IE (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\shopperreports3\IE\cs (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\shopperreports3\IE\cs\db (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\shopperreports3\IE\cs\dwld (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\shopperreports3\IE\cseport (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\shopperreports3\IE\cses1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files\clickpotatolite (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\program files\clickpotatolite\bin (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\program files\clickpotatolite\bin\10.0.659.0 (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\program files\clickpotatolite\bin\10.0.659.0\firefox (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\program files\clickpotatolite\bin\10.0.659.0\firefox\extensions (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\program files\clickpotatolite\bin\10.0.659.0\firefox\extensions\plugins (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\program files\shopperreports3 (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files\shopperreports3\bin (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files\shopperreports3\bin\3.1.22.0 (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files\shopperreports3\bin\3.1.22.0\firefox (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files\shopperreports3\bin\3.1.22.0\firefox\firefoxtoolbar (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files\shopperreports3\bin\3.1.22.0\firefox\firefoxtoolbar\extensions (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files\shopperreports3\bin\3.1.22.0\firefox\firefoxtoolbar\extensions\chrome (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files\shopperreports3\bin\3.1.22.0\firefox\firefoxtoolbar\extensions\chrome\content (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files\shopperreports3\bin\3.1.22.0\firefox\firefoxtoolbar\extensions\components (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\all users\menu démarrer\programmes\clickpotato (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\documents and settings\all users\menu démarrer\programmes\shopperreports (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\softwareupdate (Adware.EoRezo) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
c:\program files\shopperreports3\bin\3.1.22.0\BRNstIE.dll (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\all users\application data\szdsq.exqa (Trojan.Agent.CoXGen) -> Quarantined and deleted successfully.
c:\program files\Steam\steamapps\common\hitman blood money\pdtrain.exe (Malware.Packer.Gen) -> Quarantined and deleted successfully.
c:\program files\Steam\steamapps\common\mafia ii - public demo\pc\mafia.ii.[demo]-patch.exe (PUP.Hacktool.Patcher) -> Not selected for removal.
c:\documents and settings\all users\application data\clickpotatolitesa\clickpotatolitesa.dat (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\documents and settings\all users\application data\clickpotatolitesa\clickpotatolitesaabout.mht (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\documents and settings\all users\application data\clickpotatolitesa\clickpotatolitesaau.dat (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\documents and settings\all users\application data\clickpotatolitesa\clickpotatolitesaeula.mht (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\documents and settings\all users\application data\clickpotatolitesa\clickpotatolitesa_kyf.dat (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\shopperreports3\Firefox\cs\Config.xml (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\shopperreports3\Firefox\cs\db\Aliases.dbs (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\shopperreports3\Firefox\cs\db\Sites.dbs (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\shopperreports3\Firefox\cs\dwld\whitelist.xip (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\shopperreports3\Firefox\cseport\aggr_storage.xml (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\shopperreports3\Firefox\cseport\send_storage.xml (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\shopperreports3\Firefox\cses1\whitelist.dbs (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\shopperreports3\IE\cs\Config.xml (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\shopperreports3\IE\cs\db\Aliases.dbs (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\shopperreports3\IE\cs\db\Sites.dbs (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\shopperreports3\IE\cs\dwld\whitelist.xip (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\shopperreports3\IE\cseport\aggr_storage.xml (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\shopperreports3\IE\cseport\send_storage.xml (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\shopperreports3\IE\cses1\whitelist.dbs (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files\clickpotatolite\bin\10.0.659.0\firefox\extensions\install.rdf (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\program files\shopperreports3\bin\3.1.22.0\link.ico (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files\shopperreports3\bin\3.1.22.0\firefox\firefoxtoolbar\extensions\chrome.manifest (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files\shopperreports3\bin\3.1.22.0\firefox\firefoxtoolbar\extensions\install.rdf (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files\shopperreports3\bin\3.1.22.0\firefox\firefoxtoolbar\extensions\chrome\content\infopane.js (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files\shopperreports3\bin\3.1.22.0\firefox\firefoxtoolbar\extensions\chrome\content\InfoPane.xul (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files\shopperreports3\bin\3.1.22.0\firefox\firefoxtoolbar\extensions\components\BRNstFF.dll (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files\shopperreports3\bin\3.1.22.0\firefox\firefoxtoolbar\extensions\components\BRNstFF.xpt (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files\shopperreports3\bin\3.1.22.0\firefox\firefoxtoolbar\extensions\components\browserextensionff.dll (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\program files\shopperreports3\bin\3.1.22.0\firefox\firefoxtoolbar\extensions\components\browserextensionff.xpt (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\all users\menu démarrer\programmes\clickpotato\About Us.lnk (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\documents and settings\all users\menu démarrer\programmes\clickpotato\clickpotato customer support.lnk (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\documents and settings\all users\menu démarrer\programmes\clickpotato\clickpotato uninstall instructions.lnk (Adware.ClickPotato) -> Quarantined and deleted successfully.
c:\documents and settings\all users\menu démarrer\programmes\shopperreports\About Us.lnk (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\all users\menu démarrer\programmes\shopperreports\customer support.lnk (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\all users\menu démarrer\programmes\shopperreports\shopperreports uninstall instructions.lnk (Adware.ShopperReports) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\cache (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\cmhost.cyp (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\confmedia.cyp (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather.cfg (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\host.cyp (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\user.cyp (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\eoweather.cfg (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\eoweatherval_02ec282.cfg (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\67_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\67_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\69_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\69_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\70_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\70_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\78_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\78_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\82_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\82_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\83_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\83_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\84_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\84_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\85_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\85_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\89_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\89_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\back.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\background.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\background_1.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\background_1days.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\background_2days.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\background_7days.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\backpressed.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\band.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\band_small.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\close.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\closepressed.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\dayprevisionbackground.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\dayprevisionclose.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\earth.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\fonds_écran.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\help.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\helppressed.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\minimise.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\minimisepressed.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic
ext.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic
extpressed.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\option.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\optionpressed.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classiceflet_ecran.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\small_background.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_classic\Thumbs.db (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\67_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\67_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\69_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\69_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\70_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\70_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\78_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\78_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\82_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\82_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\83_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\83_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\84_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\84_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\85_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\85_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\89_day.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\89_night.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\about.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\back.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\background.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\background_1.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\background_1days.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\background_2days.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\background_7days.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\backpressed.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\close.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\closepressed.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\dayprevisionbackground.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\dayprevisionclose.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\earth.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\fonds_écran.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\help.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\helppressed.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\minimise.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\minimisepressed.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo
ext.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo
extpressed.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\option.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\optionpressed.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteoeflet_ecran.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo\Thumbs.db (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\eoweather\images_station_meteo	xt_14x13.png (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\softwareupdate\unins000.dat (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\softwareupdate\unins000.exe (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\documents and settings\ChloÚ\application data\EoRezo\softwareupdate\user_profil.cyp (Adware.EoRezo) -> Quarantined and deleted successfully.

juju666 · Answer

Y'a pas que du rogue ...

Télécharge AdwCleaner ( d'Xplode ) sur ton bureau.
Lance le, clique sur [Recherche] puis patiente le temps du scan.
Une fois le scan fini, un rapport s'ouvrira. Poste moi son contenu dans ta prochaine réponse.

Note : Le rapport est également sauvegardé sous C:\AdwCleaner[R1].txt

Tutoriel : http://forums-fec.be/entraide/viewtopic.php?f=55&t=16

TomZanovich · Answer

Ok, je vais faire. Mais avant, mon PC marchais très bien. Protection machin ne viendra plus, hein ?

TomZanovich · Answer

# AdwCleaner v1.319 - Rapport créé le 21/11/2011 à 19:22:04
# Mis à jour le 20/11/11 à 11h par Xplode
# Système d'exploitation : Microsoft Windows XP Service Pack 2 (32 bits)
# Nom d'utilisateur : ChloÚ - CHLOE (Administrateur)
# Exécuté depuis : C:\Documents and Settings\ChloÚ\Mes documents\Téléchargements\adwcleaner.exe
# Option [Recherche]


***** [Services] *****


***** [Fichiers / Dossiers] *****

Dossier Présent : C:\Documents and Settings\All Users\Application Data\Babylon
Dossier Présent : C:\Documents and Settings\ChloÚ\Application Data\Babylon
Dossier Présent : C:\Documents and Settings\ChloÚ\Application Data\OfferBox
Dossier Présent : C:\Documents and Settings\ChloÚ\Application Data\PriceGong
Dossier Présent : C:\Documents and Settings\ChloÚ\Local Settings\Application Data\Babylon
Dossier Présent : C:\Documents and Settings\ChloÚ\Local Settings\Application Data\Conduit
Dossier Présent : C:\Documents and Settings\ChloÚ\Local Settings\Application Data\ConduitEngine
Dossier Présent : C:\Program Files\Ask.com
Dossier Présent : C:\Program Files\Conduit
Dossier Présent : C:\Program Files\ConduitEngine
Dossier Présent : C:\Documents and Settings\ChloÚ\Application Data\Mozilla\Firefox\Profiles\kcnlynwl.default\Conduit
Dossier Présent : C:\Documents and Settings\ChloÚ\Application Data\Mozilla\Firefox\Profiles\kcnlynwl.default\ConduitEngine
Dossier Présent : C:\Documents and Settings\ChloÚ\Application Data\Mozilla\Firefox\Profiles\kcnlynwl.default\extensions\engine@conduit.com
Fichier Présent : C:\WINDOWS\system32\conduitEngine.tmp
Fichier Présent : C:\Documents and Settings\ChloÚ\Application Data\Mozilla\Firefox\Profiles\kcnlynwl.default\searchplugins\Askcom.xml
Fichier Présent : C:\Documents and Settings\ChloÚ\Application Data\Mozilla\Firefox\Profiles\kcnlynwl.default\searchplugins\Conduit.xml

***** [Registre] *****

Clé Présente : HKCU\Toolbar
Clé Présente : HKCU\Software\Conduit
Clé Présente : HKCU\Software\conduitEngine
Clé Présente : HKCU\Software\DataMngr
Clé Présente : HKCU\Software\DataMngr_Toolbar
Clé Présente : HKCU\Software\Offerbox
Clé Présente : HKCU\Software\PriceGong
Clé Présente : HKLM\SOFTWARE\Conduit
Clé Présente : HKLM\SOFTWARE\conduitEngine
Clé Présente : HKLM\SOFTWARE\DataMngr
Clé Présente : HKLM\SOFTWARE\OpenCandy NSIS SDK
Clé Présente : HKLM\SOFTWARE\Messenger Plus!\OpenCandy
Clé Présente : HKLM\SOFTWARE\Classes\Conduit.Engine
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{3c471948-f874-49f5-b338-4f214a2ee0b1}
Clé Présente : HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\2796BAE63F1801E277261BA0D77770028F20EEE4

juju666 · Answer

En principe il est de l'histoire ancienne :)

Relance AdwCleaner, clique cette fois sur [Suppression] puis patiente le temps du scan.
Une fois le scan fini, un rapport s'ouvrira. Poste moi son contenu dans ta prochaine réponse.

Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt

Tutoriel : http://forums-fec.be/entraide/viewtopic.php?f=55&t=16

TomZanovich · Answer

Mais là, tout ce que tu me fait faire, c'est que du bonus ou c'est vraiment vital ? En tout cas, voilà :

# AdwCleaner v1.319 - Rapport créé le 21/11/2011 à 19:41:29
# Mis à jour le 20/11/11 à 11h par Xplode
# Système d'exploitation : Microsoft Windows XP Service Pack 2 (32 bits)
# Nom d'utilisateur : ChloÚ - CHLOE (Administrateur)
# Exécuté depuis : C:\Documents and Settings\ChloÚ\Mes documents\Lamasticot\Ma boite à outils\adwcleaner.exe
# Option [Suppression]


***** [Services] *****


***** [Fichiers / Dossiers] *****

Dossier Supprimé : C:\Documents and Settings\All Users\Application Data\Babylon
Dossier Supprimé : C:\Documents and Settings\ChloÚ\Application Data\Babylon
Dossier Supprimé : C:\Documents and Settings\ChloÚ\Application Data\OfferBox
Dossier Supprimé : C:\Documents and Settings\ChloÚ\Application Data\PriceGong
Dossier Supprimé : C:\Documents and Settings\ChloÚ\Local Settings\Application Data\Babylon
Dossier Supprimé : C:\Documents and Settings\ChloÚ\Local Settings\Application Data\Conduit
Dossier Supprimé : C:\Documents and Settings\ChloÚ\Local Settings\Application Data\ConduitEngine
Dossier Supprimé : C:\Program Files\Ask.com
Dossier Supprimé : C:\Program Files\Conduit
Dossier Supprimé : C:\Program Files\ConduitEngine
Dossier Supprimé : C:\Documents and Settings\ChloÚ\Application Data\Mozilla\Firefox\Profiles\kcnlynwl.default\Conduit
Dossier Supprimé : C:\Documents and Settings\ChloÚ\Application Data\Mozilla\Firefox\Profiles\kcnlynwl.default\ConduitEngine
Dossier Supprimé : C:\Documents and Settings\ChloÚ\Application Data\Mozilla\Firefox\Profiles\kcnlynwl.default\extensions\engine@conduit.com
Fichier Supprimé : C:\WINDOWS\system32\conduitEngine.tmp
Fichier Supprimé : C:\Documents and Settings\ChloÚ\Application Data\Mozilla\Firefox\Profiles\kcnlynwl.default\searchplugins\Askcom.xml
Fichier Supprimé : C:\Documents and Settings\ChloÚ\Application Data\Mozilla\Firefox\Profiles\kcnlynwl.default\searchplugins\Conduit.xml

***** [Registre] *****

Clé Supprimée : HKCU\Toolbar
Clé Supprimée : HKCU\Software\Conduit
Clé Supprimée : HKCU\Software\conduitEngine
Clé Supprimée : HKCU\Software\DataMngr
Clé Supprimée : HKCU\Software\DataMngr_Toolbar
Clé Supprimée : HKCU\Software\Offerbox
Clé Supprimée : HKCU\Software\PriceGong
Clé Supprimée : HKLM\SOFTWARE\Conduit
Clé Supprimée : HKLM\SOFTWARE\conduitEngine
Clé Supprimée : HKLM\SOFTWARE\DataMngr
Clé Supprimée : HKLM\SOFTWARE\OpenCandy NSIS SDK
Clé Supprimée : HKLM\SOFTWARE\Messenger Plus!\OpenCandy
Clé Supprimée : HKLM\SOFTWARE\Classes\Conduit.Engine
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{3c471948-f874-49f5-b338-4f214a2ee0b1}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\2796BAE63F1801E277261BA0D77770028F20EEE4
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{453DB0C5-F41C-4D97-8DD6-CC72ECD5F699}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{4AFC07D0-59BB-46B8-B097-1A46E88EEF71}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{6511CE4C-4722-40D0-AD3D-4AFA2F50978A}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B86D82BF-D39F-439A-A07C-43EDDC6F6EA6}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{DA6305B9-0869-4235-8C1D-533A65E639E5}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{618aad04-921f-44c2-be38-c0818af69861}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{d3a412e8-1e4b-47d2-9b12-f88291f5afbb}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B5D2ED96-62F9-4C2C-956D-E425B1F67337}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{18EAB056-9057-F224-FD4C-1F6569C4D8D2}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C10DC1F4-CCDF-4224-A24D-B23AFC3573C8}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\ForceRenive
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine
Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{30F9B915-B755-4826-820B-08FBA6BD249D}]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [DataMngr]

***** [Navigateurs] *****

-\ Internet Explorer v6.0.2900.2180

[OK] Le registre ne contient aucune entrée illégitime.

-\ Mozilla Firefox v8.0 (fr)

Profil : kcnlynwl.default
Fichier : C:\Documents and Settings\ChloÚ\Application Data\Mozilla\Firefox\Profiles\kcnlynwl.default\prefs.js

C:\Documents and Settings\ChloÚ\Application Data\Mozilla\Firefox\Profiles\kcnlynwl.default\user.js ... Supprimé !

Supprimée : user_pref("CT2405725.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Supprimée : user_pref("CT2405725.CTID", "CT2405725");
Supprimée : user_pref("CT2405725.CurrentServerDate", "6-8-2010");
Supprimée : user_pref("CT2405725.DialogsAlignMode", "LTR");
Supprimée : user_pref("CT2405725.DownloadReferralCookieData", "{\"BannerName\":\"\",\"BannerTypeId\":\"\",\"Bann[...]
Supprimée : user_pref("CT2405725.EMailNotifierPollDate", "Fri Aug 06 2010 22:04:56 GMT+0200");
Supprimée : user_pref("CT2405725.ExternalComponentPollDate129037795737775550", "Fri Aug 06 2010 21:19:50 GMT+020[...]
Supprimée : user_pref("CT2405725.ExternalComponentPollDate129234906609291505", "Fri Aug 06 2010 21:19:50 GMT+020[...]
Supprimée : user_pref("CT2405725.FirstServerDate", "6-8-2010");
Supprimée : user_pref("CT2405725.FirstTime", true);
Supprimée : user_pref("CT2405725.FirstTimeFF3", true);
Supprimée : user_pref("CT2405725.FirstTimeSettingsDone", true);
Supprimée : user_pref("CT2405725.FixPageNotFoundErrors", true);
Supprimée : user_pref("CT2405725.GroupingServerCheckInterval", 1440);
Supprimée : user_pref("CT2405725.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Supprimée : user_pref("CT2405725.Initialize", true);
Supprimée : user_pref("CT2405725.InitializeCommonPrefs", true);
Supprimée : user_pref("CT2405725.InstallationAndCookieDataSentCount", 1);
Supprimée : user_pref("CT2405725.InstalledDate", "Fri Aug 06 2010 21:19:52 GMT+0200");
Supprimée : user_pref("CT2405725.InvalidateCache", false);
Supprimée : user_pref("CT2405725.IsGrouping", false);
Supprimée : user_pref("CT2405725.IsMulticommunity", false);
Supprimée : user_pref("CT2405725.IsOpenThankYouPage", true);
Supprimée : user_pref("CT2405725.IsOpenUninstallPage", true);
Supprimée : user_pref("CT2405725.LanguagePackLastCheckTime", "Fri Aug 06 2010 21:19:52 GMT+0200");
Supprimée : user_pref("CT2405725.LanguagePackReloadIntervalMM", 1440);
Supprimée : user_pref("CT2405725.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Supprimée : user_pref("CT2405725.LastLogin_2.7.2.0", "Fri Aug 06 2010 21:19:56 GMT+0200");
Supprimée : user_pref("CT2405725.LatestVersion", "2.1.0.18");
Supprimée : user_pref("CT2405725.Locale", "en");
Supprimée : user_pref("CT2405725.LoginCache", 4);
Supprimée : user_pref("CT2405725.MCDetectTooltipHeight", "83");
Supprimée : user_pref("CT2405725.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Supprimée : user_pref("CT2405725.MCDetectTooltipWidth", "295");
Supprimée : user_pref("CT2405725.RadioIsPodcast", false);
Supprimée : user_pref("CT2405725.RadioLastCheckTime", "Fri Aug 06 2010 21:19:50 GMT+0200");
Supprimée : user_pref("CT2405725.RadioLastUpdateIPServer", "3");
Supprimée : user_pref("CT2405725.RadioLastUpdateServer", "129015434478330000");
Supprimée : user_pref("CT2405725.RadioMediaID", "12853965");
Supprimée : user_pref("CT2405725.RadioMediaType", "Real Player");
Supprimée : user_pref("CT2405725.RadioMenuSelectedID", "EBRadioMenu_CT240572512853965");
Supprimée : user_pref("CT2405725.RadioStationName", "National%20-%20Radio%20Australia%20(Other)");
Supprimée : user_pref("CT2405725.RadioStationURL", "hxxp://media4.abc.net.au/raflp");
Supprimée : user_pref("CT2405725.SavedHomepage", "hxxp://www.google.fr/");
Supprimée : user_pref("CT2405725.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TER[...]
Supprimée : user_pref("CT2405725.SearchFromAddressBarIsInit", true);
Supprimée : user_pref("CT2405725.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT240[...]
Supprimée : user_pref("CT2405725.SearchInNewTabEnabled", true);
Supprimée : user_pref("CT2405725.SearchInNewTabIntervalMM", 1440);
Supprimée : user_pref("CT2405725.SearchInNewTabLastCheckTime", "Fri Aug 06 2010 21:19:56 GMT+0200");
Supprimée : user_pref("CT2405725.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Supprimée : user_pref("CT2405725.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-servTútTút ÷TútTút [...]
Supprimée : user_pref("CT2405725.SettingsCheckIntervalMin", 120);
Supprimée : user_pref("CT2405725.SettingsLastCheckTime", "Fri Aug 06 2010 21:19:49 GMT+0200");
Supprimée : user_pref("CT2405725.SettingsLastUpdate", "1279446668");
Supprimée : user_pref("CT2405725.ThirdPartyComponentsInterval", 504);
Supprimée : user_pref("CT2405725.ThirdPartyComponentsLastCheck", "Fri Aug 06 2010 21:19:49 GMT+0200");
Supprimée : user_pref("CT2405725.ThirdPartyComponentsLastUpdate", "1246790578");
Supprimée : user_pref("CT2405725.TrusteLinkUrl", "hxxp://www.truste.org/pvr.php?page=validate&softwareProgramId=[...]
Supprimée : user_pref("CT2405725.UserID", "UN49643499655463329");
Supprimée : user_pref("CT2405725.WeatherNetwork", "");
Supprimée : user_pref("CT2405725.WeatherPollDate", "Fri Aug 06 2010 21:49:51 GMT+0200");
Supprimée : user_pref("CT2405725.WeatherUnit", "C");
Supprimée : user_pref("CT2405725.alertChannelId", "800208");
Supprimée : user_pref("CT2405725.clientLogIsEnabled", false);
Supprimée : user_pref("CT2405725.clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asm[...]
Supprimée : user_pref("CT2405725.myStuffEnabled", true);
Supprimée : user_pref("CT2405725.myStuffPublihserMinWidth", 400);
Supprimée : user_pref("CT2405725.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Supprimée : user_pref("CT2405725.myStuffServiceIntervalMM", 1440);
Supprimée : user_pref("CT2405725.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Supprimée : user_pref("CT2405725.uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Reg[...]
Supprimée : user_pref("CT2567681.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Supprimée : user_pref("CT2567681.CTID", "CT2567681");
Supprimée : user_pref("CT2567681.CurrentServerDate", "3-8-2010");
Supprimée : user_pref("CT2567681.DialogsAlignMode", "LTR");
Supprimée : user_pref("CT2567681.DownloadReferralCookieData", "");
Supprimée : user_pref("CT2567681.EMailNotifierPollDate", "Tue Aug 03 2010 22:30:41 GMT+0200");
Supprimée : user_pref("CT2567681.FeedLastCount129132852755156787", 327);
Supprimée : user_pref("CT2567681.FeedLastCount2929882609848814406", 598);
Supprimée : user_pref("CT2567681.FeedPollDate128746777097562523", "Tue Jun 15 2010 17:30:54 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate128746777252093961", "Tue Jun 15 2010 17:30:54 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate128746777461468985", "Tue Jun 15 2010 17:30:54 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate128746790824594437", "Sun Aug 01 2010 14:34:25 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate128746790988031938", "Sun Aug 01 2010 14:34:25 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate128746791145844439", "Sun Aug 01 2010 14:34:25 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate128746791280844460", "Sun Aug 01 2010 14:34:25 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate128746791444750814", "Sun Aug 01 2010 14:34:25 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate128746791615375007", "Sun Aug 01 2010 14:34:25 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate128746791787562545", "Sun Aug 01 2010 14:34:25 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate129227257783214203", "Tue Aug 03 2010 21:18:03 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate129227257783214209", "Tue Aug 03 2010 21:18:03 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate129227257783214215", "Tue Aug 03 2010 21:18:03 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate129227257783214221", "Tue Aug 03 2010 21:18:03 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate129227257783214227", "Tue Aug 03 2010 21:18:03 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate129227257783214233", "Tue Aug 03 2010 21:18:03 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate129227257783214239", "Tue Aug 03 2010 21:18:03 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate129227257783214245", "Tue Aug 03 2010 21:18:03 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate129227257783214251", "Tue Aug 03 2010 21:18:03 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate129227257783214257", "Tue Aug 03 2010 21:18:03 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate129227257783214269", "Tue Aug 03 2010 21:18:04 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate129227257783214275", "Tue Aug 03 2010 21:18:04 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate129227257783214281", "Tue Aug 03 2010 21:18:04 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate129227257783214287", "Tue Aug 03 2010 21:18:04 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate129227257783214293", "Tue Aug 03 2010 21:18:04 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate129227257783214299", "Tue Aug 03 2010 21:18:04 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate129227257783214305", "Tue Aug 03 2010 21:18:04 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate129227257783214311", "Tue Aug 03 2010 21:18:04 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate129227257783214317", "Tue Aug 03 2010 21:18:04 GMT+0200");
Supprimée : user_pref("CT2567681.FeedPollDate129227257783370573", "Tue Aug 03 2010 21:18:04 GMT+0200");
Supprimée : user_pref("CT2567681.FeedTTL128746777252093961", 60);
Supprimée : user_pref("CT2567681.FeedTTL128746777461468985", 60);
Supprimée : user_pref("CT2567681.FeedTTL128746791787562545", 5);
Supprimée : user_pref("CT2567681.FeedTTL129227257783214203", 30);
Supprimée : user_pref("CT2567681.FeedTTL129227257783214209", 2);
Supprimée : user_pref("CT2567681.FeedTTL129227257783214215", 2);
Supprimée : user_pref("CT2567681.FeedTTL129227257783214227", 2);
Supprimée : user_pref("CT2567681.FeedTTL129227257783214233", 30);
Supprimée : user_pref("CT2567681.FeedTTL129227257783214251", 5);
Supprimée : user_pref("CT2567681.FeedTTL129227257783214257", 5);
Supprimée : user_pref("CT2567681.FeedTTL129227257783214263", 5);
Supprimée : user_pref("CT2567681.FeedTTL129227257783214281", 5);
Supprimée : user_pref("CT2567681.FirstServerDate", "16-5-2010");
Supprimée : user_pref("CT2567681.FirstTime", true);
Supprimée : user_pref("CT2567681.FirstTimeFF3", true);
Supprimée : user_pref("CT2567681.FirstTimeSettingsDone", true);
Supprimée : user_pref("CT2567681.FixPageNotFoundErrors", true);
Supprimée : user_pref("CT2567681.GroupingServerCheckInterval", 1440);
Supprimée : user_pref("CT2567681.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Supprimée : user_pref("CT2567681.Initialize", true);
Supprimée : user_pref("CT2567681.InitializeCommonPrefs", true);
Supprimée : user_pref("CT2567681.InstallationAndCookieDataSentCount", 3);
Supprimée : user_pref("CT2567681.InstallationType", "UnknownIntegration");
Supprimée : user_pref("CT2567681.InstalledDate", "Sun May 16 2010 15:07:07 GMT+0200");
Supprimée : user_pref("CT2567681.InvalidateCache", false);
Supprimée : user_pref("CT2567681.IsGrouping", false);
Supprimée : user_pref("CT2567681.IsMulticommunity", false);
Supprimée : user_pref("CT2567681.IsOpenThankYouPage", false);
Supprimée : user_pref("CT2567681.IsOpenUninstallPage", true);
Supprimée : user_pref("CT2567681.LanguagePackLastCheckTime", "Tue Aug 03 2010 21:18:06 GMT+0200");
Supprimée : user_pref("CT2567681.LanguagePackReloadIntervalMM", 1440);
Supprimée : user_pref("CT2567681.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Supprimée : user_pref("CT2567681.LastLogin_2.6.0.15", "Tue Aug 03 2010 21:32:11 GMT+0200");
Supprimée : user_pref("CT2567681.LatestVersion", "2.1.0.18");
Supprimée : user_pref("CT2567681.Locale", "fr-fr");
Supprimée : user_pref("CT2567681.LoginCache", 4);
Supprimée : user_pref("CT2567681.MCDetectTooltipHeight", "83");
Supprimée : user_pref("CT2567681.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Supprimée : user_pref("CT2567681.MCDetectTooltipWidth", "295");
Supprimée : user_pref("CT2567681.RadioIsPodcast", false);
Supprimée : user_pref("CT2567681.RadioLastCheckTime", "Tue Aug 03 2010 19:09:05 GMT+0200");
Supprimée : user_pref("CT2567681.RadioLastUpdateIPServer", "3");
Supprimée : user_pref("CT2567681.RadioLastUpdateServer", "3");
Supprimée : user_pref("CT2567681.RadioMediaID", "9962");
Supprimée : user_pref("CT2567681.RadioMediaType", "Media Player");
Supprimée : user_pref("CT2567681.RadioMenuSelectedID", "EBRadioMenu_CT25676819962");
Supprimée : user_pref("CT2567681.RadioShrinked", "shrinked");
Supprimée : user_pref("CT2567681.RadioStationName", "California%20Rock");
Supprimée : user_pref("CT2567681.RadioStationURL", "hxxp://feedlive.net/california.asx");
Supprimée : user_pref("CT2567681.SHRINK_TOOLBAR", 0);
Supprimée : user_pref("CT2567681.SavedHomepage", "hxxp://google.fr");
Supprimée : user_pref("CT2567681.SearchBoxWidth", 100);
Supprimée : user_pref("CT256768Tút1.FeTútedP ÷ollDTútate1Tút292 ÷2725Tút778 ÷3214Tút263 ÷", "TútTue T[...]
Supprimée : user_pref("CT2851639..clientLogIsEnabled", true);
Supprimée : user_pref("CT2851639..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...]
Supprimée : user_pref("CT2851639..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...]
Supprimée : user_pref("CT2851639.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Supprimée : user_pref("CT2851639.CTID", "CT2851639");
Supprimée : user_pref("CT2851639.CurrentServerDate", "4-6-2011");
Supprimée : user_pref("CT2851639.DialogsAlignMode", "LTR");
Supprimée : user_pref("CT2851639.DialogsGetterLastCheckTime", "Sat Jun 04 2011 18:06:18 GMT+0200");
Supprimée : user_pref("CT2851639.DownloadReferralCookieData", "");
Supprimée : user_pref("CT2851639.EMailNotifierPollDate", "Sat Jun 04 2011 18:11:19 GMT+0200");
Supprimée : user_pref("CT2851639.FeedLastCount2548968607390276962", 139);
Supprimée : user_pref("CT2851639.FeedPollDate129351529712775081", "Sat Jun 04 2011 18:06:19 GMT+0200");
Supprimée : user_pref("CT2851639.FeedPollDate129351529712775087", "Sat Jun 04 2011 18:06:19 GMT+0200");
Supprimée : user_pref("CT2851639.FeedPollDate129351529712775093", "Sat Jun 04 2011 18:06:19 GMT+0200");
Supprimée : user_pref("CT2851639.FeedPollDate129351529712775099", "Sat Jun 04 2011 18:06:19 GMT+0200");
Supprimée : user_pref("CT2851639.FeedPollDate129351529712775105", "Sat Jun 04 2011 18:06:19 GMT+0200");
Supprimée : user_pref("CT2851639.FeedPollDate129351529712775111", "Sat Jun 04 2011 18:06:20 GMT+0200");
Supprimée : user_pref("CT2851639.FeedPollDate129351529712775117", "Sat Jun 04 2011 18:06:20 GMT+0200");
Supprimée : user_pref("CT2851639.FeedPollDate129351529712775123", "Sat Jun 04 2011 18:06:20 GMT+0200");
Supprimée : user_pref("CT2851639.FeedPollDate129351529712775129", "Sat Jun 04 2011 18:06:20 GMT+0200");
Supprimée : user_pref("CT2851639.FeedPollDate129351529712775135", "Sat Jun 04 2011 18:06:20 GMT+0200");
Supprimée : user_pref("CT2851639.FeedPollDate129351529712775141", "Sat Jun 04 2011 18:06:20 GMT+0200");
Supprimée : user_pref("CT2851639.FeedTTL129351529712775081", 10);
Supprimée : user_pref("CT2851639.FeedTTL129351529712775105", 15);
Supprimée : user_pref("CT2851639.FeedTTL129351529712775117", 5);
Supprimée : user_pref("CT2851639.FeedTTL129351529712775129", 5);
Supprimée : user_pref("CT2851639.FirstServerDate", "4-6-2011");
Supprimée : user_pref("CT2851639.FirstTime", true);
Supprimée : user_pref("CT2851639.FirstTimeFF3", true);
Supprimée : user_pref("CT2851639.FixPageNotFoundErrors", false);
Supprimée : user_pref("CT2851639.GroupingServerCheckInterval", 1440);
Supprimée : user_pref("CT2851639.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Supprimée : user_pref("CT2851639.HasUserGlobalKeys", true);
Supprimée : user_pref("CT2851639.Initialize", true);
Supprimée : user_pref("CT2851639.InitializeCommonPrefs", true);
Supprimée : user_pref("CT2851639.InstallationAndCookieDataSentCount", 1);
Supprimée : user_pref("CT2851639.InstallationType", "UnknownIntegration");
Supprimée : user_pref("CT2851639.InstalledDate", "Sat Jun 04 2011 18:06:17 GMT+0200");
Supprimée : user_pref("CT2851639.IsGrouping", false);
Supprimée : user_pref("CT2851639.IsMulticommunity", false);
Supprimée : user_pref("CT2851639.IsOpenThankYouPage", true);
Supprimée : user_pref("CT2851639.IsOpenUninstallPage", false);
Supprimée : user_pref("CT2851639.LanguagePackLastCheckTime", "Sat Jun 04 2011 18:06:20 GMT+0200");
Supprimée : user_pref("CT2851639.LanguagePackReloadIntervalMM", 1440);
Supprimée : user_pref("CT2851639.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Supprimée : user_pref("CT2851639.LastLogin_3.3.3.2", "Sat Jun 04 2011 18:06:19 GMT+0200");
Supprimée : user_pref("CT2851639.LatestVersion", "3.3.3.2");
Supprimée : user_pref("CT2851639.Locale", "fr");
Supprimée : user_pref("CT2851639.MCDetectTooltipHeight", "83");
Supprimée : user_pref("CT2851639.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Supprimée : user_pref("CT2851639.MCDetectTooltipWidth", "295");
Supprimée : user_pref("CT2851639.SearchFromAddressBarIsInit", true);
Supprimée : user_pref("CT2851639.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT285[...]
Supprimée : user_pref("CT2851639.SearchInNewTabEnabled", true);
Supprimée : user_pref("CT2851639.SearchInNewTabIntervalMM", 1440);
Supprimée : user_pref("CT2851639.SearchInNewTabLastCheckTime", "Sat Jun 04 2011 18:06:19 GMT+0200");
Supprimée : user_pref("CT2851639.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Supprimée : user_pref("CT2851639.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageServic[...]
Supprimée : user_pref("CT2851639.SearchInNewTabUserEnabled", false);
Supprimée : user_pref("CT2851639.ServiceMapLastCheckTime", "Sat Jun 04 2011 18:06:15 GMT+0200");
Supprimée : user_pref("CT2851639.SettingsLastCheckTime", "Sat Jun 04 2011 18:06:15 GMT+0200");
Supprimée : user_pref("CT2851639.SettingsLastUpdate", "1306530423");
Supprimée : user_pref("CT2851639.ThirdPartyComponentsInterval", 504);
Supprimée : user_pref("CT2851639.ThirdPartyComponentsLastCheck", "Sat Jun 04 2011 18:06:15 GMT+0200");
Supprimée : user_pref("CT2851639.ThirdPartyComponentsLastUpdate", "1255344667");
Supprimée : user_pref("CT2851639.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2851639");
Supprimée : user_pref("CT2851639.UserID", "UN29471603718736206");
Supprimée : user_pref("CT2851639.WeatherNetwork", "");
Supprimée : user_pref("CT2851639.WeatherPollDate", "Sat Jun 04 2011 18:06:21 GMT+0200");
Supprimée : user_pref("CT2851639.WeatherUnit", "C");
Supprimée : user_pref("CT2851639.alertChannelId", "1243674");
Supprimée : user_pref("CT2851639.backendstorage.enableinj", "");
Supprimée : user_pref("CT2851639.backendstorage.scriptsource", "687474703A2F2F3132372E302E302E313A31303030302F67[...]
Supprimée : user_pref("CT2851639.generalConfigFromLogin", "{\"SocialDomains\":\"social.conduit.com;apps.conduit.[...]
Supprimée : user_pref("CT2851639.globalFirstTimeInfoLastCheckTime", "Sat Jun 04 2011 18:06:19 GMT+0200");
Supprimée : user_pref("CT2851639.isAppTrackingManagerOn", true);
Supprimée : user_pref("CT2851639.myStuffEnabled", true);
Supprimée : user_pref("CT2851639.myStuffPublihserMinWidth", 400);
Supprimée : user_pref("CT2851639.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Supprimée : user_pref("CT2851639.myStuffServiceIntervalMM", 1440);
Supprimée : user_pref("CT2851639.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Supprimée : user_pref("CT2851639.testingCtid", "");
Supprimée : user_pref("CT2851639.toolbarAppMetaDataLastCheckTime", "Sat Jun 04 2011 18:06:16 GMT+0200");
Supprimée : user_pref("CT2851639.toolbarContextMenuLastCheckTime", "Sat Jun 04 2011 18:06:21 GMT+0200");
Supprimée : user_pref("CT2851639.usagesFlag", 2);
Supprimée : user_pref("CommunityToolbar.CantToolbarBeEngineOwner", "CT2851639");
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1243674/1239347/FR", "\"0\"[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/909619/905414/FR", "\"0\"")[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2851639", [...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&lo[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&loc[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&lo[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&local[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-services.com/DLG.pkg?ver=3.3.2[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-services.com/DLG.pkg?ver=3.3.3[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.3.[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2851639",[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=0", "63[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=1/11/20[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=2/17/20[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=2/22/20[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=3/13/20[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit.com/root/CT2851639/CT2851639[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=fr", "\"634[...]
Supprimée : user_pref("CommunityToolbar.EngineHiddenByUser", true);
Supprimée : user_pref("CommunityToolbar.EngineOwner", "ConduitEngine");
Supprimée : user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com");
Supprimée : user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine");
Supprimée : user_pref("CommunityToolbar.IsEngineShown", false);
Supprimée : user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Supprimée : user_pref("CommunityToolbar.OriginalEngineOwner", "ConduitEngine");
Supprimée : user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "engine@conduit.com");
Supprimée : user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "conduitengine");
Supprimée : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://search.imesh.com/web?src=ffb&syst[...]
Supprimée : user_pref("CommunityToolbar.ToolbarsList", "ConduitEngine,CT2851639");
Supprimée : user_pref("CommunityToolbar.ToolbarsList2", "CT2851639");
Supprimée : user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Wed Apr 13 2011 20:19:33 GMT+02[...]
Supprimée : user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
Supprimée : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Thu Jun 23 2011 17:44:28 GMT+0200");
Supprimée : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Supprimée : user_pref("CommunityToolbar.alert.locale", "en");
Supprimée : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Supprimée : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Fri Jun 24 2011 14:54:49 GMT+0200");
Supprimée : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1305622559");
Supprimée : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Supprimée : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Supprimée : user_pref("CommunityToolbar.alert.showTrayIcon", false);
Supprimée : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Supprimée : user_pref("CommunityToolbar.alert.userId", "405e28b6-b0d6-4093-b1bf-13d374c2a239");
Supprimée : user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Sat Jun 04 2011 18:06:19 GMT+0200");
Supprimée : user_pref("CommunityToolbar.globalUserId", "6fd7c552-9187-4853-9652-bc8cc46eb119");
Supprimée : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Supprimée : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Supprimée : user_pref("ConduitEngine.AppTrackingLastCheckTime", "Thu May 12 2011 21:28:27 GMT+0200");
Supprimée : user_pref("ConduitEngine.CTID", "ConduitEngine");
Supprimée : user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Sat Apr 09 2011 13:46:36 GMT+0200");
Supprimée : user_pref("ConduitEngine.FirstServerDate", "01/12/2011 21");
Supprimée : user_pref("ConduitEngine.FirstTime", true);
Supprimée : user_pref("ConduitEngine.FirstTimeFF3", true);
Supprimée : user_pref("ConduitEngine.HasUserGlobalKeys", true);
Supprimée : user_pref("ConduitEngine.Initialize", true);
Supprimée : user_pref("ConduitEngine.InitializeCommonPrefs", true);
Supprimée : user_pref("ConduitEngine.InstalledDate", "Wed Jan 12 2011 19:39:42 GMT+0100");
Supprimée : user_pref("ConduitEngine.IsMulticommunity", false);
Supprimée : user_pref("ConduitEngine.IsOpenThankYouPage", false);
Supprimée : user_pref("ConduitEngine.IsOpenUninstallPage", true);
Supprimée : user_pref("ConduitEngine.LanguagePackLastCheckTime", "Sun Apr 10 2011 22:09:42 GMT+0200");
Supprimée : user_pref("ConduitEngine.LastLogin_3.2.3.3", "Sat Jan 22 2011 15:58:23 GMT+0100");
Supprimée : user_pref("ConduitEngine.LastLogin_3.2.5.2", "Mon Mar 21 2011 20:27:49 GMT+0100");
Supprimée : user_pref("ConduitEngine.LastLogin_3.3.3.2", "Mon Apr 11 2011 17:46:20 GMT+0200");
Supprimée : user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Supprimée : user_pref("ConduitEngine.SettingsLastCheckTime", "Mon Apr 11 2011 17:46:20 GMT+0200");
Supprimée : user_pref("ConduitEngine.UserID", "UN28917623725758235");
Supprimée : user_pref("ConduitEngine.componentAlertEnabled", true);
Supprimée : user_pref("ConduitEngine.engineLocale", "fr");
Supprimée : user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Sun Apr 10 2011 22:09:42 GMT+0200");
Supprimée : user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Mon Apr 11 2011 17:46:23 GMT+0200");
Supprimée : user_pref("ConduitEngine.initDone", true);
Supprimée : user_pref("ConduitEngine.isAppTrackingManagerOn", true);
Supprimée : user_pref("ConduitEngine.usagesFlag", 2);
Supprimée : user_pref("browser.search.defaultengine", "Ask.com");
Supprimée : user_pref("browser.search.defaultenginename", "Ask.com");
Supprimée : user_pref("browser.search.order.1", "Ask.com");

-\ Google Chrome v15.0.874.121

Fichier : C:\Documents and Settings\ChloÚ\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] Le fichier ne contient aucune entrée illégitime.

*************************

AdwCleaner[R1].txt - [32683 octets] - [21/11/2011 19:22:04]
AdwCleaner[S1].txt - [33125 octets] - [21/11/2011 19:41:29]

*************************

Dossier Temporaire : 12 dossier(s)et 44 fichier(s) supprimés

########## EOF - C:\AdwCleaner[S1].txt - [33347 octets] ##########

juju666 · Answer

heu ... ben là on enlève toutes les m*rdes de ton pc hein :)

Tu fais n'importe quoi avec :)

&#9654  Télécharge AD-Remover sur ton Bureau : (TeamXScript) 

http://www.teamxscript.org/adremoverTelechargement.html ( Lien officiel ) 
OU 
https://www.androidworld.fr/ ( Miroir ) 

/!\ Ferme toutes applications en cours /!\ 

&#9654 Double-clique sur l'icône Ad-remover située sur ton Bureau. 
&#9654 Sur la page, clique sur le bouton « Scanner » 
&#9654 Confirme le lancement du scan 
&#9654 Laisse travailler l'outil. 
&#9654 Quand il a fini, un rapport s'ouvrira : ferme le.

&#9830 Pour me transmettre le rapport

clique sur ce lien : https://www.cjoint.com/

? Clique sur Parcourir et cherche le fichier C:\Ad-Report-SCAN[1].txt

? Clique sur Ouvrir.

? Clique sur "Cliquez ici pour déposer le fichier".

Un lien de cette forme :

http://www.cjoint.com/SKAP5fU.txt

est ajouté dans la page.

? Copie ce lien dans ta réponse.

Tutoriel : http://forums-fec.be/entraide/viewtopic.php?f=55&t=3

TomZanovich · Answer

Je dois aller quelque part, malheureusement

En tout cas j'ai un tas de taf pour demain, et sans toi je n'y serai jamais arrivé. J'ai un tas de choses à chercher et à imprimer

Je ne te remercierai jamais assez pour ce que tu m' a fait. 

A tôt bien !

juju666 · Answer

Ahah j'ai un Fan club (H) mdr ^^

bon taf, à + !

Virus bloque toutes les actions -

25 réponses

Discussions similaires

Newsletters