A voir également:
- MyDocuments ne veut pas s'ouvrir...
- Comment ouvrir un fichier epub ? - Guide
- Ouvrir fichier .bin - Guide
- Ouvrir fichier .dat - Guide
- Comment ouvrir un fichier docx ? - Guide
- Ouvrir avec - Guide
27 réponses
Bonsoir
Inscris toi avant tout
Pour de plus amples informations, fait ceci stp
Ouvre ce lien et télécharge ZHPDiag de Nicolas Coolman :
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
Ou
https://www.commentcamarche.net/telecharger/utilitaires/24803-zhpdiag/
Serveur N°2
Ou
http://www.premiumorange.com/zeb-help-process/zhpdiag.html
en bas de la page ZHP avec un numéro de version.
Une fois le téléchargement achevé, dé zippe le fichier obtenu et place ZHPDiag.exe sur ton Bureau.
Double-clique sur l'icône pour lancer le programme. Sous Vista ou Seven clic droit « exécuter en tant que administrateur »
Clique sur la loupe pour lancer l'analyse.
Laisse l'outil travailler, il peut être assez long.
Ferme ZHPDiag en fin d'analyse.
Pour transmettre le rapport clique sur ce lien :
http://pjjoint.malekal.com/
https://www.cjoint.com/
Clique sur Parcourir et cherche le répertoire où est installé ZHPDiag (en général C:\Program Files\ZHPDiag).
Sélectionne le fichier ZHPDiag.txt.
Clique sur "Cliquez ici pour déposer le fichier".
Un lien de cette forme :
http://www.cijoint.fr/cjlink.php?file=cj200905/cijSKAP5fU.txt
est ajouté dans la page.
Copie ce lien dans ta réponse.
Merci
A+
Inscris toi avant tout
Pour de plus amples informations, fait ceci stp
Ouvre ce lien et télécharge ZHPDiag de Nicolas Coolman :
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
Ou
https://www.commentcamarche.net/telecharger/utilitaires/24803-zhpdiag/
Serveur N°2
Ou
http://www.premiumorange.com/zeb-help-process/zhpdiag.html
en bas de la page ZHP avec un numéro de version.
Une fois le téléchargement achevé, dé zippe le fichier obtenu et place ZHPDiag.exe sur ton Bureau.
Double-clique sur l'icône pour lancer le programme. Sous Vista ou Seven clic droit « exécuter en tant que administrateur »
Clique sur la loupe pour lancer l'analyse.
Laisse l'outil travailler, il peut être assez long.
Ferme ZHPDiag en fin d'analyse.
Pour transmettre le rapport clique sur ce lien :
http://pjjoint.malekal.com/
https://www.cjoint.com/
Clique sur Parcourir et cherche le répertoire où est installé ZHPDiag (en général C:\Program Files\ZHPDiag).
Sélectionne le fichier ZHPDiag.txt.
Clique sur "Cliquez ici pour déposer le fichier".
Un lien de cette forme :
http://www.cijoint.fr/cjlink.php?file=cj200905/cijSKAP5fU.txt
est ajouté dans la page.
Copie ce lien dans ta réponse.
Merci
A+
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Bonjour
1)Télécharge AdwCleaner ( d'Xplode ) sur ton bureau.
Lance le, clique sur [Suppression] puis patiente le temps du scan.
Une fois le scan fini, un rapport s'ouvrira. Poste moi son contenu dans ta prochaine réponse.
Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt
Les toolbars, c'est pas obligatoire ( par Malekal ) :https://forum.malekal.com/viewtopic.php?t=6173&start=
2)Tu disposes de Malwaresbytes;met le à jour et lance une anlyse rapide et poste moi son rapport.
Supprime bien tout ce qu'il trouve.
@+
1)Télécharge AdwCleaner ( d'Xplode ) sur ton bureau.
Lance le, clique sur [Suppression] puis patiente le temps du scan.
Une fois le scan fini, un rapport s'ouvrira. Poste moi son contenu dans ta prochaine réponse.
Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt
Les toolbars, c'est pas obligatoire ( par Malekal ) :https://forum.malekal.com/viewtopic.php?t=6173&start=
2)Tu disposes de Malwaresbytes;met le à jour et lance une anlyse rapide et poste moi son rapport.
Supprime bien tout ce qu'il trouve.
@+
voici le rapport merci:
# AdwCleaner v1.407 - Rapport créé le 21/01/2012 à 10:22:30
# Mis à jour le 18/01/2012 par Xplode
# Système d'exploitation : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Nom d'utilisateur : ADMINISTRATOR - HPERFECT (Administrateur)
# Exécuté depuis : C:\Users\ADMINISTRATOR\Desktop\adwcleaner.exe
# Option [Suppression]
***** [Services] *****
Arrêté & Supprimé : : Bandoo Coordinator
***** [Fichiers / Dossiers] *****
Dossier Supprimé : C:\ProgramData\Bandoo
Dossier Supprimé : C:\Users\ADMINISTRATOR\AppData\Roaming\Bandoo
Dossier Supprimé : C:\Users\ADMINISTRATOR\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
Dossier Supprimé : C:\Users\ADMINISTRATOR\AppData\Local\Conduit
Dossier Supprimé : C:\Users\ADMINISTRATOR\AppData\LocalLow\Conduit
Dossier Supprimé : C:\Users\ADMINISTRATOR\AppData\LocalLow\ShoppingReport2
Dossier Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandoo
Dossier Supprimé : C:\Program Files\Conduit
Dossier Supprimé : C:\Program Files\QuestScan
Dossier Supprimé : C:\Users\ADMINISTRATOR\AppData\Roaming\Mozilla\Firefox\Profiles\47qx4jlj.default\Conduit
Dossier Supprimé : C:\Users\ADMINISTRATOR\AppData\Roaming\Mozilla\Firefox\Profiles\47qx4jlj.default\ConduitCommon
Fichier Supprimé : C:\Program Files\Mozilla Firefox\.autoreg
Fichier Supprimé : C:\Users\ADMINISTRATOR\AppData\Roaming\Mozilla\Firefox\Profiles\47qx4jlj.default\searchplugins\Conduit.xml
***** [Registre] *****
[*] Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT3059010
[*] Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT3074349
Clé Supprimée : HKCU\Software\AppDataLow\Toolbar
Clé Supprimée : HKCU\Software\AppDataLow\Software\Conduit
Clé Supprimée : HKCU\Software\AppDataLow\Software\ShoppingReport2
Clé Supprimée : HKLM\SOFTWARE\bandoo
Clé Supprimée : HKLM\SOFTWARE\Conduit
Clé Supprimée : HKLM\SOFTWARE\QuestScan
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCoordinator.BandooCoordinator
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCoordinator.BandooCoordinator.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCoordinator.CoordinatorUI
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCoordinator.CoordinatorUI.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCoordinator.hxxpAsyncResult
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCoordinator.hxxpAsyncResult.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCoordinator.PlugInNotifier
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCoordinator.PlugInNotifier.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.BandooCore
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.BandooCore.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.ResourcesMngr
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.ResourcesMngr.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.SettingsMngr
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.SettingsMngr.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.StatisticMngr
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.StatisticMngr.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooIEPlugin.BandooIEPlugin
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooIEPlugin.BandooIEPlugin.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BFlashAnimator.BFlashAnimatorCtrl
Clé Supprimée : HKLM\SOFTWARE\Classes\BFlashAnimator.BFlashAnimatorCtrl.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BGIFAnimator.BGIFAnimatorCtrl
Clé Supprimée : HKLM\SOFTWARE\Classes\BGIFAnimator.BGIFAnimatorCtrl.1
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\BandooCoordinator.EXE
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\BandooCore.EXE
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\BHO.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\SoftwareUpdate.exe
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{EDE2C296-2458-4E3B-A846-4B512C0703B5}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{1301A8A5-3DFB-4731-A162-B357D00C9644}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{9C123289-82E1-4da7-A3C2-B8D28AAD114B}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{3AD7A5B6-610D-4A82-979E-0AED20920690}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{C3AB94A4-BFD0-4BBA-A331-DE504F07D2DB}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{CE1CB632-6817-47b3-8587-D05AF75D6D5A}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{EB5CEE80-030A-4ED8-8E20-454E9C68380F}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{F5379B4B-24D8-432A-9A96-BE75EE5117DB}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{F7FB2BC4-6C27-4EAC-B5E2-037B71FDE101}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{FD53FE35-4368-4B71-89D6-F29F3DB29DF1}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{EF2B6317-C367-401B-83B8-80302D6588A7}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{3c471948-f874-49f5-b338-4f214a2ee0b1}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{074E4EFE-81BB-4EA4-866E-082CB0E01070}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{0CE5B352-9D9C-41E1-9551-FCCD92820217}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{167B2B5F-2757-434A-BBDA-2FDB2003F14F}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{27F69C85-64E1-43CE-98B5-3C9F22FB408E}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{2E9A60EA-5554-49C3-BC9D-D0404DBACC62}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{3E63C9BC-DD51-4E83-ABA6-B350EAD28531}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{44CFFEF4-E7E1-44BD-B1F5-29F828ADA1B8}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{872F3C0B-4462-424c-BB9F-74C6899B9F92}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{B543EF05-9758-464E-9F37-4C28525B4A4C}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{BB76A90B-2B4C-4378-8506-9A2B6E16943C}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\RFC1156Agent
Clé Supprimée : HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\2796BAE63F1801E277261BA0D77770028F20EEE4
Clé Supprimée : HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DE28F4A4FFE5B92FA3C503D1A349A7F9962A8212
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{A1F1ECD3-4806-44C6-A869-F0DADF11C57C}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{A9005ED5-4A1D-4606-A4DF-1A25E7D7B417}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{FF871E51-2655-4D06-AED5-745962A96B32}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{33DDFC61-F531-4982-8C32-4212B7835D44}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{477F210A-2A86-4666-9C4B-1189634D2C84}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{6087829B-114F-42A1-A72B-B4AEDCEA4E5B}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{3AD7A5B6-610D-4A82-979E-0AED20920690}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{4410C118-B23C-406C-9F52-9CDABD90A5EA}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{8F5F1CB6-EA9E-40AF-A5CA-C7FD63CC1971}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{9C123289-82E1-4DA7-A3C2-B8D28AAD114B}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Bandoo
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8856F961-340A-11D0-A96B-00C04FD705A2}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{424624F4-C5DD-4e1d-BDD0-1E9C9B7799CC}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7f000001-db8e-f89c-2fec-49bf726f8c12}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9C8A3CA5-889E-4554-BEEC-EC0876E4E96A}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F9189560-573A-4fde-B055-AE7B0F4CF080}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{872F3C0B-4462-424c-BB9F-74C6899B9F92}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CE1CB632-6817-47b3-8587-D05AF75D6D5A}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Bandoo
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\QuestScan
***** [Navigateurs] *****
-\\ Internet Explorer v8.0.6001.19170
Remplacé : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.conduit.com/?SearchSource=10&ctid=CT3059010 --> hxxp://www.google.fr
-\\ Mozilla Firefox v3.0.19 (fr)
Profil : 47qx4jlj.default
Fichier : C:\Users\ADMINISTRATOR\AppData\Roaming\Mozilla\Firefox\Profiles\47qx4jlj.default\prefs.js
Supprimée : user_pref("CT2095689.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Supprimée : user_pref("CT2095689.CTID", "CT2095689");
Supprimée : user_pref("CT2095689.DialogsAlignMode", "LTR");
Supprimée : user_pref("CT2095689.EMailNotifierPollDate", "Sun Jan 10 2010 14:15:38 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.ExternalComponentPollDate128976695673694244", "Sun Jan 10 2010 13:48:22 GMT-050[...]
Supprimée : user_pref("CT2095689.ExternalComponentPollDate128982860741881426", "Sun Jan 10 2010 13:48:22 GMT-050[...]
Supprimée : user_pref("CT2095689.FeedLastCount128731247637625063", 529);
Supprimée : user_pref("CT2095689.FeedPollDate128731245136062514", "Sun Jan 10 2010 13:48:23 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.FeedPollDate128731245316218848", "Sun Jan 10 2010 13:48:23 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.FeedPollDate128731246282468810", "Sun Jan 10 2010 13:48:23 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.FeedPollDate128731246553406402", "Sun Jan 10 2010 13:48:23 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.FeedPollDate128731246684343903", "Sun Jan 10 2010 13:48:23 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.FeedPollDate128731246876375154", "Sun Jan 10 2010 13:48:23 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.FeedPollDate128731247027625394", "Sun Jan 10 2010 13:48:23 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.FeedPollDate128731247188094432", "Sun Jan 10 2010 13:48:23 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.FeedPollDate128731247334657027", "Sun Jan 10 2010 13:48:23 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.FeedPollDate128731247470125937", "Sun Jan 10 2010 13:48:23 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.FeedPollDate128731247603093789", "Sun Jan 10 2010 13:48:24 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.FeedTTL128731246282468810", 10);
Supprimée : user_pref("CT2095689.FeedTTL128731246553406402", 5);
Supprimée : user_pref("CT2095689.FeedTTL128731246876375154", 10);
Supprimée : user_pref("CT2095689.FeedTTL128731247334657027", 10);
Supprimée : user_pref("CT2095689.FeedTTL128731247470125937", 5);
Supprimée : user_pref("CT2095689.FirstTime", true);
Supprimée : user_pref("CT2095689.FirstTimeFF3", true);
Supprimée : user_pref("CT2095689.GroupingServerCheckInterval", 1440);
Supprimée : user_pref("CT2095689.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Supprimée : user_pref("CT2095689.Initialize", true);
Supprimée : user_pref("CT2095689.InitializeCommonPrefs", true);
Supprimée : user_pref("CT2095689.InstalledDate", "Sun Nov 08 2009 10:18:48 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.InvalidateCache", false);
Supprimée : user_pref("CT2095689.IsGrouping", false);
Supprimée : user_pref("CT2095689.IsMulticommunity", false);
Supprimée : user_pref("CT2095689.IsOpenThankYouPage", true);
Supprimée : user_pref("CT2095689.IsOpenUninstallPage", true);
Supprimée : user_pref("CT2095689.LanguagePackLastCheckTime", "Sun Jan 10 2010 13:48:23 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.LanguagePackReloadIntervalMM", 1440);
Supprimée : user_pref("CT2095689.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Supprimée : user_pref("CT2095689.LastLogin_2.1.0.19", "Sun Jan 10 2010 13:48:23 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.LatestVersion", "2.1.0.18");
Supprimée : user_pref("CT2095689.Locale", "fr");
Supprimée : user_pref("CT2095689.LoginCache", 4);
Supprimée : user_pref("CT2095689.MCDetectTooltipHeight", "83");
Supprimée : user_pref("CT2095689.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Supprimée : user_pref("CT2095689.MCDetectTooltipWidth", "295");
Supprimée : user_pref("CT2095689.RadioIsPodcast", false);
Supprimée : user_pref("CT2095689.RadioLastCheckTime", "Sun Jan 10 2010 13:48:23 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.RadioLastUpdateIPServer", "4");
Supprimée : user_pref("CT2095689.RadioLastUpdateServer", "128929877726170000");
Supprimée : user_pref("CT2095689.RadioMediaID", "9474917");
Supprimée : user_pref("CT2095689.RadioMediaType", "Media Player");
Supprimée : user_pref("CT2095689.RadioMenuSelectedID", "EBRadioMenu_CT20956899474917");
Supprimée : user_pref("CT2095689.RadioStationName", "RFI%20Afrique%20");
Supprimée : user_pref("CT2095689.RadioStationURL", "hxxp://wmod.streaming.rfi.fr.edgestreams.net/rfi/francais/au[...]
Supprimée : user_pref("CT2095689.SHRINK_TOOLBAR", 1);
Supprimée : user_pref("CT2095689.SearchFromAddressBarIsInit", true);
Supprimée : user_pref("CT2095689.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT209[...]
Supprimée : user_pref("CT2095689.SettingsCheckIntervalMin", 120);
Supprimée : user_pref("CT2095689.SettingsLastCheckTime", "Sun Jan 10 2010 13:48:21 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.SettingsLastUpdate", "1262855323");
Supprimée : user_pref("CT2095689.SuggestWindowWidth", "436");
Supprimée : user_pref("CT2095689.ThirdPartyComponentsInterval", 72);
Supprimée : user_pref("CT2095689.ThirdPartyComponentsLastCheck", "Thu Jan 07 2010 20:42:27 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.ThirdPartyComponentsLastUpdate", "1262855323");
Supprimée : user_pref("CT2095689.TrusteLinkUrl", "hxxp://www.truste.org/pvr.php?page=validate&softwareProgramId=[...]
Supprimée : user_pref("CT2095689.UserID", "UN53283827559369088");
Supprimée : user_pref("CT2095689.WeatherNetwork", "");
Supprimée : user_pref("CT2095689.WeatherPollDate", "Sun Jan 10 2010 13:48:24 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.WeatherUnit", "C");
Supprimée : user_pref("CT2095689.alertChannelId", "516440");
Supprimée : user_pref("CT2095689.clientLogIsEnabled", true);
Supprimée : user_pref("CT2095689.clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asm[...]
Supprimée : user_pref("CT2095689.myStuffEnabled", true);
Supprimée : user_pref("CT2095689.myStuffPublihserMinWidth", 400);
Supprimée : user_pref("CT2095689.myStuffSearchUrl", "hxxp://search.conduit.com/Results.aspx?q=SEARCH_TERM&ctid=E[...]
Supprimée : user_pref("CT2095689.myStuffServiceIntervalMM", 1440);
Supprimée : user_pref("CT2095689.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Supprimée : user_pref("CT2095689.uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Reg[...]
Supprimée : user_pref("CT3059010..clientLogIsEnabled", true);
Supprimée : user_pref("CT3059010..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...]
Supprimée : user_pref("CT3059010..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...]
Supprimée : user_pref("CT3059010.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Supprimée : user_pref("CT3059010.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Supprimée : user_pref("CT3059010.AppTrackingLastCheckTime", "Thu Jan 12 2012 21:01:14 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.BrowserCompStateIsOpen_129644643807464463", true);
Supprimée : user_pref("CT3059010.BrowserCompStateIsOpen_129682606974435364", true);
Supprimée : user_pref("CT3059010.CTID", "CT3059010");
Supprimée : user_pref("CT3059010.CurrentServerDate", "7-1-2012");
Supprimée : user_pref("CT3059010.DSInstall", true);
Supprimée : user_pref("CT3059010.DialogsAlignMode", "LTR");
Supprimée : user_pref("CT3059010.DialogsGetterLastCheckTime", "Thu Jan 12 2012 21:01:13 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.DownloadReferralCookieData", "");
Supprimée : user_pref("CT3059010.EMailNotifierPollDate", "Mon Jan 16 2012 15:48:50 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.FirstServerDate", "19-11-2011");
Supprimée : user_pref("CT3059010.FirstTime", true);
Supprimée : user_pref("CT3059010.FirstTimeFF3", true);
Supprimée : user_pref("CT3059010.FixPageNotFoundErrors", true);
Supprimée : user_pref("CT3059010.GroupingServerCheckInterval", 1440);
Supprimée : user_pref("CT3059010.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Supprimée : user_pref("CT3059010.HPInstall", true);
Supprimée : user_pref("CT3059010.HasUserGlobalKeys", true);
Supprimée : user_pref("CT3059010.HomePageProtectorEnabled", true);
Supprimée : user_pref("CT3059010.HomepageBeforeUnload", "hxxp://search.conduit.com/?ctid=CT3059010&SearchSource=[...]
Supprimée : user_pref("CT3059010.Initialize", true);
Supprimée : user_pref("CT3059010.InitializeCommonPrefs", true);
Supprimée : user_pref("CT3059010.InstallationAndCookieDataSentCount", 3);
Supprimée : user_pref("CT3059010.InstallationId", "ConduitStubGeneric");
Supprimée : user_pref("CT3059010.InstallationType", "ConduitStubIntegration");
Supprimée : user_pref("CT3059010.InstalledDate", "Fri Nov 18 2011 18:29:31 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.InvalidateCache", false);
Supprimée : user_pref("CT3059010.IsAlertDBUpdated", true);
Supprimée : user_pref("CT3059010.IsGrouping", false);
Supprimée : user_pref("CT3059010.IsInitSetupIni", true);
Supprimée : user_pref("CT3059010.IsMulticommunity", false);
Supprimée : user_pref("CT3059010.IsOpenThankYouPage", false);
Supprimée : user_pref("CT3059010.IsOpenUninstallPage", true);
Supprimée : user_pref("CT3059010.IsProtectorsInit", true);
Supprimée : user_pref("CT3059010.LanguagePackLastCheckTime", "Thu Jan 12 2012 21:01:04 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.LanguagePackReloadIntervalMM", 1440);
Supprimée : user_pref("CT3059010.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Supprimée : user_pref("CT3059010.LastLogin_3.8.0.8", "Thu Jan 12 2012 21:01:15 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.LatestVersion", "3.8.1.0");
Supprimée : user_pref("CT3059010.Locale", "en");
Supprimée : user_pref("CT3059010.MCDetectTooltipHeight", "83");
Supprimée : user_pref("CT3059010.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Supprimée : user_pref("CT3059010.MCDetectTooltipWidth", "295");
Supprimée : user_pref("CT3059010.MyStuffEnabledAtInstallation", true);
Supprimée : user_pref("CT3059010.OriginalFirstVersion", "3.8.0.8");
Supprimée : user_pref("CT3059010.RadioIsPodcast", false);
Supprimée : user_pref("CT3059010.RadioLastCheckTime", "Mon Jan 16 2012 15:48:51 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.RadioLastUpdateIPServer", "3");
Supprimée : user_pref("CT3059010.RadioLastUpdateServer", "129557451676770000");
Supprimée : user_pref("CT3059010.RadioMediaID", "21922135");
Supprimée : user_pref("CT3059010.RadioMediaType", "Media Player");
Supprimée : user_pref("CT3059010.RadioMenuSelectedID", "EBRadioMenu_CT305901021922135");
Supprimée : user_pref("CT3059010.RadioShrinkedFromSetup", false);
Supprimée : user_pref("CT3059010.RadioStationName", "California%20Rock%20-%20Rock");
Supprimée : user_pref("CT3059010.RadioStationURL", "hxxp://www.feedlive.net/california.asx");
Supprimée : user_pref("CT3059010.SavedHomepage", "hxxp://search.conduit.com/?ctid=CT3074349&SearchSource=13");
Supprimée : user_pref("CT3059010.SearchCaption", "Vgrabber Customized Web Search");
Supprimée : user_pref("CT3059010.SearchEngineBeforeUnload", "Vgrabber Customized Web Search");
Supprimée : user_pref("CT3059010.SearchFromAddressBarIsInit", true);
Supprimée : user_pref("CT3059010.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT305[...]
Supprimée : user_pref("CT3059010.SearchInNewTabEnabled", true);
Supprimée : user_pref("CT3059010.SearchInNewTabIntervalMM", 1440);
Supprimée : user_pref("CT3059010.SearchInNewTabLastCheckTime", "Mon Jan 16 2012 15:48:50 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Supprimée : user_pref("CT3059010.SearchInNewTabUsageUrl", "hxxp://usage.hosting.toolbar.conduit-services.com/usa[...]
Supprimée : user_pref("CT3059010.SearchProtectorEnabled", true);
Supprimée : user_pref("CT3059010.SearchProtectorToolbarDisabled", false);
Supprimée : user_pref("CT3059010.SendProtectorDataViaLogin", true);
Supprimée : user_pref("CT3059010.ServiceMapLastCheckTime", "Thu Jan 12 2012 21:01:04 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.SettingsLastCheckTime", "Mon Jan 16 2012 15:48:49 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.SettingsLastUpdate", "1324548388");
Supprimée : user_pref("CT3059010.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT3059010&SearchSource=13");
Supprimée : user_pref("CT3059010.ThirdPartyComponentsInterval", 504);
Supprimée : user_pref("CT3059010.ThirdPartyComponentsLastCheck", "Fri Jan 06 2012 17:28:36 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.ThirdPartyComponentsLastUpdate", "1312887586");
Supprimée : user_pref("CT3059010.ToolbarShrinkedFromSetup", false);
Supprimée : user_pref("CT3059010.TrusteLinkUrl", "hxxp://trust.conduit.com/CT3059010");
Supprimée : user_pref("CT3059010.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,clien[...]
Supprimée : user_pref("CT3059010.UserID", "UN27425000614291983");
Supprimée : user_pref("CT3059010.WeatherNetwork", "");
Supprimée : user_pref("CT3059010.WeatherPollDate", "Mon Jan 16 2012 15:48:51 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.WeatherUnit", "C");
Supprimée : user_pref("CT3059010.alertChannelId", "1450550");
Supprimée : user_pref("CT3059010.backendstorage.cbfirsttime", "467269204E6F7620313820323031312031383A32393A33352[...]
Supprimée : user_pref("CT3059010.backendstorage.shoppingapp.gk.exipres", "576564204A616E20313120323031322031373A[...]
Supprimée : user_pref("CT3059010.backendstorage.shoppingapp.gk.geolocation", "63616E616461");
Supprimée : user_pref("CT3059010.backendstorage.url_history", "6A6176617363726970743A616368657465722834363539392[...]
Supprimée : user_pref("CT3059010.backendstorage.url_history_time", "31333235383839333736363239");
Supprimée : user_pref("CT3059010.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...]
Supprimée : user_pref("CT3059010.globalFirstTimeInfoLastCheckTime", "Thu Jan 12 2012 21:01:37 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.homepageProtectorEnableByLogin", true);
Supprimée : user_pref("CT3059010.initDone", true);
Supprimée : user_pref("CT3059010.isAppTrackingManagerOn", true);
Supprimée : user_pref("CT3059010.isFirstRadioInstallation", false);
Supprimée : user_pref("CT3059010.myStuffEnabled", true);
Supprimée : user_pref("CT3059010.myStuffPublihserMinWidth", 400);
Supprimée : user_pref("CT3059010.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Supprimée : user_pref("CT3059010.myStuffServiceIntervalMM", 1440);
Supprimée : user_pref("CT3059010.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Supprimée : user_pref("CT3059010.oldAppsList", "10000001,10000002,111,129559884184450601,129559884345153249,1295[...]
Supprimée : user_pref("CT3059010.revertSettingsEnabled", false);
Supprimée : user_pref("CT3059010.searchProtectorDialogDelayInSec", 10);
Supprimée : user_pref("CT3059010.searchProtectorEnableByLogin", true);
Supprimée : user_pref("CT3059010.testingCtid", "");
Supprimée : user_pref("CT3059010.toolbarAppMetaDataLastCheckTime", "Thu Jan 12 2012 21:01:12 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.toolbarContextMenuLastCheckTime", "Thu Jan 12 2012 21:01:30 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349..clientLogIsEnabled", true);
Supprimée : user_pref("CT3074349..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...]
Supprimée : user_pref("CT3074349..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...]
Supprimée : user_pref("CT3074349.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Supprimée : user_pref("CT3074349.AppTrackingLastCheckTime", "Thu Jan 12 2012 21:01:14 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349.CTID", "CT3074349");
Supprimée : user_pref("CT3074349.CurrentServerDate", "7-1-2012");
Supprimée : user_pref("CT3074349.DialogsAlignMode", "LTR");
Supprimée : user_pref("CT3074349.DialogsGetterLastCheckTime", "Thu Jan 12 2012 21:01:13 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349.DownloadReferralCookieData", "");
Supprimée : user_pref("CT3074349.FirstServerDate", "24-10-2011");
Supprimée : user_pref("CT3074349.FirstTime", true);
Supprimée : user_pref("CT3074349.FirstTimeFF3", true);
Supprimée : user_pref("CT3074349.FixPageNotFoundErrors", true);
Supprimée : user_pref("CT3074349.GroupingServerCheckInterval", 1440);
Supprimée : user_pref("CT3074349.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Supprimée : user_pref("CT3074349.HasUserGlobalKeys", true);
Supprimée : user_pref("CT3074349.Initialize", true);
Supprimée : user_pref("CT3074349.InitializeCommonPrefs", true);
Supprimée : user_pref("CT3074349.InstallationAndCookieDataSentCount", 3);
Supprimée : user_pref("CT3074349.InstallationType", "UnknownIntegration");
Supprimée : user_pref("CT3074349.InstalledDate", "Fri Oct 21 2011 21:51:43 GMT-0400");
Supprimée : user_pref("CT3074349.InvalidateCache", false);
Supprimée : user_pref("CT3074349.IsAlertDBUpdated", true);
Supprimée : user_pref("CT3074349.IsGrouping", false);
Supprimée : user_pref("CT3074349.IsInitSetupIni", true);
Supprimée : user_pref("CT3074349.IsMulticommunity", false);
Supprimée : user_pref("CT3074349.IsOpenThankYouPage", false);
Supprimée : user_pref("CT3074349.IsOpenUninstallPage", true);
Supprimée : user_pref("CT3074349.LanguagePackLastCheckTime", "Thu Jan 12 2012 21:01:04 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349.LanguagePackReloadIntervalMM", 1440);
Supprimée : user_pref("CT3074349.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Supprimée : user_pref("CT3074349.LastLogin_3.6.0.10", "Thu Jan 12 2012 21:01:15 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349.LatestVersion", "3.8.1.0");
Supprimée : user_pref("CT3074349.Locale", "en");
Supprimée : user_pref("CT3074349.MCDetectTooltipHeight", "83");
Supprimée : user_pref("CT3074349.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Supprimée : user_pref("CT3074349.MCDetectTooltipWidth", "295");
Supprimée : user_pref("CT3074349.MyStuffEnabledAtInstallation", true);
Supprimée : user_pref("CT3074349.OriginalFirstVersion", "3.6.0.10");
Supprimée : user_pref("CT3074349.RadioIsPodcast", false);
Supprimée : user_pref("CT3074349.RadioLastCheckTime", "Mon Jan 16 2012 15:48:52 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349.RadioLastUpdateIPServer", "3");
Supprimée : user_pref("CT3074349.RadioLastUpdateServer", "3");
Supprimée : user_pref("CT3074349.RadioMediaID", "9962");
Supprimée : user_pref("CT3074349.RadioMediaType", "Media Player");
Supprimée : user_pref("CT3074349.RadioMenuSelectedID", "EBRadioMenu_CT30743499962");
Supprimée : user_pref("CT3074349.RadioShrinkedFromSetup", false);
Supprimée : user_pref("CT3074349.RadioStationName", "California%20Rock");
Supprimée : user_pref("CT3074349.RadioStationURL", "hxxp://feedlive.net/california.asx");
Supprimée : user_pref("CT3074349.SavedHomepage", "hxxp://search.conduit.com/?ctid=CT2095689&SearchSource=13");
Supprimée : user_pref("CT3074349.SearchFromAddressBarIsInit", true);
Supprimée : user_pref("CT3074349.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT307[...]
Supprimée : user_pref("CT3074349.SearchInNewTabEnabled", true);
Supprimée : user_pref("CT3074349.SearchInNewTabIntervalMM", 1440);
Supprimée : user_pref("CT3074349.SearchInNewTabLastCheckTime", "Mon Jan 16 2012 15:48:51 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Supprimée : user_pref("CT3074349.SearchInNewTabUsageUrl", "hxxp://usage.hosting.toolbar.conduit-services.com/usa[...]
Supprimée : user_pref("CT3074349.ServiceMapLastCheckTime", "Thu Jan 12 2012 21:01:04 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349.SettingsLastCheckTime", "Mon Jan 16 2012 15:48:50 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349.SettingsLastUpdate", "1321973065");
Supprimée : user_pref("CT3074349.ThirdPartyComponentsInterval", 504);
Supprimée : user_pref("CT3074349.ThirdPartyComponentsLastCheck", "Fri Jan 06 2012 17:28:34 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349.ThirdPartyComponentsLastUpdate", "1312887586");
Supprimée : user_pref("CT3074349.ToolbarShrinkedFromSetup", false);
Supprimée : user_pref("CT3074349.TrusteLinkUrl", "hxxp://trust.conduit.com/CT3074349");
Supprimée : user_pref("CT3074349.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,clien[...]
Supprimée : user_pref("CT3074349.UserID", "UN21749464810289754");
Supprimée : user_pref("CT3074349.ValidationData_Search", 0);
Supprimée : user_pref("CT3074349.ValidationData_Toolbar", 0);
Supprimée : user_pref("CT3074349.WeatherNetwork", "");
Supprimée : user_pref("CT3074349.WeatherPollDate", "Mon Jan 16 2012 15:48:53 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349.WeatherUnit", "C");
Supprimée : user_pref("CT3074349.alertChannelId", "1465784");
Supprimée : user_pref("CT3074349.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...]
Supprimée : user_pref("CT3074349.globalFirstTimeInfoLastCheckTime", "Thu Jan 12 2012 21:01:14 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349.homepageProtectorEnableByLogin", true);
Supprimée : user_pref("CT3074349.initDone", true);
Supprimée : user_pref("CT3074349.isAppTrackingManagerOn", true);
Supprimée : user_pref("CT3074349.isFirstRadioInstallation", false);
Supprimée : user_pref("CT3074349.myStuffEnabled", true);
Supprimée : user_pref("CT3074349.myStuffPublihserMinWidth", 400);
Supprimée : user_pref("CT3074349.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Supprimée : user_pref("CT3074349.myStuffServiceIntervalMM", 1440);
Supprimée : user_pref("CT3074349.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Supprimée : user_pref("CT3074349.oldAppsList", "129446538071425236,129574421762864744,111,129574421763479940,100[...]
Supprimée : user_pref("CT3074349.searchProtectorDialogDelayInSec", 10);
Supprimée : user_pref("CT3074349.searchProtectorEnableByLogin", true);
Supprimée : user_pref("CT3074349.testingCtid", "");
Supprimée : user_pref("CT3074349.toolbarAppMetaDataLastCheckTime", "Thu Jan 12 2012 21:01:12 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349.toolbarContextMenuLastCheckTime", "Thu Jan 12 2012 21:01:04 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349.usagesFlag", 1);
Supprimée : user_pref("CommunityToolbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT3074349&Search[...]
Supprimée : user_pref("CommunityToolbar.ConduitSearchList", "PhotoJoy US Customized Web Search,Vgrabber Customiz[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT3059010/CT3059010[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT3074349/CT3074349[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1450550/1446205/CA", "\"0\"[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1465784/1461438/CA", "\"0\"[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT3059010", [...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT3074349", [...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&lo[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&loc[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&lo[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&local[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.6.[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.8.[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT3059010",[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT3074349",[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-services.com/?ctid=CT3059010&octid=[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-services.com/?ctid=CT3074349&octid=[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Midnight/equalizer[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Midnight/minimize.[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Midnight/play.gif"[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Midnight/stop.gif"[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Midnight/vol.gif",[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/StarFleet/equalize[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/StarFleet/minimize[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/StarFleet/play.gif[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/StarFleet/stop.gif[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/StarFleet/vol.gif"[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"dbf[...]
Supprimée : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\ADMINISTRATOR\\AppData\\Roaming\\Mo[...]
Supprimée : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.8.0.8");
Supprimée : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.pr[...]
Supprimée : user_pref("CommunityToolbar.ToolbarsList", "CT2095689,CT3074349,CT3059010");
Supprimée : user_pref("CommunityToolbar.ToolbarsList2", "CT2095689,CT3074349,CT3059010");
Supprimée : user_pref("CommunityToolbar.ToolbarsList4", "CT3074349,CT3059010");
Supprimée : user_pref("CommunityToolbar.alert.alertInfoInterval", 60);
Supprimée : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Sun Jan 10 2010 13:48:21 GMT-0500 (Est)"[...]
Supprimée : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Supprimée : user_pref("CommunityToolbar.alert.firstTimeAlertShown", true);
Supprimée : user_pref("CommunityToolbar.alert.locale", "en");
Supprimée : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Supprimée : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Sun Jan 10 2010 13:48:21 GMT-0500 (Est)");
Supprimée : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1234796400");
Supprimée : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Supprimée : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Supprimée : user_pref("CommunityToolbar.alert.showTrayIcon", false);
Supprimée : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Supprimée : user_pref("CommunityToolbar.alert.userId", "{3538e45a-ac67-4367-87ac-c5bb36101dd1}");
Supprimée : user_pref("CommunityToolbar.globalUserId", "2a5336a0-9c5d-4e85-8f1e-e08920215419");
Supprimée : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Supprimée : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Supprimée : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT3074349");
Supprimée : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Mon Jan 16 2012 15:49:0[...]
Supprimée : user_pref("CommunityToolbar.notifications.alertInfoInterval", 60);
Supprimée : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Mon Jan 16 2012 15:48:59 GMT-050[...]
Supprimée : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
Supprimée : user_pref("CommunityToolbar.notifications.firstTimeAlertShown", true);
Supprimée : user_pref("CommunityToolbar.notifications.locale", "");
Supprimée : user_pref("CommunityToolbar.notifications.loginIntervalMin", 0);
Supprimée : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Mon Jan 16 2012 15:48:51 GMT-0500 (E[...]
Supprimée : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "");
Supprimée : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
Supprimée : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
Supprimée : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
Supprimée : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
Supprimée : user_pref("CommunityToolbar.notifications.userId", "569df734-feca-4126-9063-bb93fa7468c4");
Supprimée : user_pref("CommunityToolbar.originalHomepage", "hxxp://search.conduit.com/?ctid=CT3074349&SearchSour[...]
Supprimée : user_pref("CommunityToolbar.originalSearchEngine", "PhotoJoy US Customized Web Search");
Supprimée : user_pref("browser.search.defaultthis.engineName", "Vgrabber Customized Web Search");
Supprimée : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3059010&Sea[...]
Supprimée : user_pref("browser.search.selectedEngine", "Vgrabber Customized Web Search");
Supprimée : user_pref("browser.startup.homepage", "hxxp://search.conduit.com/?ctid=CT3059010&SearchSource=13");
-\\ Google Chrome v [Impossible d'obtenir la version]
Fichier : C:\Users\ADMINISTRATOR\AppData\Local\Google\Chrome\User Data\Default\Preferences
Supprimée : "path": "C:\\Users\\ADMINISTRATOR\\AppData\\LocalLow\\Unity\\WebPlayer\\loader\\npUnity3D32[...]
*************************
AdwCleaner[S1].txt - [39187 octets] - [21/01/2012 10:22:30]
*************************
Dossier Temporaire : 32 dossier(s) et 4955 fichier(s) supprimés
########## EOF - C:\AdwCleaner[S1].txt - [39412 octets] ##########
# AdwCleaner v1.407 - Rapport créé le 21/01/2012 à 10:22:30
# Mis à jour le 18/01/2012 par Xplode
# Système d'exploitation : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Nom d'utilisateur : ADMINISTRATOR - HPERFECT (Administrateur)
# Exécuté depuis : C:\Users\ADMINISTRATOR\Desktop\adwcleaner.exe
# Option [Suppression]
***** [Services] *****
Arrêté & Supprimé : : Bandoo Coordinator
***** [Fichiers / Dossiers] *****
Dossier Supprimé : C:\ProgramData\Bandoo
Dossier Supprimé : C:\Users\ADMINISTRATOR\AppData\Roaming\Bandoo
Dossier Supprimé : C:\Users\ADMINISTRATOR\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
Dossier Supprimé : C:\Users\ADMINISTRATOR\AppData\Local\Conduit
Dossier Supprimé : C:\Users\ADMINISTRATOR\AppData\LocalLow\Conduit
Dossier Supprimé : C:\Users\ADMINISTRATOR\AppData\LocalLow\ShoppingReport2
Dossier Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandoo
Dossier Supprimé : C:\Program Files\Conduit
Dossier Supprimé : C:\Program Files\QuestScan
Dossier Supprimé : C:\Users\ADMINISTRATOR\AppData\Roaming\Mozilla\Firefox\Profiles\47qx4jlj.default\Conduit
Dossier Supprimé : C:\Users\ADMINISTRATOR\AppData\Roaming\Mozilla\Firefox\Profiles\47qx4jlj.default\ConduitCommon
Fichier Supprimé : C:\Program Files\Mozilla Firefox\.autoreg
Fichier Supprimé : C:\Users\ADMINISTRATOR\AppData\Roaming\Mozilla\Firefox\Profiles\47qx4jlj.default\searchplugins\Conduit.xml
***** [Registre] *****
[*] Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT3059010
[*] Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT3074349
Clé Supprimée : HKCU\Software\AppDataLow\Toolbar
Clé Supprimée : HKCU\Software\AppDataLow\Software\Conduit
Clé Supprimée : HKCU\Software\AppDataLow\Software\ShoppingReport2
Clé Supprimée : HKLM\SOFTWARE\bandoo
Clé Supprimée : HKLM\SOFTWARE\Conduit
Clé Supprimée : HKLM\SOFTWARE\QuestScan
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCoordinator.BandooCoordinator
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCoordinator.BandooCoordinator.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCoordinator.CoordinatorUI
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCoordinator.CoordinatorUI.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCoordinator.hxxpAsyncResult
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCoordinator.hxxpAsyncResult.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCoordinator.PlugInNotifier
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCoordinator.PlugInNotifier.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.BandooCore
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.BandooCore.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.ResourcesMngr
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.ResourcesMngr.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.SettingsMngr
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.SettingsMngr.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.StatisticMngr
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.StatisticMngr.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooIEPlugin.BandooIEPlugin
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooIEPlugin.BandooIEPlugin.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BFlashAnimator.BFlashAnimatorCtrl
Clé Supprimée : HKLM\SOFTWARE\Classes\BFlashAnimator.BFlashAnimatorCtrl.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BGIFAnimator.BGIFAnimatorCtrl
Clé Supprimée : HKLM\SOFTWARE\Classes\BGIFAnimator.BGIFAnimatorCtrl.1
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\BandooCoordinator.EXE
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\BandooCore.EXE
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\BHO.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\SoftwareUpdate.exe
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{EDE2C296-2458-4E3B-A846-4B512C0703B5}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{1301A8A5-3DFB-4731-A162-B357D00C9644}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{9C123289-82E1-4da7-A3C2-B8D28AAD114B}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{3AD7A5B6-610D-4A82-979E-0AED20920690}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{C3AB94A4-BFD0-4BBA-A331-DE504F07D2DB}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{CE1CB632-6817-47b3-8587-D05AF75D6D5A}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{EB5CEE80-030A-4ED8-8E20-454E9C68380F}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{F5379B4B-24D8-432A-9A96-BE75EE5117DB}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{F7FB2BC4-6C27-4EAC-B5E2-037B71FDE101}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{FD53FE35-4368-4B71-89D6-F29F3DB29DF1}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{EF2B6317-C367-401B-83B8-80302D6588A7}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{3c471948-f874-49f5-b338-4f214a2ee0b1}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{074E4EFE-81BB-4EA4-866E-082CB0E01070}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{0CE5B352-9D9C-41E1-9551-FCCD92820217}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{167B2B5F-2757-434A-BBDA-2FDB2003F14F}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{27F69C85-64E1-43CE-98B5-3C9F22FB408E}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{2E9A60EA-5554-49C3-BC9D-D0404DBACC62}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{3E63C9BC-DD51-4E83-ABA6-B350EAD28531}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{44CFFEF4-E7E1-44BD-B1F5-29F828ADA1B8}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{872F3C0B-4462-424c-BB9F-74C6899B9F92}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{B543EF05-9758-464E-9F37-4C28525B4A4C}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{BB76A90B-2B4C-4378-8506-9A2B6E16943C}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\RFC1156Agent
Clé Supprimée : HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\2796BAE63F1801E277261BA0D77770028F20EEE4
Clé Supprimée : HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DE28F4A4FFE5B92FA3C503D1A349A7F9962A8212
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{A1F1ECD3-4806-44C6-A869-F0DADF11C57C}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{A9005ED5-4A1D-4606-A4DF-1A25E7D7B417}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{FF871E51-2655-4D06-AED5-745962A96B32}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{33DDFC61-F531-4982-8C32-4212B7835D44}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{477F210A-2A86-4666-9C4B-1189634D2C84}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{6087829B-114F-42A1-A72B-B4AEDCEA4E5B}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{3AD7A5B6-610D-4A82-979E-0AED20920690}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{4410C118-B23C-406C-9F52-9CDABD90A5EA}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{8F5F1CB6-EA9E-40AF-A5CA-C7FD63CC1971}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{9C123289-82E1-4DA7-A3C2-B8D28AAD114B}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Bandoo
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8856F961-340A-11D0-A96B-00C04FD705A2}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{424624F4-C5DD-4e1d-BDD0-1E9C9B7799CC}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7f000001-db8e-f89c-2fec-49bf726f8c12}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9C8A3CA5-889E-4554-BEEC-EC0876E4E96A}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F9189560-573A-4fde-B055-AE7B0F4CF080}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{872F3C0B-4462-424c-BB9F-74C6899B9F92}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CE1CB632-6817-47b3-8587-D05AF75D6D5A}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Bandoo
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\QuestScan
***** [Navigateurs] *****
-\\ Internet Explorer v8.0.6001.19170
Remplacé : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.conduit.com/?SearchSource=10&ctid=CT3059010 --> hxxp://www.google.fr
-\\ Mozilla Firefox v3.0.19 (fr)
Profil : 47qx4jlj.default
Fichier : C:\Users\ADMINISTRATOR\AppData\Roaming\Mozilla\Firefox\Profiles\47qx4jlj.default\prefs.js
Supprimée : user_pref("CT2095689.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Supprimée : user_pref("CT2095689.CTID", "CT2095689");
Supprimée : user_pref("CT2095689.DialogsAlignMode", "LTR");
Supprimée : user_pref("CT2095689.EMailNotifierPollDate", "Sun Jan 10 2010 14:15:38 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.ExternalComponentPollDate128976695673694244", "Sun Jan 10 2010 13:48:22 GMT-050[...]
Supprimée : user_pref("CT2095689.ExternalComponentPollDate128982860741881426", "Sun Jan 10 2010 13:48:22 GMT-050[...]
Supprimée : user_pref("CT2095689.FeedLastCount128731247637625063", 529);
Supprimée : user_pref("CT2095689.FeedPollDate128731245136062514", "Sun Jan 10 2010 13:48:23 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.FeedPollDate128731245316218848", "Sun Jan 10 2010 13:48:23 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.FeedPollDate128731246282468810", "Sun Jan 10 2010 13:48:23 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.FeedPollDate128731246553406402", "Sun Jan 10 2010 13:48:23 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.FeedPollDate128731246684343903", "Sun Jan 10 2010 13:48:23 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.FeedPollDate128731246876375154", "Sun Jan 10 2010 13:48:23 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.FeedPollDate128731247027625394", "Sun Jan 10 2010 13:48:23 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.FeedPollDate128731247188094432", "Sun Jan 10 2010 13:48:23 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.FeedPollDate128731247334657027", "Sun Jan 10 2010 13:48:23 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.FeedPollDate128731247470125937", "Sun Jan 10 2010 13:48:23 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.FeedPollDate128731247603093789", "Sun Jan 10 2010 13:48:24 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.FeedTTL128731246282468810", 10);
Supprimée : user_pref("CT2095689.FeedTTL128731246553406402", 5);
Supprimée : user_pref("CT2095689.FeedTTL128731246876375154", 10);
Supprimée : user_pref("CT2095689.FeedTTL128731247334657027", 10);
Supprimée : user_pref("CT2095689.FeedTTL128731247470125937", 5);
Supprimée : user_pref("CT2095689.FirstTime", true);
Supprimée : user_pref("CT2095689.FirstTimeFF3", true);
Supprimée : user_pref("CT2095689.GroupingServerCheckInterval", 1440);
Supprimée : user_pref("CT2095689.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Supprimée : user_pref("CT2095689.Initialize", true);
Supprimée : user_pref("CT2095689.InitializeCommonPrefs", true);
Supprimée : user_pref("CT2095689.InstalledDate", "Sun Nov 08 2009 10:18:48 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.InvalidateCache", false);
Supprimée : user_pref("CT2095689.IsGrouping", false);
Supprimée : user_pref("CT2095689.IsMulticommunity", false);
Supprimée : user_pref("CT2095689.IsOpenThankYouPage", true);
Supprimée : user_pref("CT2095689.IsOpenUninstallPage", true);
Supprimée : user_pref("CT2095689.LanguagePackLastCheckTime", "Sun Jan 10 2010 13:48:23 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.LanguagePackReloadIntervalMM", 1440);
Supprimée : user_pref("CT2095689.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Supprimée : user_pref("CT2095689.LastLogin_2.1.0.19", "Sun Jan 10 2010 13:48:23 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.LatestVersion", "2.1.0.18");
Supprimée : user_pref("CT2095689.Locale", "fr");
Supprimée : user_pref("CT2095689.LoginCache", 4);
Supprimée : user_pref("CT2095689.MCDetectTooltipHeight", "83");
Supprimée : user_pref("CT2095689.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Supprimée : user_pref("CT2095689.MCDetectTooltipWidth", "295");
Supprimée : user_pref("CT2095689.RadioIsPodcast", false);
Supprimée : user_pref("CT2095689.RadioLastCheckTime", "Sun Jan 10 2010 13:48:23 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.RadioLastUpdateIPServer", "4");
Supprimée : user_pref("CT2095689.RadioLastUpdateServer", "128929877726170000");
Supprimée : user_pref("CT2095689.RadioMediaID", "9474917");
Supprimée : user_pref("CT2095689.RadioMediaType", "Media Player");
Supprimée : user_pref("CT2095689.RadioMenuSelectedID", "EBRadioMenu_CT20956899474917");
Supprimée : user_pref("CT2095689.RadioStationName", "RFI%20Afrique%20");
Supprimée : user_pref("CT2095689.RadioStationURL", "hxxp://wmod.streaming.rfi.fr.edgestreams.net/rfi/francais/au[...]
Supprimée : user_pref("CT2095689.SHRINK_TOOLBAR", 1);
Supprimée : user_pref("CT2095689.SearchFromAddressBarIsInit", true);
Supprimée : user_pref("CT2095689.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT209[...]
Supprimée : user_pref("CT2095689.SettingsCheckIntervalMin", 120);
Supprimée : user_pref("CT2095689.SettingsLastCheckTime", "Sun Jan 10 2010 13:48:21 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.SettingsLastUpdate", "1262855323");
Supprimée : user_pref("CT2095689.SuggestWindowWidth", "436");
Supprimée : user_pref("CT2095689.ThirdPartyComponentsInterval", 72);
Supprimée : user_pref("CT2095689.ThirdPartyComponentsLastCheck", "Thu Jan 07 2010 20:42:27 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.ThirdPartyComponentsLastUpdate", "1262855323");
Supprimée : user_pref("CT2095689.TrusteLinkUrl", "hxxp://www.truste.org/pvr.php?page=validate&softwareProgramId=[...]
Supprimée : user_pref("CT2095689.UserID", "UN53283827559369088");
Supprimée : user_pref("CT2095689.WeatherNetwork", "");
Supprimée : user_pref("CT2095689.WeatherPollDate", "Sun Jan 10 2010 13:48:24 GMT-0500 (Est)");
Supprimée : user_pref("CT2095689.WeatherUnit", "C");
Supprimée : user_pref("CT2095689.alertChannelId", "516440");
Supprimée : user_pref("CT2095689.clientLogIsEnabled", true);
Supprimée : user_pref("CT2095689.clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asm[...]
Supprimée : user_pref("CT2095689.myStuffEnabled", true);
Supprimée : user_pref("CT2095689.myStuffPublihserMinWidth", 400);
Supprimée : user_pref("CT2095689.myStuffSearchUrl", "hxxp://search.conduit.com/Results.aspx?q=SEARCH_TERM&ctid=E[...]
Supprimée : user_pref("CT2095689.myStuffServiceIntervalMM", 1440);
Supprimée : user_pref("CT2095689.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Supprimée : user_pref("CT2095689.uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Reg[...]
Supprimée : user_pref("CT3059010..clientLogIsEnabled", true);
Supprimée : user_pref("CT3059010..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...]
Supprimée : user_pref("CT3059010..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...]
Supprimée : user_pref("CT3059010.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
Supprimée : user_pref("CT3059010.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Supprimée : user_pref("CT3059010.AppTrackingLastCheckTime", "Thu Jan 12 2012 21:01:14 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.BrowserCompStateIsOpen_129644643807464463", true);
Supprimée : user_pref("CT3059010.BrowserCompStateIsOpen_129682606974435364", true);
Supprimée : user_pref("CT3059010.CTID", "CT3059010");
Supprimée : user_pref("CT3059010.CurrentServerDate", "7-1-2012");
Supprimée : user_pref("CT3059010.DSInstall", true);
Supprimée : user_pref("CT3059010.DialogsAlignMode", "LTR");
Supprimée : user_pref("CT3059010.DialogsGetterLastCheckTime", "Thu Jan 12 2012 21:01:13 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.DownloadReferralCookieData", "");
Supprimée : user_pref("CT3059010.EMailNotifierPollDate", "Mon Jan 16 2012 15:48:50 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.FirstServerDate", "19-11-2011");
Supprimée : user_pref("CT3059010.FirstTime", true);
Supprimée : user_pref("CT3059010.FirstTimeFF3", true);
Supprimée : user_pref("CT3059010.FixPageNotFoundErrors", true);
Supprimée : user_pref("CT3059010.GroupingServerCheckInterval", 1440);
Supprimée : user_pref("CT3059010.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Supprimée : user_pref("CT3059010.HPInstall", true);
Supprimée : user_pref("CT3059010.HasUserGlobalKeys", true);
Supprimée : user_pref("CT3059010.HomePageProtectorEnabled", true);
Supprimée : user_pref("CT3059010.HomepageBeforeUnload", "hxxp://search.conduit.com/?ctid=CT3059010&SearchSource=[...]
Supprimée : user_pref("CT3059010.Initialize", true);
Supprimée : user_pref("CT3059010.InitializeCommonPrefs", true);
Supprimée : user_pref("CT3059010.InstallationAndCookieDataSentCount", 3);
Supprimée : user_pref("CT3059010.InstallationId", "ConduitStubGeneric");
Supprimée : user_pref("CT3059010.InstallationType", "ConduitStubIntegration");
Supprimée : user_pref("CT3059010.InstalledDate", "Fri Nov 18 2011 18:29:31 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.InvalidateCache", false);
Supprimée : user_pref("CT3059010.IsAlertDBUpdated", true);
Supprimée : user_pref("CT3059010.IsGrouping", false);
Supprimée : user_pref("CT3059010.IsInitSetupIni", true);
Supprimée : user_pref("CT3059010.IsMulticommunity", false);
Supprimée : user_pref("CT3059010.IsOpenThankYouPage", false);
Supprimée : user_pref("CT3059010.IsOpenUninstallPage", true);
Supprimée : user_pref("CT3059010.IsProtectorsInit", true);
Supprimée : user_pref("CT3059010.LanguagePackLastCheckTime", "Thu Jan 12 2012 21:01:04 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.LanguagePackReloadIntervalMM", 1440);
Supprimée : user_pref("CT3059010.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Supprimée : user_pref("CT3059010.LastLogin_3.8.0.8", "Thu Jan 12 2012 21:01:15 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.LatestVersion", "3.8.1.0");
Supprimée : user_pref("CT3059010.Locale", "en");
Supprimée : user_pref("CT3059010.MCDetectTooltipHeight", "83");
Supprimée : user_pref("CT3059010.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Supprimée : user_pref("CT3059010.MCDetectTooltipWidth", "295");
Supprimée : user_pref("CT3059010.MyStuffEnabledAtInstallation", true);
Supprimée : user_pref("CT3059010.OriginalFirstVersion", "3.8.0.8");
Supprimée : user_pref("CT3059010.RadioIsPodcast", false);
Supprimée : user_pref("CT3059010.RadioLastCheckTime", "Mon Jan 16 2012 15:48:51 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.RadioLastUpdateIPServer", "3");
Supprimée : user_pref("CT3059010.RadioLastUpdateServer", "129557451676770000");
Supprimée : user_pref("CT3059010.RadioMediaID", "21922135");
Supprimée : user_pref("CT3059010.RadioMediaType", "Media Player");
Supprimée : user_pref("CT3059010.RadioMenuSelectedID", "EBRadioMenu_CT305901021922135");
Supprimée : user_pref("CT3059010.RadioShrinkedFromSetup", false);
Supprimée : user_pref("CT3059010.RadioStationName", "California%20Rock%20-%20Rock");
Supprimée : user_pref("CT3059010.RadioStationURL", "hxxp://www.feedlive.net/california.asx");
Supprimée : user_pref("CT3059010.SavedHomepage", "hxxp://search.conduit.com/?ctid=CT3074349&SearchSource=13");
Supprimée : user_pref("CT3059010.SearchCaption", "Vgrabber Customized Web Search");
Supprimée : user_pref("CT3059010.SearchEngineBeforeUnload", "Vgrabber Customized Web Search");
Supprimée : user_pref("CT3059010.SearchFromAddressBarIsInit", true);
Supprimée : user_pref("CT3059010.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT305[...]
Supprimée : user_pref("CT3059010.SearchInNewTabEnabled", true);
Supprimée : user_pref("CT3059010.SearchInNewTabIntervalMM", 1440);
Supprimée : user_pref("CT3059010.SearchInNewTabLastCheckTime", "Mon Jan 16 2012 15:48:50 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Supprimée : user_pref("CT3059010.SearchInNewTabUsageUrl", "hxxp://usage.hosting.toolbar.conduit-services.com/usa[...]
Supprimée : user_pref("CT3059010.SearchProtectorEnabled", true);
Supprimée : user_pref("CT3059010.SearchProtectorToolbarDisabled", false);
Supprimée : user_pref("CT3059010.SendProtectorDataViaLogin", true);
Supprimée : user_pref("CT3059010.ServiceMapLastCheckTime", "Thu Jan 12 2012 21:01:04 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.SettingsLastCheckTime", "Mon Jan 16 2012 15:48:49 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.SettingsLastUpdate", "1324548388");
Supprimée : user_pref("CT3059010.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT3059010&SearchSource=13");
Supprimée : user_pref("CT3059010.ThirdPartyComponentsInterval", 504);
Supprimée : user_pref("CT3059010.ThirdPartyComponentsLastCheck", "Fri Jan 06 2012 17:28:36 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.ThirdPartyComponentsLastUpdate", "1312887586");
Supprimée : user_pref("CT3059010.ToolbarShrinkedFromSetup", false);
Supprimée : user_pref("CT3059010.TrusteLinkUrl", "hxxp://trust.conduit.com/CT3059010");
Supprimée : user_pref("CT3059010.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,clien[...]
Supprimée : user_pref("CT3059010.UserID", "UN27425000614291983");
Supprimée : user_pref("CT3059010.WeatherNetwork", "");
Supprimée : user_pref("CT3059010.WeatherPollDate", "Mon Jan 16 2012 15:48:51 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.WeatherUnit", "C");
Supprimée : user_pref("CT3059010.alertChannelId", "1450550");
Supprimée : user_pref("CT3059010.backendstorage.cbfirsttime", "467269204E6F7620313820323031312031383A32393A33352[...]
Supprimée : user_pref("CT3059010.backendstorage.shoppingapp.gk.exipres", "576564204A616E20313120323031322031373A[...]
Supprimée : user_pref("CT3059010.backendstorage.shoppingapp.gk.geolocation", "63616E616461");
Supprimée : user_pref("CT3059010.backendstorage.url_history", "6A6176617363726970743A616368657465722834363539392[...]
Supprimée : user_pref("CT3059010.backendstorage.url_history_time", "31333235383839333736363239");
Supprimée : user_pref("CT3059010.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...]
Supprimée : user_pref("CT3059010.globalFirstTimeInfoLastCheckTime", "Thu Jan 12 2012 21:01:37 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.homepageProtectorEnableByLogin", true);
Supprimée : user_pref("CT3059010.initDone", true);
Supprimée : user_pref("CT3059010.isAppTrackingManagerOn", true);
Supprimée : user_pref("CT3059010.isFirstRadioInstallation", false);
Supprimée : user_pref("CT3059010.myStuffEnabled", true);
Supprimée : user_pref("CT3059010.myStuffPublihserMinWidth", 400);
Supprimée : user_pref("CT3059010.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Supprimée : user_pref("CT3059010.myStuffServiceIntervalMM", 1440);
Supprimée : user_pref("CT3059010.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Supprimée : user_pref("CT3059010.oldAppsList", "10000001,10000002,111,129559884184450601,129559884345153249,1295[...]
Supprimée : user_pref("CT3059010.revertSettingsEnabled", false);
Supprimée : user_pref("CT3059010.searchProtectorDialogDelayInSec", 10);
Supprimée : user_pref("CT3059010.searchProtectorEnableByLogin", true);
Supprimée : user_pref("CT3059010.testingCtid", "");
Supprimée : user_pref("CT3059010.toolbarAppMetaDataLastCheckTime", "Thu Jan 12 2012 21:01:12 GMT-0500 (Est)");
Supprimée : user_pref("CT3059010.toolbarContextMenuLastCheckTime", "Thu Jan 12 2012 21:01:30 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349..clientLogIsEnabled", true);
Supprimée : user_pref("CT3074349..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...]
Supprimée : user_pref("CT3074349..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...]
Supprimée : user_pref("CT3074349.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Supprimée : user_pref("CT3074349.AppTrackingLastCheckTime", "Thu Jan 12 2012 21:01:14 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349.CTID", "CT3074349");
Supprimée : user_pref("CT3074349.CurrentServerDate", "7-1-2012");
Supprimée : user_pref("CT3074349.DialogsAlignMode", "LTR");
Supprimée : user_pref("CT3074349.DialogsGetterLastCheckTime", "Thu Jan 12 2012 21:01:13 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349.DownloadReferralCookieData", "");
Supprimée : user_pref("CT3074349.FirstServerDate", "24-10-2011");
Supprimée : user_pref("CT3074349.FirstTime", true);
Supprimée : user_pref("CT3074349.FirstTimeFF3", true);
Supprimée : user_pref("CT3074349.FixPageNotFoundErrors", true);
Supprimée : user_pref("CT3074349.GroupingServerCheckInterval", 1440);
Supprimée : user_pref("CT3074349.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Supprimée : user_pref("CT3074349.HasUserGlobalKeys", true);
Supprimée : user_pref("CT3074349.Initialize", true);
Supprimée : user_pref("CT3074349.InitializeCommonPrefs", true);
Supprimée : user_pref("CT3074349.InstallationAndCookieDataSentCount", 3);
Supprimée : user_pref("CT3074349.InstallationType", "UnknownIntegration");
Supprimée : user_pref("CT3074349.InstalledDate", "Fri Oct 21 2011 21:51:43 GMT-0400");
Supprimée : user_pref("CT3074349.InvalidateCache", false);
Supprimée : user_pref("CT3074349.IsAlertDBUpdated", true);
Supprimée : user_pref("CT3074349.IsGrouping", false);
Supprimée : user_pref("CT3074349.IsInitSetupIni", true);
Supprimée : user_pref("CT3074349.IsMulticommunity", false);
Supprimée : user_pref("CT3074349.IsOpenThankYouPage", false);
Supprimée : user_pref("CT3074349.IsOpenUninstallPage", true);
Supprimée : user_pref("CT3074349.LanguagePackLastCheckTime", "Thu Jan 12 2012 21:01:04 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349.LanguagePackReloadIntervalMM", 1440);
Supprimée : user_pref("CT3074349.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
Supprimée : user_pref("CT3074349.LastLogin_3.6.0.10", "Thu Jan 12 2012 21:01:15 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349.LatestVersion", "3.8.1.0");
Supprimée : user_pref("CT3074349.Locale", "en");
Supprimée : user_pref("CT3074349.MCDetectTooltipHeight", "83");
Supprimée : user_pref("CT3074349.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Supprimée : user_pref("CT3074349.MCDetectTooltipWidth", "295");
Supprimée : user_pref("CT3074349.MyStuffEnabledAtInstallation", true);
Supprimée : user_pref("CT3074349.OriginalFirstVersion", "3.6.0.10");
Supprimée : user_pref("CT3074349.RadioIsPodcast", false);
Supprimée : user_pref("CT3074349.RadioLastCheckTime", "Mon Jan 16 2012 15:48:52 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349.RadioLastUpdateIPServer", "3");
Supprimée : user_pref("CT3074349.RadioLastUpdateServer", "3");
Supprimée : user_pref("CT3074349.RadioMediaID", "9962");
Supprimée : user_pref("CT3074349.RadioMediaType", "Media Player");
Supprimée : user_pref("CT3074349.RadioMenuSelectedID", "EBRadioMenu_CT30743499962");
Supprimée : user_pref("CT3074349.RadioShrinkedFromSetup", false);
Supprimée : user_pref("CT3074349.RadioStationName", "California%20Rock");
Supprimée : user_pref("CT3074349.RadioStationURL", "hxxp://feedlive.net/california.asx");
Supprimée : user_pref("CT3074349.SavedHomepage", "hxxp://search.conduit.com/?ctid=CT2095689&SearchSource=13");
Supprimée : user_pref("CT3074349.SearchFromAddressBarIsInit", true);
Supprimée : user_pref("CT3074349.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT307[...]
Supprimée : user_pref("CT3074349.SearchInNewTabEnabled", true);
Supprimée : user_pref("CT3074349.SearchInNewTabIntervalMM", 1440);
Supprimée : user_pref("CT3074349.SearchInNewTabLastCheckTime", "Mon Jan 16 2012 15:48:51 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
Supprimée : user_pref("CT3074349.SearchInNewTabUsageUrl", "hxxp://usage.hosting.toolbar.conduit-services.com/usa[...]
Supprimée : user_pref("CT3074349.ServiceMapLastCheckTime", "Thu Jan 12 2012 21:01:04 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349.SettingsLastCheckTime", "Mon Jan 16 2012 15:48:50 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349.SettingsLastUpdate", "1321973065");
Supprimée : user_pref("CT3074349.ThirdPartyComponentsInterval", 504);
Supprimée : user_pref("CT3074349.ThirdPartyComponentsLastCheck", "Fri Jan 06 2012 17:28:34 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349.ThirdPartyComponentsLastUpdate", "1312887586");
Supprimée : user_pref("CT3074349.ToolbarShrinkedFromSetup", false);
Supprimée : user_pref("CT3074349.TrusteLinkUrl", "hxxp://trust.conduit.com/CT3074349");
Supprimée : user_pref("CT3074349.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,clien[...]
Supprimée : user_pref("CT3074349.UserID", "UN21749464810289754");
Supprimée : user_pref("CT3074349.ValidationData_Search", 0);
Supprimée : user_pref("CT3074349.ValidationData_Toolbar", 0);
Supprimée : user_pref("CT3074349.WeatherNetwork", "");
Supprimée : user_pref("CT3074349.WeatherPollDate", "Mon Jan 16 2012 15:48:53 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349.WeatherUnit", "C");
Supprimée : user_pref("CT3074349.alertChannelId", "1465784");
Supprimée : user_pref("CT3074349.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...]
Supprimée : user_pref("CT3074349.globalFirstTimeInfoLastCheckTime", "Thu Jan 12 2012 21:01:14 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349.homepageProtectorEnableByLogin", true);
Supprimée : user_pref("CT3074349.initDone", true);
Supprimée : user_pref("CT3074349.isAppTrackingManagerOn", true);
Supprimée : user_pref("CT3074349.isFirstRadioInstallation", false);
Supprimée : user_pref("CT3074349.myStuffEnabled", true);
Supprimée : user_pref("CT3074349.myStuffPublihserMinWidth", 400);
Supprimée : user_pref("CT3074349.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
Supprimée : user_pref("CT3074349.myStuffServiceIntervalMM", 1440);
Supprimée : user_pref("CT3074349.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
Supprimée : user_pref("CT3074349.oldAppsList", "129446538071425236,129574421762864744,111,129574421763479940,100[...]
Supprimée : user_pref("CT3074349.searchProtectorDialogDelayInSec", 10);
Supprimée : user_pref("CT3074349.searchProtectorEnableByLogin", true);
Supprimée : user_pref("CT3074349.testingCtid", "");
Supprimée : user_pref("CT3074349.toolbarAppMetaDataLastCheckTime", "Thu Jan 12 2012 21:01:12 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349.toolbarContextMenuLastCheckTime", "Thu Jan 12 2012 21:01:04 GMT-0500 (Est)");
Supprimée : user_pref("CT3074349.usagesFlag", 1);
Supprimée : user_pref("CommunityToolbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT3074349&Search[...]
Supprimée : user_pref("CommunityToolbar.ConduitSearchList", "PhotoJoy US Customized Web Search,Vgrabber Customiz[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT3059010/CT3059010[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT3074349/CT3074349[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1450550/1446205/CA", "\"0\"[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1465784/1461438/CA", "\"0\"[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT3059010", [...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT3074349", [...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&lo[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&loc[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&lo[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&local[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.6.[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.8.[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT3059010",[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT3074349",[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-services.com/?ctid=CT3059010&octid=[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-services.com/?ctid=CT3074349&octid=[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Midnight/equalizer[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Midnight/minimize.[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Midnight/play.gif"[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Midnight/stop.gif"[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Midnight/vol.gif",[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/StarFleet/equalize[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/StarFleet/minimize[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/StarFleet/play.gif[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/StarFleet/stop.gif[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/StarFleet/vol.gif"[...]
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en", "\"dbf[...]
Supprimée : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\ADMINISTRATOR\\AppData\\Roaming\\Mo[...]
Supprimée : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.8.0.8");
Supprimée : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.pr[...]
Supprimée : user_pref("CommunityToolbar.ToolbarsList", "CT2095689,CT3074349,CT3059010");
Supprimée : user_pref("CommunityToolbar.ToolbarsList2", "CT2095689,CT3074349,CT3059010");
Supprimée : user_pref("CommunityToolbar.ToolbarsList4", "CT3074349,CT3059010");
Supprimée : user_pref("CommunityToolbar.alert.alertInfoInterval", 60);
Supprimée : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Sun Jan 10 2010 13:48:21 GMT-0500 (Est)"[...]
Supprimée : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Supprimée : user_pref("CommunityToolbar.alert.firstTimeAlertShown", true);
Supprimée : user_pref("CommunityToolbar.alert.locale", "en");
Supprimée : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Supprimée : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Sun Jan 10 2010 13:48:21 GMT-0500 (Est)");
Supprimée : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1234796400");
Supprimée : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Supprimée : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Supprimée : user_pref("CommunityToolbar.alert.showTrayIcon", false);
Supprimée : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Supprimée : user_pref("CommunityToolbar.alert.userId", "{3538e45a-ac67-4367-87ac-c5bb36101dd1}");
Supprimée : user_pref("CommunityToolbar.globalUserId", "2a5336a0-9c5d-4e85-8f1e-e08920215419");
Supprimée : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Supprimée : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Supprimée : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT3074349");
Supprimée : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Mon Jan 16 2012 15:49:0[...]
Supprimée : user_pref("CommunityToolbar.notifications.alertInfoInterval", 60);
Supprimée : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Mon Jan 16 2012 15:48:59 GMT-050[...]
Supprimée : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
Supprimée : user_pref("CommunityToolbar.notifications.firstTimeAlertShown", true);
Supprimée : user_pref("CommunityToolbar.notifications.locale", "");
Supprimée : user_pref("CommunityToolbar.notifications.loginIntervalMin", 0);
Supprimée : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Mon Jan 16 2012 15:48:51 GMT-0500 (E[...]
Supprimée : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "");
Supprimée : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
Supprimée : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
Supprimée : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
Supprimée : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
Supprimée : user_pref("CommunityToolbar.notifications.userId", "569df734-feca-4126-9063-bb93fa7468c4");
Supprimée : user_pref("CommunityToolbar.originalHomepage", "hxxp://search.conduit.com/?ctid=CT3074349&SearchSour[...]
Supprimée : user_pref("CommunityToolbar.originalSearchEngine", "PhotoJoy US Customized Web Search");
Supprimée : user_pref("browser.search.defaultthis.engineName", "Vgrabber Customized Web Search");
Supprimée : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3059010&Sea[...]
Supprimée : user_pref("browser.search.selectedEngine", "Vgrabber Customized Web Search");
Supprimée : user_pref("browser.startup.homepage", "hxxp://search.conduit.com/?ctid=CT3059010&SearchSource=13");
-\\ Google Chrome v [Impossible d'obtenir la version]
Fichier : C:\Users\ADMINISTRATOR\AppData\Local\Google\Chrome\User Data\Default\Preferences
Supprimée : "path": "C:\\Users\\ADMINISTRATOR\\AppData\\LocalLow\\Unity\\WebPlayer\\loader\\npUnity3D32[...]
*************************
AdwCleaner[S1].txt - [39187 octets] - [21/01/2012 10:22:30]
*************************
Dossier Temporaire : 32 dossier(s) et 4955 fichier(s) supprimés
########## EOF - C:\AdwCleaner[S1].txt - [39412 octets] ##########
bonsoir, je vous envoie le rapport du malwarebytes:
Malwarebytes Anti-Malware 1.60.0.1800
www.malwarebytes.org
Version de la base de données: v2012.01.21.02
Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 8.0.6001.19170
ADMINISTRATOR :: HPERFECT [administrateur]
21/01/2012 18:42:04
mbam-log-2012-01-21 (18-42-04).txt
Type d'examen: Examen complet
Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
Options d'examen désactivées: P2P
Elément(s) analysé(s): 412383
Temps écoulé: 1 heure(s), 48 minute(s), 57 seconde(s)
Processus mémoire détecté(s): 0
(Aucun élément nuisible détecté)
Module(s) mémoire détecté(s): 0
(Aucun élément nuisible détecté)
Clé(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)
Valeur(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)
Elément(s) de données du Registre détecté(s): 0
(Aucun élément nuisible détecté)
Dossier(s) détecté(s): 0
(Aucun élément nuisible détecté)
Fichier(s) détecté(s): 1
C:\Users\ADMINISTRATOR\Downloads\SetupPlaySushi.exe (PUP.PlaySushi) -> Aucune action effectuée.
(fin)
Malwarebytes Anti-Malware 1.60.0.1800
www.malwarebytes.org
Version de la base de données: v2012.01.21.02
Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 8.0.6001.19170
ADMINISTRATOR :: HPERFECT [administrateur]
21/01/2012 18:42:04
mbam-log-2012-01-21 (18-42-04).txt
Type d'examen: Examen complet
Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
Options d'examen désactivées: P2P
Elément(s) analysé(s): 412383
Temps écoulé: 1 heure(s), 48 minute(s), 57 seconde(s)
Processus mémoire détecté(s): 0
(Aucun élément nuisible détecté)
Module(s) mémoire détecté(s): 0
(Aucun élément nuisible détecté)
Clé(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)
Valeur(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)
Elément(s) de données du Registre détecté(s): 0
(Aucun élément nuisible détecté)
Dossier(s) détecté(s): 0
(Aucun élément nuisible détecté)
Fichier(s) détecté(s): 1
C:\Users\ADMINISTRATOR\Downloads\SetupPlaySushi.exe (PUP.PlaySushi) -> Aucune action effectuée.
(fin)
Bonjour
1)Tu n'a pas supprimé la sélection comme il te l'était proposé.
Fait le nécessaire;merci.
2)Poste moi un nouveau rapport ZHPDiag.
Utilise bien un des liens proposé pour me le joindre
Merci
@+
1)Tu n'a pas supprimé la sélection comme il te l'était proposé.
Fait le nécessaire;merci.
2)Poste moi un nouveau rapport ZHPDiag.
Utilise bien un des liens proposé pour me le joindre
Merci
@+
Bjr,
1)j'ai supprimé la selection avec succes!
2)voici le nouveau rapport de ZHPDiag:
Rapport de ZHPDiag v1.28.313 par Nicolas Coolman, Update du 18/01/2012
Run by ADMINISTRATOR at 22/01/2012 08:04:14
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Web site : http://nicolascoolman.skyrock.com/
State : Nouvelle version disponible
---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.19170
MFIE: Mozilla Firefox v3.0.19 (fr) (Defaut)
GCIE: Google Chrome v16.0.912.75
OBIE: Safari v5.33.21.1
---\\ Windows Product Information
~ Langage: Français
Windows Vista Home Premium Edition, 32-bit Service Pack 2 (Build 6002)
Windows Server License Manager Script : OK
~ Vista, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : WQD8Q
Windows License : OK
Windows Automatic Updates : OK
---\\ System Information
~ Processor: x86 Family 15 Model 67 Stepping 3, AuthenticAMD
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2941 MB (41% free)
System Restore: Activé (Enable)
System drive C: has 256 GB (56%) free of 456 GB
---\\ Logged in mode
~ Computer Name: HPERFECT
~ User Name: ADMINISTRATOR
~ All Users Names: ADMINISTRATOR, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\ADMINISTRATOR\AppData\Roaming\
~ %Desktop% : C:\Users\ADMINISTRATOR\Desktop\
~ %Favorites% : C:\Users\ADMINISTRATOR\Favorites\
~ %LocalAppData% : C:\Users\ADMINISTRATOR\AppData\Local\
~ %StartMenu% : C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\system32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 256 Go of 456 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 3 Go of 9 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ CD-ROM drive (Not Inserted)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
J:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: Modified
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowMyComputer: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) (.11/04/2009 - 01:27:36.) -- C:\Windows\Explorer.exe [2926592]
[MD5.4B555106290BD117334E9A08761C035A] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) (.02/11/2006 - 04:45:37.) -- C:\Windows\system32\rundll32.exe [44544]
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.20/01/2008 - 21:23:42.) -- C:\Windows\system32\Wininit.exe [96768]
[MD5.4E45F092670EEE0563AA9E1A7C8A1217] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.03/11/2011 - 01:22:04.) -- C:\Windows\system32\wininet.dll [916992]
[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/04/2009 - 01:28:13.) -- C:\Windows\system32\Winlogon.exe [314368]
[MD5.95F5FF73B076576C41740F1A842B9B57] - (.Microsoft Corporation - DLL client de l'API uilisateur de Windows multi-utilisateurs.) (.23/02/2008 - 15:20:50.) -- C:\Windows\system32\fr-FR\user32.dll.mui [20480]
[MD5.3911B972B55FEA0478476B2E777B29FA] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.21/04/2011 - 08:58:27.) -- C:\Windows\system32\drivers\AFD.sys [273408]
[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.11/04/2009 - 01:32:26.) -- C:\Windows\system32\drivers\atapi.sys [19944]
[MD5.7ADD03E75BEB9E6DD102C3081D29840A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.20/01/2008 - 21:23:51.) -- C:\Windows\system32\drivers\Cdfs.sys [70144]
[MD5.6B4BFFB9BECD728097024276430DB314] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.10/04/2009 - 23:39:17.) -- C:\Windows\system32\drivers\Cdrom.sys [67072]
[MD5.622C41A07CA7E6DD91770F50D532CB6C] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.14/04/2011 - 09:59:03.) -- C:\Windows\system32\drivers\DfsC.sys [75264]
[MD5.062452B7FFD68C8C042A6261FE8DFF4A] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.10/04/2009 - 23:42:42.) -- C:\Windows\system32\drivers\HDAudBus.sys [561152]
[MD5.22D56C8184586B7A1F6FA60BE5F5A2BD] - (.Microsoft Corporation - Pilote de port i8042.) (.20/01/2008 - 21:23:20.) -- C:\Windows\system32\drivers\i8042prt.sys [54784]
[MD5.8793643A67B42CEC66490B2A0CF92D68] - (.Microsoft Corporation - IP Network Address Translator.) (.20/01/2008 - 21:24:25.) -- C:\Windows\system32\drivers\IpNat.sys [100864]
[MD5.1E94971C4B446AB2290DEB71D01CF0C2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.29/04/2011 - 08:24:40.) -- C:\Windows\system32\drivers\MRxSmb.sys [106496]
[MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6] - (.Microsoft Corporation - MBT Transport driver.) (.10/04/2009 - 23:45:37.) -- C:\Windows\system32\drivers\netBT.sys [185856]
[MD5.6A4A98CEE84CF9E99564510DDA4BAA47] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.11/04/2009 - 01:32:49.) -- C:\Windows\system32\drivers\ntfs.sys [1083880]
[MD5.0FA9B5055484649D63C303FE404E5F4D] - (.Microsoft Corporation - Pilote de port parallèle.) (.02/11/2006 - 03:51:30.) -- C:\Windows\system32\drivers\Parport.sys [79360]
[MD5.A214ADBAF4CB47DD2728859EF31F26B0] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/01/2008 - 21:24:55.) -- C:\Windows\system32\drivers\Rasl2tp.sys [76288]
[MD5.FBC0BACD9C3D7F6956853F64A66E252D] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.20/01/2008 - 21:23:01.) -- C:\Windows\system32\drivers\rdpdr.sys [248832]
[MD5.7B75299A4D201D6A6533603D6914AB04] - (.Microsoft Corporation - SMB Transport driver.) (.10/04/2009 - 23:45:22.) -- C:\Windows\system32\drivers\smb.sys [66560]
[MD5.76B06EB8A01FC8624D699E7045303E54] - (.Microsoft Corporation - TDI Translation Driver.) (.10/04/2009 - 23:45:56.) -- C:\Windows\system32\drivers\tdx.sys [72192]
[MD5.147281C01FCB1DF9252DE2A10D5E7093] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.11/04/2009 - 01:32:55.) -- C:\Windows\system32\drivers\volsnap.sys [226280]
~ Scan Generic Processes in 00mn 03s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 34/3009
~ Mes musiques (My Musics) : 8/182
~ Mes Videos (My Videos) : 1/8
~ Mes Favoris (My Favorites) : Non accessible (Not found)
~ Mes Documents (My Documents) : 90/2930
~ Mon Bureau (My Desktop) : 7/3296
~ Menu demarrer (Programs) : 6/31
~ Scan Hidden Files in 00mn 07s
---\\ Processus lancés
[MD5.9DBD3A332A734076F24A01150EB12F9C] - (.Conexant Systems, Inc. - PRISM Profiles Server Module.) -- C:\Windows\system32\PRISMSVR.EXE [356441] [PID.672]
[MD5.0D392EDE3B97E0B3131B2F63EF1DB94E] - (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe [1008184] [PID.876]
[MD5.D93985F5D87DF1A119E939EADB5C4B9E] - (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe [6266880] [PID.2176]
[MD5.9A4322EE420D6FACD4D4B1FF6CB856B1] - (.Hewlett-Packard Company - hpsysdrv.) -- C:\hp\support\hpsysdrv.exe [65536] [PID.2240]
[MD5.B1361669BDC6ED612C35B7C67ADA2240] - (.OsdMaestro - OsdMaestro main program.) -- C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe [118784] [PID.2304]
[MD5.93DB1FF92B03D24738A71E6E4992DFD3] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [248552] [PID.2320]
[MD5.63F938625CAA8854E31B9D06A3E13E8D] - (.Microsoft Corporation - Microsoft LifeCam VX6000 Device Application.) -- C:\Windows\vVX6000.exe [994072] [PID.2372]
[MD5.297C70C6200B2C57CCACFE3D64933A13] - (.www.IslamicFinder.org - Automatic Athan (Azan) five times a day f.) -- C:\Program Files\Athan\Athan.exe [1105920] [PID.2380]
[MD5.FB0C8699B87F7140BB6201BE7B4B6778] - (.Pas de propriétaire - CameraMonitor Application.) -- C:\Windows\vsnpstd3.exe [827392] [PID.2408]
[MD5.D73B8082866AE72FB62C7186E556C6FB] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe [198160] [PID.2444]
[MD5.BAD6BEA0DE1F69C82BDB74378CE0C20A] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288] [PID.2476]
[MD5.52D28AE9E168BA60F2DFA00EDD101B14] - (.Research In Motion Limited - Launch Agent Service.) -- C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe [79192] [PID.2512]
[MD5.99721F1129BD7C594CBC722992D06D0D] - (.Microsoft Corp. - Barre d'outils MSN®.) -- C:\Program Files\MSN Toolbar\Platform\4.0.0357.1\mswinext.exe [240992] [PID.2520]
[MD5.D743372A621ED03A274539A88EEB3450] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [421736] [PID.2616]
[MD5.F7226AA410954185160067D5FA82F3F2] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [3744552] [PID.2624]
[MD5.5D61BE7DB55B026A5D61A3EED09D0EAD] - (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408] [PID.]
[MD5.A0E98C4C12FA1902C0575B248D159F25] - (.PC Tools - Registry Mechanic Vista Startup Tray.) -- C:\Program Files\Registry Mechanic\RMTray.exe [812952] [PID.2736]
[MD5.BF08674925F151BD4537B89A493E3E0C] - (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehtray.exe [125952] [PID.2748]
[MD5.009811BD21D0BD7BA5C7765565505764] - (.Hewlett-Packard - HP Advisor.) -- C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1644088] [PID.2756]
[MD5.ECF7042E33204DBEAE8295427478C028] - (.BitTorrent, Inc. - µTorrent.) -- C:\Program Files\uTorrent\uTorrent.exe [399736] [PID.2768]
[MD5.896A1DB9A972AD2339C2E8569EC926D1] - (.Safer Networking Limited - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2144088] [PID.2804]
[MD5.EAA666E9DD8DCDA6E075087091CB85EE] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [275072] [PID.2820]
[MD5.0F4195B9B348DE5CF9B822F81704B20E] - (.Microsoft Corporation - Media Center Media Status Aggregator Servic.) -- C:\Windows\ehome\ehmsas.exe [37376] [PID.3104]
[MD5.E6B7840680669EE51D6A6A886D3EB4B4] - (.IncrediMail, Ltd. - PhotoJoy Application.) -- C:\Program Files\PhotoJoy\bin\PjApp.exe [480640] [PID.3628]
[MD5.2D821AFA5A1A9CA7F9F997A1AAD09E72] - (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe [168960] [PID.4728]
[MD5.C180E890FFE0FDED8306427D3C836AF2] - (.Hewlett-Packard Co. - HP CUE Status Root.) -- C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe [174952] [PID.308]
[MD5.B29A08A0CB56CD5A4B9C53A011819657] - (.Hewlett-Packard Co. - HP CUE Alert Popup Window Objects.) -- C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe [565096] [PID.3032]
[MD5.66BB5B07696219FA334452D6F51FD648] - (.Hewlett-Packard - GPCore COM object.) -- C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe [366720] [PID.4904]
[MD5.7CAC10A1C258DFCB5ADE563BAE6D2F15] - (.Hewlett-Packard Company - KBD EXE.) -- C:\hp\kbd\kbd.exe [67128] [PID.2556]
[MD5.6080A176D09435FC8E6E800996656E18] - (.Microsoft Corporation - Console IME.) -- C:\Windows\system32\conime.exe [69120] [PID.6136]
[MD5.CCDB0B2D1F2E016966B1DB1097E24842] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [638240] [PID.6504]
[MD5.85D374F30A2015D795B1E8D1258866D4] - (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files\HP\Digital Imaging\smart web printing\hpswp_clipbook.exe [116280] [PID.5740]
[MD5.461A87D7A4304BDA228CF1DBB86D3CE9] - (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\system32\Macromed\Flash\FlashUtil10v_ActiveX.exe [243360] [PID.7636]
[MD5.62BB79160F86CD962F312C68C6239BFD] - (.Microsoft Corporation - Windows Update.) -- C:\Windows\system32\wuauclt.exe [53472] [PID.6912]
[MD5.ED570E740CB5E987E8BCDB1EA393C3E2] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [2210304] [PID.7892]
[MD5.CF7769F13B3ECC5E2BF1B3D1C5831AE8] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 175.2.) -- C:\Windows\system32\nvvsvc.exe [118784] [PID.]
[MD5.862BB4CBC05D80C5B45BE430E5EF872F] - (.Microsoft Corporation - Service de gestion des licences Microsoft.) -- C:\Windows\system32\SLsvc.exe [3408896] [PID.]
[MD5.996E6D052438E8D8DFD501F31560B2E0] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [44768] [PID.]
[MD5.D8E18021F91AD79CA8491CB5A5DA22D4] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [55144] [PID.]
[MD5.DB5BEA73EDAF19AC68B2C0FAD0F92B1A] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [390504] [PID.]
[MD5.DFEFF67508D3A9AEB1A85D7B0F513B24] - (.Hewlett-Packard Company - LightScribe Service.) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728] [PID.]
[MD5.DB794C66FAC2CA24C3E99F11EB502FB7] - (.Conexant Systems, Inc. - PRISM Server Service Module.) -- C:\Windows\system32\PRISMSVC.EXE [57433] [PID.]
[MD5.2C8EEB0B10665C79B3DA05BD63FE0897] - (...) -- C:\Windows\system32\scm.exe [76288] [PID.]
[MD5.7B2068DC352F735EC6E9C9C8DBBB36D9] - (...) -- C:\ProgramData\Mono\bin\mono.exe [5745] [PID.]
[MD5.82EA3814431D24FBC692F27EA67E176B] - (.TeamViewer GmbH - TeamViewer Service.) -- C:\Program Files\TeamViewer\Version4\TeamViewer_Service.exe [185640] [PID.]
[MD5.CD5F291A1161F15896D1A4D63DAFF5DF] - (.Conexant Systems, Inc. - Modem Audio Service.) -- C:\Windows\system32\DRIVERS\xaudio.exe [386560] [PID.]
[MD5.33642C17C232AA272C68E446A2619899] - (.Apple Inc. - iPodService Module (32-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [821608] [PID.]
[MD5.C7FBDD1ED42F82BFA35167A5C9803EA3] - (.Microsoft Corporation - PresentationFontCache.exe.) -- C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [43904] [PID.]
[MD5.2843669C89A00950195F51DBB5DB0B8E] - (.Symantec Corporation - Automatic LiveUpdate Scheduler Service.) -- C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe [238968] [PID.]
[MD5.0D26C438E2938A3E6BDD91173BC96FF0] - (.Hewlett-Packard - HP Health Check Service.) -- c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [65536] [PID.]
~ Scan Processes Running in 00mn 02s
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\ADMINISTRATOR\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] http://www.questscan.com
G0 - GCSP: Preference [User Data\Default][HomePage] https://www.google.com/?gws_rd=ssl
G2 - GCE: Preference [User Data\Default] [hijjbihbplfjiigoekigjjekncfflbmh] Likeophobia v.1.1 (Activé)
~ Scan Google Browser in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\ADMINISTRATOR\AppData\Roaming\Mozilla\Firefox\Profiles\47qx4jlj.default\prefs.js
M3 - MFPP: Plugins - [ADMINISTRATOR] -- C:\Users\ADMINISTRATOR\AppData\Roaming\Mozilla\Firefox\Profiles\47qx4jlj.default\searchplugins\daemon-search.xml
M3 - MFPP: Plugins - [ADMINISTRATOR] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [ADMINISTRATOR] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [ADMINISTRATOR] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [ADMINISTRATOR] -- C:\Program Files\Mozilla FireFox\searchplugins\MediaDICO-fr.xml
M3 - MFPP: Plugins - [ADMINISTRATOR] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [ADMINISTRATOR] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
M2 - MFEP: prefs.js [ADMINISTRATOR - 47qx4jlj.default\DTToolbar@toolbarnet.com] [] DAEMON Tools Toolbar v (.DT Soft Ltd..)
M2 - MFEP: prefs.js [ADMINISTRATOR - 47qx4jlj.default\firefox@bandoo.com] [] Bandoo for Firefox v5.0 (.DT Soft Ltd..)
M2 - MFEP: prefs.js [ADMINISTRATOR - 47qx4jlj.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant v1.1 (.Microsoft.)
M2 - MFEP: prefs.js [ADMINISTRATOR - 47qx4jlj.default\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}] [] Vgrabber Community Toolbar v3.8.0.8 (.Conduit Ltd..)
M2 - MFEP: prefs.js [ADMINISTRATOR - 47qx4jlj.default\{f2c43291-151e-499c-98a7-923c120b88fa}] [] PhotoJoy US Community Toolbar v3.6.0.10 (.Conduit Ltd..)
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins\np-mswmp.dll
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.DivX,Inc. - DivX® Web Player.) -- C:\Program Files\Mozilla Firefox\Plugins\npdivx32.dll
P2 - FPN:Firefox Plugin Navigator . (.DivX, Inc - npdivxplayerplugin.) -- C:\Program Files\Mozilla Firefox\Plugins\npDivxPlayerPlugin.dll
P2 - FPN:Firefox Plugin Navigator . (.NHN USA Inc. - ijji Auto Install Plugin for Mozilla.) -- C:\Program Files\Mozilla Firefox\Plugins\npijjiautoinstallpluginff.dll
P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFF12.DLL
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 8.2.5.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\Mozilla Firefox\Plugins\nppl3260.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - RealJukebox Netscape Plugin.) -- C:\Program Files\Mozilla Firefox\Plugins\nprjplug.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - 6.0.12.448.) -- C:\Program Files\Mozilla Firefox\Plugins\nprpjplug.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\System32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@adobe.com/ShockwavePlayer] - (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.5.9.615.) -- C:\Windows\System32\Adobe\Director\np32dsw.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@divx.com/DivX Browser Plugin,version=1.0.0] - (.DivX,Inc. - DivX® Web Player.) -- C:\Program Files\DivX\DivX Web Player\npdivx32.dll
P2 - FPN: [HKLM] [@divx.com/DivX Content Upload Plugin,version=1.0.0] - (.DivX,Inc. - DivX® Content Upload Plugin.) -- C:\Program Files\DivX\DivX Content Uploader\npUpload.dll
P2 - FPN: [HKLM] [@divx.com/DivX Player Plugin,version=1.0.0] - (.DivX, Inc - npdivxplayerplugin.) -- C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll
P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_21 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60831.0.) -- C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpWinExt,version=4.0] - (.Microsoft Corporation - MSN® Toolbar.) -- C:\Program Files\MSN Toolbar\Platform\4.0.0357.1\npwinext.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.5] - (.Microsoft Corp. - Office Live Update v1.5.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8117.0416] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [@real.com/nppl3260;version=6.0.12.449] - (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll
P2 - FPN: [HKLM] [@real.com/nprjplug;version=1.0.3.448] - (.RealNetworks, Inc. - RealJukebox Netscape Plugin.) -- C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll
P2 - FPN: [HKLM] [@real.com/nprpjplug;version=6.0.12.448] - (.RealNetworks, Inc. - 6.0.12.448.) -- C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll
P2 - FPN: [HKLM] [@RIM.com/WebSLLauncher,version=1.0] - (...) -- C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@veetle.com/veetleCorePlugin,version=0.9.18] - (.Veetle Inc - Version 0.9.18, Copyright 2006-2009 Veetle Inc<br><a href="http://www..) -- C:\Program Files\Veetle\plugins\npVeetle.dll
P2 - FPN: [HKLM] [@veetle.com/veetlePlayerPlugin,version=0.9.18] - (.Veetle Inc - Version 0.9.18, copyright 2006-2010 Veetle Inc<br><a href="http://www..) -- C:\Program Files\Veetle\Player\npvlc.dll
P2 - FPN: [HKCU] [@movenetworks.com/Quantum Media Player] - (.Move Networks - npmnqmp 989898989877.) -- C:\Users\ADMINISTRATOR\AppData\Roaming\Move Networks\plugins\npqmp071700000016.dll
P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (.Unity Technologies ApS - Unity Player 2.6.1f3.) -- C:\Users\ADMINISTRATOR\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
~ Scan Firefox Browser in 00mn 01s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/?gws_rd=ssl
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: (no name) - {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} . (...) (No version) -- (.not file.)
R3 - URLSearchHook: PhotoJoy US Toolbar - {f2c43291-151e-499c-98a7-923c120b88fa} . (.Conduit Ltd. - Conduit Toolbar.) (6.4.0.0) -- C:\Program Files\PhotoJoy_US\prxtbPhot.dll
R3 - URLSearchHook: Vgrabber Toolbar - {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f} . (.Conduit Ltd. - Conduit Toolbar.) (6.4.0.0) -- C:\Program Files\Vgrabber\prxtbVgr0.dll
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)) -- C:\Windows\System32\ieframe.dll
R3 - URLSearchHook: PhotoJoy US Toolbar - {f2c43291-151e-499c-98a7-923c120b88fa} . (.Conduit Ltd. - Conduit Toolbar.) (6.4.0.0) -- C:\Program Files\PhotoJoy_US\prxtbPhot.dll
R3 - URLSearchHook: (no name) - {472734EA-242A-422b-ADF8-83D1E48CC825} . (...) (No version) -- (.not file.)
R3 - URLSearchHook: Vgrabber Toolbar - {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f} . (.Conduit Ltd. - Conduit Toolbar.) (6.4.0.0) -- C:\Program Files\Vgrabber\prxtbVgr0.dll
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 20
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} . (.TechSmith Corporation - Snagit Browser Helper Object for Internet E.) -- C:\Program Files\TechSmith\Snagit 10\SnagitBHO.dll
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} Clé orpheline
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files\HP\Digital Imaging\smart web printing\hpswp_printenhancer.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} . (.RealPlayer - RealPlayer Download and Record Plugin.) -- C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline
O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} Clé orpheline
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} . (.Symantec Corporation - IPS Browser Helper DLL.) -- C:\Program Files\Common Files\Symantec Shared\IDS\IPSBHO.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLi
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Skype Technologies S.A. - Skype add-on for IE.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll
O2 - BHO: Vgrabber - {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vgrabber\prxtbVgr0.dll
O2 - BHO: MSN Toolbar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} . (.Microsoft Corporation - MSN® Toolbar.) -- C:\Program Files\MSN Toolbar\Platform\4.0.0357.1\npwinext.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: Likeophobia BHO - {EA1B7F6D-5E94-48A3-A121-25CACBBBC62B} . (...) -- C:\ProgramData\Likeophobia\likeophobia.dll
O2 - BHO: PhotoJoy US - {f2c43291-151e-499c-98a7-923c120b88fa} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\PhotoJoy_US\prxtbPhot.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files\HP\Digital Imaging\smart web printing\hpswp_BHO.dll
~ Scan BHO in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} . (...) -- (.not file.)
O3 - Toolbar: Snagit - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} . (.TechSmith Corporation - Snagit Add-in for Internet Explorer.) -- C:\Program Files\TechSmith\Snagit 10\SnagitIEAddin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: MSN Toolbar - {8dcb7100-df86-4384-8842-8fa844297b3f} . (.Microsoft Corporation - MSN® Toolbar.) -- C:\Program Files\MSN Toolbar\Platform\4.0.0357.1\npwinext.dll
O3 - Toolbar: PhotoJoy US Toolbar - {f2c43291-151e-499c-98a7-923c120b88fa} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\PhotoJoy_US\prxtbPhot.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Vgrabber Toolbar - {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vgrabber\prxtbVgr0.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
~ Scan Toolbar in 00mn 00s
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [Windows Defender] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe
O4 - HKLM\..\Run: [hpsysdrv] . (.Hewlett-Packard Company - hpsysdrv.) -- C:\hp\support\hpsysdrv.exe
O4 - HKLM\..\Run: [KBD] . (...) -- C:\hp\KBD\KbdStub.exe
O4 - HKLM\..\Run: [OsdMaestro] . (.OsdMaestro - OsdMaestro main program.) -- C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe
O4 - HKLM\..\Run: [HP Health Check Scheduler] [ProgramFilesFolder]Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [ccApp] . (.Symantec Corporation - Symantec User Session.) -- C:\Program Files\Common Files\Symantec Shared\ccApp.exe
O4 - HKLM\..\Run: [NvCplDaemon] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\Windows\System32\nvcpl.dll
O4 - HKLM\..\Run: [NvMediaCenter] . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\Windows\System32\nvmctray.dll
O4 - HKLM\..\Run: [AppleSyncNotifier] . (.Apple Inc. - AppleSyncNotifier.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [VX6000] . (.Microsoft Corporation - Microsoft LifeCam VX6000 Device Application.) -- C:\Windows\vVX6000.exe
O4 - HKLM\..\Run: [Athan] . (.www.IslamicFinder.org - Automatic Athan (Azan) five times a day f.) -- C:\Program Files\Athan\Athan.exe
O4 - HKLM\..\Run: [snpstd3] . (.Pas de propriétaire - CameraMonitor Application.) -- C:\Windows\vsnpstd3.exe
O4 - HKLM\..\Run: [TkBellExe] . (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe
O4 - HKLM\..\Run: [RIMBBLaunchAgent.exe] . (.Research In Motion Limited - Launch Agent Service.) -- C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
O4 - HKLM\..\Run: [MSN Toolbar] . (.Microsoft Corp. - Barre d'outils MSN®.) -- C:\Program Files\MSN Toolbar\Platform\4.0.0357.1\mswinext.exe
O4 - HKLM\..\Run: [Microsoft Default Manager] . (.Microsoft Corporation - Microsoft Default Manager.) -- C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
O4 - HKLM\..\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O4 - HKCU\..\Run: [RegistryMechanic] . (.PC Tools - Registry Mechanic Vista Startup Tray.) -- C:\Program Files\Registry Mechanic\RMTray.exe
O4 - HKCU\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehtray.exe
O4 - HKCU\..\Run: [HPADVISOR] . (.Hewlett-Packard - HP Advisor.) -- C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent, Inc. - µTorrent.) -- C:\Program Files\uTorrent\uTorrent.exe
O4 - HKCU\..\Run: [PhotoJoy] . (.IncrediMail, Ltd. - PhotoJoy Application.) -- C:\Program Files\PhotoJoy\Bin\PhotoJoy.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer Networking Limited - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] oobefldr.dll
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] oobefldr.dll
O4 - HKUS\S-1-5-21-2622925242-2134737774-3615759048-1001\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-21-2622925242-2134737774-3615759048-1001\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O4 - HKUS\S-1-5-21-2622925242-2134737774-3615759048-1001\..\Run: [RegistryMechanic] . (.PC Tools - Registry Mechanic Vista Startup Tray.) -- C:\Program Files\Registry Mechanic\RMTray.exe
O4 - HKUS\S-1-5-21-2622925242-2134737774-3615759048-1001\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehtray.exe
O4 - HKUS\S-1-5-21-2622925242-2134737774-3615759048-1001\..\Run: [HPADVISOR] . (.Hewlett-Packard - HP Advisor.) -- C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
O4 - HKUS\S-1-5-21-2622925242-2134737774-3615759048-1001\..\Run: [uTorrent] . (.BitTorrent, Inc. - µTorrent.) -- C:\Program Files\uTorrent\uTorrent.exe
O4 - HKUS\S-1-5-21-2622925242-2134737774-3615759048-1001\..\Run: [PhotoJoy] . (.IncrediMail, Ltd. - PhotoJoy Application.) -- C:\Program Files\PhotoJoy\Bin\PhotoJoy.exe
O4 - HKUS\S-1-5-21-2622925242-2134737774-3615759048-1001\..\Run: [SpybotSD TeaTimer] . (.Safer Networking Limited - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
~ Scan Application in 00mn 01s
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite Deluxe.lnk . (.CyberLink.) -- C:\Program Files\CyberLink\DVD Suite Deluxe\PowerStarter.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Mail\WinMail.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\Desktop\Athan.lnk . (.www.IslamicFinder.org.) -- C:\Program Files\Athan\Athan.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\Desktop\Corbeille - Raccourci.lnk - Clé orpheline
O4 - Global Startup: C:\Users\ADMINISTRATOR\Desktop\Documents - Raccourci.lnk . (...) -- C:\Users\ADMINISTRATOR\Documents
O4 - Global Startup: C:\Users\ADMINISTRATOR\Desktop\HP Print Diagnostic Utility.lnk . (.Hewlett-Packard.) -- C:\Program Files\HP\HP Print Utility\PrintUtil.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\Desktop\iPhoneUnlockToolkit.lnk . (.TODO: <Company name>.) -- C:\Program Files\iPhoneUnlockToolkit\iphoneunlocktoolkit.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\Desktop\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\Desktop\Play Diner Dash Flo on the Go.lnk . (...) -- C:\Program Files\Diner Dash Flo on the Go\LaunchGame.bfg
O4 - Global Startup: C:\Users\ADMINISTRATOR\Desktop\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\Desktop\Ultimate Mortal Kombat 3.lnk . (...) -- C:\Program Files\Ultimate Mortal Kombat 3\Fusion.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Athan.lnk . (.www.IslamicFinder.org.) -- C:\Program Files\Athan\Athan.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\cc - Raccourci (2).lnk - Clé orpheline
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\cc - Raccourci.lnk - Clé orpheline
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\DVDFab 6.lnk . (.Fengtao Software Inc..) -- C:\Program Files\DVDFab 6\DVDFab.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\InternetTV.lnk . (...) -- C:\Program Files\Free Internet TV\InternetTV.exe (.not file.)
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\iPhoneUnlockToolkit.lnk . (.TODO: <Company name>.) -- C:\Program Files\iPhoneUnlockToolkit\iphoneunlocktoolkit.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Play My Games.lnk . (...) -- C:\Program Files\bfgclient\bfgclient.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
~ Scan Global Startup in 00mn 01s
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (...) -- C:\Program Files\Skype\Toolbars\Internet Explorer\icon.ico
O9 - Extra button: Skype add-on for Internet Explorer - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Program Files\Microsoft Office\Office12\REFBARH.ICO
O9 - Extra button: Skype add-on for Internet Explorer - {DDE87865-83C5-48c4-8357-2F5B1AA84522} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet Explorer.) -- C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet Explorer.) -- C:\Program Files\HP\Digital Imaging\smart web printing\hpswp_BHO.dll
~ Scan IE Extra Buttons in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\System32\nlaapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\System32\NapiNSP.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\System32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\System32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\System32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\System32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll
~ Scan Winsock in 00mn 00s
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} (Shockwave ActiveX Control) - http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} () - http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} (JuniperSetupClientControl Class) - https://bdirect.aero.bombardier.com/dana-cached/sc/JuniperSetupClient.cab
~ Scan Objets ActiveX in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{604CAF66-F9E7-4EF8-930A-4DF52D54E646}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{B270EE4D-949F-4FF4-9FFE-733CBFD4098E}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{C11BF140-4B7B-4CC0-969B-8C7E7CE82319}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{604CAF66-F9E7-4EF8-930A-4DF52D54E646}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CCS\Services\Tcpip\..\{B270EE4D-949F-4FF4-9FFE-733CBFD4098E}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CCS\Services\Tcpip\..\{C11BF140-4B7B-4CC0-969B-8C7E7CE82319}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CS1\Services\Tcpip\..\{604CAF66-F9E7-4EF8-930A-4DF52D54E646}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{B270EE4D-949F-4FF4-9FFE-733CBFD4098E}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{C11BF140-4B7B-4CC0-969B-8C7E7CE82319}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{604CAF66-F9E7-4EF8-930A-4DF52D54E646}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CS1\Services\Tcpip\..\{B270EE4D-949F-4FF4-9FFE-733CBFD4098E}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CS1\Services\Tcpip\..\{C11BF140-4B7B-4CC0-969B-8C7E7CE82319}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CS2\Services\Tcpip\..\{604CAF66-F9E7-4EF8-930A-4DF52D54E646}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{B270EE4D-949F-4FF4-9FFE-733CBFD4098E}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{C11BF140-4B7B-4CC0-969B-8C7E7CE82319}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{604CAF66-F9E7-4EF8-930A-4DF52D54E646}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CS2\Services\Tcpip\..\{B270EE4D-949F-4FF4-9FFE-733CBFD4098E}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CS2\Services\Tcpip\..\{C11BF140-4B7B-4CC0-969B-8C7E7CE82319}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CS3\Services\Tcpip\..\{604CAF66-F9E7-4EF8-930A-4DF52D54E646}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{B270EE4D-949F-4FF4-9FFE-733CBFD4098E}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{C11BF140-4B7B-4CC0-969B-8C7E7CE82319}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{604CAF66-F9E7-4EF8-930A-4DF52D54E646}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CS3\Services\Tcpip\..\{B270EE4D-949F-4FF4-9FFE-733CBFD4098E}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CS3\Services\Tcpip\..\{C11BF140-4B7B-4CC0-969B-8C7E7CE82319}: DhcpDomain = gateway.2wire.net
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\microsoft shared\Help\hxds.dll
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Program Files\Common Files\microsoft shared\Information Retrieval\msitss.dll
O18 - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll
O18 - Handler: mso-offdap - {3D9F03FA-7A94-11D3-BE81-0050048385D1} . (.Microsoft Corporation - Microsoft Office XP Web Components.) -- C:\Program Files\Common Files\microsoft shared\Web Components\10\OWC10.dll
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} . (.Skype Technologies S.A. - Skype add-on for IE.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\Program Files\Common Files\Skype\Skype4COM.dll
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files\Windows Live\Mail\mailcomm.dll
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.dll
~ Scan Protocole Additionnel in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: PRISMGNA.DLL . (.Conexant Systems, Inc. - PRISM Logon Service.) -- C:\Windows\system32\PRISMGNA.dll
~ Scan Winlogon in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (...) - ll C:\Program Files\bandoo\bndhook.dll (.not file.)
~ Scan AppInit DLL in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll
~ Scan SSODL in 00mn 00s
---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\system32\browseui.dll
~ Scan STS/SSO in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Planificateur LiveUpdate automatique (Automatic LiveUpdate Scheduler) . (.Symantec Corporation - Automatic LiveUpdate Scheduler Service.) - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) . (.Symantec Corporation - Symantec Service Framework.) - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) . (.Symantec Corporation - Symantec Service Framework.) - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) . (.Symantec Corporation - Symantec Service Framework.) - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Google Update Service (gupdate1c9607e20e (gupdate1c9607e20e74900) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service (HP Health Check Service) . (.Hewlett-Packard - HP Health Check Service.) - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: LightScribeService Direct Disc Labeling (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate Notice (LiveUpdate Notice) . (.Symantec Corporation - Symantec Service Framework.) - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 175.2.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: PRISMSVC (PRISMSVC) . (.Conexant Systems, Inc. - PRISM Server Service Module.) - C:\Windows\System32\PRISMSVC.exe
O23 - Service: (Secure Content Management) . (...) - C:\Windows\System32\scm.exe
O23 - Service: TeamViewer 4 (TeamViewer4) . (.TeamViewer GmbH - TeamViewer Service.) - C:\Program Files\TeamViewer\Version4\TeamViewer_Service.exe
O23 - Service: XAudioService (XAudioService) . (.Conexant Systems, Inc. - Modem Audio Service.) - C:\Windows\system32\DRIVERS\xaudio.exe
~ Scan Services in 00mn 01s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Norton AntiVirus - Effectuer une analyse complète du système - Ilyes.job
O39 - APT:Automatic Planified Ta
1)j'ai supprimé la selection avec succes!
2)voici le nouveau rapport de ZHPDiag:
Rapport de ZHPDiag v1.28.313 par Nicolas Coolman, Update du 18/01/2012
Run by ADMINISTRATOR at 22/01/2012 08:04:14
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
Web site : http://nicolascoolman.skyrock.com/
State : Nouvelle version disponible
---\\ Web Browser
MSIE: Internet Explorer v8.0.6001.19170
MFIE: Mozilla Firefox v3.0.19 (fr) (Defaut)
GCIE: Google Chrome v16.0.912.75
OBIE: Safari v5.33.21.1
---\\ Windows Product Information
~ Langage: Français
Windows Vista Home Premium Edition, 32-bit Service Pack 2 (Build 6002)
Windows Server License Manager Script : OK
~ Vista, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : WQD8Q
Windows License : OK
Windows Automatic Updates : OK
---\\ System Information
~ Processor: x86 Family 15 Model 67 Stepping 3, AuthenticAMD
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 2941 MB (41% free)
System Restore: Activé (Enable)
System drive C: has 256 GB (56%) free of 456 GB
---\\ Logged in mode
~ Computer Name: HPERFECT
~ User Name: ADMINISTRATOR
~ All Users Names: ADMINISTRATOR, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O80,O82,O89
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\ADMINISTRATOR\AppData\Roaming\
~ %Desktop% : C:\Users\ADMINISTRATOR\Desktop\
~ %Favorites% : C:\Users\ADMINISTRATOR\Favorites\
~ %LocalAppData% : C:\Users\ADMINISTRATOR\AppData\Local\
~ %StartMenu% : C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\system32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 256 Go of 456 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 3 Go of 9 Go)
E:\ CD-ROM drive (Not Inserted)
F:\ CD-ROM drive (Not Inserted)
G:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
H:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
I:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
J:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: Modified
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowMyComputer: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Scan Security Center in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) (.11/04/2009 - 01:27:36.) -- C:\Windows\Explorer.exe [2926592]
[MD5.4B555106290BD117334E9A08761C035A] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) (.02/11/2006 - 04:45:37.) -- C:\Windows\system32\rundll32.exe [44544]
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.20/01/2008 - 21:23:42.) -- C:\Windows\system32\Wininit.exe [96768]
[MD5.4E45F092670EEE0563AA9E1A7C8A1217] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.03/11/2011 - 01:22:04.) -- C:\Windows\system32\wininet.dll [916992]
[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/04/2009 - 01:28:13.) -- C:\Windows\system32\Winlogon.exe [314368]
[MD5.95F5FF73B076576C41740F1A842B9B57] - (.Microsoft Corporation - DLL client de l'API uilisateur de Windows multi-utilisateurs.) (.23/02/2008 - 15:20:50.) -- C:\Windows\system32\fr-FR\user32.dll.mui [20480]
[MD5.3911B972B55FEA0478476B2E777B29FA] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.21/04/2011 - 08:58:27.) -- C:\Windows\system32\drivers\AFD.sys [273408]
[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.11/04/2009 - 01:32:26.) -- C:\Windows\system32\drivers\atapi.sys [19944]
[MD5.7ADD03E75BEB9E6DD102C3081D29840A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.20/01/2008 - 21:23:51.) -- C:\Windows\system32\drivers\Cdfs.sys [70144]
[MD5.6B4BFFB9BECD728097024276430DB314] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.10/04/2009 - 23:39:17.) -- C:\Windows\system32\drivers\Cdrom.sys [67072]
[MD5.622C41A07CA7E6DD91770F50D532CB6C] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.14/04/2011 - 09:59:03.) -- C:\Windows\system32\drivers\DfsC.sys [75264]
[MD5.062452B7FFD68C8C042A6261FE8DFF4A] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.10/04/2009 - 23:42:42.) -- C:\Windows\system32\drivers\HDAudBus.sys [561152]
[MD5.22D56C8184586B7A1F6FA60BE5F5A2BD] - (.Microsoft Corporation - Pilote de port i8042.) (.20/01/2008 - 21:23:20.) -- C:\Windows\system32\drivers\i8042prt.sys [54784]
[MD5.8793643A67B42CEC66490B2A0CF92D68] - (.Microsoft Corporation - IP Network Address Translator.) (.20/01/2008 - 21:24:25.) -- C:\Windows\system32\drivers\IpNat.sys [100864]
[MD5.1E94971C4B446AB2290DEB71D01CF0C2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.29/04/2011 - 08:24:40.) -- C:\Windows\system32\drivers\MRxSmb.sys [106496]
[MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6] - (.Microsoft Corporation - MBT Transport driver.) (.10/04/2009 - 23:45:37.) -- C:\Windows\system32\drivers\netBT.sys [185856]
[MD5.6A4A98CEE84CF9E99564510DDA4BAA47] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.11/04/2009 - 01:32:49.) -- C:\Windows\system32\drivers\ntfs.sys [1083880]
[MD5.0FA9B5055484649D63C303FE404E5F4D] - (.Microsoft Corporation - Pilote de port parallèle.) (.02/11/2006 - 03:51:30.) -- C:\Windows\system32\drivers\Parport.sys [79360]
[MD5.A214ADBAF4CB47DD2728859EF31F26B0] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/01/2008 - 21:24:55.) -- C:\Windows\system32\drivers\Rasl2tp.sys [76288]
[MD5.FBC0BACD9C3D7F6956853F64A66E252D] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.20/01/2008 - 21:23:01.) -- C:\Windows\system32\drivers\rdpdr.sys [248832]
[MD5.7B75299A4D201D6A6533603D6914AB04] - (.Microsoft Corporation - SMB Transport driver.) (.10/04/2009 - 23:45:22.) -- C:\Windows\system32\drivers\smb.sys [66560]
[MD5.76B06EB8A01FC8624D699E7045303E54] - (.Microsoft Corporation - TDI Translation Driver.) (.10/04/2009 - 23:45:56.) -- C:\Windows\system32\drivers\tdx.sys [72192]
[MD5.147281C01FCB1DF9252DE2A10D5E7093] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.11/04/2009 - 01:32:55.) -- C:\Windows\system32\drivers\volsnap.sys [226280]
~ Scan Generic Processes in 00mn 03s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 34/3009
~ Mes musiques (My Musics) : 8/182
~ Mes Videos (My Videos) : 1/8
~ Mes Favoris (My Favorites) : Non accessible (Not found)
~ Mes Documents (My Documents) : 90/2930
~ Mon Bureau (My Desktop) : 7/3296
~ Menu demarrer (Programs) : 6/31
~ Scan Hidden Files in 00mn 07s
---\\ Processus lancés
[MD5.9DBD3A332A734076F24A01150EB12F9C] - (.Conexant Systems, Inc. - PRISM Profiles Server Module.) -- C:\Windows\system32\PRISMSVR.EXE [356441] [PID.672]
[MD5.0D392EDE3B97E0B3131B2F63EF1DB94E] - (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe [1008184] [PID.876]
[MD5.D93985F5D87DF1A119E939EADB5C4B9E] - (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe [6266880] [PID.2176]
[MD5.9A4322EE420D6FACD4D4B1FF6CB856B1] - (.Hewlett-Packard Company - hpsysdrv.) -- C:\hp\support\hpsysdrv.exe [65536] [PID.2240]
[MD5.B1361669BDC6ED612C35B7C67ADA2240] - (.OsdMaestro - OsdMaestro main program.) -- C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe [118784] [PID.2304]
[MD5.93DB1FF92B03D24738A71E6E4992DFD3] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [248552] [PID.2320]
[MD5.63F938625CAA8854E31B9D06A3E13E8D] - (.Microsoft Corporation - Microsoft LifeCam VX6000 Device Application.) -- C:\Windows\vVX6000.exe [994072] [PID.2372]
[MD5.297C70C6200B2C57CCACFE3D64933A13] - (.www.IslamicFinder.org - Automatic Athan (Azan) five times a day f.) -- C:\Program Files\Athan\Athan.exe [1105920] [PID.2380]
[MD5.FB0C8699B87F7140BB6201BE7B4B6778] - (.Pas de propriétaire - CameraMonitor Application.) -- C:\Windows\vsnpstd3.exe [827392] [PID.2408]
[MD5.D73B8082866AE72FB62C7186E556C6FB] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe [198160] [PID.2444]
[MD5.BAD6BEA0DE1F69C82BDB74378CE0C20A] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288] [PID.2476]
[MD5.52D28AE9E168BA60F2DFA00EDD101B14] - (.Research In Motion Limited - Launch Agent Service.) -- C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe [79192] [PID.2512]
[MD5.99721F1129BD7C594CBC722992D06D0D] - (.Microsoft Corp. - Barre d'outils MSN®.) -- C:\Program Files\MSN Toolbar\Platform\4.0.0357.1\mswinext.exe [240992] [PID.2520]
[MD5.D743372A621ED03A274539A88EEB3450] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe [421736] [PID.2616]
[MD5.F7226AA410954185160067D5FA82F3F2] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [3744552] [PID.2624]
[MD5.5D61BE7DB55B026A5D61A3EED09D0EAD] - (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408] [PID.]
[MD5.A0E98C4C12FA1902C0575B248D159F25] - (.PC Tools - Registry Mechanic Vista Startup Tray.) -- C:\Program Files\Registry Mechanic\RMTray.exe [812952] [PID.2736]
[MD5.BF08674925F151BD4537B89A493E3E0C] - (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehtray.exe [125952] [PID.2748]
[MD5.009811BD21D0BD7BA5C7765565505764] - (.Hewlett-Packard - HP Advisor.) -- C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1644088] [PID.2756]
[MD5.ECF7042E33204DBEAE8295427478C028] - (.BitTorrent, Inc. - µTorrent.) -- C:\Program Files\uTorrent\uTorrent.exe [399736] [PID.2768]
[MD5.896A1DB9A972AD2339C2E8569EC926D1] - (.Safer Networking Limited - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2144088] [PID.2804]
[MD5.EAA666E9DD8DCDA6E075087091CB85EE] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [275072] [PID.2820]
[MD5.0F4195B9B348DE5CF9B822F81704B20E] - (.Microsoft Corporation - Media Center Media Status Aggregator Servic.) -- C:\Windows\ehome\ehmsas.exe [37376] [PID.3104]
[MD5.E6B7840680669EE51D6A6A886D3EB4B4] - (.IncrediMail, Ltd. - PhotoJoy Application.) -- C:\Program Files\PhotoJoy\bin\PjApp.exe [480640] [PID.3628]
[MD5.2D821AFA5A1A9CA7F9F997A1AAD09E72] - (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe [168960] [PID.4728]
[MD5.C180E890FFE0FDED8306427D3C836AF2] - (.Hewlett-Packard Co. - HP CUE Status Root.) -- C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe [174952] [PID.308]
[MD5.B29A08A0CB56CD5A4B9C53A011819657] - (.Hewlett-Packard Co. - HP CUE Alert Popup Window Objects.) -- C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe [565096] [PID.3032]
[MD5.66BB5B07696219FA334452D6F51FD648] - (.Hewlett-Packard - GPCore COM object.) -- C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe [366720] [PID.4904]
[MD5.7CAC10A1C258DFCB5ADE563BAE6D2F15] - (.Hewlett-Packard Company - KBD EXE.) -- C:\hp\kbd\kbd.exe [67128] [PID.2556]
[MD5.6080A176D09435FC8E6E800996656E18] - (.Microsoft Corporation - Console IME.) -- C:\Windows\system32\conime.exe [69120] [PID.6136]
[MD5.CCDB0B2D1F2E016966B1DB1097E24842] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe [638240] [PID.6504]
[MD5.85D374F30A2015D795B1E8D1258866D4] - (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files\HP\Digital Imaging\smart web printing\hpswp_clipbook.exe [116280] [PID.5740]
[MD5.461A87D7A4304BDA228CF1DBB86D3CE9] - (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller.) -- C:\Windows\system32\Macromed\Flash\FlashUtil10v_ActiveX.exe [243360] [PID.7636]
[MD5.62BB79160F86CD962F312C68C6239BFD] - (.Microsoft Corporation - Windows Update.) -- C:\Windows\system32\wuauclt.exe [53472] [PID.6912]
[MD5.ED570E740CB5E987E8BCDB1EA393C3E2] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [2210304] [PID.7892]
[MD5.CF7769F13B3ECC5E2BF1B3D1C5831AE8] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 175.2.) -- C:\Windows\system32\nvvsvc.exe [118784] [PID.]
[MD5.862BB4CBC05D80C5B45BE430E5EF872F] - (.Microsoft Corporation - Service de gestion des licences Microsoft.) -- C:\Windows\system32\SLsvc.exe [3408896] [PID.]
[MD5.996E6D052438E8D8DFD501F31560B2E0] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [44768] [PID.]
[MD5.D8E18021F91AD79CA8491CB5A5DA22D4] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [55144] [PID.]
[MD5.DB5BEA73EDAF19AC68B2C0FAD0F92B1A] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe [390504] [PID.]
[MD5.DFEFF67508D3A9AEB1A85D7B0F513B24] - (.Hewlett-Packard Company - LightScribe Service.) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728] [PID.]
[MD5.DB794C66FAC2CA24C3E99F11EB502FB7] - (.Conexant Systems, Inc. - PRISM Server Service Module.) -- C:\Windows\system32\PRISMSVC.EXE [57433] [PID.]
[MD5.2C8EEB0B10665C79B3DA05BD63FE0897] - (...) -- C:\Windows\system32\scm.exe [76288] [PID.]
[MD5.7B2068DC352F735EC6E9C9C8DBBB36D9] - (...) -- C:\ProgramData\Mono\bin\mono.exe [5745] [PID.]
[MD5.82EA3814431D24FBC692F27EA67E176B] - (.TeamViewer GmbH - TeamViewer Service.) -- C:\Program Files\TeamViewer\Version4\TeamViewer_Service.exe [185640] [PID.]
[MD5.CD5F291A1161F15896D1A4D63DAFF5DF] - (.Conexant Systems, Inc. - Modem Audio Service.) -- C:\Windows\system32\DRIVERS\xaudio.exe [386560] [PID.]
[MD5.33642C17C232AA272C68E446A2619899] - (.Apple Inc. - iPodService Module (32-bit).) -- C:\Program Files\iPod\bin\iPodService.exe [821608] [PID.]
[MD5.C7FBDD1ED42F82BFA35167A5C9803EA3] - (.Microsoft Corporation - PresentationFontCache.exe.) -- C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [43904] [PID.]
[MD5.2843669C89A00950195F51DBB5DB0B8E] - (.Symantec Corporation - Automatic LiveUpdate Scheduler Service.) -- C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe [238968] [PID.]
[MD5.0D26C438E2938A3E6BDD91173BC96FF0] - (.Hewlett-Packard - HP Health Check Service.) -- c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [65536] [PID.]
~ Scan Processes Running in 00mn 02s
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\ADMINISTRATOR\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] http://www.questscan.com
G0 - GCSP: Preference [User Data\Default][HomePage] https://www.google.com/?gws_rd=ssl
G2 - GCE: Preference [User Data\Default] [hijjbihbplfjiigoekigjjekncfflbmh] Likeophobia v.1.1 (Activé)
~ Scan Google Browser in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\ADMINISTRATOR\AppData\Roaming\Mozilla\Firefox\Profiles\47qx4jlj.default\prefs.js
M3 - MFPP: Plugins - [ADMINISTRATOR] -- C:\Users\ADMINISTRATOR\AppData\Roaming\Mozilla\Firefox\Profiles\47qx4jlj.default\searchplugins\daemon-search.xml
M3 - MFPP: Plugins - [ADMINISTRATOR] -- C:\Program Files\Mozilla FireFox\searchplugins\amazon-france.xml
M3 - MFPP: Plugins - [ADMINISTRATOR] -- C:\Program Files\Mozilla FireFox\searchplugins\eBay-france.xml
M3 - MFPP: Plugins - [ADMINISTRATOR] -- C:\Program Files\Mozilla FireFox\searchplugins\google.xml
M3 - MFPP: Plugins - [ADMINISTRATOR] -- C:\Program Files\Mozilla FireFox\searchplugins\MediaDICO-fr.xml
M3 - MFPP: Plugins - [ADMINISTRATOR] -- C:\Program Files\Mozilla FireFox\searchplugins\wikipedia-fr.xml
M3 - MFPP: Plugins - [ADMINISTRATOR] -- C:\Program Files\Mozilla FireFox\searchplugins\yahoo-france.xml
M2 - MFEP: prefs.js [ADMINISTRATOR - 47qx4jlj.default\DTToolbar@toolbarnet.com] [] DAEMON Tools Toolbar v (.DT Soft Ltd..)
M2 - MFEP: prefs.js [ADMINISTRATOR - 47qx4jlj.default\firefox@bandoo.com] [] Bandoo for Firefox v5.0 (.DT Soft Ltd..)
M2 - MFEP: prefs.js [ADMINISTRATOR - 47qx4jlj.default\{20a82645-c095-46ed-80e3-08825760534b}] [MicrosoftCG] Microsoft .NET Framework Assistant v1.1 (.Microsoft.)
M2 - MFEP: prefs.js [ADMINISTRATOR - 47qx4jlj.default\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}] [] Vgrabber Community Toolbar v3.8.0.8 (.Conduit Ltd..)
M2 - MFEP: prefs.js [ADMINISTRATOR - 47qx4jlj.default\{f2c43291-151e-499c-98a7-923c120b88fa}] [] PhotoJoy US Community Toolbar v3.6.0.10 (.Conduit Ltd..)
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files\Mozilla Firefox\Plugins\np-mswmp.dll
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.DivX,Inc. - DivX® Web Player.) -- C:\Program Files\Mozilla Firefox\Plugins\npdivx32.dll
P2 - FPN:Firefox Plugin Navigator . (.DivX, Inc - npdivxplayerplugin.) -- C:\Program Files\Mozilla Firefox\Plugins\npDivxPlayerPlugin.dll
P2 - FPN:Firefox Plugin Navigator . (.NHN USA Inc. - ijji Auto Install Plugin for Mozilla.) -- C:\Program Files\Mozilla Firefox\Plugins\npijjiautoinstallpluginff.dll
P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFF12.DLL
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 8.2.5.) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\Mozilla Firefox\Plugins\nppl3260.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - RealJukebox Netscape Plugin.) -- C:\Program Files\Mozilla Firefox\Plugins\nprjplug.dll
P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - 6.0.12.448.) -- C:\Program Files\Mozilla Firefox\Plugins\nprpjplug.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\System32\Macromed\Flash\NPSWF32.dll
P2 - FPN: [HKLM] [@adobe.com/ShockwavePlayer] - (.Adobe Systems, Inc. - Adobe Shockwave for Director Netscape plug-in, version 11.5.9.615.) -- C:\Windows\System32\Adobe\Director\np32dsw.dll
P2 - FPN: [HKLM] [@Apple.com/iTunes,version=1.0] - (...) -- C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
P2 - FPN: [HKLM] [@divx.com/DivX Browser Plugin,version=1.0.0] - (.DivX,Inc. - DivX® Web Player.) -- C:\Program Files\DivX\DivX Web Player\npdivx32.dll
P2 - FPN: [HKLM] [@divx.com/DivX Content Upload Plugin,version=1.0.0] - (.DivX,Inc. - DivX® Content Upload Plugin.) -- C:\Program Files\DivX\DivX Content Uploader\npUpload.dll
P2 - FPN: [HKLM] [@divx.com/DivX Player Plugin,version=1.0.0] - (.DivX, Inc - npdivxplayerplugin.) -- C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll
P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc. - Next Generation Java Plug-in 1.6.0_21 for Mozilla browsers.) -- C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.60831.0.) -- C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpWinExt,version=4.0] - (.Microsoft Corporation - MSN® Toolbar.) -- C:\Program Files\MSN Toolbar\Platform\4.0.0357.1\npwinext.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.5] - (.Microsoft Corp. - Office Live Update v1.5.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll
P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8117.0416] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
P2 - FPN: [HKLM] [@real.com/nppl3260;version=6.0.12.449] - (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll
P2 - FPN: [HKLM] [@real.com/nprjplug;version=1.0.3.448] - (.RealNetworks, Inc. - RealJukebox Netscape Plugin.) -- C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll
P2 - FPN: [HKLM] [@real.com/nprpjplug;version=6.0.12.448] - (.RealNetworks, Inc. - 6.0.12.448.) -- C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll
P2 - FPN: [HKLM] [@RIM.com/WebSLLauncher,version=1.0] - (...) -- C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
P2 - FPN: [HKLM] [@veetle.com/veetleCorePlugin,version=0.9.18] - (.Veetle Inc - Version 0.9.18, Copyright 2006-2009 Veetle Inc<br><a href="http://www..) -- C:\Program Files\Veetle\plugins\npVeetle.dll
P2 - FPN: [HKLM] [@veetle.com/veetlePlayerPlugin,version=0.9.18] - (.Veetle Inc - Version 0.9.18, copyright 2006-2010 Veetle Inc<br><a href="http://www..) -- C:\Program Files\Veetle\Player\npvlc.dll
P2 - FPN: [HKCU] [@movenetworks.com/Quantum Media Player] - (.Move Networks - npmnqmp 989898989877.) -- C:\Users\ADMINISTRATOR\AppData\Roaming\Move Networks\plugins\npqmp071700000016.dll
P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (.Unity Technologies ApS - Unity Player 2.6.1f3.) -- C:\Users\ADMINISTRATOR\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
~ Scan Firefox Browser in 00mn 01s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/?gws_rd=ssl
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: (no name) - {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} . (...) (No version) -- (.not file.)
R3 - URLSearchHook: PhotoJoy US Toolbar - {f2c43291-151e-499c-98a7-923c120b88fa} . (.Conduit Ltd. - Conduit Toolbar.) (6.4.0.0) -- C:\Program Files\PhotoJoy_US\prxtbPhot.dll
R3 - URLSearchHook: Vgrabber Toolbar - {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f} . (.Conduit Ltd. - Conduit Toolbar.) (6.4.0.0) -- C:\Program Files\Vgrabber\prxtbVgr0.dll
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)) -- C:\Windows\System32\ieframe.dll
R3 - URLSearchHook: PhotoJoy US Toolbar - {f2c43291-151e-499c-98a7-923c120b88fa} . (.Conduit Ltd. - Conduit Toolbar.) (6.4.0.0) -- C:\Program Files\PhotoJoy_US\prxtbPhot.dll
R3 - URLSearchHook: (no name) - {472734EA-242A-422b-ADF8-83D1E48CC825} . (...) (No version) -- (.not file.)
R3 - URLSearchHook: Vgrabber Toolbar - {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f} . (.Conduit Ltd. - Conduit Toolbar.) (6.4.0.0) -- C:\Program Files\Vgrabber\prxtbVgr0.dll
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2
~ Scan IE Browser in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s
---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Scan Keys in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Scan Hosts File in 00mn 00s
~ Nombre de lignes (Lines number): 20
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} . (.TechSmith Corporation - Snagit Browser Helper Object for Internet E.) -- C:\Program Files\TechSmith\Snagit 10\SnagitBHO.dll
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} Clé orpheline
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files\HP\Digital Imaging\smart web printing\hpswp_printenhancer.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} . (.RealPlayer - RealPlayer Download and Record Plugin.) -- C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer Networking Limited - SBSD IE Protection.) -- C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} Clé orpheline
O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} Clé orpheline
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} . (.Symantec Corporation - IPS Browser Helper DLL.) -- C:\Program Files\Common Files\Symantec Shared\IDS\IPSBHO.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLi
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} . (.Skype Technologies S.A. - Skype add-on for IE.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll
O2 - BHO: Vgrabber - {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vgrabber\prxtbVgr0.dll
O2 - BHO: MSN Toolbar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} . (.Microsoft Corporation - MSN® Toolbar.) -- C:\Program Files\MSN Toolbar\Platform\4.0.0357.1\npwinext.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: Likeophobia BHO - {EA1B7F6D-5E94-48A3-A121-25CACBBBC62B} . (...) -- C:\ProgramData\Likeophobia\likeophobia.dll
O2 - BHO: PhotoJoy US - {f2c43291-151e-499c-98a7-923c120b88fa} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\PhotoJoy_US\prxtbPhot.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files\HP\Digital Imaging\smart web printing\hpswp_BHO.dll
~ Scan BHO in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} . (...) -- (.not file.)
O3 - Toolbar: Snagit - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} . (.TechSmith Corporation - Snagit Add-in for Internet Explorer.) -- C:\Program Files\TechSmith\Snagit 10\SnagitIEAddin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: MSN Toolbar - {8dcb7100-df86-4384-8842-8fa844297b3f} . (.Microsoft Corporation - MSN® Toolbar.) -- C:\Program Files\MSN Toolbar\Platform\4.0.0357.1\npwinext.dll
O3 - Toolbar: PhotoJoy US Toolbar - {f2c43291-151e-499c-98a7-923c120b88fa} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\PhotoJoy_US\prxtbPhot.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - avast! WebRep Plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Vgrabber Toolbar - {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vgrabber\prxtbVgr0.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
~ Scan Toolbar in 00mn 00s
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [Windows Defender] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Windows\RtHDVCpl.exe
O4 - HKLM\..\Run: [hpsysdrv] . (.Hewlett-Packard Company - hpsysdrv.) -- C:\hp\support\hpsysdrv.exe
O4 - HKLM\..\Run: [KBD] . (...) -- C:\hp\KBD\KbdStub.exe
O4 - HKLM\..\Run: [OsdMaestro] . (.OsdMaestro - OsdMaestro main program.) -- C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe
O4 - HKLM\..\Run: [HP Health Check Scheduler] [ProgramFilesFolder]Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [ccApp] . (.Symantec Corporation - Symantec User Session.) -- C:\Program Files\Common Files\Symantec Shared\ccApp.exe
O4 - HKLM\..\Run: [NvCplDaemon] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\Windows\System32\nvcpl.dll
O4 - HKLM\..\Run: [NvMediaCenter] . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\Windows\System32\nvmctray.dll
O4 - HKLM\..\Run: [AppleSyncNotifier] . (.Apple Inc. - AppleSyncNotifier.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [VX6000] . (.Microsoft Corporation - Microsoft LifeCam VX6000 Device Application.) -- C:\Windows\vVX6000.exe
O4 - HKLM\..\Run: [Athan] . (.www.IslamicFinder.org - Automatic Athan (Azan) five times a day f.) -- C:\Program Files\Athan\Athan.exe
O4 - HKLM\..\Run: [snpstd3] . (.Pas de propriétaire - CameraMonitor Application.) -- C:\Windows\vsnpstd3.exe
O4 - HKLM\..\Run: [TkBellExe] . (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files\Common Files\Real\Update_OB\realsched.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe
O4 - HKLM\..\Run: [RIMBBLaunchAgent.exe] . (.Research In Motion Limited - Launch Agent Service.) -- C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
O4 - HKLM\..\Run: [MSN Toolbar] . (.Microsoft Corp. - Barre d'outils MSN®.) -- C:\Program Files\MSN Toolbar\Platform\4.0.0357.1\mswinext.exe
O4 - HKLM\..\Run: [Microsoft Default Manager] . (.Microsoft Corporation - Microsoft Default Manager.) -- C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
O4 - HKLM\..\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O4 - HKCU\..\Run: [RegistryMechanic] . (.PC Tools - Registry Mechanic Vista Startup Tray.) -- C:\Program Files\Registry Mechanic\RMTray.exe
O4 - HKCU\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehtray.exe
O4 - HKCU\..\Run: [HPADVISOR] . (.Hewlett-Packard - HP Advisor.) -- C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
O4 - HKCU\..\Run: [uTorrent] . (.BitTorrent, Inc. - µTorrent.) -- C:\Program Files\uTorrent\uTorrent.exe
O4 - HKCU\..\Run: [PhotoJoy] . (.IncrediMail, Ltd. - PhotoJoy Application.) -- C:\Program Files\PhotoJoy\Bin\PhotoJoy.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer Networking Limited - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] oobefldr.dll
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] oobefldr.dll
O4 - HKUS\S-1-5-21-2622925242-2134737774-3615759048-1001\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-21-2622925242-2134737774-3615759048-1001\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe
O4 - HKUS\S-1-5-21-2622925242-2134737774-3615759048-1001\..\Run: [RegistryMechanic] . (.PC Tools - Registry Mechanic Vista Startup Tray.) -- C:\Program Files\Registry Mechanic\RMTray.exe
O4 - HKUS\S-1-5-21-2622925242-2134737774-3615759048-1001\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehtray.exe
O4 - HKUS\S-1-5-21-2622925242-2134737774-3615759048-1001\..\Run: [HPADVISOR] . (.Hewlett-Packard - HP Advisor.) -- C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
O4 - HKUS\S-1-5-21-2622925242-2134737774-3615759048-1001\..\Run: [uTorrent] . (.BitTorrent, Inc. - µTorrent.) -- C:\Program Files\uTorrent\uTorrent.exe
O4 - HKUS\S-1-5-21-2622925242-2134737774-3615759048-1001\..\Run: [PhotoJoy] . (.IncrediMail, Ltd. - PhotoJoy Application.) -- C:\Program Files\PhotoJoy\Bin\PhotoJoy.exe
O4 - HKUS\S-1-5-21-2622925242-2134737774-3615759048-1001\..\Run: [SpybotSD TeaTimer] . (.Safer Networking Limited - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
~ Scan Application in 00mn 01s
---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite Deluxe.lnk . (.CyberLink.) -- C:\Program Files\CyberLink\DVD Suite Deluxe\PowerStarter.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Mail\WinMail.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\Desktop\Athan.lnk . (.www.IslamicFinder.org.) -- C:\Program Files\Athan\Athan.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\Desktop\Corbeille - Raccourci.lnk - Clé orpheline
O4 - Global Startup: C:\Users\ADMINISTRATOR\Desktop\Documents - Raccourci.lnk . (...) -- C:\Users\ADMINISTRATOR\Documents
O4 - Global Startup: C:\Users\ADMINISTRATOR\Desktop\HP Print Diagnostic Utility.lnk . (.Hewlett-Packard.) -- C:\Program Files\HP\HP Print Utility\PrintUtil.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\Desktop\iPhoneUnlockToolkit.lnk . (.TODO: <Company name>.) -- C:\Program Files\iPhoneUnlockToolkit\iphoneunlocktoolkit.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\Desktop\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\Desktop\Play Diner Dash Flo on the Go.lnk . (...) -- C:\Program Files\Diner Dash Flo on the Go\LaunchGame.bfg
O4 - Global Startup: C:\Users\ADMINISTRATOR\Desktop\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\Desktop\Ultimate Mortal Kombat 3.lnk . (...) -- C:\Program Files\Ultimate Mortal Kombat 3\Fusion.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Athan.lnk . (.www.IslamicFinder.org.) -- C:\Program Files\Athan\Athan.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\cc - Raccourci (2).lnk - Clé orpheline
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\cc - Raccourci.lnk - Clé orpheline
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\DVDFab 6.lnk . (.Fengtao Software Inc..) -- C:\Program Files\DVDFab 6\DVDFab.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\InternetTV.lnk . (...) -- C:\Program Files\Free Internet TV\InternetTV.exe (.not file.)
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\iPhoneUnlockToolkit.lnk . (.TODO: <Company name>.) -- C:\Program Files\iPhoneUnlockToolkit\iphoneunlocktoolkit.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk . (.Microsoft Corporation.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Play My Games.lnk . (...) -- C:\Program Files\bfgclient\bfgclient.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk . (.Microsoft Corporation.) -- C:\Program Files\Windows Media Player\wmplayer.exe
~ Scan Global Startup in 00mn 01s
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} . (...) -- C:\Program Files\Skype\Toolbars\Internet Explorer\icon.ico
O9 - Extra button: Skype add-on for Internet Explorer - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Program Files\Microsoft Office\Office12\REFBARH.ICO
O9 - Extra button: Skype add-on for Internet Explorer - {DDE87865-83C5-48c4-8357-2F5B1AA84522} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet Explorer.) -- C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet Explorer.) -- C:\Program Files\HP\Digital Imaging\smart web printing\hpswp_BHO.dll
~ Scan IE Extra Buttons in 00mn 00s
---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\System32\nlaapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d'affectation de noms de messagerie.) -- C:\Windows\System32\NapiNSP.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\System32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d'espace de noms PNRP.) -- C:\Windows\System32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\System32\mswsock.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\System32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files\Bonjour\mdnsNSP.dll
~ Scan Winsock in 00mn 00s
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} (Shockwave ActiveX Control) - http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} () - http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} (JuniperSetupClientControl Class) - https://bdirect.aero.bombardier.com/dana-cached/sc/JuniperSetupClient.cab
~ Scan Objets ActiveX in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{604CAF66-F9E7-4EF8-930A-4DF52D54E646}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{B270EE4D-949F-4FF4-9FFE-733CBFD4098E}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{C11BF140-4B7B-4CC0-969B-8C7E7CE82319}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{604CAF66-F9E7-4EF8-930A-4DF52D54E646}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CCS\Services\Tcpip\..\{B270EE4D-949F-4FF4-9FFE-733CBFD4098E}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CCS\Services\Tcpip\..\{C11BF140-4B7B-4CC0-969B-8C7E7CE82319}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CS1\Services\Tcpip\..\{604CAF66-F9E7-4EF8-930A-4DF52D54E646}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{B270EE4D-949F-4FF4-9FFE-733CBFD4098E}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{C11BF140-4B7B-4CC0-969B-8C7E7CE82319}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{604CAF66-F9E7-4EF8-930A-4DF52D54E646}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CS1\Services\Tcpip\..\{B270EE4D-949F-4FF4-9FFE-733CBFD4098E}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CS1\Services\Tcpip\..\{C11BF140-4B7B-4CC0-969B-8C7E7CE82319}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CS2\Services\Tcpip\..\{604CAF66-F9E7-4EF8-930A-4DF52D54E646}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{B270EE4D-949F-4FF4-9FFE-733CBFD4098E}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{C11BF140-4B7B-4CC0-969B-8C7E7CE82319}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{604CAF66-F9E7-4EF8-930A-4DF52D54E646}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CS2\Services\Tcpip\..\{B270EE4D-949F-4FF4-9FFE-733CBFD4098E}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CS2\Services\Tcpip\..\{C11BF140-4B7B-4CC0-969B-8C7E7CE82319}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CS3\Services\Tcpip\..\{604CAF66-F9E7-4EF8-930A-4DF52D54E646}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{B270EE4D-949F-4FF4-9FFE-733CBFD4098E}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{C11BF140-4B7B-4CC0-969B-8C7E7CE82319}: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{604CAF66-F9E7-4EF8-930A-4DF52D54E646}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CS3\Services\Tcpip\..\{B270EE4D-949F-4FF4-9FFE-733CBFD4098E}: DhcpDomain = gateway.2wire.net
O17 - HKLM\System\CS3\Services\Tcpip\..\{C11BF140-4B7B-4CC0-969B-8C7E7CE82319}: DhcpDomain = gateway.2wire.net
~ Scan Domain in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\microsoft shared\Help\hxds.dll
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Program Files\Common Files\microsoft shared\Information Retrieval\msitss.dll
O18 - Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll
O18 - Handler: mso-offdap - {3D9F03FA-7A94-11D3-BE81-0050048385D1} . (.Microsoft Corporation - Microsoft Office XP Web Components.) -- C:\Program Files\Common Files\microsoft shared\Web Components\10\OWC10.dll
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} . (.Skype Technologies S.A. - Skype add-on for IE.) -- C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} . (.Skype Technologies - Skype for COM API.) -- C:\Program Files\Common Files\Skype\Skype4COM.dll
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files\Windows Live\Mail\mailcomm.dll
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll
O18 - Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.dll
~ Scan Protocole Additionnel in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: PRISMGNA.DLL . (.Conexant Systems, Inc. - PRISM Logon Service.) -- C:\Windows\system32\PRISMGNA.dll
~ Scan Winlogon in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (...) - ll C:\Program Files\bandoo\bndhook.dll (.not file.)
~ Scan AppInit DLL in 00mn 00s
---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Contrôleur de site Web.) -- C:\Windows\System32\webcheck.dll
~ Scan SSODL in 00mn 00s
---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\system32\browseui.dll
~ Scan STS/SSO in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Planificateur LiveUpdate automatique (Automatic LiveUpdate Scheduler) . (.Symantec Corporation - Automatic LiveUpdate Scheduler Service.) - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
O23 - Service: avast! Antivirus (avast! Antivirus) . (.AVAST Software - avast! Service.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) . (.Symantec Corporation - Symantec Service Framework.) - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) . (.Symantec Corporation - Symantec Service Framework.) - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) . (.Symantec Corporation - Symantec Service Framework.) - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Google Update Service (gupdate1c9607e20e (gupdate1c9607e20e74900) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service (HP Health Check Service) . (.Hewlett-Packard - HP Health Check Service.) - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: LightScribeService Direct Disc Labeling (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate Notice (LiveUpdate Notice) . (.Symantec Corporation - Symantec Service Framework.) - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 175.2.) - C:\Windows\system32\nvvsvc.exe
O23 - Service: PRISMSVC (PRISMSVC) . (.Conexant Systems, Inc. - PRISM Server Service Module.) - C:\Windows\System32\PRISMSVC.exe
O23 - Service: (Secure Content Management) . (...) - C:\Windows\System32\scm.exe
O23 - Service: TeamViewer 4 (TeamViewer4) . (.TeamViewer GmbH - TeamViewer Service.) - C:\Program Files\TeamViewer\Version4\TeamViewer_Service.exe
O23 - Service: XAudioService (XAudioService) . (.Conexant Systems, Inc. - Modem Audio Service.) - C:\Windows\system32\DRIVERS\xaudio.exe
~ Scan Services in 00mn 01s
---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s
---\\ BootExecute (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ Scan Keys in 00mn 00s
---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Norton AntiVirus - Effectuer une analyse complète du système - Ilyes.job
O39 - APT:Automatic Planified Ta
bonjour,
Voici le lien(rapport ZHPdiag) :
http://pjjoint.malekal.com/files.php?id=ZHPDiag_20120123_u1512j15d13c5
Voici le lien(rapport ZHPdiag) :
http://pjjoint.malekal.com/files.php?id=ZHPDiag_20120123_u1512j15d13c5
Bonjour
Utilisation de l'outil ZHPFix :
* Copie tout le texte présent dans l'encadré ci-dessous (tu le sélectionnes avec ta souris / Clique droit dessus et choisis "copier" ou fait Ctrl+C )
-------------------------------------------------------------------------------------------------
G1 - GCS: Preference [User Data\Default] http://www.questscan.com
M2 - MFEP: prefs.js [ADMINISTRATOR - 47qx4jlj.default\firefox@bandoo.com] [] Bandoo for Firefox v5.0 (.DT Soft Ltd..)
O20 - AppInit_DLLs: . (...) - ll C:\Program Files\bandoo\bndhook.dll (.not file.)
[MD5.00000000000000000000000000000000] [APT] [RunAsStdUser Task] (...) -- C:\Program Files\Seekmo\bin\14.0.141.0\SeekmoSA.exe (.not file.)
O42 - Logiciel: winpwn 2.0.0.3 - (.cmw.) [HKLM] -- winpwn
[HKCU\Software\cmw]
O43 - CFD: 20/07/2010 - 08:43:00 - [19,439] ----D- C:\Program Files\Bandoo
O43 - CFD: 21/01/2012 - 10:45:36 - [0] ----D- C:\Users\ADMINISTRATOR\AppData\Roaming\Bandoo
O43 - CFD: 10/06/2011 - 18:34:42 - [0,003] ----D- C:\Users\ADMINISTRATOR\AppData\Roaming\cmw
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {4B8C28A7-A9BC-45F8-990D-21499EED643C} - (QuestScan) - http://www.questscan.com
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {4B8C28A7-A9BC-45F8-990D-21499EED643C} - (QuestScan) - http://www.questscan.com
[HKLM\Software\Classes\Interface\{01222E21-6BD0-4EB3-94F1-967EB09CCED5}]
[HKLM\Software\Classes\Interface\{06DE5702-44CF-4B79-B4EF-3DDF653358F5}]
[HKLM\Software\Classes\AppID\{A01A3335-0C30-4312-A430-92356CC37A92}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B6F8DA9F-2696-419e-A8A3-19BE41EF51BD}]
[HKLM\Software\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}]
[HKLM\Software\Classes\Interface\{db885111-f39f-4d88-9ee5-c88460b6df7b}]
[HKCU\Software\CMW]
C:\Program Files\Bandoo
C:\Users\ADMINISTRATOR\AppData\Roaming\Bandoo
C:\Users\ADMINISTRATOR\AppData\Roaming\Mozilla\Firefox\Profiles\47qx4jlj.default\Extensions\dttoolbar@toolbarnet.com
R3 - URLSearchHook: (no name) - {472734EA-242A-422b-ADF8-83D1E48CC825} . (...) (No version) -- (.not file.)
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\cc - Raccourci (2).lnk - Clé orpheline
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\cc - Raccourci.lnk - Clé orpheline
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\InternetTV.lnk . (...) -- C:\Program Files\Free Internet TV\InternetTV.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{1D9FBABB-1CBB-4457-947E-995479625104}] (...) -- C:\Users\ADMINISTRATOR\Desktop\1wolf14\INSTALL.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{936F7C50-8FD5-4157-81C4-AF467678F6F2}] (...) -- E:\nfs_uninst.exe (.not file.)
O41 - Driver: (brgojvxz) . (. - .) - C:\Windows\system32\drivers\brgojvxz.sys (.not file.)
O41 - Driver: (jshknhjb) . (. - .) - C:\Windows\system32\drivers\jshknhjb.sys (.not file.)
O42 - Logiciel: Spyware Doctor 8.0 - (.PC Tools.) [HKLM] -- Spyware Doctor
O51 - MPSK:{2281a484-7ba2-11df-892a-0014a55ee0c1}\AutoRun\command. (...) -- K:\laf\lauski.exe (.not file.)
M2 - MFEP: prefs.js [ADMINISTRATOR - 47qx4jlj.default\DTToolbar@toolbarnet.com] [] DAEMON Tools Toolbar v (.DT Soft Ltd..)
M2 - MFEP: prefs.js [ADMINISTRATOR - 47qx4jlj.default\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}] [] Vgrabber Community Toolbar v3.8.0.8 (.Conduit Ltd..)
M2 - MFEP: prefs.js [ADMINISTRATOR - 47qx4jlj.default\{f2c43291-151e-499c-98a7-923c120b88fa}] [] PhotoJoy US Community Toolbar v3.6.0.10 (.Conduit Ltd..)
R3 - URLSearchHook: (no name) - {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} . (...) (No version) -- (.not file.)
R3 - URLSearchHook: PhotoJoy US Toolbar - {f2c43291-151e-499c-98a7-923c120b88fa} . (.Conduit Ltd. - Conduit Toolbar.) (6.4.0.0) -- C:\Program Files\PhotoJoy_US\prxtbPhot.dll
R3 - URLSearchHook: Vgrabber Toolbar - {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f} . (.Conduit Ltd. - Conduit Toolbar.) (6.4.0.0) -- C:\Program Files\Vgrabber\prxtbVgr0.dll
R3 - URLSearchHook: PhotoJoy US Toolbar - {f2c43291-151e-499c-98a7-923c120b88fa} . (.Conduit Ltd. - Conduit Toolbar.) (6.4.0.0) -- C:\Program Files\PhotoJoy_US\prxtbPhot.dll
R3 - URLSearchHook: Vgrabber Toolbar - {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f} . (.Conduit Ltd. - Conduit Toolbar.) (6.4.0.0) -- C:\Program Files\Vgrabber\prxtbVgr0.dll
O2 - BHO: Vgrabber - {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vgrabber\prxtbVgr0.dll
O2 - BHO: PhotoJoy US - {f2c43291-151e-499c-98a7-923c120b88fa} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\PhotoJoy_US\prxtbPhot.dll
O3 - Toolbar: PhotoJoy US Toolbar - {f2c43291-151e-499c-98a7-923c120b88fa} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\PhotoJoy_US\prxtbPhot.dll
O3 - Toolbar: Vgrabber Toolbar - {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vgrabber\prxtbVgr0.dll
O42 - Logiciel: DAEMON Tools Toolbar - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Toolbar
O42 - Logiciel: Eazel-FR Toolbar - (.Pas de propriétaire.) [HKLM] -- Eazel-FR Toolbar
O42 - Logiciel: Vgrabber Toolbar - (.Vgrabber.) [HKLM] -- Vgrabber Toolbar
[HKCU\Software\AppDataLow\Software\ConduitSearchScopes]
[HKCU\Software\AppDataLow\Software\PhotoJoy_US]
[HKLM\Software\PhotoJoy_US]
O43 - CFD: 04/09/2010 - 14:37:10 - [1,859] ----D- C:\Program Files\DAEMON Tools Toolbar
O43 - CFD: 11/09/2011 - 17:10:50 - [4,704] ----D- C:\Program Files\PhotoJoy_US
O69 - SBI: SearchScopes [HKCU] {292D475D-36FC-4A9D-A5E3-440BA6DE386B} - (Ask.com) - https://fr.ask.com/?o=0&l=dir&ad=dirN
[HKLM\Software\Classes\AppID\GIFAnimator.DLL]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}]
[HKLM\Software\Classes\CLSID\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{f2c43291-151e-499c-98a7-923c120b88fa}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{f2c43291-151e-499c-98a7-923c120b88fa}]
[HKLM\Software\Classes\CLSID\{f2c43291-151e-499c-98a7-923c120b88fa}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f2c43291-151e-499c-98a7-923c120b88fa}]
[HKCU\Software\AppDataLow\Software\ConduitSearchScopes]
[HKCU\Software\AppDataLow\Software\PhotoJoy_US]
[HKLM\Software\PhotoJoy_US]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\daemon tools toolbar]
C:\Program Files\DAEMON Tools Toolbar
C:\Program Files\PhotoJoy_US
C:\Users\ADMINISTRATOR\AppData\LocalLow\PhotoJoy_US
FirewallRAZ
Emptytemp
--------------------------------------------------------------------------------------------
Puis lance ZHPFix depuis le raccourci du bureau. Sous Vista :Clic droit sur l'icône ZHPFix.exe
« Exécuter en tant qu'administrateur »
.
* Une fois l'outil ZHPFix ouvert, clique sur le bouton [ H ] ( "coller les lignes Helper" ) .
*Vérifie que toutes les lignes que je t'ai demandé de copier (et seulement elles) sont dans la fenêtre.
*Les lignes se collent automatiquement dans ZHPFix, sinon colle les lignes
- Clique sur le bouton « GO » pour lancer le nettoyage,
-> laisse travailler l'outil et ne touche à rien ...
-> Si il t'est demandé de redémarrer le PC pour finir le nettoyage, fais le !
Une fois terminé, un nouveau rapport s'affiche : poste le contenu de ce dernier dans ta prochaine réponse ...
( ce rapport est en outre sauvegardé dans ce dossier > C:\Program files\ZHPDiag\ ZHPFixReport.txt )
A+
Utilisation de l'outil ZHPFix :
* Copie tout le texte présent dans l'encadré ci-dessous (tu le sélectionnes avec ta souris / Clique droit dessus et choisis "copier" ou fait Ctrl+C )
-------------------------------------------------------------------------------------------------
G1 - GCS: Preference [User Data\Default] http://www.questscan.com
M2 - MFEP: prefs.js [ADMINISTRATOR - 47qx4jlj.default\firefox@bandoo.com] [] Bandoo for Firefox v5.0 (.DT Soft Ltd..)
O20 - AppInit_DLLs: . (...) - ll C:\Program Files\bandoo\bndhook.dll (.not file.)
[MD5.00000000000000000000000000000000] [APT] [RunAsStdUser Task] (...) -- C:\Program Files\Seekmo\bin\14.0.141.0\SeekmoSA.exe (.not file.)
O42 - Logiciel: winpwn 2.0.0.3 - (.cmw.) [HKLM] -- winpwn
[HKCU\Software\cmw]
O43 - CFD: 20/07/2010 - 08:43:00 - [19,439] ----D- C:\Program Files\Bandoo
O43 - CFD: 21/01/2012 - 10:45:36 - [0] ----D- C:\Users\ADMINISTRATOR\AppData\Roaming\Bandoo
O43 - CFD: 10/06/2011 - 18:34:42 - [0,003] ----D- C:\Users\ADMINISTRATOR\AppData\Roaming\cmw
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {4B8C28A7-A9BC-45F8-990D-21499EED643C} - (QuestScan) - http://www.questscan.com
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {4B8C28A7-A9BC-45F8-990D-21499EED643C} - (QuestScan) - http://www.questscan.com
[HKLM\Software\Classes\Interface\{01222E21-6BD0-4EB3-94F1-967EB09CCED5}]
[HKLM\Software\Classes\Interface\{06DE5702-44CF-4B79-B4EF-3DDF653358F5}]
[HKLM\Software\Classes\AppID\{A01A3335-0C30-4312-A430-92356CC37A92}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B6F8DA9F-2696-419e-A8A3-19BE41EF51BD}]
[HKLM\Software\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}]
[HKLM\Software\Classes\Interface\{db885111-f39f-4d88-9ee5-c88460b6df7b}]
[HKCU\Software\CMW]
C:\Program Files\Bandoo
C:\Users\ADMINISTRATOR\AppData\Roaming\Bandoo
C:\Users\ADMINISTRATOR\AppData\Roaming\Mozilla\Firefox\Profiles\47qx4jlj.default\Extensions\dttoolbar@toolbarnet.com
R3 - URLSearchHook: (no name) - {472734EA-242A-422b-ADF8-83D1E48CC825} . (...) (No version) -- (.not file.)
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\cc - Raccourci (2).lnk - Clé orpheline
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\cc - Raccourci.lnk - Clé orpheline
O4 - Global Startup: C:\Users\ADMINISTRATOR\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\InternetTV.lnk . (...) -- C:\Program Files\Free Internet TV\InternetTV.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{1D9FBABB-1CBB-4457-947E-995479625104}] (...) -- C:\Users\ADMINISTRATOR\Desktop\1wolf14\INSTALL.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{936F7C50-8FD5-4157-81C4-AF467678F6F2}] (...) -- E:\nfs_uninst.exe (.not file.)
O41 - Driver: (brgojvxz) . (. - .) - C:\Windows\system32\drivers\brgojvxz.sys (.not file.)
O41 - Driver: (jshknhjb) . (. - .) - C:\Windows\system32\drivers\jshknhjb.sys (.not file.)
O42 - Logiciel: Spyware Doctor 8.0 - (.PC Tools.) [HKLM] -- Spyware Doctor
O51 - MPSK:{2281a484-7ba2-11df-892a-0014a55ee0c1}\AutoRun\command. (...) -- K:\laf\lauski.exe (.not file.)
M2 - MFEP: prefs.js [ADMINISTRATOR - 47qx4jlj.default\DTToolbar@toolbarnet.com] [] DAEMON Tools Toolbar v (.DT Soft Ltd..)
M2 - MFEP: prefs.js [ADMINISTRATOR - 47qx4jlj.default\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}] [] Vgrabber Community Toolbar v3.8.0.8 (.Conduit Ltd..)
M2 - MFEP: prefs.js [ADMINISTRATOR - 47qx4jlj.default\{f2c43291-151e-499c-98a7-923c120b88fa}] [] PhotoJoy US Community Toolbar v3.6.0.10 (.Conduit Ltd..)
R3 - URLSearchHook: (no name) - {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe} . (...) (No version) -- (.not file.)
R3 - URLSearchHook: PhotoJoy US Toolbar - {f2c43291-151e-499c-98a7-923c120b88fa} . (.Conduit Ltd. - Conduit Toolbar.) (6.4.0.0) -- C:\Program Files\PhotoJoy_US\prxtbPhot.dll
R3 - URLSearchHook: Vgrabber Toolbar - {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f} . (.Conduit Ltd. - Conduit Toolbar.) (6.4.0.0) -- C:\Program Files\Vgrabber\prxtbVgr0.dll
R3 - URLSearchHook: PhotoJoy US Toolbar - {f2c43291-151e-499c-98a7-923c120b88fa} . (.Conduit Ltd. - Conduit Toolbar.) (6.4.0.0) -- C:\Program Files\PhotoJoy_US\prxtbPhot.dll
R3 - URLSearchHook: Vgrabber Toolbar - {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f} . (.Conduit Ltd. - Conduit Toolbar.) (6.4.0.0) -- C:\Program Files\Vgrabber\prxtbVgr0.dll
O2 - BHO: Vgrabber - {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vgrabber\prxtbVgr0.dll
O2 - BHO: PhotoJoy US - {f2c43291-151e-499c-98a7-923c120b88fa} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\PhotoJoy_US\prxtbPhot.dll
O3 - Toolbar: PhotoJoy US Toolbar - {f2c43291-151e-499c-98a7-923c120b88fa} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\PhotoJoy_US\prxtbPhot.dll
O3 - Toolbar: Vgrabber Toolbar - {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vgrabber\prxtbVgr0.dll
O42 - Logiciel: DAEMON Tools Toolbar - (.DT Soft Ltd.) [HKLM] -- DAEMON Tools Toolbar
O42 - Logiciel: Eazel-FR Toolbar - (.Pas de propriétaire.) [HKLM] -- Eazel-FR Toolbar
O42 - Logiciel: Vgrabber Toolbar - (.Vgrabber.) [HKLM] -- Vgrabber Toolbar
[HKCU\Software\AppDataLow\Software\ConduitSearchScopes]
[HKCU\Software\AppDataLow\Software\PhotoJoy_US]
[HKLM\Software\PhotoJoy_US]
O43 - CFD: 04/09/2010 - 14:37:10 - [1,859] ----D- C:\Program Files\DAEMON Tools Toolbar
O43 - CFD: 11/09/2011 - 17:10:50 - [4,704] ----D- C:\Program Files\PhotoJoy_US
O69 - SBI: SearchScopes [HKCU] {292D475D-36FC-4A9D-A5E3-440BA6DE386B} - (Ask.com) - https://fr.ask.com/?o=0&l=dir&ad=dirN
[HKLM\Software\Classes\AppID\GIFAnimator.DLL]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}]
[HKLM\Software\Classes\CLSID\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{f2c43291-151e-499c-98a7-923c120b88fa}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{f2c43291-151e-499c-98a7-923c120b88fa}]
[HKLM\Software\Classes\CLSID\{f2c43291-151e-499c-98a7-923c120b88fa}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f2c43291-151e-499c-98a7-923c120b88fa}]
[HKCU\Software\AppDataLow\Software\ConduitSearchScopes]
[HKCU\Software\AppDataLow\Software\PhotoJoy_US]
[HKLM\Software\PhotoJoy_US]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\daemon tools toolbar]
C:\Program Files\DAEMON Tools Toolbar
C:\Program Files\PhotoJoy_US
C:\Users\ADMINISTRATOR\AppData\LocalLow\PhotoJoy_US
FirewallRAZ
Emptytemp
--------------------------------------------------------------------------------------------
Puis lance ZHPFix depuis le raccourci du bureau. Sous Vista :Clic droit sur l'icône ZHPFix.exe
« Exécuter en tant qu'administrateur »
.
* Une fois l'outil ZHPFix ouvert, clique sur le bouton [ H ] ( "coller les lignes Helper" ) .
*Vérifie que toutes les lignes que je t'ai demandé de copier (et seulement elles) sont dans la fenêtre.
*Les lignes se collent automatiquement dans ZHPFix, sinon colle les lignes
- Clique sur le bouton « GO » pour lancer le nettoyage,
-> laisse travailler l'outil et ne touche à rien ...
-> Si il t'est demandé de redémarrer le PC pour finir le nettoyage, fais le !
Une fois terminé, un nouveau rapport s'affiche : poste le contenu de ce dernier dans ta prochaine réponse ...
( ce rapport est en outre sauvegardé dans ce dossier > C:\Program files\ZHPDiag\ ZHPFixReport.txt )
A+
Rapport de ZHPFix 1.12.3378 par Nicolas Coolman, Update du 10/01/2011
Fichier d'export Registre :
Run by ADMINISTRATOR at 23/01/2012 08:15:47
Windows Vista Home Premium Edition, 32-bit Service Pack 2 (Build 6002)
Web site : http://www.premiumorange.com/zeb-help-process/zhpfix.html
Web site : http://nicolascoolman.skyrock.com/
========== Fichier(s) ==========
ABSENT Folder/File: c:\zhp\zhpfix [7188]
========== Autre ==========
NON TRAITE Rapport de ZHPFix 1.12.3378 par Nicolas Coolman, Update du 10/01/2011
NON TRAITE Fichier d'export Registre : C:\ZHP\ZHPExportRegistry-23-01-2012-07-39-10.txt
NON TRAITE Windows Vista Home Premium Edition, 32-bit Service Pack 2 (Build 6002)
NON TRAITE ========== Logiciel(s)
NON TRAITE ABSENT Software Key: winpwn
NON TRAITE ABSENT Software Key: Spyware Doctor
NON TRAITE ABSENT Software Key: DAEMON Tools Toolbar
NON TRAITE ABSENT Software Key: Eazel-FR Toolbar
NON TRAITE ABSENT Software Key: Vgrabber Toolbar
NON TRAITE ========== Clé(s) du Registre
NON TRAITE ABSENT Key: HKCU\Software\cmw
NON TRAITE ABSENT SearchScopes :{4B8C28A7-A9BC-45F8-990D-21499EED643C}
NON TRAITE ABSENT Key: HKLM\Software\Classes\Interface\{01222E21-6BD0-4EB3-94F1-967EB09CCED5}
NON TRAITE ABSENT Key: HKLM\Software\Classes\Interface\{06DE5702-44CF-4B79-B4EF-3DDF653358F5}
NON TRAITE ABSENT Key: HKLM\Software\Classes\AppID\{A01A3335-0C30-4312-A430-92356CC37A92}
NON TRAITE ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B6F8DA9F-2696-419e-A8A3-19BE41EF51BD}
NON TRAITE ABSENT Key: HKLM\Software\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
NON TRAITE ABSENT Key: HKLM\Software\Classes\Interface\{db885111-f39f-4d88-9ee5-c88460b6df7b}
NON TRAITE ABSENT CLSID MPSK: {2281a484-7ba2-11df-892a-0014a55ee0c1}
NON TRAITE ABSENT Key: CLSID BHO: {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}
NON TRAITE ABSENT Key: CLSID BHO: {f2c43291-151e-499c-98a7-923c120b88fa}
NON TRAITE ABSENT Key: HKCU\Software\AppDataLow\Software\ConduitSearchScopes
NON TRAITE ABSENT Key: HKCU\Software\AppDataLow\Software\PhotoJoy_US
NON TRAITE ABSENT Key: HKLM\Software\PhotoJoy_US
NON TRAITE ABSENT SearchScopes :{292D475D-36FC-4A9D-A5E3-440BA6DE386B}
NON TRAITE ABSENT Key: HKLM\Software\Classes\AppID\GIFAnimator.DLL
NON TRAITE ABSENT Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}
NON TRAITE ABSENT Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}
NON TRAITE ABSENT Key: HKLM\Software\Classes\CLSID\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}
NON TRAITE ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}
NON TRAITE ABSENT Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{f2c43291-151e-499c-98a7-923c120b88fa}
NON TRAITE ABSENT Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{f2c43291-151e-499c-98a7-923c120b88fa}
NON TRAITE ABSENT Key: HKLM\Software\Classes\CLSID\{f2c43291-151e-499c-98a7-923c120b88fa}
NON TRAITE ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f2c43291-151e-499c-98a7-923c120b88fa}
NON TRAITE ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\daemon tools toolbar
NON TRAITE ========== Valeur(s) du Registre
NON TRAITE SUPPRIME URLSearchHook: {472734EA-242A-422b-ADF8-83D1E48CC825}
NON TRAITE ABSENT URLSearchHook: {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe}
NON TRAITE ABSENT URLSearchHook: {f2c43291-151e-499c-98a7-923c120b88fa}
NON TRAITE SUPPRIME URLSearchHook: {f2c43291-151e-499c-98a7-923c120b88fa}
NON TRAITE ABSENT URLSearchHook: {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}
NON TRAITE SUPPRIME URLSearchHook: {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}
NON TRAITE ABSENT Toolbar: {f2c43291-151e-499c-98a7-923c120b88fa}
NON TRAITE ABSENT Toolbar: {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}
NON TRAITE ABSENT Valeur Standard Profile: FirewallRaz :
NON TRAITE ABSENT Valeur Domain Profile: FirewallRaz :
NON TRAITE ========== Elément(s) de donnée du Registre
NON TRAITE SUPPRIME AppInit: C:\Program Files\bandoo\bndhook.dll
NON TRAITE ========== Préférences navigateur
NON TRAITE PRESENT Chrome File: C:\Users\ADMINISTRATOR\AppData\Local\Google\Chrome\User Data\Default\Preferences
NON TRAITE ABSENT Chrome Site: http://www.questscan.com
NON TRAITE ========== Dossier(s)
NON TRAITE ABSENT C:\Program Files\Bandoo
NON TRAITE ABSENT C:\Users\ADMINISTRATOR\AppData\Roaming\Bandoo
NON TRAITE ABSENT C:\Users\ADMINISTRATOR\AppData\Roaming\cmw
NON TRAITE ABSENT C:\Program Files\DAEMON Tools Toolbar
NON TRAITE ABSENT C:\Program Files\PhotoJoy_US
NON TRAITE SUPPRIME Temporaires Windows: : 7
NON TRAITE ========== Fichier(s)
NON TRAITE ABSENT File: c:\program files\bandoo\bndhook.dll
NON TRAITE ABSENT Folder/File: c:\program files\bandoo
NON TRAITE ABSENT Folder/File: c:\users\administrator\appdata\roaming\bandoo
NON TRAITE ABSENT Folder/File: c:\users\administrator\appdata\roaming\mozilla\firefox\profiles\47qx4jlj.default\extensions\dttoolbar@toolbarnet.com
NON TRAITE ABSENT File: c:\users\administrator\appdata\roaming\microsoft\internet explorer\quick launch\cc - raccourci (2).lnk
NON TRAITE ABSENT File: c:\users\administrator\appdata\roaming\microsoft\internet explorer\quick launch\cc - raccourci.lnk
NON TRAITE ABSENT File: c:\users\administrator\appdata\roaming\microsoft\internet explorer\quick launch\internettv.lnk
NON TRAITE ABSENT File: c:\program files\free internet tv\internettv.exe
NON TRAITE ABSENT File: c:\program files\photojoy_us\prxtbphot.dll
NON TRAITE ABSENT File: c:\program files\vgrabber\prxtbvgr0.dll
NON TRAITE ABSENT Folder/File: c:\program files\daemon tools toolbar
NON TRAITE ABSENT Folder/File: c:\program files\photojoy_us
NON TRAITE ABSENT Folder/File: c:\users\administrator\appdata\locallow\photojoy_us
NON TRAITE SUPPRIME Temporaires Windows: : 48
NON TRAITE ========== Tache planifiée
NON TRAITE ABSENT Task: RunAsStdUser Task
NON TRAITE ABSENT Task: {1D9FBABB-1CBB-4457-947E-995479625104}
NON TRAITE ABSENT Task: {936F7C50-8FD5-4157-81C4-AF467678F6F2}
NON TRAITE ========== Récapitulatif
NON TRAITE 25 : Clé(s) du Registre
NON TRAITE 10 : Valeur(s) du Registre
NON TRAITE 1 : Elément(s) de donnée du Registre
NON TRAITE 6 : Dossier(s)
NON TRAITE 14 : Fichier(s)
NON TRAITE 5 : Logiciel(s)
NON TRAITE 2 : Préférences navigateur
NON TRAITE 3 : Tache planifiée
NON TRAITE End of clean in 00mn 27s
NON TRAITE ========== Chemin de fichier rapport
========== Récapitulatif ==========
1 : Fichier(s)
88 : Autre
End of clean in 00mn 00s
========== Chemin de fichier rapport ==========
C:\ZHP\ZHPFix[R1].txt - 23/01/2012 06:36:08 [7188]
C:\ZHP\ZHPFix[R2].txt - 23/01/2012 07:39:10 [5544]
C:\ZHP\ZHPFix[R3].txt - 23/01/2012 08:15:47 [6902]
Fichier d'export Registre :
Run by ADMINISTRATOR at 23/01/2012 08:15:47
Windows Vista Home Premium Edition, 32-bit Service Pack 2 (Build 6002)
Web site : http://www.premiumorange.com/zeb-help-process/zhpfix.html
Web site : http://nicolascoolman.skyrock.com/
========== Fichier(s) ==========
ABSENT Folder/File: c:\zhp\zhpfix [7188]
========== Autre ==========
NON TRAITE Rapport de ZHPFix 1.12.3378 par Nicolas Coolman, Update du 10/01/2011
NON TRAITE Fichier d'export Registre : C:\ZHP\ZHPExportRegistry-23-01-2012-07-39-10.txt
NON TRAITE Windows Vista Home Premium Edition, 32-bit Service Pack 2 (Build 6002)
NON TRAITE ========== Logiciel(s)
NON TRAITE ABSENT Software Key: winpwn
NON TRAITE ABSENT Software Key: Spyware Doctor
NON TRAITE ABSENT Software Key: DAEMON Tools Toolbar
NON TRAITE ABSENT Software Key: Eazel-FR Toolbar
NON TRAITE ABSENT Software Key: Vgrabber Toolbar
NON TRAITE ========== Clé(s) du Registre
NON TRAITE ABSENT Key: HKCU\Software\cmw
NON TRAITE ABSENT SearchScopes :{4B8C28A7-A9BC-45F8-990D-21499EED643C}
NON TRAITE ABSENT Key: HKLM\Software\Classes\Interface\{01222E21-6BD0-4EB3-94F1-967EB09CCED5}
NON TRAITE ABSENT Key: HKLM\Software\Classes\Interface\{06DE5702-44CF-4B79-B4EF-3DDF653358F5}
NON TRAITE ABSENT Key: HKLM\Software\Classes\AppID\{A01A3335-0C30-4312-A430-92356CC37A92}
NON TRAITE ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B6F8DA9F-2696-419e-A8A3-19BE41EF51BD}
NON TRAITE ABSENT Key: HKLM\Software\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
NON TRAITE ABSENT Key: HKLM\Software\Classes\Interface\{db885111-f39f-4d88-9ee5-c88460b6df7b}
NON TRAITE ABSENT CLSID MPSK: {2281a484-7ba2-11df-892a-0014a55ee0c1}
NON TRAITE ABSENT Key: CLSID BHO: {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}
NON TRAITE ABSENT Key: CLSID BHO: {f2c43291-151e-499c-98a7-923c120b88fa}
NON TRAITE ABSENT Key: HKCU\Software\AppDataLow\Software\ConduitSearchScopes
NON TRAITE ABSENT Key: HKCU\Software\AppDataLow\Software\PhotoJoy_US
NON TRAITE ABSENT Key: HKLM\Software\PhotoJoy_US
NON TRAITE ABSENT SearchScopes :{292D475D-36FC-4A9D-A5E3-440BA6DE386B}
NON TRAITE ABSENT Key: HKLM\Software\Classes\AppID\GIFAnimator.DLL
NON TRAITE ABSENT Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}
NON TRAITE ABSENT Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}
NON TRAITE ABSENT Key: HKLM\Software\Classes\CLSID\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}
NON TRAITE ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}
NON TRAITE ABSENT Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{f2c43291-151e-499c-98a7-923c120b88fa}
NON TRAITE ABSENT Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{f2c43291-151e-499c-98a7-923c120b88fa}
NON TRAITE ABSENT Key: HKLM\Software\Classes\CLSID\{f2c43291-151e-499c-98a7-923c120b88fa}
NON TRAITE ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f2c43291-151e-499c-98a7-923c120b88fa}
NON TRAITE ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\daemon tools toolbar
NON TRAITE ========== Valeur(s) du Registre
NON TRAITE SUPPRIME URLSearchHook: {472734EA-242A-422b-ADF8-83D1E48CC825}
NON TRAITE ABSENT URLSearchHook: {a8f9752d-e2b8-4e7a-86b5-499f4330e2fe}
NON TRAITE ABSENT URLSearchHook: {f2c43291-151e-499c-98a7-923c120b88fa}
NON TRAITE SUPPRIME URLSearchHook: {f2c43291-151e-499c-98a7-923c120b88fa}
NON TRAITE ABSENT URLSearchHook: {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}
NON TRAITE SUPPRIME URLSearchHook: {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}
NON TRAITE ABSENT Toolbar: {f2c43291-151e-499c-98a7-923c120b88fa}
NON TRAITE ABSENT Toolbar: {b2ed7faf-72a0-46d1-9d9d-602226f5cb9f}
NON TRAITE ABSENT Valeur Standard Profile: FirewallRaz :
NON TRAITE ABSENT Valeur Domain Profile: FirewallRaz :
NON TRAITE ========== Elément(s) de donnée du Registre
NON TRAITE SUPPRIME AppInit: C:\Program Files\bandoo\bndhook.dll
NON TRAITE ========== Préférences navigateur
NON TRAITE PRESENT Chrome File: C:\Users\ADMINISTRATOR\AppData\Local\Google\Chrome\User Data\Default\Preferences
NON TRAITE ABSENT Chrome Site: http://www.questscan.com
NON TRAITE ========== Dossier(s)
NON TRAITE ABSENT C:\Program Files\Bandoo
NON TRAITE ABSENT C:\Users\ADMINISTRATOR\AppData\Roaming\Bandoo
NON TRAITE ABSENT C:\Users\ADMINISTRATOR\AppData\Roaming\cmw
NON TRAITE ABSENT C:\Program Files\DAEMON Tools Toolbar
NON TRAITE ABSENT C:\Program Files\PhotoJoy_US
NON TRAITE SUPPRIME Temporaires Windows: : 7
NON TRAITE ========== Fichier(s)
NON TRAITE ABSENT File: c:\program files\bandoo\bndhook.dll
NON TRAITE ABSENT Folder/File: c:\program files\bandoo
NON TRAITE ABSENT Folder/File: c:\users\administrator\appdata\roaming\bandoo
NON TRAITE ABSENT Folder/File: c:\users\administrator\appdata\roaming\mozilla\firefox\profiles\47qx4jlj.default\extensions\dttoolbar@toolbarnet.com
NON TRAITE ABSENT File: c:\users\administrator\appdata\roaming\microsoft\internet explorer\quick launch\cc - raccourci (2).lnk
NON TRAITE ABSENT File: c:\users\administrator\appdata\roaming\microsoft\internet explorer\quick launch\cc - raccourci.lnk
NON TRAITE ABSENT File: c:\users\administrator\appdata\roaming\microsoft\internet explorer\quick launch\internettv.lnk
NON TRAITE ABSENT File: c:\program files\free internet tv\internettv.exe
NON TRAITE ABSENT File: c:\program files\photojoy_us\prxtbphot.dll
NON TRAITE ABSENT File: c:\program files\vgrabber\prxtbvgr0.dll
NON TRAITE ABSENT Folder/File: c:\program files\daemon tools toolbar
NON TRAITE ABSENT Folder/File: c:\program files\photojoy_us
NON TRAITE ABSENT Folder/File: c:\users\administrator\appdata\locallow\photojoy_us
NON TRAITE SUPPRIME Temporaires Windows: : 48
NON TRAITE ========== Tache planifiée
NON TRAITE ABSENT Task: RunAsStdUser Task
NON TRAITE ABSENT Task: {1D9FBABB-1CBB-4457-947E-995479625104}
NON TRAITE ABSENT Task: {936F7C50-8FD5-4157-81C4-AF467678F6F2}
NON TRAITE ========== Récapitulatif
NON TRAITE 25 : Clé(s) du Registre
NON TRAITE 10 : Valeur(s) du Registre
NON TRAITE 1 : Elément(s) de donnée du Registre
NON TRAITE 6 : Dossier(s)
NON TRAITE 14 : Fichier(s)
NON TRAITE 5 : Logiciel(s)
NON TRAITE 2 : Préférences navigateur
NON TRAITE 3 : Tache planifiée
NON TRAITE End of clean in 00mn 27s
NON TRAITE ========== Chemin de fichier rapport
========== Récapitulatif ==========
1 : Fichier(s)
88 : Autre
End of clean in 00mn 00s
========== Chemin de fichier rapport ==========
C:\ZHP\ZHPFix[R1].txt - 23/01/2012 06:36:08 [7188]
C:\ZHP\ZHPFix[R2].txt - 23/01/2012 07:39:10 [5544]
C:\ZHP\ZHPFix[R3].txt - 23/01/2012 08:15:47 [6902]
Bjr.
Guillaume,je t'ais envoyé le rapport qui précéde ce message mais je n'ais pas trouvé de réponse pour la suite des opérations à effectuer.
Remerciements anticipés.
Guillaume,je t'ais envoyé le rapport qui précéde ce message mais je n'ais pas trouvé de réponse pour la suite des opérations à effectuer.
Remerciements anticipés.
