Virus : Incapable d'ouvrir ou d'installer un antivirus
elan11
Messages postés
49
Statut
Membre
-
Utilisateur anonyme -
Utilisateur anonyme -
Bonjour,
Je sais que plusieurs postes existent sur ce sujet mais 'HiJackThis' me conseille de demander l'aide de quelqu'un de plus doué que moi pour éviter de supprimer des fichiers importants.
De toute évidence, j'ai un virus. Certains parlent du virus ''beagle''. Je ne sais pas si c'est le même ici. Je ne peux pas faire un scan avec Comodo et ce soir je l'ai fermé et je n'ai pas réussi à l'ouvrir à nouveau. J'ai essayé d'installer plusieurs antivirus mais l'installation ne peut être complété. Je copie le rapport HiJackThis. Merci de votre aide!
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 00:14:43, on 2013-07-19
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.21342)
FIREFOX: 21.0 (fr)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\Fichiers communs\COMODO\launcher_service.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Acer\Empowering Technology\admServ.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\COMODO\GeekBuddy\unit_manager.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\COMODO\GeekBuddy\unit.exe
C:\DOCUME~1\Client\LOCALS~1\Temp\RtkBtMnt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Client\Application Data\SearchProtect\bin\cltmng.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Fichiers communs\COMODO\GeekBuddyRSP.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
D:\Mes documents\Downloads\HijackThis.exe
Je sais que plusieurs postes existent sur ce sujet mais 'HiJackThis' me conseille de demander l'aide de quelqu'un de plus doué que moi pour éviter de supprimer des fichiers importants.
De toute évidence, j'ai un virus. Certains parlent du virus ''beagle''. Je ne sais pas si c'est le même ici. Je ne peux pas faire un scan avec Comodo et ce soir je l'ai fermé et je n'ai pas réussi à l'ouvrir à nouveau. J'ai essayé d'installer plusieurs antivirus mais l'installation ne peut être complété. Je copie le rapport HiJackThis. Merci de votre aide!
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 00:14:43, on 2013-07-19
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.21342)
FIREFOX: 21.0 (fr)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\Fichiers communs\COMODO\launcher_service.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Acer\Empowering Technology\admServ.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\COMODO\GeekBuddy\unit_manager.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\COMODO\GeekBuddy\unit.exe
C:\DOCUME~1\Client\LOCALS~1\Temp\RtkBtMnt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Client\Application Data\SearchProtect\bin\cltmng.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Fichiers communs\COMODO\GeekBuddyRSP.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
D:\Mes documents\Downloads\HijackThis.exe
A voir également:
- Virus : Incapable d'ouvrir ou d'installer un antivirus
- Virus mcafee - Accueil - Piratage
- Virus informatique - Guide
- Panda anti virus gratuit - Télécharger - Antivirus & Antimalwares
- Undisclosed-recipients virus - Guide
- Ordinateur bloqué virus - Accueil - Arnaque
76 réponses
* Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
* Héberge le rapport ZHPDiag.txt sur Cjoint, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum :
https://www.cjoint.com/ => https://www.commentcamarche.net/faq/29493-utiliser-cjoint-pour-heberger-des-fichiers
* Héberge le rapport ZHPDiag.txt sur Cjoint, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum :
https://www.cjoint.com/ => https://www.commentcamarche.net/faq/29493-utiliser-cjoint-pour-heberger-des-fichiers
bonjour,
il est super ton rapport,
il manque tout juste 2/3 !
tu as déjà comodo sur ton pc, pour quoi essayer d'installer un autre antivirus ?
il est super ton rapport,
il manque tout juste 2/3 !
tu as déjà comodo sur ton pc, pour quoi essayer d'installer un autre antivirus ?
Bonjour, merci de votre réponse
Pour HiJackThis, c'est tout ce que le rapport m'a donné. Lorsque j'ai demandé de faire le rapport, un message est apparu :
For some reason, your system denied write access to the Hosts File. In any hijacked domains are in this file, HiJackThis may NOT be able to fix it. If that happens, you need to edit the file yourself. To do this, click Start, Run and Type:
notepad C:/Windows/System32/drivers/etc/hosts
and press enter. Find the line(s) HiJackThis reports and delete them. Save the file as 'hosts' (with quotes), and reboot.
Je ne sais pas où se trouve ce 'Start' et 'Run'.
Je viens d'essayer un autre rapport et il y a plus d'éléments. Sauf que là, je n'arrive plus à copier/coller. Ça doit être encore ce virus.
Que puis-je faire? Puis-je envoyer le rapport par courriel à quelqu'un?
Pour HiJackThis, c'est tout ce que le rapport m'a donné. Lorsque j'ai demandé de faire le rapport, un message est apparu :
For some reason, your system denied write access to the Hosts File. In any hijacked domains are in this file, HiJackThis may NOT be able to fix it. If that happens, you need to edit the file yourself. To do this, click Start, Run and Type:
notepad C:/Windows/System32/drivers/etc/hosts
and press enter. Find the line(s) HiJackThis reports and delete them. Save the file as 'hosts' (with quotes), and reboot.
Je ne sais pas où se trouve ce 'Start' et 'Run'.
Je viens d'essayer un autre rapport et il y a plus d'éléments. Sauf que là, je n'arrive plus à copier/coller. Ça doit être encore ce virus.
Que puis-je faire? Puis-je envoyer le rapport par courriel à quelqu'un?
* Télécharge ZHPDiag sur ton bureau :
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
ou
http://www.premiumorange.com/zeb-help-process/zhpdiag.html
* Laisse toi guider lors de l'installation, il se lancera automatiquement à la fin.
=> L'icône est sous forme de parchemin.
* Clique sur le tourne vis , sélectionne tous les modules.
* Clique sur l'icône représentant une loupe (« Lancer le diagnostic »)
* Laisse travailler l'outil, même s'il semble bloqué !
* Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
* Héberge le rapport ZHPDiag.txt sur Cjoint, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum :
https://www.cjoint.com/ => https://www.commentcamarche.net/faq/29493-utiliser-cjoint-pour-heberger-des-fichiers
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
ou
http://www.premiumorange.com/zeb-help-process/zhpdiag.html
* Laisse toi guider lors de l'installation, il se lancera automatiquement à la fin.
=> L'icône est sous forme de parchemin.
* Clique sur le tourne vis , sélectionne tous les modules.
* Clique sur l'icône représentant une loupe (« Lancer le diagnostic »)
* Laisse travailler l'outil, même s'il semble bloqué !
* Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
* Héberge le rapport ZHPDiag.txt sur Cjoint, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum :
https://www.cjoint.com/ => https://www.commentcamarche.net/faq/29493-utiliser-cjoint-pour-heberger-des-fichiers
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Bonjour, merci de votre réponse
Finalement voilà que je peux copier le rapport HiJackThis
Avez-vous toujours besoin du rapport ZHPDiag? Merci beaucoup !
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:36:17, on 2013-07-19
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.21342)
FIREFOX: 21.0 (fr)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\Fichiers communs\COMODO\launcher_service.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Acer\Empowering Technology\admServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Fichiers communs\COMODO\GeekBuddyRSP.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\Program Files\Fichiers communs\COMODO\GeekBuddyRSP.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\svchost.exe
C:\DOCUME~1\Client\LOCALS~1\Temp\RtkBtMnt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\COMODO\GeekBuddy\unit_manager.exe
C:\Program Files\COMODO\GeekBuddy\unit.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
D:\Mes documents\Downloads\HijackThis.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\system32\NOTEPAD.EXE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT3220468
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://feed.snap.do/?publisher=SnapdoSoftonic&dpid=SnapdoSoftonic&co=CA&userid=0f4673de-ad53-448f-96b9-40349476bed8&searchtype=ds&q={searchTerms}
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;<local>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files\uTorrentControl_v2\prxtbuTor.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - blank (file missing)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Adobe\ActiveX\AcroIEHelper.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: uTorrentControl_v2 - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files\uTorrentControl_v2\prxtbuTor.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - blank (file missing)
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - blank (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - blank (file missing)
O3 - Toolbar: uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files\uTorrentControl_v2\prxtbuTor.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [Acer ePower Management] C:\Acer\Empowering Technology\ePower\Acer ePower Management.exe boot
O4 - HKLM\..\Run: [Synchronization Manager] %SystemRoot%\system32\mobsync.exe /logon
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Fichiers communs\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [gbrspcontrol] "C:\Program Files\Fichiers communs\COMODO\GeekBuddyRSP.exe" -controlservice -slave
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Gestionnaire Antidote.exe] F:\Druide\Antidote\Gestionnaire Antidote.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?')
O4 - HKUS\S-1-5-21-3650030575-3363428128-3634041001-1005\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User '?')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = D:\Adobe\Reader\reader_sl.exe
O4 - Global Startup: Start GeekBuddy.lnk = C:\Program Files\COMODO\GeekBuddy\launcher.exe
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {97E71027-0BA2-44F2-97DB-F84D808ED0B6} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab55762.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab55579.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} (Windows Live Hotmail Photo Upload Tool) - http://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol/MSNPUpld.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file)
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: AdminWorks Agent X6 (AWService) - Avocent Inc. - C:\Acer\Empowering Technology\admServ.exe
O23 - Service: COMODO LPS Launcher (CLPSLauncher) - Comodo Security Solutions Inc. - C:\Program Files\Fichiers communs\COMODO\launcher_service.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: Service de planification Media Center (ehSched) - Unknown owner - C:\WINDOWS\eHome\ehSched.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Fax - Unknown owner - C:\WINDOWS\system32\fxssvc.exe
O23 - Service: GeekBuddyRSP Service (GeekBuddyRSP) - Comodo Security Solutions, Inc. - C:\Program Files\Fichiers communs\COMODO\GeekBuddyRSP.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: MSSQL$SONY_MEDIAMGR - Unknown owner - C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe (file missing)
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - C:\Program Files\WinPcap\rpcapd.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: SQLAgent$SONY_MEDIAMGR - Unknown owner - C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE (file missing)
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe
Finalement voilà que je peux copier le rapport HiJackThis
Avez-vous toujours besoin du rapport ZHPDiag? Merci beaucoup !
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:36:17, on 2013-07-19
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.21342)
FIREFOX: 21.0 (fr)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\Fichiers communs\COMODO\launcher_service.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Acer\Empowering Technology\admServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Fichiers communs\COMODO\GeekBuddyRSP.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\Program Files\Fichiers communs\COMODO\GeekBuddyRSP.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\svchost.exe
C:\DOCUME~1\Client\LOCALS~1\Temp\RtkBtMnt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\COMODO\GeekBuddy\unit_manager.exe
C:\Program Files\COMODO\GeekBuddy\unit.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
D:\Mes documents\Downloads\HijackThis.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\system32\NOTEPAD.EXE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT3220468
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://feed.snap.do/?publisher=SnapdoSoftonic&dpid=SnapdoSoftonic&co=CA&userid=0f4673de-ad53-448f-96b9-40349476bed8&searchtype=ds&q={searchTerms}
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;<local>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files\uTorrentControl_v2\prxtbuTor.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - blank (file missing)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Adobe\ActiveX\AcroIEHelper.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: uTorrentControl_v2 - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files\uTorrentControl_v2\prxtbuTor.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - blank (file missing)
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - blank (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - blank (file missing)
O3 - Toolbar: uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} - C:\Program Files\uTorrentControl_v2\prxtbuTor.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [Acer ePower Management] C:\Acer\Empowering Technology\ePower\Acer ePower Management.exe boot
O4 - HKLM\..\Run: [Synchronization Manager] %SystemRoot%\system32\mobsync.exe /logon
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Fichiers communs\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [gbrspcontrol] "C:\Program Files\Fichiers communs\COMODO\GeekBuddyRSP.exe" -controlservice -slave
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Gestionnaire Antidote.exe] F:\Druide\Antidote\Gestionnaire Antidote.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?')
O4 - HKUS\S-1-5-21-3650030575-3363428128-3634041001-1005\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User '?')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = D:\Adobe\Reader\reader_sl.exe
O4 - Global Startup: Start GeekBuddy.lnk = C:\Program Files\COMODO\GeekBuddy\launcher.exe
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {97E71027-0BA2-44F2-97DB-F84D808ED0B6} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab55762.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab55579.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} (Windows Live Hotmail Photo Upload Tool) - http://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol/MSNPUpld.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file)
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: AdminWorks Agent X6 (AWService) - Avocent Inc. - C:\Acer\Empowering Technology\admServ.exe
O23 - Service: COMODO LPS Launcher (CLPSLauncher) - Comodo Security Solutions Inc. - C:\Program Files\Fichiers communs\COMODO\launcher_service.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: Service de planification Media Center (ehSched) - Unknown owner - C:\WINDOWS\eHome\ehSched.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Fax - Unknown owner - C:\WINDOWS\system32\fxssvc.exe
O23 - Service: GeekBuddyRSP Service (GeekBuddyRSP) - Comodo Security Solutions, Inc. - C:\Program Files\Fichiers communs\COMODO\GeekBuddyRSP.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Service Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: MSSQL$SONY_MEDIAMGR - Unknown owner - C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe (file missing)
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - C:\Program Files\WinPcap\rpcapd.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: SQLAgent$SONY_MEDIAMGR - Unknown owner - C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE (file missing)
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe
Voila le rapport, merci !
Rapport de ZHPDiag v2013.7.16.29 par Nicolas Coolman, Update du 2013-07-17
Run by Client at 2013-07-19 15:21:42
WebSite: https://nicolascoolman.webs.com/
State : Problème connexion internet
WhiteList : Enable
High Elevated Privileges : OK
UAC : Not Found
---\\ Web Browser
MSIE: Internet Explorer v7.0.5730.13
MFIE: Mozilla Firefox 21.0 (Defaut)
GCIE: Google Chrome v28.0.1500.72
---\\ Windows Product Information
~ Langage: Français
Windows XP Professional Service Pack 3 (Build 2600)
Windows Automatic Updates : OK
Windows Genuine Advantage : OK
---\\ System Protection
COMODO Internet Security v5.10.31649.2253
Malwarebytes' Anti-Malware
Ad-Aware SE Personal v1.06
---\\ System Optimizer
CCleaner v3.20 =>Piriform Ltd
---\\ Peer To Peer (P2P)
µTorrent v3.2.1.28086 =>P2P.µTorrent
---\\ Software Update
Adobe Flash Player 10 ActiveX
Adobe Reader 7.0 - Français
---\\ System Information
~ Processor: x86 Family 6 Model 14 Stepping 8, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 1526 MB (66% free)
System Restore: Activé (Enable)
System drive C: has 1 GB (1%) free of 53 GB
---\\ Logged in mode
~ Computer Name: CARLOS-LAPTOP
~ User Name: Client
~ All Users Names: SUPPORT_388945a0, HelpAssistant, Client, ASPNET, Administrateur,
~ Unselected Option: None
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Documents and Settings\Client\Application Data\
~ %Desktop% : C:\Documents and Settings\Client\Bureau\
~ %Favorites% : C:\Documents and Settings\Client\Favoris\
~ %LocalAppData% : C:\Documents and Settings\Client\Local Settings\Application Data\
~ %StartMenu% : C:\Documents and Settings\Client\Menu Démarrer\
~ %Windir% : C:\WINDOWS\
~ %System% : C:\WINDOWS\system32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 1 Go of 53 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 23 Go of 54 Go)
E:\ CD-ROM drive (Free 0 Go of 4 Go)
---\\ Security Center & Tools Informations
~ Security Center: 32 Legitimates Filtered in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.2008-04-13 - 21:34:04.) -- C:\WINDOWS\Explorer.exe [1037824]
[MD5.951A8D2E2A7082C8F32005CEAE1A14C3] - (.Microsoft Corporation - Internet Extensions for Win32.) (.2013-06-07 - 16:30:38.) -- C:\WINDOWS\system32\wininet.dll [841216]
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.2008-04-13 - 21:34:28.) -- C:\WINDOWS\system32\Winlogon.exe [512000]
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.2011-08-17 - 08:49:54.) -- C:\WINDOWS\system32\Drivers\AFD.sys [138496]
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.2008-04-13 - 13:40:30.) -- C:\WINDOWS\system32\Drivers\atapi.sys [96512]
[MD5.C885B02847F5D2FD45A24E219ED93B32] - (.Microsoft Corporation - CD-ROM File System Driver.) (.2008-04-13 - 14:14:22.) -- C:\WINDOWS\system32\Drivers\Cdfs.sys [63744]
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.2008-04-13 - 13:40:46.) -- C:\WINDOWS\system32\Drivers\Cdrom.sys [62976]
[MD5.31F923EB2170FC172C81ABDA0045D18C] - (.Microsoft Corporation - Pilote de cryptographie FIPS.) (.2008-04-13 - 20:57:38.) -- C:\WINDOWS\system32\Drivers\Fips.sys [44672]
[MD5.573C7D0A32852B48F3058CFD8026F511] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) (.2008-04-13 - 11:36:06.) -- C:\WINDOWS\system32\Drivers\HDAudBus.sys [144384]
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - (.Microsoft Corporation - Pilote de port i8042.) (.2008-04-13 - 21:00:52.) -- C:\WINDOWS\system32\Drivers\i8042prt.sys [54144]
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - (.Microsoft Corporation - IMAPI Kernel Driver.) (.2008-04-13 - 13:40:58.) -- C:\WINDOWS\system32\Drivers\Imapi.sys [42112]
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - (.Microsoft Corporation - IP Network Address Translator.) (.2008-04-13 - 13:57:16.) -- C:\WINDOWS\system32\Drivers\IpNat.sys [152832]
[MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) (.2008-04-13 - 14:19:42.) -- C:\WINDOWS\system32\Drivers\IPSec.sys [75264]
[MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.2011-07-15 - 08:29:32.) -- C:\WINDOWS\system32\Drivers\MRxSmb.sys [456320]
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - (.Microsoft Corporation - MBT Transport driver.) (.2008-04-13 - 14:21:00.) -- C:\WINDOWS\system32\Drivers\netBT.sys [162816]
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.2008-04-13 - 14:15:54.) -- C:\WINDOWS\system32\Drivers\ntfs.sys [574976]
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - (.Microsoft Corporation - Pilote de port parallèle.) (.2008-04-13 - 21:09:40.) -- C:\WINDOWS\system32\Drivers\Parport.sys [80384]
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.2008-04-13 - 14:19:44.) -- C:\WINDOWS\system32\Drivers\Rasl2tp.sys [51328]
[MD5.15CABD0F7C00C47C70124907916AF3F1] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.2008-04-13 - 13:32:52.) -- C:\WINDOWS\system32\Drivers\rdpdr.sys [196224]
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) (.2008-04-13 - 20:57:34.) -- C:\WINDOWS\system32\Drivers\redbook.sys [58752]
[MD5.46DE1126684369BACE4849E4FC8C43CA] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.2008-04-13 - 20:56:04.) -- C:\WINDOWS\system32\Drivers\volsnap.sys [53376]
~ Generic Processes: Scanned in 00mn 00s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/2
~ Mes Videos (My Videos) : 0/0
~ Mes Documents (My Documents) : 2/21083
~ Mon Bureau (My Desktop) : 7/3643
~ Menu demarrer (Programs) : 1/38
~ Hidden Files: Scanned in 00mn 18s
---\\ Processus lancés
[MD5.00E3E885D8C19CAD03BCD05DFEB2C1FE] - (.Comodo Security Solutions Inc. - livePCsupport launcher system service.) -- C:\Program Files\Fichiers communs\COMODO\launcher_service.exe [70344] [PID.1176]
[MD5.56DED3ADE453272E6A0AD582D945D1A4] - (.Intel Corporation - Intel(R) PROSet/Wireless Event Log.) -- C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [114753] [PID.1496]
[MD5.6C5155CC0E805C7BE6028BFF7AC14524] - (.Intel Corporation - Wireless Management Service.) -- C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [540745] [PID.1548]
[MD5.E1EC228D87915050BDF59F6331AD7247] - (.Avocent Inc. - Service Program for Acer.) -- C:\Acer\Empowering Technology\admServ.exe [1314816] [PID.616]
[MD5.5D1347AA5AE6E2F77D7F4F8372D95AC9] - (.Microsoft Corporation - Media Center Receiver Service.) -- C:\WINDOWS\eHome\ehRecvr.exe [237568] [PID.912]
[MD5.980EEEA91776357518892C5544768E2B] - (.Microsoft Corporation - Service de planification Media Center.) -- C:\WINDOWS\eHome\ehSched.exe [103424] [PID.1508]
[MD5.AE63D0DB96C07CAE5DC4CDB2B2A719A0] - (.Comodo Security Solutions, Inc. - GeekBuddy Remote Screen Protocol Server.) -- C:\Program Files\Fichiers communs\COMODO\GeekBuddyRSP.exe [1851088] [PID.1632]
[MD5.1834C96FB1F9280BCF6DDFA6DE8338BF] - (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376] [PID.1884]
[MD5.86E8BCAA91FC2ACFACD99CF2BF9F1F47] - (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe [49152] [PID.1860]
[MD5.7CF1B716372B89568AE4C0FE769F5869] - (.Microsoft Corporation - Machine Debug Manager.) -- C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\mdm.exe [335872] [PID.1452]
[MD5.1B2857EF12D79A9F9ADBA14B0637CBF8] - (.Intel Corporation - Intel(R) PROSet/Wireless Registry Service.) -- C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [217164] [PID.580]
[MD5.9C69E6A25F5500501B14AF43311F8D8B] - (.Microsoft Corporation - Media Center Tray Applet.) -- C:\WINDOWS\ehome\ehtray.exe [64512] [PID.1988]
[MD5.52DB6CDAC5BC7A1FC884E97C41C91213] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [248040] [PID.2240]
[MD5.2E0B0A051FFAA86E358465BB0880D453] - (.Microsoft Corporation - Windows Update.) -- C:\WINDOWS\system32\wuauclt.exe [53784] [PID.2252]
[MD5.D9F3DB62D1B361D82CD82A347EA6218D] - (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe [77824] [PID.2312]
[MD5.32FB9368F485A7FE944EB6678B61734B] - (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe [118784] [PID.2336]
[MD5.59307A84CACE50B66089DBD5F74EA17A] - (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [761946] [PID.2412]
[MD5.FD38AEEB62D48A88786309063E9DF7BB] - (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\WINDOWS\RTHDCPL.exe [16132608] [PID.2420]
[MD5.0E34B7BB1FCF22BCC1E394D16F9E992B] - (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040] [PID.2472]
[MD5.30A0B072E647757CEDDA9E306D410410] - (.COMODO - COMODO Internet Security.) -- C:\Program Files\COMODO\COMODO Internet Security\cfp.exe [6756048] [PID.2528]
[MD5.DEB88AEF013DD1EEFB462D7CAD642166] - (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- D:\Adobe\Reader\reader_sl.exe [29696] [PID.2880]
[MD5.09301A1FB10CDB3328AB616B5B18C92F] - (.Comodo Security Solutions, Inc. - livePCsupport Component.) -- C:\Program Files\COMODO\GeekBuddy\unit_manager.exe [207560] [PID.3088]
[MD5.27F7E2A7B7E09FF2F17A97DCA6EE0F1A] - (.Comodo Security Solutions, Inc. - livePCsupport Component.) -- C:\Program Files\COMODO\GeekBuddy\unit.exe [194760] [PID.3128]
[MD5.E39574B471EF0B8719B13CC99AAFF0B8] - (.Realtek Semiconductor Corp. - Realtek HD Audio Data Rerouter.) -- C:\Documents and Settings\Client\Local Settings\Temp\RtkBtMnt.exe [208896] [PID.3708]
[MD5.123B02A3AEF3C19C0F30D9F20E3A2288] - (.COMODO - COMODO Internet Security.) -- C:\Program Files\COMODO\COMODO Internet Security\crashrep.exe [719056] [PID.1804]
[MD5.9F419AD2EBFF9044CA845484CFBEAC48] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [7719936] [PID.3592]
[MD5.52404CC76E9D53843BDF97564BB16BED] - (.Microsoft Corporation - MCRD Device Service.) -- C:\WINDOWS\ehome\mcrdsvc.exe [99328] [PID.732]
[MD5.5E9A6658A2A69AE7EB195113B7A2E7A9] - (.Microsoft Corporation - Application Layer Gateway Service.) -- C:\WINDOWS\System32\alg.exe [44544] [PID.3216]
~ Processes Running: Scanned in 00mn 01s
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences
G2 - GCE: Preference [User Data\Default] [ejpbbhjlbipncjklfjjaedaieimbmdda] uTorrentControl_v2 v.2.3.19.11 (Désactivé) =>P2P.µTorrent
~ Google Browser: 15 Legitimates Filtered in 00mn 22s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\prefs.js
C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\user.js
M3 - MFPP: Plugins - [Client] -- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\searchplugins\web-search.xml
M3 - MFPP: Plugins - [Client] -- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\searchplugins\conduit.xml
M2 - MFEP: prefs.js [Client - bikr6jfq.default\{f531b93a-b50b-4ff1-8288-404c881ac4da}] [] 01NET.com Main v10.16.4.19 (..)
M2 - MFEP: prefs.js [Client - bikr6jfq.default\radiobar@toolbar] [] RadioBar Toolbar v1.0.0 (..)
P2 - FPN:Firefox Plugin Navigator . (.Macromedia, Inc. - Macromedia Authorware Web Player Netscape plug-in, version 2004.) -- C:\Program Files\Mozilla Firefox\Plugins\np32asw.dll
~ Firefox Browser: 26 Legitimates Filtered in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Google Inc. - Google Update.) (No version) -- (.not file.)
R3 - URLSearchHook: uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} . (.Google Inc. - Google Update.) (No version) -- (.not file.) =>P2P.µTorrent
~ IE Browser: 14 Legitimates Filtered in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;<local>
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Keys: Scanned in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 72
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: uTorrentControl_v2 - {7473b6bd-4691-4744-a82b-7854eb3d70b6} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\uTorrentControl_v2\prxtbuTor.dll =>P2P.µTorrent
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} . (...) -- blank (.not file.)
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} . (...) -- blank (.not file.)
~ BHO: 11 Legitimates Filtered in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: MSN - [HKLM]{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} . (...) -- blank (.not file.)
O3 - Toolbar: uTorrentControl_v2 Toolbar - [HKLM]{7473b6bd-4691-4744-a82b-7854eb3d70b6} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\uTorrentControl_v2\prxtbuTor.dll =>P2P.µTorrent
~ Toolbar: Scanned in 00mn 00s
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [ehTray] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [LaunchApp] Clé orpheline
O4 - HKLM\..\Run: [IMJPMIG8.1] . (.Microsoft Corporation - Microsoft IME.) -- C:\WINDOWS\IME\imjp8_1\IMJPMIG.exe
O4 - HKLM\..\Run: [Acer ePower Management] . (.Acer Value Labs, Taiwan - Acer ePower Management.) -- C:\Acer\Empowering Technology\ePower\Acer ePower Management.exe
O4 - HKLM\..\Run: [Synchronization Manager] . (.Microsoft Corporation - Gestionnaire de synchronisation Microsoft.) -- C:\WINDOWS\system32\mobsync.exe
O4 - HKLM\..\Run: [NeroFilterCheck] . (.Ahead Software Gmbh - NeroCheck.) -- C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [RegistryMechanic] Clé orpheline
O4 - HKLM\..\Run: [igfxtray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RTHDCPL] . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\WINDOWS\RTHDCPL.exe
O4 - HKLM\..\Run: [Alcmtr] . (.Realtek Semiconductor Corp. - Realtek Azalia Audio - Event Monitor.) -- C:\WINDOWS\ALCMTR.exe
O4 - HKLM\..\Run: [AzMixerSel] . (.Realtek Semiconductor Corp. - Azalia Mixer Selector.) -- C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [GrooveMonitor] . (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
O4 - HKLM\..\Run: [COMODO Internet Security] . (.COMODO - COMODO Internet Security.) -- C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
O4 - HKLM\..\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Fichiers communs\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Run: [gbrspcontrol] . (.Comodo Security Solutions, Inc. - GeekBuddy Remote Screen Protocol Server.) -- C:\Program Files\Fichiers communs\COMODO\GeekBuddyRSP.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe
O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Gestionnaire Antidote.exe] F:\Druide\Antidote\Gestionnaire Antidote.exe (.not file.)
O4 - HKCU\..\Run: [AdobeBridge] Clé orpheline
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] . (.Microsoft Corporation - Watson Subscriber for SENS Network Notifica.) -- C:\Program Files\Fichiers communs\Microsoft Shared\DW\DWTRIG20.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-21-3650030575-3363428128-3634041001-1005\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-3650030575-3363428128-3634041001-1005\..\Run: [Gestionnaire Antidote.exe] F:\Druide\Antidote\Gestionnaire Antidote.exe (.not file.)
O4 - HKUS\S-1-5-21-3650030575-3363428128-3634041001-1005\..\Run: [AdobeBridge] Clé orpheline
~ Application: Scanned in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\Programs: Windows Movie Maker.lnk . (.Microsoft Corporation - Windows Movie Maker.) -- C:\Program Files\Movie Maker\moviemk.exe
O4 - GS\Programs: Media Center.lnk . (.Microsoft Corporation - Media Center.) -- C:\WINDOWS\ehome\ehshell.exe
O4 - GS\Programs: YouSendIt.lnk . (...) -- C:\Program Files\YouSendIt\Express\YouSendIt.exe
O4 - GS\Programs: Adobe Reader 7.0.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A70000000000}\SC_Reader_PM.ico
O4 - GS\Programs: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - GS\Programs: Apple Software Update.lnk . (...) -- C:\WINDOWS\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe
O4 - GS\QuickLaunch: Ad-Aware SE Personal.lnk . (.Lavasoft Sweden - Ad-Aware SE Core application.) -- C:\Program Files\Lavasoft\Ad-Aware SE Personal\Ad-Aware.exe
O4 - GS\Programs: Assistance à distance.lnk . (.Microsoft Corporation - Assistance à distance Microsoft.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - GS\Programs: Outlook Express.lnk . (.Microsoft Corporation - Outlook Express.) -- C:\Program Files\Outlook Express\msimn.exe
O4 - GS\Programs: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Global Startup: Scanned in 00mn 00s
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\Program Files\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} -- Clé orpheline
O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} -- Clé orpheline
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
~ IE Extra Buttons: Scanned in 00mn 00s
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {00000055-9980-0010-8000-00AA00389B71} ((no name)) - http://codecs.microsoft.com/codecs/i386/fhg.CAB
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} ((no name)) - http://appldnld.apple.com/QuickTime/qtactivex/qtplugin.cab
O16 - DPF: {15B782AF-55D8-11D1-B477-006097098764} ((no name)) - http://fpdownload.macromedia.com/get/shockwave/cabs/authorware/awswaxd.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} ((no name)) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} ((no name)) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} ((no name)) - http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
O16 - DPF: {97E71027-0BA2-44F2-97DB-F84D808ED0B6} ((no name)) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab55762.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} ((no name)) - http://messenger.zone.msn.com/binary/ZIntro.cab55579.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} ((no name)) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} ((no name)) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} ((no name)) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} ((no name)) - http://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol/MSNPUpld.cab
~ Objets ActiveX: Scanned in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files\Windows Live\Mail\mailcomm.dll
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.dll
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\WINDOWS\system32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\WINDOWS\system32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\WINDOWS\system32\cscdll.dll
O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\system32\dimsntfy.dll
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\WINDOWS\system32\igfxdev.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\WINDOWS\system32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: WgaLogon . (.Microsoft Corporation - Notifications Windows Genuine Advantage.) -- C:\WINDOWS\system32\WgaLogon.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
~ Winlogon: Scanned in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: AdminWorks Agent X6 (AWService) . (.Avocent Inc. - Service Program for Acer.) - C:\Acer\Empowering Technology\admServ.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Servic (RegSrvc) . (.Intel Corporation - Intel(R) PROSet/Wireless Registry Service.) - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) . (.Intel Corporation - Wireless Management Service.) - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
~ Services: 10 Legitimates Filtered in 00mn 07s
---\\ Tâches planifiées en automatique (O39)
[MD5.00000000000000000000000000000000] [APT] [Ad-Aware Update (Weekly)] (...) -- C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe (.not file.) [0]
~ Scheduled Task: 9 Legitimates Filtered in 00mn 00s
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (OsaFsLoc) . (.OSA Technologies - Filesystem Lock driver.) - C:\WINDOWS\system32\drivers\OsaFsLoc.sys
~ Drivers: 44 Legitimates Filtered in 00mn 00s
---\\ Logiciels installés (O42)
O42 - Logiciel: Ad-Aware SE Personal - (.Lavasoft.) [HKLM] -- Ad-Aware SE Personal
O42 - Logiciel: Programme de gestion Camera de Acer - (...) [HKLM] -- AcerOrbiCamDrv
O42 - Logiciel: Search Protect by conduit - (.Conduit.) [HKLM] -- SearchProtect =>Toolbar.Conduit
~ Logic: 162 Legitimates Filtered in 00mn 01s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\AppDataLow\Software\Smartbar] =>Hijacker.SmartBar
[HKCU\Software\Astrocycle]
[HKCU\Software\Bibliquest]
[HKCU\Software\ConduitSearchScopes]
[HKCU\Software\FunWebProducts] =>Adware.MyWebSearch
[HKCU\Software\Rabia]
[HKCU\Software\SearchProtect] =>Toolbar.Conduit
[HKCU\Software\Smartbar] =>Hijacker.SmartBar
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\WinGuides]
[HKCU\Software\YahooPartnerToolbar] =>Toolbar.Yahoo
[HKCU\Software\Yahoo] =>Toolbar.Yahoo
[HKCU\Software\iJoysoft]
[HKLM\Software\Doctor Web, Ltd.]
[HKLM\Software\InterMute]
[HKLM\Software\Rabia]
[HKLM\Software\WinGuides]
[HKLM\Software\Yahoo] =>Toolbar.Yahoo
[HKLM\Software\iJoysoft]
~ Key Software: 322 Legitimates Filtered in 00mn 01s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 2007-04-03 - 16:57:08 - [2,876] ----D C:\Program Files\ActiveX Control Pad
O43 - CFD: 2013-07-18 - 22:41:22 - [7,919] ----D C:\Program Files\SearchProtect =>Toolbar.Conduit
O43 - CFD: 2007-09-05 - 21:51:14 - [0,426] ----D C:\Documents and Settings\Client\Application Data\LimeWire
O43 - CFD: 2010-10-07 - 16:58:20 - [0,011] ----D C:\Documents and Settings\Client\Application Data\iJoysoft
O43 - CFD: 2012-10-30 - 19:31:04 - [0,456] ----D C:\Documents and Settings\Client\Application Data\Linterweb
O43 - CFD: 2013-07-18 - 22:40:38 - [10,064] ----D C:\Documents and Settings\Client\Application Data\SearchProtect =>Toolbar.Conduit
O43 - CFD: 2012-10-30 - 19:31:04 - [1,414] ----D C:\Documents and Settings\Client\Local Settings\Application Data\Linterweb
O43 - CFD: 2010-10-30 - 17:05:14 - [0,001] ----D C:\Documents and Settings\Client\Menu Démarrer\Programmes\Bibliquest
~ Program Folder: 188 Legitimates Filtered in 00mn 41s
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.85C379501B97D0066C758612FD78FC30] - 2013-07-05 - 21:24:16 ---A- . (...) -- C:\WINDOWS\system32\lvcoinst.log [15630]
O44 - LFC:[MD5.B2C100ADE3A01B663CAA7EB68EE80A51] - 2013-07-05 - 21:38:20 ---A- . (.Bison Electronics. Inc. - Universal Serial Bus Camera Driver.) -- C:\WINDOWS\system32\Drivers\BisonCam.sys [775936]
O44 - LFC:[MD5.73C0153E028AEC0793663544115ADBA4] - 2013-07-05 - 21:38:21 ---A- . (...) -- C:\WINDOWS\M2000Twn.ini [15190]
O44 - LFC:[MD5.F899D431D27FF2A41537877443505A30] - 2013-07-05 - 21:38:21 ---A- . (...) -- C:\WINDOWS\M2000Twn.src [13448]
O44 - LFC:[MD5.080C19E6C326749F263467F021C9EB59] - 2013-07-05 - 21:38:22 ---A- . (.Bison Inc. - USB PC Camera Uninstallation.) -- C:\WINDOWS\system32\BisonRem.dll [77942]
O44 - LFC:[MD5.254FFD9FE6CACC8E9D9EC8547973C924] - 2013-07-16 - 15:25:08 ---A- . (...) -- C:\WINDOWS\system.ini [246]
O44 - LFC:[MD5.C6A7661A29FA678C81D6E3F1007471A4] - 2013-07-16 - 15:25:08 ---A- . (...) -- C:\WINDOWS\win.ini [785]
O44 - LFC:[MD5.13D5289B2D3C73FF7F2F5FCFA4CCE026] - 2013-07-16 - 18:05:38 ---A- . (...) -- C:\WINDOWS\NeroDigital.ini [202]
O44 - LFC:[MD5.5F404D09A144C883B7B9BCF8BD4E4AB1] - 2013-07-18 - 21:45:22 ---A- . (...) -- C:\WINDOWS\wininit.ini [2786]
O44 - LFC:[MD5.873EA3362AA6AC9B704F6C27D2CC7445] - 2013-07-19 - 11:27:06 ---A- . (...) -- C:\WINDOWS\bthservsdp.dat [12]
O44 - LFC:[MD5.D6DC634169F2B0FBB688CC541C752880] - 2013-07-19 - 11:27:08 ---A- . (...) -- C:\WINDOWS\wiaservc.log [50]
O44 - LFC:[MD5.64E75E2C1B32DC9AFCC5C5BDD6879206] - 2013-07-19 - 14:18:02 ---A- . (...) -- C:\WINDOWS\wiadebug.log [159]
O44 - LFC:[MD5.E613E9B0E6193D971C72E6E5C1F15789] - 2013-07-19 - 14:18:16 ---A- . (...) -- C:\WINDOWS\ModemLog_HDAUDIO Soft Data Fax Modem with SmartCP.txt [3810]
~ Files: 23 Legitimates Filtered in 00mn 01s
---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.4026A6DBC724261D779E5B7DFB7D6850] - 2013-07-19 - 02:01:14 ---A- - C:\WINDOWS\Prefetch\NDP30SP2-KB2832411-X86.EXE-1F3896E1.pf
O45 - LFCP:[MD5.CA48D8D4633843C7A8961C82A4FFB418] - 2013-07-19 - 02:02:02 ---A- - C:\WINDOWS\Prefetch\NDP20SP2-KB2844285-X86.EXE-1990155D.pf
O45 - LFCP:[MD5.65721960AD59900904549A6A4D3DE81F] - 2013-07-19 - 02:04:18 ---A- - C:\WINDOWS\Prefetch\NDP20SP2-KB2833940-X86.EXE-39FCB880.pf
O45 - LFCP:[MD5.BE8825578E9A226842DED1B790275CEC] - 2013-07-19 - 02:05:02 ---A- - C:\WINDOWS\Prefetch\NDP35SP1-KB2840629-X86.EXE-37E35791.pf
O45 - LFCP:[MD5.0D1CDF2E358B17207583D8A2CE51D16A] - 2013-07-19 - 02:09:24 ---A- - C:\WINDOWS\Prefetch\NDP1.1SP1-KB2833941-X86.EXE-03AC375C.pf
O45 - LFCP:[MD5.96A870DBCE6EEEBFD387B697B4A4380C] - 2013-07-19 - 11:23:32 ---A- - C:\WINDOWS\Prefetch\RMSCRN.EXE-203435D1.pf
O45 - LFCP:[MD5.707D96949091539BFD39AE2517783AD2] - 2013-07-19 - 11:31:50 ---A- - C:\WINDOWS\Prefetch\RAVINTFREE11.EXE-1A3E1403.pf
O45 - LFCP:[MD5.D32BB99966547E2729028837DE433C09] - 2013-07-19 - 12:17:32 ---A- - C:\WINDOWS\Prefetch\EVTENG.EXE-38C1434A.pf
O45 - LFCP:[MD5.5493A96A2C273CC30474B175D82A5F44] - 2013-07-19 - 12:18:44 ---A- - C:\WINDOWS\Prefetch\WIKITAXI.EXE-352E0765.pf
O45 - LFCP:[MD5.D96E9A14BA7559618CEE72A71FB6505A] - 2013-07-19 - 14:10:24 ---A- - C:\WINDOWS\Prefetch\FXSSVC.EXE-140862E7.pf
O45 - LFCP:[MD5.8A771B1B38DB3AF1CFF10CAB349BE5DC] - 2013-07-19 - 14:10:36 ---A- - C:\WINDOWS\Prefetch\AZMIXERSEL.EXE-0057985F.pf
O45 - LFCP:[MD5.FA943E3AF954E113D718B4E8B06CCAFE] - 2013-07-19 - 14:10:48 ---A- - C:\WINDOWS\Prefetch\CFP.EXE-0DF700AD.pf
O45 - LFCP:[MD5.B9B0445A524EDADBDA18FE793CDC6B40] - 2013-07-19 - 14:17:46 ---A- - C:\WINDOWS\Prefetch\LAUNCHER_SERVICE.EXE-00DC8A97.pf
O45 - LFCP:[MD5.E0AC6D28E74CD6D903F17DC6FF3EE8DA] - 2013-07-19 - 14:17:58 ---A- - C:\WINDOWS\Prefetch\ADMSERV.EXE-098B4307.pf
O45 - LFCP:[MD5.9929EB3AFD82BB63DA47987E3074D1DD] - 2013-07-19 - 14:18:06 ---A- - C:\WINDOWS\Prefetch\ALAUNCH.EXE-145B15F4.pf
O45 - LFCP:[MD5.F545C2518D3AB3A6688AE097BC095C98] - 2013-07-19 - 14:18:06 ---A- - C:\WINDOWS\Prefetch\IMJPMIG.EXE-32ABEE9A.pf
O45 - LFCP:[MD5.EC8A338EB41BDAEDCCAF116DAD6508A4] - 2013-07-19 - 14:18:10 ---A- - C:\WINDOWS\Prefetch\ACER EPOWER MANAGEMENT.EXE-269102ED.pf
O45 - LFCP:[MD5.AFA71E6B88446A95CE7D2F0F6EAA3F5D] - 2013-07-19 - 14:18:34 ---A- - C:\WINDOWS\Prefetch\UNIT_MANAGER.EXE-032B1362.pf
O45 - LFCP:[MD5.D75A011B9245E8D0C771213288E45F0D] - 2013-07-19 - 14:20:24 ---A- - C:\WINDOWS\Prefetch\CRASHREP.EXE-3A2527C7.pf
~ Prefetcher: 121 Legitimates Filtered in 00mn 00s
---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll
O46 - SEH:ShellExecuteHooks - Microsoft AntiMalware ShellExecuteHook - {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\PROGRA~1\WIFD1F~1\MpShHook.dll
O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
~ ShellExecuteHooks: Scanned in 00mn 00s
---\\ Export de clé d'application autorisée (O47)
O47 - AAKE:Key Export SP - "E:\Skate3.exe" [Enabled] .(...) -- E:\Skate3.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\SPSSInc\SPSS16\SPSSWinWrapIDE.exe" [Disabled] .(...) -- C:\Program Files\SPSSInc\SPSS16\SPSSWinWrapIDE.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\SPSSInc\SPSS16\spss.com" [Disabled] .(...) -- C:\Program Files\SPSSInc\SPSS16\spss.com (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\SPSSInc\SPSS16\spss.exe" [Disabled] .(...) -- C:\Program Files\SPSSInc\SPSS16\spss.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Real\RealPlayer\realplay.exe" [Enabled] .(...) -- C:\Program Files\Real\RealPlayer\realplay.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32server.exe" [Enabled] .(...) -- C:\Program Files\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32server.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32.exe" [Enabled] .(...) -- C:\Program Files\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32.exe (.not file.)
O47 - AAKE:Key Export SP - "D:\3DS Max\mentalimages\satellite\raysat_3dsmax2011_32server.exe" [Enabled] .(...) -- D:\3DS Max\mentalimages\satellite\raysat_3dsmax2011_32server.exe (.not file.)
O47 - AAKE:Key Export SP - "D:\3DS Max\mentalimages\satellite\raysat_3dsmax2011_32.exe" [Enabled] .(...) -- D:\3DS Max\mentalimages\satellite\raysat_3dsmax2011_32.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Documents and Settings\Client\Local Settings\Application Data\Akamai\netsession_win.exe" [Disabled] .(...) -- C:\Documents and Settings\Client\Local Settings\Application Data\Akamai\netsession_win.exe (.not file.)
~ Keys Export: 40 Legitimates Filtered in 00mn 00s
---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d
~ IFEO: Scanned in 00mn 00s
---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "InstallTheme"=1
O55 - MWPS:[HKCU\...\Policies\System] - "NoFind"=0
O55 - MWPS:[HKCU\...\Policies\System] - "NoRun"=0
O55 - MWPS:[HKCU\...\Policies\System] - "NoDesktop"=0
O55 - MWPS:[HKCU\...\Policies\System] - "NoControlPanel"=0
O55 - MWPS:[HKCU\...\Policies\System] - "NoClose"=0
O55 - MWPS:[HKCU\...\Policies\System] - "StartMenuLogOff"=0
O55 - MWPS:[HKCU\...\Policies\System] - "HideClock"=0
~ MWPS: 14 Legitimates Filtered in 00mn 00s
---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.C1D5CBD8AA0D674DA1BA1BB189696396] - 2005-10-18 - 15:52:30 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\WINDOWS\system32\Drivers\HSF_CNXT.sys [721280]
O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 2007-08-02 - 11:00:00 ---A- . (...) -- C:\WINDOWS\system32\key01.sys [42809]
~ Drivers: Scanned in 00mn 00s
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 2013-07-16 - 16:37:42 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extension Rules\LOCK [0]
O61 - LFC: 2013-07-16 - 17:11:16 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\bookmarkbackups\bookmarks-2013-07-16.json [10946]
O61 - LFC: 2013-07-17 - 16:07:50 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\bookmarkbackups\bookmarks-2013-07-17.json [10946]
O61 - LFC: 2013-07-18 - 08:28:58 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\CRE\hakpajgggjjcjmidfbnnncnbaihjneaj.crx [2917850]
O61 - LFC: 2013-07-18 - 13:28:10 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\healthreport\lastpayload.json [13423]
O61 - LFC: 2013-07-18 - 13:33:02 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\blocklist.xml [73413]
O61 - LFC: 2013-07-18 - 13:45:24 ---A- C:\Documents and Settings\Client\Bureau\Esaie A. Remmers.docx [506353]
O61 - LFC: 2013-07-18 - 13:58:06 ---A- C:\Documents and Settings\Client\Bureau\Psaumes PhL.docx [272593]
O61 - LFC: 2013-07-18 - 14:54:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extension Rules\000005.sst [417]
O61 - LFC: 2013-07-18 - 15:13:06 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\GPUCache\data_0 [8192]
O61 - LFC: 2013-07-18 - 15:13:06 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\GPUCache\data_2 [8192]
O61 - LFC: 2013-07-18 - 15:13:06 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\GPUCache\data_3 [8192]
O61 - LFC: 2013-07-18 - 15:13:06 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\GPUCache\index [262512]
O61 - LFC: 2013-07-18 - 15:29:38 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\addons.sqlite [524288]
O61 - LFC: 2013-07-18 - 15:29:38 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\bookmarkbackups\bookmarks-2013-07-18.json [10946]
O61 - LFC: 2013-07-18 - 15:29:38 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\content-prefs.sqlite [7168]
O61 - LFC: 2013-07-18 - 15:29:38 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\healthreport.sqlite [1146880]
O61 - LFC: 2013-07-18 - 15:29:38 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\permissions.sqlite [2048]
O61 - LFC: 2013-07-18 - 15:29:38 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\webappsstore.sqlite [2879488]
O61 - LFC: 2013-07-18 - 20:34:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Microsoft\Media Player\LocalMLS_0.wmdb [84848]
O61 - LFC: 2013-07-18 - 20:34:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Microsoft\Media Player\wmpfolders.wmdb [3394]
O61 - LFC: 2013-07-18 - 21:40:34 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\CT3285358\CT3285358.UserID [19]
O61 - LFC: 2013-07-18 - 21:40:34 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\CT3285358\CT3285358.fullUserID [37]
O61 - LFC: 2013-07-18 - 21:40:34 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\extensions\{f531b93a-b50b-4ff1-8288-404c881ac4da}\Plugins\np-mswmp.dll [163256]
O61 - LFC: 2013-07-18 - 21:40:34 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\extensions\{f531b93a-b50b-4ff1-8288-404c881ac4da}\Plugins\npConduitFirefoxPlugin.dll [207136]
O61 - LFC: 2013-07-18 - 21:40:34 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\prefs.js [60]
O61 - LFC: 2013-07-18 - 21:40:36 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\extensions\{f531b93a-b50b-4ff1-8288-404c881ac4da}\defaults\preferences\defaults.js [1495]
O61 - LFC: 2013-07-18 - 21:40:38 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\searchplugins\conduit.xml [1005]
O61 - LFC: 2013-07-18 - 21:41:14 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\Res\SPSetup.exe [2249112] =>Toolbar.Conduit
O61 - LFC: 2013-07-18 - 21:41:18 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\cltmng.exe [2852640] =>Toolbar.Conduit
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\ChromeModule.dll [836896] =>Toolbar.Conduit
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\CltMngSvc.exe [97056] =>Toolbar.Conduit
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\FirefoxModule.dll [1226528] =>Toolbar.Conduit
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\InternetExplorerModule.dll [1136416] =>Toolbar.Conduit
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\SPHook32.dll [161056] =>Toolbar.Conduit
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\SPRunner.exe [308000] =>Toolbar.Conduit
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\msvcp100.dll [421200] =>Toolbar.Conduit
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\msvcr100.dll [770384] =>Toolbar.Conduit
O61 - LFC: 2013-07-18 - 21:41:50 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\ffprotect\SProtectorRepository\FR [825] =>Toolbar.Conduit
O61 - LFC: 2013-07-18 - 21:44:02 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\CT3285358\01NET.com_MainAutoUpdateHelper.exe [86816]
O61 - LFC: 2013-07-18 - 21:44:08 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\01NET.com_Main\hktb01NE.dll [1053984]
O61 - LFC: 2013-07-18 - 21:44:08 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\01NET.com_Main\ldrtb01NE.dll [332576]
O61 - LFC: 2013-07-18 - 21:44:08 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\01NET.com_Main\tb01NE.dll [5128992]
O61 - LFC: 2013-07-18 - 21:44:10 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\01NET.com_Main\hk64tb01NE.dll [1250080]
O61 - LFC: 2013-07-18 - 21:44:54 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\ffprotect\abstraction.js [52518] =>Toolbar.Conduit
O61 - LFC: 2013-07-18 - 21:51:36 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\rep.dat [37868] =>Toolbar.Conduit
O61 - LFC: 2013-07-18 - 21:56:18 ---A- C:\Documents and Settings\Client\Bureau\Redémarrer en mode sans échec.docx [192888]
O61 - LFC: 2013-07-18 - 22:31:56 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_player.ooyala.com_0.localstorage-journal [3608]
O61 - LFC: 2013-07-18 - 22:48:44 -SHA- C:\Documents and Settings\Client\Application Data\Microsoft\Internet Explorer\UserData\index.dat [16384]
O61 - LFC: 2013-07-18 - 22:53:32 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\places.sqlite [10485760]
O61 - LFC: 2013-07-18 - 22:56:04 ---A- C:\Documents and Settings\Client\Application Data\LavasoftStatistics\adaware.xml [890]
O61 - LFC: 2013-07-18 - 22:57:22 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\downloads.sqlite [98304]
O61 - LFC: 2013-07-18 - 22:57:26 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\extensions.sqlite [458752]
O61 - LFC: 2013-07-18 - 23:21:06 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Archived History [57344]
O61 - LFC: 2013-07-18 - 23:21:06 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Archived History-journal [512]
O61 - LFC: 2013-07-18 - 23:21:16 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_telechargement.zebulon.fr_0.localstorage [3072]
O61 - LFC: 2013-07-18 - 23:21:16 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_telechargement.zebulon.fr_0.localstorage-journal [3608]
O61 - LFC: 2013-07-18 - 23:21:16 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_www.tomsguide.fr_0.localstorage [4096]
O61 - LFC: 2013-07-18 - 23:21:16 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_www.tomsguide.fr_0.localstorage-journal [3608]
O61 - LFC: 2013-07-19 - 11:20:22 ---A- C:\Documents and Settings\Client\Recent\SSWords.pdf.lnk [435]
O61 - LFC: 2013-07-19 - 11:20:24 ---A- C:\Documents and Settings\Client\Recent\Spiritual songs.lnk [285]
O61 - LFC: 2013-07-19 - 11:21:44 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Microsoft\Windows Media\11.0\WMSDKNS.XML [10277]
O61 - LFC: 2013-07-19 - 11:26:52 --HA- C:\Documents and Settings\Client\Local Settings\Application Data\Microsoft\Windows\S-1-5-21-3650030575-3363428128-3634041001-1005_CLASSES.rrr.LOG [0]
O61 - LFC: 2013-07-19 - 11:26:52 --HA- C:\Documents and Settings\Client\S-1-5-21-3650030575-3363428128-3634041001-1005.rrr.LOG [0]
O61 - LFC: 2013-07-19 - 11:26:58 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Microsoft\Media Player\CurrentDatabase_360.wmdb [7094272]
O61 - LFC: 2013-07-19 - 11:27:04 --HA- C:\Documents and Settings\Client\ntuser.dat.rmbak [12320768]
O61 - LFC: 2013-07-19 - 11:35:04 ---A- C:\Documents and Settings\Client\Recent\Redémarrer en mode sans échec.docx.lnk [511]
O61 - LFC: 2013-07-19 - 12:22:00 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\bookmarkbackups\bookmarks-2013-07-19.json [10946]
O61 - LFC: 2013-07-19 - 12:22:34 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\parent.lock [0]
O61 - LFC: 2013-07-19 - 12:22:34 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\ffprotect\SProtectorRepository\searchProtectorData [605] =>Toolbar.Conduit
O61 - LFC: 2013-07-19 - 12:22:36 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\webapps\webapps.json [2]
O61 - LFC: 2013-07-19 - 12:22:38 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\urlclassifierkey3.txt [154]
O61 - LFC: 2013-07-19 - 12:28:34 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Certificate Revocation Lists [259463]
O61 - LFC: 2013-07-19 - 12:33:58 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Mozilla\Firefox\Mozilla Firefox\updates\0\update.status [12]
O61 - LFC: 2013-07-19 - 12:42:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\ToolbarFullUserID.txt [37]
O61 - LFC: 2013-07-19 - 12:42:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\ToolbarUserID.txt [19]
O61 - LFC: 2013-07-19 - 12:50:08 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Session Storage\000043.sst [145]
O61 - LFC: 2013-07-19 - 12:50:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Session Storage\LOG.old [759]
O61 - LFC: 2013-07-19 - 12:50:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extension Rules\LOG.old [145]
O61 - LFC: 2013-07-19 - 12:50:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Last Session [2501]
O61 - LFC: 2013-07-19 - 12:50:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Last Tabs [1625]
O61 - LFC: 2013-07-19 - 12:53:00 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extension Rules\CURRENT [16]
O61 - LFC: 2013-07-19 - 12:53:10 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\startupCache\startupCache.4.little [1493761]
O61 - LFC: 2013-07-19 - 12:54:00 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Session Storage\000045.sst [207]
O61 - LFC: 2013-07-19 - 12:54:00 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Session Storage\CURRENT [16]
O61 - LFC: 2013-07-19 - 12:55:08 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\toolbar_initializing_logger.txt.txt [24]
O61 - LFC: 2013-07-19 - 12:55:30 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_Configuration.txt [607]
O61 - LFC: 2013-07-19 - 12:55:30 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_searchAPI.txt [4925]
O61 - LFC: 2013-07-19 - 12:55:30 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_serviceMap.txt [11100]
O61 - LFC: 2013-07-19 - 12:55:30 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_Configuration.txt [676]
O61 - LFC: 2013-07-19 - 12:55:30 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_searchAPI.txt [5426]
O61 - LFC: 2013-07-19 - 12:55:30 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_serviceMap.txt [12411]
O61 - LFC: 2013-07-19 - 12:55:32 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.installUsageEarly.txt [39]
O61 - LFC: 2013-07-19 - 12:55:34 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_toolbarSettings.txt [59548]
O61 - LFC: 2013-07-19 - 12:55:34 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\uninstallData.txt [427]
O61 - LFC: 2013-07-19 - 12:55:34 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\uninstallUrl.txt [81]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_appsMetadata.txt [4719]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_gottenAppsContextMenu.txt [6103]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_otherAppsContextMenu.txt [4336]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_toolbarContextMenu.txt [4336]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_appsMetadata.txt [4632]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_gottenAppsContextMenu.txt [11890]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_otherAppsContextMenu.txt [9382]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_toolbarContextMenu.txt [9381]
O61 - LFC: 2013-07-19 - 12:55:40 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_appTrackingFirstTime.txt [149]
O61 - LFC: 2013-07-19 - 12:55:40 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_appTrackingFirstTime.txt [62]
O61 - LFC: 2013-07-19 - 12:55:42 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.searchProtectorData.txt [1627] =>Toolbar.Conduit
O61 - LFC: 2013-07-19 - 12:55:42 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_login.txt [5178]
O61 - LFC: 2013-07-19 - 12:55:42 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_login.txt [6579]
O61 - LFC: 2013-07-19 - 12:56:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.installUsage.txt [39]
O61 - LFC: 2013-07-19 - 12:56:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_toolbarSettings.txt [60056]
O61 - LFC: 2013-07-19 - 12:56:46 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.1000034.Settings.txt [1224]
O61 - LFC: 2013-07-19 - 12:56:46 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.130049783618732645.search.selectedEngineId.txt [7]
O61 - LFC: 2013-07-19 - 12:56:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.1000082.currentList.txt [2860]
O61 - LFC: 2013-07-19 - 12:56:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.1000082.nowPlaying.txt [178]
O61 - LFC: 2013-07-19 - 12:56:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.1000082.publisherStations.txt [2860]
O61 - LFC: 2013-07-19 - 12:56:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.NOTIFICATION_ID.notifications-servicemap.txt [1039]
O61 - LFC: 2013-07-19 - 12:56:50 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.NOTIFICATION_ID.notifications-service_1770460.txt [572]
O61 - LFC: 2013-07-19 - 12:56:58 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.1000234.weatherData.txt [4777]
O61 - LFC: 2013-07-19 - 12:58:00 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\serviceLayer_userApps_added.txt [58]
O61 - LFC: 2013-07-19 - 12:58:22 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.pg_conf_global.txt [1203858]
O61 - LFC: 2013-07-19 - 12:58:40 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.130049783619512662.cat0.txt [66830]
O61 - LFC: 2013-07-19 - 12:58:42 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.130049783619512662.ReadItemsArr.txt [5516]
O61 - LFC: 2013-07-19 - 12:58:42 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.130049783619512662.cat1.txt [67392]
O61 - LFC: 2013-07-19 - 12:58:42 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.130049783619512662.feedsObj.txt [1821]
O61 - LFC: 2013-07-19 - 13:05:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.NotificationSettings.txt [395]
O61 - LFC: 2013-07-19 - 13:05:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.appOptions.txt [1763]
O61 - LFC: 2013-07-19 - 13:05:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_userApps.txt [95]
O61 - LFC: 2013-07-19 - 13:05:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\serviceLayer_userApps_removed.txt [52]
O61 - LFC: 2013-07-19 - 13:05:40 ---A- C:\Documents and Settings\Client\Local Settings\Applica
Rapport de ZHPDiag v2013.7.16.29 par Nicolas Coolman, Update du 2013-07-17
Run by Client at 2013-07-19 15:21:42
WebSite: https://nicolascoolman.webs.com/
State : Problème connexion internet
WhiteList : Enable
High Elevated Privileges : OK
UAC : Not Found
---\\ Web Browser
MSIE: Internet Explorer v7.0.5730.13
MFIE: Mozilla Firefox 21.0 (Defaut)
GCIE: Google Chrome v28.0.1500.72
---\\ Windows Product Information
~ Langage: Français
Windows XP Professional Service Pack 3 (Build 2600)
Windows Automatic Updates : OK
Windows Genuine Advantage : OK
---\\ System Protection
COMODO Internet Security v5.10.31649.2253
Malwarebytes' Anti-Malware
Ad-Aware SE Personal v1.06
---\\ System Optimizer
CCleaner v3.20 =>Piriform Ltd
---\\ Peer To Peer (P2P)
µTorrent v3.2.1.28086 =>P2P.µTorrent
---\\ Software Update
Adobe Flash Player 10 ActiveX
Adobe Reader 7.0 - Français
---\\ System Information
~ Processor: x86 Family 6 Model 14 Stepping 8, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 1526 MB (66% free)
System Restore: Activé (Enable)
System drive C: has 1 GB (1%) free of 53 GB
---\\ Logged in mode
~ Computer Name: CARLOS-LAPTOP
~ User Name: Client
~ All Users Names: SUPPORT_388945a0, HelpAssistant, Client, ASPNET, Administrateur,
~ Unselected Option: None
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Documents and Settings\Client\Application Data\
~ %Desktop% : C:\Documents and Settings\Client\Bureau\
~ %Favorites% : C:\Documents and Settings\Client\Favoris\
~ %LocalAppData% : C:\Documents and Settings\Client\Local Settings\Application Data\
~ %StartMenu% : C:\Documents and Settings\Client\Menu Démarrer\
~ %Windir% : C:\WINDOWS\
~ %System% : C:\WINDOWS\system32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 1 Go of 53 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 23 Go of 54 Go)
E:\ CD-ROM drive (Free 0 Go of 4 Go)
---\\ Security Center & Tools Informations
~ Security Center: 32 Legitimates Filtered in 00mn 00s
---\\ Recherche particulière de fichiers génériques
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.2008-04-13 - 21:34:04.) -- C:\WINDOWS\Explorer.exe [1037824]
[MD5.951A8D2E2A7082C8F32005CEAE1A14C3] - (.Microsoft Corporation - Internet Extensions for Win32.) (.2013-06-07 - 16:30:38.) -- C:\WINDOWS\system32\wininet.dll [841216]
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.2008-04-13 - 21:34:28.) -- C:\WINDOWS\system32\Winlogon.exe [512000]
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.2011-08-17 - 08:49:54.) -- C:\WINDOWS\system32\Drivers\AFD.sys [138496]
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.2008-04-13 - 13:40:30.) -- C:\WINDOWS\system32\Drivers\atapi.sys [96512]
[MD5.C885B02847F5D2FD45A24E219ED93B32] - (.Microsoft Corporation - CD-ROM File System Driver.) (.2008-04-13 - 14:14:22.) -- C:\WINDOWS\system32\Drivers\Cdfs.sys [63744]
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.2008-04-13 - 13:40:46.) -- C:\WINDOWS\system32\Drivers\Cdrom.sys [62976]
[MD5.31F923EB2170FC172C81ABDA0045D18C] - (.Microsoft Corporation - Pilote de cryptographie FIPS.) (.2008-04-13 - 20:57:38.) -- C:\WINDOWS\system32\Drivers\Fips.sys [44672]
[MD5.573C7D0A32852B48F3058CFD8026F511] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) (.2008-04-13 - 11:36:06.) -- C:\WINDOWS\system32\Drivers\HDAudBus.sys [144384]
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - (.Microsoft Corporation - Pilote de port i8042.) (.2008-04-13 - 21:00:52.) -- C:\WINDOWS\system32\Drivers\i8042prt.sys [54144]
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - (.Microsoft Corporation - IMAPI Kernel Driver.) (.2008-04-13 - 13:40:58.) -- C:\WINDOWS\system32\Drivers\Imapi.sys [42112]
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - (.Microsoft Corporation - IP Network Address Translator.) (.2008-04-13 - 13:57:16.) -- C:\WINDOWS\system32\Drivers\IpNat.sys [152832]
[MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) (.2008-04-13 - 14:19:42.) -- C:\WINDOWS\system32\Drivers\IPSec.sys [75264]
[MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.2011-07-15 - 08:29:32.) -- C:\WINDOWS\system32\Drivers\MRxSmb.sys [456320]
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - (.Microsoft Corporation - MBT Transport driver.) (.2008-04-13 - 14:21:00.) -- C:\WINDOWS\system32\Drivers\netBT.sys [162816]
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.2008-04-13 - 14:15:54.) -- C:\WINDOWS\system32\Drivers\ntfs.sys [574976]
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - (.Microsoft Corporation - Pilote de port parallèle.) (.2008-04-13 - 21:09:40.) -- C:\WINDOWS\system32\Drivers\Parport.sys [80384]
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.2008-04-13 - 14:19:44.) -- C:\WINDOWS\system32\Drivers\Rasl2tp.sys [51328]
[MD5.15CABD0F7C00C47C70124907916AF3F1] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.2008-04-13 - 13:32:52.) -- C:\WINDOWS\system32\Drivers\rdpdr.sys [196224]
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) (.2008-04-13 - 20:57:34.) -- C:\WINDOWS\system32\Drivers\redbook.sys [58752]
[MD5.46DE1126684369BACE4849E4FC8C43CA] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.2008-04-13 - 20:56:04.) -- C:\WINDOWS\system32\Drivers\volsnap.sys [53376]
~ Generic Processes: Scanned in 00mn 00s
---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/2
~ Mes Videos (My Videos) : 0/0
~ Mes Documents (My Documents) : 2/21083
~ Mon Bureau (My Desktop) : 7/3643
~ Menu demarrer (Programs) : 1/38
~ Hidden Files: Scanned in 00mn 18s
---\\ Processus lancés
[MD5.00E3E885D8C19CAD03BCD05DFEB2C1FE] - (.Comodo Security Solutions Inc. - livePCsupport launcher system service.) -- C:\Program Files\Fichiers communs\COMODO\launcher_service.exe [70344] [PID.1176]
[MD5.56DED3ADE453272E6A0AD582D945D1A4] - (.Intel Corporation - Intel(R) PROSet/Wireless Event Log.) -- C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [114753] [PID.1496]
[MD5.6C5155CC0E805C7BE6028BFF7AC14524] - (.Intel Corporation - Wireless Management Service.) -- C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [540745] [PID.1548]
[MD5.E1EC228D87915050BDF59F6331AD7247] - (.Avocent Inc. - Service Program for Acer.) -- C:\Acer\Empowering Technology\admServ.exe [1314816] [PID.616]
[MD5.5D1347AA5AE6E2F77D7F4F8372D95AC9] - (.Microsoft Corporation - Media Center Receiver Service.) -- C:\WINDOWS\eHome\ehRecvr.exe [237568] [PID.912]
[MD5.980EEEA91776357518892C5544768E2B] - (.Microsoft Corporation - Service de planification Media Center.) -- C:\WINDOWS\eHome\ehSched.exe [103424] [PID.1508]
[MD5.AE63D0DB96C07CAE5DC4CDB2B2A719A0] - (.Comodo Security Solutions, Inc. - GeekBuddy Remote Screen Protocol Server.) -- C:\Program Files\Fichiers communs\COMODO\GeekBuddyRSP.exe [1851088] [PID.1632]
[MD5.1834C96FB1F9280BCF6DDFA6DE8338BF] - (.Sun Microsystems, Inc. - Java(TM) Quick Starter Service.) -- C:\Program Files\Java\jre6\bin\jqs.exe [153376] [PID.1884]
[MD5.86E8BCAA91FC2ACFACD99CF2BF9F1F47] - (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe [49152] [PID.1860]
[MD5.7CF1B716372B89568AE4C0FE769F5869] - (.Microsoft Corporation - Machine Debug Manager.) -- C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\mdm.exe [335872] [PID.1452]
[MD5.1B2857EF12D79A9F9ADBA14B0637CBF8] - (.Intel Corporation - Intel(R) PROSet/Wireless Registry Service.) -- C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [217164] [PID.580]
[MD5.9C69E6A25F5500501B14AF43311F8D8B] - (.Microsoft Corporation - Media Center Tray Applet.) -- C:\WINDOWS\ehome\ehtray.exe [64512] [PID.1988]
[MD5.52DB6CDAC5BC7A1FC884E97C41C91213] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [248040] [PID.2240]
[MD5.2E0B0A051FFAA86E358465BB0880D453] - (.Microsoft Corporation - Windows Update.) -- C:\WINDOWS\system32\wuauclt.exe [53784] [PID.2252]
[MD5.D9F3DB62D1B361D82CD82A347EA6218D] - (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe [77824] [PID.2312]
[MD5.32FB9368F485A7FE944EB6678B61734B] - (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe [118784] [PID.2336]
[MD5.59307A84CACE50B66089DBD5F74EA17A] - (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [761946] [PID.2412]
[MD5.FD38AEEB62D48A88786309063E9DF7BB] - (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\WINDOWS\RTHDCPL.exe [16132608] [PID.2420]
[MD5.0E34B7BB1FCF22BCC1E394D16F9E992B] - (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040] [PID.2472]
[MD5.30A0B072E647757CEDDA9E306D410410] - (.COMODO - COMODO Internet Security.) -- C:\Program Files\COMODO\COMODO Internet Security\cfp.exe [6756048] [PID.2528]
[MD5.DEB88AEF013DD1EEFB462D7CAD642166] - (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- D:\Adobe\Reader\reader_sl.exe [29696] [PID.2880]
[MD5.09301A1FB10CDB3328AB616B5B18C92F] - (.Comodo Security Solutions, Inc. - livePCsupport Component.) -- C:\Program Files\COMODO\GeekBuddy\unit_manager.exe [207560] [PID.3088]
[MD5.27F7E2A7B7E09FF2F17A97DCA6EE0F1A] - (.Comodo Security Solutions, Inc. - livePCsupport Component.) -- C:\Program Files\COMODO\GeekBuddy\unit.exe [194760] [PID.3128]
[MD5.E39574B471EF0B8719B13CC99AAFF0B8] - (.Realtek Semiconductor Corp. - Realtek HD Audio Data Rerouter.) -- C:\Documents and Settings\Client\Local Settings\Temp\RtkBtMnt.exe [208896] [PID.3708]
[MD5.123B02A3AEF3C19C0F30D9F20E3A2288] - (.COMODO - COMODO Internet Security.) -- C:\Program Files\COMODO\COMODO Internet Security\crashrep.exe [719056] [PID.1804]
[MD5.9F419AD2EBFF9044CA845484CFBEAC48] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [7719936] [PID.3592]
[MD5.52404CC76E9D53843BDF97564BB16BED] - (.Microsoft Corporation - MCRD Device Service.) -- C:\WINDOWS\ehome\mcrdsvc.exe [99328] [PID.732]
[MD5.5E9A6658A2A69AE7EB195113B7A2E7A9] - (.Microsoft Corporation - Application Layer Gateway Service.) -- C:\WINDOWS\System32\alg.exe [44544] [PID.3216]
~ Processes Running: Scanned in 00mn 01s
---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences
G2 - GCE: Preference [User Data\Default] [ejpbbhjlbipncjklfjjaedaieimbmdda] uTorrentControl_v2 v.2.3.19.11 (Désactivé) =>P2P.µTorrent
~ Google Browser: 15 Legitimates Filtered in 00mn 22s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\prefs.js
C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\user.js
M3 - MFPP: Plugins - [Client] -- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\searchplugins\web-search.xml
M3 - MFPP: Plugins - [Client] -- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\searchplugins\conduit.xml
M2 - MFEP: prefs.js [Client - bikr6jfq.default\{f531b93a-b50b-4ff1-8288-404c881ac4da}] [] 01NET.com Main v10.16.4.19 (..)
M2 - MFEP: prefs.js [Client - bikr6jfq.default\radiobar@toolbar] [] RadioBar Toolbar v1.0.0 (..)
P2 - FPN:Firefox Plugin Navigator . (.Macromedia, Inc. - Macromedia Authorware Web Player Netscape plug-in, version 2004.) -- C:\Program Files\Mozilla Firefox\Plugins\np32asw.dll
~ Firefox Browser: 26 Legitimates Filtered in 00mn 00s
---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Google Inc. - Google Update.) (No version) -- (.not file.)
R3 - URLSearchHook: uTorrentControl_v2 Toolbar - {7473b6bd-4691-4744-a82b-7854eb3d70b6} . (.Google Inc. - Google Update.) (No version) -- (.not file.) =>P2P.µTorrent
~ IE Browser: 14 Legitimates Filtered in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;<local>
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Keys: Scanned in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 72
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: uTorrentControl_v2 - {7473b6bd-4691-4744-a82b-7854eb3d70b6} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\uTorrentControl_v2\prxtbuTor.dll =>P2P.µTorrent
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} . (...) -- blank (.not file.)
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} . (...) -- blank (.not file.)
~ BHO: 11 Legitimates Filtered in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: MSN - [HKLM]{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} . (...) -- blank (.not file.)
O3 - Toolbar: uTorrentControl_v2 Toolbar - [HKLM]{7473b6bd-4691-4744-a82b-7854eb3d70b6} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\uTorrentControl_v2\prxtbuTor.dll =>P2P.µTorrent
~ Toolbar: Scanned in 00mn 00s
---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [ehTray] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [LaunchApp] Clé orpheline
O4 - HKLM\..\Run: [IMJPMIG8.1] . (.Microsoft Corporation - Microsoft IME.) -- C:\WINDOWS\IME\imjp8_1\IMJPMIG.exe
O4 - HKLM\..\Run: [Acer ePower Management] . (.Acer Value Labs, Taiwan - Acer ePower Management.) -- C:\Acer\Empowering Technology\ePower\Acer ePower Management.exe
O4 - HKLM\..\Run: [Synchronization Manager] . (.Microsoft Corporation - Gestionnaire de synchronisation Microsoft.) -- C:\WINDOWS\system32\mobsync.exe
O4 - HKLM\..\Run: [NeroFilterCheck] . (.Ahead Software Gmbh - NeroCheck.) -- C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [RegistryMechanic] Clé orpheline
O4 - HKLM\..\Run: [igfxtray] . (.Intel Corporation - igfxTray Module.) -- C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] . (.Intel Corporation - hkcmd Module.) -- C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] . (.Intel Corporation - persistence Module.) -- C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RTHDCPL] . (.Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- C:\WINDOWS\RTHDCPL.exe
O4 - HKLM\..\Run: [Alcmtr] . (.Realtek Semiconductor Corp. - Realtek Azalia Audio - Event Monitor.) -- C:\WINDOWS\ALCMTR.exe
O4 - HKLM\..\Run: [AzMixerSel] . (.Realtek Semiconductor Corp. - Azalia Mixer Selector.) -- C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [GrooveMonitor] . (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
O4 - HKLM\..\Run: [COMODO Internet Security] . (.COMODO - COMODO Internet Security.) -- C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
O4 - HKLM\..\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files\Fichiers communs\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Run: [gbrspcontrol] . (.Comodo Security Solutions, Inc. - GeekBuddy Remote Screen Protocol Server.) -- C:\Program Files\Fichiers communs\COMODO\GeekBuddyRSP.exe
O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\QTTask.exe
O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Gestionnaire Antidote.exe] F:\Druide\Antidote\Gestionnaire Antidote.exe (.not file.)
O4 - HKCU\..\Run: [AdobeBridge] Clé orpheline
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] . (.Microsoft Corporation - Watson Subscriber for SENS Network Notifica.) -- C:\Program Files\Fichiers communs\Microsoft Shared\DW\DWTRIG20.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe
O4 - HKUS\S-1-5-21-3650030575-3363428128-3634041001-1005\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-3650030575-3363428128-3634041001-1005\..\Run: [Gestionnaire Antidote.exe] F:\Druide\Antidote\Gestionnaire Antidote.exe (.not file.)
O4 - HKUS\S-1-5-21-3650030575-3363428128-3634041001-1005\..\Run: [AdobeBridge] Clé orpheline
~ Application: Scanned in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\Programs: Windows Movie Maker.lnk . (.Microsoft Corporation - Windows Movie Maker.) -- C:\Program Files\Movie Maker\moviemk.exe
O4 - GS\Programs: Media Center.lnk . (.Microsoft Corporation - Media Center.) -- C:\WINDOWS\ehome\ehshell.exe
O4 - GS\Programs: YouSendIt.lnk . (...) -- C:\Program Files\YouSendIt\Express\YouSendIt.exe
O4 - GS\Programs: Adobe Reader 7.0.lnk . (...) -- C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A70000000000}\SC_Reader_PM.ico
O4 - GS\Programs: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - GS\Programs: Apple Software Update.lnk . (...) -- C:\WINDOWS\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe
O4 - GS\QuickLaunch: Ad-Aware SE Personal.lnk . (.Lavasoft Sweden - Ad-Aware SE Core application.) -- C:\Program Files\Lavasoft\Ad-Aware SE Personal\Ad-Aware.exe
O4 - GS\Programs: Assistance à distance.lnk . (.Microsoft Corporation - Assistance à distance Microsoft.) -- C:\WINDOWS\system32\rcimlby.exe
O4 - GS\Programs: Outlook Express.lnk . (.Microsoft Corporation - Outlook Express.) -- C:\Program Files\Outlook Express\msimn.exe
O4 - GS\Programs: Windows Media Player.lnk . (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Global Startup: Scanned in 00mn 00s
---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\Program Files\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} -- Clé orpheline
O9 - Extra button: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} -- Clé orpheline
O9 - Extra button: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe
~ IE Extra Buttons: Scanned in 00mn 00s
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {00000055-9980-0010-8000-00AA00389B71} ((no name)) - http://codecs.microsoft.com/codecs/i386/fhg.CAB
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} ((no name)) - http://appldnld.apple.com/QuickTime/qtactivex/qtplugin.cab
O16 - DPF: {15B782AF-55D8-11D1-B477-006097098764} ((no name)) - http://fpdownload.macromedia.com/get/shockwave/cabs/authorware/awswaxd.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} ((no name)) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} ((no name)) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} ((no name)) - http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
O16 - DPF: {97E71027-0BA2-44F2-97DB-F84D808ED0B6} ((no name)) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab55762.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} ((no name)) - http://messenger.zone.msn.com/binary/ZIntro.cab55579.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} ((no name)) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} ((no name)) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} ((no name)) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} ((no name)) - http://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol/MSNPUpld.cab
~ Objets ActiveX: Scanned in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files\Windows Live\Mail\mailcomm.dll
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.dll
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\WINDOWS\system32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\WINDOWS\system32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\WINDOWS\system32\cscdll.dll
O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\system32\dimsntfy.dll
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\WINDOWS\system32\igfxdev.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\WINDOWS\system32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: WgaLogon . (.Microsoft Corporation - Notifications Windows Genuine Advantage.) -- C:\WINDOWS\system32\WgaLogon.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
~ Winlogon: Scanned in 00mn 00s
---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: AdminWorks Agent X6 (AWService) . (.Avocent Inc. - Service Program for Acer.) - C:\Acer\Empowering Technology\admServ.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Servic (RegSrvc) . (.Intel Corporation - Intel(R) PROSet/Wireless Registry Service.) - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) . (.Intel Corporation - Wireless Management Service.) - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
~ Services: 10 Legitimates Filtered in 00mn 07s
---\\ Tâches planifiées en automatique (O39)
[MD5.00000000000000000000000000000000] [APT] [Ad-Aware Update (Weekly)] (...) -- C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe (.not file.) [0]
~ Scheduled Task: 9 Legitimates Filtered in 00mn 00s
---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: (OsaFsLoc) . (.OSA Technologies - Filesystem Lock driver.) - C:\WINDOWS\system32\drivers\OsaFsLoc.sys
~ Drivers: 44 Legitimates Filtered in 00mn 00s
---\\ Logiciels installés (O42)
O42 - Logiciel: Ad-Aware SE Personal - (.Lavasoft.) [HKLM] -- Ad-Aware SE Personal
O42 - Logiciel: Programme de gestion Camera de Acer - (...) [HKLM] -- AcerOrbiCamDrv
O42 - Logiciel: Search Protect by conduit - (.Conduit.) [HKLM] -- SearchProtect =>Toolbar.Conduit
~ Logic: 162 Legitimates Filtered in 00mn 01s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\AppDataLow\Software\Smartbar] =>Hijacker.SmartBar
[HKCU\Software\Astrocycle]
[HKCU\Software\Bibliquest]
[HKCU\Software\ConduitSearchScopes]
[HKCU\Software\FunWebProducts] =>Adware.MyWebSearch
[HKCU\Software\Rabia]
[HKCU\Software\SearchProtect] =>Toolbar.Conduit
[HKCU\Software\Smartbar] =>Hijacker.SmartBar
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\WinGuides]
[HKCU\Software\YahooPartnerToolbar] =>Toolbar.Yahoo
[HKCU\Software\Yahoo] =>Toolbar.Yahoo
[HKCU\Software\iJoysoft]
[HKLM\Software\Doctor Web, Ltd.]
[HKLM\Software\InterMute]
[HKLM\Software\Rabia]
[HKLM\Software\WinGuides]
[HKLM\Software\Yahoo] =>Toolbar.Yahoo
[HKLM\Software\iJoysoft]
~ Key Software: 322 Legitimates Filtered in 00mn 01s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 2007-04-03 - 16:57:08 - [2,876] ----D C:\Program Files\ActiveX Control Pad
O43 - CFD: 2013-07-18 - 22:41:22 - [7,919] ----D C:\Program Files\SearchProtect =>Toolbar.Conduit
O43 - CFD: 2007-09-05 - 21:51:14 - [0,426] ----D C:\Documents and Settings\Client\Application Data\LimeWire
O43 - CFD: 2010-10-07 - 16:58:20 - [0,011] ----D C:\Documents and Settings\Client\Application Data\iJoysoft
O43 - CFD: 2012-10-30 - 19:31:04 - [0,456] ----D C:\Documents and Settings\Client\Application Data\Linterweb
O43 - CFD: 2013-07-18 - 22:40:38 - [10,064] ----D C:\Documents and Settings\Client\Application Data\SearchProtect =>Toolbar.Conduit
O43 - CFD: 2012-10-30 - 19:31:04 - [1,414] ----D C:\Documents and Settings\Client\Local Settings\Application Data\Linterweb
O43 - CFD: 2010-10-30 - 17:05:14 - [0,001] ----D C:\Documents and Settings\Client\Menu Démarrer\Programmes\Bibliquest
~ Program Folder: 188 Legitimates Filtered in 00mn 41s
---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.85C379501B97D0066C758612FD78FC30] - 2013-07-05 - 21:24:16 ---A- . (...) -- C:\WINDOWS\system32\lvcoinst.log [15630]
O44 - LFC:[MD5.B2C100ADE3A01B663CAA7EB68EE80A51] - 2013-07-05 - 21:38:20 ---A- . (.Bison Electronics. Inc. - Universal Serial Bus Camera Driver.) -- C:\WINDOWS\system32\Drivers\BisonCam.sys [775936]
O44 - LFC:[MD5.73C0153E028AEC0793663544115ADBA4] - 2013-07-05 - 21:38:21 ---A- . (...) -- C:\WINDOWS\M2000Twn.ini [15190]
O44 - LFC:[MD5.F899D431D27FF2A41537877443505A30] - 2013-07-05 - 21:38:21 ---A- . (...) -- C:\WINDOWS\M2000Twn.src [13448]
O44 - LFC:[MD5.080C19E6C326749F263467F021C9EB59] - 2013-07-05 - 21:38:22 ---A- . (.Bison Inc. - USB PC Camera Uninstallation.) -- C:\WINDOWS\system32\BisonRem.dll [77942]
O44 - LFC:[MD5.254FFD9FE6CACC8E9D9EC8547973C924] - 2013-07-16 - 15:25:08 ---A- . (...) -- C:\WINDOWS\system.ini [246]
O44 - LFC:[MD5.C6A7661A29FA678C81D6E3F1007471A4] - 2013-07-16 - 15:25:08 ---A- . (...) -- C:\WINDOWS\win.ini [785]
O44 - LFC:[MD5.13D5289B2D3C73FF7F2F5FCFA4CCE026] - 2013-07-16 - 18:05:38 ---A- . (...) -- C:\WINDOWS\NeroDigital.ini [202]
O44 - LFC:[MD5.5F404D09A144C883B7B9BCF8BD4E4AB1] - 2013-07-18 - 21:45:22 ---A- . (...) -- C:\WINDOWS\wininit.ini [2786]
O44 - LFC:[MD5.873EA3362AA6AC9B704F6C27D2CC7445] - 2013-07-19 - 11:27:06 ---A- . (...) -- C:\WINDOWS\bthservsdp.dat [12]
O44 - LFC:[MD5.D6DC634169F2B0FBB688CC541C752880] - 2013-07-19 - 11:27:08 ---A- . (...) -- C:\WINDOWS\wiaservc.log [50]
O44 - LFC:[MD5.64E75E2C1B32DC9AFCC5C5BDD6879206] - 2013-07-19 - 14:18:02 ---A- . (...) -- C:\WINDOWS\wiadebug.log [159]
O44 - LFC:[MD5.E613E9B0E6193D971C72E6E5C1F15789] - 2013-07-19 - 14:18:16 ---A- . (...) -- C:\WINDOWS\ModemLog_HDAUDIO Soft Data Fax Modem with SmartCP.txt [3810]
~ Files: 23 Legitimates Filtered in 00mn 01s
---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.4026A6DBC724261D779E5B7DFB7D6850] - 2013-07-19 - 02:01:14 ---A- - C:\WINDOWS\Prefetch\NDP30SP2-KB2832411-X86.EXE-1F3896E1.pf
O45 - LFCP:[MD5.CA48D8D4633843C7A8961C82A4FFB418] - 2013-07-19 - 02:02:02 ---A- - C:\WINDOWS\Prefetch\NDP20SP2-KB2844285-X86.EXE-1990155D.pf
O45 - LFCP:[MD5.65721960AD59900904549A6A4D3DE81F] - 2013-07-19 - 02:04:18 ---A- - C:\WINDOWS\Prefetch\NDP20SP2-KB2833940-X86.EXE-39FCB880.pf
O45 - LFCP:[MD5.BE8825578E9A226842DED1B790275CEC] - 2013-07-19 - 02:05:02 ---A- - C:\WINDOWS\Prefetch\NDP35SP1-KB2840629-X86.EXE-37E35791.pf
O45 - LFCP:[MD5.0D1CDF2E358B17207583D8A2CE51D16A] - 2013-07-19 - 02:09:24 ---A- - C:\WINDOWS\Prefetch\NDP1.1SP1-KB2833941-X86.EXE-03AC375C.pf
O45 - LFCP:[MD5.96A870DBCE6EEEBFD387B697B4A4380C] - 2013-07-19 - 11:23:32 ---A- - C:\WINDOWS\Prefetch\RMSCRN.EXE-203435D1.pf
O45 - LFCP:[MD5.707D96949091539BFD39AE2517783AD2] - 2013-07-19 - 11:31:50 ---A- - C:\WINDOWS\Prefetch\RAVINTFREE11.EXE-1A3E1403.pf
O45 - LFCP:[MD5.D32BB99966547E2729028837DE433C09] - 2013-07-19 - 12:17:32 ---A- - C:\WINDOWS\Prefetch\EVTENG.EXE-38C1434A.pf
O45 - LFCP:[MD5.5493A96A2C273CC30474B175D82A5F44] - 2013-07-19 - 12:18:44 ---A- - C:\WINDOWS\Prefetch\WIKITAXI.EXE-352E0765.pf
O45 - LFCP:[MD5.D96E9A14BA7559618CEE72A71FB6505A] - 2013-07-19 - 14:10:24 ---A- - C:\WINDOWS\Prefetch\FXSSVC.EXE-140862E7.pf
O45 - LFCP:[MD5.8A771B1B38DB3AF1CFF10CAB349BE5DC] - 2013-07-19 - 14:10:36 ---A- - C:\WINDOWS\Prefetch\AZMIXERSEL.EXE-0057985F.pf
O45 - LFCP:[MD5.FA943E3AF954E113D718B4E8B06CCAFE] - 2013-07-19 - 14:10:48 ---A- - C:\WINDOWS\Prefetch\CFP.EXE-0DF700AD.pf
O45 - LFCP:[MD5.B9B0445A524EDADBDA18FE793CDC6B40] - 2013-07-19 - 14:17:46 ---A- - C:\WINDOWS\Prefetch\LAUNCHER_SERVICE.EXE-00DC8A97.pf
O45 - LFCP:[MD5.E0AC6D28E74CD6D903F17DC6FF3EE8DA] - 2013-07-19 - 14:17:58 ---A- - C:\WINDOWS\Prefetch\ADMSERV.EXE-098B4307.pf
O45 - LFCP:[MD5.9929EB3AFD82BB63DA47987E3074D1DD] - 2013-07-19 - 14:18:06 ---A- - C:\WINDOWS\Prefetch\ALAUNCH.EXE-145B15F4.pf
O45 - LFCP:[MD5.F545C2518D3AB3A6688AE097BC095C98] - 2013-07-19 - 14:18:06 ---A- - C:\WINDOWS\Prefetch\IMJPMIG.EXE-32ABEE9A.pf
O45 - LFCP:[MD5.EC8A338EB41BDAEDCCAF116DAD6508A4] - 2013-07-19 - 14:18:10 ---A- - C:\WINDOWS\Prefetch\ACER EPOWER MANAGEMENT.EXE-269102ED.pf
O45 - LFCP:[MD5.AFA71E6B88446A95CE7D2F0F6EAA3F5D] - 2013-07-19 - 14:18:34 ---A- - C:\WINDOWS\Prefetch\UNIT_MANAGER.EXE-032B1362.pf
O45 - LFCP:[MD5.D75A011B9245E8D0C771213288E45F0D] - 2013-07-19 - 14:20:24 ---A- - C:\WINDOWS\Prefetch\CRASHREP.EXE-3A2527C7.pf
~ Prefetcher: 121 Legitimates Filtered in 00mn 00s
---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll
O46 - SEH:ShellExecuteHooks - Microsoft AntiMalware ShellExecuteHook - {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\PROGRA~1\WIFD1F~1\MpShHook.dll
O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
~ ShellExecuteHooks: Scanned in 00mn 00s
---\\ Export de clé d'application autorisée (O47)
O47 - AAKE:Key Export SP - "E:\Skate3.exe" [Enabled] .(...) -- E:\Skate3.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\SPSSInc\SPSS16\SPSSWinWrapIDE.exe" [Disabled] .(...) -- C:\Program Files\SPSSInc\SPSS16\SPSSWinWrapIDE.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\SPSSInc\SPSS16\spss.com" [Disabled] .(...) -- C:\Program Files\SPSSInc\SPSS16\spss.com (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\SPSSInc\SPSS16\spss.exe" [Disabled] .(...) -- C:\Program Files\SPSSInc\SPSS16\spss.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Real\RealPlayer\realplay.exe" [Enabled] .(...) -- C:\Program Files\Real\RealPlayer\realplay.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32server.exe" [Enabled] .(...) -- C:\Program Files\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32server.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Program Files\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32.exe" [Enabled] .(...) -- C:\Program Files\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32.exe (.not file.)
O47 - AAKE:Key Export SP - "D:\3DS Max\mentalimages\satellite\raysat_3dsmax2011_32server.exe" [Enabled] .(...) -- D:\3DS Max\mentalimages\satellite\raysat_3dsmax2011_32server.exe (.not file.)
O47 - AAKE:Key Export SP - "D:\3DS Max\mentalimages\satellite\raysat_3dsmax2011_32.exe" [Enabled] .(...) -- D:\3DS Max\mentalimages\satellite\raysat_3dsmax2011_32.exe (.not file.)
O47 - AAKE:Key Export SP - "C:\Documents and Settings\Client\Local Settings\Application Data\Akamai\netsession_win.exe" [Disabled] .(...) -- C:\Documents and Settings\Client\Local Settings\Application Data\Akamai\netsession_win.exe (.not file.)
~ Keys Export: 40 Legitimates Filtered in 00mn 00s
---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d
~ IFEO: Scanned in 00mn 00s
---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "InstallTheme"=1
O55 - MWPS:[HKCU\...\Policies\System] - "NoFind"=0
O55 - MWPS:[HKCU\...\Policies\System] - "NoRun"=0
O55 - MWPS:[HKCU\...\Policies\System] - "NoDesktop"=0
O55 - MWPS:[HKCU\...\Policies\System] - "NoControlPanel"=0
O55 - MWPS:[HKCU\...\Policies\System] - "NoClose"=0
O55 - MWPS:[HKCU\...\Policies\System] - "StartMenuLogOff"=0
O55 - MWPS:[HKCU\...\Policies\System] - "HideClock"=0
~ MWPS: 14 Legitimates Filtered in 00mn 00s
---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.C1D5CBD8AA0D674DA1BA1BB189696396] - 2005-10-18 - 15:52:30 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\WINDOWS\system32\Drivers\HSF_CNXT.sys [721280]
O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 2007-08-02 - 11:00:00 ---A- . (...) -- C:\WINDOWS\system32\key01.sys [42809]
~ Drivers: Scanned in 00mn 00s
---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 2013-07-16 - 16:37:42 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extension Rules\LOCK [0]
O61 - LFC: 2013-07-16 - 17:11:16 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\bookmarkbackups\bookmarks-2013-07-16.json [10946]
O61 - LFC: 2013-07-17 - 16:07:50 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\bookmarkbackups\bookmarks-2013-07-17.json [10946]
O61 - LFC: 2013-07-18 - 08:28:58 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\CRE\hakpajgggjjcjmidfbnnncnbaihjneaj.crx [2917850]
O61 - LFC: 2013-07-18 - 13:28:10 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\healthreport\lastpayload.json [13423]
O61 - LFC: 2013-07-18 - 13:33:02 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\blocklist.xml [73413]
O61 - LFC: 2013-07-18 - 13:45:24 ---A- C:\Documents and Settings\Client\Bureau\Esaie A. Remmers.docx [506353]
O61 - LFC: 2013-07-18 - 13:58:06 ---A- C:\Documents and Settings\Client\Bureau\Psaumes PhL.docx [272593]
O61 - LFC: 2013-07-18 - 14:54:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extension Rules\000005.sst [417]
O61 - LFC: 2013-07-18 - 15:13:06 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\GPUCache\data_0 [8192]
O61 - LFC: 2013-07-18 - 15:13:06 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\GPUCache\data_2 [8192]
O61 - LFC: 2013-07-18 - 15:13:06 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\GPUCache\data_3 [8192]
O61 - LFC: 2013-07-18 - 15:13:06 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\GPUCache\index [262512]
O61 - LFC: 2013-07-18 - 15:29:38 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\addons.sqlite [524288]
O61 - LFC: 2013-07-18 - 15:29:38 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\bookmarkbackups\bookmarks-2013-07-18.json [10946]
O61 - LFC: 2013-07-18 - 15:29:38 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\content-prefs.sqlite [7168]
O61 - LFC: 2013-07-18 - 15:29:38 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\healthreport.sqlite [1146880]
O61 - LFC: 2013-07-18 - 15:29:38 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\permissions.sqlite [2048]
O61 - LFC: 2013-07-18 - 15:29:38 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\webappsstore.sqlite [2879488]
O61 - LFC: 2013-07-18 - 20:34:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Microsoft\Media Player\LocalMLS_0.wmdb [84848]
O61 - LFC: 2013-07-18 - 20:34:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Microsoft\Media Player\wmpfolders.wmdb [3394]
O61 - LFC: 2013-07-18 - 21:40:34 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\CT3285358\CT3285358.UserID [19]
O61 - LFC: 2013-07-18 - 21:40:34 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\CT3285358\CT3285358.fullUserID [37]
O61 - LFC: 2013-07-18 - 21:40:34 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\extensions\{f531b93a-b50b-4ff1-8288-404c881ac4da}\Plugins\np-mswmp.dll [163256]
O61 - LFC: 2013-07-18 - 21:40:34 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\extensions\{f531b93a-b50b-4ff1-8288-404c881ac4da}\Plugins\npConduitFirefoxPlugin.dll [207136]
O61 - LFC: 2013-07-18 - 21:40:34 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\prefs.js [60]
O61 - LFC: 2013-07-18 - 21:40:36 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\extensions\{f531b93a-b50b-4ff1-8288-404c881ac4da}\defaults\preferences\defaults.js [1495]
O61 - LFC: 2013-07-18 - 21:40:38 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\searchplugins\conduit.xml [1005]
O61 - LFC: 2013-07-18 - 21:41:14 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\Res\SPSetup.exe [2249112] =>Toolbar.Conduit
O61 - LFC: 2013-07-18 - 21:41:18 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\cltmng.exe [2852640] =>Toolbar.Conduit
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\ChromeModule.dll [836896] =>Toolbar.Conduit
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\CltMngSvc.exe [97056] =>Toolbar.Conduit
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\FirefoxModule.dll [1226528] =>Toolbar.Conduit
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\InternetExplorerModule.dll [1136416] =>Toolbar.Conduit
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\SPHook32.dll [161056] =>Toolbar.Conduit
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\SPRunner.exe [308000] =>Toolbar.Conduit
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\msvcp100.dll [421200] =>Toolbar.Conduit
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\msvcr100.dll [770384] =>Toolbar.Conduit
O61 - LFC: 2013-07-18 - 21:41:50 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\ffprotect\SProtectorRepository\FR [825] =>Toolbar.Conduit
O61 - LFC: 2013-07-18 - 21:44:02 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\CT3285358\01NET.com_MainAutoUpdateHelper.exe [86816]
O61 - LFC: 2013-07-18 - 21:44:08 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\01NET.com_Main\hktb01NE.dll [1053984]
O61 - LFC: 2013-07-18 - 21:44:08 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\01NET.com_Main\ldrtb01NE.dll [332576]
O61 - LFC: 2013-07-18 - 21:44:08 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\01NET.com_Main\tb01NE.dll [5128992]
O61 - LFC: 2013-07-18 - 21:44:10 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\01NET.com_Main\hk64tb01NE.dll [1250080]
O61 - LFC: 2013-07-18 - 21:44:54 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\ffprotect\abstraction.js [52518] =>Toolbar.Conduit
O61 - LFC: 2013-07-18 - 21:51:36 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\rep.dat [37868] =>Toolbar.Conduit
O61 - LFC: 2013-07-18 - 21:56:18 ---A- C:\Documents and Settings\Client\Bureau\Redémarrer en mode sans échec.docx [192888]
O61 - LFC: 2013-07-18 - 22:31:56 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_player.ooyala.com_0.localstorage-journal [3608]
O61 - LFC: 2013-07-18 - 22:48:44 -SHA- C:\Documents and Settings\Client\Application Data\Microsoft\Internet Explorer\UserData\index.dat [16384]
O61 - LFC: 2013-07-18 - 22:53:32 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\places.sqlite [10485760]
O61 - LFC: 2013-07-18 - 22:56:04 ---A- C:\Documents and Settings\Client\Application Data\LavasoftStatistics\adaware.xml [890]
O61 - LFC: 2013-07-18 - 22:57:22 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\downloads.sqlite [98304]
O61 - LFC: 2013-07-18 - 22:57:26 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\extensions.sqlite [458752]
O61 - LFC: 2013-07-18 - 23:21:06 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Archived History [57344]
O61 - LFC: 2013-07-18 - 23:21:06 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Archived History-journal [512]
O61 - LFC: 2013-07-18 - 23:21:16 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_telechargement.zebulon.fr_0.localstorage [3072]
O61 - LFC: 2013-07-18 - 23:21:16 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_telechargement.zebulon.fr_0.localstorage-journal [3608]
O61 - LFC: 2013-07-18 - 23:21:16 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_www.tomsguide.fr_0.localstorage [4096]
O61 - LFC: 2013-07-18 - 23:21:16 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_www.tomsguide.fr_0.localstorage-journal [3608]
O61 - LFC: 2013-07-19 - 11:20:22 ---A- C:\Documents and Settings\Client\Recent\SSWords.pdf.lnk [435]
O61 - LFC: 2013-07-19 - 11:20:24 ---A- C:\Documents and Settings\Client\Recent\Spiritual songs.lnk [285]
O61 - LFC: 2013-07-19 - 11:21:44 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Microsoft\Windows Media\11.0\WMSDKNS.XML [10277]
O61 - LFC: 2013-07-19 - 11:26:52 --HA- C:\Documents and Settings\Client\Local Settings\Application Data\Microsoft\Windows\S-1-5-21-3650030575-3363428128-3634041001-1005_CLASSES.rrr.LOG [0]
O61 - LFC: 2013-07-19 - 11:26:52 --HA- C:\Documents and Settings\Client\S-1-5-21-3650030575-3363428128-3634041001-1005.rrr.LOG [0]
O61 - LFC: 2013-07-19 - 11:26:58 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Microsoft\Media Player\CurrentDatabase_360.wmdb [7094272]
O61 - LFC: 2013-07-19 - 11:27:04 --HA- C:\Documents and Settings\Client\ntuser.dat.rmbak [12320768]
O61 - LFC: 2013-07-19 - 11:35:04 ---A- C:\Documents and Settings\Client\Recent\Redémarrer en mode sans échec.docx.lnk [511]
O61 - LFC: 2013-07-19 - 12:22:00 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\bookmarkbackups\bookmarks-2013-07-19.json [10946]
O61 - LFC: 2013-07-19 - 12:22:34 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\parent.lock [0]
O61 - LFC: 2013-07-19 - 12:22:34 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\ffprotect\SProtectorRepository\searchProtectorData [605] =>Toolbar.Conduit
O61 - LFC: 2013-07-19 - 12:22:36 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\webapps\webapps.json [2]
O61 - LFC: 2013-07-19 - 12:22:38 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\urlclassifierkey3.txt [154]
O61 - LFC: 2013-07-19 - 12:28:34 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Certificate Revocation Lists [259463]
O61 - LFC: 2013-07-19 - 12:33:58 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Mozilla\Firefox\Mozilla Firefox\updates\0\update.status [12]
O61 - LFC: 2013-07-19 - 12:42:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\ToolbarFullUserID.txt [37]
O61 - LFC: 2013-07-19 - 12:42:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\ToolbarUserID.txt [19]
O61 - LFC: 2013-07-19 - 12:50:08 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Session Storage\000043.sst [145]
O61 - LFC: 2013-07-19 - 12:50:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Session Storage\LOG.old [759]
O61 - LFC: 2013-07-19 - 12:50:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extension Rules\LOG.old [145]
O61 - LFC: 2013-07-19 - 12:50:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Last Session [2501]
O61 - LFC: 2013-07-19 - 12:50:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Last Tabs [1625]
O61 - LFC: 2013-07-19 - 12:53:00 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extension Rules\CURRENT [16]
O61 - LFC: 2013-07-19 - 12:53:10 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\startupCache\startupCache.4.little [1493761]
O61 - LFC: 2013-07-19 - 12:54:00 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Session Storage\000045.sst [207]
O61 - LFC: 2013-07-19 - 12:54:00 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Session Storage\CURRENT [16]
O61 - LFC: 2013-07-19 - 12:55:08 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\toolbar_initializing_logger.txt.txt [24]
O61 - LFC: 2013-07-19 - 12:55:30 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_Configuration.txt [607]
O61 - LFC: 2013-07-19 - 12:55:30 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_searchAPI.txt [4925]
O61 - LFC: 2013-07-19 - 12:55:30 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_serviceMap.txt [11100]
O61 - LFC: 2013-07-19 - 12:55:30 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_Configuration.txt [676]
O61 - LFC: 2013-07-19 - 12:55:30 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_searchAPI.txt [5426]
O61 - LFC: 2013-07-19 - 12:55:30 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_serviceMap.txt [12411]
O61 - LFC: 2013-07-19 - 12:55:32 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.installUsageEarly.txt [39]
O61 - LFC: 2013-07-19 - 12:55:34 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_toolbarSettings.txt [59548]
O61 - LFC: 2013-07-19 - 12:55:34 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\uninstallData.txt [427]
O61 - LFC: 2013-07-19 - 12:55:34 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\uninstallUrl.txt [81]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_appsMetadata.txt [4719]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_gottenAppsContextMenu.txt [6103]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_otherAppsContextMenu.txt [4336]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_toolbarContextMenu.txt [4336]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_appsMetadata.txt [4632]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_gottenAppsContextMenu.txt [11890]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_otherAppsContextMenu.txt [9382]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_toolbarContextMenu.txt [9381]
O61 - LFC: 2013-07-19 - 12:55:40 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_appTrackingFirstTime.txt [149]
O61 - LFC: 2013-07-19 - 12:55:40 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_appTrackingFirstTime.txt [62]
O61 - LFC: 2013-07-19 - 12:55:42 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.searchProtectorData.txt [1627] =>Toolbar.Conduit
O61 - LFC: 2013-07-19 - 12:55:42 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_login.txt [5178]
O61 - LFC: 2013-07-19 - 12:55:42 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_login.txt [6579]
O61 - LFC: 2013-07-19 - 12:56:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.installUsage.txt [39]
O61 - LFC: 2013-07-19 - 12:56:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_toolbarSettings.txt [60056]
O61 - LFC: 2013-07-19 - 12:56:46 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.1000034.Settings.txt [1224]
O61 - LFC: 2013-07-19 - 12:56:46 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.130049783618732645.search.selectedEngineId.txt [7]
O61 - LFC: 2013-07-19 - 12:56:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.1000082.currentList.txt [2860]
O61 - LFC: 2013-07-19 - 12:56:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.1000082.nowPlaying.txt [178]
O61 - LFC: 2013-07-19 - 12:56:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.1000082.publisherStations.txt [2860]
O61 - LFC: 2013-07-19 - 12:56:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.NOTIFICATION_ID.notifications-servicemap.txt [1039]
O61 - LFC: 2013-07-19 - 12:56:50 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.NOTIFICATION_ID.notifications-service_1770460.txt [572]
O61 - LFC: 2013-07-19 - 12:56:58 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.1000234.weatherData.txt [4777]
O61 - LFC: 2013-07-19 - 12:58:00 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\serviceLayer_userApps_added.txt [58]
O61 - LFC: 2013-07-19 - 12:58:22 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.pg_conf_global.txt [1203858]
O61 - LFC: 2013-07-19 - 12:58:40 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.130049783619512662.cat0.txt [66830]
O61 - LFC: 2013-07-19 - 12:58:42 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.130049783619512662.ReadItemsArr.txt [5516]
O61 - LFC: 2013-07-19 - 12:58:42 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.130049783619512662.cat1.txt [67392]
O61 - LFC: 2013-07-19 - 12:58:42 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.130049783619512662.feedsObj.txt [1821]
O61 - LFC: 2013-07-19 - 13:05:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.NotificationSettings.txt [395]
O61 - LFC: 2013-07-19 - 13:05:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.appOptions.txt [1763]
O61 - LFC: 2013-07-19 - 13:05:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_userApps.txt [95]
O61 - LFC: 2013-07-19 - 13:05:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\serviceLayer_userApps_removed.txt [52]
O61 - LFC: 2013-07-19 - 13:05:40 ---A- C:\Documents and Settings\Client\Local Settings\Applica
désinstalle Adaware, il est inutile,
comme je te l'ai déjà dit, tu as µ
Comodo internet Security sur ton pc !
installe la dernière version de java, Adobe flash player et Adobe reader depuis leurs sites dédiés !
attention à l'installation des barres d'outils !
* /!\ Avertissement /!\,
* ce script est seulement valable pour ce pc, en cours du nettoyage, à ne pas utiliser sur un autre pc, risque de plantage !
* Lance ZHPFix via le raccourci sur ton Bureau, l'icône est sous forme de seringue.
/!\Utilisateur de Vista, Seven et W8 :
* Clique droit sur le logo de ZHPfix, « exécuter en tant qu'Administrateur »
* * Copie ( Ctrl + C ) et colle ( Ctrl + V ) les lignes suivantes en gras dans Zhpfix :
---------------------------------------------------------
M3 - MFPP: Plugins - [Client] -- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\searchplugins\web-search.xml
[HKCU\Software\AppDataLow\Software\Smartbar] [HKCU\Software\FunWebProducts]
[HKCU\Software\Smartbar]
O69 - SBI: prefs.js [Client - bikr6jfq.default] user_pref("Smartbar.ConduitHomepagesList", "http://search.conduit.com/?ctid=CT3285358&octid=CT3285358&SearchSource=61&CUI=UN266066[...] O69 - SBI: prefs.js [Client - bikr6jfq.default] user_pref("Smartbar.ConduitSearchEngineList", "");
O69 - SBI: prefs.js [Client - bikr6jfq.default] user_pref("Smartbar.ConduitSearchUrlList", "");
O69 - SBI: prefs.js [Client - bikr6jfq.default] user_pref("browser.search.defaultenginename", "Web Search...");
O69 - SBI: prefs.js [Client - bikr6jfq.default] user_pref("smartbar.conduitHomepageList", "http://search.conduit.com/?ctid=CT3285358&octid=CT3285358&SearchSource=61&CUI=UN2660664[...] O69 - SBI: prefs.js [Client - bikr6jfq.default] user_pref("smartbar.conduitSearchAddressUrlList", "https://www.bing.com/search?q=%2Chttp&pc=cosp&ptag=G6C999A6015BF3824&form=CONADR&conlogo=CT3210127[...]
O69 - SBI: prefs.js [Client - bikr6jfq.default] user_pref("smartbar.originalSearchAddressUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3220468&SearchSource=2&q=");
O69 - SBI: SearchScopes [HKCU] {006ee092-9658-4fd6-bd8e-a21a348e59f5} - (Web Search) - https://search.safefinder.com/?q=
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}]
[HKLM\Software\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}]
[HKLM\Software\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\mywebsearch bar uninstall]
[HKCU\Software\FunWebProducts] [HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\hotbar] [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\01NET.com_Main Toolbar] =>Adware.SimilarSites
[HKCU\Software\01NET.com_Main]
[HKLM\Software\01NET.com_Main]
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\Arpcache\MyWebSearch bar Uninstall]
C:\Program Files\01NET.com_Main
C:\Documents and Settings\Client\Local Settings\Application Data\01NET.com_Main
C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\Smartbar
C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\SearchPlugins\web-search.xml
O69 - SBI: prefs.js [Client - bikr6jfq.default] user_pref("CT3220468.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3220468&SearchSource=2&q=");
O69 - SBI: prefs.js [Client - bikr6jfq.default] user_pref("CT3220468.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"http://search.conduit.com/?ctid=CT3220468&octid=CT3[...]
O69 - SBI: prefs.js [Client - bikr6jfq.default] user_pref("keyword.URL", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3220468&SearchSource=2&CUI=UN98997799348526760&q=");
M3 - MFPP: Plugins - [Client] -- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\searchplugins\conduit.xml
M2 - MFEP: prefs.js [Client - bikr6jfq.default\{f531b93a-b50b-4ff1-8288-404c881ac4da}] [] 01NET.com Main v10.16.4.19 (..) => Toolbar.01NET
M2 - MFEP: prefs.js [Client - bikr6jfq.default\radiobar@toolbar] [] RadioBar Toolbar v1.0.0 (..)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com
O42 - Logiciel: Search Protect by conduit - (.Conduit.) [HKLM] -- SearchProtect
[HKCU\Software\ConduitSearchScopes]
[HKCU\Software\SearchProtect]
[HKCU\Software\Softonic]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\Yahoo]
[HKLM\Software\Yahoo]
O43 - CFD: 2013-07-18 - 22:41:22 - [7,919] ----D C:\Program Files\SearchProtect
O43 - CFD: 2013-07-18 - 22:40:38 - [10,064] ----D C:\Documents and Settings\Client\Application Data\SearchProtect
O61 - LFC: 2013-07-18 - 21:40:34 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\CT3285358\CT3285358.UserID [19]
O61 - LFC: 2013-07-18 - 21:40:34 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\CT3285358\CT3285358.fullUserID [37]
O61 - LFC: 2013-07-18 - 21:40:34 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\extensions\{f531b93a-b50b-4ff1-8288-404c881ac4da}\Plugins\np-mswmp.dll [163256]
O61 - LFC: 2013-07-18 - 21:40:34 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\extensions\{f531b93a-b50b-4ff1-8288-404c881ac4da}\Plugins\npConduitFirefoxPlugin.dll [207136]
O61 - LFC: 2013-07-18 - 21:40:36 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\extensions\{f531b93a-b50b-4ff1-8288-404c881ac4da}\defaults\preferences\defaults.js [1495]
O61 - LFC: 2013-07-18 - 21:40:38 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\searchplugins\conduit.xml [1005]
O61 - LFC: 2013-07-18 - 21:41:14 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\Res\SPSetup.exe [2249112]
O61 - LFC: 2013-07-18 - 21:41:18 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\cltmng.exe [2852640]
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\ChromeModule.dll [836896]
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\CltMngSvc.exe [97056]
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\FirefoxModule.dll [1226528]
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\InternetExplorerModule.dll [1136416]
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\SPHook32.dll [161056]
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\SPRunner.exe [308000]
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\msvcp100.dll [421200]
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\msvcr100.dll [770384]
O61 - LFC: 2013-07-18 - 21:41:50 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\ffprotect\SProtectorRepository\FR [825]
O61 - LFC: 2013-07-18 - 21:44:02 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\CT3285358\01NET.com_MainAutoUpdateHelper.exe [86816]
O61 - LFC: 2013-07-18 - 21:44:08 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\01NET.com_Main\hktb01NE.dll [1053984]
O61 - LFC: 2013-07-18 - 21:44:08 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\01NET.com_Main\ldrtb01NE.dll [332576]
O61 - LFC: 2013-07-18 - 21:44:08 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\01NET.com_Main\tb01NE.dll [5128992]
O61 - LFC: 2013-07-18 - 21:44:10 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\01NET.com_Main\hk64tb01NE.dll [1250080]
O61 - LFC: 2013-07-18 - 21:44:54 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\ffprotect\abstraction.js [52518]
O61 - LFC: 2013-07-18 - 21:51:36 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\rep.dat [37868]
O61 - LFC: 2013-07-19 - 12:22:34 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\ffprotect\SProtectorRepository\searchProtectorData [605]
O61 - LFC: 2013-07-19 - 12:42:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\ToolbarFullUserID.txt [37]
O61 - LFC: 2013-07-19 - 12:42:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\ToolbarUserID.txt [19]
O61 - LFC: 2013-07-19 - 12:55:08 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\toolbar_initializing_logger.txt.txt [24]
O61 - LFC: 2013-07-19 - 12:55:30 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_Configuration.txt [607]
O61 - LFC: 2013-07-19 - 12:55:30 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_searchAPI.txt [4925]
O61 - LFC: 2013-07-19 - 12:55:30 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_serviceMap.txt [11100]
O61 - LFC: 2013-07-19 - 12:55:30 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_Configuration.txt [676]
O61 - LFC: 2013-07-19 - 12:55:30 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_searchAPI.txt [5426]
O61 - LFC: 2013-07-19 - 12:55:30 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_serviceMap.txt [12411]
O61 - LFC: 2013-07-19 - 12:55:32 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.installUsageEarly.txt [39]
O61 - LFC: 2013-07-19 - 12:55:34 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_toolbarSettings.txt [59548]
O61 - LFC: 2013-07-19 - 12:55:34 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\uninstallData.txt [427]
O61 - LFC: 2013-07-19 - 12:55:34 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\uninstallUrl.txt [81]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_appsMetadata.txt [4719]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_gottenAppsContextMenu.txt [6103] => Toolbar.Conduit
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_otherAppsContextMenu.txt [4336]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_toolbarContextMenu.txt [4336]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_appsMetadata.txt [4632]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_gottenAppsContextMenu.txt [11890]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_otherAppsContextMenu.txt [9382]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_toolbarContextMenu.txt [9381]
O61 - LFC: 2013-07-19 - 12:55:40 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_appTrackingFirstTime.txt [149]
O61 - LFC: 2013-07-19 - 12:55:40 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_appTrackingFirstTime.txt [62]
O61 - LFC: 2013-07-19 - 12:55:42 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.searchProtectorData.txt [1627]
O61 - LFC: 2013-07-19 - 12:55:42 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_login.txt [5178]
O61 - LFC: 2013-07-19 - 12:55:42 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_login.txt [6579]
O61 - LFC: 2013-07-19 - 12:56:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.installUsage.txt [39]
O61 - LFC: 2013-07-19 - 12:56:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_toolbarSettings.txt [60056]
O61 - LFC: 2013-07-19 - 12:56:46 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.1000034.Settings.txt [1224]
O61 - LFC: 2013-07-19 - 12:56:46 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.130049783618732645.search.selectedEngineId.txt [7]
O61 - LFC: 2013-07-19 - 12:56:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.1000082.currentList.txt [2860]
O61 - LFC: 2013-07-19 - 12:56:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.1000082.nowPlaying.txt [178]
O61 - LFC: 2013-07-19 - 12:56:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.1000082.publisherStations.txt [2860]
O61 - LFC: 2013-07-19 - 12:56:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.NOTIFICATION_ID.notifications-servicemap.txt [1039]
O61 - LFC: 2013-07-19 - 12:56:50 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.NOTIFICATION_ID.notifications-service_1770460.txt [572]
O61 - LFC: 2013-07-19 - 12:56:58 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.1000234.weatherData.txt [4777]
O61 - LFC: 2013-07-19 - 12:58:00 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\serviceLayer_userApps_added.txt [58]
O61 - LFC: 2013-07-19 - 12:58:22 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.pg_conf_global.txt [1203858]
O61 - LFC: 2013-07-19 - 12:58:40 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.130049783619512662.cat0.txt [66830]
O61 - LFC: 2013-07-19 - 12:58:42 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.130049783619512662.ReadItemsArr.txt [5516]
O61 - LFC: 2013-07-19 - 12:58:42 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.130049783619512662.cat1.txt [67392]
O61 - LFC: 2013-07-19 - 12:58:42 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.130049783619512662.feedsObj.txt [1821]
O61 - LFC: 2013-07-19 - 13:05:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.NotificationSettings.txt [395]
O61 - LFC: 2013-07-19 - 13:05:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.appOptions.txt [1763]
O61 - LFC: 2013-07-19 - 13:05:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_userApps.txt [95]
O61 - LFC: 2013-07-19 - 13:05:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\serviceLayer_userApps_removed.txt [52]
O61 - LFC: 2013-07-19 - 13:05:40 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.130049783618732645.search.settings.txt [8340]
O61 - LFC: 2013-07-19 - 13:06:56 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.NOTIFICATION_ID.notifications-repository.txt [520]
O61 - LFC: 2013-07-19 - 13:57:54 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_twitter.conduitapps.com_0.localstorage [3072]
O61 - LFC: 2013-07-19 - 13:57:54 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_twitter.conduitapps.com_0.localstorage-journal [3608]
O69 - SBI: C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\searchplugins\conduit.xml
O69 - SBI: SearchScopes [HKCU] {afdbddaa-5d3f-42ee-b79c-185a7020515b} [DefaultScope] - (01NET.com Main Customized Web Search) - http://search.conduit.com
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}]
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}]
[HKCU\Software\ConduitSearchScopes]
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SearchProtect]
[HKCU\Software\Softonic]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect] [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
[HKLM\Software\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29}] [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29}]
[HKLM\Software\Classes\Toolbar.CT3220468]
[HKLM\Software\Classes\Toolbar.CT3285358]
C:\Program Files\Conduit
C:\Program Files\SearchProtect
C:\Documents and Settings\Client\Application Data\SearchProtect
C:\Documents and Settings\Client\Local Settings\Application Data\Conduit
C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\RadioBar
C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\SearchPlugins\conduit.xml
Emptytemp
EmptyClsid
----------------------------------------------------------
- Si tu ne trouves pas le bouton GO, clique sur l'icone représentant le presse-papier (L'icone entre l'appareil photo et le parchemin, en haut à gauche de la page d'outil)
- Clique sur le bouton « GO » pour lancer le nettoyage,
- confirme le nettoyage
- Copie/colle la totalité du rapport dans ta prochaine réponse
comme je te l'ai déjà dit, tu as µ
Comodo internet Security sur ton pc !
installe la dernière version de java, Adobe flash player et Adobe reader depuis leurs sites dédiés !
attention à l'installation des barres d'outils !
* /!\ Avertissement /!\,
* ce script est seulement valable pour ce pc, en cours du nettoyage, à ne pas utiliser sur un autre pc, risque de plantage !
* Lance ZHPFix via le raccourci sur ton Bureau, l'icône est sous forme de seringue.
/!\Utilisateur de Vista, Seven et W8 :
* Clique droit sur le logo de ZHPfix, « exécuter en tant qu'Administrateur »
* * Copie ( Ctrl + C ) et colle ( Ctrl + V ) les lignes suivantes en gras dans Zhpfix :
---------------------------------------------------------
M3 - MFPP: Plugins - [Client] -- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\searchplugins\web-search.xml
[HKCU\Software\AppDataLow\Software\Smartbar] [HKCU\Software\FunWebProducts]
[HKCU\Software\Smartbar]
O69 - SBI: prefs.js [Client - bikr6jfq.default] user_pref("Smartbar.ConduitHomepagesList", "http://search.conduit.com/?ctid=CT3285358&octid=CT3285358&SearchSource=61&CUI=UN266066[...] O69 - SBI: prefs.js [Client - bikr6jfq.default] user_pref("Smartbar.ConduitSearchEngineList", "");
O69 - SBI: prefs.js [Client - bikr6jfq.default] user_pref("Smartbar.ConduitSearchUrlList", "");
O69 - SBI: prefs.js [Client - bikr6jfq.default] user_pref("browser.search.defaultenginename", "Web Search...");
O69 - SBI: prefs.js [Client - bikr6jfq.default] user_pref("smartbar.conduitHomepageList", "http://search.conduit.com/?ctid=CT3285358&octid=CT3285358&SearchSource=61&CUI=UN2660664[...] O69 - SBI: prefs.js [Client - bikr6jfq.default] user_pref("smartbar.conduitSearchAddressUrlList", "https://www.bing.com/search?q=%2Chttp&pc=cosp&ptag=G6C999A6015BF3824&form=CONADR&conlogo=CT3210127[...]
O69 - SBI: prefs.js [Client - bikr6jfq.default] user_pref("smartbar.originalSearchAddressUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3220468&SearchSource=2&q=");
O69 - SBI: SearchScopes [HKCU] {006ee092-9658-4fd6-bd8e-a21a348e59f5} - (Web Search) - https://search.safefinder.com/?q=
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}]
[HKLM\Software\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}]
[HKLM\Software\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\mywebsearch bar uninstall]
[HKCU\Software\FunWebProducts] [HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\hotbar] [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\01NET.com_Main Toolbar] =>Adware.SimilarSites
[HKCU\Software\01NET.com_Main]
[HKLM\Software\01NET.com_Main]
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\Arpcache\MyWebSearch bar Uninstall]
C:\Program Files\01NET.com_Main
C:\Documents and Settings\Client\Local Settings\Application Data\01NET.com_Main
C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\Smartbar
C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\SearchPlugins\web-search.xml
O69 - SBI: prefs.js [Client - bikr6jfq.default] user_pref("CT3220468.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3220468&SearchSource=2&q=");
O69 - SBI: prefs.js [Client - bikr6jfq.default] user_pref("CT3220468.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"http://search.conduit.com/?ctid=CT3220468&octid=CT3[...]
O69 - SBI: prefs.js [Client - bikr6jfq.default] user_pref("keyword.URL", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3220468&SearchSource=2&CUI=UN98997799348526760&q=");
M3 - MFPP: Plugins - [Client] -- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\searchplugins\conduit.xml
M2 - MFEP: prefs.js [Client - bikr6jfq.default\{f531b93a-b50b-4ff1-8288-404c881ac4da}] [] 01NET.com Main v10.16.4.19 (..) => Toolbar.01NET
M2 - MFEP: prefs.js [Client - bikr6jfq.default\radiobar@toolbar] [] RadioBar Toolbar v1.0.0 (..)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com
O42 - Logiciel: Search Protect by conduit - (.Conduit.) [HKLM] -- SearchProtect
[HKCU\Software\ConduitSearchScopes]
[HKCU\Software\SearchProtect]
[HKCU\Software\Softonic]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\Yahoo]
[HKLM\Software\Yahoo]
O43 - CFD: 2013-07-18 - 22:41:22 - [7,919] ----D C:\Program Files\SearchProtect
O43 - CFD: 2013-07-18 - 22:40:38 - [10,064] ----D C:\Documents and Settings\Client\Application Data\SearchProtect
O61 - LFC: 2013-07-18 - 21:40:34 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\CT3285358\CT3285358.UserID [19]
O61 - LFC: 2013-07-18 - 21:40:34 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\CT3285358\CT3285358.fullUserID [37]
O61 - LFC: 2013-07-18 - 21:40:34 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\extensions\{f531b93a-b50b-4ff1-8288-404c881ac4da}\Plugins\np-mswmp.dll [163256]
O61 - LFC: 2013-07-18 - 21:40:34 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\extensions\{f531b93a-b50b-4ff1-8288-404c881ac4da}\Plugins\npConduitFirefoxPlugin.dll [207136]
O61 - LFC: 2013-07-18 - 21:40:36 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\extensions\{f531b93a-b50b-4ff1-8288-404c881ac4da}\defaults\preferences\defaults.js [1495]
O61 - LFC: 2013-07-18 - 21:40:38 ---A- C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\searchplugins\conduit.xml [1005]
O61 - LFC: 2013-07-18 - 21:41:14 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\Res\SPSetup.exe [2249112]
O61 - LFC: 2013-07-18 - 21:41:18 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\cltmng.exe [2852640]
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\ChromeModule.dll [836896]
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\CltMngSvc.exe [97056]
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\FirefoxModule.dll [1226528]
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\InternetExplorerModule.dll [1136416]
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\SPHook32.dll [161056]
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\SPRunner.exe [308000]
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\msvcp100.dll [421200]
O61 - LFC: 2013-07-18 - 21:41:20 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\msvcr100.dll [770384]
O61 - LFC: 2013-07-18 - 21:41:50 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\ffprotect\SProtectorRepository\FR [825]
O61 - LFC: 2013-07-18 - 21:44:02 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\CT3285358\01NET.com_MainAutoUpdateHelper.exe [86816]
O61 - LFC: 2013-07-18 - 21:44:08 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\01NET.com_Main\hktb01NE.dll [1053984]
O61 - LFC: 2013-07-18 - 21:44:08 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\01NET.com_Main\ldrtb01NE.dll [332576]
O61 - LFC: 2013-07-18 - 21:44:08 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\01NET.com_Main\tb01NE.dll [5128992]
O61 - LFC: 2013-07-18 - 21:44:10 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\01NET.com_Main\hk64tb01NE.dll [1250080]
O61 - LFC: 2013-07-18 - 21:44:54 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\ffprotect\abstraction.js [52518]
O61 - LFC: 2013-07-18 - 21:51:36 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\bin\rep.dat [37868]
O61 - LFC: 2013-07-19 - 12:22:34 ---A- C:\Documents and Settings\Client\Application Data\SearchProtect\ffprotect\SProtectorRepository\searchProtectorData [605]
O61 - LFC: 2013-07-19 - 12:42:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\ToolbarFullUserID.txt [37]
O61 - LFC: 2013-07-19 - 12:42:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\ToolbarUserID.txt [19]
O61 - LFC: 2013-07-19 - 12:55:08 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\toolbar_initializing_logger.txt.txt [24]
O61 - LFC: 2013-07-19 - 12:55:30 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_Configuration.txt [607]
O61 - LFC: 2013-07-19 - 12:55:30 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_searchAPI.txt [4925]
O61 - LFC: 2013-07-19 - 12:55:30 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_serviceMap.txt [11100]
O61 - LFC: 2013-07-19 - 12:55:30 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_Configuration.txt [676]
O61 - LFC: 2013-07-19 - 12:55:30 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_searchAPI.txt [5426]
O61 - LFC: 2013-07-19 - 12:55:30 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_serviceMap.txt [12411]
O61 - LFC: 2013-07-19 - 12:55:32 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.installUsageEarly.txt [39]
O61 - LFC: 2013-07-19 - 12:55:34 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_toolbarSettings.txt [59548]
O61 - LFC: 2013-07-19 - 12:55:34 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\uninstallData.txt [427]
O61 - LFC: 2013-07-19 - 12:55:34 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\uninstallUrl.txt [81]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_appsMetadata.txt [4719]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_gottenAppsContextMenu.txt [6103] => Toolbar.Conduit
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_otherAppsContextMenu.txt [4336]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_toolbarContextMenu.txt [4336]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_appsMetadata.txt [4632]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_gottenAppsContextMenu.txt [11890]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_otherAppsContextMenu.txt [9382]
O61 - LFC: 2013-07-19 - 12:55:38 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_toolbarContextMenu.txt [9381]
O61 - LFC: 2013-07-19 - 12:55:40 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_appTrackingFirstTime.txt [149]
O61 - LFC: 2013-07-19 - 12:55:40 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_appTrackingFirstTime.txt [62]
O61 - LFC: 2013-07-19 - 12:55:42 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.searchProtectorData.txt [1627]
O61 - LFC: 2013-07-19 - 12:55:42 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_login.txt [5178]
O61 - LFC: 2013-07-19 - 12:55:42 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_RAW.serviceLayer_services_login.txt [6579]
O61 - LFC: 2013-07-19 - 12:56:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.installUsage.txt [39]
O61 - LFC: 2013-07-19 - 12:56:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_toolbarSettings.txt [60056]
O61 - LFC: 2013-07-19 - 12:56:46 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.1000034.Settings.txt [1224]
O61 - LFC: 2013-07-19 - 12:56:46 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.130049783618732645.search.selectedEngineId.txt [7]
O61 - LFC: 2013-07-19 - 12:56:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.1000082.currentList.txt [2860]
O61 - LFC: 2013-07-19 - 12:56:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.1000082.nowPlaying.txt [178]
O61 - LFC: 2013-07-19 - 12:56:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.1000082.publisherStations.txt [2860]
O61 - LFC: 2013-07-19 - 12:56:48 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.NOTIFICATION_ID.notifications-servicemap.txt [1039]
O61 - LFC: 2013-07-19 - 12:56:50 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.NOTIFICATION_ID.notifications-service_1770460.txt [572]
O61 - LFC: 2013-07-19 - 12:56:58 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.1000234.weatherData.txt [4777]
O61 - LFC: 2013-07-19 - 12:58:00 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\serviceLayer_userApps_added.txt [58]
O61 - LFC: 2013-07-19 - 12:58:22 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.pg_conf_global.txt [1203858]
O61 - LFC: 2013-07-19 - 12:58:40 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.130049783619512662.cat0.txt [66830]
O61 - LFC: 2013-07-19 - 12:58:42 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.130049783619512662.ReadItemsArr.txt [5516]
O61 - LFC: 2013-07-19 - 12:58:42 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.130049783619512662.cat1.txt [67392]
O61 - LFC: 2013-07-19 - 12:58:42 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.130049783619512662.feedsObj.txt [1821]
O61 - LFC: 2013-07-19 - 13:05:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.NotificationSettings.txt [395]
O61 - LFC: 2013-07-19 - 13:05:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.appOptions.txt [1763]
O61 - LFC: 2013-07-19 - 13:05:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358_10.16.70.1.serviceLayer_services_userApps.txt [95]
O61 - LFC: 2013-07-19 - 13:05:26 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\serviceLayer_userApps_removed.txt [52]
O61 - LFC: 2013-07-19 - 13:05:40 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.130049783618732645.search.settings.txt [8340]
O61 - LFC: 2013-07-19 - 13:06:56 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Conduit\ChromeExtData\hakpajgggjjcjmidfbnnncnbaihjneaj\Repository\CT3285358.NOTIFICATION_ID.notifications-repository.txt [520]
O61 - LFC: 2013-07-19 - 13:57:54 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_twitter.conduitapps.com_0.localstorage [3072]
O61 - LFC: 2013-07-19 - 13:57:54 ---A- C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\http_twitter.conduitapps.com_0.localstorage-journal [3608]
O69 - SBI: C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\searchplugins\conduit.xml
O69 - SBI: SearchScopes [HKCU] {afdbddaa-5d3f-42ee-b79c-185a7020515b} [DefaultScope] - (01NET.com Main Customized Web Search) - http://search.conduit.com
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}]
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}]
[HKCU\Software\ConduitSearchScopes]
[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SearchProtect]
[HKCU\Software\Softonic]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect] [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
[HKLM\Software\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29}] [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29}]
[HKLM\Software\Classes\Toolbar.CT3220468]
[HKLM\Software\Classes\Toolbar.CT3285358]
C:\Program Files\Conduit
C:\Program Files\SearchProtect
C:\Documents and Settings\Client\Application Data\SearchProtect
C:\Documents and Settings\Client\Local Settings\Application Data\Conduit
C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\RadioBar
C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\SearchPlugins\conduit.xml
Emptytemp
EmptyClsid
----------------------------------------------------------
- Si tu ne trouves pas le bouton GO, clique sur l'icone représentant le presse-papier (L'icone entre l'appareil photo et le parchemin, en haut à gauche de la page d'outil)
- Clique sur le bouton « GO » pour lancer le nettoyage,
- confirme le nettoyage
- Copie/colle la totalité du rapport dans ta prochaine réponse
Bonjour, merci pour ta réponse
J'ai Comodo mais je ne peux pas faire de scan pour détecter les virus comme mentionné au premier message.
Pour les mises à jour, seul Flash Player a fonctionné. Reader a mentionné vers la fin du téléchargement qu'une erreur est survenue. Pour Java, le temps de téléchargement augmente sans arrêt, il était rendu à 24 heures quand je l'ai arrêté.
Pour le rapport de ZHPFix, je n'ai pas réussi à entrer en tant qu'Administrateur car je ne connais pas le mot de passe (c'était l'ordinateur de mes parents avant et je crains qu'ils ne connaissent pas le mot de passe non plus).
J'ai tout de même fait le rapport de la session Client. je ne sais pas si c'est bon quand même. J'ai fait le rapport avant de faire les mises à jour d'Adobe. Le voici au complet :
Rapport de ZHPFix 2013.6.12.3 par Nicolas Coolman, Update du 12/06/2013
Fichier d'export Registre : C:\ZHP\ZHPExportRegistry-2013-07-20-11-59-21.txt
Run by Client at 2013-07-20 11:59:21
High Elevated Privileges : OK
Windows XP Professional Service Pack 3 (Build 2600)
Corbeille vidée
========== Logiciel(s) ==========
ABSENT Uninstall Process: c:\program files\searchprotect\bin\uninstall.exe
========== Clé(s) du Registre ==========
ABSENT Key: HKCU\Software\AppDataLow\Software\Smartbar \Software\FunWebProducts
ERREUR Key****: HKCU\Software\Smartbar
ERREUR Key****: SearchScopes :{006ee092-9658-4fd6-bd8e-a21a348e59f5}
ERREUR Key****: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
ERREUR Key****: HKLM\Software\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
ERREUR Key****: HKLM\Software\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}
ERREUR Key****: HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\mywebsearch bar uninstall
ABSENT Key: HKCU\Software\FunWebProducts \Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\hotbar [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\01NET.com_Main Toolbar
ERREUR Key****: HKCU\Software\01NET.com_Main
ERREUR Key****: HKLM\Software\01NET.com_Main
ERREUR Key****: HKCU\Software\ConduitSearchScopes
ERREUR Key****: HKCU\Software\SearchProtect
ERREUR Key****: HKCU\Software\Softonic
ERREUR Key****: HKCU\Software\YahooPartnerToolbar
ERREUR Key****: HKCU\Software\Yahoo
ERREUR Key****: HKLM\Software\Yahoo
ERREUR Key****: SearchScopes :{afdbddaa-5d3f-42ee-b79c-185a7020515b}
ERREUR Key****: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
ERREUR Key****: HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SearchProtect
ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
ERREUR Key****: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
ERREUR Key****: HKLM\Software\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
ERREUR Key****: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
ABSENT Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29} \Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29}
ERREUR Key****: HKLM\Software\Classes\Toolbar.CT3220468
ERREUR Key****: HKLM\Software\Classes\Toolbar.CT3285358
========== Préférences navigateur ==========
ABSENT Mozilla Pref: user_pref("Smartbar.ConduitHomepagesList", "http://search.conduit.com/?ctid=CT3285358&octid=CT3285358&SearchSource=61&CUI=UN266066[...] O69 - SBI: prefs.js [Client - bikr6jfq.default] user_pref("Smartbar.Con
SUPPRIME Mozilla Pref: user_pref("Smartbar.ConduitSearchUrlList", "");
SUPPRIME Mozilla Pref: user_pref("browser.search.defaultenginename", "Web Search...");
ABSENT Mozilla Pref: user_pref("smartbar.conduitHomepageList", "http://search.conduit.com/?ctid=CT3285358&octid=CT3285358&SearchSource=61&CUI=UN2660664[...] O69 - SBI: prefs.js [Client - bikr6jfq.default] user_pref("smartbar.con
SUPPRIME Mozilla Pref: user_pref("smartbar.originalSearchAddressUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3220468&SearchSource=2&q=");
SUPPRIME Mozilla Pref: user_pref("CT3220468.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3220468&SearchSource=2&q=");
ABSENT Mozilla Pref: user_pref("CT3220468.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"http://search.conduit.com/?ctid=CT3220468&octid=CT3[...]
SUPPRIME Mozilla Pref: user_pref("keyword.URL", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3220468&SearchSource=2&CUI=UN98997799348526760&q=");
========== Dossier(s) ==========
Aucun dossiers CLSID Local utilisateur vide
========== Fichier(s) ==========
SUPPRIME File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\searchplugins\web-search.xml
ABSENT Folder/File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\searchplugins\web-search.xml
SUPPRIME File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\searchplugins\conduit.xml
SUPPRIME File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\ct3285358\ct3285358.userid
SUPPRIME File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\ct3285358\ct3285358.fulluserid
ABSENT File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\extensions\{f531b93a-b50b-4ff1-8288-404c881ac4da}\plugins\np-mswmp.dll
ABSENT File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\extensions\{f531b93a-b50b-4ff1-8288-404c881ac4da}\plugins\npconduitfirefoxplugin.dll
ABSENT File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\extensions\{f531b93a-b50b-4ff1-8288-404c881ac4da}\defaults\preferences\defaults.js
ABSENT File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\searchplugins\conduit.xml
ABSENT File: c:\documents and settings\client\application data\searchprotect\res\spsetup.exe
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\cltmng.exe
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\chromemodule.dll
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\cltmngsvc.exe
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\firefoxmodule.dll
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\internetexplorermodule.dll
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\sphook32.dll
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\sprunner.exe
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\msvcp100.dll
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\msvcr100.dll
ABSENT File: c:\documents and settings\client\application data\searchprotect\ffprotect\sprotectorrepository\fr
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\ct3285358\01net.com
ABSENT File: c:\documents and settings\client\local settings\application data\01net.com
ABSENT File: c:\documents and settings\client\application data\searchprotect\ffprotect\abstraction.js
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\rep.dat
ABSENT File: c:\documents and settings\client\application data\searchprotect\ffprotect\sprotectorrepository\searchprotectordata
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\toolbarfulluserid.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\toolbaruserid.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\toolbar_initializing_logger.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_configuration.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_searchapi.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_servicemap.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_configuration.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_searchapi.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_servicemap.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.installusageearly.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_toolbarsettings.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\uninstalldata.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\uninstallurl.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_appsmetadata.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_gottenappscontextmenu.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_otherappscontextmenu.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_toolbarcontextmenu.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_appsmetadata.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_gottenappscontextmenu.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_otherappscontextmenu.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_toolbarcontextmenu.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_apptrackingfirsttime.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_apptrackingfirsttime.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.searchprotectordata.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_login.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_login.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.installusage.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_toolbarsettings.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.1000034.settings.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.130049783618732645.search.selectedengineid.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.1000082.currentlist.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.1000082.nowplaying.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.1000082.publisherstations.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.notification_id.notifications-servicemap.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.notification_id.notifications-service_1770460.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.1000234.weatherdata.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\servicelayer_userapps_added.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.pg_conf_global.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.130049783619512662.cat0.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.130049783619512662.readitemsarr.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.130049783619512662.cat1.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.130049783619512662.feedsobj.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.notificationsettings.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.appoptions.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_userapps.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\servicelayer_userapps_removed.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.130049783618732645.search.settings.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.notification_id.notifications-repository.txt
ABSENT File: c:\documents and settings\client\local settings\application data\google\chrome\user data\default\local storage\http_twitter.conduitapps.com
ABSENT Folder/File: c:\program files\searchprotect
ABSENT Folder/File: c:\documents and settings\client\application data\searchprotect
ABSENT Folder/File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\searchplugins\conduit.xml
SUPPRIME Temporaires Windows
========== Récapitulatif ==========
26 : Clé(s) du Registre
1 : Dossier(s)
78 : Fichier(s)
1 : Logiciel(s)
8 : Préférences navigateur
End of clean in 00mn 44s
========== Chemin de fichier rapport ==========
C:\ZHP\ZHPFix[R1].txt - 2013-07-20 11:59:21 [17029]
J'ai Comodo mais je ne peux pas faire de scan pour détecter les virus comme mentionné au premier message.
Pour les mises à jour, seul Flash Player a fonctionné. Reader a mentionné vers la fin du téléchargement qu'une erreur est survenue. Pour Java, le temps de téléchargement augmente sans arrêt, il était rendu à 24 heures quand je l'ai arrêté.
Pour le rapport de ZHPFix, je n'ai pas réussi à entrer en tant qu'Administrateur car je ne connais pas le mot de passe (c'était l'ordinateur de mes parents avant et je crains qu'ils ne connaissent pas le mot de passe non plus).
J'ai tout de même fait le rapport de la session Client. je ne sais pas si c'est bon quand même. J'ai fait le rapport avant de faire les mises à jour d'Adobe. Le voici au complet :
Rapport de ZHPFix 2013.6.12.3 par Nicolas Coolman, Update du 12/06/2013
Fichier d'export Registre : C:\ZHP\ZHPExportRegistry-2013-07-20-11-59-21.txt
Run by Client at 2013-07-20 11:59:21
High Elevated Privileges : OK
Windows XP Professional Service Pack 3 (Build 2600)
Corbeille vidée
========== Logiciel(s) ==========
ABSENT Uninstall Process: c:\program files\searchprotect\bin\uninstall.exe
========== Clé(s) du Registre ==========
ABSENT Key: HKCU\Software\AppDataLow\Software\Smartbar \Software\FunWebProducts
ERREUR Key****: HKCU\Software\Smartbar
ERREUR Key****: SearchScopes :{006ee092-9658-4fd6-bd8e-a21a348e59f5}
ERREUR Key****: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
ERREUR Key****: HKLM\Software\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
ERREUR Key****: HKLM\Software\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}
ERREUR Key****: HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\mywebsearch bar uninstall
ABSENT Key: HKCU\Software\FunWebProducts \Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\hotbar [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\01NET.com_Main Toolbar
ERREUR Key****: HKCU\Software\01NET.com_Main
ERREUR Key****: HKLM\Software\01NET.com_Main
ERREUR Key****: HKCU\Software\ConduitSearchScopes
ERREUR Key****: HKCU\Software\SearchProtect
ERREUR Key****: HKCU\Software\Softonic
ERREUR Key****: HKCU\Software\YahooPartnerToolbar
ERREUR Key****: HKCU\Software\Yahoo
ERREUR Key****: HKLM\Software\Yahoo
ERREUR Key****: SearchScopes :{afdbddaa-5d3f-42ee-b79c-185a7020515b}
ERREUR Key****: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
ERREUR Key****: HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SearchProtect
ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
ERREUR Key****: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
ERREUR Key****: HKLM\Software\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
ERREUR Key****: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
ABSENT Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29} \Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29}
ERREUR Key****: HKLM\Software\Classes\Toolbar.CT3220468
ERREUR Key****: HKLM\Software\Classes\Toolbar.CT3285358
========== Préférences navigateur ==========
ABSENT Mozilla Pref: user_pref("Smartbar.ConduitHomepagesList", "http://search.conduit.com/?ctid=CT3285358&octid=CT3285358&SearchSource=61&CUI=UN266066[...] O69 - SBI: prefs.js [Client - bikr6jfq.default] user_pref("Smartbar.Con
SUPPRIME Mozilla Pref: user_pref("Smartbar.ConduitSearchUrlList", "");
SUPPRIME Mozilla Pref: user_pref("browser.search.defaultenginename", "Web Search...");
ABSENT Mozilla Pref: user_pref("smartbar.conduitHomepageList", "http://search.conduit.com/?ctid=CT3285358&octid=CT3285358&SearchSource=61&CUI=UN2660664[...] O69 - SBI: prefs.js [Client - bikr6jfq.default] user_pref("smartbar.con
SUPPRIME Mozilla Pref: user_pref("smartbar.originalSearchAddressUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3220468&SearchSource=2&q=");
SUPPRIME Mozilla Pref: user_pref("CT3220468.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3220468&SearchSource=2&q=");
ABSENT Mozilla Pref: user_pref("CT3220468.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"http://search.conduit.com/?ctid=CT3220468&octid=CT3[...]
SUPPRIME Mozilla Pref: user_pref("keyword.URL", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3220468&SearchSource=2&CUI=UN98997799348526760&q=");
========== Dossier(s) ==========
Aucun dossiers CLSID Local utilisateur vide
========== Fichier(s) ==========
SUPPRIME File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\searchplugins\web-search.xml
ABSENT Folder/File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\searchplugins\web-search.xml
SUPPRIME File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\searchplugins\conduit.xml
SUPPRIME File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\ct3285358\ct3285358.userid
SUPPRIME File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\ct3285358\ct3285358.fulluserid
ABSENT File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\extensions\{f531b93a-b50b-4ff1-8288-404c881ac4da}\plugins\np-mswmp.dll
ABSENT File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\extensions\{f531b93a-b50b-4ff1-8288-404c881ac4da}\plugins\npconduitfirefoxplugin.dll
ABSENT File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\extensions\{f531b93a-b50b-4ff1-8288-404c881ac4da}\defaults\preferences\defaults.js
ABSENT File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\searchplugins\conduit.xml
ABSENT File: c:\documents and settings\client\application data\searchprotect\res\spsetup.exe
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\cltmng.exe
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\chromemodule.dll
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\cltmngsvc.exe
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\firefoxmodule.dll
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\internetexplorermodule.dll
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\sphook32.dll
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\sprunner.exe
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\msvcp100.dll
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\msvcr100.dll
ABSENT File: c:\documents and settings\client\application data\searchprotect\ffprotect\sprotectorrepository\fr
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\ct3285358\01net.com
ABSENT File: c:\documents and settings\client\local settings\application data\01net.com
ABSENT File: c:\documents and settings\client\application data\searchprotect\ffprotect\abstraction.js
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\rep.dat
ABSENT File: c:\documents and settings\client\application data\searchprotect\ffprotect\sprotectorrepository\searchprotectordata
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\toolbarfulluserid.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\toolbaruserid.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\toolbar_initializing_logger.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_configuration.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_searchapi.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_servicemap.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_configuration.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_searchapi.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_servicemap.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.installusageearly.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_toolbarsettings.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\uninstalldata.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\uninstallurl.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_appsmetadata.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_gottenappscontextmenu.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_otherappscontextmenu.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_toolbarcontextmenu.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_appsmetadata.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_gottenappscontextmenu.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_otherappscontextmenu.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_toolbarcontextmenu.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_apptrackingfirsttime.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_apptrackingfirsttime.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.searchprotectordata.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_login.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_login.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.installusage.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_toolbarsettings.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.1000034.settings.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.130049783618732645.search.selectedengineid.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.1000082.currentlist.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.1000082.nowplaying.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.1000082.publisherstations.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.notification_id.notifications-servicemap.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.notification_id.notifications-service_1770460.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.1000234.weatherdata.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\servicelayer_userapps_added.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.pg_conf_global.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.130049783619512662.cat0.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.130049783619512662.readitemsarr.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.130049783619512662.cat1.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.130049783619512662.feedsobj.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.notificationsettings.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.appoptions.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_userapps.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\servicelayer_userapps_removed.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.130049783618732645.search.settings.txt
SUPPRIME File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.notification_id.notifications-repository.txt
ABSENT File: c:\documents and settings\client\local settings\application data\google\chrome\user data\default\local storage\http_twitter.conduitapps.com
ABSENT Folder/File: c:\program files\searchprotect
ABSENT Folder/File: c:\documents and settings\client\application data\searchprotect
ABSENT Folder/File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\searchplugins\conduit.xml
SUPPRIME Temporaires Windows
========== Récapitulatif ==========
26 : Clé(s) du Registre
1 : Dossier(s)
78 : Fichier(s)
1 : Logiciel(s)
8 : Préférences navigateur
End of clean in 00mn 44s
========== Chemin de fichier rapport ==========
C:\ZHP\ZHPFix[R1].txt - 2013-07-20 11:59:21 [17029]
désinstalle Comodo,
passe ceci pour remettre les associations des fichiers, mais dans tous les cas, il va falloir le lancer depuis le session administrateur ou lancer les outils en tant qu'administrateur !
http://general-changelog-team.fr/fr/downloads/viewdownload/20-outils-de-xplode/15-rstassociations-version-exe
passe ceci pour remettre les associations des fichiers, mais dans tous les cas, il va falloir le lancer depuis le session administrateur ou lancer les outils en tant qu'administrateur !
http://general-changelog-team.fr/fr/downloads/viewdownload/20-outils-de-xplode/15-rstassociations-version-exe
Ok jai reussi a demarrer sous Administrateur et jai le rapport ZHPFix. Par contre je narrive pas a me mettre en mode sans echec pour supprimer Comodo. Tout ce que jai cest un ecran noir...
Voici le rapport, merci! :
Rapport de ZHPFix 2013.6.12.3 par Nicolas Coolman, Update du 12/06/2013
Fichier d'export Registre :
Run by Administrateur at 20/07/2013 12:51:10
High Elevated Privileges : OK
Windows XP Professional Service Pack 3 (Build 2600)
Corbeille vidée
========== Logiciel(s) ==========
ABSENT Uninstall Process: c:\program files\searchprotect\bin\uninstall.exe
========== Clé(s) du Registre ==========
SUPPRIME [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect]
ABSENT Key: HKCU\Software\AppDataLow\Software\Smartbar \Software\FunWebProducts
ABSENT Key: HKCU\Software\Smartbar
ABSENT SearchScopes :{006ee092-9658-4fd6-bd8e-a21a348e59f5}
ABSENT Key: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
SUPPRIME Key: HKLM\Software\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
SUPPRIME Key: HKLM\Software\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\mywebsearch bar uninstall
ABSENT Key: HKCU\Software\FunWebProducts \Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\hotbar [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\01NET.com_Main Toolbar
ABSENT Key: HKCU\Software\01NET.com_Main
SUPPRIME Key: HKLM\Software\01NET.com_Main
ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\Arpcache\MyWebSearch bar Uninstall
ABSENT Key: HKCU\Software\ConduitSearchScopes
ABSENT Key: HKCU\Software\SearchProtect
ABSENT Key: HKCU\Software\Softonic
ABSENT Key: HKCU\Software\YahooPartnerToolbar
ABSENT Key: HKCU\Software\Yahoo
SUPPRIME Key: HKLM\Software\Yahoo
ABSENT SearchScopes :{afdbddaa-5d3f-42ee-b79c-185a7020515b}
ABSENT Key: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SearchProtect
ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
ABSENT Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
SUPPRIME Key: HKLM\Software\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
ABSENT Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29} \Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29}
SUPPRIME Key: HKLM\Software\Classes\Toolbar.CT3220468
SUPPRIME Key: HKLM\Software\Classes\Toolbar.CT3285358
========== Préférences navigateur ==========
ABSENT C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\prefs.js
ABSENT C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\prefs.js
ABSENT C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\prefs.js
ABSENT C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\prefs.js
ABSENT C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\prefs.js
ABSENT C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\prefs.js
ABSENT C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\prefs.js
ABSENT C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\prefs.js
========== Dossier(s) ==========
Aucun dossiers CLSID Local utilisateur vide
========== Fichier(s) ==========
ABSENT File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\searchplugins\web-search.xml
ABSENT Folder/File: c:\program files\01net.com_main
ABSENT Folder/File: c:\documents and settings\client\local settings\application data\01net.com_main
ABSENT Folder/File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\smartbar
ABSENT Folder/File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\searchplugins\web-search.xml
ABSENT File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\searchplugins\conduit.xml
ABSENT File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\ct3285358\ct3285358.userid
ABSENT File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\ct3285358\ct3285358.fulluserid
ABSENT File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\extensions\{f531b93a-b50b-4ff1-8288-404c881ac4da}\plugins\np-mswmp.dll
ABSENT File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\extensions\{f531b93a-b50b-4ff1-8288-404c881ac4da}\plugins\npconduitfirefoxplugin.dll
ABSENT File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\extensions\{f531b93a-b50b-4ff1-8288-404c881ac4da}\defaults\preferences\defaults.js
ABSENT File: c:\documents and settings\client\application data\searchprotect\res\spsetup.exe
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\cltmng.exe
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\chromemodule.dll
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\cltmngsvc.exe
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\firefoxmodule.dll
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\internetexplorermodule.dll
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\sphook32.dll
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\sprunner.exe
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\msvcp100.dll
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\msvcr100.dll
ABSENT File: c:\documents and settings\client\application data\searchprotect\ffprotect\sprotectorrepository\fr
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\ct3285358\01net.com
ABSENT File: c:\documents and settings\client\local settings\application data\01net.com
ABSENT File: c:\documents and settings\client\application data\searchprotect\ffprotect\abstraction.js
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\rep.dat
ABSENT File: c:\documents and settings\client\application data\searchprotect\ffprotect\sprotectorrepository\searchprotectordata
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\toolbarfulluserid.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\toolbaruserid.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\toolbar_initializing_logger.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_configuration.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_searchapi.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_servicemap.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_configuration.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_searchapi.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_servicemap.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.installusageearly.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_toolbarsettings.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\uninstalldata.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\uninstallurl.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_appsmetadata.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_gottenappscontextmenu.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_otherappscontextmenu.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_toolbarcontextmenu.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_appsmetadata.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_gottenappscontextmenu.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_otherappscontextmenu.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_toolbarcontextmenu.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_apptrackingfirsttime.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_apptrackingfirsttime.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.searchprotectordata.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_login.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_login.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.installusage.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_toolbarsettings.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.1000034.settings.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.130049783618732645.search.selectedengineid.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.1000082.currentlist.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.1000082.nowplaying.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.1000082.publisherstations.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.notification_id.notifications-servicemap.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.notification_id.notifications-service_1770460.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.1000234.weatherdata.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\servicelayer_userapps_added.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.pg_conf_global.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.130049783619512662.cat0.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.130049783619512662.readitemsarr.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.130049783619512662.cat1.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.130049783619512662.feedsobj.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.notificationsettings.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.appoptions.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_userapps.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\servicelayer_userapps_removed.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.130049783618732645.search.settings.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.notification_id.notifications-repository.txt
ABSENT File: c:\documents and settings\client\local settings\application data\google\chrome\user data\default\local storage\http_twitter.conduitapps.com
ABSENT Folder/File: c:\program files\conduit
ABSENT Folder/File: c:\program files\searchprotect
ABSENT Folder/File: c:\documents and settings\client\application data\searchprotect
ABSENT Folder/File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\radiobar
ABSENT Folder/File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\searchplugins\conduit.xml
SUPPRIME Temporaires Windows
========== Récapitulatif ==========
28 : Clé(s) du Registre
1 : Dossier(s)
82 : Fichier(s)
1 : Logiciel(s)
8 : Préférences navigateur
End of clean in 00mn 12s
========== Chemin de fichier rapport ==========
C:\ZHP\ZHPFix[R1].txt - 20/07/2013 10:59:22 [17082]
C:\ZHP\ZHPFix[R2].txt - 20/07/2013 12:51:10 [17070]
Voici le rapport, merci! :
Rapport de ZHPFix 2013.6.12.3 par Nicolas Coolman, Update du 12/06/2013
Fichier d'export Registre :
Run by Administrateur at 20/07/2013 12:51:10
High Elevated Privileges : OK
Windows XP Professional Service Pack 3 (Build 2600)
Corbeille vidée
========== Logiciel(s) ==========
ABSENT Uninstall Process: c:\program files\searchprotect\bin\uninstall.exe
========== Clé(s) du Registre ==========
SUPPRIME [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect]
ABSENT Key: HKCU\Software\AppDataLow\Software\Smartbar \Software\FunWebProducts
ABSENT Key: HKCU\Software\Smartbar
ABSENT SearchScopes :{006ee092-9658-4fd6-bd8e-a21a348e59f5}
ABSENT Key: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
SUPPRIME Key: HKLM\Software\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
SUPPRIME Key: HKLM\Software\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\mywebsearch bar uninstall
ABSENT Key: HKCU\Software\FunWebProducts \Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\hotbar [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\01NET.com_Main Toolbar
ABSENT Key: HKCU\Software\01NET.com_Main
SUPPRIME Key: HKLM\Software\01NET.com_Main
ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\Arpcache\MyWebSearch bar Uninstall
ABSENT Key: HKCU\Software\ConduitSearchScopes
ABSENT Key: HKCU\Software\SearchProtect
ABSENT Key: HKCU\Software\Softonic
ABSENT Key: HKCU\Software\YahooPartnerToolbar
ABSENT Key: HKCU\Software\Yahoo
SUPPRIME Key: HKLM\Software\Yahoo
ABSENT SearchScopes :{afdbddaa-5d3f-42ee-b79c-185a7020515b}
ABSENT Key: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SearchProtect
ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
ABSENT Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
SUPPRIME Key: HKLM\Software\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
ABSENT Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29} \Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5CBE3B7C-1E47-477E-A7DD-396DB0476E29}
SUPPRIME Key: HKLM\Software\Classes\Toolbar.CT3220468
SUPPRIME Key: HKLM\Software\Classes\Toolbar.CT3285358
========== Préférences navigateur ==========
ABSENT C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\prefs.js
ABSENT C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\prefs.js
ABSENT C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\prefs.js
ABSENT C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\prefs.js
ABSENT C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\prefs.js
ABSENT C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\prefs.js
ABSENT C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\prefs.js
ABSENT C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\bikr6jfq.default\prefs.js
========== Dossier(s) ==========
Aucun dossiers CLSID Local utilisateur vide
========== Fichier(s) ==========
ABSENT File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\searchplugins\web-search.xml
ABSENT Folder/File: c:\program files\01net.com_main
ABSENT Folder/File: c:\documents and settings\client\local settings\application data\01net.com_main
ABSENT Folder/File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\smartbar
ABSENT Folder/File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\searchplugins\web-search.xml
ABSENT File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\searchplugins\conduit.xml
ABSENT File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\ct3285358\ct3285358.userid
ABSENT File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\ct3285358\ct3285358.fulluserid
ABSENT File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\extensions\{f531b93a-b50b-4ff1-8288-404c881ac4da}\plugins\np-mswmp.dll
ABSENT File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\extensions\{f531b93a-b50b-4ff1-8288-404c881ac4da}\plugins\npconduitfirefoxplugin.dll
ABSENT File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\extensions\{f531b93a-b50b-4ff1-8288-404c881ac4da}\defaults\preferences\defaults.js
ABSENT File: c:\documents and settings\client\application data\searchprotect\res\spsetup.exe
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\cltmng.exe
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\chromemodule.dll
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\cltmngsvc.exe
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\firefoxmodule.dll
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\internetexplorermodule.dll
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\sphook32.dll
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\sprunner.exe
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\msvcp100.dll
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\msvcr100.dll
ABSENT File: c:\documents and settings\client\application data\searchprotect\ffprotect\sprotectorrepository\fr
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\ct3285358\01net.com
ABSENT File: c:\documents and settings\client\local settings\application data\01net.com
ABSENT File: c:\documents and settings\client\application data\searchprotect\ffprotect\abstraction.js
ABSENT File: c:\documents and settings\client\application data\searchprotect\bin\rep.dat
ABSENT File: c:\documents and settings\client\application data\searchprotect\ffprotect\sprotectorrepository\searchprotectordata
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\toolbarfulluserid.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\toolbaruserid.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\toolbar_initializing_logger.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_configuration.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_searchapi.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_servicemap.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_configuration.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_searchapi.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_servicemap.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.installusageearly.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_toolbarsettings.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\uninstalldata.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\uninstallurl.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_appsmetadata.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_gottenappscontextmenu.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_otherappscontextmenu.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_toolbarcontextmenu.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_appsmetadata.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_gottenappscontextmenu.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_otherappscontextmenu.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_toolbarcontextmenu.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_apptrackingfirsttime.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_apptrackingfirsttime.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.searchprotectordata.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_login.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_raw.servicelayer_services_login.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.installusage.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_toolbarsettings.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.1000034.settings.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.130049783618732645.search.selectedengineid.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.1000082.currentlist.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.1000082.nowplaying.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.1000082.publisherstations.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.notification_id.notifications-servicemap.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.notification_id.notifications-service_1770460.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.1000234.weatherdata.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\servicelayer_userapps_added.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.pg_conf_global.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.130049783619512662.cat0.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.130049783619512662.readitemsarr.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.130049783619512662.cat1.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.130049783619512662.feedsobj.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.notificationsettings.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.appoptions.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358_10.16.70.1.servicelayer_services_userapps.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\servicelayer_userapps_removed.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.130049783618732645.search.settings.txt
ABSENT File: c:\documents and settings\client\local settings\application data\conduit\chromeextdata\hakpajgggjjcjmidfbnnncnbaihjneaj\repository\ct3285358.notification_id.notifications-repository.txt
ABSENT File: c:\documents and settings\client\local settings\application data\google\chrome\user data\default\local storage\http_twitter.conduitapps.com
ABSENT Folder/File: c:\program files\conduit
ABSENT Folder/File: c:\program files\searchprotect
ABSENT Folder/File: c:\documents and settings\client\application data\searchprotect
ABSENT Folder/File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\radiobar
ABSENT Folder/File: c:\documents and settings\client\application data\mozilla\firefox\profiles\bikr6jfq.default\searchplugins\conduit.xml
SUPPRIME Temporaires Windows
========== Récapitulatif ==========
28 : Clé(s) du Registre
1 : Dossier(s)
82 : Fichier(s)
1 : Logiciel(s)
8 : Préférences navigateur
End of clean in 00mn 12s
========== Chemin de fichier rapport ==========
C:\ZHP\ZHPFix[R1].txt - 20/07/2013 10:59:22 [17082]
C:\ZHP\ZHPFix[R2].txt - 20/07/2013 12:51:10 [17070]
tu n'as pas besoin de te mettre en mode sans echec pour désinstaller Comodo,
tu peux, toujours sous session d'Administrateur, de le désinstaller depuis le panneau de configuration, puis le réinstaller
tu peux, toujours sous session d'Administrateur, de le désinstaller depuis le panneau de configuration, puis le réinstaller
Lorsque jessaie de supprimer Comodo on me dit :
Impossible dacceder au service Windows Installer. Ceci peut se produire si vous executez Windows en mode sans echec. Contactez votre support technique pour assistance
je ne suis pas en mode sans echec
Impossible dacceder au service Windows Installer. Ceci peut se produire si vous executez Windows en mode sans echec. Contactez votre support technique pour assistance
je ne suis pas en mode sans echec
Pour ton fichier dassociation de fichiers, je ne sais pas si cest senser amener tous les fichiers (photos, mp3, etc) de la session Client vers la session Administrateur, mais il n y a rien dans la session Administrateur
Dailleurs dans la session administrateur je ne peux pas changer la langue du clavier, on me dit quil me manque le fichier app850.fon qui est sur le CD de Windows XP. Mais bon cest un autre sujet..
