[Réglé] Pub intempestive • page 2

[Del-crosseur]

Bonsoir ,

Fais ceci stp...

* Fait un double-clic sur l'icône d'OTL pour le lancer
/!\ pour Vista/Seven fais un clic-droit sur l'icône d'OTL et choisis "Exécuter en tant qu'administrateur"

* Assure-toi d'avoir fermé toutes les applications en court de fonctionnement.

* Quand la fenêtre d'OTL apparaît, assure toi que dans la section "Rapport" (en haut à droite) la case " Rapport minimal" soit cochée.

* Copies et colles le contenue de cette citation dans la partie inférieure d'OTL "Personnalisation"

:OTL
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=c819783f0000000000000023142a30ac&tlver=1.4.19.19&affID=17161
IE - HKU\S-1-5-21-2228644646-3380076698-2093188786-1001\..\URLSearchHook: {CA3EB689-8F09-4026-AA10-B9534C691CE0} - C:\Program Files (x86)\Registry Booster 2010 4.6.2.0\mybarnsw9698.tmp\tbhelper.dll ()
[2011/09/07 17:25:10 | 000,000,000 | ---D | M] (Babylon) -- C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com
O2 - BHO: (CescrtHlpr Object) - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.23.10\bh\BabylonToolbar.dll
O2 - BHO: (TBSB07458 Class) - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files (x86)\Registry Booster 2010 4.6.2.0\mybarnsw9698.tmp\tbcore3.dll ()
O3 - HKLM\..\Toolbar: (Babylon Toolbar) - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.23.10\BabylonToolbarTlbr.dll (Babylon Ltd.)
O4 - HKLM\..\Run: [BabylonToolbar] C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.23.10\BabylonToolbarsrv.exe (Babylon Ltd.)
[2011/09/07 17:25:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\BabylonToolbar
[2011/09/04 17:07:54 | 000,000,000 | ---D | C] -- C:\Users\quentin\AppData\Local\OpenCandy
[2011/09/04 17:07:52 | 000,000,000 | ---D | C] -- C:\Users\quentin\AppData\Roaming\OpenCandy
[1999/12/07 00:00:00 | 000,024,976 | ---- | C] () -- C:\Windows\twain_16.dll
[2011/06/28 22:10:53 | 000,000,000 | ---D | M] -- C:\Users\quentin\AppData\Roaming\Babylon
[2010/09/26 00:29:34 | 000,000,000 | ---D | M] -- C:\Users\quentin\AppData\Roaming\FissaSearch
[2010/09/26 00:30:21 | 000,000,000 | ---D | M] -- C:\Users\quentin\AppData\Roaming\moovida-1
[2010/11/04 17:11:25 | 000,000,000 | ---D | M] -- C:\Users\quentin\AppData\Roaming\OfferBox
[2011/09/04 17:07:52 | 000,000,000 | ---D | M] -- C:\Users\quentin\AppData\Roaming\OpenCandy
[2010/08/31 10:52:16 | 000,006,656 | ---- | M] (Aedgency) -- C:\Users\quentin\AppData\Roaming\FissaSearch\FissaUninstaller.exe
[2010/09/26 00:29:34 | 000,102,400 | R--- | M] (Acresso Software Inc.) -- C:\Users\quentin\AppData\Roaming\Microsoft\Installer\{6084C211-01A1-464E-97A0-09772E122B50}\NewShortcut2_B4703F8364D440ADB60E472AD5422128.exe
[2010/09/26 00:29:34 | 000,102,400 | R--- | M] (Acresso Software Inc.) -- C:\Users\quentin\AppData\Roaming\Microsoft\Installer\{6084C211-01A1-464E-97A0-09772E122B50}\NewShortcut3_BCB4A930B9F04A2480525A437423D92B.exe
[2010/09/26 00:29:34 | 000,102,400 | R--- | M] (Acresso Software Inc.) -- C:\Users\quentin\AppData\Roaming\Microsoft\Installer\{6084C211-01A1-464E-97A0-09772E122B50}\NewShortcut5_F4EE65F1A6CD4124B059E9FA9A98EBF7.exe
[2010/09/26 00:29:34 | 000,102,400 | R--- | M] (Acresso Software Inc.) -- C:\Users\quentin\AppData\Roaming\Microsoft\Installer\{6084C211-01A1-464E-97A0-09772E122B50}\NewShortcut6_206049A8CD534D8B87D5F66190F05AB3.exe
[2011/09/04 17:07:53 | 000,416,160 | ---- | M] () -- C:\Users\quentin\AppData\Roaming\OpenCandy\OpenCandy_B385D391DACB46238DC329919D51534D\LatestDLMgr.exe
[2011/09/04 17:08:27 | 034,024,336 | ---- | M] () -- C:\Users\quentin\AppData\Roaming\OpenCandy\OpenCandy_B385D391DACB46238DC329919D51534D\NitroPDFfr64_p2v1Installer.exe
[2011/08/17 13:28:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\wbtooltb
O3 - HKLM\..\Toolbar: (Webblog) - {C3947F4E-8894-4C04-98E0-DF182C706DDF} - C:\Program Files (x86)\wbtooltb\wbtoolDx.dll ()
O2 - BHO: (Webblog) - {C3947F4E-8894-4C04-98E0-DF182C706DDF} - C:\Program Files (x86)\wbtooltb\wbtoolDx.dll ()
[2011/03/29 18:28:02 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\engine@conduit.com
IE - HKU\S-1-5-21-2228644646-3380076698-2093188786-1001\..\URLSearchHook: {4daac69c-cba7-45e2-9bc8-1044483d3352} - Reg Error: Key error. File not found
O13 - gopher Prefix: missing
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe
O33 - MountPoints2\{03635047-376a-11e0-bb9a-0024bec73861}\Shell\AutoRun\command - "" = G:\AUTORUN.EXE
O33 - MountPoints2\{db124695-37b9-11e0-b078-0024bec73861}\Shell\AutoRun\command - "" = J:\AUTORUN.EXE

:Files
c:\program files\registry booster 2010 4.6.2.0\mybarnsw9698.tmp\tbhelper.dll
c:\program files\babylontoolbar\babylontoolbar\1.4.23.10\bh\babylontoolbar.dll
c:\program files\registry booster 2010 4.6.2.0\mybarnsw9698.tmp\tbcore3.dll
c:\program files\babylontoolbar\babylontoolbar\1.4.23.10\babylontoolbartlbr.dll
c:\program files\babylontoolbar\babylontoolbar\1.4.23.10\babylontoolbarsrv.exe
c:\windows\twain_16.dll
c:\users\quentin\appdata\roaming\fissasearch\fissauninstaller.exe
c:\users\quentin\appdata\roaming\microsoft\installer\{6084c211-01a1-464e-97a0-09772e122b50}\newshortcut2_b4703f8364d440adb60e472ad5422128.exe
c:\users\quentin\appdata\roaming\microsoft\installer\{6084c211-01a1-464e-97a0-09772e122b50}\newshortcut3_bcb4a930b9f04a2480525a437423d92b.exe
c:\users\quentin\appdata\roaming\microsoft\installer\{6084c211-01a1-464e-97a0-09772e122b50}\newshortcut5_f4ee65f1a6cd4124b059e9fa9a98ebf7.exe
c:\users\quentin\appdata\roaming\microsoft\installer\{6084c211-01a1-464e-97a0-09772e122b50}\newshortcut6_206049a8cd534d8b87d5f66190f05ab3.exe
c:\users\quentin\appdata\roaming\opencandy\opencandy_b385d391dacb46238dc329919d51534d\latestdlmgr.exe
c:\users\quentin\appdata\roaming\opencandy\opencandy_b385d391dacb46238dc329919d51534d\nitropdffr64_p2v1installer.exe

:Commands
[emptytemp]
[emptyflash]
[createrestorepoint]

* Cliques sur l'icône Correction (en haut à gauche) .
* Laisse le scan aller à son terme sans te servir du PC
* A la fin du scan un rapport s'ouvrir "OTL.log"
* Copie et colle le ou les rapports dans ta réponse stp...
* Au cas où, tu peux les retrouver dans le dossier C:\OTL ou sur ton bureau en fonction des cas rencontrés

Puis :::

Télécharge puis installe :

par Marcin Kleczynski

*** Met-le à jour(très important ) , puis coche, "Exécuter un examen complet"

*** Si une infection est trouvée, coche la case à coté et valide avec l’Onglet Supprimer la sélection

*** Après la suppression , l'outil va surement te demander de redémarrer l'ordinateur -->accepte<--

*** il est conseillé de désactivé Tea-Timer si tu as Spybot-S&D juste le temps du scan.

Voici comment faire: Lancez Spybot-S&D, passez en Mode avancé via le Menu Mode (en haut) ? cliquez sur Oui--> choisissez Outils dans la barre de navigation sur la gauche -->Résident et là vous pouvez décocher les cases situées devant les deux outils.

Poste le rapport final.

Ps:Au cas ou tu n'a pas le rapport suite à une erreur de manipulation ; relance Malwarebytes puis rends toi dans l'onglet "rapports/Logs" selectionne le dernier puis Copier/Coller dans ta réponse


Bonne soirée

[cwbg]

voila j' ai effectuer la correction et voici le rapport:
All processes killed
========== OTL ==========
HKLM\SOFTWARE\Microsoft\Internet Explorer\Search\\SearchAssistant| /E : value set successfully!
Registry value HKEY_USERS\S-1-5-21-2228644646-3380076698-2093188786-1001\Software\Microsoft\Internet Explorer\URLSearchHooks\\{CA3EB689-8F09-4026-AA10-B9534C691CE0} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}\ deleted successfully.
C:\Program Files (x86)\Registry Booster 2010 4.6.2.0\mybarnsw9698.tmp\tbhelper.dll moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\defaults\preferences\.svn\tmp\text-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\defaults\preferences\.svn\tmp\props folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\defaults\preferences\.svn\tmp\prop-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\defaults\preferences\.svn\tmp folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\defaults\preferences\.svn\text-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\defaults\preferences\.svn\props folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\defaults\preferences\.svn\prop-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\defaults\preferences\.svn folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\defaults\preferences folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\defaults\.svn\tmp\text-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\defaults\.svn\tmp\props folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\defaults\.svn\tmp\prop-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\defaults\.svn\tmp folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\defaults\.svn\text-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\defaults\.svn\props folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\defaults\.svn\prop-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\defaults\.svn folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\defaults folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\imgs\mnRadio\.svn\tmp\text-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\imgs\mnRadio\.svn\tmp\props folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\imgs\mnRadio\.svn\tmp\prop-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\imgs\mnRadio\.svn\tmp folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\imgs\mnRadio\.svn\text-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\imgs\mnRadio\.svn\props folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\imgs\mnRadio\.svn\prop-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\imgs\mnRadio\.svn folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\imgs\mnRadio folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\.svn\tmp\text-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\.svn\tmp\props folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\.svn\tmp\prop-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\.svn\tmp folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\.svn\text-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\.svn\props folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\.svn\prop-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs\.svn folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\imgs\flgs folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\imgs\.svn\tmp\text-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\imgs\.svn\tmp\props folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\imgs\.svn\tmp\prop-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\imgs\.svn\tmp folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\imgs\.svn\text-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\imgs\.svn\props folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\imgs\.svn\prop-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\imgs\.svn folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\imgs folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\.svn\tmp\text-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\.svn\tmp\props folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\.svn\tmp\prop-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\.svn\tmp folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\.svn\text-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\.svn\props folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\.svn\prop-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content\.svn folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\content folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\components\.svn\tmp\text-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\components\.svn\tmp\props folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\components\.svn\tmp\prop-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\components\.svn\tmp folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\components\.svn\text-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\components\.svn\props folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\components\.svn\prop-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\components\.svn folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\components folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\.svn\tmp\text-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\.svn\tmp\props folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\.svn\tmp\prop-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\.svn\tmp folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\.svn\text-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\.svn\props folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\.svn\prop-base folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com\.svn folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\ffxtlbr@babylon.com folder moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613B}\ deleted successfully.
C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.23.10\bh\BabylonToolbar.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}\ deleted successfully.
C:\Program Files (x86)\Registry Booster 2010 4.6.2.0\mybarnsw9698.tmp\tbcore3.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{98889811-442D-49dd-99D7-DC866BE87DBC} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC}\ deleted successfully.
C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.23.10\BabylonToolbarTlbr.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\\Software\Microsoft\Windows\CurrentVersion\Run not found.
C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.23.10\BabylonToolbarsrv.exe moved successfully.
C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.23.10\bh folder moved successfully.
C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.23.10 folder moved successfully.
C:\Program Files (x86)\BabylonToolbar\BabylonToolbar folder moved successfully.
C:\Users\quentin\AppData\Local\OpenCandy folder moved successfully.
C:\Users\quentin\AppData\Roaming\OpenCandy\OpenCandy_B385D391DACB46238DC329919D51534D folder moved successfully.
C:\Users\quentin\AppData\Roaming\OpenCandy folder moved successfully.
C:\Windows\twain_16.dll moved successfully.
C:\Users\quentin\AppData\Roaming\Babylon folder moved successfully.
C:\Users\quentin\AppData\Roaming\FissaSearch\@FissaPlugin\content folder moved successfully.
C:\Users\quentin\AppData\Roaming\FissaSearch\@FissaPlugin folder moved successfully.
C:\Users\quentin\AppData\Roaming\FissaSearch folder moved successfully.
C:\Users\quentin\AppData\Roaming\moovida-1\addin-db-001\hosts folder moved successfully.
C:\Users\quentin\AppData\Roaming\moovida-1\addin-db-001\addin-dir-data folder moved successfully.
C:\Users\quentin\AppData\Roaming\moovida-1\addin-db-001\addin-data\1 folder moved successfully.
C:\Users\quentin\AppData\Roaming\moovida-1\addin-db-001\addin-data folder moved successfully.
C:\Users\quentin\AppData\Roaming\moovida-1\addin-db-001 folder moved successfully.
C:\Users\quentin\AppData\Roaming\moovida-1 folder moved successfully.
C:\Users\quentin\AppData\Roaming\OfferBox folder moved successfully.
Folder C:\Users\quentin\AppData\Roaming\OpenCandy\ not found.
File C:\Users\quentin\AppData\Roaming\FissaSearch\FissaUninstaller.exe not found.
C:\Users\quentin\AppData\Roaming\Microsoft\Installer\{6084C211-01A1-464E-97A0-09772E122B50}\NewShortcut2_B4703F8364D440ADB60E472AD5422128.exe moved successfully.
C:\Users\quentin\AppData\Roaming\Microsoft\Installer\{6084C211-01A1-464E-97A0-09772E122B50}\NewShortcut3_BCB4A930B9F04A2480525A437423D92B.exe moved successfully.
C:\Users\quentin\AppData\Roaming\Microsoft\Installer\{6084C211-01A1-464E-97A0-09772E122B50}\NewShortcut5_F4EE65F1A6CD4124B059E9FA9A98EBF7.exe moved successfully.
C:\Users\quentin\AppData\Roaming\Microsoft\Installer\{6084C211-01A1-464E-97A0-09772E122B50}\NewShortcut6_206049A8CD534D8B87D5F66190F05AB3.exe moved successfully.
File C:\Users\quentin\AppData\Roaming\OpenCandy\OpenCandy_B385D391DACB46238DC329919D51534D\LatestDLMgr.exe not found.
File C:\Users\quentin\AppData\Roaming\OpenCandy\OpenCandy_B385D391DACB46238DC329919D51534D\NitroPDFfr64_p2v1Installer.exe not found.
C:\Program Files (x86)\wbtooltb\components folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\skin\searchbar folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\skin\options folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\skin\lib\weatherbutton\panels\images folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\skin\lib\weatherbutton\panels folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\skin\lib\weatherbutton\icons folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\skin\lib\weatherbutton folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\skin\lib\uwa folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\skin\lib\radio\images folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\skin\lib\radio\css folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\skin\lib\radio folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\skin\lib\panels\images folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\skin\lib\panels\default\scripts folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\skin\lib\panels\default\images folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\skin\lib\panels\default\css folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\skin\lib\panels\default folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\skin\lib\panels\css folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\skin\lib\panels folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\skin\lib folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\skin folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\data\search folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\data folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets\net.vmn.www.YouTube\skin\scripts folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets\net.vmn.www.YouTube\skin\images folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets\net.vmn.www.YouTube\skin\css folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets\net.vmn.www.YouTube\skin folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets\net.vmn.www.YouTube\js folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets\net.vmn.www.YouTube\images folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets\net.vmn.www.YouTube\css folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets\net.vmn.www.YouTube folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets\net.vmn.www.WebTV\skin\scripts folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets\net.vmn.www.WebTV\skin\images folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets\net.vmn.www.WebTV\skin\css folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets\net.vmn.www.WebTV\skin folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets\net.vmn.www.WebTV\js folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets\net.vmn.www.WebTV\images folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets\net.vmn.www.WebTV\css folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets\net.vmn.www.WebTV folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets\net.vmn.www.Shopping folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\scripts folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\images folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin\css folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets\net.vmn.www.MyStartFacebook\skin folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets\net.vmn.www.MyStartFacebook\js folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets\net.vmn.www.MyStartFacebook\images folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets\net.vmn.www.MyStartFacebook\css folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets\net.vmn.www.MyStartFacebook folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets\net.vmn.www.Coupons folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets\net.vmn.www.2.Babylon.1220 folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\widgets folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\newtab\images folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\newtab folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\modules folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content\lib folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome\content folder moved successfully.
C:\Program Files (x86)\wbtooltb\chrome folder moved successfully.
C:\Program Files (x86)\wbtooltb folder moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{C3947F4E-8894-4C04-98E0-DF182C706DDF} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C3947F4E-8894-4C04-98E0-DF182C706DDF}\ deleted successfully.
File C:\Program Files (x86)\wbtooltb\wbtoolDx.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C3947F4E-8894-4C04-98E0-DF182C706DDF}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C3947F4E-8894-4C04-98E0-DF182C706DDF}\ not found.
File C:\Program Files (x86)\wbtooltb\wbtoolDx.dll not found.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\engine@conduit.com\searchplugin folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\engine@conduit.com\META-INF folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\engine@conduit.com\lib folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\engine@conduit.com\DualPackage folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\engine@conduit.com\defaults folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\engine@conduit.com\components folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\engine@conduit.com\chrome folder moved successfully.
C:\Users\quentin\AppData\Roaming\mozilla\Firefox\Profiles\85wycfuf.default\extensions\engine@conduit.com folder moved successfully.
Registry value HKEY_USERS\S-1-5-21-2228644646-3380076698-2093188786-1001\Software\Microsoft\Internet Explorer\URLSearchHooks\\{4daac69c-cba7-45e2-9bc8-1044483d3352} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4daac69c-cba7-45e2-9bc8-1044483d3352}\ not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\\gopher|:gopher:// /E : value set successfully!
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell:explorer.exe deleted successfully.
Item C:\Windows\SysWOW64\explorer.exe is whitelisted and cannot be moved.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{03635047-376a-11e0-bb9a-0024bec73861}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{03635047-376a-11e0-bb9a-0024bec73861}\ not found.
File G:\AUTORUN.EXE not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{db124695-37b9-11e0-b078-0024bec73861}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{db124695-37b9-11e0-b078-0024bec73861}\ not found.
File J:\AUTORUN.EXE not found.
========== FILES ==========
File\Folder c:\program files\registry booster 2010 4.6.2.0\mybarnsw9698.tmp\tbhelper.dll not found.
File\Folder c:\program files\babylontoolbar\babylontoolbar\1.4.23.10\bh\babylontoolbar.dll not found.
File\Folder c:\program files\registry booster 2010 4.6.2.0\mybarnsw9698.tmp\tbcore3.dll not found.
File\Folder c:\program files\babylontoolbar\babylontoolbar\1.4.23.10\babylontoolbartlbr.dll not found.
File\Folder c:\program files\babylontoolbar\babylontoolbar\1.4.23.10\babylontoolbarsrv.exe not found.
File\Folder c:\windows\twain_16.dll not found.
File\Folder c:\users\quentin\appdata\roaming\fissasearch\fissauninstaller.exe not found.
File\Folder c:\users\quentin\appdata\roaming\microsoft\installer\{6084c211-01a1-464e-97a0-09772e122b50}\newshortcut2_b4703f8364d440adb60e472ad5422128.exe not found.
File\Folder c:\users\quentin\appdata\roaming\microsoft\installer\{6084c211-01a1-464e-97a0-09772e122b50}\newshortcut3_bcb4a930b9f04a2480525a437423d92b.exe not found.
File\Folder c:\users\quentin\appdata\roaming\microsoft\installer\{6084c211-01a1-464e-97a0-09772e122b50}\newshortcut5_f4ee65f1a6cd4124b059e9fa9a98ebf7.exe not found.
File\Folder c:\users\quentin\appdata\roaming\microsoft\installer\{6084c211-01a1-464e-97a0-09772e122b50}\newshortcut6_206049a8cd534d8b87d5f66190f05ab3.exe not found.
File\Folder c:\users\quentin\appdata\roaming\opencandy\opencandy_b385d391dacb46238dc329919d51534d\latestdlmgr.exe not found.
File\Folder c:\users\quentin\appdata\roaming\opencandy\opencandy_b385d391dacb46238dc329919d51534d\nitropdffr64_p2v1installer.exe not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: AppData

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 56504 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Public

User: quentin
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 2245338 bytes
->Java cache emptied: 30576461 bytes
->FireFox cache emptied: 88868256 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 3094276 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 828778 bytes
RecycleBin emptied: 18438423 bytes

Total Files Cleaned = 137,00 mb


[EMPTYFLASH]

User: All Users

User: AppData

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Public

User: quentin
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0,00 mb

Restore point Set: OTL Restore Point

OTL by OldTimer - Version 3.2.27.0 log created on 09102011_214735

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...

pour Malwarebytes je vais l'afficher tout à l'heure .
Sinon première constatation ,la soufflerie de mon ordi est plus lent ,plutôt bon signe

[cwbg]

Rebonjour,
voila pour Malwarebytes: (il n'a détecter aucune erreurs,mais bien avant j'avais déjà fait un scan et j'avais 13 erreurs que j'avais supprimer mais j'ai retrouver le rapport ,je le met tout à la fin de la page.)

Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org

Version de la base de données: 7688

Windows 6.1.7601 Service Pack 1
Internet Explorer 8.0.7601.17514

10/09/2011 23:15:44
mbam-log-2011-09-10 (23-15-44).txt

Type d'examen: Examen complet (C:\|)
Elément(s) analysé(s): 372677
Temps écoulé: 1 heure(s), 5 minute(s), 19 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)


voici l'ancien rapport avec infection:

Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org

Version de la base de données: 7651

Windows 6.1.7601 Service Pack 1
Internet Explorer 8.0.7601.17514

4/09/2011 21:21:09
mbam-log-2011-09-04 (21-21-09).txt

Type d'examen: Examen complet (C:\|)
Elément(s) analysé(s): 375168
Temps écoulé: 1 heure(s), 2 minute(s), 47 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 1
Elément(s) de données du Registre infecté(s): 1
Dossier(s) infecté(s): 3
Fichier(s) infecté(s): 7

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FileHunter (PUP.FileHunter) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\FileHunter Check for updates (PUP.FileHunter) -> Value: FileHunter Check for updates -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{BB8C9484-BDD0-485F-9085-847F9BF303D0}\DhcpNameServer (Trojan.DNSChanger) -> Bad: (85.255.112.166) Good: () -> Quarantined and deleted successfully.

Dossier(s) infecté(s):
c:\Users\quentin\AppData\Roaming\filehunter (PUP.FileHunter) -> Quarantined and deleted successfully.
c:\Users\quentin\AppData\Roaming\filehunter\downloads (PUP.FileHunter) -> Quarantined and deleted successfully.
c:\Users\quentin\AppData\Roaming\filehunter\metafiles (PUP.FileHunter) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
c:\Users\Public\Desktop\mp3 downloader.lnk (Rogue.Link) -> Quarantined and deleted successfully.
c:\Users\quentin\AppData\Roaming\filehunter\pumpa.state (PUP.FileHunter) -> Quarantined and deleted successfully.
c:\Users\quentin\AppData\Roaming\filehunter\filehunter.exe (PUP.FileHunter) -> Quarantined and deleted successfully.
c:\Users\quentin\AppData\Roaming\filehunter\pumpa.exe (PUP.FileHunter) -> Quarantined and deleted successfully.
c:\Users\quentin\AppData\Roaming\filehunter\uninstall.exe (PUP.FileHunter) -> Quarantined and deleted successfully.
c:\Users\quentin\AppData\Roaming\filehunter\update.exe (PUP.FileHunter) -> Quarantined and deleted successfully.
c:\Users\quentin\AppData\Roaming\filehunter\version (PUP.FileHunter) -> Quarantined and deleted successfully.

[Del-crosseur]

Bonsoir ,

Très bien ,

Petite vérification...

• INSTALLATION
  
  • Télécharges AdwCleaner de Xplode
    
  • Lance AdwCleaner.exe
    
  • accepter l'avertissement qui suit
    
  • Clic sur Recherche
    
  • Patientes le temps de la recherche
    
  • Postes le rapport qui apparait à la fin .
    
  • Clic sur Quitter
    

++

[cwbg]

voici le rapport:

# AdwCleaner v1.305 - Rapport créé le 11/09/2011 à 23:29:54
# Mis à jour le 07/09/11 à 19h par Xplode
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
# Nom d'utilisateur : quentin - QUENTIN-VAIO (Administrateur)
# Exécuté depuis : C:\Users\quentin\Downloads\adwcleaner0.exe
# Option [Recherche]


***** [Processus] *****


***** [Services] *****


***** [Fichiers / Dossiers] *****

Dossier Présent : C:\ProgramData\~0
Dossier Présent : C:\Program Files (x86)\BabylonToolbar
Dossier Présent : C:\Users\quentin\AppData\Roaming\Mozilla\Firefox\Profiles\85wycfuf.default\Conduit
Dossier Présent : C:\Users\quentin\AppData\Roaming\Mozilla\Firefox\Profiles\85wycfuf.default\ConduitEngine
Fichier Présent : C:\Users\quentin\AppData\Roaming\Mozilla\Firefox\Profiles\85wycfuf.default\searchplugins\askcom.xml
Fichier Présent : C:\Users\quentin\AppData\Roaming\Mozilla\Firefox\Profiles\85wycfuf.default\searchplugins\conduit.xml

***** [Registre] *****

Clé Présente : HKCU\Software\BabylonToolbar
Clé Présente : HKCU\Software\Offerbox
Clé Présente : HKCU\Software\AppDataLow\Software\PriceGong
Clé Présente : HKLM\SOFTWARE\BabylonToolbar
Clé Présente : HKLM\SOFTWARE\Classes\Babylon.dskBnd
Clé Présente : HKLM\SOFTWARE\Classes\Babylon.dskBnd.1
Clé Présente : HKLM\SOFTWARE\Classes\bbylnApp.appCore
Clé Présente : HKLM\SOFTWARE\Classes\bbylnApp.appCore.1
Clé Présente : HKLM\SOFTWARE\Classes\Conduit.Engine
Clé Présente : HKLM\SOFTWARE\Classes\escort.escortIEPane
Clé Présente : HKLM\SOFTWARE\Classes\escort.escrtBtn.1
Clé Présente : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc
Clé Présente : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc.1
Clé Présente : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98DB}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{C86FF9FA-AEED-451B-A9CC-39A53173AE2E}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{291BCCC1-6890-484a-89D3-318C928DAC1B}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{97F2FF5B-260C-4ccf-834A-2DDA4E29E39E}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{B8276A94-891D-453C-9FF3-715C042A2575}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{FFB9ADCB-8C79-4C29-81D3-74D46A93D370}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{6E8BF012-2C85-4834-B10A-1B31AF173D70}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Clé Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Clé Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Clé Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5}
Clé Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Clé Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar

***** [Registre (64 bits)] *****

[x64] Clé Présente : HKCU64\Software\BabylonToolbar
[x64] Clé Présente : HKCU64\Software\Offerbox
[x64] Clé Présente : HKCU64\Software\AppDataLow\Software\PriceGong
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\Babylon.dskBnd
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\Babylon.dskBnd.1
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\bbylnApp.appCore
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\bbylnApp.appCore.1
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\Conduit.Engine
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\escort.escortIEPane
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\escort.escrtBtn.1
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\esrv.BabylonESrvc
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\esrv.BabylonESrvc.1
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\AppID\esrv.EXE
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98DB}
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\Interface\{6612AFDD-34AD-4B89-A236-7E6D07C3FDCD}
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\TypeLib\{6E8BF012-2C85-4834-B10A-1B31AF173D70}
[x64] Clé Présente : HKLM64\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
[x64] Clé Présente : HKCU64\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
[x64] Clé Présente : HKCU64\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
[x64] Clé Présente : HKCU64\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5}
[x64] Clé Présente : HKCU64\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
[x64] Clé Présente : HKCU64\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}

***** [Navigateurs] *****

-\\ Internet Explorer v8.0.7601.17514

[HKCU\..\Main - Start Page] = hxxp://isearch.babylon.com/?babsrc=HP_s ... 23142a30ad

-\\ Mozilla Firefox v6.0.2 (fr)

Profil : 85wycfuf.default
Fichier : C:\Users\quentin\AppData\Roaming\Mozilla\Firefox\Profiles\85wycfuf.default\prefs.js

Présente : user_pref("CT2269050..clientLogIsEnabled", true);
Présente : user_pref("CT2269050..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Présente : user_pref("CT2269050..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Présente : user_pref("CT2269050.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Présente : user_pref("CT2269050.AppTrackingLastCheckTime", "Sat Apr 02 2011 13:33:09 GMT+0200");
Présente : user_pref("CT2269050.CTID", "CT2269050");
Présente : user_pref("CT2269050.CurrentServerDate", "2-4-2011");
Présente : user_pref("CT2269050.DialogsAlignMode", "LTR");
Présente : user_pref("CT2269050.DialogsGetterLastCheckTime", "Sat Apr 02 2011 13:32:59 GMT+0200");
Présente : user_pref("CT2269050.DownloadReferralCookieData", "");
Présente : user_pref("CT2269050.EMailNotifierPollDate", "Sat Apr 02 2011 13:32:58 GMT+0200");
Présente : user_pref("CT2269050.FirstServerDate", "14-7-2010");
Présente : user_pref("CT2269050.FirstTime", true);
Présente : user_pref("CT2269050.FirstTimeFF3", true);
Présente : user_pref("CT2269050.FirstTimeSettingsDone", true);
Présente : user_pref("CT2269050.FixPageNotFoundErrors", true);
Présente : user_pref("CT2269050.GroupingServerCheckInterval", 1440);
Présente : user_pref("CT2269050.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Présente : user_pref("CT2269050.HasUserGlobalKeys", true);
Présente : user_pref("CT2269050.Initialize", true);
Présente : user_pref("CT2269050.InitializeCommonPrefs", true);
Présente : user_pref("CT2269050.InstallationAndCookieDataSentCount", 3);
Présente : user_pref("CT2269050.InstallationType", "UnknownIntegration");
Présente : user_pref("CT2269050.InstalledDate", "Wed Jul 14 2010 12:58:08 GMT+0200");
Présente : user_pref("CT2269050.InvalidateCache", false);
Présente : user_pref("CT2269050.IsGrouping", false);
Présente : user_pref("CT2269050.IsMulticommunity", false);
Présente : user_pref("CT2269050.IsOpenThankYouPage", false);
Présente : user_pref("CT2269050.IsOpenUninstallPage", false);
Présente : user_pref("CT2269050.LanguagePackLastCheckTime", "Sat Apr 02 2011 13:32:59 GMT+0200");
Présente : user_pref("CT2269050.LanguagePackReloadIntervalMM", 1440);
Présente : user_pref("CT2269050.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Présente : user_pref("CT2269050.LastLogin_2.7.0.14", "Mon Feb 14 2011 21:49:49 GMT+0100");
Présente : user_pref("CT2269050.LastLogin_3.3.3.2", "Sat Apr 02 2011 13:32:59 GMT+0200");
Présente : user_pref("CT2269050.LatestVersion", "3.3.3.2");
Présente : user_pref("CT2269050.Locale", "en");
Présente : user_pref("CT2269050.LoginCache", 4);
Présente : user_pref("CT2269050.MCDetectTooltipHeight", "83");
Présente : user_pref("CT2269050.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Présente : user_pref("CT2269050.MCDetectTooltipWidth", "295");
Présente : user_pref("CT2269050.RadioIsPodcast", false);
Présente : user_pref("CT2269050.RadioLastCheckTime", "Sat Apr 02 2011 13:32:59 GMT+0200");
Présente : user_pref("CT2269050.RadioLastUpdateIPServer", "3");
Présente : user_pref("CT2269050.RadioLastUpdateServer", "129132338014870000");
Présente : user_pref("CT2269050.RadioMediaID", "12473383");
Présente : user_pref("CT2269050.RadioMediaType", "Media Player");
Présente : user_pref("CT2269050.RadioMenuSelectedID", "EBRadioMenu_CT226905012473383");
Présente : user_pref("CT2269050.RadioStationName", "Hotmix%20108");
Présente : user_pref("CT2269050.RadioStationURL", "hxxp://67.202.67.18:8082");
Présente : user_pref("CT2269050.SavedHomepage", "chrome://speeddial/content/speeddial.xul");
Présente : user_pref("CT2269050.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT2269050&octid=EB_ORIGINAL_CTID&SearchSource=1");
Présente : user_pref("CT2269050.SearchFromAddressBarIsInit", true);
Présente : user_pref("CT2269050.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&q=");
Présente : user_pref("CT2269050.SearchInNewTabEnabled", true);
Présente : user_pref("CT2269050.SearchInNewTabIntervalMM", 1440);
Présente : user_pref("CT2269050.SearchInNewTabLastCheckTime", "Sat Apr 02 2011 13:33:00 GMT+0200");
Présente : user_pref("CT2269050.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
Présente : user_pref("CT2269050.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_TOOLBAR_ID");
Présente : user_pref("CT2269050.ServiceMapLastCheckTime", "Sat Apr 02 2011 13:32:58 GMT+0200");
Présente : user_pref("CT2269050.SettingsCheckIntervalMin", 120);
Présente : user_pref("CT2269050.SettingsLastCheckTime", "Sat Apr 02 2011 13:32:58 GMT+0200");
Présente : user_pref("CT2269050.SettingsLastUpdate", "1300785496");
Présente : user_pref("CT2269050.ThirdPartyComponentsInterval", 504);
Présente : user_pref("CT2269050.ThirdPartyComponentsLastCheck", "Sat Apr 02 2011 13:32:58 GMT+0200");
Présente : user_pref("CT2269050.ThirdPartyComponentsLastUpdate", "1277823092");
Présente : user_pref("CT2269050.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2269050");
Présente : user_pref("CT2269050.UserID", "UN47929469535428004");
Présente : user_pref("CT2269050.ValidationData_Toolbar", 2);
Présente : user_pref("CT2269050.WeatherNetwork", "");
Présente : user_pref("CT2269050.WeatherPollDate", "Sat Apr 02 2011 13:33:00 GMT+0200");
Présente : user_pref("CT2269050.WeatherUnit", "C");
Présente : user_pref("CT2269050.alertChannelId", "666138");
Présente : user_pref("CT2269050.clientLogIsEnabled", true);
Présente : user_pref("CT2269050.clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Présente : user_pref("CT2269050.generalConfigFromLogin", "{\"SocialDomains\":\"social.conduit.com;apps.conduit.com\"}");
Présente : user_pref("CT2269050.globalFirstTimeInfoLastCheckTime", "Sat Apr 02 2011 13:32:59 GMT+0200");
Présente : user_pref("CT2269050.isAppTrackingManagerOn", true);
Présente : user_pref("CT2269050.myStuffEnabled", true);
Présente : user_pref("CT2269050.myStuffPublihserMinWidth", 400);
Présente : user_pref("CT2269050.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Présente : user_pref("CT2269050.myStuffServiceIntervalMM", 1440);
Présente : user_pref("CT2269050.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Présente : user_pref("CT2269050.oldAppsList", "128834881989343894,128834881989343895,129391330693125668,1195972076538955800,4064511679983222482,129121052374999726,129023235807856892,1000082,129351672002618989,129351776130744254,1000034,1000234,1000080,1000,1001,1002,1003,1004,1005,1006,1007,1008,1009,1010,1011,1012");
Présente : user_pref("CT2269050.testingCtid", "");
Présente : user_pref("CT2269050.toolbarAppMetaDataLastCheckTime", "Sat Apr 02 2011 13:32:59 GMT+0200");
Présente : user_pref("CT2269050.toolbarContextMenuLastCheckTime", "Sat Apr 02 2011 13:32:59 GMT+0200");
Présente : user_pref("CT2269050.uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Présente : user_pref("CT2542115..clientLogIsEnabled", true);
Présente : user_pref("CT2542115..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Présente : user_pref("CT2542115..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Présente : user_pref("CT2542115.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Présente : user_pref("CT2542115.CTID", "CT2542115");
Présente : user_pref("CT2542115.CurrentServerDate", "7-3-2011");
Présente : user_pref("CT2542115.DialogsAlignMode", "LTR");
Présente : user_pref("CT2542115.DialogsGetterLastCheckTime", "Mon Mar 07 2011 13:11:52 GMT+0100");
Présente : user_pref("CT2542115.DownloadReferralCookieData", "");
Présente : user_pref("CT2542115.EMailNotifierPollDate", "Mon Mar 07 2011 18:30:52 GMT+0100");
Présente : user_pref("CT2542115.FeedLastCount3702671119025834822", 509);
Présente : user_pref("CT2542115.FeedPollDate129255209834915761", "Mon Mar 07 2011 17:44:52 GMT+0100");
Présente : user_pref("CT2542115.FeedPollDate129255209834915767", "Mon Mar 07 2011 17:44:52 GMT+0100");
Présente : user_pref("CT2542115.FeedPollDate129255209834915773", "Mon Mar 07 2011 17:44:52 GMT+0100");
Présente : user_pref("CT2542115.FeedPollDate129255209834915779", "Mon Mar 07 2011 17:44:52 GMT+0100");
Présente : user_pref("CT2542115.FeedPollDate129255209834915785", "Mon Mar 07 2011 17:44:52 GMT+0100");
Présente : user_pref("CT2542115.FeedPollDate129255209834915791", "Mon Mar 07 2011 17:44:52 GMT+0100");
Présente : user_pref("CT2542115.FeedPollDate129255209834915797", "Mon Mar 07 2011 17:44:52 GMT+0100");
Présente : user_pref("CT2542115.FeedPollDate129255209834915803", "Mon Mar 07 2011 17:44:52 GMT+0100");
Présente : user_pref("CT2542115.FeedPollDate129255209834915809", "Mon Mar 07 2011 17:44:52 GMT+0100");
Présente : user_pref("CT2542115.FeedPollDate129255209834915815", "Mon Mar 07 2011 17:44:52 GMT+0100");
Présente : user_pref("CT2542115.FeedPollDate129255209834915821", "Mon Mar 07 2011 17:44:52 GMT+0100");
Présente : user_pref("CT2542115.FeedPollDate129255209834915827", "Mon Mar 07 2011 17:44:53 GMT+0100");
Présente : user_pref("CT2542115.FeedPollDate129255209834915833", "Mon Mar 07 2011 17:44:53 GMT+0100");
Présente : user_pref("CT2542115.FeedPollDate129255209834915839", "Mon Mar 07 2011 17:44:53 GMT+0100");
Présente : user_pref("CT2542115.FeedPollDate129255209834915845", "Mon Mar 07 2011 17:44:53 GMT+0100");
Présente : user_pref("CT2542115.FeedPollDate129255209834915851", "Mon Mar 07 2011 17:44:53 GMT+0100");
Présente : user_pref("CT2542115.FeedPollDate129255209834915857", "Mon Mar 07 2011 13:11:54 GMT+0100");
Présente : user_pref("CT2542115.FeedPollDate129255209834915863", "Mon Mar 07 2011 13:11:54 GMT+0100");
Présente : user_pref("CT2542115.FeedPollDate129255209834915869", "Mon Mar 07 2011 13:11:54 GMT+0100");
Présente : user_pref("CT2542115.FeedPollDate129255209834915875", "Mon Mar 07 2011 13:11:54 GMT+0100");
Présente : user_pref("CT2542115.FeedPollDate129255209834915881", "Mon Mar 07 2011 13:11:54 GMT+0100");
Présente : user_pref("CT2542115.FeedTTL129255209834915761", 30);
Présente : user_pref("CT2542115.FeedTTL129255209834915767", 2);
Présente : user_pref("CT2542115.FeedTTL129255209834915773", 2);
Présente : user_pref("CT2542115.FeedTTL129255209834915785", 2);
Présente : user_pref("CT2542115.FeedTTL129255209834915791", 30);
Présente : user_pref("CT2542115.FeedTTL129255209834915809", 5);
Présente : user_pref("CT2542115.FeedTTL129255209834915815", 5);
Présente : user_pref("CT2542115.FeedTTL129255209834915821", 5);
Présente : user_pref("CT2542115.FeedTTL129255209834915839", 5);
Présente : user_pref("CT2542115.FirstServerDate", "7-3-2011");
Présente : user_pref("CT2542115.FirstTime", true);
Présente : user_pref("CT2542115.FirstTimeFF3", true);
Présente : user_pref("CT2542115.FixPageNotFoundErrors", true);
Présente : user_pref("CT2542115.GroupingServerCheckInterval", 1440);
Présente : user_pref("CT2542115.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Présente : user_pref("CT2542115.HasUserGlobalKeys", true);
Présente : user_pref("CT2542115.Initialize", true);
Présente : user_pref("CT2542115.InitializeCommonPrefs", true);
Présente : user_pref("CT2542115.InstallationAndCookieDataSentCount", 2);
Présente : user_pref("CT2542115.InstallationId", "Unknown");
Présente : user_pref("CT2542115.InstallationType", "ExternalIntegration");
Présente : user_pref("CT2542115.InstalledDate", "Mon Mar 07 2011 13:11:51 GMT+0100");
Présente : user_pref("CT2542115.InvalidateCache", false);
Présente : user_pref("CT2542115.IsGrouping", false);
Présente : user_pref("CT2542115.IsMulticommunity", false);
Présente : user_pref("CT2542115.IsOpenThankYouPage", false);
Présente : user_pref("CT2542115.IsOpenUninstallPage", true);
Présente : user_pref("CT2542115.LanguagePackLastCheckTime", "Mon Mar 07 2011 13:11:52 GMT+0100");
Présente : user_pref("CT2542115.LanguagePackReloadIntervalMM", 1440);
Présente : user_pref("CT2542115.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Présente : user_pref("CT2542115.LastLogin_3.3.2.1", "Mon Mar 07 2011 17:11:52 GMT+0100");
Présente : user_pref("CT2542115.LatestVersion", "3.2.5.2");
Présente : user_pref("CT2542115.Locale", "fr-fr");
Présente : user_pref("CT2542115.MCDetectTooltipHeight", "83");
Présente : user_pref("CT2542115.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Présente : user_pref("CT2542115.MCDetectTooltipWidth", "295");
Présente : user_pref("CT2542115.RadioIsPodcast", false);
Présente : user_pref("CT2542115.RadioLastCheckTime", "Mon Mar 07 2011 13:11:53 GMT+0100");
Présente : user_pref("CT2542115.RadioLastUpdateIPServer", "3");
Présente : user_pref("CT2542115.RadioLastUpdateServer", "3");
Présente : user_pref("CT2542115.RadioMediaID", "9962");
Présente : user_pref("CT2542115.RadioMediaType", "Media Player");
Présente : user_pref("CT2542115.RadioMenuSelectedID", "EBRadioMenu_CT25421159962");
Présente : user_pref("CT2542115.RadioStationName", "California%20Rock");
Présente : user_pref("CT2542115.RadioStationURL", "hxxp://feedlive.net/california.asx");
Présente : user_pref("CT2542115.SHRINK_TOOLBAR", 1);
Présente : user_pref("CT2542115.SearchFromAddressBarIsInit", true);
Présente : user_pref("CT2542115.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2542115&q=");
Présente : user_pref("CT2542115.SearchInNewTabEnabled", true);
Présente : user_pref("CT2542115.SearchInNewTabIntervalMM", 1440);
Présente : user_pref("CT2542115.SearchInNewTabLastCheckTime", "Mon Mar 07 2011 13:11:52 GMT+0100");
Présente : user_pref("CT2542115.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
Présente : user_pref("CT2542115.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_TOOLBAR_ID");
Présente : user_pref("CT2542115.ServiceMapLastCheckTime", "Mon Mar 07 2011 13:11:50 GMT+0100");
Présente : user_pref("CT2542115.SettingsLastCheckTime", "Mon Mar 07 2011 15:44:48 GMT+0100");
Présente : user_pref("CT2542115.SettingsLastUpdate", "1297858921");
Présente : user_pref("CT2542115.ThirdPartyComponentsInterval", 504);
Présente : user_pref("CT2542115.ThirdPartyComponentsLastCheck", "Mon Mar 07 2011 13:11:50 GMT+0100");
Présente : user_pref("CT2542115.ThirdPartyComponentsLastUpdate", "1255348267");
Présente : user_pref("CT2542115.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2542115");
Présente : user_pref("CT2542115.UserID", "UN31261120871131342");
Présente : user_pref("CT2542115.ValidationData_Toolbar", 1);
Présente : user_pref("CT2542115.WeatherNetwork", "");
Présente : user_pref("CT2542115.WeatherPollDate", "Mon Mar 07 2011 18:14:53 GMT+0100");
Présente : user_pref("CT2542115.WeatherUnit", "C");
Présente : user_pref("CT2542115.alertChannelId", "935078");
Présente : user_pref("CT2542115.backendstorage._fb_dailyactivity", "31323939343939393133393331");
Présente : user_pref("CT2542115.backendstorage._fb_lifetimesent", "54525545");
Présente : user_pref("CT2542115.backendstorage.facebook_ctid_connect_send", "73656E646564");
Présente : user_pref("CT2542115.generalConfigFromLogin", "{\"SocialDomains\":\"social.conduit.com;apps.conduit.com\"}");
Présente : user_pref("CT2542115.globalFirstTimeInfoLastCheckTime", "Mon Mar 07 2011 17:11:52 GMT+0100");
Présente : user_pref("CT2542115.isAppTrackingManagerOn", true);
Présente : user_pref("CT2542115.myStuffEnabled", true);
Présente : user_pref("CT2542115.myStuffPublihserMinWidth", 400);
Présente : user_pref("CT2542115.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Présente : user_pref("CT2542115.myStuffServiceIntervalMM", 1440);
Présente : user_pref("CT2542115.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Présente : user_pref("CT2542115.testingCtid", "");
Présente : user_pref("CT2542115.toolbarAppMetaDataLastCheckTime", "Mon Mar 07 2011 13:11:52 GMT+0100");
Présente : user_pref("CT2542115.toolbarContextMenuLastCheckTime", "Mon Mar 07 2011 13:11:53 GMT+0100");
Présente : user_pref("CT2542115.usagesFlag", 2);
Présente : user_pref("CommunityToolbar.CantToolbarBeEngineOwner", "CT2542115,CT2269050");
Présente : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... /905414/BE", "\"0\"");
Présente : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... /930862/BE", "\"0\"");
Présente : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT2269050", "\"1280146508\"");
Présente : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT2542115", "\"1294155866\"");
Présente : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... &locale=en", "wVmmvqqOMqrv5xct1cJIHg==");
Présente : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... cale=fr-fr", "xYQbfiyILJlwdgfyUaYSOw==");
Présente : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... &locale=en", "0uSPYx+Kl2jpu8sJZMeHjw==");
Présente : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... cale=fr-fr", "poKjTfHs0NrVUIalKI8jyg==");
Présente : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... &locale=en", "Dclc8oo4TTv7+mAkSlUSWg==");
Présente : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... cale=fr-fr", "QmycQXJXVyFVAzIiNllWhQ==");
Présente : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... &locale=en", "K4Vqu91uAzWURlxJRdXJOg==");
Présente : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... cale=fr-fr", "FvLcNm096R6J6zPIjtn70Q==");
Présente : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-ser ... rt/dlg.pkg", "\"803651ba7facb1:0\"");
Présente : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-se ... er=3.3.2.1", "\"0652eeacc6cb1:0\"");
Présente : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-se ... er=3.3.3.2", "\"0652eeacc6cb1:0\"");
Présente : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... er=3.2.5.2", "\"0652eeacc6cb1:0\"");
Présente : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... er=3.3.3.2", "\"0652eeacc6cb1:0\"");
Présente : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/ ... =CT2269050", "\"634333631231730000\"");
Présente : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/toolbar/", "\"634333631231730000\"");
Présente : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services ... r=FF&lut=0", "634339976460000000");
Présente : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services ... =2/22/2011 6:54:06 PM", "634356118310000000");
Présente : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit. ... /CT2269050", "\"1300785496\"");
Présente : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit. ... /CT2542115", "\"1297858921\"");
Présente : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... ?locale=en", "\"634351849102130000\"");
Présente : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... cale=fr-fr", "\"634322696881670000\"");
Présente : user_pref("CommunityToolbar.EngineHiddenByUser", true);
Présente : user_pref("CommunityToolbar.EngineOwner", "ConduitEngine");
Présente : user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com");
Présente : user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine");
Présente : user_pref("CommunityToolbar.IsEngineShown", false);
Présente : user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Présente : user_pref("CommunityToolbar.OriginalEngineOwner", "ConduitEngine");
Présente : user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "engine@conduit.com");
Présente : user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "conduitengine");
Présente : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "${URL_SEARCHPAGE}");
Présente : user_pref("CommunityToolbar.ToolbarsList", "CT2269050,ConduitEngine,CT2542115");
Présente : user_pref("CommunityToolbar.ToolbarsList2", "CT2269050,CT2542115");
Présente : user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Fri May 13 2011 23:21:55 GMT+0200");
Présente : user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
Présente : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Thu Jun 16 2011 12:53:34 GMT+0200");
Présente : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Présente : user_pref("CommunityToolbar.alert.firstTimeAlertShown", true);
Présente : user_pref("CommunityToolbar.alert.locale", "en");
Présente : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Présente : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Fri Jun 24 2011 20:43:42 GMT+0200");
Présente : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1305622559");
Présente : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Présente : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Présente : user_pref("CommunityToolbar.alert.showTrayIcon", false);
Présente : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Présente : user_pref("CommunityToolbar.alert.userId", "764d0e77-bec1-4c47-93e4-a16bf3669c67");
Présente : user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Sat Apr 02 2011 13:32:59 GMT+0200");
Présente : user_pref("CommunityToolbar.globalUserId", "3c5da12e-f87f-4e55-8d77-1253fa359871");
Présente : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Présente : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Présente : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2269050");
Présente : user_pref("ConduitEngine.AppTrackingLastCheckTime", "Mon May 09 2011 16:48:53 GMT+0200");
Présente : user_pref("ConduitEngine.CTID", "ConduitEngine");
Présente : user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Sat Apr 02 2011 13:33:19 GMT+0200");
Présente : user_pref("ConduitEngine.FirstServerDate", "03/02/2011 23");
Présente : user_pref("ConduitEngine.FirstTime", true);
Présente : user_pref("ConduitEngine.FirstTimeFF3", true);
Présente : user_pref("ConduitEngine.HasUserGlobalKeys", true);
Présente : user_pref("ConduitEngine.Initialize", true);
Présente : user_pref("ConduitEngine.InitializeCommonPrefs", true);
Présente : user_pref("ConduitEngine.InstalledDate", "Wed Mar 02 2011 21:41:26 GMT+0100");
Présente : user_pref("ConduitEngine.IsMulticommunity", false);
Présente : user_pref("ConduitEngine.IsOpenThankYouPage", false);
Présente : user_pref("ConduitEngine.IsOpenUninstallPage", true);
Présente : user_pref("ConduitEngine.LanguagePackLastCheckTime", "Sat Apr 02 2011 13:33:20 GMT+0200");
Présente : user_pref("ConduitEngine.LastLogin_3.3.2.1", "Mon Mar 07 2011 13:11:51 GMT+0100");
Présente : user_pref("ConduitEngine.LastLogin_3.3.3.2", "Sat Apr 02 2011 13:33:15 GMT+0200");
Présente : user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Présente : user_pref("ConduitEngine.SettingsLastCheckTime", "Sat Apr 02 2011 13:33:20 GMT+0200");
Présente : user_pref("ConduitEngine.UserID", "UN55450712522019192");
Présente : user_pref("ConduitEngine.componentAlertEnabled", false);
Présente : user_pref("ConduitEngine.engineLocale", "fr");
Présente : user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Sat Apr 02 2011 13:33:17 GMT+0200");
Présente : user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Sat Apr 02 2011 13:33:13 GMT+0200");
Présente : user_pref("ConduitEngine.initDone", true);
Présente : user_pref("ConduitEngine.isAppTrackingManagerOn", true);
Présente : user_pref("ConduitEngine.usagesFlag", 2);
Présente : user_pref("browser.search.defaulturl", "hxxp://search.sweetim.com/search.asp?src=2&q=");
Présente : user_pref("extensions.BabylonToolbar.newTabUrl", "hxxp://search.babylon.com/?babsrc=NT_bb");
Présente : user_pref("extensions.enabledAddons", "belgiumeid@eid.belgium.be:1.0.12,ffxtlbr@babylon.com:1.1.8,plugin@yontoo.com:1.20.00,{4daac69c-cba7-45e2-9bc8-1044483d3352}:3.6.0.10,{64161300-e22b-11db-8314-0800200c9a66}:0.9.6.1,{872b5b88-9db5-4310-bdd0-ac189557e5f5}:3.6.0.10,{972ce4c6-7e08-4474-a285-3208198ce6fd}:6.0.2");
Présente : user_pref("extensions.enabledItems", "{64161300-e22b-11db-8314-0800200c9a66}:0.9.5.8,{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20,{872b5b88-9db5-4310-bdd0-ac189557e5f5}:3.3.3.2,{ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.1,{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21,belgiumeid@eid.belgium.be:1.0.11,{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22,{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23,engine@conduit.com:3.3.3.2,{4daac69c-cba7-45e2-9bc8-1044483d3352}:3.3.3.2,{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24,ffxtlbr@babylon.com:1.1.3,{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.16");
Présente : user_pref("extensions.installCache", "[{\"name\":\"app-global\",\"addons\":{\"belgiumeid@eid.belgium.be\":{\"descriptor\":\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\extensions\\\\belgiumeid@eid.belgium.be\",\"mtime\":1287328745413},\"{972ce4c6-7e08-4474-a285-3208198ce6fd}\":{\"descriptor\":\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\extensions\\\\{972ce4c6-7e08-4474-a285-3208198ce6fd}\",\"mtime\":1315384325504},\"{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\":{\"descriptor\":\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\extensions\\\\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\",\"mtime\":1272108856570},\"{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\":{\"descriptor\":\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\extensions\\\\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\",\"mtime\":1284737970351},\"{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\":{\"descriptor\":\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\extensions\\\\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\",\"mtime\":1287516053832},\"{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\":{\"descriptor\":\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\extensions\\\\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\",\"mtime\":1294645290684},\"{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\":{\"descriptor\":\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\extensions\\\\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\",\"mtime\":1303651541824},\"{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\":{\"descriptor\":\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\extensions\\\\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\",\"mtime\":1308652351777}}},{\"name\":\"app-profile\",\"addons\":{\"belgiumeid@eid.belgium.be\":{\"descriptor\":\"C:\\\\Users\\\\quentin\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\85wycfuf.default\\\\extensions\\\\belgiumeid@eid.belgium.be.xpi\",\"mtime\":1309422363693},\"ffxtlbr@babylon.com\":{\"descriptor\":\"C:\\\\Users\\\\quentin\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\85wycfuf.default\\\\extensions\\\\ffxtlbr@babylon.com.xpi\",\"mtime\":1309293480169},\"plugin@yontoo.com\":{\"descriptor\":\"C:\\\\Users\\\\quentin\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\85wycfuf.default\\\\extensions\\\\plugin@yontoo.com\",\"mtime\":1313580507471},\"{4daac69c-cba7-45e2-9bc8-1044483d3352}\":{\"descriptor\":\"C:\\\\Users\\\\quentin\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\85wycfuf.default\\\\extensions\\\\{4daac69c-cba7-45e2-9bc8-1044483d3352}\",\"mtime\":1313580542600},\"{64161300-e22b-11db-8314-0800200c9a66}\":{\"descriptor\":\"C:\\\\Users\\\\quentin\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\85wycfuf.default\\\\extensions\\\\{64161300-e22b-11db-8314-0800200c9a66}.xpi\",\"mtime\":1309794650362},\"{872b5b88-9db5-4310-bdd0-ac189557e5f5}\":{\"descriptor\":\"C:\\\\Users\\\\quentin\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\85wycfuf.default\\\\extensions\\\\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\",\"mtime\":1313580544534},\"{ACAA314B-EEBA-48e4-AD47-84E31C44796C}\":{\"descriptor\":\"C:\\\\Users\\\\quentin\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\85wycfuf.default\\\\extensions\\\\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}\",\"mtime\":1279021191636},\"{C3947F4E-8894-4C04-98E0-DF182C706DDF}\":{\"descriptor\":\"C:\\\\Users\\\\quentin\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\85wycfuf.default\\\\extensions\\\\{C3947F4E-8894-4C04-98E0-DF182C706DDF}\",\"mtime\":1313580520791}}}]");
Présente : user_pref("keyword.URL", "hxxp://search.babylon.com/?babsrc=toolbar2&q=");
Présente : user_pref("sweetim.toolbar.highlight.colors", "#FFFF00,#00FFE4,#5AFF00,#0087FF,#FFCC00,#FF00F0");
Présente : user_pref("sweetim.toolbar.logger.ConsoleHandler.MinReportLevel", "7");
Présente : user_pref("sweetim.toolbar.logger.FileHandler.FileName", "ff-toolbar.log");
Présente : user_pref("sweetim.toolbar.logger.FileHandler.MaxFileSize", "200000");
Présente : user_pref("sweetim.toolbar.logger.FileHandler.MinReportLevel", "7");
Présente : user_pref("sweetim.toolbar.mode.debug", "false");
Présente : user_pref("sweetim.toolbar.previous.browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=3&q={searchTerms}");
Présente : user_pref("sweetim.toolbar.previous.keyword.URL", "hxxp://search.myheritage.com/?orig=ds&q=");
Présente : user_pref("sweetim.toolbar.search.external", "<?xml version=\"1.0\"?><TOOLBAR><EXTERNAL_SEARCH engine=\"hxxp://*google.*\" param=\"q=\" /><EXTERNAL_SEARCH engine=\"hxxp://search.yahoo.com/*\" param=\"p=\" /><EXTERNAL_SEARCH engine=\"hxxp://search.sweetim.*\" param=\"q=\" /><EXTERNAL_SEARCH engine=\"hxxp://*.live.*/*\" param=\"q=\" /><EXTERNAL_SEARCH engine=\"hxxp://*youtube.com/\" param=\"search_query=\" /><EXTERNAL_SEARCH engine=\"hxxp://*.ebay.*/search/*\" param=\"satitle=\" /><EXTERNAL_SEARCH engine=\"hxxp://*.amazon.com/s/*\" param=\"field-keywords=\" /></TOOLBAR>");
Présente : user_pref("sweetim.toolbar.search.history.capacity", "10");
Présente : user_pref("sweetim.toolbar.simapp_id", "{41EF11BF-C8F4-11DF-A592-0024BEC73861}");
Présente : user_pref("sweetim.toolbar.urls.homepage", "hxxp://home.sweetim.com");
Présente : user_pref("sweetim.toolbar.version", "1.0.0.10");

-\\ Google Chrome v [Impossible d'obtenir la version]

Fichier : C:\Users\quentin\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Le fichier ne contient aucune entrée illégitime.

*************************

AdwCleaner[R1].txt - [39523 octets] - [11/09/2011 23:29:54]

########## EOF - C:\AdwCleaner[R1].txt - [39652 octets] ##########

[Del-crosseur]

Bonjour ,

Relance AdwCleaner puis cette fois si choisit "Suppression"
Poste-moi le rapport

Bonne journée.

[cwbg]

voila le rapport:

# AdwCleaner v1.305 - Rapport créé le 12/09/2011 à 12:44:12
# Mis à jour le 07/09/11 à 19h par Xplode
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
# Nom d'utilisateur : quentin - QUENTIN-VAIO (Administrateur)
# Exécuté depuis : C:\Users\quentin\Downloads\adwcleaner0.exe
# Option [Suppression]


***** [KillNav] *****

# firefox.exe [PID:5808] -> Tué

***** [Processus] *****


***** [Services] *****


***** [Fichiers / Dossiers] *****

Dossier Supprimé : C:\ProgramData\~0
Dossier Supprimé : C:\Program Files (x86)\BabylonToolbar
Dossier Supprimé : C:\Users\quentin\AppData\Roaming\Mozilla\Firefox\Profiles\85wycfuf.default\Conduit
Dossier Supprimé : C:\Users\quentin\AppData\Roaming\Mozilla\Firefox\Profiles\85wycfuf.default\ConduitEngine
Fichier Supprimé : C:\Users\quentin\AppData\Roaming\Mozilla\Firefox\Profiles\85wycfuf.default\searchplugins\askcom.xml
Fichier Supprimé : C:\Users\quentin\AppData\Roaming\Mozilla\Firefox\Profiles\85wycfuf.default\searchplugins\conduit.xml

***** [Registre] *****

Clé Supprimée : HKCU\Software\BabylonToolbar
Clé Supprimée : HKCU\Software\Offerbox
Clé Supprimée : HKCU\Software\AppDataLow\Software\PriceGong
Clé Supprimée : HKLM\SOFTWARE\BabylonToolbar
Clé Supprimée : HKLM\SOFTWARE\Classes\Babylon.dskBnd
Clé Supprimée : HKLM\SOFTWARE\Classes\Babylon.dskBnd.1
Clé Supprimée : HKLM\SOFTWARE\Classes\bbylnApp.appCore
Clé Supprimée : HKLM\SOFTWARE\Classes\bbylnApp.appCore.1
Clé Supprimée : HKLM\SOFTWARE\Classes\Conduit.Engine
Clé Supprimée : HKLM\SOFTWARE\Classes\escort.escortIEPane
Clé Supprimée : HKLM\SOFTWARE\Classes\escort.escrtBtn.1
Clé Supprimée : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc
Clé Supprimée : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc.1
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98DB}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{C86FF9FA-AEED-451B-A9CC-39A53173AE2E}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{291BCCC1-6890-484a-89D3-318C928DAC1B}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{97F2FF5B-260C-4ccf-834A-2DDA4E29E39E}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{B8276A94-891D-453C-9FF3-715C042A2575}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{FFB9ADCB-8C79-4C29-81D3-74D46A93D370}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{6E8BF012-2C85-4834-B10A-1B31AF173D70}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar

***** [Registre (64 bits)] *****

[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{6612AFDD-34AD-4B89-A236-7E6D07C3FDCD}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
[x64] Clé Supprimée : HKLM64\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}

***** [Navigateurs] *****

-\\ Internet Explorer v8.0.7601.17514

Remplacé : [HKCU\..\Main - Start Page] = hxxp://isearch.babylon.com/?babsrc=HP_s ... 23142a30ad --> hxxp://www.google.fr

-\\ Mozilla Firefox v6.0.2 (fr)

Profil : 85wycfuf.default
Fichier : C:\Users\quentin\AppData\Roaming\Mozilla\Firefox\Profiles\85wycfuf.default\prefs.js

Supprimée : user_pref("CT2269050..clientLogIsEnabled", true);
Supprimée : user_pref("CT2269050..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Supprimée : user_pref("CT2269050..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Supprimée : user_pref("CT2269050.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Supprimée : user_pref("CT2269050.AppTrackingLastCheckTime", "Sat Apr 02 2011 13:33:09 GMT+0200");
Supprimée : user_pref("CT2269050.CTID", "CT2269050");
Supprimée : user_pref("CT2269050.CurrentServerDate", "2-4-2011");
Supprimée : user_pref("CT2269050.DialogsAlignMode", "LTR");
Supprimée : user_pref("CT2269050.DialogsGetterLastCheckTime", "Sat Apr 02 2011 13:32:59 GMT+0200");
Supprimée : user_pref("CT2269050.DownloadReferralCookieData", "");
Supprimée : user_pref("CT2269050.EMailNotifierPollDate", "Sat Apr 02 2011 13:32:58 GMT+0200");
Supprimée : user_pref("CT2269050.FirstServerDate", "14-7-2010");
Supprimée : user_pref("CT2269050.FirstTime", true);
Supprimée : user_pref("CT2269050.FirstTimeFF3", true);
Supprimée : user_pref("CT2269050.FirstTimeSettingsDone", true);
Supprimée : user_pref("CT2269050.FixPageNotFoundErrors", true);
Supprimée : user_pref("CT2269050.GroupingServerCheckInterval", 1440);
Supprimée : user_pref("CT2269050.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Supprimée : user_pref("CT2269050.HasUserGlobalKeys", true);
Supprimée : user_pref("CT2269050.Initialize", true);
Supprimée : user_pref("CT2269050.InitializeCommonPrefs", true);
Supprimée : user_pref("CT2269050.InstallationAndCookieDataSentCount", 3);
Supprimée : user_pref("CT2269050.InstallationType", "UnknownIntegration");
Supprimée : user_pref("CT2269050.InstalledDate", "Wed Jul 14 2010 12:58:08 GMT+0200");
Supprimée : user_pref("CT2269050.InvalidateCache", false);
Supprimée : user_pref("CT2269050.IsGrouping", false);
Supprimée : user_pref("CT2269050.IsMulticommunity", false);
Supprimée : user_pref("CT2269050.IsOpenThankYouPage", false);
Supprimée : user_pref("CT2269050.IsOpenUninstallPage", false);
Supprimée : user_pref("CT2269050.LanguagePackLastCheckTime", "Sat Apr 02 2011 13:32:59 GMT+0200");
Supprimée : user_pref("CT2269050.LanguagePackReloadIntervalMM", 1440);
Supprimée : user_pref("CT2269050.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Supprimée : user_pref("CT2269050.LastLogin_2.7.0.14", "Mon Feb 14 2011 21:49:49 GMT+0100");
Supprimée : user_pref("CT2269050.LastLogin_3.3.3.2", "Sat Apr 02 2011 13:32:59 GMT+0200");
Supprimée : user_pref("CT2269050.LatestVersion", "3.3.3.2");
Supprimée : user_pref("CT2269050.Locale", "en");
Supprimée : user_pref("CT2269050.LoginCache", 4);
Supprimée : user_pref("CT2269050.MCDetectTooltipHeight", "83");
Supprimée : user_pref("CT2269050.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Supprimée : user_pref("CT2269050.MCDetectTooltipWidth", "295");
Supprimée : user_pref("CT2269050.RadioIsPodcast", false);
Supprimée : user_pref("CT2269050.RadioLastCheckTime", "Sat Apr 02 2011 13:32:59 GMT+0200");
Supprimée : user_pref("CT2269050.RadioLastUpdateIPServer", "3");
Supprimée : user_pref("CT2269050.RadioLastUpdateServer", "129132338014870000");
Supprimée : user_pref("CT2269050.RadioMediaID", "12473383");
Supprimée : user_pref("CT2269050.RadioMediaType", "Media Player");
Supprimée : user_pref("CT2269050.RadioMenuSelectedID", "EBRadioMenu_CT226905012473383");
Supprimée : user_pref("CT2269050.RadioStationName", "Hotmix%20108");
Supprimée : user_pref("CT2269050.RadioStationURL", "hxxp://67.202.67.18:8082");
Supprimée : user_pref("CT2269050.SavedHomepage", "chrome://speeddial/content/speeddial.xul");
Supprimée : user_pref("CT2269050.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT2269050&octid=EB_ORIGINAL_CTID&SearchSource=1");
Supprimée : user_pref("CT2269050.SearchFromAddressBarIsInit", true);
Supprimée : user_pref("CT2269050.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&q=");
Supprimée : user_pref("CT2269050.SearchInNewTabEnabled", true);
Supprimée : user_pref("CT2269050.SearchInNewTabIntervalMM", 1440);
Supprimée : user_pref("CT2269050.SearchInNewTabLastCheckTime", "Sat Apr 02 2011 13:33:00 GMT+0200");
Supprimée : user_pref("CT2269050.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
Supprimée : user_pref("CT2269050.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_TOOLBAR_ID");
Supprimée : user_pref("CT2269050.ServiceMapLastCheckTime", "Sat Apr 02 2011 13:32:58 GMT+0200");
Supprimée : user_pref("CT2269050.SettingsCheckIntervalMin", 120);
Supprimée : user_pref("CT2269050.SettingsLastCheckTime", "Sat Apr 02 2011 13:32:58 GMT+0200");
Supprimée : user_pref("CT2269050.SettingsLastUpdate", "1300785496");
Supprimée : user_pref("CT2269050.ThirdPartyComponentsInterval", 504);
Supprimée : user_pref("CT2269050.ThirdPartyComponentsLastCheck", "Sat Apr 02 2011 13:32:58 GMT+0200");
Supprimée : user_pref("CT2269050.ThirdPartyComponentsLastUpdate", "1277823092");
Supprimée : user_pref("CT2269050.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2269050");
Supprimée : user_pref("CT2269050.UserID", "UN47929469535428004");
Supprimée : user_pref("CT2269050.ValidationData_Toolbar", 2);
Supprimée : user_pref("CT2269050.WeatherNetwork", "");
Supprimée : user_pref("CT2269050.WeatherPollDate", "Sat Apr 02 2011 13:33:00 GMT+0200");
Supprimée : user_pref("CT2269050.WeatherUnit", "C");
Supprimée : user_pref("CT2269050.alertChannelId", "666138");
Supprimée : user_pref("CT2269050.clientLogIsEnabled", true);
Supprimée : user_pref("CT2269050.clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Supprimée : user_pref("CT2269050.generalConfigFromLogin", "{\"SocialDomains\":\"social.conduit.com;apps.conduit.com\"}");
Supprimée : user_pref("CT2269050.globalFirstTimeInfoLastCheckTime", "Sat Apr 02 2011 13:32:59 GMT+0200");
Supprimée : user_pref("CT2269050.isAppTrackingManagerOn", true);
Supprimée : user_pref("CT2269050.myStuffEnabled", true);
Supprimée : user_pref("CT2269050.myStuffPublihserMinWidth", 400);
Supprimée : user_pref("CT2269050.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Supprimée : user_pref("CT2269050.myStuffServiceIntervalMM", 1440);
Supprimée : user_pref("CT2269050.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Supprimée : user_pref("CT2269050.oldAppsList", "128834881989343894,128834881989343895,129391330693125668,1195972076538955800,4064511679983222482,129121052374999726,129023235807856892,1000082,129351672002618989,129351776130744254,1000034,1000234,1000080,1000,1001,1002,1003,1004,1005,1006,1007,1008,1009,1010,1011,1012");
Supprimée : user_pref("CT2269050.testingCtid", "");
Supprimée : user_pref("CT2269050.toolbarAppMetaDataLastCheckTime", "Sat Apr 02 2011 13:32:59 GMT+0200");
Supprimée : user_pref("CT2269050.toolbarContextMenuLastCheckTime", "Sat Apr 02 2011 13:32:59 GMT+0200");
Supprimée : user_pref("CT2269050.uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Supprimée : user_pref("CT2542115..clientLogIsEnabled", true);
Supprimée : user_pref("CT2542115..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
Supprimée : user_pref("CT2542115..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
Supprimée : user_pref("CT2542115.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
Supprimée : user_pref("CT2542115.CTID", "CT2542115");
Supprimée : user_pref("CT2542115.CurrentServerDate", "7-3-2011");
Supprimée : user_pref("CT2542115.DialogsAlignMode", "LTR");
Supprimée : user_pref("CT2542115.DialogsGetterLastCheckTime", "Mon Mar 07 2011 13:11:52 GMT+0100");
Supprimée : user_pref("CT2542115.DownloadReferralCookieData", "");
Supprimée : user_pref("CT2542115.EMailNotifierPollDate", "Mon Mar 07 2011 18:30:52 GMT+0100");
Supprimée : user_pref("CT2542115.FeedLastCount3702671119025834822", 509);
Supprimée : user_pref("CT2542115.FeedPollDate129255209834915761", "Mon Mar 07 2011 17:44:52 GMT+0100");
Supprimée : user_pref("CT2542115.FeedPollDate129255209834915767", "Mon Mar 07 2011 17:44:52 GMT+0100");
Supprimée : user_pref("CT2542115.FeedPollDate129255209834915773", "Mon Mar 07 2011 17:44:52 GMT+0100");
Supprimée : user_pref("CT2542115.FeedPollDate129255209834915779", "Mon Mar 07 2011 17:44:52 GMT+0100");
Supprimée : user_pref("CT2542115.FeedPollDate129255209834915785", "Mon Mar 07 2011 17:44:52 GMT+0100");
Supprimée : user_pref("CT2542115.FeedPollDate129255209834915791", "Mon Mar 07 2011 17:44:52 GMT+0100");
Supprimée : user_pref("CT2542115.FeedPollDate129255209834915797", "Mon Mar 07 2011 17:44:52 GMT+0100");
Supprimée : user_pref("CT2542115.FeedPollDate129255209834915803", "Mon Mar 07 2011 17:44:52 GMT+0100");
Supprimée : user_pref("CT2542115.FeedPollDate129255209834915809", "Mon Mar 07 2011 17:44:52 GMT+0100");
Supprimée : user_pref("CT2542115.FeedPollDate129255209834915815", "Mon Mar 07 2011 17:44:52 GMT+0100");
Supprimée : user_pref("CT2542115.FeedPollDate129255209834915821", "Mon Mar 07 2011 17:44:52 GMT+0100");
Supprimée : user_pref("CT2542115.FeedPollDate129255209834915827", "Mon Mar 07 2011 17:44:53 GMT+0100");
Supprimée : user_pref("CT2542115.FeedPollDate129255209834915833", "Mon Mar 07 2011 17:44:53 GMT+0100");
Supprimée : user_pref("CT2542115.FeedPollDate129255209834915839", "Mon Mar 07 2011 17:44:53 GMT+0100");
Supprimée : user_pref("CT2542115.FeedPollDate129255209834915845", "Mon Mar 07 2011 17:44:53 GMT+0100");
Supprimée : user_pref("CT2542115.FeedPollDate129255209834915851", "Mon Mar 07 2011 17:44:53 GMT+0100");
Supprimée : user_pref("CT2542115.FeedPollDate129255209834915857", "Mon Mar 07 2011 13:11:54 GMT+0100");
Supprimée : user_pref("CT2542115.FeedPollDate129255209834915863", "Mon Mar 07 2011 13:11:54 GMT+0100");
Supprimée : user_pref("CT2542115.FeedPollDate129255209834915869", "Mon Mar 07 2011 13:11:54 GMT+0100");
Supprimée : user_pref("CT2542115.FeedPollDate129255209834915875", "Mon Mar 07 2011 13:11:54 GMT+0100");
Supprimée : user_pref("CT2542115.FeedPollDate129255209834915881", "Mon Mar 07 2011 13:11:54 GMT+0100");
Supprimée : user_pref("CT2542115.FeedTTL129255209834915761", 30);
Supprimée : user_pref("CT2542115.FeedTTL129255209834915767", 2);
Supprimée : user_pref("CT2542115.FeedTTL129255209834915773", 2);
Supprimée : user_pref("CT2542115.FeedTTL129255209834915785", 2);
Supprimée : user_pref("CT2542115.FeedTTL129255209834915791", 30);
Supprimée : user_pref("CT2542115.FeedTTL129255209834915809", 5);
Supprimée : user_pref("CT2542115.FeedTTL129255209834915815", 5);
Supprimée : user_pref("CT2542115.FeedTTL129255209834915821", 5);
Supprimée : user_pref("CT2542115.FeedTTL129255209834915839", 5);
Supprimée : user_pref("CT2542115.FirstServerDate", "7-3-2011");
Supprimée : user_pref("CT2542115.FirstTime", true);
Supprimée : user_pref("CT2542115.FirstTimeFF3", true);
Supprimée : user_pref("CT2542115.FixPageNotFoundErrors", true);
Supprimée : user_pref("CT2542115.GroupingServerCheckInterval", 1440);
Supprimée : user_pref("CT2542115.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
Supprimée : user_pref("CT2542115.HasUserGlobalKeys", true);
Supprimée : user_pref("CT2542115.Initialize", true);
Supprimée : user_pref("CT2542115.InitializeCommonPrefs", true);
Supprimée : user_pref("CT2542115.InstallationAndCookieDataSentCount", 2);
Supprimée : user_pref("CT2542115.InstallationId", "Unknown");
Supprimée : user_pref("CT2542115.InstallationType", "ExternalIntegration");
Supprimée : user_pref("CT2542115.InstalledDate", "Mon Mar 07 2011 13:11:51 GMT+0100");
Supprimée : user_pref("CT2542115.InvalidateCache", false);
Supprimée : user_pref("CT2542115.IsGrouping", false);
Supprimée : user_pref("CT2542115.IsMulticommunity", false);
Supprimée : user_pref("CT2542115.IsOpenThankYouPage", false);
Supprimée : user_pref("CT2542115.IsOpenUninstallPage", true);
Supprimée : user_pref("CT2542115.LanguagePackLastCheckTime", "Mon Mar 07 2011 13:11:52 GMT+0100");
Supprimée : user_pref("CT2542115.LanguagePackReloadIntervalMM", 1440);
Supprimée : user_pref("CT2542115.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");
Supprimée : user_pref("CT2542115.LastLogin_3.3.2.1", "Mon Mar 07 2011 17:11:52 GMT+0100");
Supprimée : user_pref("CT2542115.LatestVersion", "3.2.5.2");
Supprimée : user_pref("CT2542115.Locale", "fr-fr");
Supprimée : user_pref("CT2542115.MCDetectTooltipHeight", "83");
Supprimée : user_pref("CT2542115.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
Supprimée : user_pref("CT2542115.MCDetectTooltipWidth", "295");
Supprimée : user_pref("CT2542115.RadioIsPodcast", false);
Supprimée : user_pref("CT2542115.RadioLastCheckTime", "Mon Mar 07 2011 13:11:53 GMT+0100");
Supprimée : user_pref("CT2542115.RadioLastUpdateIPServer", "3");
Supprimée : user_pref("CT2542115.RadioLastUpdateServer", "3");
Supprimée : user_pref("CT2542115.RadioMediaID", "9962");
Supprimée : user_pref("CT2542115.RadioMediaType", "Media Player");
Supprimée : user_pref("CT2542115.RadioMenuSelectedID", "EBRadioMenu_CT25421159962");
Supprimée : user_pref("CT2542115.RadioStationName", "California%20Rock");
Supprimée : user_pref("CT2542115.RadioStationURL", "hxxp://feedlive.net/california.asx");
Supprimée : user_pref("CT2542115.SHRINK_TOOLBAR", 1);
Supprimée : user_pref("CT2542115.SearchFromAddressBarIsInit", true);
Supprimée : user_pref("CT2542115.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2542115&q=");
Supprimée : user_pref("CT2542115.SearchInNewTabEnabled", true);
Supprimée : user_pref("CT2542115.SearchInNewTabIntervalMM", 1440);
Supprimée : user_pref("CT2542115.SearchInNewTabLastCheckTime", "Mon Mar 07 2011 13:11:52 GMT+0100");
Supprimée : user_pref("CT2542115.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
Supprimée : user_pref("CT2542115.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_TOOLBAR_ID");
Supprimée : user_pref("CT2542115.ServiceMapLastCheckTime", "Mon Mar 07 2011 13:11:50 GMT+0100");
Supprimée : user_pref("CT2542115.SettingsLastCheckTime", "Mon Mar 07 2011 15:44:48 GMT+0100");
Supprimée : user_pref("CT2542115.SettingsLastUpdate", "1297858921");
Supprimée : user_pref("CT2542115.ThirdPartyComponentsInterval", 504);
Supprimée : user_pref("CT2542115.ThirdPartyComponentsLastCheck", "Mon Mar 07 2011 13:11:50 GMT+0100");
Supprimée : user_pref("CT2542115.ThirdPartyComponentsLastUpdate", "1255348267");
Supprimée : user_pref("CT2542115.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2542115");
Supprimée : user_pref("CT2542115.UserID", "UN31261120871131342");
Supprimée : user_pref("CT2542115.ValidationData_Toolbar", 1);
Supprimée : user_pref("CT2542115.WeatherNetwork", "");
Supprimée : user_pref("CT2542115.WeatherPollDate", "Mon Mar 07 2011 18:14:53 GMT+0100");
Supprimée : user_pref("CT2542115.WeatherUnit", "C");
Supprimée : user_pref("CT2542115.alertChannelId", "935078");
Supprimée : user_pref("CT2542115.backendstorage._fb_dailyactivity", "31323939343939393133393331");
Supprimée : user_pref("CT2542115.backendstorage._fb_lifetimesent", "54525545");
Supprimée : user_pref("CT2542115.backendstorage.facebook_ctid_connect_send", "73656E646564");
Supprimée : user_pref("CT2542115.generalConfigFromLogin", "{\"SocialDomains\":\"social.conduit.com;apps.conduit.com\"}");
Supprimée : user_pref("CT2542115.globalFirstTimeInfoLastCheckTime", "Mon Mar 07 2011 17:11:52 GMT+0100");
Supprimée : user_pref("CT2542115.isAppTrackingManagerOn", true);
Supprimée : user_pref("CT2542115.myStuffEnabled", true);
Supprimée : user_pref("CT2542115.myStuffPublihserMinWidth", 400);
Supprimée : user_pref("CT2542115.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");
Supprimée : user_pref("CT2542115.myStuffServiceIntervalMM", 1440);
Supprimée : user_pref("CT2542115.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");
Supprimée : user_pref("CT2542115.testingCtid", "");
Supprimée : user_pref("CT2542115.toolbarAppMetaDataLastCheckTime", "Mon Mar 07 2011 13:11:52 GMT+0100");
Supprimée : user_pref("CT2542115.toolbarContextMenuLastCheckTime", "Mon Mar 07 2011 13:11:53 GMT+0100");
Supprimée : user_pref("CT2542115.usagesFlag", 2);
Supprimée : user_pref("CommunityToolbar.CantToolbarBeEngineOwner", "CT2542115,CT2269050");
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... /905414/BE", "\"0\"");
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root ... /930862/BE", "\"0\"");
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT2269050", "\"1280146508\"");
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-ser ... =CT2542115", "\"1294155866\"");
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... &locale=en", "wVmmvqqOMqrv5xct1cJIHg==");
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... cale=fr-fr", "xYQbfiyILJlwdgfyUaYSOw==");
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... &locale=en", "0uSPYx+Kl2jpu8sJZMeHjw==");
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... cale=fr-fr", "poKjTfHs0NrVUIalKI8jyg==");
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... &locale=en", "Dclc8oo4TTv7+mAkSlUSWg==");
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... cale=fr-fr", "QmycQXJXVyFVAzIiNllWhQ==");
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... &locale=en", "K4Vqu91uAzWURlxJRdXJOg==");
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-serv ... cale=fr-fr", "FvLcNm096R6J6zPIjtn70Q==");
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-ser ... rt/dlg.pkg", "\"803651ba7facb1:0\"");
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-se ... er=3.3.2.1", "\"0652eeacc6cb1:0\"");
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-se ... er=3.3.3.2", "\"0652eeacc6cb1:0\"");
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... er=3.2.5.2", "\"0652eeacc6cb1:0\"");
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-s ... er=3.3.3.2", "\"0652eeacc6cb1:0\"");
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/ ... =CT2269050", "\"634333631231730000\"");
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/toolbar/", "\"634333631231730000\"");
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services ... r=FF&lut=0", "634339976460000000");
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services ... =2/22/2011 6:54:06 PM", "634356118310000000");
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit. ... /CT2269050", "\"1300785496\"");
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit. ... /CT2542115", "\"1297858921\"");
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... ?locale=en", "\"634351849102130000\"");
Supprimée : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-serv ... cale=fr-fr", "\"634322696881670000\"");
Supprimée : user_pref("CommunityToolbar.EngineHiddenByUser", true);
Supprimée : user_pref("CommunityToolbar.EngineOwner", "ConduitEngine");
Supprimée : user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com");
Supprimée : user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine");
Supprimée : user_pref("CommunityToolbar.IsEngineShown", false);
Supprimée : user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Supprimée : user_pref("CommunityToolbar.OriginalEngineOwner", "ConduitEngine");
Supprimée : user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "engine@conduit.com");
Supprimée : user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "conduitengine");
Supprimée : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "${URL_SEARCHPAGE}");
Supprimée : user_pref("CommunityToolbar.ToolbarsList", "CT2269050,ConduitEngine,CT2542115");
Supprimée : user_pref("CommunityToolbar.ToolbarsList2", "CT2269050,CT2542115");
Supprimée : user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Fri May 13 2011 23:21:55 GMT+0200");
Supprimée : user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
Supprimée : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Thu Jun 16 2011 12:53:34 GMT+0200");
Supprimée : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Supprimée : user_pref("CommunityToolbar.alert.firstTimeAlertShown", true);
Supprimée : user_pref("CommunityToolbar.alert.locale", "en");
Supprimée : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
Supprimée : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Fri Jun 24 2011 20:43:42 GMT+0200");
Supprimée : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1305622559");
Supprimée : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Supprimée : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Supprimée : user_pref("CommunityToolbar.alert.showTrayIcon", false);
Supprimée : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Supprimée : user_pref("CommunityToolbar.alert.userId", "764d0e77-bec1-4c47-93e4-a16bf3669c67");
Supprimée : user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Sat Apr 02 2011 13:32:59 GMT+0200");
Supprimée : user_pref("CommunityToolbar.globalUserId", "3c5da12e-f87f-4e55-8d77-1253fa359871");
Supprimée : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
Supprimée : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
Supprimée : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2269050");
Supprimée : user_pref("ConduitEngine.AppTrackingLastCheckTime", "Mon May 09 2011 16:48:53 GMT+0200");
Supprimée : user_pref("ConduitEngine.CTID", "ConduitEngine");
Supprimée : user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Sat Apr 02 2011 13:33:19 GMT+0200");
Supprimée : user_pref("ConduitEngine.FirstServerDate", "03/02/2011 23");
Supprimée : user_pref("ConduitEngine.FirstTime", true);
Supprimée : user_pref("ConduitEngine.FirstTimeFF3", true);
Supprimée : user_pref("ConduitEngine.HasUserGlobalKeys", true);
Supprimée : user_pref("ConduitEngine.Initialize", true);
Supprimée : user_pref("ConduitEngine.InitializeCommonPrefs", true);
Supprimée : user_pref("ConduitEngine.InstalledDate", "Wed Mar 02 2011 21:41:26 GMT+0100");
Supprimée : user_pref("ConduitEngine.IsMulticommunity", false);
Supprimée : user_pref("ConduitEngine.IsOpenThankYouPage", false);
Supprimée : user_pref("ConduitEngine.IsOpenUninstallPage", true);
Supprimée : user_pref("ConduitEngine.LanguagePackLastCheckTime", "Sat Apr 02 2011 13:33:20 GMT+0200");
Supprimée : user_pref("ConduitEngine.LastLogin_3.3.2.1", "Mon Mar 07 2011 13:11:51 GMT+0100");
Supprimée : user_pref("ConduitEngine.LastLogin_3.3.3.2", "Sat Apr 02 2011 13:33:15 GMT+0200");
Supprimée : user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Supprimée : user_pref("ConduitEngine.SettingsLastCheckTime", "Sat Apr 02 2011 13:33:20 GMT+0200");
Supprimée : user_pref("ConduitEngine.UserID", "UN55450712522019192");
Supprimée : user_pref("ConduitEngine.componentAlertEnabled", false);
Supprimée : user_pref("ConduitEngine.engineLocale", "fr");
Supprimée : user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Sat Apr 02 2011 13:33:17 GMT+0200");
Supprimée : user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Sat Apr 02 2011 13:33:13 GMT+0200");
Supprimée : user_pref("ConduitEngine.initDone", true);
Supprimée : user_pref("ConduitEngine.isAppTrackingManagerOn", true);
Supprimée : user_pref("ConduitEngine.usagesFlag", 2);
Supprimée : user_pref("browser.search.defaulturl", "hxxp://search.sweetim.com/search.asp?src=2&q=");
Supprimée : user_pref("extensions.BabylonToolbar.newTabUrl", "hxxp://search.babylon.com/?babsrc=NT_bb");
Supprimée : user_pref("extensions.enabledAddons", "belgiumeid@eid.belgium.be:1.0.12,ffxtlbr@babylon.com:1.1.8,plugin@yontoo.com:1.20.00,{4daac69c-cba7-45e2-9bc8-1044483d3352}:3.6.0.10,{64161300-e22b-11db-8314-0800200c9a66}:0.9.6.1,{872b5b88-9db5-4310-bdd0-ac189557e5f5}:3.6.0.10,{972ce4c6-7e08-4474-a285-3208198ce6fd}:6.0.2");
Supprimée : user_pref("extensions.enabledItems", "{64161300-e22b-11db-8314-0800200c9a66}:0.9.5.8,{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20,{872b5b88-9db5-4310-bdd0-ac189557e5f5}:3.3.3.2,{ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.1,{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21,belgiumeid@eid.belgium.be:1.0.11,{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22,{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23,engine@conduit.com:3.3.3.2,{4daac69c-cba7-45e2-9bc8-1044483d3352}:3.3.3.2,{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24,ffxtlbr@babylon.com:1.1.3,{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.16");
Supprimée : user_pref("extensions.installCache", "[{\"name\":\"app-global\",\"addons\":{\"belgiumeid@eid.belgium.be\":{\"descriptor\":\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\extensions\\\\belgiumeid@eid.belgium.be\",\"mtime\":1287328745413},\"{972ce4c6-7e08-4474-a285-3208198ce6fd}\":{\"descriptor\":\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\extensions\\\\{972ce4c6-7e08-4474-a285-3208198ce6fd}\",\"mtime\":1315384325504},\"{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\":{\"descriptor\":\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\extensions\\\\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}\",\"mtime\":1272108856570},\"{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\":{\"descriptor\":\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\extensions\\\\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}\",\"mtime\":1284737970351},\"{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\":{\"descriptor\":\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\extensions\\\\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\",\"mtime\":1287516053832},\"{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\":{\"descriptor\":\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\extensions\\\\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}\",\"mtime\":1294645290684},\"{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\":{\"descriptor\":\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\extensions\\\\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\",\"mtime\":1303651541824},\"{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\":{\"descriptor\":\"C:\\\\Program Files (x86)\\\\Mozilla Firefox\\\\extensions\\\\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\",\"mtime\":1308652351777}}},{\"name\":\"app-profile\",\"addons\":{\"belgiumeid@eid.belgium.be\":{\"descriptor\":\"C:\\\\Users\\\\quentin\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\85wycfuf.default\\\\extensions\\\\belgiumeid@eid.belgium.be.xpi\",\"mtime\":1309422363693},\"ffxtlbr@babylon.com\":{\"descriptor\":\"C:\\\\Users\\\\quentin\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\85wycfuf.default\\\\extensions\\\\ffxtlbr@babylon.com.xpi\",\"mtime\":1309293480169},\"plugin@yontoo.com\":{\"descriptor\":\"C:\\\\Users\\\\quentin\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\85wycfuf.default\\\\extensions\\\\plugin@yontoo.com\",\"mtime\":1313580507471},\"{4daac69c-cba7-45e2-9bc8-1044483d3352}\":{\"descriptor\":\"C:\\\\Users\\\\quentin\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\85wycfuf.default\\\\extensions\\\\{4daac69c-cba7-45e2-9bc8-1044483d3352}\",\"mtime\":1313580542600},\"{64161300-e22b-11db-8314-0800200c9a66}\":{\"descriptor\":\"C:\\\\Users\\\\quentin\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\85wycfuf.default\\\\extensions\\\\{64161300-e22b-11db-8314-0800200c9a66}.xpi\",\"mtime\":1309794650362},\"{872b5b88-9db5-4310-bdd0-ac189557e5f5}\":{\"descriptor\":\"C:\\\\Users\\\\quentin\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\85wycfuf.default\\\\extensions\\\\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\",\"mtime\":1313580544534},\"{ACAA314B-EEBA-48e4-AD47-84E31C44796C}\":{\"descriptor\":\"C:\\\\Users\\\\quentin\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\85wycfuf.default\\\\extensions\\\\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}\",\"mtime\":1279021191636},\"{C3947F4E-8894-4C04-98E0-DF182C706DDF}\":{\"descriptor\":\"C:\\\\Users\\\\quentin\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\85wycfuf.default\\\\extensions\\\\{C3947F4E-8894-4C04-98E0-DF182C706DDF}\",\"mtime\":1313580520791}}}]");
Supprimée : user_pref("keyword.URL", "hxxp://search.babylon.com/?babsrc=toolbar2&q=");
Supprimée : user_pref("sweetim.toolbar.highlight.colors", "#FFFF00,#00FFE4,#5AFF00,#0087FF,#FFCC00,#FF00F0");
Supprimée : user_pref("sweetim.toolbar.logger.ConsoleHandler.MinReportLevel", "7");
Supprimée : user_pref("sweetim.toolbar.logger.FileHandler.FileName", "ff-toolbar.log");
Supprimée : user_pref("sweetim.toolbar.logger.FileHandler.MaxFileSize", "200000");
Supprimée : user_pref("sweetim.toolbar.logger.FileHandler.MinReportLevel", "7");
Supprimée : user_pref("sweetim.toolbar.mode.debug", "false");
Supprimée : user_pref("sweetim.toolbar.previous.browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=3&q={searchTerms}");
Supprimée : user_pref("sweetim.toolbar.previous.keyword.URL", "hxxp://search.myheritage.com/?orig=ds&q=");
Supprimée : user_pref("sweetim.toolbar.search.external", "<?xml version=\"1.0\"?><TOOLBAR><EXTERNAL_SEARCH engine=\"hxxp://*google.*\" param=\"q=\" /><EXTERNAL_SEARCH engine=\"hxxp://search.yahoo.com/*\" param=\"p=\" /><EXTERNAL_SEARCH engine=\"hxxp://search.sweetim.*\" param=\"q=\" /><EXTERNAL_SEARCH engine=\"hxxp://*.live.*/*\" param=\"q=\" /><EXTERNAL_SEARCH engine=\"hxxp://*youtube.com/\" param=\"search_query=\" /><EXTERNAL_SEARCH engine=\"hxxp://*.ebay.*/search/*\" param=\"satitle=\" /><EXTERNAL_SEARCH engine=\"hxxp://*.amazon.com/s/*\" param=\"field-keywords=\" /></TOOLBAR>");
Supprimée : user_pref("sweetim.toolbar.search.history.capacity", "10");
Supprimée : user_pref("sweetim.toolbar.simapp_id", "{41EF11BF-C8F4-11DF-A592-0024BEC73861}");
Supprimée : user_pref("sweetim.toolbar.urls.homepage", "hxxp://home.sweetim.com");
Supprimée : user_pref("sweetim.toolbar.version", "1.0.0.10");

-\\ Google Chrome v [Impossible d'obtenir la version]

Fichier : C:\Users\quentin\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Le fichier ne contient aucune entrée illégitime.

*************************

AdwCleaner[R1].txt - [39654 octets] - [11/09/2011 23:29:54]
AdwCleaner[S1].txt - [38166 octets] - [12/09/2011 12:44:12]

########## EOF - C:\AdwCleaner[S1].txt - [38295 octets] ##########

[Del-crosseur]

Bonsoir ,

Impec'

Comment se comporte le pc à présent ?

Fais ceci...

Télécharge ZHPDiag par Nicolas Coolman et sauvegarde-le sur le Bureau.

• Laisse toi guider lors de l'installation, le programme se lancera automatiquement à la fin.
• /!\Utilisateur de Vista et Seven : Clique droit sur le logo de ZHPdiag, « exécuter en tant qu'Administrateur »/!\
• Cliquer sur l'icône représentant une loupe (« Lancer le diagnostic »)
• Enregistrer le rapport sur le Bureau à l'aide de l'icône représentant une disquette
• Héberger le rapport ZHPDiag.txt sur un site tel que cijoint.fr, puis copier/coller dans ta prochaine réponse

Bonne soirée !

[cwbg]

salut voici le rapport:
Rapport de ZHPDiag v1.28.1346 par Nicolas Coolman, Update du 29/08/2011
Run by quentin at 12/09/2011 22:12:46
Web site : http://www.premiumorange.com/zeb-help-p ... pdiag.html


---\\ Web Browser
MSIE: Internet Explorer v8.0.7601.17514
MFIE: Mozilla Firefox 6.0.2 v6.0.2 (Defaut)

---\\ Windows Product Information
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : CGKHQ
Windows License : OK
~ Windows Remaining Initializations Number : 4
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: Intel64 Family 6 Model 37 Stepping 2, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4014 MB (36% free)
System Restore: Activé (Enable)
System drive C: has 381 GB (83%) free of 456 GB

---\\ Logged in mode
~ Computer Name: QUENTIN-VAIO
~ User Name: quentin
~ All Users Names: quentin, HomeGroupUser$, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\quentin\AppData\Roaming\
~ %Desktop% : C:\Users\quentin\Desktop\
~ %Favorites% : C:\Users\quentin\Favorites\
~ %LocalAppData% : C:\Users\quentin\AppData\Local\
~ %StartMenu% : C:\Users\quentin\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\system32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 381 Go of 456 Go)
D:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
E:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
F:\ CD-ROM drive (Not Inserted)
K:\ Floppy drive, Flash card reader, USB Key (Not Inserted)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK
~ Scan Security Center in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.28/04/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (....) (.14/07/2009 - 02:39:31.) -- C:\Windows\system32\rundll32.exe [45568]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\system32\Wininit.exe [129024]
[MD5.2DCA688631F71722B0B5E57F526BB2EB] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.16/06/2011 - 23:08:29.) -- C:\Windows\system32\wininet.dll [1188864]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.07/03/2011 - 14:25:30.) -- C:\Windows\system32\Winlogon.exe [390656]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\drivers\atapi.sys [24128]
[MD5.A2F74975097F52A00745F9637451FDD8] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.28/04/2011 - 07:41:34.) -- C:\Windows\system32\drivers\ntfs.sys [1659776]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.07/03/2011 - 14:27:26.) -- C:\Windows\system32\sppcomapi.dll [232448]
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - (....) (.07/03/2011 - 14:07:20.) -- C:\Windows\system32\fr-FR\user32.dll.mui [20480]
~ Scan Generic Processes in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/4
~ Mes musiques (My Musics) : 30/65
~ Mes Favoris (My Favorites) : 2/34
~ Mes Documents (My Documents) : 15/245
~ Mon Bureau (My Desktop) : 1/422
~ Menu demarrer (Programs) : 6/33
~ Scan Hidden Files in 00mn 01s



---\\ Processus lancés
[MD5.68BD15916EDFD537899CB6FFACB95C84] - (.Uniblue Systems Limited - Uniblue RegistryBooster Monitor.) -- C:\Program Files (x86)\Uniblue\RegistryBooster\rbmonitor.exe [25472] [PID.3536]
[MD5.7FCFB84409607A44C18340C017A5330E] - (.Uniblue Systems Limited - Uniblue SpeedUpMyPC Monitor.) -- C:\Program Files (x86)\Uniblue\SpeedUpMyPC\spmonitor.exe [25464] [PID.3576]
[MD5.D6FF25866D1A988DF777A8EF41E06E26] - (.Uniblue Systems Limited - Uniblue DriverScanner Monitor.) -- C:\Program Files (x86)\Uniblue\DriverScanner\dsmonitor.exe [25464] [PID.3584]
[MD5.31F3326DCDEA311FA2001ED097C54C85] - (.Sony Corporation - Pas de description.) -- C:\Program Files (x86)\SONY\Media Gallery\ElbServer.exe [72192] [PID.3932]
[MD5.7FBD299F14615E1CBC3BB48FB4061FB4] - (.Sony Ericsson - Sony Ericsson PC Companion.) -- C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe [433360] [PID.3948]
[MD5.896A1DB9A972AD2339C2E8569EC926D1] - (.Safer Networking Limited - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2144088] [PID.3964]
[MD5.4ADA227EC4E1BBAD144EAABF02221853] - (.Genie-soft - Genie Backup Agent.) -- C:\Program Files (x86)\LaCie\Genie Backup Assistant\GBMAgent.exe [189056] [PID.4252]
[MD5.FF2F087A24373FE1C6F756B99B6D5936] - (...) -- C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCompanionInfo.exe [74960] [PID.4260]
[MD5.13E7CFE8E269ED15E7FC9C3EBBCB7E2B] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696] [PID.3916]
[MD5.9FD3F01330AFE216018528577393C9F0] - (.Visicom Media Inc. (Powered by Panda Securi - Visicom Media Anti-Phishing Domain Advisor.) -- C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe [223400] [PID.4288]
[MD5.33BFCE71F407F24E5DFDB7DD46CE2D6D] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [449584] [PID.4296]
[MD5.4D96F6F7508BDF46771262EEEA505F98] - (.Sony of America Corporation - VaioCare Window Listener Application.) -- C:\Program Files\Sony\VAIO Care\listener.exe [81016] [PID.4896]
[MD5.63346640E170B63970C093F720065DAB] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [924632] [PID.2376]
[MD5.7653CD0E8F2C0052185673B574DB699E] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [16856] [PID.908]
[MD5.890AFDB01B06D330E243DA92EE74318F] - (.Sony Corporation - VAIO Personalization Manager.) -- C:\Program Files\Sony\VAIO Personalization Manager\VpmLM.exe [214312] [PID.2364]
[MD5.7F47D3ED7FB348C36CA710846FFB2F5E] - (.NCH Software - Switch Sound File Converter.) -- C:\Users\quentin\Downloads\switchsetup.exe [513120] [PID.7556]
[MD5.F4681FAACA13A9E6E52676105FC2C782] - (.NCH Software - Switch Sound File Converter.) -- C:\Users\quentin\AppData\Local\Temp\n1s.exe [1320242] [PID.7684]
[MD5.F4681FAACA13A9E6E52676105FC2C782] - (.NCH Software - Switch Sound File Converter.) -- C:\Users\quentin\AppData\Local\Temp\n2s.exe [1320242] [PID.7396]
[MD5.F4681FAACA13A9E6E52676105FC2C782] - (.NCH Software - Switch Sound File Converter.) -- C:\Users\quentin\AppData\Local\Temp\n3s.exe [1320242] [PID.7968]
[MD5.A80C173AC5C75706BB74AE4D78F2A53D] - (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe [164864] [PID.7700]
[MD5.7914370AAC5CDE8DCAE1C674A6C90229] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [669696] [PID.796]
[MD5.B4837FE56D76B2E9EA90E5365CF6A2BE] - (.Avira GmbH - Antivirus Scheduler.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [136360] [PID.]
[MD5.ADC420616C501B45D26C0FD3EF1E54E4] - (.ArcSoft Inc. - ArcSoft Connect Service.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152] [PID.]
[MD5.DF5A3016052755C910A206058B4A1729] - (.Avira GmbH - Antivirus On-Access Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [269480] [PID.]
[MD5.B6911CB6436139AF4B65F0C26C0F69AD] - (.FSPro Labs - FSPro Labs Filter Service.) -- C:\Windows\SysWOW64\fsproflt.exe [142648] [PID.]
[MD5.213822072085B5BBAD9AF30AB577D817] - (.InterVideo - RegMgr Module.) -- C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe [112152] [PID.]
[MD5.627FA58ADC043704F9D14CA44340956F] - (.Sony Corporation - Device Information Provider.) -- c:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe [360224] [PID.]
[MD5.E7483BE1E7A6FB16FC9AD6B54F99DEE4] - (.Protexis Inc. - PsiService PsiService.) -- C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [185632] [PID.]
[MD5.442A13F395546F4564C377296D43B564] - (.Sony Corporation - VAIO Media plus Database Manager.) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe [70952] [PID.]
[MD5.63F6D08C54D5B3C1B12A6172032055C7] - (.ArcSoft, Inc. - MgiSvr.) -- C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [104960] [PID.]
[MD5.6B31C9CB94927DBEEB62E15275F4CC54] - (.Sony Corporation - VAIO Event Service (Service Module).) -- C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe [205168] [PID.]
[MD5.6A740F5FF3246C3BE3DD317299EFC88E] - (.Sony Corporation - VAIO Content Folder Watcher.) -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [642416] [PID.]
[MD5.10E212BFB7EAB152A64C1AAEC2F7F4E0] - (.Sony Corporation - VCM Intelligent Analyzing Manager.) -- C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [529776] [PID.]
[MD5.9D9B34B430B4DC683112F59C80D20AB8] - (.Sony Corporation - VCM Intelligent Network Service Manager.) -- C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe [361840] [PID.]
[MD5.A63DC5C2EA944E6657203E0C8EDEAF61] - (.Microsoft Corporation - COM Surrogate.) -- C:\Windows\SysWOW64\DllHost.exe [7168] [PID.]
[MD5.D8BEF4AC1EAC809DBDBD441D6CFF6C4C] - (.Sony Corporation - VAIO Entertainment Database Service.) -- C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe [206336] [PID.]
[MD5.660BF3255A1EB18ED803FD2FBA6AE400] - (.Intel Corporation - RAID Monitor.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe [354840] [PID.]
[MD5.556681BE668D71DC162391A45422B52C] - (.Sony Corporation - VAIO Media plus Digital Media Server.) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe [427304] [PID.]
[MD5.72B46103E4111439109ACF5882627C24] - (.Sony Corporation - VAIO Media plus Device Searcher.) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe [75048] [PID.]
[MD5.725B6E9CD1959271AC993DC035E1606D] - (.Sony Corporation - VAIO Media plus Playlist Manager.) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe [91432] [PID.]
[MD5.7CD368DFF5D7D4BA9F8F46F31EA8877D] - (.Sony Corporation - VAIO Event Service(Service Sub Module).) -- C:\Program Files (x86)\SONY\VAIO Event Service\VESMgrSub.exe [112488] [PID.]
[MD5.794D4B48DFB6E999537C7C3947863463] - (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [1153368] [PID.]
[MD5.98886C88A1CB13D61672AE2C638B7E1C] - (.Sony Corporation - VAIO Media plus Content Importer.) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe [120104] [PID.]
[MD5.37036C07983EF1024B2FF3C28AAE5700] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [366640] [PID.]
[MD5.D347D3ABE070AA09C22FC37121555D52] - (.Sony Corporation - VAIOCare.) -- C:\Program Files\Sony\VAIO Care\VCService.exe [44736] [PID.]
~ Scan Processes Running in 00mn 01s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\quentin\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] http://search.babylon.com
G0 - GCSP: Preference [User Data\Default][HomePage] http://search.babylon.com
G2 - GCE: Preference [User Data\Default] [dhkplhfnhceodhffomolpfigojocbpcb] Babylon Chrome OCR v.1.0 (Activé)
~ Scan Google Browser in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\quentin\AppData\Roaming\Mozilla\Firefox\Profiles\85wycfuf.default\prefs.js
C:\Users\quentin\AppData\Roaming\Mozilla\Firefox\Profiles\85wycfuf.default\user.js
M0 - MFSP: prefs.js [quentin - 85wycfuf.default] chrome://speeddial/content/speeddial.xul
M2 - MFEP: prefs.js [quentin - 85wycfuf.default\plugin@yontoo.com] [] Yontoo Layers v1.20.00 (.Yontoo LLC.)
M2 - MFEP: prefs.js [quentin - 85wycfuf.default\{4daac69c-cba7-45e2-9bc8-1044483d3352}] [] Softonic_France Community Toolbar v3.6.0.10 (.Conduit Ltd..)
M2 - MFEP: prefs.js [quentin - 85wycfuf.default\{872b5b88-9db5-4310-bdd0-ac189557e5f5}] [] DVDVideoSoftTB Community Toolbar v3.6.0.10 (.Conduit Ltd..)
M2 - MFEP: prefs.js [quentin - 85wycfuf.default\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}] [] DVDVideoSoft Menu v3.6.0.10 (.Copyright (C) 2010 DVDVideoSoft.)
M2 - MFEP: prefs.js [quentin - 85wycfuf.default\{C3947F4E-8894-4C04-98E0-DF182C706DDF}] [] Webblog v1.1 (.webblog.com.)
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - np-mswmp.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\np-mswmp.dll
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\NPOFF12.DLL
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.4.5".) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin7.dll
~ Scan Firefox Browser in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKUS\S-1-5-21-2228644646-3380076698-2093188786-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = ${url_searchpage}
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
R1 - HKUS\S-1-5-21-2228644646-3380076698-2093188786-1001\Software\Microsoft\Internet Explorer\Main,Search Page = ${url_searchpage}
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Scan Proxy management in 00mn 00s



---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2)
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe
~ Scan Keys in 00mn 00s



---\\ Redirection du fichier Hosts (O1)
~ Scan Hosts File in 00mn 05s



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: Windows Live ID Sign-in Helper [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) [64Bits] - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} Clé orpheline
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Yontoo Layers [64Bits] - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} . (.Yontoo LLC - Yontoo Layers Runtime.) -- C:\Program Files (x86)\Yontoo Layers Runtime\YontooIEClient.dll
~ Scan BHO in 00mn 00s



---\\ Applications démarrées par registre & par dossier (O4)
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jusched.exe
O4 - HKCU\..\Run: [UniblueRegistryBooster] . (.Uniblue Systems Limited - Uniblue Launcher.) -- C:\Program Files (x86)\Uniblue\RegistryBooster\launcher.exe
O4 - HKCU\..\Run: [Elbserver] . (.Sony Corporation - Pas de description.) -- C:\Program Files (x86)\Sony\Media Gallery\ElbServer.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [Sony Ericsson PC Companion] . (.Sony Ericsson - Sony Ericsson PC Companion.) -- C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] . (.Safer Networking Limited - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKLM\..\Wow6432Node\Run: [GBMLite8AgentLaCie] . (.Genie-soft - Genie Backup Agent.) -- C:\Program Files (x86)\LaCie\Genie Backup Assistant\GBMAgent.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Wow6432Node\Run: [Anti-phishing Domain Advisor] . (.Visicom Media Inc. (Powered by Panda Securi - Visicom Media Anti-Phishing Domain Advisor.) -- C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe
O4 - HKLM\..\Wow6432Node\Run: [Malwarebytes' Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-21-2228644646-3380076698-2093188786-1001\..\Run: [UniblueRegistryBooster] . (.Uniblue Systems Limited - Uniblue Launcher.) -- C:\Program Files (x86)\Uniblue\RegistryBooster\launcher.exe
O4 - HKUS\S-1-5-21-2228644646-3380076698-2093188786-1001\..\Run: [Elbserver] . (.Sony Corporation - Pas de description.) -- C:\Program Files (x86)\Sony\Media Gallery\ElbServer.exe
O4 - HKUS\S-1-5-21-2228644646-3380076698-2093188786-1001\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-2228644646-3380076698-2093188786-1001\..\Run: [Sony Ericsson PC Companion] . (.Sony Ericsson - Sony Ericsson PC Companion.) -- C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe
O4 - HKUS\S-1-5-21-2228644646-3380076698-2093188786-1001\..\Run: [SpybotSD TeaTimer] . (.Safer Networking Limited - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
~ Scan Application in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - Global Startup: C:\Users\quentin\Desktop\Audacity.lnk . (...) -- C:\Program Files (x86)\Audacity\audacity.exe
O4 - Global Startup: C:\Users\quentin\Desktop\CCleaner.lnk . (.Piriform Ltd.) -- C:\Program Files (x86)\CCleaner\CCleaner.exe
O4 - Global Startup: C:\Users\quentin\Desktop\Documalis Free Scanner.lnk . (.Scanpoint Software.) -- C:\Program Files (x86)\Documalis Free\FreeScanner\FreeScanner.exe
O4 - Global Startup: C:\Users\quentin\Desktop\DVDVideoSoft Free Studio.lnk . (.DVDVideoSoft.com Limited.) -- C:\Program Files (x86)\Common Files\DVDVideoSoft\FreeStudioManager.exe
O4 - Global Startup: C:\Users\quentin\Desktop\Lock Folder XP.lnk . (.Everstrike Software.) -- C:\Program Files (x86)\Lock Folder XP\LF30.exe
O4 - Global Startup: C:\Users\quentin\Desktop\Microsoft Office Word 2007.lnk . (...) -- C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe
O4 - Global Startup: C:\Users\quentin\Desktop\My Lockbox.lnk . (.FSPro Labs.) -- C:\Program Files\My Lockbox\mylbx.exe
O4 - Global Startup: C:\Users\quentin\Desktop\Need for Speed(TM) Hot Pursuit.lnk - Clé orpheline
O4 - Global Startup: C:\Users\quentin\Desktop\Notepad++.lnk . (.Don HO don.h@free.fr.) -- C:\Program Files (x86)\Notepad++\notepad++.exe
O4 - Global Startup: C:\Users\quentin\Desktop\Options d’alimentation - Raccourci.lnk - Clé orpheline
O4 - Global Startup: C:\Users\quentin\Desktop\Programmes et fonctionnalités - Raccourci.lnk - Clé orpheline
O4 - Global Startup: C:\Users\quentin\Desktop\Son - Raccourci.lnk - Clé orpheline
O4 - Global Startup: C:\Users\quentin\Desktop\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe
O4 - Global Startup: C:\Users\quentin\Desktop\TopOCR.lnk . (...) -- C:\Program Files (x86)\TopOCR\topocr.exe
O4 - Global Startup: C:\Users\quentin\Desktop\Uniblue RegistryBooster.lnk . (.Uniblue Systems Limited.) -- C:\Program Files (x86)\Uniblue\RegistryBooster\RegistryBooster.exe
O4 - Global Startup: C:\Users\quentin\Desktop\WebCam Companion 3.lnk . (.ArcSoft Inc..) -- C:\Program Files (x86)\ArcSoft\WebCam Companion 3\uWebCam.exe
O4 - Global Startup: C:\Users\quentin\Desktop\Wondershare Streaming Audio Recorder.lnk . (...) -- C:\Program Files (x86)\Wondershare\Streaming Audio Recorder\StreamingAudioRecorder.exe
O4 - Global Startup: C:\Users\quentin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\DriverScanner.lnk . (.Uniblue Systems Limited.) -- C:\Program Files (x86)\Uniblue\DriverScanner\Launcher.exe
O4 - Global Startup: C:\Users\quentin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Genie Backup Assistant.lnk . (.Genie-soft.) -- C:\Program Files (x86)\LaCie\Genie Backup Assistant\GBM8.exe
O4 - Global Startup: C:\Users\quentin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk . (.Google Inc..) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - Global Startup: C:\Users\quentin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk . (.Mozilla Corporation.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - Global Startup: C:\Users\quentin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\SpeedUpMyPC.lnk . (.Uniblue Systems Limited.) -- C:\Program Files (x86)\Uniblue\SpeedUpMyPC\Launcher.exe
O4 - Global Startup: C:\Users\quentin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk . (.Safer Networking Limited.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe
O4 - Global Startup: C:\Users\quentin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Uniblue RegistryBooster.lnk . (.Uniblue Systems Limited.) -- C:\Program Files (x86)\Uniblue\RegistryBooster\Launcher.exe
~ Scan Global Startup in 00mn 00s



---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8)
O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- c:\PROGRA~2\MICROS~1\Office12\EXCEL.exe
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... . (...) -- C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... . (...) -- C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
~ Scan IE Menu Contextuel in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 [64Bits] - {CCA281CA-C863-46ef-9331-5C8D4460577F} . (...) -- C:\Program Files\WIDCOMM\Bluetooth Software\bt_hot_icon.ico
~ Scan IE Extra Buttons in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll
O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
~ Scan Winsock in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{A898A5AE-97BA-43B9-8733-40A8BCD7DED9}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{BB8C9484-BDD0-485F-9085-847F9BF303D0}: DhcpNameServer = 0.255.112.147 1.2.3.4
O17 - HKLM\System\CS1\Services\Tcpip\..\{A898A5AE-97BA-43B9-8733-40A8BCD7DED9}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{BB8C9484-BDD0-485F-9085-847F9BF303D0}: DhcpNameServer = 0.255.112.147 1.2.3.4
O17 - HKLM\System\CS2\Services\Tcpip\..\{A898A5AE-97BA-43B9-8733-40A8BCD7DED9}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{BB8C9484-BDD0-485F-9085-847F9BF303D0}: DhcpNameServer = 0.255.112.147 1.2.3.4
~ Scan Domain in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: about [64Bits] - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: cdl [64Bits] - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: dvd [64Bits] - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: file [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ftp [64Bits] - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: gopher [64Bits] - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: http [64Bits] - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: https [64Bits] - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: javascript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: livecall [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: local [64Bits] - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: mailto [64Bits] - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: mhtml [64Bits] - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\system32\inetcomm.dll
O18 - Handler: mk [64Bits] - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Handler: ms-help [64Bits] - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Handler: ms-its [64Bits] - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll
O18 - Handler: ms-itss [64Bits] - {0A9007C0-4076-11D3-8789-0000F8105754} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\msitss.dll
O18 - Handler: msnim [64Bits] - {828030A1-22C1-4009-854F-8E305202313F} . (.Microsoft Corporation - Windows Live Messenger Protocol Handler Mod.) -- C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll
O18 - Handler: res [64Bits] - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: tv [64Bits] - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\msvidctl.dll
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Handler: wlmailhtml [64Bits] - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/octet-stream [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-complus [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\system32\mscoree.dll
O18 - Filter: deflate [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Filter: gzip [64Bits] - {8f6b0360-b80d-11d0-a9b3-006097942311} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\system32\urlmon.dll
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
~ Scan Protocole Additionnel in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ Scan SSODL in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: ArcSoft Connect Daemon (ACDaemon) . (.ArcSoft Inc. - ArcSoft Connect Service.) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) . (.Avira GmbH - Antivirus Scheduler.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) . (.Avira GmbH - Antivirus On-Access Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Bluetooth Service (btwdins) . (.Broadcom Corporation. - Bluetooth Support Server.) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Event Log Service.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: FSPro Filter Service (fsproflt) . (.FSPro Labs - FSPro Labs Filter Service.) - C:\Windows\SysWOW64\fsproflt.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) . (.Intel Corporation - RAID Monitor.) - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: IviRegMgr (IviRegMgr) . (.InterVideo - RegMgr Module.) - C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: PMBDeviceInfoProvider (PMBDeviceInfoProvider) . (.Sony Corporation - Device Information Provider.) - c:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) . (.Protexis Inc. - PsiService PsiService.) - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) . (.Intel(R) Corporation - Intel(R) PROSet/Wireless Registry Service.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Roxio Upnp Server 10 (Roxio Upnp Server 10) . (.Sonic Solutions - RoxioUpnpService10 Module.) - C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe
O23 - Service: VAIO Care Performance Service (SampleCollector) - Clé orpheline
O23 - Service: SBSD Security Center Service (SBSDWSCService) . (.Safer Networking Ltd. - Spybot-S&D Security Center integration.) - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: VAIO Media plus Content Importer (SOHCImp) . (.Sony Corporation - VAIO Media plus Content Importer.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
O23 - Service: VAIO Media plus Database Manager (SOHDBSvr) . (.Sony Corporation - VAIO Media plus Database Manager.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe
O23 - Service: VAIO Media plus Digital Media Server (SOHDms) . (.Sony Corporation - VAIO Media plus Digital Media Server.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
O23 - Service: VAIO Media plus Device Searcher (SOHDs) . (.Sony Corporation - VAIO Media plus Device Searcher.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
O23 - Service: VAIO Media plus Playlist Manager (SOHPlMgr) . (.Sony Corporation - VAIO Media plus Playlist Manager.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe
O23 - Service: CamMonitor (uCamMonitor) . (.ArcSoft, Inc. - MgiSvr.) - C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
O23 - Service: VAIO Event Service (VAIO Event Service) . (.Sony Corporation - VAIO Event Service (Service Module).) - C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe
O23 - Service: VAIO Content Folder Watcher (VCFw) . (.Sony Corporation - VAIO Content Folder Watcher.) - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
O23 - Service: VAIO Content Metadata Intelligent Analyzing Manager (VcmIAlzMgr) . (.Sony Corporation - VCM Intelligent Analyzing Manager.) - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
O23 - Service: VAIO Content Metadata Intelligent Network Service Manager (VcmINSMgr) . (.Sony Corporation - VCM Intelligent Network Service Manager.) - C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
O23 - Service: VSNService (VSNService) . (.Sony Corporation - VAIO Smart Network Service.) - C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) . (.Sony Corporation - VAIO Entertainment Database Service.) - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
~ Scan Services in 00mn 00s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Scan Desktop Component in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\DriverScanner.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\RegistryBooster.job
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\SpeedUpMyPC.job
[MD5.D6FF25866D1A988DF777A8EF41E06E26] [APT] [DriverScanner] (.Uniblue Systems Limited.) -- C:\Program Files (x86)\Uniblue\DriverScanner\dsmonitor.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.68BD15916EDFD537899CB6FFACB95C84] [APT] [RegistryBooster] (.Uniblue Systems Limited.) -- C:\Program Files (x86)\Uniblue\RegistryBooster\rbmonitor.exe
[MD5.7FCFB84409607A44C18340C017A5330E] [APT] [SpeedUpMyPC] (.Uniblue Systems Limited.) -- C:\Program Files (x86)\Uniblue\SpeedUpMyPC\spmonitor.exe
[MD5.7B43567B4C32AD7ADED537CD3B1342B9] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
[MD5.5111C2975C5FB818EF6CA7EC36BF818E] [APT] [Level4Daily] (.Sony Corporation.) -- C:\Program Files (x86)\Sony\Setting Utility Series\WBCBatteryCare.exe
[MD5.5111C2975C5FB818EF6CA7EC36BF818E] [APT] [Level4Month] (.Sony Corporation.) -- C:\Program Files (x86)\Sony\Setting Utility Series\WBCBatteryCare.exe
[MD5.6FF06B82464719EB9B2BB8C5708797ED] [APT] [VAIO Gate] (.Sony Corporation.) -- C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe
[MD5.84A792BAFF0B6D946A36C7AE96686890] [APT] [VPM Logon Start] (.Sony Corporation.) -- C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
[MD5.84A792BAFF0B6D946A36C7AE96686890] [APT] [VPM Session Change] (.Sony Corporation.) -- C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
[MD5.84A792BAFF0B6D946A36C7AE96686890] [APT] [VPM Unlock] (.Sony Corporation.) -- C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
[MD5.890AFDB01B06D330E243DA92EE74318F] [APT] [VpmLM Task Music quentin] (.Sony Corporation.) -- C:\Program Files\Sony\VAIO Personalization Manager\VpmLM.exe
[MD5.AA8DC44463E3AEF6D91C1DD300D2DC35] [APT] [VAIO Update 5] (.Sony Corporation.) -- C:\Program Files\Sony\VAIO Update 5\VAIOUpdt.exe
~ Scan Scheduled Task in 00mn 04s



---\\ Pilotes lancés au démarrage (O41)
O41 - Driver: C:\Windows\system32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (avipbb) . (.Avira GmbH - Avira Driver for Security Enhancement.) - C:\Windows\system32\DRIVERS\avipbb.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\drivers\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\system32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\system32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\system32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\system32\drivers\discache.sys
O41 - Driver: McAfee Inc. mfehidk (mfehidk) . (.McAfee, Inc. - Host Intrusion Detection Link Driver.) - C:\Windows\system32\drivers\mfehidk.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\system32\DRIVERS\netbios.sys
O41 - Driver: (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\system32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\system32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\system32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\system32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\system32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\system32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\system32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\system32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\system32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\system32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\system32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\system32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\system32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\system32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\system32\DRIVERS\wfplwf.sys
~ Scan Drivers in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM] -- Adobe AIR
O42 - Logiciel: Adobe Community Help - (.Adobe Systems Incorporated.) [HKLM] -- chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 10 Plugin - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player Plugin
O42 - Logiciel: Akamai NetSession Interface - (.Pas de propriétaire.) [HKLM] -- Akamai
O42 - Logiciel: Anti-phishing Domain Advisor - (.Visicom Media Inc. (Powered by Panda Security).) [HKLM] -- Anti-phishing Domain Advisor
O42 - Logiciel: ArcSoft Magic-i Visual Effects 2 - (.ArcSoft.) [HKLM] -- {7BB90344-0647-468E-925A-7F69F7983421}
O42 - Logiciel: ArcSoft WebCam Companion 3 - (.ArcSoft.) [HKLM] -- {DE8AAC73-6D8D-483E-96EA-CAEDDADB9079}
O42 - Logiciel: Audacity 1.2.6 - (.Pas de propriétaire.) [HKLM] -- Audacity_is1
O42 - Logiciel: AutoCAD 2011 - Français - (.Autodesk.) [HKLM] -- AutoCAD 2011 - Français
O42 - Logiciel: AutoCAD 2011 - Français - (.Autodesk.) [HKLM] -- {5783F2D7-9001-040C-0102-0060B0CE6BBA}
O42 - Logiciel: Autodesk Design Review 2011 - (.Autodesk, Inc..) [HKLM] -- Autodesk Design Review 2011
O42 - Logiciel: Avira AntiVir Personal - Free Antivirus - (.Avira GmbH.) [HKLM] -- Avira AntiVir Desktop
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: Documalis Free Scanner 1.0 - (.Scanpoint Software.) [HKLM] -- Documalis Free Scanner 1.01.0
O42 - Logiciel: Feu Vert pour le permis de conduire - (.Pas de propriétaire.) [HKLM] -- {26284E06-C005-4C6A-ADA6-1E99D843B08E}
O42 - Logiciel: GIMP 2.6.10 - (.The GIMP Team.) [HKLM] -- WinGimp-2.0_is1
O42 - Logiciel: Genie Backup Assistant - (.LaCie.) [HKLM] -- {C9A162C1-031F-4EBF-A3E6-C45F7FCCBB9E}_is1
O42 - Logiciel: Gestion de l’alimentation de VAIO - (.Sony Corporation.) [HKLM] -- {803E4FA5-A940-4420-B89D-A8BC2E160247}
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome
O42 - Logiciel: Intel PROSet Wireless - (.Pas de propriétaire.) [HKLM] -- ProInst
O42 - Logiciel: Intel(R) Turbo Boost Technology Driver - (.Intel Corporation.) [HKLM] -- {D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}
O42 - Logiciel: Intel® Matrix Storage Manager - (.Intel Corporation.) [HKLM] -- {9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}
O42 - Logiciel: Lock Folder XP - (.Everstrike Software.) [HKLM] -- {57CDBAE6-0896-4E78-88F0-C673E4BB44FD}
O42 - Logiciel: Logiciel Intel(R) PROSet/Wireless WiFi - (.Intel Corporation.) [HKLM] -- {CCAFF072-4DDB-4846-963D-15F02A8E9472}
O42 - Logiciel: Logiciel d'archivage WinRAR - (.Pas de propriétaire.) [HKLM] -- WinRAR archiver
O42 - Logiciel: Malwarebytes' Anti-Malware version 1.51.1.1800 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1
O42 - Logiciel: Media Gallery - (.Sony Corporation.) [HKLM] -- {DD88F979-FA58-41AC-980C-A6E1A82B61D9}
O42 - Logiciel: Microsoft .NET Framework 4 Client Profile - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-002A-0000-1000-0000000FF1CE}_PROPLUS_{E64BA721-2310-4B55-BE5A-2925F9706192}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-002A-040C-1000-0000000FF1CE}_PROPLUS_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}_PROPLUS_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}
O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_PROPLUS_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}
O42 - Logiciel: Microsoft Office Professional Plus 2007 - (.Microsoft Corporation.) [HKLM] -- PROPLUS
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_PROPLUS_{14809F99-C601-4D4A-9391-F1E8FAA964C5}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_PROPLUS_{A0516415-ED61-419A-981D-93596DA74165}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_PROPLUS_{F580DDD5-8D37-4998-968E-EBB76BB86787}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_PROPLUS_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}
O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_PROPLUS_{187308AB-5FA7-4F14-9AB9-D290383A10D9}
O42 - Logiciel: Module linguistique Microsoft .NET Framework 4 Client Profile FRA - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 4 Client Profile FRA Language Pack
O42 - Logiciel: Mozilla Firefox 6.0.2 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 6.0.2 (x86 fr)
O42 - Logiciel: My Lockbox 2.4 - (.Pas de propriétaire.) [HKLM] -- My Lockbox_is1
O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Drivers
O42 - Logiciel: Notepad++ - (.Pas de propriétaire.) [HKLM] -- Notepad++
O42 - Logiciel: Outil de restauration de données VAIO - (.Sony Corporation.) [HKLM] -- {57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}
O42 - Logiciel: PMB VAIO Edition plug-in (Click to Disc) - (.Sony Corporation.) [HKLM] -- InstallShield_{4DCEA9C1-4D6E-41BF-A854-28CFA8B56DBF}
O42 - Logiciel: PMB VAIO Edition plug-in (VAIO Movie Story) - (.Sony Corporation.) [HKLM] -- InstallShield_{B25563A0-41F4-4A81-A6C1-6DBC0911B1F3}
O42 - Logiciel: Package de pilotes Windows - Fedict SmartCard (12/08/2009 4.0.0.2) - (.Fedict.) [HKLM] -- E49DC3242147B1CE26E782EE1D1DF1746618B4EF
O42 - Logiciel: Paramètres de contrôle du contenu VAIO - (.Sony Corporation.) [HKLM] -- {23825B69-36DF-4DAD-9CFD-118D11D80F16}
O42 - Logiciel: Paramètres des fonctions d'origine VAIO - (.Sony Corporation.) [HKLM] -- {A63E7492-A0BC-4BB9-89A7-352965222380}
O42 - Logiciel: Prise en charge du transfert VAIO - (.Sony Corporation.) [HKLM] -- {5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Roxio Easy Media Creator 10 LJ - (.Roxio.) [HKLM] -- {537BF16E-7412-448C-95D8-846E85A1D817}
O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288621) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5C497F0B-2061-4CC9-A61C-6B45B867354D}
O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2288931) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{CD769337-C8AC-46DB-A7DC-643E50089263}
O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2345043) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{536FB502-775F-4494-BACE-C02CC90B7A5B}
O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2509488) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{AD0DE453-0804-4495-9C91-33D0F9AA5463}
O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08}
O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7F207DCA-3399-40CB-A968-6E5991B1421A}
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2160841
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2446708
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2478663
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2518870
O42 - Logiciel: Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) - (.Microsoft Corporation.) [HKLM] -- {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2539636
O42 - Logiciel: Security Update for Microsoft Office 2007 System (KB2541012) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{CD907315-705A-4475-A1A0-2A1245803E4D}
O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1142CCEC-ACA9-484B-BA90-C3A5CA1988C5}
O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5A4E43D5-858F-49BD-BA72-8F30E1793060}
O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB2541007) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{A0173254-F442-4D04-9154-43FA157B83D0}
O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB2510061) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{5D930261-AA5B-48D1-931F-425C9D767490}
O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1109D0B3-EFA3-4553-AAED-4C3E9AD130E8}
O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB}
O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB2535818) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{8588DD11-6BD7-4400-B55C-DD5AB74B43E1}
O42 - Logiciel: Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{D75E6D0C-BADF-4F41-98B2-0C0F02C15062}
O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB2284697) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3A4CDE54-2403-483D-8D9A-15E3264410DF}
O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D}
O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2344993) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{7A5B74FA-7A92-4FC9-821A-2DD5D4E73E48}
O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3D019598-7B59-447A-80AE-815B703B84FF}
O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{FCD742B9-7A55-44BC-A776-F795F21FEDDC}
O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2478663) - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}.KB2478663
O42 - Logiciel: Security Update for Module linguistique Microsoft .NET Framework 4 Client Profile FRA (KB2518870) - (.Microsoft Corporation.) [HKLM] -- {4B5F58F7-C7D1-3CE3-9B37-B657F0852643}.KB2518870
O42 - Logiciel: Setting Utility Series - (.Sony Corporation.) [HKLM] -- {A7DA438C-2E43-4C20-BFDA-C1F4A6208558}
O42 - Logiciel: Sony Ericsson PC Companion 2.01.217 - (.Sony Ericsson.) [HKLM] -- {F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}
O42 - Logiciel: Sony Ericsson Update Engine - (.Sony Ericsson Mobile Communications AB.) [HKLM] -- Update Engine
O42 - Logiciel: Sony Home Network Library - (.Sony Corporation.) [HKLM] -- {D03D02D8-AB64-4785-A48E-5AA8B0FB8C14}
O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1
O42 - Logiciel: TopOCR 2.5 - (.TopSoft, Ltd..) [HKLM] -- TopOCR
O42 - Logiciel: Uniblue DriverScanner - (.Uniblue Systems Ltd.) [HKLM] -- {C2F8CA82-2BD9-4513-B2D1-08A47914C1DA}_is1
O42 - Logiciel: Uniblue RegistryBooster - (.Uniblue Systems Ltd.) [HKLM] -- Uniblue RegistryBooster
O42 - Logiciel: Uniblue SpeedUpMyPC - (.Uniblue Systems Ltd.) [HKLM] -- {E55B3271-7CA8-4D0C-AE06-69A24856E996}_is1
O42 - Logiciel: Uninstall 1.0.0.1 - (.Pas de propriétaire.) [HKLM] -- Uninstall_is1
O42 - Logiciel: Update for 2007 Microsoft Office System (KB2284654) - (.Microsoft.) [HKLM] -- {90120000-002A-0000-1000-0000000FF1CE}_PROPLUS_{FB166E7C-8AA6-48C8-B726-1F25BEE7825A}
O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}
O42 - Logiciel: Update for Microsoft Office 2007 (KB2508958) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}
O42 - Logiciel: Update for Microsoft Office 2007 System (KB2539530) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{0B4CEEAE-AA88-490C-BCB2-AAC3421981A4}
O42 - Logiciel: Update for Microsoft Office Outlook 2007 (KB2509470) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{1365864D-4C58-489D-9982-844D75691CCC}
O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (KB2586924) - (.Microsoft.) [HKLM] -- {90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{3B65DCBC-61EC-4578-9DF2-40D3B3829CD8}
O42 - Logiciel: VAIO - Clavier à distance - (.Sony Corporation.) [HKLM] -- {7396FB15-9AB4-4B78-BDD8-24A9C15D2C65}
O42 - Logiciel: VAIO - PMB VAIO Edition Guide - (.Sony Corporation.) [HKLM] -- InstallShield_{FF1FC66F-536F-46BD-98E3-D8DA127A810E}
O42 - Logiciel: VAIO - PMB VAIO Edition plug-in (VAIO Image Optimizer) - (.Sony Corporation.) [HKLM] -- InstallShield_{9CCA7C1A-6308-4F12-AEDD-D230CAAF847E}
O42 - Logiciel: VAIO Care - (.Sony Corporation.) [HKLM] -- {36C5BBF0-E5BF-4DE1-B684-7E90B0C93FB5}
O42 - Logiciel: VAIO Content Metadata Intelligent Analyzing Manager - (.Sony Corporation.) [HKLM] -- {4882EBF5-CA37-4EF4-BCB8-9B0E78B907D0}
O42 - Logiciel: VAIO Content Metadata Intelligent Network Service Manager - (.Sony Corporation.) [HKLM] -- {4427F384-B5BE-4769-B7D0-C784FC321EB1}
O42 - Logiciel: VAIO Content Metadata Manager Settings - (.Sony Corporation.) [HKLM] -- {12D0BE8D-538C-4AB1-86DE-C540308F50DA}
O42 - Logiciel: VAIO Content Metadata XML Interface Library - (.Sony Corporation.) [HKLM] -- {291FB4BF-EEC7-4CF9-8469-F39ED1DBC4D8}
O42 - Logiciel: VAIO Control Center - (.Sony Corporation.) [HKLM] -- {72042FA6-5609-489F-A8EA-3C2DD650F667}
O42 - Logiciel: VAIO DVD Menu Data - (.Sony Corporation.) [HKLM] -- {596BED91-A1D8-4DF1-8CD1-1C777F7588AC}
O42 - Logiciel: VAIO Entertainment Platform - (.Sony Corporation.) [HKLM] -- {6B1F20F2-6321-4669-A58C-33DF8E7517FF}
O42 - Logiciel: VAIO Event Service - (.Sony Corporation.) [HKLM] -- {C7477742-DDB4-43E5-AC8D-0259E1E661B1}
O42 - Logiciel: VAIO Gate - (.Sony Corporation.) [HKLM] -- {A7C30414-2382-4086-B0D6-01A88ABA21C3}
O42 - Logiciel: VAIO Gate Default - (.Sony Corporation.) [HKLM] -- {B7546697-2A80-4256-A24B-1C33163F535B}
O42 - Logiciel: VAIO Marketing Tools - (.Sony Corporation.) [HKLM] -- MarketingTools
O42 - Logiciel: VAIO Media plus - (.Sony Corporation.) [HKLM] -- {8DE50158-80AA-4FF2-9E9F-0A7C46F71FCD}
O42 - Logiciel: VAIO Media plus Opening Movie - (.Sony Corporation.) [HKLM] -- {9238E8A4-BEBA-43A3-B926-769BDBF194C5}
O42 - Logiciel: VAIO Movie Story Template Data - (.Sony Corporation.) [HKLM] -- InstallShield_{6FA8BA2C-052B-4072-B8E2-2302C268BE9E}
O42 - Logiciel: VAIO Personalization Manager - (.Sony Corporation.) [HKLM] -- {A95187EF-BCF4-4468-B501-C0BAB976ADD1}
O42 - Logiciel: VAIO Premium Partners - (.Sony Europe.) [HKLM] -- VAIO Premium Partners
O42 - Logiciel: VAIO Smart Network - (.Sony Corporation.) [HKLM] -- {0899D75A-C2FC-42EA-A702-5B9A5F24EAD5}
O42 - Logiciel: VAIO Update - (.Sony Corporation.) [HKLM] -- {5BEE8F1F-BD32-4553-8107-500439E43BD7}
O42 - Logiciel: VAIO Wallpaper Contents - (.Sony Corporation.) [HKLM] -- {D60F97EC-EF06-4E1E-B0D1-C2CBABA62FA3}
O42 - Logiciel: VAIO Window Organizer - (.Sony Corporation.) [HKLM] -- {6D320CE8-79EB-4D45-8C6D-DEF74D84B49A}
O42 - Logiciel: VAIO screensaver - (.Sony Europe.) [HKLM] -- VAIO screensaver
O42 - Logiciel: VLC media player 1.0.5 - (.VideoLAN Team.) [HKLM] -- VLC media player
O42 - Logiciel: Windows Driver Package - Broadcom Bluetooth (09/09/2009 6.2.0.9405) - (.Broadcom.) [HKLM] -- 930E4792BDAEAFB62A9514EE7578775658A5D07C
O42 - Logiciel: Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) - (.Broadcom.) [HKLM] -- 3BA80AB4C7E9F8497C115C844953A3D4BEB84D21
O42 - Logiciel: Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite
O42 - Logiciel: Wondershare Streaming Audio Recorder(Build 1.0.11.3) - (.Wondershare Software.) [HKLM] -- Wondershare Streaming Audio Recorder_is1
O42 - Logiciel: Yontoo Layers Runtime 1.10.01 - (.Yontoo LLC.) [HKLM] -- {889DF117-14D1-44EE-9F31-C5FB5D47F68B}
O42 - Logiciel: aTube Catcher - (.DsNET Corp.) [HKLM] -- aTube Catcher

---\\ HKCU & HKLM Software Keys
[HKCU\Software\ABBYY]
[HKCU\Software\ASProtect]
[HKCU\Software\Acesoft]
[HKCU\Software\Adobe]
[HKCU\Software\Ahusoft]
[HKCU\Software\Alps]
[HKCU\Software\AppDataLow\Software\Autodesk]
[HKCU\Software\AppDataLow\Software\Google]
[HKCU\Software\AppDataLow\Software\Microsoft]
[HKCU\Software\AppDataLow\Software\Monitored]
[HKCU\Software\AppDataLow\Software\antiphishing-webblog1_1dn]
[HKCU\Software\AppDataLow\Software\settings]
[HKCU\Software\AppDataLow\Software\toolbar]
[HKCU\Software\AppDataLow\Software]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\ArcSoft]
[HKCU\Software\Audacity]
[HKCU\Software\Autodesk]
[HKCU\Software\Avira]
[HKCU\Software\BEID]
[HKCU\Software\BugSplat]
[HKCU\Software\CDDB]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\Corel]
[HKCU\Software\DOVICO Enterprises]
[HKCU\Software\DSS]
[HKCU\Software\DT Soft]
[HKCU\Software\DVDVideoSoft]
[HKCU\Software\Earth Resource Mapping]
[HKCU\Software\Electronic Arts]
[HKCU\Software\Evernote]
[HKCU\Software\FSPro Labs]
[HKCU\Software\FissaSearch]
[HKCU\Software\FreecomApSetup]
[HKCU\Software\Genie-Soft]
[HKCU\Software\Google]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\Hybrid TV RC]
[HKCU\Software\IM Providers]
[HKCU\Software\InstallCore]
[HKCU\Software\JavaSoft]
[HKCU\Software\Licenses]
[HKCU\Software\Macromedia]
[HKCU\Software\Malwarebytes' Anti-Malware]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\MyHeritage.com]
[HKCU\Software\NCH Software]
[HKCU\Software\NCH Swift Sound]
[HKCU\Software\NVIDIA Corporation]
[HKCU\Software\Netscape]
[HKCU\Software\Nitro PDF]
[HKCU\Software\ODBC]
[HKCU\Software\Piriform]
[HKCU\Software\Policies]
[HKCU\Software\Realtek]
[HKCU\Software\Roxio]
[HKCU\Software\Safer Networking Limited]
[HKCU\Software\Settings]
[HKCU\Software\Skype]
[HKCU\Software\Softonic]
[HKCU\Software\SolidDocuments]
[HKCU\Software\Sonic]
[HKCU\Software\Sony Corporation]
[HKCU\Software\Sony Ericsson]
[HKCU\Software\SpecItems]
[HKCU\Software\SpeedFan]
[HKCU\Software\Spointer]
[HKCU\Software\SubSystems]
[HKCU\Software\Trolltech]
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\Widcomm]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\WinRAR]
[HKCU\Software\Wow6432Node]
[HKCU\Software\YahooPartnerToolbar]
[HKCU\Software\dskMetrics]
[HKCU\Software\keyhole.com]
[HKCU\Software\mozilla.org]
[HKCU\Software\wismass]
[HKLM\Software\ABBYY]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Acesoft]
[HKLM\Software\Adobe]
[HKLM\Software\AdwCleaner]
[HKLM\Software\Alps]
[HKLM\Software\America Online]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\ArcSoft]
[HKLM\Software\Autodesk]
[HKLM\Software\Avira]
[HKLM\Software\BEID]
[HKLM\Software\Babylon]
[HKLM\Software\Broadcom]
[HKLM\Software\BrowserChoice]
[HKLM\Software\CDDB]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Corel]
[HKLM\Software\DT Soft]
[HKLM\Software\DVDVideoSoft]
[HKLM\Software\De Boeck & Larcier S.A.]
[HKLM\Software\Debug]
[HKLM\Software\Digital River]
[HKLM\Software\Earth Resource Mapping]
[HKLM\Software\Electronic Arts]
[HKLM\Software\FSPro Labs]
[HKLM\Software\FX - Video To Mp3]
[HKLM\Software\Google]
[HKLM\Software\Gutenbic]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\InstallShield]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\Kaydara]
[HKLM\Software\Licenses]
[HKLM\Software\Macromedia]
[HKLM\Software\Macrovision]
[HKLM\Software\Malwarebytes' Anti-Malware (Trial)]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\McAfeeInstaller]
[HKLM\Software\McAfee]
[HKLM\Software\MimarSinan]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\MyHeritage.com]
[HKLM\Software\NCH Software]
[HKLM\Software\NCH Swift Sound]
[HKLM\Software\NVIDIA Corporation]
[HKLM\Software\ODBC]
[HKLM\Software\OldTimer Tools]
[HKLM\Software\PCTools]
[HKLM\Software\Policies]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Roxio]
[HKLM\Software\SRS Labs]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\Skype]
[HKLM\Software\SoftAssist]
[HKLM\Software\Sonic]
[HKLM\Software\Sony Corporation]
[HKLM\Software\Sony Ericsson]
[HKLM\Software\Sony]
[HKLM\Software\Tarma Installer]
[HKLM\Software\Uniblue]
[HKLM\Software\Volatile]
[HKLM\Software\Waves Audio]
[HKLM\Software\Widcomm]
[HKLM\Software\WinRAR]
[HKLM\Software\Windows]
[HKLM\Software\Wismass]
[HKLM\Software\Wondershare]
[HKLM\Software\Wow6432Node]
[HKLM\Software\X-AVCSD]
[HKLM\Software\illiminable]
[HKLM\Software\mozilla.org]
~ Scan Softwares in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 15/04/2010 - 15:30:20 - [17568529] ----D- C:\Program Files\Apoint
O43 - CFD: 02/05/2010 - 20:28:14 - [1091097676] ----D- C:\Program Files\Autodesk
O43 - CFD: 17/10/2010 - 17:19:06 - [263491] ----D- C:\Program Files\BeID Minidriver
O43 - CFD: 06/09/2011 - 22:08:58 - [210992392] ----D- C:\Program Files\Common Files
O43 - CFD: 17/10/2010 - 17:19:48 - [1402904] ----D- C:\Program Files\DIFX
O43 - CFD: 07/03/2011 - 23:42:50 - [90256916] ----D- C:\Program Files\DVD Maker
O43 - CFD: 15/04/2010 - 17:07:02 - [0] -SH-D- C:\Program Files\Fichiers communs
O43 - CFD: 24/04/2010 - 22:34:36 - [0] ----D- C:\Program Files\Google
O43 - CFD: 15/04/2010 - 15:30:34 - [91544095] ----D- C:\Program Files\Intel
O43 - CFD: 17/06/2011 - 12:54:06 - [4479940] ----D- C:\Program Files\Internet Explorer
O43 - CFD: 15/04/2010 - 15:48:26 - [79707151] ----D- C:\Program Files\Java
O43 - CFD: 14/07/2009 - 09:45:56 - [149237810] ----D- C:\Program Files\Microsoft Games
O43 - CFD: 11/03/2011 - 17:34:48 - [39338253] ----D- C:\Program Files\Microsoft IntelliPoint
O43 - CFD: 31/07/2010 - 13:30:32 - [594846] ----D- C:\Program Files\Microsoft Office
O43 - CFD: 15/04/2010 - 15:44:40 - [3524223] ----D- C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 15/04/2010 - 15:44:40 - [346631] ----D- C:\Program Files\Microsoft Synchronization Services
O43 - CFD: 14/07/2009 - 07:32:40 - [25757] ----D- C:\Program Files\MSBuild
O43 - CFD: 24/04/2011 - 16:09:28 - [3670329] ----D- C:\Program Files\My Lockbox
O43 - CFD: 04/05/2011 - 22:49:48 - [1291816] ----D- C:\Program Files\NVIDIA Corporation
O43 - CFD: 15/04/2010 - 15:30:08 - [15214688] ----D- C:\Program Files\Realtek
O43 - CFD: 14/07/2009 - 07:32:40 - [36813993] ----D- C:\Program Files\Reference Assemblies
O43 - CFD: 12/06/2011 - 13:31:14 - [206426788] ----D- C:\Program Files\Sony
O43 - CFD: 14/07/2009 - 07:09:28 - [0] --H-D- C:\Program Files\Uninstall Information
O43 - CFD: 23/11/2009 - 23:32:08 - [145225849] ----D- C:\Program Files\WIDCOMM
O43 - CFD: 07/03/2011 - 23:42:46 - [4039680] ----D- C:\Program Files\Windows Defender
O43 - CFD: 07/03/2011 - 23:42:50 - [9224824] ----D- C:\Program Files\Windows Journal
O43 - CFD: 21/10/2010 - 22:44:28 - [1059906] ----D- C:\Program Files\Windows Live
O43 - CFD: 07/03/2011 - 23:42:50 - [6667776] ----D- C:\Program Files\Windows Mail
O43 - CFD: 07/03/2011 - 23:42:50 - [7687085] ----D- C:\Program Files\Windows Media Player
O43 - CFD: 15/04/2010 - 17:07:02 - [12627636] ----D- C:\Program Files\Windows NT
O43 - CFD: 07/03/2011 - 23:42:50 - [5516056] ----D- C:\Program Files\Windows Photo Viewer
O43 - CFD: 07/03/2011 - 23:42:50 - [244736] ----D- C:\Program Files\Windows Portable Devices
O43 - CFD: 07/03/2011 - 23:42:50 - [9066726] ----D- C:\Program Files\Windows Sidebar
O43 - CFD: 08/05/2010 - 13:28:30 - [4524560] ----D- C:\Program Files\WinRAR
O43 - CFD: 02/06/2010 - 19:24:44 - [0] ----D- C:\Program Files\Common Files\Adobe
O43 - CFD: 02/05/2010 - 20:32:12 - [110599034] ----D- C:\Program Files\Common Files\Autodesk Shared
O43 - CFD: 15/04/2010 - 15:30:34 - [13075008] ----D- C:\Program Files\Common Files\Intel
O43 - CFD: 02/05/2010 - 20:29:26 - [1436659] ----D- C:\Program Files\Common Files\Macrovision Shared
O43 - CFD: 16/06/2011 - 13:57:04 - [66375614] ----D- C:\Program Files\Common Files\Microsoft Shared
O43 - CFD: 14/07/2009 - 05:20:10 - [2702] ----D- C:\Program Files\Common Files\Services
O43 - CFD: 15/04/2010 - 15:49:50 - [6700316] ----D- C:\Program Files\Common Files\Sony Shared
O43 - CFD: 14/07/2009 - 05:20:10 - [608768] ----D- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 15/04/2010 - 16:24:14 - [12194291] ----D- C:\Program Files\Common Files\System
O43 - CFD: 01/10/2010 - 16:42:34 - [144956] ----D- C:\ProgramData\ABBYY
O43 - CFD: 12/10/2010 - 13:22:26 - [5053] ----D- C:\ProgramData\Adobe
O43 - CFD: 12/09/2011 - 16:03:50 - [723174] ----D- C:\ProgramData\Anti-phishing Domain Advisor
O43 - CFD: 09/09/2010 - 21:03:30 - [50206208] ----D- C:\ProgramData\Apple
O43 - CFD: 29/03/2011 - 20:14:08 - [26896384] ----D- C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Application Data
O43 - CFD: 18/11/2010 - 18:04:54 - [9984] --H-D- C:\ProgramData\ArcSoft
O43 - CFD: 02/05/2010 - 20:59:02 - [2087833] ----D- C:\ProgramData\Autodesk
O43 - CFD: 09/06/2010 - 12:57:16 - [75796748] ----D- C:\ProgramData\Avira
O43 - CFD: 28/06/2011 - 22:10:54 - [0] ----D- C:\ProgramData\Babylon
O43 - CFD: 15/04/2010 - 17:07:02 - [0] -SH-D- C:\ProgramData\Bureau
O43 - CFD: 15/04/2010 - 15:33:58 - [35586709] ----D- C:\ProgramData\Corel
O43 - CFD: 13/02/2011 - 23:37:18 - [1484] ----D- C:\ProgramData\DAEMON Tools Pro
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Documents
O43 - CFD: 15/02/2011 - 23:15:58 - [0] ----D- C:\ProgramData\EA Core
O43 - CFD: 15/02/2011 - 23:15:46 - [116984] ----D- C:\ProgramData\Electronic Arts
O43 - CFD: 17/08/2011 - 13:28:44 - [1742285] ----D- C:\ProgramData\EmailNotifier
O43 - CFD: 15/04/2010 - 15:34:34 - [111994] ----D- C:\ProgramData\Evernote
O43 - CFD: 15/04/2010 - 17:07:02 - [0] -SH-D- C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Favorites
O43 - CFD: 02/05/2010 - 20:50:06 - [41294] ----D- C:\ProgramData\FLEXnet
O43 - CFD: 24/04/2010 - 22:59:04 - [0] ----D- C:\ProgramData\Google
O43 - CFD: 28/06/2011 - 22:09:10 - [65219] ----D- C:\ProgramData\Hewlett-Packard
O43 - CFD: 15/04/2010 - 15:30:34 - [1189] ----D- C:\ProgramData\Intel
O43 - CFD: 04/09/2011 - 18:25:46 - [7495151] ----D- C:\ProgramData\Malwarebytes
O43 - CFD: 09/06/2010 - 13:12:40 - [12619] ----D- C:\ProgramData\McAfee
O43 - CFD: 15/04/2010 - 17:07:02 - [0] -SH-D- C:\ProgramData\Menu Démarrer
O43 - CFD: 25/01/2011 - 17:24:16 - [208119204] -S--D- C:\ProgramData\Microsoft
O43 - CFD: 13/08/2011 - 22:11:22 - [219446] ----D- C:\ProgramData\Microsoft Help
O43 - CFD: 15/04/2010 - 17:07:02 - [0] -SH-D- C:\ProgramData\Modèles
O43 - CFD: 15/04/2010 - 15:44:42 - [3850366] ----D- C:\ProgramData\MusicStation
O43 - CFD: 09/03/2011 - 22:31:16 - [0] ----D- C:\ProgramData\NCH Software
O43 - CFD: 04/09/2011 - 17:09:10 - [0] ----D- C:\ProgramData\Nitro PDF
O43 - CFD: 04/05/2011 - 22:49:50 - [255920] ----D- C:\ProgramData\NVIDIA
O43 - CFD: 24/04/2010 - 22:34:36 - [1715] ----D- C:\ProgramData\Partner
O43 - CFD: 17/05/2010 - 13:13:24 - [1715] ----D- C:\ProgramData\regid.1986-12.com.adobe
O43 - CFD: 12/09/2011 - 16:36:00 - [0] ----D- C:\ProgramData\Roxio
O43 - CFD: 15/04/2010 - 15:37:38 - [36] ----D- C:\ProgramData\SiteAdvisor
O43 - CFD: 24/03/2011 - 22:32:48 - [0] ----D- C:\ProgramData\Skype
O43 - CFD: 18/02/2011 - 18:44:44 - [0] ----D- C:\ProgramData\Solidshield
O43 - CFD: 15/04/2010 - 15:47:56 - [633] ----D- C:\ProgramData\Sonic
O43 - CFD: 12/06/2011 - 13:33:14 - [1522166998] ----D- C:\ProgramData\Sony Corporation
O43 - CFD: 05/09/2011 - 12:05:32 - [5933496] ----D- C:\ProgramData\Sony Ericsson
O43 - CFD: 12/09/2011 - 12:53:52 - [3322032] ----D- C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Start Menu
O43 - CFD: 24/04/2010 - 13:34:30 - [364] ----D- C:\ProgramData\Sun
O43 - CFD: 17/08/2011 - 13:28:26 - [1386999] ----D- C:\ProgramData\Tarma Installer
O43 - CFD: 14/02/2011 - 23:04:34 - [0] ---AD- C:\ProgramData\TEMP
O43 - CFD: 14/07/2009 - 07:08:58 - [0] -SH-D- C:\ProgramData\Templates
O43 - CFD: 02/03/2011 - 19:44:44 - [0] ----D- C:\ProgramData\Uniblue
O43 - CFD: 15/04/2010 - 15:48:00 - [16918555] ----D- C:\ProgramData\Uninstall
O43 - CFD: 27/07/2011 - 13:16:06 - [7942589] --H-D- C:\ProgramData\{3C0AACBF-B491-4BE5-BAF9-AA46E0629E42}
O43 - CFD: 15/04/2010 - 17:40:58 - [0] -SH-D- C:\Users\quentin\AppData\Roaming\.#
O43 - CFD: 01/10/2010 - 16:44:50 - [4898] ----D- C:\Users\quentin\AppData\Roaming\ABBYY
O43 - CFD: 17/05/2010 - 13:13:58 - [19885084] ----D- C:\Users\quentin\AppData\Roaming\Adobe
O43 - CFD: 06/03/2011 - 23:51:26 - [0] ----D- C:\Users\quentin\AppData\Roaming\Apowersoft
O43 - CFD: 09/09/2010 - 21:09:00 - [0] ----D- C:\Users\quentin\AppData\Roaming\Apple Computer
O43 - CFD: 23/04/2010 - 17:56:24 - [1871612] ----D- C:\Users\quentin\AppData\Roaming\ArcSoft
O43 - CFD: 28/06/2010 - 20:20:02 - [566] ----D- C:\Users\quentin\AppData\Roaming\Auslogics
O43 - CFD: 02/05/2010 - 20:59:18 - [4816537] ----D- C:\Users\quentin\AppData\Roaming\Autodesk
O43 - CFD: 09/06/2010 - 13:14:06 - [0] ----D- C:\Users\quentin\AppData\Roaming\Avira
O43 - CFD: 13/02/2011 - 23:55:10 - [1629] ----D- C:\Users\quentin\AppData\Roaming\DAEMON Tools Pro
O43 - CFD: 30/10/2010 - 18:53:40 - [97727760] ----D- C:\Users\quentin\AppData\Roaming\DiskSpaceFanPro
O43 - CFD: 16/10/2010 - 22:24:50 - [199] ----D- C:\Users\quentin\AppData\Roaming\dvdcss
O43 - CFD: 24/03/2011 - 21:59:40 - [818] ----D- C:\Users\quentin\AppData\Roaming\DVDVideoSoftIEHelpers
O43 - CFD: 25/01/2011 - 17:21:22 - [0] ----D- C:\Users\quentin\AppData\Roaming\Genie-Soft
O43 - CFD: 26/02/2011 - 23:27:20 - [0] ----D- C:\Users\quentin\AppData\Roaming\GetRightToGo
O43 - CFD: 15/04/2010 - 17:10:56 - [0] ----D- C:\Users\quentin\AppData\Roaming\Google
O43 - CFD: 18/04/2011 - 21:22:26 - [167] ----D- C:\Users\quentin\AppData\Roaming\gtk-2.0
O43 - CFD: 15/04/2010 - 17:08:46 - [0] ----D- C:\Users\quentin\AppData\Roaming\Identities
O43 - CFD: 07/05/2010 - 15:18:08 - [0] ----D- C:\Users\quentin\AppData\Roaming\InstallShield
O43 - CFD: 16/04/2010 - 16:37:30 - [1197] ----D- C:\Users\quentin\AppData\Roaming\Intel
O43 - CFD: 15/04/2010 - 17:14:06 - [1702] ----D- C:\Users\quentin\AppData\Roaming\Macromedia
O43 - CFD: 04/09/2011 - 18:25:52 - [3880050] ----D- C:\Users\quentin\AppData\Roaming\Malwarebytes
O43 - CFD: 08/05/2010 - 13:57:50 - [6588061] ----D- C:\Users\quentin\AppData\Roaming\MaxTV Technologies
O43 - CFD: 14/07/2009 - 09:44:40 - [0] ----D- C:\Users\quentin\AppData\Roaming\Media Center Programs
O43 - CFD: 12/06/2011 - 13:36:38 - [2903669] -S--D- C:\Users\quentin\AppData\Roaming\Microsoft
O43 - CFD: 17/08/2011 - 13:28:38 - [31709330] ----D- C:\Users\quentin\AppData\Roaming\Mozilla
O43 - CFD: 25/07/2010 - 15:55:14 - [236] ----D- C:\Users\quentin\AppData\Roaming\MusicBrainz
O43 - CFD: 06/09/2011 - 11:54:04 - [248] ----D- C:\Users\quentin\AppData\Roaming\Nitro PDF
O43 - CFD: 12/12/2010 - 23:45:00 - [323362] ----D- C:\Users\quentin\AppData\Roaming\Notepad++
O43 - CFD: 14/02/2011 - 23:00:32 - [20910] ----D- C:\Users\quentin\AppData\Roaming\Registry Mechanic
O43 - CFD: 12/09/2011 - 16:36:00 - [640] ----D- C:\Users\quentin\AppData\Roaming\Roxio
O43 - CFD: 10/07/2011 - 22:56:06 - [4157162] ----D- C:\Users\quentin\AppData\Roaming\Skype
O43 - CFD: 15/04/2010 - 17:28:14 - [170511] ----D- C:\Users\quentin\AppData\Roaming\Sony Corporation
O43 - CFD: 30/07/2010 - 12:50:38 - [0] ----D- C:\Users\quentin\AppData\Roaming\Template
O43 - CFD: 02/03/2011 - 19:43:10 - [262722593] ----D- C:\Users\quentin\AppData\Roaming\Uniblue
O43 - CFD: 06/09/2011 - 23:58:40 - [479591] ----D- C:\Users\quentin\AppData\Roaming\vlc
O43 - CFD: 08/05/2010 - 13:28:36 - [12] ----D- C:\Users\quentin\AppData\Roaming\WinRAR
O43 - CFD: 30/06/2011 - 20:17:56 - [2784404] ----D- C:\Users\quentin\AppData\Local\ABBYY
O43 - CFD: 15/02/2011 - 23:06:50 - [375732] ----D- C:\Users\quentin\AppData\Local\Adobe
O43 - CFD: 17/08/2011 - 13:29:04 - [1885428] ----D- C:\Users\quentin\AppData\Local\antiphishing-webblog1_1dn
O43 - CFD: 09/09/2010 - 21:03:32 - [0] ----D- C:\Users\quentin\AppData\Local\Apple
O43 - CFD: 09/09/2010 - 21:10:02 - [3492] ----D- C:\Users\quentin\AppData\Local\Apple Computer
O43 - CFD: 21/08/2010 - 13:17:04 - [957] ----D- C:\Users\quentin\AppData\Local\ArcSoft
O43 - CFD: 19/09/2010 - 22:29:30 - [3817753] ----D- C:\Users\quentin\AppData\Local\Autodesk
O43 - CFD: 28/06/2011 - 22:10:58 - [25675472] ----D- C:\Users\quentin\AppData\Local\Babylon
O43 - CFD: 05/08/2010 - 16:34:48 - [0] ----D- C:\Users\quentin\AppData\Local\Broadcom
O43 - CFD: 13/08/2011 - 19:44:08 - [0] ----D- C:\Users\quentin\AppData\Local\ElevatedDiagnostics
O43 - CFD: 05/10/2010 - 21:53:56 - [8955713] ----D- C:\Users\quentin\AppData\Local\Google
O43 - CFD: 26/05/2011 - 12:34:04 - [218593340] ----D- C:\Users\quentin\AppData\Local\Microsoft
O43 - CFD: 12/06/2011 - 13:36:38 - [0] ----D- C:\Users\quentin\AppData\Local\Microsoft Help
O43 - CFD: 26/09/2010 - 00:30:24 - [16538] ----D- C:\Users\quentin\AppData\Local\moovida Air
O43 - CFD: 18/04/2010 - 22:20:06 - [95303787] ----D- C:\Users\quentin\AppData\Local\Mozilla
O43 - CFD: 04/11/2010 - 15:10:16 - [1940] ----D- C:\Users\quentin\AppData\Local\Omnifone_Ltd
O43 - CFD: 14/02/2011 - 22:53:28 - [0] ----D- C:\Users\quentin\AppData\Local\PackageAware
O43 - CFD: 20/04/2011 - 21:50:04 - [25262] ----D- C:\Users\quentin\AppData\Local\QuickStores
O43 - CFD: 05/08/2010 - 16:33:36 - [733] ----D- C:\Users\quentin\AppData\Local\Sony Corporation
O43 - CFD: 05/08/2010 - 12:44:42 - [1570] ----D- C:\Users\quentin\AppData\Local\Sony_Corporation
O43 - CFD: 12/09/2011 - 22:13:26 - [13885499] ----D- C:\Users\quentin\AppData\Local\Temp
O43 - CFD: 05/08/2010 - 16:33:36 - [0] ----D- C:\Users\quentin\AppData\Local\VirtualStore
O43 - CFD: 08/01/2011 - 15:38:58 - [40960] ----D- C:\Users\quentin\AppData\Local\Windows Live
O43 - CFD: 15/02/2011 - 23:15:34 - [165492963] ----D- C:\Program Files (x86)\Adobe
O43 - CFD: 09/09/2010 - 21:03:30 - [2221118] ----D- C:\Program Files (x86)\Apple Software Update
O43 - CFD: 24/04/2010 - 22:32:50 - [136876291] ----D- C:\Program Files (x86)\ArcSoft
O43 - CFD: 14/02/2011 - 00:04:54 - [927576] ----D- C:\Program Files (x86)\Atari
O43 - CFD: 20/06/2011 - 12:48:58 - [8691699] ----D- C:\Program Files (x86)\Audacity
O43 - CFD: 02/05/2010 - 20:26:20 - [120904134] ----D- C:\Program Files (x86)\Autodesk
O43 - CFD: 09/06/2010 - 12:57:16 - [148756616] ----D- C:\Program Files (x86)\Avira
O43 - CFD: 06/11/2010 - 22:20:22 - [93511] ----D- C:\Program Files (x86)\Babylon
O43 - CFD: 17/10/2010 - 17:19:06 - [12440855] ----D- C:\Program Files (x86)\Belgium Identity Card
O43 - CFD: 09/08/2010 - 15:43:26 - [2961016] ----D- C:\Program Files (x86)\CCleaner
O43 - CFD: 15/04/2010 - 15:30:36 - [6668624] ----D- C:\Program Files (x86)\Cisco
O43 - CFD: 06/09/2011 - 22:09:00 - [4617343858] ----D- C:\Program Files (x86)\Common Files
O43 - CFD: 15/04/2010 - 15:34:22 - [262732655] ----D- C:\Program Files (x86)\Corel
O43 - CFD: 30/10/2010 - 18:48:44 - [12960] ----D- C:\Program Files (x86)\DiskSpaceFan
O43 - CFD: 08/05/2010 - 13:57:34 - [16] ----D- C:\Program Files (x86)\DMV
O43 - CFD: 28/06/2011 - 23:01:08 - [6147234] ----D- C:\Program Files (x86)\Documalis Free
O43 - CFD: 03/10/2010 - 23:08:10 - [28413543] ----D- C:\Program Files (x86)\Dovico
O43 - CFD: 20/04/2011 - 21:49:40 - [36480081] ----D- C:\Program Files (x86)\DsNET Corp
O43 - CFD: 20/04/2011 - 22:05:48 - [196608] ----D- C:\Program Files (x86)\DVDVideoSoft
O43 - CFD: 18/02/2011 - 18:39:08 - [8359762239] ----D- C:\Program Files (x86)\Electronic Arts
O43 - CFD: 15/04/2010 - 15:34:36 - [55688292] ----D- C:\Program Files (x86)\Evernote
O43 - CFD: 08/09/2010 - 11:36:54 - [0] ----D- C:\Program Files (x86)\Family Toolbar
O43 - CFD: 27/09/2010 - 17:44:36 - [5616885] ----D- C:\Program Files (x86)\Feuvert
O43 - CFD: 26/09/2010 - 00:30:42 - [0] ----D- C:\Program Files (x86)\Fluendo
O43 - CFD: 08/03/2011 - 00:08:40 - [7970323] ----D- C:\Program Files (x86)\FoxTabVideo2Mp3Converter
O43 - CFD: 02/02/2011 - 13:44:12 - [113910679] ----D- C:\Program Files (x86)\GIMP-2.0
O43 - CFD: 29/06/2011 - 21:15:56 - [413787132] ----D- C:\Program Files (x86)\Google
O43 - CFD: 20/08/2011 - 16:38:20 - [208979198] --H-D- C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 23/11/2009 - 23:41:08 - [65639632] ----D- C:\Program Files (x86)\Intel
O43 - CFD: 17/06/2011 - 12:54:06 - [5162505] ----D- C:\Program Files (x86)\Internet Explorer
O43 - CFD: 21/06/2011 - 12:32:16 - [89486782] ----D- C:\Program Files (x86)\Java
O43 - CFD: 25/01/2011 - 17:20:30 - [35806008] ----D- C:\Program Files (x86)\LaCie
O43 - CFD: 29/01/2011 - 13:23:26 - [2961811] ----D- C:\Program Files (x86)\Lock Folder XP
O43 - CFD: 04/09/2011 - 18:25:50 - [6966888] ----D- C:\Program Files (x86)\Malwarebytes' Anti-Malware
O43 - CFD: 21/10/2010 - 22:46:18 - [526291] ----D- C:\Program Files (x86)\Microsoft
O43 - CFD: 30/06/2011 - 20:18:02 - [588634090] ----D- C:\Program Files (x86)\Microsoft Office
O43 - CFD: 15/04/2010 - 15:42:42 - [7791801] ----D- C:\Program Files (x86)\Microsoft Office Suite Activation Assistant
O43 - CFD: 16/06/2011 - 13:56:16 - [38411899] ----D- C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 15/04/2010 - 15:56:14 - [4192884] ----D- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 15/04/2010 - 15:44:40 - [346631] ----D- C:\Program Files (x86)\Microsoft Synchronization Services
O43 - CFD: 31/07/2010 - 13:32:32 - [14904] ----D- C:\Program Files (x86)\Microsoft Visual Studio
O43 - CFD: 31/07/2010 - 13:30:26 - [1387249] ----D- C:\Program Files (x86)\Microsoft Visual Studio 8
O43 - CFD: 16/12/2010 - 23:53:52 - [146453974] ----D- C:\Program Files (x86)\Microsoft Works
O43 - CFD: 25/11/2010 - 22:56:24 - [8167779] ----D- C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 07/09/2011 - 10:32:14 - [37816534] ----D- C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 31/07/2010 - 13:32:38 - [26521] ----D- C:\Program Files (x86)\MSBuild
O43 - CFD: 16/04/2010 - 20:03:26 - [0] ----D- C:\Program Files (x86)\MSXML 4.0
O43 - CFD: 15/04/2010 - 15:44:42 - [15341787] ----D- C:\Program Files (x86)\MusicStation
O43 - CFD: 08/09/2010 - 11:28:24 - [0] ----D- C:\Program Files (x86)\MyHeritage
O43 - CFD: 06/09/2011 - 22:17:16 - [3615820] ----D- C:\Program Files (x86)\NCH Software
O43 - CFD: 12/12/2010 - 22:53:06 - [11151460] ----D- C:\Program Files (x86)\Notepad++
O43 - CFD: 29/03/2011 - 20:14:22 - [76322555] ----D- C:\Program Files (x86)\QuickTime
O43 - CFD: 15/04/2010 - 15:30:00 - [71605353] ----D- C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 07:32:40 - [39159041] ----D- C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 14/02/2011 - 23:47:44 - [5317715] ----D- C:\Program Files (x86)\Registry Booster 2010 4.6.2.0
O43 - CFD: 14/02/2011 - 23:04:30 - [7060] ----D- C:\Program Files (x86)\Registry Mechanic
O43 - CFD: 15/04/2010 - 15:47:52 - [6936228] ----D- C:\Program Files (x86)\Roxio
O43 - CFD: 29/06/2011 - 20:36:58 - [187827] ----D- C:\Program Files (x86)\SimpleOCR
O43 - CFD: 24/03/2011 - 22:32:50 - [16945122] R---D- C:\Program Files (x86)\Skype
O43 - CFD: 12/06/2011 - 13:31:14 - [1050473308] ----D- C:\Program Files (x86)\SONY
O43 - CFD: 15/04/2010 - 15:53:58 - [11727811] ----D- C:\Program Files (x86)\Sony Corporation
O43 - CFD: 05/09/2011 - 12:05:16 - [67922989] ----D- C:\Program Files (x86)\Sony Ericsson
O43 - CFD: 08/06/2011 - 23:33:54 - [4526011] ----D- C:\Program Files (x86)\SpeedFan
O43 - CFD: 01/10/2010 - 14:12:46 - [52673642] ----D- C:\Program Files (x86)\Spybot - Search & Destroy
O43 - CFD: 02/06/2011 - 13:25:20 - [0] --H-D- C:\Program Files (x86)\Temp
O43 - CFD: 29/06/2011 - 00:13:54 - [13642365] ----D- C:\Program Files (x86)\TopOCR
O43 - CFD: 27/07/2011 - 13:16:06 - [65763762] ----D- C:\Program Files (x86)\Uniblue
O43 - CFD: 03/10/2010 - 23:08:16 - [24] --H-D- C:\Program Files (x86)\Uninstall Information
O43 - CFD: 15/04/2010 - 15:48:04 - [38315223] ----D- C:\Program Files (x86)\VAIO screensavers
O43 - CFD: 30/06/2010 - 21:18:20 - [78593361] ----D- C:\Program Files (x86)\VideoLAN
O43 - CFD: 15/04/2010 - 16:24:14 - [524800] ----D- C:\Program Files (x86)\Windows Defender
O43 - CFD: 30/03/2011 - 23:48:12 - [154167252] ----D- C:\Program Files (x86)\Windows Live
O43 - CFD: 07/03/2011 - 23:42:56 - [6181376] ----D- C:\Program Files (x86)\Windows Mail
O43 - CFD: 07/03/2011 - 23:42:56 - [5024017] ----D- C:\Program Files (x86)\Windows Media Player
O43 - CFD: 14/07/2009 - 07:32:40 - [12197556] ----D- C:\Program Files (x86)\Windows NT
O43 - CFD: 07/03/2011 - 23:42:54 - [4417800] ----D- C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 07/03/2011 - 23:42:56 - [189952] ----D- C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 07/03/2011 - 23:42:56 - [8016585] ----D- C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 08/05/2010 - 13:25:20 - [3887186] ----D- C:\Program Files (x86)\WinRAR
O43 - CFD: 09/04/2011 - 22:52:24 - [23591739] ----D- C:\Program Files (x86)\Wondershare
O43 - CFD: 17/08/2011 - 13:28:26 - [195360] ----D- C:\Program Files (x86)\Yontoo Layers Runtime
O43 - CFD: 12/09/2011 - 22:13:08 - [4013905] ----D- C:\Program Files (x86)\ZHPDiag
O43 - CFD: 12/10/2010 - 13:22:26 - [103592498] ----D- C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 15/02/2011 - 23:15:32 - [29774735] ----D- C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 12/09/2011 - 16:03:24 - [2431792516] ----D- C:\Program Files (x86)\Common Files\Akamai
O43 - CFD: 09/09/2010 - 21:03:38 - [54774793] ----D- C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 23/04/2010 - 17:56:22 - [34814372] ----D- C:\Program Files (x86)\Common Files\ArcSoft
O43 - CFD: 02/05/2010 - 20:28:56 - [1219337649] ----D- C:\Program Files (x86)\Common Files\Autodesk Shared
O43 - CFD: 31/07/2010 - 13:32:32 - [92976] ----D- C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 20/04/2011 - 22:05:52 - [44398393] ----D- C:\Program Files (x86)\Common Files\DVDVideoSoft
O43 - CFD: 29/01/2011 - 13:23:24 - [4052] ----D- C:\Program Files (x86)\Common Files\Everstrike Software
O43 - CFD: 03/10/2010 - 23:07:24 - [4969657] ----D- C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 15/04/2010 - 15:34:20 - [179248] ----D- C:\Program Files (x86)\Common Files\InterVideo
O43 - CFD: 21/06/2011 - 12:32:46 - [1258951] ----D- C:\Program Files (x86)\Common Files\Java
O43 - CFD: 21/10/2010 - 22:44:20 - [258093527] ----D- C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 14/02/2011 - 23:04:30 - [0] ----D- C:\Program Files (x86)\Common Files\PC Tools
O43 - CFD: 15/04/2010 - 15:34:06 - [1669696] ----D- C:\Program Files (x86)\Common Files\Protexis
O43 - CFD: 15/04/2010 - 15:47:52 - [4805920] ----D- C:\Program Files (x86)\Common Files\PX Storage Engine
O43 - CFD: 15/04/2010 - 15:47:52 - [42450782] ----D- C:\Program Files (x86)\Common Files\Roxio Shared
O43 - CFD: 14/07/2009 - 05:20:10 - [2702] ----D- C:\Program Files (x86)\Common Files\Services
O43 - CFD: 15/04/2010 - 15:47:52 - [1460254] ----D- C:\Program Files (x86)\Common Files\Sonic Shared
O43 - CFD: 07/05/2010 - 15:06:08 - [62559722] ----D- C:\Program Files (x86)\Common Files\Sony Shared
O43 - CFD: 14/07/2009 - 05:20:10 - [41103783] ----D- C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 03/08/2010 - 17:18:20 - [44308501] ----D- C:\Program Files (x86)\Common Files\System
O43 - CFD: 15/04/2010 - 15:54:22 - [235899131] ----D- C:\Program Files (x86)\Common Files\Windows Live
~ Scan Program Folder in 00mn 33s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.72AA9FEA2E66BC35322EEC0C9DDC9688] - 12/09/2011 - 20:56:45 ---A- . (...) -- C:\Windows\WindowsUpdate.log [1109976]
O44 - LFC:[MD5.A9A49782D390B47088A35BDB9085CF0F] - 12/09/2011 - 20:56:39 ---A- . (...) -- C:\Windows\setupact.log [146]
O44 - LFC:[MD5.F8A8E47B7F1E6991A91D5EDAD62594BA] - 12/09/2011 - 15:34:49 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1609142]
O44 - LFC:[MD5.FEAE7941BE3FFCB28737FDB1E286434C] - 12/09/2011 - 15:34:49 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [114678]
O44 - LFC:[MD5.778430CDDD53C3C15F82C4B9B6392289] - 12/09/2011 - 15:34:49 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [139078]
O44 - LFC:[MD5.6514A42A327270BEEB7685D93139D4A5] - 12/09/2011 - 15:34:49 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [636742]
O44 - LFC:[MD5.1E40B9FAF00419E0FAD3C7494BB98DAB] - 12/09/2011 - 15:34:49 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [725066]
O44 - LFC:[MD5.F8A8E47B7F1E6991A91D5EDAD62594BA] - 12/09/2011 - 15:34:49 ---A- . (...) -- C:\Windows\system32\PerfStringBackup.INI [1609142]
O44 - LFC:[MD5.FEAE7941BE3FFCB28737FDB1E286434C] - 12/09/2011 - 15:34:49 RSHAD . (...) -- C:\Windows\system32\perfc009.dat [114678]
O44 - LFC:[MD5.778430CDDD53C3C15F82C4B9B6392289] - 12/09/2011 - 15:34:49 RSHAD . (...) -- C:\Windows\system32\perfc00C.dat [139078]
O44 - LFC:[MD5.6514A42A327270BEEB7685D93139D4A5] - 12/09/2011 - 15:34:49 RSHAD . (...) -- C:\Windows\system32\perfh009.dat [636742]
O44 - LFC:[MD5.1E40B9FAF00419E0FAD3C7494BB98DAB] - 12/09/2011 - 15:34:49 RSHAD . (...) -- C:\Windows\system32\perfh00C.dat [725066]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 12/09/2011 - 15:03:13 ---A- . (...) -- C:\Windows\setuperr.log [0]
O44 - LFC:[MD5.892C37B93A0DBFF315E1370BADFFC6AB] - 12/09/2011 - 15:03:12 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.EC5FBA3711EF32B7F2EA69B4F2814AA4] - 12/09/2011 - 15:03:05 ---A- . (...) -- C:\Windows\PFRO.log [412]
O44 - LFC:[MD5.E5779B59D392B608BCBEE1B5606EBC2D] - 12/09/2011 - 11:44:26 ---A- . (...) -- C:\AdwCleaner[S1].txt [38297]
O44 - LFC:[MD5.446494A5DD875DBA831A0F7792909B63] - 11/09/2011 - 22:29:58 ---A- . (...) -- C:\AdwCleaner[R1].txt [39654]
O44 - LFC:[MD5.D3239A889895401A83A7B20871590D98] - 07/09/2011 - 17:19:35 ---A- . (...) -- C:\PhysicalMBR.bin [512]
O44 - LFC:[MD5.9C4FB231B6E02F84580DE2F00F3C5293] - 04/09/2011 - 17:25:41 RSHAD . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [25912]
O44 - LFC:[MD5.569BD0CC56D40EB5BE4C69C695E2D5DF] - 04/09/2011 - 16:09:16 ---A- . (.Nitro PDF Software - Windows NT Nitro Print PDF Interface Driver.) -- C:\Windows\SysNative\nitrolocalmon2.dll [28976]
O44 - LFC:[MD5.7832078A35D8A877EC412AF38E2478DE] - 04/09/2011 - 16:09:16 ---A- . (.Nitro PDF Software - Windows NT Nitro Print PDF Interface Driver.) -- C:\Windows\SysNative\nitrolocalui2.dll [17200]
O44 - LFC:[MD5.569BD0CC56D40EB5BE4C69C695E2D5DF] - 04/09/2011 - 16:09:16 RSHAD . (.Nitro PDF Software - Windows NT Nitro Print PDF Interface Driver.) -- C:\Windows\system32\nitrolocalmon2.dll [28976]
O44 - LFC:[MD5.7832078A35D8A877EC412AF38E2478DE] - 04/09/2011 - 16:09:16 RSHAD . (.Nitro PDF Software - Windows NT Nitro Print PDF Interface Driver.) -- C:\Windows\system32\nitrolocalui2.dll [17200]
O44 - LFC:[MD5.D685FD3FA1461A0E71C955ADBACF0957] - 04/09/2011 - 13:55:36 ---A- . (...) -- C:\test.xml [687656]
~ Scan Files in 00mn 48s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\system32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\system32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\system32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\system32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\system32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\system32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\system32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\system32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\system32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\system32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\system32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\system32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\system32\Drivers\volmgrx.sys
~ Scan CSB in 00mn 00s



---\\ MountPoints2 Shell Key (O51)
O51 - MPSK:{4d1030f7-9956-11df-9155-5063139f0df2}\AutoRun\command. (...) -- G:\LaunchU3.exe (.not file.)
O51 - MPSK:{8f5d4997-a7fb-11e0-9fa5-0024bec73861}\AutoRun\command. (...) -- I:\Startme.exe (.not file.)
~ Scan Keys in 00mn 00s



---\\ Trojan Driver Search Data (HKLM) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ Scan Keys in 00mn 00s



---\\ ShareTools MSconfig StartupReg (O53)
O53 - SMSR:HKLM\...\startupreg\AdobeAAMUpdater-1.0 [Key] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
O53 - SMSR:HKLM\...\startupreg\Apoint [Key] . (.Alps Electric Co., Ltd. - Alps Pointing-device Driver.) -- C:\Program Files\Apoint\Apoint.exe
O53 - SMSR:HKLM\...\startupreg\ArcSoft Connection Service [Key] . (.ArcSoft Inc. - ArcSoft Connect Daemon.) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O53 - SMSR:HKLM\...\startupreg\avgnt [Key] . (.Avira GmbH - Antivirus System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
O53 - SMSR:HKLM\...\startupreg\beid [Key] . (.Belgian Government - beidgui executable.) -- C:\Program Files (x86)\Belgium Identity Card\beid35gui.exe
O53 - SMSR:HKLM\...\startupreg\DAEMON Tools Pro Agent [Key] . (...) -- C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\GBMLite8AgentLaCie [Key] . (.Genie-soft - Genie Backup Agent.) -- C:\Program Files (x86)\LaCie\Genie Backup Assistant\GBMAgent.exe
O53 - SMSR:HKLM\...\startupreg\IAAnotif [Key] . (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe
O53 - SMSR:HKLM\...\startupreg\IntelliPoint [Key] . (.Microsoft Corporation - IPoint.exe.) -- C:\Program Files\Microsoft IntelliPoint\ipoint.exe
O53 - SMSR:HKLM\...\startupreg\ISBMgr.exe [Key] . (.Sony Corporation - Pas de description.) -- C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
O53 - SMSR:HKLM\...\startupreg\LFService [Key] . (...) -- C:\Program Files (x86)\Lock Folder XP\LFService.exe
O53 - SMSR:HKLM\...\startupreg\MarketingTools [Key] . (.Sony Corporation - Marketing Tools.) -- C:\Program Files (x86)\Sony\Marketing Tools\MarketingTools.exe
O53 - SMSR:HKLM\...\startupreg\msnmsgr [Key] . (...) -- ~C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\mylbx [Key] . (.FSPro Labs - My Lockbox.) -- C:\Program Files\My Lockbox\mylbx.exe
O53 - SMSR:HKLM\...\startupreg\NvCplDaemon [Key] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\Windows\system32\NvCpl.dll
O53 - SMSR:HKLM\...\startupreg\PMBVolumeWatcher [Key] . (.Sony Corporation - Media Check Tool.) -- c:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
O53 - SMSR:HKLM\...\startupreg\RtHDVBg [Key] . (.Realtek Semiconductor - HD Audio Background Process.) -- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
O53 - SMSR:HKLM\...\startupreg\RtHDVCpl [Key] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O53 - SMSR:HKLM\...\startupreg\SHTtray.exe [Key] . (.Sony Corporation - SHTtray.) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SHTtray.exe
O53 - SMSR:HKLM\...\startupreg\Sidebar [Key] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O53 - SMSR:HKLM\...\startupreg\SpybotSD TeaTimer [Key] . (.Safer Networking Limited - System settings protector.) -- C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
O53 - SMSR:HKLM\...\startupreg\UniblueRegistryBooster [Key] . (.Uniblue Systems Limited - Uniblue Launcher.) -- C:\Program Files (x86)\Uniblue\RegistryBooster\launcher.exe
~ Scan SMSR Keys in 00mn 00s



---\\ Microsoft Control Security Providers (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\system32\credssp.dll
~ Scan Keys in 00mn 00s



---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ Scan Keys in 00mn 00s



---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"=145
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
~ Scan Keys in 00mn 00s



---\\ Liste des Drivers Système (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 10/06/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\system32\drivers\adp94xx.sys [491088]
O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 13/07/2009 - 02:52:21 RSHAD . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\system32\drivers\adpahci.sys [339536]
O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 13/07/2009 - 02:52:21 RSHAD . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\system32\drivers\adpu320.sys [182864]
O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 RSHAD . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\system32\drivers\aliide.sys [15440]
O58 - SDL:[MD5.D4121AE6D0C0E7E13AA221AA57EF2D49] - 28/04/2011 - 07:41:12 RSHAD . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\system32\drivers\amdsata.sys [107904]
O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 10/06/2009 - 02:52:20 RSHAD . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\system32\drivers\amdsbs.sys [194128]
O58 - SDL:[MD5.540DAF1CEA6094886D72126FD7C33048] - 28/04/2011 - 07:41:12 RSHAD . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\system32\drivers\amdxata.sys [27008]
O58 - SDL:[MD5.1661F9C9E4B0049FA0A5E30264375A87] - 16/11/2009 - 10:59:59 RSHAD . (.Alps Electric Co., Ltd. - Alps Touch Pad Driver.) -- C:\Windows\system32\drivers\Apfiltr.sys [253488]
O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 13/07/2009 - 02:52:21 RSHAD . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\system32\drivers\arc.sys [87632]
O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 13/07/2009 - 02:52:21 RSHAD . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\system32\drivers\arcsas.sys [97856]
O58 - SDL:[MD5.C130BC4A51B1382B2BE8E44579EC4C0A] - 15/04/2010 - 13:32:04 RSHAD . (.ArcSoft, Inc. - For X64.) -- C:\Windows\system32\drivers\ArcSoftKsUFilter.sys [19968]
O58 - SDL:[MD5.0ACC06FCF46F64ED4F11E57EE461C1F4] - 23/11/2009 - 07:30:19 RSHAD . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\system32\drivers\athrx.sys [1542656]
O58 - SDL:[MD5.5A1465AD2E7C1BC39CDA12A355329096] - 04/05/2011 - 21:48:25 RSHAD . (.ATI Technologies Inc. - ATI PCIE Driver for ATI PCIE chipset.) -- C:\Windows\system32\drivers\AtiPcie.sys [14352]
O58 - SDL:[MD5.B1224E6B086CD6548315B04AB575A23E] - 09/06/2010 - 21:32:12 RSHAD . (.Avira GmbH - Avira Minifilter Driver.) -- C:\Windows\system32\drivers\avgntflt.sys [88288]
O58 - SDL:[MD5.ED45F12CFA62B83765C9C1496758CC87] - 09/06/2010 - 21:32:12 RSHAD . (.Avira GmbH - Avira Driver for Security Enhancement.) -- C:\Windows\system32\drivers\avipbb.sys [123784]
O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 RSHAD . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\system32\drivers\b57nd60a.sys [270848]
O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 14/07/2009 - 21:41:06 RSHAD . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\system32\drivers\BrFiltLo.sys [18432]
O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 14/07/2009 - 21:41:06 RSHAD . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\system32\drivers\BrFiltUp.sys [8704]
O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 RSHAD . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\system32\drivers\BrSerId.sys [286720]
O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 14/07/2009 - 21:41:10 RSHAD . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\system32\drivers\BrSerWdm.sys [47104]
O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 14/07/2009 - 21:41:10 RSHAD . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\system32\drivers\BrUsbMdm.sys [14976]
O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 14/07/2009 - 21:41:10 RSHAD . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\system32\drivers\BrUsbSer.sys [14720]
O58 - SDL:[MD5.D3466F77C2C49C6E393BA5FBA963A33E] - 04/05/2011 - 21:34:28 RSHAD . (.Broadcom Corporation. - Widcomm Bluetooth USB Filter for Windows XP.) -- C:\Windows\system32\drivers\btusbflt.sys [53800]
O58 - SDL:[MD5.4BDBDB86ABBA924E029FB2683BE7C505] - 23/11/2009 - 21:03:15 RSHAD . (.Broadcom Corporation. - Bluetooth Audio Device.) -- C:\Windows\system32\drivers\btwaudio.sys [98344]
O58 - SDL:[MD5.5C849BD7C78791C5CEE9F4651D7FE38D] - 23/11/2009 - 21:03:15 RSHAD . (.Broadcom Corporation. - Broadcom Bluetooth AVDT Service.) -- C:\Windows\system32\drivers\btwavdt.sys [132648]
O58 - SDL:[MD5.6149301DC3F81D6F9667A3FBAC410975] - 23/11/2009 - 21:02:45 RSHAD . (.Broadcom Corporation. - Broadcom Bluetooth L2CAP Service.) -- C:\Windows\system32\drivers\btwl2cap.sys [35104]
O58 - SDL:[MD5.3E1991AFA851A36DC978B0A1B0535C8B] - 23/11/2009 - 21:03:16 RSHAD . (.Broadcom Corporation. - Bluetooth Remote Control HID Minidriver.) -- C:\Windows\system32\drivers\btwrchid.sys [21160]
O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 RSHAD . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\system32\drivers\bxvbda.sys [468480]
O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 RSHAD . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\cmdide.sys [17488]
O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 10/06/2009 - 02:47:48 RSHAD . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\system32\drivers\elxstor.sys [530496]
O58 - SDL:[MD5.647C55949DD6C4C9E7C74A22E64F84FF] - 13/12/2006 - 14:42:08 RSHAD . (.USB Smart Card Reader - USB Smart Card Reader.) -- C:\Windows\system32\drivers\EMVSCARD.sys [28544]
O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 RSHAD . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\system32\drivers\evbda.sys [3286016]
O58 - SDL:[MD5.8197C85348A33BCCFE80DD6E2DB53903] - 24/04/2011 - 15:13:26 RSHAD . (.FSPro Labs - FSPro File System Filter.) -- C:\Windows\system32\drivers\FSPFltd.sys [54848]
O58 - SDL:[MD5.A4198F2BD8AA592CB90476277A81B5E1] - 25/03/2011 - 18:18:42 RSHAD . (.Sony Ericsson Mobile Communications - SEMC USB Flash Driver Filter.) -- C:\Windows\system32\drivers\ggflt.sys [13352]
O58 - SDL:[MD5.D266350BDAAB9EB6C1AEC370EEAAFF3A] - 25/03/2011 - 18:18:42 RSHAD . (.Sony Ericsson Mobile Communications - SEMC USB Flash Driver.) -- C:\Windows\system32\drivers\ggsemc.sys [27176]
O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 14/07/2009 - 21:31:59 RSHAD . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\system32\drivers\hcw85cir.sys [31232]
O58 - SDL:[MD5.39D2ABCD392F3D8A6DCE7B60AE7B8EFC] - 07/03/2011 - 14:33:35 RSHAD . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\system32\drivers\HpSAMD.sys [78720]
O58 - SDL:[MD5.BE7D72FCF442C26975942007E0831241] - 23/11/2009 - 20:16:40 RSHAD . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStor.sys [409624]
O58 - SDL:[MD5.AAAF44DB3BD0B9D1FB6969B23ECC8366] - 28/04/2011 - 07:41:26 RSHAD . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\system32\drivers\iaStorV.sys [410496]
O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 13/07/2009 - 02:48:04 RSHAD . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\system32\drivers\iirsp.sys [44112]
O58 - SDL:[MD5.4FF8A2082D78255D2EB169F986BCC981] - 23/11/2009 - 21:06:59 RSHAD . (.Intel Corporation - Intel(R) Turbo Boost Technology Driver.) -- C:\Windows\system32\drivers\Impcd.sys [151040]
O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 13/07/2009 - 02:48:04 RSHAD . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_fc.sys [114752]
O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 13/07/2009 - 02:48:04 RSHAD . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas.sys [106560]
O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 13/07/2009 - 02:48:04 RSHAD . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_sas2.sys [65600]
O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 13/07/2009 - 02:48:04 RSHAD . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\system32\drivers\lsi_scsi.sys [115776]
O58 - SDL:[MD5.9C4FB231B6E02F84580DE2F00F3C5293] - 04/09/2011 - 18:52:42 RSHAD . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\system32\drivers\mbam.sys [25912]
O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 10/06/2009 - 02:48:04 RSHAD . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\system32\drivers\megasas.sys [35392]
O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 13/07/2009 - 02:48:04 RSHAD . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\system32\drivers\MegaSR.sys [284736]
O58 - SDL:[MD5.4A1C21576FB7F96F4DBDEA627FFDA775] - 17/02/2010 - 15:52:42 RSHAD . (.McAfee, Inc. - Anti-Virus File System Filter Driver.) -- C:\Windows\system32\drivers\mfeavfk.sys [102472]
O58 - SDL:[MD5.9E0AC52B3232FF8DC65FEE1A9C2FE8D1] - 17/02/2010 - 15:52:42 RSHAD . (.McAfee, Inc. - Host Intrusion Detection Link Driver.) -- C:\Windows\system32\drivers\mfehidk.sys [308296]
O58 - SDL:[MD5.624D717B11E5004F68442B5740F17F21] - 18/04/2010 - 15:45:32 RSHAD . (.McAfee, Inc. - VSCore Code Analysis Driver.) -- C:\Windows\system32\drivers\mferkdk.sys [40904]
O58 - SDL:[MD5.0CD9DE7B96735F33F078C4EA044E8B34] - 17/02/2010 - 15:52:42 RSHAD . (.McAfee, Inc. - System Monitor Filter Driver.) -- C:\Windows\system32\drivers\mfesmfk.sys [49480]
O58 - SDL:[MD5.4D85A450EDEF10C38882182753A49AAE] - 15/04/2010 - 11:40:42 RSHAD . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\system32\drivers\NETw5s64.sys [6952960]
O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 13/07/2009 - 02:48:26 RSHAD . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\system32\drivers\nfrd960.sys [51264]
O58 - SDL:[MD5.181E7FE39211E04128A30708906627D8] - 04/05/2011 - 21:49:35 RSHAD . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\system32\drivers\nvhda64v.sys [84584]
O58 - SDL:[MD5.CA8447574E9DAE22250C723819D3EF96] - 16/04/2010 - 19:20:00 RSHAD . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 188.67.) -- C:\Windows\system32\drivers\nvlddmkm.sys [11696616]
O58 - SDL:[MD5.0A92CB65770442ED0DC44834632F66AD] - 28/04/2011 - 07:41:34 RSHAD . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\system32\drivers\nvraid.sys [148352]
O58 - SDL:[MD5.DAB0E87525C10052BF65F06152F37E4A] - 28/04/2011 - 07:41:34 RSHAD . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\system32\drivers\nvstor.sys [166272]
O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 10/06/2009 - 02:45:46 RSHAD . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\system32\drivers\ql2300.sys [1524816]
O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 13/07/2009 - 02:45:45 RSHAD . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\system32\drivers\ql40xx.sys [128592]
O58 - SDL:[MD5.4D9AFDDDA0EFE97CDBFD3B5FA48B05F6] - 15/04/2010 - 10:51:50 ---A- . (.InterVideo - regi driver.) -- C:\Windows\system32\drivers\regi.sys [14112]
O58 - SDL:[MD5.5CA4ABD888B602551B59BAA26941C167] - 23/11/2009 - 21:27:30 RSHAD . (.REDC - RICOH MS Driver.) -- C:\Windows\system32\drivers\rimssne64.sys [93696]
O58 - SDL:[MD5.AA7B4AC7CB1281349CD61DE067F00D5D] - 02/03/2011 - 18:55:19 RSHAD . (.REDC - RICOH PCIe SD/MMC Driver.) -- C:\Windows\system32\drivers\risdsne64.sys [76800]
O58 - SDL:[MD5.2E3B99E8C23BE2BF32EBE1DB5261F275] - 09/08/2010 - 15:28:22 RSHAD . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\system32\drivers\RTKVHD64.sys [2269600]
O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 14/07/2009 - 21:37:19 RSHAD . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\system32\drivers\secdrv.sys [23040]
O58 - SDL:[MD5.EDE7A1D2715AAC2190D51DC07AFD44E3] - 25/03/2011 - 18:19:06 RSHAD . (.Sony Ericsson Mobile Communications - seehcri Driver.) -- C:\Windows\system32\drivers\seehcri.sys [34032]
O58 - SDL:[MD5.70F9C476B62DE4F2823E918A6C181ADE] - 23/11/2009 - 21:09:21 RSHAD . (.Sony Corporation - Sony Firmware Extension Parser driver.) -- C:\Windows\system32\drivers\SFEP.sys [11392]
O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 10/06/2009 - 02:45:45 RSHAD . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\system32\drivers\sisraid2.sys [43584]
O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 13/07/2009 - 02:45:46 RSHAD . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\system32\drivers\sisraid4.sys [80464]
O58 - SDL:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 13/02/2011 - 00:00:00 RSHAD . (...) -- C:\Windows\system32\drivers\sptd.sys [503352]
O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 13/07/2009 - 02:45:55 RSHAD . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\system32\drivers\stexstor.sys [24656]
O58 - SDL:[MD5.1A006963644C7FDE5BE60036F3A43E68] - 12/06/2011 - 13:05:38 RSHAD . (.EnTech Taiwan - TVicHW32 driver for Windows XP 64-bit edition.) -- C:\Windows\system32\drivers\TVicHW64.sys [21200]
O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 14/07/2009 - 02:45:55 RSHAD . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\system32\drivers\viaide.sys [17488]
O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 10/06/2009 - 02:45:55 RSHAD . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\system32\drivers\vsmraid.sys [161872]
O58 - SDL:[MD5.AD12F5C7251BB8D575D560894E73CBBA] - 07/03/2011 - 11:43:40 RSHAD . (.Wondershare - Wondershare Virtual Audio Device.) -- C:\Windows\system32\drivers\WsAudioDevice_383S(1).sys [29288]
O58 - SDL:[MD5.5250193EF8E173AA7491250F00EB367F] - 02/03/2011 - 18:56:48 RSHAD . (.Marvell - NDIS6.20 Miniport Driver for Marvell Yukon Ethernet Controller.) -- C:\Windows\system32\drivers\yk62x64.sys [402720]
O58 - SDL:[MD5.6CCD1135320109D6B219F1A6E04AD9F6] - 23/04/2010 - 10:31:00 ---A- . (.Arcsoft, Inc. - Arcsoft(R) ASPI Shell.) -- C:\Windows\SysWOW64\drivers\afc.sys [22784]
O58 - SDL:[MD5.323860EC84BB332B613530D904380A4D] - 09/06/2010 - 11:49:28 ---A- . (.AVIRA GmbH - Avira AntiVir File Filter Driver.) -- C:\Windows\SysWOW64\drivers\avgntdd.sys [51992]
O58 - SDL:[MD5.7F8283EA8284DFDE226E3262BED8C92A] - 09/06/2010 - 11:49:28 ---A- . (.AVIRA GmbH - Avira Antivir File Filter Driver Manager.) -- C:\Windows\SysWOW64\drivers\avgntmgr.sys [17016]
O58 - SDL:[MD5.D5BCB77BE83CF99F508943945D46343D] - 04/05/2011 - 21:42:15 ---A- . (.Dritek System Inc. - Dritek 64-bit PS/2 Keyboard Filter Driver.) -- C:\Windows\SysWOW64\drivers\DKbFltr.sys [25608]
O58 - SDL:[MD5.71DEE5C097AD32D4E81E6AC39C35B948] - 29/01/2011 - 00:14:48 ---A- . (.© Everstrike Software - Lock Folder XP Filter Driver.) -- C:\Windows\SysWOW64\drivers\LF40fs64.sys [107584]
O58 - SDL:[MD5.B18225739ED9CAA83BA2DF966E9F43E8] - 04/09/2011 - 18:52:42 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys [41272]
O58 - SDL:[MD5.001B4278407F4303EFC902A2B16F2453] - 15/04/2010 - 19:09:28 ---A- . (.InterVideo - regi driver.) -- C:\Windows\SysWOW64\drivers\regi.sys [11032]
O58 - SDL:[MD5.7455ED832A33FEF453407F5411C3342D] - 07/06/2011 - 12:03:58 ---A- . (.Almico Software - Speed Fan x64 Driver.) -- C:\Windows\SysWOW64\speedfan.sys [25280]
~ Scan Drivers in 00mn 03s



---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: ZHPDiag 1.28 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
O63 - Logiciel: OTL - (.OldTimer.)
~ Scan ADS in 00mn 00s



---\\ Liste des services Legacy (O64)
O64 - Services: CurCS - 28/06/2011 - C:\Windows\system32\DRIVERS\avgntflt.sys - No object(No service) .(.Avira GmbH - Avira Minifilter Driver.) - LEGACY_AVGNTFLT
O64 - Services: CurCS - 28/06/2011 - C:\Windows\system32\DRIVERS\avipbb.sys - No object(No service) .(.Avira GmbH - Avira Driver for Security Enhancement.) - LEGACY_AVIPBB
O64 - Services: CurCS - 22/07/2010 - C:\Windows\system32\Drivers\FSPFltd.sys - No object(No service) .(.FSPro Labs - FSPro File System Filter.) - LEGACY_FSPROFILTER
O64 - Services: CurCS - 30/01/2010 - C:\Windows\Syswow64\drivers\lf40fs64.sys - No object(No service) .(.© Everstrike Software - Lock Folder XP Filter Driver.) - LEGACY_LFSYS
O64 - Services: CurCS - 06/07/2011 - C:\Windows\system32\drivers\mbam.sys - No object(No service) .(.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) - LEGACY_MBAMPROTECTOR
O64 - Services: CurCS - 17/02/2010 - C:\Windows\system32\drivers\mfeavfk.sys - No object(No service) .(.McAfee, Inc. - Anti-Virus File System Filter Driver.) - LEGACY_MFEAVFK
O64 - Services: CurCS - 17/02/2010 - C:\Windows\system32\drivers\mfehidk.sys - No object(No service) .(.McAfee, Inc. - Host Intrusion Detection Link Driver.) - LEGACY_MFEHIDK
O64 - Services: CurCS - 17/02/2010 - C:\Windows\system32\drivers\mfesmfk.sys - No object(No service) .(.McAfee, Inc. - System Monitor Filter Driver.) - LEGACY_MFESMFK
O64 - Services: CurCS - 17/04/2007 - C:\Windows\system32\drivers\regi.sys - No object(No service) .(.InterVideo - regi driver.) - LEGACY_REGI
O64 - Services: CurCS - ??/??/???? - C:\Windows\system32\Drivers\sptd.sys - No object (No service) .(...) - LEGACY_SPTD
O64 - Services: CurCS - 12/06/2011 - C:\Windows\system32\DRIVERS\TVICHW64.sys - No object(No service) .(.EnTech Taiwan - TVicHW32 driver for Windows XP 64-bit editi.) - LEGACY_TVICHW64
~ Scan Services in 00mn 02s



---\\ File Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (. - .) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Not Key.)
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Console Based Script Host.) -- C:\Windows\SysWow64\CScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe
O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] (.Microsoft Corporation - Windows Control Panel.) -- "%1" %*
O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <FirefoxHTML>[HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Console Based Script Host.) -- C:\Windows\SysWow64\CScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
~ Scan Keys in 00mn 00s



---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <>[HKLM\..\Shell\open\Command] (...) -- (.Not Key.) (.not file.)
~ Scan Keys in 00mn 00s



---\\ Search Browser Infection (O69)
O69 - SBI: SearchScopes [HKCU] {0353B6BF-EF35-4A8E-BE7F-6706A00C74BC} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {0633EE93-1111-472f-A0FF-E1416B8B2E3B} - (Google Customized Web Search) - http://www.gooofullsearch.com
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {09C53D75-233B-410D-B937-5F77D5EC3D29} - (Zinio) - http://www.zinio.com
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} [DefaultScope] - (Search the web (Babylon)) - http://isearch.babylon.com
O69 - SBI: SearchScopes [HKCU] {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} - (Search The Web) - http://www.mystart.com
O69 - SBI: SearchScopes [HKCU] {4DB820B7-263D-42EC-9912-2128D12B58AA} - (Ask Search) - http://websearch.ask.com
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Ask Search) - http://websearch.ask.com
O69 - SBI: SearchScopes [HKCU] {B11C89E3-70B6-4514-97D8-BEB274D6D01C} - (eBay) - http://rover.ebay.com
O69 - SBI: SearchScopes [HKCU] {b41306c6-96d0-442a-bcc4-b0f621e82ce9} - (Fissa) - http://www.fissa.com
O69 - SBI: SearchScopes [HKCU] {BE28C22E-F666-424d-B5FD-125C4AFEE34E} - (Search) - http://search.myheritage.com
O69 - SBI: SearchScopes [HKCU] {CE56178B-A416-43CE-8E70-EAF0B6FDA128} - (Shopping.com) - http://fr.shopping.com
~ Scan Keys in 00mn 00s



---\\ Recherche particuliere à la racine de certains dossiers (O84)
[MD5.F4681FAACA13A9E6E52676105FC2C782] [SPRF][26/07/2011] (.NCH Software - Switch Sound File Converter.) -- C:\Users\quentin\AppData\Local\Temp\n1s.exe [1320242]
[MD5.F4681FAACA13A9E6E52676105FC2C782] [SPRF][26/07/2011] (.NCH Software - Switch Sound File Converter.) -- C:\Users\quentin\AppData\Local\Temp\n2s.exe [1320242]
[MD5.F4681FAACA13A9E6E52676105FC2C782] [SPRF][26/07/2011] (.NCH Software - Switch Sound File Converter.) -- C:\Users\quentin\AppData\Local\Temp\n3s.exe [1320242]
[MD5.2B25D699BCFCFCF866E098BFCF5AD87C] [SPRF][07/09/2011] (.OldTimer Tools - Pas de description.) -- C:\Users\quentin\Desktop\OTL.exe [581120]
[MD5.62232DBA79A8882F26913D0473FF5EC2] [SPRF][06/03/2011] (.Wondershare Software - Wondershare Streaming Audio Recorder Setup.) -- C:\Users\quentin\Desktop\streaming-audio-recorder_full383.exe [5779879]
~ Scan Files in 00mn 00s



---\\ Firewall Active Exception List (FirewallRules) (O87)
O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "{17347BBC-2954-4E4C-B134-4B1A61B2005E}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\Microsoft Office\Office12\ONENOTE.exe (.not file.)
O87 - FAEL: "{2F6239F6-013C-4692-B4A5-2229410CD30B}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\Microsoft Office\Office12\ONENOTE.exe (.not file.)
O87 - FAEL: "{1698443A-F3A9-44F1-8308-00BFB0B15D18}" | In - None - P6 - TRUE | .(.Sony Corporation - VAIO Media plus Digital Media Server.) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
O87 - FAEL: "{54A70680-7A0F-4DEF-BCAB-B575411945C2}" | In - None - P6 - TRUE | .(.Sony Corporation - VAIO Media plus Content Importer.) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
O87 - FAEL: "{6E1AC0D9-F4C0-40A5-A9A5-BA4ED8438B6E}" | In - None - P6 - TRUE | .(.Sony Corporation - VAIO Media plus Device Searcher.) -- C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
O87 - FAEL: "{04345616-C53A-49ED-9B86-E7F9D4F64B83}" | In - None - P6 - TRUE | .(.Sony Corporation - VAIO Media plus.) -- C:\Program Files (x86)\Sony\VAIO Media plus\VMp.exe
O87 - FAEL: "{D688C16F-B4DE-456A-B89F-40D3C8EA2830}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\adslTV\adsltv.exe (.not file.)
O87 - FAEL: "{63DE4C22-413E-4F7F-A461-A7D8A101E21E}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\adslTV\adsltv.exe (.not file.)
O87 - FAEL: "{5CF5AE17-F424-4F44-A630-A6BE7FDE5FFE}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\adslTV\VLC\vlc.exe (.not file.)
O87 - FAEL: "{46C64774-D764-459C-BB41-1BAFAAC2C397}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\adslTV\VLC\vlc.exe (.not file.)
O87 - FAEL: "{41CF4093-FE68-48F3-86AE-0FDB50A5C4E9}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\DMV\MaxTV4\core\maxtv_xul.exe (.not file.)
O87 - FAEL: "{78F38924-E3C6-433C-A619-68D5ADD4C893}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\DMV\MaxTV4\core\maxtv_xul.exe (.not file.)
O87 - FAEL: "{D46A6396-6119-4E5E-B7D9-0A167F78E92B}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\DMV\MaxTV4\maxtv.exe (.not file.)
O87 - FAEL: "{FE8A46F5-6E24-44D2-9CFE-5A11D7F1D7B7}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\DMV\MaxTV4\maxtv.exe (.not file.)
O87 - FAEL: "{0A10AA33-AD00-4036-B17D-2E93DDF1A6B2}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\DMV\MaxTV4\recorder.exe (.not file.)
O87 - FAEL: "{B3E26C80-1E55-45D9-A581-5BE93B6DC518}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\DMV\MaxTV4\recorder.exe (.not file.)
O87 - FAEL: "TCP Query User{3936E0F5-0C8D-4571-ADF3-73C51148EE90}C:\program files (x86)\musicbrainz picard\picard.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\musicbrainz picard\picard.exe (.not file.)
O87 - FAEL: "UDP Query User{96E7266E-5FA0-4300-8219-35D7ED0E1CD3}C:\program files (x86)\musicbrainz picard\picard.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\musicbrainz picard\picard.exe (.not file.)
O87 - FAEL: "TCP Query User{8630D383-9376-4CE7-B0C9-BB5688AAD3B3}C:\program files (x86)\mozilla firefox\firefox.exe" | In - Private - P6 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\program files (x86)\mozilla firefox\firefox.exe
O87 - FAEL: "UDP Query User{4117F197-CC3C-48BA-B1D9-58858C8B8D1D}C:\program files (x86)\mozilla firefox\firefox.exe" | In - Private - P17 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\program files (x86)\mozilla firefox\firefox.exe
O87 - FAEL: "TCP Query User{A6E77699-F9CD-411A-8102-44D45DD150F1}C:\program files (x86)\google\google earth\client\googleearth.exe" | In - Private - P6 - TRUE | .(.Google.) -- C:\program files (x86)\google\google earth\client\googleearth.exe
O87 - FAEL: "UDP Query User{36AE4D84-18B6-4E8E-8BE9-E983EB324346}C:\program files (x86)\google\google earth\client\googleearth.exe" | In - Private - P17 - TRUE | .(.Google.) -- C:\program files (x86)\google\google earth\client\googleearth.exe
O87 - FAEL: "TCP Query User{CAE97DC1-B985-48E8-9656-FE9F9C44E4F6}C:\program files (x86)\google\google earth\plugin\geplugin.exe" | In - Private - P6 - TRUE | .(.Google.) -- C:\program files (x86)\google\google earth\plugin\geplugin.exe
O87 - FAEL: "UDP Query User{0F2C0D0E-8FFE-4196-B815-E71E2460C409}C:\program files (x86)\google\google earth\plugin\geplugin.exe" | In - Private - P17 - TRUE | .(.Google.) -- C:\program files (x86)\google\google earth\plugin\geplugin.exe
O87 - FAEL: "TCP Query User{C92A8B97-40E5-4887-8DFE-49B7A3476912}C:\program files (x86)\atari\tdu2\uplauncher.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\atari\tdu2\uplauncher.exe (.not file.)
O87 - FAEL: "UDP Query User{3423893D-9DC3-4A73-A70D-CD3C0813727D}C:\program files (x86)\atari\tdu2\uplauncher.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\atari\tdu2\uplauncher.exe (.not file.)
O87 - FAEL: "TCP Query User{3DF18A48-AA14-4B67-A47C-DFDD5AD99DD8}C:\program files (x86)\atari\tdu2\_uplauncher.exe" | In - Private - P6 - TRUE | .(.Eden Games - UpLauncher.) -- C:\program files (x86)\atari\tdu2\_uplauncher.exe
O87 - FAEL: "UDP Query User{2CD1B37E-FA9E-4C3E-9BD3-B65E79DE69FE}C:\program files (x86)\atari\tdu2\_uplauncher.exe" | In - Private - P17 - TRUE | .(.Eden Games - UpLauncher.) -- C:\program files (x86)\atari\tdu2\_uplauncher.exe
O87 - FAEL: "TCP Query User{4B517435-0E2F-41DE-B121-07ADA67274BA}C:\tdu2\uplauncher.exe" |In - Private - P6 - TRUE | .(...) -- C:\tdu2\uplauncher.exe (.not file.)
O87 - FAEL: "UDP Query User{01C5E5ED-E0C9-42F8-A18C-D577BF0A344B}C:\tdu2\uplauncher.exe" |In - Private - P17 - TRUE | .(...) -- C:\tdu2\uplauncher.exe (.not file.)
O87 - FAEL: "TCP Query User{1845FFDC-2B59-4847-8285-D2FB68610950}C:\tdu2\_uplauncher.exe" |In - Private - P6 - TRUE | .(...) -- C:\tdu2\_uplauncher.exe (.not file.)
O87 - FAEL: "UDP Query User{FE47386D-7ED6-4897-BA68-8AD7A1784D7C}C:\tdu2\_uplauncher.exe" |In - Private - P17 - TRUE | .(...) -- C:\tdu2\_uplauncher.exe (.not file.)
O87 - FAEL: "TCP Query User{56364C3B-41CB-4BFB-87FC-F5E4231F45CE}C:\program files (x86)\electronic arts\need for speed(tm) hot pursuit\nfs11.exe" | In - Private - P6 - TRUE | .(.Electronic Arts.) -- C:\program files (x86)\electronic arts\need for speed(t
O87 - FAEL: "UDP Query User{8CA0F902-EB9F-4432-9A45-917E186268A3}C:\program files (x86)\electronic arts\need for speed(tm) hot pursuit\nfs11.exe" | In - Private - P17 - TRUE | .(.Electronic Arts.) -- C:\program files (x86)\electronic arts\need for speed(
O87 - FAEL: "TCP Query User{E5E2A002-29F0-4EB2-98E3-D13EC6DDB9DF}C:\program files (x86)\electronic arts\need for speed(tm) hot pursuit\nfs11 (2).exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\electronic arts\need for speed(tm) hot purs
O87 - FAEL: "UDP Query User{41F54967-C4C2-4962-898A-D5B49E85F6AF}C:\program files (x86)\electronic arts\need for speed(tm) hot pursuit\nfs11 (2).exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\electronic arts\need for speed(tm) hot pur
O87 - FAEL: "{DCC53634-93AA-4535-80D0-D6A3DE91D7A7}" | In - Private - P6 - TRUE | .(.Electronic Arts - Need for Speed(TM) Hot Pursuit Launcher.) -- C:\Program Files (x86)\Electronic Arts\Need for Speed(TM) Hot Pursuit\Launcher.exe
O87 - FAEL: "{F8FED004-FAE3-4916-8158-AB92DCA94CD8}" | In - Private - P17 - TRUE | .(.Electronic Arts - Need for Speed(TM) Hot Pursuit Launcher.) -- C:\Program Files (x86)\Electronic Arts\Need for Speed(TM) Hot Pursuit\Launcher.exe
O87 - FAEL: "TCP Query User{CFCD4544-0F95-4C0A-8A32-135E408F10C7}C:\tdu2\uplauncher.exe" |In - Public - P6 - TRUE | .(...) -- C:\tdu2\uplauncher.exe (.not file.)
O87 - FAEL: "UDP Query User{66F39D2B-84C4-4245-B0ED-BCE51C22A442}C:\tdu2\uplauncher.exe" |In - Public - P17 - TRUE | .(...) -- C:\tdu2\uplauncher.exe (.not file.)
O87 - FAEL: "TCP Query User{4173045A-AD1C-43E4-9B82-9CCD186886A4}C:\program files\apowersoft\streaming video recorder\streaming-video-recorder.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files\apowersoft\streaming video recorder\streaming-video
O87 - FAEL: "UDP Query User{9529ED4C-7A00-436D-B435-29F4FBBEBD7C}C:\program files\apowersoft\streaming video recorder\streaming-video-recorder.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files\apowersoft\streaming video recorder\streaming-vide
O87 - FAEL: "TCP Query User{E5C0A7BC-7DA4-4BD2-901C-67E0CAE88DED}C:\program files (x86)\atari\tdu2\uplauncher.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\atari\tdu2\uplauncher.exe (.not file.)
O87 - FAEL: "UDP Query User{03AB112F-5CE3-4357-AA70-87F69C49CA39}C:\program files (x86)\atari\tdu2\uplauncher.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\atari\tdu2\uplauncher.exe (.not file.)
O87 - FAEL: "{F6901967-EF51-4D8D-80B5-2AAC1A54BA46}" | In - None - P17 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O87 - FAEL: "{2BD7342D-762A-49F1-A41B-A2AF9DE6A9C3}" |In - Private - P6 - TRUE | .(...) -- C:\Users\quentin\Downloads\MusicConverterSetup.exe (.not file.)
O87 - FAEL: "{27776F80-3CBB-47C0-9E7F-326AB13A446D}" |In - Private - P17 - TRUE | .(...) -- C:\Users\quentin\Downloads\MusicConverterSetup.exe (.not file.)
O87 - FAEL: "TCP Query User{A5018B9F-DB31-4EF6-8F7F-B9A3916484FA}C:\users\quentin\appdata\roaming\filehunter\pumpa.exe" |In - Private - P6 - TRUE | .(...) -- C:\users\quentin\appdata\roaming\filehunter\pumpa.exe (.not file.)
O87 - FAEL: "UDP Query User{CD08E7A5-9B21-42B2-BBB9-4A7C6F259985}C:\users\quentin\appdata\roaming\filehunter\pumpa.exe" |In - Private - P17 - TRUE | .(...) -- C:\users\quentin\appdata\roaming\filehunter\pumpa.exe (.not file.)
O87 - FAEL: "{BCB4EB84-E24B-48E6-ACCE-2B8822D6EB23}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe
O87 - FAEL: "{AF8E82EA-FF0E-46AE-A3DA-F12E677FA1BD}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Sony Ericsson\Update Engine\Sony Ericsson Update Engine.exe
O87 - FAEL: "TCP Query User{BEADBC9F-A07D-4A4F-A4C1-C19C57133C1B}C:\program files (x86)\mozilla firefox\plugin-container.exe" | In - Private - P6 - TRUE | .(.Mozilla Corporation.) -- C:\program files (x86)\mozilla firefox\plugin-container.exe
O87 - FAEL: "UDP Query User{6238D6B4-ADB3-464A-87FC-11C0240E0774}C:\program files (x86)\mozilla firefox\plugin-container.exe" | In - Private - P17 - TRUE | .(.Mozilla Corporation.) -- C:\program files (x86)\mozilla firefox\plugin-container.exe
~ Scan Firewall in 00mn 02s



---\\ Scan Additionnel (O88)
Database Version : 8617 - (29/08/2011)
Clés trouvées (Keys found) : 20
Valeurs trouvées (Values found) : 0
Dossiers trouvés (Folders found) : 12
Fichiers trouvés (Files found) : 0

[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>Adware.MyWebSearch
[HKLM\Software\WOW6432Node\Classes\Interface\{2a42d13c-d427-4787-821b-cf6973855778}] =>Adware.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4a99-B4B6-146BF802613B}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4a99-B4B6-146BF802613B}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}] =>Adware.IMBooster
[HKLM\Software\WOW6432Node\Classes\Interface\{3d8478aa-7b88-48a9-8bcb-b85d594411ec}] =>Adware.Agent
[HKLM\Software\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}] =>Toolbar.Conduit
[HKLM\Software\WOW6432Node\Classes\Interface\{4897bba6-48d9-468c-8efa-846275d7701b}] =>Adware.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83ff80f4-8c74-4b80-b5ba-c8ddd434e5c4}] =>Spyware.BHO
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83ff80f4-8c74-4b80-b5ba-c8ddd434e5c4}] =>Spyware.BHO
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49dd-99D7-DC866BE87DBC}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49dd-99D7-DC866BE87DBC}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{b41306c6-96d0-442a-bcc4-b0f621e82ce9}] =>PUP.OfferBox
[HKLM\Software\WOW6432Node\Classes\Interface\{eee6c358-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKLM\Software\WOW6432Node\Classes\Interface\{eee6c35a-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}] =>Hijacker.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}] =>Hijacker.Agent
[HKCU\Software\FissaSearch] =>PUP.OfferBox
[HKCU\Software\Spointer] =>Adware.SPointer
[HKCU\Software\AppDataLow\Software\Toolbar] =>Toolbar.Conduit
C:\ProgramData\Babylon =>Toolbar.Babylon
C:\Users\quentin\AppData\Local\Babylon =>Toolbar.Babylon
C:\Users\quentin\AppData\Local\moovida air =>Adware.SPointer
C:\Users\quentin\AppData\LocalLow\BabylonToolbar =>Toolbar.Babylon
C:\Users\quentin\AppData\LocalLow\Conduit =>Toolbar.Conduit
C:\Users\quentin\AppData\LocalLow\PriceGong =>Adware.PriceGong
C:\Users\quentin\AppData\LocalLow\SweetIM =>Toolbar.SweetIM
C:\Users\quentin\AppData\LocalLow\Toolbar4 =>Toolbar.Conduit
C:\Program Files (x86)\Babylon =>Toolbar.Babylon
C:\Program Files (x86)\Family Toolbar =>Toolbar.Agent
~ Scan Additionnel in 00mn 08s



---\\ Recherche détournement de DNS routeur (O89)
Serveur : UnKnown
Address: 192.168.1.1
Nom : www.l.google.com
Addresses: 209.85.148.147
209.85.148.106
209.85.148.105
209.85.148.99
209.85.148.103
209.85.148.104
Aliases: www.google.fr
www.google.com
~ Scan DNS in 00mn 02s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 20/05/2010 113152 | (ACDaemon) . (.ArcSoft Inc..) - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
SR - | Auto 09/06/2010 136360 | (AntiVirSchedulerService) . (.Avira GmbH.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
SR - | Auto 09/06/2010 269480 | (AntiVirService) . (.Avira GmbH.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
SR - | Auto 23/11/2009 873248 | (btwdins) . (.Broadcom Corporation..) - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
SR - | Auto 15/04/2010 1420560 | (EvtEng) . (.Intel(R) Corporation.) - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
SS - | Demand 02/05/2010 1436424 | (FLEXnet Licensing Service 64) . (.Acresso Software Inc..) - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
SR - | Auto 27/06/2010 142648 | (fsproflt) . (.FSPro Labs.) - C:\Windows\SysWOW64\fsproflt.exe
SS - | Auto 08/05/2010 136176 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 08/05/2010 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - | Auto 23/11/2009 354840 | (IAANTMON) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
SR - | Auto 15/04/2010 112152 | (IviRegMgr) . (.InterVideo.) - C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
SR - | Auto 04/09/2011 366640 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
SR - | Auto 15/04/2010 360224 | (PMBDeviceInfoProvider) . (.Sony Corporation.) - c:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
SR - | Auto 30/05/2011 185632 | (PSI_SVC_2) . (.Protexis Inc..) - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
SR - | Auto 15/04/2010 831760 | (RegSrvc) . (.Intel(R) Corporation.) - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
SS - | Demand 15/04/2010 313840 | (Roxio UPnP Renderer 10) . (.Sonic Solutions.) - C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe
SS - | Auto 15/04/2010 362992 | (Roxio Upnp Server 10) . (.Sonic Solutions.) - C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe
SR - | Auto 12/09/2010 1153368 | (SBSDWSCService) . (.Safer Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
SR - | Auto 15/04/2010 120104 | (SOHCImp) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
SR - | Auto 15/04/2010 70952 | (SOHDBSvr) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe
SR - | Auto 15/04/2010 427304 | (SOHDms) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
SR - | Auto 15/04/2010 75048 | (SOHDs) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
SR - | Auto 15/04/2010 91432 | (SOHPlMgr) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe
SS - | Demand 20/08/2011 155344 | (Sony Ericsson PCCompanion) . (.Avanquest Software.) - C:\Program Files (x86)\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe
SR - | Auto 15/04/2010 104960 | (uCamMonitor) . (.ArcSoft, Inc..) - C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
SS - | Demand 15/04/2010 69632 | (VAIO Entertainment TV Device Arbitration Service) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResour
SR - | Auto 09/08/2010 205168 | (VAIO Event Service) . (.Sony Corporation.) - C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe
SR - | Demand 15/04/2010 571248 | (VAIO Power Management) . (.Sony Corporation.) - C:\Program Files\Sony\VAIO Power Management\SPMService.exe
SR - | Auto 15/04/2010 642416 | (VCFw) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
SR - | Auto 07/05/2010 529776 | (VcmIAlzMgr) . (.Sony Corporation.) - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
SR - | Auto 15/04/2010 361840 | (VcmINSMgr) . (.Sony Corporation.) - C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
SS - | Demand 07/05/2010 115568 | (VcmXmlIfHelper) . (.Sony Corporation.) - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
SR - | Demand 08/06/2011 44736 | (VCService) . (.Sony Corporation.) - C:\Program Files\Sony\VAIO Care\VCService.exe
SR - | Auto 15/09/2010 845312 | (VSNService) . (.Sony Corporation.) - C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
SR - | Demand 17/06/2011 1021840 | (VUAgent) . (.Sony Corporation.) - C:\Program Files\Sony\VAIO Update 5\VUAgent.exe
SR - | Auto 15/04/2010 206336 | (VzCdbSvc) . (.Sony Corporation.) - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
~ Scan Services in 00mn 05s



---\\ Recherche Master Boot Record Infection (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Run by quentin at 12/09/2011 22:15:09

device: opened successfully
user: error reading MBR

Disk trace:
error: Read Descripteur non valide
kernel: error reading MBR
~ Scan MBR in 00mn 09s



---\\ Recherche Master Boot Record Infection (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by quentin at 12/09/2011 22:15:11

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ Scan MBR in 00mn 11s



End of the scan (1519 lines in 02mn 25s)(0)

[cwbg]

salut , est ce que le test est fini? Je ne dois plus rien faire?
Sinon un gd merci pour les conseils
@+

[Del-crosseur]

Bonjour,

Je vais analyser ton rapport et je posterais une procédure dans l'apremidi

Bonne journée

[Del-crosseur]

re ,


***Dans "Programmes" tu as ZHPDiag , cliques dessus pour le lancer
Lorsque la fenêtre de l'interface sera ouverte clique sur cette icône -->
Une nouvelle interface va se présenter (tu seras sur ZHPFix), dans celle-ci applique cette procédure :

• Dans la fenêtre d'application (blanche et vierge) copie et colle ceci dedans :

G1 - GCS: Preference [User Data\Default] http://search.babylon.com
G0 - GCSP: Preference [User Data\Default][HomePage] http://search.babylon.com
[HKCU\Software\FissaSearch]
[HKCU\Software\Spointer]
[HKLM\Software\Babylon]
O43 - CFD: 28/06/2011 - 22:10:54 - [0] ----D- C:\ProgramData\Babylon
O43 - CFD: 28/06/2011 - 22:10:58 - [25675472] ----D- C:\Users\quentin\AppData\Local\Babylon
O43 - CFD: 26/09/2010 - 00:30:24 - [16538] ----D- C:\Users\quentin\AppData\Local\moovida Air
O43 - CFD: 06/11/2010 - 22:20:22 - [93511] ----D- C:\Program Files (x86)\Babylon
O43 - CFD: 26/09/2010 - 00:30:42 - [0] ----D- C:\Program Files (x86)\Fluendo
O69 - SBI: SearchScopes [HKCU] {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} - (Search The Web) - http://www.mystart.com
O69 - SBI: SearchScopes [HKCU] {b41306c6-96d0-442a-bcc4-b0f621e82ce9} - (Fissa) - http://www.fissa.com
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4a99-B4B6-146BF802613B}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4a99-B4B6-146BF802613B}]
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83ff80f4-8c74-4b80-b5ba-c8ddd434e5c4}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83ff80f4-8c74-4b80-b5ba-c8ddd434e5c4}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49dd-99D7-DC866BE87DBC}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49dd-99D7-DC866BE87DBC}]
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{b41306c6-96d0-442a-bcc4-b0f621e82ce9}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}]
C:\ProgramData\Babylon
C:\Users\quentin\AppData\Local\Babylon
C:\Users\quentin\AppData\Local\moovida air
C:\Users\quentin\AppData\LocalLow\BabylonToolbar
C:\Users\quentin\AppData\LocalLow\PriceGong
C:\Users\quentin\AppData\LocalLow\Toolbar4
C:\Program Files (x86)\Babylon
EmptyFlash
Emptytemp

• En haut dans la barre de commandes clique sur --> H
pour activer les lignes Helpers.

***Clique sur "OK", puis sur "Tous", et pour terminer le lancement sur "Nettoyer".
/!\Ne touche pas au pc pendant que ZHPFix travail , risque de plantage du logiciel./!\
Une fois le Scan terminer , tu obtiendras un rapport de nettoyage.
Poste-moi le rapport.

Bonne fin de journée !

[cwbg]

salut voila mon rapport, mais dit moi a quoi sert exactement ces différentes analyses?

Rapport de ZHPFix 1.12.3360 par Nicolas Coolman, Update du 29/08/2011
Fichier d'export Registre : C:\ZHP\ZHPExportRegistry-20-09-2011-16-13-17.txt
Run by quentin at 20/09/2011 16:13:17
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Web site : http://www.premiumorange.com/zeb-help-p ... hpfix.html

========== Clé(s) du Registre ==========
SUPPRIME Key: HKCU\Software\FissaSearch
SUPPRIME Key: HKCU\Software\Spointer
ABSENT Key: HKLM\Software\Babylon
SUPPRIME Key: SearchScopes :{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
SUPPRIME Key: SearchScopes :{b41306c6-96d0-442a-bcc4-b0f621e82ce9}
SUPPRIME Key: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4a99-B4B6-146BF802613B}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4a99-B4B6-146BF802613B}
ABSENT Key: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83ff80f4-8c74-4b80-b5ba-c8ddd434e5c4}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83ff80f4-8c74-4b80-b5ba-c8ddd434e5c4}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49dd-99D7-DC866BE87DBC}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49dd-99D7-DC866BE87DBC}
ABSENT Key: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{b41306c6-96d0-442a-bcc4-b0f621e82ce9}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}

========== Préférences navigateur ==========
PRESENT Chrome File: C:\Users\quentin\AppData\Local\Google\Chrome\User Data\Default\Preferences
SUPPRIME Chrome Site: http://search.babylon.com
SUPPRIME Chrome Site: http://search.babylon.com
SUPPRIME Chrome Site: http://search.babylon.com
SUPPRIME Chrome Site: http://search.babylon.com
PRESENT Chrome File: C:\Users\quentin\AppData\Local\Google\Chrome\User Data\Default\Preferences
ABSENT Chrome Site: http://search.babylon.com

========== Dossier(s) ==========
SUPPRIME Folder: C:\ProgramData\Babylon
SUPPRIME Folder: C:\Users\quentin\AppData\Local\Babylon
SUPPRIME Folder: C:\Users\quentin\AppData\Local\moovida Air
SUPPRIME Folder: C:\Program Files (x86)\Babylon
SUPPRIME Folder: C:\Program Files (x86)\Fluendo
SUPPRIME Folder: c:\users\quentin\appdata\locallow\babylontoolbar
SUPPRIME Folder: c:\users\quentin\appdata\locallow\pricegong
SUPPRIME Folder: c:\users\quentin\appdata\locallow\toolbar4
SUPPRIME Flash Cookies: 9
SUPPRIME Temporaires Windows: : 504

========== Fichier(s) ==========
ABSENT Folder/File: c:\programdata\babylon
ABSENT Folder/File: c:\users\quentin\appdata\local\babylon
ABSENT Folder/File: c:\users\quentin\appdata\local\moovida air
ABSENT Folder/File: c:\program files (x86)\babylon
SUPPRIME Flash Cookies: 5
SUPPRIME Temporaires Windows: : 49


========== Récapitulatif ==========
16 : Clé(s) du Registre
10 : Dossier(s)
6 : Fichier(s)
7 : Préférences navigateur


End of the scan in 00mn 12s

========== Chemin de fichier rapport ==========
C:\ZHP\ZHPFix[R1].txt - 20/09/2011 16:13:17 [3357]

[Del-crosseur]

Bonjour ,

Parfait... !
Comment se comporte le pc à présent ?

Cela sert à trouver les infections dans ton pc , puis les supprimer par la suite...

Bonne journée

[cwbg]

Mon ordinateur se comporte très bien pour le moment ,par contre j' ai du faire une mise à jour de malwairbyte ;une fois la mise à jour effectuer et que j'ai du relancer mon ordinateur j'étais incapable d'utiliser mon ordi.
Je l'ai donc supprimer de mon ordi ,mais à chaque fois que je le réinstalle toujours le même problème.
Mais encore un tout grand merci.