Votre question
Fermé

[Résolu] Virus Babylone Search

Tags :
  • Virus
  • mozilla
  • Désinstaller
  • Firefox
  • Spyware
  • Sécurité
Dernière réponse : dans Sécurité et virus
11 Avril 2012 08:49:46

Bonjour à tous,

Je chine sur les forums depuis hier soit afin de savoir comment me débarrasser d'un soucis constater de la manière suivante:
-lorsque je me suis connecter à internet via Mozilla Firefox, la notion de "Babylone Search" revenait plusieurs fois, j'ai donc rapidement enlevé la barre qui lui était attribué ainsi que les modules complémentaires attachées à Mozilla.
-J'ai également vu qu'une installe était présente dans l'ensemble de mes programmes que j'ai alors rapidement désinstaller de la manière traditionnelle.
-En regardant sur ce forum j'ai constaté l'utilisation d'OTL que j'ai télécharger et voici le rapport dans les conditions suivantes:

Options: tous les opérateurs

Informations sous présentation:
netsvcs
msconfig
drivers32
activex
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
CREATERESTOREPOINT



Je vous met le rapport en question à la suite,...je ne sais pas comment le mettre autrement désolé:
OTL logfile created on: 11/04/2012 08:28:35 - Run 2
OTL by OldTimer - Version 3.2.39.2 Folder = D:\Desktop
64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy

3,97 Gb Total Physical Memory | 2,42 Gb Available Physical Memory | 61,05% Memory free
7,93 Gb Paging File | 6,24 Gb Available in Paging File | 78,67% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 232,94 Gb Total Space | 47,99 Gb Free Space | 20,60% Space Free | Partition Type: NTFS
Drive D: | 232,43 Gb Total Space | 35,90 Gb Free Space | 15,45% Space Free | Partition Type: NTFS

Computer Name: KEVIN-PC | User Name: Kevin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - File not found
PRC - D:\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Users\Kevin\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
PRC - C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.)
PRC - C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation)
PRC - C:\Program Files (x86)\Common Files\Gestionnaire d'installation SolidWorks\BackgroundDownloading\sldBgDwld.exe (Dassault Systèmes SolidWorks Corp.)
PRC - C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
PRC - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
PRC - C:\Windows\SysWOW64\PnkBstrA.exe ()
PRC - C:\Program Files (x86)\McAfee Security Scan\2.0.181\SSScheduler.exe (McAfee, Inc.)
PRC - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
PRC - C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe (TOSHIBA CORPORATION)
PRC - C:\Program Files\TOSHIBA\HDMICtrlMan\HCMSoundChanger.exe (TOSHIBA Corporation.)
PRC - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe (TOSHIBA CORPORATION)
PRC - C:\Program Files (x86)\TOSHIBA\TRCMan\TRCMan.exe (TOSHIBA Corporation)
PRC - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe (TOSHIBA CORPORATION)
PRC - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe (TOSHIBA CORPORATION)
PRC - C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
PRC - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe (Safer Networking Ltd.)
PRC - C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe (Adobe Systems Inc.)


========== Modules (No Company Name) ==========

MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll ()


========== Win32 Services (SafeList) ==========

SRV:64bit: - (wlcrasvc) -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe (Microsoft Corporation)
SRV:64bit: - (avast! Web Scanner) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
SRV:64bit: - (avast! Mail Scanner) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
SRV:64bit: - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
SRV:64bit: - (FLEXnet Licensing Service 64) -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe (Acresso Software Inc.)
SRV:64bit: - (TOSHIBA eco Utility Service) -- C:\Program Files\TOSHIBA\TECO\TecoService.exe (TOSHIBA Corporation)
SRV:64bit: - (TosCoSrv) -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe (TOSHIBA Corporation)
SRV:64bit: - (TPCHSrv) -- C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe (TOSHIBA Corporation)
SRV:64bit: - (TOSHIBA HDD SSD Alert Service) -- C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe (TOSHIBA Corporation)
SRV:64bit: - (TODDSrv) -- C:\Windows\SysNative\TODDSrv.exe (TOSHIBA Corporation)
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SRV:64bit: - (Thpsrv) -- C:\Windows\SysNative\ThpSrv.exe (TOSHIBA Corporation)
SRV:64bit: - (O2FLASH) -- C:\Windows\SysNative\drivers\o2flash.exe (O2Micro International)
SRV - (BBSvc) -- C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE (Microsoft Corporation.)
SRV - (SeaPort) -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation)
SRV - (GamesAppService) -- C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe (WildTangent, Inc.)
SRV - (PnkBstrA) -- C:\Windows\SysWOW64\PnkBstrA.exe ()
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (FLEXnet Licensing Service) -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (Acresso Software Inc.)
SRV - (McComponentHostService) -- C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe (McAfee, Inc.)
SRV - (TemproMonitoringService) Notebook Performance Tuning Service (TEMPRO) -- C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe (Toshiba Europe GmbH)
SRV - (TMachInfo) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe (TOSHIBA Corporation)
SRV - (cfWiMAXService) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe (TOSHIBA CORPORATION)
SRV - (ConfigFree Gadget Service) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe (TOSHIBA CORPORATION)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (ConfigFree Service) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe (TOSHIBA CORPORATION)
SRV - (Adobe Version Cue CS4) -- C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe (Adobe Systems Incorporated)


========== Driver Services (SafeList) ==========

DRV:64bit: - (ggsemc) -- C:\Windows\SysNative\drivers\ggsemc.sys (Sony Ericsson Mobile Communications)
DRV:64bit: - (ggflt) -- C:\Windows\SysNative\drivers\ggflt.sys (Sony Ericsson Mobile Communications)
DRV:64bit: - (aswTdi) -- C:\Windows\SysNative\drivers\aswTdi.sys (AVAST Software)
DRV:64bit: - (aswSP) -- C:\Windows\SysNative\drivers\aswSP.sys (AVAST Software)
DRV:64bit: - (aswRdr) -- C:\Windows\SysNative\drivers\aswRdr.sys (AVAST Software)
DRV:64bit: - (aswMonFlt) -- C:\Windows\SysNative\drivers\aswMonFlt.sys (AVAST Software)
DRV:64bit: - (aswFsBlk) -- C:\Windows\SysNative\drivers\aswFsBlk.sys (AVAST Software)
DRV:64bit: - (fssfltr) -- C:\Windows\SysNative\drivers\fssfltr.sys (Microsoft Corporation)
DRV:64bit: - (TFsExDisk) -- C:\Windows\SysNative\drivers\TFsExDisk.sys (Teruten Inc)
DRV:64bit: - (ssadmdm) -- C:\Windows\SysNative\drivers\ssadmdm.sys (MCCI Corporation)
DRV:64bit: - (ssadbus) SAMSUNG Android USB Composite Device driver (WDM) -- C:\Windows\SysNative\drivers\ssadbus.sys (MCCI Corporation)
DRV:64bit: - (ssadmdfl) SAMSUNG Android USB Modem (Filter) -- C:\Windows\SysNative\drivers\ssadmdfl.sys (MCCI Corporation)
DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\drivers\usbaapl64.sys (Apple, Inc.)
DRV:64bit: - (sptd) -- C:\Windows\SysNative\drivers\sptd.sys ()
DRV:64bit: - (rtl8192se) -- C:\Windows\SysNative\drivers\rtl8192se.sys (Realtek Semiconductor Corporation )
DRV:64bit: - (O2SDGRDR) -- C:\Windows\SysNative\drivers\o2sdgx64.sys (O2Micro )
DRV:64bit: - (O2MDGRDR) -- C:\Windows\SysNative\drivers\o2mdgx64.sys (O2Micro )
DRV:64bit: - (nuvotoncir) -- C:\Windows\SysNative\drivers\nuvotoncir.sys (Nuvoton Technology Corporation)
DRV:64bit: - (WRfiltv) -- C:\Windows\SysNative\drivers\WRfiltv.sys (Creative Technology Ltd.)
DRV:64bit: - (tdcmdpst) -- C:\Windows\SysNative\drivers\tdcmdpst.sys (TOSHIBA Corporation.)
DRV:64bit: - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)
DRV:64bit: - (L1C) NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20) -- C:\Windows\SysNative\drivers\L1C62x64.sys (Atheros Communications, Inc.)
DRV:64bit: - (tos_sps64) -- C:\Windows\SysNative\drivers\tos_sps64.sys (TOSHIBA Corporation)
DRV:64bit: - (TVALZ) -- C:\Windows\SysNative\drivers\TVALZ_O.SYS (TOSHIBA Corporation)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (WSDPrintDevice) -- C:\Windows\SysNative\drivers\WSDPrint.sys (Microsoft Corporation)
DRV:64bit: - (sdbus) -- C:\Windows\SysNative\drivers\sdbus.sys (Microsoft Corporation)
DRV:64bit: - (atikmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV:64bit: - (Thpevm) -- C:\Windows\SysNative\drivers\Thpevm.sys (TOSHIBA Corporation)
DRV:64bit: - (Thpdrv) -- C:\Windows\SysNative\drivers\thpdrv.sys (TOSHIBA Corporation)
DRV:64bit: - (NVHDA) -- C:\Windows\SysNative\drivers\nvhda64v.sys (NVIDIA Corporation)
DRV:64bit: - (CnxtHdAudService) -- C:\Windows\SysNative\drivers\CHDRT64.sys (Conexant Systems Inc.)
DRV:64bit: - (PGEffect) -- C:\Windows\SysNative\drivers\PGEffect.sys (TOSHIBA Corporation)
DRV:64bit: - (athr) -- C:\Windows\SysNative\drivers\athrx.sys (Atheros Communications, Inc.)
DRV:64bit: - (TVALZFL) -- C:\Windows\SysNative\drivers\TVALZFL.sys (TOSHIBA Corporation)
DRV:64bit: - (QIOMem) -- C:\Windows\SysNative\drivers\QIOMem.sys (TOSHIBA)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (nuvotonhidcir) -- C:\Windows\SysNative\drivers\nuvotonhidcir.sys (Nuvoton Technology Corporation)
DRV:64bit: - (hidshim) -- C:\Windows\SysNative\drivers\hidshim.sys (Windows (R) Win 7 DDK provider)
DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation)
DRV:64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys (GEAR Software Inc.)
DRV:64bit: - (adfs) -- C:\Windows\SysNative\drivers\adfs.sys (Adobe Systems, Inc.)
DRV:64bit: - (s0016bus) Sony Ericsson Device 0016 driver (WDM) -- C:\Windows\SysNative\drivers\s0016bus.sys (MCCI Corporation)
DRV:64bit: - (PxHlpa64) -- C:\Windows\SysNative\drivers\PxHlpa64.sys (Sonic Solutions)
DRV:64bit: - (LUMDriver) -- C:\Windows\SysNative\drivers\LUMDriver.sys (IBM)
DRV:64bit: - (SynUSB64) -- C:\Windows\SysNative\drivers\synUSB64.sys (SIA Syncrosoft)
DRV - (TFsExDisk) -- C:\Windows\SysWOW64\drivers\TFsExDisk.Sys (Teruten Inc)
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)
DRV - (adfs) -- C:\Windows\SysWow64\drivers\adfs.sys (Adobe Systems, Inc.)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {afdbddaa-5d3f-42ee-b79c-185a7020515b}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT1060933


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-2412142938-3883813909-1144443674-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/redirectdomain?brand=TSEH&bmod...
IE - HKU\S-1-5-21-2412142938-3883813909-1144443674-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-2412142938-3883813909-1144443674-1000\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - SOFTWARE\Classes\CLSID\{08C06D61-F1F3-4799-86F8-BE1A89362C85}\InprocServer32 File not found
IE - HKU\S-1-5-21-2412142938-3883813909-1144443674-1000\..\URLSearchHook: {1392b8d2-5c05-419f-a8f6-b9f15a596612} - No CLSID value found
IE - HKU\S-1-5-21-2412142938-3883813909-1144443674-1000\..\URLSearchHook: {ba14329e-9550-4989-b3f2-9732e92d17cc} - No CLSID value found
IE - HKU\S-1-5-21-2412142938-3883813909-1144443674-1000\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKU\S-1-5-21-2412142938-3883813909-1144443674-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?FORM=IEFM1&q={searchTerms}&src={referrer:source?}
IE - HKU\S-1-5-21-2412142938-3883813909-1144443674-1000\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTerms}&affID=110000&tt=050412_30b&babsrc=SP_ss&mntrId=909e99900000000000000026b69a3910
IE - HKU\S-1-5-21-2412142938-3883813909-1144443674-1000\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7TSEH_frFR362
IE - HKU\S-1-5-21-2412142938-3883813909-1144443674-1000\..\SearchScopes\{6CBB5C52-3D74-4BE2-98E0-066B1DAAA938}: "URL" = http://rover.ebay.com/rover/1/709-44555-9400-8/4?satitl...{searchTerms}
IE - HKU\S-1-5-21-2412142938-3883813909-1144443674-1000\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT1060933
IE - HKU\S-1-5-21-2412142938-3883813909-1144443674-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Search the web (Babylon)"
FF - prefs.js..browser.search.defaultthis.engineName: "Freecorder Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.conduit.com/ResultsExt.aspx?ctid=CT106093...{searchTerms}"
FF - prefs.js..browser.search.order.1: "Search the web (Babylon)"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://search.babylon.com/?babsrc=HP_Prot"
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:1.5.4.20081105
FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:14.0.3
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}:6.0.27
FF - prefs.js..extensions.enabledItems: {1392b8d2-5c05-419f-a8f6-b9f15a596612}:3.9.0.3
FF - prefs.js..extensions.enabledItems: {33e0daa6-3af3-d8b5-6752-10e949c61516}:1.1
FF - prefs.js..extensions.enabledItems: {C9B68337-E93A-44EA-94DC-CB300EC06444}:4.51.0
FF - prefs.js..keyword.URL: "http://redirecterror.sfr.fr/?q="

FF - user.js..keyword.URL: "http://redirecterror.sfr.fr/?q="

FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3: C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.647: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.647: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.647: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.647: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.647: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011/11/02 13:42:36 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{EB132DB0-A4CA-11DF-9732-0E29E0D72085}: C:\Program Files (x86)\Object\facetheme [2011/11/08 10:28:29 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.28\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/03/14 20:33:14 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.28\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012/03/14 20:33:14 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{EB132DB0-A4CA-11DF-9732-0E29E0D72085}: C:\Program Files (x86)\Object\facetheme [2011/11/08 10:28:29 | 000,000,000 | ---D | M]

[2010/02/04 19:12:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kevin\AppData\Roaming\mozilla\Extensions
[2012/04/11 08:13:58 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Kevin\AppData\Roaming\mozilla\Firefox\Profiles\u1h1203s.default\extensions
[2012/01/12 15:48:36 | 000,000,000 | ---D | M] (Freecorder Community Toolbar) -- C:\Users\Kevin\AppData\Roaming\mozilla\Firefox\Profiles\u1h1203s.default\extensions\{1392b8d2-5c05-419f-a8f6-b9f15a596612}
[2012/01/12 15:48:45 | 000,000,000 | ---D | M] (Complitly - Speed up your search with your personal search suggestions tool) -- C:\Users\Kevin\AppData\Roaming\mozilla\Firefox\Profiles\u1h1203s.default\extensions\{33e0daa6-3af3-d8b5-6752-10e949c61516}
[2010/03/15 02:56:12 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\Kevin\AppData\Roaming\mozilla\Firefox\Profiles\u1h1203s.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2012/03/09 17:37:02 | 000,000,000 | ---D | M] (IMinent Toolbar) -- C:\Users\Kevin\AppData\Roaming\mozilla\Firefox\Profiles\u1h1203s.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}
[2010/09/06 19:08:22 | 000,001,819 | ---- | M] () -- C:\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\u1h1203s.default\searchplugins\bing.xml
[2012/01/05 15:03:18 | 000,000,923 | ---- | M] () -- C:\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\u1h1203s.default\searchplugins\conduit.xml
[2011/11/10 13:05:00 | 000,003,915 | ---- | M] () -- C:\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\u1h1203s.default\searchplugins\SweetIM Search.xml
[2012/03/09 17:51:51 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2011/09/10 14:50:00 | 000,000,000 | ---D | M] (Click to call with Skype) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2011/09/15 20:41:28 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}
[2011/11/02 13:42:36 | 000,000,000 | ---D | M] (RealPlayer Browser Record Plugin) -- C:\PROGRAMDATA\REAL\REALPLAYER\BROWSERRECORDPLUGIN\FIREFOX\EXT
[2011/09/15 20:41:18 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll
[2011/09/13 09:34:53 | 000,001,516 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazon-france.xml
[2012/04/10 09:12:48 | 000,002,353 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
[2011/09/13 09:34:53 | 000,001,822 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\cnrtl-tlfi-fr.xml
[2011/09/13 09:34:53 | 000,000,757 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-france.xml
[2011/09/13 09:34:53 | 000,001,426 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-fr.xml
[2011/09/13 09:34:53 | 000,000,956 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-france.xml

========== Chrome ==========


O1 HOSTS File: ([2010/10/11 17:23:06 | 000,000,822 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:64bit: - BHO: (Complitly) - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Users\Kevin\AppData\Roaming\Complitly\64\Complitly64.dll File not found
O2 - BHO: (ContributeBHO Class) - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\/Adobe Contribute CS4/contributeieplugin.dll ()
O2 - BHO: (Objet d'aide à la navigation SFR) - {0F6E720A-1A6B-40E1-A294-1D4D19F156C8} - C:\Program Files (x86)\SFR\Kit\SFRNavErrorHelper.dll (SFR)
O2 - BHO: (Complitly) - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Users\Kevin\AppData\Roaming\Complitly\Complitly.dll File not found
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (iGraal Module) - {CF3C5900-BEC0-470E-AEE8-CE277C60667C} - C:\Program Files (x86)\iGraal\BHO.dll (iGraal)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (Facetheme) - {de4e75d3-60aa-4f02-a0e4-c8a40576574c} - C:\Program Files (x86)\Object\bho_project.dll (InternetEngine)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Contribute Toolbar) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\/Adobe Contribute CS4/contributeieplugin.dll ()
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (iGraal Toolbar) - {D01B1F7D-9D7F-46C3-8DB9-5A55819E2A7F} - C:\Program Files (x86)\iGraal\Toolbar.dll (iGraal)
O3 - HKU\S-1-5-21-2412142938-3883813909-1144443674-1000\..\Toolbar\WebBrowser: (no name) - {1392B8D2-5C05-419F-A8F6-B9F15A596612} - No CLSID value found.
O3 - HKU\S-1-5-21-2412142938-3883813909-1144443674-1000\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [00TCrdMain] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [cAudioFilterAgent] C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe (Conexant Systems, Inc.)
O4:64bit: - HKLM..\Run: [HDMICtrlMan] C:\Program Files\TOSHIBA\HDMICtrlMan\HDMICtrlMan.exe (TOSHIBA Corporation.)
O4:64bit: - HKLM..\Run: [HSON] C:\Program Files\TOSHIBA\TBS\HSON.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [SmartFaceVWatcher] C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatcher.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [SmoothView] C:\Program Files\Toshiba\SmoothView\SmoothView.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [Teco] C:\Program Files\TOSHIBA\TECO\Teco.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [ThpSrv] C:\Windows\SysNative\thpsrv.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [Toshiba Registration] C:\Program Files\Toshiba\Registration\ToshibaReminder.exe (Toshiba Europe GmbH)
O4:64bit: - HKLM..\Run: [Toshiba TEMPRO] C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe (Toshiba Europe GmbH)
O4:64bit: - HKLM..\Run: [TosNC] C:\Program Files\Toshiba\BulletinBoard\TosNcCore.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [TosReelTimeMonitor] C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [TosSENotify] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [TosVolRegulator] C:\Windows\TosVolRegulator_x64.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [TosWaitSrv] C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe (TOSHIBA Corporation)
O4:64bit: - HKLM..\Run: [TPwrMain] C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE (TOSHIBA Corporation)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [Adobe Acrobat Speed Launcher] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe_ID0ENQBO] C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4Tray.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Freecorder FLV Service] "C:\Program Files (x86)\Freecorder\FLVSrvc.exe" /run File not found
O4 - HKLM..\Run: [NPSStartup] File not found
O4 - HKLM..\Run: [ORAHSSSessionManager] "C:\Program Files (x86)\Orange\Connexion Internet Orange\SessionManager\SessionManager.exe" File not found
O4 - HKLM..\Run: [TkBellExe] C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [ToshibaServiceStation] C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [TRCMan] C:\Program Files (x86)\TOSHIBA\TRCMan\TRCMan.exe (TOSHIBA Corporation)
O4 - HKLM..\Run: [TUSBSleepChargeSrv] C:\Program Files (x86)\TOSHIBA\TOSHIBA USB Sleep and Charge Utility\TUSBSleepChargeSrv.exe (TOSHIBA)
O4 - HKLM..\Run: [TWebCamera] C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe (TOSHIBA CORPORATION.)
O4 - HKU\.DEFAULT..\Run: [TOSHIBA Online Product Information] C:\Program Files (x86)\TOSHIBA\Toshiba Online Product Information\TOPI.exe (TOSHIBA)
O4 - HKU\S-1-5-18..\Run: [TOSHIBA Online Product Information] C:\Program Files (x86)\TOSHIBA\Toshiba Online Product Information\TOPI.exe (TOSHIBA)
O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-2412142938-3883813909-1144443674-1000..\Run: [AdobeBridge] File not found
O4 - HKU\S-1-5-21-2412142938-3883813909-1144443674-1000..\Run: [Akamai NetSession Interface] "C:\Users\Kevin\AppData\Local\Akamai\netsession_win.exe" File not found
O4 - HKU\S-1-5-21-2412142938-3883813909-1144443674-1000..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-2412142938-3883813909-1144443674-1000..\Run: [MailNotifier] C:\Program Files (x86)\Orange\MailNotifier\MailNotifier.exe File not found
O4 - HKU\S-1-5-21-2412142938-3883813909-1144443674-1000..\Run: [Speech Recognition] C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation)
O4 - HKU\S-1-5-21-2412142938-3883813909-1144443674-1000..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe (Safer Networking Limited)
O4 - HKU\S-1-5-21-2412142938-3883813909-1144443674-1000..\Run: [veusll.exe] "C:\Users\Kevin\AppData\Local\Temp\veusll.exe" File not found
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
O4 - Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
O4 - Startup: C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip ()
O4 - Startup: C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\Kevin\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:64bit: - Extra context menu item: Ajouter à un fichier PDF existant - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Ajouter la cible du lien à un fichier PDF existant - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Convertir au format Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Convertir la cible du lien au format Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8:64bit: - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html File not found
O8:64bit: - Extra context menu item: Rechercher sur le Web - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html File not found
O8 - Extra context menu item: Ajouter à un fichier PDF existant - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Ajouter la cible du lien à un fichier PDF existant - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convertir au format Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convertir la cible du lien au format Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html File not found
O8 - Extra context menu item: Rechercher sur le Web - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html File not found
O9 - Extra Button: iGraal - {32893F3D-2B10-4B09-BA6A-8F20E7D33925} - C:\Program Files (x86)\iGraal\Button.dll (iGraal)
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} http://messenger.zone.msn.com/MessengerGamesContent/Gam... (UnoCtrl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_27-wind... (Java Plug-in 1.6.0_27)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPACl... (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_27-wind... (Java Plug-in 1.6.0_27)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_27-wind... (Java Plug-in 1.6.0_27)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/fl... (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.4.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{53573901-291C-45C4-8B5C-80F527645E91}: NameServer = 192.168.2.1,194.2.0.20
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E9ACAC59-8F23-4FED-9362-BC3939CE661A}: DhcpNameServer = 192.168.4.1
O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found
O18:64bit: - Protocol\Handler\ipp - No CLSID value found
O18:64bit: - Protocol\Handler\ipp\0x00000001 - No CLSID value found
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\oledb - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18:64bit: - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/08/15 15:15:26 | 000,000,000 | ---D | M] - C:\Autocad 2008 -- [ NTFS ]
O32 - AutoRun File - [2012/02/23 13:24:42 | 000,000,000 | ---D | M] - C:\AutoCAD 2010 [32-Bit] - English -- [ NTFS ]
O33 - MountPoints2\{909c34fd-72ed-11df-966a-0026b69a3910}\Shell - "" = AutoRun
O33 - MountPoints2\{909c34fd-72ed-11df-966a-0026b69a3910}\Shell\AutoRun\command - "" = F:\LaunchU3.exe -a
O33 - MountPoints2\{feefb04f-2872-11df-a133-00269e90f433}\Shell - "" = AutoRun
O33 - MountPoints2\{feefb04f-2872-11df-a133-00269e90f433}\Shell\AutoRun\command - "" = G:\setup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

Autres pages sur : resolu virus babylone search

11 Avril 2012 08:50:14

Voici la suite du rapport:




Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32:64bit: VIDC.FPS1 - frapsv64.dll (Beepa P/L)
Drivers32: msacm.ac3acm - C:\Windows\SysWow64\ac3acm.acm (fccHandler)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\Windows\SysWow64\lameACM.acm (http://www.mp3dev.org/)
Drivers32: msacm.lhacm - C:\Windows\SysWow64\lhacm.acm (Microsoft Corporation)
Drivers32: msacm.vorbis - C:\Windows\SysWow64\vorbis.acm (HMS http://hp.vector.co.jp/authors/VA012897/)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
Drivers32: VIDC.FFDS - C:\Windows\SysWow64\ff_vfw.dll ()
Drivers32: VIDC.FPS1 - C:\Windows\SysWow64\frapsvid.dll (Beepa P/L)
Drivers32: vidc.i420 - C:\Windows\SysWow64\i420vfw.dll (www.helixcommunity.org)
Drivers32: VIDC.XVID - C:\Windows\SysWow64\xvidvfw.dll ()
Drivers32: vidc.yv12 - C:\Windows\SysWow64\yv12vfw.dll (www.helixcommunity.org)

ActiveX:64bit: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:64bit: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX:64bit: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:64bit: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:64bit: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:64bit: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:64bit: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:64bit: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:64bit: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:64bit: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:64bit: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:64bit: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings
ActiveX:64bit: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX:64bit: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:64bit: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:64bit: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:64bit: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:64bit: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX:64bit: {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:64bit: >{03647A44-1622-444E-9BB9-74B1CA288E8C} - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX:64bit: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX:64bit: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig
ActiveX:64bit: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} -
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Microsoft VM
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Dossiers Web
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\SysWOW64\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - Adobe Flash Player 9 ActiveX
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\SysWOW64\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\iedkcs32.dll",BrandIEActiveSetup SIGNUP

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2012/04/11 08:20:10 | 000,593,920 | ---- | C] (OldTimer Tools) -- D:\Desktop\OTL.exe
[2012/04/11 08:14:56 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{BB04CB48-FA7B-4AC4-9843-838F0DC50455}
[2012/04/10 22:53:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy
[2012/04/10 22:53:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy
[2012/04/10 22:53:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spybot - Search & Destroy
[2012/04/10 21:05:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
[2012/04/10 21:04:28 | 004,803,661 | ---- | C] (Nicolas Coolman ) -- D:\Desktop\ZHPDiag2.exe
[2012/04/10 20:14:31 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{F7632FFC-8203-4FD3-BC12-60F4CF27B3AB}
[2012/04/10 09:13:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Creator
[2012/04/10 09:13:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GPLGS
[2012/04/10 09:13:26 | 000,000,000 | ---D | C] -- C:\Program
[2012/04/10 09:13:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\FoxTabPDFCreator
[2012/04/10 09:12:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon
[2012/04/10 08:13:54 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{97CEF03E-66E9-4E4C-B334-559C40A6D325}
[2012/04/09 13:06:40 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{2A095E17-4C9D-4ACE-9763-AB7A6CC08A2E}
[2012/04/08 18:26:53 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{6C93F30D-CCE8-442F-8E22-786156903A1C}
[2012/04/07 12:13:57 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{05F9D41C-FA93-437A-90BC-85108F5D8CF8}
[2012/04/06 13:50:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office
[2012/04/06 13:50:24 | 000,000,000 | ---D | C] -- C:\Windows\Msagent
[2012/04/06 13:50:20 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Roaming\Microsoft Web Folders
[2012/04/06 08:13:51 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{DCF42D34-56B7-4836-A91B-4CFBBB36B66F}
[2012/04/05 20:13:15 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{44FE388B-BE0E-4B44-9940-3BE11A6344B7}
[2012/04/05 08:12:07 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{E025B225-2C7A-4169-BA1E-70C576D1A82A}
[2012/04/04 07:37:26 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{E7B171FF-17C6-4023-9EB1-6683C7FECD4C}
[2012/04/03 16:09:44 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{1C41B8D8-F2EA-4422-A803-47F185C73283}
[2012/04/02 19:51:11 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{A0F2FA43-468F-4D5D-97F8-1AC7ABA19DA9}
[2012/04/02 16:45:24 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{92ADBB30-A8DB-4D1A-8FFC-07558F80568C}
[2012/03/31 11:37:34 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{697C6434-88D5-46F3-8353-D7FD25E9215B}
[2012/03/30 09:05:07 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Roaming\Microsoft Corporation
[2012/03/30 08:13:25 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{6CB6EA20-FE73-4F1B-B3DD-53FD7244FB19}
[2012/03/29 21:30:48 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{6A87B293-636D-41A3-BF35-0EFD21698A33}
[2012/03/29 15:32:44 | 000,000,000 | ---D | C] -- D:\Documents\Modele VB
[2012/03/29 08:37:50 | 000,000,000 | ---D | C] -- C:\SolidWorks Admin
[2012/03/29 08:37:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gestionnaire d'installation SolidWorks
[2012/03/29 08:37:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Gestionnaire d'installation SolidWorks
[2012/03/29 08:35:14 | 000,000,000 | ---D | C] -- D:\Documents\SolidWorks Downloads
[2012/03/29 08:35:14 | 000,000,000 | ---D | C] -- C:\Windows\SolidWorks
[2012/03/29 08:35:12 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Roaming\SolidWorks
[2012/03/29 08:20:33 | 000,000,000 | ---D | C] -- D:\Desktop\SolidWorks 2011
[2012/03/29 08:05:41 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{BD80C51B-847F-4468-8EE5-9D45187F4929}
[2012/03/28 16:53:11 | 000,000,000 | ---D | C] -- D:\Documents\Visual Studio 2010
[2012/03/28 16:49:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server
[2012/03/28 16:49:11 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Synchronization Services
[2012/03/28 16:49:11 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2012/03/28 16:49:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Synchronization Services
[2012/03/28 16:48:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 Express
[2012/03/28 16:47:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 10.0
[2012/03/28 16:46:19 | 000,000,000 | ---D | C] -- C:\Windows\symbols
[2012/03/28 16:46:18 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio 10.0
[2012/03/28 16:46:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SDKs
[2012/03/28 16:46:18 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Help Viewer
[2012/03/28 08:14:11 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{4434A988-B592-42A0-888D-1C284B01AC84}
[2012/03/28 08:14:01 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{FEF54011-18A9-45A1-BD64-4E0623D154FD}
[2012/03/27 20:13:34 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{BA562A69-4B77-43A2-826A-AA88EF5A385A}
[2012/03/27 20:13:22 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{71E082D8-B773-44F4-BFD6-F4BFA4AB90B5}
[2012/03/27 08:12:54 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{F26FD5C3-0EE4-464A-83FA-B6A9BAECF045}
[2012/03/27 08:12:31 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{5697A69D-50E8-4E76-9A15-088A9FD4E7BC}
[2012/03/26 20:12:03 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{537C37B8-38FC-4484-9960-EE01AFC5B5A8}
[2012/03/26 20:11:51 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{6CF480AD-41E2-4680-8EDA-C60ACF18BCC7}
[2012/03/26 08:10:23 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{EC70C22D-3FCF-4946-A3DB-E531FF451481}
[2012/03/26 08:09:51 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{330130DF-C21E-4A89-8D1B-3CE70C3D7522}
[2012/03/25 22:18:28 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{C67C7DC1-153A-4A4B-893A-087D4A969E33}
[2012/03/23 08:38:06 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{99EC6223-1183-459D-AB6B-82CFABF09973}
[2012/03/23 08:37:55 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{0D177FAD-FB8A-4B72-8FFA-93ED3CDC86E8}
[2012/03/22 10:27:22 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{05D23947-2C1B-42BE-B4E7-6C2B38EDD8D0}
[2012/03/22 10:27:01 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{CFC09470-DA70-494C-B087-300B62AC382B}
[2012/03/21 22:26:34 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{72A6632B-43B4-41FF-9D3D-7E39EC0A3B8C}
[2012/03/21 22:26:22 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{A68DE3DE-A8A2-4AED-A34F-02C9CD0580AB}
[2012/03/21 09:58:06 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{5E36381B-4C2F-4DD1-B90B-86FB855CBE1B}
[2012/03/20 21:57:25 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{B7E60447-E034-4EF8-9929-A049B6A98786}
[2012/03/20 21:57:13 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{DFB1F9A6-B7F6-4E99-8A09-D1E92D80AA34}
[2012/03/20 09:14:52 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{96F7C3A3-2EDE-4856-AE1A-E3EDFC46B704}
[2012/03/20 09:14:39 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{FD979E46-5C71-4105-A1DE-15A32B7B1298}
[2012/03/19 08:35:22 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{1206A741-D011-4169-932C-3EAE0C4315CB}
[2012/03/18 13:02:33 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{659ABF93-C9B8-434D-B4EB-7ADC28840027}
[2012/03/18 13:02:15 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{8DF76B0A-0069-444F-984A-60EBD562F85E}
[2012/03/16 09:36:07 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{F4A9E03C-3894-450C-AA5C-47A47750FDE7}
[2012/03/16 09:35:45 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{3F10099B-CB6F-48A9-8FC4-2D9A6B36D2B9}
[2012/03/15 21:35:18 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{3AE50F6E-34DC-4B7B-815C-57BF22FB91B4}
[2012/03/15 21:35:07 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{C0D024FF-BC57-477B-B984-C8ECC174CCB8}
[2012/03/15 09:34:40 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{AC41D8F7-781A-43A0-A26F-BF33B80CDD3A}
[2012/03/15 09:34:17 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{CBCC05C9-0D02-4978-BEFA-29D612879B01}
[2012/03/14 21:33:50 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{C412126E-55CC-44E1-A738-8AF8BF441591}
[2012/03/14 21:33:38 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{46B9699D-E3D0-4849-9277-44141CD76601}
[2012/03/14 09:33:11 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{C32B2861-F734-4027-A8C4-463F49E1F382}
[2012/03/14 09:32:48 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{A311646C-CA53-4475-8636-D4F7DC76A4ED}
[2012/03/13 21:32:22 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{1733131E-F4EB-4781-95AF-66A3D3FE1B6A}
[2012/03/13 21:32:10 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{5B1A2F87-6795-43DD-A1A4-389F19C1A341}
[2012/03/13 09:31:43 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{5E6E19AB-4846-4AE6-8CDC-54B4CF7138BD}
[2012/03/13 09:31:19 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{FD9AE9B9-12A9-4DA0-8814-B4539EB27A74}
[2012/03/12 21:30:34 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{AE46BB19-4457-4576-B501-5C962F4447E1}
[2012/03/12 21:29:24 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{3B1960EA-7E01-47F9-AED7-8415F1C8B931}
[2012/03/12 17:21:23 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Roaming\Windows Live Writer
[2012/03/12 17:21:23 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\Windows Live Writer
[2012/03/12 09:24:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Soft Gold
[2012/03/12 09:24:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Soft Gold
[2012/03/12 09:24:20 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Roaming\Soft Gold
[2012/03/12 09:24:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Soft Gold
[2012/03/12 09:24:20 | 000,000,000 | ---D | C] -- D:\Documents\ABViewer 8
[2012/03/12 09:09:15 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{E0D5FB70-E501-4206-8A12-8664750D1E07}
[2012/03/12 09:08:53 | 000,000,000 | ---D | C] -- C:\Users\Kevin\AppData\Local\{24E8692C-05B8-4EB3-84BE-FFD63450769A}
[1 D:\Documents\*.tmp files -> D:\Documents\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/04/11 08:20:18 | 000,593,920 | ---- | M] (OldTimer Tools) -- D:\Desktop\OTL.exe
[2012/04/11 08:19:02 | 000,001,070 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/04/11 08:17:54 | 000,016,304 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/04/11 08:17:54 | 000,016,304 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/04/11 08:10:23 | 000,001,066 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/04/11 08:10:08 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/04/11 08:10:00 | 3193,651,200 | -HS- | M] () -- C:\hiberfil.sys
[2012/04/10 22:53:52 | 000,001,253 | ---- | M] () -- C:\Users\Kevin\Application Data\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk
[2012/04/10 22:53:52 | 000,001,093 | ---- | M] () -- D:\Desktop\Spybot - Search & Destroy.lnk
[2012/04/10 21:05:58 | 000,000,962 | ---- | M] () -- C:\Users\Public\Desktop\ZHPDiag.lnk
[2012/04/10 21:05:58 | 000,000,957 | ---- | M] () -- C:\Users\Public\Desktop\ZHPFix.lnk
[2012/04/10 21:04:47 | 004,803,661 | ---- | M] (Nicolas Coolman ) -- D:\Desktop\ZHPDiag2.exe
[2012/04/10 09:13:15 | 000,000,251 | ---- | M] () -- C:\user.js
[2012/04/07 12:17:27 | 001,673,300 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/04/07 12:17:27 | 000,749,396 | ---- | M] () -- C:\Windows\SysNative\perfh00C.dat
[2012/04/07 12:17:27 | 000,656,008 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/04/07 12:17:27 | 000,150,590 | ---- | M] () -- C:\Windows\SysNative\perfc00C.dat
[2012/04/07 12:17:27 | 000,122,742 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/04/06 13:50:39 | 000,000,288 | ---- | M] () -- C:\Windows\ODBC.INI
[2012/03/29 08:37:37 | 000,001,314 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Téléchargement en arrière-plan de SolidWorks.lnk
[2012/03/28 16:53:07 | 000,001,358 | ---- | M] () -- D:\Desktop\Microsoft Visual Basic 2010 Express.lnk
[2012/03/28 16:46:15 | 001,651,814 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/03/28 16:06:13 | 000,143,300 | ---- | M] () -- C:\Windows\vssetup.ttf
[2012/03/28 16:06:13 | 000,001,409 | ---- | M] () -- C:\Windows\vssetup.for
[2012/03/14 20:33:05 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2012/03/13 14:36:48 | 000,095,616 | ---- | M] () -- D:\Documents\Bras primaire_Support B.P..pdf
[2012/03/13 14:35:23 | 000,076,807 | ---- | M] () -- D:\Documents\Bras primaire_Butee fin de course.pdf
[2012/03/13 14:35:02 | 000,056,332 | ---- | M] () -- D:\Documents\Bras primaire_Axe roulement B.P..pdf
[2012/03/13 14:34:32 | 000,130,458 | ---- | M] () -- D:\Documents\Assemblage plan d'ensemble.pdf
[2012/03/13 12:33:46 | 000,068,715 | ---- | M] () -- D:\Documents\Poteau_Butee B.S. sur poteau.pdf
[2012/03/13 12:33:07 | 000,067,167 | ---- | M] () -- D:\Documents\Poteau_Butee B.S. sur poteau bras gauche.pdf
[2012/03/13 11:43:46 | 000,082,434 | ---- | M] () -- D:\Documents\Bras secondaire_Guidon.pdf
[2012/03/13 11:05:25 | 000,065,020 | ---- | M] () -- D:\Documents\Bras secondaire_Support B.S. sur B.P..pdf
[2012/03/13 11:03:49 | 000,057,108 | ---- | M] () -- D:\Documents\Bras secondaire_Platine d adaptation main WEBER.pdf
[2012/03/13 11:02:50 | 000,056,967 | ---- | M] () -- D:\Documents\Bras secondaire_Axe roulement B.S..pdf
[2012/03/13 11:01:40 | 000,052,179 | ---- | M] () -- D:\Documents\Bras secondaire_Bras T.I. cote main WEBER.pdf
[2012/03/13 11:00:52 | 000,046,862 | ---- | M] () -- D:\Documents\Bras secondaire_Bras T.I. cote B.P..pdf
[2012/03/13 10:58:43 | 000,051,165 | ---- | M] () -- D:\Documents\Bras secondaire_Bras T.S. cote B.P..pdf
[2012/03/13 10:32:09 | 000,048,665 | ---- | M] () -- D:\Documents\Bras secondaire_Bras T.S. cote main WEBER.pdf
[2012/03/12 15:23:08 | 003,046,112 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012/03/12 09:24:24 | 000,001,906 | ---- | M] () -- D:\Desktop\ABViewer 8.lnk
[1 D:\Documents\*.tmp files -> D:\Documents\*.tmp -> ]
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/04/10 22:53:52 | 000,001,253 | ---- | C] () -- C:\Users\Kevin\Application Data\Microsoft\Internet Explorer\Quick Launch\Spybot - Search & Destroy.lnk
[2012/04/10 22:53:52 | 000,001,093 | ---- | C] () -- D:\Desktop\Spybot - Search & Destroy.lnk
[2012/04/10 21:05:58 | 000,000,962 | ---- | C] () -- C:\Users\Public\Desktop\ZHPDiag.lnk
[2012/04/10 21:05:58 | 000,000,957 | ---- | C] () -- C:\Users\Public\Desktop\ZHPFix.lnk
[2012/04/10 09:13:27 | 000,087,552 | ---- | C] () -- C:\Windows\SysNative\custmon64i.dll
[2012/04/10 09:13:14 | 000,000,251 | ---- | C] () -- C:\user.js
[2012/04/06 13:50:28 | 000,002,663 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Project.lnk
[2012/03/29 08:37:37 | 000,001,314 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Téléchargement en arrière-plan de SolidWorks.lnk
[2012/03/28 16:53:07 | 000,001,358 | ---- | C] () -- D:\Desktop\Microsoft Visual Basic 2010 Express.lnk
[2012/03/28 16:44:25 | 001,651,814 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/03/28 16:06:13 | 000,143,300 | ---- | C] () -- C:\Windows\vssetup.ttf
[2012/03/28 16:06:13 | 000,001,409 | ---- | C] () -- C:\Windows\vssetup.for
[2012/03/13 14:36:48 | 000,095,616 | ---- | C] () -- D:\Documents\Bras primaire_Support B.P..pdf
[2012/03/13 14:35:23 | 000,076,807 | ---- | C] () -- D:\Documents\Bras primaire_Butee fin de course.pdf
[2012/03/13 14:35:02 | 000,056,332 | ---- | C] () -- D:\Documents\Bras primaire_Axe roulement B.P..pdf
[2012/03/13 14:34:32 | 000,130,458 | ---- | C] () -- D:\Documents\Assemblage plan d'ensemble.pdf
[2012/03/13 12:33:46 | 000,068,715 | ---- | C] () -- D:\Documents\Poteau_Butee B.S. sur poteau.pdf
[2012/03/13 12:33:07 | 000,067,167 | ---- | C] () -- D:\Documents\Poteau_Butee B.S. sur poteau bras gauche.pdf
[2012/03/13 11:43:46 | 000,082,434 | ---- | C] () -- D:\Documents\Bras secondaire_Guidon.pdf
[2012/03/13 11:05:25 | 000,065,020 | ---- | C] () -- D:\Documents\Bras secondaire_Support B.S. sur B.P..pdf
[2012/03/13 11:03:49 | 000,057,108 | ---- | C] () -- D:\Documents\Bras secondaire_Platine d adaptation main WEBER.pdf
[2012/03/13 11:02:50 | 000,056,967 | ---- | C] () -- D:\Documents\Bras secondaire_Axe roulement B.S..pdf
[2012/03/13 11:01:40 | 000,052,179 | ---- | C] () -- D:\Documents\Bras secondaire_Bras T.I. cote main WEBER.pdf
[2012/03/13 11:00:52 | 000,046,862 | ---- | C] () -- D:\Documents\Bras secondaire_Bras T.I. cote B.P..pdf
[2012/03/13 10:58:43 | 000,051,165 | ---- | C] () -- D:\Documents\Bras secondaire_Bras T.S. cote B.P..pdf
[2012/03/13 10:32:09 | 000,048,665 | ---- | C] () -- D:\Documents\Bras secondaire_Bras T.S. cote main WEBER.pdf
[2012/03/12 09:24:24 | 000,001,906 | ---- | C] () -- D:\Desktop\ABViewer 8.lnk
[2012/03/09 17:08:26 | 000,000,000 | ---- | C] () -- C:\Windows\eDrawingOfficeAutomator.INI
[2012/02/23 09:59:28 | 000,000,288 | ---- | C] () -- C:\Windows\ODBC.INI
[2011/05/14 11:50:45 | 000,000,000 | ---- | C] () -- C:\Users\Kevin\AppData\Local\{2C3F4289-051E-4FB7-BE9C-DC1E27B9FD11}
[2011/05/14 11:45:19 | 000,000,000 | ---- | C] () -- C:\Users\Kevin\AppData\Local\{5DE81DD6-99B3-4456-9B36-8C9C60A52984}
[2011/05/13 18:42:00 | 000,006,656 | ---- | C] () -- C:\Users\Kevin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/05/13 18:39:11 | 000,165,376 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2011/05/13 18:39:09 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2011/05/13 18:39:03 | 000,810,496 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2011/05/13 18:39:03 | 000,183,808 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2011/05/13 18:39:02 | 000,080,896 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2011/04/21 19:31:44 | 000,027,648 | ---- | C] () -- C:\Windows\SysWow64\AVSredirect.dll
[2010/08/04 02:00:35 | 000,103,736 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2010/08/04 02:00:30 | 000,066,872 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2010/05/01 00:16:14 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat

========== Custom Scans ==========

< %SYSTEMDRIVE%\*.exe >
[2007/11/07 08:03:18 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe

< %ALLUSERSPROFILE%\Application Data\*. >

< %ALLUSERSPROFILE%\Application Data\*.exe /s >

< %APPDATA%\*. >
[2010/09/27 16:16:59 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\6F78BFD91A18C5D1F4CE9D0AA619AC0E
[2011/01/02 15:36:12 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\Adobe
[2011/08/25 10:41:33 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\Apple Computer
[2012/01/12 16:03:25 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\AVS4YOU
[2010/09/24 20:51:20 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\Azureus
[2012/02/07 15:16:15 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\CADClick
[2010/03/05 18:26:00 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\DAEMON Tools Lite
[2010/03/28 11:46:46 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\DassaultSystemes
[2012/04/11 08:11:48 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\Dropbox
[2012/03/09 17:08:32 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\EDrawings
[2010/01/15 19:17:57 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\Google
[2012/02/23 09:14:50 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\gtk-2.0
[2010/01/15 14:14:40 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\Identities
[2010/09/06 17:51:15 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\igraal
[2010/08/21 01:09:40 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\LolClient
[2009/09/22 17:52:52 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\Macromedia
[2010/09/25 12:59:00 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\Malwarebytes
[2009/07/14 17:35:05 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\Media Center Programs
[2012/04/10 20:49:58 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\Media Player Classic
[2012/04/06 17:24:20 | 000,000,000 | --SD | M] -- C:\Users\Kevin\AppData\Roaming\Microsoft
[2012/03/30 09:05:07 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\Microsoft Corporation
[2012/04/06 13:50:20 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\Microsoft Web Folders
[2010/09/25 11:18:44 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\Mozilla
[2010/10/19 13:42:26 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\Mumble
[2011/06/28 21:16:31 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\Notepad++
[2011/04/26 18:00:16 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\OfferBox
[2011/05/07 17:49:05 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\OpenCandy
[2010/11/09 23:01:55 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\Propellerhead Software
[2011/06/14 17:03:27 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\Real
[2011/11/12 12:10:31 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\RIFT
[2011/11/08 10:39:57 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\Samsung
[2012/04/11 08:20:38 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\Skype
[2012/04/11 08:11:25 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\skypePM
[2012/03/12 09:24:20 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\Soft Gold
[2012/03/29 08:35:12 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\SolidWorks
[2011/04/21 19:09:24 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\Sony Corporation
[2010/11/08 18:13:21 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\Steinberg
[2010/01/15 20:10:30 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\teamspeak2
[2010/04/04 16:02:04 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\Template
[2011/01/18 13:22:57 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\Toshiba
[2010/09/02 23:24:46 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\TS3Client
[2010/06/08 13:50:39 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\U3
[2011/06/06 14:28:32 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\vlc
[2012/03/12 17:21:23 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\Windows Live Writer
[2010/04/30 17:05:47 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\WinRAR
[2012/03/05 12:57:55 | 000,000,000 | ---D | M] -- C:\Users\Kevin\AppData\Roaming\Xerox

< %APPDATA%\*.exe /s >
[2010/09/21 20:57:31 | 000,310,208 | ---- | M] (Georgia Institute of Technology) -- C:\Users\Kevin\AppData\Roaming\Azureus\plugins\mlab\ShaperProbeC.exe
[2012/02/07 15:41:40 | 000,032,768 | ---- | M] (KiM GmbH) -- C:\Users\Kevin\AppData\Roaming\CADClick\click2cad\ccInsert.exe
[2012/02/07 15:41:39 | 000,008,192 | ---- | M] () -- C:\Users\Kevin\AppData\Roaming\CADClick\click2cad\DllVersion.exe
[2012/02/15 01:03:14 | 024,246,216 | ---- | M] (Dropbox, Inc.) -- C:\Users\Kevin\AppData\Roaming\Dropbox\bin\Dropbox.exe
[2012/02/15 01:03:44 | 000,174,752 | ---- | M] (Dropbox, Inc.) -- C:\Users\Kevin\AppData\Roaming\Dropbox\bin\Uninstall.exe
[2011/05/13 18:38:15 | 000,000,766 | R--- | M] () -- C:\Users\Kevin\AppData\Roaming\Microsoft\Installer\{A64E67C0-715B-4F25-981D-26DF2F3D858B}\_5251e15.exe
[2011/05/13 18:38:15 | 000,002,550 | R--- | M] () -- C:\Users\Kevin\AppData\Roaming\Microsoft\Installer\{A64E67C0-715B-4F25-981D-26DF2F3D858B}\_5417ff9.exe
[2011/05/13 18:38:15 | 000,000,766 | R--- | M] () -- C:\Users\Kevin\AppData\Roaming\Microsoft\Installer\{A64E67C0-715B-4F25-981D-26DF2F3D858B}\_56d133d.exe
[2011/05/13 18:38:15 | 000,002,550 | R--- | M] () -- C:\Users\Kevin\AppData\Roaming\Microsoft\Installer\{A64E67C0-715B-4F25-981D-26DF2F3D858B}\_5c7885a.exe
[2010/03/05 18:49:50 | 000,197,632 | ---- | M] () -- C:\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\u1h1203s.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}\chrome\content\id_imbooster4web_v6\TbHelper2.exe
[2010/03/12 19:45:00 | 000,042,496 | ---- | M] () -- C:\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\u1h1203s.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}\chrome\content\id_imbooster4web_v6\uninstall.exe
[2010/03/12 19:45:00 | 000,056,832 | ---- | M] () -- C:\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\u1h1203s.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}\chrome\content\id_imbooster4web_v6\update.exe
[2010/03/19 14:04:44 | 000,152,664 | ---- | M] () -- C:\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\u1h1203s.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}\components\setup_widget_serv.exe
[2011/05/07 17:49:07 | 000,416,160 | ---- | M] () -- C:\Users\Kevin\AppData\Roaming\OpenCandy\OpenCandy_140469A6B255427D8347A004A99F6A4B\LatestDLMgr.exe
[2010/03/05 23:42:22 | 004,004,928 | ---- | M] (Uniblue Systems Ltd ) -- C:\Users\Kevin\AppData\Roaming\OpenCandy\OpenCandy_140469A6B255427D8347A004A99F6A4B\registrybooster(8).exe
[2011/04/21 19:29:30 | 000,416,160 | ---- | M] () -- C:\Users\Kevin\AppData\Roaming\OpenCandy\OpenCandy_C9BA9959FE4F4975B25DD25FE3A1E941\LatestDLMgr.exe
[2011/04/21 19:29:36 | 000,691,472 | ---- | M] () -- C:\Users\Kevin\AppData\Roaming\OpenCandy\OpenCandy_C9BA9959FE4F4975B25DD25FE3A1E941\RealPlayerFR_p1v2.exe
[2011/11/18 09:12:41 | 000,317,048 | ---- | M] (RealNetworks, Inc.) -- C:\Users\Kevin\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\9.00\rnupgagent.exe

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2009/07/14 03:15:21 | 000,462,848 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\system32\FirewallAPI.dll

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >

========== Alternate Data Streams ==========

@Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:05EE1EEF

< End of report >


Est ce que quelqu'un est en mesure de m'aider rapidement, mon ordinateur étant mon outil de travail, je ne sais pas si je peux écrire mes mot de passe en toute sécurité...


Cordialement,
11 Avril 2012 15:38:17

Personne ne saurait m'apporter un peu d'aide pour ce soucis?
Contenus similaires
a c 614 8 Sécurité
a b È Firefox
11 Avril 2012 15:43:38

Bonjour,

Babylon n'est qu'un adware, un logiciel publicitaire. Il n'y a rien de dangereux, il faut juste faire plus attention en installant les programmes de décocher les sponsors.

Supprime ce qui a trait à Babylon dans ta liste des programmes puis :

Télécharge AdwCleaner (de Xplode) sur ton Bureau.

/!\ Désactive tes protections résidentes : antivirus, antispyware ... Déconnecte-toi et ferme toutes les applications en cours (notamment ton navigateur)/!\

  • Double-clique sur adwcleaner0.exe pour lancer le programme.
    (Utilisateur de Vista/Windows 7, clique-droit sur le fichier adwcleaner0.exe -> Exécuter en tant qu'administrateur)

  • Dans la fenêtre principal, choisis l'option Suppression.
  • Valide l'avertissement.
  • Si le pc demande à redémarrer, accepte.
  • Un rapport apparaitra (sinon, il est situé ici C:\AdwCleaner[Sx].txt). Poste-le dans ta prochaine réponse.
    11 Avril 2012 16:52:18

    Bonjour,


    Voici le rapport AdwCleaner:

    # AdwCleaner v1.505 - Rapport créé le 11/04/2012 à 16:46:51
    # Mis à jour le 07/04/2012 par Xplode
    # Système d'exploitation : Windows 7 Home Premium (64 bits)
    # Nom d'utilisateur : Kevin - KEVIN-PC
    # Exécuté depuis : D:\Desktop\adwcleaner.exe
    # Option [Suppression]


    ***** [Services] *****


    ***** [Fichiers / Dossiers] *****

    Dossier Supprimé : C:\ProgramData\Babylon
    Dossier Supprimé : C:\Users\Kevin\AppData\Roaming\OfferBox
    Dossier Supprimé : C:\Users\Kevin\AppData\Roaming\OpenCandy
    Dossier Supprimé : C:\Users\Kevin\AppData\Local\Conduit
    Dossier Supprimé : C:\Users\Kevin\AppData\Local\OpenCandy
    Dossier Supprimé : C:\Users\Kevin\AppData\LocalLow\Conduit
    Dossier Supprimé : C:\Users\Kevin\AppData\LocalLow\PriceGong
    Dossier Supprimé : C:\Users\Kevin\AppData\LocalLow\Toolbar4
    Dossier Supprimé : C:\Program Files (x86)\Conduit
    Dossier Supprimé : C:\Program Files (x86)\Object
    Dossier Supprimé : C:\Users\Kevin\AppData\Roaming\Mozilla\FireFox\Profiles\u1h1203s.default\ConduitCommon
    Dossier Supprimé : C:\Users\Kevin\AppData\Roaming\Mozilla\FireFox\Profiles\u1h1203s.default\extensions\{33E0DAA6-3AF3-D8B5-6752-10E949C61516}
    Dossier Supprimé : C:\Users\Kevin\AppData\Roaming\Mozilla\FireFox\Profiles\u1h1203s.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}
    Dossier Supprimé : C:\Users\Kevin\AppData\Roaming\Mozilla\FireFox\Profiles\u1h1203s.default\extensions\{1392b8d2-5c05-419f-a8f6-b9f15a596612}
    Fichier Supprimé : C:\Program Files (x86)\Mozilla Firefox\.autoreg
    Fichier Supprimé : C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml
    Fichier Supprimé : C:\Users\Kevin\AppData\Roaming\Mozilla\FireFox\Profiles\u1h1203s.default\searchplugins\Conduit.xml
    Fichier Supprimé : C:\Users\Kevin\AppData\Roaming\Mozilla\FireFox\Profiles\u1h1203s.default\searchplugins\SweetIM Search.xml

    ***** [H. Navipromo] *****


    ***** [Registre] *****

  • Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT1060933
  • Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT2504091
    Clé Supprimée : HKCU\Software\Ask&Record
    Clé Supprimée : HKCU\Software\Conduit
    Clé Supprimée : HKCU\Software\Cr_Installer
    Clé Supprimée : HKCU\Software\Iminent
    Clé Supprimée : HKCU\Software\Offerbox
    Clé Supprimée : HKCU\Software\AppDataLow\Software\Conduit
    Clé Supprimée : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
    Clé Supprimée : HKCU\Software\AppDataLow\Software\PriceGong
    Clé Supprimée : HKLM\SOFTWARE\Babylon
    Clé Supprimée : HKLM\SOFTWARE\Conduit
    Clé Supprimée : HKLM\SOFTWARE\Iminent
    Clé Supprimée : HKLM\SOFTWARE\Offerbox
    Clé Supprimée : HKLM\SOFTWARE\SweetIM
    Clé Supprimée : HKLM\SOFTWARE\Adobe\OpenCandy
    Clé Supprimée : HKLM\SOFTWARE\Classes\Conduit.Engine
    Clé Supprimée : HKLM\SOFTWARE\Classes\SuggestMeYes.SuggestMeYesBHO
    Clé Supprimée : HKLM\SOFTWARE\Classes\SuggestMeYes.SuggestMeYesBHO.1
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\BHO.DLL
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\escort.DLL
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\Toolbar.DLL
    Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Extensions\bjeikeheijdjdfjbmknpefojickbkmom
    Clé Supprimée : HKLM\SOFTWARE\Google\chrome\Extensions\kincjchfokkeneeofpeefomkikfkiedl
    Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Extensions\dlfienamagdnkekbbbocojppncdambda
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\facetheme
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{442F13BC-2031-42D5-9520-437F65271153}
    Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{DE4E75D3-60AA-4F02-A0E4-C8A40576574C}
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
    Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{01BCB858-2F62-4F06-A8F4-48F927C15333}
    Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
    Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{65BCD620-07DD-012F-819F-073CF1B8F7C6}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
    Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
    Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DE4E75D3-60AA-4F02-A0E4-C8A40576574C}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DE4E75D3-60AA-4F02-A0E4-C8A40576574C}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011221158}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DE4E75D3-60AA-4F02-A0E4-C8A40576574C}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DE4E75D3-60AA-4F02-A0E4-C8A40576574C}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
    Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
    Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
    Valeur Supprimée : HKCU\Software\Mozilla\Firefox\Extensions [{EB132DB0-A4CA-11DF-9732-0E29E0D72085}]
    Valeur Supprimée : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{EB132DB0-A4CA-11DF-9732-0E29E0D72085}]
    Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{1392B8D2-5C05-419F-A8F6-B9F15A596612}]
    Valeur Supprimée : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{1392B8D2-5C05-419F-A8F6-B9F15A596612}]

    ***** [Registre (x64)] *****

    Clé Supprimée : HKLM\SOFTWARE\Software
    Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
    Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}

    ***** [Navigateurs] *****

    -\\ Internet Explorer v8.0.7600.16385

    Remplacé : [HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxp://search.babylon.com/?affID=110000&tt=050412_30b&babsrc=NT_ss&mntrId=909e99900000000000000026b69a3910 --> hxxp://www.google.fr

    -\\ Mozilla Firefox v3.6.28 (fr)

    11 Avril 2012 16:52:37


    Nom du profil : default
    Fichier : C:\Users\Kevin\AppData\Roaming\Mozilla\FireFox\Profiles\u1h1203s.default\prefs.js

    C:\Users\Kevin\AppData\Roaming\Mozilla\FireFox\Profiles\u1h1203s.default\user.js ... Supprimé !

    Supprimée : user_pref("CT1060933..clientLogIsEnabled", true);
    Supprimée : user_pref("CT1060933..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...]
    Supprimée : user_pref("CT1060933..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...]
    Supprimée : user_pref("CT1060933.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
    Supprimée : user_pref("CT1060933.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
    Supprimée : user_pref("CT1060933.AppTrackingLastCheckTime", "Thu Jan 12 2012 14:49:26 GMT+0100");
    Supprimée : user_pref("CT1060933.BrowserCompStateIsOpen_129681785283868963", true);
    Supprimée : user_pref("CT1060933.BrowserCompStateIsOpen_129686665230467549", true);
    Supprimée : user_pref("CT1060933.CTID", "CT1060933");
    Supprimée : user_pref("CT1060933.CurrentServerDate", "19-1-2012");
    Supprimée : user_pref("CT1060933.DSInstall", true);
    Supprimée : user_pref("CT1060933.DialogsAlignMode", "LTR");
    Supprimée : user_pref("CT1060933.DialogsGetterLastCheckTime", "Thu Jan 19 2012 11:23:05 GMT+0100");
    Supprimée : user_pref("CT1060933.DownloadReferralCookieData", "");
    Supprimée : user_pref("CT1060933.FirstServerDate", "12-1-2012");
    Supprimée : user_pref("CT1060933.FirstTime", true);
    Supprimée : user_pref("CT1060933.FirstTimeFF3", true);
    Supprimée : user_pref("CT1060933.FixPageNotFoundErrors", true);
    Supprimée : user_pref("CT1060933.GroupingServerCheckInterval", 1440);
    Supprimée : user_pref("CT1060933.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
    Supprimée : user_pref("CT1060933.HPInstall", true);
    Supprimée : user_pref("CT1060933.HasUserGlobalKeys", true);
    Supprimée : user_pref("CT1060933.HomePageProtectorEnabled", false);
    Supprimée : user_pref("CT1060933.HomepageBeforeUnload", "hxxp://search.conduit.com/?ctid=CT1060933&SearchSource=[...]
    Supprimée : user_pref("CT1060933.Initialize", true);
    Supprimée : user_pref("CT1060933.InitializeCommonPrefs", true);
    Supprimée : user_pref("CT1060933.InstallationAndCookieDataSentCount", 3);
    Supprimée : user_pref("CT1060933.InstallationId", "ConduitNSISIntegration");
    Supprimée : user_pref("CT1060933.InstallationType", "ConduitXPEIntegration");
    Supprimée : user_pref("CT1060933.InstalledDate", "Thu Jan 12 2012 14:48:53 GMT+0100");
    Supprimée : user_pref("CT1060933.InvalidateCache", false);
    Supprimée : user_pref("CT1060933.IsAlertDBUpdated", true);
    Supprimée : user_pref("CT1060933.IsGrouping", false);
    Supprimée : user_pref("CT1060933.IsInitSetupIni", true);
    Supprimée : user_pref("CT1060933.IsMulticommunity", false);
    Supprimée : user_pref("CT1060933.IsOpenThankYouPage", false);
    Supprimée : user_pref("CT1060933.IsOpenUninstallPage", true);
    Supprimée : user_pref("CT1060933.IsProtectorsInit", true);
    Supprimée : user_pref("CT1060933.LanguagePackLastCheckTime", "Thu Jan 19 2012 11:23:03 GMT+0100");
    Supprimée : user_pref("CT1060933.LanguagePackReloadIntervalMM", 1440);
    Supprimée : user_pref("CT1060933.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
    Supprimée : user_pref("CT1060933.LastLogin_3.9.0.3", "Thu Jan 19 2012 17:23:57 GMT+0100");
    Supprimée : user_pref("CT1060933.LatestVersion", "3.9.0.3");
    Supprimée : user_pref("CT1060933.Locale", "en-us");
    Supprimée : user_pref("CT1060933.MCDetectTooltipHeight", "83");
    Supprimée : user_pref("CT1060933.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
    Supprimée : user_pref("CT1060933.MCDetectTooltipWidth", "295");
    Supprimée : user_pref("CT1060933.MyStuffEnabledAtInstallation", true);
    Supprimée : user_pref("CT1060933.OriginalFirstVersion", "3.9.0.3");
    Supprimée : user_pref("CT1060933.RadioIsPodcast", false);
    Supprimée : user_pref("CT1060933.RadioLastCheckTime", "Thu Jan 19 2012 11:22:59 GMT+0100");
    Supprimée : user_pref("CT1060933.RadioLastUpdateIPServer", "0");
    Supprimée : user_pref("CT1060933.RadioLastUpdateServer", "129326918102570000");
    Supprimée : user_pref("CT1060933.RadioMediaID", "21504191");
    Supprimée : user_pref("CT1060933.RadioMediaType", "Media Player");
    Supprimée : user_pref("CT1060933.RadioMenuSelectedID", "EBRadioMenu_CT106093321504191");
    Supprimée : user_pref("CT1060933.RadioShrinkedFromSetup", false);
    Supprimée : user_pref("CT1060933.RadioStationName", "KFOG");
    Supprimée : user_pref("CT1060933.RadioStationURL", "hxxp://live.cumulusstreaming.com/KFOG-FM");
    Supprimée : user_pref("CT1060933.SavedHomepage", "hxxp://www.google.fr/");
    Supprimée : user_pref("CT1060933.SearchCaption", "Freecorder Customized Web Search");
    Supprimée : user_pref("CT1060933.SearchEngineBeforeUnload", "Freecorder Customized Web Search");
    Supprimée : user_pref("CT1060933.SearchFromAddressBarIsInit", true);
    Supprimée : user_pref("CT1060933.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT106[...]
    Supprimée : user_pref("CT1060933.SearchInNewTabEnabled", true);
    Supprimée : user_pref("CT1060933.SearchInNewTabIntervalMM", 1440);
    Supprimée : user_pref("CT1060933.SearchInNewTabLastCheckTime", "Thu Jan 19 2012 11:22:58 GMT+0100");
    Supprimée : user_pref("CT1060933.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
    Supprimée : user_pref("CT1060933.SearchProtectorEnabled", false);
    Supprimée : user_pref("CT1060933.SearchProtectorToolbarDisabled", false);
    Supprimée : user_pref("CT1060933.SendProtectorDataViaLogin", true);
    Supprimée : user_pref("CT1060933.ServiceMapLastCheckTime", "Thu Jan 19 2012 11:23:00 GMT+0100");
    Supprimée : user_pref("CT1060933.SettingsLastCheckTime", "Thu Jan 19 2012 19:32:11 GMT+0100");
    Supprimée : user_pref("CT1060933.SettingsLastUpdate", "1326723880");
    Supprimée : user_pref("CT1060933.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT1060933&SearchSource=13");
    Supprimée : user_pref("CT1060933.ThirdPartyComponentsInterval", 504);
    Supprimée : user_pref("CT1060933.ThirdPartyComponentsLastCheck", "Thu Jan 12 2012 14:48:52 GMT+0100");
    Supprimée : user_pref("CT1060933.ThirdPartyComponentsLastUpdate", "1312887586");
    Supprimée : user_pref("CT1060933.ToolbarShrinkedFromSetup", false);
    Supprimée : user_pref("CT1060933.TrusteLinkUrl", "hxxp://trust.conduit.com/CT1060933");
    Supprimée : user_pref("CT1060933.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,clien[...]
    Supprimée : user_pref("CT1060933.UserID", "UN29411514101384506");
    Supprimée : user_pref("CT1060933.ValidationData_Toolbar", 2);
    Supprimée : user_pref("CT1060933.alertChannelId", "15651");
    Supprimée : user_pref("CT1060933.appApproved.129272674122038321", true);
    Supprimée : user_pref("CT1060933.backendstorage.autocompletepro_enable", "31");
    Supprimée : user_pref("CT1060933.backendstorage.autocompletepro_enable_auto", "31");
    Supprimée : user_pref("CT1060933.backendstorage.cb_firstuse0100", "31");
    Supprimée : user_pref("CT1060933.backendstorage.cbfirsttime", "546875204A616E20313220323031322031343A34393A31392[...]
    Supprimée : user_pref("CT1060933.backendstorage.printitgreenstatus", "74727565");
    Supprimée : user_pref("CT1060933.backendstorage.shoppingapp.gk.exipres", "547565204A616E20323420323031322031313A[...]
    Supprimée : user_pref("CT1060933.backendstorage.shoppingapp.gk.geolocation", "6672616E6365");
    Supprimée : user_pref("CT1060933.backendstorage.url_history", "687474703A2F2F7777772E66616365626F6F6B2E636F6D2F3[...]
    Supprimée : user_pref("CT1060933.backendstorage.url_history_time", "31333236393934303337353531");
    Supprimée : user_pref("CT1060933.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.c[...]
    Supprimée : user_pref("CT1060933.globalFirstTimeInfoLastCheckTime", "Thu Jan 19 2012 11:23:02 GMT+0100");
    Supprimée : user_pref("CT1060933.homepageProtectorEnableByLogin", true);
    Supprimée : user_pref("CT1060933.initDone", true);
    Supprimée : user_pref("CT1060933.isAppTrackingManagerOn", true);
    Supprimée : user_pref("CT1060933.isFirstRadioInstallation", false);
    Supprimée : user_pref("CT1060933.myStuffEnabled", true);
    Supprimée : user_pref("CT1060933.myStuffPublihserMinWidth", 400);
    Supprimée : user_pref("CT1060933.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
    Supprimée : user_pref("CT1060933.myStuffServiceIntervalMM", 1440);
    Supprimée : user_pref("CT1060933.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
    Supprimée : user_pref("CT1060933.oldAppsList", "128346981843587669,128280995260143876,111,129272674122038321,129[...]
    Supprimée : user_pref("CT1060933.revertSettingsEnabled", true);
    Supprimée : user_pref("CT1060933.searchProtectorDialogDelayInSec", 10);
    Supprimée : user_pref("CT1060933.searchProtectorEnableByLogin", true);
    Supprimée : user_pref("CT1060933.testingCtid", "");
    Supprimée : user_pref("CT1060933.toolbarAppMetaDataLastCheckTime", "Thu Jan 19 2012 11:23:03 GMT+0100");
    Supprimée : user_pref("CT1060933.toolbarContextMenuLastCheckTime", "Thu Jan 12 2012 14:49:07 GMT+0100");
    Supprimée : user_pref("CT1060933.usagesFlag", 2);
    Supprimée : user_pref("CT2504091.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");
    Supprimée : user_pref("CT2504091.CTID", "CT2504091");
    Supprimée : user_pref("CT2504091.CurrentServerDate", "22-9-2010");
    Supprimée : user_pref("CT2504091.DialogsAlignMode", "LTR");
    Supprimée : user_pref("CT2504091.DownloadReferralCookieData", "");
    Supprimée : user_pref("CT2504091.EMailNotifierPollDate", "Wed Sep 22 2010 19:21:08 GMT+0200");
    Supprimée : user_pref("CT2504091.FeedLastCount129079840422964131", 0);
    Supprimée : user_pref("CT2504091.FeedPollDate128891351169457140", "Wed Sep 22 2010 21:21:09 GMT+0200");
    Supprimée : user_pref("CT2504091.FeedPollDate129079840422964131", "Wed Sep 22 2010 19:21:09 GMT+0200");
    Supprimée : user_pref("CT2504091.FeedTTL128891351169457140", 40);
    Supprimée : user_pref("CT2504091.FirstServerDate", "22-9-2010");
    Supprimée : user_pref("CT2504091.FirstTime", true);
    Supprimée : user_pref("CT2504091.FirstTimeFF3", true);
    Supprimée : user_pref("CT2504091.FirstTimeSettingsDone", true);
    Supprimée : user_pref("CT2504091.FixPageNotFoundErrors", true);
    Supprimée : user_pref("CT2504091.GroupingServerCheckInterval", 1440);
    Supprimée : user_pref("CT2504091.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");
    Supprimée : user_pref("CT2504091.Initialize", true);
    Supprimée : user_pref("CT2504091.InitializeCommonPrefs", true);
    Supprimée : user_pref("CT2504091.InstallationAndCookieDataSentCount", 1);
    Supprimée : user_pref("CT2504091.InstallationType", "UnknownIntegration");
    Supprimée : user_pref("CT2504091.InstalledDate", "Wed Sep 22 2010 19:21:08 GMT+0200");
    Supprimée : user_pref("CT2504091.IsGrouping", false);
    Supprimée : user_pref("CT2504091.IsMulticommunity", false);
    Supprimée : user_pref("CT2504091.IsOpenThankYouPage", false);
    Supprimée : user_pref("CT2504091.IsOpenUninstallPage", false);
    Supprimée : user_pref("CT2504091.LanguagePackLastCheckTime", "Wed Sep 22 2010 19:21:10 GMT+0200");
    Supprimée : user_pref("CT2504091.LanguagePackReloadIntervalMM", 1440);
    Supprimée : user_pref("CT2504091.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...]
    Supprimée : user_pref("CT2504091.LastLogin_2.7.2.0", "Wed Sep 22 2010 19:21:09 GMT+0200");
    Supprimée : user_pref("CT2504091.LatestVersion", "2.6.0.14");
    Supprimée : user_pref("CT2504091.Locale", "en-us");
    Supprimée : user_pref("CT2504091.LoginCache", 4);
    Supprimée : user_pref("CT2504091.MCDetectTooltipHeight", "83");
    Supprimée : user_pref("CT2504091.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
    Supprimée : user_pref("CT2504091.MCDetectTooltipWidth", "295");
    Supprimée : user_pref("CT2504091.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TER[...]
    Supprimée : user_pref("CT2504091.SearchFromAddressBarIsInit", true);
    Supprimée : user_pref("CT2504091.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT250[...]
    Supprimée : user_pref("CT2504091.SearchInNewTabEnabled", true);
    Supprimée : user_pref("CT2504091.SearchInNewTabIntervalMM", 1440);
    Supprimée : user_pref("CT2504091.SearchInNewTabLastCheckTime", "Wed Sep 22 2010 19:21:09 GMT+0200");
    Supprimée : user_pref("CT2504091.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...]
    Supprimée : user_pref("CT2504091.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageServic[...]
    Supprimée : user_pref("CT2504091.SettingsCheckIntervalMin", 120);
    Supprimée : user_pref("CT2504091.SettingsLastCheckTime", "Wed Sep 22 2010 19:21:08 GMT+0200");
    Supprimée : user_pref("CT2504091.SettingsLastUpdate", "1284751129");
    Supprimée : user_pref("CT2504091.ThirdPartyComponentsInterval", 504);
    Supprimée : user_pref("CT2504091.ThirdPartyComponentsLastCheck", "Wed Sep 22 2010 19:21:08 GMT+0200");
    Supprimée : user_pref("CT2504091.ThirdPartyComponentsLastUpdate", "1246790578");
    Supprimée : user_pref("CT2504091.TrusteLinkUrl", "hxxp://www.truste.org/pvr.php?page=validate&softwareProgramId=[...]
    Supprimée : user_pref("CT2504091.UserID", "UN62024245252436039");
    Supprimée : user_pref("CT2504091.alertChannelId", "897164");
    Supprimée : user_pref("CT2504091.clientLogIsEnabled", true);
    Supprimée : user_pref("CT2504091.clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asm[...]
    Supprimée : user_pref("CT2504091.myStuffEnabled", true);
    Supprimée : user_pref("CT2504091.myStuffPublihserMinWidth", 400);
    Supprimée : user_pref("CT2504091.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOr[...]
    Supprimée : user_pref("CT2504091.myStuffServiceIntervalMM", 1440);
    Supprimée : user_pref("CT2504091.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?Co[...]
    Supprimée : user_pref("CT2504091.uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Reg[...]
    Supprimée : user_pref("CommunityToolbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT1060933&Search[...]
    Supprimée : user_pref("CommunityToolbar.ConduitSearchList", "Freecorder Customized Web Search");
    Supprimée : user_pref("CommunityToolbar.ETag.hxxp://Settings.toolbar.search.conduit.com/root/CT1060933/CT1060933[...]
    Supprimée : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/15651/15317/FR", "\"0\"");
    Supprimée : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT1060933", [...]
    Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&lo[...]
    Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&loc[...]
    Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&lo[...]
    Supprimée : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&local[...]
    Supprimée : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\[...]
    Supprimée : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.9.[...]
    Supprimée : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT1060933",[...]
    Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Cornflower/equaliz[...]
    Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Cornflower/minimiz[...]
    Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Cornflower/play.gi[...]
    Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Cornflower/stop.gi[...]
    Supprimée : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/BankImages/RadioSkins/Cornflower/vol.gif[...]
    Supprimée : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=en-us", "\"[...]
    Supprimée : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Kevin\\AppData\\Roaming\\Mozilla\\F[...]
    Supprimée : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.9.0.3");
    Supprimée : user_pref("CommunityToolbar.MiniIPageGadgetPosition.hxxp://freecorder.com/fc6/gadget/video.html", "4[...]
    Supprimée : user_pref("CommunityToolbar.MiniIPageGadgetSize.hxxp://freecorder.com/fc6/gadget/video.html", "833x3[...]
    Supprimée : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://www.bing.com/search?FORM=IEFM1&q=[...]
    Supprimée : user_pref("CommunityToolbar.ToolbarsList", "CT2504091,CT1060933");
    Supprimée : user_pref("CommunityToolbar.ToolbarsList2", "CT2504091,CT1060933");
    Supprimée : user_pref("CommunityToolbar.ToolbarsList4", "CT1060933");
    Supprimée : user_pref("CommunityToolbar.globalUserId", "35873cd3-e24b-4126-a052-bb0865487a37");
    Supprimée : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
    Supprimée : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
    Supprimée : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT1060933");
    Supprimée : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Thu Jan 19 2012 17:23:5[...]
    Supprimée : user_pref("CommunityToolbar.notifications.alertInfoInterval", 1440);
    Supprimée : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Thu Jan 19 2012 11:23:06 GMT+010[...]
    Supprimée : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");
    Supprimée : user_pref("CommunityToolbar.notifications.locale", "en");
    Supprimée : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
    Supprimée : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Thu Jan 19 2012 11:22:59 GMT+0100");
    Supprimée : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
    Supprimée : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
    Supprimée : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");
    Supprimée : user_pref("CommunityToolbar.notifications.showTrayIcon", false);
    Supprimée : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
    Supprimée : user_pref("CommunityToolbar.notifications.userId", "aa2c51f7-d3d1-438b-a25b-66fd8da100c3");
    Supprimée : user_pref("CommunityToolbar.originalHomepage", "hxxp://www.google.fr/");
    Supprimée : user_pref("CommunityToolbar.originalSearchEngine", "Google");
    Supprimée : user_pref("browser.babylon.HPOnNewTab", "search.babylon.com");
    Supprimée : user_pref("browser.search.defaultenginename", "Search the web (Babylon)");
    Supprimée : user_pref("browser.search.defaultthis.engineName", "Freecorder Customized Web Search");
    Supprimée : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1060933&Sea[...]
    Supprimée : user_pref("browser.search.order.1", "Search the web (Babylon)");
    Supprimée : user_pref("extensions.BabylonToolbar.admin", false);
    Supprimée : user_pref("extensions.BabylonToolbar.aflt", "babsst");
    Supprimée : user_pref("extensions.BabylonToolbar.babExt", "");
    Supprimée : user_pref("extensions.BabylonToolbar.babTrack", "affID=110000&tt=050412_30b");
    Supprimée : user_pref("extensions.BabylonToolbar.bbDpng", 10);
    Supprimée : user_pref("extensions.BabylonToolbar.dfltLng", "en");
    Supprimée : user_pref("extensions.BabylonToolbar.dfltSrch", true);
    Supprimée : user_pref("extensions.BabylonToolbar.hmpg", true);
    Supprimée : user_pref("extensions.BabylonToolbar.id", "909e99900000000000000026b69a3910");
    Supprimée : user_pref("extensions.BabylonToolbar.instlDay", "15440");
    Supprimée : user_pref("extensions.BabylonToolbar.instlRef", "sst");
    Supprimée : user_pref("extensions.BabylonToolbar.keyWordUrl", "hxxp://search.babylon.com/?affID=110000&tt=050412[...]
    Supprimée : user_pref("extensions.BabylonToolbar.lastDP", 10);
    Supprimée : user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.5.3.179:13:13");
    Supprimée : user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "3.6");
    Supprimée : user_pref("extensions.BabylonToolbar.newTab", true);
    Supprimée : user_pref("extensions.BabylonToolbar.newTabUrl", "hxxp://search.babylon.com/?babsrc=NT_bb");
    Supprimée : user_pref("extensions.BabylonToolbar.noFFXTlbr", false);
    Supprimée : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
    Supprimée : user_pref("extensions.BabylonToolbar.propectorlck", 72646575);
    Supprimée : user_pref("extensions.BabylonToolbar.prtkDS", 1);
    Supprimée : user_pref("extensions.BabylonToolbar.prtkHmpg", 1);
    Supprimée : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
    Supprimée : user_pref("extensions.BabylonToolbar.ptch_0717", true);
    Supprimée : user_pref("extensions.BabylonToolbar.smplGrp", "none");
    Supprimée : user_pref("extensions.BabylonToolbar.srcExt", "ss");
    Supprimée : user_pref("extensions.BabylonToolbar.tlbrId", "tb9");
    Supprimée : user_pref("extensions.BabylonToolbar.vrsn", "1.5.3.17");
    Supprimée : user_pref("extensions.BabylonToolbar.vrsnTs", "1.5.3.179:13:13");
    Supprimée : user_pref("extensions.BabylonToolbar.vrsni", "1.5.3.17");
    Supprimée : user_pref("extensions.BabylonToolbar_i.aflt", "babsst");
    Supprimée : user_pref("extensions.BabylonToolbar_i.babExt", "");
    Supprimée : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=110000&tt=050412_30b");
    Supprimée : user_pref("extensions.BabylonToolbar_i.hardId", "909e99900000000000000026b69a3910");
    Supprimée : user_pref("extensions.BabylonToolbar_i.id", "909e99900000000000000026b69a3910");
    Supprimée : user_pref("extensions.BabylonToolbar_i.instlDay", "15440");
    Supprimée : user_pref("extensions.BabylonToolbar_i.instlRef", "sst");
    Supprimée : user_pref("extensions.BabylonToolbar_i.newTab", false);
    Supprimée : user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");
    Supprimée : user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");
    Supprimée : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
    Supprimée : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");
    Supprimée : user_pref("extensions.BabylonToolbar_i.tlbrId", "tb9");
    Supprimée : user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");
    Supprimée : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.179:13:13");
    Supprimée : user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");

    -\\ Google Chrome v [Impossible d'obtenir la version]

    Fichier : C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Preferences

    Supprimée : "homepage": "hxxp://search.babylon.com/?affID=110000&tt=050412_30b&babsrc=HP_ss&mntrId=909e999000000[...]

    *************************

    AdwCleaner[S1].txt - [38740 octets] - [11/04/2012 16:46:51]

    ########## EOF - C:\AdwCleaner[S1].txt - [38869 octets] ##########
    a c 614 8 Sécurité
    a b È Firefox
    11 Avril 2012 16:58:31

    Re,

    Ok, dis-moi si c'est bon maintenant.
    11 Avril 2012 17:27:35

    Re,

    Ben ca m'a l'air tout bon en effet! Merci beaucoup :D !!

    Bonne soirée!!
    a c 614 8 Sécurité
    a b È Firefox
    11 Avril 2012 18:56:55

    Ok,

    Pour finir :

    Désinstalle AdwCleaner :

  • Relance-le le programme adwcleaner0.exe situé sur ton Bureau.
    (Utilisateur de Vista/Windows 7, clique-droit sur le fichier -> Exécuter en tant qu'administrateur)
  • Dans la fenêtre principal, choisis l'option Désinstallation, et valide avec "Oui"

  • Supprime ensuite le fichier adwcleaner0.exe sur ton bureau.


    Pour aller plus loin dans ta protection et éviter de te faire réinfecter voici quelques conseils supplémentaires :

  • Attention lors de l'installation de logiciel :
    Veiller à toujours lire les conditions d'utilisation (CLUF), afin de déceler la gestion des données personnelles, l'installation de sponsors publicitaires ou tout autre atteintes à la vie privée. Refuser les toolbars et autres addons proposés.

  • Firefox et/ou Chrome offrent une meilleure sécurité par rapport à Internet Explorer, surtout si on les complète de quelques plugins très intéressant : Noscript et WOT par exemple. (pour Chrome : NoScript ; WOT )

  • Maintenir ses logiciels et son système à jour :
    De nombreuses infections sont dû à des failles de windows, mais aussi de logiciel tiers, comme Sun Java, Adobe Acrobat Reader, etc
    Tu peux faire un scan de vulnérabilité pour connaitre tes logiciels présentant des failles non corrigées ou à mettre à jour.

    Enfin, le plus important reste ton comportement sur ton PC, tu restes la plus importante protection : Évites les comportement à risque : P2P, cracks, téléchargements et installations douteux via des pubs, les messageries instantanées, ou des sites inconnu, sites pornographiques.
    A lire !


    Tu peux indiquer ton sujet "réglé" en cliquant sur le bouton "modifier" (en bas, en forme de crayon) dans ton tout premier message.
    -> Ajoute ensuite "résolu" à coté de ton titre et valide.

    Tu peux aussi,si tu le souhaites et si l'option est disponible (dépend de quel type de sujet ouvert), valider une "meilleure réponse", ton sujet sera alors automatiquement marqué comme "résolu"

    /!\ Seul les membres inscrit et connecté à la création initiale du sujet peuvent effectuer ces manipulations.

    A bientôt sur les forums Tom's Guide
    12 Avril 2012 10:02:00

    Bonjour,


    Je te remercie beaucoup pour tous ces conseils!!


    Excellente journée!
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS