Aller au contenu
Zebulon
  • Pas encore inscrit ?

    Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
    Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
    De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs ! :wink:

[Résolu] Un malware au démarrage ?


Messages recommandés

Bonjour,

 

Depuis 2 jours j'ai remarqué au démarrage l'apparition d'un petit triangle en bas à droite qui affiche au survol kujytuo.exe. L'icone disparait dès la fin du démarrage. D'après mes quelques recherches il s'agirait d'un malware. J'ai téléchargé Malware bytes et fait un scan complet mais il n'a rien détecté. J'ai lancé également ZHPDiag. Le rapport est ici : Lien CJoint.com BCrjqXg3onM

 

Merci de votre aide

Modifié par freddy91
Lien vers le commentaire
Partager sur d’autres sites

Bonjour,

 

Spybot, totalement obsolète va être désinstallé.

Vous pourriez utiliser Mbam (Malewares Bytes)pour le remplacer.

Téléchargez MBAM

ICI

ou LA

Vous devez faire ceci, avant de lancer Zhpfix:

Pour désactiver TeaTimer qui ne sert à rien et peut faire échouer une désinfection:!

Sous Vista, exécuter avec privilèges Administrateur

Afficher d'abord le Mode Avancé dans SpyBot

->Options Avancées :

- >menu Mode, Mode Avancé.

Une colonne de menus apparaît dans la partie gauche :

- >cliquer sur Outils,

- >cliquer sur Résident,

Dans Résident :

- >décocher Résident "TeaTimer" pour le désactiver.

Effacer le contenu du dossier Snapshots(le contenu de snapshots, pas le fichier snapshots) , sous XP :

C:\Documents and Settings\All Users\Application Data\Spybot - Search &Destroy\Snapshots

Et sous Vista :

C:\ProgramData\Spybot - Search & Destroy\Snapshots

Si vous ne trouvez pas Snapshots, poursuivez la procédure sans vous en préoccuper

 

 

Vous devez trouver sur le bureau ou ,sinon, dans le dossier où vous avez installé Zhpdiag ces 3 icônes .

zhp0710.png

Cliquer sur l'icône Zhpfix

Sous Vista/7 clic-droit, "Exécuter En tant qu'Administrateur

Copiez/Collez les lignes vertes dans le cadre ci dessous:

pour cela;

Clic gauche maintenu enfoncé, Balayer l'ensemble du texte à copier avec la souris pour le mettre en surbrillance ,de gauche à droite et de haut en bas

Ctrl+c mettre le tout en mémoire

Ctrl+v pour inscrire le texte dans le Document

Vous ne verrez rien avant d'avoir Cliqué sur le H- PanelHelper.jpg

 

P2 - FPN: [HKLM] [@viewpoint.com/VMP] - (.Pas de propriétaire - MetaStream 3 Plugin r4.) -- C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll => Infection PUP (Adware.MetaStream)

O1 - Hosts: 83.114.31.92 melissa => Infection Hosts (Hosts.Redirection)

O4 - HKCU\..\Run: [Kujytuo] . (...) -- C:\Documents and Settings\Fred\Application Data\kujytuo\kujytuo.exe => Infection PUP (PUP.Kujytuo)

O4 - HKUS\S-1-5-21-3838534904-3263054634-1759131992-1005\..\Run: [Kujytuo] . (...) -- C:\Documents and Settings\Fred\Application Data\kujytuo\kujytuo.exe => Infection PUP (PUP.Kujytuo)

O40 - ASIC: Viewpoint Media Player - {03F998B2-0E00-11D3-A498-00104B6EB52E} . (.Viewpoint Corporation - Viewpoint Media Player for Internet Explorer.) -- C:\Program Files\Viewpoint\Viewpoint Experience Technology\AxMetaStream.dll => Infection PUP (Adware.MetaStream)

O40 - ASIC: Viewpoint Media Player - {1B00725B-C455-4DE6-BFB6-AD540AD427CD} . (.Viewpoint Corporation - Viewpoint Media Player for Internet Explorer.) -- C:\Program Files\Viewpoint\Viewpoint Experience Technology\AxMetaStream.dll => Infection PUP (Adware.MetaStream)

O42 - Logiciel: MyWay Search Assistant - (.MyWay.) [HKLM] -- {E7559288-223B-453C-9F06-340E3BE21E39} => Infection BT (MyWebSearch.Spy)

O42 - Logiciel: Viewpoint Media Player - (.Pas de propriétaire.) [HKLM] -- ViewpointMediaPlayer => Infection BT (Adware.MetaStream)

[HKCU\Software\MyWaySA] => Infection BT (MyWebSearch.Spy)

[HKLM\Software\Babylon] => Infection BT (Toolbar.Babylon)

[HKLM\Software\MetaStream] => Infection PUP (Adware.MetaStream)

[HKLM\Software\MyWaySA] => Infection BT (MyWebSearch.Spy)

[HKLM\Software\Viewpoint] => Infection PUP (Adware.MetaStream)

O43 - CFD: 13/12/2005 - 10:17:38 - [7,209] ----D- C:\Program Files\Viewpoint => Infection PUP (Adware.MetaStream)

O43 - CFD: 15/03/2012 - 21:54:34 - [0,002] ----D- C:\Documents and Settings\Fred\Application Data\Babylon => Infection BT (Toolbar.Babylon)

O43 - CFD: 15/03/2012 - 21:54:36 - [3,792] ----D- C:\Documents and Settings\Fred\Local Settings\Application Data\Babylon => Infection BT (Toolbar.Babylon)

O61 - LFC:Last File Created 15/03/2012 - 21:54:39 ---A- C:\Documents And Settings\Fred\Local Settings\Application Data\Babylon\Setup\BExternal-9.0.3.34.zpb [49849] => Infection BT (Toolbar.Babylon)

O61 - LFC:Last File Created 15/03/2012 - 21:54:59 ---A- C:\Documents And Settings\Fred\Local Settings\Application Data\Babylon\Setup\Setup-tbmntr903-9.0.3.34.zpb [1149080] => Infection BT (Toolbar.Babylon)

O61 - LFC:Last File Created 15/03/2012 - 21:55:00 ---A- C:\Documents And Settings\Fred\Application Data\Babylon\log_file.txt [1892] => Infection BT (Toolbar.Babylon)

[HKLM\Software\MozillaPlugins\@viewpoint.com/VMP] => Infection PUP (Adware.MetaStream)

[HKLM\Software\Classes\AppID\WMHelper.DLL] => Infection PUP (PUP.BearShare)

[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayer] => Infection PUP (Adware.MetaStream))

[HKLM\Software\Classes\axmetastream.metastreamctl] => Infection PUP (Adware.MetaStream)

[HKLM\Software\Classes\axmetastream.metastreamctl.1] => Infection PUP (Adware.MetaStream)

[HKLM\Software\Classes\AxMetaStream.MetaStreamCtlSecondary] => Infection PUP (Adware.MetaStream)

[HKLM\Software\Classes\AxMetaStream.MetaStreamCtlSecondary.1] => Infection PUP (Adware.MetaStream)

[HKLM\Software\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}] => Infection BT (Adware.MetaStream)

[HKLM\Software\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}] => Infection BT (Adware.MetaStream)

[HKLM\Software\Classes\TypeLib\{2D5E2D34-BED5-4B9F-9793-A31E26E6806E}] => Infection BT (Adware.Hotbar)

[HKLM\Software\Classes\CLSID\{3BF72F68-72D8-461D-A884-329D936C5581}] => Infection PUP (BearShare)

[HKLM\Software\Classes\CLSID\{78E9D883-93CD-4072-BEF3-38EE581E2839}] => Infection PUP (BearShare)

[HKLM\Software\Classes\CLSID\{83AC1413-FCE4-4A46-9DD5-4F31F306E71F}] => Infection PUP (BearShare)

[HKLM\Software\Classes\AppID\{A7DDCBDE-5C86-415c-8A37-763AE183E7E4}] => Infection PUP (PUP.iMesh)

[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer] => Infection PUP (Adware.MetaStream)

C:\Program Files\Viewpoint => Infection PUP (Adware.MetaStream)

C:\Documents and Settings\Fred\Application Data\Babylon => Infection BT (Toolbar.Babylon)

C:\Documents and Settings\Fred\Local Settings\Application Data\Babylon => Infection BT (Toolbar.Babylon)

[MD5.8B718E2C3AE1EA0B90BFA793F7B558A7] - (.Ask - Ask Updater.) -- C:\Program Files\Ask.com\Updater\Updater.exe [395144] [PID.2848]

O4 - HKCU\..\Run: [spybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe => Safer Net Working®Spybot S&D

O4 - HKUS\S-1-5-21-3838534904-3263054634-1759131992-1005\..\Run: [spybotSD TeaTimer] . (.Safer-Networking Ltd. - System settings protector.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe => Safer Net Working®Spybot S&D

O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} (Image Uploader Control) - http://www.mypix.com/importer/ImageUploader4.cab

O42 - Logiciel: Spybot - Search & Destroy - (.Safer Networking Limited.) [HKLM] -- {B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1 => Safer Networking Limited Spybot - S&D

O42 - Logiciel: Spybot - Search & Destroy 1.4 - (.Safer Networking Limited.) [HKLM] -- Spybot - Search & Destroy_is1 => Spybot Search & Destroy

O43 - CFD: 07/12/2010 - 21:48:04 - [69,680] ----D- C:\Program Files\Spybot - Search & Destroy => Spybot - Search & Destroy

O47 - AAKE:Key Export SP - "C:\WINDOWS\system32\spool\drivers\w32x86\3\dlccPSWX.EXE" [Enabled] .(...) -- C:\WINDOWS\system32\spool\drivers\w32x86\3\dlccPSWX.exe (.not file.) => Fichier absent

O51 - MPSK:{069423ce-fd57-11e0-8015-00123f7db2ff}\AutoRun\command. (...) -- O:\iStudio.exe (.not file.) => Fichier absent

O61 - LFC:Last File Created 17/03/2012 - 08:12:05 ---A- C:\Documents And Settings\All Users\Application Data\Spybot - Search & Destroy\ProcCache.sbc [150100] => Spybot Search & Destroy

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.first-launch-url", "http://www.sopcast.com/"); => Toolbar.Agent

M3 - MFPP: Plugins - [Fred] -- C:\Documents and Settings\Fred\Application Data\Mozilla\Firefox\Profiles\bjn63jpn.default\searchplugins\conduit.xml => Toolbar.Conduit

M2 - MFEP: prefs.js [Fred - bjn63jpn.default\toolbar@ask.com] [] Ask Toolbar v1.2.1.12788 (.Ask.com.) => Toolbar.Ask

M2 - MFEP: prefs.js [Fred - bjn63jpn.default\{ba14329e-9550-4989-b3f2-9732e92d17cc}] [] Vuze Remote Toolbar v2.7.2.0 (.Conduit Ltd..) => Toolbar.Conduit

M2 - MFEP: prefs.js [Fred - bjn63jpn.default\{e411bb40-b04c-11d8-92e7-00d09e0179f2}] [igraal] iGraal v1.8.3 (.iGraal.) => Toolbar.iGraal

O2 - BHO: Vuze Remote - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vuze_Remote\prxtbVuz2.dll

O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} . (.Ask - Ask Toolbar.) -- C:\Program Files\Ask.com\GenericAskToolbar.dll

O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} . (.Yahoo! Inc. - Yahoo! Toolbar.) -- C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll => Yahoo®Toolbar

O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} . (.Ask - Ask Toolbar.) -- C:\Program Files\Ask.com\GenericAskToolbar.dll

O3 - Toolbar: Vuze Remote Toolbar - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Vuze_Remote\prxtbVuz2.dll

O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job => Toolbar.Ask

[MD5.4B5F5E8F51BE2541CD3E066CE175042A] [APT] [scheduled Update for Ask Toolbar] (...) -- C:\Program Files\Ask.com\UpdateTask.exe

O42 - Logiciel: Ask Toolbar - (.Ask.com.) [HKLM] -- {86D4B82A-ABED-442A-BE86-96357B70F4FE} => Toolbar.Ask

[HKCU\Software\APN] => Toolbar.eBay

[HKCU\Software\AppDataLow\AskToolbarInfo] => Toolbar.Ask

[HKCU\Software\Ask.com] => Toolbar.Ask

[HKCU\Software\AskToolbar] => Toolbar.Ask

[HKLM\Software\APN] => Toolbar.eBay

[HKLM\Software\AskToolbar] => Toolbar.Ask

O43 - CFD: 29/05/2011 - 11:14:10 - [2,316] ----D- C:\Program Files\Ask.com => Toolbar.Ask

O43 - CFD: 21/11/2010 - 18:49:10 - [1,722] ----D- C:\Program Files\Conduit => Toolbar.Conduit

O43 - CFD: 05/01/2012 - 00:12:42 - [0,376] ----D- C:\Documents and Settings\Fred\Local Settings\Application Data\AskToolbar => Toolbar.Ask

O43 - CFD: 07/05/2011 - 14:06:28 - [1,854] ----D- C:\Documents and Settings\Fred\Local Settings\Application Data\Conduit => Toolbar.Conduit

O43 - CFD: 05/01/2012 - 23:51:36 - [0,371] ----D- C:\Documents and Settings\Fred\Local Settings\Application Data\ConduitEngine => Toolbar.Conduit

O69 - SBI: C:\Documents and Settings\Fred\Application Data\Mozilla\Firefox\Profiles\bjn63jpn.default\searchplugins\conduit.xml => Toolbar.Conduit

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.AboutPrivacyUrl", "http://www.conduit.com/privacy/Default.aspx"); => Toolbar.Conduit

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.CTID", "CT2504091"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.CurrentServerDate", "25-11-2010"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.DialogsAlignMode", "LTR"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.DownloadReferralCookieData", ""); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.EMailNotifierPollDate", "Thu Nov 25 2010 21:18:21 GMT+0100"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.FeedLastCount129079840422964131", 10); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.FeedPollDate128891351169457140", "Thu Nov 25 2010 23:13:14 GMT+0100"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.FeedPollDate129079840422964131", "Thu Nov 25 2010 21:13:21 GMT+0100"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.FeedTTL128891351169457140", 40); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.FirstServerDate", "22-11-2010"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.FirstTime", true); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.FirstTimeFF3", true); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.FirstTimeSettingsDone", true); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.FixPageNotFoundErrors", true); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.GroupingServerCheckInterval", 1440); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.GroupingServiceUrl", "http://grouping.services.conduit.com/"); => Toolbar.Conduit

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.Initialize", true); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.InitializeCommonPrefs", true); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.InstallationAndCookieDataSentCount", 3); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.InstallationType", "UnknownIntegration"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.InstalledDate", "Mon Nov 22 2010 21:45:56 GMT+0100"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.IsGrouping", false); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.IsMulticommunity", false); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.IsOpenThankYouPage", false); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.IsOpenUninstallPage", false); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.LanguagePackLastCheckTime", "Wed Nov 24 2010 23:09:34 GMT+0100"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.LanguagePackReloadIntervalMM", 1440); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.LanguagePackServiceUrl", "http://translation.users.conduit.com/Translation.ashx"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.LastLogin_2.7.2.0", "Thu Nov 25 2010 21:13:21 GMT+0100"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.LatestVersion", "2.6.0.14"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.Locale", "en-us"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.LoginCache", 4); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.MCDetectTooltipHeight", "83"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.MCDetectTooltipUrl", "http://@EB_INSTALL_LINK@/rank/tooltip/?version=1"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.MCDetectTooltipWidth", "295"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.SearchEngine", "Search||http://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT2504091 => Toolbar.Conduit

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2504091&q="'>http://search.conduit.com/ResultsExt.aspx?ctid=CT2504091&q="); => Toolbar.Conduit

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.SearchInNewTabEnabled", true); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.SearchInNewTabIntervalMM", 1440); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.SearchInNewTabLastCheckTime", "Thu Nov 25 2010 23:09:26 GMT+0100"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.SearchInNewTabServiceUrl", "http://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID"); => Toolbar.Conduit

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.SearchInNewTabUsageUrl", "http://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests? => Toolbar.Conduit

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.SettingsLastCheckTime", "Thu Nov 25 2010 21:13:20 GMT+0100"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.SettingsLastUpdate", "1289439748"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.ThirdPartyComponentsInterval", 504); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.ThirdPartyComponentsLastCheck", "Mon Nov 22 2010 21:45:55 GMT+0100"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.ThirdPartyComponentsLastUpdate", "1246790578"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.TrusteLinkUrl", "http://www.truste.org/pvr.php?page=validate&softwareProgramId=101&sealid=112"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.UserID", "UN24343624572802025"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.ValidationData_Toolbar", 1); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.alertChannelId", "897164"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.clientLogIsEnabled", true); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.clientLogServiceUrl", "http://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent"); => Toolbar.Conduit

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.myStuffEnabled", true); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.myStuffPublihserMinWidth", 400); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.myStuffSearchUrl", "http://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29 => Toolbar.Conduit

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CT2504091.myStuffServiceUrl", "http://mystuff.conduit-services.com/MyStuffService.ashx? => Toolbar.Conduit

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CommunityToolbar.ToolbarsList", "CT2504091"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CommunityToolbar.ToolbarsList2", "CT2504091"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2504091"); => Toolbar.Agent

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("browser.search.defaulturl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2504091&SearchSource=3&q={searchTerms}"); => Toolbar.Conduit

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.InstallDir", "C:\\Program Files\\Ask.com\\"); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.abar-war-timeout", "4000"); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.cbid", "PV"); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.config-updated", true); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.dyn-weather-do-locid-lookup-weatherWidget", true); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.fresh-install", false); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.guid", "6F4A44C5-E9D0-43C1-AE76-B8A1FD9CCCE6"); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.if", "su"); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.l", "dis"); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.last-config-req", "1331844923348"); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.last-v", "3.12.1.100005"); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.locale", "fr_FR"); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.o", "15000"); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.options-lang", "fr"); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.options-locale", "UK"); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.overlay-reloaded-using-restart", true); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.qsrc", "2871"); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.r", "5"); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.sa", "NO"); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.search-history-queries", "gare de lyon"); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.search-suggestions-enabled", true); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.silent-upgrade", true); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.silent-upgrade-from-pre-newtabs-build", true); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.socialmini-first", true); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.socialmini-interval", "1200000"); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.socialmini-max-char-ticker", "33"); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.socialmini-max-items", "30"); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.socialmini-native-on", true); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.socialmini-speed", "5000"); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.socialmini-transition-first-open", false); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.themeid", ""); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.v", "3.12.2.100010"); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("extensions.asktb.version", "5.12.2.16749"); => Toolbar.Ask

O69 - SBI: prefs.js [Fred - bjn63jpn.default] user_pref("keyword.URL", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2504091&q="); => Toolbar.Conduit

O69 - SBI: SearchScopes [HKCU] {afdbddaa-5d3f-42ee-b79c-185a7020515b} - (Vuze Remote Customized Web Search) - http://search.conduit.com => Toolbar.Conduit

[HKLM\Software\Classes\AppID\GenericAskToolbar.DLL] => Toolbar.Ask

[HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine] => Toolbar.Conduit

[HKLM\Software\Classes\Conduit.Engine] => Toolbar.Conduit

[HKLM\Software\Classes\Toolbar.ct2504091] => Toolbar.Agent

[HKLM\Software\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}] => Toolbar.Ask

[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}] => Toolbar.Agent

[HKLM\Software\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}] => Toolbar.Ask

[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}] => Toolbar.Conduit

[HKLM\Software\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}] => Toolbar.Ask

[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}] => Toolbar.Ask

[HKLM\Software\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}] => Toolbar.Ask

[HKLM\Software\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}] => Toolbar.Ask

[HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}] => Toolbar.Ask

[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}] => Toolbar.Ask

[HKLM\Software\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}] => Toolbar.Ask

[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}] => Toolbar.Conduit

[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{ba14329e-9550-4989-b3f2-9732e92d17cc}] => Toolbar.Conduit

[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ba14329e-9550-4989-b3f2-9732e92d17cc}] => Toolbar.Conduit

[HKLM\Software\Classes\CLSID\{ba14329e-9550-4989-b3f2-9732e92d17cc}] => Toolbar.Conduit

[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ba14329e-9550-4989-b3f2-9732e92d17cc}] => Toolbar.Conduit

[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}] => Toolbar.Ask

[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}] => Toolbar.Ask

[HKLM\Software\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}] => Toolbar.Ask

[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}] => Toolbar.Ask

[HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF] => Toolbar.Ask

[HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF] => Toolbar.Ask

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF] => Toolbar.Ask

[HKCU\Software\APN] => Toolbar.eBay

[HKLM\Software\APN] => Toolbar.eBay

[HKCU\Software\Ask.com] => Toolbar.Ask

[HKCU\Software\Ask.com] => Toolbar.Ask

[HKCU\Software\AskToolbar] => Toolbar.Ask

[HKLM\Software\AskToolbar] => Toolbar.Ask

[HKCU\Software\AppDataLow\AskToolbarInfo] => Toolbar.Ask

[HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Toolbar] => Toolbar.Agent

[HKLM\Software\Classes\Toolbar.CT2504091] => Toolbar.Agent

[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{D4027C7F-154A-4066-A1AD-4243D8127440} => Toolbar.Ask

[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{D4027C7F-154A-4066-A1AD-4243D8127440} => Toolbar.Ask

[HKLM\Software\Microsoft\Windows\CurrentVersion\Run]:ApnUpdater => Toolbar.Ask

C:\Program Files\Ask.com => Toolbar.Ask

C:\Program Files\Conduit => Toolbar.Conduit

C:\Documents and Settings\Fred\Local Settings\Application Data\AskToolbar => Toolbar.Ask

C:\Documents and Settings\Fred\Local Settings\Application Data\Conduit => Toolbar.Conduit

C:\Documents and Settings\Fred\Local Settings\Application Data\ConduitEngine => Toolbar.Conduit

C:\Documents and Settings\Fred\Application Data\Mozilla\Firefox\Profiles\bjn63jpn.default\Extensions\toolbar@ask.com => Toolbar.Ask

C:\Documents and Settings\Fred\Application Data\Mozilla\Firefox\Profiles\bjn63jpn.default\SearchPlugins\conduit.xml => Toolbar.Conduit

 

EmptyFlash

EmptyTemp

FirewallRaz

110926125340285987.jpg

 

 

Cliquer sur "OK", ce qui fait apparaître un carré à gauche de chaque ligne.

110515101159971677.jpg

Cliquer sur "Tous" puis sur "Nettoyer" .

Redémarrer pour achever le nettoyage.

Un rapport apparait:

Capture1Rapport.JPG

Si le rapport n'apparait pas,cliquer surPanelRapport.jpg

Copier-coller le rapport de suppression dans la prochaine réponse.

Lien vers le commentaire
Partager sur d’autres sites

Voici le rapport de suppression :

 

Rapport de ZHPFix 1.12.3381 par Nicolas Coolman, Update du 08/02/2011

Fichier d'export Registre :

Run by Fred at 17/03/2012 10:32:39

Windows XP Professional Service Pack 3 (Build 2600)

Web site : ZHPFix Fix de rapport

Web site : Blog de NicolasCoolman - ZebHelpProcess - Skyrock.com

 

========== Logiciel(s) ==========

SUPPRIME MyWay Search Assistant

SUPPRIME Viewpoint Media Player

SUPPRIME Spybot - Search & Destroy

SUPPRIME Spybot - Search & Destroy 1.4

SUPPRIME Ask Toolbar

 

========== Clé(s) du Registre ==========

ABSENT Key: Mozilla Plugin: @viewpoint.com/VMP

SUPPRIME Key: CLSID ASIC: \SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}

SUPPRIME Key: CLSID ASIC: \SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}

SUPPRIME Key: HKCU\Software\MyWaySA

SUPPRIME Key: HKLM\Software\Babylon

ABSENT Key: HKLM\Software\MetaStream

ABSENT Key: HKLM\Software\MyWaySA

SUPPRIME Key: HKLM\Software\Viewpoint

ABSENT Key: HKLM\Software\MozillaPlugins\@viewpoint.com/VMP

SUPPRIME Key: HKLM\Software\Classes\AppID\WMHelper.DLL

SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayer

SUPPRIME Key: HKLM\Software\Classes\axmetastream.metastreamctl

SUPPRIME Key: HKLM\Software\Classes\axmetastream.metastreamctl.1

SUPPRIME Key: HKLM\Software\Classes\AxMetaStream.MetaStreamCtlSecondary

SUPPRIME Key: HKLM\Software\Classes\AxMetaStream.MetaStreamCtlSecondary.1

ABSENT Key: HKLM\Software\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}

ABSENT Key: HKLM\Software\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}

SUPPRIME Key: HKLM\Software\Classes\TypeLib\{2D5E2D34-BED5-4B9F-9793-A31E26E6806E}

SUPPRIME Key: HKLM\Software\Classes\CLSID\{3BF72F68-72D8-461D-A884-329D936C5581}

SUPPRIME Key: HKLM\Software\Classes\CLSID\{78E9D883-93CD-4072-BEF3-38EE581E2839}

SUPPRIME Key: HKLM\Software\Classes\CLSID\{83AC1413-FCE4-4A46-9DD5-4F31F306E71F}

SUPPRIME Key: HKLM\Software\Classes\AppID\{A7DDCBDE-5C86-415c-8A37-763AE183E7E4}

ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer

SUPPRIME Key: CLSID DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848}

SUPPRIME CLSID MPSK: {069423ce-fd57-11e0-8015-00123f7db2ff}

SUPPRIME Key: CLSID BHO: {ba14329e-9550-4989-b3f2-9732e92d17cc}

ABSENT Key: CLSID BHO: {D4027C7F-154A-4066-A1AD-4243D8127440}

ABSENT Key: HKCU\Software\APN

ABSENT Key: HKCU\Software\AppDataLow\AskToolbarInfo

ABSENT Key: HKCU\Software\Ask.com

ABSENT Key: HKCU\Software\AskToolbar

ABSENT Key: HKLM\Software\APN

ABSENT Key: HKLM\Software\AskToolbar

SUPPRIME Key: SearchScopes :{afdbddaa-5d3f-42ee-b79c-185a7020515b}

ABSENT Key: HKLM\Software\Classes\AppID\GenericAskToolbar.DLL

SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine

SUPPRIME Key: HKLM\Software\Classes\Conduit.Engine

SUPPRIME Key: HKLM\Software\Classes\Toolbar.ct2504091

ABSENT Key: HKLM\Software\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}

SUPPRIME Key: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}

ABSENT Key: HKLM\Software\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}

SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}

ABSENT Key: HKLM\Software\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}

ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}

ABSENT Key: HKLM\Software\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}

ABSENT Key: HKLM\Software\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}

ABSENT Key: HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}

ABSENT Key: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}

ABSENT Key: HKLM\Software\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}

ABSENT Key: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}

SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{ba14329e-9550-4989-b3f2-9732e92d17cc}

SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ba14329e-9550-4989-b3f2-9732e92d17cc}

ABSENT Key: HKLM\Software\Classes\CLSID\{ba14329e-9550-4989-b3f2-9732e92d17cc}

ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ba14329e-9550-4989-b3f2-9732e92d17cc}

SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}

ABSENT Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}

ABSENT Key: HKLM\Software\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}

ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}

ABSENT Key: HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF

ABSENT Key: HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF

ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF

ABSENT Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Toolbar

ABSENT Key: HKLM\Software\Classes\Toolbar.CT2504091

 

========== Valeur(s) du Registre ==========

SUPPRIME RunValue: Kujytuo

ABSENT RunValue: Kujytuo

ABSENT RunValue: SpybotSD TeaTimer

SUPPRIME AAKE KeyValue: C:\WINDOWS\system32\spool\drivers\w32x86\3\dlccPSWX.EXE

SUPPRIME Toolbar: {EF99BD32-C1FB-11D2-892F-0090271D4F88}

ABSENT Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440}

SUPPRIME Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc}

SUPPRIME [HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{D4027C7F-154A-4066-A1AD-4243D8127440}

ABSENT [HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{D4027C7F-154A-4066-A1AD-4243D8127440}

ABSENT [HKLM\Software\Microsoft\Windows\CurrentVersion\Run]:ApnUpdater

SUPPRIME FirewallRaz (SP) : C:\WINDOWS\system32\dlcccoms.exe

SUPPRIME FirewallRaz (SP) : C:\Program Files\TribalWeb.net\tribalweb.exe

SUPPRIME FirewallRaz (SP) : F:\Program Files\KONAMI\Pro Evolution Soccer 2008\PES2008.exe

SUPPRIME FirewallRaz (SP) : C:\Program Files\Raptr\raptr.exe

SUPPRIME FirewallRaz (SP) : C:\Program Files\Raptr\raptr_im.exe

SUPPRIME FirewallRaz (SP) : C:\Program Files\Serveur Media\twonkymediaserverwatchdog.exe

SUPPRIME FirewallRaz (SP) : C:\Program Files\Serveur Media\twonkymediaserver.exe

SUPPRIME FirewallRaz (SP) : C:\Program Files\Serveur Media\bgtrans.exe

Aucune valeur présente dans la clé d'exception du registre (FirewallRaz)

 

========== Préférences navigateur ==========

ABSENT Mozilla Pref: user_pref("extensions.asktb.first-launch-url", "http://www.sopcast.com/");

SUPPRIME /*user_pref("igraal._categoryVersion", "null");*/

SUPPRIME /*user_pref("igraal._current", "{\"login\":\"freddy91\",\"key\":\"002dde72eb99ab674dd54ddb99ddeedc\",\"country\":\"fr-fr\",\"epi\":\"freddy91\"}");*/

SUPPRIME /*user_pref("igraal._users", "[{\"login\":\"freddy91\",\"key\":\"002dde72eb99ab674dd54ddb99ddeedc\",\"country\":\"fr-fr\",\"epi\":\"freddy91\"}]");*/

SUPPRIME /*user_pref("igraal.categories.version", 0);*/

SUPPRIME /*user_pref("igraal.country", "_fr");*/

SUPPRIME /*user_pref("igraal.firstrun", false);*/

SUPPRIME /*user_pref("igraal.help.warn", false);*/

SUPPRIME /*user_pref("igraal.idcourant", "freddy91");*/

SUPPRIME /*user_pref("igraal.toolbar.status", 0);*/

SUPPRIME /*user_pref("igraal.users", "freddy91:002dde72eb99ab674dd54ddb99ddeedc");*/

SUPPRIME /*user_pref("igraal.version", "3.5");*/

SUPPRIME Mozilla Pref: user_pref("CT2504091.AboutPrivacyUrl", "http://www.conduit.com/privacy/Default.aspx");

SUPPRIME Mozilla Pref: user_pref("CT2504091.CTID", "CT2504091");

SUPPRIME Mozilla Pref: user_pref("CT2504091.CurrentServerDate", "25-11-2010");

SUPPRIME Mozilla Pref: user_pref("CT2504091.DialogsAlignMode", "LTR");

SUPPRIME Mozilla Pref: user_pref("CT2504091.DownloadReferralCookieData", "");

SUPPRIME Mozilla Pref: user_pref("CT2504091.EMailNotifierPollDate", "Thu Nov 25 2010 21:18:21 GMT+0100");

SUPPRIME Mozilla Pref: user_pref("CT2504091.FeedLastCount129079840422964131", 10);

SUPPRIME Mozilla Pref: user_pref("CT2504091.FeedPollDate128891351169457140", "Thu Nov 25 2010 23:13:14 GMT+0100");

SUPPRIME Mozilla Pref: user_pref("CT2504091.FeedPollDate129079840422964131", "Thu Nov 25 2010 21:13:21 GMT+0100");

SUPPRIME Mozilla Pref: user_pref("CT2504091.FeedTTL128891351169457140", 40);

SUPPRIME Mozilla Pref: user_pref("CT2504091.FirstServerDate", "22-11-2010");

SUPPRIME Mozilla Pref: user_pref("CT2504091.FirstTime", true);

SUPPRIME Mozilla Pref: user_pref("CT2504091.FirstTimeFF3", true);

SUPPRIME Mozilla Pref: user_pref("CT2504091.FirstTimeSettingsDone", true);

SUPPRIME Mozilla Pref: user_pref("CT2504091.FixPageNotFoundErrors", true);

SUPPRIME Mozilla Pref: user_pref("CT2504091.GroupingServerCheckInterval", 1440);

SUPPRIME Mozilla Pref: user_pref("CT2504091.GroupingServiceUrl", "http://grouping.services.conduit.com/");

SUPPRIME Mozilla Pref: user_pref("CT2504091.Initialize", true);

SUPPRIME Mozilla Pref: user_pref("CT2504091.InitializeCommonPrefs", true);

SUPPRIME Mozilla Pref: user_pref("CT2504091.InstallationAndCookieDataSentCount", 3);

SUPPRIME Mozilla Pref: user_pref("CT2504091.InstallationType", "UnknownIntegration");

SUPPRIME Mozilla Pref: user_pref("CT2504091.InstalledDate", "Mon Nov 22 2010 21:45:56 GMT+0100");

SUPPRIME Mozilla Pref: user_pref("CT2504091.IsGrouping", false);

SUPPRIME Mozilla Pref: user_pref("CT2504091.IsMulticommunity", false);

SUPPRIME Mozilla Pref: user_pref("CT2504091.IsOpenThankYouPage", false);

SUPPRIME Mozilla Pref: user_pref("CT2504091.IsOpenUninstallPage", false);

SUPPRIME Mozilla Pref: user_pref("CT2504091.LanguagePackLastCheckTime", "Wed Nov 24 2010 23:09:34 GMT+0100");

SUPPRIME Mozilla Pref: user_pref("CT2504091.LanguagePackReloadIntervalMM", 1440);

SUPPRIME Mozilla Pref: user_pref("CT2504091.LanguagePackServiceUrl", "http://translation.users.conduit.com/Translation.ashx");

SUPPRIME Mozilla Pref: user_pref("CT2504091.LastLogin_2.7.2.0", "Thu Nov 25 2010 21:13:21 GMT+0100");

SUPPRIME Mozilla Pref: user_pref("CT2504091.LatestVersion", "2.6.0.14");

SUPPRIME Mozilla Pref: user_pref("CT2504091.Locale", "en-us");

SUPPRIME Mozilla Pref: user_pref("CT2504091.LoginCache", 4);

SUPPRIME Mozilla Pref: user_pref("CT2504091.MCDetectTooltipHeight", "83");

SUPPRIME Mozilla Pref: user_pref("CT2504091.MCDetectTooltipUrl", "http://@EB_INSTALL_LINK@/rank/tooltip/?version=1");

SUPPRIME Mozilla Pref: user_pref("CT2504091.MCDetectTooltipWidth", "295");

SUPPRIME Mozilla Pref: user_pref("CT2504091.SearchEngine", "Search||http://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT2504091

SUPPRIME Mozilla Pref: user_pref("CT2504091.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2504091&q="'>http://search.conduit.com/ResultsExt.aspx?ctid=CT2504091&q=");

SUPPRIME Mozilla Pref: user_pref("CT2504091.SearchInNewTabEnabled", true);

SUPPRIME Mozilla Pref: user_pref("CT2504091.SearchInNewTabIntervalMM", 1440);

SUPPRIME Mozilla Pref: user_pref("CT2504091.SearchInNewTabLastCheckTime", "Thu Nov 25 2010 23:09:26 GMT+0100");

SUPPRIME Mozilla Pref: user_pref("CT2504091.SearchInNewTabServiceUrl", "http://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");

SUPPRIME Mozilla Pref: user_pref("CT2504091.SearchInNewTabUsageUrl", "http://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?

SUPPRIME Mozilla Pref: user_pref("CT2504091.SettingsLastCheckTime", "Thu Nov 25 2010 21:13:20 GMT+0100");

SUPPRIME Mozilla Pref: user_pref("CT2504091.SettingsLastUpdate", "1289439748");

SUPPRIME Mozilla Pref: user_pref("CT2504091.ThirdPartyComponentsInterval", 504);

SUPPRIME Mozilla Pref: user_pref("CT2504091.ThirdPartyComponentsLastCheck", "Mon Nov 22 2010 21:45:55 GMT+0100");

SUPPRIME Mozilla Pref: user_pref("CT2504091.ThirdPartyComponentsLastUpdate", "1246790578");

SUPPRIME Mozilla Pref: user_pref("CT2504091.TrusteLinkUrl", "http://www.truste.org/pvr.php?page=validate&softwareProgramId=101&sealid=112");

SUPPRIME Mozilla Pref: user_pref("CT2504091.UserID", "UN24343624572802025");

SUPPRIME Mozilla Pref: user_pref("CT2504091.ValidationData_Toolbar", 1);

SUPPRIME Mozilla Pref: user_pref("CT2504091.alertChannelId", "897164");

SUPPRIME Mozilla Pref: user_pref("CT2504091.clientLogIsEnabled", true);

SUPPRIME Mozilla Pref: user_pref("CT2504091.clientLogServiceUrl", "http://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");

SUPPRIME Mozilla Pref: user_pref("CT2504091.myStuffEnabled", true);

SUPPRIME Mozilla Pref: user_pref("CT2504091.myStuffPublihserMinWidth", 400);

SUPPRIME Mozilla Pref: user_pref("CT2504091.myStuffSearchUrl", "http://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29

SUPPRIME Mozilla Pref: user_pref("CT2504091.myStuffServiceUrl", "http://mystuff.conduit-services.com/MyStuffService.ashx?

SUPPRIME Mozilla Pref: user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");

SUPPRIME Mozilla Pref: user_pref("CommunityToolbar.ToolbarsList", "CT2504091");

SUPPRIME Mozilla Pref: user_pref("CommunityToolbar.ToolbarsList2", "CT2504091");

SUPPRIME Mozilla Pref: user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2504091");

SUPPRIME Mozilla Pref: user_pref("browser.search.defaulturl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2504091&SearchSource=3&q={searchTerms}");

ABSENT Mozilla Pref: user_pref("extensions.asktb.InstallDir", "C:\\Program Files\\Ask.com\\");

ABSENT Mozilla Pref: user_pref("extensions.asktb.abar-war-timeout", "4000");

ABSENT Mozilla Pref: user_pref("extensions.asktb.cbid", "PV");

ABSENT Mozilla Pref: user_pref("extensions.asktb.config-updated", true);

ABSENT Mozilla Pref: user_pref("extensions.asktb.dyn-weather-do-locid-lookup-weatherWidget", true);

ABSENT Mozilla Pref: user_pref("extensions.asktb.fresh-install", false);

ABSENT Mozilla Pref: user_pref("extensions.asktb.guid", "6F4A44C5-E9D0-43C1-AE76-B8A1FD9CCCE6");

ABSENT Mozilla Pref: user_pref("extensions.asktb.if", "su");

ABSENT Mozilla Pref: user_pref("extensions.asktb.l", "dis");

ABSENT Mozilla Pref: user_pref("extensions.asktb.last-config-req", "1331844923348");

ABSENT Mozilla Pref: user_pref("extensions.asktb.last-v", "3.12.1.100005");

ABSENT Mozilla Pref: user_pref("extensions.asktb.locale", "fr_FR");

ABSENT Mozilla Pref: user_pref("extensions.asktb.o", "15000");

ABSENT Mozilla Pref: user_pref("extensions.asktb.options-lang", "fr");

ABSENT Mozilla Pref: user_pref("extensions.asktb.options-locale", "UK");

ABSENT Mozilla Pref: user_pref("extensions.asktb.overlay-reloaded-using-restart", true);

ABSENT Mozilla Pref: user_pref("extensions.asktb.qsrc", "2871");

ABSENT Mozilla Pref: user_pref("extensions.asktb.r", "5");

ABSENT Mozilla Pref: user_pref("extensions.asktb.sa", "NO");

ABSENT Mozilla Pref: user_pref("extensions.asktb.search-history-queries", "gare de lyon");

ABSENT Mozilla Pref: user_pref("extensions.asktb.search-suggestions-enabled", true);

ABSENT Mozilla Pref: user_pref("extensions.asktb.silent-upgrade", true);

ABSENT Mozilla Pref: user_pref("extensions.asktb.silent-upgrade-from-pre-newtabs-build", true);

ABSENT Mozilla Pref: user_pref("extensions.asktb.socialmini-first", true);

ABSENT Mozilla Pref: user_pref("extensions.asktb.socialmini-interval", "1200000");

ABSENT Mozilla Pref: user_pref("extensions.asktb.socialmini-max-char-ticker", "33");

ABSENT Mozilla Pref: user_pref("extensions.asktb.socialmini-max-items", "30");

ABSENT Mozilla Pref: user_pref("extensions.asktb.socialmini-native-on", true);

ABSENT Mozilla Pref: user_pref("extensions.asktb.socialmini-speed", "5000");

ABSENT Mozilla Pref: user_pref("extensions.asktb.socialmini-transition-first-open", false);

ABSENT Mozilla Pref: user_pref("extensions.asktb.themeid", "");

ABSENT Mozilla Pref: user_pref("extensions.asktb.v", "3.12.2.100010");

ABSENT Mozilla Pref: user_pref("extensions.asktb.version", "5.12.2.16749");

SUPPRIME Mozilla Pref: user_pref("keyword.URL", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2504091&q=");

 

========== Dossier(s) ==========

ABSENT C:\Program Files\Viewpoint

SUPPRIME Folder: C:\Documents and Settings\Fred\Application Data\Babylon

SUPPRIME Folder: C:\Documents and Settings\Fred\Local Settings\Application Data\Babylon

SUPPRIME Reboot Folder**: C:\Program Files\Spybot - Search & Destroy

ABSENT C:\Program Files\Ask.com

SUPPRIME Folder: C:\Program Files\Conduit

ABSENT C:\Documents and Settings\Fred\Local Settings\Application Data\AskToolbar

SUPPRIME Folder: C:\Documents and Settings\Fred\Local Settings\Application Data\Conduit

SUPPRIME Folder: C:\Documents and Settings\Fred\Local Settings\Application Data\ConduitEngine

SUPPRIME Flash Cookies: 1318

SUPPRIME Temporaires Windows: : 132

 

========== Fichier(s) ==========

ABSENT File: c:\program files\viewpoint\viewpoint experience technology\npviewpoint.dll

SUPPRIME File: c:\documents and settings\fred\application data\kujytuo\kujytuo.exe

ABSENT File: c:\documents and settings\fred\application data\kujytuo\kujytuo.exe

ABSENT File: c:\program files\viewpoint\viewpoint experience technology\axmetastream.dll

ABSENT File: c:\documents and settings\fred\local settings\application data\babylon\setup\bexternal-9.0.3.34.zpb

ABSENT File: c:\documents and settings\fred\local settings\application data\babylon\setup\setup-tbmntr903-9.0.3.34.zpb

ABSENT File: c:\documents and settings\fred\application data\babylon\log_file.txt

ABSENT Folder/File: c:\program files\viewpoint => infection pup (adware.metastream)

ABSENT Folder/File: c:\documents and settings\fred\application data\babylon => infection bt (toolbar.babylon)

ABSENT Folder/File: c:\documents and settings\fred\local settings\application data\babylon => infection bt (toolbar.babylon)

ABSENT Folder/File: c:\program files\ask.com\updater\updater.exe

ABSENT File: c:\program files\spybot - search & destroy\teatimer.exe

ABSENT File: c:\windows\system32\spool\drivers\w32x86\3\dlccpswx.exe

SUPPRIME File: c:\documents and settings\all users\application data\spybot - search & destroy\proccache.sbc

SUPPRIME File: c:\documents and settings\fred\application data\mozilla\firefox\profiles\bjn63jpn.default\searchplugins\conduit.xml

SUPPRIME File: c:\program files\vuze_remote\prxtbvuz2.dll

ABSENT File: c:\program files\ask.com

SUPPRIME File: c:\program files\yahoo!\companion\installs\cpn\yt.dll

ABSENT File: c:\program files\vuze_remote\prxtbvuz2.dll

ABSENT File: c:\windows\tasks\scheduled update for ask toolbar.job

ABSENT Folder/File: c:\program files\ask.com\updatetask.exe

ABSENT File: c:\documents and settings\fred\application data\mozilla\firefox\profiles\bjn63jpn.default\searchplugins\conduit.xml

ABSENT Folder/File: c:\program files\ask.com => toolbar.ask

ABSENT Folder/File: c:\program files\conduit => toolbar.conduit

ABSENT Folder/File: c:\documents and settings\fred\local settings\application data\asktoolbar => toolbar.ask

ABSENT Folder/File: c:\documents and settings\fred\local settings\application data\conduit => toolbar.conduit

ABSENT Folder/File: c:\documents and settings\fred\local settings\application data\conduitengine => toolbar.conduit

ABSENT Folder/File: c:\documents and settings\fred\application data\mozilla\firefox\profiles\bjn63jpn.default\extensions\toolbar@ask.com => toolbar.ask

ABSENT Folder/File: c:\documents and settings\fred\application data\mozilla\firefox\profiles\bjn63jpn.default\searchplugins\conduit.xml => toolbar.conduit

SUPPRIME Flash Cookies: 631

SUPPRIME Temporaires Windows: : 599

 

========== Tache planifiée ==========

SUPPRIME Task: Scheduled Update for Ask Toolbar

 

 

========== Récapitulatif ==========

63 : Clé(s) du Registre

19 : Valeur(s) du Registre

11 : Dossier(s)

31 : Fichier(s)

5 : Logiciel(s)

109 : Préférences navigateur

1 : Tache planifiée

 

 

End of clean in 02mn 02s

 

========== Chemin de fichier rapport ==========

C:\ZHP\ZHPFix[R1].txt - 17/03/2012 10:32:39 [20324]

Lien vers le commentaire
Partager sur d’autres sites

Rejoindre la conversation

Vous pouvez publier maintenant et vous inscrire plus tard. Si vous avez un compte, connectez-vous maintenant pour publier avec votre compte.
Remarque : votre message nécessitera l’approbation d’un modérateur avant de pouvoir être visible.

Invité
Répondre à ce sujet…

×   Collé en tant que texte enrichi.   Coller en tant que texte brut à la place

  Seulement 75 émoticônes maximum sont autorisées.

×   Votre lien a été automatiquement intégré.   Afficher plutôt comme un lien

×   Votre contenu précédent a été rétabli.   Vider l’éditeur

×   Vous ne pouvez pas directement coller des images. Envoyez-les depuis votre ordinateur ou insérez-les depuis une URL.

  • En ligne récemment   0 membre est en ligne

    • Aucun utilisateur enregistré regarde cette page.
×
×
  • Créer...