Bonjour,
Ce message est mon premier.
J'ai lu un autre message sur le même sujet mais j'aurais besoin de l'assistance si possible.
Mon PC est donc très lent.
J'utilise AVAST comme anti-virus : plusieurs fichiers ont été détectés dont WIN32 pup gen.
J'ai commencé à régler mon problème de la manière suivante ;
- j'ai installé adwcleaner
- cliqué sur "suppression"
- mis mon rapport sur cjoint.com (mais ne sais comprend le message simple sur le forum indiquant "utiliser le bbcode..." et je ne peux donc pas vous donner le lien !!!
- j'ai désinstallé adwcleaner
Si vous pouviez m'aider malgré le fait que ce sujet ait été déjà traité, j'apprécierais énormément !
D'avance, merci pour votre réponse, quelle qu'elle soit !
Il y a actuellement 201 visiteurs
Samedi 04 Mai 2024
       |
Virus WIN32 pup gen
Règles du forum
Pour afficher un rapport d'analyse ou un rapport d'infection (HijackThis, OTL, AdwCleaner etc...), veuillez utiliser le système de fichiers joints interne au forum. Seuls les formats les .txt et .log de moins de 1Mo sont acceptés. Pour obtenir de l'aide pour insérer vos fichiers joints, veuillez consulter ce tutoriel
Pour afficher un rapport d'analyse ou un rapport d'infection (HijackThis, OTL, AdwCleaner etc...), veuillez utiliser le système de fichiers joints interne au forum. Seuls les formats les .txt et .log de moins de 1Mo sont acceptés. Pour obtenir de l'aide pour insérer vos fichiers joints, veuillez consulter ce tutoriel
21 messages
• Page 1 sur 2 • 1, 2
Re: Virus WIN32 pup gen
le 16 Fév 2013 22:04
Bonjour,
Pas de soucis on va s'en charger
Colles le liens du rapport de Adwcleaner que tu as mis sur cjoint dans le forum sans de soucier des balises
Puis fais ceci :
Bonne soirée @ toi !
Pas de soucis on va s'en charger
Colles le liens du rapport de Adwcleaner que tu as mis sur cjoint dans le forum sans de soucier des balises
Puis fais ceci :
- Télécharge ZHPDiag (de Nicolas Coolman) sur ton bureau .
Pour ce faire, clic droit sur Le liens çi dessus puis cliques sur Enregistrer le lien sous :
Laisse toi guider lors de l'installation (pense à cocher la case pour créer un raccourci sur le Bureau)
Lance ZHPDiag une fois l'installation terminé (Sous vista et Seven clic droit exécuter en tant qu'administrateur)
- Cliques sur l'icône représentant un tournevis
- Cliques sur "Tous"
- Cliques sur l'icône représentant une loupe (« Lancer le diagnostic »)
Lit bien le tutoriel en entier une fois avant de faire quoi que ce soit, soit attentif aux détails et lit bien ce que l'on te demande c'est important !! Utilise ce logiciel de diagnostic :
ATTENTION NE TOUCHES PAS A L'ORDINATEUR PENDANT LE SCAN Si tu touche au PC le programme va geler comme ceci :
• Une fois le scan terminé rends toi sur le bureau un fichier txt à été crée
• Héberge le rapport ZHPDiag.txt sur cjoint.com, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum
Si tu as des questions n'hésites pas
Bonne soirée @ toi !
-
Raptor14 - PC-Infopraticien
- Messages: 2207
- Inscription: 13 Juin 2011 19:26
Re: Virus WIN32 pup gen
le 16 Fév 2013 23:17
Bonsoir,
Merci beaucoup !!
Donc voici le lien pour le rapport ZHPDiag.
J'espère que c'est conforme à votre attente.
Bon boulot !!
O23 - Service: KMService (KMService) . (...) - C:\Windows\SysWOW64\srvany.exe => Infection Diverse (Trojan.Keygen)
[HKCU\Software\AppDataLow\Software\PriceGong] => Infection BT (Adware.PriceGong)
[HKCU\Software\AppDataLow\Software\ShopperReports3] => Infection BT (Adware.ShopperReports)
[HKLM\Software\DataMngr] => Infection PUP (PUP.BearShare)
[HKLM\Software\Iminent] => Infection PUP (Adware.IMBooster)
O44 - LFC:[MD5.A103FDF7348130EF3F3FEF56B1700A27] - 31/08/2012 - 16:13:34 ---A- . (...) -- C:\END [9] => Infection FakeAlert (Trojan.FakeAlert)
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.previous.keyword.URL", "http://search.sweetim.com/search.asp?src=2&q=");
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {4B8C28A7-A9BC-45F8-990D-21499EED643C} - (QuestScan) - http://www.questscan.com => Infection BT (Adware.QuestScan)
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {4B8C28A7-A9BC-45F8-990D-21499EED643C} - (QuestScan) - http://www.questscan.com => Infection BT (Adware.QuestScan)
[HKLM\Software\WOW6432Node\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}] => Infection BT (Adware.Agent)
[HKLM\Software\WOW6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}] => Infection BT (Adware.Agent)
[HKLM\Software\WOW6432Node\Classes\Interface\{453db0c5-f41c-4d97-8dd6-cc72ecd5f699}]
[HKLM\Software\WOW6432Node\Classes\Interface\{4AFC07D0-59BB-46B8-B097-1A46E88EEF71}]
[HKLM\Software\WOW6432Node\Classes\Interface\{6511ce4c-4722-40d0-ad3d-4afa2f50978a}]
[HKLM\Software\WOW6432Node\Classes\Interface\{9bec9b38-bf39-4899-806e-a1c5dfeb60a2}]
[HKLM\Software\WOW6432Node\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\WOW6432Node\Classes\Interface\{aebf09e2-0c15-43c8-99bf-928c645d98a0}]
[HKLM\Software\WOW6432Node\Classes\Interface\{b86d82bf-d39f-439a-a07c-43eddc6f6ea6}]
[HKLM\Software\WOW6432Node\Classes\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98DB}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\WOW6432Node\Classes\Interface\{da6305b9-0869-4235-8c1d-533a65e639e5}]
[HKLM\Software\WOW6432Node\Classes\Interface\{e6961c59-cfce-4ccd-b794-bc78db98413a}]
[HKLM\Software\WOW6432Node\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\WOW6432Node\DataMngr] => Infection PUP (PUP.BearShare)
[HKLM\Software\WOW6432Node\Iminent] => Infection PUP (Adware.IMBooster)
[HKCU\Software\AppDataLow\Software\PriceGong] => Infection BT (Adware.PriceGong)
[HKCU\Software\AppDataLow\Software\ShopperReports3] => Infection BT (Adware.ShopperReports)
[HKLM\Software\Classes\Toolbar.CT2542115]
SS - | Auto 0 | (KMService) . (...) - C:\Windows\system32\srvany.exe => Infection Diverse (Trojan.Keygen)
O43 - CFD: 19/11/2011 - 15:31:38 - [45,266] ----D C:\ProgramData\{D3B41B92-9BC2-43EB-916A-4FA9E8191837}
R3 - URLSearchHook: (no name) [64Bits] - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} . (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) (No version) -- (.not file.)
O2 - BHO: (no name) [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Clé orpheline
[MD5.00000000000000000000000000000000] [APT] [{2CBF225A-FF36-4C31-9BC9-B6BE2B79ACBE}] (...) -- C:\Users\Marie Charlotte\Desktop\Civilization II Multiplayer Gold Edition\civ2.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{39D06D52-6239-42E3-BEDF-531C58F392DE}] (...) -- C:\Users\Marie Charlotte\Desktop\Civilization II Multiplayer Gold Edition\civ2.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{6146F80F-9923-46AF-8AD4-CA9BE8E422E4}] (...) -- C:\Users\Marie Charlotte\Desktop\Civilization II Multiplayer Gold Edition\civ2.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{871ADB1B-B9E0-4ED9-B611-5E5FC98AFABC}] (...) -- C:\Users\Marie Charlotte\Desktop\Civilization II Multiplayer Gold Edition\civ2.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{A1070E48-2D1C-46D7-A252-0D4DE8D3B8BC}] (...) -- C:\Users\Marie Charlotte\Desktop\Civilization II Multiplayer Gold Edition\civ2.exe (.not file.)
O42 - Logiciel: FATE - (.WildTangent.) [HKLM] -- WT082141 => WildTangent Game
O42 - Logiciel: HP Game Console - (.WildTangent.) [HKLM] -- My HP Game Console => WildTangent Game
O42 - Logiciel: Mystery P.I. - The Vegas Heist - (.WildTangent.) [HKLM] -- WT082414 => WildTangent Game
O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM] -- WT082172 => WildTangent Game
O42 - Logiciel: Slingo Deluxe - (.WildTangent.) [HKLM] -- WT082427 => WildTangent Game
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api15_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api18_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api19_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api20_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api21_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api28_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api29_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api30_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api32_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api6_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://st_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT3227982.installType", "ConduitNSISIntegration");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://contextmenu.engine.conduit-servi ... e=engineCo[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("Smartbar.ConduitSearchEngineList", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("Smartbar.ConduitSearchUrlList", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.urls.homepage", "http://home.sweetim.com/?crg=3.1010000.10011&barid={75E73056-B220-11E1-A061-C80AA9EFBB[...]
[MD5.1A3D1A7349253561EF89D017F6EDD5FC] [SPRF][09/06/2012] (.SweetIM Technologies Lt - This installer.) -- C:\Users\Marie Charlotte\AppData\Local\Temp\SIMEEIInstaller.exe [2626512]
O87 - FAEL: "TCP Query User{1825F5F6-A639-4923-B9F3-5581C14748B4}F:\fscommand\updater.exe" |In - Private - P6 - TRUE | .(...) -- F:\fscommand\updater.exe (.not file.)
O87 - FAEL: "UDP Query User{BCDBDC85-2E0C-40F1-B910-B220C97F2A99}F:\fscommand\updater.exe" |In - Private - P17 - TRUE | .(...) -- F:\fscommand\updater.exe (.not file.)
O87 - FAEL: "{2040D9D2-DF0E-415C-AC62-E392140AD2B6}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe (.not file.)
O87 - FAEL: "{02736083-E3DD-4392-8BF9-CB873CB56A58}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe (.not file.)
O51 - MPSK:{061927e5-4438-11e0-a5b2-c80aa9efbb92}\AutoRun\command. (...) -- G:\autorun.exe (.not file.) => Microsoft Windows NT or Infection USB
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.MCDetectTooltipWidth", "295");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.MyStuffEnabledAtInstallation", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioIsPodcast", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioLastCheckTime", "Wed Jun 20 2012 21:07:58 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioLastUpdateIPServer", "3");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioLastUpdateServer", "3");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioMediaID", "9962");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioMediaType", "Media Player");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioMenuSelectedID", "EBRadioMenu_CT25421159962");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioShrinkedFromSetup", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioStationName", "California%20Rock");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioStationURL", "http://feedlive.net/california.asx");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SHRINK_TOOLBAR", 1);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchEngineBeforeUnload", "chrome://browser-region/locale/region.properties");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchFromAddressBarIsInit", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2542115&q=");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchInNewTabEnabled", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchInNewTabIntervalMM", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchInNewTabLastCheckTime", "Tue Sep 04 2012 20:38:01 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchInNewTabServiceUrl", "http://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchInNewTabUsageUrl", "http://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_T[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchProtectorEnabled", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchProtectorToolbarDisabled", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.ServiceMapLastCheckTime", "Tue Sep 04 2012 20:38:01 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SettingsLastCheckTime", "Wed Sep 05 2012 15:27:33 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SettingsLastUpdate", "1346671355");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.ThirdPartyComponentsInterval", 504);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.ThirdPartyComponentsLastCheck", "Thu May 31 2012 10:14:12 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.ThirdPartyComponentsLastUpdate", "1331805999");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.TrusteLinkUrl", "http://trust.conduit.com/CT2542115");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolb[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.UserID", "UN00040543076887833");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.ValidationData_Toolbar", 2);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.WeatherNetwork", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.WeatherPollDate", "Thu Jun 21 2012 00:37:30 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.WeatherUnit", "C");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.alertChannelId", "935078");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage._fb_dailyactivity", "31323937373934343935353238");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage._fb_lifetimesent", "54525545");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.autocompletepro_enable", "31");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.autocompletepro_enable_auto", "31");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.cb_experience_000", "35");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.cb_firstuse0100", "31");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.cb_user_id_000", "4342373936353235333136325F46697265666F78");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.cbcountry_000", "4652");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.cbcountry_001", "4652");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.cbfirsttime", "546875204D617920333120323031322031303A31343A323220474D542B30323030");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.ct2542115ads1", "25374225323261647325323225334125354225374225323261696425323225334125323234343[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.ct2542115current_term", "7466312B7265706C6179");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.ct2542115isadsdisabled", "66616C7365");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.ct2542115sdate", "3331");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.printitgreenstatus", "74727565");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.shoppingapp.gk.exipres", "467269204A756E20323220323031322032313A30373A323820474D542B30323030")[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.shoppingapp.gk.geolocation", "6672616E6365");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.url_history0001", "687474703A2F2F66722E666F72756D2D6D6574616C2E636F6D2F746F7069632E7068703F706[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.components.129790546080283738", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;se[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.globalFirstTimeInfoLastCheckTime", "Mon Jun 11 2012 20:09:43 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.homepageProtectorEnableByLogin", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.initDone", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.isAppTrackingManagerOn", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.isFirstRadioInstallation", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.myStuffEnabled", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.myStuffPublihserMinWidth", 400);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.myStuffSearchUrl", "http://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&oct[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.myStuffServiceIntervalMM", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.myStuffServiceUrl", "http://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.oldAppsList", "129112212599528487,129112212600153496,111,129790546080283738,129530554216906936,12946031697481[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.revertSettingsEnabled", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.searchProtectorDialogDelayInSec", 10);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.searchProtectorEnableByLogin", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.testingCtid", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.toolbarAppMetaDataLastCheckTime", "Tue Sep 04 2012 20:38:03 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.toolbarContextMenuLastCheckTime", "Thu Jun 14 2012 10:14:14 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.usagesFlag", 2);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678..clientLogIsEnabled", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678..clientLogServiceUrl", "http://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678..uninstallLogServiceUrl", "http://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.AboutPrivacyUrl", "http://www.conduit.com/privacy/Default.aspx");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.BrowserCompStateIsOpen_129579220236217502", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.CTID", "CT2786678");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.CurrentServerDate", "5-9-2012");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.DialogsAlignMode", "LTR");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.DialogsGetterLastCheckTime", "Sun Sep 02 2012 16:06:57 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.DownloadReferralCookieData", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.EMailNotifierPollDate", "Tue Feb 15 2011 19:28:04 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedLastCount5690698542593514850", 550);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375443753", "Tue Feb 15 2011 19:28:11 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375443759", "Tue Feb 15 2011 19:28:11 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375444699", "Tue Feb 15 2011 19:28:09 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375444705", "Tue Feb 15 2011 19:28:10 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375444711", "Tue Feb 15 2011 19:28:10 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375444717", "Tue Feb 15 2011 19:28:10 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375444723", "Tue Feb 15 2011 19:28:10 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375444729", "Tue Feb 15 2011 19:28:10 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375444735", "Tue Feb 15 2011 19:28:10 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375444741", "Tue Feb 15 2011 19:28:10 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375444747", "Tue Feb 15 2011 19:28:11 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedTTL129301619375444699", 10);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedTTL129301619375444723", 15);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedTTL129301619375444735", 5);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedTTL129301619375444747", 5);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FirstServerDate", "21-11-2010");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FirstTime", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FirstTimeFF3", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FixPageNotFoundErrors", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.GroupingServerCheckInterval", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.GroupingServiceUrl", "http://grouping.services.conduit.com/");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.HasUserGlobalKeys", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.Initialize", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.InitializeCommonPrefs", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.InstallationAndCookieDataSentCount", 3);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.InstallationType", "UnknownIntegration");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.InstalledDate", "Sun Nov 21 2010 22:01:25 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.IsGrouping", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.IsMulticommunity", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.IsOpenThankYouPage", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.IsOpenUninstallPage", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LanguagePackLastCheckTime", "Tue Sep 04 2012 20:38:05 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LanguagePackReloadIntervalMM", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LanguagePackServiceUrl", "http://translation.users.conduit.com/Translation.ashx");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LastLogin_3.12.0.7", "Wed Apr 25 2012 21:05:25 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LastLogin_3.12.2.3", "Wed May 30 2012 22:18:17 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LastLogin_3.13.0.6", "Tue Jul 17 2012 22:06:58 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LastLogin_3.14.1.0", "Sun Aug 26 2012 22:09:04 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LastLogin_3.15.1.0", "Wed Sep 05 2012 15:27:38 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LastLogin_3.2.3.3", "Sun Jan 23 2011 08:28:46 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LastLogin_3.2.5.2", "Tue Feb 15 2011 19:28:05 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LatestVersion", "3.14.1.0");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.Locale", "en");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.MCDetectTooltipHeight", "83");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.MCDetectTooltipUrl", "http://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.MCDetectTooltipWidth", "295");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.MyStuffEnabledAtInstallation", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SavedHomepage", "http://search.conduit.com/?ctid=&SearchSource=13");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SearchFromAddressBarIsInit", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&q=");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SearchInNewTabEnabled", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SearchInNewTabIntervalMM", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SearchInNewTabLastCheckTime", "Tue Sep 04 2012 20:38:02 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SearchInNewTabServiceUrl", "http://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SearchInNewTabUsageUrl", "http://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_T[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.ServiceMapLastCheckTime", "Tue Sep 04 2012 20:38:03 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SettingsLastCheckTime", "Wed Sep 05 2012 15:27:34 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SettingsLastUpdate", "1346669743");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.ThirdPartyComponentsInterval", 504);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.ThirdPartyComponentsLastCheck", "Mon Jan 31 2011 18:51:20 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.ThirdPartyComponentsLastUpdate", "1246790578");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.ToolbarShrinkedFromSetup", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.TrusteLinkUrl", "http://trust.conduit.com/CT2786678");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolb[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.UserID", "UN10630197239811823");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.ValidationData_Toolbar", 1);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.WeatherNetwork", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.WeatherPollDate", "Tue Feb 15 2011 19:28:11 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.WeatherUnit", "C");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.alertChannelId", "1178763");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;se[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.homepageProtectorEnableByLogin", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.initDone", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.myStuffEnabled", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.myStuffPublihserMinWidth", 400);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.myStuffSearchUrl", "http://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&oct[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.myStuffServiceIntervalMM", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.myStuffServiceUrl", "http://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.revertSettingsEnabled", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.searchProtectorDialogDelayInSec", 10);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.searchProtectorEnableByLogin", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.testingCtid", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.toolbarAppMetaDataLastCheckTime", "Tue Sep 04 2012 20:38:04 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.toolbarContextMenuLastCheckTime", "Sun Nov 21 2010 22:01:28 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.usagesFlag", 2);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT3227982.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3227982&SearchSource=2&q=");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT3241952.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3241952&SearchSource=2&q=");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.CantToolbarBeEngineOwner", "CT2542115");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://Settings.toolbar.search.conduit. ... /CT2542115", "\"38004a24cf85d3fa59748a4d[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://Settings.toolbar.search.conduit. ... /CT2786678", "\"f5266357296125a761ce267d[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/?aid ... id=1174448", "\"0\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/?aid ... fid=905414", "\"0\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/root ... 1174448/FR", "\"0\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/root ... /905414/FR", "\"0\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/root ... /930862/FR", "\"0\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://appsmetadata.toolbar.conduit-ser ... =CT2542115", "\"1346078036\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://appsmetadata.toolbar.conduit-ser ... =CT2786678", "\"1334471445\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://contextmenu.toolbar.conduit-serv ... cale=fr-fr", "y/LORlR12DbewW+J[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://contextmenu.toolbar.conduit-serv ... cale=fr-fr", "S+IiKFOIcJRQQUQYx[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://contextmenu.toolbar.conduit-serv ... cale=fr-fr", "NeBYWpVfqR9l5h0z[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://contextmenu.toolbar.conduit-serv ... cale=fr-fr", "VobDslsbJdJvb4C6TOi[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://dynamicdialogs.alert.conduit-ser ... rt/dlg.pkg", "\"8076e3ce381dcd1:0\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://dynamicdialogs.toolbar.conduit-s ... r=3.12.0.7", "\"4ead38b3e6bcd1:0\"")[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://dynamicdialogs.toolbar.conduit-s ... r=3.12.2.3", "\"4ead38b3e6bcd1:0\"")[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://dynamicdialogs.toolbar.conduit-s ... r=3.13.0.6", "\"0d648794549cd1:0\"")[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://dynamicdialogs.toolbar.conduit-s ... r=3.14.1.0", "\"0e0a4327275cd1:0\"")[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://dynamicdialogs.toolbar.conduit-s ... r=3.15.1.0", "\"0e0a4327275cd1:0\"")[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://servicemap.conduit-services.com/ ... =CT2542115", "\"c912886ea3ba021d3a9ef2d6ad[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://servicemap.conduit-services.com/ ... =CT2786678", "\"c912886ea3ba021d3a9ef2d6ad[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://servicemap.conduit-services.com/toolbar/", "\"634333631231730000\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://settings.engine.conduit-services ... r=FF&lut=0", "634248284990000000");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://settings.engine.conduit-services ... =1/11/2011 5:25:10 PM", "6343036351000[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://settings.engine.conduit-services ... =11/8/2010 3:54:59 PM", "6342932358600[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://settings.engine.conduit-services ... 12/30/2010 4:33:06 PM", "634303635100[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://settings.toolbar.conduit-service ... =CT2786678", "\"1291131559\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://settings.toolbar.search.conduit. ... /CT2542115", "\"1296758899\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://settings.toolbar.search.conduit. ... /CT2786678", "\"1297181872\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://translation.toolbar.conduit-serv ... ?locale=en", "\"987ffb9097f367e1d1cd13edbd87ae54\[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://translation.toolbar.conduit-serv ... cale=fr-fr", "\"6e6ba327993a8d5210d6aa8a16e008[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.EngineOwner", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.EngineOwnerGuid", "{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.EngineOwnerToolbarId", "utorrentbar");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Marie Charlotte\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\qt[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.13.0.6");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.OriginalEngineOwner", "CT2786678");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "utorrentbar");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ToolbarsList", "CT2786678,CT2542115");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ToolbarsList2", "ConduitEngine,CT2786678,CT2542115");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Tue Feb 15 2011 19:28:02 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.clientsServerUrl", "http://alert.client.conduit.com");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.locale", "en");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.loginLastCheckTime", "Tue Feb 15 2011 19:28:02 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1291052234");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.servicesServerUrl", "http://alert.services.conduit.com");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.showTrayIcon", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.userId", "bbd6db34-15c7-4720-90d0-cd348eac0eb8");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Tue Feb 15 2011 19:28:04 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.globalUserId", "c8bfff52-6414-4002-bbf8-7c7fc425e67b");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2542115");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.killedEngine", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Thu Jun 14 2012 18:36:16 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.alertInfoInterval", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Wed Jun 20 2012 21:07:32 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.clientsServerUrl", "http://alert.client.conduit.com");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.locale", "en");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Wed Jun 20 2012 21:07:24 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.servicesServerUrl", "http://alert.services.conduit.com");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.showTrayIcon", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.userId", "3cc4c933-77fa-4c06-a921-49f227fd2322");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.undefined", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("Smartbar.ConduitHomepagesList", "http://search.conduit.com/?ctid=CT3227982&SearchSource=13");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("Smartbar.SearchFromAddressBarSavedUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2542115&q=");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("browser.startup.homepage", "http://search.conduit.com/?ctid=CT3227982&SearchSource=13");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("keyword.URL", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3227982&SearchSource=2&q=");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.cargo", "3.1010000.10011");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.0.enable", "true");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.0.handler", "chrome://sim_toolbar_package/content/optionsdialog-handler.js");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.0.height", "335");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.0.id", "id_options_dialog");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.0.title", "$string.config.label;");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.0.width", "761");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.1.enable", "true");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.1.handler", "chrome://sim_toolbar_package/content/exampledialog-handler.js");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.1.height", "300");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.1.id", "id_example_dialog");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.1.title", "Example (unit-test) dialog");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.1.url", "chrome://sim_toolbar_package/content/exampledialog.html");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.1.width", "500");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dnscatch.domain-blacklist", ".*.sweetim.com/.*|.*.facebook.com/.*|.*.google.com/.*|.*.google.co.in/.*|.[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.highlight.colors", "#FFFF00,#00FFE4,#5AFF00,#0087FF,#FFCC00,#FF00F0");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.logger.ConsoleHandler.MinReportLevel", "7");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.logger.FileHandler.FileName", "ff-toolbar.log");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.logger.FileHandler.MaxFileSize", "200000");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.logger.FileHandler.MinReportLevel", "7");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.mode.debug", "false");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.prad.initialized_by_rc", "true");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.previous.browser.search.defaulturl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2542115&SearchSo[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.previous.browser.startup.homepage", "http://search.conduit.com/?ctid=CT3241952&SearchSource=13");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.0.addcontextdiv", "true");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.0.callback", "simVerification");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.0.domain-blacklist", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.0.elementid", "id_script_sim_fb");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.0.enable", "true");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.0.id", "id_script_fb");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.1.addcontextdiv", "false");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.1.callback", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.1.domain-blacklist", ".*.google..*|.*.bing..*|.*.live..*|.*.msn..*|.*.yahoo..*|.*.youtube.com.*[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.1.domain-whitelist", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.1.elementid", "id_predict_include_script");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.1.enable", "false");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.1.id", "id_script_prad");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.search.history.capacity", "10");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "1");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "1");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.searchguard.enable", "true");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.simapp_id", "{75E73056-B220-11E1-A061-C80AA9EFBB92}");
O69 - SBI: SearchScopes [HKCU] {afdbddaa-5d3f-42ee-b79c-185a7020515b} - (Softonic_France Customized Web Search) - http://search.conduit.com => Toolbar.Conduit
[MD5.1E8A3407EC2E65429381F08DF9D2CADA] [SPRF][09/06/2012] (.SweetIM Technologies Ltd. - SweetIM Installer by SweetPacks.) -- C:\Users\Marie Charlotte\AppData\Local\Temp\Shortcut_SimDSetup.exe [6140760]
[MD5.AF528EBA5F5942C080AAABE29D31BD62] [SPRF][08/12/2010] (...) -- C:\Users\Marie Charlotte\AppData\Local\Temp\Softonic_France.exe [2494288]
[MD5.F689F4584DA0750B292CD487CE88E491] [SPRF][09/02/2011] (...) -- C:\Users\Marie Charlotte\AppData\Local\Temp\Softonic_s_France.exe [6291968]
[MD5.0200C694B3922B95A008DD29F7AACDB4] [SPRF][13/11/2010] (.Conduit Ltd. - Conduit Toolbar.) -- C:\Users\Marie Charlotte\AppData\Local\Temp\tbSoft.dll [3913000]
[MD5.E4CC410BD005958125CD87C5F6E66371] [SPRF][18/10/2010] (.Conduit Ltd. - Conduit Toolbar.) -- C:\Users\Marie Charlotte\AppData\Local\Temp\tbuTor.dll [3908192]
[HKLM\Software\WOW6432Node\Classes\CLSID\{1a03f196-9617-4ca0-842b-a83ceecb022b}] => Toolbar.SweetIM
[HKLM\Software\WOW6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}] => Toolbar.Agent
[HKLM\Software\Classes\TypeLib\{4d3b167e-5fd8-4276-8fd7-9df19c1e4d19}] => Toolbar.SweetIM
[HKLM\Software\WOW6432Node\Classes\AppID\{5B1881D1-D9C7-46df-B041-1E593282C7D0}] => Toolbar.Babylon
[HKLM\Software\WOW6432Node\Classes\CLSID\{80922ee0-8a76-46ae-95d5-bd3c3fe0708d}] => Toolbar.Agent
[HKLM\Software\WOW6432Node\Classes\CLSID\{82ac53b4-164c-4b07-a016-437a8388b81a}] => Toolbar.SweetIM
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A7BC02AF-1128-4A31-BCF8-1A3EE803D3B3}] => Toolbar.SweetIM
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A81A974F-8A22-43E6-9243-5198FF758DA1}] => Toolbar.SweetIM
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}] => Toolbar.Conduit
[HKLM\Software\WOW6432Node\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}] => Toolbar.Conduit
[HKLM\Software\WOW6432Node\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}] => Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}] => Toolbar.Agent
[HKLM\Software\WOW6432Node\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}] => Toolbar.Agent
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}] => Toolbar.Agent
[HKCU\Software\AppDataLow\Software\Softonic_France] => Toolbar.Conduit
[HKCU\Software\SweetIM] => Toolbar.SweetIM
[HKLM\Software\WOW6432Node\SweetIM] => Toolbar.SweetIM
[HKLM\Software\Classes\Toolbar.CT2786678]
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{32099aac-c132-4136-9e9a-4e364a424e17} => Toolbar.DaemonTools
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{32099aac-c132-4136-9e9a-4e364a424e17} => Toolbar.DaemonTools
C:\Users\Marie Charlotte\AppData\LocalLow\Softonic_France => Toolbar.Conduit
EmptyCLSID
EmptyTemp
EmptyFlash
FirewallRaz
ProxyFix
Merci beaucoup !!
Donc voici le lien pour le rapport ZHPDiag.
J'espère que c'est conforme à votre attente.
Bon boulot !!
O23 - Service: KMService (KMService) . (...) - C:\Windows\SysWOW64\srvany.exe => Infection Diverse (Trojan.Keygen)
[HKCU\Software\AppDataLow\Software\PriceGong] => Infection BT (Adware.PriceGong)
[HKCU\Software\AppDataLow\Software\ShopperReports3] => Infection BT (Adware.ShopperReports)
[HKLM\Software\DataMngr] => Infection PUP (PUP.BearShare)
[HKLM\Software\Iminent] => Infection PUP (Adware.IMBooster)
O44 - LFC:[MD5.A103FDF7348130EF3F3FEF56B1700A27] - 31/08/2012 - 16:13:34 ---A- . (...) -- C:\END [9] => Infection FakeAlert (Trojan.FakeAlert)
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.previous.keyword.URL", "http://search.sweetim.com/search.asp?src=2&q=");
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {4B8C28A7-A9BC-45F8-990D-21499EED643C} - (QuestScan) - http://www.questscan.com => Infection BT (Adware.QuestScan)
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {4B8C28A7-A9BC-45F8-990D-21499EED643C} - (QuestScan) - http://www.questscan.com => Infection BT (Adware.QuestScan)
[HKLM\Software\WOW6432Node\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}] => Infection BT (Adware.Agent)
[HKLM\Software\WOW6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}] => Infection BT (Adware.Agent)
[HKLM\Software\WOW6432Node\Classes\Interface\{453db0c5-f41c-4d97-8dd6-cc72ecd5f699}]
[HKLM\Software\WOW6432Node\Classes\Interface\{4AFC07D0-59BB-46B8-B097-1A46E88EEF71}]
[HKLM\Software\WOW6432Node\Classes\Interface\{6511ce4c-4722-40d0-ad3d-4afa2f50978a}]
[HKLM\Software\WOW6432Node\Classes\Interface\{9bec9b38-bf39-4899-806e-a1c5dfeb60a2}]
[HKLM\Software\WOW6432Node\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\WOW6432Node\Classes\Interface\{aebf09e2-0c15-43c8-99bf-928c645d98a0}]
[HKLM\Software\WOW6432Node\Classes\Interface\{b86d82bf-d39f-439a-a07c-43eddc6f6ea6}]
[HKLM\Software\WOW6432Node\Classes\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98DB}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\WOW6432Node\Classes\Interface\{da6305b9-0869-4235-8c1d-533a65e639e5}]
[HKLM\Software\WOW6432Node\Classes\Interface\{e6961c59-cfce-4ccd-b794-bc78db98413a}]
[HKLM\Software\WOW6432Node\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\WOW6432Node\DataMngr] => Infection PUP (PUP.BearShare)
[HKLM\Software\WOW6432Node\Iminent] => Infection PUP (Adware.IMBooster)
[HKCU\Software\AppDataLow\Software\PriceGong] => Infection BT (Adware.PriceGong)
[HKCU\Software\AppDataLow\Software\ShopperReports3] => Infection BT (Adware.ShopperReports)
[HKLM\Software\Classes\Toolbar.CT2542115]
SS - | Auto 0 | (KMService) . (...) - C:\Windows\system32\srvany.exe => Infection Diverse (Trojan.Keygen)
O43 - CFD: 19/11/2011 - 15:31:38 - [45,266] ----D C:\ProgramData\{D3B41B92-9BC2-43EB-916A-4FA9E8191837}
R3 - URLSearchHook: (no name) [64Bits] - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} . (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) (No version) -- (.not file.)
O2 - BHO: (no name) [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Clé orpheline
[MD5.00000000000000000000000000000000] [APT] [{2CBF225A-FF36-4C31-9BC9-B6BE2B79ACBE}] (...) -- C:\Users\Marie Charlotte\Desktop\Civilization II Multiplayer Gold Edition\civ2.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{39D06D52-6239-42E3-BEDF-531C58F392DE}] (...) -- C:\Users\Marie Charlotte\Desktop\Civilization II Multiplayer Gold Edition\civ2.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{6146F80F-9923-46AF-8AD4-CA9BE8E422E4}] (...) -- C:\Users\Marie Charlotte\Desktop\Civilization II Multiplayer Gold Edition\civ2.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{871ADB1B-B9E0-4ED9-B611-5E5FC98AFABC}] (...) -- C:\Users\Marie Charlotte\Desktop\Civilization II Multiplayer Gold Edition\civ2.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{A1070E48-2D1C-46D7-A252-0D4DE8D3B8BC}] (...) -- C:\Users\Marie Charlotte\Desktop\Civilization II Multiplayer Gold Edition\civ2.exe (.not file.)
O42 - Logiciel: FATE - (.WildTangent.) [HKLM] -- WT082141 => WildTangent Game
O42 - Logiciel: HP Game Console - (.WildTangent.) [HKLM] -- My HP Game Console => WildTangent Game
O42 - Logiciel: Mystery P.I. - The Vegas Heist - (.WildTangent.) [HKLM] -- WT082414 => WildTangent Game
O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM] -- WT082172 => WildTangent Game
O42 - Logiciel: Slingo Deluxe - (.WildTangent.) [HKLM] -- WT082427 => WildTangent Game
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api15_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api18_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api19_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api20_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api21_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api28_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api29_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api30_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api32_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api6_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://st_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT3227982.installType", "ConduitNSISIntegration");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://contextmenu.engine.conduit-servi ... e=engineCo[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("Smartbar.ConduitSearchEngineList", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("Smartbar.ConduitSearchUrlList", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.urls.homepage", "http://home.sweetim.com/?crg=3.1010000.10011&barid={75E73056-B220-11E1-A061-C80AA9EFBB[...]
[MD5.1A3D1A7349253561EF89D017F6EDD5FC] [SPRF][09/06/2012] (.SweetIM Technologies Lt - This installer.) -- C:\Users\Marie Charlotte\AppData\Local\Temp\SIMEEIInstaller.exe [2626512]
O87 - FAEL: "TCP Query User{1825F5F6-A639-4923-B9F3-5581C14748B4}F:\fscommand\updater.exe" |In - Private - P6 - TRUE | .(...) -- F:\fscommand\updater.exe (.not file.)
O87 - FAEL: "UDP Query User{BCDBDC85-2E0C-40F1-B910-B220C97F2A99}F:\fscommand\updater.exe" |In - Private - P17 - TRUE | .(...) -- F:\fscommand\updater.exe (.not file.)
O87 - FAEL: "{2040D9D2-DF0E-415C-AC62-E392140AD2B6}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe (.not file.)
O87 - FAEL: "{02736083-E3DD-4392-8BF9-CB873CB56A58}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe (.not file.)
O51 - MPSK:{061927e5-4438-11e0-a5b2-c80aa9efbb92}\AutoRun\command. (...) -- G:\autorun.exe (.not file.) => Microsoft Windows NT or Infection USB
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.MCDetectTooltipWidth", "295");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.MyStuffEnabledAtInstallation", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioIsPodcast", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioLastCheckTime", "Wed Jun 20 2012 21:07:58 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioLastUpdateIPServer", "3");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioLastUpdateServer", "3");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioMediaID", "9962");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioMediaType", "Media Player");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioMenuSelectedID", "EBRadioMenu_CT25421159962");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioShrinkedFromSetup", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioStationName", "California%20Rock");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioStationURL", "http://feedlive.net/california.asx");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SHRINK_TOOLBAR", 1);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchEngineBeforeUnload", "chrome://browser-region/locale/region.properties");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchFromAddressBarIsInit", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2542115&q=");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchInNewTabEnabled", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchInNewTabIntervalMM", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchInNewTabLastCheckTime", "Tue Sep 04 2012 20:38:01 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchInNewTabServiceUrl", "http://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchInNewTabUsageUrl", "http://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_T[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchProtectorEnabled", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchProtectorToolbarDisabled", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.ServiceMapLastCheckTime", "Tue Sep 04 2012 20:38:01 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SettingsLastCheckTime", "Wed Sep 05 2012 15:27:33 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SettingsLastUpdate", "1346671355");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.ThirdPartyComponentsInterval", 504);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.ThirdPartyComponentsLastCheck", "Thu May 31 2012 10:14:12 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.ThirdPartyComponentsLastUpdate", "1331805999");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.TrusteLinkUrl", "http://trust.conduit.com/CT2542115");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolb[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.UserID", "UN00040543076887833");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.ValidationData_Toolbar", 2);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.WeatherNetwork", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.WeatherPollDate", "Thu Jun 21 2012 00:37:30 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.WeatherUnit", "C");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.alertChannelId", "935078");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage._fb_dailyactivity", "31323937373934343935353238");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage._fb_lifetimesent", "54525545");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.autocompletepro_enable", "31");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.autocompletepro_enable_auto", "31");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.cb_experience_000", "35");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.cb_firstuse0100", "31");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.cb_user_id_000", "4342373936353235333136325F46697265666F78");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.cbcountry_000", "4652");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.cbcountry_001", "4652");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.cbfirsttime", "546875204D617920333120323031322031303A31343A323220474D542B30323030");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.ct2542115ads1", "25374225323261647325323225334125354225374225323261696425323225334125323234343[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.ct2542115current_term", "7466312B7265706C6179");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.ct2542115isadsdisabled", "66616C7365");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.ct2542115sdate", "3331");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.printitgreenstatus", "74727565");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.shoppingapp.gk.exipres", "467269204A756E20323220323031322032313A30373A323820474D542B30323030")[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.shoppingapp.gk.geolocation", "6672616E6365");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.url_history0001", "687474703A2F2F66722E666F72756D2D6D6574616C2E636F6D2F746F7069632E7068703F706[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.components.129790546080283738", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;se[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.globalFirstTimeInfoLastCheckTime", "Mon Jun 11 2012 20:09:43 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.homepageProtectorEnableByLogin", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.initDone", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.isAppTrackingManagerOn", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.isFirstRadioInstallation", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.myStuffEnabled", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.myStuffPublihserMinWidth", 400);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.myStuffSearchUrl", "http://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&oct[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.myStuffServiceIntervalMM", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.myStuffServiceUrl", "http://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.oldAppsList", "129112212599528487,129112212600153496,111,129790546080283738,129530554216906936,12946031697481[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.revertSettingsEnabled", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.searchProtectorDialogDelayInSec", 10);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.searchProtectorEnableByLogin", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.testingCtid", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.toolbarAppMetaDataLastCheckTime", "Tue Sep 04 2012 20:38:03 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.toolbarContextMenuLastCheckTime", "Thu Jun 14 2012 10:14:14 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.usagesFlag", 2);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678..clientLogIsEnabled", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678..clientLogServiceUrl", "http://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678..uninstallLogServiceUrl", "http://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.AboutPrivacyUrl", "http://www.conduit.com/privacy/Default.aspx");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.BrowserCompStateIsOpen_129579220236217502", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.CTID", "CT2786678");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.CurrentServerDate", "5-9-2012");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.DialogsAlignMode", "LTR");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.DialogsGetterLastCheckTime", "Sun Sep 02 2012 16:06:57 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.DownloadReferralCookieData", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.EMailNotifierPollDate", "Tue Feb 15 2011 19:28:04 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedLastCount5690698542593514850", 550);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375443753", "Tue Feb 15 2011 19:28:11 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375443759", "Tue Feb 15 2011 19:28:11 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375444699", "Tue Feb 15 2011 19:28:09 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375444705", "Tue Feb 15 2011 19:28:10 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375444711", "Tue Feb 15 2011 19:28:10 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375444717", "Tue Feb 15 2011 19:28:10 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375444723", "Tue Feb 15 2011 19:28:10 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375444729", "Tue Feb 15 2011 19:28:10 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375444735", "Tue Feb 15 2011 19:28:10 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375444741", "Tue Feb 15 2011 19:28:10 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375444747", "Tue Feb 15 2011 19:28:11 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedTTL129301619375444699", 10);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedTTL129301619375444723", 15);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedTTL129301619375444735", 5);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedTTL129301619375444747", 5);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FirstServerDate", "21-11-2010");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FirstTime", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FirstTimeFF3", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FixPageNotFoundErrors", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.GroupingServerCheckInterval", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.GroupingServiceUrl", "http://grouping.services.conduit.com/");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.HasUserGlobalKeys", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.Initialize", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.InitializeCommonPrefs", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.InstallationAndCookieDataSentCount", 3);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.InstallationType", "UnknownIntegration");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.InstalledDate", "Sun Nov 21 2010 22:01:25 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.IsGrouping", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.IsMulticommunity", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.IsOpenThankYouPage", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.IsOpenUninstallPage", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LanguagePackLastCheckTime", "Tue Sep 04 2012 20:38:05 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LanguagePackReloadIntervalMM", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LanguagePackServiceUrl", "http://translation.users.conduit.com/Translation.ashx");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LastLogin_3.12.0.7", "Wed Apr 25 2012 21:05:25 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LastLogin_3.12.2.3", "Wed May 30 2012 22:18:17 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LastLogin_3.13.0.6", "Tue Jul 17 2012 22:06:58 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LastLogin_3.14.1.0", "Sun Aug 26 2012 22:09:04 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LastLogin_3.15.1.0", "Wed Sep 05 2012 15:27:38 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LastLogin_3.2.3.3", "Sun Jan 23 2011 08:28:46 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LastLogin_3.2.5.2", "Tue Feb 15 2011 19:28:05 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LatestVersion", "3.14.1.0");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.Locale", "en");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.MCDetectTooltipHeight", "83");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.MCDetectTooltipUrl", "http://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.MCDetectTooltipWidth", "295");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.MyStuffEnabledAtInstallation", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SavedHomepage", "http://search.conduit.com/?ctid=&SearchSource=13");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SearchFromAddressBarIsInit", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&q=");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SearchInNewTabEnabled", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SearchInNewTabIntervalMM", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SearchInNewTabLastCheckTime", "Tue Sep 04 2012 20:38:02 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SearchInNewTabServiceUrl", "http://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SearchInNewTabUsageUrl", "http://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_T[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.ServiceMapLastCheckTime", "Tue Sep 04 2012 20:38:03 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SettingsLastCheckTime", "Wed Sep 05 2012 15:27:34 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SettingsLastUpdate", "1346669743");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.ThirdPartyComponentsInterval", 504);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.ThirdPartyComponentsLastCheck", "Mon Jan 31 2011 18:51:20 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.ThirdPartyComponentsLastUpdate", "1246790578");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.ToolbarShrinkedFromSetup", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.TrusteLinkUrl", "http://trust.conduit.com/CT2786678");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolb[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.UserID", "UN10630197239811823");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.ValidationData_Toolbar", 1);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.WeatherNetwork", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.WeatherPollDate", "Tue Feb 15 2011 19:28:11 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.WeatherUnit", "C");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.alertChannelId", "1178763");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;se[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.homepageProtectorEnableByLogin", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.initDone", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.myStuffEnabled", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.myStuffPublihserMinWidth", 400);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.myStuffSearchUrl", "http://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&oct[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.myStuffServiceIntervalMM", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.myStuffServiceUrl", "http://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.revertSettingsEnabled", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.searchProtectorDialogDelayInSec", 10);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.searchProtectorEnableByLogin", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.testingCtid", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.toolbarAppMetaDataLastCheckTime", "Tue Sep 04 2012 20:38:04 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.toolbarContextMenuLastCheckTime", "Sun Nov 21 2010 22:01:28 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.usagesFlag", 2);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT3227982.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3227982&SearchSource=2&q=");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT3241952.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3241952&SearchSource=2&q=");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.CantToolbarBeEngineOwner", "CT2542115");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://Settings.toolbar.search.conduit. ... /CT2542115", "\"38004a24cf85d3fa59748a4d[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://Settings.toolbar.search.conduit. ... /CT2786678", "\"f5266357296125a761ce267d[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/?aid ... id=1174448", "\"0\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/?aid ... fid=905414", "\"0\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/root ... 1174448/FR", "\"0\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/root ... /905414/FR", "\"0\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/root ... /930862/FR", "\"0\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://appsmetadata.toolbar.conduit-ser ... =CT2542115", "\"1346078036\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://appsmetadata.toolbar.conduit-ser ... =CT2786678", "\"1334471445\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://contextmenu.toolbar.conduit-serv ... cale=fr-fr", "y/LORlR12DbewW+J[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://contextmenu.toolbar.conduit-serv ... cale=fr-fr", "S+IiKFOIcJRQQUQYx[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://contextmenu.toolbar.conduit-serv ... cale=fr-fr", "NeBYWpVfqR9l5h0z[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://contextmenu.toolbar.conduit-serv ... cale=fr-fr", "VobDslsbJdJvb4C6TOi[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://dynamicdialogs.alert.conduit-ser ... rt/dlg.pkg", "\"8076e3ce381dcd1:0\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://dynamicdialogs.toolbar.conduit-s ... r=3.12.0.7", "\"4ead38b3e6bcd1:0\"")[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://dynamicdialogs.toolbar.conduit-s ... r=3.12.2.3", "\"4ead38b3e6bcd1:0\"")[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://dynamicdialogs.toolbar.conduit-s ... r=3.13.0.6", "\"0d648794549cd1:0\"")[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://dynamicdialogs.toolbar.conduit-s ... r=3.14.1.0", "\"0e0a4327275cd1:0\"")[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://dynamicdialogs.toolbar.conduit-s ... r=3.15.1.0", "\"0e0a4327275cd1:0\"")[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://servicemap.conduit-services.com/ ... =CT2542115", "\"c912886ea3ba021d3a9ef2d6ad[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://servicemap.conduit-services.com/ ... =CT2786678", "\"c912886ea3ba021d3a9ef2d6ad[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://servicemap.conduit-services.com/toolbar/", "\"634333631231730000\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://settings.engine.conduit-services ... r=FF&lut=0", "634248284990000000");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://settings.engine.conduit-services ... =1/11/2011 5:25:10 PM", "6343036351000[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://settings.engine.conduit-services ... =11/8/2010 3:54:59 PM", "6342932358600[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://settings.engine.conduit-services ... 12/30/2010 4:33:06 PM", "634303635100[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://settings.toolbar.conduit-service ... =CT2786678", "\"1291131559\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://settings.toolbar.search.conduit. ... /CT2542115", "\"1296758899\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://settings.toolbar.search.conduit. ... /CT2786678", "\"1297181872\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://translation.toolbar.conduit-serv ... ?locale=en", "\"987ffb9097f367e1d1cd13edbd87ae54\[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://translation.toolbar.conduit-serv ... cale=fr-fr", "\"6e6ba327993a8d5210d6aa8a16e008[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.EngineOwner", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.EngineOwnerGuid", "{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.EngineOwnerToolbarId", "utorrentbar");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Marie Charlotte\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\qt[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.13.0.6");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.OriginalEngineOwner", "CT2786678");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "utorrentbar");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ToolbarsList", "CT2786678,CT2542115");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ToolbarsList2", "ConduitEngine,CT2786678,CT2542115");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Tue Feb 15 2011 19:28:02 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.clientsServerUrl", "http://alert.client.conduit.com");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.locale", "en");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.loginLastCheckTime", "Tue Feb 15 2011 19:28:02 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1291052234");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.servicesServerUrl", "http://alert.services.conduit.com");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.showTrayIcon", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.userId", "bbd6db34-15c7-4720-90d0-cd348eac0eb8");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Tue Feb 15 2011 19:28:04 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.globalUserId", "c8bfff52-6414-4002-bbf8-7c7fc425e67b");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2542115");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.killedEngine", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Thu Jun 14 2012 18:36:16 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.alertInfoInterval", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Wed Jun 20 2012 21:07:32 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.clientsServerUrl", "http://alert.client.conduit.com");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.locale", "en");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Wed Jun 20 2012 21:07:24 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.servicesServerUrl", "http://alert.services.conduit.com");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.showTrayIcon", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.userId", "3cc4c933-77fa-4c06-a921-49f227fd2322");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.undefined", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("Smartbar.ConduitHomepagesList", "http://search.conduit.com/?ctid=CT3227982&SearchSource=13");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("Smartbar.SearchFromAddressBarSavedUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2542115&q=");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("browser.startup.homepage", "http://search.conduit.com/?ctid=CT3227982&SearchSource=13");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("keyword.URL", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3227982&SearchSource=2&q=");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.cargo", "3.1010000.10011");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.0.enable", "true");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.0.handler", "chrome://sim_toolbar_package/content/optionsdialog-handler.js");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.0.height", "335");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.0.id", "id_options_dialog");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.0.title", "$string.config.label;");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.0.width", "761");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.1.enable", "true");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.1.handler", "chrome://sim_toolbar_package/content/exampledialog-handler.js");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.1.height", "300");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.1.id", "id_example_dialog");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.1.title", "Example (unit-test) dialog");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.1.url", "chrome://sim_toolbar_package/content/exampledialog.html");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.1.width", "500");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dnscatch.domain-blacklist", ".*.sweetim.com/.*|.*.facebook.com/.*|.*.google.com/.*|.*.google.co.in/.*|.[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.highlight.colors", "#FFFF00,#00FFE4,#5AFF00,#0087FF,#FFCC00,#FF00F0");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.logger.ConsoleHandler.MinReportLevel", "7");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.logger.FileHandler.FileName", "ff-toolbar.log");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.logger.FileHandler.MaxFileSize", "200000");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.logger.FileHandler.MinReportLevel", "7");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.mode.debug", "false");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.prad.initialized_by_rc", "true");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.previous.browser.search.defaulturl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2542115&SearchSo[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.previous.browser.startup.homepage", "http://search.conduit.com/?ctid=CT3241952&SearchSource=13");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.0.addcontextdiv", "true");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.0.callback", "simVerification");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.0.domain-blacklist", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.0.elementid", "id_script_sim_fb");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.0.enable", "true");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.0.id", "id_script_fb");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.1.addcontextdiv", "false");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.1.callback", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.1.domain-blacklist", ".*.google..*|.*.bing..*|.*.live..*|.*.msn..*|.*.yahoo..*|.*.youtube.com.*[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.1.domain-whitelist", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.1.elementid", "id_predict_include_script");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.1.enable", "false");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.1.id", "id_script_prad");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.search.history.capacity", "10");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "1");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "1");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.searchguard.enable", "true");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.simapp_id", "{75E73056-B220-11E1-A061-C80AA9EFBB92}");
O69 - SBI: SearchScopes [HKCU] {afdbddaa-5d3f-42ee-b79c-185a7020515b} - (Softonic_France Customized Web Search) - http://search.conduit.com => Toolbar.Conduit
[MD5.1E8A3407EC2E65429381F08DF9D2CADA] [SPRF][09/06/2012] (.SweetIM Technologies Ltd. - SweetIM Installer by SweetPacks.) -- C:\Users\Marie Charlotte\AppData\Local\Temp\Shortcut_SimDSetup.exe [6140760]
[MD5.AF528EBA5F5942C080AAABE29D31BD62] [SPRF][08/12/2010] (...) -- C:\Users\Marie Charlotte\AppData\Local\Temp\Softonic_France.exe [2494288]
[MD5.F689F4584DA0750B292CD487CE88E491] [SPRF][09/02/2011] (...) -- C:\Users\Marie Charlotte\AppData\Local\Temp\Softonic_s_France.exe [6291968]
[MD5.0200C694B3922B95A008DD29F7AACDB4] [SPRF][13/11/2010] (.Conduit Ltd. - Conduit Toolbar.) -- C:\Users\Marie Charlotte\AppData\Local\Temp\tbSoft.dll [3913000]
[MD5.E4CC410BD005958125CD87C5F6E66371] [SPRF][18/10/2010] (.Conduit Ltd. - Conduit Toolbar.) -- C:\Users\Marie Charlotte\AppData\Local\Temp\tbuTor.dll [3908192]
[HKLM\Software\WOW6432Node\Classes\CLSID\{1a03f196-9617-4ca0-842b-a83ceecb022b}] => Toolbar.SweetIM
[HKLM\Software\WOW6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}] => Toolbar.Agent
[HKLM\Software\Classes\TypeLib\{4d3b167e-5fd8-4276-8fd7-9df19c1e4d19}] => Toolbar.SweetIM
[HKLM\Software\WOW6432Node\Classes\AppID\{5B1881D1-D9C7-46df-B041-1E593282C7D0}] => Toolbar.Babylon
[HKLM\Software\WOW6432Node\Classes\CLSID\{80922ee0-8a76-46ae-95d5-bd3c3fe0708d}] => Toolbar.Agent
[HKLM\Software\WOW6432Node\Classes\CLSID\{82ac53b4-164c-4b07-a016-437a8388b81a}] => Toolbar.SweetIM
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A7BC02AF-1128-4A31-BCF8-1A3EE803D3B3}] => Toolbar.SweetIM
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A81A974F-8A22-43E6-9243-5198FF758DA1}] => Toolbar.SweetIM
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}] => Toolbar.Conduit
[HKLM\Software\WOW6432Node\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}] => Toolbar.Conduit
[HKLM\Software\WOW6432Node\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}] => Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}] => Toolbar.Agent
[HKLM\Software\WOW6432Node\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}] => Toolbar.Agent
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}] => Toolbar.Agent
[HKCU\Software\AppDataLow\Software\Softonic_France] => Toolbar.Conduit
[HKCU\Software\SweetIM] => Toolbar.SweetIM
[HKLM\Software\WOW6432Node\SweetIM] => Toolbar.SweetIM
[HKLM\Software\Classes\Toolbar.CT2786678]
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{32099aac-c132-4136-9e9a-4e364a424e17} => Toolbar.DaemonTools
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{32099aac-c132-4136-9e9a-4e364a424e17} => Toolbar.DaemonTools
C:\Users\Marie Charlotte\AppData\LocalLow\Softonic_France => Toolbar.Conduit
EmptyCLSID
EmptyTemp
EmptyFlash
FirewallRaz
ProxyFix
- Marsita
- Visiteur Confirmé
- Messages: 12
- Inscription: 16 Fév 2013 19:07
Re: Virus WIN32 pup gen
le 16 Fév 2013 23:27
- Marsita
- Visiteur Confirmé
- Messages: 12
- Inscription: 16 Fév 2013 19:07
Re: Virus WIN32 pup gen
le 16 Fév 2013 23:34
Bonsoir,
Ok pour Adw mais tu ne ma rien posté pour ZHPDiag
je nais pas tout saisi la suite :
pourquoi posté ça ?
Bonne soirée
Ok pour Adw mais tu ne ma rien posté pour ZHPDiag
je nais pas tout saisi la suite :
- Code: Tout sélectionner
O23 - Service: KMService (KMService) . (...) - C:\Windows\SysWOW64\srvany.exe => Infection Diverse (Trojan.Keygen)
[HKCU\Software\AppDataLow\Software\PriceGong] => Infection BT (Adware.PriceGong)
[HKCU\Software\AppDataLow\Software\ShopperReports3] => Infection BT (Adware.ShopperReports)
[HKLM\Software\DataMngr] => Infection PUP (PUP.BearShare)
[HKLM\Software\Iminent] => Infection PUP (Adware.IMBooster)
O44 - LFC:[MD5.A103FDF7348130EF3F3FEF56B1700A27] - 31/08/2012 - 16:13:34 ---A- . (...) -- C:\END [9] => Infection FakeAlert (Trojan.FakeAlert)
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.previous.keyword.URL", "http://search.sweetim.com/search.asp?src=2&q=");
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {4B8C28A7-A9BC-45F8-990D-21499EED643C} - (QuestScan) - http://www.questscan.com => Infection BT (Adware.QuestScan)
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {4B8C28A7-A9BC-45F8-990D-21499EED643C} - (QuestScan) - http://www.questscan.com => Infection BT (Adware.QuestScan)
[HKLM\Software\WOW6432Node\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}] => Infection BT (Adware.Agent)
[HKLM\Software\WOW6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}] => Infection BT (Adware.Agent)
[HKLM\Software\WOW6432Node\Classes\Interface\{453db0c5-f41c-4d97-8dd6-cc72ecd5f699}]
[HKLM\Software\WOW6432Node\Classes\Interface\{4AFC07D0-59BB-46B8-B097-1A46E88EEF71}]
[HKLM\Software\WOW6432Node\Classes\Interface\{6511ce4c-4722-40d0-ad3d-4afa2f50978a}]
[HKLM\Software\WOW6432Node\Classes\Interface\{9bec9b38-bf39-4899-806e-a1c5dfeb60a2}]
[HKLM\Software\WOW6432Node\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\WOW6432Node\Classes\Interface\{aebf09e2-0c15-43c8-99bf-928c645d98a0}]
[HKLM\Software\WOW6432Node\Classes\Interface\{b86d82bf-d39f-439a-a07c-43eddc6f6ea6}]
[HKLM\Software\WOW6432Node\Classes\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98DB}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\WOW6432Node\Classes\Interface\{da6305b9-0869-4235-8c1d-533a65e639e5}]
[HKLM\Software\WOW6432Node\Classes\Interface\{e6961c59-cfce-4ccd-b794-bc78db98413a}]
[HKLM\Software\WOW6432Node\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}] => Infection BT (Toolbar.Babylon)
[HKLM\Software\WOW6432Node\DataMngr] => Infection PUP (PUP.BearShare)
[HKLM\Software\WOW6432Node\Iminent] => Infection PUP (Adware.IMBooster)
[HKCU\Software\AppDataLow\Software\PriceGong] => Infection BT (Adware.PriceGong)
[HKCU\Software\AppDataLow\Software\ShopperReports3] => Infection BT (Adware.ShopperReports)
[HKLM\Software\Classes\Toolbar.CT2542115]
SS - | Auto 0 | (KMService) . (...) - C:\Windows\system32\srvany.exe => Infection Diverse (Trojan.Keygen)
O43 - CFD: 19/11/2011 - 15:31:38 - [45,266] ----D C:\ProgramData\{D3B41B92-9BC2-43EB-916A-4FA9E8191837}
R3 - URLSearchHook: (no name) [64Bits] - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} . (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) (No version) -- (.not file.)
O2 - BHO: (no name) [64Bits] - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} Clé orpheline
[MD5.00000000000000000000000000000000] [APT] [{2CBF225A-FF36-4C31-9BC9-B6BE2B79ACBE}] (...) -- C:\Users\Marie Charlotte\Desktop\Civilization II Multiplayer Gold Edition\civ2.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{39D06D52-6239-42E3-BEDF-531C58F392DE}] (...) -- C:\Users\Marie Charlotte\Desktop\Civilization II Multiplayer Gold Edition\civ2.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{6146F80F-9923-46AF-8AD4-CA9BE8E422E4}] (...) -- C:\Users\Marie Charlotte\Desktop\Civilization II Multiplayer Gold Edition\civ2.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{871ADB1B-B9E0-4ED9-B611-5E5FC98AFABC}] (...) -- C:\Users\Marie Charlotte\Desktop\Civilization II Multiplayer Gold Edition\civ2.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{A1070E48-2D1C-46D7-A252-0D4DE8D3B8BC}] (...) -- C:\Users\Marie Charlotte\Desktop\Civilization II Multiplayer Gold Edition\civ2.exe (.not file.)
O42 - Logiciel: FATE - (.WildTangent.) [HKLM] -- WT082141 => WildTangent Game
O42 - Logiciel: HP Game Console - (.WildTangent.) [HKLM] -- My HP Game Console => WildTangent Game
O42 - Logiciel: Mystery P.I. - The Vegas Heist - (.WildTangent.) [HKLM] -- WT082414 => WildTangent Game
O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM] -- WT082172 => WildTangent Game
O42 - Logiciel: Slingo Deluxe - (.WildTangent.) [HKLM] -- WT082427 => WildTangent Game
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api15_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api18_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api19_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api20_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api21_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api28_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api29_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api30_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api32_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://api6_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.http://st_thetrafficstat_net.pid2", "38663830366566643136343033356135");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT3227982.installType", "ConduitNSISIntegration");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://contextmenu.engine.conduit-servi ... e=engineCo[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("Smartbar.ConduitSearchEngineList", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("Smartbar.ConduitSearchUrlList", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.urls.homepage", "http://home.sweetim.com/?crg=3.1010000.10011&barid={75E73056-B220-11E1-A061-C80AA9EFBB[...]
[MD5.1A3D1A7349253561EF89D017F6EDD5FC] [SPRF][09/06/2012] (.SweetIM Technologies Lt - This installer.) -- C:\Users\Marie Charlotte\AppData\Local\Temp\SIMEEIInstaller.exe [2626512]
O87 - FAEL: "TCP Query User{1825F5F6-A639-4923-B9F3-5581C14748B4}F:\fscommand\updater.exe" |In - Private - P6 - TRUE | .(...) -- F:\fscommand\updater.exe (.not file.)
O87 - FAEL: "UDP Query User{BCDBDC85-2E0C-40F1-B910-B220C97F2A99}F:\fscommand\updater.exe" |In - Private - P17 - TRUE | .(...) -- F:\fscommand\updater.exe (.not file.)
O87 - FAEL: "{2040D9D2-DF0E-415C-AC62-E392140AD2B6}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe (.not file.)
O87 - FAEL: "{02736083-E3DD-4392-8BF9-CB873CB56A58}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe (.not file.)
O51 - MPSK:{061927e5-4438-11e0-a5b2-c80aa9efbb92}\AutoRun\command. (...) -- G:\autorun.exe (.not file.) => Microsoft Windows NT or Infection USB
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.MCDetectTooltipWidth", "295");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.MyStuffEnabledAtInstallation", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioIsPodcast", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioLastCheckTime", "Wed Jun 20 2012 21:07:58 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioLastUpdateIPServer", "3");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioLastUpdateServer", "3");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioMediaID", "9962");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioMediaType", "Media Player");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioMenuSelectedID", "EBRadioMenu_CT25421159962");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioShrinkedFromSetup", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioStationName", "California%20Rock");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.RadioStationURL", "http://feedlive.net/california.asx");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SHRINK_TOOLBAR", 1);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchEngineBeforeUnload", "chrome://browser-region/locale/region.properties");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchFromAddressBarIsInit", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2542115&q=");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchInNewTabEnabled", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchInNewTabIntervalMM", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchInNewTabLastCheckTime", "Tue Sep 04 2012 20:38:01 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchInNewTabServiceUrl", "http://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchInNewTabUsageUrl", "http://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_T[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchProtectorEnabled", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SearchProtectorToolbarDisabled", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.ServiceMapLastCheckTime", "Tue Sep 04 2012 20:38:01 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SettingsLastCheckTime", "Wed Sep 05 2012 15:27:33 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.SettingsLastUpdate", "1346671355");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.ThirdPartyComponentsInterval", 504);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.ThirdPartyComponentsLastCheck", "Thu May 31 2012 10:14:12 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.ThirdPartyComponentsLastUpdate", "1331805999");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.TrusteLinkUrl", "http://trust.conduit.com/CT2542115");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolb[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.UserID", "UN00040543076887833");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.ValidationData_Toolbar", 2);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.WeatherNetwork", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.WeatherPollDate", "Thu Jun 21 2012 00:37:30 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.WeatherUnit", "C");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.alertChannelId", "935078");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage._fb_dailyactivity", "31323937373934343935353238");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage._fb_lifetimesent", "54525545");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.autocompletepro_enable", "31");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.autocompletepro_enable_auto", "31");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.cb_experience_000", "35");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.cb_firstuse0100", "31");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.cb_user_id_000", "4342373936353235333136325F46697265666F78");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.cbcountry_000", "4652");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.cbcountry_001", "4652");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.cbfirsttime", "546875204D617920333120323031322031303A31343A323220474D542B30323030");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.ct2542115ads1", "25374225323261647325323225334125354225374225323261696425323225334125323234343[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.ct2542115current_term", "7466312B7265706C6179");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.ct2542115isadsdisabled", "66616C7365");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.ct2542115sdate", "3331");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.printitgreenstatus", "74727565");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.shoppingapp.gk.exipres", "467269204A756E20323220323031322032313A30373A323820474D542B30323030")[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.shoppingapp.gk.geolocation", "6672616E6365");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.backendstorage.url_history0001", "687474703A2F2F66722E666F72756D2D6D6574616C2E636F6D2F746F7069632E7068703F706[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.components.129790546080283738", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;se[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.globalFirstTimeInfoLastCheckTime", "Mon Jun 11 2012 20:09:43 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.homepageProtectorEnableByLogin", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.initDone", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.isAppTrackingManagerOn", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.isFirstRadioInstallation", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.myStuffEnabled", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.myStuffPublihserMinWidth", 400);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.myStuffSearchUrl", "http://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&oct[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.myStuffServiceIntervalMM", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.myStuffServiceUrl", "http://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.oldAppsList", "129112212599528487,129112212600153496,111,129790546080283738,129530554216906936,12946031697481[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.revertSettingsEnabled", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.searchProtectorDialogDelayInSec", 10);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.searchProtectorEnableByLogin", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.testingCtid", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.toolbarAppMetaDataLastCheckTime", "Tue Sep 04 2012 20:38:03 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.toolbarContextMenuLastCheckTime", "Thu Jun 14 2012 10:14:14 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2542115.usagesFlag", 2);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678..clientLogIsEnabled", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678..clientLogServiceUrl", "http://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678..uninstallLogServiceUrl", "http://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.ALLOW_SHOWING_HIDDEN_TOOLBAR", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.AboutPrivacyUrl", "http://www.conduit.com/privacy/Default.aspx");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.BrowserCompStateIsOpen_129579220236217502", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.CTID", "CT2786678");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.CurrentServerDate", "5-9-2012");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.DialogsAlignMode", "LTR");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.DialogsGetterLastCheckTime", "Sun Sep 02 2012 16:06:57 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.DownloadReferralCookieData", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.EMailNotifierPollDate", "Tue Feb 15 2011 19:28:04 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedLastCount5690698542593514850", 550);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375443753", "Tue Feb 15 2011 19:28:11 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375443759", "Tue Feb 15 2011 19:28:11 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375444699", "Tue Feb 15 2011 19:28:09 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375444705", "Tue Feb 15 2011 19:28:10 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375444711", "Tue Feb 15 2011 19:28:10 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375444717", "Tue Feb 15 2011 19:28:10 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375444723", "Tue Feb 15 2011 19:28:10 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375444729", "Tue Feb 15 2011 19:28:10 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375444735", "Tue Feb 15 2011 19:28:10 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375444741", "Tue Feb 15 2011 19:28:10 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedPollDate129301619375444747", "Tue Feb 15 2011 19:28:11 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedTTL129301619375444699", 10);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedTTL129301619375444723", 15);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedTTL129301619375444735", 5);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FeedTTL129301619375444747", 5);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FirstServerDate", "21-11-2010");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FirstTime", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FirstTimeFF3", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.FixPageNotFoundErrors", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.GroupingServerCheckInterval", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.GroupingServiceUrl", "http://grouping.services.conduit.com/");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.HasUserGlobalKeys", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.Initialize", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.InitializeCommonPrefs", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.InstallationAndCookieDataSentCount", 3);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.InstallationType", "UnknownIntegration");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.InstalledDate", "Sun Nov 21 2010 22:01:25 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.IsGrouping", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.IsMulticommunity", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.IsOpenThankYouPage", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.IsOpenUninstallPage", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LanguagePackLastCheckTime", "Tue Sep 04 2012 20:38:05 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LanguagePackReloadIntervalMM", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LanguagePackServiceUrl", "http://translation.users.conduit.com/Translation.ashx");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LastLogin_3.12.0.7", "Wed Apr 25 2012 21:05:25 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LastLogin_3.12.2.3", "Wed May 30 2012 22:18:17 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LastLogin_3.13.0.6", "Tue Jul 17 2012 22:06:58 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LastLogin_3.14.1.0", "Sun Aug 26 2012 22:09:04 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LastLogin_3.15.1.0", "Wed Sep 05 2012 15:27:38 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LastLogin_3.2.3.3", "Sun Jan 23 2011 08:28:46 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LastLogin_3.2.5.2", "Tue Feb 15 2011 19:28:05 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.LatestVersion", "3.14.1.0");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.Locale", "en");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.MCDetectTooltipHeight", "83");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.MCDetectTooltipUrl", "http://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.MCDetectTooltipWidth", "295");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.MyStuffEnabledAtInstallation", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SavedHomepage", "http://search.conduit.com/?ctid=&SearchSource=13");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SearchFromAddressBarIsInit", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&q=");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SearchInNewTabEnabled", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SearchInNewTabIntervalMM", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SearchInNewTabLastCheckTime", "Tue Sep 04 2012 20:38:02 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SearchInNewTabServiceUrl", "http://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SearchInNewTabUsageUrl", "http://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_T[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.ServiceMapLastCheckTime", "Tue Sep 04 2012 20:38:03 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SettingsLastCheckTime", "Wed Sep 05 2012 15:27:34 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.SettingsLastUpdate", "1346669743");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.ThirdPartyComponentsInterval", 504);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.ThirdPartyComponentsLastCheck", "Mon Jan 31 2011 18:51:20 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.ThirdPartyComponentsLastUpdate", "1246790578");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.ToolbarShrinkedFromSetup", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.TrusteLinkUrl", "http://trust.conduit.com/CT2786678");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolb[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.UserID", "UN10630197239811823");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.ValidationData_Toolbar", 1);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.WeatherNetwork", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.WeatherPollDate", "Tue Feb 15 2011 19:28:11 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.WeatherUnit", "C");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.alertChannelId", "1178763");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;se[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.homepageProtectorEnableByLogin", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.initDone", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.myStuffEnabled", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.myStuffPublihserMinWidth", 400);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.myStuffSearchUrl", "http://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&oct[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.myStuffServiceIntervalMM", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.myStuffServiceUrl", "http://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.revertSettingsEnabled", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.searchProtectorDialogDelayInSec", 10);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.searchProtectorEnableByLogin", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.testingCtid", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.toolbarAppMetaDataLastCheckTime", "Tue Sep 04 2012 20:38:04 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.toolbarContextMenuLastCheckTime", "Sun Nov 21 2010 22:01:28 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT2786678.usagesFlag", 2);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT3227982.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3227982&SearchSource=2&q=");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CT3241952.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3241952&SearchSource=2&q=");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.CantToolbarBeEngineOwner", "CT2542115");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://Settings.toolbar.search.conduit. ... /CT2542115", "\"38004a24cf85d3fa59748a4d[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://Settings.toolbar.search.conduit. ... /CT2786678", "\"f5266357296125a761ce267d[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/?aid ... id=1174448", "\"0\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/?aid ... fid=905414", "\"0\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/root ... 1174448/FR", "\"0\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/root ... /905414/FR", "\"0\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/root ... /930862/FR", "\"0\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://appsmetadata.toolbar.conduit-ser ... =CT2542115", "\"1346078036\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://appsmetadata.toolbar.conduit-ser ... =CT2786678", "\"1334471445\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://contextmenu.toolbar.conduit-serv ... cale=fr-fr", "y/LORlR12DbewW+J[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://contextmenu.toolbar.conduit-serv ... cale=fr-fr", "S+IiKFOIcJRQQUQYx[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://contextmenu.toolbar.conduit-serv ... cale=fr-fr", "NeBYWpVfqR9l5h0z[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://contextmenu.toolbar.conduit-serv ... cale=fr-fr", "VobDslsbJdJvb4C6TOi[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://dynamicdialogs.alert.conduit-ser ... rt/dlg.pkg", "\"8076e3ce381dcd1:0\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://dynamicdialogs.toolbar.conduit-s ... r=3.12.0.7", "\"4ead38b3e6bcd1:0\"")[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://dynamicdialogs.toolbar.conduit-s ... r=3.12.2.3", "\"4ead38b3e6bcd1:0\"")[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://dynamicdialogs.toolbar.conduit-s ... r=3.13.0.6", "\"0d648794549cd1:0\"")[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://dynamicdialogs.toolbar.conduit-s ... r=3.14.1.0", "\"0e0a4327275cd1:0\"")[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://dynamicdialogs.toolbar.conduit-s ... r=3.15.1.0", "\"0e0a4327275cd1:0\"")[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://servicemap.conduit-services.com/ ... =CT2542115", "\"c912886ea3ba021d3a9ef2d6ad[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://servicemap.conduit-services.com/ ... =CT2786678", "\"c912886ea3ba021d3a9ef2d6ad[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://servicemap.conduit-services.com/toolbar/", "\"634333631231730000\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://settings.engine.conduit-services ... r=FF&lut=0", "634248284990000000");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://settings.engine.conduit-services ... =1/11/2011 5:25:10 PM", "6343036351000[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://settings.engine.conduit-services ... =11/8/2010 3:54:59 PM", "6342932358600[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://settings.engine.conduit-services ... 12/30/2010 4:33:06 PM", "634303635100[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://settings.toolbar.conduit-service ... =CT2786678", "\"1291131559\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://settings.toolbar.search.conduit. ... /CT2542115", "\"1296758899\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://settings.toolbar.search.conduit. ... /CT2786678", "\"1297181872\"");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://translation.toolbar.conduit-serv ... ?locale=en", "\"987ffb9097f367e1d1cd13edbd87ae54\[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ETag.http://translation.toolbar.conduit-serv ... cale=fr-fr", "\"6e6ba327993a8d5210d6aa8a16e008[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.EngineOwner", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.EngineOwnerGuid", "{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.EngineOwnerToolbarId", "utorrentbar");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Marie Charlotte\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\qt[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.13.0.6");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.OriginalEngineOwner", "CT2786678");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "utorrentbar");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ToolbarsList", "CT2786678,CT2542115");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.ToolbarsList2", "ConduitEngine,CT2786678,CT2542115");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Tue Feb 15 2011 19:28:02 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.clientsServerUrl", "http://alert.client.conduit.com");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.locale", "en");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.loginLastCheckTime", "Tue Feb 15 2011 19:28:02 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1291052234");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.servicesServerUrl", "http://alert.services.conduit.com");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.showTrayIcon", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.alert.userId", "bbd6db34-15c7-4720-90d0-cd348eac0eb8");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Tue Feb 15 2011 19:28:04 GMT+0100");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.globalUserId", "c8bfff52-6414-4002-bbf8-7c7fc425e67b");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2542115");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.killedEngine", true);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Thu Jun 14 2012 18:36:16 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.alertInfoInterval", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Wed Jun 20 2012 21:07:32 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.clientsServerUrl", "http://alert.client.conduit.com");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.locale", "en");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Wed Jun 20 2012 21:07:24 GMT+0200");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.servicesServerUrl", "http://alert.services.conduit.com");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.showTrayIcon", false);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.notifications.userId", "3cc4c933-77fa-4c06-a921-49f227fd2322");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("CommunityToolbar.undefined", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("Smartbar.ConduitHomepagesList", "http://search.conduit.com/?ctid=CT3227982&SearchSource=13");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("Smartbar.SearchFromAddressBarSavedUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2542115&q=");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("browser.startup.homepage", "http://search.conduit.com/?ctid=CT3227982&SearchSource=13");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("keyword.URL", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3227982&SearchSource=2&q=");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.cargo", "3.1010000.10011");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.0.enable", "true");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.0.handler", "chrome://sim_toolbar_package/content/optionsdialog-handler.js");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.0.height", "335");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.0.id", "id_options_dialog");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.0.title", "$string.config.label;");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.0.width", "761");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.1.enable", "true");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.1.handler", "chrome://sim_toolbar_package/content/exampledialog-handler.js");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.1.height", "300");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.1.id", "id_example_dialog");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.1.title", "Example (unit-test) dialog");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.1.url", "chrome://sim_toolbar_package/content/exampledialog.html");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dialogs.1.width", "500");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.dnscatch.domain-blacklist", ".*.sweetim.com/.*|.*.facebook.com/.*|.*.google.com/.*|.*.google.co.in/.*|.[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.highlight.colors", "#FFFF00,#00FFE4,#5AFF00,#0087FF,#FFCC00,#FF00F0");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.logger.ConsoleHandler.MinReportLevel", "7");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.logger.FileHandler.FileName", "ff-toolbar.log");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.logger.FileHandler.MaxFileSize", "200000");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.logger.FileHandler.MinReportLevel", "7");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.mode.debug", "false");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.prad.initialized_by_rc", "true");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.previous.browser.search.defaulturl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2542115&SearchSo[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.previous.browser.startup.homepage", "http://search.conduit.com/?ctid=CT3241952&SearchSource=13");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.0.addcontextdiv", "true");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.0.callback", "simVerification");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.0.domain-blacklist", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.0.elementid", "id_script_sim_fb");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.0.enable", "true");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.0.id", "id_script_fb");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.1.addcontextdiv", "false");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.1.callback", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.1.domain-blacklist", ".*.google..*|.*.bing..*|.*.live..*|.*.msn..*|.*.yahoo..*|.*.youtube.com.*[...]
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.1.domain-whitelist", "");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.1.elementid", "id_predict_include_script");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.1.enable", "false");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.scripts.1.id", "id_script_prad");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.search.history.capacity", "10");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "1");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "1");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.searchguard.enable", "true");
O69 - SBI: prefs.js [Marie Charlotte - qt2nayiw.default] user_pref("sweetim.toolbar.simapp_id", "{75E73056-B220-11E1-A061-C80AA9EFBB92}");
O69 - SBI: SearchScopes [HKCU] {afdbddaa-5d3f-42ee-b79c-185a7020515b} - (Softonic_France Customized Web Search) - http://search.conduit.com => Toolbar.Conduit
[MD5.1E8A3407EC2E65429381F08DF9D2CADA] [SPRF][09/06/2012] (.SweetIM Technologies Ltd. - SweetIM Installer by SweetPacks.) -- C:\Users\Marie Charlotte\AppData\Local\Temp\Shortcut_SimDSetup.exe [6140760]
[MD5.AF528EBA5F5942C080AAABE29D31BD62] [SPRF][08/12/2010] (...) -- C:\Users\Marie Charlotte\AppData\Local\Temp\Softonic_France.exe [2494288]
[MD5.F689F4584DA0750B292CD487CE88E491] [SPRF][09/02/2011] (...) -- C:\Users\Marie Charlotte\AppData\Local\Temp\Softonic_s_France.exe [6291968]
[MD5.0200C694B3922B95A008DD29F7AACDB4] [SPRF][13/11/2010] (.Conduit Ltd. - Conduit Toolbar.) -- C:\Users\Marie Charlotte\AppData\Local\Temp\tbSoft.dll [3913000]
[MD5.E4CC410BD005958125CD87C5F6E66371] [SPRF][18/10/2010] (.Conduit Ltd. - Conduit Toolbar.) -- C:\Users\Marie Charlotte\AppData\Local\Temp\tbuTor.dll [3908192]
[HKLM\Software\WOW6432Node\Classes\CLSID\{1a03f196-9617-4ca0-842b-a83ceecb022b}] => Toolbar.SweetIM
[HKLM\Software\WOW6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}] => Toolbar.Agent
[HKLM\Software\Classes\TypeLib\{4d3b167e-5fd8-4276-8fd7-9df19c1e4d19}] => Toolbar.SweetIM
[HKLM\Software\WOW6432Node\Classes\AppID\{5B1881D1-D9C7-46df-B041-1E593282C7D0}] => Toolbar.Babylon
[HKLM\Software\WOW6432Node\Classes\CLSID\{80922ee0-8a76-46ae-95d5-bd3c3fe0708d}] => Toolbar.Agent
[HKLM\Software\WOW6432Node\Classes\CLSID\{82ac53b4-164c-4b07-a016-437a8388b81a}] => Toolbar.SweetIM
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A7BC02AF-1128-4A31-BCF8-1A3EE803D3B3}] => Toolbar.SweetIM
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A81A974F-8A22-43E6-9243-5198FF758DA1}] => Toolbar.SweetIM
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}] => Toolbar.Conduit
[HKLM\Software\WOW6432Node\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}] => Toolbar.Conduit
[HKLM\Software\WOW6432Node\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}] => Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}] => Toolbar.Agent
[HKLM\Software\WOW6432Node\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}] => Toolbar.Agent
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}] => Toolbar.Agent
[HKCU\Software\AppDataLow\Software\Softonic_France] => Toolbar.Conduit
[HKCU\Software\SweetIM] => Toolbar.SweetIM
[HKLM\Software\WOW6432Node\SweetIM] => Toolbar.SweetIM
[HKLM\Software\Classes\Toolbar.CT2786678]
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{32099aac-c132-4136-9e9a-4e364a424e17} => Toolbar.DaemonTools
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{32099aac-c132-4136-9e9a-4e364a424e17} => Toolbar.DaemonTools
C:\Users\Marie Charlotte\AppData\LocalLow\Softonic_France => Toolbar.Conduit
EmptyCLSID
EmptyTemp
EmptyFlash
FirewallRaz
ProxyFix
pourquoi posté ça ?
Bonne soirée
-
Raptor14 - PC-Infopraticien
- Messages: 2207
- Inscription: 13 Juin 2011 19:26
Re: Virus WIN32 pup gen
le 17 Fév 2013 06:02
Bonjour,
Oui, je vous ai envoyé un mauvais fichier... j'étais fatiguée et suis même allée dormir aussitôt, sans avoir pu voir votre réponse, pourtant très rapide !!! Vraiment désolée !!!
Cette fois, voici mon rapport ZHPDiag :
http://cjoint.com/?CBrf44rq4R4
J'espère A+ !
Oui, je vous ai envoyé un mauvais fichier... j'étais fatiguée et suis même allée dormir aussitôt, sans avoir pu voir votre réponse, pourtant très rapide !!! Vraiment désolée !!!
Cette fois, voici mon rapport ZHPDiag :
http://cjoint.com/?CBrf44rq4R4
J'espère A+ !
- Marsita
- Visiteur Confirmé
- Messages: 12
- Inscription: 16 Fév 2013 19:07
Re: Virus WIN32 pup gen
le 17 Fév 2013 10:11
Bonjour,
Pas de soucis
Fais attention à ce que tu as posté, c'est un script qui n'est absolument pas pour toi ainsi que pour tout les autres internautes. Les scripts sont strictement personnels !
Fais ceci :
Télécharges le Adwcleaner (de Xplode) sur ton Bureau !
Fais clic droit dessus, exécuter en tant qu'administrateur sous Windows : 7/8 et Vista
Clic sur Suppression :
Acceptes l'avertissement en cliquant sur OK :
Laisses l'outils travailler sans toucher au PC :
Deux messages vont apparaître clic sur OK sur les deux, l'ordinateur va ensuite redémarrer :
Un rapport va s'afficher sur ton écran au redémarrage :
Copie le dans son intégralité, colle le sur le Forum entre les balises :
Puis fais ceci :
Bonne journée
Pas de soucis
Fais attention à ce que tu as posté, c'est un script qui n'est absolument pas pour toi ainsi que pour tout les autres internautes. Les scripts sont strictement personnels !
Fais ceci :
Télécharges le Adwcleaner (de Xplode) sur ton Bureau !
Fais clic droit dessus, exécuter en tant qu'administrateur sous Windows : 7/8 et Vista
Clic sur Suppression :
Acceptes l'avertissement en cliquant sur OK :
Laisses l'outils travailler sans toucher au PC :
Deux messages vont apparaître clic sur OK sur les deux, l'ordinateur va ensuite redémarrer
:Un rapport va s'afficher sur ton écran au redémarrage :
Copie le dans son intégralité, colle le sur le Forum entre les balises :
- Code: Tout sélectionner
[code]Rapport .....[/code]
Puis fais ceci :
- Télécharges MalwareBytes
- Procèdes à l'installation de celui çi Décocher "Activer l'essai gratuit de Malwarebytes Anti-Malware PRO"
- Sélectionne Examen complet
- Cliques sur Rechercher
- Supprimes tout les éléments trouvés
- Postes le rapport sur le forum
Bonne journée
-
Raptor14 - PC-Infopraticien
- Messages: 2207
- Inscription: 13 Juin 2011 19:26
Re: Virus WIN32 pup gen
le 17 Fév 2013 10:52
Re-Bonjour,
Voici le rapport Adwcleaner.
Ai-je fait les choses correctement cette fois ?
Je te reviens après avoir téléchargé le logiciel de fichiers de malveillance.
A tout de suite !
Voici le rapport Adwcleaner.
Ai-je fait les choses correctement cette fois ?
Je te reviens après avoir téléchargé le logiciel de fichiers de malveillance.
A tout de suite !
- Code: Tout sélectionner
AdwCleaner v2.112 - Rapport créé le 17/02/2013 à 10:39:51
# Mis à jour le 10/02/2013 par Xplode
# Système d'exploitation : Windows 7 Home Premium (64 bits)
# Nom d'utilisateur : Linda - LILI-PC
# Mode de démarrage : Normal
# Exécuté depuis : C:\Users\Linda\Desktop\adwcleaner0.exe
# Option [Suppression]
***** [Services] *****
***** [Fichiers / Dossiers] *****
***** [Registre] *****
***** [Navigateurs] *****
-\\ Internet Explorer v9.0.8112.16464
[OK] Le registre ne contient aucune entrée illégitime.
-\\ Google Chrome v24.0.1312.57
Fichier : C:\Users\Linda\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] Le fichier ne contient aucune entrée illégitime.
Fichier : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] Le fichier ne contient aucune entrée illégitime.
*************************
AdwCleaner[R1].txt - [1085 octets] - [17/02/2013 10:38:26]
AdwCleaner[S1].txt - [1078 octets] - [17/02/2013 10:21:34]
AdwCleaner[S2].txt - [1019 octets] - [17/02/2013 10:39:51]
########## EOF - C:\AdwCleaner[S2].txt - [1079 octets] ###########
- Marsita
- Visiteur Confirmé
- Messages: 12
- Inscription: 16 Fév 2013 19:07
Re: Virus WIN32 pup gen
le 17 Fév 2013 12:46
Re-Re-Bonjour,
Voici le rapport Malewarebyte :
Voici le rapport Malewarebyte :
- Code: Tout sélectionner
Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org
Version de la base de données: v2013.02.17.02
Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
Linda :: LILI-PC [administrateur]
17/02/2013 11:04:01
MBAM-log-2013-02-17 (12-35-27).txt
Type d'examen: Examen complet (C:\|D:\|E:\|)
Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
Options d'examen désactivées: P2P
Elément(s) analysé(s): 569915
Temps écoulé: 1 heure(s), 30 minute(s), 37 seconde(s)
Processus mémoire détecté(s): 0
(Aucun élément nuisible détecté)
Module(s) mémoire détecté(s): 0
(Aucun élément nuisible détecté)
Clé(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)
Valeur(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)
Elément(s) de données du Registre détecté(s): 0
(Aucun élément nuisible détecté)
Dossier(s) détecté(s): 0
(Aucun élément nuisible détecté)
Fichier(s) détecté(s): 1
C:\photoshop\prog\KEYGEN (Serial + Activation) for Adobe Creative Suite 2-Photoshop CS2 v9-Illustrator CS2 v12-InDesign CS2v 4-GoLive CS2 v.exe (PUP.RiskwareTool.CK) -> Aucune action effectuée.
(fin)
- Marsita
- Visiteur Confirmé
- Messages: 12
- Inscription: 16 Fév 2013 19:07
Re: Virus WIN32 pup gen
le 17 Fév 2013 12:54
Salut,
Alors les cracks c'est pas super pour les infections
On va dire que ça améliore pas la chose c'est même en général la cause principale ...
Fais ceci :
Puis refais moi un rapport ZHPDiag stp
Alors les cracks c'est pas super pour les infections
On va dire que ça améliore pas la chose c'est même en général la cause principale ...Fais ceci :
Raptor14 a écrit:Re bonjour,
Très bien pour les balises
Va dans C:\AdwCleaner[S1].txt et postes ce rapport.
J'attends Malwarebytes
Puis refais moi un rapport ZHPDiag stp
-
Raptor14 - PC-Infopraticien
- Messages: 2207
- Inscription: 13 Juin 2011 19:26
Re: Virus WIN32 pup gen
le 17 Fév 2013 13:29
Re-re-re,
J'ai posté adwcleaner S1 : http://cjoint.com/?CBrnj3dvt0Z
Je me demande pourquoi poster ce rapport car tu l'as déjà reçu mais je fais ce que tu me dis !!
Et je t'envoie bientôt un nouveau rapport ZHPDiag.
Merci et, A+
J'ai posté adwcleaner S1 : http://cjoint.com/?CBrnj3dvt0Z
Je me demande pourquoi poster ce rapport car tu l'as déjà reçu mais je fais ce que tu me dis !!
Et je t'envoie bientôt un nouveau rapport ZHPDiag.
Merci et, A+
- Marsita
- Visiteur Confirmé
- Messages: 12
- Inscription: 16 Fév 2013 19:07
Re: Virus WIN32 pup gen
le 17 Fév 2013 13:35
- Marsita
- Visiteur Confirmé
- Messages: 12
- Inscription: 16 Fév 2013 19:07
Re: Virus WIN32 pup gen
le 17 Fév 2013 15:16
Bonjour,
Oui mais tu l'avais passé deux fois de suite je voulais avoir le contenue du rapport du premier passage, mais curieusement il est vide
Fais ceci :
Un rapport sera créé sur ton bureau ZHPFixReport héberges le rapports sur http://www.cjoint.com et postes le sur le forum
Oui mais tu l'avais passé deux fois de suite je voulais avoir le contenue du rapport du premier passage, mais curieusement il est vide
Fais ceci :
- Lances ZHPFix sur ton bureau. Sous windows 7/8 et vista faire clic droit sur ZHPFix exécuter en tant qu'administrateur.
- Copie les lignes ci dessous :
- Code: Tout sélectionner
O42 - Logiciel: SweetIM Toolbar for Internet Explorer 4.3 - (.SweetIM Technologies Ltd..) [HKLM][64Bits] -- {047B9A6A-21E7-45CF-8825-0A061EEF9B23}
[HKCU\Software\SweetIM]
[HKLM\Software\SearchCore for Browsers] => Infection PUP (Adware.SearchCore)
[HKLM\Software\Wow6432Node\SweetIM]
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Funmoods) - http://www.google.com
[MD5.81F9B006EBBC98B1EB1506AA69E896C4] [SPRF][20/08/2012] (.Yontoo LLC - Installer.) -- C:\Users\Linda\AppData\Local\Temp\YontooSetup-S.exe [1055696]
[MD5.C2EA7A5A768E795CE0F86F7CEAABA331] [SPRF][10/10/2011] (.Iminent - IMinent bootstrapper.) -- C:\Users\Linda\Desktop\Bootstrapper_0-uvdhqmaP_.exe [1929192]
O87 - FAEL: "{EFB58973-03B3-4871-8556-1AA9FD674409}" |In - Public - P6 - TRUE | .(...) -- C:\Users\Linda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q647US8B\SweetImSetup[1].exe (.not file.)
O87 - FAEL: "{A02AE10C-10AC-4EF5-BE51-389C3317BE36}" |In - Public - P17 - TRUE | .(...) -- C:\Users\Linda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q647US8B\SweetImSetup[1].exe (.not file.)
O87 - FAEL: "{82359504-34F2-4363-9CE1-E7FD4B8BA2E1}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe (.not file.)
O87 - FAEL: "{3F1BA790-7A98-41C0-9690-286B5C5CC83A}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe (.not file.)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7FFA128C2B0FF414D805FC5627883401] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Classes\Installer\Features\A6A9B7407E12FC548852A060E1FEB932] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Classes\Installer\Products\A6A9B7407E12FC548852A060E1FEB932] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A6A9B7407E12FC548852A060E1FEB932] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Wow6432Node\Classes\Installer\Features\A6A9B7407E12FC548852A060E1FEB932] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Wow6432Node\Classes\Installer\Products\A6A9B7407E12FC548852A060E1FEB932] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9] => Infection BT (Adware.MyWebSearch)
[HKCU\Software\SweetIM]
[HKLM\Software\Wow6432Node\SweetIM]
[HKLM\Software\Wow6432Node\Microsoft\Tracing\Searchqu Toolbar uninstall_RASAPI32]
[HKLM\Software\Wow6432Node\Microsoft\Tracing\Searchqu Toolbar uninstall_RASMANCS]
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{047B9A6A-21E7-45CF-8825-0A061EEF9B23}] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75D5168E5E176C24981B4E5DBD991078] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8724E58E6C7D00C48A0D4F3345EB2C26] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB676B0E1B9EFA049B9F7DDDA9645734] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B31BBB0B825EDEF45AB0FE7099C68C81] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B471D8D7319336B4CA89374ED0D7B806] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC30043663AA2CA4DA1DAA9CA5FDCC75] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1C820A74ED67374BA048B52CB3C3804] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FDC83385E6C239F4C876A77A37DF581D] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\427EA997C413D1D47907CBFC7B2DB432] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F754C503375A13344B22388E18DFE87E] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\69D6A6B2ED56AF24EA6335EAD6E91CA4] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EDC790504E1834DBC20C9A04328FD2] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97C3D0F82E712E241A2F969F45E3351C] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9E7F556BF224D804D96A96F0F6344789] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BF4F885EDEE45644EB1E0C99E0162399] => Infection PUP (PUP.SweetIM)
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE21F3FD57B244142880EF15A165A156] => Infection PUP (PUP.SweetIM)
C:\Users\Linda\AppData\Local\Temp\YontooSetup-S.exe
C:\Users\Linda\AppData\Local\Temp\datamngrUI.exe.561494
O90 - PUC: "2BC4C58B253B8DB418C8CB3E35951970" . (.SweetIM for Messenger 3.6.) -- C:\Windows\Installer\{B85C4CB2-B352-4BD8-818C-BCE353599107}\ARPPRODUCTICON.exe
O90 - PUC: "A6A9B7407E12FC548852A060E1FEB932" . (.SweetIM Toolbar for Internet Explorer 4.3.) -- C:\Windows\Installer\{047B9A6A-21E7-45CF-8825-0A061EEF9B23}\ARPPRODUCTICON.exe
[MD5.00000000000000000000000000000000] [APT] [{88B1C42F-02F1-4BA3-947B-4C11A9570E76}] (...) -- C:\Users\Linda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q647US8B\tabled32[1].exe (.not file.)
O42 - Logiciel: Mystery P.I. - The Vegas Heist - (.WildTangent.) [HKLM][64Bits] -- WT082414 => WildTangent Game
O43 - CFD: 05/01/2013 - 23:14:34 - [4,372] ----D C:\Program Files (x86)\Spybot - Search & Destroy
O43 - CFD: 05/01/2013 - 23:14:32 - [0,098] ----D C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 07/08/2012 - 11:18:05 - [0] ----D C:\Users\Linda\AppData\Local\{0087BB43-6DB4-4138-8FB4-01254424279E}
O43 - CFD: 29/06/2012 - 17:15:22 - [0] ----D C:\Users\Linda\AppData\Local\{06540182-6B02-4100-81B4-0F216691E8D2}
O43 - CFD: 23/07/2012 - 07:07:53 - [0] ----D C:\Users\Linda\AppData\Local\{09117302-A4AF-4912-B423-7AEF71955FEA}
O43 - CFD: 01/08/2012 - 22:01:37 - [0] ----D C:\Users\Linda\AppData\Local\{0C43F2A2-3D56-4560-9912-88EE72406821}
O43 - CFD: 10/09/2012 - 20:27:55 - [0] ----D C:\Users\Linda\AppData\Local\{10FA393F-4CEA-4CA5-9A6D-F94A1534DA36}
O43 - CFD: 02/07/2012 - 17:06:18 - [0] ----D C:\Users\Linda\AppData\Local\{11FBDD8D-BAE3-43C2-AF5F-1D95B1057652}
O43 - CFD: 29/06/2012 - 17:15:11 - [0] ----D C:\Users\Linda\AppData\Local\{1A18560A-2B11-4DE9-BC2E-A5D3EE57B471}
O43 - CFD: 12/07/2012 - 18:36:37 - [0] ----D C:\Users\Linda\AppData\Local\{1A413B27-6AE8-4008-926D-75A5AC8E4DA4}
O43 - CFD: 14/07/2012 - 05:22:01 - [0] ----D C:\Users\Linda\AppData\Local\{1CB2938B-7EAE-40C5-AF88-125484F9D9C5}
O43 - CFD: 30/06/2012 - 07:53:16 - [0] ----D C:\Users\Linda\AppData\Local\{1F933F49-6B7E-469F-9FC1-0CAAA0300ED5}
O43 - CFD: 10/07/2012 - 05:39:17 - [0] ----D C:\Users\Linda\AppData\Local\{21A3E725-EF73-47CF-A85E-BA341E37979A}
O43 - CFD: 13/07/2012 - 14:10:45 - [0] ----D C:\Users\Linda\AppData\Local\{239925BC-F824-4005-942A-1535FEEFBE54}
O43 - CFD: 20/07/2012 - 11:31:26 - [0] ----D C:\Users\Linda\AppData\Local\{242C2D29-5BF6-43E8-A932-CBE8A4004EF5}
O43 - CFD: 22/06/2012 - 20:27:39 - [0] ----D C:\Users\Linda\AppData\Local\{2637F8AC-1759-4001-B48B-F2257E71EE4F}
O43 - CFD: 29/06/2012 - 17:15:33 - [0] ----D C:\Users\Linda\AppData\Local\{32300952-8937-4D63-8FCA-F5CC5CED1B96}
O43 - CFD: 24/07/2012 - 20:47:53 - [0] ----D C:\Users\Linda\AppData\Local\{39116B52-0112-4F8A-AAA0-0A1D6DC4ABAF}
O43 - CFD: 23/07/2012 - 22:37:14 - [0] ----D C:\Users\Linda\AppData\Local\{3A13D8B9-8ADA-4067-A816-02B4EDC81303}
O43 - CFD: 18/09/2012 - 18:17:30 - [0] ----D C:\Users\Linda\AppData\Local\{3EA20B2C-67A2-4ABE-BCB9-A9AD2E15B363}
O43 - CFD: 14/07/2012 - 05:21:50 - [0] ----D C:\Users\Linda\AppData\Local\{3ED3B9DA-E2EA-4776-AE2B-2CEA2A99F5C2}
O43 - CFD: 01/07/2012 - 21:02:21 - [0] ----D C:\Users\Linda\AppData\Local\{442C25CA-8AB0-483A-A7FA-F729C5D404B7}
O43 - CFD: 02/07/2012 - 17:06:30 - [0] ----D C:\Users\Linda\AppData\Local\{44792791-308E-441D-9C59-388DB67595E4}
O43 - CFD: 22/06/2012 - 20:27:49 - [0] ----D C:\Users\Linda\AppData\Local\{4574C738-315A-412B-BFCC-036E28099A12}
O43 - CFD: 21/06/2012 - 21:46:43 - [0] ----D C:\Users\Linda\AppData\Local\{4E86DAA6-A8D2-4C82-A93F-49BF4BA661A8}
O43 - CFD: 30/06/2012 - 07:53:42 - [0] ----D C:\Users\Linda\AppData\Local\{4F6DEED4-7D65-416B-BBFD-88E2F1D58BAB}
O43 - CFD: 01/07/2012 - 08:34:08 - [0] ----D C:\Users\Linda\AppData\Local\{53241E69-2F2C-4754-B415-B64798BA72F1}
O43 - CFD: 14/07/2012 - 05:22:11 - [0] ----D C:\Users\Linda\AppData\Local\{5F5E7E98-42EE-4A36-92EF-37B163D5119A}
O43 - CFD: 01/07/2012 - 21:02:10 - [0] ----D C:\Users\Linda\AppData\Local\{60BA4E07-5F14-443A-B218-BF0678DC1EF3}
O43 - CFD: 22/08/2012 - 23:49:40 - [0] ----D C:\Users\Linda\AppData\Local\{635C8A54-D846-4897-A1CD-495D3AA76E8A}
O43 - CFD: 20/07/2012 - 11:31:13 - [0] ----D C:\Users\Linda\AppData\Local\{68CDE2F6-656C-4575-B995-5D9C447CBDDE}
O43 - CFD: 16/09/2012 - 19:50:57 - [0] ----D C:\Users\Linda\AppData\Local\{68FE4D04-5814-42FD-9DFF-C83FB76FF69F}
O43 - CFD: 09/08/2012 - 01:11:46 - [0] ----D C:\Users\Linda\AppData\Local\{6A224761-BB3F-4EBD-8403-089BDBEA017D}
O43 - CFD: 13/07/2012 - 14:10:47 - [0] ----D C:\Users\Linda\AppData\Local\{6FDE0DB4-1685-4930-B956-488ADBFFE899}
O43 - CFD: 30/06/2012 - 07:53:04 - [0] ----D C:\Users\Linda\AppData\Local\{72DD68AD-E56C-4CD7-BDAA-C03795F631D3}
O43 - CFD: 23/06/2012 - 11:33:19 - [0] ----D C:\Users\Linda\AppData\Local\{75422799-3A25-4924-86D3-898523824FBF}
O43 - CFD: 03/07/2012 - 17:12:00 - [0] ----D C:\Users\Linda\AppData\Local\{7F5880FE-8B2F-4522-8E82-68D0695B141B}
O43 - CFD: 30/06/2012 - 20:28:57 - [0] ----D C:\Users\Linda\AppData\Local\{7FB431F6-6945-47E2-91F8-47DFB3088D63}
O43 - CFD: 01/10/2012 - 20:16:19 - [0] ----D C:\Users\Linda\AppData\Local\{81EE41F3-D1CF-420E-96C5-5DB29B6A8D52}
O43 - CFD: 07/08/2012 - 11:18:16 - [0] ----D C:\Users\Linda\AppData\Local\{850E150F-DF77-49F5-82E1-DA20EDF634BC}
O43 - CFD: 24/06/2012 - 12:24:54 - [0] ----D C:\Users\Linda\AppData\Local\{8ACE6ACB-99CF-4894-8F67-475EA9CA81B7}
O43 - CFD: 21/06/2012 - 22:48:43 - [0] ----D C:\Users\Linda\AppData\Local\{8FCA564D-B10F-4D94-B0F8-C20C7D5A72EA}
O43 - CFD: 24/06/2012 - 12:25:05 - [0] ----D C:\Users\Linda\AppData\Local\{90DC60D4-179F-4566-A9F3-4538FD4AA11C}
O43 - CFD: 05/08/2012 - 11:13:34 - [0] ----D C:\Users\Linda\AppData\Local\{90F5C230-FCAC-4F9C-B1BA-F3F533AA6456}
O43 - CFD: 22/08/2012 - 11:48:52 - [0] ----D C:\Users\Linda\AppData\Local\{96B7E136-3631-4A5D-9866-CA74FCEB0AB2}
O43 - CFD: 18/09/2012 - 06:16:49 - [0] ----D C:\Users\Linda\AppData\Local\{98D7EA00-F94C-4C30-A401-EBDF7791DFD6}
O43 - CFD: 30/06/2012 - 20:29:10 - [0] ----D C:\Users\Linda\AppData\Local\{9AF2053F-4C1C-4A73-B2B5-EF1C593A7EC6}
O43 - CFD: 31/07/2012 - 01:02:54 - [0] ----D C:\Users\Linda\AppData\Local\{A222F6FB-0451-45D4-B74E-B5128467BBFB}
O43 - CFD: 16/09/2012 - 05:05:29 - [0] ----D C:\Users\Linda\AppData\Local\{A66041CD-C385-4DA1-8985-AD7E9F53C5E5}
O43 - CFD: 21/06/2012 - 22:48:09 - [0] ----D C:\Users\Linda\AppData\Local\{ABD4D4C6-CE10-4318-892F-972D83898381}
O43 - CFD: 05/08/2012 - 11:13:20 - [0] ----D C:\Users\Linda\AppData\Local\{AD4BAC13-FDE8-4B44-99B9-AD46970F71AB}
O43 - CFD: 12/07/2012 - 18:36:22 - [0] ----D C:\Users\Linda\AppData\Local\{B15CD0E4-C746-4CB4-8B69-B38015357337}
O43 - CFD: 26/06/2012 - 12:18:08 - [0] ----D C:\Users\Linda\AppData\Local\{B385D0D6-ECF7-4362-9CB8-273FD12CFFFA}
O43 - CFD: 13/07/2012 - 14:09:01 - [0] ----D C:\Users\Linda\AppData\Local\{B3BD1B84-E4FD-47F5-9F04-0D9219E8D1E4}
O43 - CFD: 17/09/2012 - 18:16:00 - [0] ----D C:\Users\Linda\AppData\Local\{B4A67893-1110-4708-A29B-6DE6EECF03D6}
O43 - CFD: 25/06/2012 - 05:59:37 - [0] ----D C:\Users\Linda\AppData\Local\{B60F9B66-91A1-476C-9FC6-C573ACC8E9EA}
O43 - CFD: 02/07/2012 - 17:04:08 - [0] ----D C:\Users\Linda\AppData\Local\{B768DE8B-53C2-4264-A0C4-9E688BDA37BE}
O43 - CFD: 11/07/2012 - 02:58:31 - [0] ----D C:\Users\Linda\AppData\Local\{BBE102CD-1FE6-4771-9518-946F33BA1DD7}
O43 - CFD: 27/06/2012 - 00:18:56 - [0] ----D C:\Users\Linda\AppData\Local\{BF36F9F9-CB88-4F9E-8DC4-597B786774AC}
O43 - CFD: 23/06/2012 - 11:33:32 - [0] ----D C:\Users\Linda\AppData\Local\{C0A06668-0F87-4A66-9948-4C435AAE0FA5}
O43 - CFD: 25/06/2012 - 05:59:27 - [0] ----D C:\Users\Linda\AppData\Local\{C0D538A4-401A-47F1-9A3C-77F375A19145}
O43 - CFD: 03/07/2012 - 17:11:45 - [0] ----D C:\Users\Linda\AppData\Local\{C0E0CD0E-F6CC-481E-A502-86EC131767A4}
O43 - CFD: 01/08/2012 - 22:02:48 - [0] ----D C:\Users\Linda\AppData\Local\{C140EBA7-CE1E-4A4C-889C-ED53E5CD0334}
O43 - CFD: 01/10/2012 - 01:30:55 - [0] ----D C:\Users\Linda\AppData\Local\{C2C27BAF-9A20-42AF-9AEF-E3C8A059BDF3}
O43 - CFD: 28/07/2012 - 01:00:27 - [0] ----D C:\Users\Linda\AppData\Local\{C69E6A6E-84B5-46FB-A6BF-D3586E9CF55F}
O43 - CFD: 13/07/2012 - 14:09:23 - [0] ----D C:\Users\Linda\AppData\Local\{CBAAD8D7-5662-439C-8F3B-C02FF6F728F1}
O43 - CFD: 28/07/2012 - 01:00:41 - [0] ----D C:\Users\Linda\AppData\Local\{CD182833-A5C9-4B60-8CB3-522B71740568}
O43 - CFD: 14/07/2012 - 05:21:40 - [0] ----D C:\Users\Linda\AppData\Local\{D0E88F05-DA89-4734-9F3F-05E3DD0442E4}
O43 - CFD: 24/09/2012 - 21:04:18 - [0] ----D C:\Users\Linda\AppData\Local\{D34F98B4-3C6C-4241-9C59-EE3FDA4C3959}
O43 - CFD: 28/09/2012 - 17:43:58 - [0] ----D C:\Users\Linda\AppData\Local\{D46E66E4-634C-4787-BED0-4AEF9F61F1C9}
O43 - CFD: 10/07/2012 - 05:39:29 - [0] ----D C:\Users\Linda\AppData\Local\{D64DAE1B-69C9-430D-BAAF-FF29D8CC6874}
O43 - CFD: 09/08/2012 - 01:11:57 - [0] ----D C:\Users\Linda\AppData\Local\{D78C9A2C-D343-4C8C-8F6A-D01193DA0C89}
O43 - CFD: 24/07/2012 - 20:48:05 - [0] ----D C:\Users\Linda\AppData\Local\{D7E35924-E4F8-4BA9-A06F-96B2B5A05D1F}
O43 - CFD: 01/07/2012 - 08:34:47 - [0] ----D C:\Users\Linda\AppData\Local\{DA850FD2-B052-4721-9A91-AA257D89D0DB}
O43 - CFD: 27/06/2012 - 00:18:45 - [0] ----D C:\Users\Linda\AppData\Local\{DB523FF3-14B6-4C66-9E16-88464B18AE07}
O43 - CFD: 30/06/2012 - 07:53:29 - [0] ----D C:\Users\Linda\AppData\Local\{E0E41E89-F746-4175-ADD1-F1A1D5D07250}
O43 - CFD: 31/07/2012 - 01:02:43 - [0] ----D C:\Users\Linda\AppData\Local\{E4F3D684-B925-4A38-8C36-DD42E4013C34}
O43 - CFD: 30/08/2012 - 20:15:28 - [0] ----D C:\Users\Linda\AppData\Local\{E83EEEBE-36E7-4B83-8036-F6300890B1F7}
O43 - CFD: 27/06/2012 - 00:18:33 - [0] ----D C:\Users\Linda\AppData\Local\{E881B8C1-9818-4FA9-9F67-1C33331858D5}
O43 - CFD: 19/09/2012 - 22:38:21 - [0] ----D C:\Users\Linda\AppData\Local\{E8C39E61-8095-4D45-AFCC-B6E98C15B415}
O43 - CFD: 23/07/2012 - 22:38:58 - [0] ----D C:\Users\Linda\AppData\Local\{E984109E-594F-469E-A62B-487A820EDF1E}
O43 - CFD: 23/07/2012 - 07:07:42 - [0] ----D C:\Users\Linda\AppData\Local\{EB19DB42-93E8-4276-9170-C6E25AA20B6D}
O43 - CFD: 11/07/2012 - 02:58:09 - [0] ----D C:\Users\Linda\AppData\Local\{F0E322B8-BF06-40FB-A638-D056FD00A83C}
[MD5.9738475FF9A6A9ADDC1BE56FB55CD3B4] [SPRF][16/02/2013] (.Ask - Wrapper Application.) -- C:\Users\Linda\AppData\Local\Temp\setup.exe [4163720]
[MD5.0BE46620F6C1A3B604AB4E968503213D] [SPRF][21/05/2010] (...) -- C:\Program Files (x86)\setup.exe [460088] => InstallShield Corporation or Infection Rogue
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094] => Macromedia/Dreamweaver or PUP.SweetIM
[MD5.00000000000000000000000000000000] [APT] [Scheduled Update for Ask Toolbar] (...) -- C:\Program Files (x86)\Ask.com\UpdateTask.exe (.not file.) => Toolbar.Ask
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F} => Toolbar.Google
[HKCU\Software\YahooPartnerToolbar] => Toolbar.Yahoo
O69 - SBI: SearchScopes [HKCU] {9AEF7BCC-7320-4443-8F0D-3C44BCA6D8AA} - (Ask Search) - http://websearch.ask.com
[MD5.CE755676AE6D27A1EFEEFB0F3C70A929] [SPRF][18/01/2013] (.Ask.com - AskStub Application.) -- C:\Users\Linda\AppData\Local\Temp\ApnStub.exe [358600]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] => Toolbar.Skype
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] => Toolbar.Skype
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] => Toolbar.Skype
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] => Toolbar.Skype
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] => Toolbar.Skype
[HKLM\Software\Classes\Installer\Features\521D59DC299285843BFEF5F65BF2AB6D] => Toolbar.Skype
[HKLM\Software\Classes\Installer\Products\521D59DC299285843BFEF5F65BF2AB6D] => Toolbar.Skype
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\521D59DC299285843BFEF5F65BF2AB6D] => Toolbar.Skype
[HKLM\Software\Wow6432Node\Classes\Installer\Features\521D59DC299285843BFEF5F65BF2AB6D] => Toolbar.Skype
[HKLM\Software\Wow6432Node\Classes\Installer\Products\521D59DC299285843BFEF5F65BF2AB6D] => Toolbar.Skype
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2] => Toolbar.Ask
FirewallRaz
EmptyFlash
Emptytemp
- Dans ZHPFix clic sur l'îcone : "coller le presse-papier"
- Puis Clic sur "GO"
- Confirmes les nettoyages des données en cliquant sur "Oui"
Un rapport sera créé sur ton bureau ZHPFixReport héberges le rapports sur http://www.cjoint.com et postes le sur le forum
-
Raptor14 - PC-Infopraticien
- Messages: 2207
- Inscription: 13 Juin 2011 19:26
21 messages
• Page 1 sur 2 • - 1, 2
Sujets similaires
Aide suite à une analyse FRST contre un virus vbc.exeBonjour tout le monde, J'ai récemment constaté que j'étais infecté par un virus lié à vbc.exe, ce qui entraîne une utilisation du CPU allant jusqu'à 30% voire 40%. J'ai donc effectué mes analyses FRST et voici les rapports obtenus : - FRST.txt: https://pjjoint.malekal.com/files.php?id=FRST_20240315_ ...
Réponses: 3
[Réglé] Petite vérification virusSalut Heravles ,Merci et bonne année a toi également et aussi a toute ta famille.Oui désolé j'ai pas fais attention quand j'ai téléchargé le logiciel alors que je sais très bien qu'il fallait le faire sur le bureau. Je ferais plus attention la prochaine fois.Nickel si mon Pc et pas infecté.Je t'envo ...
Réponses: 5
22h2 bogues tpm et centre de sécurité: virus?Salut,J'ai refait iso et formaté override le disque. Un reset électrique du PC.Je suis sur W11 PRO 64 v22621.525 (même bogue sur la première iso 22h2 fournie par Microsoft en 22621.382).WU est désactivé avant connexion a internet via gpedit.msc.J'ai installé à neuf en compte local. J'installe sans i ...
Réponses: 17
anti virus gratuitBonjour,Avez-vous un anti virus nettoyeur gratuit en français a me conseiller pour mon j3 2016 samsung.Cordialement.
Réponses: 3
Des VIRUS (encore ?)Bonjour Bernard,merci pour ton aide, j'ai donc supprimé les logiciels adobe que j'avais cracké,voici les nouvelles analyses:Addition : https://cjoint.com/c/LKduLSQQmLnFRST : https://cjoint.com/c/LKduNhgM1vnShortcut : https://cjoint.com/c/LKduNycdWwnCordialement
Réponses: 7
[Réglé] Anti virusBonjour j'ai racheter un pc portable, je voudrais savoir si il existe des activirus gratuits, de bonne qualité merci
Réponses: 7
[Réglé]Multiples Virus Sur ordi Hacktool,coinminerBonjour, j'espère que vous allez bien en ces temps difficiles.Je suis de nouveau venu chez mes parents pour les fêtes et l'ordinateur de mon père est de nouveau infectée par des cochonneries que je n'arrive pas enlever moi même, c'est pour cela que je requiert votre aide à nouveau.Je fournis les fic ...
Réponses: 26
Qui est en ligne
Utilisateurs parcourant ce forum: Bing [Bot] et 9 invités
|
.: Nous contacter :: Flux RSS :: Données personnelles :. |