Publicité
Publicité
Format du document : text/plain
Prévisualisation
Rapport de ZHPDiag v2013.6.10.15 par Nicolas Coolman, Update du 10/06/2013
Run by Lu'cr�ut at 10/06/2013 16:59:22
WebSite: http://nicolascoolman.webs.com
State :
WhiteList : Enable
High Elevated Privileges : OK
UAC : Activate by user
---\\ Web Browser
MSIE: Internet Explorer v10.0.9200.16576
MFIE: Mozilla Firefox 21.0 (Defaut)
GCIE: Google Chrome v27.0.1453.110
---\\ Windows Product Information
~ Langage: Fran�ais
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 7QJB7
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System Protection
avast! Internet Security v8.0.1489.0
Windows Defender W7
---\\ System Optimizer
---\\ Peer To Peer (P2P)
Pando Media Booster v2.3.5.6
---\\ Software Update
Adobe Flash Player 11 Plugin
Adobe Reader XI - Fran�ais
---\\ System Information
~ Processor: Intel64 Family 6 Model 37 Stepping 2, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3958 MB (52% free)
System Restore: Activ� (Enable)
System drive C: has 244 GB (53%) free of 454 GB
---\\ Logged in mode
~ Computer Name: LUCR�UT-PC
~ User Name: Lu'cr�ut
~ All Users Names: Lu'cr�ut, HomeGroupUser$, Administrateur,
~ Unselected Option: None
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Lu'cr�ut\AppData\Roaming\
~ %Desktop% : C:\Users\Lu'cr�ut\Desktop\
~ %Favorites% : C:\Users\Lu'cr�ut\Favorites\
~ %LocalAppData% : C:\Users\Lu'cr�ut\AppData\Local\
~ %StartMenu% : C:\Users\Lu'cr�ut\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 244 Go of 454 Go)
D:\ CD-ROM drive (Not Inserted)
E:\ CD-ROM drive (Free 0 Go of 0 Go)
F:\ Floppy drive, Flash card reader, USB Key (Free 2 Go of 2 Go)
Q:\ Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : Out Of Date
~ Security Center: 34 Legitimates Filtered in 00mn 00s
---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.27A9000C534AA9BADC9EE74940F50C6D] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.05/04/2013 - 07:52:14.) -- C:\Windows\System32\wininet.dll [2242048]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d�ouverture de session Windows.) (.20/11/2010 - 14:25:30.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Biblioth�que de licences.) (.20/11/2010 - 14:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:24.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.12/04/2013 - 15:45:08.) -- C:\Windows\system32\Drivers\ntfs.sys [1656680]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parall�le.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:56.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes: Scanned in 00mn 00s
---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 2/2198
~ Mes musiques (My Musics) : 22/7238
~ Mes Videos (My Videos) : 2/243
~ Mes Favoris (My Favorites) : 1/33
~ Mes Documents (My Documents) : 2/4866
~ Mon Bureau (My Desktop) : 1/68905
~ Menu demarrer (Programs) : 1/30
~ Hidden Files: Scanned in 01mn 06s
---\\ Processus lanc�s
[MD5.ED74B57ECFFD503BB7AC51BD87332DC7] - (.Pas de propri�taire - MotoHelperAgent.) -- C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe [673648] [PID.2740]
[MD5.F6573840989C4E8ED2EBF8B0644CF500] - (.SFR - Propri�t�s de la connexion SFR.) -- C:\Program Files (x86)\SFR\Kit\9props.exe [959880] [PID.4364]
[MD5.76BEBE0FDE1DDDB9B70BEF85B40DDE70] - (.Spotify Ltd - Spotify.) -- C:\Users\Lu'cr�ut\AppData\Roaming\Spotify\spotify.exe [4573184] [PID.4404]
[MD5.F10ADB851EF1BD5144FE6D1691CD7576] - (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\Lu'cr�ut\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1105408] [PID.4448]
[MD5.DD7DAE4E8F169D1FF4511FC292FF6FF6] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696] [PID.4596]
[MD5.FD2141BE38B0B1F64A302BCBB9882019] - (.NewTech Infosystems, Inc. - Packard Bell MyBackup.) -- C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe [263936] [PID.4632]
[MD5.6F721EDA271CE5A421C7A44ECC8F0F4D] - (.Dritek System Inc. - Launch Manager Keyboard Application.) -- C:\Program Files (x86)\Launch Manager\LManager.exe [1287760] [PID.4668]
[MD5.CEEF774E8392853E6A016CAC0F8F0D09] - (.Pas de propri�taire - LiteOn.) -- C:\Program Files (x86)\Video Web Camera\VideoWebCamera.exe [4845640] [PID.4760]
[MD5.A58E05767687E1E636D160ECEA9BC8ED] - (.Pas de propri�taire - DivX Update.) -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1226608] [PID.4804]
[MD5.57D8C4ED26DFD7EF0E2CB196FB8BFB54] - (.DivX, LLC - DivX Download Manager Service.) -- C:\Program Files (x86)\DivX\DivX Plus Web Player\DDMService.exe [63360] [PID.4868]
[MD5.27E8BBE87A4862AE84B0FC4CC857B1A1] - (.Edimax Technology Co., Ltd. - MFP Agent.) -- C:\Program Files (x86)\MFP Server\App\Common\MFPAgent.exe [741376] [PID.4960]
[MD5.5A1C7A46972FB2BB28030EF91319C4FB] - (.Dritek System Inc. - Launch Manager Worker.) -- C:\Program Files (x86)\Launch Manager\LMworker.exe [268368] [PID.5004]
[MD5.B77081F8221968C7DAB794B0BA55C43E] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254896] [PID.5036]
[MD5.53D96678FB89F056D5285101481297D9] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [421160] [PID.5056]
[MD5.3F11B20D12D89365D7721BDC860CE5F0] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [4858968] [PID.5072]
[MD5.11E8D8272FDBE213ADE3DAD91427CE35] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe [11322880] [PID.2844]
[MD5.2337EC951C4AF6E1AF65D10BD9615BEB] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin [11314688] [PID.4420]
[MD5.95110A1C5A1D228AC1DDF6AB67D00BEB] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [920472] [PID.2212]
[MD5.3A32FAFEEE290E6E6C058DE59EC4EC88] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [7478272] [PID.3428]
[MD5.28D6701C710AD7BA3CB95E75F8F1A9AA] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808] [PID.1212]
[MD5.C2009C6A452BD07B30D773349589B762] - (.AVAST Software - avast! firewall service.) -- C:\Program Files\AVAST Software\Avast\afwServ.exe [137960] [PID.1296]
[MD5.B1EA9681502EE57F87DB71D726288A5B] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65192] [PID.1784]
[MD5.20F6F19FE9E753F2780DC2FA083AD597] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [37664] [PID.1808]
[MD5.F2060A34C8A75BC24A9222EB4F8C07BD] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe [349472] [PID.1856]
[MD5.EDE77ED190F62AE4508AE7C04B4DB5E8] - (.Nero AG - NService Application.) -- C:\Program Files (x86)\Motorola Media Link\Lite\NServiceEntry.exe [87368] [PID.1884]
[MD5.673971B9C0AC52512700FE69D31FF3EC] - (.Dritek System Inc. - Dritek WMI Service.) -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe [310352] [PID.1952]
[MD5.816FD5A6F3C2F3D600900096632FC60E] - (.Acer Incorporated - Global Registration Service.) -- C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe [1150496] [PID.2832]
[MD5.1E2F802846EB944E0333EFEE7C9532A8] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [268824] [PID.2860]
[MD5.FA073BF55E99F21CFE3AFB023CFD81DC] - (.Pas de propri�taire - MotoHelper Service.) -- C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperService.exe [223088] [PID.2892]
[MD5.E556FE51AF531E1B75D6198929D8A4AF] - (.NewTech Infosystems, Inc. - Backup Manager Module.) -- C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe [255744] [PID.2948]
[MD5.C3CDDD18F43D44AB713CF8C4916F7696] - (.Microsoft Corporation - Microsoft Application Virtualization Virtua.) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [219496] [PID.2184]
[MD5.70DDE3A86DBEB1D6C3C30AD687B1877A] - (.Acer - Acer Update Service.) -- C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [240160] [PID.1504]
[MD5.13693B6354DD6E72DC5131DA7D764B90] - (.Microsoft Corporation - Microsoft Application Virtualization Client.) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [508776] [PID.2976]
[MD5.48362E5DB5CB2C000C514EE1F3890ACD] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [13336] [PID.3088]
[MD5.72794D112CBAFF3BC0C29BF7350D4741] - (.Microsoft Corporation - Microsoft Office Client Virtualization Serv.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.exe [822624] [PID.3472]
[MD5.AF905F4966CFC8B973623AB150CD4B2B] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2320920] [PID.2804]
~ Processes Running: Scanned in 00mn 02s
---\\ Google Chrome, D�marrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Lu'cr�ut\AppData\Local\Google\Chrome\User Data\Default\Preferences
G2 - GCE: Preference [User Data\Default] [gaiilaahiahdejapggenmdmafpmbipje] DealPly v.3.0.7.2 (D�sactiv�) =>PUP.DealPly
G2 - GCE: Preference [User Data\Default] [mpfapcdfbbledbojijcbcclmlieaoogk] I Want This v.1.17.49 (D�sactiv�)
~ Google Browser: 16 Legitimates Filtered in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Lu'cr�ut\AppData\Roaming\Mozilla\Firefox\Profiles\rg1c8rl0.default\prefs.js
C:\Users\Lu'cr�ut\AppData\Roaming\Mozilla\Firefox\Profiles\rg1c8rl0.default\user.js
M3 - MFPP: Plugins - [Lu'cr�ut] -- C:\Users\Lu'cr�ut\AppData\Roaming\Mozilla\Firefox\Profiles\rg1c8rl0.default\searchplugins\conduit.xml
M3 - MFPP: Plugins - [Lu'cr�ut] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\babylon.xml =>Toolbar.Babylon
M2 - MFEP: prefs.js [Lu'cr�ut - rg1c8rl0.default\engine@conduit.com] [] Conduit Engine v3.3.3.2 (..)
M2 - MFEP: prefs.js [Lu'cr�ut - rg1c8rl0.default\{4daac69c-cba7-45e2-9bc8-1044483d3352}] [] ST_France Community Toolbar v3.18.0.7 (..)
M2 - MFEP: prefs.js [Lu'cr�ut - rg1c8rl0.default\{59994074-c06d-4a75-9768-49e5a8c21264}] [] Messenger Plus Live France Community Toolbar v3.18.0.7 (..)
~ Firefox Browser: 28 Legitimates Filtered in 00mn 00s
---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R3 - URLSearchHook: Messenger Plus Live France Toolbar [64Bits] - {59994074-c06d-4a75-9768-49e5a8c21264} . (.Conduit Ltd. - Conduit Toolbar.) (5, 5, 0, 10) -- C:\Program Files (x86)\Messenger_Plus_Live_France\tbMess.dll =>Toolbar.Conduit
R3 - URLSearchHook: Softonic_France Toolbar [64Bits] - {4daac69c-cba7-45e2-9bc8-1044483d3352} . (.Conduit Ltd. - Conduit Toolbar.) (6.3.2.0) -- C:\Program Files (x86)\Softonic_France\prxtbSof0.dll =>Toolbar.Conduit
~ IE Browser: 22 Legitimates Filtered in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;192.168.*.*
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:49697
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: CrossriderApp0002258 [64Bits] - {11111111-1111-1111-1111-110011221158} . (.215 Apps - I Want This BHO.) -- C:\Program Files (x86)\I Want This\I Want This.dll =>PUP.SpecialSavings
O2 - BHO: Conduit Engine [64Bits] - {30F9B915-B755-4826-820B-08FBA6BD249D} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll =>Toolbar.Conduit
O2 - BHO: Softonic_France [64Bits] - {4daac69c-cba7-45e2-9bc8-1044483d3352} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\Softonic_France\prxtbSof0.dll =>Toolbar.Conduit
O2 - BHO: Messenger Plus Live France Toolbar [64Bits] - {59994074-c06d-4a75-9768-49e5a8c21264} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\Messenger_Plus_Live_France\tbMess.dll =>Toolbar.Conduit
O2 - BHO: DealPly [64Bits] - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} . (.DealPly Technologies Ltd - DealPly for Internet Explorer.) -- C:\Program Files (x86)\DealPly\DealPlyIE.dll =>PUP.DealPly
~ BHO: 17 Legitimates Filtered in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Google Toolbar [64Bits] - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: (no name) [64Bits] - [HKLM]{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Cl� orpheline
~ Toolbar: Scanned in 00mn 00s
---\\ Applications d�marr�es par registre & par dossier (O4)
O4 - HKLM\..\Run: [NvCplDaemon] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\Windows\system32\NvCpl.dll
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O4 - HKLM\..\Run: [Acer ePower Management] . (.Acer Incorporated - ePowerTray.) -- C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKCU\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\Lu'cr�ut\AppData\Local\Facebook\Update\FacebookUpdate.exe
O4 - HKCU\..\Run: [EPSON SX430 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHAE.exe
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Connexion SFR 9props.exe] . (.SFR - Propri�t�s de la connexion SFR.) -- C:\Program Files (x86)\SFR\Kit\9props.exe
O4 - HKCU\..\Run: [EPSON Stylus SX400 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIEGE.exe
O4 - HKCU\..\Run: [Spotify] . (.Spotify Ltd - Spotify.) -- C:\Users\Lu'cr�ut\AppData\Roaming\Spotify\Spotify.exe
O4 - HKCU\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\Lu'cr�ut\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [IAStorIcon] . (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Wow6432Node\Run: [BackupManagerTray] . (.NewTech Infosystems, Inc. - Packard Bell MyBackup.) -- C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe
O4 - HKLM\..\Wow6432Node\Run: [LManager] . (.Dritek System Inc. - Launch Manager Keyboard Application.) -- C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Wow6432Node\Run: [DivXUpdate] . (.Pas de propri�taire - DivX Update.) -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
O4 - HKLM\..\Wow6432Node\Run: [DivX Download Manager] . (.DivX, LLC - DivX Download Manager Service.) -- C:\Program Files (x86)\DivX\DivX Plus Web Player\DDmService.exe
O4 - HKLM\..\Wow6432Node\Run: [mumservice] C:\Program Files\Motorola\Software Update\mumservice.exe (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [MFP Manager] C:\Program Files (x86)\MFP Server\MFPAgent.exe (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [Server Application] . (.Pas de propri�taire - ServoApp MFC Application.) -- C:\Windows\system32\ServoApp.exe
O4 - HKLM\..\Wow6432Node\Run: [GDI Manager] . (.Edimax Technology Co., Ltd. - MFP Agent.) -- C:\Program Files (x86)\MFP Server\App\Common\MFPAgent.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-21-1214210514-4104578939-908626983-1000\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKUS\S-1-5-21-1214210514-4104578939-908626983-1000\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\Lu'cr�ut\AppData\Local\Facebook\Update\FacebookUpdate.exe
O4 - HKUS\S-1-5-21-1214210514-4104578939-908626983-1000\..\Run: [EPSON SX430 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHAE.exe
O4 - HKUS\S-1-5-21-1214210514-4104578939-908626983-1000\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-21-1214210514-4104578939-908626983-1000\..\Run: [Connexion SFR 9props.exe] . (.SFR - Propri�t�s de la connexion SFR.) -- C:\Program Files (x86)\SFR\Kit\9props.exe
O4 - HKUS\S-1-5-21-1214210514-4104578939-908626983-1000\..\Run: [EPSON Stylus SX400 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIEGE.exe
O4 - HKUS\S-1-5-21-1214210514-4104578939-908626983-1000\..\Run: [Spotify] . (.Spotify Ltd - Spotify.) -- C:\Users\Lu'cr�ut\AppData\Roaming\Spotify\Spotify.exe
O4 - HKUS\S-1-5-21-1214210514-4104578939-908626983-1000\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\Lu'cr�ut\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
~ Application: Scanned in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\TaskBar: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\TaskBar: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\TaskBar: Windows Live Messenger .lnk . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - GS\TaskBar: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Programs: Spotify.lnk . (.Spotify Ltd - Spotify.) -- C:\Users\Lu'cr�ut\AppData\Roaming\Spotify\spotify.exe
O4 - GS\QuickLaunch: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\QuickLaunch: Packard Bell Games.lnk . (.WildTangent, Inc. - GameConsole.) -- C:\Program Files (x86)\Packard Bell Games\Packard Bell Game Console\GameConsole-wt.exe
O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Accessories: Private Character Editor.lnk . (.Microsoft Corporation - �diteur de caract�res priv�s.) -- C:\Windows\system32\eudcedit.exe
O4 - GS\SendTo: AVS Mobile Uploader.lnk . (.Online Media Technologies Ltd. - AVS Mobile Uploader.) -- C:\Program Files (x86)\Common Files\AVSMedia\MobileUploader\AVSMobileUploader.exe
O4 - GS\SendTo: AVS Video Burner.lnk . (.Online Media Technologies Ltd. - AVS Video Burner.) -- C:\Program Files (x86)\Common Files\AVSMedia\BurnerService\AVSVideoBurner.exe
O4 - GS\SendTo: AVS Video Uploader.lnk . (.Online Media Technologies Ltd. - AVS Video Uploader.) -- C:\Program Files (x86)\Common Files\AVSMedia\VideoUploader\AVSVideoUploader.exe
O4 - GS\SendTo: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe
O4 - GS\SendTo: Skype.lnk . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - GS\Desktop: AVS Video Converter.lnk . (.Online Media Technologies Ltd. - Video Converter.) -- C:\Program Files (x86)\AVS4YOU\AVSVideoConverter\AVSVideoConverter.exe
O4 - GS\Desktop: AVS4YOU Software Navigator.lnk . (.Online Media Technologies Ltd. - Pas de description.) -- C:\Program Files (x86)\AVS4YOU\AVSSoftwareNavigator\AVS4YOUSoftwareNavigator.exe
O4 - GS\Desktop: RSND-2011-10-17-231216-37078151.avastlic.lnk . (...) -- C:\Users\Lu'cr�ut\Documents\T�l�chargements\RSND-2011-10-17-231216-37078151.avastlic (.not file.)
O4 - GS\Desktop: Spotify.lnk . (.Spotify Ltd - Spotify.) -- C:\Users\Lu'cr�ut\AppData\Roaming\Spotify\spotify.exe
O4 - GS\Desktop: Windows Live Messenger .lnk . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
~ Global Startup: Scanned in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{DE9D1981-1175-402E-AF5B-F029717FB409}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{DE9D1981-1175-402E-AF5B-F029717FB409}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{DE9D1981-1175-402E-AF5B-F029717FB409}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: MotoHelper Service (MotoHelper) . (.Pas de propri�taire - MotoHelper Service.) - C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperService.exe
O23 - Service: Updater Service (Updater Service) . (.Acer - Acer Update Service.) - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
~ Services: 18 Legitimates Filtered in 00mn 08s
---\\ T�ches planifi�es en automatique (O39)
[MD5.00000000000000000000000000000000] [APT] [At10] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At11] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At12] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At13] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At14] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At15] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At16] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At17] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At18] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At19] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At2] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At20] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\java.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At3] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At4] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At5] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At6] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At7] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At8] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At9] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.7E68E29CF66FBA108527BC38189636FF] [APT] [DealPlyUpdate] (.DealPly.) -- C:\Program Files (x86)\DealPly\DealPlyUpdate.exe [78000] =>PUP.DealPly
[MD5.00000000000000000000000000000000] [APT] [{69AC2096-EB73-44E1-849A-11FF4A473ACB}] (...) -- C:\Users\Lu'cr�ut\Desktop\avira-antivir-personal-free_avira_antivir_personal_free_10.0.0.567_anglais_10821.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{DE0E41F9-60E1-4C83-A630-D278ACF08BD0}] (...) -- C:\Users\Lu'cr�ut\Downloads\Firefox Setup 3.6.6.exe (.not file.) [0]
~ Scheduled Task: 42 Legitimates Filtered in 00mn 06s
---\\ Logiciels install�s (O42)
O42 - Logiciel: Conduit Engine - (.Conduit Ltd..) [HKLM][64Bits] -- conduitEngine =>Toolbar.Conduit
O42 - Logiciel: DealPly - (.DealPly.) [HKLM][64Bits] -- DealPly =>PUP.DealPly
O42 - Logiciel: I Want This - (.215 Apps.) [HKLM][64Bits] -- I Want This =>PUP.SpecialSavings
O42 - Logiciel: Softonic_France Toolbar - (.Softonic_France.) [HKLM][64Bits] -- Softonic_France Toolbar
O42 - Logiciel: screensaver_1280_1024 - (...) [HKLM][64Bits] -- screensaver_1280_1024
~ Logic: 186 Legitimates Filtered in 00mn 00s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKCU\Software\AppDataLow\Software\I Want This]
[HKCU\Software\AppDataLow\Software\PriceGong] =>Adware.PriceGong
[HKCU\Software\AppDataLow\Software\Softonic_France]
[HKCU\Software\AppDataLow\Software\conduitEngine] =>Toolbar.Conduit
[HKCU\Software\AppDataLow\Toolbar]
[HKCU\Software\Cr_Installer] =>PUP.CrossRider
[HKCU\Software\DealPly] =>PUP.DealPly
[HKCU\Software\InstallCore] =>PUP.InstallCore
[HKCU\Software\Softonic]
[HKCU\Software\b6000c31]
[HKLM\Software\Wow6432Node\Babylon] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Softonic_France]
~ Key Software: 272 Legitimates Filtered in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 28/08/2011 - 15:04:58 - [3,967] ----D C:\Program Files (x86)\ConduitEngine =>Toolbar.Conduit
O43 - CFD: 24/05/2013 - 21:54:18 - [0,375] ----D C:\Program Files (x86)\DealPly =>PUP.DealPly
O43 - CFD: 27/05/2012 - 03:00:46 - [3,370] ----D C:\Program Files (x86)\I Want This
O43 - CFD: 28/08/2011 - 15:05:11 - [11,409] ----D C:\Program Files (x86)\Softonic_France
O43 - CFD: 18/03/2012 - 14:13:30 - [0,002] ----D C:\Program Files (x86)\Common Files\Akamai
O43 - CFD: 27/05/2012 - 03:00:33 - [0] ----D C:\ProgramData\Babylon =>Toolbar.Babylon
O43 - CFD: 28/06/2010 - 19:20:19 - [0,000] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 07/04/2013 - 23:37:43 - [0,722] ----D C:\ProgramData\InstallMate
O43 - CFD: 29/10/2010 - 10:17:45 - [0,001] ----D C:\ProgramData\Partner
O43 - CFD: 30/12/2011 - 02:26:34 - [0] ----D C:\Users\Lu'cr�ut\AppData\Roaming\A8AFE
O43 - CFD: 08/01/2012 - 00:42:03 - [0] ----D C:\Users\Lu'cr�ut\AppData\Roaming\B09A8
O43 - CFD: 27/05/2012 - 03:00:33 - [0,006] ----D C:\Users\Lu'cr�ut\AppData\Roaming\Babylon =>Toolbar.Babylon
O43 - CFD: 27/05/2012 - 03:00:36 - [0,058] ----D C:\Users\Lu'cr�ut\AppData\Local\I Want This
~ 3 Dossiers CLSID vides (CLSID Empty Folders)
~ Program Folder: 213 Legitimates Filtered in 00mn 40s
---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.C85CAA31CD2C785B401E05E44B10EF5D] - 09/06/2013 - 23:38:05 ---A- . (...) -- C:\UsbFix [Clean 1] LUCR�UT-PC.txt [16202]
~ Files: 29 Legitimates Filtered in 00mn 16s
---\\ Derniers fichiers cr��s dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.D0AAA791A0021C6F63CD51336420DA6B] - 10/06/2013 - 15:47:30 ---A- - C:\Windows\Prefetch\SPOTIFY.EXE-6E07BDC0.pf
O45 - LFCP:[MD5.0D4E237D98CCFD038658E145427C96F8] - 10/06/2013 - 15:47:48 ---A- - C:\Windows\Prefetch\SERVOAPP.EXE-A7A1A29D.pf
O45 - LFCP:[MD5.EC317D992086F82551B6F35CFE4CAB7F] - 14/05/2013 - 05:55:18 ---A- - C:\Windows\Prefetch\SKY735C.TMP-3B7CE351.pf
~ Prefetcher: 129 Legitimates Filtered in 00mn 01s
---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 16 Legitimates Filtered in 00mn 00s
---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "HideSCAHealth"=1
~ MWPE Keys: 8 Legitimates Filtered in 00mn 00s
---\\ Liste des Drivers Syst�me (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088]
~ Drivers: Scanned in 00mn 00s
---\\ Derniers fichiers modifi�s ou cr�es (Utilisateur) (O61)
O61 - LFC: 09/06/2013 - 22:53:08 ---A- C:\Users\Lu'cr�ut\Documents\LETTRE_MOTIV_FAUSTINE.odt [16179]
O61 - LFC: 09/06/2013 - 22:58:43 -SHA- C:\Users\Lu'cr�ut\Documents\Thumbs.db [16896]
~ 2 Fichiers temporaires (Temporary files)
~ Files: 122 Legitimates Filtered in 05mn 50s
---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: UsbFix By El Desaparecido - (.El Desaparecido - SosVirus.org.) [HKLM] -- Usbfix
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ ADS: Scanned in 00mn 00s
---\\ Start Menu Internet (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s
---\\ Search Browser Infection (O69)
O69 - SBI: C:\Users\Lu'cr�ut\AppData\Roaming\Mozilla\Firefox\Profiles\rg1c8rl0.default\searchplugins\conduit.xml
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115..clientLogIsEnabled", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115..clientLogServiceUrl", "http://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115..uninstallLogServiceUrl", "http://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.AboutPrivacyUrl", "http://www.conduit.com/privacy/Default.aspx");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.CTID", "CT2542115");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.CurrentServerDate", "28-11-2010");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.DialogsAlignMode", "LTR");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.DownloadReferralCookieData", "");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.EMailNotifierPollDate", "Sun Nov 28 2010 14:20:08 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedLastCount3702671119025834822", 366);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915761", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915767", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915773", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915779", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915785", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915791", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915797", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915803", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915809", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915815", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915821", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915827", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915833", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915839", "Sun Nov 28 2010 14:20:10 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915845", "Sun Nov 28 2010 14:20:10 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915851", "Sun Nov 28 2010 14:20:10 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915857", "Sun Nov 28 2010 14:20:10 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915863", "Sun Nov 28 2010 14:20:14 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915869", "Sun Nov 28 2010 14:20:14 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915875", "Sun Nov 28 2010 14:20:14 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915881", "Sun Nov 28 2010 14:20:14 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedTTL129255209834915761", 30);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedTTL129255209834915767", 2);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedTTL129255209834915773", 2);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedTTL129255209834915785", 2);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedTTL129255209834915791", 30);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedTTL129255209834915809", 5);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedTTL129255209834915815", 5);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedTTL129255209834915821", 5);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedTTL129255209834915839", 5);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FirstServerDate", "28-11-2010");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FirstTime", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FirstTimeFF3", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FixPageNotFoundErrors", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.GroupingServerCheckInterval", 1440);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.GroupingServiceUrl", "http://grouping.services.conduit.com/");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.HasUserGlobalKeys", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.Initialize", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.InitializeCommonPrefs", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.InstallationAndCookieDataSentCount", 1);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.InstallationId", "integrated_CT2542115.exe");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.InstallationType", "ConduitIntegration");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.InstalledDate", "Sun Nov 28 2010 14:20:08 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.InvalidateCache", false);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.IsGrouping", false);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.IsMulticommunity", false);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.IsOpenThankYouPage", false);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.IsOpenUninstallPage", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.LanguagePackLastCheckTime", "Sun Nov 28 2010 14:20:08 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.LanguagePackReloadIntervalMM", 1440);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.LanguagePackServiceUrl", "http://translation.users.conduit.com/Translation.ashx");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.LastLogin_3.2.2.0", "Sun Nov 28 2010 14:20:08 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.LatestVersion", "2.7.2.0");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.Locale", "fr-fr");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.MCDetectTooltipHeight", "83");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.MCDetectTooltipUrl", "http://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.MCDetectTooltipWidth", "295");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.RadioIsPodcast", false);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.RadioLastCheckTime", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.RadioLastUpdateIPServer", "3");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.RadioLastUpdateServer", "3");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.RadioMediaID", "9962");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.RadioMediaType", "Media Player");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.RadioMenuSelectedID", "EBRadioMenu_CT25421159962");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.RadioStationName", "California%20Rock");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.RadioStationURL", "http://feedlive.net/california.asx");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.SearchFromAddressBarIsInit", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2542115&q=");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.SearchInNewTabEnabled", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.SearchInNewTabIntervalMM", 1440);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.SearchInNewTabLastCheckTime", "Sun Nov 28 2010 14:20:08 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.SearchInNewTabServiceUrl", "http://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.SearchInNewTabUsageUrl", "http://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_T[...]
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.ServiceMapLastCheckTime", "Sun Nov 28 2010 14:20:07 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.SettingsLastCheckTime", "Sun Nov 28 2010 14:20:07 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.SettingsLastUpdate", "1288876389");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.ThirdPartyComponentsInterval", 504);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.ThirdPartyComponentsLastCheck", "Sun Nov 28 2010 14:20:07 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.ThirdPartyComponentsLastUpdate", "1255348267");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.TrusteLinkUrl", "http://www.truste.org/pvr.php?page=validate&softwareProgramId=101&sealid=112");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.UserID", "UN24380408680513188");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.WeatherNetwork", "");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.WeatherPollDate", "Sun Nov 28 2010 14:20:08 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.WeatherUnit", "C");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.alertChannelId", "935078");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.myStuffEnabled", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.myStuffPublihserMinWidth", 400);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.myStuffSearchUrl", "http://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&oct[...]
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.myStuffServiceIntervalMM", 1440);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.myStuffServiceUrl", "http://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE[...]
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.testingCtid", "");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.toolbarAppMetaDataLastCheckTime", "Sun Nov 28 2010 14:20:08 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.toolbarContextMenuLastCheckTime", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.AboutPrivacyUrl", "http://www.conduit.com/privacy/Default.aspx");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.CTID", "CT2567681");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.CurrentServerDate", "29-6-2010");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.DialogsAlignMode", "LTR");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.DownloadReferralCookieData", "");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.EMailNotifierPollDate", "Tue Jun 29 2010 13:23:57 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FeedLastCount129132852755156787", 143);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FeedPollDate128746790824594437", "Tue Jun 29 2010 13:23:55 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FeedPollDate128746790988031938", "Tue Jun 29 2010 13:23:55 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FeedPollDate128746791145844439", "Tue Jun 29 2010 13:23:55 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FeedPollDate128746791280844460", "Tue Jun 29 2010 13:23:56 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FeedPollDate128746791444750814", "Tue Jun 29 2010 13:23:56 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FeedPollDate128746791615375007", "Tue Jun 29 2010 13:23:56 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FeedPollDate128746791787562545", "Tue Jun 29 2010 13:23:56 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FeedTTL128746791787562545", 5);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FirstServerDate", "29-6-2010");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FirstTime", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FirstTimeFF3", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FirstTimeSettingsDone", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FixPageNotFoundErrors", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.GroupingServerCheckInterval", 1440);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.GroupingServiceUrl", "http://grouping.services.conduit.com/");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.Initialize", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.InitializeCommonPrefs", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.InstallationAndCookieDataSentCount", 1);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.InstallationType", "UnknownIntegration");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.InstalledDate", "Tue Jun 29 2010 13:23:54 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.InvalidateCache", false);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.IsGrouping", false);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.IsMulticommunity", false);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.IsOpenThankYouPage", false);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.IsOpenUninstallPage", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.LanguagePackLastCheckTime", "Tue Jun 29 2010 13:23:57 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.LanguagePackReloadIntervalMM", 1440);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.LanguagePackServiceUrl", "http://translation.users.conduit.com/Translation.ashx");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.LastLogin_2.6.0.15", "Tue Jun 29 2010 13:23:55 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.LatestVersion", "2.1.0.18");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.Locale", "fr-fr");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.LoginCache", 4);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.MCDetectTooltipHeight", "83");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.MCDetectTooltipUrl", "http://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.MCDetectTooltipWidth", "295");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.RadioIsPodcast", false);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.RadioLastCheckTime", "Tue Jun 29 2010 13:23:56 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.RadioLastUpdateIPServer", "3");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.RadioLastUpdateServer", "3");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.RadioMediaID", "9962");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.RadioMediaType", "Media Player");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.RadioMenuSelectedID", "EBRadioMenu_CT25676819962");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.RadioStationName", "California%20Rock");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.RadioStationURL", "http://feedlive.net/california.asx");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.SHRINK_TOOLBAR", 1);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.SavedHomepage", "resource:/browserconfig.properties");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.SearchEngine", "Recherche||http://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT2567681&octid=EB_O[...]
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.SearchFromAddressBarIsInit", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2567681&q=");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.SearchInNewTabEnabled", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.SearchInNewTabIntervalMM", 1440);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.SearchInNewTabLastCheckTime", "Tue Jun 29 2010 13:23:55 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.SearchInNewTabServiceUrl", "http://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.SearchInNewTabUsageUrl", "http://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_T[...]
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.SettingsCheckIntervalMin", 120);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.SettingsLastCheckTime", "Tue Jun 29 2010 13:23:53 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.SettingsLastUpdate", "1277714963");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.ThirdPartyComponentsInterval", 504);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.ThirdPartyComponentsLastCheck", "Tue Jun 29 2010 13:23:53 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.ThirdPartyComponentsLastUpdate", "1277714963");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.TrusteLinkUrl", "http://www.truste.org/pvr.php?page=validate&softwareProgramId=101&sealid=112");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.UserID", "UN74898829452201770");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.WeatherNetwork", "");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.WeatherPollDate", "Tue Jun 29 2010 13:23:58 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.WeatherUnit", "C");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.alertChannelId", "960546");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.backendstorage.http://cmg1_conduit-widgets_com/miniquarium.miniquarium_closed", "66616C7365");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.clientLogIsEnabled", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.clientLogServiceUrl", "http://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.myStuffEnabled", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.myStuffPublihserMinWidth", 400);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.myStuffSearchUrl", "http://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&oct[...]
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.myStuffServiceIntervalMM", 1440);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.myStuffServiceUrl", "http://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE[...]
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.uninstallLogServiceUrl", "http://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.CantToolbarBeEngineOwner", "CT2405727,CT2542115");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/?aid=800210&fid=796029", "\"0\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/?aid=909619&fid=905414", "\"0\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/root/800210/796029/FR", "\"0\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/root/909619/905414/FR", "\"0\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/root/935078/930862/DEFAULT", "\"0\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/root/935078/930862/FR", "\"0\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://appsmetadata.toolbar.conduit-services.com/?ctid=CT2405727", "\"0\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://appsmetadata.toolbar.conduit-services.com/?ctid=CT2542115", "\"1279120045\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://contextmenu.toolbar.conduit-services.com/?name=SharedApps&locale=fr-fr", "a47lyj7cLWBfKLge[...]
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\"803651ba7facb1:0\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://servicemap.conduit-services.com/toolbar/", "\"634250095346670000\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://settings.engine.conduit-services.com/?browser=FF&lut=0", "634207581820000000");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://settings.toolbar.conduit-services.com/?ctid=CT2405727&octid=CT2405727", "\"1288340248\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://settings.toolbar.conduit-services.com/?ctid=CT2542115&octid=CT2542115", "\"1288876389\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://storage.conduit.com/Newtab/Softonic/CT1351374.xml", "\"0331fdcf55aca1:0\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://translation.toolbar.conduit-services.com/?locale=en", "\"634168576518470000\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://translation.toolbar.conduit-services.com/?locale=fr-fr", "\"634168576518470000\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.EngineHiddenByUser", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.EngineOwner", "ConduitEngine"); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine"); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.IsEngineShown", false);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.OriginalEngineOwner", "CT2405727");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "{9bb815eb-3f9f-4e11-9150-cb70e29b40fc}");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "radio_bar_2");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ToolbarsList", "CT2567681,ConduitEngine,CT2542115"); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ToolbarsList2", "CT2567681,CT2542115");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Thu May 05 2011 18:54:49 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Sat Jun 25 2011 19:19:53 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.clientsServerUrl", "http://alert.client.conduit.com");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.firstTimeAlertShown", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.locale", "en");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.loginLastCheckTime", "Sun Jun 26 2011 15:02:45 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1305622559");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.servicesServerUrl", "http://alert.services.conduit.com");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.showTrayIcon", false);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.userId", "a18444fa-9ba5-4c9d-bf80-7a7c499219d2");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Sun Nov 28 2010 14:20:08 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2405727");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.FirstServerDate", "11/02/2010 01"); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.FirstTime", true); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.FirstTimeFF3", true); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.HasUserGlobalKeys", true); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.HideEngineAfterRestart", false); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.Initialize", true); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.InitializeCommonPrefs", true); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.InstalledDate", "Mon Nov 01 2010 23:15:09 GMT+0100"); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.IsMulticommunity", false); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.IsOpenThankYouPage", false); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.IsOpenUninstallPage", true); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.LanguagePackLastCheckTime", "Mon Nov 01 2010 23:15:09 GMT+0100"); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.LastLogin_3.2.2.0", "Mon Nov 01 2010 23:15:10 GMT+0100"); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.PublisherContainerWidth", 0); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.SearchFromAddressBarIsInit", true); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.SettingsLastCheckTime", "Mon Nov 01 2010 23:15:09 GMT+0100"); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.UserID", "UN37555330044501434"); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.engineLocale", "fr"); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Mon Nov 01 2010 23:15:09 GMT+0100"); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.initDone", true); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("browser.search.defaultthis.engineName", "Radio Bar 2 Customized Web Search");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("browser.search.defaulturl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2405727&SearchSource=3&q={searchTerms}");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.admin", false); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.aflt", "babsst"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.babExt", ""); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.babTrack", "affID=110819"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.bbDpng", 31); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.dfltSrch", false); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.hmpg", false); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.id", "b09a8afe000000000000701a04ef3e1b"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.instlDay", "15487"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.instlRef", "sst"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.lastDP", 31); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.5.3.173:00:52"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "15.0"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.newTab", true); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.newTabUrl", "http://search.babylon.com/?babsrc=NT_FFUP"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.noFFXTlbr", false); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.propectorlck", 84998623); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.prtnrId", "babylon"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.ptch_0717", true); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.smplGrp", "none"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.srcExt", "ss"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.tlbrId", "tb9"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.vrsn", "1.5.3.17"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.vrsnTs", "1.5.3.173:00:52"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.vrsni", "1.5.3.17"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.aflt", "babsst"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.babExt", ""); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.babTrack", "affID=110819"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.hardId", "b09a8afe000000000000701a04ef3e1b"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.id", "b09a8afe000000000000701a04ef3e1b"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.instlDay", "15487"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.instlRef", "sst"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.smplGrp", "none"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.srcExt", "ss"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.tlbrId", "tb9"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.173:00:52"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossrider.bic", "1378bcf59f6b3665f6e7ca1d784f4c1e"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.InstallationThankYouPage", true); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.InstallationTime", 1338080431); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.InstallationUserSettings.searchUserConifrmation", false); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.InstallationUserSettings.setHomepage", false); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.InstallationUserSettings.setNewTab", false); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.InstallationUserSettings.setSearch", false); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.active", true); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.addressbar", ""); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.addressbarenhanced", ""); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.affid", "0"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.backgroundjs", "\n\n\"undefined\"!=typeof _GPL_BG_NEW&&appAPI.webRequest&&appAPI.webR[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.backgroundver", 16); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.can_run_bg_code", true); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.certdomaininstaller", ""); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.changeprevious", false); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie.InstallationTime.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie.InstallationTime.value", "1338080431"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie.InstallerParams.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_aoi.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_aoi.value", "1338080431"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_blocklist.expiration", "Sun Jan 06 2013 15:11:41 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_blocklist.value", "%22nonexistantdomain.com%22"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_country_code.expiration", "Sat Jan 12 2013 15:25:37 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_country_code.value", "%22FR%22"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_crr.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_crr.value", "1357425473"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_currenttime.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_currenttime.value", "%221356061492%22"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_hotfix20111102645.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_hotfix20111102645.value", "%221%22"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_installer_params.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_installer_params.value", "%7B%22source_id%22%3A%220%22%2C%22sub_id%22%3A%[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_parent_zoneid.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_parent_zoneid.value", "%2214019%22"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_pc_20120828.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_pc_20120828.value", "1346406558001"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_product_id.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_product_id.value", "%2221%22"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_zoneid.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_zoneid.value", "%2240331%22"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie.dbtest.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie.dbtest.value", "1346024106557"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie.lastrequest.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie.lastrequest.value", "%7B%22path%22%3A%22/art/Ninse-and-Me-346941541%22%2C%22ho[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.description", "I Want This!"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.domain", ""); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.emailsig", ""); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.enablesearch", false); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.exposesites", ""); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.fbremoteurl", ""); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.group", 0); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.homepage", ""); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.iframe", false); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.internaldb.InstallerIdentifiers.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.internaldb.InstallerIdentifiers.value", "%7B%22installer_bic%22%3A%22351AD3BFCE204834[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.internaldb.Resources_appVer.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.internaldb.Resources_appVer.value", "98"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.internaldb.Resources_lastVersion.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.internaldb.Resources_lastVersion.value", "0"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.internaldb.Resources_meta.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.internaldb.Resources_meta.value", "%7B%7D"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.internaldb.Resources_nextCheck.expiration", "Sun Jan 06 2013 05:37:55 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.internaldb.Resources_nextCheck.value", "true"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.internaldb.Resources_queue.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.internaldb.Resources_queue.value", "%7B%7D"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.js", "\n\nif(\"undefined\"!=typeof _GPL_PLUGIN){var _GPL_=function(){_GPL_PLUGIN.star[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.manifesturl", ""); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.name", "I Want This"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.newtab", ""); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.opensearch", ""); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_1000014.code", "Array.prototype.indexOf||(Array.prototype.indexOf=func[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_1000014.ver", 10); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_1000015.code", "var _GPL_BG={vars:{},rules:{},started:!1,log:function([...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_1000015.ver", 4); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_13.code", "(function(a){a.selectedText=function(e,c){function d(){if(w[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_13.ver", 2); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_14.code", "if(typeof(appAPI)===\"undefined\"){appAPI={}}appAPI.JSON={}[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_14.ver", 2); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_15.code", "(function(e){function u(c,b){for(css_prop in b)b.hasOwnProp[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_15.name", "FacebookFFIE"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_15.ver", 1); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_16.code", "if((typeof isBackground===\"undefined\"||isBackground!=true[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_16.ver", 4); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_17.code", "if(typeof window!==\"undefined\"){\n/*!\n * jQuery JavaScri[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_17.ver", 3); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_47.code", "(function(){appAPI.ready=function(a){appAPI.resources.isRea[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_47.name", "resources_background"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_47.ver", 1); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_64.code", "(function(){var h=\"__CR_EMPTY_CHANNEL__\";var d=function(j[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_64.name", "appApiMessage"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_64.ver", 1); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_72.code", "if(appAPI.__should_activate_validation__===true){(function([...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_72.name", "appApiValidation"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_72.ver", 1); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins_lists.plugins_0", "17,14,16,64,72,47,1000015"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins_lists.plugins_1", "17,14,13,16,15,64,72,1000014"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.pluginsurl", "http://app-static.crossrider.com/plugin/apps/2258/plugins/086/ff/plugin[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.pluginsversion", 23); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.premium", true); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.publisher", "215 Apps"); =>PUP.SpecialSavings
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.searchstatus", 0); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.setnewtab", false); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.settingsurl", ""); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.thankyou", "http://iw.antthis.com/thankyou.html"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.updateinterval", 360); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.ver", 98); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.InstallationTime", 1338080451); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.backgroundjs", "\n\n\"undefined\"!=typeof _GPL_BG_NEW&&appAPI.webRequest&&appAPI.[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.backgroundver", 15); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.cookie.InstallationTime.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.cookie.InstallationTime.value", "1338080451"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.js", "\n\nif(\"undefined\"!=typeof _GPL_PLUGIN){var _GPL_=function(){_GPL_PLUGIN.[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_1000014.code", "Array.prototype.indexOf||(Array.prototype.indexOf=[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_1000014.ver", 7); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_1000015.code", "var _GPL_BG={vars:{},rules:{},started:!1,log:funct[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_1000015.ver", 3); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_13.code", "(function(a){a.selectedText=function(e,c){function d(){[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_13.ver", 2); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_14.code", "if(typeof(appAPI)===\"undefined\"){appAPI={}}appAPI.JSO[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_14.ver", 2); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_15.code", "(function(f){var u={};var e=Math.floor(Math.random()*99[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_15.name", "FacebookFFIE"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_15.ver", 1); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_16.code", "(function(f,b){if(typeof(b)==\"undefined\"){b={}}var d=[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_16.ver", 3); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_17.code", "if(typeof window!==\"undefined\"){\n/*!\n * jQuery Java[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_17.ver", 3); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_47.code", "(function(){appAPI.ready=function(a){appAPI.resources.i[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_47.name", "resources_background"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_47.ver", 1); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins_lists.plugins_0", "17,14,16,47,1000015"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins_lists.plugins_1", "17,14,13,16,15,1000014"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.pluginsversion", 15); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.ver", 90); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.adsOldValue", -1); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.apps", "2258"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.bic", "1378bcf59f6b3665f6e7ca1d784f4c1e"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.cid", 2258); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.firstrun", false); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.hadappinstalled", true); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.installationdate", 1338080451); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.lastcheck", 22624687); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.lastcheckitem", 22624687); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.misc.lastBgWorkerTimer", "1340746605779"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.misc.lastDomWorkerTimer", "1340746605776"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.modetype", "production"); =>PUP.CrossRider
O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (@ieframe.dll,-12512) - http://search.live.com
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} [DefaultScope] - (Search the web (Babylon)) - http://search.babylon.com =>Adware.IMBooster
O69 - SBI: SearchScopes [HKCU] {67A2568C-7A0A-4EED-AECC-B5405DE63B64} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {afdbddaa-5d3f-42ee-b79c-185a7020515b} - (Messenger Plus Live France Customized Web Search) - http://search.conduit.com
O69 - SBI: SearchScopes [HKCU] {B44A2790-C086-471B-A1E0-3595F83FE8EA} - (Yahoo! Search) - http://fr.search.yahoo.com
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} [DefaultScope] - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} [DefaultScope] - (Google) - http://www.google.com
~ Keys: Scanned in 00mn 00s
---\\ Crack & Keygen Files (O82)
C:\Users\Lu'cr�ut\Desktop\CS4_FR_mart\Adobe CS4 Master Collection Keygen.exe
C:\Users\Lu'cr�ut\Desktop\CS4_FR_mart\Adobe CS4 Master Collection Keygen.exe
~ Files: Scanned in 01mn 20s
---\\ Recherche particuliere � la racine de certains dossiers (O84)
[MD5.4945092A7D29EA96B1C4E82DC8CC905A] [SPRF][21/02/2011] (...) -- C:\ProgramData\ezsidmv.dat [56]
[MD5.376E0ACBD78C01A78A6221BFFC4B7795] [SPRF][02/10/2012] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\wklnhst.dat [1430]
[MD5.4EF33D516F31BEB1C9847D1FDA69375C] [SPRF][10/06/2013] (...) -- C:\Users\Lu'cr�ut\Desktop\adwcleaner.exe [648201]
[MD5.1CEB676AFB674B495537413EB652F010] [SPRF][07/01/2012] (.Pas de propri�taire - AVAST Software Setup Engine.) -- C:\Users\Lu'cr�ut\Desktop\setup_ais.exe [87604152]
[MD5.32775BB26A6C98C354D962077F37206D] [SPRF][09/06/2013] (.El Desaparecido - SosVirus.org - UsbFix - Remove malware from yours drive!.) -- C:\Users\Lu'cr�ut\Desktop\UsbFix.exe [1048628]
[MD5.8EE509FEE63CB89AB1D763F644ACFED2] [SPRF][10/06/2013] (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Lu'cr�ut\Desktop\ZHPDiag2.exe [5676095]
[MD5.3FEA9D2EDF23B0283C7A66C8DEA380BD] [SPRF][25/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player Module.) -- C:\Windows\Downloaded Program Files\dwusplay.dll [24576]
[MD5.CDBE35EA59BC9223E4F800BD1DB82D27] [SPRF][25/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player.) -- C:\Windows\Downloaded Program Files\dwusplay.exe [196608]
[MD5.0C78701C6F42345DFF2B2B6C3C3D01EF] [SPRF][25/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Web Agent.) -- C:\Windows\Downloaded Program Files\isusweb.dll [172032]
~ Files: Scanned in 00mn 04s
---\\ Scan Additionnel (O88)
Database Version : v2.12437 - (10/06/2013)
Cl�s trouv�es (Keys found) : 87
Valeurs trouv�es (Values found) : 1
Dossiers trouv�s (Folders found) : 20
Fichiers trouv�s (Files found) : 1
[HKLM\Software\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}] =>Toolbar.Conduit
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}] =>Toolbar.Conduit
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4daac69c-cba7-45e2-9bc8-1044483d3352}] =>Toolbar.Conduit
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4daac69c-cba7-45e2-9bc8-1044483d3352}] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4daac69c-cba7-45e2-9bc8-1044483d3352}] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{65bcd620-07dd-012f-819f-073cf1b8f7c6}] =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83ff80f4-8c74-4b80-b5ba-c8ddd434e5c4}] =>Spyware.BHO
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83ff80f4-8c74-4b80-b5ba-c8ddd434e5c4}] =>Spyware.BHO
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Skype
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Skype
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}] =>PUP.DealPly
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}] =>PUP.DealPly
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}] =>PUP.DealPly
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Skype
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Skype
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Skype
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}] =>Toolbar.Conduit
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}] =>Toolbar.Conduit
[HKLM\Software\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}] =>Adware.CDNHelper
[HKLM\Software\Wow6432Node\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}] =>Adware.CDNHelper
[HKLM\Software\Classes\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98DB}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98DB}] =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\escort.dll] =>Toolbar.Babylon
[HKLM\Software\Classes\Conduit.Engine] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\gaiilaahiahdejapggenmdmafpmbipje] =>PUP.DealPly
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\mpfapcdfbbledbojijcbcclmlieaoogk] =>PUP.RewardsArcade
[HKCU\Software\AppDataLow\Software\conduitEngine] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\conduitEngine] =>Toolbar.Conduit
[HKCU\Software\Cr_Installer] =>PUP.CrossRider
[HKCU\Software\AppDataLow\Software\I Want This] =>PUP.RewardsArcade
[HKCU\Software\AppDataLow\Software\Messenger_Plus_Live_France] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Messenger_Plus_Live_France] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\OpenCandy NSIS SDK] =>Adware.OpenCandy
[HKCU\Software\AppDataLow\Software\PriceGong] =>Adware.PriceGong
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\AppDataLow\Software\Softonic_France] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Softonic_France] =>Toolbar.Conduit
[HKCU\Software\AppDataLow\Toolbar] =>Toolbar.Conduit
[HKCU\Software\DealPly] =>PUP.DealPly
[HKLM\Software\Wow6432Node\DealPly] =>PUP.DealPly
[HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASAPI32] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASMANCS] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DealPly] =>PUP.DealPly
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\I Want This] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Messenger_Plus_Live_France Toolbar] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Softonic_France Toolbar] =>Toolbar.Conduit
[HKLM\Software\Classes\Prod.cap] =>Toolbar.Babylon
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}] =>Spyware.Partner
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}] =>Spyware.Partner
[HKLM\Software\Wow6432Node\Microsoft\Tracing\I Want This_RASAPI32] =>Adware.GamePlayLabs
[HKLM\Software\Wow6432Node\Microsoft\Tracing\I Want This_RASMANCS] =>Adware.GamePlayLabs
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Messenger Plus!\OpenCandy] =>Adware.OpenCandy
[HKLM\Software\Classes\CrossriderApp0002258.BHO] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0002258.BHO.1] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0002258.FBApi] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0002258.FBApi.1] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0002258.Sandbox] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0002258.Sandbox.1] =>PUP.CrossRider
[HKLM\Software\Classes\Toolbar.CT2542115] =>Toolbar.Conduit
[HKLM\Software\Classes\Toolbar.CT2567681] =>Toolbar.Conduit
[HKLM\Software\Classes\AppID\escort.DLL] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0002258.BHO] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0002258.BHO.1] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0002258.FBApi] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0002258.FBApi.1] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0002258.Sandbox] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0002258.Sandbox.1] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\Toolbar.CT2542115] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\Toolbar.CT2567681] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011221158}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{11111111-1111-1111-1111-110011221158}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{22222222-2222-2222-2222-220022222258}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{33333333-3333-3333-3333-330033223358}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\AppID\escort.DLL] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110011221158}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar]:{30F9B915-B755-4826-820B-08FBA6BD249D} =>Toolbar.Conduit
C:\Program Files (x86)\Conduit =>Toolbar.Conduit
C:\Program Files (x86)\ConduitEngine =>Toolbar.Conduit
C:\Program Files (x86)\DealPly =>PUP.DealPly
C:\Program Files (x86)\Softonic_France =>Toolbar.Conduit
C:\Program Files (x86)\I Want This =>Adware.GamePlayLabs
C:\ProgramData\Babylon =>Toolbar.Babylon
C:\ProgramData\InstallMate =>Toolbar.Agent
C:\ProgramData\Partner =>Spyware.Partner
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DealPly =>PUP.DealPly
C:\Users\Lu'cr�ut\AppData\Roaming\Babylon =>Toolbar.Babylon
C:\Users\Lu'cr�ut\AppData\Local\I Want This =>Adware.GamePlayLabs
C:\Users\Lu'cr�ut\AppData\LocalLow\BabylonToolbar =>Toolbar.Babylon
C:\Users\Lu'cr�ut\AppData\LocalLow\Conduit =>Toolbar.Conduit
C:\Users\Lu'cr�ut\AppData\LocalLow\ConduitEngine =>Toolbar.Conduit
C:\Users\Lu'cr�ut\AppData\LocalLow\PriceGong =>Adware.PriceGong
C:\Users\Lu'cr�ut\AppData\LocalLow\Softonic_France =>Toolbar.Conduit
C:\Users\Lu'cr�ut\AppData\Local\Temp\BabylonToolbar =>Toolbar.Babylon
C:\Users\Lu'cr�ut\AppData\Roaming\Mozilla\Firefox\Profiles\rg1c8rl0.default\Conduit =>Toolbar.Conduit
C:\Users\Lu'cr�ut\AppData\Roaming\Mozilla\Firefox\Profiles\rg1c8rl0.default\ConduitEngine =>Toolbar.Conduit
C:\Users\Lu'cr�ut\AppData\Roaming\Mozilla\Firefox\Profiles\rg1c8rl0.default\Extensions\engine@conduit.com =>Toolbar.Conduit
C:\Users\Lu'cr�ut\AppData\Roaming\Mozilla\Firefox\Profiles\rg1c8rl0.default\SearchPlugins\conduit.xml =>Toolbar.Conduit
~ Additionnel Scan: 338570 Items scanned in 00mn 25s
---\\ Etat g�n�ral des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 23/09/2012 65192 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 15/05/2013 256904 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 25/05/2011 37664 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 09/05/2013 46808 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Auto 09/05/2013 137960 | (avast! Firewall) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\afwServ.exe
SR - | Auto 06/04/2011 349472 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
SR - | Auto 30/04/2011 87368 | (DeviceMonitorService) . (.Nero AG.) - C:\Program Files (x86)\Motorola Media Link\Lite\NServiceEntry.exe
SR - | Auto 22/01/2010 310352 | (DsiWMIService) . (.Dritek System Inc..) - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
SR - | Auto 18/01/2010 842784 | (ePowerSvc) . (.Acer Incorporated.) - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
SS - | Demand 10/10/2009 238328 | (GameConsoleService) . (.WildTangent, Inc..) - C:\Program Files (x86)\Packard Bell Games\Packard Bell Game Console\GameConsoleService.exe
SR - | Auto 28/08/2009 1150496 | (Greg_Service) . (.Acer Incorporated.) - C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe
SS - | Auto 02/07/2010 135664 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 02/07/2010 135664 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 16/08/2012 194032 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
SR - | Auto 24/12/2009 13336 | (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
SR - | Demand 07/06/2011 934176 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SR - | Auto 09/12/2009 268824 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Auto 223088 | (MotoHelper) . (...) - C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperService.exe
SS - | Demand 24/05/2013 117144 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Demand 28/07/2009 935208 | (Nero BackItUp Scheduler 4.0) . (.Nero AG.) - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
SR - | Auto 07/01/2010 255744 | (NTI IScheduleSvc) . (.NewTech Infosystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe
SR - | Auto 25/01/2010 393320 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SS - | Auto 28/02/2013 161384 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SR - | Auto 09/12/2009 2320920 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Auto 04/07/2009 240160 | (Updater Service) . (.Acer.) - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
SR - | Auto 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 04s
~ 1526 Legitimates filtered by white list
End of the scan (1090 lines in 10mn 50s)(2)
Run by Lu'cr�ut at 10/06/2013 16:59:22
WebSite: http://nicolascoolman.webs.com
State :
WhiteList : Enable
High Elevated Privileges : OK
UAC : Activate by user
---\\ Web Browser
MSIE: Internet Explorer v10.0.9200.16576
MFIE: Mozilla Firefox 21.0 (Defaut)
GCIE: Google Chrome v27.0.1453.110
---\\ Windows Product Information
~ Langage: Fran�ais
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 7QJB7
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
---\\ System Protection
avast! Internet Security v8.0.1489.0
Windows Defender W7
---\\ System Optimizer
---\\ Peer To Peer (P2P)
Pando Media Booster v2.3.5.6
---\\ Software Update
Adobe Flash Player 11 Plugin
Adobe Reader XI - Fran�ais
---\\ System Information
~ Processor: Intel64 Family 6 Model 37 Stepping 2, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3958 MB (52% free)
System Restore: Activ� (Enable)
System drive C: has 244 GB (53%) free of 454 GB
---\\ Logged in mode
~ Computer Name: LUCR�UT-PC
~ User Name: Lu'cr�ut
~ All Users Names: Lu'cr�ut, HomeGroupUser$, Administrateur,
~ Unselected Option: None
Logged in as Administrator
---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\Lu'cr�ut\AppData\Roaming\
~ %Desktop% : C:\Users\Lu'cr�ut\Desktop\
~ %Favorites% : C:\Users\Lu'cr�ut\Favorites\
~ %LocalAppData% : C:\Users\Lu'cr�ut\AppData\Local\
~ %StartMenu% : C:\Users\Lu'cr�ut\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\
---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 244 Go of 454 Go)
D:\ CD-ROM drive (Not Inserted)
E:\ CD-ROM drive (Free 0 Go of 0 Go)
F:\ Floppy drive, Flash card reader, USB Key (Free 2 Go of 2 Go)
Q:\ Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)
---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : Out Of Date
~ Security Center: 34 Legitimates Filtered in 00mn 00s
---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.27A9000C534AA9BADC9EE74940F50C6D] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.05/04/2013 - 07:52:14.) -- C:\Windows\System32\wininet.dll [2242048]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d�ouverture de session Windows.) (.20/11/2010 - 14:25:30.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Biblioth�que de licences.) (.20/11/2010 - 14:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:24.) -- C:\Windows\system32\Drivers\AFD.sys [498688]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.12/04/2013 - 15:45:08.) -- C:\Windows\system32\Drivers\ntfs.sys [1656680]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parall�le.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:56.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes: Scanned in 00mn 00s
---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 2/2198
~ Mes musiques (My Musics) : 22/7238
~ Mes Videos (My Videos) : 2/243
~ Mes Favoris (My Favorites) : 1/33
~ Mes Documents (My Documents) : 2/4866
~ Mon Bureau (My Desktop) : 1/68905
~ Menu demarrer (Programs) : 1/30
~ Hidden Files: Scanned in 01mn 06s
---\\ Processus lanc�s
[MD5.ED74B57ECFFD503BB7AC51BD87332DC7] - (.Pas de propri�taire - MotoHelperAgent.) -- C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe [673648] [PID.2740]
[MD5.F6573840989C4E8ED2EBF8B0644CF500] - (.SFR - Propri�t�s de la connexion SFR.) -- C:\Program Files (x86)\SFR\Kit\9props.exe [959880] [PID.4364]
[MD5.76BEBE0FDE1DDDB9B70BEF85B40DDE70] - (.Spotify Ltd - Spotify.) -- C:\Users\Lu'cr�ut\AppData\Roaming\Spotify\spotify.exe [4573184] [PID.4404]
[MD5.F10ADB851EF1BD5144FE6D1691CD7576] - (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\Lu'cr�ut\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1105408] [PID.4448]
[MD5.DD7DAE4E8F169D1FF4511FC292FF6FF6] - (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696] [PID.4596]
[MD5.FD2141BE38B0B1F64A302BCBB9882019] - (.NewTech Infosystems, Inc. - Packard Bell MyBackup.) -- C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe [263936] [PID.4632]
[MD5.6F721EDA271CE5A421C7A44ECC8F0F4D] - (.Dritek System Inc. - Launch Manager Keyboard Application.) -- C:\Program Files (x86)\Launch Manager\LManager.exe [1287760] [PID.4668]
[MD5.CEEF774E8392853E6A016CAC0F8F0D09] - (.Pas de propri�taire - LiteOn.) -- C:\Program Files (x86)\Video Web Camera\VideoWebCamera.exe [4845640] [PID.4760]
[MD5.A58E05767687E1E636D160ECEA9BC8ED] - (.Pas de propri�taire - DivX Update.) -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1226608] [PID.4804]
[MD5.57D8C4ED26DFD7EF0E2CB196FB8BFB54] - (.DivX, LLC - DivX Download Manager Service.) -- C:\Program Files (x86)\DivX\DivX Plus Web Player\DDMService.exe [63360] [PID.4868]
[MD5.27E8BBE87A4862AE84B0FC4CC857B1A1] - (.Edimax Technology Co., Ltd. - MFP Agent.) -- C:\Program Files (x86)\MFP Server\App\Common\MFPAgent.exe [741376] [PID.4960]
[MD5.5A1C7A46972FB2BB28030EF91319C4FB] - (.Dritek System Inc. - Launch Manager Worker.) -- C:\Program Files (x86)\Launch Manager\LMworker.exe [268368] [PID.5004]
[MD5.B77081F8221968C7DAB794B0BA55C43E] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254896] [PID.5036]
[MD5.53D96678FB89F056D5285101481297D9] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [421160] [PID.5056]
[MD5.3F11B20D12D89365D7721BDC860CE5F0] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [4858968] [PID.5072]
[MD5.11E8D8272FDBE213ADE3DAD91427CE35] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe [11322880] [PID.2844]
[MD5.2337EC951C4AF6E1AF65D10BD9615BEB] - (.OpenOffice.org - OpenOffice.org 3.3.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin [11314688] [PID.4420]
[MD5.95110A1C5A1D228AC1DDF6AB67D00BEB] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [920472] [PID.2212]
[MD5.3A32FAFEEE290E6E6C058DE59EC4EC88] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [7478272] [PID.3428]
[MD5.28D6701C710AD7BA3CB95E75F8F1A9AA] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808] [PID.1212]
[MD5.C2009C6A452BD07B30D773349589B762] - (.AVAST Software - avast! firewall service.) -- C:\Program Files\AVAST Software\Avast\afwServ.exe [137960] [PID.1296]
[MD5.B1EA9681502EE57F87DB71D726288A5B] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65192] [PID.1784]
[MD5.20F6F19FE9E753F2780DC2FA083AD597] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [37664] [PID.1808]
[MD5.F2060A34C8A75BC24A9222EB4F8C07BD] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe [349472] [PID.1856]
[MD5.EDE77ED190F62AE4508AE7C04B4DB5E8] - (.Nero AG - NService Application.) -- C:\Program Files (x86)\Motorola Media Link\Lite\NServiceEntry.exe [87368] [PID.1884]
[MD5.673971B9C0AC52512700FE69D31FF3EC] - (.Dritek System Inc. - Dritek WMI Service.) -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe [310352] [PID.1952]
[MD5.816FD5A6F3C2F3D600900096632FC60E] - (.Acer Incorporated - Global Registration Service.) -- C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe [1150496] [PID.2832]
[MD5.1E2F802846EB944E0333EFEE7C9532A8] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [268824] [PID.2860]
[MD5.FA073BF55E99F21CFE3AFB023CFD81DC] - (.Pas de propri�taire - MotoHelper Service.) -- C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperService.exe [223088] [PID.2892]
[MD5.E556FE51AF531E1B75D6198929D8A4AF] - (.NewTech Infosystems, Inc. - Backup Manager Module.) -- C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe [255744] [PID.2948]
[MD5.C3CDDD18F43D44AB713CF8C4916F7696] - (.Microsoft Corporation - Microsoft Application Virtualization Virtua.) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [219496] [PID.2184]
[MD5.70DDE3A86DBEB1D6C3C30AD687B1877A] - (.Acer - Acer Update Service.) -- C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [240160] [PID.1504]
[MD5.13693B6354DD6E72DC5131DA7D764B90] - (.Microsoft Corporation - Microsoft Application Virtualization Client.) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [508776] [PID.2976]
[MD5.48362E5DB5CB2C000C514EE1F3890ACD] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [13336] [PID.3088]
[MD5.72794D112CBAFF3BC0C29BF7350D4741] - (.Microsoft Corporation - Microsoft Office Client Virtualization Serv.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.exe [822624] [PID.3472]
[MD5.AF905F4966CFC8B973623AB150CD4B2B] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2320920] [PID.2804]
~ Processes Running: Scanned in 00mn 02s
---\\ Google Chrome, D�marrage,Recherche,Extensions (G0,G1,G2)
C:\Users\Lu'cr�ut\AppData\Local\Google\Chrome\User Data\Default\Preferences
G2 - GCE: Preference [User Data\Default] [gaiilaahiahdejapggenmdmafpmbipje] DealPly v.3.0.7.2 (D�sactiv�) =>PUP.DealPly
G2 - GCE: Preference [User Data\Default] [mpfapcdfbbledbojijcbcclmlieaoogk] I Want This v.1.17.49 (D�sactiv�)
~ Google Browser: 16 Legitimates Filtered in 00mn 00s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\Lu'cr�ut\AppData\Roaming\Mozilla\Firefox\Profiles\rg1c8rl0.default\prefs.js
C:\Users\Lu'cr�ut\AppData\Roaming\Mozilla\Firefox\Profiles\rg1c8rl0.default\user.js
M3 - MFPP: Plugins - [Lu'cr�ut] -- C:\Users\Lu'cr�ut\AppData\Roaming\Mozilla\Firefox\Profiles\rg1c8rl0.default\searchplugins\conduit.xml
M3 - MFPP: Plugins - [Lu'cr�ut] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\babylon.xml =>Toolbar.Babylon
M2 - MFEP: prefs.js [Lu'cr�ut - rg1c8rl0.default\engine@conduit.com] [] Conduit Engine v3.3.3.2 (..)
M2 - MFEP: prefs.js [Lu'cr�ut - rg1c8rl0.default\{4daac69c-cba7-45e2-9bc8-1044483d3352}] [] ST_France Community Toolbar v3.18.0.7 (..)
M2 - MFEP: prefs.js [Lu'cr�ut - rg1c8rl0.default\{59994074-c06d-4a75-9768-49e5a8c21264}] [] Messenger Plus Live France Community Toolbar v3.18.0.7 (..)
~ Firefox Browser: 28 Legitimates Filtered in 00mn 00s
---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R3 - URLSearchHook: Messenger Plus Live France Toolbar [64Bits] - {59994074-c06d-4a75-9768-49e5a8c21264} . (.Conduit Ltd. - Conduit Toolbar.) (5, 5, 0, 10) -- C:\Program Files (x86)\Messenger_Plus_Live_France\tbMess.dll =>Toolbar.Conduit
R3 - URLSearchHook: Softonic_France Toolbar [64Bits] - {4daac69c-cba7-45e2-9bc8-1044483d3352} . (.Conduit Ltd. - Conduit Toolbar.) (6.3.2.0) -- C:\Program Files (x86)\Softonic_France\prxtbSof0.dll =>Toolbar.Conduit
~ IE Browser: 22 Legitimates Filtered in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;192.168.*.*
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:49697
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s
---\\ Redirection du fichier Hosts (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21
---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: CrossriderApp0002258 [64Bits] - {11111111-1111-1111-1111-110011221158} . (.215 Apps - I Want This BHO.) -- C:\Program Files (x86)\I Want This\I Want This.dll =>PUP.SpecialSavings
O2 - BHO: Conduit Engine [64Bits] - {30F9B915-B755-4826-820B-08FBA6BD249D} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll =>Toolbar.Conduit
O2 - BHO: Softonic_France [64Bits] - {4daac69c-cba7-45e2-9bc8-1044483d3352} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\Softonic_France\prxtbSof0.dll =>Toolbar.Conduit
O2 - BHO: Messenger Plus Live France Toolbar [64Bits] - {59994074-c06d-4a75-9768-49e5a8c21264} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\Messenger_Plus_Live_France\tbMess.dll =>Toolbar.Conduit
O2 - BHO: DealPly [64Bits] - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} . (.DealPly Technologies Ltd - DealPly for Internet Explorer.) -- C:\Program Files (x86)\DealPly\DealPlyIE.dll =>PUP.DealPly
~ BHO: 17 Legitimates Filtered in 00mn 00s
---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: Google Toolbar [64Bits] - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: (no name) [64Bits] - [HKLM]{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} Cl� orpheline
~ Toolbar: Scanned in 00mn 00s
---\\ Applications d�marr�es par registre & par dossier (O4)
O4 - HKLM\..\Run: [NvCplDaemon] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\Windows\system32\NvCpl.dll
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
O4 - HKLM\..\Run: [Acer ePower Management] . (.Acer Incorporated - ePowerTray.) -- C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe
O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKCU\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\Lu'cr�ut\AppData\Local\Facebook\Update\FacebookUpdate.exe
O4 - HKCU\..\Run: [EPSON SX430 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHAE.exe
O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Connexion SFR 9props.exe] . (.SFR - Propri�t�s de la connexion SFR.) -- C:\Program Files (x86)\SFR\Kit\9props.exe
O4 - HKCU\..\Run: [EPSON Stylus SX400 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIEGE.exe
O4 - HKCU\..\Run: [Spotify] . (.Spotify Ltd - Spotify.) -- C:\Users\Lu'cr�ut\AppData\Roaming\Spotify\Spotify.exe
O4 - HKCU\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\Lu'cr�ut\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [IAStorIcon] . (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Wow6432Node\Run: [BackupManagerTray] . (.NewTech Infosystems, Inc. - Packard Bell MyBackup.) -- C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe
O4 - HKLM\..\Wow6432Node\Run: [LManager] . (.Dritek System Inc. - Launch Manager Keyboard Application.) -- C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Wow6432Node\Run: [DivXUpdate] . (.Pas de propri�taire - DivX Update.) -- C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
O4 - HKLM\..\Wow6432Node\Run: [DivX Download Manager] . (.DivX, LLC - DivX Download Manager Service.) -- C:\Program Files (x86)\DivX\DivX Plus Web Player\DDmService.exe
O4 - HKLM\..\Wow6432Node\Run: [mumservice] C:\Program Files\Motorola\Software Update\mumservice.exe (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [MFP Manager] C:\Program Files (x86)\MFP Server\MFPAgent.exe (.not file.)
O4 - HKLM\..\Wow6432Node\Run: [Server Application] . (.Pas de propri�taire - ServoApp MFC Application.) -- C:\Windows\system32\ServoApp.exe
O4 - HKLM\..\Wow6432Node\Run: [GDI Manager] . (.Edimax Technology Co., Ltd. - MFP Agent.) -- C:\Program Files (x86)\MFP Server\App\Common\MFPAgent.exe
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe
O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Wow6432Node\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe
O4 - HKUS\S-1-5-21-1214210514-4104578939-908626983-1000\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - HKUS\S-1-5-21-1214210514-4104578939-908626983-1000\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\Lu'cr�ut\AppData\Local\Facebook\Update\FacebookUpdate.exe
O4 - HKUS\S-1-5-21-1214210514-4104578939-908626983-1000\..\Run: [EPSON SX430 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHAE.exe
O4 - HKUS\S-1-5-21-1214210514-4104578939-908626983-1000\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-21-1214210514-4104578939-908626983-1000\..\Run: [Connexion SFR 9props.exe] . (.SFR - Propri�t�s de la connexion SFR.) -- C:\Program Files (x86)\SFR\Kit\9props.exe
O4 - HKUS\S-1-5-21-1214210514-4104578939-908626983-1000\..\Run: [EPSON Stylus SX400 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIEGE.exe
O4 - HKUS\S-1-5-21-1214210514-4104578939-908626983-1000\..\Run: [Spotify] . (.Spotify Ltd - Spotify.) -- C:\Users\Lu'cr�ut\AppData\Roaming\Spotify\Spotify.exe
O4 - HKUS\S-1-5-21-1214210514-4104578939-908626983-1000\..\Run: [Spotify Web Helper] . (.Spotify Ltd - SpotifyWebHelper.) -- C:\Users\Lu'cr�ut\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
~ Application: Scanned in 00mn 00s
---\\ Autres liens utilisateurs (O4)
O4 - GS\TaskBar: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\TaskBar: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe
O4 - GS\TaskBar: Windows Live Messenger .lnk . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
O4 - GS\TaskBar: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Programs: Spotify.lnk . (.Spotify Ltd - Spotify.) -- C:\Users\Lu'cr�ut\AppData\Roaming\Spotify\spotify.exe
O4 - GS\QuickLaunch: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\QuickLaunch: Packard Bell Games.lnk . (.WildTangent, Inc. - GameConsole.) -- C:\Program Files (x86)\Packard Bell Games\Packard Bell Game Console\GameConsole-wt.exe
O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Accessories: Private Character Editor.lnk . (.Microsoft Corporation - �diteur de caract�res priv�s.) -- C:\Windows\system32\eudcedit.exe
O4 - GS\SendTo: AVS Mobile Uploader.lnk . (.Online Media Technologies Ltd. - AVS Mobile Uploader.) -- C:\Program Files (x86)\Common Files\AVSMedia\MobileUploader\AVSMobileUploader.exe
O4 - GS\SendTo: AVS Video Burner.lnk . (.Online Media Technologies Ltd. - AVS Video Burner.) -- C:\Program Files (x86)\Common Files\AVSMedia\BurnerService\AVSVideoBurner.exe
O4 - GS\SendTo: AVS Video Uploader.lnk . (.Online Media Technologies Ltd. - AVS Video Uploader.) -- C:\Program Files (x86)\Common Files\AVSMedia\VideoUploader\AVSVideoUploader.exe
O4 - GS\SendTo: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe
O4 - GS\SendTo: Skype.lnk . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe
O4 - GS\Desktop: AVS Video Converter.lnk . (.Online Media Technologies Ltd. - Video Converter.) -- C:\Program Files (x86)\AVS4YOU\AVSVideoConverter\AVSVideoConverter.exe
O4 - GS\Desktop: AVS4YOU Software Navigator.lnk . (.Online Media Technologies Ltd. - Pas de description.) -- C:\Program Files (x86)\AVS4YOU\AVSSoftwareNavigator\AVS4YOUSoftwareNavigator.exe
O4 - GS\Desktop: RSND-2011-10-17-231216-37078151.avastlic.lnk . (...) -- C:\Users\Lu'cr�ut\Documents\T�l�chargements\RSND-2011-10-17-231216-37078151.avastlic (.not file.)
O4 - GS\Desktop: Spotify.lnk . (.Spotify Ltd - Spotify.) -- C:\Users\Lu'cr�ut\AppData\Roaming\Spotify\spotify.exe
O4 - GS\Desktop: Windows Live Messenger .lnk . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
~ Global Startup: Scanned in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{DE9D1981-1175-402E-AF5B-F029717FB409}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{DE9D1981-1175-402E-AF5B-F029717FB409}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{DE9D1981-1175-402E-AF5B-F029717FB409}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll
O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: MotoHelper Service (MotoHelper) . (.Pas de propri�taire - MotoHelper Service.) - C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperService.exe
O23 - Service: Updater Service (Updater Service) . (.Acer - Acer Update Service.) - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
~ Services: 18 Legitimates Filtered in 00mn 08s
---\\ T�ches planifi�es en automatique (O39)
[MD5.00000000000000000000000000000000] [APT] [At10] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At11] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At12] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At13] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At14] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At15] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At16] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At17] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At18] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At19] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At2] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At20] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\java.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At3] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At4] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At5] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At6] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At7] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At8] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [At9] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\firefox.exe (.not file.) [0]
[MD5.7E68E29CF66FBA108527BC38189636FF] [APT] [DealPlyUpdate] (.DealPly.) -- C:\Program Files (x86)\DealPly\DealPlyUpdate.exe [78000] =>PUP.DealPly
[MD5.00000000000000000000000000000000] [APT] [{69AC2096-EB73-44E1-849A-11FF4A473ACB}] (...) -- C:\Users\Lu'cr�ut\Desktop\avira-antivir-personal-free_avira_antivir_personal_free_10.0.0.567_anglais_10821.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{DE0E41F9-60E1-4C83-A630-D278ACF08BD0}] (...) -- C:\Users\Lu'cr�ut\Downloads\Firefox Setup 3.6.6.exe (.not file.) [0]
~ Scheduled Task: 42 Legitimates Filtered in 00mn 06s
---\\ Logiciels install�s (O42)
O42 - Logiciel: Conduit Engine - (.Conduit Ltd..) [HKLM][64Bits] -- conduitEngine =>Toolbar.Conduit
O42 - Logiciel: DealPly - (.DealPly.) [HKLM][64Bits] -- DealPly =>PUP.DealPly
O42 - Logiciel: I Want This - (.215 Apps.) [HKLM][64Bits] -- I Want This =>PUP.SpecialSavings
O42 - Logiciel: Softonic_France Toolbar - (.Softonic_France.) [HKLM][64Bits] -- Softonic_France Toolbar
O42 - Logiciel: screensaver_1280_1024 - (...) [HKLM][64Bits] -- screensaver_1280_1024
~ Logic: 186 Legitimates Filtered in 00mn 00s
---\\ HKCU & HKLM Software Keys
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKCU\Software\AppDataLow\Software\I Want This]
[HKCU\Software\AppDataLow\Software\PriceGong] =>Adware.PriceGong
[HKCU\Software\AppDataLow\Software\Softonic_France]
[HKCU\Software\AppDataLow\Software\conduitEngine] =>Toolbar.Conduit
[HKCU\Software\AppDataLow\Toolbar]
[HKCU\Software\Cr_Installer] =>PUP.CrossRider
[HKCU\Software\DealPly] =>PUP.DealPly
[HKCU\Software\InstallCore] =>PUP.InstallCore
[HKCU\Software\Softonic]
[HKCU\Software\b6000c31]
[HKLM\Software\Wow6432Node\Babylon] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Softonic_France]
~ Key Software: 272 Legitimates Filtered in 00mn 00s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 28/08/2011 - 15:04:58 - [3,967] ----D C:\Program Files (x86)\ConduitEngine =>Toolbar.Conduit
O43 - CFD: 24/05/2013 - 21:54:18 - [0,375] ----D C:\Program Files (x86)\DealPly =>PUP.DealPly
O43 - CFD: 27/05/2012 - 03:00:46 - [3,370] ----D C:\Program Files (x86)\I Want This
O43 - CFD: 28/08/2011 - 15:05:11 - [11,409] ----D C:\Program Files (x86)\Softonic_France
O43 - CFD: 18/03/2012 - 14:13:30 - [0,002] ----D C:\Program Files (x86)\Common Files\Akamai
O43 - CFD: 27/05/2012 - 03:00:33 - [0] ----D C:\ProgramData\Babylon =>Toolbar.Babylon
O43 - CFD: 28/06/2010 - 19:20:19 - [0,000] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 07/04/2013 - 23:37:43 - [0,722] ----D C:\ProgramData\InstallMate
O43 - CFD: 29/10/2010 - 10:17:45 - [0,001] ----D C:\ProgramData\Partner
O43 - CFD: 30/12/2011 - 02:26:34 - [0] ----D C:\Users\Lu'cr�ut\AppData\Roaming\A8AFE
O43 - CFD: 08/01/2012 - 00:42:03 - [0] ----D C:\Users\Lu'cr�ut\AppData\Roaming\B09A8
O43 - CFD: 27/05/2012 - 03:00:33 - [0,006] ----D C:\Users\Lu'cr�ut\AppData\Roaming\Babylon =>Toolbar.Babylon
O43 - CFD: 27/05/2012 - 03:00:36 - [0,058] ----D C:\Users\Lu'cr�ut\AppData\Local\I Want This
~ 3 Dossiers CLSID vides (CLSID Empty Folders)
~ Program Folder: 213 Legitimates Filtered in 00mn 40s
---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.C85CAA31CD2C785B401E05E44B10EF5D] - 09/06/2013 - 23:38:05 ---A- . (...) -- C:\UsbFix [Clean 1] LUCR�UT-PC.txt [16202]
~ Files: 29 Legitimates Filtered in 00mn 16s
---\\ Derniers fichiers cr��s dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.D0AAA791A0021C6F63CD51336420DA6B] - 10/06/2013 - 15:47:30 ---A- - C:\Windows\Prefetch\SPOTIFY.EXE-6E07BDC0.pf
O45 - LFCP:[MD5.0D4E237D98CCFD038658E145427C96F8] - 10/06/2013 - 15:47:48 ---A- - C:\Windows\Prefetch\SERVOAPP.EXE-A7A1A29D.pf
O45 - LFCP:[MD5.EC317D992086F82551B6F35CFE4CAB7F] - 14/05/2013 - 05:55:18 ---A- - C:\Windows\Prefetch\SKY735C.TMP-3B7CE351.pf
~ Prefetcher: 129 Legitimates Filtered in 00mn 01s
---\\ Microsoft Windows Policies System (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 16 Legitimates Filtered in 00mn 00s
---\\ Microsoft Windows Policies Explorer (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "HideSCAHealth"=1
~ MWPE Keys: 8 Legitimates Filtered in 00mn 00s
---\\ Liste des Drivers Syst�me (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088]
~ Drivers: Scanned in 00mn 00s
---\\ Derniers fichiers modifi�s ou cr�es (Utilisateur) (O61)
O61 - LFC: 09/06/2013 - 22:53:08 ---A- C:\Users\Lu'cr�ut\Documents\LETTRE_MOTIV_FAUSTINE.odt [16179]
O61 - LFC: 09/06/2013 - 22:58:43 -SHA- C:\Users\Lu'cr�ut\Documents\Thumbs.db [16896]
~ 2 Fichiers temporaires (Temporary files)
~ Files: 122 Legitimates Filtered in 05mn 50s
---\\ Liste des outils de nettoyage (O63)
O63 - Logiciel: UsbFix By El Desaparecido - (.El Desaparecido - SosVirus.org.) [HKLM] -- Usbfix
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
~ ADS: Scanned in 00mn 00s
---\\ Start Menu Internet (O68)
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
~ Keys: Scanned in 00mn 00s
---\\ Search Browser Infection (O69)
O69 - SBI: C:\Users\Lu'cr�ut\AppData\Roaming\Mozilla\Firefox\Profiles\rg1c8rl0.default\searchplugins\conduit.xml
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115..clientLogIsEnabled", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115..clientLogServiceUrl", "http://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115..uninstallLogServiceUrl", "http://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.AboutPrivacyUrl", "http://www.conduit.com/privacy/Default.aspx");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.CTID", "CT2542115");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.CurrentServerDate", "28-11-2010");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.DialogsAlignMode", "LTR");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.DownloadReferralCookieData", "");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.EMailNotifierPollDate", "Sun Nov 28 2010 14:20:08 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedLastCount3702671119025834822", 366);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915761", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915767", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915773", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915779", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915785", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915791", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915797", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915803", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915809", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915815", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915821", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915827", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915833", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915839", "Sun Nov 28 2010 14:20:10 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915845", "Sun Nov 28 2010 14:20:10 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915851", "Sun Nov 28 2010 14:20:10 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915857", "Sun Nov 28 2010 14:20:10 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915863", "Sun Nov 28 2010 14:20:14 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915869", "Sun Nov 28 2010 14:20:14 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915875", "Sun Nov 28 2010 14:20:14 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedPollDate129255209834915881", "Sun Nov 28 2010 14:20:14 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedTTL129255209834915761", 30);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedTTL129255209834915767", 2);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedTTL129255209834915773", 2);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedTTL129255209834915785", 2);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedTTL129255209834915791", 30);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedTTL129255209834915809", 5);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedTTL129255209834915815", 5);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedTTL129255209834915821", 5);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FeedTTL129255209834915839", 5);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FirstServerDate", "28-11-2010");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FirstTime", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FirstTimeFF3", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.FixPageNotFoundErrors", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.GroupingServerCheckInterval", 1440);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.GroupingServiceUrl", "http://grouping.services.conduit.com/");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.HasUserGlobalKeys", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.Initialize", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.InitializeCommonPrefs", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.InstallationAndCookieDataSentCount", 1);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.InstallationId", "integrated_CT2542115.exe");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.InstallationType", "ConduitIntegration");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.InstalledDate", "Sun Nov 28 2010 14:20:08 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.InvalidateCache", false);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.IsGrouping", false);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.IsMulticommunity", false);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.IsOpenThankYouPage", false);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.IsOpenUninstallPage", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.LanguagePackLastCheckTime", "Sun Nov 28 2010 14:20:08 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.LanguagePackReloadIntervalMM", 1440);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.LanguagePackServiceUrl", "http://translation.users.conduit.com/Translation.ashx");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.LastLogin_3.2.2.0", "Sun Nov 28 2010 14:20:08 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.LatestVersion", "2.7.2.0");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.Locale", "fr-fr");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.MCDetectTooltipHeight", "83");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.MCDetectTooltipUrl", "http://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.MCDetectTooltipWidth", "295");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.RadioIsPodcast", false);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.RadioLastCheckTime", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.RadioLastUpdateIPServer", "3");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.RadioLastUpdateServer", "3");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.RadioMediaID", "9962");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.RadioMediaType", "Media Player");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.RadioMenuSelectedID", "EBRadioMenu_CT25421159962");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.RadioStationName", "California%20Rock");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.RadioStationURL", "http://feedlive.net/california.asx");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.SearchFromAddressBarIsInit", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2542115&q=");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.SearchInNewTabEnabled", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.SearchInNewTabIntervalMM", 1440);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.SearchInNewTabLastCheckTime", "Sun Nov 28 2010 14:20:08 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.SearchInNewTabServiceUrl", "http://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.SearchInNewTabUsageUrl", "http://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_T[...]
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.ServiceMapLastCheckTime", "Sun Nov 28 2010 14:20:07 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.SettingsLastCheckTime", "Sun Nov 28 2010 14:20:07 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.SettingsLastUpdate", "1288876389");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.ThirdPartyComponentsInterval", 504);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.ThirdPartyComponentsLastCheck", "Sun Nov 28 2010 14:20:07 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.ThirdPartyComponentsLastUpdate", "1255348267");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.TrusteLinkUrl", "http://www.truste.org/pvr.php?page=validate&softwareProgramId=101&sealid=112");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.UserID", "UN24380408680513188");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.WeatherNetwork", "");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.WeatherPollDate", "Sun Nov 28 2010 14:20:08 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.WeatherUnit", "C");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.alertChannelId", "935078");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.myStuffEnabled", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.myStuffPublihserMinWidth", 400);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.myStuffSearchUrl", "http://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&oct[...]
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.myStuffServiceIntervalMM", 1440);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.myStuffServiceUrl", "http://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE[...]
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.testingCtid", "");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.toolbarAppMetaDataLastCheckTime", "Sun Nov 28 2010 14:20:08 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2542115.toolbarContextMenuLastCheckTime", "Sun Nov 28 2010 14:20:09 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.AboutPrivacyUrl", "http://www.conduit.com/privacy/Default.aspx");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.CTID", "CT2567681");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.CurrentServerDate", "29-6-2010");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.DialogsAlignMode", "LTR");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.DownloadReferralCookieData", "");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.EMailNotifierPollDate", "Tue Jun 29 2010 13:23:57 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FeedLastCount129132852755156787", 143);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FeedPollDate128746790824594437", "Tue Jun 29 2010 13:23:55 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FeedPollDate128746790988031938", "Tue Jun 29 2010 13:23:55 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FeedPollDate128746791145844439", "Tue Jun 29 2010 13:23:55 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FeedPollDate128746791280844460", "Tue Jun 29 2010 13:23:56 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FeedPollDate128746791444750814", "Tue Jun 29 2010 13:23:56 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FeedPollDate128746791615375007", "Tue Jun 29 2010 13:23:56 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FeedPollDate128746791787562545", "Tue Jun 29 2010 13:23:56 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FeedTTL128746791787562545", 5);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FirstServerDate", "29-6-2010");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FirstTime", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FirstTimeFF3", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FirstTimeSettingsDone", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.FixPageNotFoundErrors", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.GroupingServerCheckInterval", 1440);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.GroupingServiceUrl", "http://grouping.services.conduit.com/");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.Initialize", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.InitializeCommonPrefs", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.InstallationAndCookieDataSentCount", 1);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.InstallationType", "UnknownIntegration");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.InstalledDate", "Tue Jun 29 2010 13:23:54 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.InvalidateCache", false);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.IsGrouping", false);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.IsMulticommunity", false);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.IsOpenThankYouPage", false);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.IsOpenUninstallPage", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.LanguagePackLastCheckTime", "Tue Jun 29 2010 13:23:57 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.LanguagePackReloadIntervalMM", 1440);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.LanguagePackServiceUrl", "http://translation.users.conduit.com/Translation.ashx");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.LastLogin_2.6.0.15", "Tue Jun 29 2010 13:23:55 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.LatestVersion", "2.1.0.18");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.Locale", "fr-fr");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.LoginCache", 4);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.MCDetectTooltipHeight", "83");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.MCDetectTooltipUrl", "http://@EB_INSTALL_LINK@/rank/tooltip/?version=1");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.MCDetectTooltipWidth", "295");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.RadioIsPodcast", false);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.RadioLastCheckTime", "Tue Jun 29 2010 13:23:56 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.RadioLastUpdateIPServer", "3");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.RadioLastUpdateServer", "3");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.RadioMediaID", "9962");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.RadioMediaType", "Media Player");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.RadioMenuSelectedID", "EBRadioMenu_CT25676819962");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.RadioStationName", "California%20Rock");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.RadioStationURL", "http://feedlive.net/california.asx");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.SHRINK_TOOLBAR", 1);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.SavedHomepage", "resource:/browserconfig.properties");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.SearchEngine", "Recherche||http://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT2567681&octid=EB_O[...]
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.SearchFromAddressBarIsInit", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2567681&q=");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.SearchInNewTabEnabled", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.SearchInNewTabIntervalMM", 1440);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.SearchInNewTabLastCheckTime", "Tue Jun 29 2010 13:23:55 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.SearchInNewTabServiceUrl", "http://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.SearchInNewTabUsageUrl", "http://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_T[...]
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.SettingsCheckIntervalMin", 120);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.SettingsLastCheckTime", "Tue Jun 29 2010 13:23:53 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.SettingsLastUpdate", "1277714963");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.ThirdPartyComponentsInterval", 504);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.ThirdPartyComponentsLastCheck", "Tue Jun 29 2010 13:23:53 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.ThirdPartyComponentsLastUpdate", "1277714963");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.TrusteLinkUrl", "http://www.truste.org/pvr.php?page=validate&softwareProgramId=101&sealid=112");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.UserID", "UN74898829452201770");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.WeatherNetwork", "");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.WeatherPollDate", "Tue Jun 29 2010 13:23:58 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.WeatherUnit", "C");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.alertChannelId", "960546");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.backendstorage.http://cmg1_conduit-widgets_com/miniquarium.miniquarium_closed", "66616C7365");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.clientLogIsEnabled", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.clientLogServiceUrl", "http://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.myStuffEnabled", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.myStuffPublihserMinWidth", 400);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.myStuffSearchUrl", "http://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&oct[...]
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.myStuffServiceIntervalMM", 1440);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.myStuffServiceUrl", "http://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE[...]
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CT2567681.uninstallLogServiceUrl", "http://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.CantToolbarBeEngineOwner", "CT2405727,CT2542115");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/?aid=800210&fid=796029", "\"0\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/?aid=909619&fid=905414", "\"0\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/root/800210/796029/FR", "\"0\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/root/909619/905414/FR", "\"0\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/root/935078/930862/DEFAULT", "\"0\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://alerts.conduit-services.com/root/935078/930862/FR", "\"0\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://appsmetadata.toolbar.conduit-services.com/?ctid=CT2405727", "\"0\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://appsmetadata.toolbar.conduit-services.com/?ctid=CT2542115", "\"1279120045\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://contextmenu.toolbar.conduit-services.com/?name=SharedApps&locale=fr-fr", "a47lyj7cLWBfKLge[...]
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\"803651ba7facb1:0\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://servicemap.conduit-services.com/toolbar/", "\"634250095346670000\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://settings.engine.conduit-services.com/?browser=FF&lut=0", "634207581820000000");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://settings.toolbar.conduit-services.com/?ctid=CT2405727&octid=CT2405727", "\"1288340248\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://settings.toolbar.conduit-services.com/?ctid=CT2542115&octid=CT2542115", "\"1288876389\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://storage.conduit.com/Newtab/Softonic/CT1351374.xml", "\"0331fdcf55aca1:0\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://translation.toolbar.conduit-services.com/?locale=en", "\"634168576518470000\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ETag.http://translation.toolbar.conduit-services.com/?locale=fr-fr", "\"634168576518470000\"");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.EngineHiddenByUser", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.EngineOwner", "ConduitEngine"); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine"); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.IsEngineShown", false);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.OriginalEngineOwner", "CT2405727");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "{9bb815eb-3f9f-4e11-9150-cb70e29b40fc}");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "radio_bar_2");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "chrome://browser-region/locale/region.properties");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ToolbarsList", "CT2567681,ConduitEngine,CT2542115"); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.ToolbarsList2", "CT2567681,CT2542115");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Thu May 05 2011 18:54:49 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Sat Jun 25 2011 19:19:53 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.clientsServerUrl", "http://alert.client.conduit.com");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.firstTimeAlertShown", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.locale", "en");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.loginLastCheckTime", "Sun Jun 26 2011 15:02:45 GMT+0200");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1305622559");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.servicesServerUrl", "http://alert.services.conduit.com");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.showTrayIcon", false);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.alert.userId", "a18444fa-9ba5-4c9d-bf80-7a7c499219d2");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Sun Nov 28 2010 14:20:08 GMT+0100");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2405727");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.FirstServerDate", "11/02/2010 01"); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.FirstTime", true); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.FirstTimeFF3", true); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.HasUserGlobalKeys", true); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.HideEngineAfterRestart", false); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.Initialize", true); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.InitializeCommonPrefs", true); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.InstalledDate", "Mon Nov 01 2010 23:15:09 GMT+0100"); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.IsMulticommunity", false); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.IsOpenThankYouPage", false); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.IsOpenUninstallPage", true); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.LanguagePackLastCheckTime", "Mon Nov 01 2010 23:15:09 GMT+0100"); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.LastLogin_3.2.2.0", "Mon Nov 01 2010 23:15:10 GMT+0100"); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.PublisherContainerWidth", 0); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.SearchFromAddressBarIsInit", true); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.SettingsLastCheckTime", "Mon Nov 01 2010 23:15:09 GMT+0100"); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.UserID", "UN37555330044501434"); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.engineLocale", "fr"); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Mon Nov 01 2010 23:15:09 GMT+0100"); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("ConduitEngine.initDone", true); =>Toolbar.Conduit
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("browser.search.defaultthis.engineName", "Radio Bar 2 Customized Web Search");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("browser.search.defaulturl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT2405727&SearchSource=3&q={searchTerms}");
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.admin", false); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.aflt", "babsst"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.babExt", ""); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.babTrack", "affID=110819"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.bbDpng", 31); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.dfltSrch", false); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.hmpg", false); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.id", "b09a8afe000000000000701a04ef3e1b"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.instlDay", "15487"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.instlRef", "sst"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.lastDP", 31); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.5.3.173:00:52"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "15.0"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.newTab", true); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.newTabUrl", "http://search.babylon.com/?babsrc=NT_FFUP"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.noFFXTlbr", false); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.propectorlck", 84998623); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.prtnrId", "babylon"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.ptch_0717", true); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.smplGrp", "none"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.srcExt", "ss"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.tlbrId", "tb9"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.vrsn", "1.5.3.17"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.vrsnTs", "1.5.3.173:00:52"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar.vrsni", "1.5.3.17"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.aflt", "babsst"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.babExt", ""); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.babTrack", "affID=110819"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.hardId", "b09a8afe000000000000701a04ef3e1b"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.id", "b09a8afe000000000000701a04ef3e1b"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.instlDay", "15487"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.instlRef", "sst"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.smplGrp", "none"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.srcExt", "ss"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.tlbrId", "tb9"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.173:00:52"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17"); =>Toolbar.Babylon
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossrider.bic", "1378bcf59f6b3665f6e7ca1d784f4c1e"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.InstallationThankYouPage", true); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.InstallationTime", 1338080431); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.InstallationUserSettings.searchUserConifrmation", false); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.InstallationUserSettings.setHomepage", false); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.InstallationUserSettings.setNewTab", false); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.InstallationUserSettings.setSearch", false); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.active", true); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.addressbar", ""); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.addressbarenhanced", ""); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.affid", "0"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.backgroundjs", "\n\n\"undefined\"!=typeof _GPL_BG_NEW&&appAPI.webRequest&&appAPI.webR[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.backgroundver", 16); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.can_run_bg_code", true); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.certdomaininstaller", ""); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.changeprevious", false); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie.InstallationTime.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie.InstallationTime.value", "1338080431"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie.InstallerParams.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_aoi.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_aoi.value", "1338080431"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_blocklist.expiration", "Sun Jan 06 2013 15:11:41 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_blocklist.value", "%22nonexistantdomain.com%22"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_country_code.expiration", "Sat Jan 12 2013 15:25:37 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_country_code.value", "%22FR%22"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_crr.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_crr.value", "1357425473"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_currenttime.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_currenttime.value", "%221356061492%22"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_hotfix20111102645.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_hotfix20111102645.value", "%221%22"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_installer_params.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_installer_params.value", "%7B%22source_id%22%3A%220%22%2C%22sub_id%22%3A%[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_parent_zoneid.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_parent_zoneid.value", "%2214019%22"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_pc_20120828.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_pc_20120828.value", "1346406558001"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_product_id.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_product_id.value", "%2221%22"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_zoneid.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie._GPL_zoneid.value", "%2240331%22"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie.dbtest.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie.dbtest.value", "1346024106557"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie.lastrequest.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.cookie.lastrequest.value", "%7B%22path%22%3A%22/art/Ninse-and-Me-346941541%22%2C%22ho[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.description", "I Want This!"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.domain", ""); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.emailsig", ""); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.enablesearch", false); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.exposesites", ""); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.fbremoteurl", ""); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.group", 0); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.homepage", ""); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.iframe", false); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.internaldb.InstallerIdentifiers.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.internaldb.InstallerIdentifiers.value", "%7B%22installer_bic%22%3A%22351AD3BFCE204834[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.internaldb.Resources_appVer.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.internaldb.Resources_appVer.value", "98"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.internaldb.Resources_lastVersion.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.internaldb.Resources_lastVersion.value", "0"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.internaldb.Resources_meta.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.internaldb.Resources_meta.value", "%7B%7D"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.internaldb.Resources_nextCheck.expiration", "Sun Jan 06 2013 05:37:55 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.internaldb.Resources_nextCheck.value", "true"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.internaldb.Resources_queue.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.internaldb.Resources_queue.value", "%7B%7D"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.js", "\n\nif(\"undefined\"!=typeof _GPL_PLUGIN){var _GPL_=function(){_GPL_PLUGIN.star[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.manifesturl", ""); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.name", "I Want This"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.newtab", ""); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.opensearch", ""); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_1000014.code", "Array.prototype.indexOf||(Array.prototype.indexOf=func[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_1000014.ver", 10); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_1000015.code", "var _GPL_BG={vars:{},rules:{},started:!1,log:function([...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_1000015.ver", 4); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_13.code", "(function(a){a.selectedText=function(e,c){function d(){if(w[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_13.ver", 2); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_14.code", "if(typeof(appAPI)===\"undefined\"){appAPI={}}appAPI.JSON={}[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_14.ver", 2); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_15.code", "(function(e){function u(c,b){for(css_prop in b)b.hasOwnProp[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_15.name", "FacebookFFIE"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_15.ver", 1); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_16.code", "if((typeof isBackground===\"undefined\"||isBackground!=true[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_16.ver", 4); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_17.code", "if(typeof window!==\"undefined\"){\n/*!\n * jQuery JavaScri[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_17.ver", 3); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_47.code", "(function(){appAPI.ready=function(a){appAPI.resources.isRea[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_47.name", "resources_background"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_47.ver", 1); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_64.code", "(function(){var h=\"__CR_EMPTY_CHANNEL__\";var d=function(j[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_64.name", "appApiMessage"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_64.ver", 1); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_72.code", "if(appAPI.__should_activate_validation__===true){(function([...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_72.name", "appApiValidation"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins.plugin_72.ver", 1); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins_lists.plugins_0", "17,14,16,64,72,47,1000015"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.plugins_lists.plugins_1", "17,14,13,16,15,64,72,1000014"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.pluginsurl", "http://app-static.crossrider.com/plugin/apps/2258/plugins/086/ff/plugin[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.pluginsversion", 23); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.premium", true); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.publisher", "215 Apps"); =>PUP.SpecialSavings
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.searchstatus", 0); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.setnewtab", false); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.settingsurl", ""); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.thankyou", "http://iw.antthis.com/thankyou.html"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.updateinterval", 360); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.2258.ver", 98); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.InstallationTime", 1338080451); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.backgroundjs", "\n\n\"undefined\"!=typeof _GPL_BG_NEW&&appAPI.webRequest&&appAPI.[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.backgroundver", 15); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.cookie.InstallationTime.expiration", "Fri Feb 01 2030 00:00:00 GMT+0100"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.cookie.InstallationTime.value", "1338080451"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.js", "\n\nif(\"undefined\"!=typeof _GPL_PLUGIN){var _GPL_=function(){_GPL_PLUGIN.[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_1000014.code", "Array.prototype.indexOf||(Array.prototype.indexOf=[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_1000014.ver", 7); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_1000015.code", "var _GPL_BG={vars:{},rules:{},started:!1,log:funct[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_1000015.ver", 3); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_13.code", "(function(a){a.selectedText=function(e,c){function d(){[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_13.ver", 2); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_14.code", "if(typeof(appAPI)===\"undefined\"){appAPI={}}appAPI.JSO[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_14.ver", 2); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_15.code", "(function(f){var u={};var e=Math.floor(Math.random()*99[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_15.name", "FacebookFFIE"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_15.ver", 1); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_16.code", "(function(f,b){if(typeof(b)==\"undefined\"){b={}}var d=[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_16.ver", 3); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_17.code", "if(typeof window!==\"undefined\"){\n/*!\n * jQuery Java[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_17.ver", 3); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_47.code", "(function(){appAPI.ready=function(a){appAPI.resources.i[...] =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_47.name", "resources_background"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins.plugin_47.ver", 1); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins_lists.plugins_0", "17,14,16,47,1000015"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.plugins_lists.plugins_1", "17,14,13,16,15,1000014"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.pluginsversion", 15); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.73407340.ver", 90); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.adsOldValue", -1); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.apps", "2258"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.bic", "1378bcf59f6b3665f6e7ca1d784f4c1e"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.cid", 2258); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.firstrun", false); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.hadappinstalled", true); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.installationdate", 1338080451); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.lastcheck", 22624687); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.lastcheckitem", 22624687); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.misc.lastBgWorkerTimer", "1340746605779"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.misc.lastDomWorkerTimer", "1340746605776"); =>PUP.CrossRider
O69 - SBI: prefs.js [Lu'cr�ut - rg1c8rl0.default] user_pref("extensions.crossriderapp2258.modetype", "production"); =>PUP.CrossRider
O69 - SBI: SearchScopes [HKCU] ${searchCLSID} - (@ieframe.dll,-12512) - http://search.live.com
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} [DefaultScope] - (Search the web (Babylon)) - http://search.babylon.com =>Adware.IMBooster
O69 - SBI: SearchScopes [HKCU] {67A2568C-7A0A-4EED-AECC-B5405DE63B64} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKCU] {afdbddaa-5d3f-42ee-b79c-185a7020515b} - (Messenger Plus Live France Customized Web Search) - http://search.conduit.com
O69 - SBI: SearchScopes [HKCU] {B44A2790-C086-471B-A1E0-3595F83FE8EA} - (Yahoo! Search) - http://fr.search.yahoo.com
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} [DefaultScope] - (Google) - http://www.google.com
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} [DefaultScope] - (Google) - http://www.google.com
~ Keys: Scanned in 00mn 00s
---\\ Crack & Keygen Files (O82)
C:\Users\Lu'cr�ut\Desktop\CS4_FR_mart\Adobe CS4 Master Collection Keygen.exe
C:\Users\Lu'cr�ut\Desktop\CS4_FR_mart\Adobe CS4 Master Collection Keygen.exe
~ Files: Scanned in 01mn 20s
---\\ Recherche particuliere � la racine de certains dossiers (O84)
[MD5.4945092A7D29EA96B1C4E82DC8CC905A] [SPRF][21/02/2011] (...) -- C:\ProgramData\ezsidmv.dat [56]
[MD5.376E0ACBD78C01A78A6221BFFC4B7795] [SPRF][02/10/2012] (...) -- C:\Users\Lu'cr�ut\AppData\Roaming\wklnhst.dat [1430]
[MD5.4EF33D516F31BEB1C9847D1FDA69375C] [SPRF][10/06/2013] (...) -- C:\Users\Lu'cr�ut\Desktop\adwcleaner.exe [648201]
[MD5.1CEB676AFB674B495537413EB652F010] [SPRF][07/01/2012] (.Pas de propri�taire - AVAST Software Setup Engine.) -- C:\Users\Lu'cr�ut\Desktop\setup_ais.exe [87604152]
[MD5.32775BB26A6C98C354D962077F37206D] [SPRF][09/06/2013] (.El Desaparecido - SosVirus.org - UsbFix - Remove malware from yours drive!.) -- C:\Users\Lu'cr�ut\Desktop\UsbFix.exe [1048628]
[MD5.8EE509FEE63CB89AB1D763F644ACFED2] [SPRF][10/06/2013] (.Nicolas Coolman - ZHPDiag.) -- C:\Users\Lu'cr�ut\Desktop\ZHPDiag2.exe [5676095]
[MD5.3FEA9D2EDF23B0283C7A66C8DEA380BD] [SPRF][25/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player Module.) -- C:\Windows\Downloaded Program Files\dwusplay.dll [24576]
[MD5.CDBE35EA59BC9223E4F800BD1DB82D27] [SPRF][25/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Setup Player.) -- C:\Windows\Downloaded Program Files\dwusplay.exe [196608]
[MD5.0C78701C6F42345DFF2B2B6C3C3D01EF] [SPRF][25/07/2002] (.InstallShield Software Corporation - InstallShield Update Service Web Agent.) -- C:\Windows\Downloaded Program Files\isusweb.dll [172032]
~ Files: Scanned in 00mn 04s
---\\ Scan Additionnel (O88)
Database Version : v2.12437 - (10/06/2013)
Cl�s trouv�es (Keys found) : 87
Valeurs trouv�es (Values found) : 1
Dossiers trouv�s (Folders found) : 20
Fichiers trouv�s (Files found) : 1
[HKLM\Software\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}] =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}] =>Toolbar.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}] =>Toolbar.Conduit
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}] =>Toolbar.Conduit
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4daac69c-cba7-45e2-9bc8-1044483d3352}] =>Toolbar.Conduit
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4daac69c-cba7-45e2-9bc8-1044483d3352}] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4daac69c-cba7-45e2-9bc8-1044483d3352}] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{65bcd620-07dd-012f-819f-073cf1b8f7c6}] =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83ff80f4-8c74-4b80-b5ba-c8ddd434e5c4}] =>Spyware.BHO
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83ff80f4-8c74-4b80-b5ba-c8ddd434e5c4}] =>Spyware.BHO
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Skype
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}] =>Toolbar.Skype
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}] =>PUP.DealPly
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}] =>PUP.DealPly
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448}] =>PUP.DealPly
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Skype
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Skype
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] =>Toolbar.Skype
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}] =>Toolbar.Conduit
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}] =>Toolbar.Conduit
[HKLM\Software\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}] =>Adware.CDNHelper
[HKLM\Software\Wow6432Node\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}] =>Adware.CDNHelper
[HKLM\Software\Classes\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98DB}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98DB}] =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\escort.dll] =>Toolbar.Babylon
[HKLM\Software\Classes\Conduit.Engine] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\gaiilaahiahdejapggenmdmafpmbipje] =>PUP.DealPly
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\mpfapcdfbbledbojijcbcclmlieaoogk] =>PUP.RewardsArcade
[HKCU\Software\AppDataLow\Software\conduitEngine] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\conduitEngine] =>Toolbar.Conduit
[HKCU\Software\Cr_Installer] =>PUP.CrossRider
[HKCU\Software\AppDataLow\Software\I Want This] =>PUP.RewardsArcade
[HKCU\Software\AppDataLow\Software\Messenger_Plus_Live_France] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Messenger_Plus_Live_France] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\OpenCandy NSIS SDK] =>Adware.OpenCandy
[HKCU\Software\AppDataLow\Software\PriceGong] =>Adware.PriceGong
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\AppDataLow\Software\Softonic_France] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Softonic_France] =>Toolbar.Conduit
[HKCU\Software\AppDataLow\Toolbar] =>Toolbar.Conduit
[HKCU\Software\DealPly] =>PUP.DealPly
[HKLM\Software\Wow6432Node\DealPly] =>PUP.DealPly
[HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASAPI32] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASMANCS] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DealPly] =>PUP.DealPly
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\I Want This] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Messenger_Plus_Live_France Toolbar] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Softonic_France Toolbar] =>Toolbar.Conduit
[HKLM\Software\Classes\Prod.cap] =>Toolbar.Babylon
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}] =>Spyware.Partner
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}] =>Spyware.Partner
[HKLM\Software\Wow6432Node\Microsoft\Tracing\I Want This_RASAPI32] =>Adware.GamePlayLabs
[HKLM\Software\Wow6432Node\Microsoft\Tracing\I Want This_RASMANCS] =>Adware.GamePlayLabs
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Messenger Plus!\OpenCandy] =>Adware.OpenCandy
[HKLM\Software\Classes\CrossriderApp0002258.BHO] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0002258.BHO.1] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0002258.FBApi] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0002258.FBApi.1] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0002258.Sandbox] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0002258.Sandbox.1] =>PUP.CrossRider
[HKLM\Software\Classes\Toolbar.CT2542115] =>Toolbar.Conduit
[HKLM\Software\Classes\Toolbar.CT2567681] =>Toolbar.Conduit
[HKLM\Software\Classes\AppID\escort.DLL] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0002258.BHO] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0002258.BHO.1] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0002258.FBApi] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0002258.FBApi.1] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0002258.Sandbox] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0002258.Sandbox.1] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\Toolbar.CT2542115] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\Toolbar.CT2567681] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011221158}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{11111111-1111-1111-1111-110011221158}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{22222222-2222-2222-2222-220022222258}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{33333333-3333-3333-3333-330033223358}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\AppID\escort.DLL] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110011221158}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar]:{30F9B915-B755-4826-820B-08FBA6BD249D} =>Toolbar.Conduit
C:\Program Files (x86)\Conduit =>Toolbar.Conduit
C:\Program Files (x86)\ConduitEngine =>Toolbar.Conduit
C:\Program Files (x86)\DealPly =>PUP.DealPly
C:\Program Files (x86)\Softonic_France =>Toolbar.Conduit
C:\Program Files (x86)\I Want This =>Adware.GamePlayLabs
C:\ProgramData\Babylon =>Toolbar.Babylon
C:\ProgramData\InstallMate =>Toolbar.Agent
C:\ProgramData\Partner =>Spyware.Partner
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DealPly =>PUP.DealPly
C:\Users\Lu'cr�ut\AppData\Roaming\Babylon =>Toolbar.Babylon
C:\Users\Lu'cr�ut\AppData\Local\I Want This =>Adware.GamePlayLabs
C:\Users\Lu'cr�ut\AppData\LocalLow\BabylonToolbar =>Toolbar.Babylon
C:\Users\Lu'cr�ut\AppData\LocalLow\Conduit =>Toolbar.Conduit
C:\Users\Lu'cr�ut\AppData\LocalLow\ConduitEngine =>Toolbar.Conduit
C:\Users\Lu'cr�ut\AppData\LocalLow\PriceGong =>Adware.PriceGong
C:\Users\Lu'cr�ut\AppData\LocalLow\Softonic_France =>Toolbar.Conduit
C:\Users\Lu'cr�ut\AppData\Local\Temp\BabylonToolbar =>Toolbar.Babylon
C:\Users\Lu'cr�ut\AppData\Roaming\Mozilla\Firefox\Profiles\rg1c8rl0.default\Conduit =>Toolbar.Conduit
C:\Users\Lu'cr�ut\AppData\Roaming\Mozilla\Firefox\Profiles\rg1c8rl0.default\ConduitEngine =>Toolbar.Conduit
C:\Users\Lu'cr�ut\AppData\Roaming\Mozilla\Firefox\Profiles\rg1c8rl0.default\Extensions\engine@conduit.com =>Toolbar.Conduit
C:\Users\Lu'cr�ut\AppData\Roaming\Mozilla\Firefox\Profiles\rg1c8rl0.default\SearchPlugins\conduit.xml =>Toolbar.Conduit
~ Additionnel Scan: 338570 Items scanned in 00mn 25s
---\\ Etat g�n�ral des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 23/09/2012 65192 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 15/05/2013 256904 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 25/05/2011 37664 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 09/05/2013 46808 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Auto 09/05/2013 137960 | (avast! Firewall) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\afwServ.exe
SR - | Auto 06/04/2011 349472 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
SR - | Auto 30/04/2011 87368 | (DeviceMonitorService) . (.Nero AG.) - C:\Program Files (x86)\Motorola Media Link\Lite\NServiceEntry.exe
SR - | Auto 22/01/2010 310352 | (DsiWMIService) . (.Dritek System Inc..) - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
SR - | Auto 18/01/2010 842784 | (ePowerSvc) . (.Acer Incorporated.) - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
SS - | Demand 10/10/2009 238328 | (GameConsoleService) . (.WildTangent, Inc..) - C:\Program Files (x86)\Packard Bell Games\Packard Bell Game Console\GameConsoleService.exe
SR - | Auto 28/08/2009 1150496 | (Greg_Service) . (.Acer Incorporated.) - C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe
SS - | Auto 02/07/2010 135664 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 02/07/2010 135664 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 16/08/2012 194032 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
SR - | Auto 24/12/2009 13336 | (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
SR - | Demand 07/06/2011 934176 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SR - | Auto 09/12/2009 268824 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SR - | Auto 223088 | (MotoHelper) . (...) - C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperService.exe
SS - | Demand 24/05/2013 117144 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SS - | Demand 28/07/2009 935208 | (Nero BackItUp Scheduler 4.0) . (.Nero AG.) - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
SR - | Auto 07/01/2010 255744 | (NTI IScheduleSvc) . (.NewTech Infosystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe
SR - | Auto 25/01/2010 393320 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe
SS - | Auto 28/02/2013 161384 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SR - | Auto 09/12/2009 2320920 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Auto 04/07/2009 240160 | (Updater Service) . (.Acer.) - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
SR - | Auto 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 04s
~ 1526 Legitimates filtered by white list
End of the scan (1090 lines in 10mn 50s)(2)