Lenteur pc sous vista
nadou71
Messages postés
20
Statut
Membre
-
nadou71 Messages postés 20 Statut Membre -
nadou71 Messages postés 20 Statut Membre -
Bonjour, etant nouveau sur le forum, je viens de regarder le forum concernat le sujet j'ai telecharge ZHP et vous remet le rapport ici en copier coller , merci pour votre aide merci d'avance
Rapport de ZHPScan v1.28 par Nicolas Coolman, Update du 24/08/2011
Run by Nadine at 26/08/2011 10:54:41
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
---\\ Clés de Registre trouvées (Registry Keys found)
[HKLM\Software\Classes\AppID\bandoocore.exe] =>Adware.Bandoo
[HKLM\Software\Classes\AppID\contenthandler.dll] =>Toolbar.Kiwee
[HKLM\Software\Classes\AppID\eoenginebho.dll] =>PUP.Eorezo
[HKLM\Software\Classes\AppID\EoRezoBHO.DLL] =>PUP.Eorezo
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\EoEngine_is1] =>PUP.Eorezo
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\EoRezo_is1] =>PUP.Eorezo
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Search Guard Plus Updater] =>PUP.Fbsearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Search Guard Plus] =>PUP.Fbsearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SoftwareUpdate_is1] =>PUP.Eorezo
[HKLM\Software\Classes\ag.mediaplayercom] =>Adware.BHO
[HKLM\Software\Classes\ag.mediaplayercom] =>Toolbar.Kiwee
[HKLM\Software\Classes\agcore.config.agconfig] =>Adware.BHO
[HKLM\Software\Classes\agcore.search.search] =>Adware.BHO
[HKLM\Software\Classes\agcore.Text.JSON] =>Adware.BHO
[HKLM\Software\Classes\agihelper.agutils] =>Adware.BHO
[HKLM\Software\Classes\bandoocore.bandoocore] =>Adware.Bandoo
[HKLM\Software\Classes\bandoocore.bandoocore.1] =>Adware.Bandoo
[HKLM\Software\Classes\bandoocore.resourcesmngr] =>Adware.Bandoo
[HKLM\Software\Classes\bandoocore.resourcesmngr.1] =>Adware.Bandoo
[HKLM\Software\Classes\bandoocore.settingsmngr] =>Adware.Bandoo
[HKLM\Software\Classes\bandoocore.settingsmngr.1] =>Adware.Bandoo
[HKLM\Software\Classes\bandoocore.statisticmngr] =>Adware.Bandoo
[HKLM\Software\Classes\bandoocore.statisticmngr.1] =>Adware.Bandoo
[HKLM\Software\Classes\contenthandler.contentselection] =>Toolbar.Kiwee
[HKLM\Software\Classes\contenthandler.contentselection.1] =>Toolbar.Kiwee
[HKLM\Software\Classes\eorezobho.eobho] =>PUP.Eorezo
[HKLM\Software\Classes\eorezobho.eobho.1] =>PUP.Eorezo
[HKLM\Software\Classes\IminentBHOnavigationerror.chelperbho] =>Adware.IMBooster
[HKLM\Software\Classes\IminentBHOnavigationerror.chelperbho.1] =>Adware.IMBooster
[HKLM\Software\Classes\kiweeietoolbar.kiweetoolbar] =>Toolbar.Kiwee
[HKLM\Software\Classes\kiweeietoolbar.kiweetoolbar.1] =>Toolbar.Kiwee
[HKLM\Software\Classes\kiweeietoolbar.toolbarinfo] =>Toolbar.Kiwee
[HKLM\Software\Classes\kiweeietoolbar.toolbarinfo.1] =>Toolbar.Kiwee
[HKLM\Software\Classes\sweetie.ietoolbar] =>Toolbar.SweetIM
[HKLM\Software\Classes\sweetie.ietoolbar.1] =>Toolbar.SweetIM
[HKLM\Software\Classes\sweetim_urlsearchhook.toolbarurlsearchhook] =>Toolbar.SweetIM
[HKLM\Software\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1] =>Toolbar.SweetIM
[HKLM\Software\Classes\Toolbar.CT2032792] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar.ct2452474] =>Adware.Agent
[HKLM\Software\Classes\Toolbar3.sweetie] =>Toolbar.SweetIM
[HKLM\Software\Classes\Toolbar3.sweetie.1] =>Toolbar.SweetIM
[HKLM\Software\Classes\urlsearchhook.toolbarurlsearchhook] =>Adware.Agent
[HKLM\Software\Classes\urlsearchhook.toolbarurlsearchhook.1] =>Adware.Agent
[HKLM\Software\Classes\AppID\{055069F3-F78B-4BD1-A277-FE66648D3300}] =>PUP.Fbsearch
[HKLM\Software\Classes\Interface\{06DE5702-44CF-4B79-B4EF-3DDF653358F5}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0bc6e3fa-78ef-4886-842c-5a1258c4455a}] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0bc6e3fa-78ef-4886-842c-5a1258c4455a}] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0bc6e3fa-78ef-4886-842c-5a1258c4455a}] =>Toolbar.Kiwee
[HKLM\Software\Classes\CLSID\{0bc6e3fa-78ef-4886-842c-5a1258c4455a}] =>Toolbar.Kiwee
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0bc6e3fa-78ef-4886-842c-5a1258c4455a}] =>Toolbar.Kiwee
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0bc6e3fa-78ef-4886-842c-5a1258c4455a}] =>Toolbar.Kiwee
[HKLM\Software\Classes\AppID\{1301a8a5-3dfb-4731-a162-b357d00c9644}] =>Adware.Bandoo
[HKLM\Software\Classes\TypeLib\{13b1a411-66d8-49ac-bbc6-0102f0918aed}] =>PUP.Eorezo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{15AF6E9C-9169-4A9E-A738-FD28D898091D}] =>Adware.IMBooster
[HKLM\Software\Classes\TypeLib\{15d9ca76-f712-4548-b2a5-c67cd47ac47a}] =>PUP.Eorezo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{1FC253E3-EFB3-44CA-9B37-A2A35612134D}] =>Adware.IMBooster
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{23a287db-449a-462f-bde1-8635a61671ce}] =>Adware.BHO
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{23A287DB-449A-462F-BDE1-8635A61671CE}] =>Toolbar.Kiwee
[HKLM\Software\Classes\TypeLib\{259eeb17-79aa-44df-8410-8e55f82a902a}] =>Toolbar.Kiwee
[HKLM\Software\Classes\Interface\{2a42d13c-d427-4787-821b-cf6973855778}] =>Adware.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{346de098-61f9-4b42-89da-6dfba7091bb6}] =>Adware.IMBooster
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{346de098-61f9-4b42-89da-6dfba7091bb6}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{346de098-61f9-4b42-89da-6dfba7091bb6}] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{346de098-61f9-4b42-89da-6dfba7091bb6}] =>Adware.IMBooster
[HKLM\Software\Classes\AppID\{362a53b2-2913-4f8a-82f5-7e0a23fdc6f9}] =>PUP.Eorezo
[HKLM\Software\Classes\Interface\{3d8478aa-7b88-48a9-8bcb-b85d594411ec}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{3e16a203-c0aa-4d44-acc5-38a70a8c76da}] =>Toolbar.Kiwee
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{424624f4-c5dd-4e1d-bdd0-1e9c9b7799cc}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4260e0cc-0f75-462e-88a3-1e05c248bf4c}] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4260e0cc-0f75-462e-88a3-1e05c248bf4c}] =>Toolbar.Kiwee
[HKLM\Software\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{477f210a-2a86-4666-9c4b-1189634d2c84}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{4897bba6-48d9-468c-8efa-846275d7701b}] =>Adware.Agent
[HKLM\Software\Classes\TypeLib\{4d3b167e-5fd8-4276-8fd7-9df19c1e4d19}] =>Toolbar.SweetIM
[HKLM\Software\Classes\Interface\{5663b370-f3c3-40d1-9c46-0e800aa4d0e8}] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{58124A0B-DC32-4180-9BFF-E0E21AE34026}] =>Adware.IMBooster
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{58124A0B-DC32-4180-9BFF-E0E21AE34026}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{58124A0B-DC32-4180-9BFF-E0E21AE34026}] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{58124A0B-DC32-4180-9BFF-E0E21AE34026}] =>Adware.IMBooster
[HKLM\Software\Classes\AppID\{584e8107-e34a-493a-a015-06e3841482be}] =>PUP.Eorezo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6638a9de-0745-4292-8a2e-ae530e7b9b3f}] =>Toolbar.Kiwee
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6638a9de-0745-4292-8a2e-ae530e7b9b3f}] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6e15d3c4-c6fc-4f02-b130-77cc5b1f09db}] =>Toolbar.Kiwee
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6e15d3c4-c6fc-4f02-b130-77cc5b1f09db}] =>Toolbar.Kiwee
[HKLM\Software\Classes\TypeLib\{77860007-19AE-4C29-B26D-AEA48F3A05C5}] =>Adware.IMBooster
[HKLM\Software\Classes\TypeLib\{77AA25E8-6083-4949-A831-9CB11861DC10}] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7f000001-db8e-f89c-2fec-49bf726f8c12}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{819DB72D-1C28-4387-9778-E2FF3DC86F74}] =>PUP.Eorezo
[HKLM\Software\Classes\Interface\{819db72d-1c28-4387-9778-e2ff3dc86f74}] =>Adware.BHO
[HKLM\Software\Classes\CLSID\{82ac53b4-164c-4b07-a016-437a8388b81a}] =>Toolbar.SweetIM
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{87A0B80B-5BA7-4CB0-9553-105D68777D60}] =>Adware.BHO
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8a96af9e-4074-43b7-bea3-87217bda74c8}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}] =>PUP.Fbsearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}] =>PUP.Fbsearch
[HKLM\Software\Classes\CLSID\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}] =>PUP.Fbsearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}] =>PUP.Fbsearch
[HKLM\Software\Classes\TypeLib\{8F5F1CB6-EA9E-40AF-A5CA-C7FD63CC1971}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}] =>Adware.IMBooster
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}] =>Adware.IMBooster
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9c8a3ca5-889e-4554-beec-ec0876e4e96a}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{9ebb289a-2d7b-465b-825f-1530b813e95a}] =>Adware.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}] =>Adware.IMBooster
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}] =>Adware.IMBooster
[HKLM\Software\Classes\AppID\{a5461fca-320c-4d6f-a150-a53823ce8142}] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{A76AA284-E52D-47E6-9E4F-B85DBF8E35C3}] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A76AA284-E52D-47E6-9E4F-B85DBF8E35C3}] =>Adware.IMBooster
[HKLM\Software\Classes\TypeLib\{AA2E16F2-387A-415F-BA95-B89BAF3AF109}] =>PUP.Fbsearch
[HKLM\Software\Classes\AppID\{AFBB7970-789A-4264-BA70-E8127DECE400}] =>PUP.Eorezo
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}] =>Toolbar.Conduit
[HKLM\Software\Classes\TypeLib\{B6ACB3F1-6A83-432C-B854-3E1056F87F4E}] =>PUP.Eorezo
[HKLM\Software\Classes\TypeLib\{b6acb3f1-6a83-432c-b854-3e1056f87f4e}] =>Adware.BHO
[HKLM\Software\Classes\TypeLib\{c7403c30-3644-43d8-a82f-4bd84b9682d9}] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{c7b76b90-3455-4ae6-a752-eac4d19689e5}] =>PUP.Eorezo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{c7b76b90-3455-4ae6-a752-eac4d19689e5}] =>PUP.Eorezo
[HKLM\Software\Classes\CLSID\{c7b76b90-3455-4ae6-a752-eac4d19689e5}] =>PUP.Eorezo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c7b76b90-3455-4ae6-a752-eac4d19689e5}] =>PUP.Eorezo
[HKLM\Software\Classes\AppID\{CC50232E-FDB1-436F-B658-452F88E81736}] =>Toolbar.Kiwee
[HKLM\Software\Classes\Interface\{cd5c92ae-97b0-4bc3-ba65-ba0308d543bf}] =>Adware.Agent
[HKLM\Software\Classes\CLSID\{e03bafdc-eb9d-4c35-a7a2-ab6c62ff0a68}] =>Adware.BHO
[HKLM\Software\Classes\CLSID\{e6375f37-e4d1-4f51-b651-4658c27ac5bf}] =>Adware.BHO
[HKLM\Software\Classes\Interface\{eee6c358-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKLM\Software\Classes\Interface\{eee6c35a-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{eee6c35b-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{eee6c35b-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKLM\Software\Classes\CLSID\{eee6c35b-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKLM\Software\Classes\TypeLib\{eee6c35e-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKLM\Software\Classes\TypeLib\{eee6c35f-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{eee6c360-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{eee6c360-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{f9189560-573a-4fde-b055-ae7b0f4cf080}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.Softomate
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.Softomate
[HKLM\Software\Classes\CLSID\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.Softomate
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.Softomate
[HKLM\Software\Classes\Interface\{ff871e51-2655-4d06-aed5-745962a96b32}] =>Adware.Bandoo
[HKLM\Software\Bandoo] =>Adware.Bandoo
[HKCU\Software\Conduit] =>Toolbar.Conduit
[HKCU\Software\AppDataLow\Software\Conduit] =>Toolbar.Conduit
[HKLM\Software\Conduit] =>Toolbar.Conduit
[HKCU\Software\fcn] =>Rogue.Multiple
[HKCU\Software\IMBooster4web-en] =>Adware.IMBooster
[HKCU\Software\AppDataLow\Software\IMBooster4web-en] =>Adware.IMBooster
[HKLM\Software\IMBooster4web-en] =>Adware.IMBooster
[HKCU\Software\Iminent] =>Adware.IMBooster
[HKLM\Software\Iminent] =>Adware.IMBooster
[HKCU\Software\SpiderMessenger] =>Spyware.AgenceExclusive
[HKCU\Software\SweetIM] =>Toolbar.SweetIM
[HKLM\Software\SweetIM] =>Toolbar.SweetIM
[HKCU\Software\AppDataLow\Toolbar] =>Toolbar.Conduit
[HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Toolbar] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Bandoo] =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\eoengine_is1] =>PUP.Eorezo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\EoRezo_is1] =>PUP.Eorezo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBooster4web-en Toolbar] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\softwareupdate_is1] =>PUP.Eorezo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\spidermessenger_is1] =>PUP.Eorezo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\TBSB07183.TBSB07183Toolbar] =>PUP.Fbsearch
---\\ Valeurs de clé de Registre trouvées (Registry Values found)
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{346de098-61f9-4b42-89da-6dfba7091bb6} =>Adware.IMBooster
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{346de098-61f9-4b42-89da-6dfba7091bb6} =>Adware.IMBooster
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{6638a9de-0745-4292-8a2e-ae530e7b9b3f} =>Toolbar.Kiwee
[HKLM\Software\Mozilla\Firefox\Extensions]:SpiderMessengerHelper@spidermessenger.com =>Spyware.AgenceExclusive
[HKLM\Software\Mozilla\Firefox\Extensions]:toolbar@kiwee.com =>Toolbar.Kiwee
[HKLM\Software\Microsoft\Windows\CurrentVersion\Run]:FBSSA =>PUP.Fbsearch
---\\ Dossiers trouvés (Directories found)
C:\Program Files\AGI =>Toolbar.Kiwee
C:\Program Files\Babylon =>Toolbar.Babylon
C:\Program Files\Bandoo =>Adware.Bandoo
C:\Program Files\Conduit =>Toolbar.Conduit
C:\Program Files\EoRezo =>PUP.Eorezo
C:\Program Files\Fast Browser Search =>PUP.Fbsearch
C:\Program Files\IMBooster4web-en =>Adware.IMBooster
C:\Program Files\IMinent Toolbar =>Adware.IMBooster
C:\Program Files\Iminent =>Adware.IMBooster
C:\Program Files\Kiwee Toolbar =>Toolbar.Kiwee
C:\Program Files\myBabylon_English =>Toolbar.Conduit
C:\Program Files\Original-Solitaire =>Adware.Navipromo
C:\Program Files\SGPSA =>PUP.Fbsearch
C:\Program Files\SpiderMessenger =>Spyware.AgenceExclusive
C:\Program Files\SweetIM =>Toolbar.SweetIM
C:\Program Files\Mozilla Firefox\Extensions\webbooster@iminent.com =>Adware.IMBooster
C:\ProgramData\AGI =>Toolbar.Kiwee
C:\ProgramData\Babylon =>Toolbar.Babylon
C:\ProgramData\GamesBar =>Adware.GamesBar
C:\ProgramData\Iminent =>Adware.IMBooster
C:\ProgramData\Kiwee Toolbar =>Toolbar.Kiwee
C:\ProgramData\SweetIM =>Toolbar.SweetIM
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Iminent =>Adware.IMBooster
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kiwee Toolbar =>Toolbar.Kiwee
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Original-Solitaire =>Adware.Navipromo
C:\Users\Nadine\AppData\Roaming\AGI =>Toolbar.Kiwee
C:\Users\Nadine\AppData\Roaming\Babylon =>Toolbar.Babylon
C:\Users\Nadine\AppData\Roaming\EoRezo =>PUP.Eorezo
C:\Users\Nadine\AppData\Local\Babylon =>Toolbar.Babylon
C:\Users\Nadine\AppData\Local\Conduit =>Toolbar.Conduit
C:\Users\Nadine\AppData\Local\EoRezo =>PUP.Eorezo
C:\Users\Nadine\AppData\Local\IMBooster4web-en =>Adware.IMBooster
C:\Users\Nadine\AppData\Local\Iminent =>Adware.IMBooster
C:\Users\Nadine\AppData\Local\Original-Solitaire =>Adware.Navipromo
C:\Users\Nadine\AppData\Local\SpiderMessenger =>Spyware.AgenceExclusive
C:\Users\Nadine\AppData\LocalLow\AGI =>Toolbar.Kiwee
C:\Users\Nadine\AppData\LocalLow\Conduit =>Toolbar.Conduit
C:\Users\Nadine\AppData\LocalLow\IMBooster4web-en =>Adware.IMBooster
C:\Users\Nadine\AppData\LocalLow\Kiwee Toolbar =>Toolbar.Kiwee
C:\Users\Nadine\AppData\LocalLow\myBabylon_English =>Toolbar.Conduit
C:\Users\Nadine\AppData\LocalLow\SweetIM =>Toolbar.SweetIM
---\\ Fichiers Firefox trouvés (Files found)
*** None ***
---\\ Fichiers trouvés (Files found)
*** None ***
---\\ Bilan de la recherche (Scan Result)
Database Version : 8614 - (24/08/2011)
Clés trouvées (Keys found) : 164
Valeurs de clé trouvées (Values found) : 6
Dossiers trouvés (Folders found) : 48
Fichiers trouvés (Files found) : 0
End of the scan in 00mn 11s
Rapport de ZHPScan v1.28 par Nicolas Coolman, Update du 24/08/2011
Run by Nadine at 26/08/2011 10:54:41
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
---\\ Clés de Registre trouvées (Registry Keys found)
[HKLM\Software\Classes\AppID\bandoocore.exe] =>Adware.Bandoo
[HKLM\Software\Classes\AppID\contenthandler.dll] =>Toolbar.Kiwee
[HKLM\Software\Classes\AppID\eoenginebho.dll] =>PUP.Eorezo
[HKLM\Software\Classes\AppID\EoRezoBHO.DLL] =>PUP.Eorezo
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\EoEngine_is1] =>PUP.Eorezo
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\EoRezo_is1] =>PUP.Eorezo
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Search Guard Plus Updater] =>PUP.Fbsearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Search Guard Plus] =>PUP.Fbsearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SoftwareUpdate_is1] =>PUP.Eorezo
[HKLM\Software\Classes\ag.mediaplayercom] =>Adware.BHO
[HKLM\Software\Classes\ag.mediaplayercom] =>Toolbar.Kiwee
[HKLM\Software\Classes\agcore.config.agconfig] =>Adware.BHO
[HKLM\Software\Classes\agcore.search.search] =>Adware.BHO
[HKLM\Software\Classes\agcore.Text.JSON] =>Adware.BHO
[HKLM\Software\Classes\agihelper.agutils] =>Adware.BHO
[HKLM\Software\Classes\bandoocore.bandoocore] =>Adware.Bandoo
[HKLM\Software\Classes\bandoocore.bandoocore.1] =>Adware.Bandoo
[HKLM\Software\Classes\bandoocore.resourcesmngr] =>Adware.Bandoo
[HKLM\Software\Classes\bandoocore.resourcesmngr.1] =>Adware.Bandoo
[HKLM\Software\Classes\bandoocore.settingsmngr] =>Adware.Bandoo
[HKLM\Software\Classes\bandoocore.settingsmngr.1] =>Adware.Bandoo
[HKLM\Software\Classes\bandoocore.statisticmngr] =>Adware.Bandoo
[HKLM\Software\Classes\bandoocore.statisticmngr.1] =>Adware.Bandoo
[HKLM\Software\Classes\contenthandler.contentselection] =>Toolbar.Kiwee
[HKLM\Software\Classes\contenthandler.contentselection.1] =>Toolbar.Kiwee
[HKLM\Software\Classes\eorezobho.eobho] =>PUP.Eorezo
[HKLM\Software\Classes\eorezobho.eobho.1] =>PUP.Eorezo
[HKLM\Software\Classes\IminentBHOnavigationerror.chelperbho] =>Adware.IMBooster
[HKLM\Software\Classes\IminentBHOnavigationerror.chelperbho.1] =>Adware.IMBooster
[HKLM\Software\Classes\kiweeietoolbar.kiweetoolbar] =>Toolbar.Kiwee
[HKLM\Software\Classes\kiweeietoolbar.kiweetoolbar.1] =>Toolbar.Kiwee
[HKLM\Software\Classes\kiweeietoolbar.toolbarinfo] =>Toolbar.Kiwee
[HKLM\Software\Classes\kiweeietoolbar.toolbarinfo.1] =>Toolbar.Kiwee
[HKLM\Software\Classes\sweetie.ietoolbar] =>Toolbar.SweetIM
[HKLM\Software\Classes\sweetie.ietoolbar.1] =>Toolbar.SweetIM
[HKLM\Software\Classes\sweetim_urlsearchhook.toolbarurlsearchhook] =>Toolbar.SweetIM
[HKLM\Software\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1] =>Toolbar.SweetIM
[HKLM\Software\Classes\Toolbar.CT2032792] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar.ct2452474] =>Adware.Agent
[HKLM\Software\Classes\Toolbar3.sweetie] =>Toolbar.SweetIM
[HKLM\Software\Classes\Toolbar3.sweetie.1] =>Toolbar.SweetIM
[HKLM\Software\Classes\urlsearchhook.toolbarurlsearchhook] =>Adware.Agent
[HKLM\Software\Classes\urlsearchhook.toolbarurlsearchhook.1] =>Adware.Agent
[HKLM\Software\Classes\AppID\{055069F3-F78B-4BD1-A277-FE66648D3300}] =>PUP.Fbsearch
[HKLM\Software\Classes\Interface\{06DE5702-44CF-4B79-B4EF-3DDF653358F5}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0bc6e3fa-78ef-4886-842c-5a1258c4455a}] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0bc6e3fa-78ef-4886-842c-5a1258c4455a}] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0bc6e3fa-78ef-4886-842c-5a1258c4455a}] =>Toolbar.Kiwee
[HKLM\Software\Classes\CLSID\{0bc6e3fa-78ef-4886-842c-5a1258c4455a}] =>Toolbar.Kiwee
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0bc6e3fa-78ef-4886-842c-5a1258c4455a}] =>Toolbar.Kiwee
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0bc6e3fa-78ef-4886-842c-5a1258c4455a}] =>Toolbar.Kiwee
[HKLM\Software\Classes\AppID\{1301a8a5-3dfb-4731-a162-b357d00c9644}] =>Adware.Bandoo
[HKLM\Software\Classes\TypeLib\{13b1a411-66d8-49ac-bbc6-0102f0918aed}] =>PUP.Eorezo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{15AF6E9C-9169-4A9E-A738-FD28D898091D}] =>Adware.IMBooster
[HKLM\Software\Classes\TypeLib\{15d9ca76-f712-4548-b2a5-c67cd47ac47a}] =>PUP.Eorezo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{1FC253E3-EFB3-44CA-9B37-A2A35612134D}] =>Adware.IMBooster
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{23a287db-449a-462f-bde1-8635a61671ce}] =>Adware.BHO
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{23A287DB-449A-462F-BDE1-8635A61671CE}] =>Toolbar.Kiwee
[HKLM\Software\Classes\TypeLib\{259eeb17-79aa-44df-8410-8e55f82a902a}] =>Toolbar.Kiwee
[HKLM\Software\Classes\Interface\{2a42d13c-d427-4787-821b-cf6973855778}] =>Adware.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{346de098-61f9-4b42-89da-6dfba7091bb6}] =>Adware.IMBooster
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{346de098-61f9-4b42-89da-6dfba7091bb6}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{346de098-61f9-4b42-89da-6dfba7091bb6}] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{346de098-61f9-4b42-89da-6dfba7091bb6}] =>Adware.IMBooster
[HKLM\Software\Classes\AppID\{362a53b2-2913-4f8a-82f5-7e0a23fdc6f9}] =>PUP.Eorezo
[HKLM\Software\Classes\Interface\{3d8478aa-7b88-48a9-8bcb-b85d594411ec}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{3e16a203-c0aa-4d44-acc5-38a70a8c76da}] =>Toolbar.Kiwee
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{424624f4-c5dd-4e1d-bdd0-1e9c9b7799cc}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4260e0cc-0f75-462e-88a3-1e05c248bf4c}] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4260e0cc-0f75-462e-88a3-1e05c248bf4c}] =>Toolbar.Kiwee
[HKLM\Software\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}] =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{477f210a-2a86-4666-9c4b-1189634d2c84}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{4897bba6-48d9-468c-8efa-846275d7701b}] =>Adware.Agent
[HKLM\Software\Classes\TypeLib\{4d3b167e-5fd8-4276-8fd7-9df19c1e4d19}] =>Toolbar.SweetIM
[HKLM\Software\Classes\Interface\{5663b370-f3c3-40d1-9c46-0e800aa4d0e8}] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{58124A0B-DC32-4180-9BFF-E0E21AE34026}] =>Adware.IMBooster
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{58124A0B-DC32-4180-9BFF-E0E21AE34026}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{58124A0B-DC32-4180-9BFF-E0E21AE34026}] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{58124A0B-DC32-4180-9BFF-E0E21AE34026}] =>Adware.IMBooster
[HKLM\Software\Classes\AppID\{584e8107-e34a-493a-a015-06e3841482be}] =>PUP.Eorezo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6638a9de-0745-4292-8a2e-ae530e7b9b3f}] =>Toolbar.Kiwee
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6638a9de-0745-4292-8a2e-ae530e7b9b3f}] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6e15d3c4-c6fc-4f02-b130-77cc5b1f09db}] =>Toolbar.Kiwee
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6e15d3c4-c6fc-4f02-b130-77cc5b1f09db}] =>Toolbar.Kiwee
[HKLM\Software\Classes\TypeLib\{77860007-19AE-4C29-B26D-AEA48F3A05C5}] =>Adware.IMBooster
[HKLM\Software\Classes\TypeLib\{77AA25E8-6083-4949-A831-9CB11861DC10}] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7f000001-db8e-f89c-2fec-49bf726f8c12}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{819DB72D-1C28-4387-9778-E2FF3DC86F74}] =>PUP.Eorezo
[HKLM\Software\Classes\Interface\{819db72d-1c28-4387-9778-e2ff3dc86f74}] =>Adware.BHO
[HKLM\Software\Classes\CLSID\{82ac53b4-164c-4b07-a016-437a8388b81a}] =>Toolbar.SweetIM
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{87A0B80B-5BA7-4CB0-9553-105D68777D60}] =>Adware.BHO
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8a96af9e-4074-43b7-bea3-87217bda74c8}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}] =>PUP.Fbsearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}] =>PUP.Fbsearch
[HKLM\Software\Classes\CLSID\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}] =>PUP.Fbsearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}] =>PUP.Fbsearch
[HKLM\Software\Classes\TypeLib\{8F5F1CB6-EA9E-40AF-A5CA-C7FD63CC1971}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}] =>Adware.IMBooster
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}] =>Adware.IMBooster
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9c8a3ca5-889e-4554-beec-ec0876e4e96a}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{9ebb289a-2d7b-465b-825f-1530b813e95a}] =>Adware.Agent
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}] =>Adware.IMBooster
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}] =>Adware.IMBooster
[HKLM\Software\Classes\AppID\{a5461fca-320c-4d6f-a150-a53823ce8142}] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{A76AA284-E52D-47E6-9E4F-B85DBF8E35C3}] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A76AA284-E52D-47E6-9E4F-B85DBF8E35C3}] =>Adware.IMBooster
[HKLM\Software\Classes\TypeLib\{AA2E16F2-387A-415F-BA95-B89BAF3AF109}] =>PUP.Fbsearch
[HKLM\Software\Classes\AppID\{AFBB7970-789A-4264-BA70-E8127DECE400}] =>PUP.Eorezo
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}] =>Toolbar.Conduit
[HKLM\Software\Classes\TypeLib\{B6ACB3F1-6A83-432C-B854-3E1056F87F4E}] =>PUP.Eorezo
[HKLM\Software\Classes\TypeLib\{b6acb3f1-6a83-432c-b854-3e1056f87f4e}] =>Adware.BHO
[HKLM\Software\Classes\TypeLib\{c7403c30-3644-43d8-a82f-4bd84b9682d9}] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{c7b76b90-3455-4ae6-a752-eac4d19689e5}] =>PUP.Eorezo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{c7b76b90-3455-4ae6-a752-eac4d19689e5}] =>PUP.Eorezo
[HKLM\Software\Classes\CLSID\{c7b76b90-3455-4ae6-a752-eac4d19689e5}] =>PUP.Eorezo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c7b76b90-3455-4ae6-a752-eac4d19689e5}] =>PUP.Eorezo
[HKLM\Software\Classes\AppID\{CC50232E-FDB1-436F-B658-452F88E81736}] =>Toolbar.Kiwee
[HKLM\Software\Classes\Interface\{cd5c92ae-97b0-4bc3-ba65-ba0308d543bf}] =>Adware.Agent
[HKLM\Software\Classes\CLSID\{e03bafdc-eb9d-4c35-a7a2-ab6c62ff0a68}] =>Adware.BHO
[HKLM\Software\Classes\CLSID\{e6375f37-e4d1-4f51-b651-4658c27ac5bf}] =>Adware.BHO
[HKLM\Software\Classes\Interface\{eee6c358-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKLM\Software\Classes\Interface\{eee6c35a-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{eee6c35b-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{eee6c35b-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKLM\Software\Classes\CLSID\{eee6c35b-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKLM\Software\Classes\TypeLib\{eee6c35e-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKLM\Software\Classes\TypeLib\{eee6c35f-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{eee6c360-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{eee6c360-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{f9189560-573a-4fde-b055-ae7b0f4cf080}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.Softomate
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.Softomate
[HKLM\Software\Classes\CLSID\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.Softomate
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.Softomate
[HKLM\Software\Classes\Interface\{ff871e51-2655-4d06-aed5-745962a96b32}] =>Adware.Bandoo
[HKLM\Software\Bandoo] =>Adware.Bandoo
[HKCU\Software\Conduit] =>Toolbar.Conduit
[HKCU\Software\AppDataLow\Software\Conduit] =>Toolbar.Conduit
[HKLM\Software\Conduit] =>Toolbar.Conduit
[HKCU\Software\fcn] =>Rogue.Multiple
[HKCU\Software\IMBooster4web-en] =>Adware.IMBooster
[HKCU\Software\AppDataLow\Software\IMBooster4web-en] =>Adware.IMBooster
[HKLM\Software\IMBooster4web-en] =>Adware.IMBooster
[HKCU\Software\Iminent] =>Adware.IMBooster
[HKLM\Software\Iminent] =>Adware.IMBooster
[HKCU\Software\SpiderMessenger] =>Spyware.AgenceExclusive
[HKCU\Software\SweetIM] =>Toolbar.SweetIM
[HKLM\Software\SweetIM] =>Toolbar.SweetIM
[HKCU\Software\AppDataLow\Toolbar] =>Toolbar.Conduit
[HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Toolbar] =>Toolbar.Conduit
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Bandoo] =>Adware.Bandoo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\eoengine_is1] =>PUP.Eorezo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\EoRezo_is1] =>PUP.Eorezo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBooster4web-en Toolbar] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\softwareupdate_is1] =>PUP.Eorezo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\spidermessenger_is1] =>PUP.Eorezo
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\TBSB07183.TBSB07183Toolbar] =>PUP.Fbsearch
---\\ Valeurs de clé de Registre trouvées (Registry Values found)
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{346de098-61f9-4b42-89da-6dfba7091bb6} =>Adware.IMBooster
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{346de098-61f9-4b42-89da-6dfba7091bb6} =>Adware.IMBooster
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{6638a9de-0745-4292-8a2e-ae530e7b9b3f} =>Toolbar.Kiwee
[HKLM\Software\Mozilla\Firefox\Extensions]:SpiderMessengerHelper@spidermessenger.com =>Spyware.AgenceExclusive
[HKLM\Software\Mozilla\Firefox\Extensions]:toolbar@kiwee.com =>Toolbar.Kiwee
[HKLM\Software\Microsoft\Windows\CurrentVersion\Run]:FBSSA =>PUP.Fbsearch
---\\ Dossiers trouvés (Directories found)
C:\Program Files\AGI =>Toolbar.Kiwee
C:\Program Files\Babylon =>Toolbar.Babylon
C:\Program Files\Bandoo =>Adware.Bandoo
C:\Program Files\Conduit =>Toolbar.Conduit
C:\Program Files\EoRezo =>PUP.Eorezo
C:\Program Files\Fast Browser Search =>PUP.Fbsearch
C:\Program Files\IMBooster4web-en =>Adware.IMBooster
C:\Program Files\IMinent Toolbar =>Adware.IMBooster
C:\Program Files\Iminent =>Adware.IMBooster
C:\Program Files\Kiwee Toolbar =>Toolbar.Kiwee
C:\Program Files\myBabylon_English =>Toolbar.Conduit
C:\Program Files\Original-Solitaire =>Adware.Navipromo
C:\Program Files\SGPSA =>PUP.Fbsearch
C:\Program Files\SpiderMessenger =>Spyware.AgenceExclusive
C:\Program Files\SweetIM =>Toolbar.SweetIM
C:\Program Files\Mozilla Firefox\Extensions\webbooster@iminent.com =>Adware.IMBooster
C:\ProgramData\AGI =>Toolbar.Kiwee
C:\ProgramData\Babylon =>Toolbar.Babylon
C:\ProgramData\GamesBar =>Adware.GamesBar
C:\ProgramData\Iminent =>Adware.IMBooster
C:\ProgramData\Kiwee Toolbar =>Toolbar.Kiwee
C:\ProgramData\SweetIM =>Toolbar.SweetIM
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Iminent =>Adware.IMBooster
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kiwee Toolbar =>Toolbar.Kiwee
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Original-Solitaire =>Adware.Navipromo
C:\Users\Nadine\AppData\Roaming\AGI =>Toolbar.Kiwee
C:\Users\Nadine\AppData\Roaming\Babylon =>Toolbar.Babylon
C:\Users\Nadine\AppData\Roaming\EoRezo =>PUP.Eorezo
C:\Users\Nadine\AppData\Local\Babylon =>Toolbar.Babylon
C:\Users\Nadine\AppData\Local\Conduit =>Toolbar.Conduit
C:\Users\Nadine\AppData\Local\EoRezo =>PUP.Eorezo
C:\Users\Nadine\AppData\Local\IMBooster4web-en =>Adware.IMBooster
C:\Users\Nadine\AppData\Local\Iminent =>Adware.IMBooster
C:\Users\Nadine\AppData\Local\Original-Solitaire =>Adware.Navipromo
C:\Users\Nadine\AppData\Local\SpiderMessenger =>Spyware.AgenceExclusive
C:\Users\Nadine\AppData\LocalLow\AGI =>Toolbar.Kiwee
C:\Users\Nadine\AppData\LocalLow\Conduit =>Toolbar.Conduit
C:\Users\Nadine\AppData\LocalLow\IMBooster4web-en =>Adware.IMBooster
C:\Users\Nadine\AppData\LocalLow\Kiwee Toolbar =>Toolbar.Kiwee
C:\Users\Nadine\AppData\LocalLow\myBabylon_English =>Toolbar.Conduit
C:\Users\Nadine\AppData\LocalLow\SweetIM =>Toolbar.SweetIM
---\\ Fichiers Firefox trouvés (Files found)
*** None ***
---\\ Fichiers trouvés (Files found)
*** None ***
---\\ Bilan de la recherche (Scan Result)
Database Version : 8614 - (24/08/2011)
Clés trouvées (Keys found) : 164
Valeurs de clé trouvées (Values found) : 6
Dossiers trouvés (Folders found) : 48
Fichiers trouvés (Files found) : 0
End of the scan in 00mn 11s
A voir également:
- Lenteur pc sous vista
- Lenteur pc - Guide
- Reinitialiser pc - Guide
- Downloader for pc - Télécharger - Téléchargement & Transfert
- Double ecran pc - Guide
- Forcer demarrage pc - Guide
22 réponses
Par le panneau de configuration supprimes tous ces programmes.
AGI =>Toolbar.Kiwee
Babylon =>Toolbar.Babylon
Bandoo =>Adware.Bandoo
Conduit =>Toolbar.Conduit
Fast Browser Search =>PUP.Fbsearch
IMBooster4web-en =>Adware.IMBooster
IMinent Toolbar =>Adware.IMBooster
Iminent =>Adware.IMBooster
Kiwee Toolbar =>Toolbar.Kiwee
myBabylon_English =>Toolbar.Conduit
Original-Solitaire =>Adware.Navipromo
SpiderMessenger =>Spyware.AgenceExclusive
SweetIM =>Toolbar.SweetIM
EoRezo =>PUP.Eorezo
SGPSA =>PUP.Fbsearch
Le cerveau a des capacités tellement étonnantes qu'aujourd'hui pratiquement tout le monde en a un.
AGI =>Toolbar.Kiwee
Babylon =>Toolbar.Babylon
Bandoo =>Adware.Bandoo
Conduit =>Toolbar.Conduit
Fast Browser Search =>PUP.Fbsearch
IMBooster4web-en =>Adware.IMBooster
IMinent Toolbar =>Adware.IMBooster
Iminent =>Adware.IMBooster
Kiwee Toolbar =>Toolbar.Kiwee
myBabylon_English =>Toolbar.Conduit
Original-Solitaire =>Adware.Navipromo
SpiderMessenger =>Spyware.AgenceExclusive
SweetIM =>Toolbar.SweetIM
EoRezo =>PUP.Eorezo
SGPSA =>PUP.Fbsearch
Le cerveau a des capacités tellement étonnantes qu'aujourd'hui pratiquement tout le monde en a un.
bonjour et merci de ton aide
ok desinstallé
AGI =>Toolbar.Kiwee
Babylon =>Toolbar.Babylon
Bandoo =>Adware.Bandoo
Conduit =>Toolbar.Conduit
Fast Browser Search =>PUP.Fbsearch
IMBooster4web-en =>Adware.IMBooster
IMinent Toolbar =>Adware.IMBooster
Iminent =>Adware.IMBooster
myBabylon_English =>Toolbar.Conduit
Original-Solitaire =>Adware.Navipromo
EoRezo =>PUP.Eorezo
SGPSA =>PUP.Fbsearch
autorisation demande
SpiderMessenger =>Spyware.AgenceExclusive
SweetIM =>Toolbar.SweetIM
Kiwee Toolbar =>Toolbar.Kiwee
3 programmes refusent de se desinstaller donc j'attend da savoir comment faire et la suite
merci d'avance
ok desinstallé
AGI =>Toolbar.Kiwee
Babylon =>Toolbar.Babylon
Bandoo =>Adware.Bandoo
Conduit =>Toolbar.Conduit
Fast Browser Search =>PUP.Fbsearch
IMBooster4web-en =>Adware.IMBooster
IMinent Toolbar =>Adware.IMBooster
Iminent =>Adware.IMBooster
myBabylon_English =>Toolbar.Conduit
Original-Solitaire =>Adware.Navipromo
EoRezo =>PUP.Eorezo
SGPSA =>PUP.Fbsearch
autorisation demande
SpiderMessenger =>Spyware.AgenceExclusive
SweetIM =>Toolbar.SweetIM
Kiwee Toolbar =>Toolbar.Kiwee
3 programmes refusent de se desinstaller donc j'attend da savoir comment faire et la suite
merci d'avance
* Télécharge AdwCleaner sur ton Bureau. (Merci à Xplode)
*Double-clique sur l'icône AdwCleaner située sur ton Bureau.
*Sur la page, clique sur le bouton «Suppression»
*Laisse travailler l'outil.
*Poste le rapport qui apparaît à la fin.
(Le rapport est sauvegardé aussi sous C:\ AdwCleaner[SX].Txt)
*Double-clique sur l'icône AdwCleaner située sur ton Bureau.
*Sur la page, clique sur le bouton «Suppression»
*Laisse travailler l'outil.
*Poste le rapport qui apparaît à la fin.
(Le rapport est sauvegardé aussi sous C:\ AdwCleaner[SX].Txt)
bon adw telecharge je poste le rapport ici même
# AdwCleaner v1.3 - Rapport créé le 26/08/2011 à 12:13:29
# Mis à jour le 23/08/11 à 17h par Xplode
# Système d'exploitation : Windows Vista (TM) Business Service Pack 2 (32 bits)
# Nom d'utilisateur : Nadine - PC-DE-NADINE (Administrateur)
# Exécuté depuis : C:\Users\Nadine\Downloads\adwcleaner (4).exe
# Option [Suppression]
***** [Processus] *****
***** [Services] *****
***** [Fichiers / Dossiers] *****
Dossier Supprimé : C:\Users\Nadine\AppData\Roaming\Babylon
Dossier Supprimé : C:\Users\Nadine\AppData\Roaming\EoRezo
***** [Registre] *****
Clé Supprimée : HKCU\Toolbar
Clé Supprimée : HKCU\Software\Conduit
Clé Supprimée : HKCU\Software\EoRezo
Clé Supprimée : HKCU\Software\SpiderMessenger
Clé Supprimée : HKCU\Software\AppDataLow\Toolbar
Clé Supprimée : HKCU\Software\AppDataLow\Software\Conduit
Clé Supprimée : HKLM\SOFTWARE\bandoo
Clé Supprimée : HKLM\SOFTWARE\Conduit
Clé Supprimée : HKLM\SOFTWARE\EoRezo
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.BandooCore
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.BandooCore.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.ResourcesMngr
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.ResourcesMngr.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.SettingsMngr
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.SettingsMngr.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.StatisticMngr
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.StatisticMngr.1
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\BandooCore.EXE
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\EoEngineBHO.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{AFBB7970-789A-4264-BA70-E8127DECE400}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{1301A8A5-3DFB-4731-A162-B357D00C9644}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{3c471948-f874-49f5-b338-4f214a2ee0b1}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{FF871E51-2655-4D06-AED5-745962A96B32}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{477F210A-2A86-4666-9C4B-1189634D2C84}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{8F5F1CB6-EA9E-40AF-A5CA-C7FD63CC1971}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{424624F4-C5DD-4e1d-BDD0-1E9C9B7799CC}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7f000001-db8e-f89c-2fec-49bf726f8c12}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9C8A3CA5-889E-4554-BEEC-EC0876E4E96A}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F9189560-573A-4fde-B055-AE7B0F4CF080}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Bandoo
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SpiderMessenger_is1
Valeur Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [spidermessenger]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [EoEngine]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [EoRezo]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SpiderMessenger]
***** [Navigateurs] *****
-\\ Internet Explorer v9.0.7930.16406
[OK] Le registre ne contient aucune entrée illégitime.
-\\ Mozilla Firefox v3.6.10 (fr)
Profil : qgk7t65m.default
Fichier : C:\Users\Nadine\AppData\Roaming\Mozilla\Firefox\Profiles\qgk7t65m.default\prefs.js
[OK] Le fichier ne contient aucune entrée illégitime.
-\\ Google Chrome v13.0.782.215
Fichier : C:\Users\Nadine\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] Le fichier ne contient aucune entrée illégitime.
*************************
AdwCleaner[S1].txt - [3895 octets] - [26/08/2011 12:13:29]
########## EOF - C:\AdwCleaner[S1].txt - [4023 octets] ##########
# AdwCleaner v1.3 - Rapport créé le 26/08/2011 à 12:13:29
# Mis à jour le 23/08/11 à 17h par Xplode
# Système d'exploitation : Windows Vista (TM) Business Service Pack 2 (32 bits)
# Nom d'utilisateur : Nadine - PC-DE-NADINE (Administrateur)
# Exécuté depuis : C:\Users\Nadine\Downloads\adwcleaner (4).exe
# Option [Suppression]
***** [Processus] *****
***** [Services] *****
***** [Fichiers / Dossiers] *****
Dossier Supprimé : C:\Users\Nadine\AppData\Roaming\Babylon
Dossier Supprimé : C:\Users\Nadine\AppData\Roaming\EoRezo
***** [Registre] *****
Clé Supprimée : HKCU\Toolbar
Clé Supprimée : HKCU\Software\Conduit
Clé Supprimée : HKCU\Software\EoRezo
Clé Supprimée : HKCU\Software\SpiderMessenger
Clé Supprimée : HKCU\Software\AppDataLow\Toolbar
Clé Supprimée : HKCU\Software\AppDataLow\Software\Conduit
Clé Supprimée : HKLM\SOFTWARE\bandoo
Clé Supprimée : HKLM\SOFTWARE\Conduit
Clé Supprimée : HKLM\SOFTWARE\EoRezo
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.BandooCore
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.BandooCore.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.ResourcesMngr
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.ResourcesMngr.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.SettingsMngr
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.SettingsMngr.1
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.StatisticMngr
Clé Supprimée : HKLM\SOFTWARE\Classes\BandooCore.StatisticMngr.1
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\BandooCore.EXE
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\EoEngineBHO.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{AFBB7970-789A-4264-BA70-E8127DECE400}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{1301A8A5-3DFB-4731-A162-B357D00C9644}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{3c471948-f874-49f5-b338-4f214a2ee0b1}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{FF871E51-2655-4D06-AED5-745962A96B32}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{477F210A-2A86-4666-9C4B-1189634D2C84}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{8F5F1CB6-EA9E-40AF-A5CA-C7FD63CC1971}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{424624F4-C5DD-4e1d-BDD0-1E9C9B7799CC}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7f000001-db8e-f89c-2fec-49bf726f8c12}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9C8A3CA5-889E-4554-BEEC-EC0876E4E96A}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F9189560-573A-4fde-B055-AE7B0F4CF080}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Bandoo
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SpiderMessenger_is1
Valeur Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [spidermessenger]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [EoEngine]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [EoRezo]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SpiderMessenger]
***** [Navigateurs] *****
-\\ Internet Explorer v9.0.7930.16406
[OK] Le registre ne contient aucune entrée illégitime.
-\\ Mozilla Firefox v3.6.10 (fr)
Profil : qgk7t65m.default
Fichier : C:\Users\Nadine\AppData\Roaming\Mozilla\Firefox\Profiles\qgk7t65m.default\prefs.js
[OK] Le fichier ne contient aucune entrée illégitime.
-\\ Google Chrome v13.0.782.215
Fichier : C:\Users\Nadine\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] Le fichier ne contient aucune entrée illégitime.
*************************
AdwCleaner[S1].txt - [3895 octets] - [26/08/2011 12:13:29]
########## EOF - C:\AdwCleaner[S1].txt - [4023 octets] ##########
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
* Télécharge et installe : Malwarebyte's Anti-Malware
* A la fin de l'installation, veille à ce que l'option « mettre a jour Malwarebyte's Anti-Malware » soit cochée
* Lance MBAM et laisse les Mises à jour se télécharger (sinon fais les manuellement au lancement du programme)
* Puis va dans l'onglet "Recherche", coche "Exécuter un examen complet" puis "Rechercher"
* Sélectionne tes disques durs" puis clique sur "Lancer l'examen"
* A la fin du scan, clique sur Afficher les résultats
* Coche tous les éléments détectés puis clique sur Supprimer la sélection
* Enregistre le rapport
* S'il t'est demandé de redémarrer, clique sur Yes
* Poste le rapport de scan après la suppression ici.(poste le rapport, même si rien n'est détecté.)
* Si tu as besoin d'aide regarde ce tutorial
https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
* A la fin de l'installation, veille à ce que l'option « mettre a jour Malwarebyte's Anti-Malware » soit cochée
* Lance MBAM et laisse les Mises à jour se télécharger (sinon fais les manuellement au lancement du programme)
* Puis va dans l'onglet "Recherche", coche "Exécuter un examen complet" puis "Rechercher"
* Sélectionne tes disques durs" puis clique sur "Lancer l'examen"
* A la fin du scan, clique sur Afficher les résultats
* Coche tous les éléments détectés puis clique sur Supprimer la sélection
* Enregistre le rapport
* S'il t'est demandé de redémarrer, clique sur Yes
* Poste le rapport de scan après la suppression ici.(poste le rapport, même si rien n'est détecté.)
* Si tu as besoin d'aide regarde ce tutorial
https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
toujours en train de scanner on attend....
je recree une nouvelle discussion pour le nettoyage sous wondows 7 du pc portable
merci d'avance e ton aide
je recree une nouvelle discussion pour le nettoyage sous wondows 7 du pc portable
merci d'avance e ton aide
Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org
Version de la base de données: 7576
Windows 6.0.6002 Service Pack 2
Internet Explorer 9.0.7930.16406
26/08/2011 17:59:25
mbam-log-2011-08-26 (17-59-25).txt
Type d'examen: Examen complet (C:\|D:\|)
Elément(s) analysé(s): 315872
Temps écoulé: 2 heure(s), 19 minute(s), 18 seconde(s)
Processus mémoire infecté(s): 1
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 3
Fichier(s) infecté(s): 14
Processus mémoire infecté(s):
c:\program files\spidermessenger\spidermessenger.exe (Spyware.AgenceExclusive) -> 4620 -> Unloaded process successfully.
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\fcn (Rogue.Residue) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
c:\programdata\19042218 (Rogue.Multiple) -> Quarantined and deleted successfully.
c:\Users\denis\local settings\application data\EoRezo (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\Users\denis\local settings\application data\EoRezo\EoRezo (Adware.EoRezo) -> Quarantined and deleted successfully.
Fichier(s) infecté(s):
c:\program files\spidermessenger\spidermessenger.exe (Spyware.AgenceExclusive) -> Quarantined and deleted successfully.
c:\$RECYCLE.BIN\s-1-5-21-259649490-573275764-3090687775-1003\$RBKR1UA.exe (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\$RECYCLE.BIN\s-1-5-21-259649490-573275764-3090687775-1003\$RFMIOED.exe (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\$RECYCLE.BIN\s-1-5-21-259649490-573275764-3090687775-1003\$RL5HLSK.exe (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\$RECYCLE.BIN\s-1-5-21-259649490-573275764-3090687775-1003\$RQG8AJM.exe (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\$RECYCLE.BIN\s-1-5-21-259649490-573275764-3090687775-1003\$RWPH5P3.exe (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\$RECYCLE.BIN\s-1-5-21-259649490-573275764-3090687775-1003\$RZA6NR3.exe (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\$RECYCLE.BIN\s-1-5-21-259649490-573275764-3090687775-1003\$R50JAI0\IE\searchguardplus.exe (PUP.Fbsearch) -> Quarantined and deleted successfully.
c:\$RECYCLE.BIN\s-1-5-21-259649490-573275764-3090687775-1003\$R50JAI0\IE\update.exe (PUP.Fbsearch) -> Quarantined and deleted successfully.
c:\Users\denis\AppData\Local\Temp\Low\{1bb22d38-a411-4b13-a746-c2a4f4ec7344}\searchguardplus.exe (PUP.Fbsearch) -> Quarantined and deleted successfully.
c:\Users\denis\AppData\Local\Temp\Low\{1bb22d38-a411-4b13-a746-c2a4f4ec7344}\update.exe (PUP.Fbsearch) -> Quarantined and deleted successfully.
c:\Users\denis\local settings\application data\EoRezo\EoRezo\eorezo_confmedia.cyp (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\Users\denis\local settings\application data\EoRezo\EoRezo\user.cyp (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\Users\denis\local settings\application data\EoRezo\EoRezo\user_profil.cyp (Adware.EoRezo
www.malwarebytes.org
Version de la base de données: 7576
Windows 6.0.6002 Service Pack 2
Internet Explorer 9.0.7930.16406
26/08/2011 17:59:25
mbam-log-2011-08-26 (17-59-25).txt
Type d'examen: Examen complet (C:\|D:\|)
Elément(s) analysé(s): 315872
Temps écoulé: 2 heure(s), 19 minute(s), 18 seconde(s)
Processus mémoire infecté(s): 1
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 3
Fichier(s) infecté(s): 14
Processus mémoire infecté(s):
c:\program files\spidermessenger\spidermessenger.exe (Spyware.AgenceExclusive) -> 4620 -> Unloaded process successfully.
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\fcn (Rogue.Residue) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
c:\programdata\19042218 (Rogue.Multiple) -> Quarantined and deleted successfully.
c:\Users\denis\local settings\application data\EoRezo (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\Users\denis\local settings\application data\EoRezo\EoRezo (Adware.EoRezo) -> Quarantined and deleted successfully.
Fichier(s) infecté(s):
c:\program files\spidermessenger\spidermessenger.exe (Spyware.AgenceExclusive) -> Quarantined and deleted successfully.
c:\$RECYCLE.BIN\s-1-5-21-259649490-573275764-3090687775-1003\$RBKR1UA.exe (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\$RECYCLE.BIN\s-1-5-21-259649490-573275764-3090687775-1003\$RFMIOED.exe (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\$RECYCLE.BIN\s-1-5-21-259649490-573275764-3090687775-1003\$RL5HLSK.exe (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\$RECYCLE.BIN\s-1-5-21-259649490-573275764-3090687775-1003\$RQG8AJM.exe (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\$RECYCLE.BIN\s-1-5-21-259649490-573275764-3090687775-1003\$RWPH5P3.exe (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\$RECYCLE.BIN\s-1-5-21-259649490-573275764-3090687775-1003\$RZA6NR3.exe (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\$RECYCLE.BIN\s-1-5-21-259649490-573275764-3090687775-1003\$R50JAI0\IE\searchguardplus.exe (PUP.Fbsearch) -> Quarantined and deleted successfully.
c:\$RECYCLE.BIN\s-1-5-21-259649490-573275764-3090687775-1003\$R50JAI0\IE\update.exe (PUP.Fbsearch) -> Quarantined and deleted successfully.
c:\Users\denis\AppData\Local\Temp\Low\{1bb22d38-a411-4b13-a746-c2a4f4ec7344}\searchguardplus.exe (PUP.Fbsearch) -> Quarantined and deleted successfully.
c:\Users\denis\AppData\Local\Temp\Low\{1bb22d38-a411-4b13-a746-c2a4f4ec7344}\update.exe (PUP.Fbsearch) -> Quarantined and deleted successfully.
c:\Users\denis\local settings\application data\EoRezo\EoRezo\eorezo_confmedia.cyp (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\Users\denis\local settings\application data\EoRezo\EoRezo\user.cyp (Adware.EoRezo) -> Quarantined and deleted successfully.
c:\Users\denis\local settings\application data\EoRezo\EoRezo\user_profil.cyp (Adware.EoRezo
On va faire une vérification .
Post un nouveau rapport zhpdiag.
Héberge le rapport ZHPDiag.txt sur le site pjjoint.malekal.com ou cijoint.fr ou toofiles puis copie/colle le lien fournit dans ta prochaine réponse sur le forum
Post un nouveau rapport zhpdiag.
Héberge le rapport ZHPDiag.txt sur le site pjjoint.malekal.com ou cijoint.fr ou toofiles puis copie/colle le lien fournit dans ta prochaine réponse sur le forum
je reposte le rapport que tu me demande
Rapport de ZHPScan v1.28 par Nicolas Coolman, Update du 24/08/2011
Run by Nadine at 26/08/2011 20:35:58
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
---\\ Clés de Registre trouvées (Registry Keys found)
[HKLM\Software\Classes\AppID\contenthandler.dll] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Search Guard Plus Updater] =>PUP.Fbsearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Search Guard Plus] =>PUP.Fbsearch
[HKLM\Software\Classes\ag.mediaplayercom] =>Adware.BHO
[HKLM\Software\Classes\ag.mediaplayercom] =>Toolbar.Kiwee
[HKLM\Software\Classes\agcore.config.agconfig] =>Adware.BHO
[HKLM\Software\Classes\agcore.search.search] =>Adware.BHO
[HKLM\Software\Classes\agcore.Text.JSON] =>Adware.BHO
[HKLM\Software\Classes\agihelper.agutils] =>Adware.BHO
[HKLM\Software\Classes\contenthandler.contentselection] =>Toolbar.Kiwee
[HKLM\Software\Classes\contenthandler.contentselection.1] =>Toolbar.Kiwee
[HKLM\Software\Classes\kiweeietoolbar.kiweetoolbar] =>Toolbar.Kiwee
[HKLM\Software\Classes\kiweeietoolbar.kiweetoolbar.1] =>Toolbar.Kiwee
[HKLM\Software\Classes\kiweeietoolbar.toolbarinfo] =>Toolbar.Kiwee
[HKLM\Software\Classes\kiweeietoolbar.toolbarinfo.1] =>Toolbar.Kiwee
[HKLM\Software\Classes\sweetie.ietoolbar] =>Toolbar.SweetIM
[HKLM\Software\Classes\sweetie.ietoolbar.1] =>Toolbar.SweetIM
[HKLM\Software\Classes\sweetim_urlsearchhook.toolbarurlsearchhook] =>Toolbar.SweetIM
[HKLM\Software\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1] =>Toolbar.SweetIM
[HKLM\Software\Classes\Toolbar.CT2032792] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar.ct2452474] =>Adware.Agent
[HKLM\Software\Classes\Toolbar3.sweetie] =>Toolbar.SweetIM
[HKLM\Software\Classes\Toolbar3.sweetie.1] =>Toolbar.SweetIM
[HKLM\Software\Classes\AppID\{055069F3-F78B-4BD1-A277-FE66648D3300}] =>PUP.Fbsearch
[HKLM\Software\Classes\Interface\{06DE5702-44CF-4B79-B4EF-3DDF653358F5}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0bc6e3fa-78ef-4886-842c-5a1258c4455a}] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0bc6e3fa-78ef-4886-842c-5a1258c4455a}] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0bc6e3fa-78ef-4886-842c-5a1258c4455a}] =>Toolbar.Kiwee
[HKLM\Software\Classes\CLSID\{0bc6e3fa-78ef-4886-842c-5a1258c4455a}] =>Toolbar.Kiwee
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0bc6e3fa-78ef-4886-842c-5a1258c4455a}] =>Toolbar.Kiwee
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0bc6e3fa-78ef-4886-842c-5a1258c4455a}] =>Toolbar.Kiwee
[HKLM\Software\Classes\TypeLib\{13b1a411-66d8-49ac-bbc6-0102f0918aed}] =>PUP.Eorezo
[HKLM\Software\Classes\TypeLib\{15d9ca76-f712-4548-b2a5-c67cd47ac47a}] =>PUP.Eorezo
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{23a287db-449a-462f-bde1-8635a61671ce}] =>Adware.BHO
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{23A287DB-449A-462F-BDE1-8635A61671CE}] =>Toolbar.Kiwee
[HKLM\Software\Classes\TypeLib\{259eeb17-79aa-44df-8410-8e55f82a902a}] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{346de098-61f9-4b42-89da-6dfba7091bb6}] =>Adware.IMBooster
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{346de098-61f9-4b42-89da-6dfba7091bb6}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{346de098-61f9-4b42-89da-6dfba7091bb6}] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{346de098-61f9-4b42-89da-6dfba7091bb6}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{3e16a203-c0aa-4d44-acc5-38a70a8c76da}] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4260e0cc-0f75-462e-88a3-1e05c248bf4c}] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4260e0cc-0f75-462e-88a3-1e05c248bf4c}] =>Toolbar.Kiwee
[HKLM\Software\Classes\TypeLib\{4d3b167e-5fd8-4276-8fd7-9df19c1e4d19}] =>Toolbar.SweetIM
[HKLM\Software\Classes\Interface\{5663b370-f3c3-40d1-9c46-0e800aa4d0e8}] =>Toolbar.Kiwee
[HKLM\Software\Classes\AppID\{584e8107-e34a-493a-a015-06e3841482be}] =>PUP.Eorezo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6638a9de-0745-4292-8a2e-ae530e7b9b3f}] =>Toolbar.Kiwee
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6638a9de-0745-4292-8a2e-ae530e7b9b3f}] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6e15d3c4-c6fc-4f02-b130-77cc5b1f09db}] =>Toolbar.Kiwee
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6e15d3c4-c6fc-4f02-b130-77cc5b1f09db}] =>Toolbar.Kiwee
[HKLM\Software\Classes\TypeLib\{77AA25E8-6083-4949-A831-9CB11861DC10}] =>Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{82ac53b4-164c-4b07-a016-437a8388b81a}] =>Toolbar.SweetIM
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{87A0B80B-5BA7-4CB0-9553-105D68777D60}] =>Adware.BHO
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8a96af9e-4074-43b7-bea3-87217bda74c8}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}] =>PUP.Fbsearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}] =>PUP.Fbsearch
[HKLM\Software\Classes\CLSID\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}] =>PUP.Fbsearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}] =>PUP.Fbsearch
[HKLM\Software\Classes\Interface\{9ebb289a-2d7b-465b-825f-1530b813e95a}] =>Adware.Agent
[HKLM\Software\Classes\AppID\{a5461fca-320c-4d6f-a150-a53823ce8142}] =>Toolbar.Kiwee
[HKLM\Software\Classes\TypeLib\{AA2E16F2-387A-415F-BA95-B89BAF3AF109}] =>PUP.Fbsearch
[HKLM\Software\Classes\TypeLib\{c7403c30-3644-43d8-a82f-4bd84b9682d9}] =>Toolbar.Kiwee
[HKLM\Software\Classes\AppID\{CC50232E-FDB1-436F-B658-452F88E81736}] =>Toolbar.Kiwee
[HKLM\Software\Classes\Interface\{cd5c92ae-97b0-4bc3-ba65-ba0308d543bf}] =>Adware.Agent
[HKLM\Software\Classes\CLSID\{e03bafdc-eb9d-4c35-a7a2-ab6c62ff0a68}] =>Adware.BHO
[HKLM\Software\Classes\CLSID\{e6375f37-e4d1-4f51-b651-4658c27ac5bf}] =>Adware.BHO
[HKLM\Software\Classes\Interface\{eee6c358-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKLM\Software\Classes\Interface\{eee6c35a-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{eee6c35b-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{eee6c35b-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKLM\Software\Classes\CLSID\{eee6c35b-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKLM\Software\Classes\TypeLib\{eee6c35e-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKLM\Software\Classes\TypeLib\{eee6c35f-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{eee6c360-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{eee6c360-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.Softomate
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.Softomate
[HKLM\Software\Classes\CLSID\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.Softomate
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.Softomate
[HKCU\Software\fcn] =>Rogue.Multiple
[HKCU\Software\IMBooster4web-en] =>Adware.IMBooster
[HKCU\Software\AppDataLow\Software\IMBooster4web-en] =>Adware.IMBooster
[HKLM\Software\IMBooster4web-en] =>Adware.IMBooster
[HKCU\Software\Iminent] =>Adware.IMBooster
[HKLM\Software\Iminent] =>Adware.IMBooster
[HKCU\Software\SpiderMessenger] =>Spyware.AgenceExclusive
[HKCU\Software\SweetIM] =>Toolbar.SweetIM
[HKLM\Software\SweetIM] =>Toolbar.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBooster4web-en Toolbar] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\TBSB07183.TBSB07183Toolbar] =>PUP.Fbsearch
---\\ Valeurs de clé de Registre trouvées (Registry Values found)
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{346de098-61f9-4b42-89da-6dfba7091bb6} =>Adware.IMBooster
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{346de098-61f9-4b42-89da-6dfba7091bb6} =>Adware.IMBooster
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{6638a9de-0745-4292-8a2e-ae530e7b9b3f} =>Toolbar.Kiwee
[HKLM\Software\Mozilla\Firefox\Extensions]:SpiderMessengerHelper@spidermessenger.com =>Spyware.AgenceExclusive
[HKLM\Software\Mozilla\Firefox\Extensions]:toolbar@kiwee.com =>Toolbar.Kiwee
[HKLM\Software\Microsoft\Windows\CurrentVersion\Run]:FBSSA =>PUP.Fbsearch
---\\ Dossiers trouvés (Directories found)
C:\Program Files\Kiwee Toolbar =>Toolbar.Kiwee
C:\Program Files\SpiderMessenger =>Spyware.AgenceExclusive
C:\Program Files\SweetIM =>Toolbar.SweetIM
C:\ProgramData\AGI =>Toolbar.Kiwee
C:\ProgramData\Babylon =>Toolbar.Babylon
C:\ProgramData\GamesBar =>Adware.GamesBar
C:\ProgramData\Kiwee Toolbar =>Toolbar.Kiwee
C:\ProgramData\SweetIM =>Toolbar.SweetIM
C:\Users\Nadine\AppData\Roaming\AGI =>Toolbar.Kiwee
C:\Users\Nadine\AppData\Local\Babylon =>Toolbar.Babylon
C:\Users\Nadine\AppData\Local\Conduit =>Toolbar.Conduit
C:\Users\Nadine\AppData\Local\IMBooster4web-en =>Adware.IMBooster
C:\Users\Nadine\AppData\Local\Iminent =>Adware.IMBooster
C:\Users\Nadine\AppData\Local\Original-Solitaire =>Adware.Navipromo
C:\Users\Nadine\AppData\Local\SpiderMessenger =>Spyware.AgenceExclusive
C:\Users\Nadine\AppData\LocalLow\AGI =>Toolbar.Kiwee
C:\Users\Nadine\AppData\LocalLow\Conduit =>Toolbar.Conduit
C:\Users\Nadine\AppData\LocalLow\IMBooster4web-en =>Adware.IMBooster
C:\Users\Nadine\AppData\LocalLow\Kiwee Toolbar =>Toolbar.Kiwee
C:\Users\Nadine\AppData\LocalLow\myBabylon_English =>Toolbar.Conduit
C:\Users\Nadine\AppData\LocalLow\SweetIM =>Toolbar.SweetIM
C:\Users\Nadine\AppData\Local\Temp\Iminent =>Adware.IMBooster
---\\ Fichiers Firefox trouvés (Files found)
*** None ***
---\\ Fichiers trouvés (Files found)
*** None ***
---\\ Bilan de la recherche (Scan Result)
Database Version : 8614 - (24/08/2011)
Clés trouvées (Keys found) : 91
Valeurs de clé trouvées (Values found) : 6
Dossiers trouvés (Folders found) : 28
Fichiers trouvés (Files found) : 0
End of the scan in 00mn 11s
Rapport de ZHPScan v1.28 par Nicolas Coolman, Update du 24/08/2011
Run by Nadine at 26/08/2011 20:35:58
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html
---\\ Clés de Registre trouvées (Registry Keys found)
[HKLM\Software\Classes\AppID\contenthandler.dll] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Search Guard Plus Updater] =>PUP.Fbsearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Search Guard Plus] =>PUP.Fbsearch
[HKLM\Software\Classes\ag.mediaplayercom] =>Adware.BHO
[HKLM\Software\Classes\ag.mediaplayercom] =>Toolbar.Kiwee
[HKLM\Software\Classes\agcore.config.agconfig] =>Adware.BHO
[HKLM\Software\Classes\agcore.search.search] =>Adware.BHO
[HKLM\Software\Classes\agcore.Text.JSON] =>Adware.BHO
[HKLM\Software\Classes\agihelper.agutils] =>Adware.BHO
[HKLM\Software\Classes\contenthandler.contentselection] =>Toolbar.Kiwee
[HKLM\Software\Classes\contenthandler.contentselection.1] =>Toolbar.Kiwee
[HKLM\Software\Classes\kiweeietoolbar.kiweetoolbar] =>Toolbar.Kiwee
[HKLM\Software\Classes\kiweeietoolbar.kiweetoolbar.1] =>Toolbar.Kiwee
[HKLM\Software\Classes\kiweeietoolbar.toolbarinfo] =>Toolbar.Kiwee
[HKLM\Software\Classes\kiweeietoolbar.toolbarinfo.1] =>Toolbar.Kiwee
[HKLM\Software\Classes\sweetie.ietoolbar] =>Toolbar.SweetIM
[HKLM\Software\Classes\sweetie.ietoolbar.1] =>Toolbar.SweetIM
[HKLM\Software\Classes\sweetim_urlsearchhook.toolbarurlsearchhook] =>Toolbar.SweetIM
[HKLM\Software\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1] =>Toolbar.SweetIM
[HKLM\Software\Classes\Toolbar.CT2032792] =>Toolbar.Agent
[HKLM\Software\Classes\Toolbar.ct2452474] =>Adware.Agent
[HKLM\Software\Classes\Toolbar3.sweetie] =>Toolbar.SweetIM
[HKLM\Software\Classes\Toolbar3.sweetie.1] =>Toolbar.SweetIM
[HKLM\Software\Classes\AppID\{055069F3-F78B-4BD1-A277-FE66648D3300}] =>PUP.Fbsearch
[HKLM\Software\Classes\Interface\{06DE5702-44CF-4B79-B4EF-3DDF653358F5}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0bc6e3fa-78ef-4886-842c-5a1258c4455a}] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0bc6e3fa-78ef-4886-842c-5a1258c4455a}] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0bc6e3fa-78ef-4886-842c-5a1258c4455a}] =>Toolbar.Kiwee
[HKLM\Software\Classes\CLSID\{0bc6e3fa-78ef-4886-842c-5a1258c4455a}] =>Toolbar.Kiwee
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0bc6e3fa-78ef-4886-842c-5a1258c4455a}] =>Toolbar.Kiwee
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0bc6e3fa-78ef-4886-842c-5a1258c4455a}] =>Toolbar.Kiwee
[HKLM\Software\Classes\TypeLib\{13b1a411-66d8-49ac-bbc6-0102f0918aed}] =>PUP.Eorezo
[HKLM\Software\Classes\TypeLib\{15d9ca76-f712-4548-b2a5-c67cd47ac47a}] =>PUP.Eorezo
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{23a287db-449a-462f-bde1-8635a61671ce}] =>Adware.BHO
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{23A287DB-449A-462F-BDE1-8635A61671CE}] =>Toolbar.Kiwee
[HKLM\Software\Classes\TypeLib\{259eeb17-79aa-44df-8410-8e55f82a902a}] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{346de098-61f9-4b42-89da-6dfba7091bb6}] =>Adware.IMBooster
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{346de098-61f9-4b42-89da-6dfba7091bb6}] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{346de098-61f9-4b42-89da-6dfba7091bb6}] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{346de098-61f9-4b42-89da-6dfba7091bb6}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{3e16a203-c0aa-4d44-acc5-38a70a8c76da}] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4260e0cc-0f75-462e-88a3-1e05c248bf4c}] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4260e0cc-0f75-462e-88a3-1e05c248bf4c}] =>Toolbar.Kiwee
[HKLM\Software\Classes\TypeLib\{4d3b167e-5fd8-4276-8fd7-9df19c1e4d19}] =>Toolbar.SweetIM
[HKLM\Software\Classes\Interface\{5663b370-f3c3-40d1-9c46-0e800aa4d0e8}] =>Toolbar.Kiwee
[HKLM\Software\Classes\AppID\{584e8107-e34a-493a-a015-06e3841482be}] =>PUP.Eorezo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6638a9de-0745-4292-8a2e-ae530e7b9b3f}] =>Toolbar.Kiwee
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6638a9de-0745-4292-8a2e-ae530e7b9b3f}] =>Toolbar.Kiwee
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6e15d3c4-c6fc-4f02-b130-77cc5b1f09db}] =>Toolbar.Kiwee
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6e15d3c4-c6fc-4f02-b130-77cc5b1f09db}] =>Toolbar.Kiwee
[HKLM\Software\Classes\TypeLib\{77AA25E8-6083-4949-A831-9CB11861DC10}] =>Toolbar.Conduit
[HKLM\Software\Classes\CLSID\{82ac53b4-164c-4b07-a016-437a8388b81a}] =>Toolbar.SweetIM
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{87A0B80B-5BA7-4CB0-9553-105D68777D60}] =>Adware.BHO
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8a96af9e-4074-43b7-bea3-87217bda74c8}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}] =>PUP.Fbsearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}] =>PUP.Fbsearch
[HKLM\Software\Classes\CLSID\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}] =>PUP.Fbsearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}] =>PUP.Fbsearch
[HKLM\Software\Classes\Interface\{9ebb289a-2d7b-465b-825f-1530b813e95a}] =>Adware.Agent
[HKLM\Software\Classes\AppID\{a5461fca-320c-4d6f-a150-a53823ce8142}] =>Toolbar.Kiwee
[HKLM\Software\Classes\TypeLib\{AA2E16F2-387A-415F-BA95-B89BAF3AF109}] =>PUP.Fbsearch
[HKLM\Software\Classes\TypeLib\{c7403c30-3644-43d8-a82f-4bd84b9682d9}] =>Toolbar.Kiwee
[HKLM\Software\Classes\AppID\{CC50232E-FDB1-436F-B658-452F88E81736}] =>Toolbar.Kiwee
[HKLM\Software\Classes\Interface\{cd5c92ae-97b0-4bc3-ba65-ba0308d543bf}] =>Adware.Agent
[HKLM\Software\Classes\CLSID\{e03bafdc-eb9d-4c35-a7a2-ab6c62ff0a68}] =>Adware.BHO
[HKLM\Software\Classes\CLSID\{e6375f37-e4d1-4f51-b651-4658c27ac5bf}] =>Adware.BHO
[HKLM\Software\Classes\Interface\{eee6c358-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKLM\Software\Classes\Interface\{eee6c35a-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{eee6c35b-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{eee6c35b-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKLM\Software\Classes\CLSID\{eee6c35b-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKLM\Software\Classes\TypeLib\{eee6c35e-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKLM\Software\Classes\TypeLib\{eee6c35f-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{eee6c360-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{eee6c360-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.Softomate
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.Softomate
[HKLM\Software\Classes\CLSID\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.Softomate
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.Softomate
[HKCU\Software\fcn] =>Rogue.Multiple
[HKCU\Software\IMBooster4web-en] =>Adware.IMBooster
[HKCU\Software\AppDataLow\Software\IMBooster4web-en] =>Adware.IMBooster
[HKLM\Software\IMBooster4web-en] =>Adware.IMBooster
[HKCU\Software\Iminent] =>Adware.IMBooster
[HKLM\Software\Iminent] =>Adware.IMBooster
[HKCU\Software\SpiderMessenger] =>Spyware.AgenceExclusive
[HKCU\Software\SweetIM] =>Toolbar.SweetIM
[HKLM\Software\SweetIM] =>Toolbar.SweetIM
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBooster4web-en Toolbar] =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\TBSB07183.TBSB07183Toolbar] =>PUP.Fbsearch
---\\ Valeurs de clé de Registre trouvées (Registry Values found)
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{346de098-61f9-4b42-89da-6dfba7091bb6} =>Adware.IMBooster
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{346de098-61f9-4b42-89da-6dfba7091bb6} =>Adware.IMBooster
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{6638a9de-0745-4292-8a2e-ae530e7b9b3f} =>Toolbar.Kiwee
[HKLM\Software\Mozilla\Firefox\Extensions]:SpiderMessengerHelper@spidermessenger.com =>Spyware.AgenceExclusive
[HKLM\Software\Mozilla\Firefox\Extensions]:toolbar@kiwee.com =>Toolbar.Kiwee
[HKLM\Software\Microsoft\Windows\CurrentVersion\Run]:FBSSA =>PUP.Fbsearch
---\\ Dossiers trouvés (Directories found)
C:\Program Files\Kiwee Toolbar =>Toolbar.Kiwee
C:\Program Files\SpiderMessenger =>Spyware.AgenceExclusive
C:\Program Files\SweetIM =>Toolbar.SweetIM
C:\ProgramData\AGI =>Toolbar.Kiwee
C:\ProgramData\Babylon =>Toolbar.Babylon
C:\ProgramData\GamesBar =>Adware.GamesBar
C:\ProgramData\Kiwee Toolbar =>Toolbar.Kiwee
C:\ProgramData\SweetIM =>Toolbar.SweetIM
C:\Users\Nadine\AppData\Roaming\AGI =>Toolbar.Kiwee
C:\Users\Nadine\AppData\Local\Babylon =>Toolbar.Babylon
C:\Users\Nadine\AppData\Local\Conduit =>Toolbar.Conduit
C:\Users\Nadine\AppData\Local\IMBooster4web-en =>Adware.IMBooster
C:\Users\Nadine\AppData\Local\Iminent =>Adware.IMBooster
C:\Users\Nadine\AppData\Local\Original-Solitaire =>Adware.Navipromo
C:\Users\Nadine\AppData\Local\SpiderMessenger =>Spyware.AgenceExclusive
C:\Users\Nadine\AppData\LocalLow\AGI =>Toolbar.Kiwee
C:\Users\Nadine\AppData\LocalLow\Conduit =>Toolbar.Conduit
C:\Users\Nadine\AppData\LocalLow\IMBooster4web-en =>Adware.IMBooster
C:\Users\Nadine\AppData\LocalLow\Kiwee Toolbar =>Toolbar.Kiwee
C:\Users\Nadine\AppData\LocalLow\myBabylon_English =>Toolbar.Conduit
C:\Users\Nadine\AppData\LocalLow\SweetIM =>Toolbar.SweetIM
C:\Users\Nadine\AppData\Local\Temp\Iminent =>Adware.IMBooster
---\\ Fichiers Firefox trouvés (Files found)
*** None ***
---\\ Fichiers trouvés (Files found)
*** None ***
---\\ Bilan de la recherche (Scan Result)
Database Version : 8614 - (24/08/2011)
Clés trouvées (Keys found) : 91
Valeurs de clé trouvées (Values found) : 6
Dossiers trouvés (Folders found) : 28
Fichiers trouvés (Files found) : 0
End of the scan in 00mn 11s
Il me faut le rapport complet.
Ouvres zhpdiag
* Clique sur l'icône représentant une loupe (« Lancer le diagnostic »)
* Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
* Héberge le rapport ZHPDiag.txt sur le site pjjoint.malekal.com ou cijoint.fr ou toofiles puis copie/colle le lien fournit dans ta prochaine réponse sur le forum
Ouvres zhpdiag
* Clique sur l'icône représentant une loupe (« Lancer le diagnostic »)
* Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
* Héberge le rapport ZHPDiag.txt sur le site pjjoint.malekal.com ou cijoint.fr ou toofiles puis copie/colle le lien fournit dans ta prochaine réponse sur le forum
bonjour le vient de refaire le diagnostic je te met le lien du rapport
https://www.cjoint.com/?AHBmgkUb1Va
merci d'avance
https://www.cjoint.com/?AHBmgkUb1Va
merci d'avance
Télécharge Ad-Remover sur ton bureau:
http://www.teamxscript.org/adremoverTelechargement.html
/!\ Ferme toutes tes applications ouvertes. /!\
* Désactive la protection en temps réel de ton Antivirus et de tes Antispywares, qui peuvent gêner la procédure de recherche et de nettoyage de l'outil.
Double clique sur le fichier que tu viens de télécharger, à l'écran qui apparait, clique sur
"Nettoyer".
Laisse travailler l'outil.
Poste le rapport qui s'affiche à l'écran quand l'analyse est terminée.
Si le rapport n'apparait pas il se trouve à cet emplacement :C:\Ad-Report-CLEAN[1].txt
http://www.teamxscript.org/adremoverTelechargement.html
/!\ Ferme toutes tes applications ouvertes. /!\
* Désactive la protection en temps réel de ton Antivirus et de tes Antispywares, qui peuvent gêner la procédure de recherche et de nettoyage de l'outil.
Double clique sur le fichier que tu viens de télécharger, à l'écran qui apparait, clique sur
"Nettoyer".
Laisse travailler l'outil.
Poste le rapport qui s'affiche à l'écran quand l'analyse est terminée.
Si le rapport n'apparait pas il se trouve à cet emplacement :C:\Ad-Report-CLEAN[1].txt
voici le rapport nanard
======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======
Mis à jour par TeamXscript le 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org
C:\Program Files\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 13:14:59 le 27/08/2011, Mode normal
Microsoft® Windows Vista(TM) Professionnel Service Pack 2 (X86)
Nadine@PC-DE-NADINE (Acer Veriton M410)
============== ACTION(S) ==============
Service: "AGCoreService" Stoppé et supprimé
Fichier supprimé: C:\Users\Nadine\AppData\Local\kptxe.bat
Fichier supprimé: C:\Users\Public\MyWebTattoo.exe
Fichier supprimé: C:\Windows\system32\Macromed\Flash\FlashPlayerTrust\UnifiedToolbar.cfg
Dossier supprimé: C:\Users\Nadine\AppData\Local\Conduit
Dossier supprimé: C:\Users\Nadine\AppData\LocalLow\Conduit
Dossier supprimé: C:\ProgramData\GamesBar
Dossier supprimé: C:\Users\Nadine\AppData\Local\Original-Solitaire
Dossier supprimé: C:\Users\Nadine\AppData\Local\SpiderMessenger
Dossier supprimé: C:\Program Files\SpiderMessenger
Dossier supprimé: C:\Users\Nadine\AppData\Roaming\AGI
Dossier supprimé: C:\ProgramData\AGI
Dossier supprimé: C:\Users\Nadine\AppData\LocalLow\AGI
Dossier supprimé: C:\ProgramData\Kiwee Toolbar
Erreur suppression dossier: C:\Users\Nadine\AppData\LocalLow\Kiwee Toolbar
Dossier supprimé: C:\Program Files\Kiwee Toolbar
Fichier supprimé: C:\Users\Nadine\AppData\Local\ujfnczho_nav.dat
Fichier supprimé: C:\Users\Nadine\AppData\Local\ujfnczho.dat
Fichier supprimé: C:\Users\Nadine\AppData\Local\ujfnczho_navps.dat
Fichier supprimé: C:\Users\Nadine\AppData\Local\zmykdqd_nav.dat
Fichier supprimé: C:\Users\Nadine\AppData\Local\zmykdqd.dat
Fichier supprimé: C:\Users\Nadine\AppData\Local\zmykdqd.exe
Fichier supprimé: C:\Users\Nadine\AppData\Local\zmykdqd_navps.dat
(!) -- Fichiers temporaires supprimés.
Clé supprimée: HKLM\Software\Classes\CLSID\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
Clé supprimée: HKLM\Software\Classes\AppID\{CC50232E-FDB1-436F-B658-452F88E81736}
Clé supprimée: HKLM\Software\Classes\CLSID\{1BB22D38-A411-4B13-A746-C2A4F4EC7344}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1BB22D38-A411-4B13-A746-C2A4F4EC7344}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1BB22D38-A411-4B13-A746-C2A4F4EC7344}
Clé supprimée: HKLM\Software\Classes\CLSID\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}
Clé supprimée: HKLM\Software\Classes\CLSID\{ADE49752-DBBC-43A3-9498-379A82F574BF}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ADE49752-DBBC-43A3-9498-379A82F574BF}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ADE49752-DBBC-43A3-9498-379A82F574BF}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{ADE49752-DBBC-43A3-9498-379A82F574BF}
Clé supprimée: HKLM\Software\Classes\AppID\{584E8107-E34A-493A-A015-06E3841482BE}
Clé supprimée: HKLM\Software\Classes\CLSID\{E03BAFDC-EB9D-4C35-A7A2-AB6C62FF0A68}
Clé supprimée: HKLM\Software\Classes\CLSID\{E6375F37-E4D1-4F51-B651-4658C27AC5BF}
Clé supprimée: HKLM\Software\Classes\AppID\{A5461FCA-320C-4D6F-A150-A53823CE8142}
Clé supprimée: HKLM\Software\Classes\CLSID\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Clé supprimée: HKLM\Software\Classes\Interface\{3E16A203-C0AA-4D44-ACC5-38A70A8C76DA}
Clé supprimée: HKLM\Software\Classes\TypeLib\{13B1A411-66D8-49AC-BBC6-0102F0918AED}
Clé supprimée: HKLM\Software\Classes\TypeLib\{15D9CA76-F712-4548-B2A5-C67CD47AC47A}
Clé supprimée: HKLM\Software\Classes\TypeLib\{259EEB17-79AA-44DF-8410-8E55F82A902A}
Clé supprimée: HKLM\Software\Classes\TypeLib\{77AA25E8-6083-4949-A831-9CB11861DC10}
Clé supprimée: HKLM\Software\Classes\TypeLib\{AA2E16F2-387A-415F-BA95-B89BAF3AF109}
Clé supprimée: HKLM\Software\Classes\TypeLib\{C7403C30-3644-43D8-A82F-4BD84B9682D9}
Clé supprimée: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\kptxe
Clé supprimée: HKLM\Software\Classes\AG.MediaPlayerCOM
Clé supprimée: HKLM\Software\Classes\agcore.Config.AGConfig
Clé supprimée: HKLM\Software\Classes\agcore.Search.Search
Clé supprimée: HKLM\Software\Classes\agcore.Text.JSON
Clé supprimée: HKLM\Software\Classes\agihelper.AGUtils
Clé supprimée: HKLM\Software\Classes\KiweeIEToolbar.KiweeToolbar
Clé supprimée: HKLM\Software\Classes\KiweeIEToolbar.KiweeToolbar.1
Clé supprimée: HKLM\Software\Classes\KiweeIEToolbar.ToolbarInfo
Clé supprimée: HKLM\Software\Classes\KiweeIEToolbar.ToolbarInfo.1
Clé supprimée: HKLM\Software\Classes\Toolbar.CT2032792
Clé supprimée: HKLM\Software\Classes\Toolbar.CT2452474
Clé supprimée: HKLM\Software\Classes\AppID\BHO.dll
Clé supprimée: HKLM\Software\Classes\AppID\{055069F3-F78B-4BD1-A277-FE66648D3300}
Clé supprimée: HKLM\Software\AGI
Clé supprimée: HKLM\Software\OriginalSolitaire
Clé supprimée: HKCU\Software\AGI
Clé supprimée: HKCU\Software\fcn
Clé supprimée: HKCU\Software\OriginalSolitaire
Clé supprimée: HKCU\Software\SpiderMessenger
Clé supprimée: HKU\.DEFAULT\Software\AGI
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8A96AF9E-4074-43b7-BEA3-87217BDA74C8}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9322A16D-F468-442f-8200-73C535478F0F}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{23A287DB-449A-462F-BDE1-8635A61671CE}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Search Guard Plus
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Search Guard Plus Updater
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SpiderMessenger_is1
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{87A0B80B-5BA7-4CB0-9553-105D68777D60}
Valeur supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Run|zmykdqd
Valeur supprimée: HKLM\Software\Mozilla\Firefox\Extensions|toolbar@kiwee.com
Valeur supprimée: HKLM\Software\Mozilla\Firefox\Extensions|SpiderMessengerHelper@spidermessenger.com
Valeur supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Run|FBSSA
Valeur supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Run|KiweeHook
Valeur supprimée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{1BB22D38-A411-4B13-A746-C2A4F4EC7344}
Valeur supprimée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{1BB22D38-A411-4B13-A746-C2A4F4EC7344}
Valeur supprimée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{6638A9DE-0745-4292-8A2E-AE530E7B9B3F}
============== SCAN ADDITIONNEL ==============
**** Mozilla Firefox Version [3.6.10 (fr)] ****
HKLM_MozillaPlugins\@mcafee.com/MSC,version=10 (x)
HKLM_MozillaPlugins\Adobe Reader (x)
Components\Scriptff.dll (McAfee, Inc.)
HKLM_Extensions|smartwebprinting@hp.com - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
HKLM_Extensions|{B7082FAA-CB62-4872-9106-E42DD88EDE45} - C:\Program Files\McAfee\SiteAdvisor
HKCU_Extensions|smartwebprinting@hp.com - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
-- C:\Users\Nadine\AppData\Roaming\Mozilla\FireFox\Profiles\qgk7t65m.default --
Extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444} (IMinent Toolbar)
Prefs.js - browser.search.defaultenginename, SearchTheWeb
Prefs.js - browser.search.defaulturl, hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q=
Prefs.js - browser.search.selectedEngine, SearchTheWeb
Prefs.js - browser.startup.homepage, hxxp://search.iminent.com/?appId=f1551255-3ac8-41b0-a60b-d88e029f9744&ref=homepage
Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.10
Prefs.js - keyword.URL, hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q=
Prefs.js - browser.startup.homepage,
Prefs.js - browser.search.selectedEngine,
Prefs.js - browser.search.defaultenginename,
-- C:\Users\denis\AppData\Roaming\Mozilla\FireFox\Profiles\r4t22q9j.default --
Searchplugins\SearchTheWeb.xml ( hxxp://search.iminent.com)
Prefs.js - browser.search.defaultenginename, SearchTheWeb
Prefs.js - browser.startup.homepage, hxxp://search.iminent.com/?appId=f1551255-3ac8-41b0-a60b-d88e029f9744&lcid=1036&ref=homepage
Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.10
========================================
**** Google Chrome Version [13.0.782.215] ****
Extension\fheoggkfdfchfphceeifdbepaooicaho (C:\Program Files\McAfee\SiteAdvisor\McChPlg.crx) (?)
-- C:\Users\Nadine\AppData\Local\Google\Chrome\User Data\Default --
Preferences - default_search_provider: "Google" (Activé: true) (?)
Preferences - homepage: hxxp://google%20chrome/
Preferences - homepage_is_newtabpage: false
Plugin - Windows Live\u0099 Photo Gallery (Activé: true) (C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll)
Plugin - "McSimpleChromePlugin Dynamic Link Library" (Activé: true)
Plugin - "Windows Live\u0099 Photo Gallery" (Activé: true)
========================================
**** Internet Explorer Version [9.0.7930.16406] ****
HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
HKCU_Main|Start Page - hxxp://fr.msn.com/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Start Page - hxxp://fr.msn.com/
HKCU_URLSearchHooks|{08C06D61-F1F3-4799-86F8-BE1A89362C85} - "Search Class" (C:\Program Files\Orange\SearchURLHook\SearchPageURL.dll)
HKLM_URLSearchHooks|{346de098-61f9-4b42-89da-6dfba7091bb6} - "IMBooster4web-en Toolbar" (C:\Program Files\IMBooster4web-en\tbIMB1.dll) (x)
HKLM_URLSearchHooks|{bc04b34e-5dd8-465a-a5e0-86f7c11bc009} - "Oryte Games 1 Toolbar" (C:\Program Files\Games_Bar_1\tbGam1.dll)
HKCU_SearchScopes\{70D46D94-BF1E-45ED-B567-48701376298E} - "Google Desktop" (hxxp://127.0.0.1:4664/search&s=0BMS6ZojZ2sArxKnc2VAzCQ1Pc0?q={searchTerms})
HKCU_SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847} - "SweetIM Search" (hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms})
HKLM_SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847} - "SweetIM Search" (hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms})
HKCU_Toolbar\WebBrowser|{346DE098-61F9-4B42-89DA-6DFBA7091BB6} (C:\Program Files\IMBooster4web-en\tbIMB1.dll) (x)
HKCU_Toolbar\WebBrowser|{D3028143-6145-4318-99D3-3EDCE54A95A9} (C:\Program Files\Orange\ToolbarFR\ToolbarContainer101000315.dll)
HKCU_Toolbar\WebBrowser|{BC04B34E-5DD8-465A-A5E0-86F7C11BC009} (C:\Program Files\Games_Bar_1\tbGam1.dll)
HKCU_Toolbar\WebBrowser|{EEE6C35B-6118-11DC-9C72-001320C79847} (C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll)
HKLM_Toolbar|{5CBE3B7C-1E47-477e-A7DD-396DB0476E29} (C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll)
HKLM_Toolbar|{346de098-61f9-4b42-89da-6dfba7091bb6} (C:\Program Files\IMBooster4web-en\tbIMB1.dll) (x)
HKLM_Toolbar|{D3028143-6145-4318-99D3-3EDCE54A95A9} (C:\Program Files\Orange\ToolbarFR\ToolbarContainer101000315.dll)
HKLM_Toolbar|{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} (c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll)
HKLM_Toolbar|{bc04b34e-5dd8-465a-a5e0-86f7c11bc009} (C:\Program Files\Games_Bar_1\tbGam1.dll)
HKLM_Toolbar|{EEE6C35B-6118-11DC-9C72-001320C79847} (C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll)
HKLM_Toolbar|{8dcb7100-df86-4384-8842-8fa844297b3f} ("C:\Program Files\Microsoft\BingBar\BingExt.dll") (x)
HKCU_ElevationPolicy\{CDE8D05A-49AD-4B7F-8AEA-9607E2A4217E} - C:\Program Files\OpenOffice.org 3\program\soffice.exe (OpenOffice.org)
HKLM_ElevationPolicy\0d9ee196-13f5-450c-8c0a-dc49f3c915a5 - C:\Program Files\IMBooster4web-en\IMBooster4web-enToolbarHelper.exe (x)
HKLM_ElevationPolicy\4cade177-5738-4eb1-8a0f-d7442fe1cd92 - C:\Program Files\Games_Bar_1\Games_Bar_1ToolbarHelper.exe (?)
HKLM_ElevationPolicy\4fbf1908-0c02-4829-ac88-10c45c00afe0 - C:\Program Files\Games_Bar_1\Games_Bar_1ToolbarHelper.exe (?)
HKLM_ElevationPolicy\5ca967b2-0bcd-4d98-9989-a416c1ef63ff - C:\Program Files\IMBooster4web-en\IMBooster4web-enToolbarHelper.exe (x)
HKLM_ElevationPolicy\7b2007eb-a85e-4dcc-a6b7-4681f5d9005b - C:\Program Files\IMBooster4web-en\IMBooster4web-enToolbarHelper.exe (x)
HKLM_ElevationPolicy\f9bc4ca1-0b86-4393-9a53-25648effeac9 - C:\Program Files\IMBooster4web-en\IMBooster4web-enToolbarHelper.exe (x)
HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\system32\wpcer.exe (x)
HKLM_ElevationPolicy\{1FCCD250-A453-4348-86C1-E5EA9B76FADB} - C:\Program Files\McAfee\VirusScan\mcvsmap.exe (McAfee, Inc.)
HKLM_ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291} - C:\Program Files\IMinent Toolbar\TbHelper2.exe (x)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files\Internet Explorer\iedw.exe (x)
HKLM_ElevationPolicy\{74351F14-5437-4d87-805B-04D409B09976} - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
HKLM_ElevationPolicy\{A8F94DF3-F6C6-422a-8BFC-7EE0F60A8609} - C:\Program Files\McAfee\VirusScan\mcvsshld.exe (McAfee, Inc.)
HKLM_ElevationPolicy\{aa851425-0109-43f3-9ed2-7b7090125861} - C:\Program Files\Microsoft\BingBar\BingBar.exe (Microsoft Corporation.)
HKLM_ElevationPolicy\{B9C9C9C7-B9B2-4203-BB34-AADB48E94647} - C:\Program Files\AGI\Python25\pythonw.exe (x)
HKLM_ElevationPolicy\{DAABE21E-DB8C-49b8-9511-9E6547ECBC5F} - c:\Program Files\McAfee\SiteAdvisor\McSACore.exe (McAfee, Inc.)
HKLM_ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08} - C:\Program Files\Iminent\MMServer\Iminent.MMServer.exe (x)
HKLM_ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe (SweetIM Technologies Ltd.)
BHO\{02478D38-C3F9-4efb-9B51-7695ECA05670} (?)
BHO\{27B4851A-3207-45A2-B947-BE8AFE6163AB} (?)
BHO\{346de098-61f9-4b42-89da-6dfba7091bb6} - "IMBooster4web-en Toolbar" (C:\Program Files\IMBooster4web-en\tbIMB1.dll) (x)
BHO\{6638A9DE-0745-4292-8A2E-AE530E7B9B3F} (?)
BHO\{7DB2D5A0-7241-4E79-B68D-6309F01C5231} - "scriptproxy" (C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20110825200912.dll)
BHO\{83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - "ShowBarObj Class" (C:\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll)
BHO\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} - "McAfee SiteAdvisor BHO" (c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll)
BHO\{bc04b34e-5dd8-465a-a5e0-86f7c11bc009} - "Oryte Games 1 Toolbar" (C:\Program Files\Games_Bar_1\tbGam1.dll)
BHO\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "Bing Bar Helper" ("C:\Program Files\Microsoft\BingBar\BingExt.dll") (x)
BHO\{EEE6C35C-6118-11DC-9C72-001320C79847} - "SweetIM Toolbar Helper" (C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll)
========================================
C:\Program Files\Ad-Remover\Quarantine: 509 Fichier(s)
C:\Program Files\Ad-Remover\Backup: 14 Fichier(s)
C:\Ad-Report-CLEAN[1].txt - 27/08/2011 13:15:04 (16578 Octet(s))
Fin à: 13:17:51, 27/08/2011
============== E.O.F ==============
======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======
Mis à jour par TeamXscript le 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org
C:\Program Files\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 13:14:59 le 27/08/2011, Mode normal
Microsoft® Windows Vista(TM) Professionnel Service Pack 2 (X86)
Nadine@PC-DE-NADINE (Acer Veriton M410)
============== ACTION(S) ==============
Service: "AGCoreService" Stoppé et supprimé
Fichier supprimé: C:\Users\Nadine\AppData\Local\kptxe.bat
Fichier supprimé: C:\Users\Public\MyWebTattoo.exe
Fichier supprimé: C:\Windows\system32\Macromed\Flash\FlashPlayerTrust\UnifiedToolbar.cfg
Dossier supprimé: C:\Users\Nadine\AppData\Local\Conduit
Dossier supprimé: C:\Users\Nadine\AppData\LocalLow\Conduit
Dossier supprimé: C:\ProgramData\GamesBar
Dossier supprimé: C:\Users\Nadine\AppData\Local\Original-Solitaire
Dossier supprimé: C:\Users\Nadine\AppData\Local\SpiderMessenger
Dossier supprimé: C:\Program Files\SpiderMessenger
Dossier supprimé: C:\Users\Nadine\AppData\Roaming\AGI
Dossier supprimé: C:\ProgramData\AGI
Dossier supprimé: C:\Users\Nadine\AppData\LocalLow\AGI
Dossier supprimé: C:\ProgramData\Kiwee Toolbar
Erreur suppression dossier: C:\Users\Nadine\AppData\LocalLow\Kiwee Toolbar
Dossier supprimé: C:\Program Files\Kiwee Toolbar
Fichier supprimé: C:\Users\Nadine\AppData\Local\ujfnczho_nav.dat
Fichier supprimé: C:\Users\Nadine\AppData\Local\ujfnczho.dat
Fichier supprimé: C:\Users\Nadine\AppData\Local\ujfnczho_navps.dat
Fichier supprimé: C:\Users\Nadine\AppData\Local\zmykdqd_nav.dat
Fichier supprimé: C:\Users\Nadine\AppData\Local\zmykdqd.dat
Fichier supprimé: C:\Users\Nadine\AppData\Local\zmykdqd.exe
Fichier supprimé: C:\Users\Nadine\AppData\Local\zmykdqd_navps.dat
(!) -- Fichiers temporaires supprimés.
Clé supprimée: HKLM\Software\Classes\CLSID\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
Clé supprimée: HKLM\Software\Classes\AppID\{CC50232E-FDB1-436F-B658-452F88E81736}
Clé supprimée: HKLM\Software\Classes\CLSID\{1BB22D38-A411-4B13-A746-C2A4F4EC7344}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1BB22D38-A411-4B13-A746-C2A4F4EC7344}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1BB22D38-A411-4B13-A746-C2A4F4EC7344}
Clé supprimée: HKLM\Software\Classes\CLSID\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}
Clé supprimée: HKLM\Software\Classes\CLSID\{ADE49752-DBBC-43A3-9498-379A82F574BF}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ADE49752-DBBC-43A3-9498-379A82F574BF}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ADE49752-DBBC-43A3-9498-379A82F574BF}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{ADE49752-DBBC-43A3-9498-379A82F574BF}
Clé supprimée: HKLM\Software\Classes\AppID\{584E8107-E34A-493A-A015-06E3841482BE}
Clé supprimée: HKLM\Software\Classes\CLSID\{E03BAFDC-EB9D-4C35-A7A2-AB6C62FF0A68}
Clé supprimée: HKLM\Software\Classes\CLSID\{E6375F37-E4D1-4F51-B651-4658C27AC5BF}
Clé supprimée: HKLM\Software\Classes\AppID\{A5461FCA-320C-4D6F-A150-A53823CE8142}
Clé supprimée: HKLM\Software\Classes\CLSID\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Clé supprimée: HKLM\Software\Classes\Interface\{3E16A203-C0AA-4D44-ACC5-38A70A8C76DA}
Clé supprimée: HKLM\Software\Classes\TypeLib\{13B1A411-66D8-49AC-BBC6-0102F0918AED}
Clé supprimée: HKLM\Software\Classes\TypeLib\{15D9CA76-F712-4548-B2A5-C67CD47AC47A}
Clé supprimée: HKLM\Software\Classes\TypeLib\{259EEB17-79AA-44DF-8410-8E55F82A902A}
Clé supprimée: HKLM\Software\Classes\TypeLib\{77AA25E8-6083-4949-A831-9CB11861DC10}
Clé supprimée: HKLM\Software\Classes\TypeLib\{AA2E16F2-387A-415F-BA95-B89BAF3AF109}
Clé supprimée: HKLM\Software\Classes\TypeLib\{C7403C30-3644-43D8-A82F-4BD84B9682D9}
Clé supprimée: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\kptxe
Clé supprimée: HKLM\Software\Classes\AG.MediaPlayerCOM
Clé supprimée: HKLM\Software\Classes\agcore.Config.AGConfig
Clé supprimée: HKLM\Software\Classes\agcore.Search.Search
Clé supprimée: HKLM\Software\Classes\agcore.Text.JSON
Clé supprimée: HKLM\Software\Classes\agihelper.AGUtils
Clé supprimée: HKLM\Software\Classes\KiweeIEToolbar.KiweeToolbar
Clé supprimée: HKLM\Software\Classes\KiweeIEToolbar.KiweeToolbar.1
Clé supprimée: HKLM\Software\Classes\KiweeIEToolbar.ToolbarInfo
Clé supprimée: HKLM\Software\Classes\KiweeIEToolbar.ToolbarInfo.1
Clé supprimée: HKLM\Software\Classes\Toolbar.CT2032792
Clé supprimée: HKLM\Software\Classes\Toolbar.CT2452474
Clé supprimée: HKLM\Software\Classes\AppID\BHO.dll
Clé supprimée: HKLM\Software\Classes\AppID\{055069F3-F78B-4BD1-A277-FE66648D3300}
Clé supprimée: HKLM\Software\AGI
Clé supprimée: HKLM\Software\OriginalSolitaire
Clé supprimée: HKCU\Software\AGI
Clé supprimée: HKCU\Software\fcn
Clé supprimée: HKCU\Software\OriginalSolitaire
Clé supprimée: HKCU\Software\SpiderMessenger
Clé supprimée: HKU\.DEFAULT\Software\AGI
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8A96AF9E-4074-43b7-BEA3-87217BDA74C8}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9322A16D-F468-442f-8200-73C535478F0F}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{23A287DB-449A-462F-BDE1-8635A61671CE}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Search Guard Plus
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Search Guard Plus Updater
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SpiderMessenger_is1
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{87A0B80B-5BA7-4CB0-9553-105D68777D60}
Valeur supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Run|zmykdqd
Valeur supprimée: HKLM\Software\Mozilla\Firefox\Extensions|toolbar@kiwee.com
Valeur supprimée: HKLM\Software\Mozilla\Firefox\Extensions|SpiderMessengerHelper@spidermessenger.com
Valeur supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Run|FBSSA
Valeur supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Run|KiweeHook
Valeur supprimée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{1BB22D38-A411-4B13-A746-C2A4F4EC7344}
Valeur supprimée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{1BB22D38-A411-4B13-A746-C2A4F4EC7344}
Valeur supprimée: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser|{6638A9DE-0745-4292-8A2E-AE530E7B9B3F}
============== SCAN ADDITIONNEL ==============
**** Mozilla Firefox Version [3.6.10 (fr)] ****
HKLM_MozillaPlugins\@mcafee.com/MSC,version=10 (x)
HKLM_MozillaPlugins\Adobe Reader (x)
Components\Scriptff.dll (McAfee, Inc.)
HKLM_Extensions|smartwebprinting@hp.com - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
HKLM_Extensions|{B7082FAA-CB62-4872-9106-E42DD88EDE45} - C:\Program Files\McAfee\SiteAdvisor
HKCU_Extensions|smartwebprinting@hp.com - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
-- C:\Users\Nadine\AppData\Roaming\Mozilla\FireFox\Profiles\qgk7t65m.default --
Extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444} (IMinent Toolbar)
Prefs.js - browser.search.defaultenginename, SearchTheWeb
Prefs.js - browser.search.defaulturl, hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q=
Prefs.js - browser.search.selectedEngine, SearchTheWeb
Prefs.js - browser.startup.homepage, hxxp://search.iminent.com/?appId=f1551255-3ac8-41b0-a60b-d88e029f9744&ref=homepage
Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.10
Prefs.js - keyword.URL, hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q=
Prefs.js - browser.startup.homepage,
Prefs.js - browser.search.selectedEngine,
Prefs.js - browser.search.defaultenginename,
-- C:\Users\denis\AppData\Roaming\Mozilla\FireFox\Profiles\r4t22q9j.default --
Searchplugins\SearchTheWeb.xml ( hxxp://search.iminent.com)
Prefs.js - browser.search.defaultenginename, SearchTheWeb
Prefs.js - browser.startup.homepage, hxxp://search.iminent.com/?appId=f1551255-3ac8-41b0-a60b-d88e029f9744&lcid=1036&ref=homepage
Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.10
========================================
**** Google Chrome Version [13.0.782.215] ****
Extension\fheoggkfdfchfphceeifdbepaooicaho (C:\Program Files\McAfee\SiteAdvisor\McChPlg.crx) (?)
-- C:\Users\Nadine\AppData\Local\Google\Chrome\User Data\Default --
Preferences - default_search_provider: "Google" (Activé: true) (?)
Preferences - homepage: hxxp://google%20chrome/
Preferences - homepage_is_newtabpage: false
Plugin - Windows Live\u0099 Photo Gallery (Activé: true) (C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll)
Plugin - "McSimpleChromePlugin Dynamic Link Library" (Activé: true)
Plugin - "Windows Live\u0099 Photo Gallery" (Activé: true)
========================================
**** Internet Explorer Version [9.0.7930.16406] ****
HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
HKCU_Main|Start Page - hxxp://fr.msn.com/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Start Page - hxxp://fr.msn.com/
HKCU_URLSearchHooks|{08C06D61-F1F3-4799-86F8-BE1A89362C85} - "Search Class" (C:\Program Files\Orange\SearchURLHook\SearchPageURL.dll)
HKLM_URLSearchHooks|{346de098-61f9-4b42-89da-6dfba7091bb6} - "IMBooster4web-en Toolbar" (C:\Program Files\IMBooster4web-en\tbIMB1.dll) (x)
HKLM_URLSearchHooks|{bc04b34e-5dd8-465a-a5e0-86f7c11bc009} - "Oryte Games 1 Toolbar" (C:\Program Files\Games_Bar_1\tbGam1.dll)
HKCU_SearchScopes\{70D46D94-BF1E-45ED-B567-48701376298E} - "Google Desktop" (hxxp://127.0.0.1:4664/search&s=0BMS6ZojZ2sArxKnc2VAzCQ1Pc0?q={searchTerms})
HKCU_SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847} - "SweetIM Search" (hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms})
HKLM_SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847} - "SweetIM Search" (hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms})
HKCU_Toolbar\WebBrowser|{346DE098-61F9-4B42-89DA-6DFBA7091BB6} (C:\Program Files\IMBooster4web-en\tbIMB1.dll) (x)
HKCU_Toolbar\WebBrowser|{D3028143-6145-4318-99D3-3EDCE54A95A9} (C:\Program Files\Orange\ToolbarFR\ToolbarContainer101000315.dll)
HKCU_Toolbar\WebBrowser|{BC04B34E-5DD8-465A-A5E0-86F7C11BC009} (C:\Program Files\Games_Bar_1\tbGam1.dll)
HKCU_Toolbar\WebBrowser|{EEE6C35B-6118-11DC-9C72-001320C79847} (C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll)
HKLM_Toolbar|{5CBE3B7C-1E47-477e-A7DD-396DB0476E29} (C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll)
HKLM_Toolbar|{346de098-61f9-4b42-89da-6dfba7091bb6} (C:\Program Files\IMBooster4web-en\tbIMB1.dll) (x)
HKLM_Toolbar|{D3028143-6145-4318-99D3-3EDCE54A95A9} (C:\Program Files\Orange\ToolbarFR\ToolbarContainer101000315.dll)
HKLM_Toolbar|{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} (c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll)
HKLM_Toolbar|{bc04b34e-5dd8-465a-a5e0-86f7c11bc009} (C:\Program Files\Games_Bar_1\tbGam1.dll)
HKLM_Toolbar|{EEE6C35B-6118-11DC-9C72-001320C79847} (C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll)
HKLM_Toolbar|{8dcb7100-df86-4384-8842-8fa844297b3f} ("C:\Program Files\Microsoft\BingBar\BingExt.dll") (x)
HKCU_ElevationPolicy\{CDE8D05A-49AD-4B7F-8AEA-9607E2A4217E} - C:\Program Files\OpenOffice.org 3\program\soffice.exe (OpenOffice.org)
HKLM_ElevationPolicy\0d9ee196-13f5-450c-8c0a-dc49f3c915a5 - C:\Program Files\IMBooster4web-en\IMBooster4web-enToolbarHelper.exe (x)
HKLM_ElevationPolicy\4cade177-5738-4eb1-8a0f-d7442fe1cd92 - C:\Program Files\Games_Bar_1\Games_Bar_1ToolbarHelper.exe (?)
HKLM_ElevationPolicy\4fbf1908-0c02-4829-ac88-10c45c00afe0 - C:\Program Files\Games_Bar_1\Games_Bar_1ToolbarHelper.exe (?)
HKLM_ElevationPolicy\5ca967b2-0bcd-4d98-9989-a416c1ef63ff - C:\Program Files\IMBooster4web-en\IMBooster4web-enToolbarHelper.exe (x)
HKLM_ElevationPolicy\7b2007eb-a85e-4dcc-a6b7-4681f5d9005b - C:\Program Files\IMBooster4web-en\IMBooster4web-enToolbarHelper.exe (x)
HKLM_ElevationPolicy\f9bc4ca1-0b86-4393-9a53-25648effeac9 - C:\Program Files\IMBooster4web-en\IMBooster4web-enToolbarHelper.exe (x)
HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\system32\wpcer.exe (x)
HKLM_ElevationPolicy\{1FCCD250-A453-4348-86C1-E5EA9B76FADB} - C:\Program Files\McAfee\VirusScan\mcvsmap.exe (McAfee, Inc.)
HKLM_ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291} - C:\Program Files\IMinent Toolbar\TbHelper2.exe (x)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files\Internet Explorer\iedw.exe (x)
HKLM_ElevationPolicy\{74351F14-5437-4d87-805B-04D409B09976} - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Google)
HKLM_ElevationPolicy\{A8F94DF3-F6C6-422a-8BFC-7EE0F60A8609} - C:\Program Files\McAfee\VirusScan\mcvsshld.exe (McAfee, Inc.)
HKLM_ElevationPolicy\{aa851425-0109-43f3-9ed2-7b7090125861} - C:\Program Files\Microsoft\BingBar\BingBar.exe (Microsoft Corporation.)
HKLM_ElevationPolicy\{B9C9C9C7-B9B2-4203-BB34-AADB48E94647} - C:\Program Files\AGI\Python25\pythonw.exe (x)
HKLM_ElevationPolicy\{DAABE21E-DB8C-49b8-9511-9E6547ECBC5F} - c:\Program Files\McAfee\SiteAdvisor\McSACore.exe (McAfee, Inc.)
HKLM_ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08} - C:\Program Files\Iminent\MMServer\Iminent.MMServer.exe (x)
HKLM_ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe (SweetIM Technologies Ltd.)
BHO\{02478D38-C3F9-4efb-9B51-7695ECA05670} (?)
BHO\{27B4851A-3207-45A2-B947-BE8AFE6163AB} (?)
BHO\{346de098-61f9-4b42-89da-6dfba7091bb6} - "IMBooster4web-en Toolbar" (C:\Program Files\IMBooster4web-en\tbIMB1.dll) (x)
BHO\{6638A9DE-0745-4292-8A2E-AE530E7B9B3F} (?)
BHO\{7DB2D5A0-7241-4E79-B68D-6309F01C5231} - "scriptproxy" (C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20110825200912.dll)
BHO\{83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - "ShowBarObj Class" (C:\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll)
BHO\{B164E929-A1B6-4A06-B104-2CD0E90A88FF} - "McAfee SiteAdvisor BHO" (c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll)
BHO\{bc04b34e-5dd8-465a-a5e0-86f7c11bc009} - "Oryte Games 1 Toolbar" (C:\Program Files\Games_Bar_1\tbGam1.dll)
BHO\{d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "Bing Bar Helper" ("C:\Program Files\Microsoft\BingBar\BingExt.dll") (x)
BHO\{EEE6C35C-6118-11DC-9C72-001320C79847} - "SweetIM Toolbar Helper" (C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll)
========================================
C:\Program Files\Ad-Remover\Quarantine: 509 Fichier(s)
C:\Program Files\Ad-Remover\Backup: 14 Fichier(s)
C:\Ad-Report-CLEAN[1].txt - 27/08/2011 13:15:04 (16578 Octet(s))
Fin à: 13:17:51, 27/08/2011
============== E.O.F ==============
Ce n'est pas encore terminé :)
Post un nouveau rapport zhpdiag.
Héberge le rapport ZHPDiag.txt sur le site pjjoint.malekal.com ou cijoint.fr ou toofiles puis copie/colle le lien fournit dans ta prochaine réponse sur le forum
Post un nouveau rapport zhpdiag.
Héberge le rapport ZHPDiag.txt sur le site pjjoint.malekal.com ou cijoint.fr ou toofiles puis copie/colle le lien fournit dans ta prochaine réponse sur le forum
1/ Copie/colle les lignes suivantes en gras:
2/Lance ZHPFix (soit via le raccourci sur ton Bureau, soit via ZHPDiag)
3/Clique sur l''icone représentant la lettre H (« coller les lignes Helper »)
----------------------------------------------------------
M0 - MFSP: prefs.js [Nadine - qgk7t65m.default] http://search.iminent.com/?appId=f1551255-3ac8-41b0-a60b-d88e029f9744&ref=homepage
M2 - MFEP: prefs.js [Nadine - qgk7t65m.default\{C9B68337-E93A-44EA-94DC-CB300EC06444}] [] IMinent Toolbar v3.26.0 (.IMinent.)
R3 - URLSearchHook: IMBooster4web-en Toolbar - {346de098-61f9-4b42-89da-6dfba7091bb6} . (...) (No version) -- C:\Program Files\IMBooster4web-en\tbIMB1.dll
O2 - BHO: (no name) - {6638A9DE-0745-4292-8A2E-AE530E7B9B3F} Clé orpheline
O3 - Toolbar: IMBooster4web-en Toolbar - {346de098-61f9-4b42-89da-6dfba7091bb6} . (...) -- C:\Program Files\IMBooster4web-en\tbIMB1.dll
O4 - HKCU\..\Run: [zmykdqd] c:\users\nadine\appdata\local\zmykdqd.exe (.not file.) @MaCo
O4 - HKUS\S-1-5-21-259649490-573275764-3090687775-1003\..\Run: [zmykdqd] c:\users\nadine\appdata\local\zmykdqd.exe (.not file.) @MaCo
O42 - Logiciel: Fast Browser Search (My Web Tattoo) - (.Make The Web Better, LLC.) [HKLM] -- TBSB07183.TBSB07183Toolbar
[HKCU\Software\AppDataLow\Software\IMBooster4web-en]
[HKCU\Software\IMBooster4web-en]
[HKCU\Software\Iminent]
[HKLM\Software\IMBooster4web-en]
[HKLM\Software\Iminent]
O43 - CFD: 22/11/2009 - 19:30:20 - [9968] ----D- C:\ProgramData\Babylon
O43 - CFD: 22/11/2009 - 18:33:18 - [15124] ----D- C:\Users\Nadine\AppData\Local\Babylon
O43 - CFD: 09/05/2010 - 19:00:28 - [1806148] ----D- C:\Users\Nadine\AppData\Local\IMBooster4web-en
O43 - CFD: 26/10/2009 - 11:08:54 - [1351] ----D- C:\Users\Nadine\AppData\Local\Iminent
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\Users\Nadine\AppData\Local\zmykdqd_navps.dat
[HKLM\Software\Classes\AppID\contenthandler.dll]
[HKLM\Software\Classes\contenthandler.contentselection]
[HKLM\Software\Classes\contenthandler.contentselection.1]
[HKLM\Software\Classes\Interface\{06DE5702-44CF-4B79-B4EF-3DDF653358F5}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{346de098-61f9-4b42-89da-6dfba7091bb6}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{346de098-61f9-4b42-89da-6dfba7091bb6}]
[HKLM\Software\Classes\CLSID\{346de098-61f9-4b42-89da-6dfba7091bb6}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{346de098-61f9-4b42-89da-6dfba7091bb6}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4260e0cc-0f75-462e-88a3-1e05c248bf4c}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4260e0cc-0f75-462e-88a3-1e05c248bf4c}]
[HKLM\Software\Classes\Interface\{5663b370-f3c3-40d1-9c46-0e800aa4d0e8}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6638a9de-0745-4292-8a2e-ae530e7b9b3f}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6638a9de-0745-4292-8a2e-ae530e7b9b3f}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6e15d3c4-c6fc-4f02-b130-77cc5b1f09db}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6e15d3c4-c6fc-4f02-b130-77cc5b1f09db}]
[HKLM\Software\Classes\Interface\{9ebb289a-2d7b-465b-825f-1530b813e95a}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBooster4web-en Toolbar]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\TBSB07183.TBSB07183Toolbar]
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{346de098-61f9-4b42-89da-6dfba7091bb6}
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{346de098-61f9-4b42-89da-6dfba7091bb6}
C:\ProgramData\Babylon
C:\Users\Nadine\AppData\Local\Babylon
C:\Users\Nadine\AppData\Local\IMBooster4web-en
C:\Users\Nadine\AppData\Local\Iminent
C:\Users\Nadine\AppData\LocalLow\IMBooster4web-en
C:\Users\Nadine\AppData\LocalLow\Kiwee Toolbar
C:\Users\Nadine\AppData\Local\Temp\Iminent
O4 - HKLM\..\Run: [eRecoveryService] Clé orpheline
O4 - Global Startup: C:\Users\Nadine\Desktop\Meteo.lnk - Clé orpheline
O4 - Global Startup: C:\Users\Nadine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Meteo.lnk - Clé orpheline
O4 - Global Startup: C:\Users\Nadine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Vos Allocations.lnk - Clé orpheline
[MD5.00000000000000000000000000000000] [APT] [{0BF66D6A-47F9-4AF4-AB74-C878AA90CA5D}] (...) -- C:\PROGRA~1\IMBOOS~1\UNWISE.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{82644EF4-A236-4CA5-B745-CAE9878D4EDD}] (...) -- C:\Users\Nadine\Desktop\OpenOffice.org 3.1 (fr) Installation Files\instmsia.exe (.not file.)
R3 - URLSearchHook: Oryte Games 1 Toolbar - {bc04b34e-5dd8-465a-a5e0-86f7c11bc009} . (.Conduit Ltd. - Conduit Toolbar.) (5, 5, 0, 10) -- C:\Program Files\Games_Bar_1\tbGam1.dll
O2 - BHO: Oryte Games 1 Toolbar - {bc04b34e-5dd8-465a-a5e0-86f7c11bc009} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Games_Bar_1\tbGam1.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} . (.SweetIM Technologies Ltd. - SweetIM Toolbar for Internet Explorer.) -- C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: Oryte Games 1 Toolbar - {bc04b34e-5dd8-465a-a5e0-86f7c11bc009} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Games_Bar_1\tbGam1.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} . (.SweetIM Technologies Ltd. - SweetIM Toolbar for Internet Explorer.) -- C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O4 - HKLM\..\Run: [SweetIM] . (.SweetIM Technologies Ltd. - SweetIM Instant Messenger Enhancer.) -- C:\Program Files\SweetIM\Messenger\SweetIM.exe
O42 - Logiciel: Games_Bar_1 Toolbar - (.Pas de propriétaire.) [HKLM] -- Games_Bar_1 Toolbar
O42 - Logiciel: IMBooster4web-en Toolbar - (.Pas de propriétaire.) [HKLM] -- IMBooster4web-en Toolbar
[HKCU\Software\AppDataLow\Software\Games_Bar_1]
[HKCU\Software\Games_Bar_1]
[HKCU\Software\SweetIM]
[HKLM\Software\Games_Bar_1]
[HKLM\Software\SweetIM]
O43 - CFD: 09/05/2010 - 18:57:06 - [5069145] ----D- C:\Program Files\Games_Bar_1
O43 - CFD: 11/07/2010 - 03:21:00 - [8217335] ----D- C:\Program Files\SweetIM
O43 - CFD: 11/07/2010 - 03:20:40 - [191957] ----D- C:\ProgramData\SweetIM
O43 - CFD: 09/05/2010 - 19:00:28 - [355054] ----D- C:\Users\Nadine\AppData\Local\Games_Bar_1
[HKLM\Software\Classes\sweetie.ietoolbar]
[HKLM\Software\Classes\sweetie.ietoolbar.1]
[HKLM\Software\Classes\sweetim_urlsearchhook.toolbarurlsearchhook]
[HKLM\Software\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1]
[HKLM\Software\Classes\Toolbar3.sweetie]
[HKLM\Software\Classes\Toolbar3.sweetie.1]
[HKLM\Software\Classes\TypeLib\{4d3b167e-5fd8-4276-8fd7-9df19c1e4d19}]
[HKLM\Software\Classes\CLSID\{82ac53b4-164c-4b07-a016-437a8388b81a}]
[HKLM\Software\Classes\Interface\{cd5c92ae-97b0-4bc3-ba65-ba0308d543bf}]
[HKLM\Software\Classes\Interface\{eee6c358-6118-11dc-9c72-001320c79847}]
[HKLM\Software\Classes\Interface\{eee6c35a-6118-11dc-9c72-001320c79847}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKLM\Software\Classes\CLSID\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKLM\Software\Classes\TypeLib\{eee6c35e-6118-11dc-9c72-001320c79847}]
[HKLM\Software\Classes\TypeLib\{eee6c35f-6118-11dc-9c72-001320c79847}]
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{eee6c360-6118-11dc-9c72-001320c79847}]
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{eee6c360-6118-11dc-9c72-001320c79847}]
[HKCU\Software\SweetIM]
[HKLM\Software\SweetIM]
C:\Program Files\SweetIM
C:\ProgramData\SweetIM
C:\Users\Nadine\AppData\LocalLow\SweetIM
EmptyTemp
FirewallRaz
--------------------------------------------------------
- Clique sur le bouton « GO » pour lancer le nettoyage,
- Copie/colle la totalité du rapport dans ta prochaine réponse
2/Lance ZHPFix (soit via le raccourci sur ton Bureau, soit via ZHPDiag)
3/Clique sur l''icone représentant la lettre H (« coller les lignes Helper »)
----------------------------------------------------------
M0 - MFSP: prefs.js [Nadine - qgk7t65m.default] http://search.iminent.com/?appId=f1551255-3ac8-41b0-a60b-d88e029f9744&ref=homepage
M2 - MFEP: prefs.js [Nadine - qgk7t65m.default\{C9B68337-E93A-44EA-94DC-CB300EC06444}] [] IMinent Toolbar v3.26.0 (.IMinent.)
R3 - URLSearchHook: IMBooster4web-en Toolbar - {346de098-61f9-4b42-89da-6dfba7091bb6} . (...) (No version) -- C:\Program Files\IMBooster4web-en\tbIMB1.dll
O2 - BHO: (no name) - {6638A9DE-0745-4292-8A2E-AE530E7B9B3F} Clé orpheline
O3 - Toolbar: IMBooster4web-en Toolbar - {346de098-61f9-4b42-89da-6dfba7091bb6} . (...) -- C:\Program Files\IMBooster4web-en\tbIMB1.dll
O4 - HKCU\..\Run: [zmykdqd] c:\users\nadine\appdata\local\zmykdqd.exe (.not file.) @MaCo
O4 - HKUS\S-1-5-21-259649490-573275764-3090687775-1003\..\Run: [zmykdqd] c:\users\nadine\appdata\local\zmykdqd.exe (.not file.) @MaCo
O42 - Logiciel: Fast Browser Search (My Web Tattoo) - (.Make The Web Better, LLC.) [HKLM] -- TBSB07183.TBSB07183Toolbar
[HKCU\Software\AppDataLow\Software\IMBooster4web-en]
[HKCU\Software\IMBooster4web-en]
[HKCU\Software\Iminent]
[HKLM\Software\IMBooster4web-en]
[HKLM\Software\Iminent]
O43 - CFD: 22/11/2009 - 19:30:20 - [9968] ----D- C:\ProgramData\Babylon
O43 - CFD: 22/11/2009 - 18:33:18 - [15124] ----D- C:\Users\Nadine\AppData\Local\Babylon
O43 - CFD: 09/05/2010 - 19:00:28 - [1806148] ----D- C:\Users\Nadine\AppData\Local\IMBooster4web-en
O43 - CFD: 26/10/2009 - 11:08:54 - [1351] ----D- C:\Users\Nadine\AppData\Local\Iminent
O59 - HSMI:Heuristic Search MagicControl Infection - (...) -- C:\Users\Nadine\AppData\Local\zmykdqd_navps.dat
[HKLM\Software\Classes\AppID\contenthandler.dll]
[HKLM\Software\Classes\contenthandler.contentselection]
[HKLM\Software\Classes\contenthandler.contentselection.1]
[HKLM\Software\Classes\Interface\{06DE5702-44CF-4B79-B4EF-3DDF653358F5}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{346de098-61f9-4b42-89da-6dfba7091bb6}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{346de098-61f9-4b42-89da-6dfba7091bb6}]
[HKLM\Software\Classes\CLSID\{346de098-61f9-4b42-89da-6dfba7091bb6}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{346de098-61f9-4b42-89da-6dfba7091bb6}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4260e0cc-0f75-462e-88a3-1e05c248bf4c}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4260e0cc-0f75-462e-88a3-1e05c248bf4c}]
[HKLM\Software\Classes\Interface\{5663b370-f3c3-40d1-9c46-0e800aa4d0e8}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6638a9de-0745-4292-8a2e-ae530e7b9b3f}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6638a9de-0745-4292-8a2e-ae530e7b9b3f}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6e15d3c4-c6fc-4f02-b130-77cc5b1f09db}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6e15d3c4-c6fc-4f02-b130-77cc5b1f09db}]
[HKLM\Software\Classes\Interface\{9ebb289a-2d7b-465b-825f-1530b813e95a}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBooster4web-en Toolbar]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\TBSB07183.TBSB07183Toolbar]
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{346de098-61f9-4b42-89da-6dfba7091bb6}
[HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{346de098-61f9-4b42-89da-6dfba7091bb6}
C:\ProgramData\Babylon
C:\Users\Nadine\AppData\Local\Babylon
C:\Users\Nadine\AppData\Local\IMBooster4web-en
C:\Users\Nadine\AppData\Local\Iminent
C:\Users\Nadine\AppData\LocalLow\IMBooster4web-en
C:\Users\Nadine\AppData\LocalLow\Kiwee Toolbar
C:\Users\Nadine\AppData\Local\Temp\Iminent
O4 - HKLM\..\Run: [eRecoveryService] Clé orpheline
O4 - Global Startup: C:\Users\Nadine\Desktop\Meteo.lnk - Clé orpheline
O4 - Global Startup: C:\Users\Nadine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Meteo.lnk - Clé orpheline
O4 - Global Startup: C:\Users\Nadine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Vos Allocations.lnk - Clé orpheline
[MD5.00000000000000000000000000000000] [APT] [{0BF66D6A-47F9-4AF4-AB74-C878AA90CA5D}] (...) -- C:\PROGRA~1\IMBOOS~1\UNWISE.exe (.not file.)
[MD5.00000000000000000000000000000000] [APT] [{82644EF4-A236-4CA5-B745-CAE9878D4EDD}] (...) -- C:\Users\Nadine\Desktop\OpenOffice.org 3.1 (fr) Installation Files\instmsia.exe (.not file.)
R3 - URLSearchHook: Oryte Games 1 Toolbar - {bc04b34e-5dd8-465a-a5e0-86f7c11bc009} . (.Conduit Ltd. - Conduit Toolbar.) (5, 5, 0, 10) -- C:\Program Files\Games_Bar_1\tbGam1.dll
O2 - BHO: Oryte Games 1 Toolbar - {bc04b34e-5dd8-465a-a5e0-86f7c11bc009} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Games_Bar_1\tbGam1.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} . (.SweetIM Technologies Ltd. - SweetIM Toolbar for Internet Explorer.) -- C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: Oryte Games 1 Toolbar - {bc04b34e-5dd8-465a-a5e0-86f7c11bc009} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files\Games_Bar_1\tbGam1.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} . (.SweetIM Technologies Ltd. - SweetIM Toolbar for Internet Explorer.) -- C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O4 - HKLM\..\Run: [SweetIM] . (.SweetIM Technologies Ltd. - SweetIM Instant Messenger Enhancer.) -- C:\Program Files\SweetIM\Messenger\SweetIM.exe
O42 - Logiciel: Games_Bar_1 Toolbar - (.Pas de propriétaire.) [HKLM] -- Games_Bar_1 Toolbar
O42 - Logiciel: IMBooster4web-en Toolbar - (.Pas de propriétaire.) [HKLM] -- IMBooster4web-en Toolbar
[HKCU\Software\AppDataLow\Software\Games_Bar_1]
[HKCU\Software\Games_Bar_1]
[HKCU\Software\SweetIM]
[HKLM\Software\Games_Bar_1]
[HKLM\Software\SweetIM]
O43 - CFD: 09/05/2010 - 18:57:06 - [5069145] ----D- C:\Program Files\Games_Bar_1
O43 - CFD: 11/07/2010 - 03:21:00 - [8217335] ----D- C:\Program Files\SweetIM
O43 - CFD: 11/07/2010 - 03:20:40 - [191957] ----D- C:\ProgramData\SweetIM
O43 - CFD: 09/05/2010 - 19:00:28 - [355054] ----D- C:\Users\Nadine\AppData\Local\Games_Bar_1
[HKLM\Software\Classes\sweetie.ietoolbar]
[HKLM\Software\Classes\sweetie.ietoolbar.1]
[HKLM\Software\Classes\sweetim_urlsearchhook.toolbarurlsearchhook]
[HKLM\Software\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1]
[HKLM\Software\Classes\Toolbar3.sweetie]
[HKLM\Software\Classes\Toolbar3.sweetie.1]
[HKLM\Software\Classes\TypeLib\{4d3b167e-5fd8-4276-8fd7-9df19c1e4d19}]
[HKLM\Software\Classes\CLSID\{82ac53b4-164c-4b07-a016-437a8388b81a}]
[HKLM\Software\Classes\Interface\{cd5c92ae-97b0-4bc3-ba65-ba0308d543bf}]
[HKLM\Software\Classes\Interface\{eee6c358-6118-11dc-9c72-001320c79847}]
[HKLM\Software\Classes\Interface\{eee6c35a-6118-11dc-9c72-001320c79847}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKLM\Software\Classes\CLSID\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKLM\Software\Classes\TypeLib\{eee6c35e-6118-11dc-9c72-001320c79847}]
[HKLM\Software\Classes\TypeLib\{eee6c35f-6118-11dc-9c72-001320c79847}]
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{eee6c360-6118-11dc-9c72-001320c79847}]
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{eee6c360-6118-11dc-9c72-001320c79847}]
[HKCU\Software\SweetIM]
[HKLM\Software\SweetIM]
C:\Program Files\SweetIM
C:\ProgramData\SweetIM
C:\Users\Nadine\AppData\LocalLow\SweetIM
EmptyTemp
FirewallRaz
--------------------------------------------------------
- Clique sur le bouton « GO » pour lancer le nettoyage,
- Copie/colle la totalité du rapport dans ta prochaine réponse
voici le rapport en ayant fixer les lignes demandé
Rapport de ZHPFix 1.12.3357 par Nicolas Coolman, Update du 23/08/2011
Fichier d'export Registre :
Run by Nadine at 27/08/2011 16:07:45
Windows Vista Business Edition, 32-bit Service Pack 2 (Build 6002)
Web site : http://www.premiumorange.com/zeb-help-process/zhpfix.html
========== Logiciel(s) ==========
ABSENT Software Key: TBSB07183.TBSB07183Toolbar
ABSENT Software Key: Games_Bar_1 Toolbar
ABSENT Software Key: IMBooster4web-en Toolbar
========== Clé(s) du Registre ==========
SUPPRIME Key: CLSID BHO: {6638A9DE-0745-4292-8A2E-AE530E7B9B3F}
SUPPRIME Key: HKCU\Software\AppDataLow\Software\IMBooster4web-en
SUPPRIME Key: HKCU\Software\IMBooster4web-en
SUPPRIME Key: HKCU\Software\Iminent
SUPPRIME Key: HKLM\Software\IMBooster4web-en
SUPPRIME Key: HKLM\Software\Iminent
SUPPRIME Key: HKLM\Software\Classes\AppID\contenthandler.dll
SUPPRIME Key: HKLM\Software\Classes\contenthandler.contentselection
SUPPRIME Key: HKLM\Software\Classes\contenthandler.contentselection.1
SUPPRIME Key: HKLM\Software\Classes\Interface\{06DE5702-44CF-4B79-B4EF-3DDF653358F5}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{346de098-61f9-4b42-89da-6dfba7091bb6}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{346de098-61f9-4b42-89da-6dfba7091bb6}
ABSENT Key: HKLM\Software\Classes\CLSID\{346de098-61f9-4b42-89da-6dfba7091bb6}
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{346de098-61f9-4b42-89da-6dfba7091bb6}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4260e0cc-0f75-462e-88a3-1e05c248bf4c}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4260e0cc-0f75-462e-88a3-1e05c248bf4c}
SUPPRIME Key: HKLM\Software\Classes\Interface\{5663b370-f3c3-40d1-9c46-0e800aa4d0e8}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6638a9de-0745-4292-8a2e-ae530e7b9b3f}
ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6638a9de-0745-4292-8a2e-ae530e7b9b3f}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6e15d3c4-c6fc-4f02-b130-77cc5b1f09db}
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6e15d3c4-c6fc-4f02-b130-77cc5b1f09db}
SUPPRIME Key: HKLM\Software\Classes\Interface\{9ebb289a-2d7b-465b-825f-1530b813e95a}
ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBooster4web-en Toolbar
ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\TBSB07183.TBSB07183Toolbar
ABSENT Key: CLSID BHO: {bc04b34e-5dd8-465a-a5e0-86f7c11bc009}
SUPPRIME Key: CLSID BHO: {EEE6C35C-6118-11DC-9C72-001320C79847}
ABSENT Key: HKCU\Software\AppDataLow\Software\Games_Bar_1
ABSENT Key: HKCU\Software\Games_Bar_1
SUPPRIME Key: HKCU\Software\SweetIM
ABSENT Key: HKLM\Software\Games_Bar_1
SUPPRIME Key: HKLM\Software\SweetIM
SUPPRIME Key: HKLM\Software\Classes\sweetie.ietoolbar
SUPPRIME Key: HKLM\Software\Classes\sweetie.ietoolbar.1
SUPPRIME Key: HKLM\Software\Classes\sweetim_urlsearchhook.toolbarurlsearchhook
SUPPRIME Key: HKLM\Software\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
SUPPRIME Key: HKLM\Software\Classes\Toolbar3.sweetie
SUPPRIME Key: HKLM\Software\Classes\Toolbar3.sweetie.1
SUPPRIME Key: HKLM\Software\Classes\TypeLib\{4d3b167e-5fd8-4276-8fd7-9df19c1e4d19}
SUPPRIME Key: HKLM\Software\Classes\CLSID\{82ac53b4-164c-4b07-a016-437a8388b81a}
SUPPRIME Key: HKLM\Software\Classes\Interface\{cd5c92ae-97b0-4bc3-ba65-ba0308d543bf}
SUPPRIME Key: HKLM\Software\Classes\Interface\{eee6c358-6118-11dc-9c72-001320c79847}
SUPPRIME Key: HKLM\Software\Classes\Interface\{eee6c35a-6118-11dc-9c72-001320c79847}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{eee6c35b-6118-11dc-9c72-001320c79847}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{eee6c35b-6118-11dc-9c72-001320c79847}
ABSENT Key: HKLM\Software\Classes\CLSID\{eee6c35b-6118-11dc-9c72-001320c79847}
SUPPRIME Key: HKLM\Software\Classes\TypeLib\{eee6c35e-6118-11dc-9c72-001320c79847}
SUPPRIME Key: HKLM\Software\Classes\TypeLib\{eee6c35f-6118-11dc-9c72-001320c79847}
SUPPRIME Key: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{eee6c360-6118-11dc-9c72-001320c79847}
SUPPRIME Key: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{eee6c360-6118-11dc-9c72-001320c79847}
ABSENT Key: HKCU\Software\SweetIM
========== Valeur(s) du Registre ==========
ABSENT URLSearchHook: {346de098-61f9-4b42-89da-6dfba7091bb6}
SUPPRIME URLSearchHook: {346de098-61f9-4b42-89da-6dfba7091bb6}
SUPPRIME Toolbar: {346de098-61f9-4b42-89da-6dfba7091bb6}
SUPPRIME RunValue: zmykdqd
ABSENT RunValue: zmykdqd
SUPPRIME [HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{346de098-61f9-4b42-89da-6dfba7091bb6}
ABSENT [HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{346de098-61f9-4b42-89da-6dfba7091bb6}
SUPPRIME RunValue: eRecoveryService
ABSENT URLSearchHook: {bc04b34e-5dd8-465a-a5e0-86f7c11bc009}
ABSENT Toolbar: {bc04b34e-5dd8-465a-a5e0-86f7c11bc009}
SUPPRIME Toolbar: {EEE6C35B-6118-11DC-9C72-001320C79847}
SUPPRIME RunValue: SweetIM
ABSENT Valeur Domain Profile: FirewallRaz :
SUPPRIME FirewallRaz (Domain) : {5EB345B5-65A1-4E6A-9DBE-ED7CD1C8DFAC}
SUPPRIME FirewallRaz (None) : {2E6E0707-1BDE-4AA5-8B36-FE6C1E63D995}
SUPPRIME FirewallRaz (Public) : {EED338B9-BBF6-4C7C-8EE0-DA4C13BC1F70}
SUPPRIME FirewallRaz (Public) : {631D1B27-2348-4FB7-972B-13065E39E61E}
SUPPRIME FirewallRaz (Public) : {4B5FC729-5FCE-4851-BE39-9D96F227E5F5}
SUPPRIME FirewallRaz (Public) : {68FA7574-7D2C-4C43-B736-0B2C0AF275E5}
SUPPRIME FirewallRaz (Public) : {4695BD4E-977F-455C-B0C9-0643682ED41C}
SUPPRIME FirewallRaz (Public) : {AB32A69E-2AB4-4AE5-AD5D-36D3C715076A}
SUPPRIME FirewallRaz (Public) : {9596BD92-82E5-4A6A-911F-4711978A0646}
SUPPRIME FirewallRaz (Public) : {A931A9D3-4E02-423A-9A0B-FB28EF489DCA}
SUPPRIME FirewallRaz (Public) : {7F66FEF8-01BF-4E6D-9CB1-601D9EF49E65}
SUPPRIME FirewallRaz (Public) : {95D3FEDE-26E4-4796-8C85-343D91C8D13D}
SUPPRIME FirewallRaz (Public) : {D378742B-D21F-40B4-A494-8D70494B802E}
SUPPRIME FirewallRaz (Public) : {25AFD44F-FB42-4917-9137-C9665275092A}
SUPPRIME FirewallRaz (Public) : {4BDCD410-0BEA-465A-B94F-0D7B94BFE3BD}
SUPPRIME FirewallRaz (Public) : {362B4921-7FBA-441D-AD04-A04A1F099333}
========== Préférences navigateur ==========
SUPPRIME Mozilla Pref: http://search.iminent.com/?appId=f1551255-3ac8-41b0-a60b-d88e029f9744&ref=homepage
========== Dossier(s) ==========
SUPPRIME Folder: C:\Users\Nadine\AppData\Roaming\Mozilla\Firefox\Profiles\qgk7t65m.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}
SUPPRIME Folder: C:\ProgramData\Babylon
SUPPRIME Folder: C:\Users\Nadine\AppData\Local\Babylon
SUPPRIME Folder: C:\Users\Nadine\AppData\Local\IMBooster4web-en
SUPPRIME Folder: C:\Users\Nadine\AppData\Local\Iminent
SUPPRIME Folder: c:\users\nadine\appdata\locallow\imbooster4web-en
SUPPRIME Folder: c:\users\nadine\appdata\local\temp\iminent
ABSENT C:\Program Files\Games_Bar_1
SUPPRIME Folder: C:\ProgramData\SweetIM
ABSENT C:\Users\Nadine\AppData\Local\Games_Bar_1
SUPPRIME Folder: c:\users\nadine\appdata\locallow\sweetim
SUPPRIME Temporaires Windows: : 88
========== Fichier(s) ==========
ABSENT File: c:\program files\imbooster4web-en\tbimb1.dll
ABSENT File: c:\users\nadine\appdata\local\zmykdqd.exe
SUPPRIME c:\users\nadine\appdata\local\zmykdqd_navps.dat (Adware.Navipromo)
ABSENT Folder/File: c:\programdata\babylon
ABSENT Folder/File: c:\users\nadine\appdata\local\babylon
ABSENT Folder/File: c:\users\nadine\appdata\local\imbooster4web-en
ABSENT Folder/File: c:\users\nadine\appdata\local\iminent
SUPPRIME c:\users\nadine\desktop\meteo.lnk
SUPPRIME c:\users\nadine\appdata\roaming\microsoft\internet explorer\quick launch\meteo.lnk
SUPPRIME c:\users\nadine\appdata\roaming\microsoft\internet explorer\quick launch\vos allocations.lnk
ABSENT File: c:\program files\games_bar_1\tbgam1.dll
SUPPRIME c:\program files\sweetim\toolbars\internet explorer\mgtoolbarie.dll
ABSENT File: c:\program files\sweetim\toolbars\internet explorer\mgtoolbarie.dll
SUPPRIME c:\program files\sweetim\messenger\sweetim.exe
ABSENT Folder/File: c:\programdata\sweetim
SUPPRIME Temporaires Windows: : 346
========== Tache planifiée ==========
SUPPRIME Task: {0BF66D6A-47F9-4AF4-AB74-C878AA90CA5D}
SUPPRIME Task: {82644EF4-A236-4CA5-B745-CAE9878D4EDD}
========== Récapitulatif ==========
50 : Clé(s) du Registre
29 : Valeur(s) du Registre
12 : Dossier(s)
16 : Fichier(s)
3 : Logiciel(s)
1 : Préférences navigateur
2 : Tache planifiée
End of the scan in 01mn 54s
========== Chemin de fichier rapport ==========
C:\ZHP\ZHPFix[R1].txt - 27/08/2011 16:07:45 [8766]
Rapport de ZHPFix 1.12.3357 par Nicolas Coolman, Update du 23/08/2011
Fichier d'export Registre :
Run by Nadine at 27/08/2011 16:07:45
Windows Vista Business Edition, 32-bit Service Pack 2 (Build 6002)
Web site : http://www.premiumorange.com/zeb-help-process/zhpfix.html
========== Logiciel(s) ==========
ABSENT Software Key: TBSB07183.TBSB07183Toolbar
ABSENT Software Key: Games_Bar_1 Toolbar
ABSENT Software Key: IMBooster4web-en Toolbar
========== Clé(s) du Registre ==========
SUPPRIME Key: CLSID BHO: {6638A9DE-0745-4292-8A2E-AE530E7B9B3F}
SUPPRIME Key: HKCU\Software\AppDataLow\Software\IMBooster4web-en
SUPPRIME Key: HKCU\Software\IMBooster4web-en
SUPPRIME Key: HKCU\Software\Iminent
SUPPRIME Key: HKLM\Software\IMBooster4web-en
SUPPRIME Key: HKLM\Software\Iminent
SUPPRIME Key: HKLM\Software\Classes\AppID\contenthandler.dll
SUPPRIME Key: HKLM\Software\Classes\contenthandler.contentselection
SUPPRIME Key: HKLM\Software\Classes\contenthandler.contentselection.1
SUPPRIME Key: HKLM\Software\Classes\Interface\{06DE5702-44CF-4B79-B4EF-3DDF653358F5}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{346de098-61f9-4b42-89da-6dfba7091bb6}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{346de098-61f9-4b42-89da-6dfba7091bb6}
ABSENT Key: HKLM\Software\Classes\CLSID\{346de098-61f9-4b42-89da-6dfba7091bb6}
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{346de098-61f9-4b42-89da-6dfba7091bb6}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4260e0cc-0f75-462e-88a3-1e05c248bf4c}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4260e0cc-0f75-462e-88a3-1e05c248bf4c}
SUPPRIME Key: HKLM\Software\Classes\Interface\{5663b370-f3c3-40d1-9c46-0e800aa4d0e8}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6638a9de-0745-4292-8a2e-ae530e7b9b3f}
ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6638a9de-0745-4292-8a2e-ae530e7b9b3f}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6e15d3c4-c6fc-4f02-b130-77cc5b1f09db}
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6e15d3c4-c6fc-4f02-b130-77cc5b1f09db}
SUPPRIME Key: HKLM\Software\Classes\Interface\{9ebb289a-2d7b-465b-825f-1530b813e95a}
ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBooster4web-en Toolbar
ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\TBSB07183.TBSB07183Toolbar
ABSENT Key: CLSID BHO: {bc04b34e-5dd8-465a-a5e0-86f7c11bc009}
SUPPRIME Key: CLSID BHO: {EEE6C35C-6118-11DC-9C72-001320C79847}
ABSENT Key: HKCU\Software\AppDataLow\Software\Games_Bar_1
ABSENT Key: HKCU\Software\Games_Bar_1
SUPPRIME Key: HKCU\Software\SweetIM
ABSENT Key: HKLM\Software\Games_Bar_1
SUPPRIME Key: HKLM\Software\SweetIM
SUPPRIME Key: HKLM\Software\Classes\sweetie.ietoolbar
SUPPRIME Key: HKLM\Software\Classes\sweetie.ietoolbar.1
SUPPRIME Key: HKLM\Software\Classes\sweetim_urlsearchhook.toolbarurlsearchhook
SUPPRIME Key: HKLM\Software\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
SUPPRIME Key: HKLM\Software\Classes\Toolbar3.sweetie
SUPPRIME Key: HKLM\Software\Classes\Toolbar3.sweetie.1
SUPPRIME Key: HKLM\Software\Classes\TypeLib\{4d3b167e-5fd8-4276-8fd7-9df19c1e4d19}
SUPPRIME Key: HKLM\Software\Classes\CLSID\{82ac53b4-164c-4b07-a016-437a8388b81a}
SUPPRIME Key: HKLM\Software\Classes\Interface\{cd5c92ae-97b0-4bc3-ba65-ba0308d543bf}
SUPPRIME Key: HKLM\Software\Classes\Interface\{eee6c358-6118-11dc-9c72-001320c79847}
SUPPRIME Key: HKLM\Software\Classes\Interface\{eee6c35a-6118-11dc-9c72-001320c79847}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{eee6c35b-6118-11dc-9c72-001320c79847}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{eee6c35b-6118-11dc-9c72-001320c79847}
ABSENT Key: HKLM\Software\Classes\CLSID\{eee6c35b-6118-11dc-9c72-001320c79847}
SUPPRIME Key: HKLM\Software\Classes\TypeLib\{eee6c35e-6118-11dc-9c72-001320c79847}
SUPPRIME Key: HKLM\Software\Classes\TypeLib\{eee6c35f-6118-11dc-9c72-001320c79847}
SUPPRIME Key: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{eee6c360-6118-11dc-9c72-001320c79847}
SUPPRIME Key: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{eee6c360-6118-11dc-9c72-001320c79847}
ABSENT Key: HKCU\Software\SweetIM
========== Valeur(s) du Registre ==========
ABSENT URLSearchHook: {346de098-61f9-4b42-89da-6dfba7091bb6}
SUPPRIME URLSearchHook: {346de098-61f9-4b42-89da-6dfba7091bb6}
SUPPRIME Toolbar: {346de098-61f9-4b42-89da-6dfba7091bb6}
SUPPRIME RunValue: zmykdqd
ABSENT RunValue: zmykdqd
SUPPRIME [HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{346de098-61f9-4b42-89da-6dfba7091bb6}
ABSENT [HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{346de098-61f9-4b42-89da-6dfba7091bb6}
SUPPRIME RunValue: eRecoveryService
ABSENT URLSearchHook: {bc04b34e-5dd8-465a-a5e0-86f7c11bc009}
ABSENT Toolbar: {bc04b34e-5dd8-465a-a5e0-86f7c11bc009}
SUPPRIME Toolbar: {EEE6C35B-6118-11DC-9C72-001320C79847}
SUPPRIME RunValue: SweetIM
ABSENT Valeur Domain Profile: FirewallRaz :
SUPPRIME FirewallRaz (Domain) : {5EB345B5-65A1-4E6A-9DBE-ED7CD1C8DFAC}
SUPPRIME FirewallRaz (None) : {2E6E0707-1BDE-4AA5-8B36-FE6C1E63D995}
SUPPRIME FirewallRaz (Public) : {EED338B9-BBF6-4C7C-8EE0-DA4C13BC1F70}
SUPPRIME FirewallRaz (Public) : {631D1B27-2348-4FB7-972B-13065E39E61E}
SUPPRIME FirewallRaz (Public) : {4B5FC729-5FCE-4851-BE39-9D96F227E5F5}
SUPPRIME FirewallRaz (Public) : {68FA7574-7D2C-4C43-B736-0B2C0AF275E5}
SUPPRIME FirewallRaz (Public) : {4695BD4E-977F-455C-B0C9-0643682ED41C}
SUPPRIME FirewallRaz (Public) : {AB32A69E-2AB4-4AE5-AD5D-36D3C715076A}
SUPPRIME FirewallRaz (Public) : {9596BD92-82E5-4A6A-911F-4711978A0646}
SUPPRIME FirewallRaz (Public) : {A931A9D3-4E02-423A-9A0B-FB28EF489DCA}
SUPPRIME FirewallRaz (Public) : {7F66FEF8-01BF-4E6D-9CB1-601D9EF49E65}
SUPPRIME FirewallRaz (Public) : {95D3FEDE-26E4-4796-8C85-343D91C8D13D}
SUPPRIME FirewallRaz (Public) : {D378742B-D21F-40B4-A494-8D70494B802E}
SUPPRIME FirewallRaz (Public) : {25AFD44F-FB42-4917-9137-C9665275092A}
SUPPRIME FirewallRaz (Public) : {4BDCD410-0BEA-465A-B94F-0D7B94BFE3BD}
SUPPRIME FirewallRaz (Public) : {362B4921-7FBA-441D-AD04-A04A1F099333}
========== Préférences navigateur ==========
SUPPRIME Mozilla Pref: http://search.iminent.com/?appId=f1551255-3ac8-41b0-a60b-d88e029f9744&ref=homepage
========== Dossier(s) ==========
SUPPRIME Folder: C:\Users\Nadine\AppData\Roaming\Mozilla\Firefox\Profiles\qgk7t65m.default\extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}
SUPPRIME Folder: C:\ProgramData\Babylon
SUPPRIME Folder: C:\Users\Nadine\AppData\Local\Babylon
SUPPRIME Folder: C:\Users\Nadine\AppData\Local\IMBooster4web-en
SUPPRIME Folder: C:\Users\Nadine\AppData\Local\Iminent
SUPPRIME Folder: c:\users\nadine\appdata\locallow\imbooster4web-en
SUPPRIME Folder: c:\users\nadine\appdata\local\temp\iminent
ABSENT C:\Program Files\Games_Bar_1
SUPPRIME Folder: C:\ProgramData\SweetIM
ABSENT C:\Users\Nadine\AppData\Local\Games_Bar_1
SUPPRIME Folder: c:\users\nadine\appdata\locallow\sweetim
SUPPRIME Temporaires Windows: : 88
========== Fichier(s) ==========
ABSENT File: c:\program files\imbooster4web-en\tbimb1.dll
ABSENT File: c:\users\nadine\appdata\local\zmykdqd.exe
SUPPRIME c:\users\nadine\appdata\local\zmykdqd_navps.dat (Adware.Navipromo)
ABSENT Folder/File: c:\programdata\babylon
ABSENT Folder/File: c:\users\nadine\appdata\local\babylon
ABSENT Folder/File: c:\users\nadine\appdata\local\imbooster4web-en
ABSENT Folder/File: c:\users\nadine\appdata\local\iminent
SUPPRIME c:\users\nadine\desktop\meteo.lnk
SUPPRIME c:\users\nadine\appdata\roaming\microsoft\internet explorer\quick launch\meteo.lnk
SUPPRIME c:\users\nadine\appdata\roaming\microsoft\internet explorer\quick launch\vos allocations.lnk
ABSENT File: c:\program files\games_bar_1\tbgam1.dll
SUPPRIME c:\program files\sweetim\toolbars\internet explorer\mgtoolbarie.dll
ABSENT File: c:\program files\sweetim\toolbars\internet explorer\mgtoolbarie.dll
SUPPRIME c:\program files\sweetim\messenger\sweetim.exe
ABSENT Folder/File: c:\programdata\sweetim
SUPPRIME Temporaires Windows: : 346
========== Tache planifiée ==========
SUPPRIME Task: {0BF66D6A-47F9-4AF4-AB74-C878AA90CA5D}
SUPPRIME Task: {82644EF4-A236-4CA5-B745-CAE9878D4EDD}
========== Récapitulatif ==========
50 : Clé(s) du Registre
29 : Valeur(s) du Registre
12 : Dossier(s)
16 : Fichier(s)
3 : Logiciel(s)
1 : Préférences navigateur
2 : Tache planifiée
End of the scan in 01mn 54s
========== Chemin de fichier rapport ==========
C:\ZHP\ZHPFix[R1].txt - 27/08/2011 16:07:45 [8766]
Télécharger Eset Nod32 :
http://download.eset.com/special/eos/esetsmartinstaller_fra.exe
* Lancer le fichier
* Accepter les conditions
* Autoriser le programme à accéder à Internet
* Cliquer sur paramètre avancées pour ouvrir le menu et sélectionner les options (par défaut le scanner analyse votre ordinateur entièrement)
* Téléchargement des signatures
Il est recommander de désactiver votre antivirus afin de ne pas ralentir le scan et d'afficher des message d'alerte !
* Le scan débute dés la fin du téléchargement
* Générer le rapport
* Cliquer sur liste des menaces détectées puis sur exporter dans un fichier texte...
Vous pouvez l'enregistrer sur le bureau en lui donnant un nom. Poster le rapport sur le forum.
Si le rapport n'est pas sur le bureau regarde ici ==> C:\Program Files\EsetOnlineScanner\log.txt
Pour vous aider voici un tuto rédigé par dorgane :
https://www.commentcamarche.net/faq/29643-scanner-en-ligne-avec-eset-nod32
http://download.eset.com/special/eos/esetsmartinstaller_fra.exe
* Lancer le fichier
* Accepter les conditions
* Autoriser le programme à accéder à Internet
* Cliquer sur paramètre avancées pour ouvrir le menu et sélectionner les options (par défaut le scanner analyse votre ordinateur entièrement)
* Téléchargement des signatures
Il est recommander de désactiver votre antivirus afin de ne pas ralentir le scan et d'afficher des message d'alerte !
* Le scan débute dés la fin du téléchargement
* Générer le rapport
* Cliquer sur liste des menaces détectées puis sur exporter dans un fichier texte...
Vous pouvez l'enregistrer sur le bureau en lui donnant un nom. Poster le rapport sur le forum.
Si le rapport n'est pas sur le bureau regarde ici ==> C:\Program Files\EsetOnlineScanner\log.txt
Pour vous aider voici un tuto rédigé par dorgane :
https://www.commentcamarche.net/faq/29643-scanner-en-ligne-avec-eset-nod32
bonjour le scann ayant pris pas mal de temps et assez long je ne poste le rapport que ce matin
ESETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6528
# api_version=3.0.2
# EOSSerial=b611368b49f24e4cb3771a0b847f2256
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2011-08-27 05:03:05
# local_time=2011-08-27 07:03:05 )
# country="France"
# lang=1036
# osver=6.0.6002 NT Service Pack 2
# compatibility_mode=5121 16777213 100 75 113157 14948978 0 0
# compatibility_mode=5892 16776573 100 100 111296 151990218 0 0
# compatibility_mode=8192 67108863 100 0 155 155 0 0
# scanned=156652
# found=9
# cleaned=9
# scan_time=7068
C:\$RECYCLE.BIN\S-1-5-21-259649490-573275764-3090687775-1003\$R0N9RVN.exe une variante de Win32/Adware.Bandoo.AA application (supprimé - mis en quarantaine) 00000000000000000000000000000000 C
C:\$RECYCLE.BIN\S-1-5-21-259649490-573275764-3090687775-1003\$R3PM5HB.exe une variante de Win32/Adware.Bandoo.AA application (supprimé - mis en quarantaine) 00000000000000000000000000000000 C
C:\$RECYCLE.BIN\S-1-5-21-259649490-573275764-3090687775-1003\$RFR47CP.exe une variante de Win32/Adware.Bandoo.AA application (supprimé - mis en quarantaine) 00000000000000000000000000000000 C
C:\$RECYCLE.BIN\S-1-5-21-259649490-573275764-3090687775-1003\$RJCXF94.exe une variante de Win32/Adware.Bandoo.AA application (supprimé - mis en quarantaine) 00000000000000000000000000000000 C
C:\$RECYCLE.BIN\S-1-5-21-259649490-573275764-3090687775-1003\$RJV60T0.exe une variante de Win32/Adware.Bandoo.AA application (supprimé - mis en quarantaine) 00000000000000000000000000000000 C
C:\$RECYCLE.BIN\S-1-5-21-259649490-573275764-3090687775-1003\$RSSD518.exe une variante de Win32/Adware.Bandoo.AA application (supprimé - mis en quarantaine) 00000000000000000000000000000000 C
C:\$RECYCLE.BIN\S-1-5-21-259649490-573275764-3090687775-1003\$RXU383V.exe une variante de Win32/Adware.Bandoo.AA application (supprimé - mis en quarantaine) 00000000000000000000000000000000 C
C:\Users\denis\AppData\Local\Temp\Low\{1BB22D38-A411-4B13-A746-C2A4F4EC7344}\ie3sh.exe une variante probable de Win32/BHO.OCS cheval de troie (nettoyé par suppression - mis en quarantaine) 00000000000000000000000000000000 C
C:\Users\Nadine\AppData\Local\nooiiqq.exe une variante de Win32/Skintrim.HL cheval de troie (nettoyé par suppression - mis en quarantaine) 00000000000000000000000000000000 C
ESETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6528
# api_version=3.0.2
# EOSSerial=b611368b49f24e4cb3771a0b847f2256
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2011-08-27 05:03:05
# local_time=2011-08-27 07:03:05 )
# country="France"
# lang=1036
# osver=6.0.6002 NT Service Pack 2
# compatibility_mode=5121 16777213 100 75 113157 14948978 0 0
# compatibility_mode=5892 16776573 100 100 111296 151990218 0 0
# compatibility_mode=8192 67108863 100 0 155 155 0 0
# scanned=156652
# found=9
# cleaned=9
# scan_time=7068
C:\$RECYCLE.BIN\S-1-5-21-259649490-573275764-3090687775-1003\$R0N9RVN.exe une variante de Win32/Adware.Bandoo.AA application (supprimé - mis en quarantaine) 00000000000000000000000000000000 C
C:\$RECYCLE.BIN\S-1-5-21-259649490-573275764-3090687775-1003\$R3PM5HB.exe une variante de Win32/Adware.Bandoo.AA application (supprimé - mis en quarantaine) 00000000000000000000000000000000 C
C:\$RECYCLE.BIN\S-1-5-21-259649490-573275764-3090687775-1003\$RFR47CP.exe une variante de Win32/Adware.Bandoo.AA application (supprimé - mis en quarantaine) 00000000000000000000000000000000 C
C:\$RECYCLE.BIN\S-1-5-21-259649490-573275764-3090687775-1003\$RJCXF94.exe une variante de Win32/Adware.Bandoo.AA application (supprimé - mis en quarantaine) 00000000000000000000000000000000 C
C:\$RECYCLE.BIN\S-1-5-21-259649490-573275764-3090687775-1003\$RJV60T0.exe une variante de Win32/Adware.Bandoo.AA application (supprimé - mis en quarantaine) 00000000000000000000000000000000 C
C:\$RECYCLE.BIN\S-1-5-21-259649490-573275764-3090687775-1003\$RSSD518.exe une variante de Win32/Adware.Bandoo.AA application (supprimé - mis en quarantaine) 00000000000000000000000000000000 C
C:\$RECYCLE.BIN\S-1-5-21-259649490-573275764-3090687775-1003\$RXU383V.exe une variante de Win32/Adware.Bandoo.AA application (supprimé - mis en quarantaine) 00000000000000000000000000000000 C
C:\Users\denis\AppData\Local\Temp\Low\{1BB22D38-A411-4B13-A746-C2A4F4EC7344}\ie3sh.exe une variante probable de Win32/BHO.OCS cheval de troie (nettoyé par suppression - mis en quarantaine) 00000000000000000000000000000000 C
C:\Users\Nadine\AppData\Local\nooiiqq.exe une variante de Win32/Skintrim.HL cheval de troie (nettoyé par suppression - mis en quarantaine) 00000000000000000000000000000000 C
