erreur d'encodage de contenu, Firefox Fermé

Question

Bonjour,

quand j'essaie d'ouvrir un site internet avec Firefox (avec lequel j'ouvre pour tous les sites, ça écrit erreur d'encodage de contenu, mais avec Explorer tout va bien, que faire

merci

AlTiMaX · Answer

Bonjour dans Firefox outils option ensuite avancé et vider le cache et redémarrer Firefox et sa devrais résoudre le problème ! 
 
--

lilidurhone · Answer

Hello


 * Télécharge ZHPDiag (de Nicolas Coolman)
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html ou https://www.commentcamarche.net/telecharger/utilitaires/24803-zhpdiag/

* Au cas où le premier lien ne marcherai pas, clique sur celui de dessous
ftp://zebulon.fr/ZHPDiag2.exe

* Laisse toi guider lors de l'installation, il se lancera automatiquement à la fin.

* Surtout, n'oublie pas d'installer son icône sur le bureau l'icône est en forme de parchemin 
https://www.cjoint.com/13sp/CIvuQfap3YY_zhpdiag.png

* A l'ouverture du logiciel il te sera proposé deux options "rechercher" et "configurer"

* Cliques sur configurer 

* Tournevis puis tous 

* Clique sur l'icône représentant une loupe + (« Lancer le diagnostic »)

* Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette

* Pour héberger le rapport, rends toi sur cjoint.com
* Clique sur choisissez un fichier va chercher le rapport dans ton PC.

* Le rapport est hébergé:
- Pour XP : C:\Documents and Settings\username\Local Settings\Application Data\ZHP
- Depuis Vista : C:\Users\username\AppData\Roaming\ZHP 

* Une fois le rapport trouvé, sélectionne le, et clique sur Ouvrir

* Choisis le type de diffusion(je te conseille privée 4 jours il sera détruit)

* Puis cliques sur créer le lien cjoint

* Une fois que tu auras obtenu le lien copies colle dans ta prochaine réponse

* Pour t'aider  https://www.commentcamarche.net/faq/29493-utiliser-cjoint-pour-heberger-des-fichiers

lilidurhone · Answer

Bah justement pour voir ce qui va pas ^^

dela1956 · Answer

~ Rapport de ZHPDiag v2014.2.17.15 - Nicolas Coolman (2014-02-17) ~ Lancé par Gilles (2014-02-18 13:46:54) ~ Adresse du Site Web https://nicolascoolman.webs.com/ ~ Forums gratuits d'Assistance à la désinfection : https://nicolascoolman.webs.com/ ~ Traduit par Nicolas Coolman ~ Etat de la version : ~ Liste blanche : Activée par le programme ~ Elévation des Privilèges : OK ~ User Account Control (UAC): Deactivate by user ---\ Navigateurs Internet MSIE: Internet Explorer v11.0.9600.16518 MFIE: Mozilla Firefox 27.0.1 (Defaut) GCIE: Google Chrome ---\ Informations sur les produits Windows ~ Langage: Français Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601) Windows Server License Manager Script : OK ~ Windows(R) 7, OEM_SLP channel System Locked Preinstallation (OEM_SLP) : OK Windows ID Activation : OK ~ Windows Partial Key : 7QJB7 Windows License : OK ~ Windows Remaining Initializations Number : 3 Software Protection Service (Protection logicielle) : OK Windows Automatic Updates : OK Windows Activation Technologies : OK ---\ Logiciels de protection du système Kaspersky PURE 2.0 v12.0.1.288 McAfee Security Scan Plus v3.8.141.11 Windows Defender W7 ---\ Logiciels d'optimisation du système ---\ Logiciels de partage PeerToPeer ---\ Surveillance de Logiciels Adobe Flash Player 12 Plugin Adobe Reader 9.5.5 MUI Java 7 Update 13 ---\ Informations sur le système ~ Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel ~ Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 3037 MB (41% free) System Restore: Activé (Enable) System drive C: has 290 GB (65%) free of 446 GB ---\ Mode de connexion au système ~ Computer Name: GILLES-PC ~ User Name: Gilles ~ All Users Names: Gilles, Administrateur, ~ Unselected Option: None Logged in as Administrator ---\ Variables d'environnement ~ System Unit : C:\ ~ %AppZHP% : C:\Users\Gilles\AppData\Roaming\ZHP\ ~ %AppData% : C:\Users\Gilles\AppData\Roaming\ ~ %Desktop% : C:\Users\Gilles\Desktop\ ~ %Favorites% : C:\Users\Gilles\Favorites\ ~ %LocalAppData% : C:\Users\Gilles\AppData\Local\ ~ %StartMenu% : C:\Users\Gilles\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\System32\ ---\ Enumération des unités disques C: Hard drive, Flash drive, Thumb drive (Free 290 Go of 446 Go) D: CD-ROM drive (Not Inserted) E: Floppy drive, Flash card reader, USB Key (Not Inserted) F: Floppy drive, Flash card reader, USB Key (Not Inserted) Q: Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go) ---\ Etat du Centre de Sécurité Windows [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: Modified ~ Security Center: 46 Legitimates Filtered in 00mn 00s ---\ Recherche particulière de fichiers génériques [MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.2011-02-25 - 01:19:30.) -- C:\Windows\Explorer.exe [2871808] [MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.2009-07-13 - 20:39:52.) -- C:\Windows\System32\Wininit.exe [129024] [MD5.263B6E451526A90FF8B1CEC759F22956] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.2014-02-06 - 04:24:52.) -- C:\Windows\System32\wininet.dll [2334208] [MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.2010-11-20 - 08:25:30.) -- C:\Windows\System32\Winlogon.exe [390656] [MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.2010-11-20 - 08:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448] [MD5.79059559E89D06E8B80CE2944BE20228] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.2013-09-27 - 20:09:10.) -- C:\Windows\system32\Drivers\AFD.sys [497152] [MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.2009-07-13 - 20:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128] [MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.2009-07-13 - 18:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160] [MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.2010-11-20 - 04:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456] [MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.2010-11-20 - 04:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400] [MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.2010-11-20 - 05:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368] [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.2009-07-13 - 18:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472] [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.2009-07-13 - 19:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224] [MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.2011-04-26 - 21:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208] [MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.2010-11-20 - 04:23:20.) -- C:\Windows\system32\Drivers etBT.sys [261632] [MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.2013-04-12 - 09:45:08.) -- C:\Windows\system32\Drivers tfs.sys [1656680] [MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.2009-07-13 - 19:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280] [MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.2010-11-20 - 05:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536] [MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.2009-07-13 - 19:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184] [MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.2010-11-20 - 04:21:56.) -- C:\Windows\system32\Drivers dx.sys [119296] [MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.2010-11-20 - 08:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808] ~ Generic Processes: Scanned in 00mn 00s ---\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 1/609 ~ Mes musiques (My Musics) : 1/637 ~ Mes Videos (My Videos) : 1/109 ~ Mes Favoris (My Favorites) : 1/446 ~ Mes Documents (My Documents) : 1/571 ~ Mon Bureau (My Desktop) : 8/2730 ~ Menu demarrer (Programs) : 1/30 ~ Hidden Files: Scanned in 00mn 01s ---\ Processus lancés [MD5.5AF1E9600E3FF841E522703A4993ED0C] - (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe [186904] [PID.2000] [MD5.0D6972A795995F07B6D78CA7724744FB] - (.Egis Technology Inc. - MyWinLocker.) -- C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe [349552] [PID.1128] [MD5.F7E9D8DE72862C885465D7BB17AEE908] - (.Pelmorex Media Inc. - Pas de description.) -- C:\Users\Gilles\AppData\Local\MétéoMédia\MétéoÉclair\WeatherEye.exe [309104] [PID.2492] [MD5.58920E6A409046BA06548D9D139CE0F0] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608] [PID.2380] [MD5.61E3B5BEE1C10954F53DC07282F2A61C] - (.Logitech Inc. - Logitech Vid HD.) -- C:\Program Files (x86)\Logitech\Vid HD\Vid.exe [6129496] [PID.1604] [MD5.C64E9B1C9EA057DCECDCB98F34377811] - (.Microsoft Corporation - Microsoft OneNote Quick Launcher.) -- C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.exe [228552] [PID.3440] [MD5.0ADF079D36B2C25E6E9BECE1BD937ACE] - (.Egis Technology Inc. - PMM Update Application.) -- C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [407920] [PID.3064] [MD5.0540C38069CD5212B241E62AC1990201] - (.Pas de propriétaire - Hotkey Utility.) -- C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [611872] [PID.4256] [MD5.671D1F824C0FE59F386AD4805CF019C2] - (.CyberLink Corp. - Arcade Movie Resident Program.) -- C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe [124136] [PID.4364] [MD5.AC09992FFDDDDA251464F80EF5C6E908] - (.Nero AG - Nero BackItUp.) -- C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [1406248] [PID.4440] [MD5.D743372A621ED03A274539A88EEB3450] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [421736] [PID.4524] [MD5.3D19081FEDE8E9EF5B4FBB5F88EE4544] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\avp.exe [202296] [PID.1732] [MD5.F255E48EA981E943A14CF16269F3F3AF] - (.Egis Technology Inc. - EgisUpdate Release Application.) -- C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [201584] [PID.4564] [MD5.A2418D3C557C0A0C634DA713A8AC3789] - (.Logitech Inc. - Logitech Webcam Software.) -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [205336] [PID.4596] [MD5.E6E8DE4DF98FAD01BCF3770433F3E37B] - (.CHENGDU YIWO Tech Development Co., Ltd - EaseUS Partition Master Free Edition Applic.) -- C:\Program Files (x86)\EaseUS\EaseUS Partition Master 9.2.2\bin\EpmNews.exe [2081792] [PID.4708] [MD5.F6158734F1E24C6C510155CF0D363911] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files (x86)\Real\RealPlayer\Update ealsched.exe [295512] [PID.4764] [MD5.D9184C5FF3FD526761D518A95ABA74A3] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [275568] [PID.5216] [MD5.AB44884BC129FC04D75A4649E0710203] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8338432] [PID.5624] [MD5.67A95B9D129ED5399E7965CD09CF30E7] - (.Logitech Inc. - Logitech User mode UMVPF service.) -- C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [450848] [PID.836] [MD5.BF3818B441955E4D438EC72F06F1FE61] - (.Adobe Systems Incorporated - Adobe Photoshop Elements 11.0 (component).) -- C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe [171600] [PID.1568] [MD5.D8E18021F91AD79CA8491CB5A5DA22D4] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [55144] [PID.1668] [MD5.6E5B42219F1FE4A3D087D9D501E343D5] - (.Infowatch - InfoWatch CryptoStorage Protected objects c.) -- C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe [743992] [PID.1808] [MD5.0191DEE9B9EB7902AF2CF4F67301095D] - (.Acer Incorporated - Global Registration Service.) -- C:\Program Files (x86)\Acer\Registration\GREGsvc.exe [23584] [PID.1896] [MD5.96EFEC24346A8EB1157E80523079ADDC] - (...) -- C:\Program Files (x86)\RealNetworks\RealDownloader ndlresolversvc.exe [39056] [PID.1984] [MD5.F12A68ED55053940CADD59CA5E3468DD] - (.Pas de propriétaire - RichVideo Module.) -- C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe [244904] [PID.2028] [MD5.39B1D0A636A400304565D4521FAD6D77] - (.Microsoft Corporation - Microsoft Application Virtualization Virtua.) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [207528] [PID.2260] [MD5.F9EC9ACD504D823D9B9CA98A4F8D3CA2] - (.Acer Group - Updater Service.) -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe [243232] [PID.2348] [MD5.7548066DF68A8A1A56B043359F915F37] - (.Intel Corporation - RAID Monitor.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe [354840] [PID.2424] [MD5.77C5A741A7452812F278EF2C18478862] - (.Microsoft Corporation - Microsoft Application Virtualization Client.) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [523944] [PID.2464] [MD5.FD557A50A65E44041CD2FCEF4BEB04DB] - (.Microsoft Corporation - Microsoft Office Client Virtualization Serv.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.exe [822504] [PID.2796] [MD5.C5A75EB48E2344ABDC162BDA79E16841] - (.Microsoft Corporation - .NET Runtime Optimization Service.) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [130384] [PID.3388] [MD5.13AA2130F2A104DD775EAD0F0EE5417B] - (.Nero AG - NeroUpdate.) -- C:\Program Files (x86)\Nero\Update\NASvc.exe [598312] [PID.5164] ~ Processes Running: Scanned in 00mn 00s ---\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) C:\Users\Gilles\AppData\Roaming\Mozilla\Firefox\Profiles\b51tdn7x.default\prefs.js C:\Users\Gilles\AppData\Roaming\Mozilla\Firefox\Profiles\epcbwpsg.default-1362799988593\prefs.js (.not file.) M3 - MFPP: Plugins - [Gilles] -- C:\Users\Gilles\AppData\Roaming\Mozilla\Firefox\Profiles\b51tdn7x.default\searchplugins\delta.xml =>Toolbar.DeltaSearch M3 - MFPP: Plugins - [Gilles] -- C:\Users\Gilles\AppData\Roaming\Mozilla\Firefox\Profiles\b51tdn7x.default\searchplugins\Funmoods.xml =>PUP.Funmoods M0 - MFSP: prefs.js [Gilles - b51tdn7x.default] https://www.pagliaro.ca/ M2 - MFEP: prefs.js [Gilles - b51tdn7x.default\ffxtlbr@delta.com] [] Delta Toolbar v1.5.0 (..) =>Toolbar.DeltaSearch ~ Firefox Browser: 19 Legitimates Filtered in 00mn 00s ---\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://searchfunmoods.com =>PUP.Funmoods R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://searchfunmoods.com =>PUP.Funmoods R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://searchfunmoods.com =>PUP.Funmoods R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/#u_ip=91.209.35.218 R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/#u_ip=91.209.35.218 R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = https://www.google.com/#u_ip=91.209.35.218 R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.google.com/#u_ip=91.209.35.218 R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = http://searchfunmoods.com =>PUP.Funmoods ~ IE Browser: 23 Legitimates Filtered in 00mn 00s ---\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Proxy management: Scanned in 00mn 00s ---\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: Shell=C:\Windows\explorer.exe F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe ~ Keys: Scanned in 00mn 00s ---\ Hosts file redirection (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Hosts File: Scanned in 00mn 00s ~ Nombre de lignes (Lines number): 21 ---\ Browser Helper Objects de navigateur (O2) O2 - BHO: Funmoods Helper Object [64Bits] - {75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} . (.Funmoods BHO - Pas de description.) -- C:\Program Files (x86)\Funmoods\1.8.4.0\bh\escort.dll =>PUP.Funmoods ~ BHO: 17 Legitimates Filtered in 00mn 00s ---\ Autres liens utilisateurs (O4) O4 - GS\Desktop [Public]: Memorex exPressit.lnk . (.MicroVision Development, Inc. - Memorex exPressit Label Design Studio.) -- C:\Program Files (x86)\Memorex exPressit Label Design Studio\STCD\stcd.exe O4 - GS\Program [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O4 - GS\Program [Public]: WordBiz.lnk . (...) -- C:\Program Files (x86)\WordBiz\WordBiz.exe O4 - GS\QuickLaunch [Gilles]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\TaskBar [Gilles]: Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O4 - GS\TaskBar [Gilles]: Hoyle Card Games.lnk . (.Sierra On-Line, Inc. - Hoyle Card Games.) -- C:\SIERRA\HCCG2\hccg2.exe O4 - GS\TaskBar [Gilles]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\Program [Gilles]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\SystemTools [Gilles]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\Desktop [Gilles]: Arthabaska.lnk . (...) -- C:\Arthabaska\autorun.exe O4 - GS\Desktop [Gilles]: Backup (E) 16 juin 2011 - Raccourci.lnk . (...) -- C:\Backup (E) 16 juin 2011 O4 - GS\Desktop [Gilles]: BMS9.exe - raccourci.lnk . (...) -- C:\BMS 9\BMS9.exe O4 - GS\Desktop [Gilles]: Brother's Keeper 6.lnk . (.John Steed / Brother's Keeper - Pas de description.) -- C:\Program Files (x86)\Brother's Keeper 6\Bk6w.exe O4 - GS\Desktop [Gilles]: EZ Vinyl Converter.lnk . (.MixMeister Technology LLC - EZ Vinyl Converter by MixMeister.) -- C:\Program Files (x86)\MixMeister EZ Vinyl Converter\EZVinylConverter.exe O4 - GS\Desktop [Gilles]: mp3DirectCut.lnk . (.Martin Pesch - mp3DirectCut - Direct MP3 editor and record.) -- C:\Program Files (x86)\mp3DirectCut\mp3DirectCut.exe O4 - GS\Desktop [Gilles]: Palmarolle.lnk - Clé orpheline ~ Global Startup: 83 Legitimates Filtered in 00mn 01s ---\ Applications lancées au démarrage du sytème (O4) O4 - GS\Startup [Public]: McAfee Security Scan Plus.lnk . (.McAfee, Inc. - McAfee Security Scanner Scheduler.) -- C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe O4 - GS\Startup [Gilles]: OneNote 2010 - Capture d'écran et lancement.lnk . (.Microsoft Corporation - Microsoft OneNote Quick Launcher.) -- C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.exe =>.Microsoft Corporation O4 - HKLM\..\Run: [IAAnotif] . (.Intel Corporation - Event Monitor User Notification Tool.) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe O4 - HKLM\..\Run: [mwlDaemon] . (.Egis Technology Inc. - MyWinLocker.) -- C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - HD Audio Control Panel.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp O4 - HKLM\..\Run: [CanonMyPrinter] . (.CANON INC. - Canon My Printer.) -- C:\Program Files\Canon\MyPrinter\BJMyPrt.exe O4 - HKLM\..\Run: [CanonSolutionMenu] . (.CANON INC. - CNSLMAIN.) -- C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [IntelliPoint] . (.Microsoft Corporation - IPoint.exe.) -- c:\Program Files\Microsoft IntelliPoint\ipoint.exe O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] . (.Adobe Systems Incorporated - Adobe Updater Startup Utility.) -- C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe =>.Adobe Systems Incorporated O4 - HKCU\..\Run: [WeatherEye] . (.Pelmorex Media Inc. - Pas de description.) -- C:\Users\Gilles\AppData\Local\MétéoMédia\MétéoÉclair\WeatherEye.exe O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A. O4 - HKCU\..\Run: [Logitech Vid] . (.Logitech Inc. - Logitech Vid HD.) -- C:\Program Files (x86)\Logitech\Vid HD\Vid.exe O4 - HKCU\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\Gilles\AppData\Local\Facebook\Update\FacebookUpdate.exe O4 - HKLM\..\Wow6432Node\Run: [SuiteTray] . (.Egis Technology Inc. - SuiteTray.) -- C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe O4 - HKLM\..\Wow6432Node\Run: [EgisUpdate] . (.Egis Technology Inc. - EgisUpdate Release Application.) -- C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe O4 - HKLM\..\Wow6432Node\Run: [EgisTecPMMUpdate] . (.Egis Technology Inc. - PMM Update Application.) -- C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe O4 - HKLM\..\Wow6432Node\Run: [Hotkey Utility] . (.Pas de propriétaire - Hotkey Utility.) -- C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe O4 - HKLM\..\Wow6432Node\Run: [Microsoft Default Manager] . (.Microsoft Corporation - Microsoft Default Manager.) -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe =>.Microsoft Corporation O4 - HKLM\..\Wow6432Node\Run: [MDS_Menu] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\Acer Arcade Deluxe\MediaShow Espresso\MUITransfer\MUIStartMenu.exe O4 - HKLM\..\Wow6432Node\Run: [ArcadeMovieService] . (.CyberLink Corp. - Arcade Movie Resident Program.) -- C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\ArcadeMovieService.exe O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated O4 - HKLM\..\Wow6432Node\Run: [NBAgent] . (.Nero AG - Nero BackItUp.) -- C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Inc. - QuickTime Task.) -- C:\Program Files (x86)\QuickTime\QTTask.exe O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe O4 - HKLM\..\Wow6432Node\Run: [AVP] . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\avp.exe O4 - HKLM\..\Wow6432Node\Run: [LWS] . (.Logitech Inc. - Logitech Webcam Software.) -- C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe =>.Logitech Inc O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation O4 - HKLM\..\Wow6432Node\Run: [EaseUS EPM tray] . (.CHENGDU YIWO Tech Development Co., Ltd - EaseUS Partition Master Free Edition Applic.) -- C:\Program Files (x86)\EaseUS\EaseUS Partition Master 9.2.2\bin\EpmNews.exe O4 - HKLM\..\Wow6432Node\Run: [TkBellExe] . (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files (x86)\Real\RealPlayer\update ealsched.exe =>.RealNetworks, Inc O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation O4 - HKUS\S-1-5-21-2586189450-965544424-3794119135-1000\..\Run: [WeatherEye] . (.Pelmorex Media Inc. - Pas de description.) -- C:\Users\Gilles\AppData\Local\MétéoMédia\MétéoÉclair\WeatherEye.exe O4 - HKUS\S-1-5-21-2586189450-965544424-3794119135-1000\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A. O4 - HKUS\S-1-5-21-2586189450-965544424-3794119135-1000\..\Run: [Logitech Vid] . (.Logitech Inc. - Logitech Vid HD.) -- C:\Program Files (x86)\Logitech\Vid HD\Vid.exe O4 - HKUS\S-1-5-21-2586189450-965544424-3794119135-1000\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\Gilles\AppData\Local\Facebook\Update\FacebookUpdate.exe ~ Application: Scanned in 00mn 00s ---\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: &Envoyer à OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\MICROS~3\Office14\ONBttnIE.dll =>.Microsoft Corporation O9 - Extra button: Clavier &virtuel [64Bits] - {4248FE82-7FCB-46AC-B270-339F08212110} . (...) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\kbrd.ico O9 - Extra button: Notes &liées OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} . (.Microsoft Corporation - Microsoft OneNote Internet Explorer Add-in.) -- C:\Program Files (x86)\MICROS~3\Office14\ONBTTN~1.dll =>.Microsoft Corporation O9 - Extra button: Analyse des &liens [64Bits] - {CCF151D8-D089-449F-A5A4-D9909053F20F} . (...) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\logo.ico ~ IE Extra Buttons: Scanned in 00mn 00s ---\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{BC9B8ECA-8D3A-463C-A441-D44690C56727}: DhcpNameServer = 67.69.184.7 67.69.184.199 O17 - HKLM\System\CCS\Services\Tcpip\..\{BC9B8ECA-8D3A-463C-A441-D44690C56727}: DhcpDomain = linksys.com O17 - HKLM\System\CS1\Services\Tcpip\..\{BC9B8ECA-8D3A-463C-A441-D44690C56727}: DhcpNameServer = 67.69.184.7 67.69.184.199 O17 - HKLM\System\CS1\Services\Tcpip\..\{BC9B8ECA-8D3A-463C-A441-D44690C56727}: DhcpDomain = linksys.com O17 - HKLM\System\CS2\Services\Tcpip\..\{BC9B8ECA-8D3A-463C-A441-D44690C56727}: DhcpNameServer = 67.69.184.7 67.69.184.199 O17 - HKLM\System\CS2\Services\Tcpip\..\{BC9B8ECA-8D3A-463C-A441-D44690C56727}: DhcpDomain = linksys.com O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 67.69.184.7 67.69.184.199 ~ Domain: Scanned in 00mn 00s ---\ Protocole additionnel (O18) O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) -- O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll =>.Microsoft Corporation ~ Protocole Additionnel: Scanned in 00mn 00s ---\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll O20 - Winlogon Notify: klogon . (.Kaspersky Lab ZAO - Logon Visualizer.) -- C:\Windows\System32\klogon.dll ~ Winlogon: Scanned in 00mn 00s ---\ Tâches planifiées en automatique (O39) [MD5.00000000000000000000000000000000] [APT] [{0BA96DC6-E9A8-44EE-B002-B985449A9F88}] (...) -- C:\Program Files (x86)\Google\Picasa3\Uninstall.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{11411213-21D2-4C09-B6FD-C2FB642F533F}] (...) -- D:\setup.exe (.not file.) [0] [MD5.3A0B502DAAE0B7D75FD6C9D8E9101F00] [APT] [{139ABDAB-F5B8-4922-8BF5-D39CC541CD79}] (...) -- C:\Users\Gilles\Downloads\4200fvst648620a_64en\SetupSG.exe [7778136] [MD5.00000000000000000000000000000000] [APT] [{821128EE-C8D6-4B66-85F7-D74EB908AADF}] (...) -- C:\Program Files (x86)\honestech VHS to DVD 3.0 Deluxe\VHSToDVD.exe (.not file.) [0] [MD5.AF594228BDDD78FE0C8E6929C9487DC4] [APT] [{995AA4DC-B8FD-432F-90F5-4808F3C55009}] (...) -- C:\Users\Gilles\Downloads\4200fvst648620a_64fr\SetupSG.exe [7779672] [MD5.00000000000000000000000000000000] [APT] [{BB11D1F2-22A1-4593-B890-C73DBB8D9DAC}] (...) -- C:\Program Files (x86)\honestech VHS to DVD 3.0 Deluxe\VHSToDVD.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{BCB3F377-2E8B-4ED6-A351-E790FBBBD768}] (...) -- C:\Program Files (x86)\honestech VHS to DVD 3.0 Deluxe\ChangeVideoStandard.exe (.not file.) [0] [MD5.CC9CC64BC0283C485FE7E9F9A78A9058] [APT] [{E52A3BA9-FE1E-4701-86D2-53CF375965EE}] (...) -- C:\BMS 9\BMS9.exe [519123] [MD5.9EA89276052CD9DA2F21E6D285A0A72D] [APT] [{F9720D0D-4DFF-4559-A681-7B271F7C8DB8}] (.Honest Technology Inc.,.) -- C:\Users\Gilles\AppData\Local\Temp\Temp1_HT_VIDBOX_NW03_xpsp3_vista_win7_090316.zip\USB2.0 VIDBOX NW03 Driver.exe [15117036] ~ Scheduled Task: 25 Legitimates Filtered in 00mn 02s ---\ Logiciels installés (O42) O42 - Logiciel: Acrophobia - (...) [HKLM][64Bits] -- Acrophobia O42 - Logiciel: After Dark Games Demo - (...) [HKLM][64Bits] -- After Dark Games Demo O42 - Logiciel: Funmoods - (.Volonet Ltd.) [HKLM][64Bits] -- funmoods =>PUP.Funmoods O42 - Logiciel: Hoyle Board Games Demo - (...) [HKLM][64Bits] -- Hoyle Board Games Demo O42 - Logiciel: Hoyle Card Games - (...) [HKLM][64Bits] -- Hoyle Card Games O42 - Logiciel: Hoyle Casino '99 Demo - (...) [HKLM][64Bits] -- Hoyle Casino '99 Demo O42 - Logiciel: Memorex exPressit Label Design Studio - (...) [HKLM][64Bits] -- MVApplication1 O42 - Logiciel: What's The Big Idea - (...) [HKLM][64Bits] -- What's The Big Idea ~ Logic: 54 Legitimates Filtered in 00mn 00s ---\ HKCU & HKLM Software Keys [HKCU\Software\5b0dad9e668be10] =>Hijacker.Hijacker.Eazel [HKCU\Software\DataMngr] =>PUP.Datamngr [HKCU\Software\DataMngr_Toolbar] =>PUP.Datamngr [HKCU\Software\EZVC] [HKCU\Software\Funmoods] =>PUP.Funmoods [HKCU\Software\InstallCore] =>Adware.InstallCore [HKCU\Software\YahooPartnerToolbar] [HKLM\Software\Wow6432Node\5b0dad9e668be10] =>Hijacker.Hijacker.Eazel [HKLM\Software\Wow6432Node\Babylon] =>PUP.Babylon [HKLM\Software\Wow6432Node\DataMngr] =>PUP.Datamngr [HKLM\Software\Wow6432Node\InstallCore] =>Adware.InstallCore ~ Key Software: 490 Legitimates Filtered in 00mn 00s ---\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 2011-06-23 - 10:36:32 - [5,836] ----D C:\Program Files (x86)\Bezerk O43 - CFD: 2012-05-06 - 18:32:00 - [2,871] ----D C:\Program Files (x86)\Codec-V =>PUP.CodecV O43 - CFD: 2013-01-31 - 11:55:09 - [2,633] ----D C:\Program Files (x86)\Funmoods =>PUP.Funmoods O43 - CFD: 2012-08-05 - 21:01:06 - [245,703] ----D C:\Program Files (x86)\Memorex exPressit Label Design Studio O43 - CFD: 2013-01-31 - 11:53:12 - [0] ----D C:\ProgramData\Babylon =>PUP.Babylon O43 - CFD: 2012-04-07 - 20:33:19 - [0,176] ----D C:\ProgramData\Codecv =>PUP.CodecV O43 - CFD: 2012-04-07 - 20:05:12 - [1,644] ----D C:\ProgramData\InstallMate =>PUP.Tarma O43 - CFD: 2011-06-20 - 11:34:01 - [0,125] ----D C:\ProgramData\OEM_E471269A730E O43 - CFD: 2012-04-07 - 19:32:03 - [0] ----D C:\ProgramData\Premium O43 - CFD: 2013-03-22 - 13:54:38 - [0,359] ----D C:\Users\Gilles\AppData\Roaming\BabSolution =>Hijacker.BabSolution O43 - CFD: 2013-01-31 - 11:53:12 - [0,017] ----D C:\Users\Gilles\AppData\Roaming\Babylon =>PUP.Babylon O43 - CFD: 2014-02-05 - 03:21:14 - [0,087] ----D C:\Users\Gilles\AppData\Roaming\Funmoods =>PUP.Funmoods O43 - CFD: 2013-09-08 - 21:44:28 - [47,982] ----D C:\Users\Gilles\AppData\Roaming\OpenCandy =>Adware.OpenCandy O43 - CFD: 2011-10-14 - 16:39:20 - [0,277] ----D C:\Users\Gilles\AppData\Local\HTPA O43 - CFD: 2011-10-14 - 16:51:23 - [-1995,274] ----D C:\Users\Gilles\AppData\Local\VHS to DVD O43 - CFD: 2011-06-23 - 10:35:22 - [0] ----D C:\Users\Gilles\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Acrophobia O43 - CFD: 2011-06-23 - 10:36:02 - [0] ----D C:\Users\Gilles\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\After Dark Games Demo O43 - CFD: 2011-06-23 - 10:36:33 - [0] ----D C:\Users\Gilles\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\What's The Big Idea ~ 1455 Dossiers CLSID vides (CLSID Empty Folders) ~ Program Folder: 1749 Legitimates Filtered in 01mn 42s ---\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.3C1DAB1ADE513BEF54F8333299A9F281] - 2014-02-10 - 13:14:59 ---A- . (...) -- C:\Windows\MKDEWE.TRN [2560] O44 - LFC:[MD5.851164AB7D818976A40EA44BDE064428] - 2014-02-10 - 13:15:27 ---A- . (...) -- C:\Windows\MKDEMSG.LOG [122024] O44 - LFC:[MD5.C73D5AD5CE220283BCB068DABEC3A392] - 2014-02-10 - 13:24:22 ---A- . (...) -- C:\Windows\System32\devicealertlist.txt [284] O44 - LFC:[MD5.C73D5AD5CE220283BCB068DABEC3A392] - 2014-02-10 - 13:24:22 ---A- . (...) -- C:\Windows\System32\devicelist.txt [284] O44 - LFC:[MD5.2465EBC8CD6E412CDC1AB9FEF40BCAE6] - 2014-02-18 - 12:31:11 ---A- . (...) -- C:\Windows\win.ini [478] O44 - LFC:[MD5.F6F5FF151993B20AAE73D7BC8B8976B5] - 2014-02-18 - 12:49:33 ---A- . (...) -- C:\Windows\System32\deviceAppeared.txt [15] ~ Files: 52 Legitimates Filtered in 00mn 25s ---\ Derniers fichiers créés dans Windows Prefetcher (O45) O45 - LFCP:[MD5.38D9BE9B75BC13A0EF67627C3BE17A97] - 2014-02-18 - 06:43:27 ---A- - C:\Windows\Prefetch\BK6W.EXE-4D13C062.pf O45 - LFCP:[MD5.6F9D40AE2EC24CBC75DD60603643C70C] - 2014-02-18 - 06:43:28 ---A- - C:\Windows\Prefetch\W32MKDE.EXE-DC455E1A.pf O45 - LFCP:[MD5.F75557DD9B9A242C5A75A5C19FC9D447] - 2014-02-18 - 10:42:29 ---A- - C:\Windows\Prefetch\WLXPGSS.SCR-001E0005.pf O45 - LFCP:[MD5.16545E5F4995F3966011912C226B29C6] - 2014-02-18 - 11:21:36 ---A- - C:\Windows\Prefetch\WEATHEREYE.EXE-40269D37.pf O45 - LFCP:[MD5.691F4FCA620B2E5327536222392961C1] - 2014-02-18 - 12:11:45 ---A- - C:\Windows\Prefetch\LWS.EXE-27A1D9E7.pf O45 - LFCP:[MD5.201768F99EAF7952D8D16C67860E1F60] - 2014-02-18 - 12:11:46 ---A- - C:\Windows\Prefetch\EPMNEWS.EXE-43C4E95D.pf O45 - LFCP:[MD5.990C6F73111B7C40CFCE69D92696DEA4] - 2014-02-18 - 12:23:36 ---A- - C:\Windows\Prefetch\ARCADEMOVIESERVICE.EXE-A8FA7CD9.pf O45 - LFCP:[MD5.9E657151E830719937A941CED9E1F727] - 2014-02-18 - 12:50:50 ---A- - C:\Windows\Prefetch\CNSLMAIN.EXE-A3FCEEE0.pf O45 - LFCP:[MD5.0A8BF76DC34222CDF19D2BFC2FCEB8F7] - 2014-02-18 - 12:51:09 ---A- - C:\Windows\Prefetch\SUITETRAY.EXE-42757614.pf O45 - LFCP:[MD5.966155F6940B76CE8AB00C283417411B] - 2014-02-18 - 13:21:06 ---A- - C:\Windows\Prefetch\CNMSE9O.EXE-07F9D008.pf ~ Prefetcher: 146 Legitimates Filtered in 00mn 00s ---\ Enumération des clés de registre StartupReg (SMSR) (O53) O53 - SMSR:HKLM\...\startupreg\LaCie Desktop Manager Launcher [Key] . (...) -- C:\Program Files\LaCie\Desktop Manager\lacie_launcherd.exe (.not file.) ~ SMSR Keys: 1 Legitimates Filtered in 00mn 00s ---\ Enumération des clés de registre PoliciesSystem (MWPS) (O55) O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=0 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLinkedConnections"=1 ~ MWPS: 17 Legitimates Filtered in 00mn 00s ---\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56) O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1 ~ MWPE Keys: 5 Legitimates Filtered in 00mn 00s ---\ Liste des pilotes du système (SDL) (O58) O58 - SDL:[MD5.AB1201F8DE199E764DA9A32ABF71049C] - 2009-12-14 - 11:44:24 ---A- . (.Infowatch - Cryptographic Algorithm Lib Driver..) -- C:\Windows\System32\Drivers\CSCrySec.sys [85048] O58 - SDL:[MD5.A6EED705BB510FA6B0F9F097165A3395] - 2009-12-14 - 11:44:24 ---A- . (.Infowatch - Virtual Volume Container Driver (wnet).) -- C:\Windows\System32\Drivers\CSVirtualDiskDrv.sys [66104] O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 2009-07-13 - 20:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [530496] O58 - SDL:[MD5.55020D37C29F05D583A76F20127B4FD7] - 2007-06-22 - 16:58:14 ---A- . (.eMPIA Technology, Inc. - USB 28xx BDA Driver.) -- C:\Windows\System32\Drivers\emBDA64.sys [581120] O58 - SDL:[MD5.F9490D500090407600C91FCC73C488CD] - 2007-04-14 - 13:03:54 ---A- . (.eMPIA Technology, Inc. - USB 28xx WDM Lower filter.) -- C:\Windows\System32\Drivers\emOEM64.sys [11136] O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 2009-06-10 - 15:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys [31232] O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 2009-07-13 - 20:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys [24656] O58 - SDL:[MD5.6106653B08F4F72EEAA7F099E7C408A4] - 2013-03-07 - 08:49:18 ---A- . (...) -- C:\Windows\System32\epmntdrv.sys [17480] O58 - SDL:[MD5.991C04A31777ED77CB92A4F96F14C2E2] - 2013-03-07 - 08:49:18 ---A- . (...) -- C:\Windows\System32\EuGdiDrv.sys [9800] O58 - SDL:[MD5.B280C4608AC389DA9515A35AC4CAB0FD] - 2010-10-12 - 16:36:20 ---A- . (.https://sourceforge.net/p/libusb-win32/wiki/Home/ - LibUSB-Win32 - Kernel Driver.) -- C:\Windows\SysWOW64\drivers\libusb0.sys [21504] O58 - SDL:[MD5.F17F09BA097D8EC3CE2084FA97886B85] - 2013-03-07 - 08:49:20 ---A- . (...) -- C:\Windows\SysWOW64\epmntdrv.sys [13896] O58 - SDL:[MD5.F1DE3EEF501DDA7DDF99F2EDF0C5540E] - 2013-03-07 - 08:49:20 ---A- . (...) -- C:\Windows\SysWOW64\EuGdiDrv.sys [9160] ~ Drivers: 17 Legitimates Filtered in 00mn 05s ---\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC: 2014-02-18 - 13:51:02 ---A- . (...) -- C:\Users\Gilles\AppData\Roaming\Microsoft\OIS\Toolbars.dat [780] O61 - LFC: 2014-02-18 - 13:51:25 ---A- . (...) -- C:\Users\Gilles\AppData\Roaming\ZHP\Log.txt [52442] =>.Nicolas Coolman O61 - LFC: 2014-02-18 - 13:51:25 ---A- . (...) -- C:\Users\Gilles\AppData\Roaming\ZHP\TestsZHPDiag.txt [2878] =>.Nicolas Coolman ~ 56 Fichiers temporaires (Temporary files) ~ Files: 163 Legitimates Filtered in 02mn 31s ---\ Liste des outils de désinfection (LATC) (O63) O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman ~ ADS: Scanned in 00mn 00s ---\ Menu de démarrage Internet (SMI) (O68) O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ~ Keys: Scanned in 00mn 00s ---\ Recherche d'infection sur les navigateurs internet (SBI) (O69) O69 - SBI: SearchScopes [HKCU] {006ee092-9658-4fd6-bd8e-a21a348e59f5} [DefaultScope] - (Funmoods) - http://searchfunmoods.com =>PUP.Funmoods O69 - SBI: SearchScopes [HKCU] {3302BE7F-D2A5-42A3-8E78-9079E5095F6B} - (Bing) - https://www.bing.com/?toHttps=1&redig=69DA0EF8272048D9864AF4DB37211DE8 O69 - SBI: SearchScopes [HKCU] {6018AD23-4DCC-95C2-778D-00FF0A6A5B5B} - (Web Search) - https://www.google.com/#u_ip=91.209.35.218 ~ Keys: Scanned in 00mn 00s ---\ Recherche particulière à la racine du système (SPRF) (O84) [MD5.1C5474D1AC6FD583C337333A9A8008BA] [SPRF][2012-10-01] (...) -- C:\ProgramData tuser.dat [262144] ~ Files: 2 Legitimates Filtered in 00mn 00s ---\ Liste des exceptions du parefeu (FirewallRules) (O87) O87 - FAEL: "{464B30F0-7D70-4BAA-9269-9800BD10048C}" |In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe (.not file.) O87 - FAEL: "{4E9253F3-26A1-4FBE-B804-3C91EBF3F3FE}" |In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\CLMLSvc.exe (.not file.) O87 - FAEL: "{7BAF2A31-957A-44A9-A43D-7B43FD28C272}" |In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\TouchMovie.exe (.not file.) O87 - FAEL: "{C2843641-C952-40AE-B6C0-515419DFD596}" |In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\Acer Arcade Deluxe\Arcade Movie\TouchMovieService.exe (.not file.) ~ Firewall: 193 Legitimates Filtered in 00mn 01s ---\ Export de clés de registre aléatoires (O91) [HKCU\Software\5b0dad9e668be10\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1095.52]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Hijacker.Eazel [HKCU\Software\5b0dad9e668be10\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1095.52]:version="2.6.1095.52" =>Hijacker.Hijacker.Eazel [HKCU\Software\5b0dad9e668be10] =>PUP.Babylon^ [HKLM\Software\Wow6432Node\5b0dad9e668be10] => Clé orpheline ~ Export Key Software: Scanned in 00mn 00s ---\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS) ~ WIS: 188 Legitimates Filtered in 00mn 55s ---\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Demand 2014-02-05 257928 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe SS - | Demand 2010-10-12 206072 | (GamesAppService) . (.WildTangent, Inc..) - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe SS - | Demand 2014-01-15 289256 | (McComponentHostService) . (.McAfee, Inc..) - C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe SS - | Demand 2014-02-12 118896 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe SS - | Demand 2010-05-26 305520 | (MWLService) . (.Egis Technology Inc..) - C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe SS - | Demand 2010-01-15 935208 | (Nero BackItUp Scheduler 4.0) . (.Nero AG.) - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe SS - | Auto 2013-09-05 171680 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe SR - | Auto 2012-09-17 171600 | (AdobeActiveFileMonitor11.0) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe SR - | Auto 2011-10-09 55144 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe SR - | Auto 2011-12-24 202296 | (AVP) . (.Kaspersky Lab ZAO.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\avp.exe SR - | Auto 2011-08-30 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe SR - | Auto 2009-12-21 743992 | (CSObjectsSrv) . (.Infowatch.) - C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe SR - | Auto 2010-01-08 23584 | (GREGService) . (.Acer Incorporated.) - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe SR - | Auto 2009-06-04 354840 | (IAANTMON) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe SR - | Demand 2011-10-09 934760 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe SR - | Auto 2013-01-02 1379840 | (LaCieDesktopManagerService) . (...) - C:\Program Files\LaCie\Desktop Manager\lacie_dm_service.exe SR - | Auto 2011-03-29 598312 | (NAUpdate) . (.Nero AG.) - C:\Program Files (x86)\Nero\Update\NASvc.exe SR - | Auto 2013-08-14 39056 | (RealNetworks Downloader Resolver Service) . (...) - C:\Program Files (x86)\RealNetworks\RealDownloader ndlresolversvc.exe SR - | Auto 2010-05-13 244904 | (RichVideo) . (...) - C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe SR - | Auto 2010-09-22 249136 | (SeaPort) . (.Microsoft Corporation.) - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe SR - | Auto 2012-01-18 450848 | (UMVPFSrv) . (.Logitech Inc..) - C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe SR - | Auto 2010-01-28 243232 | (Updater Service) . (.Acer Group.) - C:\Program Files\Acer\Acer Updater\UpdaterService.exe SR - | Auto 2009-07-13 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe SR - | Demand 1658-07-10 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation SR - | Auto 2009-07-13 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe ~ Services: Scanned in 01mn 01s ---\ Recherche d'infection sur le Master Boot Record (MBR)(O80) Run by Gilles at 2014-02-18 13:55:02 ~ OS 64 not supported by MBR tool ~ MBR: 0 Legitimates Filtered in 00mn 00s ---\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by Gilles at 2014-02-18 13:55:04 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ~ MBR: Scanned in 00mn 02s ---\ Scan Additionnel (O88) Database Version : 13031 - (2014-02-17) Clés trouvées (Keys found) : 86 Valeurs trouvées (Values found) : 0 Dossiers trouvés (Folders found) : 12 Fichiers trouvés (Files found) : 9 [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}] =>PUP.Funmoods^ [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\funmoods] =>PUP.Funmoods^ [HKLM\Software\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}] =>PUP.Funmoods [HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}] =>Hijacker.SmartBar [HKLM\Software\Classes\Interface\{0D80F1C5-D17B-4177-AC68-955F3EF9F191}] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\Interface\{0D80F1C5-D17B-4177-AC68-955F3EF9F191}] =>PUP.Funmoods [HKLM\Software\Classes\TypeLib\{1D085C0A-E4F4-4F66-BDBF-4BE51015BFC3}] =>PUP.Funmoods [HKLM\Software\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}] =>PUP.Babylon [HKLM\Software\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}] =>PUP.Babylon [HKLM\Software\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}] =>PUP.Babylon [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}] =>PUP.Funmoods [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}] =>PUP.Funmoods [HKLM\Software\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}] =>PUP.Babylon [HKLM\Software\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}] =>PUP.Babylon [HKLM\Software\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}] =>PUP.Funmoods [HKLM\Software\Classes\TypeLib\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}] =>PUP.Funmoods [HKLM\Software\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}] =>PUP.Babylon [HKLM\Software\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}] =>PUP.Babylon [HKLM\Software\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}] =>PUP.Babylon [HKLM\Software\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}] =>Adware.CDNHelper [HKLM\Software\Wow6432Node\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}] =>Adware.CDNHelper [HKLM\Software\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}] =>PUP.Babylon [HKLM\Software\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}] =>PUP.Babylon [HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C87FC351-A80D-43E9-9A86-CF1E29DC443A}] =>PUP.Funmoods [HKLM\Software\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}] =>PUP.Babylon [HKLM\Software\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}] =>PUP.Babylon [HKLM\Software\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}] =>PUP.Babylon [HKLM\Software\Classes\esrv.funmoodsESrvc] =>PUP.Funmoods [HKLM\Software\Classes\esrv.funmoodsESrvc.1] =>PUP.Funmoods [HKLM\Software\Classes\f] =>PUP.Funmoods [HKLM\Software\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh] =>PUP.Funmoods [HKCU\Software\DataMngr] =>Adware.Bandoo [HKLM\Software\Wow6432Node\DataMngr] =>Adware.Bandoo [HKCU\Software\funmoods] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASAPI32] =>PUP.Babylon [HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASMANCS] =>PUP.Babylon [HKCU\SOFTWARE\InstallCore\funmoods] =>PUP.Funmoods [HKLM\Software\Classes\Prod.cap] =>PUP.Babylon [HKCU\Software\InstallCore] =>Adware.InstallCore [HKLM\Software\Wow6432Node\InstallCore] =>Adware.InstallCore [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings] =>PUP.BProtector [HKLM\Software\Classes\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}] =>PUP.Funmoods [HKLM\Software\Classes\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}] =>PUP.Funmoods [HKLM\Software\Classes\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}] =>PUP.Funmoods [HKLM\Software\Classes\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}] =>PUP.Funmoods [HKLM\Software\Classes\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}] =>PUP.Funmoods [HKLM\Software\Classes\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}] =>PUP.Funmoods [HKLM\Software\Classes\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}] =>PUP.Funmoods [HKLM\Software\Classes\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}] =>PUP.Funmoods [HKLM\Software\Classes\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}] =>PUP.Funmoods [HKLM\Software\Classes\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}] =>PUP.Funmoods [HKLM\Software\Classes\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}] =>PUP.Funmoods [HKLM\Software\Classes\Interface\{CA17D76B-F91D-4659-A7FD-A9F7ED375CDD}] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\Interface\{CA17D76B-F91D-4659-A7FD-A9F7ED375CDD}] =>PUP.Funmoods [HKLM\Software\Classes\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}] =>PUP.Funmoods [HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider [HKLM\Software\Classes\Interface\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}] =>PUP.Babylon [HKLM\Software\Wow6432Node\Microsoft\Tracing\apnstub_RASAPI32] =>Toolbar.Ask [HKLM\Software\Wow6432Node\Microsoft\Tracing\apnstub_RASMANCS] =>Toolbar.Ask [HKLM\Software\Classes\funmoods.funmoodsHlpr] =>PUP.Funmoods [HKLM\Software\Classes\funmoods.funmoodsHlpr.1] =>PUP.Funmoods [HKLM\Software\Classes\funmoodsApp.appCore] =>PUP.Funmoods [HKLM\Software\Classes\funmoodsApp.appCore.1] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\esrv.funmoodsESrvc] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\esrv.funmoodsESrvc.1] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\funmoods.funmoodsHlpr] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\funmoods.funmoodsHlpr.1] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\funmoodsApp.appCore] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\funmoodsApp.appCore.1] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\CLSID\{11111111-1111-1111-1111-110011041135}] =>PUP.CrossRider C:\Users\Gilles\AppData\Roaming\Mozilla\Firefox\Profiles\b51tdn7x.default\extensions\ffxtlbr@delta.com =>Toolbar.DeltaSearch^ C:\Program Files (x86)\Codec-V =>PUP.CodecV^ C:\Program Files (x86)\Funmoods =>PUP.Funmoods^ C:\ProgramData\Babylon =>PUP.Babylon^ C:\ProgramData\Codecv =>PUP.CodecV^ C:\ProgramData\InstallMate =>PUP.Tarma^ C:\Users\Gilles\AppData\Roaming\BabSolution =>Hijacker.BabSolution^ C:\Users\Gilles\AppData\Roaming\Babylon =>PUP.Babylon^ C:\Users\Gilles\AppData\Roaming\Funmoods =>PUP.Funmoods^ C:\Users\Gilles\AppData\Roaming\OpenCandy =>Adware.OpenCandy^ C:\Program Files (x86)\Optimizer Pro =>PUP.OptimizerPro C:\Users\Gilles\AppData\Local\Temp\Smartbar =>Hijacker.SmartBar [HKCU\Software\DataMngr_Toolbar] =>PUP.Datamngr^ [HKCU\Software\Funmoods] =>PUP.Funmoods^ [HKLM\Software\Wow6432Node\Babylon] =>PUP.Babylon^ [HKCU\Software\5b0dad9e668be10\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1095.52]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Hijacker.Eazel^ [HKCU\Software\5b0dad9e668be10] =>PUP.Babylon^^ C:\Users\Gilles\AppData\Local\Temp\uninst1.exe =>PUP.Babylon C:\Users\Gilles\AppData\Local\Temp\ins42AB.tmp.exe_t.exe =>Spyware.AgenceExclusive ~ Additionnel Scan: 555665 Items scanned in 01mn 21s ---\ Récapitulatif des détections trouvées sur votre station ~ http://nicolascoolman.webs.com/apps/blog/show/27875657-toolbar-deltasearch =>Toolbar.DeltaSearch ~ http://nicolascoolman.webs.com/apps/blog/show/27630986-pup-funmoods =>PUP.Funmoods ~ http://nicolascoolman.webs.com/apps/blog/show/27161672-hijacker-eazel =>Hijacker.Eazel ~ http://nicolascoolman.webs.com/apps/blog/show/27583992-pup-datamngr =>PUP.Datamngr ~ http://nicolascoolman.webs.com/apps/blog/show/29790567-adware-installcore =>Adware.InstallCore ~ http://nicolascoolman.webs.com/apps/blog/show/26627369-toolbar-babylon =>PUP.Babylon ~ http://nicolascoolman.webs.com/apps/blog/show/32698680-pup-codecv =>PUP.CodecV ~ http://nicolascoolman.webs.com/apps/blog/show/29637859-toolbar-tarma =>PUP.Tarma ~ http://nicolascoolman.webs.com/apps/blog/show/26678994-hijacker-babsolution =>Hijacker.BabSolution ~ http://nicolascoolman.webs.com/apps/blog/show/26770694-adware-opencandy =>Adware.OpenCandy ~ http://nicolascoolman.webs.com/apps/blog/show/26990375-hijacker-smartbar =>Hijacker.SmartBar ~ http://nicolascoolman.webs.com/apps/blog/show/26611092-adware-bandoo =>Adware.Bandoo ~ http://nicolascoolman.webs.com/apps/blog/show/28133096-pup-bprotector =>PUP.BProtector ~ http://nicolascoolman.webs.com/apps/blog/show/27583526-pup-crossrider =>PUP.CrossRider ~ http://nicolascoolman.webs.com/apps/blog/show/28927746-toolbar-ask =>Toolbar.Ask ~ http://nicolascoolman.webs.com/apps/blog/show/28204239-pup-optimizerpro =>PUP.OptimizerPro ~ http://nicolascoolman.webs.com/apps/blog/show/26627641-spyware-agenceexclusive =>Spyware.AgenceExclusive ~ MSI: 17 link(s) detected in 01mn 21s ~ 3226 Legitimates filtered by white list End of the scan (701 lines in 09mn 32s)(0)

lilidurhone · Answer

Désinstalles  Funmoods

Je mange et je m'occupe de ton cas :)

lilidurhone · Answer

Tu as dû installer des logiciels potentiellement indésirables


Pour éviter ce genre de problème :

- Ne télécharge aucun programme proposé dans des publicités ou sur des sites suspects. A noter que certains sites connus comme O1net, Softronic, Tuto4PC, etc modifient parfois les programmes proposés au téléchargement pour y ajouter des logiciels publicitaires ==> Préfère toujours le téléchargement directement sur le site de l'éditeur.


- Au cours de l'installation d'un programme gratuit, lis bien attentivement et décoche tous les programmes additionnels qui sont proposés, en particulier les barres d'outils.

Pour ton information lis ces dossier sur les Programmes Potentiellement Indésirables et Les Barres d'Outils ce n'est pas obligatoires

* Télécharge cet outil simple d'utilisation 

http://general-changelog-team.fr/fr/downloads/viewdownload/20-outils-de-xplode/2-adwcleaner (de Xplode) sur ton bureau.


* Si problème avec le 1er lien prends le ici https://www.commentcamarche.net/telecharger/securite/2759-adwcleaner/

* Lance le (Sous vista/seven/8 clic droit dessus,et sur exécuter en tant qu'administrateur)si tu es sous xp double cliques dessus

* Cliques sur scanner 
* Poste le rapport de recherche C:\Adwcleaner[R]

* Note le rapport de recherche est également sauvegardé sous C:\Adwcleaner[R1]

dela1956 · Answer

AdwCleaner[R0]

dela1956 · Answer

# AdwCleaner v3.019 - Rapport créé le 18/02/2014 à 15:28:31
# Mis à jour le 17/02/2014 par Xplode
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
# Nom d'utilisateur : Gilles - GILLES-PC
# Exécuté depuis : C:\Users\Gilles\Desktop\adwcleaner.exe
# Option : Scanner

***** [ Services ] *****


***** [ Fichiers / Dossiers ] *****

Dossier Présent : C:\Users\Gilles\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Dossier Présent : C:\Users\Gilles\AppData\Roaming\Mozilla\Firefox\Profiles\b51tdn7x.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
Dossier Présent : C:\Users\Gilles\AppData\Roaming\Mozilla\Firefox\Profiles\b51tdn7x.default\Extensions\extensions
Dossier Présent : C:\Users\Gilles\AppData\Roaming\Mozilla\Firefox\Profiles\b51tdn7x.default\Extensions\ffxtlbr@delta.com
Dossier Présent : C:\Users\Gilles\AppData\Roaming\Mozilla\Firefox\Profiles\b51tdn7x.default\Extensions\ffxtlbr@delta.com
Dossier Présent C:\Program Files (x86)\Funmoods
Dossier Présent C:\Program Files (x86)\optimizer pro
Dossier Présent C:\ProgramData\Babylon
Dossier Présent C:\ProgramData\Codecv
Dossier Présent C:\ProgramData\Codecv
Dossier Présent C:\ProgramData\Premium
Dossier Présent C:\Users\Gilles\AppData\Local\Temp\boost_interprocess
Dossier Présent C:\Users\Gilles\AppData\Local\Temp\Smartbar
Dossier Présent C:\Users\Gilles\AppData\Roaming\BabSolution
Dossier Présent C:\Users\Gilles\AppData\Roaming\Babylon
Dossier Présent C:\Users\Gilles\AppData\Roaming\Funmoods
Dossier Présent C:\Users\Gilles\AppData\Roaming\OpenCandy
Fichier Présent : C:\Users\Gilles\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bbjciahceamgodcoidkjpchnokgfpphh_0.localstorage
Fichier Présent : C:\Users\Gilles\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eooncjejnppfjjklapaamhcdmjbilmde_0.localstorage
Fichier Présent : C:\Users\Gilles\AppData\Roaming\Mozilla\Firefox\Profiles\b51tdn7x.default\searchplugins\delta.xml
Fichier Présent : C:\Users\Gilles\AppData\Roaming\Mozilla\Firefox\Profiles\b51tdn7x.default\searchplugins\funmoods.xml

***** [ Raccourcis ] *****


***** [ Registre ] *****

Clé Présente : HKCU\Software\5b0dad9e668be10
Clé Présente : HKCU\Software\AppDataLow\Software\Crossrider
Clé Présente : HKCU\Software\Classes\pokki
Clé Présente : HKCU\Software\DataMngr
Clé Présente : HKCU\Software\DataMngr_Toolbar
Clé Présente : HKCU\Software\Funmoods
Clé Présente : HKCU\Software\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Clé Présente : HKCU\Software\InstallCore
Clé Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Clé Présente : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4B71-B0A3-3D82E62A6909}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}
Clé Présente : HKCU\Software\YahooPartnerToolbar
Clé Présente : [x64] HKCU\Software\DataMngr
Clé Présente : [x64] HKCU\Software\DataMngr_Toolbar
Clé Présente : [x64] HKCU\Software\Funmoods
Clé Présente : [x64] HKCU\Software\InstallCore
Clé Présente : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Clé Présente : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4B71-B0A3-3D82E62A6909}
Clé Présente : [x64] HKCU\Software\YahooPartnerToolbar
Clé Présente : HKLM\SOFTWARE\5b0dad9e668be10
Clé Présente : HKLM\Software\Babylon
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110011041135}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{75A4D144-506D-4BE5-81DB-EC7DA1E7F840}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{965B9DBE-B104-44AC-950A-8A5F97AFF439}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{A9DB719C-7156-415E-B49D-BAD039DE4F13}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{F03FD9D0-4F2B-497C-8A71-DD41D70B07D9}
Clé Présente : HKLM\SOFTWARE\Classes\esrv.funmoodsESrvc
Clé Présente : HKLM\SOFTWARE\Classes\esrv.funmoodsESrvc.1
Clé Présente : HKLM\SOFTWARE\Classes\f
Clé Présente : HKLM\SOFTWARE\Classes\funmoods.funmoodsHlpr
Clé Présente : HKLM\SOFTWARE\Classes\funmoods.funmoodsHlpr.1
Clé Présente : HKLM\SOFTWARE\Classes\funmoodsApp.appCore
Clé Présente : HKLM\SOFTWARE\Classes\funmoodsApp.appCore.1
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{0D80F1C5-D17B-4177-AC68-955F3EF9F191}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{CA17D76B-F91D-4659-A7FD-A9F7ED375CDD}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}
Clé Présente : HKLM\SOFTWARE\Classes\Prod.cap
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{1D085C0A-E4F4-4F66-BDBF-4BE51015BFC3}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}
Clé Présente : HKLM\Software\DataMngr
Clé Présente : HKLM\SOFTWARE\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Clé Présente : HKLM\SOFTWARE\Google\Chrome\Extensions\hjakmojkcnhgipgkkbiempkfdndcnlah
Clé Présente : HKLM\Software\InstallCore
Clé Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C87FC351-A80D-43E9-9A86-CF1E29DC443A}
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\FunmoodsSetup_RASAPI32
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\FunmoodsSetup_RASMANCS
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASAPI32
Clé Présente : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASMANCS
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Funmoods
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{0D80F1C5-D17B-4177-AC68-955F3EF9F191}
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{CA17D76B-F91D-4659-A7FD-A9F7ED375CDD}
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}
Clé Présente : [x64] HKLM\SOFTWARE\Classes\Interface\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}
Clé Présente : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh

***** [ Navigateurs ] *****

-\ Internet Explorer v11.0.9600.16518

Paramètre Présent : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://searchfunmoods.com/?f=1&a=AgnUpd&cd=2XzuyEtN2Y1L1Qzu0FzztD0FyEtCtD0AyEzytDyD0B0D0B0AtN0D0Tzu0CyDyEyEtN1L2XzutN1L1Czu&cr=1774525228&ir=
Paramètre Présent : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page] - hxxp://feed.helperbar.com/?publisher=OC&dpid=OC&co=CA&userid=2628c81d-fa57-4c12-8b1a-89f9a9fd1b5f&affid=111585&searchtype=ds&babsrc=lnkry&q={searchTerms}
Paramètre Présent : HKCU\Software\Microsoft\Internet Explorer\Main [Search Bar] - hxxp://feed.helperbar.com/?publisher=OC&dpid=OC&co=CA&userid=2628c81d-fa57-4c12-8b1a-89f9a9fd1b5f&affid=111585&searchtype=ds&babsrc=lnkry&q={searchTerms}
Paramètre Présent : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://searchfunmoods.com/?f=1&a=AgnUpd&cd=2XzuyEtN2Y1L1Qzu0FzztD0FyEtCtD0AyEzytDyD0B0D0B0AtN0D0Tzu0CyDyEyEtN1L2XzutN1L1Czu&cr=1774525228&ir=
Paramètre Présent : HKCU\Software\Microsoft\Internet Explorer\Search [Default_Search_URL] - hxxp://feed.helperbar.com/?publisher=OC&dpid=OC&co=CA&userid=2628c81d-fa57-4c12-8b1a-89f9a9fd1b5f&affid=111585&searchtype=ds&babsrc=lnkry&q={searchTerms}
Paramètre Présent : HKCU\Software\Microsoft\Internet Explorer\Search [SearchAssistant] - hxxp://feed.helperbar.com/?publisher=OC&dpid=OC&co=CA&userid=2628c81d-fa57-4c12-8b1a-89f9a9fd1b5f&affid=111585&searchtype=ds&babsrc=lnkry&q={searchTerms}
Paramètre Présent : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs] - hxxp://searchfunmoods.com/?f=2&a=AgnUpd&cd=2XzuyEtN2Y1L1Qzu0FzztD0FyEtCtD0AyEzytDyD0B0D0B0AtN0D0Tzu0CyDyEyEtN1L2XzutN1L1Czu&cr=1774525228&ir=
Paramètre Présent : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [Default] - hxxp://feed.helperbar.com/?publisher=OC&dpid=OC&co=CA&userid=2628c81d-fa57-4c12-8b1a-89f9a9fd1b5f&affid=111585&searchtype=ds&babsrc=lnkry&q={searchTerms}
Paramètre Présent : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://searchfunmoods.com/?f=1&a=AgnUpd&cd=2XzuyEtN2Y1L1Qzu0FzztD0FyEtCtD0AyEzytDyD0B0D0B0AtN0D0Tzu0CyDyEyEtN1L2XzutN1L1Czu&cr=1774525228&ir=

-\ Mozilla Firefox v27.0.1 (fr)

[ Fichier : C:\Users\Gilles\AppData\Roaming\Mozilla\Firefox\Profiles\b51tdn7x.default\prefs.js ]

Ligne Trouvée : user_pref("browser.search.defaultenginename", "Funmoods");
Ligne Trouvée : user_pref("browser.search.selectedEngine", "Funmoods");

*************************

AdwCleaner[R0].txt - [13218 octets] - [18/02/2014 15:28:31]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [13279 octets] ##########

lilidurhone · Answer

Faut tout le rapport

dela1956 · Answer

ce matin j'ai eu accès au site (rouge fm), mais c'est ércit qu'il y a un problème d'internet

lilidurhone · Answer

Fais nettoyer

lilidurhone · Answer

Fais "nettoyer" avec adwcleaner

 https://forums.commentcamarche.net/forum/affich-29728478-erreur-d-encodage-de-contenu-firefox#19

lilidurhone · Answer

C'est pas fini(et pas résolu :) )

Refais un zhpdiag

lilidurhone · Answer

* A l'ouverture du logiciel il te sera proposé deux options "rechercher" et "configurer" 

* Cliques sur configurer 

* Tournevis puis tous 

* Clique sur l'icône représentant une loupe + (« Lancer le diagnostic ») 

* Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette 

* Pour héberger le rapport, rends toi sur cjoint.com 
* Clique sur choisissez un fichier va chercher le rapport dans ton PC. 

* Le rapport est hébergé: 
- Pour XP : C:\Documents and Settings\username\Local Settings\Application Data\ZHP 
- Depuis Vista : C:\Users\username\AppData\Roaming\ZHP 

* Une fois le rapport trouvé, sélectionne le, et clique sur Ouvrir 

* Choisis le type de diffusion(je te conseille privée 4 jours il sera détruit) 

* Puis cliques sur créer le lien cjoint 

* Une fois que tu auras obtenu le lien copies colle dans ta prochaine réponse 

* Pour t'aider https://www.commentcamarche.net/faq/29493-utiliser-cjoint-pour-heberger-des-fichiers

dela1956 · Answer

:	https://www.cjoint.com/?3Btvo69xgDa

dela1956 · Answer

y a-t-il autre chose? si non, puis-je inscrire comme résolu ?

lilidurhone · Answer

On continue demain

Erreur d'encodage de contenu, Firefox

17 réponses

Discussions similaires