Nettoyage pc asus sous windows 7 [Fermé]

nadou71 19 Messages postés vendredi 26 août 2011Date d'inscription 22 septembre 2017 Dernière intervention - 26 août 2011 à 15:55 - Dernière réponse :  Utilisateur anonyme
- 26 août 2011 à 16:47
Bonjour, je poste ici pour nettoyage et suppression des programmes ralentissant un maximun le pc voici 2 rapport de scann pour vous aider a m'aider
merci d'avance de votre aide

Rapport de ZHPDiag v1.28.1343 par Nicolas Coolman, Update du 24/08/2011
Run by nadine at 26/08/2011 13:53:49
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html


---\\ Web Browser
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox v3.6.13 (fr)
OBIE: Safari v5.33.20.27

---\\ Windows Product Information
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 9YQTR
Windows License : OK
~ Windows Remaining Initializations Number : 3
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ System Information
~ Processor: AMD64 Family 16 Model 6 Stepping 2, AuthenticAMD
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4095 MB (65% free)
System Restore: Activé (Enable)
System drive C: has 400 GB (88%) free of 451 GB

---\\ Logged in mode
~ Computer Name: NADINE-PC
~ User Name: nadine
~ All Users Names: nadine, Administrateur,
~ Unselected Option: O45,O61,O62,O65,O66,O82
Logged in as Administrator

---\\ Environnement Variables
~ System Unit : C:\
~ %AppData% : C:\Users\nadine\AppData\Roaming\
~ %Desktop% : C:\Users\nadine\Desktop\
~ %Favorites% : C:\Users\nadine\Favorites\
~ %LocalAppData% : C:\Users\nadine\AppData\Local\
~ %StartMenu% : C:\Users\nadine\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\system32\

---\\ DOS/Devices
C:\ Hard drive, Flash drive, Thumb drive (Free 400 Go of 451 Go)
E:\ CD-ROM drive (Free 0 Go of 0 Go)



---\\ Security Center & Tools Informations
[HKLM\SOFTWARE\Microsoft\Security Center] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoFolderOptions: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoDesktop: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoStartMenuSubFolder: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoResolveSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoClose: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] NoActiveDesktopChanges: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced] Start_ShowSearch: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services] wscsvc : OK
~ Scan Security Center in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.27/04/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.DD81D91FF3B0763C392422865C9AC12E] - (....) (.14/07/2009 - 02:39:31.) -- C:\Windows\system32\rundll32.exe [45568]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\system32\Wininit.exe [129024]
[MD5.0732B49B250E306F7A6591029AF9885B] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.15/08/2011 - 06:36:16.) -- C:\Windows\system32\wininet.dll [1389056]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.07/06/2011 - 14:25:30.) -- C:\Windows\system32\Winlogon.exe [390656]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\drivers\atapi.sys [24128]
[MD5.A2F74975097F52A00745F9637451FDD8] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.27/04/2011 - 07:41:34.) -- C:\Windows\system32\drivers\ntfs.sys [1659776]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.07/06/2011 - 14:27:26.) -- C:\Windows\system32\sppcomapi.dll [232448]
[MD5.0D57D091E06BB1E58E72E5D08479FDDF] - (....) (.07/06/2011 - 14:07:20.) -- C:\Windows\system32\fr-FR\user32.dll.mui [20480]
~ Scan Generic Processes in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 2/374
~ Mes musiques (My Musics) : 3/44
~ Mes Favoris (My Favorites) : 2/27
~ Mes Documents (My Documents) : 1/180
~ Mon Bureau (My Desktop) : 3/15
~ Menu demarrer (Programs) : 7/51
~ Scan Hidden Files in 00mn 01s



---\\ Processus lancés
[MD5.C2B5C7B5ECE593EB059FF1099F3DCC28] - (.Uniblue Systems Limited - Uniblue RegistryBooster Monitor.) -- C:\Program Files (x86)\Uniblue\RegistryBooster\rbmonitor.exe [25984] [PID.1160]
[MD5.852EE4F61139A1B3F44EDAA0D5B3FC14] - (...) -- C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe [53888] [PID.2348]
[MD5.F4DCD4912B185C3AAEB92A7040832AD1] - (.Pas de propriétaire - ALU.) -- C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe [51768] [PID.2404]
[MD5.97F60D16F052DA9CB619AB9A96CB2D4E] - (.Pas de propriétaire - Wireless Console 3.) -- C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1597440] [PID.2424]
[MD5.1971D838A88F58D59543E9B3CDA5FFC4] - (.ASUS - SmartLogon Application.) -- C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [305720] [PID.2488]
[MD5.37D0923540E3AEB1C09A74CC72D48222] - (.Orange - Executable Orange Inside.) -- C:\Users\nadine\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe [858624] [PID.2592]
[MD5.EFB6F56D20C39717C1567B5257CC7C43] - (...) -- C:\Program Files (x86)\FIXIO PC Utilities\FIXIO PC Cleaner\FIXIO Alert.exe [72816] [PID.3092]
[MD5.3588AFA5623BB8844F71F271A7A96669] - (...) -- C:\Program Files (x86)\Orange\MailNotifier\MailNotifier.exe [634368] [PID.3348]
[MD5.5AEBF6FA9805C9101220AA4FB4FA17E7] - (.ASUS - HControlUser.) -- C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe [105016] [PID.3588]
[MD5.32F43BE36AAC4E10C88EC24B34770C0D] - (.ASUS - ATKOSD2.) -- C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe [6859392] [PID.3604]
[MD5.29B129E019D5935C55541629677C2A69] - (.ASUS - ATK Media.) -- C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe [159744] [PID.3632]
[MD5.BC9C9BE7BB74D629362608ACE470E7DA] - (.Microsoft Corporation - Notification de cadeaux MSN.) -- C:\Users\nadine\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe [135680] [PID.3836]
[MD5.8E3608C58BA8C8B685D44578897EE0A2] - (.Uniblue Systems Limited - Uniblue RegistryBooster.) -- C:\Program Files (x86)\Uniblue\RegistryBooster\registrybooster.exe [53104] [PID.4044]
[MD5.D36DA0A5C531353C5FF5E29242649257] - (.Boingo Wireless, Inc. - Boingo Wi-Fi.) -- C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe [365936] [PID.3144]
[MD5.9F5F2F0FB0A7F5AA9F16B9A7B6DAD89F] - (.Google - Google Desktop.) -- C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe [30192] [PID.3276]
[MD5.2E5212A0BFB98FE0167C92C76C87AFE3] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [249064] [PID.3420]
[MD5.A64DA4EF938434F19142F964296347BF] - (.SweetIM Technologies Ltd. - SweetIM Instant Messenger Enhancer.) -- C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe [111928] [PID.3032]
[MD5.07E56F90546052D0574355E16AB48A6F] - (.ASUS - AsScrPro.) -- C:\Windows\AsScrPro.exe [3058304] [PID.3468]
[MD5.0CFBE2D135A73CA98381FC8CC8BC5A03] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [421160] [PID.3668]
[MD5.57B4D34232852BFE4453BE571DF90D21] - (.CyberLink - CyberLink MediaLibray Service.) -- C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720] [PID.3812]
[MD5.8911702CC546B76FE8F9C61987C68C43] - (.Microsoft Corporation - Internet Low-Mic Utility Tool.) -- C:\Program Files (x86)\Internet Explorer\IELowutil.exe [222720] [PID.6652]
[MD5.5108123120EE5A8E15D44F8C2F0BEECD] - (.Nicolas Coolman - Nettoyeur de rapport ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPFix.exe [502784] [PID.4688]
[MD5.F26208B3C13B48670E055BAD116D6438] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [669696] [PID.7976]
[MD5.18E5C2F937F9DEB8C282DF66A3761925] - (.ASUS - ASLDR Service.) -- C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe [84536] [PID.]
[MD5.7C157574A181B19B9DCF5F339E25337E] - (.Pas de propriétaire - GFNEXSrv.) -- C:\Program Files\ATKGFNEX\GFNEXSrv.exe [94208] [PID.]
[MD5.20F6F19FE9E753F2780DC2FA083AD597] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [37664] [PID.]
[MD5.F832F1505AD8B83474BD9A5B1B985E01] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe [345376] [PID.]
[MD5.2AD4EEFBEFAA921091BF0DAD793C7B0D] - (.LULU software - Pas de description.) -- C:\Program Files (x86)\FIXIO PC Utilities\FIXIO PC Cleaner\FIXIO Service.exe [191600] [PID.]
[MD5.A46EF269564B9CA0A90C70E86AAE0110] - (.ASUS - HControl.) -- C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe [174720] [PID.]
[MD5.149126216A694E6BA84E92ECA77AAE3B] - (.ASUS - ATKOSD.) -- C:\Program Files (x86)\ASUS\ATK Hotkey\ATKOSD.exe [2488888] [PID.]
[MD5.AA11E1368EEB237DD100BAC6AFFE1C57] - (.ASUS - KBFiltr.) -- C:\Program Files (x86)\ASUS\ATK Hotkey\KBFiltr.exe [113208] [PID.]
[MD5.4A7C441D99D86704D194E7678873B95D] - (.ASUS - WDC.) -- C:\Program Files (x86)\ASUS\ATK Hotkey\WDC.exe [174648] [PID.]
[MD5.0731C1C224668D011A7FD564CE58B825] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\1.3.21.65\GoogleCrashHandler.exe [140952] [PID.]
[MD5.91356F83D33135ED1295565078BF0977] - (.SmithMicro Inc. - RcAppSvc, Service Helper.) -- C:\Program Files (x86)\Bouygues Telecom\Internet 3G+\RcAppSvc.exe [120088] [PID.]
[MD5.C5A75EB48E2344ABDC162BDA79E16841] - (.Microsoft Corporation - .NET Runtime Optimization Service.) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [130384] [PID.]
~ Scan Processes Running in 00mn 02s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\nadine\AppData\Local\Google\Chrome\User Data\Default\Preferences
G1 - GCS: Preference [User Data\Default] http://www.bing.com
G0 - GCSP: Preference [User Data\Default][HomePage] http://fr.msn.com
G0 - GCSP: Preference [User Data\Default] http://www.facebook.com
G2 - GCE: Preference [User Data\Default] [ampmmbpnfcckpmkcfiohhnkjddpjggmg] Pixlr Editor v.0.1.0.6 (Activé)
G2 - GCE: Preference [User Data\Default] [dhkplhfnhceodhffomolpfigojocbpcb] Babylon Chrome OCR v.1.0 (Activé)
G2 - GCE: Preference [User Data\Default] [dmmdamomoifmanjfgicpjpfecjmibdoa] Facebook v.0.1.0.6 (Activé)
G2 - GCE: Preference [User Data\Default] [efidkeokpjcbngncimdidniefmlcedpd] WordSquared v.0.1.0.6 (Activé)
G2 - GCE: Preference [User Data\Default] [eilgndeedlkdebjbdaaejfogmajcbfha] Hexa Connect v.0.1.0.6 (Activé)
G2 - GCE: Preference [User Data\Default] [hmdclebiabmkhlneceholhbhiohhbinf] Twitt'TV v.0.93 (Activé)
G2 - GCE: Preference [User Data\Default] [kabfoagjjgbakjgadhcpoleecfkmhpjm] YouTube v.0.1.0.6 (Activé)
G2 - GCE: Preference [User Data\Default] [mgaamfgaljmbfofgglpfdpbcmjbjahjm] Game Master 1.2 v.2.0.1.4 (Activé)
G2 - GCE: Preference [User Data\Default] [mihcahmgecmbnbcchbopgniflfhgnkff] Vérificateur de messages Google v.3.2 (Activé)
G2 - GCE: Preference [User Data\Default] [pgphcomnlaojlmmcjmiddhdapjpbgeoc] Send from Gmail (by Google) v.1.12 (Activé)
~ Scan Google Browser in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\nadine\AppData\Roaming\Mozilla\Firefox\Profiles\uxivpgvv.default\prefs.js
C:\Users\nadine\AppData\Roaming\Mozilla\Firefox\Profiles\uxivpgvv.default\user.js
M3 - MFPP: Plugins - [nadine] -- C:\Users\nadine\AppData\Roaming\Mozilla\Firefox\Profiles\uxivpgvv.default\searchplugins\bing.xml
M3 - MFPP: Plugins - [nadine] -- C:\Users\nadine\AppData\Roaming\Mozilla\Firefox\Profiles\uxivpgvv.default\searchplugins\facebook.xml
M3 - MFPP: Plugins - [nadine] -- C:\Users\nadine\AppData\Roaming\Mozilla\Firefox\Profiles\uxivpgvv.default\searchplugins\MyStart Search.xml
M3 - MFPP: Plugins - [nadine] -- C:\Users\nadine\AppData\Roaming\Mozilla\Firefox\Profiles\uxivpgvv.default\searchplugins\orange.xml
M3 - MFPP: Plugins - [nadine] -- C:\Users\nadine\AppData\Roaming\Mozilla\Firefox\Profiles\uxivpgvv.default\searchplugins\SearchTheWeb.xml
M0 - MFSP: prefs.js [nadine - uxivpgvv.default] http://r.orange.fr/r/Ohome_accueil?ref=O_toolbar32_hook_defaultPage
M0 - MFSP: user.js [nadine - uxivpgvv.default] http://r.orange.fr/r/Ohome_accueil?ref=O_toolbar32_hook_defaultPage
M2 - MFEP: prefs.js [nadine - uxivpgvv.default\engine@conduit.com] [] Conduit Engine v3.2.5.2 (.Conduit Ltd..)
M2 - MFEP: prefs.js [nadine - uxivpgvv.default\ffxtlbr@babylon.com] [] Babylon v1.1.3 (.Babylon.)
M2 - MFEP: prefs.js [nadine - uxivpgvv.default\ffxtlbr@Facemoods.com] [] Facemoods v1.2.1 (.Volo-Net.)
M2 - MFEP: prefs.js [nadine - uxivpgvv.default\menu_contextuel_orange@orange.fr] [] Menu Contextuel Orange v1.0 (.FranceTelecom-Orange Copyright 2008-2009.)
M2 - MFEP: prefs.js [nadine - uxivpgvv.default\personas@christopher.beard] [personas] Personas v1.6.1 (.Chris Beard.)
M2 - MFEP: prefs.js [nadine - uxivpgvv.default\{4D9AE42B-F4C0-40e6-AEDB-4EC6E42B77AF}] [] Plugin Orange Installeur v1.6.1 (.Orange.)
M2 - MFEP: prefs.js [nadine - uxivpgvv.default\{C9B68337-E93A-44EA-94DC-CB300EC06444}] [] IMinent Toolbar v3.26.0 (.IMinent.)
M2 - MFEP: prefs.js [nadine - uxivpgvv.default\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0}] [] IncrediMail MediaBar 2 Community Toolbar v3.2.5.2 (.Conduit Ltd..)
P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(TM) Deploy.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - FPN:Firefox Plugin Navigator . (.Midasplayer Ltd - Plays games at king.com.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npmidas.dll
P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npnul32.dll
P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape "9.4.5".) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin2.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin3.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin4.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin5.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin6.dll
P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin7.dll
P2 - FPN:Firefox Plugin Navigator . (.Zylom - Zylom Plugin.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npzylomgamesplayer.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\nadine\AppData\Local\Google\Update\1.3.21.65\npGoogleUpdate3.dll
P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\nadine\AppData\Local\Google\Update\1.3.21.65\npGoogleUpdate3.dll
~ Scan Firefox Browser in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com
R0 - HKUS\S-1-5-21-828347313-3933077176-142425892-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKUS\S-1-5-21-828347313-3933077176-142425892-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\System32\ieframe.dll
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ Scan IE Browser in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

lke 2eme rapportRapport de ZHPScan v1.28 par Nicolas Coolman, Update du 24/08/2011
Run by nadine at 26/08/2011 13:59:19
Web site : http://www.premiumorange.com/zeb-help-process/zhpdiag.html


---\\ Clés de Registre trouvées (Registry Keys found)
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>Adware.MyWebSearch
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{15AF6E9C-9169-4A9E-A738-FD28D898091D}] =>Adware.IMBooster
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1FC253E3-EFB3-44CA-9B37-A2A35612134D}] =>Adware.IMBooster
[HKLM\Software\WOW6432Node\Classes\Interface\{2a42d13c-d427-4787-821b-cf6973855778}] =>Adware.Agent
[HKLM\Software\Classes\TypeLib\{2D5E2D34-BED5-4B9F-9793-A31E26E6806E}] =>Adware.Hotbar
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4a99-B4B6-146BF802613B}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4a99-B4B6-146BF802613B}] =>Toolbar.Babylon
[HKLM\Software\WOW6432Node\Classes\CLSID\{2EECD738-5844-4a99-B4B6-146BF802613B}] =>Toolbar.Babylon
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}] =>Toolbar.Conduit
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}] =>Toolbar.Conduit
[HKLM\Software\WOW6432Node\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}] =>Toolbar.Conduit
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}] =>Toolbar.Conduit
[HKLM\Software\WOW6432Node\Classes\Interface\{3d8478aa-7b88-48a9-8bcb-b85d594411ec}] =>Adware.Agent
[HKLM\Software\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}] =>Toolbar.Conduit
[HKLM\Software\WOW6432Node\Classes\Interface\{4897bba6-48d9-468c-8efa-846275d7701b}] =>Adware.Agent
[HKLM\Software\Classes\TypeLib\{4d3b167e-5fd8-4276-8fd7-9df19c1e4d19}] =>Toolbar.SweetIM
[HKLM\Software\WOW6432Node\Classes\Interface\{542FA950-C57A-4E17-B3E1-D935DFE15DEE}] =>Toolbar.Facemood
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{58124A0B-DC32-4180-9BFF-E0E21AE34026}] =>Adware.IMBooster
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{58124A0B-DC32-4180-9BFF-E0E21AE34026}] =>Adware.IMBooster
[HKLM\Software\WOW6432Node\Classes\CLSID\{58124A0B-DC32-4180-9BFF-E0E21AE34026}] =>Adware.IMBooster
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{58124A0B-DC32-4180-9BFF-E0E21AE34026}] =>Adware.IMBooster
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7}] =>Adware.CometSystems
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7}] =>Adware.CometSystems
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7}] =>Adware.CometSystems
[HKLM\Software\WOW6432Node\Classes\CLSID\{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7}] =>Adware.CometSystems
[HKLM\Software\WOW6432Node\Classes\Interface\{5B035F86-41B5-40F1-AAAD-3D219F30244E}] =>Toolbar.Facemood
[HKLM\Software\WOW6432Node\Classes\Interface\{6365AC7B-9920-4D8B-AF5D-3BDFEAC340A8}] =>Toolbar.Facemood
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{64182481-4F71-486b-A045-B233BD0DA8FC}] =>Toolbar.Facemood
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{64182481-4F71-486b-A045-B233BD0DA8FC}] =>Toolbar.Facemood
[HKLM\Software\WOW6432Node\Classes\CLSID\{64182481-4F71-486b-A045-B233BD0DA8FC}] =>Toolbar.Facemood
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64182481-4F71-486b-A045-B233BD0DA8FC}] =>Toolbar.Facemood
[HKLM\Software\WOW6432Node\Classes\Interface\{6A934270-717F-4BC3-BA59-BC9BED47A8D2}] =>Toolbar.Facemood
[HKLM\Software\WOW6432Node\Classes\Interface\{74C012C4-00FB-4F04-9AFB-4AD5449D2018}] =>Toolbar.Facemood
[HKLM\Software\Classes\TypeLib\{77860007-19AE-4C29-B26D-AEA48F3A05C5}] =>Adware.IMBooster
[HKLM\Software\WOW6432Node\Classes\Interface\{79B13431-CCAC-4097-8889-D0289E5E924F}] =>Toolbar.Facemood
[HKLM\Software\WOW6432Node\Classes\CLSID\{82ac53b4-164c-4b07-a016-437a8388b81a}] =>Toolbar.SweetIM
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}] =>Adware.IMBooster
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}] =>Adware.IMBooster
[HKLM\Software\WOW6432Node\Classes\CLSID\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}] =>Adware.IMBooster
[HKLM\Software\WOW6432Node\Classes\Interface\{981334CB-7B8B-431F-B86D-67B7426B125B}] =>Toolbar.Facemood
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49dd-99D7-DC866BE87DBC}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49dd-99D7-DC866BE87DBC}] =>Toolbar.Babylon
[HKLM\Software\WOW6432Node\Classes\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC}] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}] =>Adware.IMBooster
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}] =>Adware.IMBooster
[HKLM\Software\WOW6432Node\Classes\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}] =>Adware.IMBooster
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}] =>Adware.IMBooster
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A76AA284-E52D-47E6-9E4F-B85DBF8E35C3}] =>Adware.IMBooster
[HKLM\Software\WOW6432Node\Classes\Interface\{A9379648-F6EB-4F65-A624-1C10411A15D0}] =>Toolbar.Facemood
[HKLM\Software\WOW6432Node\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}] =>Toolbar.Babylon
[HKLM\Software\WOW6432Node\Classes\Interface\{C1C2FC43-F042-4F17-AEDB-C5ABF3B42E4B}] =>Toolbar.Facemood
[HKLM\Software\WOW6432Node\Classes\Interface\{C8D424EF-CB21-49A0-8659-476FBAB0F8E8}] =>Toolbar.Babylon

[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0}] =>Toolbar.MediaBar
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0}] =>Toolbar.MediaBar
[HKLM\Software\WOW6432Node\Classes\CLSID\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0}] =>Toolbar.MediaBar
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0}] =>Toolbar.MediaBar
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DB4E9724-F518-4dfd-9C7C-78B52103CAB9}] =>Toolbar.Facemood
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DB4E9724-F518-4dfd-9C7C-78B52103CAB9}] =>Toolbar.Facemood
[HKLM\Software\WOW6432Node\Classes\CLSID\{DB4E9724-F518-4dfd-9C7C-78B52103CAB9}] =>Toolbar.Facemood
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{eee6c360-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKLM\Software\WOW6432Node\Microsoft\Internet Explorer\SearchScopes\{eee6c360-6118-11dc-9c72-001320c79847}] =>Toolbar.SweetIM
[HKLM\Software\WOW6432Node\Classes\Interface\{F16AB1DB-15C0-4456-A29E-4DF24FB9E3D2}] =>Toolbar.Facemood
[HKLM\Software\WOW6432Node\Classes\Interface\{F7EC6286-297C-4981-9DCC-FD7F57BC24C9}] =>Toolbar.Facemood
[HKCU\Software\BabylonToolbar] =>Toolbar.Babylon
[HKLM\Software\WOW6432Node\BabylonToolbar] =>Toolbar.Babylon
[HKCU\Software\AppDataLow\Software\Conduit] =>Toolbar.Conduit
[HKLM\Software\WOW6432Node\Conduit] =>Toolbar.Conduit
[HKCU\Software\AppDataLow\Software\conduitEngine] =>Toolbar.Conduit
[HKLM\Software\WOW6432Node\conduitEngine] =>Toolbar.Conduit
[HKCU\Software\facemoods.com] =>Toolbar.Facemoods
[HKLM\Software\WOW6432Node\facemoods.com] =>Toolbar.Facemoods
[HKCU\Software\Iminent] =>Adware.IMBooster
[HKLM\Software\WOW6432Node\Iminent] =>Adware.IMBooster
[HKCU\Software\PopCap] =>Adware.PopCap
[HKLM\Software\WOW6432Node\PopCap] =>Adware.PopCap
[HKCU\Software\SweetIM] =>Toolbar.SweetIM
[HKLM\Software\WOW6432Node\SweetIM] =>Toolbar.SweetIM
[HKCU\Software\AppDataLow\Toolbar] =>Toolbar.Conduit
[HKLM\Software\WOW6432Node\Trymedia Systems] =>Adware.Trymedia

---\\ Valeurs de clé de Registre trouvées (Registry Values found)
*** None ***

---\\ Dossiers trouvés (Directories found)
C:\Program Files\Babylon =>Toolbar.Babylon
C:\ProgramData\Babylon =>Toolbar.Babylon
C:\ProgramData\Iminent =>Adware.IMBooster
C:\ProgramData\PopCap Games =>Adware.PopCap
C:\ProgramData\SweetIM =>Toolbar.SweetIM
C:\ProgramData\Trymedia =>Adware.Trymedia
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Babylon =>Toolbar.Babylon
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Iminent =>Adware.IMBooster
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PopCap Games =>Adware.PopCap
C:\Users\nadine\AppData\Roaming\Babylon =>Toolbar.Babylon
C:\Users\nadine\AppData\Local\Babylon =>Toolbar.Babylon
C:\Users\nadine\AppData\Local\Conduit =>Toolbar.Conduit
C:\Users\nadine\AppData\Local\Iminent =>Adware.IMBooster
C:\Users\nadine\AppData\LocalLow\alot =>Adware.CometSystems
C:\Users\nadine\AppData\LocalLow\BabylonToolbar =>Toolbar.Babylon
C:\Users\nadine\AppData\LocalLow\Conduit =>Toolbar.Conduit
C:\Users\nadine\AppData\LocalLow\ConduitEngine =>Toolbar.Conduit
C:\Users\nadine\AppData\LocalLow\IncrediMail_MediaBar_2 =>Toolbar.Conduit
C:\Users\nadine\AppData\LocalLow\Toolbar4 =>Toolbar.Conduit
C:\Users\nadine\AppData\Local\Temp\Babylon =>Toolbar.Babylon
C:\Users\nadine\AppData\Local\Temp\Iminent =>Adware.IMBooster
C:\Users\nadine\AppData\Local\Temp\Installer =>Adware.InstallPedia
C:\Users\nadine\AppData\Local\Temp\log =>Worm.Silly



C:\Users\nadine\AppData\Roaming\Mozilla\Firefox\Profiles\uxivpgvv.default\Conduit =>Toolbar.Conduit
C:\Users\nadine\AppData\Roaming\Mozilla\Firefox\Profiles\uxivpgvv.default\ConduitEngine =>Toolbar.Conduit
C:\Users\nadine\AppData\Roaming\Mozilla\Firefox\Profiles\uxivpgvv.default\extensions\engine@conduit.com =>Toolbar.Conduit
C:\Users\nadine\AppData\Roaming\Mozilla\Firefox\Profiles\uxivpgvv.default\extensions\ffxtlbr@babylon.com =>Toolbar.Babylon

---\\ Fichiers Firefox trouvés (Files found)
C:\Users\nadine\AppData\Roaming\Mozilla\Firefox\Profiles\uxivpgvv.default\searchplugins\MyStart Search.xml =>Spyware.VMNToolbar

---\\ Fichiers trouvés (Files found)

---\\ Bilan de la recherche (Scan Result)
Database Version : 8614 - (24/08/2011)
Clés trouvées (Keys found) : 81
Valeurs de clé trouvées (Values found) : 0
Dossiers trouvés (Folders found) : 30
Fichiers trouvés (Files found) : 1

End of the scan in 00mn 31s









Afficher la suite 

5 réponses

Utilisateur anonyme - 26 août 2011 à 15:57
0
Utile
salut


▶ Télécharge ici : Ad-remover sur ton bureau :


▶ Déconnecte toi et ferme toutes applications en cours !

si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."


▶ sur "Ad-R.exe" pour lancer l'installation et laisse les paramètres d'installation par défaut .

▶ clique le raccourci Ad-remover qui est sur ton bureau pour lancer l'outil .

▶ Au menu principal choisis "option Nettoyer" et tape sur [entrée] .

▶ Laisse travailler l'outil et ne touche à rien ...

▶ Poste le rapport qui apparait à la fin , sur le forum ...

( Le rapport est sauvegardé aussi sous C:\Ad-report.log )
( CTRL+A Pour tout sélectionner , CTRL+C pour copier et CTRL+V pour coller )

nadou71 19 Messages postés vendredi 26 août 2011Date d'inscription 22 septembre 2017 Dernière intervention - 26 août 2011 à 16:23
0
Utile
je vous poste le rapport




======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org

C:\Program Files (x86)\Ad-Remover\main.exe (SCAN [1]) -> Lancé à 16:11:06 le 26/08/2011, Mode normal

Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X64)
nadine@NADINE-PC (ASUSTeK Computer INC. K50AF)

============== RECHERCHE ==============


Fichier trouvé: C:\Windows\SysWOW64\ConduitEngine.tmp
Dossier trouvé: C:\Users\nadine\AppData\Roaming\Mozilla\FireFox\Profiles\uxivpgvv.default\conduit
Dossier trouvé: C:\Users\nadine\AppData\Roaming\Mozilla\FireFox\Profiles\uxivpgvv.default\ConduitEngine
Dossier trouvé: C:\Users\nadine\AppData\Roaming\Mozilla\FireFox\Profiles\uxivpgvv.default\extensions\engine@conduit.com
Dossier trouvé: C:\Users\nadine\AppData\Local\Conduit
Dossier trouvé: C:\Users\nadine\AppData\LocalLow\Conduit
Dossier trouvé: C:\Users\nadine\AppData\LocalLow\ConduitEngine
Dossier trouvé: C:\Program Files (x86)\ConduitEngine
Dossier trouvé: C:\Users\nadine\AppData\LocalLow\alot
Dossier trouvé: C:\Program Files (x86)\alot
Dossier trouvé: C:\ProgramData\PopCap Games
Dossier trouvé: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PopCap Games
Dossier trouvé: C:\Program Files (x86)\PopCap Games
Dossier trouvé: C:\Users\nadine\AppData\LocalLow\Toolbar4
Dossier trouvé: C:\ProgramData\Trymedia
Fichier trouvé: C:\Users\nadine\Downloads\ALOT_Barre_France_Cartes_Itineraires_Installation (1).exe
Fichier trouvé: C:\Users\nadine\Downloads\ALOT_Barre_France_Cartes_Itineraires_Installation.exe
Fichier trouvé: C:\Users\nadine\Downloads\ALOT_Barre_France_Dicos_Encyclos_Installation (1).exe
Fichier trouvé: C:\Users\nadine\Downloads\ALOT_Barre_France_Dicos_Encyclos_Installation (2).exe
Fichier trouvé: C:\Users\nadine\Downloads\ALOT_Barre_France_Dicos_Encyclos_Installation.exe
Fichier trouvé: C:\Users\nadine\Downloads\ALOT_Barre_Radio_Installation (1).exe
Fichier trouvé: C:\Users\nadine\Downloads\ALOT_Barre_Radio_Installation (2).exe
Fichier trouvé: C:\Users\nadine\Downloads\ALOT_Barre_Radio_Installation (3).exe
Fichier trouvé: C:\Users\nadine\Downloads\ALOT_Barre_Radio_Installation (4).exe
Fichier trouvé: C:\Users\nadine\Downloads\ALOT_Barre_Radio_Installation.exe

-- Fichier ouvert: C:\Users\nadine\AppData\Roaming\Mozilla\FireFox\Profiles\uxivpgvv.default\Prefs.js --
Ligne trouvée: user_pref("CT2724386.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TER...
Ligne trouvée: user_pref("CT2724386.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT272...
Ligne trouvée: user_pref("CT2724386.ct2724431.SearchEngine", "Recherche||hxxp://search.conduit.com/Results.aspx?q=U...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1116652/1112356/FR", "\"0\"...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1116673/1112377/FR", "\"0\"...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1116697/1112401/FR", "\"0\"...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1119424/1115128/FR", "\"0\"...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1119884/1115588/FR", "\"0\"...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1119908/1115612/FR", "\"0\"...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1119940/1115644/FR", "\"0\"...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1120012/1115716/FR", "\"0\"...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/909619/905414/FR", "\"0\"")...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=ct2724431", ...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&lo...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&loc...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&lo...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&local...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/toolbar/", "\"63438026930213...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=0", "63...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=1/11/20...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=2/22/20...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit.com/root/ct2724431/CT2724386...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=EB_LOCALE",...
Ligne trouvée: user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=fr", "\"634...
Ligne trouvée: user_pref("CommunityToolbar.EngineOwner", "CT2724386");
Ligne trouvée: user_pref("CommunityToolbar.EngineOwnerGuid", "{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0}");
Ligne trouvée: user_pref("CommunityToolbar.EngineOwnerToolbarId", "incredimail_mediabar_2");
Ligne trouvée: user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Ligne trouvée: user_pref("CommunityToolbar.OriginalEngineOwner", "CT2724386");
Ligne trouvée: user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0}");
Ligne trouvée: user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "incredimail_mediabar_2");
Ligne trouvée: user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://mystart.incredimail.com/?loc=ff_a...
Ligne trouvée: user_pref("CommunityToolbar.ToolbarsList", "CT2724386,ConduitEngine");
Ligne trouvée: user_pref("CommunityToolbar.ToolbarsList2", "CT2724386");
Ligne trouvée: user_pref("CommunityToolbar.alert.alertInfoInterval", 60);
Ligne trouvée: user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Fri May 20 2011 11:48:51 GMT+0200");
Ligne trouvée: user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Ligne trouvée: user_pref("CommunityToolbar.alert.locale", "");
Ligne trouvée: user_pref("CommunityToolbar.alert.loginIntervalMin", 0);
Ligne trouvée: user_pref("CommunityToolbar.alert.loginLastCheckTime", "Fri May 20 2011 11:48:51 GMT+0200");
Ligne trouvée: user_pref("CommunityToolbar.alert.loginLastUpdateTime", "");
Ligne trouvée: user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Ligne trouvée: user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Ligne trouvée: user_pref("CommunityToolbar.alert.showTrayIcon", false);
Ligne trouvée: user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Ligne trouvée: user_pref("CommunityToolbar.alert.userId", "60291016-373a-4930-9a7c-4f39a404bfb0");
Ligne trouvée: user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Thu Jan 27 2011 10:58:00 GMT+0100");
Ligne trouvée: user_pref("ConduitEngine.FirstServerDate", "01/27/2011 12");
Ligne trouvée: user_pref("ConduitEngine.FirstTime", true);
Ligne trouvée: user_pref("ConduitEngine.FirstTimeFF3", true);
Ligne trouvée: user_pref("ConduitEngine.HasUserGlobalKeys", true);
Ligne trouvée: user_pref("ConduitEngine.Initialize", true);
Ligne trouvée: user_pref("ConduitEngine.InitializeCommonPrefs", true);
Ligne trouvée: user_pref("ConduitEngine.InstalledDate", "Thu Jan 27 2011 10:59:23 GMT+0100");
Ligne trouvée: user_pref("ConduitEngine.IsMulticommunity", false);
Ligne trouvée: user_pref("ConduitEngine.IsOpenThankYouPage", false);
Ligne trouvée: user_pref("ConduitEngine.IsOpenUninstallPage", true);
Ligne trouvée: user_pref("ConduitEngine.LanguagePackLastCheckTime", "Fri May 20 2011 11:48:53 GMT+0200");
Ligne trouvée: user_pref("ConduitEngine.LastLogin_3.2.5.2", "Fri May 20 2011 11:48:52 GMT+0200");
Ligne trouvée: user_pref("ConduitEngine.PublisherContainerWidth", 0);
Ligne trouvée: user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Ligne trouvée: user_pref("ConduitEngine.SettingsLastCheckTime", "Fri May 20 2011 11:48:53 GMT+0200");
Ligne trouvée: user_pref("ConduitEngine.UserID", "UN92846013736462058");
Ligne trouvée: user_pref("ConduitEngine.engineLocale", "fr");
Ligne trouvée: user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Fri May 20 2011 11:48:53 GMT+0200");
Ligne trouvée: user_pref("ConduitEngine.initDone", true);
-- Fichier Fermé --


Clé trouvée: HKLM\Software\Classes\CLSID\{14CEEAFF-96DD-4101-AE37-D5ECDC23C3F6}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{14CEEAFF-96DD-4101-AE37-D5ECDC23C3F6}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{14CEEAFF-96DD-4101-AE37-D5ECDC23C3F6}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{14CEEAFF-96DD-4101-AE37-D5ECDC23C3F6}
Clé trouvée: HKLM\Software\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé trouvée: HKLM\Software\Classes\CLSID\{44E66826-05B9-4D74-97AD-0386056E6813}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{44E66826-05B9-4D74-97AD-0386056E6813}
Clé trouvée: HKLM\Software\Classes\CLSID\{5AA2BA46-9913-4dc7-9620-69AB0FA17AE7}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5AA2BA46-9913-4dc7-9620-69AB0FA17AE7}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5AA2BA46-9913-4dc7-9620-69AB0FA17AE7}
Clé trouvée: HKLM\Software\Classes\CLSID\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}
Clé trouvée: HKLM\Software\Classes\CLSID\{BD7DD8A2-CC33-49F8-8CAC-7C018C5338B5}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{BD7DD8A2-CC33-49F8-8CAC-7C018C5338B5}
Clé trouvée: HKLM\Software\Classes\CLSID\{D40B90B4-D3B1-4D6B-A5D7-DC041C1B76C0}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D40B90B4-D3B1-4D6B-A5D7-DC041C1B76C0}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D40B90B4-D3B1-4D6B-A5D7-DC041C1B76C0}
Clé trouvée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D40B90B4-D3B1-4D6B-A5D7-DC041C1B76C0}
Clé trouvée: HKLM\Software\Classes\Interface\{981334CB-7B8B-431F-B86D-67B7426B125B}
Clé trouvée: HKLM\Software\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Clé trouvée: HKLM\Software\Classes\Interface\{C8D424EF-CB21-49A0-8659-476FBAB0F8E8}
Clé trouvée: HKLM\Software\Classes\TypeLib\{77860007-19AE-4C29-B26D-AEA48F3A05C5}
Clé trouvée: HKLM\Software\Classes\Conduit.Engine
Clé trouvée: HKLM\Software\Classes\Toolbar.CT2724386
Clé trouvée: HKLM\Software\Conduit
Clé trouvée: HKLM\Software\conduitEngine
Clé trouvée: HKLM\Software\PopCap
Clé trouvée: HKLM\Software\Trymedia Systems
Clé trouvée: HKCU\Software\PopCap
Clé trouvée: HKCU\Software\AppDataLow\Toolbar
Clé trouvée: HKCU\Software\AppDataLow\Software\alot
Clé trouvée: HKCU\Software\AppDataLow\Software\Conduit
Clé trouvée: HKCU\Software\AppDataLow\Software\conduitEngine
Clé trouvée: HKCU\Software\Microsoft\Installer\Products\3E352CF13BFEAC44B9732A3A652131D4
Clé trouvée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Clé trouvée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7}
Clé trouvée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{500F583D-F729-499B-9DA2-07387DA7A2BB}
Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6795114A-1CC4-462b-99E6-2C7B0FA69CDC}
Clé trouvée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A368B2D8-F82C-4101-ADCC-5CB85E7F894A}
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\alotToolbar
Clé trouvée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine

Valeur trouvée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{30F9B915-B755-4826-820B-08FBA6BD249D}
Valeur trouvée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{5AA2BA46-9913-4dc7-9620-69AB0FA17AE7}


============== SCAN ADDITIONNEL ==============

-- C:\Users\nadine\AppData\Roaming\Mozilla\FireFox\Profiles\uxivpgvv.default --
Extensions\engine@conduit.com (Conduit Engine )
Extensions\ffxtlbr@babylon.com (Babylon)
Extensions\ffxtlbr@Facemoods.com (Facemoods)
Extensions\menu_contextuel_orange@orange.fr (Menu Contextuel Orange)
Extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444} (IMinent Toolbar)
Extensions\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} (IncrediMail MediaBar 2 Community Toolbar)
Searchplugins\facebook.xml (?)
Searchplugins\MyStart Search.xml (?)
Searchplugins\orange.xml (?)
Searchplugins\SearchTheWeb.xml ( hxxp://search.iminent.com)
User.js - browser.startup.homepage, hxxp://r.orange.fr/r/Ohome_accueil?ref=O_toolbar32_hook_defaultPage
User.js - browser.search.selectedEngine, Orange
User.js - keyword.URL, hxxp://rws.search.ke.voila.fr/RW/S/opensearch_orange?rdata=
Prefs.js - browser.download.lastDir, C:\\Users\\nadine\\Documents\\Téléchargements
Prefs.js - browser.search.defaultenginename, Facemoods Search
Prefs.js - browser.search.defaulturl, hxxp://search.babylon.com/web/{searchTerms}?babsrc=browsersearch&AF=776
Prefs.js - browser.startup.homepage, hxxp://r.orange.fr/r/Ohome_accueil?ref=O_toolbar32_hook_defaultPage
Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.13
Prefs.js - keyword.URL, hxxp://rws.search.ke.voila.fr/RW/S/opensearch_orange?rdata=
Prefs.js - browser.search.selectedEngine, Orange

========================================

**** Google Chrome Version [13.0.782.215] ****

Extension\dhkplhfnhceodhffomolpfigojocbpcb (C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonChrome.crx) (x)
Extension\ihflimipbcaljfnojhhknppphnnciiif (C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.4\facemoods.crx) (?)

-- C:\Users\nadine\AppData\Local\Google\Chrome\User Data\Default --
Preferences - default_search_provider: "Bing" (Activé: true) (hxxp://www.bing.com/search?q={searchTerms}&mkt=fr-FR&form=MENTVV)
Preferences - homepage: hxxp://fr.msn.com/?ocid=iehp
Preferences - homepage_is_newtabpage: false
Plugin - Windows Live Photo Gallery (Activé: true) (C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll)
Plugin - "Windows Live Photo Gallery" (Activé: true)
Preferences - urls_to_restore_on_startup: hxxp://www.facebook.com/

========================================

**** Internet Explorer Version [9.0.8112.16421] ****

HKCU_Main|Default_Page_URL - hxxp://asus.msn.com
HKCU_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKCU_Main|Start Page - hxxp://google.fr/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=69157
HKLM_Main|Default_Search_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Search Page - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Start Page - hxxp://home.sweetim.com
AboutUrls|Tabs - hxxp://start.facemoods.com/?a=wbst&f=2
HKLM_URLSearchHooks|{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - "IncrediMail MediaBar 2 Toolbar" (C:\Program Files (x86)\IncrediMail_MediaBar_2\prxtbInc2.dll)
HKCU_SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A} - "Facemoods Search" (hxxp://start.facemoods.com/?a=wbst&s={searchTerms}&f=4)
HKCU_SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - "Search the web (Babylon)" (hxxp://search.babylon.com/web/{searchTerms}?babsrc=browsersearch&AF=776)
HKCU_SearchScopes\{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7} - "ALOT Recherche" (hxxp://search.alot.com/web?q={searchTerms}&pr=prov&client_id=6BD439F001CBD705029...)
HKCU_SearchScopes\{70D46D94-BF1E-45ED-B567-48701376298E} - "Google Desktop" (hxxp://127.0.0.1:4664/search&s=nNzBMTmGdn6fluCqe1rIwi6ZkTA?q={searchTerms})
HKCU_SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} - "SearchTheWeb" (hxxp://search.iminent.com/?appId=&ref=toolbox&q={searchTerms})
HKCU_SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847} - "SweetIM Search" (hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms})
HKLM_SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} - "SearchTheWeb" (hxxp://search.iminent.com/?appId=&ref=toolbox&q={searchTerms})
HKLM_SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847} - "SweetIM Search" (hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms})
HKCU_Toolbar\WebBrowser|{977AE9CC-AF83-45E8-9E03-E2798216E2D5} (C:\Program Files (x86)\IMinent Toolbar\tbcore3.dll) (x)
HKCU_Toolbar\WebBrowser|{D40B90B4-D3B1-4D6B-A5D7-DC041C1B76C0} (C:\Program Files (x86)\IncrediMail_MediaBar_2\prxtbInc2.dll)
HKLM_Toolbar|{8dcb7100-df86-4384-8842-8fa844297b3f} (C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll)
HKLM_Toolbar|{977AE9CC-AF83-45E8-9E03-E2798216E2D5} (C:\Program Files (x86)\IMinent Toolbar\tbcore3.dll) (x)
HKLM_Toolbar|{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} (C:\Program Files (x86)\IncrediMail_MediaBar_2\prxtbInc2.dll)
HKLM_Toolbar|{30F9B915-B755-4826-820B-08FBA6BD249D} (C:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll)
HKLM_Toolbar|{5AA2BA46-9913-4dc7-9620-69AB0FA17AE7} (C:\Program Files (x86)\alot\bin\alot.dll)
HKLM_Toolbar|{98889811-442D-49dd-99D7-DC866BE87DBC} (C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.5\BabylonToolbarTlbr.dll) (x)
HKLM_Toolbar|{DB4E9724-F518-4dfd-9C7C-78B52103CAB9} (C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.4\facemoodsTlbr.dll)
HKLM_Toolbar|{D3028143-6145-4318-99D3-3EDCE54A95A9} (C:\Program Files (x86)\Orange\ToolbarFR\ToolbarContainer101000315.dll)
HKCU_ElevationPolicy\{30E4B230-AC56-4D52-B19E-36E2C3A2804D} - C:\Users\nadine\AppData\Local\Hook Network\Raccourcis Internet Explorer 9\2.0.0.1\IE9PinnedSitesHelper.exe (Hook Network)
HKLM_ElevationPolicy\${ELV_GUID} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.5\BabylonToolbarsrv.exe (x)
HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\SysWOW64\wpcer.exe (x)
HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\SysWOW64\winfxdocobj.exe (x)
HKLM_ElevationPolicy\{500F583D-F729-499B-9DA2-07387DA7A2BB} - C:\Program Files (x86)\ConduitEngine\ConduitEngineHelper.exe (?)
HKLM_ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291} - C:\Program Files (x86)\IMinent Toolbar\TbHelper2.exe (x)
HKLM_ElevationPolicy\{6795114A-1CC4-462b-99E6-2C7B0FA69CDC} - C:\Program Files (x86)\alot\bin\ALOTSettings.exe (?)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files (x86)\Internet Explorer\iedw.exe (x)
HKLM_ElevationPolicy\{A368B2D8-F82C-4101-ADCC-5CB85E7F894A} - C:\Program Files (x86)\IncrediMail_MediaBar_2\IncrediMail_MediaBar_2ToolbarHelper1.exe (?)
HKLM_ElevationPolicy\{A6E2003F-95C5-4591-BA9A-0093080FDB5C} - C:\Program Files (x86)\Common Files\Oberon Media\OberonBroker\1.0.0.63\OberonBroker.exe (?)
HKLM_ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01} - C:\Windows\system32\TSWbPrxy.exe (x)
HKLM_ElevationPolicy\{B77902F8-6C76-42ED-85D6-C6E16CDD5270} - C:\Users\nadine\AppData\Local\Conduit\CT2724386\IncrediMail_MediaBar_2AutoUpdaterHelper.exe (?)
HKLM_ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08} - C:\Program Files (x86)\Iminent\MMServer\Iminent.MMServer.exe (x)
HKLM_ElevationPolicy\{FFDF9EF3-3C3A-4f05-9A6E-5D3B778EC567} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.4\facemoodssrv.exe (facemoods.com)
HKLM_Extensions\{F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - "Translate this web page with Babylon" (C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll,202)
BHO\{14CEEAFF-96DD-4101-AE37-D5ECDC23C3F6} - "Barre d'outils ALOT Helper" (C:\Program Files (x86)\alot\bin\BHO\alotBHO.dll)
BHO\{1CA1377B-DC1D-4A52-9585-6E06050FAC53} - "TmIEPlugInBHO Class" (C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1464\6.6.1081\TmIEPlg32.dll)
BHO\{2EECD738-5844-4a99-B4B6-146BF802613B} - "CescrtHlpr Object" (C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.5\bh\BabylonToolbar.dll) (x)
BHO\{30F9B915-B755-4826-820B-08FBA6BD249D} - "Conduit Engine " (C:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll)
BHO\{58124A0B-DC32-4180-9BFF-E0E21AE34026} - "TBSB01620 Class" (C:\Program Files (x86)\IMinent Toolbar\tbcore3.dll) (x)
BHO\{64182481-4F71-486b-A045-B233BD0DA8FC} - "CescrtHlpr Object" (C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.4\bh\facemoods.dll)
BHO\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - "Search Helper" (C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll)
BHO\{84FF7BD6-B47F-46F8-9130-01B2696B36CB} - "Iminent.BHO.NavigationError" (C:\Program Files (x86)\Iminent\SearchTheWeb\Iminent.BHO.NavigationError.dll) (x)
BHO\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - "Babylon IE plugin" (C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll) (x)
BHO\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A} - "IMinent WebBooster (BHO)" (C:\Program Files (x86)\Iminent\IMBooster4Web\Iminent.WebBooster.dll) (x)
BHO\{BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - "TmBpIeBHO Class" (C:\Program Files\Trend Micro\AMSP\Module\20002\6.6.1010\6.6.1010\TmBpIe32.dll)
BHO\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - "IncrediMail MediaBar 2 Toolbar" (C:\Program Files (x86)\IncrediMail_MediaBar_2\prxtbInc2.dll)

========================================

C:\Program Files (x86)\Ad-Remover\Quarantine: 0 Fichier(s)
C:\Program Files (x86)\Ad-Remover\Backup: 0 Fichier(s)

C:\Ad-Report-SCAN[1].txt - 26/08/2011 16:11:15 (22890 Octet(s))

Fin à: 16:16:50, 26/08/2011

============== E.O.F ==============
Utilisateur anonyme - 26 août 2011 à 16:26
0
Utile
pourquoi t'as pas fait ce que j ai demandé ?
nadou71 19 Messages postés vendredi 26 août 2011Date d'inscription 22 septembre 2017 Dernière intervention - 26 août 2011 à 16:40
0
Utile
rapport nettoyer


======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org

C:\Program Files (x86)\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 16:25:31 le 26/08/2011, Mode normal

Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X64)
nadine@NADINE-PC (ASUSTeK Computer INC. K50AF)

============== ACTION(S) ==============


Fichier supprimé: C:\Windows\SysWOW64\ConduitEngine.tmp
Dossier supprimé: C:\Users\nadine\AppData\Roaming\Mozilla\FireFox\Profiles\uxivpgvv.default\conduit
Dossier supprimé: C:\Users\nadine\AppData\Roaming\Mozilla\FireFox\Profiles\uxivpgvv.default\ConduitEngine
Dossier supprimé: C:\Users\nadine\AppData\Roaming\Mozilla\FireFox\Profiles\uxivpgvv.default\extensions\engine@conduit.com
Dossier supprimé: C:\Users\nadine\AppData\Local\Conduit
Dossier supprimé: C:\Users\nadine\AppData\LocalLow\Conduit
Dossier supprimé: C:\Users\nadine\AppData\LocalLow\ConduitEngine
Dossier supprimé: C:\Program Files (x86)\ConduitEngine
Dossier supprimé: C:\Users\nadine\AppData\LocalLow\alot
Dossier supprimé: C:\Program Files (x86)\alot
Dossier supprimé: C:\ProgramData\PopCap Games
Dossier supprimé: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PopCap Games
Dossier supprimé: C:\Program Files
(x86)\PopCap Games
Dossier supprimé: C:\Users\nadine\AppData\LocalLow\Toolbar4
Dossier supprimé: C:\ProgramData\Trymedia
Fichier supprimé: C:\Users\nadine\Downloads\ALOT_Barre_France_Cartes_Itineraires_Installation (1).exe
Fichier supprimé: C:\Users\nadine\Downloads\ALOT_Barre_France_Cartes_Itineraires_Installation.exe
Fichier supprimé: C:\Users\nadine\Downloads\ALOT_Barre_France_Dicos_Encyclos_Installation (1).exe
Fichier supprimé: C:\Users\nadine\Downloads\ALOT_Barre_France_Dicos_Encyclos_Installation (2).exe
Fichier supprimé: C:\Users\nadine\Downloads\ALOT_Barre_France_Dicos_Encyclos_Installation.exe
Fichier supprimé: C:\Users\nadine\Downloads\ALOT_Barre_Radio_Installation (1).exe
Fichier supprimé: C:\Users\nadine\Downloads\ALOT_Barre_Radio_Installation (2).exe
Fichier supprimé: C:\Users\nadine\Downloads\ALOT_Barre_Radio_Installation (3).exe
Fichier supprimé: C:\Users\nadine\Downloads\ALOT_Barre_Radio_Installation (4).exe
Fichier supprimé: C:\Users\nadine\Downloads\ALOT_Barre_Radio_Installation.exe

(!) -- Fichiers temporaires supprimés.


-- Fichier ouvert: C:\Users\nadine\AppData\Roaming\Mozilla\FireFox\Profiles\uxivpgvv.default\Prefs.js --
Ligne supprimée: user_pref("CT2724386.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TER...
Ligne supprimée: user_pref("CT2724386.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT272...
Ligne supprimée: user_pref("CT2724386.ct2724431.SearchEngine", "Recherche||hxxp://search.conduit.com/Results.aspx?q=U...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1116652/1112356/FR", "\"0\"...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1116673/1112377/FR", "\"0\"...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1116697/1112401/FR", "\"0\"...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1119424/1115128/FR", "\"0\"...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1119884/1115588/FR", "\"0\"...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1119908/1115612/FR", "\"0\"...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1119940/1115644/FR", "\"0\"...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1120012/1115716/FR", "\"0\"...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/909619/905414/FR", "\"0\"")...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=ct2724431", ...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&lo...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&loc...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&lo...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&local...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/toolbar/", "\"63438026930213...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=0", "63...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=1/11/20...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=2/22/20...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.search.conduit.com/root/ct2724431/CT2724386...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=EB_LOCALE",...
Ligne supprimée: user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=fr", "\"634...
Ligne supprimée: user_pref("CommunityToolbar.EngineOwner", "CT2724386");
Ligne supprimée: user_pref("CommunityToolbar.EngineOwnerGuid", "{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0}");
Ligne supprimée: user_pref("CommunityToolbar.EngineOwnerToolbarId", "incredimail_mediabar_2");
Ligne supprimée: user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);
Ligne supprimée: user_pref("CommunityToolbar.OriginalEngineOwner", "CT2724386");
Ligne supprimée: user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0}");
Ligne supprimée: user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "incredimail_mediabar_2");
Ligne supprimée: user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://mystart.incredimail.com/?loc=ff_a...
Ligne supprimée: user_pref("CommunityToolbar.ToolbarsList", "CT2724386,ConduitEngine");
Ligne supprimée: user_pref("CommunityToolbar.ToolbarsList2", "CT2724386");
Ligne supprimée: user_pref("CommunityToolbar.alert.alertInfoInterval", 60);
Ligne supprimée: user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Fri May 20 2011 11:48:51 GMT+0200");
Ligne supprimée: user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");
Ligne supprimée: user_pref("CommunityToolbar.alert.locale", "");
Ligne supprimée: user_pref("CommunityToolbar.alert.loginIntervalMin", 0);
Ligne supprimée: user_pref("CommunityToolbar.alert.loginLastCheckTime", "Fri May 20 2011 11:48:51 GMT+0200");
Ligne supprimée: user_pref("CommunityToolbar.alert.loginLastUpdateTime", "");
Ligne supprimée: user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);
Ligne supprimée: user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");
Ligne supprimée: user_pref("CommunityToolbar.alert.showTrayIcon", false);
Ligne supprimée: user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);
Ligne supprimée: user_pref("CommunityToolbar.alert.userId", "60291016-373a-4930-9a7c-4f39a404bfb0");
Ligne supprimée: user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Thu Jan 27 2011 10:58:00 GMT+0100");
Ligne supprimée: user_pref("ConduitEngine.FirstServerDate", "01/27/2011 12");
Ligne supprimée: user_pref("ConduitEngine.FirstTime", true);
Ligne supprimée: user_pref("ConduitEngine.FirstTimeFF3", true);
Ligne supprimée: user_pref("ConduitEngine.HasUserGlobalKeys", true);
Ligne supprimée: user_pref("ConduitEngine.Initialize", true);
Ligne supprimée: user_pref("ConduitEngine.InitializeCommonPrefs", true);
Ligne supprimée: user_pref("ConduitEngine.InstalledDate", "Thu Jan 27 2011 10:59:23 GMT+0100");
Ligne supprimée: user_pref("ConduitEngine.IsMulticommunity", false);
Ligne supprimée: user_pref("ConduitEngine.IsOpenThankYouPage", false);
Ligne supprimée: user_pref("ConduitEngine.IsOpenUninstallPage", true);
Ligne supprimée: user_pref("ConduitEngine.LanguagePackLastCheckTime", "Fri May 20 2011 11:48:53 GMT+0200");
Ligne supprimée: user_pref("ConduitEngine.LastLogin_3.2.5.2", "Fri May 20 2011 11:48:52 GMT+0200");
Ligne supprimée: user_pref("ConduitEngine.PublisherContainerWidth", 0);
Ligne supprimée: user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);
Ligne supprimée: user_pref("ConduitEngine.SettingsLastCheckTime", "Fri May 20 2011 11:48:53 GMT+0200");
Ligne supprimée: user_pref("ConduitEngine.UserID", "UN92846013736462058");
Ligne supprimée: user_pref("ConduitEngine.engineLocale", "fr");
Ligne supprimée: user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Fri May 20 2011 11:48:53 GMT+0200");
Ligne supprimée: user_pref("ConduitEngine.initDone", true);
-- Fichier Fermé --


Clé supprimée: HKLM\Software\Classes\CLSID\{14CEEAFF-96DD-4101-AE37-D5ECDC23C3F6}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{14CEEAFF-96DD-4101-AE37-D5ECDC23C3F6}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{14CEEAFF-96DD-4101-AE37-D5ECDC23C3F6}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{14CEEAFF-96DD-4101-AE37-D5ECDC23C3F6}
Clé supprimée: HKLM\Software\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clé supprimée: HKLM\Software\Classes\CLSID\{44E66826-05B9-4D74-97AD-0386056E6813}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{44E66826-05B9-4D74-97AD-0386056E6813}
Clé supprimée: HKLM\Software\Classes\CLSID\{5AA2BA46-9913-4dc7-9620-69AB0FA17AE7}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5AA2BA46-9913-4dc7-9620-69AB0FA17AE7}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5AA2BA46-9913-4dc7-9620-69AB0FA17AE7}
Clé supprimée: HKLM\Software\Classes\CLSID\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}
Clé supprimée: HKLM\Software\Classes\CLSID\{BD7DD8A2-CC33-49F8-8CAC-7C018C5338B5}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{BD7DD8A2-CC33-49F8-8CAC-7C018C5338B5}
Clé supprimée: HKLM\Software\Classes\CLSID\{D40B90B4-D3B1-4D6B-A5D7-DC041C1B76C0}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D40B90B4-D3B1-4D6B-A5D7-DC041C1B76C0}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D40B90B4-D3B1-4D6B-A5D7-DC041C1B76C0}
Clé supprimée: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D40B90B4-D3B1-4D6B-A5D7-DC041C1B76C0}
Clé supprimée: HKLM\Software\Classes\Interface\{981334CB-7B8B-431F-B86D-67B7426B125B}
Clé supprimée: HKLM\Software\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Clé supprimée: HKLM\Software\Classes\Interface\{C8D424EF-CB21-49A0-8659-476FBAB0F8E8}
Clé supprimée: HKLM\Software\Classes\TypeLib\{77860007-19AE-4C29-B26D-AEA48F3A05C5}
Clé supprimée: HKLM\Software\Classes\Conduit.Engine
Clé supprimée: HKLM\Software\Classes\Toolbar.CT2724386
Clé supprimée: HKLM\Software\Conduit
Clé supprimée: HKLM\Software\conduitEngine
Clé supprimée: HKLM\Software\PopCap
Clé supprimée: HKLM\Software\Trymedia Systems
Clé supprimée: HKCU\Software\PopCap
Clé supprimée: HKCU\Software\AppDataLow\Toolbar
Clé supprimée: HKCU\Software\AppDataLow\Software\alot
Clé supprimée: HKCU\Software\AppDataLow\Software\Conduit
Clé supprimée: HKCU\Software\AppDataLow\Software\conduitEngine
Clé supprimée: HKCU\Software\Microsoft\Installer\Products\3E352CF13BFEAC44B9732A3A652131D4
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{5AA2BA46-9913-4DC7-9620-69AB0FA17AE7}
Clé supprimée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{500F583D-F729-499B-9DA2-07387DA7A2BB}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6795114A-1CC4-462b-99E6-2C7B0FA69CDC}
Clé supprimée: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A368B2D8-F82C-4101-ADCC-5CB85E7F894A}
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\alotToolbar
Clé supprimée: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine

Valeur supprimée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{30F9B915-B755-4826-820B-08FBA6BD249D}
Valeur supprimée: HKLM\Software\Microsoft\Internet Explorer\Toolbar|{5AA2BA46-9913-4dc7-9620-69AB0FA17AE7}


============== SCAN ADDITIONNEL ==============

-- C:\Users\nadine\AppData\Roaming\Mozilla\FireFox\Profiles\uxivpgvv.default --
Extensions\ffxtlbr@babylon.com (Babylon)
Extensions\ffxtlbr@Facemoods.com (Facemoods)
Extensions\menu_contextuel_orange@orange.fr (Menu Contextuel Orange)
Extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444} (IMinent Toolbar)
Extensions\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} (IncrediMail MediaBar 2 Community Toolbar)
Searchplugins\facebook.xml (?)
Searchplugins\MyStart Search.xml (?)
Searchplugins\orange.xml (?)
Searchplugins\SearchTheWeb.xml ( hxxp://search.iminent.com)
User.js - browser.startup.homepage, hxxp://r.orange.fr/r/Ohome_accueil?ref=O_toolbar32_hook_defaultPage
User.js - browser.search.selectedEngine, Orange
User.js - keyword.URL, hxxp://rws.search.ke.voila.fr/RW/S/opensearch_orange?rdata=
Prefs.js - browser.download.lastDir, C:\\Users\\nadine\\Documents\\Téléchargements
Prefs.js - browser.search.defaultenginename, Facemoods Search
Prefs.js - browser.search.defaulturl, hxxp://search.babylon.com/web/{searchTerms}?babsrc=browsersearch&AF=776
Prefs.js - browser.startup.homepage, hxxp://r.orange.fr/r/Ohome_accueil?ref=O_toolbar32_hook_defaultPage
Prefs.js - browser.startup.homepage_override.mstone, rv:1.9.2.13
Prefs.js - keyword.URL, hxxp://rws.search.ke.voila.fr/RW/S/opensearch_orange?rdata=
Prefs.js - browser.search.selectedEngine, Orange

========================================

**** Google Chrome Version [13.0.782.215] ****

Extension\dhkplhfnhceodhffomolpfigojocbpcb (C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonChrome.crx) (x)
Extension\ihflimipbcaljfnojhhknppphnnciiif (C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.4\facemoods.crx) (?)

-- C:\Users\nadine\AppData\Local\Google\Chrome\User Data\Default --
Preferences - default_search_provider: "Bing" (Activé: true) (hxxp://www.bing.com/search?q={searchTerms}&mkt=fr-FR&form=MENTVV)
Preferences - homepage: hxxp://fr.msn.com/?ocid=iehp
Preferences - homepage_is_newtabpage: false
Plugin - Windows Live Photo Gallery (Activé: true) (C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll)
Plugin - "Windows Live Photo Gallery" (Activé: true)
Preferences - urls_to_restore_on_startup: hxxp://www.facebook.com/

========================================

**** Internet Explorer Version [9.0.8112.16421] ****

HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
HKCU_Main|Start Page - hxxp://fr.msn.com/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Start Page - hxxp://fr.msn.com/
HKLM_URLSearchHooks|{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} (x)
HKCU_SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A} - "Facemoods Search" (hxxp://start.facemoods.com/?a=wbst&s={searchTerms}&f=4)
HKCU_SearchScopes\{70D46D94-BF1E-45ED-B567-48701376298E} - "Google Desktop" (hxxp://127.0.0.1:4664/search&s=nNzBMTmGdn6fluCqe1rIwi6ZkTA?q={searchTerms})
HKCU_SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847} - "SweetIM Search" (hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms})
HKLM_SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847} - "SweetIM Search" (hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms})
HKCU_Toolbar\WebBrowser|{977AE9CC-AF83-45E8-9E03-E2798216E2D5} (C:\Program Files (x86)\IMinent Toolbar\tbcore3.dll) (x)
HKCU_Toolbar\WebBrowser|{D40B90B4-D3B1-4D6B-A5D7-DC041C1B76C0} (x)
HKLM_Toolbar|{8dcb7100-df86-4384-8842-8fa844297b3f} (C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll)
HKLM_Toolbar|{977AE9CC-AF83-45E8-9E03-E2798216E2D5} (C:\Program Files (x86)\IMinent Toolbar\tbcore3.dll) (x)
HKLM_Toolbar|{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} (x)
HKLM_Toolbar|{98889811-442D-49dd-99D7-DC866BE87DBC} (C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.5\BabylonToolbarTlbr.dll) (x)
HKLM_Toolbar|{DB4E9724-F518-4dfd-9C7C-78B52103CAB9} (C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.4\facemoodsTlbr.dll)
HKLM_Toolbar|{D3028143-6145-4318-99D3-3EDCE54A95A9} (C:\Program Files (x86)\Orange\ToolbarFR\ToolbarContainer101000315.dll)
HKCU_ElevationPolicy\{30E4B230-AC56-4D52-B19E-36E2C3A2804D} - C:\Users\nadine\AppData\Local\Hook Network\Raccourcis Internet Explorer 9\2.0.0.1\IE9PinnedSitesHelper.exe (Hook Network)
HKLM_ElevationPolicy\${ELV_GUID} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.5\BabylonToolbarsrv.exe (x)
HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\SysWOW64\wpcer.exe (x)
HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\SysWOW64\winfxdocobj.exe (x)
HKLM_ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291} - C:\Program Files (x86)\IMinent Toolbar\TbHelper2.exe (x)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files (x86)\Internet Explorer\iedw.exe (x)
HKLM_ElevationPolicy\{A6E2003F-95C5-4591-BA9A-0093080FDB5C} - C:\Program Files (x86)\Common Files\Oberon Media\OberonBroker\1.0.0.63\OberonBroker.exe (?)
HKLM_ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01} - C:\Windows\system32\TSWbPrxy.exe (x)
HKLM_ElevationPolicy\{B77902F8-6C76-42ED-85D6-C6E16CDD5270} - C:\Users\nadine\AppData\Local\Conduit\CT2724386\IncrediMail_MediaBar_2AutoUpdaterHelper.exe (x)
HKLM_ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08} - C:\Program Files (x86)\Iminent\MMServer\Iminent.MMServer.exe (x)
HKLM_ElevationPolicy\{FFDF9EF3-3C3A-4f05-9A6E-5D3B778EC567} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.4\facemoodssrv.exe (facemoods.com)
HKLM_Extensions\{F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - "Translate this web page with Babylon" (C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll,202)
BHO\{1CA1377B-DC1D-4A52-9585-6E06050FAC53} - "TmIEPlugInBHO Class" (C:\Program Files\Trend Micro\AMSP\Module\20004\1.5.1464\6.6.1081\TmIEPlg32.dll)
BHO\{2EECD738-5844-4a99-B4B6-146BF802613B} - "CescrtHlpr Object" (C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.5\bh\BabylonToolbar.dll) (x)
BHO\{58124A0B-DC32-4180-9BFF-E0E21AE34026} - "TBSB01620 Class" (C:\Program Files (x86)\IMinent Toolbar\tbcore3.dll) (x)
BHO\{64182481-4F71-486b-A045-B233BD0DA8FC} - "CescrtHlpr Object" (C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.4\bh\facemoods.dll)
BHO\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - "Search Helper" (C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll)
BHO\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - "Babylon IE plugin" (C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll) (x)
BHO\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A} - "IMinent WebBooster (BHO)" (C:\Program Files (x86)\Iminent\IMBooster4Web\Iminent.WebBooster.dll) (x)
BHO\{BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - "TmBpIeBHO Class" (C:\Program Files\Trend Micro\AMSP\Module\20002\6.6.1010\6.6.1010\TmBpIe32.dll)

========================================

C:\Program Files (x86)\Ad-Remover\Quarantine: 2578 Fichier(s)
C:\Program Files (x86)\Ad-Remover\Backup: 15 Fichier(s)

C:\Ad-Report-CLEAN[1].txt - 26/08/2011 16:25:38 (21370 Octet(s))
C:\Ad-Report-SCAN[1].txt - 26/08/2011 16:11:15 (23029 Octet(s))

Fin à: 16:31:47, 26/08/2011

============== E.O.F ==============
Utilisateur anonyme - 26 août 2011 à 16:47
0
Utile
desinstalle Facemoods

Télécharge ici :OTL

enregistre le sur ton Bureau.

si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...."


sur OTL.exe pour le lancer.

=> Clique ici pour voir la Configuration

▶Clic sur Analyse.

A la fin du scan, le Bloc-Notes va s'ouvrir avec le rapport (OTL.txt).

Ce fichier est sur ton Bureau (en général C:\Documents and settings\le_nom_de_ta_session\OTL.txt)

▶▶▶ NE LE POSTE PAS SUR LE FORUM (il est trop long)

Pour me le transmettre clique sur ce lien : http://www.cijoint.fr/

▶ Clique sur Parcourir et cherche le fichier ci-dessus.

▶ Clique sur Ouvrir.

▶ Clique sur "Cliquez ici pour déposer le fichier".

juste au niveau du bouton , en fin de chargement du fichier , Un lien de cette forme apparaitra :

http://www.cijoint.fr/cjlink.php?file=cjge368/cijSKAP5fU.txt

▶ Copie ce lien dans ta réponse.

▶▶ Tu feras la meme chose avec le "Extra.txt" qui logiquement sera aussi sur ton bureau.