libellule70

bonsoir: voici le lien http://cjoint.com/?DDxvBGPSuSg Encore merci pour votre aide SL

Rapport Malware http://www.cjoint.com/?DDwvBdv4yXD Rapport SFTG http://www.cjoint.com/?DDwvPyni5JG (2nd essai) Merci

1er rapport: http://www.cjoint.com/?DDvusKMWOiZ j espère que c'est OK Merci

re bonjour, rapport AdwCleaner: http://cjoint.com/?DDvkDTRE2kq

Bonjour et merci pour votre réponse Voici le rapport JRT: http://cjoint.com/?DDvkqmJXWm5 Je lance ADW cleaner A +

Bonjour, mon PC rame énormément... Pouvez vous m'aider? Voici le rapport ZHPdiag:http://www.cjoint.com/?DDujWmHJvXT Désolée, je ne suis pas parvenue à vous copier le lien.(malgré de nbx essais) merci

1er rapport: http://www.cjoint.com/?0KivGuB1lfo 2nd rapport: Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Version de la base de données: v2013.11.09.06 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 10.0.9200.16721 Sandrine :: LIBELLULE [administrateur] 09/11/2013 19:35:31 MBAM-log-2013-11-09 (21-52-21).txt Type d'examen: Examen complet (C:\|D:\|) Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM Options d'examen désactivées: P2P Elément(s) analysé(s): 513245 Temps écoulé: 2 heure(s), 12 minute(s), 22 seconde(s) Processus mémoire détecté(s): 2 C:\Users\Sandrine\AppData\Local\Lollipop\Lollipop.exe (Adware.LolliPop.IT) -> 2780 -> Aucune action effectuée. C:\Program Files (x86)\SaltarSmart\updateSaltarSmart.exe (PUP.Optional.SaltarSmart.A) -> 1944 -> Aucune action effectuée. Module(s) mémoire détecté(s): 0 (Aucun élément nuisible détecté) Clé(s) du Registre détectée(s): 6 HKCR\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3} (PUP.Optional.BrowseFox.A) -> Aucune action effectuée. HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{D99A4EC9-00BD-4FE4-85A5-4DB018351265} (PUP.Optional.SaltarSmart.A) -> Aucune action effectuée. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D99A4EC9-00BD-4FE4-85A5-4DB018351265} (PUP.Optional.SaltarSmart.A) -> Aucune action effectuée. HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\lollipop (Adware.LolliPop.IT) -> Aucune action effectuée. HKLM\SOFTWARE\Plus-HD-2.3 (PUP.Optional.PlusHD.A) -> Aucune action effectuée. HKLM\SYSTEM\CurrentControlSet\Services\Update SaltarSmart (PUP.Optional.SaltarSmart.A) -> Aucune action effectuée. Valeur(s) du Registre détectée(s): 1 HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|lollipop (Adware.LolliPop.IT) -> Données: "c:\users\sandrine\appdata\local\lollipop\lollipop.exe" lollipop -> Aucune action effectuée. Elément(s) de données du Registre détecté(s): 0 (Aucun élément nuisible détecté) Dossier(s) détecté(s): 2 C:\Users\Sandrine\AppData\Local\Lollipop (Adware.LolliPop.IT) -> Aucune action effectuée. C:\Program Files (x86)\Plus-HD-2.3 (PUP.Optional.PlusHD.A) -> Aucune action effectuée. Fichier(s) détecté(s): 44 C:\Program Files (x86)\Plus-HD-2.3\Plus-HD-2.3-bg.exe (PUP.Optional.PlusHD.A) -> Aucune action effectuée. C:\Program Files (x86)\Plus-HD-2.3\Plus-HD-2.3-bho.dll (PUP.Optional.PlusHD.A) -> Aucune action effectuée. C:\Program Files (x86)\Plus-HD-2.3\Plus-HD-2.3-buttonutil.exe (PUP.Optional.PlusHD.A) -> Aucune action effectuée. C:\Program Files (x86)\Plus-HD-2.3\Plus-HD-2.3-buttonutil64.exe (PUP.Optional.PlusHD.A) -> Aucune action effectuée. C:\Program Files (x86)\Plus-HD-2.3\Plus-HD-2.3-chromeinstaller.exe (PUP.Optional.PlusHD.A) -> Aucune action effectuée. C:\Program Files (x86)\Plus-HD-2.3\Plus-HD-2.3-codedownloader.exe (PUP.Optional.PlusHD.A) -> Aucune action effectuée. C:\Program Files (x86)\Plus-HD-2.3\Plus-HD-2.3-enabler.exe (PUP.Optional.PlusHD.A) -> Aucune action effectuée. C:\Program Files (x86)\Plus-HD-2.3\Plus-HD-2.3-firefoxinstaller.exe (PUP.Optional.PlusHD.A) -> Aucune action effectuée. C:\Program Files (x86)\Plus-HD-2.3\Plus-HD-2.3-updater.exe (PUP.Optional.PlusHD.A) -> Aucune action effectuée. C:\Program Files (x86)\Plus-HD-2.3\Uninstall.exe (PUP.Optional.PlusHD.A) -> Aucune action effectuée. C:\Program Files (x86)\Pricora\Pricora-helper.exe (PUP.Optional.CrossRider) -> Aucune action effectuée. C:\Program Files (x86)\SaltarSmart\bin\tmp1731.tmp (PUP.Optional.SaltarSmart.A) -> Aucune action effectuée. C:\Program Files (x86)\SaltarSmart\bin\plugins\SaltarSmart.FFUpdate.dll (PUP.Optional.SaltarSmart.A) -> Aucune action effectuée. C:\Program Files (x86)\SaltarSmart\bin\plugins\SaltarSmart.IEUpdate.dll (PUP.Optional.SaltarSmart.A) -> Aucune action effectuée. C:\Users\Sandrine\Desktop\Agathe\MP3\FreeAudioConverter_downloader_by_FreeAudioConverter.exe (PUP.Optional.Somoto) -> Aucune action effectuée. C:\Users\Sandrine\Downloads\FlvPlayerSetup.exe (PUP.Optional.InstallCore) -> Aucune action effectuée. C:\Users\Sandrine\Downloads\Java7(1).exe (PUP.Optional.DomaIQ) -> Aucune action effectuée. C:\Users\Sandrine\Downloads\Java7.exe (PUP.Optional.BundleInstaller.A) -> Aucune action effectuée. C:\Users\Sandrine\Downloads\PlayerPlusX.exe (Adware.Boxore) -> Aucune action effectuée. C:\Users\Sandrine\Downloads\rcpsetup_matomy_my61335 (1).exe (PUP.Optional.RegCleanerPro) -> Aucune action effectuée. C:\Users\Sandrine\Downloads\rcpsetup_matomy_my61335.exe (PUP.Optional.RegCleanerPro) -> Aucune action effectuée. C:\Users\Sandrine\Downloads\Setup (1).exe (PUP.Optional.Firseria) -> Aucune action effectuée. C:\Users\Sandrine\Downloads\Setup (2).exe (PUP.Optional.Firseria) -> Aucune action effectuée. C:\Users\Sandrine\Downloads\Setup.exe (PUP.Optional.Firseria) -> Aucune action effectuée. C:\Users\Sandrine\Downloads\VideoPerformerSetup (1).exe (Adware.InstallBrain) -> Aucune action effectuée. C:\Users\Sandrine\Downloads\VideoPerformerSetup.exe (Adware.InstallBrain) -> Aucune action effectuée. C:\Windows\Installer\1d1bc99.msi (PUP.Optional.SweetIM) -> Aucune action effectuée. C:\Windows\Installer\1d1bc9f.msi (PUP.Optional.SweetIM) -> Aucune action effectuée. C:\Windows\Installer\31789e.msi (PUP.Optional.Iminent.A) -> Aucune action effectuée. C:\Users\Sandrine\AppData\Local\Lollipop\lollipop.bat (Adware.LolliPop.IT) -> Aucune action effectuée. C:\Users\Sandrine\AppData\Local\Lollipop\logo.ico (Adware.LolliPop.IT) -> Aucune action effectuée. C:\Users\Sandrine\AppData\Local\Lollipop\Lollipop.exe (Adware.LolliPop.IT) -> Aucune action effectuée. C:\Users\Sandrine\AppData\Local\Lollipop\lollipop.lpd (Adware.LolliPop.IT) -> Aucune action effectuée. C:\Users\Sandrine\AppData\Local\Lollipop\lollipop_cfg.lpd (Adware.LolliPop.IT) -> Aucune action effectuée. C:\Users\Sandrine\AppData\Local\Lollipop\lollipop_ps.lpd (Adware.LolliPop.IT) -> Aucune action effectuée. C:\Program Files (x86)\SaltarSmart\updateSaltarSmart.exe (PUP.Optional.SaltarSmart.A) -> Aucune action effectuée. C:\Program Files (x86)\Plus-HD-2.3\33426.crx (PUP.Optional.PlusHD.A) -> Aucune action effectuée. C:\Program Files (x86)\Plus-HD-2.3\33426.xpi (PUP.Optional.PlusHD.A) -> Aucune action effectuée. C:\Program Files (x86)\Plus-HD-2.3\background.html (PUP.Optional.PlusHD.A) -> Aucune action effectuée. C:\Program Files (x86)\Plus-HD-2.3\Installer.log (PUP.Optional.PlusHD.A) -> Aucune action effectuée. C:\Program Files (x86)\Plus-HD-2.3\Plus-HD-2.3-buttonutil.dll (PUP.Optional.PlusHD.A) -> Aucune action effectuée. C:\Program Files (x86)\Plus-HD-2.3\Plus-HD-2.3-buttonutil64.dll (PUP.Optional.PlusHD.A) -> Aucune action effectuée. C:\Program Files (x86)\Plus-HD-2.3\Plus-HD-2.3-helper.exe (PUP.Optional.PlusHD.A) -> Aucune action effectuée. C:\Program Files (x86)\Plus-HD-2.3\Plus-HD-2.3.ico (PUP.Optional.PlusHD.A) -> Aucune action effectuée. A +

Merci beaucoup pour votre réponse Ci joint l'adresse pour le 1er scan: http://www.cjoint.com/?0KfuS4sNX47 par contre, je n'arrive pas, même en mode sans échec à faire le scan et nettoyage avec Adwcleaner Merci encore Sandrine

ci joint le rapport zhpdiag http://www.cjoint.com/?0Kdur4JEMPZ Pouvez vous m'aider svp? Merci

bonsoir, le lien pour le rapport adwcleaner:http://cjoint.com/?CItwxcZ6qhC je continue pour le reste...merci SL

Bonjour, serait il possible de m'aider à faire le ménage sur mon PC; ci-joint le lien du rapport ZHPDiag. Merci par avance SL

Merci pour vos réponses et votre efficacité. J'ai téléchargé Mozilla mais pas les options citées. Encore merci sandrine

Bonjour: ci joint le rapport demandé: Rapport de ZHPFix 2013.6.12.3 par Nicolas Coolman, Update du 12/06/2013 Fichier d'export Registre : C:\ZHP\ZHPExportRegistry-23-06-2013-13-43-38.txt Run by Sandrine at 23/06/2013 13:43:36 High Elevated Privileges : OK Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601) Corbeille vidée ========== Logiciel(s) ========== ABSENT Uninstall Process: c:\program files (x86)\advanced system protector\unins000.exe ABSENT Uninstall Process: c:\programdata\browserdefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\uninstall.exe ABSENT Uninstall Process: c:\program files (x86)\iminent\inst\bootstrapper\bootstrapper.exe SUPPRIME Iminent ABSENT Software Key: {C4ED781C-7394-4906-AAFF-D6AB64FF7C38} ABSENT Uninstall Process: c:\program files (x86)\delta\delta\1.8.21.5\guninstaller.exe ========== Processus mémoire ========== SUPPRIME Reboot Memory Process: C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.exe SUPPRIME Reboot Memory Process: C:\Users\Sandrine\AppData\Roaming\WebCake\WebCakeDesktop.exe SUPPRIME Memory Process: C:\Program Files (x86)\WebCake\WebCakeDesktop.Updater.exe ========== Clé(s) du Registre ========== SUPPRIME [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~B9F029BF_is1] SUPPRIME [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}] SUPPRIME [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP] SUPPRIME [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\delta] SUPPRIME Key: Service: BrowserDefendert SUPPRIME Key: Service: WebCake Desktop Updater SUPPRIME Key: HKCU\Software\AppDataLow\Software\LyricsFan SUPPRIME Key: HKCU\Software\BabSolution SUPPRIME Key*: HKCU\Software\DataMngr SUPPRIME Key*: HKCU\Software\DataMngr_Toolbar SUPPRIME Key: HKCU\Software\InstallCore ERREUR Key****: HKCU\Software\SweetIM SUPPRIME Key*: HKLM\Software\Wow6432Node\DataMngr SUPPRIME Key: HKLM\Software\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11} ABSENT Key: HKLM\Software\Wow6432Node\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11} SUPPRIME Key*: HKLM\Software\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA} SUPPRIME Key*: HKLM\Software\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09} SUPPRIME Key*: HKLM\Software\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49} SUPPRIME Key: HKLM\Software\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947} ABSENT Key: HKLM\Software\Wow6432Node\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947} SUPPRIME Key*: HKLM\Software\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460} ERREUR Key****: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9} SUPPRIME Key*: HKLM\Software\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920} SUPPRIME Key*: HKLM\Software\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3} SUPPRIME Key*: HKLM\Software\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861} SUPPRIME Key*: HKLM\Software\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065} SUPPRIME Key: HKLM\Software\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759} SUPPRIME Key*: HKLM\Software\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA} SUPPRIME Key*: HKLM\Software\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000} SUPPRIME Key*: HKLM\Software\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4} SUPPRIME Key*: HKLM\Software\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D} SUPPRIME Key*: HKLM\Software\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0} SUPPRIME Key: HKLM\Software\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} SUPPRIME Key: HKLM\Software\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} ABSENT Key: HKLM\Software\Wow6432Node\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921} SUPPRIME Key*: HKLM\Software\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C} SUPPRIME Key*: HKLM\Software\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9} SUPPRIME Key*: HKLM\Software\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08} SUPPRIME Key: HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199} SUPPRIME Key*: HKLM\Software\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4} SUPPRIME Key*: HKLM\Software\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C} SUPPRIME Key*: HKLM\Software\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37} SUPPRIME Key*: HKLM\Software\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0} SUPPRIME Key*: HKLM\Software\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003} SUPPRIME Key*: HKLM\Software\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4} SUPPRIME Key*: HKLM\Software\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D} SUPPRIME Key*: HKLM\Software\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5} SUPPRIME Key*: HKLM\Software\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A} SUPPRIME Key*: HKLM\Software\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D} SUPPRIME Key: HKLM\Software\Classes\TypeLib\{A9CAF365-EA35-45DA-BD8B-2EFA09D374AC} SUPPRIME Key*: HKLM\Software\Classes\Interface\{ACA608DB-A210-4253-B799-3FD24E9A7BF5} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{ACA608DB-A210-4253-B799-3FD24E9A7BF5} SUPPRIME Key*: HKLM\Software\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA} SUPPRIME Key*: HKLM\Software\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75} SUPPRIME Key: HKLM\Software\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D} ABSENT Key: HKLM\Software\Wow6432Node\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D} SUPPRIME Key*: HKLM\Software\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556} SUPPRIME Key*: HKLM\Software\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C} SUPPRIME Key*: HKLM\Software\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113} SUPPRIME Key*: HKLM\Software\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36} SUPPRIME Key*: HKLM\Software\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500} SUPPRIME Key*: HKLM\Software\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205} SUPPRIME Key*: HKLM\Software\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED} SUPPRIME Key*: HKLM\Software\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25} SUPPRIME Key: HKLM\Software\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800} SUPPRIME Key: HKLM\Software\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800} ABSENT Key: HKLM\Software\Wow6432Node\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800} SUPPRIME Key*: HKLM\Software\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D} SUPPRIME Key*: HKLM\Software\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3} SUPPRIME Key: HKLM\Software\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF} SUPPRIME Key*: HKLM\Software\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7} SUPPRIME Key*: HKLM\Software\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01} SUPPRIME Key: HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08} SUPPRIME Key*: HKLM\Software\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2} SUPPRIME Key*: HKLM\Software\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587} SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7FFA128C2B0FF414D805FC5627883401 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635 SUPPRIME Key*: HKLM\Software\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4} SUPPRIME Key*: HKLM\Software\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B} SUPPRIME Key*: HKLM\Software\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7} ABSENT Key: HKLM\Software\Wow6432Node\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7} SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\F479A18A22A86E3429341589FF57D81A SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9 ABSENT Key: HKCU\Software\DataMngr ABSENT Key: HKLM\Software\Wow6432Node\DataMngr ABSENT Key: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693} ABSENT Key: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP SUPPRIME Key: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP ABSENT Key: HKCU\Software\InstallCore SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75D5168E5E176C24981B4E5DBD991078 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8724E58E6C7D00C48A0D4F3345EB2C26 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB676B0E1B9EFA049B9F7DDDA9645734 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B31BBB0B825EDEF45AB0FE7099C68C81 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B471D8D7319336B4CA89374ED0D7B806 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC30043663AA2CA4DA1DAA9CA5FDCC75 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1C820A74ED67374BA048B52CB3C3804 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FDC83385E6C239F4C876A77A37DF581D SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\427EA997C413D1D47907CBFC7B2DB432 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F754C503375A13344B22388E18DFE87E SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\FA20CB7A821113A4CB8FA1E38E303D3B ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F1057DD419AED0B468AD8888429E139A ABSENT Key: HKCU\Software\AppDataLow\Software\LyricsFan ABSENT Key: HKLM\SYSTEM\CurrentControlSet\Services\WebCake Desktop Updater SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38} SUPPRIME Key: HKLM\Software\Wow6432Node\Google\Chrome\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\69D6A6B2ED56AF24EA6335EAD6E91CA4 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EDC790504E1834DBC20C9A04328FD2 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97C3D0F82E712E241A2F969F45E3351C SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9E7F556BF224D804D96A96F0F6344789 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BF4F885EDEE45644EB1E0C99E0162399 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE21F3FD57B244142880EF15A165A156 ABSENT Key: \Software\Classes\Installer\Products\\CC5757DD500522B4E82760736F0CC185 ABSENT Key: Service: BrowserDefendert ABSENT Key: Service: WebCake Desktop Updater SUPPRIME Key: Service: McComponentHostService SUPPRIME Key*: HKLM\Software\DomaIQ SUPPRIME Key*: HKLM\Software\Tarma Installer ERREUR Key****: SearchScopes :{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5 SUPPRIME Key*: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2 SUPPRIME Key: HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{348C2DF3-1191-4C3E-92A6-B3A89A9D9C85} SUPPRIME Key: HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} ABSENT Key: HKLM\Software\Wow6432Node\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} SUPPRIME Key: HKLM\Software\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D} SUPPRIME Key: HKLM\Software\Classes\TypeLib\{39CB8175-E224-4446-8746-00566302DF8D} ABSENT Key: HKLM\Software\Wow6432Node\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D} SUPPRIME Key: HKLM\Software\Classes\TypeLib\{4599D05A-D545-4069-BB42-5895B4EAE05B} ========== Valeur(s) du Registre ========== SUPPRIME RunValue: WebCake Desktop ABSENT RunValue: WebCake Desktop ABSENT {49F5888C-5EF2-487A-B66B-3CA7F5A90EC9} ABSENT {9A23C152-BADA-4B8F-9652-216E52ADDE5F} ABSENT [HKCU\Software\Microsoft\Windows\CurrentVersion\Run]:WebCake Desktop ABSENT [HKCU\Software\f4de8cb13dbd46]:GUID="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" ABSENT [HKLM\Software\Wow6432Node\f4de8cb13dbd46]:GUID="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" ABSENT Valeur Standard Profile: FirewallRaz : ABSENT Valeur Domain Profile: FirewallRaz : SUPPRIME FirewallRaz (None) : {6CE80A18-551E-47FA-9C45-1C6D34BEC6CD} SUPPRIME FirewallRaz (Domain) : {A93E8C87-12B1-44E3-BE7F-47DFCED7C2B5} SUPPRIME FirewallRaz (Domain) : {18EE497B-1357-4B8A-853D-4B4D7728FE78} SUPPRIME FirewallRaz (Public) : {3BF67A32-D8AA-4C97-A0B4-62F28B57C70E} SUPPRIME FirewallRaz (Public) : {13199CC6-18E9-4177-A757-74251E6CE0FB} SUPPRIME FirewallRaz (Domain) : {8E0CCC22-126A-42D7-928C-C3F944552066} SUPPRIME FirewallRaz (Domain) : {DEC6F58A-50AC-4FCB-ACA7-7B1AAD22131A} SUPPRIME FirewallRaz (Domain) : {172B2A1C-BA39-4EC7-ACAF-4091A23A1691} SUPPRIME FirewallRaz (Domain) : {FF47A985-DF12-42DF-8E58-F4A38A6E7AB1} SUPPRIME FirewallRaz (Public) : {231A58CC-0268-4E3C-BF8A-90D1987E11F9} SUPPRIME FirewallRaz (Public) : {7F09D6D8-D350-41DB-82C3-ACB36370EC28} SUPPRIME FirewallRaz (Public) : {FAB3CE5C-A674-4C40-A952-2FB899E6AA4F} SUPPRIME FirewallRaz (Public) : {3DFBFD4B-3740-402F-978E-0BF4C5A293D7} ProxyFix : Configuration proxy supprimée avec succès SUPPRIME ProxyServer Value SUPPRIME ProxyEnable Value SUPPRIME EnableHttp1_1 Value SUPPRIME ProxyHttp1.1 Value SUPPRIME ProxyOverride Value ========== Dossier(s) ========== SUPPRIME Folder: C:\Users\Sandrine\AppData\Local\{13470204-2753-4945-B1C3-1DEE7E582AFF} SUPPRIME Folder: C:\Users\Sandrine\AppData\Local\{189E46A4-D491-4B68-9E06-B609377E3E08} ========== Fichier(s) ========== SUPPRIME File***: c:\program files (x86)\webcake\webcakedesktop.updater.exe SUPPRIME Reboot c:\users\sandrine\appdata\roaming\mozilla\firefox\profiles\wpyc8akb.default\searchplugins\babylon.xml SUPPRIME File: c:\users\sandrine\appdata\roaming\webcake\webcakedesktop.exe ABSENT File: c:\users\sandrine\appdata\roaming\webcake\webcakedesktop.exe SUPPRIME Reboot c:\programdata\browserdefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\browserdefender.exe ABSENT File: c:\program files (x86)\webcake\webcakedesktop.updater.exe ABSENT Folder/File: c:\users\sandrine\appdata\roaming\igdhbblpcellaljokkpfhcjlagemhgjl\minibarchrome.exe SUPPRIME File: c:\windows\sysnative\roboot64.exe ABSENT File: c:\windows\system32\roboot64.exe SUPPRIME File: c:\windows\prefetch\optproreminder.exe-4ccc2557.pf SUPPRIME File: c:\windows\prefetch\advancedsystemprotector.exe-3139f283.pf SUPPRIME File: c:\windows\prefetch\optprosmartscan.exe-867a28c5.pf SUPPRIME File: c:\windows\prefetch\tuto4pc_fr_38.exe-8be0e621.pf ABSENT File: c:\users\sandrine\appdata\roaming\webcake\dat\desktop.os.dll ABSENT File: c:\users\sandrine\appdata\roaming\igdhbblpcellaljokkpfhcjlagemhgjl\minibarchrome.exe ABSENT Folder/File: c:\program files (x86)\iminent ABSENT Folder/File: c:\programdata\microsoft\windows\start menu\programs\iminent ABSENT Folder/File: c:\users\sandrine\appdata\roaming\webcake SUPPRIME File: C:\Users\Sandrine\AppData\Roaming\Mozilla\Firefox\Profiles\wpyc8akb.default\bprotector_extensions.sqlite SUPPRIME File*: c:\users\sandrine\appdata\roaming\mozilla\firefox\profiles\wpyc8akb.default\bprotector_extensions.sqlite SUPPRIME File: C:\Users\Sandrine\AppData\Roaming\Mozilla\Firefox\Profiles\wpyc8akb.default\bprotector_prefs.js SUPPRIME File*: c:\users\sandrine\appdata\roaming\mozilla\firefox\profiles\wpyc8akb.default\bprotector_prefs.js SUPPRIME File: c:\users\sandrine\desktop\excel 2007 - raccourci.lnk ABSENT File: f:\excel 2007.pdf (.not file.) SUPPRIME File: c:\users\sandrine\desktop\mvi_0013 - raccourci.lnk ABSENT File: f:\dcim\204___09\mvi_0013.mov (.not file.) SUPPRIME File: c:\users\sandrine\desktop\mvi_0015 - raccourci.lnk ABSENT File: f:\dcim\204___09\mvi_0015.mov (.not file.) SUPPRIME File: c:\users\sandrine\desktop\mvi_0017 - raccourci.lnk ABSENT File: f:\dcim\204___09\mvi_0017.mov (.not file.) SUPPRIME File: c:\users\sandrine\desktop\mvi_0028 - raccourci.lnk ABSENT File: f:\dcim\204___09\mvi_0028.mov (.not file.) SUPPRIME File: c:\users\sandrine\desktop\recentplaces.lnk SUPPRIME File: c:\windows\tasks\reclaimerupdatefiles_sandrine.job SUPPRIME File: c:\windows\tasks\reclaimerupdatexml_sandrine.job SUPPRIME File: c:\windows\tasks\registrybooster.job SUPPRIME File: c:\windows\tasks\rnupgradehelperlogonprompt_sandrine.job SUPPRIME File: c:\windows\prefetch\crashrep.exe-de9ee928.pf SUPPRIME File: c:\windows\prefetch\upt4pc_fr_38.exe-bfc872d0.pf SUPPRIME File: c:\windows\prefetch\qlbctrl.exe-f27cbe6c.pf SUPPRIME File: c:\windows\prefetch\hiddata.exe-8b1f9a63.pf SUPPRIME File: c:\program files (x86)\mcafee security scan\3.0.318\mcchsvc.exe SUPPRIME File: c:\users\sandrine\appdata\roaming\mozilla\firefox\profiles\wpyc8akb.default\searchplugins\delta.xml SUPPRIME Flash Cookies SUPPRIME Temporaires Windows ========== Tache planifiée ========== SUPPRIME Task: Advanced System Protector_startup SUPPRIME Task: FinishInstall igdhbblpcellaljokkpfhcjlagemhgjl SUPPRIME Task: EPUpdater SUPPRIME Task: {4B5CD6A7-710D-46E0-981E-34F6772DD4EC} SUPPRIME Task: {A3D38AE6-7393-40CA-AFF1-1E6A86887FED} SUPPRIME Task: {D328B4E7-589A-4743-A344-265ABE393FB7} SUPPRIME Task: Scheduled Update for Ask Toolbar ========== Restauration Système ========== Point de restauration du système créé avec succès ========== Récapitulatif ========== 3 : Processus mémoire 237 : Clé(s) du Registre 28 : Valeur(s) du Registre 2 : Dossier(s) 45 : Fichier(s) 6 : Logiciel(s) 7 : Tache planifiée 1 : Restauration Système End of clean in 03mn 07s ========== Chemin de fichier rapport ========== C:\ZHP\ZHPFix[R1].txt - 23/06/2013 13:43:38 [32031]

Bonsoir, j'ai refait un scan avec dhpdiag dont voici le lien. J'ai bien refait toute la procédure comme indiquée mais ma très mince connaissance en informatique explique sans doute mes ratés, alors mille excuses! pjjoint.malekal.com - Submit a file

autre lien pour ZHPDIAG txt: pjjoint.malekal.com - Submit a file

reponse 4eme point: scan zhpdiag:http://pjjoint.malekal.com/files.php?id=ZHPDiag_20130621_s6n13u7t9e11

rapport MBAM: Malwarebytes Anti-Malware (Essai) 1.75.0.1300 www.malwarebytes.org Version de la base de données: v2013.06.21.02 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 10.0.9200.16618 Sandrine :: LIBELLULE [administrateur] Protection: Activé 21/06/2013 13:49:41 mbam-log-2013-06-21 (13-49-41).txt Type d'examen: Examen complet (C:\|D:\|) Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM Options d'examen désactivées: P2P Elément(s) analysé(s): 500433 Temps écoulé: 1 heure(s), 48 minute(s), 24 seconde(s) Processus mémoire détecté(s): 0 (Aucun élément nuisible détecté) Module(s) mémoire détecté(s): 0 (Aucun élément nuisible détecté) Clé(s) du Registre détectée(s): 1 HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\SYSHOST32 (Trojan.Agent) -> Mis en quarantaine et supprimé avec succès. Valeur(s) du Registre détectée(s): 1 HKLM\SYSTEM\CurrentControlSet\Services\syshost32|ImagePath (Trojan.Agent) -> Données: "C:\Windows\Installer\{9862F681-AB76-77EC-543A-7E7734210405}\syshost.exe" /service -> Mis en quarantaine et supprimé avec succès. Elément(s) de données du Registre détecté(s): 0 (Aucun élément nuisible détecté) Dossier(s) détecté(s): 0 (Aucun élément nuisible détecté) Fichier(s) détecté(s): 0 (Aucun élément nuisible détecté) (fin)

Voilà déjà 3 liens suivant les points 1 et 2. Reste encore le téléchargement point 3) MBAM et suivant pjjoint.malekal.com - Submit a file pjjoint.malekal.com - Submit a file pjjoint.malekal.com - Submit a file

Nouvelle tentative pour vous poster le lien du scan....MERCI pjjoint.malekal.com - Submit a file

Je n'ai pas réussi à vous envoyer un lien d'où la copie du rapport. j'espère que cela sera satisfaisant pour pour pouvoir me venir en aide. Merci sandrine ~ User Name: Sandrine ~ All Users Names: Sandrine, Administrateur, ~ Unselected Option: None Logged in as Administrator ---\\ Environnement Variables ~ System Unit : C:\ ~ %AppData% : C:\Users\Sandrine\AppData\Roaming\ ~ %Desktop% : C:\Users\Sandrine\Desktop\ ~ %Favorites% : C:\Users\Sandrine\Favorites\ ~ %LocalAppData% : C:\Users\Sandrine\AppData\Local\ ~ %StartMenu% : C:\Users\Sandrine\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\System32\ ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 181 Go of 285 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 2 Go of 13 Go) E:\ CD-ROM drive (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified ~ Security Center: 32 Legitimates Filtered in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808] [MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024] [MD5.12716D987D475B051F35895659159705] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.17/05/2013 - 01:59:03.) -- C:\Windows\System32\wininet.dll [2241024] [MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.20/11/2010 - 14:25:30.) -- C:\Windows\System32\Winlogon.exe [390656] [MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 14:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448] [MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:24.) -- C:\Windows\system32\Drivers\AFD.sys [498688] [MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128] [MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160] [MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456] [MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400] [MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368] [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472] [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224] [MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208] [MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\Drivers\netBT.sys [261632] [MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.12/04/2013 - 15:45:08.) -- C:\Windows\system32\Drivers\ntfs.sys [1656680] [MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280] [MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536] [MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184] [MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:56.) -- C:\Windows\system32\Drivers\tdx.sys [119296] [MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808] ~ Generic Processes: Scanned in 00mn 00s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 1/205 ~ Mes musiques (My Musics) : 1/49 ~ Mes Videos (My Videos) : 1/13 ~ Mes Favoris (My Favorites) : 1/53 ~ Mes Documents (My Documents) : 11/7902 ~ Mon Bureau (My Desktop) : 1/6645 ~ Menu demarrer (Programs) : 1/28 ~ Hidden Files: Scanned in 00mn 06s ---\\ Processus lancés [MD5.C16EDEA635300AC0EE58E182A04D71B6] - (.Systweak - Advanced System Protector.) -- C:\Program Files (x86)\Advanced System Protector\AdvancedSystemProtector.exe [6563184] [PID.2072] =>PUP.AdvancedSystemProtector [MD5.2798942CAA300C48F3265F1B30DC9F73] - (...) -- C:\Users\Sandrine\AppData\Local\tuto4pc_fr_38\upt4pc_fr_38.exe [2082664] [PID.3000] =>PUP.Eorezo [MD5.596C3DD487001E237CCE431EAE6F3EA0] - (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1689144] [PID.2952] [MD5.CCF2234A35077CA217A61C9CACC48198] - (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392] [PID.2964] [MD5.672593A4AAAB8DC8C0A5C4C1AD0A6048] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [18680424] [PID.2936] [MD5.D44741F65A1D71F65814A12CF6E2400A] - (.Microsoft Corporation - Run Once Wrapper.) -- C:\Windows\SysWOW64\runonce.exe [50688] [PID.2912] [MD5.D06276D4CAD46CDCEABEFDEB1A0D3C0D] - (...) -- C:\Program Files (x86)\Microsoft Office\Office\OSA.exe [51984] [PID.1116] [MD5.0771A5C3B78967F9F83C1C429334AD2A] - (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe [320056] [PID.2836] [MD5.6D0F349389E870340EB7374FC4373DE3] - (.PC Utilities Pro - Optimizer Pro Smart Scan.) -- C:\Program Files (x86)\Optimizer Pro\OptProSmartScan.exe [418808] [PID.1916] =>PUP.OptimizerPro [MD5.BD713579A87D698E1F2158CE10E48130] - (.McAfee, Inc. - McAfee Security Scanner Scheduler.) -- C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe [272248] [PID.3084] [MD5.314D2D706D60550B70F08CA96D3AEC15] - (.Microsoft Corporation - Microsoft Recherche accélérée.) -- C:\Program Files (x86)\Microsoft Office\Office\FINDFAST.exe [111376] [PID.3108] [MD5.FE11502309C6935B9A8201C5C6D9A386] - (.PC Utilities Pro - Optimizer Pro Speed Guard.) -- C:\Program Files (x86)\Optimizer Pro\OptProReminder.exe [903160] [PID.3140] =>PUP.OptimizerPro [MD5.5516C26A6AF8EB4E2CAB48EC98A74398] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe [54576] [PID.3172] [MD5.32C26797AB646074A2BB562F9D10ADB5] - (.Microsoft Corporation - Microsoft Office OneNote Quick Launcher.) -- C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.exe [97680] [PID.3180] [MD5.4E165B34780FF2D1B405F29E3FA68DF2] - (.Apple Computer, Inc. - Pas de description.) -- C:\Program Files (x86)\QuickTime\qttask.exe [77824] [PID.3196] [MD5.869513CA8428F231C7CAC62A6F9B974A] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [274608] [PID.3292] [MD5.48BE298F7FD1BEF4D8FBACB04D8D95C4] - (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576] [PID.3316] [MD5.83170B8E03213093B065A9638E146499] - (.OpenOffice.org - OpenOffice.org 3.1.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe [7424000] [PID.3428] [MD5.B508A4EE516D905730458BB50B79979B] - (.CyberLink - CyberLink MediaLibray Service.) -- c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [206120] [PID.3528] [MD5.682A19CEA431A29D0B5A931332ADBC2A] - (.CyberLink Corp. - HP MediaSmart TV Resident Program.) -- c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe [427304] [PID.3548] [MD5.C65B115A03DB0260895DE96681E88221] - (.CyberLink Corp. - HP DVDSmart Resident Program.) -- c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe [128296] [PID.3572] [MD5.873867A02F0E83F18CF871E776B651DC] - (.OpenOffice.org - OpenOffice.org 3.1.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin [7418368] [PID.3628] [MD5.0DE3C7622EC33126579B1742260F08C2] - (.Pas de propriétaire - HpqToaster Module.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe [632888] [PID.5088] [MD5.07DFD28E57879554D054464EE4A5662D] - (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\IEXPLORE.exe [770648] [PID.848] [MD5.612AF40F6F45DEFC00F68E868B75927A] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [7518208] [PID.4444] [MD5.E41F55D0B71734BB68FF26963EB250E4] - (.Avira Operations GmbH & Co. KG - Avira Scheduler.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [86752] [PID.1444] [MD5.880AE0BEDE234F27AC252049373B8CB9] - (.Avira Operations GmbH & Co. KG - Avira On-Access Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [110816] [PID.1640] [MD5.83D8BE94E1CBCBE2EA8372DB1A95A159] - (.Hewlett-Packard Company - LightScribe Service.) -- C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728] [PID.1792] [MD5.9B7EDD3FE7C211C36E921D34D18A3A0A] - (.Hewlett-Packard Company - HP Software Framework WMI Service.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [1001376] [PID.3596] [MD5.F9A79C5B27037821112C50A9C8FB367A] - (.Hewlett-Packard Development Company, L.P. - Com for QLB application.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [228408] [PID.4676] ~ Processes Running: Scanned in 00mn 01s ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Users\Sandrine\AppData\Local\Google\Chrome\User Data\Default\Preferences G1 - GCS: Preference [user Data\Default] Delta Search =>Toolbar.DeltaSearch G0 - GCSP: Preference [user Data\Default][HomePage] Delta Search =>Toolbar.DeltaSearch G0 - GCSP: Preference [user Data\Default] Delta Search =>Toolbar.DeltaSearch ~ Google Browser: 10 Legitimates Filtered in 00mn 10s ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) C:\Users\Sandrine\AppData\Roaming\Mozilla\Firefox\Profiles\wpyc8akb.default\prefs.js C:\Users\Sandrine\AppData\Roaming\Mozilla\Firefox\Profiles\wpyc8akb.default\user.js M3 - MFPP: Plugins - [sandrine] -- C:\Users\Sandrine\AppData\Roaming\Mozilla\Firefox\Profiles\wpyc8akb.default\searchplugins\amazon.xml M3 - MFPP: Plugins - [sandrine] -- C:\Users\Sandrine\AppData\Roaming\Mozilla\Firefox\Profiles\wpyc8akb.default\searchplugins\babylon.xml =>Toolbar.Babylon M3 - MFPP: Plugins - [sandrine] -- C:\Users\Sandrine\AppData\Roaming\Mozilla\Firefox\Profiles\wpyc8akb.default\searchplugins\BrowserDefender.xml M3 - MFPP: Plugins - [sandrine] -- C:\Users\Sandrine\AppData\Roaming\Mozilla\Firefox\Profiles\wpyc8akb.default\searchplugins\delta.xml M0 - MFSP: prefs.js [sandrine - wpyc8akb.default] r_pref("browser.startup.homepage", ); ~ Firefox Browser: 7 Legitimates Filtered in 00mn 00s ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = Recherche Web R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = Recherche Web R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.searchs.at/keyword/ R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = Recherche Web ~ IE Browser: 18 Legitimates Filtered in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Proxy management: Scanned in 00mn 00s ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: Shell=C:\Windows\explorer.exe F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe ~ Keys: Scanned in 00mn 00s ---\\ Redirection du fichier Hosts (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Hosts File: Scanned in 00mn 00s ~ Nombre de lignes (Lines number): 21 ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [synTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.) O4 - HKLM\..\Run: [sysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe O4 - HKLM\..\Run: [smartMenu] . (.Pas de propriétaire - SmartMenu.) -- C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jusched.exe O4 - HKLM\..\Run: [Zune Launcher] . (.Microsoft Corporation - Zune Auto-Launcher.) -- C:\Program Files\Zune\ZuneLauncher.exe O4 - HKCU\..\Run: [HPADVISOR] . (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe O4 - HKCU\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe O4 - HKCU\..\Run: [skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe O4 - HKCU\..\Run: [Optimizer Pro] . (.PC Utilities Pro - Fix, clean, optimize your PC!.) -- C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe =>PUP.OptimizerPro O4 - HKLM\..\Wow6432Node\Run: [startCCC] . (.Advanced Micro Devices, Inc. - Catalyst® Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe O4 - HKLM\..\Wow6432Node\Run: [HPCam_Menu] . (.CyberLink Corp. - MUI StartMenu Application.) -- c:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe O4 - HKLM\..\Wow6432Node\Run: [QlbCtrl.exe] . (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe O4 - HKLM\..\Wow6432Node\Run: [NortonOnlineBackupReminder] . (.Symantec Corporation - Norton Online Backup Service.) -- C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe O4 - HKLM\..\Wow6432Node\Run: [updatePRCShortCut] . (.CyberLink Corp. - MUI StartMenu Application.) -- C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Wow6432Node\Run: [QuickTime Task] . (.Apple Computer, Inc. - Pas de description.) -- C:\Program Files (x86)\QuickTime\qttask.exe O4 - HKLM\..\Wow6432Node\Run: [WirelessAssistant] . (.Hewlett-Packard Company - HP Wireless Assistant Main Program.) -- C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe O4 - HKLM\..\Wow6432Node\Run: [GrooveMonitor] . (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe O4 - HKLM\..\Wow6432Node\Run: [TkBellExe] . (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe O4 - HKLM\..\Wow6432Node\Run: [File Helper] . (...) -- C:\Program Files (x86)\File Helper\File Helper.lnk O4 - HKLM\..\Wow6432Node\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Avira System Tray Tool.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe O4 - HKLM\..\Wow6432Node\Run: [sunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe O4 - HKLM\..\Wow6432Node\Run: [tuto4pc_fr_38] . (...) -- C:\Program Files (x86)\tuto4pc_fr_38\tuto4pc_fr_38.exe =>PUP.Eorezo O4 - HKLM\..\Wow6432Node\RunOnce: [upt4pc_fr_38.exe] . (...) -- C:\Users\Sandrine\AppData\Local\tuto4pc_fr_38\upt4pc_fr_38.exe =>PUP.Eorezo O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-18\..\RunOnce: [sPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\SPReview.exe O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe O4 - HKUS\S-1-5-21-3933655399-2729820723-1281721731-1000\..\Run: [HPADVISOR] . (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe O4 - HKUS\S-1-5-21-3933655399-2729820723-1281721731-1000\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe O4 - HKUS\S-1-5-21-3933655399-2729820723-1281721731-1000\..\Run: [skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe O4 - HKUS\S-1-5-21-3933655399-2729820723-1281721731-1000\..\Run: [Optimizer Pro] . (.PC Utilities Pro - Fix, clean, optimize your PC!.) -- C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe =>PUP.OptimizerPro ~ Application: Scanned in 00mn 00s ---\\ Autres liens utilisateurs (O4) O4 - GS\TaskBar: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O4 - GS\TaskBar: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\TaskBar: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe O4 - GS\TaskBar: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\QuickLaunch: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe O4 - GS\QuickLaunch: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\QuickLaunch: QuickTime Player.lnk . (.Apple Computer, Inc. - QuickTime Player Application.) -- C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\Accessories: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) -- C:\Windows\system32\eudcedit.exe O4 - GS\SendTo: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe O4 - GS\SendTo: Skype.lnk . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe O4 - GS\Desktop: COURS RISQUE BIO - Raccourci.lnk . (...) -- C:\Users\Sandrine\Desktop\COURS RISQUE BIO.pdf O4 - GS\Desktop: Effets_des_agents_pathog-nes_sur_les_-tres_vivants[1] - Raccourci.lnk . (...) -- C:\Users\Sandrine\Documents\Risque Bio\Effets_des_agents_pathog-nes_sur_les_-tres_vivants[1].pptx O4 - GS\Desktop: excel 2007 - Raccourci.lnk . (...) -- F:\excel 2007.pdf (.not file.) O4 - GS\Desktop: Gestion des EPI RT [Mode de compatibilité] - Raccourci.lnk . (...) -- C:\Users\Sandrine\Documents\BIBLIO NOUAILLE\BIBLIO RCH\Gestion des EPI RT [Mode de compatibilité].pdf O4 - Global Startup: C:\Users\Sandrine\Desktop\Google.url . (...) -- C:\Users\Sandrine\Desktop\Google.url O4 - GS\Desktop: LE RISQUE BIOLOGIQUE SL - Raccourci.lnk . (...) -- C:\Users\Sandrine\Documents\Risque Bio\LE RISQUE BIOLOGIQUE SL (2).pptx O4 - GS\Desktop: Microsoft Office PowerPoint 2007.lnk . (...) -- C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe O4 - GS\Desktop: MVI_0013 - Raccourci.lnk . (...) -- F:\DCIM\204___09\MVI_0013.MOV (.not file.) O4 - GS\Desktop: MVI_0015 - Raccourci.lnk . (...) -- F:\DCIM\204___09\MVI_0015.MOV (.not file.) O4 - GS\Desktop: MVI_0017 - Raccourci.lnk . (...) -- F:\DCIM\204___09\MVI_0017.MOV (.not file.) O4 - GS\Desktop: MVI_0028 - Raccourci.lnk . (...) -- F:\DCIM\204___09\MVI_0028.MOV (.not file.) O4 - GS\Desktop: PhotoFiltre Studio X.lnk . (.PhotoFiltre - PhotoFiltre Studio X.) -- C:\Program Files (x86)\PhotoFiltre Studio X\pfstudiox.exe O4 - GS\Desktop: PHOTOS - Raccourci.lnk . (...) -- C:\Users\Sandrine\Documents\PHOTOS ~ Global Startup: Scanned in 00mn 00s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{A2296DCF-5268-4F5D-B474-6FAED251136C}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{A2296DCF-5268-4F5D-B474-6FAED251136C}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{A2296DCF-5268-4F5D-B474-6FAED251136C}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 ~ Domain: Scanned in 00mn 00s

Bonsoir, scan rapport:ZHPdiag_20111205_k13q14k10q5q13 J'espère ne pas m'être trompée Cordialement Sandrine

Bonjour, mon ordinateur portable est infecté (dès que j'ouvre une session internet, des sites s'ouvrent et défilent sans arrêt). Pouvez vous m'aider? Je ne suis pas une grande spécialiste en informatique donc tous vos conseils seront les bienvenus...... Merci Sandrine