Rapport de ZHPFix 2014.9.16.7 par Nicolas Coolman, Update du 16/09/2014 Fichier d'export Registre : Run by Kévin at 23.09.2014 21:08:21 High Elevated Privileges : OK Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601) Corbeille vidée (00mn 43s) Dossier Prefetcher vidé Réparation des raccourcis navigateur ========== Logiciels ========== SUPPRIMÉ: JuraTax 2013 SUPPRIMÉ: BrowserProtect ABSENT Uninstall Process: c:\program files (x86)\eazelbar\uninstall.exe ABSENT Uninstall Process: c:\windows\syswow64\wnlt\installation\uninstall\uninstallerlauncher.exe ABSENT Uninstall Process: c:\program files (x86)\incredibar.com\incredibar\1.5.11.14\uninstall.exe SUPPRIMÉ: QuickShare SUPPRIMÉ: SoftwareUpdater SUPPRIMÉ: VIO Player version 1.0.1 ABSENT Uninstall Process: c:\program files (x86)\mcafee security scan\uninstall.exe SUPPRIMÉ: µTorrent ABSENT Uninstall Process: c:\users\kévin\appdata\roaming\babsolution\shared\guninstaller.exe ABSENT Uninstall Process: c:\program files (x86)\glarysoft toolbar\uninstaller.exe SUPPRIMÉ: Google Toolbar for Internet Explorer ========== Processus mémoire ========== SUPPRIMÉ: Memory Process: C:\Users\Kévin\AppData\Roaming\Yontoo\YontooDesktop.exe ========== Clés du Registre ========== SUPPRIMÉ Logiciel Key: [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\EazelBar] SUPPRIMÉ Logiciel Key: [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WNLT] SUPPRIMÉ Logiciel Key: [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\incredibar] SUPPRIMÉ Logiciel Key: [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\McAfee Security Scan] SUPPRIMÉ Logiciel Key: [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar] SUPPRIMÉ Logiciel Key: [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Glarysoft Toolbar] SUPPRIMÉ: [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{18455581-E099-4BA8-BC6B-F34B2F06600C}] SUPPRIMÉ: CLSID BHO: {6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99} SUPPRIMÉ: CLSID BHO: {A7AF277D-1466-4A7B-93AF-B043984A5671} SUPPRIMÉ: CLSID BHO: {FD6D90C0-E6EE-4BC6-B9F7-9ED319698007} SUPPRIMÉ: CLSID BHO: {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} SUPPRIMÉ: CLSID BHO: {FE478DC2-E4AD-4197-8F80-5E456BEBC57F} SUPPRIMÉ: [HKLM\SOFTWARE\Classes\CLSID\{FE478DC2-E4AD-4197-8F80-5E456BEBC57F}] SUPPRIMÉ: [HKLM\SOFTWARE\Classes\CLSID\{ae07101b-46d4-4a98-af68-0333ea26e113}] SUPPRIMÉ: [HKLM\SOFTWARE\Classes\CLSID\{EBD839AE-B08C-4fb7-859B-F54AF16C159F}] SUPPRIMÉ: Service: CltMngSvc SUPPRIMÉ: Service: Updater Service for EazelBar SUPPRIMÉ: HKCU\Software\AppDataLow\Software\AutoLyrics SUPPRIMÉ: HKCU\Software\AppDataLow\Software\LyricStar SUPPRIMÉ: HKCU\Software\BabylonToolbar SUPPRIMÉ:* HKCU\Software\DataMngr SUPPRIMÉ:* HKCU\Software\DataMngr_Toolbar SUPPRIMÉ: HKCU\Software\EazelBar SUPPRIMÉ: HKCU\Software\Smartbar SUPPRIMÉ: HKCU\Software\SweetIM SUPPRIMÉ: HKCU\Software\e0dbdcb33de415 SUPPRIMÉ:* HKLM\Software\IB Updater SUPPRIMÉ:* HKLM\Software\Speedchecker Limited SUPPRIMÉ:* HKLM\Software\SweetIM SUPPRIMÉ:* HKLM\Software\Tarma Installer SUPPRIMÉ: HKLM\Software\Wow6432Node\Babylon SUPPRIMÉ:* HKLM\Software\Wow6432Node\DataMngr SUPPRIMÉ: HKLM\Software\Wow6432Node\Incredibar.com SUPPRIMÉ: HKLM\Software\Wow6432Node\Vittalia SUPPRIMÉ: SearchScopes :{006ee092-9658-4fd6-bd8e-a21a348e59f5} SUPPRIMÉ: SearchScopes :{CFF4DB9B-135F-47c0-9269-B4C6572FD61A} SUPPRIMÉ:* HKLM\SOFTWARE\Microsoft\Tracing\srvBrowserProtect_RASAPI32 SUPPRIMÉ:* HKLM\SOFTWARE\Microsoft\Tracing\srvBrowserProtect_RASMANCS SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\biclient_RASAPI32 SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\biclient_RASMANCS SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\conduitinstaller_RASAPI32 SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\conduitinstaller_RASMANCS SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ExtensionUpdaterService_RASAPI32 SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ExtensionUpdaterService_RASMANCS SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\IncredibarToolbar_RASAPI32 SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\IncredibarToolbar_RASMANCS SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\incredibar_installer_RASAPI32 SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\incredibar_installer_RASMANCS SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\LatestDLMgr_RASAPI32 SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\LatestDLMgr_RASMANCS SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\QuickShare_RASAPI32 SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\QuickShare_RASMANCS SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SmartbarExeInstaller_RASAPI32 SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SmartbarExeInstaller_RASMANCS SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\YontooDesktop_RASAPI32 SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\YontooDesktop_RASMANCS SUPPRIMÉ: Service: Yontoo Desktop Updater SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FE478DC2-E4AD-4197-8F80-5E456BEBC57F} SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{0FA32667-9A8A-4E9C-902F-CA3323180003} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{1B97A696-5576-43AC-A73B-E1D2C78F21E8} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{22B0769F-794B-4422-AC84-47B123C8986D} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{255E0B2A-D747-4EEF-B7CE-159D73A3656D} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{28ED590D-F5ED-4E05-A87F-1D759F1C6169} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{2a42d13c-d427-4787-821b-cf6973855778} SUPPRIMÉ: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{336D0C35-8A85-403a-B9D2-65C292C39087} SUPPRIMÉ: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{336D0C35-8A85-403a-B9D2-65C292C39087} SUPPRIMÉ: HKLM\Software\Classes\AppID\{38A066B0-DD5F-4226-AC4F-6A27C1BFB892} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{3d8478aa-7b88-48a9-8bcb-b85d594411ec} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{45D5B93F-E2ED-4AF2-915E-DCDDBDA8C33C} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{4897bba6-48d9-468c-8efa-846275d7701b} SUPPRIMÉ: HKLM\Software\Classes\TypeLib\{48C9C8B0-A546-46C1-A81F-47A31E623E9D} SUPPRIMÉ: HKLM\Software\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE} SUPPRIMÉ: HKLM\Software\Classes\AppID\{608D3067-77E8-463D-9084-908966806826} SUPPRIMÉ: HKLM\Software\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291} SUPPRIMÉ: HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{6B458F62-592F-4B25-8967-E6A350A59328} SUPPRIMÉ: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99} SUPPRIMÉ: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99} SUPPRIMÉ: HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{74C36554-31F0-49DD-8857-ED6A64DF45BE} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{75BF416E-4326-45B5-8A2D-AE32D05B930B} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{771B99AB-636F-4A11-9039-8DFEB927B061} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{A8321AA2-2227-40C7-8525-6C2F4E1B0EBE} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{AA41A731-6814-4A70-A6F1-C0A20FBBFBD5} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{ABBB8A9E-D8AF-40D1-94BE-5175077465FC} SUPPRIMÉ: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{ae07101b-46d4-4a98-af68-0333ea26e113} SUPPRIMÉ: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ae07101b-46d4-4a98-af68-0333ea26e113} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659} SUPPRIMÉ: HKLM\Software\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{BF737694-56F6-46FA-9FDC-FA99A5B25FAD} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C} SUPPRIMÉ: HKLM\Software\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{CFCD164E-8AC9-478E-9ECC-B616A932016C} SUPPRIMÉ: HKLM\Software\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0} SUPPRIMÉ: HKLM\Software\Classes\AppID\{CFE8AAFD-A0F3-4329-84E9-6B679EC93EC2} SUPPRIMÉ: HKLM\Software\Classes\TypeLib\{CFE8AAFD-A0F3-4329-84E9-6B679EC93EC2} SUPPRIMÉ: HKLM\Software\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{D5961CC0-B442-4567-8030-67E241EF4CC2} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6} SUPPRIMÉ: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE} SUPPRIMÉ: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{E450067F-1C93-41A7-928E-07E5C2EEC680} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F} SUPPRIMÉ: HKLM\Software\Classes\TypeLib\{EC4085F2-8DB3-45a6-AD0B-CA289F3C5D7E} SUPPRIMÉ: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9639E4A-801B-4843-AEE3-03D9DA199E77} SUPPRIMÉ: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F9639E4A-801B-4843-AEE3-03D9DA199E77} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{FCC9CDD3-EFFF-11D1-A9F0-00A0244AC403} SUPPRIMÉ: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8} SUPPRIMÉ: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8} SUPPRIMÉ: HKLM\Software\Classes\AppID\PricePeep.DLL SUPPRIMÉ: HKLM\Software\Classes\esrv.IncredibarESrvc SUPPRIMÉ: HKLM\Software\Classes\esrv.IncredibarESrvc.1 SUPPRIMÉ: HKLM\Software\Classes\I SUPPRIMÉ: HKLM\Software\Classes\PricePeep.PricePeepBho SUPPRIMÉ: HKLM\Software\Classes\PricePeep.PricePeepBho.1 SUPPRIMÉ: HKLM\Software\Classes\urlsearchhook.toolbarurlsearchhook.1 SUPPRIMÉ:* HKLM\Software\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd SUPPRIMÉ: HKLM\Software\Classes\Prod.cap SUPPRIMÉ: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FE478DC2-E4AD-4197-8F80-5E456BEBC57F} SUPPRIMÉ: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FE478DC2-E4AD-4197-8F80-5E456BEBC57F} SUPPRIMÉ: HKLM\Software\Wow6432Node\EazelBar SUPPRIMÉ: HKLM\Software\Wow6432Node\SoftwareUpdater SUPPRIMÉ: HKLM\Software\Wow6432Node\Google\Chrome\Extensions\gfhdkohbepelnfckgjinfddmecpngnpb SUPPRIMÉ: HKLM\Software\Classes\Incredibar.dskBnd SUPPRIMÉ: HKLM\Software\Classes\Incredibar.dskBnd.1 SUPPRIMÉ: HKLM\Software\Classes\Incredibar.IncredibarHlpr SUPPRIMÉ: HKLM\Software\Classes\Incredibar.IncredibarHlpr.1 SUPPRIMÉ: HKLM\Software\Classes\IncredibarApp.appCore SUPPRIMÉ: HKLM\Software\Classes\IncredibarApp.appCore.1 SUPPRIMÉ: HKLM\Software\Classes\YontooIEClient.Api SUPPRIMÉ: HKLM\Software\Classes\YontooIEClient.Api.1 SUPPRIMÉ: HKLM\Software\Classes\YontooIEClient.Layers SUPPRIMÉ: HKLM\Software\Classes\YontooIEClient.Layers.1 SUPPRIMÉ: HKLM\Software\Classes\AppID\YontooIEClient.DLL SUPPRIMÉ: CLSID BHO: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} SUPPRIMÉ: HKCU\Software\IM SUPPRIMÉ: HKCU\Software\ImInstaller SUPPRIMÉ: HKCU\Software\IncrediMail SUPPRIMÉ: HKLM\Software\Wow6432Node\IncrediMail SUPPRIMÉ: Service: McComponentHostService SUPPRIMÉ:* HKLM\Software\SOFTWARE SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\uTorrent_RASAPI32 SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\uTorrent_RASMANCS SUPPRIMÉ: HKLM\Software\Wow6432Node\InstallIQ SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ApnStub_RASAPI32 SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\ApnStub_RASMANCS SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\dlLogic_RASAPI32 SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\dlLogic_RASMANCS SUPPRIMÉ: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31AD400D-1B06-4E33-A59A-90C2C140CBA0} SUPPRIMÉ: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31AD400D-1B06-4E33-A59A-90C2C140CBA0} SUPPRIMÉ: HKLM\Software\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D} SUPPRIMÉ:* HKLM\Software\Classes\Interface\{F977D9F2-4BDC-44A6-B508-7C0284C61EED} SUPPRIMÉ: HKLM\Software\Classes\AppID\TbCommonUtils.DLL SUPPRIMÉ: HKLM\Software\Classes\AppID\TbHelper.EXE SUPPRIMÉ: HKLM\Software\Classes\AppID\Toolbar.DLL SUPPRIMÉ: HKLM\Software\Classes\comobject.deskbarenabler SUPPRIMÉ: HKLM\Software\Classes\comobject.deskbarenabler.1 SUPPRIMÉ: HKLM\Software\Classes\TbCommonUtils.CommonUtils SUPPRIMÉ: HKLM\Software\Classes\TbCommonUtils.CommonUtils.1 SUPPRIMÉ: HKLM\Software\Classes\URLSearchHook.ToolbarURLSearchHook SUPPRIMÉ: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32D47EA5-9473-4CAD-805D-9999F15D5AE2} SUPPRIMÉ: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32D47EA5-9473-4CAD-805D-9999F15D5AE2} SUPPRIMÉ: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7AF277D-1466-4A7B-93AF-B043984A5671} SUPPRIMÉ: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7AF277D-1466-4A7B-93AF-B043984A5671} SUPPRIMÉ: HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} SUPPRIMÉ: HKLM\Software\Classes\TbHelper.TbDownloadManager SUPPRIMÉ: HKLM\Software\Classes\TbHelper.TbDownloadManager.1 SUPPRIMÉ: HKLM\Software\Classes\TbHelper.TbPropertyManager SUPPRIMÉ: HKLM\Software\Classes\TbHelper.TbPropertyManager.1 SUPPRIMÉ: HKLM\Software\Classes\TbHelper.TbRequest SUPPRIMÉ: HKLM\Software\Classes\TbHelper.TbRequest.1 SUPPRIMÉ: HKLM\Software\Classes\TbHelper.TbTask SUPPRIMÉ: HKLM\Software\Classes\TbHelper.TbTask.1 SUPPRIMÉ: HKLM\Software\Classes\TbHelper.ToolbarHelper SUPPRIMÉ: HKLM\Software\Classes\TbHelper.ToolbarHelper.1 SUPPRIMÉ: HKLM\Software\Classes\TBSB05810.IEToolbar SUPPRIMÉ: HKLM\Software\Classes\TBSB05810.IEToolbar.1 SUPPRIMÉ: HKLM\Software\Classes\TBSB05810.TBSB05810 SUPPRIMÉ: HKLM\Software\Classes\TBSB05810.TBSB05810.3 SUPPRIMÉ: HKLM\Software\Classes\Toolbar3.TBSB05810 SUPPRIMÉ: HKLM\Software\Classes\Toolbar3.TBSB05810.1 SUPPRIMÉ: HKLM\Software\Classes\Toolbar3.ContextMenuNotifier SUPPRIMÉ: HKLM\Software\Classes\Toolbar3.ContextMenuNotifier.1 SUPPRIMÉ: HKLM\Software\Classes\Toolbar3.CustomInternetSecurityImpl SUPPRIMÉ: HKLM\Software\Classes\Toolbar3.CustomInternetSecurityImpl.1 SUPPRIMÉ: HKLM\Software\Classes\Toolbar3.SearchProviderManager SUPPRIMÉ: HKLM\Software\Classes\Toolbar3.SearchProviderManager.1 ========== Valeurs du Registre ========== SUPPRIMÉ: Toolbar: {ae07101b-46d4-4a98-af68-0333ea26e113} SUPPRIMÉ: Toolbar: {EBD839AE-B08C-4fb7-859B-F54AF16C159F} SUPPRIMÉ RunValue: Yontoo Desktop SUPPRIMÉ RunValue: SearchProtect SUPPRIMÉ: TCP Query User{56527120-6ADF-4BE4-AD26-F2F6E45B00B1}C:\program files (x86)\utorrent\utorrent.exe SUPPRIMÉ: UDP Query User{607EFE1C-ABB9-4EF9-8748-2E8ABBE383A0}C:\program files (x86)\utorrent\utorrent.exe SUPPRIMÉ: TCP Query User{84BFB23E-5E24-4D6D-A9B4-DB1DA44DB15E}C:\program files (x86)\utorrent\utorrent.exe SUPPRIMÉ: UDP Query User{D6EB162B-1AD7-4461-BC83-53DB3ED1B9A3}C:\program files (x86)\utorrent\utorrent.exe SUPPRIMÉ: Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} Aucune Valeur Standard Profile: FirewallRaz : Aucune Valeur Domain Profile: FirewallRaz : SUPPRIMÉ: FirewallRaz (Domain) : NetPres-In-TCP-NoScope SUPPRIMÉ: FirewallRaz (Domain) : NetPres-Out-TCP-NoScope SUPPRIMÉ: FirewallRaz (None) : NetPres-WSD-In-UDP SUPPRIMÉ: FirewallRaz (None) : NetPres-WSD-Out-UDP SUPPRIMÉ: FirewallRaz (Public) : NetPres-In-TCP SUPPRIMÉ: FirewallRaz (Public) : NetPres-Out-TCP SUPPRIMÉ: FirewallRaz (Private) : {882ABF46-F660-4BB6-91D9-5C9F133F170E} SUPPRIMÉ: FirewallRaz (Private) : {BF7B7BB1-2809-4C91-A152-8FD853EF35AA} SUPPRIMÉ: FirewallRaz (Private) : {93028CA7-AADE-43D8-AD14-6F2CD91ED14C} SUPPRIMÉ: FirewallRaz (Private) : {F94BCD5A-BEF6-4371-940E-5E006477E150} SUPPRIMÉ: FirewallRaz (Private) : {1346065A-6142-4020-BCAC-9210888B13AE} SUPPRIMÉ: FirewallRaz (Private) : {7E9AA3E0-2DAC-47E9-AB85-D73B2B3C6A57} SUPPRIMÉ: FirewallRaz (Private) : {A0CDDB0E-822A-4E48-B5A0-6E74A4D2733A} SUPPRIMÉ: FirewallRaz (Private) : {07B1916A-D4CD-4C0D-A03E-FECA2D82DF4B} SUPPRIMÉ: FirewallRaz (Public) : {A68BD324-BCB5-4125-AB8B-AA66E62F189F} SUPPRIMÉ: FirewallRaz (Public) : {E227F8C6-C2FB-41A7-AF45-D29E44697FE0} SUPPRIMÉ: FirewallRaz (Public) : {297BEA00-D25F-4D26-96A4-3CE334181D89} SUPPRIMÉ: FirewallRaz (Public) : {4CA7FF60-1654-44D7-A456-20EC7D334B9B} SUPPRIMÉ: FirewallRaz (Public) : {8506325D-2E50-4B6E-B6A8-9106B73548A7} SUPPRIMÉ: FirewallRaz (Public) : {6A01C299-C0D9-4A17-94B3-94AB7E425C2A} SUPPRIMÉ: FirewallRaz (Private) : {288E4110-8977-403C-B1E8-BA2B6AA8E78A} SUPPRIMÉ: FirewallRaz (Private) : {1D24BF8E-FA80-4088-8F9E-EC76E547152C} ProxyFix : Configuration proxy supprimée avec succès SUPPRIMÉ ProxyServer Value SUPPRIMÉ ProxyEnable Value SUPPRIMÉ EnableHttp1_1 Value SUPPRIMÉ ProxyHttp1.1 Value SUPPRIMÉ ProxyOverride Value ========== Eléments de donnée du Registre ========== SUPPRIMÉ: R0 - Main,Start Page = KCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page SUPPRIMÉ: R1 Search Page = http://feed.helperbar.com/?publisher=QuickOC&dpid=QuickOC&co=CH&userid=89c82b19-1e69-48ce-bbbc-65bed791150d&searchtype=ds&q={searchTerms}&installDate= ========== Préférences navigateur ========== PRESENT Chrome File: C:\Users\Kévin\AppData\Local\Google\Chrome\User Data\Default\Preferences SUPPRIMÉ Chrome Site: http://en.eazel.com SUPPRIMÉ Chrome Site: http://en.eazel.com SUPPRIMÉ Chrome Site: http://en.eazel.com SUPPRIMÉ Chrome Site: http://en.eazel.com SUPPRIMÉ Chrome Site: http://en.eazel.com SUPPRIMÉ Mozilla Pref: http://mystart.incredibar.com SUPPRIMÉ Mozilla Pref: http://mystart.incredibar.com SUPPRIMÉ Mozilla Pref: http://mystart.incredibar.com SUPPRIMÉ Mozilla Pref: http://mystart.incredibar.com SUPPRIMÉ Mozilla Pref: user_pref("CT3128284.installId", "conduitinstaller.exe"); SUPPRIMÉ Mozilla Pref: user_pref("Smartbar.ConduitHomepagesList", "http://search.conduit.com/?ctid=CT3128284&octid=CT3128284&SearchSource=61&CUI=SB_CUI&U[...] SUPPRIMÉ Mozilla Pref: user_pref("Smartbar.ConduitSearchEngineList", ""); SUPPRIMÉ Mozilla Pref: user_pref("Smartbar.ConduitSearchUrlList", ""); SUPPRIMÉ Mozilla Pref: user_pref("Smartbar.SearchFromAddressBarSavedUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3128284&SearchSource=2&q="); SUPPRIMÉ Mozilla Pref: user_pref("extensions.helperbar.BackPageActive", true); SUPPRIMÉ Mozilla Pref: user_pref("extensions.helperbar.Country", "Switzerland"); SUPPRIMÉ Mozilla Pref: user_pref("extensions.helperbar.DOWNLOADPROVIDER", "QuickOC"); SUPPRIMÉ Mozilla Pref: user_pref("extensions.helperbar.DOWNLOADPROVIDER", "QuickOC"); SUPPRIMÉ Mozilla Pref: user_pref("extensions.helperbar.DockingPositionDown", false); SUPPRIMÉ Mozilla Pref: user_pref("extensions.helperbar.PUBLISHER", "QuickOC"); SUPPRIMÉ Mozilla Pref: user_pref("extensions.helperbar.PUBLISHER", "QuickOC"); SUPPRIMÉ Mozilla Pref: user_pref("extensions.helperbar.SmartbarDisabled", false); SUPPRIMÉ Mozilla Pref: user_pref("extensions.helperbar.SmartbarStateMinimaized", false); SUPPRIMÉ Mozilla Pref: user_pref("extensions.helperbar.Visibility", false); SUPPRIMÉ Mozilla Pref: user_pref("extensions.helperbar.countryiso", "ch"); SUPPRIMÉ Mozilla Pref: user_pref("extensions.helperbar.externalJsFiles", "{\"d\":\"[]\"}"); SUPPRIMÉ Mozilla Pref: user_pref("extensions.helperbar.installationID", "89c82b19-1e69-48ce-bbbc-65bed791150d"); SUPPRIMÉ Mozilla Pref: user_pref("extensions.helperbar.installationID", "89c82b19-1e69-48ce-bbbc-65bed791150d"); SUPPRIMÉ Mozilla Pref: user_pref("extensions.helperbar.installdate", ""); SUPPRIMÉ Mozilla Pref: user_pref("extensions.helperbar.lastExternalJsUpdate", "1391617088848"); SUPPRIMÉ Mozilla Pref: user_pref("smartbar.conduitSearchAddressUrlList", "http://search.conduit.com/ResultsExt.aspx?ctid [...] SUPPRIMÉ Mozilla Pref: user_pref("{FE1DEEEA-DB6D-44b8-83F0-34FC0F9D1052}.ScriptData_WSG_whiteList", "{\"search.babylon.com\":\"q\",\"search.imesh.net\":\[...] SUPPRIMÉ Mozilla Pref: user_pref("CT3128284.SearchFromAddressBarUrl", "http://search.conduit.com/ResultsExt.aspx?ctid=CT3128284&SearchSource=2&q="); ABSENT Mozilla Pref: user_pref("CT3128284.http___facebook_conduitapps_com.APP_WIN_FEATURES.enc", "cmVzaXphYmxlPTAsaHNjcm9sbD0wLHZzY3JvbGw9MCx0aXRsZWJhc[...] ABSENT Mozilla Pref: user_pref("CT3128284.http___rsspub_conduitapps_com.APP_WIN_FEATURES.enc", "b3BlbnBvc2l0aW9uPWFsaWdubWVudDpCLGhzY3JvbGw9bm8sdnNjcm9[...] ABSENT Mozilla Pref: user_pref("CT3128284.http___storage_conduit_com_marketplace_83_6d_8399d181_be98_42f2_b035_1616f617316d_.PriceSparrowUuid.enc", "QT[...] SUPPRIMÉ Mozilla Pref: user_pref("CT3128284.installType", "conduitnsisintegration"); ABSENT Mozilla Pref: user_pref("CT3128284.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"http://search.conduit.com/?ctid=CT3128284&octid=CT3[...] SUPPRIMÉ Mozilla Pref: user_pref("avg.install.userHPSettings", "http://www.delta-search.com/?affID=119556&babsrc=HP_ss&mntrId=E655685D43C48E17"); SUPPRIMÉ Mozilla Pref: user_pref("avg.install.userSPSettings", "Delta Search"); ========== Dossiers ========== SUPPRIMÉ: C:\Users\Kévin\AppData\Local\{342895D5-6679-48CA-AA7A-D724F47DB599} SUPPRIMÉ: C:\Users\Kévin\AppData\Local\{3F74837B-18E9-4931-BF7A-E28327DB624B} SUPPRIMÉ: C:\Users\Kévin\AppData\Local\{8C71FD21-25FB-4FC8-A9FC-1BAE9AE4D899} SUPPRIMÉ: C:\Users\Kévin\AppData\Local\{9ACEB3F0-0E12-4B53-91A9-46CBF0D75481} SUPPRIMÉ: C:\Users\Kévin\AppData\Local\{C7B412F9-E88B-4BC5-A1BF-DC5F83770DF4} SUPPRIMÉ: C:\Users\Kévin\AppData\Local\{C7C3644D-E217-4551-A46C-CD43B71D8658} ========== Fichiers ========== SUPPRIMÉ: c:\users\kévin\appdata\roaming\microsoft\windows\start menu\programs\internet explorer.lnk ((http://en.eazel.com/)) CRÉÉ: C:\Users\Kévin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk SUPPRIMÉ: c:\users\kévin\appdata\roaming\microsoft\internet explorer\quick launch\user pinned\taskbar\internet explorer.lnk ((http://en.eazel.com/)) CRÉÉ: C:\Users\Kévin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk SUPPRIMÉ: c:\users\public\desktop\mozilla firefox.lnk ((http://en.eazel.com/)) CRÉÉ: C:\Users\Public\Desktop\Mozilla Firefox.lnk SUPPRIMÉ: c:\programdata\microsoft\windows\start menu\programs\mozilla firefox.lnk ((http://en.eazel.com/)) CRÉÉ: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk SUPPRIMÉ: c:\users\kévin\appdata\roaming\microsoft\internet explorer\quick launch\user pinned\taskbar\mozilla firefox.lnk ((http://en.eazel.com/)) CRÉÉ: C:\Users\Kévin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk SUPPRIMÉ: c:\users\public\desktop\google chrome.lnk ((http://en.eazel.com/)) CRÉÉ: C:\Users\Public\Desktop\Google Chrome.lnk SUPPRIMÉ: c:\users\kévin\appdata\roaming\microsoft\internet explorer\quick launch\user pinned\taskbar\google chrome.lnk ((http://en.eazel.com/)) CRÉÉ: C:\Users\Kévin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk SUPPRIMÉ: c:\users\kévin\appdata\roaming\mozilla\firefox\profiles\k7mcsrh1.default\searchplugins\mystart search.xml SUPPRIMÉ: c:\users\kévin\appdata\roaming\mozilla\firefox\profiles\k7mcsrh1.default\searchplugins\web search.xml SUPPRIMÉ Redémarrage: c:\program files (x86)\incredibar.com SUPPRIMÉ: c:\program files (x86)\glarysoft toolbar\tbcore3.dll SUPPRIMÉ Redémarrage: c:\users\kévin\appdata\roaming\yontoo\yontoodesktop.exe SUPPRIMÉ Redémarrage: c:\users\kévin\appdata\roaming\yontoo\dat\desktop.os.plugin.dll SUPPRIMÉ Redémarrage: c:\users\kévin\appdata\roaming\yontoo\dat\bsvc.dll SUPPRIMÉ: c:\users\kévin\appdata\locallow\skwconfig.bin SUPPRIMÉ:** c:\users\kévin\appdata\roaming\yontoo\yontoodesktop.exe SUPPRIMÉ: c:\users\kévin\appdata\local\temp\lu\6_spp_setpointp.exe SUPPRIMÉ: c:\users\kévin\appdata\local\temp\nsb8692.tmp\system.dll SUPPRIMÉS Temporaires Windows (619) (662'890'528 octets) ========== Fichier HOSTS ========== Le fichier Hosts n'est pas réparé, veuillez désactiver votre antivirus. ========== Tache planifiée ========== SUPPRIMÉ: FacebookUpdateTaskUserS-1-5-21-3509905708-4279981794-28250883-1002Core SUPPRIMÉ: FacebookUpdateTaskUserS-1-5-21-3509905708-4279981794-28250883-1002UA ========== Autre ========== NON TRAITÉ [MD5.64F276F23C20DC0902CCA1D071A10949] - (...) -- C:\Windows\SysWOW64\mjcm\dnkt.exe [730928] [PID.11980] NON TRAITÉ McAfee Security Scan Plus v3.0.318.3 NON TRAITÉ µTorrent v3.2.3.28705 ========== Récapitulatif ========== 1 : Processus mémoire 196 : Clés du Registre 39 : Valeurs du Registre 2 : Eléments de donnée du Registre 6 : Dossiers 26 : Fichiers 13 : Logiciels 41 : Préférences navigateur 1 : Fichier HOSTS 2 : Tache planifiée 3 : Autre End of clean in 03mn 06s ========== Chemin de fichier rapport ========== C:\Users\Kévin\AppData\Roaming\ZHP\ZHPFix[R1].txt - 23.09.2014 21:09:05 [26204]