Rapport de ZHPFix 2013.8.28.2 par Nicolas Coolman, Update du 28/08/2013
Fichier d'export Registre : 
Run by nadine at 05/09/2013 06:08:13
High Elevated Privileges : OK
Windows Vista Home Premium Edition, 32-bit Service Pack 2 (Build 6002)

Corbeille vidée

========== Logiciel(s) ==========
SUPPRIME Iminent
ABSENT Uninstall Process: c:\program files\savings wave plugin\uninstall.exe

========== Clé(s) du Registre ==========
SUPPRIME [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5CDCDBCD-119A-4AE1-9C55-B816DBBE4245}]
SUPPRIME [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Savings Wave Plugin]
SUPPRIME Key: Service: BrowserDefendert
SUPPRIME Key*: HKLM\Software\DataMngr
SUPPRIME Key: HKLM\Software\V9
SUPPRIME Key: HKLM\Software\eSafeSecControl
SUPPRIME Key:  StartupReg: NTRedirect
ERREUR Key: Service Legacy: LEGACY_ESGIGUARD
SUPPRIME Key: \Software\Classes\Installer\Products\\DCBDCDC5A9111EA4C9558B61BDEB2454
SUPPRIME Key: \Software\Classes\Installer\Features\DCBDCDC5A9111EA4C9558B61BDEB2454
ABSENT Key: Service: BrowserDefendert
ABSENT Key: HKLM\SYSTEM\CurrentControlSet\Services\BrowserDefendert
ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{5CDCDBCD-119A-4AE1-9C55-B816DBBE4245}
ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Savings Wave Plugin
ABSENT Key: HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\NTRedirect
SUPPRIME Key: HKLM\Software\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
SUPPRIME Key: HKLM\Software\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
SUPPRIME Key: HKLM\Software\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
SUPPRIME Key: HKLM\Software\Classes\AppID\escortapp.dll
SUPPRIME Key: HKLM\Software\Classes\AppID\escorteng.dll
SUPPRIME Key: HKLM\Software\Classes\AppID\esrv.EXE
ABSENT Key: HKLM\Software\DataMngr
SUPPRIME Key: HKLM\Software\Classes\Prod.cap
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
SUPPRIME Key: HKLM\Software\qvo6Software
ABSENT Key: HKLM\Software\eSafeSecControl
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\464AA55239C100F32AF2D438EDDC0F47
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5652BA3D5FB98AE31B337BF0AF939856
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EB95E1AFCBABE3DB9ECCC669B99494
SUPPRIME Key: HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc
SUPPRIME Key: HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
SUPPRIME Key: HKLM\Software\Classes\AppID\escorTlbr.DLL
SUPPRIME Key: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110311591139}
SUPPRIME Key: HKCU\Software\Wajam
SUPPRIME Key: HKCU\Software\Yahoo
SUPPRIME Key: HKLM\Software\Wajam
SUPPRIME Key: HKLM\Software\Yahoo
SUPPRIME Key: SearchScopes :{5B5C96D0-1602-460A-8F77-82DC89813A6A}
SUPPRIME Key: SearchScopes :{9215C3C2-6787-4E06-A3D5-98CA384A49B5}
SUPPRIME Key: HKLM\Software\Classes\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634}
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A047FE02-C91C-41CB-898C-4ED21B86025A}
SUPPRIME Key: HKLM\Software\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
SUPPRIME Key: HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SearchProtect
SUPPRIME Key: HKLM\Software\Classes\AppID\priam_bho.DLL
SUPPRIME Key: HKLM\Software\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D970ED5-3EDA-438D-BFFD-715931E2775B}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1D970ED5-3EDA-438D-BFFD-715931E2775B}
SUPPRIME Key: HKLM\Software\Classes\CLSID\{1D970ED5-3EDA-438D-BFFD-715931E2775B}
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1D970ED5-3EDA-438D-BFFD-715931E2775B}
SUPPRIME Key: HKLM\Software\delta-homesSoftware
ABSENT Key: HKCU\Software\Wajam
ABSENT Key: HKCU\Software\Yahoo
ABSENT Key: HKLM\Software\Wajam
ABSENT Key: HKLM\Software\Yahoo

========== Dossier(s) ==========
SUPPRIME Folder: C:\Program Files\Savings Wave Plugin
SUPPRIME Folder: C:\ProgramData\Babylon
SUPPRIME Folder: C:\ProgramData\BrowserDefender
SUPPRIME Folder: C:\Users\nadine\AppData\Local\Savings Wave Plugin
SUPPRIME Folder: C:\Users\nadine\AppData\Local\Updater35939
SUPPRIME Folder: C:\Users\nadine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserDefender
SUPPRIME Folder: c:\users\nadine\appdata\local\software
SUPPRIME Folder: C:\Program Files\Yahoo!
SUPPRIME Folder: C:\Users\nadine\AppData\Local\Wajam
SUPPRIME Folder: C:\Users\nadine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam

========== Fichier(s) ==========
ABSENT File: c:\programdata\browserdefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\browserdefender.exe
ABSENT File: c:\users\nadine\appdata\roaming\babsolution\shared\enhancednt.dll
SUPPRIME File: C:\Windows\Installer\1f7bb9da.msi
ABSENT Folder/File: c:\program files\savings wave plugin
ABSENT Folder/File: c:\programdata\babylon
ABSENT Folder/File: c:\programdata\browserdefender
ABSENT Folder/File: c:\users\nadine\appdata\local\savings wave plugin
ABSENT Folder/File: c:\users\nadine\appdata\local\updater35939
ABSENT Folder/File: c:\users\nadine\appdata\roaming\microsoft\windows\start menu\programs\browserdefender
ABSENT Folder/File: c:\windows\installer\{5cdcdbcd-119a-4ae1-9c55-b816dbbe4245}\imbooster.ico
ABSENT Folder/File: c:\windows\installer\1f7bb9da.msi
ABSENT Folder/File: c:\programdata\browserdefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\browserdefender.exe
SUPPRIME File: c:\users\nicolas\desktop\(259 non lus) - turboxm - yahoo! mail.url 
ABSENT File: c:\users\nicolas\desktop\(259 non lus) - turboxm - yahoo! mail.url
SUPPRIME File: C:\Windows\Installer\d22b2f3.msi
ABSENT Folder/File: c:\program files\yahoo!
ABSENT Folder/File: c:\users\nadine\appdata\local\wajam
ABSENT Folder/File: c:\users\nadine\appdata\roaming\microsoft\windows\start menu\programs\wajam
SUPPRIME File: C:\Users\nadine\AppData\Roaming\Mozilla\Firefox\Profiles\szdg17qd.default\searchplugins\conduit-search.xml
ABSENT Folder/File: c:\users\nicolas\desktop\(259 non lus) - turboxm - yahoo! mail.url
ABSENT Folder/File: c:\windows\installer\d22b2f3.msi

========== Tache planifiée ==========
SUPPRIME Task: FinishInstall igdhbblpcellaljokkpfhcjlagemhgjl

========== Autre ==========
NON TRAITE Malware (51)
NON TRAITE Superflu (34)


========== Récapitulatif ==========
55 : Clé(s) du Registre
10 : Dossier(s)
21 : Fichier(s)
2 : Logiciel(s)
1 : Tache planifiée
2 : Autre


End of clean in 00mn 28s

========== Chemin de fichier rapport ==========
C:\ZHP\ZHPFix[R1].txt - 04/09/2013 09:32:46 [567]
C:\ZHP\ZHPFix[R2].txt - 04/09/2013 09:37:23 [487]
C:\ZHP\ZHPFix[R3].txt - 04/09/2013 14:18:06 [1230]
C:\ZHP\ZHPFix[R4].txt - 05/09/2013 06:08:13 [7211]