Publicité
Publicité
Format du document : text/plain
Prévisualisation
Rapport de ZHPFix 2013.9.23.9 par Nicolas Coolman, Update du 23/09/2013
Fichier d'export Registre :
Run by Varrin at 27/09/2013 14:48:09
High Elevated Privileges : OK
Windows 7 Home Premium Edition, 32-bit Service Pack 1 (Build 7601)
Corbeille vid�e (Annul� par l'utilisateur)
========== Logiciels ==========
ABSENT Uninstall Process: c:\program files\uninstall information\ib\34\4019\ib_uninstall.exe
ABSENT Uninstall Process: c:\program files\delta\delta\1.8.21.5\guninstaller.exe
ABSENT Uninstall Process: c:\program files\searchprotect\bin\uninstall.exe
ABSENT Uninstall Process: c:\program files\wajam\uninstall.exe
========== Processus m�moire ==========
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Roaming\BabSolution\Shared\BabMaint.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Roaming\BabMaint.exe
SUPPRIM� Red�marrage: Memory Process: C:\Users\Varrin\AppData\Roaming\SearchProtect\bin\cltmng.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Local\Temp\nsb1B7E.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Local\Temp\nscC66D.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Local\Temp\nsfA8C2.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Local\Temp\nskDED0.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Local\Temp\nskFC0F.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Local\Temp\nsqD30E.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Local\Temp\nsqFE52.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Local\Temp\nsr1D63.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Local\Temp\nsvDC9E.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Local\Temp\nswC9F6.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Local\Temp\SecondStepInstaller.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Local\Temp\SPStub.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Local\Temp\wajam_install.exe
========== Modules m�moire ==========
SUPPRIM�: Memory Module: C:\Users\Varrin\AppData\Local\Temp\AskSLib.dll
SUPPRIM�: Memory Module: C:\Users\Varrin\AppData\Local\Temp\tb01NE.dll
========== Cl�s du Registre ==========
SUPPRIM� Logiciel Key: [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SpecialSavings]
SUPPRIM� Logiciel Key: [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Updater Service]
SUPPRIM� Logiciel Key: [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect]
SUPPRIM� Logiciel Key: [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Wajam]
SUPPRIM�: CLSID BHO: {938958E8-355C-49FF-92B0-53C1B87ACEA9}
SUPPRIM�: [HKLM\SOFTWARE\Classes\CLSID\{938958E8-355C-49FF-92B0-53C1B87ACEA9}]
SUPPRIM�: Service: IBUpdaterService
SUPPRIM�: HKCU\Software\5e57ded0b268ea43
SUPPRIM�: HKCU\Software\BabSolution
SUPPRIM�:* HKCU\Software\DataMngr
SUPPRIM�:* HKCU\Software\DataMngr_Toolbar
SUPPRIM�: HKCU\Software\InstallCore
SUPPRIM�: HKLM\Software\5e57ded0b268ea43
SUPPRIM�: HKLM\Software\Babylon
SUPPRIM�:* HKLM\Software\DataMngr
SUPPRIM�: SearchScopes :{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SUPPRIM�: HKLM\Software\Google\Chrome\Extensions\bfcpnihmbfoaeoakalclfalkdepgiaje
SUPPRIM�: HKLM\Software\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
SUPPRIM�: HKLM\Software\Classes\CLSID\{43969E3F-3E7C-4911-A8F1-79C6CA6AC731}
SUPPRIM�: HKLM\Software\Classes\Interface\{43969E3F-3E7C-4911-A8F1-79C6CA6AC731}
SUPPRIM�: HKCU\Software\AppDataLow\Software\PriceGong
SUPPRIM�: HKLM\Software\Microsoft\Tracing\MyBabylontb_RASAPI32
SUPPRIM�: HKLM\Software\Microsoft\Tracing\MyBabylontb_RASMANCS
SUPPRIM�: HKLM\Software\Classes\Prod.cap
SUPPRIM�: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}
SUPPRIM�: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
SUPPRIM�: CLSID BHO: {A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
SUPPRIM�: [HKLM\SOFTWARE\Classes\CLSID\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}]
SUPPRIM�: CLSID BHO: {e44a1809-4d10-4ab8-b343-3326b64c7cdd}
SUPPRIM�: [HKLM\SOFTWARE\Classes\CLSID\{e44a1809-4d10-4ab8-b343-3326b64c7cdd}]
SUPPRIM�: Service: WajamUpdater
SUPPRIM�: HKCU\Software\Conduit
SUPPRIM�: HKCU\Software\Wajam
SUPPRIM�: HKLM\Software\Conduit
SUPPRIM�: SearchScopes :{DF2104D0-391B-4346-937A-07EEA5FEB555}
SUPPRIM�: HKLM\Software\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
SUPPRIM�: HKLM\Software\Google\Chrome\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp
SUPPRIM�: HKLM\Software\Classes\TypeLib\{095BFD3C-4602-4FE1-96F1-AEFAFBFD067D}
SUPPRIM�: HKLM\Software\Classes\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634}
SUPPRIM�: HKLM\Software\Classes\CLSID\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
SUPPRIM�: HKLM\Software\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
SUPPRIM�: HKLM\Software\Classes\CLSID\{5D64294B-1341-4FE7-B6D8-7C36828D4DD5}
SUPPRIM�: HKCU\Software\AppDataLow\Software\entrusted
SUPPRIM�: HKLM\Software\entrusted
SUPPRIM�: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
SUPPRIM�: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
SUPPRIM�: HKLM\Software\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
SUPPRIM�: HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater
SUPPRIM�: HKCU\Software\AppDataLow\Software\ConduitSearchScopes
SUPPRIM�: HKCU\Software\AppDataLow\Toolbar
SUPPRIM�: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
SUPPRIM�: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
SUPPRIM�: HKLM\Software\Classes\AppID\priam_bho.DLL
SUPPRIM�: HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
SUPPRIM�: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\entrusted Toolbar
SUPPRIM�: HKLM\Software\Classes\ScriptHost.Tool.1
SUPPRIM�: HKLM\Software\Classes\ScriptHost.Tool
SUPPRIM�: HKLM\Software\Classes\AppID\{562B9316-C08A-444A-9482-62080DD851AE}
SUPPRIM�: HKLM\Software\Classes\AppID\AddonsFramework.DLL
SUPPRIM�: HKLM\Software\Classes\AppID\ButtonSite.DLL
SUPPRIM�: HKLM\Software\Classes\AppID\ScriptHost.DLL
SUPPRIM�: HKLM\Software\Classes\AppID\{18B9B16E-716F-43DF-A6AD-512C7D2EB983}
SUPPRIM�: HKLM\Software\Classes\AppID\{19975B78-1907-4DD6-A437-4C48120F46A4}
SUPPRIM�: HKLM\Software\Classes\AppID\{562B9317-C08A-444A-9482-62080DD851AE}
SUPPRIM�: HKLM\Software\Classes\Interface\{045F91B3-695F-423A-98C7-8DE3C47AA020}
SUPPRIM�: HKLM\Software\Classes\Interface\{1348BD1B-C32A-41A7-9BD4-5377AA1AB925}
SUPPRIM�: HKLM\Software\Classes\Interface\{395AFE6E-8308-48DB-89BE-ED5F4AA3D3EC}
SUPPRIM�: HKLM\Software\Classes\Interface\{43B390F0-6BA2-45CA-ABF2-5DB0CEE9B49D}
SUPPRIM�: HKLM\Software\Classes\Interface\{94CADA2E-1D3F-419F-8A3D-06C58EDF53C8}
SUPPRIM�: HKLM\Software\Classes\Interface\{9E52EB8B-8DD9-4605-AD36-D352BCD482F2}
SUPPRIM�: HKLM\Software\Classes\Interface\{A1440EC3-F0FA-407A-B811-DE6668C06D29}
SUPPRIM�: HKLM\Software\Classes\Interface\{B9A84AD0-5777-46FD-8B8F-1EBD06750FBC}
SUPPRIM�: HKLM\Software\Classes\Interface\{C1995F88-1C7F-40D7-B0FA-6F107F6308B8}
SUPPRIM�: HKLM\Software\Classes\Interface\{C815E3DA-0823-49B0-9270-D1771D58B317}
SUPPRIM�: HKLM\Software\Microsoft\Tracing\ConduitInstaller_RASAPI32
SUPPRIM�: HKLM\Software\Microsoft\Tracing\ConduitInstaller_RASMANCS
SUPPRIM�: HKLM\Software\Classes\Toolbar.CT3281675
SUPPRIM�: HKLM\Software\Classes\Toolbar.CT3285358
SUPPRIM�: HKLM\Software\Classes\wajam.WajamBHO
SUPPRIM�: HKLM\Software\Classes\wajam.WajamBHO.1
SUPPRIM�: HKLM\Software\Classes\wajam.WajamDownloader
SUPPRIM�: HKLM\Software\Classes\wajam.WajamDownloader.1
========== Valeurs du Registre ==========
SUPPRIM�: Toolbar: {e44a1809-4d10-4ab8-b343-3326b64c7cdd}
SUPPRIM� RunValue: SearchProtectAll
SUPPRIM� RunValue: SearchProtect
========== El�ments de donn�e du Registre ==========
SUPPRIM�: R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page
========== Pr�f�rences navigateur ==========
PRESENT Chrome File: C:\Users\Varrin\AppData\Local\Google\Chrome\User Data\Default\Preferences
ABSENT Chrome Site: http://www.delta-search.com
SUPPRIM� Folder Chrome: C:\Users\Varrin\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
========== Dossiers ==========
SUPPRIM�: C:\Program Files\SpecialSavings
SUPPRIM�: C:\ProgramData\Babylon
SUPPRIM�: C:\ProgramData\IBUpdaterService
SUPPRIM�: C:\Users\Varrin\AppData\Roaming\BabSolution
SUPPRIM�: C:\Users\Varrin\AppData\Roaming\Babylon
SUPPRIM�: C:\Users\Varrin\AppData\Roaming\OpenCandy
SUPPRIM�: C:\Users\Varrin\AppData\Roaming\SpecialSavings
SUPPRIM�: c:\users\varrin\appdata\locallow\pricegong
SUPPRIM�: c:\users\varrin\appdata\local\google\chrome\user data\default\extensions\bfcpnihmbfoaeoakalclfalkdepgiaje
SUPPRIM�: C:\Users\Varrin\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
SUPPRIM�: C:\Program Files\Conduit
SUPPRIM�: C:\Program Files\Wajam
SUPPRIM�: C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
SUPPRIM�: C:\Users\Varrin\AppData\Local\Conduit
SUPPRIM�: C:\Users\Varrin\AppData\Local\Wajam
SUPPRIM�: C:\Users\Varrin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam
SUPPRIM�: c:\program files\entrusted
SUPPRIM�: c:\users\varrin\appdata\locallow\conduit
SUPPRIM�: c:\users\varrin\appdata\locallow\entrusted
========== Fichiers ==========
SUPPRIM�: c:\program files\specialsavings\scripthost.dll
SUPPRIM� Red�marrage: c:\programdata\ibupdaterservice\ibsvc.exe
SUPPRIM�:* c:\users\varrin\appdata\roaming\babsolution\shared\babmaint.exe
SUPPRIM�:* c:\users\varrin\appdata\roaming\babmaint.exe
SUPPRIM�: C:\Users\Varrin\AppData\Local\Temp\yontoo-C4-1A0C.log
SUPPRIM�: c:\users\varrin\appdata\local\google\chrome\user data\default\preferences
SUPPRIM�: c:\program files\wajam\ie\priam_bho.dll
SUPPRIM�: c:\program files\entrusted\prxtbentr.dll
SUPPRIM�: c:\program files\searchprotect\bin\cltmngsvc.exe
SUPPRIM� Red�marrage: c:\program files\wajam\updater\wajamupdater.exe
SUPPRIM�: c:\users\varrin\appdata\local\temp\askslib.dll
SUPPRIM�: c:\users\varrin\appdata\local\temp\nsb1b7e.exe
SUPPRIM�: c:\users\varrin\appdata\local\temp\nscc66d.exe
SUPPRIM�: c:\users\varrin\appdata\local\temp\nsfa8c2.exe
SUPPRIM�: c:\users\varrin\appdata\local\temp\nskded0.exe
SUPPRIM�: c:\users\varrin\appdata\local\temp\nskfc0f.exe
SUPPRIM�: c:\users\varrin\appdata\local\temp\nsqd30e.exe
SUPPRIM�: c:\users\varrin\appdata\local\temp\nsqfe52.exe
SUPPRIM�: c:\users\varrin\appdata\local\temp\nsr1d63.exe
SUPPRIM�: c:\users\varrin\appdata\local\temp\nsvdc9e.exe
SUPPRIM�: c:\users\varrin\appdata\local\temp\nswc9f6.exe
SUPPRIM�: c:\users\varrin\appdata\local\temp\secondstepinstaller.exe
SUPPRIM�: c:\users\varrin\appdata\local\temp\spstub.exe
SUPPRIM�: c:\users\varrin\appdata\local\temp\tb01ne.dll
SUPPRIM�: c:\users\varrin\appdata\local\temp\wajam_install.exe
========== Tache planifi�e ==========
SUPPRIM�: EPUpdater
SUPPRIM�: {9D37F58B-CD7D-41B3-97B8-73FAB31F72D2}
========== Autre ==========
NON TRAIT� Malware (98)
NON TRAIT� Superflu (157)
========== R�capitulatif ==========
16 : Processus m�moire
2 : Modules m�moire
82 : Cl�s du Registre
3 : Valeurs du Registre
1 : El�ments de donn�e du Registre
19 : Dossiers
25 : Fichiers
4 : Logiciels
3 : Pr�f�rences navigateur
2 : Tache planifi�e
2 : Autre
End of clean in 01mn 52s
========== Chemin de fichier rapport ==========
C:\Users\Varrin\AppData\Roaming\ZHP\ZHPFix[R1].txt - 27/09/2013 14:48:45 [11609]
Fichier d'export Registre :
Run by Varrin at 27/09/2013 14:48:09
High Elevated Privileges : OK
Windows 7 Home Premium Edition, 32-bit Service Pack 1 (Build 7601)
Corbeille vid�e (Annul� par l'utilisateur)
========== Logiciels ==========
ABSENT Uninstall Process: c:\program files\uninstall information\ib\34\4019\ib_uninstall.exe
ABSENT Uninstall Process: c:\program files\delta\delta\1.8.21.5\guninstaller.exe
ABSENT Uninstall Process: c:\program files\searchprotect\bin\uninstall.exe
ABSENT Uninstall Process: c:\program files\wajam\uninstall.exe
========== Processus m�moire ==========
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Roaming\BabSolution\Shared\BabMaint.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Roaming\BabMaint.exe
SUPPRIM� Red�marrage: Memory Process: C:\Users\Varrin\AppData\Roaming\SearchProtect\bin\cltmng.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Local\Temp\nsb1B7E.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Local\Temp\nscC66D.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Local\Temp\nsfA8C2.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Local\Temp\nskDED0.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Local\Temp\nskFC0F.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Local\Temp\nsqD30E.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Local\Temp\nsqFE52.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Local\Temp\nsr1D63.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Local\Temp\nsvDC9E.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Local\Temp\nswC9F6.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Local\Temp\SecondStepInstaller.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Local\Temp\SPStub.exe
SUPPRIM�: Memory Process: C:\Users\Varrin\AppData\Local\Temp\wajam_install.exe
========== Modules m�moire ==========
SUPPRIM�: Memory Module: C:\Users\Varrin\AppData\Local\Temp\AskSLib.dll
SUPPRIM�: Memory Module: C:\Users\Varrin\AppData\Local\Temp\tb01NE.dll
========== Cl�s du Registre ==========
SUPPRIM� Logiciel Key: [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SpecialSavings]
SUPPRIM� Logiciel Key: [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Updater Service]
SUPPRIM� Logiciel Key: [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect]
SUPPRIM� Logiciel Key: [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Wajam]
SUPPRIM�: CLSID BHO: {938958E8-355C-49FF-92B0-53C1B87ACEA9}
SUPPRIM�: [HKLM\SOFTWARE\Classes\CLSID\{938958E8-355C-49FF-92B0-53C1B87ACEA9}]
SUPPRIM�: Service: IBUpdaterService
SUPPRIM�: HKCU\Software\5e57ded0b268ea43
SUPPRIM�: HKCU\Software\BabSolution
SUPPRIM�:* HKCU\Software\DataMngr
SUPPRIM�:* HKCU\Software\DataMngr_Toolbar
SUPPRIM�: HKCU\Software\InstallCore
SUPPRIM�: HKLM\Software\5e57ded0b268ea43
SUPPRIM�: HKLM\Software\Babylon
SUPPRIM�:* HKLM\Software\DataMngr
SUPPRIM�: SearchScopes :{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SUPPRIM�: HKLM\Software\Google\Chrome\Extensions\bfcpnihmbfoaeoakalclfalkdepgiaje
SUPPRIM�: HKLM\Software\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
SUPPRIM�: HKLM\Software\Classes\CLSID\{43969E3F-3E7C-4911-A8F1-79C6CA6AC731}
SUPPRIM�: HKLM\Software\Classes\Interface\{43969E3F-3E7C-4911-A8F1-79C6CA6AC731}
SUPPRIM�: HKCU\Software\AppDataLow\Software\PriceGong
SUPPRIM�: HKLM\Software\Microsoft\Tracing\MyBabylontb_RASAPI32
SUPPRIM�: HKLM\Software\Microsoft\Tracing\MyBabylontb_RASMANCS
SUPPRIM�: HKLM\Software\Classes\Prod.cap
SUPPRIM�: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}
SUPPRIM�: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
SUPPRIM�: CLSID BHO: {A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
SUPPRIM�: [HKLM\SOFTWARE\Classes\CLSID\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}]
SUPPRIM�: CLSID BHO: {e44a1809-4d10-4ab8-b343-3326b64c7cdd}
SUPPRIM�: [HKLM\SOFTWARE\Classes\CLSID\{e44a1809-4d10-4ab8-b343-3326b64c7cdd}]
SUPPRIM�: Service: WajamUpdater
SUPPRIM�: HKCU\Software\Conduit
SUPPRIM�: HKCU\Software\Wajam
SUPPRIM�: HKLM\Software\Conduit
SUPPRIM�: SearchScopes :{DF2104D0-391B-4346-937A-07EEA5FEB555}
SUPPRIM�: HKLM\Software\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
SUPPRIM�: HKLM\Software\Google\Chrome\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp
SUPPRIM�: HKLM\Software\Classes\TypeLib\{095BFD3C-4602-4FE1-96F1-AEFAFBFD067D}
SUPPRIM�: HKLM\Software\Classes\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634}
SUPPRIM�: HKLM\Software\Classes\CLSID\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
SUPPRIM�: HKLM\Software\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
SUPPRIM�: HKLM\Software\Classes\CLSID\{5D64294B-1341-4FE7-B6D8-7C36828D4DD5}
SUPPRIM�: HKCU\Software\AppDataLow\Software\entrusted
SUPPRIM�: HKLM\Software\entrusted
SUPPRIM�: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
SUPPRIM�: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
SUPPRIM�: HKLM\Software\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
SUPPRIM�: HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater
SUPPRIM�: HKCU\Software\AppDataLow\Software\ConduitSearchScopes
SUPPRIM�: HKCU\Software\AppDataLow\Toolbar
SUPPRIM�: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
SUPPRIM�: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
SUPPRIM�: HKLM\Software\Classes\AppID\priam_bho.DLL
SUPPRIM�: HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
SUPPRIM�: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\entrusted Toolbar
SUPPRIM�: HKLM\Software\Classes\ScriptHost.Tool.1
SUPPRIM�: HKLM\Software\Classes\ScriptHost.Tool
SUPPRIM�: HKLM\Software\Classes\AppID\{562B9316-C08A-444A-9482-62080DD851AE}
SUPPRIM�: HKLM\Software\Classes\AppID\AddonsFramework.DLL
SUPPRIM�: HKLM\Software\Classes\AppID\ButtonSite.DLL
SUPPRIM�: HKLM\Software\Classes\AppID\ScriptHost.DLL
SUPPRIM�: HKLM\Software\Classes\AppID\{18B9B16E-716F-43DF-A6AD-512C7D2EB983}
SUPPRIM�: HKLM\Software\Classes\AppID\{19975B78-1907-4DD6-A437-4C48120F46A4}
SUPPRIM�: HKLM\Software\Classes\AppID\{562B9317-C08A-444A-9482-62080DD851AE}
SUPPRIM�: HKLM\Software\Classes\Interface\{045F91B3-695F-423A-98C7-8DE3C47AA020}
SUPPRIM�: HKLM\Software\Classes\Interface\{1348BD1B-C32A-41A7-9BD4-5377AA1AB925}
SUPPRIM�: HKLM\Software\Classes\Interface\{395AFE6E-8308-48DB-89BE-ED5F4AA3D3EC}
SUPPRIM�: HKLM\Software\Classes\Interface\{43B390F0-6BA2-45CA-ABF2-5DB0CEE9B49D}
SUPPRIM�: HKLM\Software\Classes\Interface\{94CADA2E-1D3F-419F-8A3D-06C58EDF53C8}
SUPPRIM�: HKLM\Software\Classes\Interface\{9E52EB8B-8DD9-4605-AD36-D352BCD482F2}
SUPPRIM�: HKLM\Software\Classes\Interface\{A1440EC3-F0FA-407A-B811-DE6668C06D29}
SUPPRIM�: HKLM\Software\Classes\Interface\{B9A84AD0-5777-46FD-8B8F-1EBD06750FBC}
SUPPRIM�: HKLM\Software\Classes\Interface\{C1995F88-1C7F-40D7-B0FA-6F107F6308B8}
SUPPRIM�: HKLM\Software\Classes\Interface\{C815E3DA-0823-49B0-9270-D1771D58B317}
SUPPRIM�: HKLM\Software\Microsoft\Tracing\ConduitInstaller_RASAPI32
SUPPRIM�: HKLM\Software\Microsoft\Tracing\ConduitInstaller_RASMANCS
SUPPRIM�: HKLM\Software\Classes\Toolbar.CT3281675
SUPPRIM�: HKLM\Software\Classes\Toolbar.CT3285358
SUPPRIM�: HKLM\Software\Classes\wajam.WajamBHO
SUPPRIM�: HKLM\Software\Classes\wajam.WajamBHO.1
SUPPRIM�: HKLM\Software\Classes\wajam.WajamDownloader
SUPPRIM�: HKLM\Software\Classes\wajam.WajamDownloader.1
========== Valeurs du Registre ==========
SUPPRIM�: Toolbar: {e44a1809-4d10-4ab8-b343-3326b64c7cdd}
SUPPRIM� RunValue: SearchProtectAll
SUPPRIM� RunValue: SearchProtect
========== El�ments de donn�e du Registre ==========
SUPPRIM�: R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page
========== Pr�f�rences navigateur ==========
PRESENT Chrome File: C:\Users\Varrin\AppData\Local\Google\Chrome\User Data\Default\Preferences
ABSENT Chrome Site: http://www.delta-search.com
SUPPRIM� Folder Chrome: C:\Users\Varrin\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
========== Dossiers ==========
SUPPRIM�: C:\Program Files\SpecialSavings
SUPPRIM�: C:\ProgramData\Babylon
SUPPRIM�: C:\ProgramData\IBUpdaterService
SUPPRIM�: C:\Users\Varrin\AppData\Roaming\BabSolution
SUPPRIM�: C:\Users\Varrin\AppData\Roaming\Babylon
SUPPRIM�: C:\Users\Varrin\AppData\Roaming\OpenCandy
SUPPRIM�: C:\Users\Varrin\AppData\Roaming\SpecialSavings
SUPPRIM�: c:\users\varrin\appdata\locallow\pricegong
SUPPRIM�: c:\users\varrin\appdata\local\google\chrome\user data\default\extensions\bfcpnihmbfoaeoakalclfalkdepgiaje
SUPPRIM�: C:\Users\Varrin\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
SUPPRIM�: C:\Program Files\Conduit
SUPPRIM�: C:\Program Files\Wajam
SUPPRIM�: C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
SUPPRIM�: C:\Users\Varrin\AppData\Local\Conduit
SUPPRIM�: C:\Users\Varrin\AppData\Local\Wajam
SUPPRIM�: C:\Users\Varrin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam
SUPPRIM�: c:\program files\entrusted
SUPPRIM�: c:\users\varrin\appdata\locallow\conduit
SUPPRIM�: c:\users\varrin\appdata\locallow\entrusted
========== Fichiers ==========
SUPPRIM�: c:\program files\specialsavings\scripthost.dll
SUPPRIM� Red�marrage: c:\programdata\ibupdaterservice\ibsvc.exe
SUPPRIM�:* c:\users\varrin\appdata\roaming\babsolution\shared\babmaint.exe
SUPPRIM�:* c:\users\varrin\appdata\roaming\babmaint.exe
SUPPRIM�: C:\Users\Varrin\AppData\Local\Temp\yontoo-C4-1A0C.log
SUPPRIM�: c:\users\varrin\appdata\local\google\chrome\user data\default\preferences
SUPPRIM�: c:\program files\wajam\ie\priam_bho.dll
SUPPRIM�: c:\program files\entrusted\prxtbentr.dll
SUPPRIM�: c:\program files\searchprotect\bin\cltmngsvc.exe
SUPPRIM� Red�marrage: c:\program files\wajam\updater\wajamupdater.exe
SUPPRIM�: c:\users\varrin\appdata\local\temp\askslib.dll
SUPPRIM�: c:\users\varrin\appdata\local\temp\nsb1b7e.exe
SUPPRIM�: c:\users\varrin\appdata\local\temp\nscc66d.exe
SUPPRIM�: c:\users\varrin\appdata\local\temp\nsfa8c2.exe
SUPPRIM�: c:\users\varrin\appdata\local\temp\nskded0.exe
SUPPRIM�: c:\users\varrin\appdata\local\temp\nskfc0f.exe
SUPPRIM�: c:\users\varrin\appdata\local\temp\nsqd30e.exe
SUPPRIM�: c:\users\varrin\appdata\local\temp\nsqfe52.exe
SUPPRIM�: c:\users\varrin\appdata\local\temp\nsr1d63.exe
SUPPRIM�: c:\users\varrin\appdata\local\temp\nsvdc9e.exe
SUPPRIM�: c:\users\varrin\appdata\local\temp\nswc9f6.exe
SUPPRIM�: c:\users\varrin\appdata\local\temp\secondstepinstaller.exe
SUPPRIM�: c:\users\varrin\appdata\local\temp\spstub.exe
SUPPRIM�: c:\users\varrin\appdata\local\temp\tb01ne.dll
SUPPRIM�: c:\users\varrin\appdata\local\temp\wajam_install.exe
========== Tache planifi�e ==========
SUPPRIM�: EPUpdater
SUPPRIM�: {9D37F58B-CD7D-41B3-97B8-73FAB31F72D2}
========== Autre ==========
NON TRAIT� Malware (98)
NON TRAIT� Superflu (157)
========== R�capitulatif ==========
16 : Processus m�moire
2 : Modules m�moire
82 : Cl�s du Registre
3 : Valeurs du Registre
1 : El�ments de donn�e du Registre
19 : Dossiers
25 : Fichiers
4 : Logiciels
3 : Pr�f�rences navigateur
2 : Tache planifi�e
2 : Autre
End of clean in 01mn 52s
========== Chemin de fichier rapport ==========
C:\Users\Varrin\AppData\Roaming\ZHP\ZHPFix[R1].txt - 27/09/2013 14:48:45 [11609]