Hello Zaede,
voilà, j'ai terminé, l''ordinateur a redémarré mais, voilà la fenêtre qui s'ouvre:
-"Incredimail has identified a tecnical glitch. Please click the OK button to report this problem, so that it can be resolved. We appreciate your help in making Incredimail better."
J'ai fermé la fenêtre, mais elle ouvre Incredimail sur Internet,je suppose qu'elle reviendra.
Pour le reste, tes explications étaient très claires et je n'ai pas eu de problèmes.
Voici les rapports:
Etape1:
Rapport de ZHPFix 1.12.3372 par Nicolas Coolman, Update du 22/11/2011
Fichier d'export Registre :
Run by Annie at 24/11/2011 08:30:21
Windows XP Home Edition Service Pack 3 (Build 2600)
Web site :
http://www.premiumorange.com/zeb-help-p ... hpfix.html========== Logiciel(s) ==========
SUPPRIME O42 - Logiciel: Viewpoint Media Player - (.Pas de propriétaire.) [HKLM] -- ViewpointMediaPlayer
ABSENT Uninstall Process: c:\program files\conduitengine\conduitengineuninstall.exe
ABSENT Uninstall Process: c:\program files\softonic_france\uninstall.exe
========== Processus mémoire ==========
SUPPRIME Memory Process: C:\Program Files\SweetIM\Messenger\SweetIM.exe
========== Clé(s) du Registre ==========
SUPPRIME [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine]
SUPPRIME [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Softonic_France Toolbar]
SUPPRIME CLSID MPSK: {4f927c0b-c2f0-11df-922c-d73ef00833ef}
SUPPRIME CLSID MPSK: {cfc84ce2-0377-11df-b291-0025b3770693}
SUPPRIME CLSID MPSK: {cfc84ce3-0377-11df-b291-0025b3770693}
ABSENT Key: Mozilla Plugin: @viewpoint.com/VMP
SUPPRIME Key: CLSID BHO: {de4e75d3-60aa-4f02-a0e4-c8a40576574c}
SUPPRIME Key: CLSID ASIC: \SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
SUPPRIME Key: CLSID ASIC: \SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
SUPPRIME Key: HKCU\Software\Iminent
SUPPRIME Key: HKCU\Software\PriceGong
SUPPRIME Key: HKLM\Software\Iminent
ABSENT Key: HKLM\Software\MetaStream
SUPPRIME Key: HKLM\Software\Mircrosoft
SUPPRIME Key: HKLM\Software\Viewpoint
ABSENT Key: HKLM\Software\MozillaPlugins\@viewpoint.com/VMP
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayer
SUPPRIME Key: HKLM\Software\Classes\axmetastream.metastreamctl
SUPPRIME Key: HKLM\Software\Classes\axmetastream.metastreamctl.1
SUPPRIME Key: HKLM\Software\Classes\AxMetaStream.MetaStreamCtlSecondary
SUPPRIME Key: HKLM\Software\Classes\AxMetaStream.MetaStreamCtlSecondary.1
SUPPRIME Key: HKLM\Software\Classes\Toolbar.CT2542115
ABSENT Key: HKLM\Software\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
ABSENT Key: HKLM\Software\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
SUPPRIME Key: HKLM\Software\Classes\TypeLib\{2D5E2D34-BED5-4B9F-9793-A31E26E6806E}
SUPPRIME Key: HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
SUPPRIME Key: HKLM\Software\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}
SUPPRIME Key: HKLM\Software\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
SUPPRIME Key: HKLM\Software\Google\Chrome\Extensions\kincjchfokkeneeofpeefomkikfkiedl
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer
ABSENT Key: CLSID BHO: {30F9B915-B755-4826-820B-08FBA6BD249D}
ABSENT Key: CLSID BHO: {4daac69c-cba7-45e2-9bc8-1044483d3352}
ABSENT Key: HKCU\Software\Softonic_France
SUPPRIME Key: HKCU\Software\SweetIM
ABSENT Key: HKCU\Software\conduitEngine
ABSENT Key: HKLM\Software\Softonic_France
SUPPRIME Key: HKLM\Software\SweetIM
SUPPRIME Key: SearchScopes :{afdbddaa-5d3f-42ee-b79c-185a7020515b}
SUPPRIME Key: HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine
SUPPRIME Key: HKLM\Software\Classes\Conduit.Engine
ABSENT Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
ABSENT Key: HKLM\Software\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
SUPPRIME Key: HKLM\Software\Classes\TypeLib\{4d3b167e-5fd8-4276-8fd7-9df19c1e4d19}
ABSENT Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4daac69c-cba7-45e2-9bc8-1044483d3352}
ABSENT Key: HKLM\Software\Classes\CLSID\{4daac69c-cba7-45e2-9bc8-1044483d3352}
ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4daac69c-cba7-45e2-9bc8-1044483d3352}
SUPPRIME Key: HKLM\Software\Classes\CLSID\{82ac53b4-164c-4b07-a016-437a8388b81a}
ABSENT Key: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
SUPPRIME Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{eee6c35b-6118-11dc-9c72-001320c79847}
ABSENT Key: HKLM\Software\conduitEngine
ABSENT Key: HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Toolbar
ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine
ABSENT Key: HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Softonic_France Toolbar
========== Valeur(s) du Registre ==========
SUPPRIME AAKE KeyValue: C:\Program Files\IncrediMail\Bin\ImApp.exe
SUPPRIME AAKE KeyValue: C:\Program Files\IncrediMail\Bin\ImpCnt.exe
SUPPRIME AAKE KeyValue: C:\Program Files\IncrediMail\Bin\ImLc.exe
ABSENT URLSearchHook: {4daac69c-cba7-45e2-9bc8-1044483d3352}
ABSENT Toolbar: {4daac69c-cba7-45e2-9bc8-1044483d3352}
ABSENT Toolbar: {30F9B915-B755-4826-820B-08FBA6BD249D}
SUPPRIME RunValue: SweetIM
ABSENT [HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{30F9B915-B755-4826-820B-08FBA6BD249D}
ABSENT [HKLM\Software\Microsoft\Internet Explorer\Toolbar]:{30F9B915-B755-4826-820B-08FBA6BD249D}
========== Dossier(s) ==========
ABSENT C:\Program Files\Viewpoint
SUPPRIME Folder: C:\Documents and Settings\Annie\Application Data\Iminent
SUPPRIME Folder: C:\Documents and Settings\Annie\Application Data\PriceGong
SUPPRIME Folder: C:\Documents and Settings\Annie\Application Data\Toolbar4
SUPPRIME Folder: C:\Program Files\Conduit
ABSENT C:\Program Files\ConduitEngine
ABSENT C:\Program Files\Softonic_France
SUPPRIME Folder: C:\Program Files\SweetIM
SUPPRIME Folder: c:\documents and settings\annie\local settings\application data\conduit
========== Fichier(s) ==========
SUPPRIME File***: c:\program files\sweetim\messenger\sweetim.exe
ABSENT File: c:\program files\incredimail\bin\imapp.exe
ABSENT File: c:\program files\incredimail\bin\impcnt.exe
ABSENT File: c:\program files\incredimail\bin\imlc.exe
ABSENT File: c:\program files\viewpoint\viewpoint experience technology\npviewpoint.dll
SUPPRIME Reboot c:\program files\object\bho_project.dll
ABSENT File: c:\program files\viewpoint\viewpoint experience technology\axmetastream.dll
ABSENT Folder/File: c:\program files\viewpoint
ABSENT Folder/File: c:\documents and settings\annie\application data\iminent
ABSENT Folder/File: c:\documents and settings\annie\application data\pricegong
ABSENT Folder/File: c:\documents and settings\annie\application data\toolbar4
ABSENT File: c:\program files\softonic_france\prxtbsof0.dll
ABSENT File: c:\program files\conduitengine\prxconduitengine.dll
ABSENT File: c:\program files\sweetim\messenger\sweetim.exe
ABSENT Folder/File: c:\program files\conduit
ABSENT Folder/File: c:\program files\conduitengine
ABSENT Folder/File: c:\program files\softonic_france
ABSENT Folder/File: c:\program files\sweetim
ABSENT Folder/File: c:\documents and settings\annie\local settings\application data\conduitengine
ABSENT Folder/File: c:\documents and settings\annie\local settings\application data\softonic_france
========== Récapitulatif ==========
1 : Processus mémoire
55 : Clé(s) du Registre
9 : Valeur(s) du Registre
9 : Dossier(s)
20 : Fichier(s)
3 : Logiciel(s)
End of clean in 08mn 49s
========== Chemin de fichier rapport ==========
C:\ZHP\ZHPFix[R1].txt - 24/11/2011 08:30:21 [7743]
Etape 2
Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.orgVersion de la base de données: 8229
Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.13
24/11/2011 10:40:52
mbam-log-2011-11-24 (10-40-51).txt
Type d'examen: Examen complet (C:\|)
Elément(s) analysé(s): 251126
Temps écoulé: 1 heure(s), 28 minute(s), 49 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 1
Dossier(s) infecté(s): 2
Fichier(s) infecté(s): 12
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\facetheme (PUP.FCTPlugin) -> Not selected for removal.
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\StartMenuLogoff (PUM.Hijack.StartMenu) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
Dossier(s) infecté(s):
c:\program files\Object (PUP.FCTPlugin) -> Not selected for removal.
c:\program files\Object\chromeaddon (PUP.FCTPlugin) -> Not selected for removal.
Fichier(s) infecté(s):
c:\system rollback data\Restore\Archive\00000089\00000001\2\Target\documents and settings\Annie\mes documents\downloads\xvidsetup.exe (Adware.Hotbar) -> Quarantined and deleted successfully.
c:\program files\Object\status.txt (PUP.FCTPlugin) -> Not selected for removal.
c:\program files\Object\bho_project.dll (PUP.FCTPlugin) -> Not selected for removal.
c:\program files\Object\chromeaddon.pem (PUP.FCTPlugin) -> Not selected for removal.
c:\program files\Object\config.ini (PUP.FCTPlugin) -> Not selected for removal.
c:\program files\Object\enable.txt (PUP.FCTPlugin) -> Not selected for removal.
c:\program files\Object\facetheme_uninstall.exe (PUP.FCTPlugin) -> Not selected for removal.
c:\program files\Object\status2.txt (PUP.FCTPlugin) -> Not selected for removal.
c:\program files\Object\chromeaddon\._included.js (PUP.FCTPlugin) -> Not selected for removal.
c:\program files\Object\chromeaddon\background.html (PUP.FCTPlugin) -> Not selected for removal.
c:\program files\Object\chromeaddon\included.js (PUP.FCTPlugin) -> Not selected for removal.
c:\program files\Object\chromeaddon\manifest.json (PUP.FCTPlugin) -> Not selected for removal.
Merci, bonne journée