Probleme de Fenêtre qui s'ouvre toutes seules

Résolu
testoue Messages postés 8 Date d'inscription   Statut Membre Dernière intervention   -  
 testoue -
Bonjour,
Voilà depuis quelques temps maintenant que j'ai des pages de pub (loie scellier, pub pour jeux , ou de sites de voiture etc....) qui s'ouvre toutes seules soit sur le bureau soit quand je navigue sur internet, j'ai avast comme antivirus et Avira mais le problème persiste et j'ai même l'impression que ça s'intensifie de jour en jour, si quelqu'un peut m'aider ça serais sympas, merci d'avance ; )

21 réponses

  • 1
  • 2
  1. Utilisateur anonyme
     
    bonjour

    * Télécharge AdwCleaner sur ton Bureau. (Merci à Xplode)

    *Double-clique sur l'icône AdwCleaner située sur ton Bureau.
    *Sur la page, clique sur le bouton «Suppression»
    *Laisse travailler l'outil.
    *Poste le rapport qui apparaît à la fin.
    (Le rapport est sauvegardé aussi sous C:\ AdwCleaner[SX].Txt)
    0
    1. testoue Messages postés 8 Date d'inscription   Statut Membre Dernière intervention  
       
      Merci pour votre aide, voilà le rapport:

      # AdwCleaner v2.011 - Rapport créé le 05/12/2012 à 18:50:00
      # Mis à jour le 02/12/2012 par Xplode
      # Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
      # Nom d'utilisateur : User - USER-PC
      # Mode de démarrage : Normal
      # Exécuté depuis : C:\Users\User\Downloads\adwcleaner (1).exe
      # Option [Suppression]


      ***** [Services] *****

      Arrêté & Supprimé : WajamUpdater

      ***** [Fichiers / Dossiers] *****

      Dossier Supprimé : C:\Program Files (x86)\Conduit
      Dossier Supprimé : C:\Program Files (x86)\Surf Canyon
      Dossier Supprimé : C:\Program Files (x86)\Tuto4pc
      Dossier Supprimé : C:\Program Files (x86)\Wajam

      ***** [Registre] *****

      Clé Supprimée : HKCU\Software\AppDataLow\Software\Conduit
      Clé Supprimée : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
      Clé Supprimée : HKCU\Software\AppDataLow\Software\PriceGong
      Clé Supprimée : HKCU\Software\AppDataLow\Software\SmartBar
      Clé Supprimée : HKCU\Software\Conduit
      Clé Supprimée : HKCU\Software\Iminent
      Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{5AB7104A-B71F-49AD-9154-F7F8806AE848}
      Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
      Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5AB7104A-B71F-49AD-9154-F7F8806AE848}
      Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
      Clé Supprimée : HKCU\Software\Offerbox
      Clé Supprimée : HKCU\Software\Softonic
      Clé Supprimée : HKCU\Software\Surf Canyon
      Clé Supprimée : HKCU\Software\Tutorials
      Clé Supprimée : HKCU\Software\TutoTag
      Clé Supprimée : HKCU\Software\Wajam
      Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634}
      Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{A3514F71-E63F-440B-8076-14226E21B2BF}
      Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
      Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\surfcanyon.DLL
      Clé Supprimée : HKLM\SOFTWARE\Classes\playerplus
      Clé Supprimée : HKLM\SOFTWARE\Classes\Prod.cap
      Clé Supprimée : HKLM\SOFTWARE\Classes\surfcanyon.BhoSite
      Clé Supprimée : HKLM\SOFTWARE\Classes\surfcanyon.BhoSite.1
      Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT2851639
      Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{095BFD3C-4602-4FE1-96F1-AEFAFBFD067D}
      Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
      Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{BA3105E9-5DE6-4A1E-A819-6F5046AB67F5}
      Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
      Clé Supprimée : HKLM\SOFTWARE\Classes\wajam.WajamBHO
      Clé Supprimée : HKLM\SOFTWARE\Classes\wajam.WajamBHO.1
      Clé Supprimée : HKLM\SOFTWARE\Classes\wajam.WajamDownloader
      Clé Supprimée : HKLM\SOFTWARE\Classes\wajam.WajamDownloader.1
      Clé Supprimée : HKLM\Software\Conduit
      Clé Supprimée : HKLM\Software\Iminent
      Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
      Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
      Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
      Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
      Clé Supprimée : HKLM\Software\Offerbox
      Clé Supprimée : HKLM\Software\Tuto4PC
      Clé Supprimée : HKLM\Software\Wajam
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{5AB7104A-B71F-49AD-9154-F7F8806AE848}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{5D64294B-1341-4FE7-B6D8-7C36828D4DD5}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{68AD96A1-2A28-4841-ABD0-F5AA45F008C9}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5AB7104A-B71F-49AD-9154-F7F8806AE848}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Surf Canyon
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Tuto4pc_is1
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Wajam
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{68AD96A1-2A28-4841-ABD0-F5AA45F008C9}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
      Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
      Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Tutorials]

      ***** [Navigateurs] *****

      -\\ Internet Explorer v9.0.8112.16455

      [OK] Le registre ne contient aucune entrée illégitime.

      -\\ Google Chrome v23.0.1271.95

      *************************

      AdwCleaner[R1].txt - [13633 octets] - [21/10/2012 19:48:04]
      AdwCleaner[R2].txt - [13685 octets] - [05/12/2012 18:48:58]
      AdwCleaner[S1].txt - [13121 octets] - [21/10/2012 19:48:26]
      AdwCleaner[S2].txt - [13868 octets] - [05/12/2012 18:50:00]

      ########## EOF - C:\AdwCleaner[S2].txt - [13929 octets] ##########
      0
  2. Utilisateur anonyme
     
    * Télécharge OTL sur ton bureau.

    * Fais un double-clic sur l'icône d'OTL pour le lancer
    /!\ pour Vista/Seven fais un clic-droit sur l'icône d'OTL et choisis "Exécuter en tant qu'administrateur"

    * Assure toi d'avoir fermé toutes les applications en court de fonctionnement.

    * Quand la fenêtre d'OTL apparaît, assure toi que dans la section "Rapport" (en haut à droite) la case "Rapport minimal" soit cochée.

    * Copies et colles le contenue de cette citation dans la partie inférieure d'OTL "Personnalisation"

    netsvcs
    msconfig
    safebootminimal
    safebootnetwork
    activex
    drivers32
    %ALLUSERSPROFILE%\Application Data\*.
    %ALLUSERSPROFILE%\Application Data\*.exe /s
    %APPDATA%\*.
    %APPDATA%\*.exe /s
    %SYSTEMDRIVE%\*.exe
    /md5start
    explorer.exe
    winlogon.exe
    userinit.exe
    wininit.exe
    services.exe
    /md5stop
    %systemroot%\system32\consrv.dll
    %systemroot%\*. /mp /s
    %systemroot%\system32\*.dll /lockedfiles
    %systemroot%\Tasks\*.job /lockedfiles
    %systemroot%\system32\drivers\*.sys /lockedfiles
    %systemroot%\System32\config\*.sav
    nslookup www.google.fr /c
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems /s
    hklm\software\clients\startmenuinternet|command /rs
    hklm\software\clients\startmenuinternet|command /64 /rs
    SAVEMBR:0
    CREATERESTOREPOINT


    * Cliques sur l'icône "Analyse" (en haut à gauche) .
    * Laisse le scan aller à son terme sans te servir du PC
    * A la fin du scan un ou deux rapports vont s'ouvrir "OTL.Txt" et ( ou ) "Extras.Txt"( dans certains cas).
    * Héberge le ou les rapports sur le site pjjoint.malekal.com ou cijoint.fr ou toofiles , puis copie/colle le ou les liens fournit dans ta prochaine réponse sur le forum

    PS:Tu peux retrouver les rapports dans le dossier C:\OTL ou sur ton bureau en fonction des cas rencontrés
    0
  3. testoue Messages postés 8 Date d'inscription   Statut Membre Dernière intervention  
     
    0
  4. Utilisateur anonyme
     
    relançe OTL .
    Fais un double-clic sur l'icône d'OTL pour le lancer
    /!\ pour Vista/Seven fais un clic-droit sur l'icône d'OTL et choisis "Exécuter en tant qu'administrateur"

    Copies et colles le contenue de cette citation (en commençant bien à :OTL , les : inclus devant OTL) dans la partie inférieure d'OTL sous "Personalisation" et cette fois ci clic CORRECTION:

    :OTL
    PRC - [2012/11/05 18:42:50 | 003,057,000 | ---- | M] () -- C:\Users\User\AppData\Local\tuto4pc_fr_15\supt4pc_fr_15.exe
    SRV - [2012/11/05 18:42:50 | 003,057,000 | ---- | M] () [Auto | Running] -- C:\Users\User\AppData\Local\tuto4pc_fr_15\supt4pc_fr_15.exe -- (supt4pc_fr_15)
    CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
    O4 - HKCU\..\Run: [BitTorrent] "D:\BitTorrent.exe" /MINIMIZED File not found
    [2012/11/08 21:40:45 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\supt4pc_fr_15
    [2012/11/08 21:40:43 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\tuto4pc_fr_15
    [2012/11/19 08:31:24 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\OfferBox
    [2012/01/20 18:01:38 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\widestream
    IE - HKCU\..\URLSearchHook: {05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} - No CLSID value found
    IE - HKCU\..\URLSearchHook: {8e5025c2-8ea3-430d-80b8-a14151068a6d} - No CLSID value found
    IE - HKCU\..\URLSearchHook: {ba14329e-9550-4989-b3f2-9732e92d17cc} - No CLSID value found
    [2012/10/21 09:23:41 | 000,000,000 | ---D | M] (uTorrentBar_FR) -- C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E} - No CLSID value found.
    [2012/11/08 21:10:24 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam
    [2012/11/08 21:10:17 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\Wajam
    IE - HKCU\..\SearchScopes\{88D1B86E-9AFF-4F58-A9B1-1BFA7BB5B645}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2851639
    IE - HKCU\..\SearchScopes\{ACC1CDA7-9693-498E-AC1F-07A72F5FCD64}: "URL" = http://websearch.ask.com/redirect?client=ie&tb=AVR-3&o=APN10398&src=kw&q={searchTerms}&locale=fr_FR&apn_ptnrs=^ABW&apn_dtid=^YYYYYY^YY^FR&apn_uid=5e183125-9647-490a-a20f-68980fc6f15

    :commands
    [EmptyTemp]
    [EmptyFlash]
    [CREATERESTOREPOINT]
    [ResetHosts]
    [Reboot]


    ===>Copie_colle le contenu du rapport texte qui apparrait au redemarrage du pc .
    0
    1. testoue Messages postés 8 Date d'inscription   Statut Membre Dernière intervention  
       
      le Pc a bien redémarrer mais je n'ai pas eu de rapport du coup j'ai relancé et là ça a marché la rapport s'est afficher après le redémarrage,
      0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. testoue Messages postés 8 Date d'inscription   Statut Membre Dernière intervention  
     
    Voilà ce que j'ai obtenu:

    All processes killed
    ========== OTL ==========
    No active process named supt4pc_fr_15.exe was found!
    Error: No service named supt4pc_fr_15 was found to stop!
    Service\Driver key supt4pc_fr_15 not found.
    File C:\Users\User\AppData\Local\tuto4pc_fr_15\supt4pc_fr_15.exe not found.
    Use Chrome's Settings page to remove the default_search_provider items.
    Registry key HKEY_CURRENT_USER\\Software\Microsoft\Windows\CurrentVersion\Run not found.
    Folder C:\Users\User\AppData\Local\supt4pc_fr_15\ not found.
    Folder C:\Users\User\AppData\Local\tuto4pc_fr_15\ not found.
    Folder C:\Users\User\AppData\Roaming\OfferBox\ not found.
    Folder C:\Users\User\AppData\Roaming\widestream\ not found.
    Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\ not found.
    Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{8e5025c2-8ea3-430d-80b8-a14151068a6d} not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8e5025c2-8ea3-430d-80b8-a14151068a6d}\ not found.
    Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\{ba14329e-9550-4989-b3f2-9732e92d17cc} not found.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ba14329e-9550-4989-b3f2-9732e92d17cc}\ not found.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\TESTER_EMBEDDED folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\TESTER_BCAPI\js folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\TESTER_BCAPI\autoTest\spec folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\TESTER_BCAPI\autoTest\lib\jasmine-1.1.0 folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\TESTER_BCAPI\autoTest\lib folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\TESTER_BCAPI\autoTest folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\TESTER_BCAPI folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\SEARCH_IN_NEW_TAB folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\SEARCH\view\style\rsx folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\SEARCH\view\style folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\SEARCH\view\script folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\SEARCH\view folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\SEARCH\resources folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\SEARCH\js folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\SEARCH\Css folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\SEARCH\buildSettings folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\SEARCH folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\RADIO_PLAYER\js\resources folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\RADIO_PLAYER\js folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\RADIO_PLAYER\css\custom-theme folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\RADIO_PLAYER\css folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\RADIO_PLAYER folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\PRICE_GONG\menu_dlg folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\PRICE_GONG\images folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\PRICE_GONG\css\custom-theme folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\PRICE_GONG\css folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\PRICE_GONG\agreement folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\PRICE_GONG folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\Optimizer\js folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\Optimizer folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\NOTIFICATION\js folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\NOTIFICATION\images\light folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\NOTIFICATION\images\dark folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\NOTIFICATION\images folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\NOTIFICATION\css folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\NOTIFICATION folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\MULTI_RSS\js\resources folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\MULTI_RSS\js folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\MULTI_RSS\img folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\MULTI_RSS\css folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\MULTI_RSS folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\HIGHLIGHTER\js folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\HIGHLIGHTER\css folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\HIGHLIGHTER folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\EMAIL_NOTIFIER\js\plugins folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\EMAIL_NOTIFIER\js folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\EMAIL_NOTIFIER\css folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\EMAIL_NOTIFIER folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\APPLICATION_BUTTON\resources folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\APPLICATION_BUTTON\Js folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\APPLICATION_BUTTON folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa\404 folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\wa folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\ui\menu\js folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\ui\menu\img folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\ui\menu\css folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\ui\menu folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\ui\gf\img folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\ui\gf\css folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\ui\gf folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\ui\gadgetFrame folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\ui\dlg\ftd\images folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\ui\dlg\ftd folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\ui\dlg folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\ui folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\searchProtector\searchProtectorSettingsDialog\images folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\searchProtector\searchProtectorSettingsDialog folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\searchProtector\SearchProtectorBubbleDialog\images folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\searchProtector\SearchProtectorBubbleDialog folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\searchProtector\js folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\searchProtector folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\options\js\resources folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\options\js folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\options\images folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\options\css folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\options folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\myStuffDialogs folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\features\js\resources folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\features\js folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\features folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\api folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\ac\res folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\ac\img folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\ac\css folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\ac folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\aboutBox\js folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\aboutBox\images folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al\aboutBox folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb\al folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content\tb folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639\content folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome\CT2851639 folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e}\chrome folder moved successfully.
    C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions\{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} folder moved successfully.
    Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E}\ not found.
    C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam folder moved successfully.
    C:\Users\User\AppData\Local\Wajam\Chrome folder moved successfully.
    C:\Users\User\AppData\Local\Wajam folder moved successfully.
    Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{88D1B86E-9AFF-4F58-A9B1-1BFA7BB5B645}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{88D1B86E-9AFF-4F58-A9B1-1BFA7BB5B645}\ not found.
    Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{ACC1CDA7-9693-498E-AC1F-07A72F5FCD64}\ deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ACC1CDA7-9693-498E-AC1F-07A72F5FCD64}\ not found.
    ========== COMMANDS ==========

    [EMPTYTEMP]

    User: All Users

    User: Default
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 400707 bytes
    ->Flash cache emptied: 56504 bytes

    User: Default User
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes
    ->Flash cache emptied: 0 bytes

    User: Public

    User: User
    ->Temp folder emptied: 16014714 bytes
    ->Temporary Internet Files folder emptied: 2930994 bytes
    ->Java cache emptied: 1120 bytes
    ->Google Chrome cache emptied: 150350065 bytes
    ->Flash cache emptied: 15488439 bytes

    %systemdrive% .tmp files removed: 0 bytes
    %systemroot% .tmp files removed: 0 bytes
    %systemroot%\System32 .tmp files removed: 0 bytes
    %systemroot%\System32 (64bit) .tmp files removed: 0 bytes
    %systemroot%\System32\drivers .tmp files removed: 0 bytes
    Windows Temp folder emptied: 1216 bytes
    %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50540 bytes
    RecycleBin emptied: 1464095190 bytes

    Total Files Cleaned = 1 573,00 mb

    [EMPTYFLASH]

    User: All Users

    User: Default
    ->Flash cache emptied: 0 bytes

    User: Default User
    ->Flash cache emptied: 0 bytes

    User: Public

    User: User
    ->Flash cache emptied: 0 bytes

    Total Flash Files Cleaned = 0,00 mb

    Restore point Set: OTL Restore Point
    C:\Windows\System32\drivers\etc\Hosts moved successfully.
    HOSTS file reset successfully

    OTL by OldTimer - Version 3.2.69.0 log created on 12052012_215528

    Files\Folders moved on Reboot...
    C:\Users\User\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
    File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.

    PendingFileRenameOperations files...

    Registry entries deleted on Reboot...
    0
  7. testoue
     
    Désoler de répondre tardivement mais je viens de rentré chez moi, je fais tout de suite, merci
    0
  8. testoue
     
    voilà le rapport:

    OTL logfile created on: 06/12/2012 19:13:08 - Run 2
    OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\User\Downloads
    64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
    Internet Explorer (Version = 9.0.8112.16421)
    Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy

    3,75 Gb Total Physical Memory | 2,35 Gb Available Physical Memory | 62,77% Memory free
    7,50 Gb Paging File | 5,85 Gb Available in Paging File | 78,04% Paging File free
    Paging file location(s): ?:\pagefile.sys [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
    Drive C: | 289,45 Gb Total Space | 188,99 Gb Free Space | 65,29% Space Free | Partition Type: NTFS
    Drive D: | 289,62 Gb Total Space | 191,79 Gb Free Space | 66,22% Space Free | Partition Type: NTFS
    Drive E: | 4,10 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF

    Computer Name: USER-PC | User Name: User | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

    [color=#E56717]========== Processes (SafeList) ==========/color

    PRC - [2012/12/05 19:49:16 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\User\Downloads\OTL.exe
    PRC - [2012/11/19 08:19:33 | 000,296,096 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
    PRC - [2012/10/30 23:50:59 | 004,297,136 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
    PRC - [2012/10/30 23:50:59 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    PRC - [2012/10/21 20:15:15 | 000,302,961 | ---- | M] () -- C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware_main.exe
    PRC - [2012/07/18 17:05:01 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
    PRC - [2012/07/18 17:04:50 | 000,348,664 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
    PRC - [2012/07/18 17:04:50 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
    PRC - [2012/05/09 17:53:46 | 000,201,112 | ---- | M] (Lavasoft) -- C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe
    PRC - [2012/01/10 14:43:10 | 000,059,392 | ---- | M] () -- C:\Facemoi\facemoi.exe
    PRC - [2010/08/04 13:40:12 | 000,611,872 | ---- | M] () -- C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe
    PRC - [2010/03/05 20:31:32 | 002,808,320 | ---- | M] (MooSoft Development Inc) -- C:\Program Files (x86)\The Cleaner\tcap.exe
    PRC - [2010/01/29 00:27:36 | 000,243,232 | ---- | M] (Acer Group) -- C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
    PRC - [2009/10/09 05:45:56 | 000,169,312 | ---- | M] (Adobe Systems Incorporated) -- c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
    PRC - [2009/08/28 10:38:58 | 001,150,496 | ---- | M] (Acer Incorporated) -- C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe
    PRC - [2009/08/27 16:09:10 | 001,253,376 | ---- | M] (MAGIX AG) -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
    PRC - [2009/01/26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
    PRC - [2008/05/12 11:38:28 | 000,611,664 | ---- | M] (Lavasoft) -- C:\Program Files (x86)\Lavasoft\Ad-Aware\aawservice.exe

    [color=#E56717]========== Modules (No Company Name) ==========/color

    MOD - [2012/11/28 04:43:17 | 000,460,904 | ---- | M] () -- C:\Users\User\AppData\Local\Google\Chrome\Application\23.0.1271.95\ppGoogleNaClPluginChrome.dll
    MOD - [2012/11/28 04:43:15 | 004,008,040 | ---- | M] () -- C:\Users\User\AppData\Local\Google\Chrome\Application\23.0.1271.95\pdf.dll
    MOD - [2012/11/28 04:42:30 | 000,587,880 | ---- | M] () -- C:\Users\User\AppData\Local\Google\Chrome\Application\23.0.1271.95\libglesv2.dll
    MOD - [2012/11/28 04:42:29 | 000,124,520 | ---- | M] () -- C:\Users\User\AppData\Local\Google\Chrome\Application\23.0.1271.95\libegl.dll
    MOD - [2012/11/28 04:42:22 | 000,157,304 | ---- | M] () -- C:\Users\User\AppData\Local\Google\Chrome\Application\23.0.1271.95\avutil-51.dll
    MOD - [2012/11/28 04:42:21 | 002,168,952 | ---- | M] () -- C:\Users\User\AppData\Local\Google\Chrome\Application\23.0.1271.95\avcodec-54.dll
    MOD - [2012/11/28 04:42:21 | 000,275,576 | ---- | M] () -- C:\Users\User\AppData\Local\Google\Chrome\Application\23.0.1271.95\avformat-54.dll
    MOD - [2012/10/21 20:15:15 | 000,302,961 | ---- | M] () -- C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware_main.exe
    MOD - [2012/01/10 14:43:10 | 000,059,392 | ---- | M] () -- C:\Facemoi\facemoi.exe
    MOD - [2010/08/04 13:40:12 | 000,611,872 | ---- | M] () -- C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe
    MOD - [2010/08/04 10:47:32 | 000,144,896 | ---- | M] () -- C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyHook.dll

    [color=#E56717]========== Services (SafeList) ==========/color

    SRV:[b]64bit:/b - [2012/10/30 23:50:59 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
    SRV:[b]64bit:/b - [2010/01/29 00:27:36 | 000,243,232 | ---- | M] (Acer Group) [Auto | Running] -- C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe -- (Updater Service)
    SRV:[b]64bit:/b - [2009/08/11 00:01:06 | 000,206,880 | ---- | M] () [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe -- (nSvcIp)
    SRV:[b]64bit:/b - [2009/08/11 00:01:04 | 000,626,208 | ---- | M] () [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe -- (ForceWare Intelligent Application Manager (IAM)
    SRV:[b]64bit:/b - [2009/07/14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
    SRV - [2012/10/21 20:15:11 | 000,285,795 | ---- | M] () [Auto | Stopped] -- C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware.exe -- (HOSTS Anti-PUPs)
    SRV - [2012/10/09 16:19:56 | 000,250,808 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
    SRV - [2012/07/18 17:05:01 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
    SRV - [2012/07/18 17:04:50 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
    SRV - [2011/11/12 14:49:13 | 000,867,080 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
    SRV - [2010/11/20 13:21:36 | 000,351,232 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- winhttp.dll -- (WinHttpAutoProxySvc)
    SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
    SRV - [2010/03/05 20:31:32 | 000,812,544 | ---- | M] (MooSoft Development LLC) [Auto | Stopped] -- C:\Program Files (x86)\The Cleaner\mhelper.exe -- (moohelp)
    SRV - [2010/01/15 22:08:38 | 000,935,208 | ---- | M] (Nero AG) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
    SRV - [2009/10/10 03:59:08 | 000,238,328 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Packard Bell Games\Packard Bell Game Console\GameConsoleService.exe -- (GameConsoleService)
    SRV - [2009/10/09 05:45:56 | 000,169,312 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor8.0)
    SRV - [2009/08/28 10:38:58 | 001,150,496 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe -- (Greg_Service)
    SRV - [2009/08/27 16:09:10 | 001,253,376 | ---- | M] (MAGIX AG) [Auto | Running] -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe -- (Fabs)
    SRV - [2009/06/10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
    SRV - [2008/08/07 10:10:02 | 003,276,800 | ---- | M] (MAGIX®) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe -- (FirebirdServerMAGIXInstance)
    SRV - [2008/05/12 11:38:28 | 000,611,664 | ---- | M] (Lavasoft) [Auto | Running] -- C:\Program Files (x86)\Lavasoft\Ad-Aware\aawservice.exe -- (aawservice)

    [color=#E56717]========== Driver Services (SafeList) ==========/color

    DRV:[b]64bit:/b - [2012/10/30 23:51:56 | 000,059,728 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswTdi.sys -- (aswTdi)
    DRV:[b]64bit:/b - [2012/10/30 23:51:55 | 000,984,144 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
    DRV:[b]64bit:/b - [2012/10/30 23:51:55 | 000,370,288 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
    DRV:[b]64bit:/b - [2012/10/30 23:51:55 | 000,071,600 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
    DRV:[b]64bit:/b - [2012/10/30 23:51:53 | 000,025,232 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswFsBlk.sys -- (aswFsBlk)
    DRV:[b]64bit:/b - [2012/10/15 17:59:28 | 000,054,072 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
    DRV:[b]64bit:/b - [2012/07/18 17:05:10 | 000,132,832 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avipbb.sys -- (avipbb)
    DRV:[b]64bit:/b - [2012/07/18 17:05:10 | 000,098,848 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt)
    DRV:[b]64bit:/b - [2012/07/18 17:05:10 | 000,027,760 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avkmgr.sys -- (avkmgr)
    DRV:[b]64bit:/b - [2012/03/01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
    DRV:[b]64bit:/b - [2012/02/15 10:01:50 | 000,052,736 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
    DRV:[b]64bit:/b - [2011/08/02 15:38:44 | 000,022,528 | ---- | M] (Apple Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netaapl64.sys -- (Netaapl)
    DRV:[b]64bit:/b - [2011/03/11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
    DRV:[b]64bit:/b - [2011/03/11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
    DRV:[b]64bit:/b - [2010/11/20 14:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
    DRV:[b]64bit:/b - [2010/11/20 12:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
    DRV:[b]64bit:/b - [2009/09/19 04:30:14 | 000,161,280 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ss_bmdm.sys -- (ss_bmdm)
    DRV:[b]64bit:/b - [2009/09/19 04:30:14 | 000,127,488 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ss_bbus.sys -- (ss_bbus)
    DRV:[b]64bit:/b - [2009/09/19 04:30:14 | 000,018,944 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ss_bmdfl.sys -- (ss_bmdfl)
    DRV:[b]64bit:/b - [2009/07/30 10:12:56 | 000,339,744 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvmf6264.sys -- (NVNET)
    DRV:[b]64bit:/b - [2009/07/14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
    DRV:[b]64bit:/b - [2009/07/14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
    DRV:[b]64bit:/b - [2009/07/14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
    DRV:[b]64bit:/b - [2009/07/03 10:31:40 | 000,982,016 | ---- | M] (Ralink Technology Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netr28ux.sys -- (netr28ux)
    DRV:[b]64bit:/b - [2009/06/10 21:35:35 | 000,408,960 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\nvm62x64.sys -- (NVENETFD)
    DRV:[b]64bit:/b - [2009/06/10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
    DRV:[b]64bit:/b - [2009/06/10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
    DRV:[b]64bit:/b - [2009/06/10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
    DRV:[b]64bit:/b - [2009/06/10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
    DRV:[b]64bit:/b - [2008/06/16 03:00:00 | 000,055,024 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
    DRV - [2009/07/14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)

    [color=#E56717]========== Standard Registry (SafeList) ==========/color

    [color=#E56717]========== Internet Explorer ==========/color

    IE:[b]64bit:/b - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=imedia_s1300&r=173611114306pe465v165y67l12296
    IE:[b]64bit:/b - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=imedia_s1300&r=173611114306pe465v165y67l12296
    IE:[b]64bit:/b - HKLM\..\SearchScopes,DefaultScope =
    IE:[b]64bit:/b - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=imedia_s1300&r=173611114306pe465v165y67l12296
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=imedia_s1300&r=173611114306pe465v165y67l12296
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
    IE - HKLM\..\SearchScopes,DefaultScope =
    IE - HKLM\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACPW
    IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7

    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&m=imedia_s1300&r=173611114306pe465v165y67l12296
    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
    IE - HKCU\..\SearchScopes,DefaultScope =
    IE - HKCU\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACPW_frFR462FR463
    IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

    [color=#E56717]========== FireFox ==========/color

    FF:[b]64bit:/b - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
    FF:[b]64bit:/b - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
    FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
    FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_37: C:\Windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.)
    FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
    FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
    FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll File not found
    FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=15.0.6.14: c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
    FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=15.0.6.14: c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
    FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.6.14: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
    FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.6.14: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
    FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=15.0.6.14: c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
    FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
    FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
    FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.4: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
    FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
    FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\User\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
    FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\User\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)

    FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{0153E448-190B-4987-BDE1-F256CADA672F}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012/11/19 08:20:02 | 000,000,000 | ---D | M]

    [2012/12/05 21:55:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\User\AppData\Roaming\mozilla\Firefox\extensions

    [color=#E56717]========== Chrome ==========/color

    CHR - homepage:
    CHR - default_search_provider: Google (Enabled)
    CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
    CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}
    CHR - homepage:
    CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
    CHR - plugin: Native Client (Enabled) = C:\Users\User\AppData\Local\Google\Chrome\Application\23.0.1271.95\ppGoogleNaClPluginChrome.dll
    CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\User\AppData\Local\Google\Chrome\Application\23.0.1271.95\pdf.dll
    CHR - plugin: Shockwave Flash (Enabled) = C:\Users\User\AppData\Local\Google\Chrome\Application\23.0.1271.95\gcswf32.dll
    CHR - plugin: Shockwave Flash (Disabled) = C:\Users\User\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
    CHR - plugin: Interest Recognizer for Widestream6 (Enabled) = C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\eppeebfgcgojgpffkdcpiljephjaboki\4.0.1938.5_0\widestream6_air_chrome.dll
    CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
    CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll
    CHR - plugin: Java(TM) Platform SE 6 U31 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll
    CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\5.0.61118.0\npctrl.dll
    CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll
    CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpjplug.dll
    CHR - plugin: RealPlayer(tm) HTML5VideoShim Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
    CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll
    CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
    CHR - plugin: RealNetworks(tm) Chrome Background Extension Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
    CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
    CHR - Extension: YouTube = C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\
    CHR - Extension: Recherche Google = C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\
    CHR - Extension: AdBlock = C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.48_0\
    CHR - Extension: avast! WebRep = C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1474_0\
    CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.5_0\
    CHR - Extension: Gmail = C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

    O1 HOSTS File: ([2012/12/05 21:56:13 | 000,000,098 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
    O1 - Hosts: 127.0.0.1 localhost
    O1 - Hosts: ::1 localhost
    O2:[b]64bit:/b - BHO: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
    O2:[b]64bit:/b - BHO: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION)
    O2 - BHO: (FGCatchUrl) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files (x86)\FlashGet\jccatch.dll (www.flashget.com)
    O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
    O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
    O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
    O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
    O2 - BHO: (FlashGet GetFlash Class) - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files (x86)\FlashGet\getflash.dll (www.flashget.com)
    O3:[b]64bit:/b - HKLM\..\Toolbar: (avast! WebRep) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
    O3:[b]64bit:/b - HKLM\..\Toolbar: (Easy Photo Print) - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION)
    O3:[b]64bit:/b - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
    O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
    O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
    O4:[b]64bit:/b - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
    O4 - HKLM..\Run: [Ad-Aware Browsing Protection] C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe (Lavasoft)
    O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
    O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
    O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
    O4 - HKLM..\Run: [HOSTS Anti-Adware_PUPs] C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware_main.exe ()
    O4 - HKLM..\Run: [Hotkey Utility] C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe ()
    O4 - HKLM..\Run: [TkBellExe] c:\program files (x86)\real\realplayer\Update\realsched.exe (RealNetworks, Inc.)
    O4 - HKLM..\Run: [TrayServer] C:\Program Files (x86)\MAGIX\Video_deluxe_17_Plus_Version_a_telecharger\Trayserver_FR.exe (Magix)
    O4 - HKCU..\Run: [BitTorrent] "D:\BitTorrent.exe" /MINIMIZED File not found
    O4 - HKCU..\Run: [GM4IE] C:\Facemoi\facemoi.exe ()
    O4 - HKCU..\Run: [tcactive] C:\Program Files (x86)\The Cleaner\tcap.exe (MooSoft Development Inc)
    O4 - HKCU..\Run: [uTorrent] C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.)
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
    O8:[b]64bit:/b - Extra context menu item: &Télécharger avec FlashGet - C:\Program Files (x86)\FlashGet\JC_LINK.HTM ()
    O8:[b]64bit:/b - Extra context menu item: &Tout télécharger avec FlashGet - C:\Program Files (x86)\FlashGet\JC_ALL.HTM ()
    O8 - Extra context menu item: &Télécharger avec FlashGet - C:\Program Files (x86)\FlashGet\JC_LINK.HTM ()
    O8 - Extra context menu item: &Tout télécharger avec FlashGet - C:\Program Files (x86)\FlashGet\JC_ALL.HTM ()
    O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files (x86)\FlashGet\flashget.exe (FlashGet.com)
    O9 - Extra 'Tools' menuitem : FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files (x86)\FlashGet\flashget.exe (FlashGet.com)
    O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
    O13[b]64bit:/b - gopher Prefix: missing
    O13 - gopher Prefix: missing
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab (Java Plug-in 1.6.0_37)
    O16 - DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab (Java Plug-in 1.6.0_37)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab (Java Plug-in 1.6.0_37)
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{13C00A54-3228-4A6E-BDBA-C43BCCE91A5E}: DhcpNameServer = 192.168.1.254
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7D978AEE-EAB4-4483-ACE2-596EF3A21F4C}: DhcpNameServer = 192.168.1.254
    O18:[b]64bit:/b - Protocol\Handler\msdaipp - No CLSID value found
    O18:[b]64bit:/b - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found
    O18:[b]64bit:/b - Protocol\Handler\msdaipp\oledb - No CLSID value found
    O18:[b]64bit:/b - Protocol\Handler\ms-itss - No CLSID value found
    O18:[b]64bit:/b - Protocol\Handler\mso-offdap - No CLSID value found
    O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
    O18:[b]64bit:/b - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
    O18:[b]64bit:/b - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
    O18:[b]64bit:/b - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
    O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
    O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
    O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation)
    O20:[b]64bit:/b - HKLM Winlogon: Shell - (explorer.exe) - explorer.exe (Microsoft Corporation)
    O20:[b]64bit:/b - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
    O20:[b]64bit:/b - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - SystemPropertiesPerformance.exe (Microsoft Corporation)
    O20 - HKLM Winlogon: Shell - (explorer.exe) - explorer.exe (Microsoft Corporation)
    O20 - HKLM Winlogon: UserInit - (userinit.exe) - userinit.exe (Microsoft Corporation)
    O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - SystemPropertiesPerformance.exe (Microsoft Corporation)
    O21:[b]64bit:/b - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
    O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
    O29:[b]64bit:/b - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation)
    O29 - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation)
    O32 - HKLM CDRom: AutoRun - 1
    O34 - HKLM BootExecute: (autocheck autochk *)
    O34 - HKLM BootExecute: (lsdelete)
    O35:[b]64bit:/b - HKLM\..comfile [open] -- "%1" %*
    O35:[b]64bit:/b - HKLM\..exefile [open] -- "%1" %*
    O35 - HKLM\..comfile [open] -- "%1" %*
    O35 - HKLM\..exefile [open] -- "%1" %*
    O37:[b]64bit:/b - HKLM\...com [@ = comfile] -- "%1" %*
    O37:[b]64bit:/b - HKLM\...exe [@ = exefile] -- "%1" %*
    O37 - HKLM\...com [@ = comfile] -- "%1" %*
    O37 - HKLM\...exe [@ = exefile] -- "%1" %*
    O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
    O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
    O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

    MsConfig:64bit - StartUpFolder: C:^Users^User^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.3.lnk - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe - ()
    MsConfig:64bit - StartUpReg: [b]BitTorrent/b - hkey= - key= - File not found
    MsConfig:64bit - StartUpReg: [b]Flashget/b - hkey= - key= - C:\Program Files (x86)\FlashGet\FlashGet.exe (FlashGet.com)
    MsConfig:64bit - StartUpReg: [b]iTunesHelper/b - hkey= - key= - File not found
    MsConfig:64bit - StartUpReg: [b]SpybotSD TeaTimer/b - hkey= - key= - C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
    MsConfig:64bit - StartUpReg: [b]TkBellExe/b - hkey= - key= - C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.)
    MsConfig:64bit - StartUpReg: [b]WinampAgent/b - hkey= - key= - File not found
    MsConfig:64bit - State: "startup" - Reg Error: Key error.

    SafeBootMin:[b]64bit:/b AppMgmt - Service
    SafeBootMin:[b]64bit:/b Base - Driver Group
    SafeBootMin:[b]64bit:/b Boot Bus Extender - Driver Group
    SafeBootMin:[b]64bit:/b Boot file system - Driver Group
    SafeBootMin:[b]64bit:/b File system - Driver Group
    SafeBootMin:[b]64bit:/b Filter - Driver Group
    SafeBootMin:[b]64bit:/b HelpSvc - Service
    SafeBootMin:[b]64bit:/b PCI Configuration - Driver Group
    SafeBootMin:[b]64bit:/b PNP Filter - Driver Group
    SafeBootMin:[b]64bit:/b Primary disk - Driver Group
    SafeBootMin:[b]64bit:/b sacsvr - Service
    SafeBootMin:[b]64bit:/b SCSI Class - Driver Group
    SafeBootMin:[b]64bit:/b System Bus Extender - Driver Group
    SafeBootMin:[b]64bit:/b vmms - Service
    SafeBootMin:[b]64bit:/b WinDefend - C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
    SafeBootMin:[b]64bit:/b {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
    SafeBootMin:[b]64bit:/b {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
    SafeBootMin:[b]64bit:/b {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
    SafeBootMin:[b]64bit:/b {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
    SafeBootMin:[b]64bit:/b {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
    SafeBootMin:[b]64bit:/b {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
    SafeBootMin:[b]64bit:/b {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
    SafeBootMin:[b]64bit:/b {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
    SafeBootMin:[b]64bit:/b {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
    SafeBootMin:[b]64bit:/b {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
    SafeBootMin:[b]64bit:/b {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
    SafeBootMin:[b]64bit:/b {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
    SafeBootMin:[b]64bit:/b {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
    SafeBootMin:[b]64bit:/b {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
    SafeBootMin:[b]64bit:/b {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
    SafeBootMin:[b]64bit:/b {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
    SafeBootMin:[b]64bit:/b {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
    SafeBootMin: aawservice - C:\Program Files (x86)\Lavasoft\Ad-Aware\aawservice.exe (Lavasoft)
    SafeBootMin: AppMgmt - Service
    SafeBootMin: Base - Driver Group
    SafeBootMin: Boot Bus Extender - Driver Group
    SafeBootMin: Boot file system - Driver Group
    SafeBootMin: File system - Driver Group
    SafeBootMin: Filter - Driver Group
    SafeBootMin: HelpSvc - Service
    SafeBootMin: PCI Configuration - Driver Group
    SafeBootMin: PNP Filter - Driver Group
    SafeBootMin: Primary disk - Driver Group
    SafeBootMin: sacsvr - Service
    SafeBootMin: SCSI Class - Driver Group
    SafeBootMin: System Bus Extender - Driver Group
    SafeBootMin: vmms - Service
    SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
    SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
    SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
    SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
    SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
    SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
    SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
    SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
    SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
    SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
    SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
    SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
    SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
    SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
    SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
    SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
    SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

    SafeBootNet:[b]64bit:/b AppMgmt - Service
    SafeBootNet:[b]64bit:/b Base - Driver Group
    SafeBootNet:[b]64bit:/b Boot Bus Extender - Driver Group
    SafeBootNet:[b]64bit:/b Boot file system - Driver Group
    SafeBootNet:[b]64bit:/b File system - Driver Group
    SafeBootNet:[b]64bit:/b Filter - Driver Group
    SafeBootNet:[b]64bit:/b HelpSvc - Service
    SafeBootNet:[b]64bit:/b Messenger - Service
    SafeBootNet:[b]64bit:/b NDIS Wrapper - Driver Group
    SafeBootNet:[b]64bit:/b NetBIOSGroup - Driver Group
    SafeBootNet:[b]64bit:/b NetDDEGroup - Driver Group
    SafeBootNet:[b]64bit:/b Network - Driver Group
    SafeBootNet:[b]64bit:/b NetworkProvider - Driver Group
    SafeBootNet:[b]64bit:/b PCI Configuration - Driver Group
    SafeBootNet:[b]64bit:/b PNP Filter - Driver Group
    SafeBootNet:[b]64bit:/b PNP_TDI - Driver Group
    SafeBootNet:[b]64bit:/b Primary disk - Driver Group
    SafeBootNet:[b]64bit:/b rdsessmgr - Service
    SafeBootNet:[b]64bit:/b sacsvr - Service
    SafeBootNet:[b]64bit:/b SCSI Class - Driver Group
    SafeBootNet:[b]64bit:/b Streams Drivers - Driver Group
    SafeBootNet:[b]64bit:/b System Bus Extender - Driver Group
    SafeBootNet:[b]64bit:/b TDI - Driver Group
    SafeBootNet:[b]64bit:/b vmms - Service
    SafeBootNet:[b]64bit:/b WinDefend - C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
    SafeBootNet:[b]64bit:/b WudfUsbccidDriver - Driver
    SafeBootNet:[b]64bit:/b {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
    SafeBootNet:[b]64bit:/b {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
    SafeBootNet:[b]64bit:/b {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
    SafeBootNet:[b]64bit:/b {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
    SafeBootNet:[b]64bit:/b {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
    SafeBootNet:[b]64bit:/b {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
    SafeBootNet:[b]64bit:/b {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
    SafeBootNet:[b]64bit:/b {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
    SafeBootNet:[b]64bit:/b {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
    SafeBootNet:[b]64bit:/b {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
    SafeBootNet:[b]64bit:/b {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
    SafeBootNet:[b]64bit:/b {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
    SafeBootNet:[b]64bit:/b {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
    SafeBootNet:[b]64bit:/b {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
    SafeBootNet:[b]64bit:/b {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
    SafeBootNet:[b]64bit:/b {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
    SafeBootNet:[b]64bit:/b {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
    SafeBootNet:[b]64bit:/b {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
    SafeBootNet:[b]64bit:/b {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
    SafeBootNet:[b]64bit:/b {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
    SafeBootNet:[b]64bit:/b {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
    SafeBootNet:[b]64bit:/b {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
    SafeBootNet: aawservice - C:\Program Files (x86)\Lavasoft\Ad-Aware\aawservice.exe (Lavasoft)
    SafeBootNet: AppMgmt - Service
    SafeBootNet: Base - Driver Group
    SafeBootNet: Boot Bus Extender - Driver Group
    SafeBootNet: Boot file system - Driver Group
    SafeBootNet: File system - Driver Group
    SafeBootNet: Filter - Driver Group
    SafeBootNet: HelpSvc - Service
    SafeBootNet: Messenger - Service
    SafeBootNet: NDIS Wrapper - Driver Group
    SafeBootNet: NetBIOSGroup - Driver Group
    SafeBootNet: NetDDEGroup - Driver Group
    SafeBootNet: Network - Driver Group
    SafeBootNet: NetworkProvider - Driver Group
    SafeBootNet: PCI Configuration - Driver Group
    SafeBootNet: PNP Filter - Driver Group
    SafeBootNet: PNP_TDI - Driver Group
    SafeBootNet: Primary disk - Driver Group
    SafeBootNet: rdsessmgr - Service
    SafeBootNet: sacsvr - Service
    SafeBootNet: SCSI Class - Driver Group
    SafeBootNet: Streams Drivers - Driver Group
    SafeBootNet: System Bus Extender - Driver Group
    SafeBootNet: TDI - Driver Group
    SafeBootNet: vmms - Service
    SafeBootNet: WudfUsbccidDriver - Driver
    SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
    SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
    SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
    SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
    SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
    SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
    SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
    SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
    SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
    SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
    SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
    SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
    SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
    SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
    SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
    SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
    SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
    SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
    SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
    SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
    SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
    SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

    ActiveX:[b]64bit:/b {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
    ActiveX:[b]64bit:/b {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
    ActiveX:[b]64bit:/b {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
    ActiveX:[b]64bit:/b {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
    ActiveX:[b]64bit:/b {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
    ActiveX:[b]64bit:/b {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
    ActiveX:[b]64bit:/b {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
    ActiveX:[b]64bit:/b {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
    ActiveX:[b]64bit:/b {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
    ActiveX:[b]64bit:/b {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
    ActiveX:[b]64bit:/b {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
    ActiveX:[b]64bit:/b {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
    ActiveX:[b]64bit:/b {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
    ActiveX:[b]64bit:/b {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings
    ActiveX:[b]64bit:/b {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
    ActiveX:[b]64bit:/b {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
    ActiveX:[b]64bit:/b {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
    ActiveX:[b]64bit:/b {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
    ActiveX:[b]64bit:/b {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
    ActiveX:[b]64bit:/b {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
    ActiveX:[b]64bit:/b {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
    ActiveX:[b]64bit:/b >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
    ActiveX:[b]64bit:/b >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig
    ActiveX:[b]64bit:/b >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
    ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
    ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
    ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
    ActiveX: {370DFBF3-12E9-8CF8-AD37-DECECFBC668C} - Themes Setup
    ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
    ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
    ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
    ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
    ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
    ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
    ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
    ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
    ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
    ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Dossiers Web
    ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
    ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
    ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
    ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\SysWOW64\ie4uinit.exe -BaseSettings
    ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
    ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
    ActiveX: {C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD} - .NET Framework
    ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
    ActiveX: {D27CDB6E-AE6D-11CF-96B8-444553540000} - C:\Windows\SysWOW64\Adobe
    ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
    ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
    ActiveX: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
    ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
    ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\SysWOW64\ie4uinit.exe -UserIconConfig
    ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\iedkcs32.dll",BrandIEActiveSetup SIGNUP

    Drivers32:[b]64bit:/b aux - wdmaud.drv (Microsoft Corporation)
    Drivers32:[b]64bit:/b midi - wdmaud.drv (Microsoft Corporation)
    Drivers32:[b]64bit:/b midimapper - midimap.dll (Microsoft Corporation)
    Drivers32:[b]64bit:/b mixer - wdmaud.drv (Microsoft Corporation)
    Drivers32:[b]64bit:/b msacm.imaadpcm - imaadp32.acm (Microsoft Corporation)
    Drivers32:[b]64bit:/b msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
    Drivers32:[b]64bit:/b msacm.msadpcm - msadp32.acm (Microsoft Corporation)
    Drivers32:[b]64bit:/b msacm.msg711 - msg711.acm (Microsoft Corporation)
    Drivers32:[b]64bit:/b msacm.msgsm610 - msgsm32.acm (Microsoft Corporation)
    Drivers32:[b]64bit:/b vidc.i420 - iyuv_32.dll (Microsoft Corporation)
    Drivers32:[b]64bit:/b vidc.iyuv - iyuv_32.dll (Microsoft Corporation)
    Drivers32:[b]64bit:/b vidc.mrle - msrle32.dll (Microsoft Corporation)
    Drivers32:[b]64bit:/b vidc.msvc - msvidc32.dll (Microsoft Corporation)
    Drivers32:[b]64bit:/b vidc.uyvy - msyuv.dll (Microsoft Corporation)
    Drivers32:[b]64bit:/b vidc.yuy2 - msyuv.dll (Microsoft Corporation)
    Drivers32:[b]64bit:/b vidc.yvu9 - tsbyuv.dll (Microsoft Corporation)
    Drivers32:[b]64bit:/b vidc.yvyu - msyuv.dll (Microsoft Corporation)
    Drivers32:[b]64bit:/b wave - wdmaud.drv (Microsoft Corporation)
    Drivers32:[b]64bit:/b wavemapper - msacm32.drv (Microsoft Corporation)
    Drivers32: aux - wdmaud.drv (Microsoft Corporation)
    Drivers32: midi - wdmaud.drv (Microsoft Corporation)
    Drivers32: midimapper - midimap.dll (Microsoft Corporation)
    Drivers32: mixer - wdmaud.drv (Microsoft Corporation)
    Drivers32: msacm.imaadpcm - imaadp32.acm (Microsoft Corporation)
    Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
    Drivers32: msacm.msadpcm - msadp32.acm (Microsoft Corporation)
    Drivers32: msacm.msaudio1 - msaud32.acm (Microsoft Corporation)
    Drivers32: msacm.msg711 - msg711.acm (Microsoft Corporation)
    Drivers32: msacm.msgsm610 - msgsm32.acm (Microsoft Corporation)
    Drivers32: msacm.sl_anet - sl_anet.acm (Sipro Lab Telecom Inc.)
    Drivers32: vidc.cvid - iccvid.dll (Radius Inc.)
    Drivers32: vidc.i420 - iyuv_32.dll (Microsoft Corporation)
    Drivers32: vidc.iyuv - iyuv_32.dll (Microsoft Corporation)
    Drivers32: VIDC.MP42 - mpg4c32.dll (Microsoft Corporation)
    Drivers32: VIDC.MPG4 - mpg4c32.dll (Microsoft Corporation)
    Drivers32: vidc.mrle - msrle32.dll (Microsoft Corporation)
    Drivers32: vidc.msvc - msvidc32.dll (Microsoft Corporation)
    Drivers32: vidc.uyvy - msyuv.dll (Microsoft Corporation)
    Drivers32: vidc.yuy2 - msyuv.dll (Microsoft Corporation)
    Drivers32: vidc.yvu9 - tsbyuv.dll (Microsoft Corporation)
    Drivers32: vidc.yvyu - msyuv.dll (Microsoft Corporation)
    Drivers32: wave - wdmaud.drv (Microsoft Corporation)
    Drivers32: wavemapper - msacm32.drv (Microsoft Corporation)
    PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

    CREATERESTOREPOINT
    Restore point Set: OTL Restore Point

    [color=#E56717]========== Files/Folders - Created Within 30 Days ==========/color

    [2012/12/05 21:40:38 | 000,000,000 | ---D | C] -- C:\_OTL
    [2012/12/02 22:28:02 | 000,000,000 | -HSD | C] -- C:\Config.Msi
    [2012/12/02 20:34:57 | 000,000,000 | ---D | C] -- C:\Users\User\Desktop\Nouveau dossier
    [2012/11/29 17:24:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\monAlbumPhoto
    [2012/11/29 17:23:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\monAlbumPhoto
    [2012/11/29 17:23:52 | 000,000,000 | ---D | C] -- C:\ProgramData\albumphoto
    [2012/11/28 18:59:34 | 000,000,000 | ---D | C] -- C:\Users\User\Desktop\dossier de loan pour aurelia
    [2012/11/27 20:55:33 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\thecleaner
    [2012/11/27 20:54:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Cleaner
    [2012/11/27 20:54:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\The Cleaner
    [2012/11/27 20:52:16 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\WinZip
    [2012/11/27 20:52:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip
    [2012/11/27 20:51:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\WinZip
    [2012/11/19 08:20:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\xing shared
    [2012/11/19 08:19:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks
    [2012/11/18 18:11:28 | 000,054,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\WdfLdr.sys
    [2012/11/18 18:11:28 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wdfres.dll
    [2012/11/18 18:06:21 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
    [2012/11/18 18:06:21 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
    [2012/11/18 18:06:19 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
    [2012/11/18 18:06:19 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
    [2012/11/18 18:06:19 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
    [2012/11/18 18:06:19 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
    [2012/11/18 18:06:19 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
    [2012/11/18 18:06:19 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
    [2012/11/18 18:06:18 | 001,494,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
    [2012/11/18 18:06:18 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
    [2012/11/18 18:06:17 | 002,312,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
    [2012/11/18 18:06:17 | 000,729,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
    [2012/11/18 18:06:15 | 000,816,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
    [2012/11/18 18:06:15 | 000,717,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
    [2012/11/18 18:06:15 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
    [2012/11/18 18:04:17 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFPlatform.dll
    [2012/11/18 18:04:16 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFx.dll
    [2012/11/18 18:04:16 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFHost.exe
    [2012/11/18 18:04:16 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFCoinstaller.dll
    [2012/11/18 10:57:32 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcore6.dll
    [2012/11/18 10:57:32 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dhcpcore6.dll
    [2012/11/18 10:57:32 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dhcpcsvc6.dll
    [2012/11/18 10:57:22 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcorehc.dll
    [2012/11/18 10:57:22 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncsi.dll
    [2012/11/18 10:57:22 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcorehc.dll
    [2012/11/18 10:57:22 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncsi.dll
    [2012/11/18 10:57:21 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netevent.dll
    [2012/11/18 10:57:21 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netevent.dll
    [2012/11/18 10:57:04 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\synceng.dll
    [2012/11/18 10:57:04 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\synceng.dll
    [2012/11/08 21:39:27 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\vlc
    [2012/11/08 21:39:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
    [2012/11/08 21:38:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN
    [2012/11/08 21:10:51 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\FileTypeAssistant
    [2012/11/08 21:10:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\File Type Assistant

    [color=#E56717]========== Files - Modified Within 30 Days ==========/color

    [2012/12/06 19:14:49 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
    [2012/12/06 19:04:00 | 000,001,070 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
    [2012/12/06 18:23:01 | 000,001,074 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2508528701-1052010737-183676359-1001UA.job
    [2012/12/06 18:19:00 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
    [2012/12/06 12:55:12 | 000,009,920 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
    [2012/12/06 12:55:12 | 000,009,920 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
    [2012/12/06 12:52:45 | 001,549,936 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
    [2012/12/06 12:52:45 | 000,704,464 | ---- | M] () -- C:\Windows\SysNative\perfh00C.dat
    [2012/12/06 12:52:45 | 000,616,032 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
    [2012/12/06 12:52:45 | 000,130,770 | ---- | M] () -- C:\Windows\SysNative\perfc00C.dat
    [2012/12/06 12:52:45 | 000,106,412 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
    [2012/12/06 12:47:16 | 000,001,066 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
    [2012/12/06 12:47:02 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
    [2012/12/06 12:47:00 | 3019,399,168 | -HS- | M] () -- C:\hiberfil.sys
    [2012/12/05 21:56:13 | 000,000,098 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\Hosts
    [2012/12/02 09:23:00 | 000,001,022 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2508528701-1052010737-183676359-1001Core.job
    [2012/11/30 16:25:54 | 000,002,489 | ---- | M] () -- C:\Users\User\Desktop\Google Chrome.lnk
    [2012/11/30 15:46:14 | 000,403,816 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
    [2012/11/29 17:24:22 | 000,000,798 | ---- | M] () -- C:\Users\User\Application Data\Microsoft\Internet Explorer\Quick Launch\monAlbumPhoto.lnk
    [2012/11/29 17:24:22 | 000,000,774 | ---- | M] () -- C:\Users\User\Desktop\monAlbumPhoto.lnk
    [2012/11/27 20:54:27 | 000,000,970 | ---- | M] () -- C:\Users\Public\Desktop\The Cleaner 2011.lnk
    [2012/11/27 20:52:10 | 000,002,259 | ---- | M] () -- C:\Users\Public\Desktop\WinZip.lnk
    [2012/11/19 08:30:54 | 000,000,954 | ---- | M] () -- C:\Windows\SysWow64\InstallUtil.InstallLog
    [2012/11/19 08:24:16 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\config.nt
    [2012/11/19 08:20:22 | 000,001,096 | ---- | M] () -- C:\Users\Public\Desktop\RealPlayer.lnk
    [2012/11/19 08:19:54 | 000,198,864 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\rmoc3260.dll
    [2012/11/19 08:19:38 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5016.dll
    [2012/11/19 08:19:38 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\SysWow64\pndx5032.dll
    [2012/11/19 08:19:35 | 000,272,896 | ---- | M] (Progressive Networks) -- C:\Windows\SysWow64\pncrt.dll
    [2012/11/08 21:40:26 | 000,000,000 | ---- | M] () -- C:\Windows\SysWow64\extensions.sqlite
    [2012/11/08 21:39:20 | 000,001,078 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
    [2012/11/08 21:38:44 | 022,912,657 | ---- | M] () -- C:\Users\User\Desktop\vlc-2-0-4-win32.exe

    [color=#E56717]========== Files Created - No Company Name ==========/color

    [2012/12/05 19:54:20 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
    [2012/11/29 17:24:22 | 000,000,798 | ---- | C] () -- C:\Users\User\Application Data\Microsoft\Internet Explorer\Quick Launch\monAlbumPhoto.lnk
    [2012/11/29 17:24:22 | 000,000,774 | ---- | C] () -- C:\Users\User\Desktop\monAlbumPhoto.lnk
    [2012/11/27 20:54:27 | 000,000,970 | ---- | C] () -- C:\Users\Public\Desktop\The Cleaner 2011.lnk
    [2012/11/27 20:52:10 | 000,002,259 | ---- | C] () -- C:\Users\Public\Desktop\WinZip.lnk
    [2012/11/19 08:20:22 | 000,001,096 | ---- | C] () -- C:\Users\Public\Desktop\RealPlayer.lnk
    [2012/11/18 18:11:32 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
    [2012/11/18 18:04:16
    0
  9. Utilisateur anonyme
     
    Pour pouvoir exploiter ton rapport tu dois l'heberger comme indiqué dans l'explicatif
    0
    1. testoue
       
      ha pardon j'avais oublié, voilà les liens :

      http://pjjoint.malekal.com/files.php?read=OTL_20121206_l56i5u7l10

      http://pjjoint.malekal.com/files.php?read=OTL_20121206_l56i5u7l10&html=on&filtre=legitime

      http://pjjoint.malekal.com/files.php?read=OTL_20121206_l56i5u7l10&html=on
      0
  10. Utilisateur anonyme
     
    Télécharge USBFIX sur ton bureau (Merci à El Desaparecido/C_XX)

    http://eldesaparecido.com/tools/UsbFix.exe

    \ !/Désactive provisoirement la protection en temps réel de ton Antivirus et de tes Antispywares.\ !/
    * Double-clique sur l'icône Usbfix située sur ton Bureau.
    * Clique sur le bouton.
    * Suppression
    * Branches tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) susceptible d'avoir été infectées sans les ouvrir
    * Cliques sur OK
    * Laisses Usbfix scanner ton système
    * Postes le rapport qui se trouve ici ===========?C:\ UsbFix.txt

    \ !/Apres l'option suppression il est recommander de redémarrer votre pc .Pensez a réactiver vos protections . (Antivirus et Antispywares.)\ !/

    ========================================================
    Aprés Usbfix

    * Télécharge et installe : Malwarebyte's Anti-Malware
    * A la fin de l'installation, veille à ce que l'option « mettre a jour Malwarebyte's Anti-Malware » soit cochée
    * Lance MBAM et laisse les Mises à jour se télécharger (sinon fais les manuellement au lancement du programme)
    * Puis va dans l'onglet "Recherche", coche "Exécuter un examen complet" puis "Rechercher"
    * Sélectionne tes disques durs" puis clique sur "Lancer l'examen"
    * A la fin du scan, clique sur Afficher les résultats
    * Coche tous les éléments détectés puis clique sur Supprimer la sélection
    * Enregistre le rapport
    * S'il t'est demandé de redémarrer, clique sur Yes
    * Poste le rapport de scan après la suppression ici.(poste le rapport, même si rien n'est détecté.)
    * Si tu as besoin d'aide regarde ce tutorial
    https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
    0
  11. testoue
     
    Désoler encore une fois pour ma réponse tardive, mais je suis rentrer tard encore... enfin bref j'ai lancer usbfix mais ça a planter je recommence de suite.
    0
  12. testoue
     
    Alors j'ai relancé usb fix et ça a replanter en me disant que GO.exe à cesser de fonctionné et je n'obtiens pas de rapport, est ce que je lance Malwarebyte's Anti-Malware quand même, meri pour ta réponse.
    0
  13. Utilisateur anonyme
     
    est ce que je lance Malwarebyte's Anti-Malware quand même, meri pour ta réponse.

    Oui

    Pour Usbfix relances le mais en mode sans echec.
    Démarrer Windows en « mode sans échec »

    Avec la touche F8
    - Au démarrage de l'ordinateur presser successivement (intervalle d'une seconde) la touche F8 jusqu'à arriver au menu de démarrage avancé permettant de sélectionner le Mode sans échec.
    - Vous naviguez dans le menu jusqu'à l'option « Mode sans échec avec prise en charge réseau» grâce aux flèches de direction.
    - Validez avec la touche Entrée.
    Note : Sur certains ordinateurs, c'est la touche F5 qu'il convient d'utiliser.
    0
  14. testoue Messages postés 8 Date d'inscription   Statut Membre Dernière intervention  
     
    ça y est ça a marché pour usbfix voilà loe rapport

    ############################## | UsbFix V 7.101 | [Suppression]

    Utilisateur: User (Administrateur) # USER-PC
    Mis à jour le 05/12/2012 par El Desaparecido
    Lancé à 22:33:01 | 07/12/2012

    Site Web: https://www.sosvirus.net/
    Contact: contact@eldesaparecido.com

    PC: Packard Bell (imedia S1300) (x64-based PC
    CPU: AMD Athlon(tm) II X2 220 Processor (2812)
    RAM -> [Total : 3839 | Free : 2703]
    BIOS: Default System BIOS
    BOOT: Fail-safe boot

    OS: Microsoft Windows 7 Édition Familiale Premium (6.1.7601 64-Bit) # Service Pack 1
    WB: Windows Internet Explorer 9.0.8112.16421

    SC: Security Center Service [Enabled]
    WU: Windows Update Service [Enabled]
    AV: avast! Antivirus [Enabled | Updated]
    FW: Windows FireWall Service [(!) Disabled]

    C:\ (%systemdrive%) -> Disque fixe # 289 Go (184 Go libre(s) - 64%) [Packard Bell] # NTFS
    D:\ -> Disque fixe # 290 Go (192 Go libre(s) - 66%) [DATA] # NTFS
    E:\ -> CD-ROM
    F:\ -> Disque fixe # 192 Go (87 Go libre(s) - 45%) [] # NTFS
    G:\ -> Disque amovible # 15 Go (178 Mo libre(s) - 1%) [KINGSTON] # FAT32
    H:\ -> Disque amovible # 971 Mo (848 Mo libre(s) - 87%) [] # FAT
    L:\ -> Disque fixe # 1671 Go (1597 Go libre(s) - 96%) [Nouveau nom] # NTFS

    ################## | Processus Actif |

    C:\Windows\system32\csrss.exe (344)
    C:\Windows\system32\wininit.exe (372)
    C:\Windows\system32\csrss.exe (392)
    C:\Windows\system32\services.exe (428)
    C:\Windows\system32\lsass.exe (460)
    C:\Windows\system32\lsm.exe (468)
    C:\Windows\system32\winlogon.exe (480)
    C:\Windows\system32\svchost.exe (604)
    C:\Windows\system32\svchost.exe (676)
    C:\Windows\System32\svchost.exe (744)
    C:\Windows\system32\svchost.exe (812)
    C:\Windows\system32\svchost.exe (884)
    C:\Program Files (x86)\Lavasoft\Ad-Aware\aawservice.exe (936)
    C:\Windows\system32\svchost.exe (296)
    C:\Windows\Explorer.EXE (348)
    C:\Windows\system32\ctfmon.exe (1028)
    C:\UsbFix\Go.exe (1524)
    C:\Windows\system32\wbem\wmiprvse.exe (1620)

    ################## | Processus Stoppés |

    Stoppé! C:\Program Files (x86)\Lavasoft\Ad-Aware\aawservice.exe (936)
    Stoppé! C:\Windows\Explorer.EXE (348)
    Stoppé! C:\Windows\system32\ctfmon.exe (1028)

    ################## | Éléments infectieux |

    Non supprimé ! C:\$RECYCLE.BIN\S-1-5-18
    Supprimé! C:\$RECYCLE.BIN\S-1-5-21-2508528701-1052010737-183676359-1001
    Supprimé! D:\$RECYCLE.BIN\S-1-5-21-2508528701-1052010737-183676359-1001
    Supprimé! F:\$RECYCLE.BIN\S-1-5-21-2508528701-1052010737-183676359-1001
    Supprimé! L:\$RECYCLE.BIN\S-1-5-21-2508528701-1052010737-183676359-1001

    (!) Fichiers temporaires supprimés.

    ################## | Registre |

    ################## | Mountpoints2 |

    ################## | Listing |

    [07/12/2012 - 22:34:43 | SHD ] C:\$Recycle.Bin
    [30/05/2012 - 19:43:52 | N | 57128] C:\aaw7boot.log
    [21/10/2012 - 19:48:06 | N | 13633] C:\AdwCleaner[R1].txt
    [05/12/2012 - 18:49:01 | N | 13685] C:\AdwCleaner[R2].txt
    [21/10/2012 - 19:48:31 | N | 13121] C:\AdwCleaner[S1].txt
    [05/12/2012 - 18:50:04 | N | 13909] C:\AdwCleaner[S2].txt
    [12/11/2011 - 14:42:49 | D ] C:\book
    [10/05/2010 - 10:33:37 | N | 8192] C:\BOOTSECT.BAK
    [15/03/2012 - 20:14:57 | N | 883] C:\cleannavi.txt
    [03/12/2012 - 17:04:12 | D ] C:\Config.Msi
    [14/07/2009 - 06:08:56 | SHD ] C:\Documents and Settings
    [27/04/2012 - 12:26:55 | D ] C:\Downloads
    [21/10/2012 - 19:53:53 | N | 25732] C:\error.log
    [29/01/2012 - 09:52:10 | D ] C:\Facemoi
    [07/12/2012 - 22:31:57 | ASH | 3019399168] C:\hiberfil.sys
    [15/03/2012 - 20:14:57 | D ] C:\Navilog1
    [12/11/2011 - 14:59:04 | D ] C:\OEM
    [07/12/2012 - 22:31:58 | ASH | 4025868288] C:\pagefile.sys
    [14/07/2009 - 04:20:08 | D ] C:\PerfLogs
    [06/12/2012 - 19:14:49 | N | 512] C:\PhysicalMBR.bin
    [21/10/2012 - 18:21:31 | N | 1266] C:\prefs.js
    [02/12/2012 - 22:28:06 | D ] C:\Program Files
    [05/12/2012 - 18:50:01 | D ] C:\Program Files (x86)
    [29/11/2012 - 17:23:52 | HD ] C:\ProgramData
    [12/11/2011 - 14:36:28 | SHD ] C:\Recovery
    [12/11/2011 - 14:14:54 | N | 2188] C:\RHDSetup.log
    [07/12/2012 - 22:02:19 | SHD ] C:\System Volume Information
    [07/12/2012 - 22:34:43 | D ] C:\UsbFix
    [07/12/2012 - 22:33:07 | A | 2195] C:\UsbFix.txt
    [12/11/2011 - 14:36:38 | D ] C:\Users
    [07/12/2012 - 22:31:58 | D ] C:\Windows
    [05/12/2012 - 21:40:38 | D ] C:\_OTL
    [07/12/2012 - 22:34:43 | SHD ] D:\$RECYCLE.BIN
    [21/07/2012 - 19:14:16 | D ] D:\apps
    [26/01/2012 - 21:29:51 | N | 745848] D:\BitTorrent.exe.29871.tmp
    [31/08/2012 - 18:46:29 | N | 240143] D:\Capture.PNG
    [03/11/2012 - 16:59:34 | N | 3338] D:\dht.dat
    [21/10/2012 - 16:11:58 | N | 190] D:\dht.dat.old
    [03/11/2012 - 16:59:34 | N | 2] D:\dht_feed.dat
    [21/10/2012 - 16:11:58 | N | 2] D:\dht_feed.dat.old
    [14/08/2012 - 19:09:14 | D ] D:\dlimagecache
    [28/04/2012 - 06:27:05 | D ] D:\eMule
    [02/08/2012 - 21:26:25 | D ] D:\ie
    [21/10/2012 - 09:22:42 | D ] D:\JDownloader
    [07/04/2012 - 19:41:06 | D ] D:\music
    [24/04/2012 - 12:53:37 | D ] D:\PFiles
    [07/07/2009 - 15:52:30 | N | 282119] D:\Photo 0001.jpg
    [07/07/2009 - 15:52:32 | N | 279735] D:\Photo 0002.jpg
    [07/07/2009 - 15:52:34 | N | 285411] D:\Photo 0003.jpg
    [07/07/2009 - 15:52:36 | N | 284099] D:\Photo 0004.jpg
    [14/06/2012 - 16:07:16 | N | 826300] D:\Photo0002.jpg
    [14/06/2012 - 16:07:27 | N | 628940] D:\Photo0005.jpg
    [14/06/2012 - 16:07:37 | N | 615748] D:\Photo0006.jpg
    [14/06/2012 - 16:45:44 | N | 1208035] D:\Photo0016.jpg
    [14/06/2012 - 16:08:00 | N | 621858] D:\Photo0027.jpg
    [14/06/2012 - 16:45:36 | N | 585511] D:\Photo0028.jpg
    [14/06/2012 - 16:45:34 | N | 775071] D:\Photo0031.jpg
    [14/06/2012 - 16:45:32 | N | 847610] D:\Photo0032.jpg
    [14/06/2012 - 16:45:30 | N | 773468] D:\Photo0034.jpg
    [14/06/2012 - 16:09:01 | N | 1014675] D:\Photo0035.jpg
    [14/06/2012 - 16:45:26 | N | 858762] D:\Photo0039.jpg
    [14/06/2012 - 16:45:24 | N | 827914] D:\Photo0040.jpg
    [14/06/2012 - 16:45:21 | N | 760478] D:\Photo0041.jpg
    [14/06/2012 - 16:46:12 | N | 1168575] D:\Photo0058.jpg
    [14/06/2012 - 16:04:12 | N | 443999] D:\Photo0063.jpg
    [14/06/2012 - 16:04:18 | N | 327634] D:\Photo0065.jpg
    [14/06/2012 - 16:04:23 | N | 324388] D:\Photo0067.jpg
    [14/06/2012 - 16:04:30 | N | 482533] D:\Photo0070.jpg
    [14/06/2012 - 16:45:54 | N | 256214] D:\Photo0075.jpg
    [14/06/2012 - 16:45:51 | N | 352550] D:\Photo0077.jpg
    [14/06/2012 - 16:04:48 | N | 550615] D:\Photo0078.jpg
    [14/06/2012 - 16:02:28 | N | 551918] D:\Photo0079.jpg
    [04/12/2012 - 17:18:29 | D ] D:\Photos
    [21/07/2012 - 19:19:40 | N | 57052] D:\Resident.Evil.Afterlife.2010.FRENCH.BDRiP.XViD-THENiGTHMARE.torrent
    [03/11/2012 - 16:59:35 | N | 24309] D:\resume.dat
    [21/10/2012 - 16:11:58 | N | 19444] D:\resume.dat.old
    [03/11/2012 - 16:59:34 | N | 99] D:\rss.dat
    [21/10/2012 - 16:11:58 | N | 99] D:\rss.dat.old
    [21/07/2012 - 19:18:04 | N | 14236] D:\SCAR 3D.TRUEFRENCH.DVDRiP.XViD.ARTEFAC.avi.torrent
    [03/11/2012 - 16:59:45 | N | 14440] D:\settings.dat
    [03/11/2012 - 16:59:45 | N | 14466] D:\settings.dat.old
    [21/07/2012 - 19:25:58 | N | 2701] D:\SUPERAntiSpyware.Professional.v4.33.0.1000.Final.Incl.Keygen.torrent
    [20/08/2012 - 15:04:16 | N | 647689] D:\Supernatural.S07.VOSTFR.HDTV.XviD.torrent
    [27/08/2012 - 09:23:20 | SHD ] D:\System Volume Information
    [21/07/2012 - 19:20:17 | N | 56323] D:\The.Green.Hornet.3D.2010.TRUEFRENCH.BDRiP.XViD-KORTI.torrent
    [26/01/2012 - 07:59:20 | N | 736120] D:\uTorrent.exe.17427.tmp
    [02/12/2012 - 21:54:15 | D ] D:\video
    [14/05/2009 - 05:33:54 | RA | 366889356] E:\Desperate.Housewives.5x05.Avant.Que.La.Fête.Commence.FR.PROPER.HDTV.XviD-JMT.[emule-island.com].avi
    [14/05/2009 - 05:16:47 | RA | 366669482] E:\Desperate.Housewives.5x06.Le.Bonheur.Est.Dans.Fairview.FR.HDTV.XviD-JMT.[emule-island.com].avi
    [14/05/2009 - 16:55:44 | RA | 366828882] E:\Desperate.Housewives.5x07.Ils.Se.Sont.Tant.Aimés.FR.PROPER.HDTV.XviD-JMT.[emule-island.com].avi
    [15/05/2009 - 00:25:49 | RA | 366693178] E:\Desperate.Housewives.5x08.Panique.Au.White.Horse.FR.HDTV.XviD-JMT.[emule-island.com].avi
    [14/05/2009 - 16:36:15 | RA | 366748330] E:\Desperate.Housewives.5x09.Petits.Arrangements.Avec.La.Mort.FR.HDTV.XviD-JMT.[emule-island.com].avi
    [14/05/2009 - 17:13:14 | RA | 369364030] E:\Desperate.Housewives.5x10.Circulez,.Y.A.Tout.à.Voir.FR.HDTV.XviD-JMT.[emule-island.com].avi
    [14/05/2009 - 05:13:41 | RA | 366906972] E:\Desperate.Housewives.5x11.Belles-Familles,Je.Vous.Hais.FR.HDTV.XviD-JMT.[emule-island.com].avi
    [14/05/2009 - 07:18:35 | RA | 369496914] E:\Desperate.Housewives.5x12.Meilleurs.Ennemis.FRENCH.HDTV.XviD-JMT.[emule-island.com].avi
    [14/05/2009 - 21:15:44 | RA | 366478866] E:\Desperate.Housewives.S05E01.FRENCH.PROPER.HDTV.XviD-JMT.[emule-island.com].avi
    [14/05/2009 - 17:01:40 | RA | 366798710] E:\Desperate.Housewives.S05E02.FRENCH.PROPER.HDTV.XviD-JMT.[emule-island.com].avi
    [14/05/2009 - 16:56:17 | RA | 366504640] E:\Desperate.Housewives.S05E03.FRENCH.HDTV.XviD-JMT.[emule-island.com].avi
    [15/05/2009 - 04:15:24 | RA | 366773364] E:\Desperate.Housewives.S05E04.FRENCH.HDTV.XviD-JMT.[emule-island.com].avi
    [07/12/2012 - 22:34:43 | SHD ] F:\$RECYCLE.BIN
    [29/08/2011 - 07:27:31 | D ] F:\3d
    [01/01/2002 - 00:17:41 | D ] F:\Dessins animés
    [29/08/2011 - 08:13:47 | D ] F:\Films
    [07/12/2012 - 21:48:54 | SHD ] F:\RECYCLER
    [22/12/2011 - 09:25:34 | SHD ] F:\System Volume Information
    [23/12/2010 - 20:26:08 | N | 733870080] G:\Le.Voyage.Extraordinaire.De.Samy.2010.TRUEFRENCH.DVDRiP.XViD-SLiM.MORPH.[emule-island.com].avi
    [04/09/2011 - 12:24:56 | N | 732721152] G:\Toy.Story.Walt.Disney.DivX.Fr.[emule-island.ru].avi
    [08/10/2011 - 11:29:46 | N | 730202112] G:\Basil.Detective.Prive.FRENCH.DVDiVX-Ulysse.par.[emule-island.ru].avi
    [13/10/2011 - 21:19:42 | N | 733982720] G:\Walt Disney - Les 101.Dalmatiens.2.Edition.Exclusive.2008.FRENCH.DVDRiP.XViD-iPS.avi
    [13/10/2011 - 21:18:26 | N | 733174272] G:\Walt.Disney.-.Les.101.Dalmatiens.FR.par.avi
    [01/09/2011 - 20:07:00 | N | 702283776] G:\Winnie.l'ourson.et.l'éfélant.French.Dvdrip.[emule-island.ru].avi
    [01/09/2011 - 17:28:30 | N | 651964416] G:\Walt.Disney.-.Dingo.et.Max.2.Les.Sportifs.de.L'Extreme.-.[DivX.Fr.2000].[emule-island.ru].avi
    [31/08/2011 - 21:04:02 | N | 724202212] G:\3.Pigs.And.A.Baby.STV.FRENCH.DVDRip.XviD-ITOMA.LiCoKInE.TeaM.[emule-island.ru].avi
    [30/08/2011 - 19:38:36 | N | 733847552] G:\Animaux.Et.Cie.FRENCH.DVDRip.XviD-AYMO.MORPH.[emule-island.ru].avi
    [01/09/2011 - 19:51:00 | N | 733321216] G:\Dumbo.Big.Top.Edition.FRENCH.DVDRiP.XViD-CiRCUS-EVeReST.[emule-island.ru].avi
    [11/05/2012 - 19:50:02 | N | 721680384] G:\.walt.disney.Peter.Pan-Divx-Fr_filmovore.com.[emule-island.ru].avi
    [12/05/2012 - 03:04:30 | N | 731070464] G:\Pollux.Le.Manege.Enchante.FRENCH.DVDRip.XViD-NTK-YETI.[emule-island.ru].avi
    [12/05/2012 - 01:25:54 | N | 735295488] G:\(DIVX_SBC-512x384)_shrek_-_SEQuence_-_francais-french.divx.par.[emule-island.ru].avi
    [20/07/2012 - 21:16:20 | N | 631040000] G:\Bernard.et.Bianca.au.pays.des.kangourous.teste.[emule-island.ru].avi
    [20/07/2012 - 19:55:20 | N | 734441472] G:\clochette et la pierre de lune.STV.FR.DVDRiP.XViD-SURViVAL.[emule-island.ru].avi
    [20/07/2012 - 20:11:06 | N | 669014016] G:\Contes.Et.Legendes.1.FRENCH.DVDRip.[emule-island.ru].avi
    [20/07/2012 - 20:04:22 | N | 700915200] G:\Annabelle,.Un.Amour.De.Petite.Vache.-.Fr.-.Xvid.[emule-island.ru].avi
    [02/08/2012 - 19:25:54 | N | 14434] G:\Le.Monde.de.Nemo.FRENCH.DVDRiP.DiVX-Ulysse.torrent
    [02/08/2012 - 20:27:10 | N | 734937088] G:\nemo-fr.avi
    [03/11/2012 - 20:56:44 | N | 733968384] G:\[www.Cpasbien.com] nrd-iceage4.avi
    [04/11/2012 - 02:50:16 | N | 732925952] G:\[www.Cpasbien.com] Brave.2012.FRENCH.BDRip.XviD-AYMO.avi
    [28/11/2012 - 01:50:30 | N | 1470676992] G:\Water For Elephants 2011 FRENCH BRRiP XviD FwD.avi
    [02/03/2011 - 10:47:12 | D ] H:\DCIM
    [02/03/2011 - 10:47:12 | D ] H:\MISC
    [07/12/2012 - 22:34:43 | SHD ] L:\$RECYCLE.BIN
    [01/01/2002 - 02:02:03 | D ] L:\JDownloader
    [01/01/2002 - 01:02:10 | D ] L:\Ma musique
    [01/01/2002 - 02:38:49 | D ] L:\Mes documents
    [01/01/2002 - 01:01:56 | D ] L:\Mes images
    [26/08/2011 - 15:24:28 | D ] L:\mes photos
    [07/12/2012 - 22:00:59 | SHD ] L:\RECYCLER
    [22/12/2011 - 09:25:37 | SHD ] L:\System Volume Information

    ################## | Vaccin |

    maitenant je lance Malaware
    0
  15. testoue Messages postés 8 Date d'inscription   Statut Membre Dernière intervention  
     
    Comme ça a l'air super long je le laisse tourné cette nuit et j'envoie le rapport demain, bonne soirée merci
    0
  16. testoue
     
    Malwarebytes Anti-Malware (Essai) 1.65.1.1000
    www.malwarebytes.org

    Version de la base de données: v2012.12.07.11

    Windows 7 Service Pack 1 x64 NTFS
    Internet Explorer 9.0.8112.16421
    User :: USER-PC [administrateur]

    Protection: Activé

    07/12/2012 22:44:29
    mbam-log-2012-12-08 (06-59-45).txt

    Type d'examen: Examen complet (C:\|D:\|E:\|F:\|G:\|H:\|I:\|J:\|K:\|L:\|)
    Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
    Options d'examen désactivées: P2P
    Elément(s) analysé(s): 388467
    Temps écoulé: 1 heure(s), 40 minute(s), 21 seconde(s)

    Processus mémoire détecté(s): 0
    (Aucun élément nuisible détecté)

    Module(s) mémoire détecté(s): 0
    (Aucun élément nuisible détecté)

    Clé(s) du Registre détectée(s): 1
    HKLM\SOFTWARE\SOFTWARE\UPDATE\CLIENTS\{5B54E9B6-D6C4-11E0-8E9D-92FB4824019B} (Adware.Boxore) -> Aucune action effectuée.

    Valeur(s) du Registre détectée(s): 1
    HKLM\SOFTWARE\Software\Update\Clients\{5B54E9B6-D6C4-11E0-8E9D-92FB4824019B}|name (Adware.Boxore) -> Données: BoxoreClient -> Aucune action effectuée.

    Elément(s) de données du Registre détecté(s): 0
    (Aucun élément nuisible détecté)

    Dossier(s) détecté(s): 0
    (Aucun élément nuisible détecté)

    Fichier(s) détecté(s): 1
    L:\Mes documents\Downloads\webinstaller.exe (Adware.EoRezo) -> Aucune action effectuée.

    (fin)
    0
  17. testoue
     
    j'avais oublié de supprimé la selection et du coup j'ai relancé et tout a bien été supprimé ou mis en quarantaine
    0
    1. testoue
       
      Malwarebytes Anti-Malware (Essai) 1.65.1.1000
      www.malwarebytes.org

      Version de la base de données: v2012.12.07.11

      Windows 7 Service Pack 1 x64 NTFS
      Internet Explorer 9.0.8112.16421
      User :: USER-PC [administrateur]

      Protection: Activé

      08/12/2012 07:09:31
      mbam-log-2012-12-08 (07-09-31).txt

      Type d'examen: Examen complet (C:\|D:\|E:\|F:\|G:\|H:\|I:\|J:\|K:\|L:\|)
      Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
      Options d'examen désactivées: P2P
      Elément(s) analysé(s): 387925
      Temps écoulé: 1 heure(s), 12 minute(s), 46 seconde(s)

      Processus mémoire détecté(s): 0
      (Aucun élément nuisible détecté)

      Module(s) mémoire détecté(s): 0
      (Aucun élément nuisible détecté)

      Clé(s) du Registre détectée(s): 1
      HKLM\SOFTWARE\SOFTWARE\UPDATE\CLIENTS\{5B54E9B6-D6C4-11E0-8E9D-92FB4824019B} (Adware.Boxore) -> Mis en quarantaine et supprimé avec succès.

      Valeur(s) du Registre détectée(s): 1
      HKLM\SOFTWARE\Software\Update\Clients\{5B54E9B6-D6C4-11E0-8E9D-92FB4824019B}|name (Adware.Boxore) -> Données: BoxoreClient -> Mis en quarantaine et supprimé avec succès.

      Elément(s) de données du Registre détecté(s): 0
      (Aucun élément nuisible détecté)

      Dossier(s) détecté(s): 0
      (Aucun élément nuisible détecté)

      Fichier(s) détecté(s): 1
      L:\Mes documents\Downloads\webinstaller.exe (Adware.EoRezo) -> Mis en quarantaine et supprimé avec succès.

      (fin)
      0
  18. Utilisateur anonyme
     
    * Télécharge AdwCleaner sur ton Bureau. (Merci à Xplode)

    *Double-clique sur l'icône AdwCleaner située sur ton Bureau.
    *Sur la page, clique sur le bouton «Suppression»
    *Laisse travailler l'outil.
    *Poste le rapport qui apparaît à la fin.
    (Le rapport est sauvegardé aussi sous C:\ AdwCleaner[SX].Txt)
    0
    1. testoue
       
      # AdwCleaner v2.005 - Rapport créé le 08/12/2012 à 17:02:06
      # Mis à jour le 14/10/2012 par Xplode
      # Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
      # Nom d'utilisateur : User - USER-PC
      # Mode de démarrage : Normal
      # Exécuté depuis : C:\Users\User\Downloads\adwcleaner.exe
      # Option [Suppression]


      ***** [Services] *****


      ***** [Fichiers / Dossiers] *****


      ***** [Registre] *****

      Clé Supprimée : HKCU\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
      Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}

      ***** [Navigateurs] *****

      -\\ Internet Explorer v9.0.8112.16421

      [OK] Le registre ne contient aucune entrée illégitime.

      -\\ Google Chrome v23.0.1271.95

      *************************

      AdwCleaner[R1].txt - [13633 octets] - [21/10/2012 19:48:04]
      AdwCleaner[S1].txt - [13121 octets] - [21/10/2012 19:48:26]
      AdwCleaner[R2].txt - [13685 octets] - [05/12/2012 18:48:58]
      AdwCleaner[S2].txt - [13909 octets] - [05/12/2012 18:50:00]
      AdwCleaner[S3].txt - [1221 octets] - [08/12/2012 17:02:06]

      ########## EOF - C:\AdwCleaner[S3].txt - [1281 octets] ##########
      0
  19. testoue
     
    Pour le moment ça à l'air d'être bon, je te remercie beaucoup pour aide , c'est sympa qui est des types comme toi pour nous aider ; )
    0
  • 1
  • 2