Pages publicitaires intempestives

Merci!
J'ai déjà essayé mais je vais le refaire tout de suite.

voici le 1er rapport :

# AdwCleaner v4.106 - Rapport créé le 26/12/2014 à 21:27:19
# Mis à jour le 21/12/2014 par Xplode
# Database : 2014-12-21.4 [Live]
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
# Nom d'utilisateur : Seven - SEVEN-PC
# Exécuté depuis : C:\Users\Seven\Downloads\adwcleaner_4.106 (3).exe
# Option : Nettoyer

***** [ Services ] *****

[#] Service Supprimé : Update Hold Page
[#] Service Supprimé : Util Hold Page
Service Supprimé : {27899312-155f-40f3-8661-fb6675d82b4b}Gw64
Service Supprimé : {ca4e7e4c-3ebf-4428-bf75-cc138b7061f1}Gw64

***** [ Fichiers / Dossiers ] *****

[!] Dossier Supprimé : C:\Program Files (x86)\Hold Page
[!] Dossier Supprimé : C:\Program Files (x86)\Hold Page
Fichier Supprimé : C:\Windows\System32\drivers\{27899312-155f-40f3-8661-fb6675d82b4b}Gw64.sys
Fichier Supprimé : C:\Windows\System32\drivers\{ca4e7e4c-3ebf-4428-bf75-cc138b7061f1}Gw64.sys
Fichier Supprimé : C:\Users\Seven\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
Fichier Supprimé : C:\Users\Seven\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
Fichier Supprimé : C:\Users\Seven\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage
Fichier Supprimé : C:\Users\Seven\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage-journal
Fichier Supprimé : C:\Users\Seven\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.audienceinsights.net_0.localstorage
Fichier Supprimé : C:\Users\Seven\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.audienceinsights.net_0.localstorage-journal

***** [ Tâches planifiées ] *****


***** [ Raccourcis ] *****


***** [ Registre ] *****

Clé Supprimée : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Update Hold Page
Clé Supprimée : HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\Util Hold Page
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{6C14185E-4DE6-4A79-985B-19F23FD1E638}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{180bd92c-7ec0-4cf9-9329-7cea0405b796}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C14185E-4DE6-4A79-985B-19F23FD1E638}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Clé Supprimée : HKCU\Software\InstallCore
Clé Supprimée : HKCU\Software\Hold Page
Clé Supprimée : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F}
Clé Supprimée : HKLM\SOFTWARE\Hold Page
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Hold Page

***** [ Navigateurs ] *****

-\\ Internet Explorer v11.0.9600.17496


-\\ Google Chrome v39.0.2171.95


*************************

AdwCleaner[R0].txt - [20615 octets] - [24/12/2014 11:00:41]
AdwCleaner[R1].txt - [4732 octets] - [26/12/2014 21:00:18]
AdwCleaner[S0].txt - [20460 octets] - [24/12/2014 11:04:01]
AdwCleaner[S1].txt - [3830 octets] - [26/12/2014 21:27:19]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [3890 octets] ##########

ok passe à FRST :)

Voici les 3 liens :

https://pjjoint.malekal.com/files.php?id=FRST_20141226_s8y615k8x14

https://pjjoint.malekal.com/files.php?id=20141226_t6e10m13p13b14

https://pjjoint.malekal.com/files.php?id=20141226_y9l14w8n12z14

Il n'y a eu qu'un FRST, c'est normal?

oui,

bon déjà, tu as deux antivirus, désinstalle un des deux :

AV: Microsoft Security Essentials (Enabled - Up to date) {4F35CFC4-45A3-FC37-EF17-759A02E39AB1}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Microsoft Security Essentials (Enabled - Up to date) {F4542E20-6399-F3B9-D5A7-4EE87964D00C}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

Je regarde la suite.

Voici le rapport

Je n'ai pas trouvé driver support et j'ai retiré avast.

merci, je redémarre l'ordinateur.





Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 26-12-2014
Ran by Seven at 2014-12-26 22:21:36 Run:1
Running from C:\Users\Seven\Desktop
Loaded Profile: Seven (Available profiles: Seven)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
HKU\S-1-5-21-1509374925-2685830542-2583409118-1000\...\Run: [LanceurCDIP] => C:\Users\Seven\AppData\Roaming\LanceurCDIP\LanceurCDIP.exe
HKU\S-1-5-21-1509374925-2685830542-2583409118-1000\...\Run: [Super Optimizer] => C:\Program Files (x86)\Super Optimizer\SupOptLauncher.exe
ProxyEnable: [S-1-5-19] => Internet Explorer proxy is enabled.
ProxyServer: [S-1-5-19] => http=127.0.0.1:8877;https=127.0.0.1:8877
ProxyEnable: [S-1-5-20] => Internet Explorer proxy is enabled.
ProxyServer: [S-1-5-20] => http=127.0.0.1:8877;https=127.0.0.1:8877
ProxyServer: [S-1-5-21-1509374925-2685830542-2583409118-1000] => http=127.0.0.1:26932 [Attention - Possible Proxy Malicieux]
S2 9b784ed1; c:\Program Files (x86)\Optimizer Pro 3.16\OptProMon.dll [5079632 2014-12-23] ()
S2 odbcwinsockGUI.exe; C:\Users\Seven\AppData\Local\odbcwinsockGUI\odbcwinsockGUI.exe [208384 2014-11-26] () [File not signed]
S2 cae99edb; C:\Windows\system32\rundll32.exe c:\Program Files (x86)\Super Optimizer\SupOptStats.dll,ENT
2014-12-23 17:56 - 2014-12-26 21:31 - 00001334 _____ () C:\Windows\Tasks\RQVH.job
2014-12-23 17:56 - 2014-12-23 23:09 - 00000000 ____D () C:\Program Files (x86)\cda4f206-454b-4468-821d-2b0f4ed498bc
2014-12-23 17:41 - 2014-12-23 17:41 - 00000000 ____D () C:\ProgramData\YwSGHxHUwt
2014-12-23 17:40 - 2014-12-23 23:09 - 00000000 ____D () C:\Program Files (x86)\Optimizer Pro 3.16
2014-12-23 17:40 - 2014-12-23 23:09 - 00000000 ____D () C:\Program Files (x86)\GU Player
2014-12-23 17:40 - 2014-12-23 17:40 - 00003088 _____ () C:\Windows\System32\Tasks\RPC
2014-12-23 17:39 - 2014-12-26 19:11 - 00000000 ____D () C:\Users\Seven\AppData\Local\odbcwinsockGUI
2014-12-23 17:39 - 2014-12-23 23:19 - 00000000 ____D () C:\Windows\SysWOW64\javapsisrndrx86
2014-12-23 17:39 - 2014-12-23 17:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reg Pro Cleaner
2014-12-23 17:39 - 2014-12-23 17:39 - 00000000 ____D () C:\Program Files (x86)\RPC
Task: {D1BDF21F-A3C0-48BE-844E-638CA946846F} - System32\Tasks\RQVH => C:\Users\Seven\AppData\Roaming\RQVH.exe <==== ATTENTION
Task: {D48A7473-1A3F-4E76-80FC-58C8155D0065} - System32\Tasks\PostPoneInstall => C:\Users\Seven\AppData\Local\Temp\ce98ac2e-20c0-4a93-86f6-bdb3e61caf55.exe [2014-12-23] (C.L.A.R.A) <==== ATTENTION
HKU\S-1-5-21-1509374925-2685830542-2583409118-1000\...\Run: [Driver Support] => C:\Program Files (x86)\Driver Support\Driver Support\DriverSupport.exe /applicationMode:systemTray /showWelcome:false
C:\Program Files (x86)\Driver Support
*****************

HKU\S-1-5-21-1509374925-2685830542-2583409118-1000\Software\Microsoft\Windows\CurrentVersion\Run\\LanceurCDIP => value deleted successfully.
HKU\S-1-5-21-1509374925-2685830542-2583409118-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Super Optimizer => value deleted successfully.
HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable => value deleted successfully.
HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value deleted successfully.
HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable => value deleted successfully.
HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value deleted successfully.
HKU\S-1-5-21-1509374925-2685830542-2583409118-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value deleted successfully.
9b784ed1 => Service deleted successfully.
odbcwinsockGUI.exe => Service deleted successfully.
cae99edb => Service deleted successfully.
C:\Windows\Tasks\RQVH.job => Moved successfully.
C:\Program Files (x86)\cda4f206-454b-4468-821d-2b0f4ed498bc => Moved successfully.
C:\ProgramData\YwSGHxHUwt => Moved successfully.
C:\Program Files (x86)\Optimizer Pro 3.16 => Moved successfully.
C:\Program Files (x86)\GU Player => Moved successfully.
"C:\Windows\System32\Tasks\RPC" => File/Directory not found.
C:\Users\Seven\AppData\Local\odbcwinsockGUI => Moved successfully.
C:\Windows\SysWOW64\javapsisrndrx86 => Moved successfully.
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reg Pro Cleaner" => File/Directory not found.
"C:\Program Files (x86)\RPC" => File/Directory not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D1BDF21F-A3C0-48BE-844E-638CA946846F}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D1BDF21F-A3C0-48BE-844E-638CA946846F}" => Key deleted successfully.
C:\Windows\System32\Tasks\RQVH => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RQVH" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D48A7473-1A3F-4E76-80FC-58C8155D0065}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D48A7473-1A3F-4E76-80FC-58C8155D0065}" => Key deleted successfully.
C:\Windows\System32\Tasks\PostPoneInstall => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PostPoneInstall" => Key deleted successfully.
HKU\S-1-5-21-1509374925-2685830542-2583409118-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Driver Support => value deleted successfully.
"C:\Program Files (x86)\Driver Support" => File/Directory not found.

==== End of Fixlog 22:21:45 ====

On dirai qu'il n'y en a plus. Merci beaucoup!
sauf driver support je ne l'ai pas trouvé pour le désinstaller mais dans les fichiers, il faut les supprimer?

Est ce que je peux supprimer les blocs notes et logiciels installés ou faut-il les garder?

Merci pour ces conseils!

C'est quand même beaucoup mieux :-)