Se connecter / S'enregistrer
Votre question

Pages de publicité qui s'ouvrent tout le temps (résolu)

Tags :
  • Internet Explorer
  • Sécurité
Dernière réponse : dans Sécurité et virus
17 Juin 2011 20:25:11

Bonjour,

depuis quelques temps j'ai régulièrement des pages de pub qui s'ouvrent avec internet explorer. J'utilise google chrome et j'ai windows 7.
J'ai fait des scans avec mon antivirus et j'ai enlevé quelques virus, mais les pages s'ouvrent tout de même.
J'ai fait un scan avec Ad-remover et j'ai obtenu le bilan suivant :


======= RAPPORT D'AD-REMOVER 2.0.0.1,F | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par C_XX le 16/09/10 à 13:30
Contact: AdRemover.contact[AT]gmail.com
Site web: http://www.teamxscript.org

C:\Program Files (x86)\Ad-Remover\main.exe (SCAN [3]) -> Lancé à 20:09:57 le 17/06/2011, Mode normal

Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X64)
Marie new@MARIE-PC (Hewlett-Packard Compaq Presario CQ61 Notebook PC)

============== RECHERCHE ==============



3,Clé trouvée: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}


============== SCAN ADDITIONNEL ==============

** Internet Explorer Version [8.0.7601.17514] **

[HKCU\Software\Microsoft\Internet Explorer\Main]
AutoHide: yes
Do404Search: 0x01000000
Local Page: C:\Windows\system32\blank.htm
SearchAssistant:
Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
Show_ToolBar: yes
Start Page: about:blank
Use Search Asst:

[HKLM\Software\Microsoft\Internet Explorer\Main]
AutoHide: yes
Delete_Temp_Files_On_Exit: yes
Local Page: C:\Windows\SysWOW64\blank.htm
Search bar: hxxp://search.msn.com/spbasic.htm
Search Page: hxxp://go.microsoft.com/fwlink/?LinkId=54896
Start Page: about:blank

[HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS]
Tabs: res://ieframe.dll/tabswelcome.htm
Blank: res://mshtml.dll/blank.htm

========================================

C:\Program Files (x86)\Ad-Remover\Quarantine: 14 Fichier(s)
C:\Program Files (x86)\Ad-Remover\Backup: 19 Fichier(s)

C:\Ad-Report-CLEAN[1].txt - 26/09/2010 (4225 Octet(s))
C:\Ad-Report-CLEAN[2].txt - 26/09/2010 (2090 Octet(s))
C:\Ad-Report-SCAN[1].txt - 26/09/2010 (3955 Octet(s))
C:\Ad-Report-SCAN[2].txt - 29/09/2010 (2104 Octet(s))
C:\Ad-Report-SCAN[3].txt - 17/06/2011 (1782 Octet(s))

Fin à: 20:18:08, 17/06/2011

============== E.O.F ==============



J'ai aussi le logiciel Malwarebytes' Anti-Malware et je suis actuellement en train de faire une recherche d'infections.

Mais je ne sais pas trop comment faire tout cela, ni comment interpréter et me servir des différents bilans obtenus.
C'est pourquoi je vous sollicite.
En vous remerciant par avance, j'espère que vous pourrez m'aider :) 

Autres pages sur : pages publicite ouvrent temps resolu

17 Juin 2011 21:12:40

Bonsoir


Télécharge DDS et sauvegarde-le sur ton bureau.
  • Désactive tout script bloquant, tels qu'un antivirus, un logiciel comme ad-block, noscript etc.
  • Double-clique sur dds.scr pour lancer l'outil.
  • Une fois le scan fini, un document texte, DDS.txt, va s'ouvrir .
  • Clique Oui à la prochaine invite Optional Scan.
  • Sauvegarde les deux rapports sur ton bureau et poste-moi uniquement le DDS.txt.

    <@_@>**<@_@>**<@_@>**<@_@>**<@_@>**@_@>**<@_@><@_@>**<@_@>**<@_@>**<@_@>**


    17 Juin 2011 21:42:16

    Voilà le rapport :

    .
    DDS (Ver_2011-06-12.02) - NTFSAMD64
    Internet Explorer: 8.0.7601.17514
    Run by Marie new at 21:35:41 on 2011-06-17
    Microsoft Windows 7 Édition Familiale Premium 6.1.7601.1.1252.33.1036.18.3003.866 [GMT 2:00]
    .
    AV: BitDefender Antivirus *Disabled/Updated* {50909708-FF80-02AF-F814-B28405891E92}
    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    SP: BitDefender Antispyware *Disabled/Updated* {EBF176EC-D9BA-0D21-C2A4-89F67E0E542F}
    FW: BitDefender Pare-feu *Enabled* {68AB162D-B5EF-03F7-D34B-1BB1FB5A59E9}
    .
    ============== Running Processes ===============
    .
    C:\Windows\system32\wininit.exe
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\svchost.exe -k RPCSS
    C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\STacSV64.exe
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\AESTSr64.exe
    C:\Windows\SysWOW64\svchost.exe -k netsvcs
    C:\Windows\system32\taskhost.exe
    C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe
    C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
    C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
    C:\Windows\Explorer.EXE
    C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
    C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    C:\Program Files\BitDefender\BitDefender 2011\pchooklaunch64.exe
    C:\Program Files\BitDefender\BitDefender 2011\Antispam32\pchooklaunch32.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
    C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesApp64.exe
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Users\Marie new\AppData\Roaming\Agence-Exclusive\Agence-Exclusive\autoupdater.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Windows\System32\hkcmd.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files (x86)\Agence-Exclusive\pctuto.exe
    C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
    C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
    C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
    C:\Windows\system32\SearchIndexer.exe
    C:\Windows\System32\svchost.exe -k secsvcs
    C:\Windows\system32\svchost.exe -k SDRSVC
    C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
    C:\Program Files (x86)\Internet Explorer\IELowutil.exe
    C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
    C:\Program Files\BitDefender\BitDefender 2011\odscanui.exe
    C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
    C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
    C:\Windows\system32\taskeng.exe
    C:\Users\Marie new\AppData\Local\Google\Update\GoogleUpdate.exe
    C:\Users\Marie new\AppData\Local\Google\Update\1.3.21.57\GoogleCrashHandler.exe
    C:\Program Files\BitDefender\BitDefender 2011\downloader.exe
    C:\Windows\system32\conhost.exe
    C:\Users\Marie new\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Marie new\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Marie new\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Marie new\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Marie new\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Windows\SysWOW64\rundll32.exe
    C:\Users\Marie new\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Windows\system32\SearchProtocolHost.exe
    C:\Windows\system32\SearchFilterHost.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Windows\system32\DllHost.exe
    C:\Windows\system32\DllHost.exe
    C:\Windows\SysWOW64\cmd.exe
    C:\Windows\system32\conhost.exe
    C:\Windows\system32\DllHost.exe
    C:\Windows\SysWOW64\cscript.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uStart Page = about:blank
    uWindow Title =
    mStart Page = about:blank
    BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
    BHO: Programme d'aide de l'Assistant de connexion Windows Live ID: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
    TB: BitDefender Toolbar: {381ffde8-2394-4f90-b10d-fc6124a40f8c} - C:\Program Files\BitDefender\BitDefender 2011\Antispam32\IEToolbar.dll
    TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
    TB: {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - No File
    TB: {472734EA-242A-422B-ADF8-83D1E48CC825} - No File
    uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    mRun: [pctuto] "C:\Program Files (x86)\Agence-Exclusive\pctuto.exe"
    mRun: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
    mRun: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
    mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
    mRun: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
    mRunOnce: [autoupdater] C:\Users\Marie new\AppData\Roaming\Agence-Exclusive\Agence-Exclusive\autoupdater.exe -runonce
    mRunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
    dRunOnce: [{91120000-002F-0000-0000-0000000FF1CE}] C:\Windows\system32\cmd.exe /C del "C:\ProgramData\Microsoft Help\Rgstrtn.lck" /Q /A:H
    StartupFolder: C:\Users\MARIEN~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\OPENOF~1.LNK - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
    mPolicies-explorer: NoActiveDesktop = 1 (0x1)
    mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
    mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
    mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
    mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
    mPolicies-system: HideFastUserSwitching = 0 (0x0)
    IE: E&xporter vers Microsoft Excel - C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000
    IE: {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe
    IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
    DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} - hxxp://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
    DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} - hxxp://download.bitdefender.com/resources/scanner/sources/fr/scan8/oscan8.cab
    DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} - hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
    DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
    DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
    TCP: DhcpNameServer = 192.168.112.1
    TCP: Interfaces\{4FE8B857-D129-4C83-A761-AF9A96655FE9} : DhcpNameServer = 192.168.112.1
    TCP: Interfaces\{4FE8B857-D129-4C83-A761-AF9A96655FE9}\356425027596649602055726C69636 : DhcpNameServer = 84.103.237.147 86.64.145.147
    TCP: Interfaces\{4FE8B857-D129-4C83-A761-AF9A96655FE9}\E45657660275966496 : DhcpNameServer = 109.0.64.245 84.103.237.147
    Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
    {18DF081C-E8AD-4283-A596-FA578C2EBDC3}
    {6EBF7485-159F-4bff-A14F-B9E3AAC4465B}
    {9030D464-4C02-4ABF-8ECC-5164760863C6}
    {DBC80044-A445-435b-BC74-9C25C1C588A9}
    {381FFDE8-2394-4F90-B10D-FC6124A40F8C}
    TB-X64: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
    TB-X64: {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - No File
    TB-X64: {472734EA-242A-422B-ADF8-83D1E48CC825} - No File
    mRun-x64: [pctuto] "C:\Program Files (x86)\Agence-Exclusive\pctuto.exe"
    mRun-x64: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
    mRun-x64: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
    mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
    mRun-x64: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
    mRunOnce-x64: [autoupdater] C:\Users\Marie new\AppData\Roaming\Agence-Exclusive\Agence-Exclusive\autoupdater.exe -runonce
    mRunOnce-x64: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
    IE-X64: {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe
    .
    ============= SERVICES / DRIVERS ===============
    .
    R1 Bdfndisf;BitDefender Firewall NDIS 6 Filter Driver;C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdfndisf6.sys [2010-6-18 88144]
    R1 bdfwfpf;bdfwfpf;C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdfwfpf.sys [2010-7-15 99408]
    R1 Bdvedisk;Bdvedisk;C:\Windows\system32\DRIVERS\bdvedisk.sys --> C:\Windows\system32\DRIVERS\bdvedisk.sys [?]
    R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
    R2 AESTFilters;Andrea ST Filters Service;C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\AESTSr64.exe [2009-3-2 89600]
    R2 cpuz133;cpuz133;\??\C:\Windows\system32\drivers\cpuz133_x64.sys --> C:\Windows\system32\drivers\cpuz133_x64.sys [?]
    R2 ezSharedSvc;Easybits Shared Services for Windows;C:\Windows\system32\svchost.exe -k netsvcs [2009-7-14 20992]
    R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2010-9-26 366640]
    R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe [2011-5-20 2026304]
    R2 Updatesrv;BitDefender Desktop Update Service;C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe [2011-3-7 53224]
    R3 BDFM;BDFM;C:\Windows\system32\DRIVERS\bdfm.sys --> C:\Windows\system32\DRIVERS\bdfm.sys [?]
    R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI;C:\Windows\system32\drivers\IntcHdmi.sys --> C:\Windows\system32\drivers\IntcHdmi.sys [?]
    R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]
    R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]
    R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys [2010-10-7 11856]
    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
    S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
    S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;C:\Windows\system32\DRIVERS\netw5v64.sys --> C:\Windows\system32\DRIVERS\netw5v64.sys [?]
    S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\system32\Drivers\RtsUStor.sys --> C:\Windows\system32\Drivers\RtsUStor.sys [?]
    S3 SrvHsfHDA;SrvHsfHDA;C:\Windows\system32\DRIVERS\VSTAZL6.SYS --> C:\Windows\system32\DRIVERS\VSTAZL6.SYS [?]
    S3 SrvHsfV92;SrvHsfV92;C:\Windows\system32\DRIVERS\VSTDPV6.SYS --> C:\Windows\system32\DRIVERS\VSTDPV6.SYS [?]
    S3 SrvHsfWinac;SrvHsfWinac;C:\Windows\system32\DRIVERS\VSTCNXT6.SYS --> C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [?]
    S3 SwitchBoard;SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]
    S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
    S3 Update Server;BitDefender Update Server v2;C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe [2011-3-7 467248]
    S3 WatAdminSvc;Service Windows Activation Technologies;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
    S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\system32\DRIVERS\yk62x64.sys --> C:\Windows\system32\DRIVERS\yk62x64.sys [?]
    S4 avc3;avc3;C:\Windows\system32\DRIVERS\avc3.sys --> C:\Windows\system32\DRIVERS\avc3.sys [?]
    S4 avckf;avckf;C:\Windows\system32\DRIVERS\avckf.sys --> C:\Windows\system32\DRIVERS\avckf.sys [?]
    S4 Com4QLBEx;Com4QLBEx;C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2009-8-19 228408]
    .
    =============== File Associations ===============
    .
    .txt=Word Reader-TXT
    .
    =============== Created Last 30 ================
    .
    2011-06-17 10:36:48 8718160 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A0F11B19-E16D-4085-B877-1F63F81CECC8}\mpengine.dll
    2011-06-16 21:01:21 404640 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
    2011-06-16 20:40:03 -------- d-----w- C:\ProgramData\regid.1986-12.com.adobe
    2011-06-16 20:39:04 -------- d-----w- C:\Users\Marie new\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
    2011-06-16 19:44:45 -------- d-----w- C:\Program Files (x86)\Adobe Download Assistant
    2011-06-16 18:30:29 -------- d-----w- C:\Users\Marie new\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
    2011-06-16 17:26:53 -------- d-----w- C:\Users\Marie new\AppData\Local\Agence-Exclusive
    2011-06-16 17:26:51 -------- d-----w- C:\Users\Marie new\AppData\Roaming\Agence-Exclusive
    2011-06-16 17:26:49 -------- d-----w- C:\Program Files (x86)\Agence-Exclusive
    2011-06-16 13:27:59 861696 ----a-w- C:\Windows\System32\oleaut32.dll
    2011-06-16 13:27:59 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll
    2011-06-16 13:27:57 976896 ----a-w- C:\Windows\System32\inetcomm.dll
    2011-06-16 13:27:56 741376 ----a-w- C:\Windows\SysWow64\inetcomm.dll
    2011-06-15 21:32:09 -------- d-----w- C:\Users\Marie new\AppData\Roaming\PhotoFiltre Studio X
    2011-06-15 21:32:02 -------- d-----w- C:\Program Files (x86)\PhotoFiltre Studio X
    2011-06-15 13:06:05 -------- d-----w- C:\Users\Marie new\AppData\Roaming\GetRightToGo
    2011-06-13 15:31:02 -------- d-----w- C:\Users\Marie new\AppData\Roaming\Media Get LLC
    2011-06-13 15:31:02 -------- d-----w- C:\ProgramData\Media Get LLC
    2011-06-13 15:25:14 -------- d-----w- C:\Program Files\Babylon
    2011-06-13 15:25:14 -------- d-----w- C:\Program Files (x86)\Babylon
    2011-06-13 15:24:31 -------- d-----w- C:\Users\Marie new\AppData\Local\Media Get LLC
    2011-06-13 15:23:58 -------- d-----w- C:\Users\Marie new\AppData\Local\MediaGet2
    2011-06-12 15:15:41 34624 ----a-w- C:\Windows\System32\TURegOpt.exe
    2011-06-12 15:15:29 36160 ----a-w- C:\Windows\System32\uxtuneup.dll
    2011-06-12 15:15:29 29504 ----a-w- C:\Windows\SysWow64\uxtuneup.dll
    2011-06-12 15:15:28 25920 ----a-w- C:\Windows\System32\authuitu.dll
    2011-06-12 15:15:28 21312 ----a-w- C:\Windows\SysWow64\authuitu.dll
    2011-06-12 15:15:07 -------- d-----w- C:\Users\Marie new\AppData\Roaming\TuneUp Software
    2011-06-12 15:14:52 -------- d-----w- C:\Program Files (x86)\TuneUp Utilities 2011
    2011-06-12 15:13:44 -------- d-----w- C:\ProgramData\TuneUp Software
    2011-06-12 15:13:27 -------- d-sh--w- C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
    2011-06-07 17:28:21 -------- d-----w- C:\Program Files (x86)\nutri
    2011-06-01 19:29:12 -------- d-----w- C:\Users\Marie new\AppData\Local\{959DF090-918E-424F-9B6E-CC55942A6E68}
    2011-06-01 18:15:10 -------- d-----w- C:\Users\Marie new\AppData\Local\{C32A1795-CEC2-4334-9088-63092FE08C72}
    2011-05-25 12:33:56 27520 ----a-w- C:\Windows\System32\drivers\Diskdump.sys
    2011-05-22 14:59:15 142336 ----a-w- C:\Windows\System32\poqexec.exe
    2011-05-22 14:59:15 123904 ----a-w- C:\Windows\SysWow64\poqexec.exe
    .
    ==================== Find3M ====================
    .
    2011-05-29 07:11:30 39984 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
    2011-05-29 07:11:20 25912 ----a-w- C:\Windows\System32\drivers\mbam.sys
    2011-05-28 03:30:09 1638912 ----a-w- C:\Windows\System32\mshtml.tlb
    2011-05-28 03:06:58 3135488 ----a-w- C:\Windows\System32\win32k.sys
    2011-05-28 02:53:58 1638912 ----a-w- C:\Windows\SysWow64\mshtml.tlb
    2011-04-29 03:06:10 467456 ----a-w- C:\Windows\System32\drivers\srv.sys
    2011-04-29 03:05:49 410112 ----a-w- C:\Windows\System32\drivers\srv2.sys
    2011-04-29 03:05:37 168448 ----a-w- C:\Windows\System32\drivers\srvnet.sys
    2011-04-27 02:40:40 158208 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys
    2011-04-27 02:39:40 289280 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
    2011-04-27 02:39:37 128000 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys
    2011-04-25 05:33:51 1923968 ----a-w- C:\Windows\System32\drivers\tcpip.sys
    2011-04-25 02:34:03 499200 ----a-w- C:\Windows\System32\drivers\afd.sys
    2011-04-22 22:08:29 1188864 ----a-w- C:\Windows\System32\wininet.dll
    2011-04-22 19:10:01 981504 ----a-w- C:\Windows\SysWow64\wininet.dll
    2011-04-09 07:02:55 5562240 ----a-w- C:\Windows\System32\ntoskrnl.exe
    2011-04-09 06:02:25 3967872 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
    2011-04-09 06:02:25 3912576 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
    2011-03-25 03:29:26 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys
    2011-03-25 03:29:14 98816 ----a-w- C:\Windows\System32\drivers\usbccgp.sys
    2011-03-25 03:29:14 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys
    2011-03-25 03:29:04 52736 ----a-w- C:\Windows\System32\drivers\usbehci.sys
    2011-03-25 03:29:03 30720 ----a-w- C:\Windows\System32\drivers\usbuhci.sys
    2011-03-25 03:28:59 7936 ----a-w- C:\Windows\System32\drivers\usbd.sys
    2010-07-08 09:37:14 101544 ----a-w- C:\Program Files\Common Files\LinkInstaller.exe
    2010-02-10 15:18:42 2131336 ----a-w- C:\Program Files (x86)\Common Files\AskToolbarInstaller.exe
    .
    ============= FINISH: 21:39:40,62 ===============
    Contenus similaires
    17 Juin 2011 21:49:56

    re
    désinstalle Agence-Exclusive

    faut lire les cluf avant d'installer n'importe quoi :o 

    http://www.agence-exclusive.com/support_licence.html
    Citation :
    LES INFORMATIONS COMMUNIQUEES PAR LES UTILISATEURS SERONT CONSERVEES DANS UN FICHIER INFORMATISE APPARTENANT A LA SOCIETE L’AGENCE EXCLUSIVE ET SONT SUSCEPTIBLES D'ETRE COMMUNIQUEES AUX PARTENAIRES COMMERCIAUX DE L’AGENCE EXCLUSIVE, ET/OU A TOUT TIERS AUX FINS DE PERMETTRE LA FOURNITURE DU SERVICE PROPOSE PAR L’AGENCE EXCLUSIVE ET/OU D'ASSURER LA PUBLICITE ET LA PROMOTION DE PRODUITS OU DE SERVICES ET/OU DE FAIRE CONNAITRE A L'UTILISATEUR DES PRODUITS OU SERVICES SUSCEPTIBLES DE L'INTERESSER ;


    et encore mieux:
    Citation :
    L’UTILISATEUR ACCEPTE DE RECEVOIR DE L'AGENCE EXCLUSIVE ET/OU DE SES PARTENAIRES DES OFFRES COMMERCIALES SUR SON TELEPHONE PORTABLE PAR SMS OU MMS.


    17 Juin 2011 22:01:06

    Heu... je ne sais pas comment le désinstaller. J'ai regardé dans les programmes, il n'y est pas.
    Je viens de trouver un dossier "agence-exclusive" mais comment désinstaller le programme ? Merci.
    17 Juin 2011 22:04:57

    re
    je vais te le supprimer via un script avec un autre outil (je ferai ça demain)


    Télécharge OTL(de OldTimer) sur ton Bureau.
  • Double-clique sur OTL pour le lancer.
  • (Sous Vista/Win7, il faut cliquer droit sur OTL et choisir Exécuter en tant qu'administrateur)
  • Une fenêtre apparaît. Dans la section Rapport en haut de cette fenêtre, coche Rapport minimal.
  • Coche également les cases à côté de Recherche Lop et Recherche Purity.
  • Enfin, clique sur le bouton Analyse. Le scan ne prendra pas beaucoup de temps.
  • Une fois l'analyse terminée, deux fenêtres vont s'ouvrir dans le Bloc-notes : OTL.txt et Extras.txt. Ils se trouvent au même endroit que OTL (donc par défaut sur le Bureau).
  • Héberge les rapports, puis donne leurs liens.
    Utilise ceci pour les heberger: http://www.sendspace.com/
    17 Juin 2011 22:09:23

    C'est avec l'application "unis000.exe" ? Du coup ça me désinstalle agence exclusive en même temps que le programme que j'avais téléchargé, c'est normal ?
    18 Juin 2011 10:58:34

    re -

    Je viens de désinstaller grâce à "unis000.exe" et j'ai refait le scan avec DDS :

    .
    DDS (Ver_2011-06-12.02) - NTFSAMD64
    Internet Explorer: 8.0.7601.17514
    Run by Marie new at 10:53:46 on 2011-06-18
    Microsoft Windows 7 Édition Familiale Premium 6.1.7601.1.1252.33.1036.18.3003.750 [GMT 2:00]
    .
    AV: BitDefender Antivirus *Enabled/Updated* {50909708-FF80-02AF-F814-B28405891E92}
    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    SP: BitDefender Antispyware *Enabled/Updated* {EBF176EC-D9BA-0D21-C2A4-89F67E0E542F}
    FW: BitDefender Pare-feu *Enabled* {68AB162D-B5EF-03F7-D34B-1BB1FB5A59E9}
    .
    ============== Running Processes ===============
    .
    C:\Windows\system32\wininit.exe
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\svchost.exe -k RPCSS
    C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\STacSV64.exe
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\AESTSr64.exe
    C:\Windows\SysWOW64\svchost.exe -k netsvcs
    C:\Windows\system32\taskhost.exe
    C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe
    C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
    C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
    C:\Windows\Explorer.EXE
    C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
    C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    C:\Program Files\BitDefender\BitDefender 2011\pchooklaunch64.exe
    C:\Program Files\BitDefender\BitDefender 2011\Antispam32\pchooklaunch32.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
    C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesApp64.exe
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Windows\System32\hkcmd.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
    C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
    C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
    C:\Windows\system32\SearchIndexer.exe
    C:\Windows\System32\svchost.exe -k secsvcs
    C:\Windows\system32\svchost.exe -k SDRSVC
    C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
    C:\Program Files (x86)\Internet Explorer\IELowutil.exe
    C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
    C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
    C:\Windows\system32\taskeng.exe
    C:\Users\Marie new\AppData\Local\Google\Update\GoogleUpdate.exe
    C:\Users\Marie new\AppData\Local\Google\Update\1.3.21.57\GoogleCrashHandler.exe
    C:\Program Files\BitDefender\BitDefender 2011\odscanui.exe
    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
    C:\Users\Marie new\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Marie new\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Marie new\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Marie new\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Marie new\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Windows\SysWOW64\rundll32.exe
    C:\Users\Marie new\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Marie new\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Windows\system32\DllHost.exe
    C:\Windows\system32\DllHost.exe
    C:\Users\Marie new\Desktop\problèmes de pubs intempestives 17 juin\dds.scr
    C:\Windows\SysWOW64\cmd.exe
    C:\Windows\system32\conhost.exe
    C:\Windows\SysWOW64\cscript.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uStart Page = about:blank
    uWindow Title =
    mStart Page = about:blank
    BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
    BHO: Programme d'aide de l'Assistant de connexion Windows Live ID: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
    TB: BitDefender Toolbar: {381ffde8-2394-4f90-b10d-fc6124a40f8c} - C:\Program Files\BitDefender\BitDefender 2011\Antispam32\IEToolbar.dll
    TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
    TB: {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - No File
    TB: {472734EA-242A-422B-ADF8-83D1E48CC825} - No File
    uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    mRun: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
    mRun: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
    mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
    mRun: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
    mRunOnce: [autoupdater] C:\Users\Marie new\AppData\Roaming\Agence-Exclusive\Agence-Exclusive\autoupdater.exe -runonce
    mRunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
    dRunOnce: [{91120000-002F-0000-0000-0000000FF1CE}] C:\Windows\system32\cmd.exe /C del "C:\ProgramData\Microsoft Help\Rgstrtn.lck" /Q /A:H
    StartupFolder: C:\Users\MARIEN~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\OPENOF~1.LNK - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
    mPolicies-explorer: NoActiveDesktop = 1 (0x1)
    mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
    mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
    mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
    mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
    mPolicies-system: HideFastUserSwitching = 0 (0x0)
    IE: E&xporter vers Microsoft Excel - C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000
    IE: {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe
    IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
    DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} - hxxp://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
    DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} - hxxp://download.bitdefender.com/resources/scanner/sources/fr/scan8/oscan8.cab
    DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} - hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
    DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
    DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
    TCP: DhcpNameServer = 192.168.112.1
    TCP: Interfaces\{4FE8B857-D129-4C83-A761-AF9A96655FE9} : DhcpNameServer = 192.168.112.1
    TCP: Interfaces\{4FE8B857-D129-4C83-A761-AF9A96655FE9}\356425027596649602055726C69636 : DhcpNameServer = 84.103.237.147 86.64.145.147
    TCP: Interfaces\{4FE8B857-D129-4C83-A761-AF9A96655FE9}\E45657660275966496 : DhcpNameServer = 109.0.64.245 84.103.237.147
    Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
    {18DF081C-E8AD-4283-A596-FA578C2EBDC3}
    {6EBF7485-159F-4bff-A14F-B9E3AAC4465B}
    {9030D464-4C02-4ABF-8ECC-5164760863C6}
    {DBC80044-A445-435b-BC74-9C25C1C588A9}
    {381FFDE8-2394-4F90-B10D-FC6124A40F8C}
    TB-X64: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
    TB-X64: {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - No File
    TB-X64: {472734EA-242A-422B-ADF8-83D1E48CC825} - No File
    mRun-x64: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
    mRun-x64: [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
    mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
    mRun-x64: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
    mRunOnce-x64: [autoupdater] C:\Users\Marie new\AppData\Roaming\Agence-Exclusive\Agence-Exclusive\autoupdater.exe -runonce
    mRunOnce-x64: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
    IE-X64: {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe
    .
    ============= SERVICES / DRIVERS ===============
    .
    R1 Bdfndisf;BitDefender Firewall NDIS 6 Filter Driver;C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdfndisf6.sys [2010-6-18 88144]
    R1 bdfwfpf;bdfwfpf;C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdfwfpf.sys [2010-7-15 99408]
    R1 Bdvedisk;Bdvedisk;C:\Windows\system32\DRIVERS\bdvedisk.sys --> C:\Windows\system32\DRIVERS\bdvedisk.sys [?]
    R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]
    R2 AESTFilters;Andrea ST Filters Service;C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\AESTSr64.exe [2009-3-2 89600]
    R2 cpuz133;cpuz133;\??\C:\Windows\system32\drivers\cpuz133_x64.sys --> C:\Windows\system32\drivers\cpuz133_x64.sys [?]
    R2 ezSharedSvc;Easybits Shared Services for Windows;C:\Windows\system32\svchost.exe -k netsvcs [2009-7-14 20992]
    R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2010-9-26 366640]
    R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe [2011-5-20 2026304]
    R2 Updatesrv;BitDefender Desktop Update Service;C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe [2011-3-7 53224]
    R3 BDFM;BDFM;C:\Windows\system32\DRIVERS\bdfm.sys --> C:\Windows\system32\DRIVERS\bdfm.sys [?]
    R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI;C:\Windows\system32\drivers\IntcHdmi.sys --> C:\Windows\system32\drivers\IntcHdmi.sys [?]
    R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]
    R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\system32\Drivers\RtsUStor.sys --> C:\Windows\system32\Drivers\RtsUStor.sys [?]
    R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]
    R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys [2010-10-7 11856]
    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
    S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
    S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;C:\Windows\system32\DRIVERS\netw5v64.sys --> C:\Windows\system32\DRIVERS\netw5v64.sys [?]
    S3 SrvHsfHDA;SrvHsfHDA;C:\Windows\system32\DRIVERS\VSTAZL6.SYS --> C:\Windows\system32\DRIVERS\VSTAZL6.SYS [?]
    S3 SrvHsfV92;SrvHsfV92;C:\Windows\system32\DRIVERS\VSTDPV6.SYS --> C:\Windows\system32\DRIVERS\VSTDPV6.SYS [?]
    S3 SrvHsfWinac;SrvHsfWinac;C:\Windows\system32\DRIVERS\VSTCNXT6.SYS --> C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [?]
    S3 SwitchBoard;SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]
    S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
    S3 Update Server;BitDefender Update Server v2;C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe [2011-3-7 467248]
    S3 WatAdminSvc;Service Windows Activation Technologies;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
    S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\system32\DRIVERS\yk62x64.sys --> C:\Windows\system32\DRIVERS\yk62x64.sys [?]
    S4 avc3;avc3;C:\Windows\system32\DRIVERS\avc3.sys --> C:\Windows\system32\DRIVERS\avc3.sys [?]
    S4 avckf;avckf;C:\Windows\system32\DRIVERS\avckf.sys --> C:\Windows\system32\DRIVERS\avckf.sys [?]
    S4 Com4QLBEx;Com4QLBEx;C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2009-8-19 228408]
    .
    =============== File Associations ===============
    .
    .txt=Word Reader-TXT
    .
    =============== Created Last 30 ================
    .
    2011-06-17 10:36:48 8718160 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A0F11B19-E16D-4085-B877-1F63F81CECC8}\mpengine.dll
    2011-06-16 21:01:21 404640 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
    2011-06-16 20:40:03 -------- d-----w- C:\ProgramData\regid.1986-12.com.adobe
    2011-06-16 20:39:04 -------- d-----w- C:\Users\Marie new\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
    2011-06-16 19:44:45 -------- d-----w- C:\Program Files (x86)\Adobe Download Assistant
    2011-06-16 18:30:29 -------- d-----w- C:\Users\Marie new\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
    2011-06-16 13:27:59 861696 ----a-w- C:\Windows\System32\oleaut32.dll
    2011-06-16 13:27:59 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll
    2011-06-16 13:27:57 976896 ----a-w- C:\Windows\System32\inetcomm.dll
    2011-06-16 13:27:56 741376 ----a-w- C:\Windows\SysWow64\inetcomm.dll
    2011-06-15 21:32:09 -------- d-----w- C:\Users\Marie new\AppData\Roaming\PhotoFiltre Studio X
    2011-06-15 21:32:02 -------- d-----w- C:\Program Files (x86)\PhotoFiltre Studio X
    2011-06-15 13:06:05 -------- d-----w- C:\Users\Marie new\AppData\Roaming\GetRightToGo
    2011-06-13 15:31:02 -------- d-----w- C:\Users\Marie new\AppData\Roaming\Media Get LLC
    2011-06-13 15:31:02 -------- d-----w- C:\ProgramData\Media Get LLC
    2011-06-13 15:25:14 -------- d-----w- C:\Program Files\Babylon
    2011-06-13 15:25:14 -------- d-----w- C:\Program Files (x86)\Babylon
    2011-06-13 15:24:31 -------- d-----w- C:\Users\Marie new\AppData\Local\Media Get LLC
    2011-06-13 15:23:58 -------- d-----w- C:\Users\Marie new\AppData\Local\MediaGet2
    2011-06-12 15:15:41 34624 ----a-w- C:\Windows\System32\TURegOpt.exe
    2011-06-12 15:15:29 36160 ----a-w- C:\Windows\System32\uxtuneup.dll
    2011-06-12 15:15:29 29504 ----a-w- C:\Windows\SysWow64\uxtuneup.dll
    2011-06-12 15:15:28 25920 ----a-w- C:\Windows\System32\authuitu.dll
    2011-06-12 15:15:28 21312 ----a-w- C:\Windows\SysWow64\authuitu.dll
    2011-06-12 15:15:07 -------- d-----w- C:\Users\Marie new\AppData\Roaming\TuneUp Software
    2011-06-12 15:14:52 -------- d-----w- C:\Program Files (x86)\TuneUp Utilities 2011
    2011-06-12 15:13:44 -------- d-----w- C:\ProgramData\TuneUp Software
    2011-06-12 15:13:27 -------- d-sh--w- C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
    2011-06-07 17:28:21 -------- d-----w- C:\Program Files (x86)\nutri
    2011-06-01 19:29:12 -------- d-----w- C:\Users\Marie new\AppData\Local\{959DF090-918E-424F-9B6E-CC55942A6E68}
    2011-06-01 18:15:10 -------- d-----w- C:\Users\Marie new\AppData\Local\{C32A1795-CEC2-4334-9088-63092FE08C72}
    2011-05-25 12:33:56 27520 ----a-w- C:\Windows\System32\drivers\Diskdump.sys
    2011-05-22 14:59:15 142336 ----a-w- C:\Windows\System32\poqexec.exe
    2011-05-22 14:59:15 123904 ----a-w- C:\Windows\SysWow64\poqexec.exe
    .
    ==================== Find3M ====================
    .
    2011-05-29 07:11:30 39984 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
    2011-05-29 07:11:20 25912 ----a-w- C:\Windows\System32\drivers\mbam.sys
    2011-05-28 03:30:09 1638912 ----a-w- C:\Windows\System32\mshtml.tlb
    2011-05-28 03:06:58 3135488 ----a-w- C:\Windows\System32\win32k.sys
    2011-05-28 02:53:58 1638912 ----a-w- C:\Windows\SysWow64\mshtml.tlb
    2011-04-29 03:06:10 467456 ----a-w- C:\Windows\System32\drivers\srv.sys
    2011-04-29 03:05:49 410112 ----a-w- C:\Windows\System32\drivers\srv2.sys
    2011-04-29 03:05:37 168448 ----a-w- C:\Windows\System32\drivers\srvnet.sys
    2011-04-27 02:40:40 158208 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys
    2011-04-27 02:39:40 289280 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
    2011-04-27 02:39:37 128000 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys
    2011-04-25 05:33:51 1923968 ----a-w- C:\Windows\System32\drivers\tcpip.sys
    2011-04-25 02:34:03 499200 ----a-w- C:\Windows\System32\drivers\afd.sys
    2011-04-22 22:08:29 1188864 ----a-w- C:\Windows\System32\wininet.dll
    2011-04-22 19:10:01 981504 ----a-w- C:\Windows\SysWow64\wininet.dll
    2011-04-09 07:02:55 5562240 ----a-w- C:\Windows\System32\ntoskrnl.exe
    2011-04-09 06:02:25 3967872 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
    2011-04-09 06:02:25 3912576 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
    2011-03-25 03:29:26 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys
    2011-03-25 03:29:14 98816 ----a-w- C:\Windows\System32\drivers\usbccgp.sys
    2011-03-25 03:29:14 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys
    2011-03-25 03:29:04 52736 ----a-w- C:\Windows\System32\drivers\usbehci.sys
    2011-03-25 03:29:03 30720 ----a-w- C:\Windows\System32\drivers\usbuhci.sys
    2011-03-25 03:28:59 7936 ----a-w- C:\Windows\System32\drivers\usbd.sys
    2010-07-08 09:37:14 101544 ----a-w- C:\Program Files\Common Files\LinkInstaller.exe
    2010-02-10 15:18:42 2131336 ----a-w- C:\Program Files (x86)\Common Files\AskToolbarInstaller.exe
    .
    ============= FINISH: 10:57:32,87 ===============

    Ai-je réussi à remédier au problème ?
    18 Juin 2011 11:31:31

    re
    pour moi c'est ok, mais il reste des bricoles.
    si tu veux que l'on peaufine, poste un nouveau rapport OTL.
    18 Juin 2011 12:08:16

    OTL logfile created on: 18/06/2011 11:57:22 - Run 3
    OTL by OldTimer - Version 3.2.24.1 Folder = C:\Users\Marie new\Desktop
    64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
    Internet Explorer (Version = 8.0.7601.17514)
    Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

    2,93 Gb Total Physical Memory | 0,88 Gb Available Physical Memory | 30,17% Memory free
    5,86 Gb Paging File | 3,42 Gb Available in Paging File | 58,33% Paging File free
    Paging file location(s): ?:\pagefile.sys [binary data]

    %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
    Drive C: | 220,12 Gb Total Space | 141,74 Gb Free Space | 64,39% Space Free | Partition Type: NTFS
    Drive D: | 12,57 Gb Total Space | 2,07 Gb Free Space | 16,47% Space Free | Partition Type: NTFS

    Computer Name: MARIE-PC | User Name: Marie new | Logged in as Administrator.
    Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
    Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

    ========== Processes (SafeList) ==========

    PRC - File not found
    PRC - C:\Users\Marie new\Desktop\OTL.exe (OldTimer Tools)
    PRC - C:\Users\Marie new\AppData\Local\Google\Update\1.3.21.57\GoogleCrashHandler.exe (Google Inc.)
    PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
    PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
    PRC - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe (Adobe Systems Incorporated)
    PRC - C:\Program Files\BitDefender\BitDefender 2011\Antispam32\pchooklaunch32.exe (BitDefender S.R.L.)
    PRC - C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe (OpenOffice.org)
    PRC - C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin (OpenOffice.org)


    ========== Modules (SafeList) ==========

    MOD - C:\Users\Marie new\Desktop\OTL.exe (OldTimer Tools)
    MOD - C:\Program Files\BitDefender\BitDefender 2011\Active Virus Control\Midas_00075_010\plugin_extra.m32 (BitDefender S.R.L. Bucharest, ROMANIA)
    MOD - C:\Program Files\BitDefender\BitDefender 2011\Active Virus Control\Midas_00075_010\plugin_net.m32 (BitDefender S.R.L. Bucharest, ROMANIA)
    MOD - C:\Program Files\BitDefender\BitDefender 2011\Active Virus Control\Midas_00075_010\plugin_nt.m32 (BitDefender S.R.L. Bucharest, ROMANIA)
    MOD - C:\Program Files\BitDefender\BitDefender 2011\Active Virus Control\Midas_00075_010\plugin_base.m32 (BitDefender S.R.L. Bucharest, ROMANIA)
    MOD - C:\Program Files\BitDefender\BitDefender 2011\Active Virus Control\Midas_00075_010\plugin_fragments.m32 (BitDefender S.R.L. Bucharest, ROMANIA)
    MOD - C:\Program Files\BitDefender\BitDefender 2011\Active Virus Control\Midas_00075_010\midas32.dll (BitDefender S.R.L. Bucharest, ROMANIA)
    MOD - C:\Program Files\BitDefender\BitDefender 2011\Active Virus Control\Midas_00075_010\plugin_registry.m32 (BitDefender S.R.L. Bucharest, ROMANIA)
    MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll (Microsoft Corporation)
    MOD - C:\Program Files\BitDefender\BitDefender 2011\Active Virus Control\Midas_00075_010\leaktests.m32 (BitDefender SRL)


    ========== Win32 Services (SafeList) ==========

    SRV:64bit: - (UxTuneUp) -- C:\Windows\SysNative\uxtuneup.dll (TuneUp Software)
    SRV:64bit: - (Updatesrv) -- C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe (BitDefender S.R.L.)
    SRV:64bit: - (VSSERV) -- C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe (BitDefender S.R.L.)
    SRV:64bit: - (Update Server) -- C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe (BitDefender)
    SRV:64bit: - (STacSV) -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\stacsv64.exe (IDT, Inc.)
    SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
    SRV:64bit: - (AESTFilters) -- C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\AESTSr64.exe (Andrea Electronics Corporation)
    SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
    SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe (TuneUp Software)
    SRV - (UxTuneUp) -- C:\Windows\SysWOW64\uxtuneup.dll (TuneUp Software)
    SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
    SRV - (SwitchBoard) -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
    SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
    SRV - (GameConsoleService) -- C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe (WildTangent, Inc.)
    SRV - (ezSharedSvc) -- C:\Windows\SysWOW64\ezsvc7.dll (EasyBits Sofware AS)
    SRV - (ServiceLayer) -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe (Nokia.)


    ========== Driver Services (SafeList) ==========

    DRV:64bit: - (MBAMProtector) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes Corporation)
    DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
    DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
    DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
    DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
    DRV:64bit: - (sdbus) -- C:\Windows\SysNative\drivers\sdbus.sys (Microsoft Corporation)
    DRV:64bit: - (bdfwfpf) -- C:\Program Files\Common Files\BitDefender\BitDefender Firewall\bdfwfpf.sys (BitDefender)
    DRV:64bit: - (Bdfndisf) -- c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys (BitDefender)
    DRV:64bit: - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel Corporation)
    DRV:64bit: - (bdfsfltr) -- C:\Windows\SysNative\drivers\bdfsfltr.sys (BitDefender)
    DRV:64bit: - (avckf) -- C:\Windows\SysNative\drivers\avckf.sys (BitDefender)
    DRV:64bit: - (avc3) -- C:\Windows\SysNative\drivers\avc3.sys (BitDefender)
    DRV:64bit: - (NPF) -- C:\Windows\SysNative\drivers\npf.sys (CACE Technologies, Inc.)
    DRV:64bit: - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)
    DRV:64bit: - (BDFM) -- C:\Windows\SysNative\drivers\bdfm.sys (BitDefender S.R.L. Bucharest, ROMANIA)
    DRV:64bit: - (cpuz133) -- C:\Windows\SysNative\drivers\cpuz133_x64.sys (Windows (R) Win 7 DDK provider)
    DRV:64bit: - (STHDA) -- C:\Windows\SysNative\drivers\stwrt64.sys (IDT, Inc.)
    DRV:64bit: - (Bdvedisk) -- C:\Windows\SysNative\drivers\bdvedisk.sys (BitDefender)
    DRV:64bit: - (athr) -- C:\Windows\SysNative\drivers\athrx.sys (Atheros Communications, Inc.)
    DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
    DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
    DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
    DRV:64bit: - (RSUSBSTOR) -- C:\Windows\SysNative\drivers\RtsUStor.sys (Realtek Semiconductor Corp.)
    DRV:64bit: - (SrvHsfV92) -- C:\Windows\SysNative\drivers\VSTDPV6.SYS (Conexant Systems, Inc.)
    DRV:64bit: - (SrvHsfWinac) -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS (Conexant Systems, Inc.)
    DRV:64bit: - (SrvHsfHDA) -- C:\Windows\SysNative\drivers\VSTAZL6.SYS (Conexant Systems, Inc.)
    DRV:64bit: - (AgereSoftModem) -- C:\Windows\SysNative\drivers\agrsm64.sys (LSI Corp)
    DRV:64bit: - (Ntfs) -- C:\Windows\SysNative\wbem\ntfs.mof ()
    DRV:64bit: - (yukonw7) -- C:\Windows\SysNative\drivers\yk62x64.sys (Marvell)
    DRV:64bit: - (netw5v64) Intel(R) -- C:\Windows\SysNative\drivers\netw5v64.sys (Intel Corporation)
    DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
    DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
    DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
    DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
    DRV:64bit: - (IntcHdmiAddService) Intel(R) -- C:\Windows\SysNative\drivers\IntcHdmi.sys (Intel(R) Corporation)
    DRV:64bit: - (HpqKbFiltr) -- C:\Windows\SysNative\drivers\HpqKbFiltr.sys (Hewlett-Packard Development Company, L.P.)
    DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek Corporation )
    DRV:64bit: - (pccsmcfd) -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys (Nokia)
    DRV - (TuneUpUtilitiesDrv) -- C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys (TuneUp Software)
    DRV - (TFsExDisk) -- C:\Windows\SysWOW64\drivers\TFsExDisk.Sys (Teruten Inc)


    ========== Standard Registry (SafeList) ==========


    ========== Internet Explorer ==========

    IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&loca...
    IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&loca...
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
    IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank

    IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
    IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

    FF - HKLM\software\mozilla\Firefox\Extensions\\FFToolbar@bitdefender.com: C:\Program Files\BitDefender\BitDefender 2011\bdaphffext\ [2011/03/30 14:59:42 | 000,000,000 | ---D | M]
    FF - HKLM\software\mozilla\Thunderbird\Extensions\\bdThunderbird@bitdefender.com: C:\Program Files\BitDefender\BitDefender 2011\bdtbext\ [2010/11/06 21:54:50 | 000,000,000 | ---D | M]

    [2010/04/22 22:00:04 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marie new\AppData\Roaming\mozilla\Extensions
    [2010/03/28 14:49:03 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marie new\AppData\Roaming\mozilla\Extensions\IMVUClientXUL@imvu.com
    [2010/04/22 22:00:04 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Marie new\AppData\Roaming\mozilla\Extensions\mozswing@mozswing.org

    O1 HOSTS File: ([2009/06/10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
    O3:64bit: - HKLM\..\Toolbar: (BitDefender Toolbar) - {381FFDE8-2394-4F90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2011\IEToolbar.dll (BitDefender S.R.L.)
    O3 - HKLM\..\Toolbar: (BitDefender Toolbar) - {381FFDE8-2394-4F90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2011\Antispam32\IEToolbar.dll (BitDefender S.R.L.)
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {472734EA-242A-422B-ADF8-83D1E48CC825} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - No CLSID value found.
    O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
    O4:64bit: - HKLM..\Run: [BitDefender Antiphishing Helper] C:\Program Files\BitDefender\BitDefender 2011\ieshow.exe (BitDefender S.R.L.)
    O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
    O4 - HKLM..\Run: [AdobeCS5.5ServiceManager] File not found
    O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
    O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (reboot)] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
    O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
    O4 - HKLM..\RunOnce: [autoupdater] File not found
    O4 - HKLM..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
    O4 - Startup: C:\Users\Marie new\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
    O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideFastUserSwitching = 0
    O13 - gopher Prefix: missing
    O13 - gopher Prefix: missing
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-wind... (Java Plug-in 1.6.0_14)
    O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-wind... (Java Plug-in 1.6.0_14)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-wind... (Reg Error: Key error.)
    O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} http://messenger.zone.msn.com/binary/msgrchkr.cab56986.... (Checkers Class)
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/resources/scanner/sourc... (BDSCANONLINE Control)
    O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/2009.07.28_v5.5.8.1... (Facebook Photo Uploader 5 Control)
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-wind... (Java Plug-in 1.6.0_22)
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPACl... (MessengerStatsClient Class)
    O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-wind... (Java Plug-in 1.6.0_14)
    O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-wind... (Java Plug-in 1.6.0_22)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-wind... (Java Plug-in 1.6.0_22)
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.112.1
    O18:64bit: - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found
    O18:64bit: - Protocol\Handler\wlpg {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - Reg Error: Key error. File not found
    O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
    O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
    O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found
    O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
    O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
    O20:64bit: - Winlogon\Notify\igfxcui: DllName - Reg Error: Key error. - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
    O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
    O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
    O32 - HKLM CDRom: AutoRun - 1
    O34 - HKLM BootExecute: (autocheck autochk *) - File not found
    O35:64bit: - HKLM\..comfile [open] -- "%1" %*
    O35:64bit: - HKLM\..exefile [open] -- "%1" %*
    O35 - HKLM\..comfile [open] -- "%1" %*
    O35 - HKLM\..exefile [open] -- "%1" %*
    O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
    O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
    O37 - HKLM\...com [@ = comfile] -- "%1" %*
    O37 - HKLM\...exe [@ = exefile] -- "%1" %*

    ========== Files/Folders - Created Within 30 Days ==========

    [2011/06/17 22:18:40 | 000,579,072 | ---- | C] (OldTimer Tools) -- C:\Users\Marie new\Desktop\OTL.exe
    [2011/06/17 20:25:41 | 000,000,000 | ---D | C] -- C:\Users\Marie new\Desktop\problèmes de pubs intempestives 17 juin
    [2011/06/16 23:01:21 | 000,404,640 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
    [2011/06/16 22:40:03 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1986-12.com.adobe
    [2011/06/16 22:39:04 | 000,000,000 | ---D | C] -- C:\Users\Marie new\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
    [2011/06/16 22:29:49 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
    [2011/06/16 22:29:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
    [2011/06/16 21:48:23 | 000,000,000 | ---D | C] -- C:\Users\Marie new\Documents\photoshop (infos, sites téléchargement...)
    [2011/06/16 21:44:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe Download Assistant
    [2011/06/16 21:44:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe AIR
    [2011/06/16 20:30:29 | 000,000,000 | ---D | C] -- C:\Users\Marie new\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
    [2011/06/16 15:28:12 | 000,702,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
    [2011/06/16 15:28:11 | 000,599,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeeds.dll
    [2011/06/16 15:28:10 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
    [2011/06/16 15:28:10 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
    [2011/06/16 15:28:01 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1.dll
    [2011/06/16 15:28:01 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d10_1.dll
    [2011/06/16 15:27:59 | 000,861,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
    [2011/06/16 12:08:32 | 000,000,000 | ---D | C] -- C:\Users\Marie new\Desktop\A imprimer s'il te plait
    [2011/06/15 23:46:09 | 000,000,000 | ---D | C] -- C:\Users\Marie new\Documents\PhotoFiltre_Studio_10_up_
    [2011/06/15 23:32:09 | 000,000,000 | ---D | C] -- C:\Users\Marie new\AppData\Roaming\PhotoFiltre Studio X
    [2011/06/15 23:32:05 | 000,000,000 | ---D | C] -- C:\Users\Marie new\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre Studio X
    [2011/06/15 23:32:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre Studio X
    [2011/06/15 23:32:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\PhotoFiltre Studio X
    [2011/06/15 15:06:05 | 000,000,000 | ---D | C] -- C:\Users\Marie new\AppData\Roaming\GetRightToGo
    [2011/06/13 17:31:02 | 000,000,000 | ---D | C] -- C:\Users\Marie new\AppData\Roaming\Media Get LLC
    [2011/06/13 17:31:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Media Get LLC
    [2011/06/13 17:25:14 | 000,000,000 | ---D | C] -- C:\Program Files\Babylon
    [2011/06/13 17:25:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Babylon
    [2011/06/13 17:24:31 | 000,000,000 | ---D | C] -- C:\Users\Marie new\AppData\Local\Media Get LLC
    [2011/06/13 17:23:58 | 000,000,000 | ---D | C] -- C:\Users\Marie new\AppData\Local\MediaGet2
    [2011/06/13 11:48:36 | 000,000,000 | ---D | C] -- C:\Users\Marie new\Desktop\poèmes terminés 10 A REVERIFIER
    [2011/06/12 17:15:41 | 000,034,624 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\TURegOpt.exe
    [2011/06/12 17:15:29 | 000,036,160 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\uxtuneup.dll
    [2011/06/12 17:15:29 | 000,029,504 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\uxtuneup.dll
    [2011/06/12 17:15:28 | 000,025,920 | ---- | C] (TuneUp Software) -- C:\Windows\SysNative\authuitu.dll
    [2011/06/12 17:15:28 | 000,021,312 | ---- | C] (TuneUp Software) -- C:\Windows\SysWow64\authuitu.dll
    [2011/06/12 17:15:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2011
    [2011/06/12 17:15:07 | 000,000,000 | ---D | C] -- C:\Users\Marie new\AppData\Roaming\TuneUp Software
    [2011/06/12 17:14:52 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TuneUp Utilities 2011
    [2011/06/12 17:13:44 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software
    [2011/06/12 17:13:27 | 000,000,000 | -HSD | C] -- C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
    [2011/06/12 17:12:46 | 020,657,472 | ---- | C] (TuneUp Software) -- C:\Users\Marie new\Documents\TuneUpUtilities2011_fr-FR.exe
    [2011/06/07 19:28:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\nutrical
    [2011/06/07 19:28:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\nutri
    [2011/06/01 21:29:12 | 000,000,000 | ---D | C] -- C:\Users\Marie new\AppData\Local\{959DF090-918E-424F-9B6E-CC55942A6E68}
    [2011/06/01 20:15:10 | 000,000,000 | ---D | C] -- C:\Users\Marie new\AppData\Local\{C32A1795-CEC2-4334-9088-63092FE08C72}
    [2011/05/25 14:33:56 | 000,027,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Diskdump.sys
    [2011/05/22 16:59:15 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\poqexec.exe
    [2011/05/22 16:59:15 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\poqexec.exe
    [2010/03/21 17:30:15 | 002,131,336 | ---- | C] (Ask.com ) -- C:\Program Files (x86)\Common Files\AskToolbarInstaller.exe

    ========== Files - Modified Within 30 Days ==========

    [2011/06/18 11:27:22 | 000,000,053 | ---- | M] () -- C:\Users\Marie new\Desktop\Manon Sire Photographie.url
    [2011/06/18 09:35:58 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
    [2011/06/17 23:38:09 | 001,152,423 | ---- | M] () -- C:\Users\Marie new\Desktop\IMGssqsq_2973.jpg
    [2011/06/17 22:18:38 | 000,579,072 | ---- | M] (OldTimer Tools) -- C:\Users\Marie new\Desktop\OTL.exe
    [2011/06/17 20:26:10 | 000,000,099 | ---- | M] () -- C:\Users\Marie new\Desktop\Pages de publicité qui s'ouvrent tout le temps.url
    [2011/06/17 17:30:05 | 000,001,094 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-479051416-3741097544-1877210214-1003UA.job
    [2011/06/17 17:15:03 | 001,389,172 | ---- | M] () -- C:\Users\Marie new\Desktop\franais feuille 3.jpg
    [2011/06/17 17:14:55 | 001,705,168 | ---- | M] () -- C:\Users\Marie new\Desktop\franais feuille 2.jpg
    [2011/06/17 17:14:41 | 001,677,548 | ---- | M] () -- C:\Users\Marie new\Desktop\franais feuille 1.jpg
    [2011/06/17 12:37:53 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
    [2011/06/17 12:37:53 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
    [2011/06/17 12:28:37 | 2361,602,048 | -HS- | M] () -- C:\hiberfil.sys
    [2011/06/16 23:41:04 | 000,001,223 | ---- | M] () -- C:\Users\Marie new\Desktop\Adobe Photoshop CS5.1.lnk
    [2011/06/16 23:01:21 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
    [2011/06/16 22:59:12 | 005,012,992 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
    [2011/06/16 19:30:01 | 000,001,042 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-479051416-3741097544-1877210214-1003Core.job
    [2011/06/16 13:48:05 | 000,000,068 | ---- | M] () -- C:\Users\Marie new\Desktop\LES REGISTRES LITTÉRAIRES.url
    [2011/06/16 13:48:01 | 000,000,080 | ---- | M] () -- C:\Users\Marie new\Desktop\Mouvement littéraire - Wikipédia.url
    [2011/06/16 12:22:15 | 000,001,235 | ---- | M] () -- C:\Users\Marie new\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk
    [2011/06/15 23:47:03 | 000,001,096 | ---- | M] () -- C:\Users\Marie new\Desktop\PhotoFiltre Studio X.lnk
    [2011/06/15 20:13:45 | 001,549,700 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
    [2011/06/15 20:13:45 | 000,704,480 | ---- | M] () -- C:\Windows\SysNative\perfh00C.dat
    [2011/06/15 20:13:45 | 000,616,008 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
    [2011/06/15 20:13:45 | 000,130,754 | ---- | M] () -- C:\Windows\SysNative\perfc00C.dat
    [2011/06/15 20:13:45 | 000,106,388 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
    [2011/06/15 17:09:45 | 000,039,514 | ---- | M] () -- C:\Users\Marie new\Desktop\citations et phrases sympas.odt
    [2011/06/15 15:33:00 | 000,002,417 | ---- | M] () -- C:\Users\Marie new\Desktop\Google Chrome.lnk
    [2011/06/14 20:28:12 | 000,000,095 | ---- | M] () -- C:\Users\Marie new\Desktop\Modifier élément du registre.url
    [2011/06/13 08:01:37 | 000,000,332 | ---- | M] () -- C:\Windows\tasks\GlaryInitialize.job
    [2011/06/12 17:24:50 | 000,002,225 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Maintenance en 1 clic.lnk
    [2011/06/12 17:24:50 | 000,002,189 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Utilities 2011.lnk
    [2011/06/12 17:13:18 | 020,657,472 | ---- | M] (TuneUp Software) -- C:\Users\Marie new\Documents\TuneUpUtilities2011_fr-FR.exe
    [2011/06/11 23:33:47 | 000,000,348 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForMarie new.job
    [2011/06/08 20:21:27 | 000,000,111 | ---- | M] () -- C:\Users\Marie new\Desktop\La poésie - Fiches de révision - Français - Première S - Révisions - Réussite Bac.url
    [2011/05/29 09:11:30 | 000,039,984 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
    [2011/05/29 09:11:20 | 000,025,912 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
    [2011/05/20 14:08:16 | 000,034,624 | ---- | M] (TuneUp Software) -- C:\Windows\SysNative\TURegOpt.exe
    [2011/05/20 14:02:12 | 000,025,920 | ---- | M] (TuneUp Software) -- C:\Windows\SysNative\authuitu.dll
    [2011/05/20 14:02:10 | 000,021,312 | ---- | M] (TuneUp Software) -- C:\Windows\SysWow64\authuitu.dll
    [2011/05/20 14:02:06 | 000,036,160 | ---- | M] (TuneUp Software) -- C:\Windows\SysNative\uxtuneup.dll
    [2011/05/20 14:02:02 | 000,029,504 | ---- | M] (TuneUp Software) -- C:\Windows\SysWow64\uxtuneup.dll

    ========== Files Created - No Company Name ==========

    [2011/06/18 11:27:22 | 000,000,053 | ---- | C] () -- C:\Users\Marie new\Desktop\Manon Sire Photographie.url
    [2011/06/17 23:37:59 | 001,152,423 | ---- | C] () -- C:\Users\Marie new\Desktop\IMGssqsq_2973.jpg
    [2011/06/17 20:26:10 | 000,000,099 | ---- | C] () -- C:\Users\Marie new\Desktop\Pages de publicité qui s'ouvrent tout le temps.url
    [2011/06/17 17:14:59 | 001,389,172 | ---- | C] () -- C:\Users\Marie new\Desktop\franais feuille 3.jpg
    [2011/06/17 17:14:49 | 001,705,168 | ---- | C] () -- C:\Users\Marie new\Desktop\franais feuille 2.jpg
    [2011/06/17 17:14:41 | 001,677,548 | ---- | C] () -- C:\Users\Marie new\Desktop\franais feuille 1.jpg
    [2011/06/16 23:41:04 | 000,001,223 | ---- | C] () -- C:\Users\Marie new\Desktop\Adobe Photoshop CS5.1.lnk
    [2011/06/16 22:33:15 | 000,001,093 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS5.1 (64 Bit).lnk
    [2011/06/16 22:32:11 | 000,001,223 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS5.1.lnk
    [2011/06/16 22:29:04 | 000,001,185 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS5.1.lnk
    [2011/06/16 22:28:30 | 000,001,278 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Device Central CS5.5.lnk
    [2011/06/16 22:26:14 | 000,001,379 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Extension Manager CS5.5.lnk
    [2011/06/16 22:25:46 | 000,001,551 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit CS5.5.lnk
    [2011/06/16 22:24:41 | 000,000,997 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk
    [2011/06/16 21:44:46 | 000,001,043 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Download Assistant.lnk
    [2011/06/16 13:48:05 | 000,000,068 | ---- | C] () -- C:\Users\Marie new\Desktop\LES REGISTRES LITTÉRAIRES.url
    [2011/06/16 13:48:01 | 000,000,080 | ---- | C] () -- C:\Users\Marie new\Desktop\Mouvement littéraire - Wikipédia.url
    [2011/06/16 12:22:15 | 000,001,235 | ---- | C] () -- C:\Users\Marie new\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk
    [2011/06/15 23:32:05 | 000,001,096 | ---- | C] () -- C:\Users\Marie new\Desktop\PhotoFiltre Studio X.lnk
    [2011/06/14 20:28:12 | 000,000,095 | ---- | C] () -- C:\Users\Marie new\Desktop\Modifier élément du registre.url
    [2011/06/12 17:15:26 | 000,002,225 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp Maintenance en 1 clic.lnk
    [2011/06/12 17:15:26 | 000,002,201 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2011.lnk
    [2011/06/12 17:15:26 | 000,002,189 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp Utilities 2011.lnk
    [2011/06/08 20:21:27 | 000,000,111 | ---- | C] () -- C:\Users\Marie new\Desktop\La poésie - Fiches de révision - Français - Première S - Révisions - Réussite Bac.url
    [2011/05/21 21:54:50 | 000,000,348 | ---- | C] () -- C:\Windows\tasks\HPCeeScheduleForMarie new.job
    [2011/04/28 18:16:32 | 000,023,040 | ---- | C] () -- C:\Users\Marie new\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    [2011/03/06 21:53:36 | 000,004,916 | ---- | C] () -- C:\ProgramData\ojobkspa.ako
    [2010/12/27 14:50:40 | 003,086,336 | ---- | C] () -- C:\Windows\SysWow64\NCMedia.dll
    [2010/12/27 14:50:40 | 003,086,336 | ---- | C] () -- C:\Windows\SysWow64\flvvideo.dll
    [2010/12/27 14:50:40 | 000,765,952 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
    [2010/12/27 14:50:40 | 000,383,238 | ---- | C] () -- C:\Windows\SysWow64\libmp3lame-0.dll
    [2010/11/06 21:47:30 | 000,060,579 | ---- | C] () -- C:\ProgramData\bdinstall.bin
    [2010/08/25 20:34:30 | 000,982,240 | ---- | C] () -- C:\Windows\SysWow64\igkrng500.bin
    [2010/08/25 20:34:30 | 000,439,308 | ---- | C] () -- C:\Windows\SysWow64\igcompkrng500.bin
    [2010/08/25 20:34:30 | 000,092,356 | ---- | C] () -- C:\Windows\SysWow64\igfcg500m.bin
    [2010/08/25 19:52:00 | 000,208,896 | ---- | C] () -- C:\Windows\SysWow64\iglhsip32.dll
    [2010/08/25 19:52:00 | 000,143,360 | ---- | C] () -- C:\Windows\SysWow64\iglhcp32.dll
    [2010/07/14 17:37:05 | 000,767,952 | ---- | C] () -- C:\Windows\BDTSupport.dll.old
    [2010/07/08 11:37:14 | 000,101,544 | ---- | C] () -- C:\Program Files\Common Files\LinkInstaller.exe
    [2010/05/10 18:53:26 | 000,000,000 | ---- | C] () -- C:\Users\Marie new\AppData\Roaming\wklnhst.dat
    [2010/05/10 18:27:49 | 000,000,530 | ---- | C] () -- C:\Windows\SysWow64\tx14_ic.ini
    [2010/02/28 19:29:58 | 000,002,560 | ---- | C] () -- C:\Windows\_MSRSTRT.EXE
    [2010/02/28 19:20:09 | 000,000,130 | ---- | C] () -- C:\Windows\ODBC.INI
    [2010/02/28 19:19:25 | 000,000,209 | ---- | C] () -- C:\Windows\ODBCINST.INI
    [2010/01/20 23:28:50 | 000,000,048 | -H-- | C] () -- C:\Windows\SysWow64\ezsidmv.dat
    [2009/10/28 14:29:40 | 000,000,940 | ---- | C] () -- C:\Windows\bdoscandellang.ini
    [2009/09/25 01:58:32 | 000,000,292 | ---- | C] () -- C:\ProgramData\hpqp.ini
    [2009/08/19 16:09:04 | 000,009,868 | ---- | C] () -- C:\Windows\SysWow64\ezdigsgn.dat
    [2009/07/15 17:50:42 | 000,013,312 | ---- | C] () -- C:\Windows\LPRES.DLL
    [2009/07/14 07:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
    [2009/07/14 04:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
    [2009/07/14 04:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
    [2009/07/14 02:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
    [2009/07/14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
    [2009/07/13 23:59:36 | 001,498,564 | ---- | C] () -- C:\Windows\SysWow64\igkrng400.bin
    [2009/07/13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
    [2009/06/10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
    [2009/06/03 21:14:52 | 000,134,592 | ---- | C] () -- C:\Windows\SysWow64\igfcg500.bin
    [2009/01/05 14:44:10 | 000,053,248 | ---- | C] () -- C:\Windows\bdoscandel.exe
    [2007/10/25 17:26:10 | 000,005,632 | ---- | C] () -- C:\Windows\SysWow64\drivers\StarOpen.sys

    ========== LOP Check ==========

    [2010/08/26 22:27:34 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\Apowersoft
    [2010/03/16 23:18:21 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\Atari
    [2010/05/27 20:04:05 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\Auslogics
    [2010/11/06 21:54:44 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\BitDefender
    [2011/06/16 22:39:04 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
    [2011/06/16 20:30:29 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
    [2010/08/26 18:47:30 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\DMCache
    [2010/12/10 20:14:19 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\FMZilla
    [2010/08/26 21:33:52 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\FreeFLVConverter
    [2010/08/26 20:29:37 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\FreeMediaCatcher
    [2010/06/14 21:59:15 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\freeTVRadio
    [2011/06/15 15:39:24 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\GetRightToGo
    [2010/03/19 23:03:40 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\GlarySoft
    [2010/03/21 18:49:49 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\GrabPro
    [2011/06/13 17:31:02 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\Media Get LLC
    [2011/03/06 22:01:19 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\MOVAVI
    [2010/03/21 19:42:35 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\Movies Extractor Scout
    [2011/02/01 21:45:56 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\muvee Technologies
    [2010/07/13 18:37:11 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\OfferBox
    [2010/04/05 14:21:26 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\OpenOffice.org
    [2010/08/26 21:45:43 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\Orbit
    [2010/06/15 20:16:18 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\PC Suite
    [2010/03/20 22:58:43 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\PhotoFiltre
    [2011/06/15 23:33:55 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\PhotoFiltre Studio X
    [2010/08/26 21:44:08 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\ProgSense
    [2010/11/06 21:47:58 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\QuickScan
    [2010/12/07 20:42:09 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\Samsung
    [2010/09/26 19:09:32 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\Spam Monitor
    [2010/05/10 18:53:28 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\Template
    [2010/06/23 11:41:48 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\tonemaker
    [2011/06/12 17:15:07 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\TuneUp Software
    [2010/03/24 17:15:19 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\WildTangent
    [2010/12/29 10:59:28 | 000,000,000 | ---D | M] -- C:\Users\Marie new\AppData\Roaming\Windows Live Writer
    [2011/06/13 08:01:37 | 000,000,332 | ---- | M] () -- C:\Windows\Tasks\GlaryInitialize.job
    [2011/04/09 22:11:19 | 000,032,496 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

    ========== Purity Check ==========



    ========== Alternate Data Streams ==========

    @Alternate Data Stream - 125 bytes -> C:\ProgramData\Temp:D FC5A2B2
    @Alternate Data Stream - 103 bytes -> C:\ProgramData\Temp:A8ADE5D8
    @Alternate Data Stream - 102 bytes -> C:\ProgramData\Temp:430C6D84
    @Alternate Data Stream - 100 bytes -> C:\ProgramData\Temp:C31F31E6

    < End of report >
    18 Juin 2011 21:35:17

    Bonsoir...


  • Double-clique sur OTL pour le lancer.
    (Sous Vista/Win7, il faut cliquer droit sur OTL et choisir Exécuter en tant qu'administrateur)
  • Sous l'onglet Personnalisation (dans le cadre blanc) en bas de la fenêtre, copie-colle le texte suivant (entre les deux espaces) :

    :OTL
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {472734EA-242A-422B-ADF8-83D1E48CC825} - No CLSID value found.
    O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - No CLSID value found.
    O4 - HKLM..\RunOnce: [autoupdater] File not found
    @Alternate Data Stream - 125 bytes -> C:\ProgramData\Temp:DFC5A2B2
    @Alternate Data Stream - 103 bytes -> C:\ProgramData\Temp:A8ADE5D8
    @Alternate Data Stream - 102 bytes -> C:\ProgramData\Temp:430C6D84
    @Alternate Data Stream - 100 bytes -> C:\ProgramData\Temp:C31F31E6
    :files
    C:\Program Files (x86)\Common Files\AskToolbarInstaller.exe
    C:\Users\Marie new\AppData\Roaming\OfferBox
    :commands
    [emptytemp]
    [reboot]

  • Puis clique sur le bouton Correction en haut de la fenêtre.
  • Laisse le programme travailler, redémarre une fois le fix terminé.
  • Poste le rapport qui s'affichera après redémarrage.


    +++++++++++++++++++
    18 Juin 2011 23:44:23

    Cela s'est affiché au redémarrage :


    All processes killed
    ========== OTL ==========
    Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{21FA44EF-376D-4D53-9B0F-8A89D3229068} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{21FA44EF-376D-4D53-9B0F-8A89D3229068}\ not found.
    Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{472734EA-242A-422B-ADF8-83D1E48CC825} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{472734EA-242A-422B-ADF8-83D1E48CC825}\ not found.
    Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{C55BBCD6-41AD-48AD-9953-3609C48EACC7} deleted successfully.
    Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C55BBCD6-41AD-48AD-9953-3609C48EACC7}\ not found.
    Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\\autoupdater not found.
    ADS C:\ProgramData\Temp:D FC5A2B2 deleted successfully.
    ADS C:\ProgramData\Temp:A8ADE5D8 deleted successfully.
    ADS C:\ProgramData\Temp:430C6D84 deleted successfully.
    ADS C:\ProgramData\Temp:C31F31E6 deleted successfully.
    ========== FILES ==========
    C:\Program Files (x86)\Common Files\AskToolbarInstaller.exe moved successfully.
    C:\Users\Marie new\AppData\Roaming\OfferBox folder moved successfully.
    ========== COMMANDS ==========

    [EMPTYTEMP]

    User: All Users

    User: AppData

    User: Default
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 33170 bytes
    ->Flash cache emptied: 56468 bytes

    User: Default User
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes
    ->Flash cache emptied: 0 bytes

    User: Marie
    ->Temp folder emptied: 229175433 bytes
    ->Temporary Internet Files folder emptied: 411721667 bytes
    ->Java cache emptied: 26406960 bytes
    ->Flash cache emptied: 16428 bytes

    User: Marie new
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 89809758 bytes
    ->Java cache emptied: 40988077 bytes
    ->Google Chrome cache emptied: 103909279 bytes
    ->Flash cache emptied: 60275 bytes

    User: marie nouvooo
    ->Temp folder emptied: 5612 bytes
    ->Temporary Internet Files folder emptied: 32768 bytes
    ->Java cache emptied: 12118713 bytes

    User: Public

    %systemdrive% .tmp files removed: 0 bytes
    %systemroot% .tmp files removed: 0 bytes
    %systemroot%\System32 .tmp files removed: 0 bytes
    %systemroot%\System32 (64bit) .tmp files removed: 0 bytes
    %systemroot%\System32\drivers .tmp files removed: 0 bytes
    Windows Temp folder emptied: 10417492 bytes
    %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 193015 bytes
    RecycleBin emptied: 0 bytes

    Total Files Cleaned = 882,00 mb


    OTL by OldTimer - Version 3.2.24.1 log created on 06182011_233433

    Files\Folders moved on Reboot...

    Registry entries deleted on Reboot...
    19 Juin 2011 18:18:18

    Bonsoir


    Supprime/Désinstalle tous les programmes utilisés pour la désinfection.
    (mais garde Malwarebytes' Anti-Malware pour faire des scan réguliers (en n'omettant pas de le mettre à jour)

    Merci de consulter ce dossier (en pdf) pour en connaître davantage sur les risques du Net.



    Si tu trouves ce document intéressant, n'hésite pas à le transmettre à tes contacts.

    Si tu en as assez d'être assailli de publicités durant ta navigation, installe Firefox sécurisé avec les extensions noscript et AdBlock Plus.

    Lire aussi:
  • Antispyware gratuit : ça sert à rien!


    ~Clique, sur ton premier message, sur le bouton "Editer" et marque [résolu] dans le titre.

    Clique ensuite sur "Valider votre message"

    Si ton nom de session correspond à ton véritable nom, tu as la possibilité de le changer en éditant tes posts.

    :hello: 

    +++
    19 Juin 2011 18:53:36

    Merci beaucoup pour votre aide ! C'est vraiment gentil de prendre du temps pour aider les autres qui galèrent :) 
    20 Juin 2011 21:20:35

    de rien
    bon surf
    :hello: 
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS