[Résolu] ouverture de la page

louis · par **louis** » 08 nov. 2013 15:20

bonjour
depuis quelques jours comme par enchantement a l'ouverture de mon ordi au lieu d'avoir ma page--- Yahoo.com
j'ai ca http://www.dosearches.com/?utm_source=b ... 1383655580 , et la impossible de supprimé sa revient toujours a chaque ouverture et sa me plait pas , il y a t'il une astuce pour remettre ma page d'accueil et supprimé cette M---E
merci -CDLT - LOUIS

SkyTech · par **SkyTech** » 09 nov. 2013 09:02

Bonjour,

Des logiciels additionnels sont proposés (barre d'outils, adwares) via l'installation de logiciel par éditeurs.
L'éditeur touche de l'argent à chaque installation réussie de ces additionnels tiers (un genre de sponsoring).
Seulement certains éditeurs, abusent, pour gagner plus d'argent, ils redistribuent des logiciels libres développés par des bénévoles en y ajoutant ces logiciels additionnels.
Des pubs trompeuses peuvent aussi être utilisés pour faire installer ces logiciels.

Outre le fait que les procédés sont discutables, l'accumulation de ces programmes additionnels non essentiels concourent à ralentir considérablement l'ordinateur (peux aussi faire planter les navigateurs WEB).
Certains font aussi du tracking anonymes (récupérations des thématiques de sites visités).

Tu as la même chose avec les barres d'outils :
Les barres d'outils sont là pour t'affilier à un service (moteur de recherche de Yahoo! ou Google), ça rajoute des fonctionnalités mais en général les navigateurs les ont par défaut.
De plus, elles enregistrent les sites que tu visites pour les transmettre (tracking) à faire de la publicité ciblée, c'est pas super niveau protection de la vie privée.
Plusieurs toolbars ralentissent le PC et peuvent faire planter les navigateurs WEB.
Au final, il est pas conseillé d'en utiliser.

Lire :
Les PUPs/LPIs : https://www.malekal.com/adwares-pup-protection/

Téléchargez AdwCleaner( d'Xplode ) sur votre bureau.
Lancez le, cliquez sur [Scanner], patiente, puis sur [Nettoyer] puis patientez le temps de la suppression.
Un redédmarrage sera demandé, accepté.
Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt
Poste le rapport.

PS : Si le rapport est trop long pour être poster sur un message, tu peux utiliser un hébergeur : http://pjjoint.malekal.com/index.php?lang=fr

louis · par **louis** » 09 nov. 2013 09:20

salut et merci pour ton aide sa remarche a+ louis

AdwCleaner v3.011 - Rapport créé le 09/11/2013 à 09:10:01
# Mis à jour le 03/11/2013 par Xplode
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
# Nom d'utilisateur : louis - LOUIS-PC
# Exécuté depuis : C:\Users\louis\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OAWECTVL\adwcleaner.exe
# Option : Nettoyer

***** [ Services ] *****

***** [ Fichiers / Dossiers ] *****

Dossier Supprimé : C:\ProgramData\Babylon
Dossier Supprimé : C:\ProgramData\BoxUpdChk
Dossier Supprimé : C:\ProgramData\eSafe
Dossier Supprimé : C:\ProgramData\IBUpdaterService
Dossier Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue\SpeedUpMyPC
Dossier Supprimé : C:\Program Files (x86)\MyPC Backup
Dossier Supprimé : C:\Program Files (x86)\PC Speed Maximizer
Dossier Supprimé : C:\Program Files (x86)\Searchprotect
Dossier Supprimé : C:\Program Files (x86)\Uniblue\SpeedUpMyPC
Dossier Supprimé : C:\Program Files (x86)\WebConnect
Dossier Supprimé : C:\Users\louis\AppData\Local\lollipop
Dossier Supprimé : C:\Users\louis\AppData\Local\Searchprotect
Dossier Supprimé : C:\Users\louis\AppData\Roaming\Systweak
Dossier Supprimé : C:\Users\louis\AppData\Roaming\Tlapia
Dossier Supprimé : C:\Users\louis\AppData\Roaming\Uniblue\SpeedUpMyPC
Dossier Supprimé : C:\Users\louis\Documents\optimizer pro
Dossier Supprimé : C:\Program Files (x86)\Software
Dossier Supprimé : C:\Users\louis\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo
Dossier Supprimé : C:\Users\louis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pflphaooapbgpeakohlggbpidpppgdff
Fichier Supprimé : C:\Program Files (x86)\Mozilla Firefox\Extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433}
Fichier Supprimé : C:\Users\louis\AppData\Roaming\Mozilla\Firefox\Profiles\hyu1s8uf.default\Extensions\[email protected]
Fichier Supprimé : C:\END
Fichier Supprimé : C:\Windows\System32\roboot64.exe
Fichier Supprimé : C:\Users\louis\AppData\Roaming\speedanalysis.ico
Fichier Supprimé : C:\Users\louis\AppData\Roaming\Mozilla\Firefox\Profiles\hyu1s8uf.default\searchplugins\bingp.xml
Fichier Supprimé : C:\Program Files (x86)\Mozilla Firefox\searchplugins\dosearches.xml
Fichier Supprimé : C:\Users\louis\AppData\Roaming\Mozilla\Firefox\Profiles\hyu1s8uf.default\user.js
Fichier Supprimé : C:\Users\louis\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eooncjejnppfjjklapaamhcdmjbilmde_0.localstorage
Fichier Supprimé : C:\Users\louis\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage
Fichier Supprimé : C:\Users\louis\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage-journal
Fichier Supprimé : C:\Windows\System32\Tasks\BoxSoftwareUpdate
Fichier Supprimé : C:\Windows\System32\Tasks\Funmoods
Fichier Supprimé : C:\Windows\System32\Tasks\paretologic registration3
Fichier Supprimé : C:\Windows\System32\Tasks\paretologic update version3
Fichier Supprimé : C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar

***** [ Raccourcis ] *****

Raccourci Désinfecté : C:\Users\Public\Desktop\Mozilla Firefox.lnk
Raccourci Désinfecté : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
Raccourci Désinfecté : C:\Users\louis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Raccourci Désinfecté : C:\Users\louis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Raccourci Désinfecté : C:\Users\louis\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Raccourci Désinfecté : C:\Users\louis\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk
Raccourci Désinfecté : C:\Users\louis\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox (2).lnk
Raccourci Désinfecté : C:\Users\louis\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk
Raccourci Désinfecté : C:\Users\louis\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Internet Explorer.lnk

***** [ Registre ] *****

Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo
Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Extensions\paoponfhfdfnjgddpnpjkambkcgdaaib
Clé Supprimée : HKCU\Software\Google\Chrome\Extensions\pflphaooapbgpeakohlggbpidpppgdff
Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Extensions\pflphaooapbgpeakohlggbpidpppgdff
Clé Supprimée : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\pflphaooapbgpeakohlggbpidpppgdff
Clé Supprimée : HKLM\SOFTWARE\Classes\AlxSSB.AlxTBSSB
Clé Supprimée : HKLM\SOFTWARE\Classes\AlxSSB.AlxTBSSB.1
Clé Supprimée : HKLM\SOFTWARE\Classes\Prod.cap
Clé Supprimée : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Clé Supprimée : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Clé Supprimée : HKLM\SOFTWARE\Classes\speedupmypc
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\HPSF_Tasks_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\HPSF_Tasks_RASMANCS
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\OfferBoxhxxpProxy_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\OfferBoxhxxpProxy_RASMANCS
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\Searchqu Toolbar uninstall_RASMANCS
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\sweetimsetup_rasapi32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\sweetimsetup_rasmancs
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasapi32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\systweakasp_rasmancs
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Clé Supprimée : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader27335[1]_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader27335[1]_RASMANCS
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_pour_emule[1]_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_pour_emule[1]_RASMANCS
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{1F02FB61-2BE5-4C16-8199-AEAA16EB0342}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{8D5CFE57-B0FD-4396-97A2-DFD0B7DA935B}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{058F0E48-61CA-4964-9FBA-1978A1BB060D}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{18F33C35-8EF2-40D7-8BA4-932B0121B472}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{A0B10EBE-4E51-4CAE-949B-E6B9E7D68CEA}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{BB975E58-E769-4E5A-BA12-B765BC559FF3}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{E57091A7-B5F0-4C42-9329-72ED3E59ED31}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{F511AFDB-726E-4458-90E7-1ECB97406544}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{DA9FC525-41ED-4C00-B046-946DA7CDD305}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E57091A7-B5F0-4C42-9329-72ED3E59ED31}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-1111-472F-A0FF-E1416B8B2EAA}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9D5BD211-422C-4164-9298-BB4186A30F31}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{6F43FA77-C18F-4D0C-9C7E-958876FE2061}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{DF948646-8BF4-450E-A059-CF8A4E0FE2BE}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{E96B49B0-E11F-48FC-984A-EEC29A4F57E1}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Donnée Restaurée : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Donnée Restaurée : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command
Clé Supprimée : HKCU\Software\Alexa Internet
Clé Supprimée : HKCU\Software\Boxore
Clé Supprimée : HKCU\Software\distromatic
Clé Supprimée : HKCU\Software\Iminent
Clé Supprimée : HKCU\Software\InstallCore
Clé Supprimée : HKCU\Software\lollipop
Clé Supprimée : HKCU\Software\ParetoLogic
Clé Supprimée : HKCU\Software\Tutorials
Clé Supprimée : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Clé Supprimée : HKCU\Software\AppDataLow\Software\Softonic_France
Clé Supprimée : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Clé Supprimée : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Clé Supprimée : HKLM\Software\Boxore
Clé Supprimée : HKLM\Software\dosearchessoftware
Clé Supprimée : HKLM\Software\Iminent
Clé Supprimée : HKLM\Software\ParetoLogic
Clé Supprimée : HKLM\Software\PerformerSoft
Clé Supprimée : HKLM\Software\Tutorials
Clé Supprimée : HKLM\Software\Uniblue\DriverScanner
Clé Supprimée : HKLM\Software\Uniblue\SpeedUpMyPC
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP

***** [ Navigateurs ] *****

-\\ Internet Explorer v10.0.9200.16611

Paramètre Restauré : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Paramètre Restauré : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Paramètre Restauré : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Paramètre Restauré : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Paramètre Restauré : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Paramètre Restauré : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Paramètre Restauré : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Paramètre Restauré : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Paramètre Restauré : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]

-\\ Mozilla Firefox v24.0 (fr)

[ Fichier : C:\Users\louis\AppData\Roaming\Mozilla\Firefox\Profiles\hyu1s8uf.default\prefs.js ]

Ligne Supprimée : user_pref("browser.search.defaultenginename", "dosearches");

-\\ Google Chrome v29.0.1547.66

[ Fichier : C:\Users\louis\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Supprimée : search_url
Supprimée : keyword

*************************

AdwCleaner[R0].txt - [23700 octets] - [09/11/2013 09:08:48]
AdwCleaner[S0].txt - [19793 octets] - [09/11/2013 09:10:01]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [19854 octets] ##########

SkyTech · par **SkyTech** » 09 nov. 2013 10:33

Relance AdwCleaner et prends Désinstaller.

A l'avenir fais plus attention.

@+

louis · par **louis** » 10 nov. 2013 08:44

/SkyTech/bonjour
ses ok pou ravoir supprimer cette saleté , le hic
je n'arrive plus a ouvrir le forum le bon coin des petites annonces ,
peu tu m'aidé a retrouver comment l'ouvrir merci et bon dimanche a+ louis

SkyTech · par **SkyTech** » 10 nov. 2013 13:18

Bonjour,

Pour voir :

* Télécharge >> OTL <<sur ton bureau.

* Fait un double-clic sur l'icône d'OTL pour le lancer
/!\ pour Vista/Seven fais un clic-droit sur l'icône d'OTL et choisis "Exécuter en tant qu'administrateur"

* Assure toi d'avoir fermé toutes les applications en court de fonctionnement.

* Quand la fenêtre d'OTL apparaît, assure toi que dans la section "Rapport" (en haut à droite) la case "Rapport minimal" soit cochée.

* Copies et colles le contenue de cette citation dans la partie inférieure d'OTL "Personnalisation"

netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%temp%\*.exe /s
%SYSTEMDRIVE%\*.exe
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
/md5start
explorer.exe
winlogon.exe
wininit.exe
/md5stop
HKEY_LOCAL_MACHINE\SYSTEM\SYSTEM\CurrentControlSet\Services\lanmanserver\parameters /s
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems /s
CREATERESTOREPOINT
nslookup http://www.google.fr /c
SAVEMBR:0
hklm\software\clients\startmenuinternet|command /rs
hklm\software\clients\startmenuinternet|command /64 /rs

* Cliques sur l'icône "Analyse" (en haut à gauche) .
* Laisse le scan aller à son terme sans te servir du PC
* A la fin du scan un ou deux rapports vont s'ouvrir "OTL.Txt" et ( ou ) "Extras.Txt"( dans certains cas).
* Copie et colle le ou les rapports dans ta réponse stp...
* Au cas où, tu peux les retrouver dans le dossier C:\OTL ou sur ton bureau en fonction des cas rencontrés

PS : Si le rapport est trop long pour être poster sur un message, tu peux utiliser un hébergeur : http://pjjoint.malekal.com/index.php?lang=fr

louis · par **louis** » 10 nov. 2013 14:08

voici le resumé

TL logfile created on: 10/11/2013 13:54:33 - Run 5
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\louis\Desktop\films
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16614)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy

4,00 Gb Total Physical Memory | 2,47 Gb Available Physical Memory | 61,70% Memory free
8,00 Gb Paging File | 6,19 Gb Available in Paging File | 77,40% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 919,78 Gb Total Space | 857,09 Gb Free Space | 93,18% Space Free | Partition Type: NTFS
Drive D: | 11,63 Gb Total Space | 11,20 Gb Free Space | 96,26% Space Free | Partition Type: NTFS

Computer Name: LOUIS-PC | User Name: louis | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\louis\Desktop\films\OTL (1).exe (OldTimer Tools)
PRC - C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe (Garmin Ltd or its subsidiaries)
PRC - C:\Program Files (x86)\Google\Google Updater\GoogleUpdater.exe (Google)
PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
PRC - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe (Sony Corporation)
PRC - C:\Program Files (x86)\Nokia\PC Internet Access\NPCIA.exe (Nokia)
PRC - C:\Program Files (x86)\Yahoo!\Search Protection\SearchProtection.exe (Yahoo! Inc)
PRC - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe (Nokia.)
PRC - C:\Program Files (x86)\PC Connectivity Solution\Transports\NclRSSrv.exe ()

========== Modules (No Company Name) ==========

MOD - C:\Program Files (x86)\Yahoo!\Messenger\yui.dll ()
MOD - C:\Program Files (x86)\Yahoo!\Messenger\pcre.dll ()
MOD - C:\Program Files (x86)\Nokia\PC Internet Access\TextResources_fre.nlr ()
MOD - C:\Program Files (x86)\Nokia\PC Internet Access\GraphicsResources.ngr ()

========== Services (SafeList) ==========

SRV:64bit: - (VSSERV) -- C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe (Bitdefender)
SRV:64bit: - (UPDATESRV) -- C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe (Bitdefender)
SRV:64bit: - (BdDesktopParental) -- C:\Program Files\Bitdefender\Bitdefender 2013\bdparentalservice.exe (Bitdefender)
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SRV:64bit: - (wlcrasvc) -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe (Microsoft Corporation)
SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (MozillaMaintenance) -- c:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (Garmin Core Update Service) -- C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe (Garmin Ltd or its subsidiaries)
SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (HPSLPSVC) -- C:\Program Files (x86)\hp\Digital Imaging\bin\HPSLPSVC64.DLL (Hewlett-Packard Co.)
SRV - (PMBDeviceInfoProvider) -- C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe (Sony Corporation)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (GameConsoleService) -- C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe (WildTangent, Inc.)
SRV - (ServiceLayer) -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe (Nokia.)
SRV - (PLFlash DeviceIoControl Service) -- C:\Windows\SysWOW64\IoctlSvc.exe (Prolific Technology Inc.)

========== Driver Services (SafeList) ==========

DRV:64bit: - (gzflt) -- C:\Windows\SysNative\drivers\gzflt.sys (BitDefender LLC)
DRV:64bit: - (trufos) -- C:\Windows\SysNative\drivers\trufos.sys (BitDefender S.R.L.)
DRV:64bit: - (BDSandBox) -- C:\Windows\SysNative\drivers\bdsandbox.sys (BitDefender SRL)
DRV:64bit: - (avckf) -- C:\Windows\SysNative\drivers\avckf.sys (BitDefender)
DRV:64bit: - (avc3) -- C:\Windows\SysNative\drivers\avc3.sys (BitDefender)
DRV:64bit: - (usbser) -- C:\Windows\SysNative\drivers\usbser.sys (Microsoft Corporation)
DRV:64bit: - (BdfNdisf) -- c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys (BitDefender LLC)
DRV:64bit: - (avchv) -- C:\Windows\SysNative\drivers\avchv.sys (BitDefender)
DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (grmnusb) -- C:\Windows\SysNative\drivers\grmnusb.sys (GARMIN Corp.)
DRV:64bit: - (fssfltr) -- C:\Windows\SysNative\drivers\fssfltr.sys (Microsoft Corporation)
DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (bdfwfpf) -- C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys (BitDefender LLC)
DRV:64bit: - (tap0901) -- C:\Windows\SysNative\drivers\tap0901.sys (The OpenVPN Project)
DRV:64bit: - (UsbserFilt) -- C:\Windows\SysNative\drivers\usbser_lowerfltjx64.sys (Nokia)
DRV:64bit: - (upperdev) -- C:\Windows\SysNative\drivers\usbser_lowerfltx64.sys (Nokia)
DRV:64bit: - (nmwcdc) -- C:\Windows\SysNative\drivers\ccdcmbox64.sys (Nokia)
DRV:64bit: - (nmwcd) -- C:\Windows\SysNative\drivers\ccdcmbx64.sys (Nokia)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (atikmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV:64bit: - (AtiHdmiService) -- C:\Windows\SysNative\drivers\AtiHdmi.sys (ATI Technologies, Inc.)
DRV:64bit: - (NVNET) -- C:\Windows\SysNative\drivers\nvmf6264.sys (NVIDIA Corporation)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)
DRV - (TFsExDisk) -- C:\Windows\SysWOW64\drivers\TFsExDisk.Sys (Teruten Inc)
DRV - (PxHelp20) -- C:\Windows\SysWOW64\drivers\pxhelp20.sys (Sonic Solutions)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE:64bit: - HKLM\..\SearchScopes\{62F1AC2A-F452-4F1F-A3A6-33248E1055BF}: "URL" = http://www.bing.com/search?q={searchTer ... -SearchBox
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchT ... urceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search bar = http://search.msn.com/spbasic.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchT ... urceid=ie7

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default Download Directory = C:\Users\louis\Desktop\films
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com/
IE - HKCU\..\SearchScopes,DefaultScope = BEEA4706530A40A5B1E74EC1ABAF505F
IE - HKCU\..\SearchScopes\{62F1AC2A-F452-4F1F-A3A6-33248E1055BF}: "URL" = http://www.bing.com/search?q={searchTer ... -SearchBox
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchT ... 1I7GGHP_fr
IE - HKCU\..\SearchScopes\{95A8BD74-FAA7-4C1C-9723-BF900E5D7E6C}: "URL" = http://www.flickr.com/search/?q={searchTerms}
IE - HKCU\..\SearchScopes\{DECA3892-BA8F-44b8-A993-A466AD694AE4}: "URL" = http://fr.search.yahoo.com/search?p={searchTerms}
IE - HKCU\..\SearchScopes\BEEA4706530A40A5B1E74EC1ABAF505F: "URL" = http://www.amazon.fr/gp/bit/amazonserp/ ... earchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>

========== FireFox ==========

FF - prefs.js..browser.search.order.1: "Amazon "
FF - prefs.js..browser.search.order.3: "Bing "
FF - prefs.js..browser.search.useDBForOrder: false
FF - prefs.js..extensions.enabledAddons: %7B5C655500-E712-41e7-9349-CE462F844B19%7D:1.0
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:24.0
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=11: C:\Program Files (x86)\Google\Google Updater\2.1.850.19570\npCIDetect11.dll (Google)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.0: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\PROGRAM FILES\BITDEFENDER\BITDEFENDER 2013\BDTBEXT [2013/03/22 05:33:11 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012/04/05 12:01:59 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\Bitdefender\Bitdefender 2013\bdtbext [2013/03/22 05:33:11 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012/04/05 12:01:59 | 000,000,000 | ---D | M]

[2012/05/10 10:34:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\louis\AppData\Roaming\mozilla\Extensions
[2013/11/09 09:10:05 | 000,000,000 | ---D | M] (No name found) -- C:\Users\louis\AppData\Roaming\mozilla\Firefox\Profiles\hyu1s8uf.default\extensions
[2013/09/25 06:06:32 | 000,306,265 | ---- | M] () (No name found) -- C:\Users\louis\AppData\Roaming\mozilla\firefox\profiles\hyu1s8uf.default\extensions\[email protected]
[2013/05/18 07:11:27 | 000,151,038 | ---- | M] () (No name found) -- C:\Users\louis\AppData\Roaming\mozilla\firefox\profiles\hyu1s8uf.default\extensions\{5C655500-E712-41e7-9349-CE462F844B19}.xpi
[2013/09/22 08:04:19 | 000,348,768 | ---- | M] () (No name found) -- C:\Users\louis\AppData\Roaming\mozilla\firefox\profiles\hyu1s8uf.default\extensions\{5ebdca98-43b3-45bb-87e0-716029fb42ab}.xpi
[2013/08/28 09:09:07 | 000,002,328 | ---- | M] () -- C:\Users\louis\AppData\Roaming\mozilla\firefox\profiles\hyu1s8uf.default\searchplugins\amazon.xml
[2013/11/09 09:10:05 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013/10/10 15:30:03 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013/10/10 15:30:10 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

========== Chrome ==========

CHR - default_search_provider: dosearches (Enabled)
CHR - default_search_provider: search_url = http://www.google.com
CHR - default_search_provider: suggest_url =
CHR - homepage: http://www.google.com/
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
CHR - plugin: Google Updater (Enabled) = C:\Program Files (x86)\Google\Google Updater\2.1.850.19570\npCIDetect11.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 6 U31 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll
CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll
CHR - Extension: Documents Google = C:\Users\louis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Google\u00A0Drive = C:\Users\louis\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\louis\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Recherche Google = C:\Users\louis\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Google\u00A0Wallet = C:\Users\louis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_1\
CHR - Extension: Gmail = C:\Users\louis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2009/06/10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O4:64bit: - HKLM..\Run: [Bdagent] C:\Program Files\Bitdefender\Bitdefender 2013\bdagent.exe (Bitdefender)
O4 - HKLM..\Run: [YSearchProtection] C:\Program Files (x86)\Yahoo!\Search Protection\SearchProtection.exe (Yahoo! Inc)
O4 - HKCU..\Run: [GarminExpressTrayApp] C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe (Garmin Ltd or its subsidiaries)
O4 - HKCU..\Run: [Messenger (Yahoo!)] C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O4 - HKCU..\Run: [NokiaPCInternetAccess] C:\Program Files (x86)\Nokia\PC Internet Access\NPCIA.exe (Nokia)
O4 - HKCU..\Run: [Search Protection] C:\Program Files (x86)\Yahoo!\Search Protection\SearchProtection.exe (Yahoo! Inc)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideFastUserSwitching = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableLockWorkstation = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableChangePassword = 0
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {80AEEC0E-A2BE-4B8D-985F-350FE869DC40} http://h20264.www2.hp.com/ediags/dd/ins ... sVista.cab (HPDDClientExec Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: Garmin Communicator Plug-In https://static.garmincdn.com/gcp/ie/3.0 ... ontrol.CAB (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{ADDD806B-037D-47D0-BCE6-5258DAF3F973}: DhcpNameServer = 89.2.0.1 89.2.0.2
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18:64bit: - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll (EasyBits Software Corp.)
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{3b834490-d22b-11e0-8602-f4ce4601f390}\Shell - "" = AutoRun
O33 - MountPoints2\{3b834490-d22b-11e0-8602-f4ce4601f390}\Shell\AutoRun\command - "" = G:\NokiaPCIA_Autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/11/10 13:34:15 | 000,000,000 | ---D | C] -- C:\Users\louis\AppData\Local\{E18F5CF2-E737-49C3-8AF9-DD1851992CB4}
[2013/11/09 09:08:44 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013/11/07 13:56:23 | 000,000,000 | ---D | C] -- C:\ProgramData\DriverGenius
[2013/11/06 11:30:25 | 000,692,616 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013/11/06 11:30:25 | 000,071,048 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013/11/05 15:29:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2013/10/23 13:54:26 | 000,000,000 | ---D | C] -- C:\Users\louis\AppData\Local\{0ED48005-0692-4FDC-A34A-F3AF07F07CCC}
[2013/10/21 16:58:24 | 000,000,000 | ---D | C] -- C:\Users\louis\AppData\Roaming\Skype
[2013/10/21 16:58:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2013/10/21 16:57:34 | 000,000,000 | ---D | C] -- C:\Users\louis\AppData\Local\Software
[1 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/11/10 13:46:00 | 000,001,066 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/11/10 13:35:00 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/11/10 13:12:46 | 000,015,792 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/11/10 13:12:46 | 000,015,792 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/11/10 13:10:02 | 001,570,468 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/11/10 13:10:02 | 000,711,592 | ---- | M] () -- C:\Windows\SysNative\perfh00C.dat
[2013/11/10 13:10:02 | 000,623,078 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/11/10 13:10:02 | 000,133,728 | ---- | M] () -- C:\Windows\SysNative\perfc00C.dat
[2013/11/10 13:10:02 | 000,109,200 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/11/10 13:07:51 | 000,001,014 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job
[2013/11/10 13:05:32 | 000,065,536 | ---- | M] () -- C:\Windows\SysNative\Ikeext.etl
[2013/11/10 13:05:26 | 000,001,062 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/11/10 13:05:08 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/11/10 13:05:05 | 3220,676,608 | -HS- | M] () -- C:\hiberfil.sys
[2013/11/10 12:54:25 | 000,002,108 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/11/09 09:10:05 | 000,001,190 | ---- | M] () -- C:\Users\louis\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2013/11/09 09:10:05 | 000,001,059 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2013/11/09 08:44:16 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2013/11/09 08:44:16 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2013/10/22 07:23:22 | 000,002,592 | ---- | M] () -- C:\Windows\SysWow64\InstallUtil.InstallLog
[1 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/11/06 11:30:26 | 000,001,002 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/11/05 15:29:12 | 000,002,108 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/08/09 08:22:15 | 000,423,709 | ---- | C] () -- C:\Users\louis\AppData\Local\mysearchdial_speedial_v9.0.2.crx
[2013/03/22 06:04:13 | 000,031,434 | ---- | C] () -- C:\ProgramData\1363928653.740.bin
[2013/03/22 06:04:13 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363928653.4456.bin
[2013/03/22 06:04:12 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363928651.4592.bin
[2013/03/22 06:04:11 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363928651.4840.bin
[2013/03/22 06:04:09 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363928649.2784.bin
[2013/03/22 06:04:09 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363928649.4424.bin
[2013/03/22 06:03:37 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363928616.3320.bin
[2013/03/22 06:03:36 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363928616.4612.bin
[2013/03/22 06:02:54 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363928573.4524.bin
[2013/03/22 06:02:53 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363928573.3644.bin
[2013/03/22 06:02:52 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363928571.3420.bin
[2013/03/22 06:02:51 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363928571.3308.bin
[2013/03/22 06:02:43 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363928563.4224.bin
[2013/03/22 06:02:43 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363928563.1044.bin
[2013/03/22 05:38:13 | 000,475,166 | ---- | C] () -- C:\ProgramData\1363926629.bdinstall.bin
[2013/03/22 05:17:02 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363925821.4120.bin
[2013/03/22 05:17:01 | 000,031,434 | ---- | C] () -- C:\ProgramData\1363925821.324.bin
[2013/03/21 19:24:49 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890289.4428.bin
[2013/03/21 19:24:49 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890289.4784.bin
[2013/03/21 19:24:45 | 000,000,461 | ---- | C] () -- C:\ProgramData\1363890284.652.bin
[2013/03/21 19:24:44 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890284.2520.bin
[2013/03/21 19:24:37 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890276.2316.bin
[2013/03/21 19:24:36 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890276.3152.bin
[2013/03/21 19:24:19 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890259.4240.bin
[2013/03/21 19:24:19 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890259.3060.bin
[2013/03/21 19:24:16 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890256.4688.bin
[2013/03/21 19:24:16 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890256.3460.bin
[2013/03/21 19:23:29 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890208.4852.bin
[2013/03/21 19:23:28 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890208.2912.bin
[2013/03/21 19:23:26 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890205.3500.bin
[2013/03/21 19:23:25 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890205.4924.bin
[2013/03/21 19:23:23 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890202.4912.bin
[2013/03/21 19:23:22 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890202.1916.bin
[2013/03/21 19:23:19 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890199.4444.bin
[2013/03/21 19:23:19 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890199.4112.bin
[2013/03/21 19:23:17 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890196.4600.bin
[2013/03/21 19:23:16 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890196.3648.bin
[2013/03/21 19:23:14 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890193.3152.bin
[2013/03/21 19:23:13 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890193.3408.bin
[2013/03/21 19:23:09 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890189.3724.bin
[2013/03/21 19:23:09 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890189.4936.bin
[2013/03/21 19:23:08 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890187.3480.bin
[2013/03/21 19:23:07 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890187.4160.bin
[2013/03/21 19:23:06 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890186.4948.bin
[2013/03/21 19:23:06 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890186.3112.bin
[2013/03/21 19:23:05 | 000,000,461 | ---- | C] () -- C:\ProgramData\1363890184.948.bin
[2013/03/21 19:23:04 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890184.4988.bin
[2013/03/21 19:23:01 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890181.3304.bin
[2013/03/21 19:23:01 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890181.4288.bin
[2013/03/21 19:23:00 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890179.4088.bin
[2013/03/21 19:22:59 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890179.3324.bin
[2013/03/21 19:22:58 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890177.2848.bin
[2013/03/21 19:22:57 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890177.4996.bin
[2013/03/21 19:22:55 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890175.3648.bin
[2013/03/21 19:22:55 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890175.4792.bin
[2013/03/21 19:22:51 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890170.2312.bin
[2013/03/21 19:22:50 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890170.2868.bin
[2013/03/21 19:22:44 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890164.4388.bin
[2013/03/21 19:22:44 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890164.3532.bin
[2013/03/21 19:22:35 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890154.4736.bin
[2013/03/21 19:22:34 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890154.4640.bin
[2013/03/21 18:54:33 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363888472.4184.bin
[2013/03/21 18:54:32 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363888472.4612.bin
[2013/03/21 18:53:48 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363888428.3724.bin
[2013/03/21 18:53:48 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363888428.4156.bin
[2013/03/21 18:53:10 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363888389.2304.bin
[2013/03/21 18:53:09 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363888389.2312.bin
[2013/03/21 18:51:24 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363888283.3400.bin
[2013/03/21 18:51:23 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363888283.4540.bin
[2013/03/21 18:09:37 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363885777.1516.bin
[2013/03/21 18:09:37 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363885777.4164.bin
[2013/03/21 18:08:34 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363885713.4260.bin
[2013/03/21 18:08:33 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363885713.4168.bin
[2013/03/21 18:03:36 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363885415.4144.bin
[2013/03/21 18:03:35 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363885415.2192.bin
[2013/03/21 18:03:23 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363885402.4720.bin
[2013/03/21 18:03:22 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363885402.2612.bin
[2013/03/21 18:02:40 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363885359.4852.bin
[2013/03/21 18:02:39 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363885359.1856.bin
[2013/03/21 18:02:30 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363885349.4712.bin
[2013/03/21 18:02:29 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363885349.3392.bin
[2013/03/21 18:01:03 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363885262.3092.bin
[2013/03/21 18:01:02 | 000,031,434 | ---- | C] () -- C:\ProgramData\1363885262.324.bin
[2013/03/21 17:56:19 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363884979.2776.bin
[2013/03/21 17:56:19 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363884979.4240.bin
[2013/03/21 17:56:10 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363884969.3552.bin
[2013/03/21 17:56:09 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363884969.4628.bin
[2013/03/21 17:56:08 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363884967.4836.bin
[2013/03/21 17:56:07 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363884967.1808.bin
[2013/03/21 17:56:06 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363884965.4188.bin
[2013/03/21 17:56:05 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363884965.4012.bin
[2013/03/21 17:52:07 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363884726.3720.bin
[2013/03/21 17:52:06 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363884726.2656.bin
[2013/03/21 17:52:05 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363884724.4420.bin
[2013/03/21 17:52:04 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363884724.3152.bin
[2013/03/21 17:51:56 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363884715.1440.bin
[2013/03/21 17:51:55 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363884715.4776.bin
[2013/03/21 17:51:50 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363884709.4836.bin
[2013/03/21 17:51:49 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363884709.4792.bin
[2013/03/21 17:49:04 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363884544.4760.bin
[2013/03/21 17:49:04 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363884544.4696.bin
[2013/03/21 17:48:46 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363884525.2340.bin
[2013/03/21 17:48:45 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363884525.1668.bin
[2013/03/21 17:48:33 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363884513.3956.bin
[2013/03/21 17:48:33 | 000,000,461 | ---- | C] () -- C:\ProgramData\1363884513.148.bin
[2013/03/21 17:48:23 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363884503.4872.bin
[2013/03/21 17:48:23 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363884503.4804.bin
[2013/03/21 17:33:47 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363883626.4868.bin
[2013/03/21 17:33:46 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363883626.2256.bin
[2013/03/21 17:27:49 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363883269.4192.bin
[2013/03/21 17:27:49 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363883269.4964.bin
[2013/03/21 17:27:38 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363883257.4740.bin
[2013/03/21 17:27:37 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363883257.3720.bin
[2013/03/21 17:27:14 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363883234.3540.bin
[2013/03/21 17:27:14 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363883234.4816.bin
[2013/03/21 17:26:57 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363883216.3512.bin
[2013/03/21 17:26:56 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363883216.4388.bin
[2013/03/21 17:25:38 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363883137.4784.bin
[2013/03/21 17:25:37 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363883137.4724.bin
[2013/03/21 17:22:59 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363882978.4524.bin
[2013/03/21 17:22:58 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363882978.1044.bin
[2013/03/21 17:14:17 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363882456.1360.bin
[2013/03/21 17:14:16 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363882456.3856.bin
[2013/03/21 17:12:02 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363882321.4728.bin
[2013/03/21 17:12:01 | 000,031,434 | ---- | C] () -- C:\ProgramData\1363882321.172.bin
[2013/03/21 15:53:31 | 000,031,439 | ---- | C] () -- C:\ProgramData\1363877611.892.bin
[2013/03/21 15:53:31 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363877611.4560.bin
[2013/03/21 15:53:16 | 000,031,440 | ---- | C] () -- C:\ProgramData\1363877596.4932.bin
[2013/03/21 15:53:16 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363877596.4696.bin
[2013/03/21 15:46:03 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363877162.3560.bin
[2013/03/21 15:46:02 | 000,031,440 | ---- | C] () -- C:\ProgramData\1363877162.4316.bin
[2013/03/21 15:45:38 | 000,031,440 | ---- | C] () -- C:\ProgramData\1363877138.4132.bin
[2013/03/21 15:45:38 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363877138.4796.bin
[2013/03/21 15:45:19 | 000,031,440 | ---- | C] () -- C:\ProgramData\1363877119.5040.bin
[2013/03/21 15:45:19 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363877119.4560.bin
[2013/03/21 15:43:33 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363877012.2132.bin
[2013/03/21 15:43:32 | 000,031,440 | ---- | C] () -- C:\ProgramData\1363877012.5020.bin
[2013/03/21 15:41:34 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363876893.4364.bin
[2013/03/21 15:41:33 | 000,031,440 | ---- | C] () -- C:\ProgramData\1363876893.2044.bin
[2013/03/21 15:41:23 | 000,031,440 | ---- | C] () -- C:\ProgramData\1363876883.4244.bin
[2013/03/21 15:41:23 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363876883.4052.bin
[2012/07/09 14:16:28 | 000,074,703 | ---- | C] () -- C:\Windows\SysWow64\mfc45.dll
[2012/04/24 11:30:30 | 001,576,716 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/04/05 11:52:23 | 000,240,336 | ---- | C] () -- C:\Windows\hpwins26.dat
[2012/03/28 12:19:19 | 000,062,660 | ---- | C] () -- C:\ProgramData\1332933437.bdinstall.bin
[2012/03/28 12:15:37 | 000,063,419 | ---- | C] () -- C:\ProgramData\1332933326.bdinstall.bin
[2012/03/28 11:40:52 | 000,066,321 | ---- | C] () -- C:\ProgramData\1332931220.bdinstall.bin
[2012/03/21 10:49:02 | 000,188,220 | ---- | C] () -- C:\ProgramData\1332323077.bdinstall.bin
[2011/08/27 06:30:20 | 000,000,000 | ---- | C] () -- C:\Users\louis\AppData\Local\{440BB0E8-1610-4538-BFC3-E46A5017F988}
[2011/08/23 09:07:39 | 000,000,000 | ---- | C] () -- C:\Users\louis\AppData\Local\{81B7679A-67F0-4481-BA85-EF0DEFC0FAAC}
[2011/08/20 11:47:26 | 000,000,000 | ---- | C] () -- C:\Users\louis\AppData\Local\{621AB84D-1321-41D7-913E-757A8FF41CAF}
[2011/08/20 10:33:00 | 000,000,000 | ---- | C] () -- C:\Users\louis\AppData\Local\{7E67093B-C6A6-486E-A993-939FB6424D53}
[2010/05/05 16:03:02 | 000,047,616 | ---- | C] () -- C:\Users\louis\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

========== ZeroAccess Check ==========

[2012/03/30 18:21:20 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/07/26 03:24:57 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/26 02:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== Alternate Data Streams ==========

@Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:58DD92AC

< End of report >

louis · par **louis** » 10 nov. 2013 14:27

je viens de m'apercevoir qu'une barre c'est ajouter en dessous ma barre de recherche en serait la cause car impossible a supprimé !! le lien

en utilisant Yahoo vous acceptez que Yahoo et ses partenaires installent des cookies a des fin de personnalisation du contenu ou de publicité !!
je n'arrive pas a l'effacé

SkyTech · par **SkyTech** » 10 nov. 2013 16:12

Re,

Désinstalle Google Toolbar & Yahoo! Search Protection via Programmes & fonctionnalités du Panneau de configuration (sauf si tu les utilises).

---

Relance OTL.
o sous Personnalisation, copie_colle le contenu du cadre ci dessous et clic Correction, un rapport apparraitra suite à l’operation que tu conserveras afin d’en coller le resultat:

:OTL
IE - HKCU\..\SearchScopes\{95A8BD74-FAA7-4C1C-9723-BF900E5D7E6C}: "URL" = http://www.flickr.com/search/?q={searchTerms}
IE - HKCU\..\SearchScopes\BEEA4706530A40A5B1E74EC1ABAF505F: "URL" = http://www.amazon.fr/gp/bit/amazonserp/ ... ds_&query={searchTerms}
FF - prefs.js..browser.search.order.1: "Amazon "
FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=11: C:\Program Files (x86)\Google\Google Updater\2.1.850.19570\npCIDetect11.dll (Google)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
[2013/10/21 16:57:34 | 000,000,000 | ---D | C] -- C:\Users\louis\AppData\Local\Software
[1 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]
[2013/11/09 09:08:44 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013/11/07 13:56:23 | 000,000,000 | ---D | C] -- C:\ProgramData\DriverGenius
[2013/11/10 13:46:00 | 000,001,066 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/11/10 13:07:51 | 000,001,014 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job
[2013/11/10 13:05:26 | 000,001,062 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
@Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:58DD92AC
:services
gupdate
gupdatem
gusvc
:files
C:\Program Files (x86)\Google\Update
C:\Program Files (x86)\Google\Common\Google Updater
:commands
[purity]
[emptytemp]
[emptyflash]

* redemarre le pc sous windows et poste le rapport ici

louis · par **louis** » 10 nov. 2013 17:43

TL logfile created on: 10/11/2013 16:56:30 - Run 7
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\louis\Desktop\films
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16614)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy

4,00 Gb Total Physical Memory | 2,36 Gb Available Physical Memory | 59,07% Memory free
8,00 Gb Paging File | 6,00 Gb Available in Paging File | 75,09% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 919,78 Gb Total Space | 857,05 Gb Free Space | 93,18% Space Free | Partition Type: NTFS
Drive D: | 11,63 Gb Total Space | 11,20 Gb Free Space | 96,26% Space Free | Partition Type: NTFS

Computer Name: LOUIS-PC | User Name: louis | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\louis\Desktop\films\OTL (2).exe (OldTimer Tools)
PRC - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe (Google Inc.)
PRC - C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe (Garmin Ltd or its subsidiaries)
PRC - C:\Program Files (x86)\Google\Google Updater\GoogleUpdater.exe (Google)
PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
PRC - C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe (Sony Corporation)
PRC - C:\Program Files (x86)\Nokia\PC Internet Access\NPCIA.exe (Nokia)
PRC - C:\Program Files (x86)\Yahoo!\Search Protection\SearchProtection.exe (Yahoo! Inc)
PRC - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe (Nokia.)
PRC - C:\Program Files (x86)\PC Connectivity Solution\Transports\NclRSSrv.exe ()

========== Modules (No Company Name) ==========

MOD - C:\Program Files (x86)\Yahoo!\Messenger\yui.dll ()
MOD - C:\Program Files (x86)\Yahoo!\Messenger\pcre.dll ()
MOD - C:\Program Files (x86)\Nokia\PC Internet Access\TextResources_fre.nlr ()
MOD - C:\Program Files (x86)\Nokia\PC Internet Access\GraphicsResources.ngr ()

========== Services (SafeList) ==========

SRV:64bit: - (VSSERV) -- C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe (Bitdefender)
SRV:64bit: - (UPDATESRV) -- C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe (Bitdefender)
SRV:64bit: - (BdDesktopParental) -- C:\Program Files\Bitdefender\Bitdefender 2013\bdparentalservice.exe (Bitdefender)
SRV:64bit: - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SRV:64bit: - (wlcrasvc) -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe (Microsoft Corporation)
SRV:64bit: - (AMD External Events Utility) -- C:\Windows\SysNative\atiesrxx.exe (AMD)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (MozillaMaintenance) -- c:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (Garmin Core Update Service) -- C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe (Garmin Ltd or its subsidiaries)
SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (HPSLPSVC) -- C:\Program Files (x86)\hp\Digital Imaging\bin\HPSLPSVC64.DLL (Hewlett-Packard Co.)
SRV - (PMBDeviceInfoProvider) -- C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe (Sony Corporation)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (GameConsoleService) -- C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe (WildTangent, Inc.)
SRV - (ServiceLayer) -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe (Nokia.)
SRV - (PLFlash DeviceIoControl Service) -- C:\Windows\SysWOW64\IoctlSvc.exe (Prolific Technology Inc.)

========== Driver Services (SafeList) ==========

DRV:64bit: - (gzflt) -- C:\Windows\SysNative\drivers\gzflt.sys (BitDefender LLC)
DRV:64bit: - (trufos) -- C:\Windows\SysNative\drivers\trufos.sys (BitDefender S.R.L.)
DRV:64bit: - (BDSandBox) -- C:\Windows\SysNative\drivers\bdsandbox.sys (BitDefender SRL)
DRV:64bit: - (avckf) -- C:\Windows\SysNative\drivers\avckf.sys (BitDefender)
DRV:64bit: - (avc3) -- C:\Windows\SysNative\drivers\avc3.sys (BitDefender)
DRV:64bit: - (usbser) -- C:\Windows\SysNative\drivers\usbser.sys (Microsoft Corporation)
DRV:64bit: - (BdfNdisf) -- c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys (BitDefender LLC)
DRV:64bit: - (avchv) -- C:\Windows\SysNative\drivers\avchv.sys (BitDefender)
DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\drivers\rdpvideominiport.sys (Microsoft Corporation)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (grmnusb) -- C:\Windows\SysNative\drivers\grmnusb.sys (GARMIN Corp.)
DRV:64bit: - (fssfltr) -- C:\Windows\SysNative\drivers\fssfltr.sys (Microsoft Corporation)
DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (bdfwfpf) -- C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys (BitDefender LLC)
DRV:64bit: - (tap0901) -- C:\Windows\SysNative\drivers\tap0901.sys (The OpenVPN Project)
DRV:64bit: - (UsbserFilt) -- C:\Windows\SysNative\drivers\usbser_lowerfltjx64.sys (Nokia)
DRV:64bit: - (upperdev) -- C:\Windows\SysNative\drivers\usbser_lowerfltx64.sys (Nokia)
DRV:64bit: - (nmwcdc) -- C:\Windows\SysNative\drivers\ccdcmbox64.sys (Nokia)
DRV:64bit: - (nmwcd) -- C:\Windows\SysNative\drivers\ccdcmbx64.sys (Nokia)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (atikmdag) -- C:\Windows\SysNative\drivers\atikmdag.sys (ATI Technologies Inc.)
DRV:64bit: - (AtiHdmiService) -- C:\Windows\SysNative\drivers\AtiHdmi.sys (ATI Technologies, Inc.)
DRV:64bit: - (NVNET) -- C:\Windows\SysNative\drivers\nvmf6264.sys (NVIDIA Corporation)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)
DRV - (TFsExDisk) -- C:\Windows\SysWOW64\drivers\TFsExDisk.Sys (Teruten Inc)
DRV - (PxHelp20) -- C:\Windows\SysWOW64\drivers\pxhelp20.sys (Sonic Solutions)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {33BB0A4E-99AF-4226-BDF6-49120163DE86}
IE:64bit: - HKLM\..\SearchScopes\{62F1AC2A-F452-4F1F-A3A6-33248E1055BF}: "URL" = http://www.bing.com/search?q={searchTer ... -SearchBox
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchT ... urceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search bar = http://search.msn.com/spbasic.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchT ... urceid=ie7

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default Download Directory = C:\Users\louis\Desktop\films
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://yahoo.fr/
IE - HKCU\..\SearchScopes,DefaultScope = BEEA4706530A40A5B1E74EC1ABAF505F
IE - HKCU\..\SearchScopes\{62F1AC2A-F452-4F1F-A3A6-33248E1055BF}: "URL" = http://www.bing.com/search?q={searchTer ... -SearchBox
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchT ... 1I7GGHP_fr
IE - HKCU\..\SearchScopes\{95A8BD74-FAA7-4C1C-9723-BF900E5D7E6C}: "URL" = http://www.flickr.com/search/?q={searchTerms}
IE - HKCU\..\SearchScopes\{DECA3892-BA8F-44b8-A993-A466AD694AE4}: "URL" = http://fr.search.yahoo.com/search?p={searchTerms}
IE - HKCU\..\SearchScopes\BEEA4706530A40A5B1E74EC1ABAF505F: "URL" = http://www.amazon.fr/gp/bit/amazonserp/ ... earchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>

========== FireFox ==========

FF - prefs.js..browser.search.order.1: "Amazon "
FF - prefs.js..browser.search.order.3: "Bing "
FF - prefs.js..browser.search.useDBForOrder: false
FF - prefs.js..extensions.enabledAddons: %7B5C655500-E712-41e7-9349-CE462F844B19%7D:1.0
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:24.0
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=11: C:\Program Files (x86)\Google\Google Updater\2.1.850.19570\npCIDetect11.dll (Google)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.0: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

64bit-FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\PROGRAM FILES\BITDEFENDER\BITDEFENDER 2013\BDTBEXT [2013/03/22 05:33:11 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012/04/05 12:01:59 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 24.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\Bitdefender\Bitdefender 2013\bdtbext [2013/03/22 05:33:11 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012/04/05 12:01:59 | 000,000,000 | ---D | M]

[2012/05/10 10:34:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\louis\AppData\Roaming\mozilla\Extensions
[2013/11/09 09:10:05 | 000,000,000 | ---D | M] (No name found) -- C:\Users\louis\AppData\Roaming\mozilla\Firefox\Profiles\hyu1s8uf.default\extensions
[2013/09/25 06:06:32 | 000,306,265 | ---- | M] () (No name found) -- C:\Users\louis\AppData\Roaming\mozilla\firefox\profiles\hyu1s8uf.default\extensions\[email protected]
[2013/05/18 07:11:27 | 000,151,038 | ---- | M] () (No name found) -- C:\Users\louis\AppData\Roaming\mozilla\firefox\profiles\hyu1s8uf.default\extensions\{5C655500-E712-41e7-9349-CE462F844B19}.xpi
[2013/09/22 08:04:19 | 000,348,768 | ---- | M] () (No name found) -- C:\Users\louis\AppData\Roaming\mozilla\firefox\profiles\hyu1s8uf.default\extensions\{5ebdca98-43b3-45bb-87e0-716029fb42ab}.xpi
[2013/08/28 09:09:07 | 000,002,328 | ---- | M] () -- C:\Users\louis\AppData\Roaming\mozilla\firefox\profiles\hyu1s8uf.default\searchplugins\amazon.xml
[2013/11/09 09:10:05 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions
[2013/10/10 15:30:03 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013/10/10 15:30:10 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

========== Chrome ==========

CHR - default_search_provider: dosearches (Enabled)
CHR - default_search_provider: search_url = http://www.google.com
CHR - default_search_provider: suggest_url =
CHR - homepage: http://www.google.com/
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
CHR - plugin: Google Updater (Enabled) = C:\Program Files (x86)\Google\Google Updater\2.1.850.19570\npCIDetect11.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 6 U31 (Enabled) = C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll
CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll
CHR - Extension: Documents Google = C:\Users\louis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Google\u00A0Drive = C:\Users\louis\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\louis\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Recherche Google = C:\Users\louis\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Google\u00A0Wallet = C:\Users\louis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_1\
CHR - Extension: Gmail = C:\Users\louis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2009/06/10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O4:64bit: - HKLM..\Run: [Bdagent] C:\Program Files\Bitdefender\Bitdefender 2013\bdagent.exe (Bitdefender)
O4 - HKLM..\Run: [YSearchProtection] C:\Program Files (x86)\Yahoo!\Search Protection\SearchProtection.exe (Yahoo! Inc)
O4 - HKCU..\Run: [GarminExpressTrayApp] C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe (Garmin Ltd or its subsidiaries)
O4 - HKCU..\Run: [Messenger (Yahoo!)] C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O4 - HKCU..\Run: [NokiaPCInternetAccess] C:\Program Files (x86)\Nokia\PC Internet Access\NPCIA.exe (Nokia)
O4 - HKCU..\Run: [Search Protection] C:\Program Files (x86)\Yahoo!\Search Protection\SearchProtection.exe (Yahoo! Inc)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideFastUserSwitching = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableLockWorkstation = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableChangePassword = 0
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shoc ... tor/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {80AEEC0E-A2BE-4B8D-985F-350FE869DC40} http://h20264.www2.hp.com/ediags/dd/ins ... sVista.cab (HPDDClientExec Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: Garmin Communicator Plug-In https://static.garmincdn.com/gcp/ie/3.0 ... ontrol.CAB (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{ADDD806B-037D-47D0-BCE6-5258DAF3F973}: DhcpNameServer = 89.2.0.1 89.2.0.2
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18:64bit: - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll (EasyBits Software Corp.)
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{3b834490-d22b-11e0-8602-f4ce4601f390}\Shell - "" = AutoRun
O33 - MountPoints2\{3b834490-d22b-11e0-8602-f4ce4601f390}\Shell\AutoRun\command - "" = G:\NokiaPCIA_Autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/11/10 13:34:15 | 000,000,000 | ---D | C] -- C:\Users\louis\AppData\Local\{E18F5CF2-E737-49C3-8AF9-DD1851992CB4}
[2013/11/09 09:08:44 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013/11/07 13:56:23 | 000,000,000 | ---D | C] -- C:\ProgramData\DriverGenius
[2013/11/05 15:29:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2013/10/23 13:54:26 | 000,000,000 | ---D | C] -- C:\Users\louis\AppData\Local\{0ED48005-0692-4FDC-A34A-F3AF07F07CCC}
[2013/10/21 16:58:24 | 000,000,000 | ---D | C] -- C:\Users\louis\AppData\Roaming\Skype
[2013/10/21 16:58:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2013/10/21 16:57:34 | 000,000,000 | ---D | C] -- C:\Users\louis\AppData\Local\Software
[1 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/11/10 16:46:09 | 000,001,066 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/11/10 16:45:25 | 000,015,792 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/11/10 16:45:25 | 000,015,792 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/11/10 16:44:13 | 001,570,468 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/11/10 16:44:13 | 000,711,592 | ---- | M] () -- C:\Windows\SysNative\perfh00C.dat
[2013/11/10 16:44:13 | 000,623,078 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/11/10 16:44:13 | 000,133,728 | ---- | M] () -- C:\Windows\SysNative\perfc00C.dat
[2013/11/10 16:44:13 | 000,109,200 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/11/10 16:40:30 | 000,001,014 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job
[2013/11/10 16:38:14 | 000,065,536 | ---- | M] () -- C:\Windows\SysNative\Ikeext.etl
[2013/11/10 16:37:54 | 000,001,062 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/11/10 16:37:34 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/11/10 16:37:29 | 3220,676,608 | -HS- | M] () -- C:\hiberfil.sys
[2013/11/10 16:35:00 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/11/10 12:54:25 | 000,002,108 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/11/09 09:10:05 | 000,001,190 | ---- | M] () -- C:\Users\louis\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2013/11/09 09:10:05 | 000,001,059 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2013/10/22 07:23:22 | 000,002,592 | ---- | M] () -- C:\Windows\SysWow64\InstallUtil.InstallLog
[1 C:\Program Files (x86)\*.tmp files -> C:\Program Files (x86)\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/11/06 11:30:26 | 000,001,002 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/11/05 15:29:12 | 000,002,108 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/08/09 08:22:15 | 000,423,709 | ---- | C] () -- C:\Users\louis\AppData\Local\mysearchdial_speedial_v9.0.2.crx
[2013/03/22 06:04:13 | 000,031,434 | ---- | C] () -- C:\ProgramData\1363928653.740.bin
[2013/03/22 06:04:13 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363928653.4456.bin
[2013/03/22 06:04:12 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363928651.4592.bin
[2013/03/22 06:04:11 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363928651.4840.bin
[2013/03/22 06:04:09 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363928649.2784.bin
[2013/03/22 06:04:09 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363928649.4424.bin
[2013/03/22 06:03:37 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363928616.3320.bin
[2013/03/22 06:03:36 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363928616.4612.bin
[2013/03/22 06:02:54 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363928573.4524.bin
[2013/03/22 06:02:53 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363928573.3644.bin
[2013/03/22 06:02:52 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363928571.3420.bin
[2013/03/22 06:02:51 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363928571.3308.bin
[2013/03/22 06:02:43 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363928563.4224.bin
[2013/03/22 06:02:43 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363928563.1044.bin
[2013/03/22 05:38:13 | 000,475,166 | ---- | C] () -- C:\ProgramData\1363926629.bdinstall.bin
[2013/03/22 05:17:02 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363925821.4120.bin
[2013/03/22 05:17:01 | 000,031,434 | ---- | C] () -- C:\ProgramData\1363925821.324.bin
[2013/03/21 19:24:49 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890289.4428.bin
[2013/03/21 19:24:49 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890289.4784.bin
[2013/03/21 19:24:45 | 000,000,461 | ---- | C] () -- C:\ProgramData\1363890284.652.bin
[2013/03/21 19:24:44 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890284.2520.bin
[2013/03/21 19:24:37 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890276.2316.bin
[2013/03/21 19:24:36 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890276.3152.bin
[2013/03/21 19:24:19 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890259.4240.bin
[2013/03/21 19:24:19 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890259.3060.bin
[2013/03/21 19:24:16 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890256.4688.bin
[2013/03/21 19:24:16 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890256.3460.bin
[2013/03/21 19:23:29 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890208.4852.bin
[2013/03/21 19:23:28 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890208.2912.bin
[2013/03/21 19:23:26 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890205.3500.bin
[2013/03/21 19:23:25 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890205.4924.bin
[2013/03/21 19:23:23 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890202.4912.bin
[2013/03/21 19:23:22 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890202.1916.bin
[2013/03/21 19:23:19 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890199.4444.bin
[2013/03/21 19:23:19 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890199.4112.bin
[2013/03/21 19:23:17 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890196.4600.bin
[2013/03/21 19:23:16 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890196.3648.bin
[2013/03/21 19:23:14 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890193.3152.bin
[2013/03/21 19:23:13 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890193.3408.bin
[2013/03/21 19:23:09 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890189.3724.bin
[2013/03/21 19:23:09 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890189.4936.bin
[2013/03/21 19:23:08 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890187.3480.bin
[2013/03/21 19:23:07 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890187.4160.bin
[2013/03/21 19:23:06 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890186.4948.bin
[2013/03/21 19:23:06 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890186.3112.bin
[2013/03/21 19:23:05 | 000,000,461 | ---- | C] () -- C:\ProgramData\1363890184.948.bin
[2013/03/21 19:23:04 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890184.4988.bin
[2013/03/21 19:23:01 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890181.3304.bin
[2013/03/21 19:23:01 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890181.4288.bin
[2013/03/21 19:23:00 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890179.4088.bin
[2013/03/21 19:22:59 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890179.3324.bin
[2013/03/21 19:22:58 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890177.2848.bin
[2013/03/21 19:22:57 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890177.4996.bin
[2013/03/21 19:22:55 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890175.3648.bin
[2013/03/21 19:22:55 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890175.4792.bin
[2013/03/21 19:22:51 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890170.2312.bin
[2013/03/21 19:22:50 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890170.2868.bin
[2013/03/21 19:22:44 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890164.4388.bin
[2013/03/21 19:22:44 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890164.3532.bin
[2013/03/21 19:22:35 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363890154.4736.bin
[2013/03/21 19:22:34 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363890154.4640.bin
[2013/03/21 18:54:33 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363888472.4184.bin
[2013/03/21 18:54:32 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363888472.4612.bin
[2013/03/21 18:53:48 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363888428.3724.bin
[2013/03/21 18:53:48 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363888428.4156.bin
[2013/03/21 18:53:10 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363888389.2304.bin
[2013/03/21 18:53:09 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363888389.2312.bin
[2013/03/21 18:51:24 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363888283.3400.bin
[2013/03/21 18:51:23 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363888283.4540.bin
[2013/03/21 18:09:37 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363885777.1516.bin
[2013/03/21 18:09:37 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363885777.4164.bin
[2013/03/21 18:08:34 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363885713.4260.bin
[2013/03/21 18:08:33 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363885713.4168.bin
[2013/03/21 18:03:36 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363885415.4144.bin
[2013/03/21 18:03:35 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363885415.2192.bin
[2013/03/21 18:03:23 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363885402.4720.bin
[2013/03/21 18:03:22 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363885402.2612.bin
[2013/03/21 18:02:40 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363885359.4852.bin
[2013/03/21 18:02:39 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363885359.1856.bin
[2013/03/21 18:02:30 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363885349.4712.bin
[2013/03/21 18:02:29 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363885349.3392.bin
[2013/03/21 18:01:03 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363885262.3092.bin
[2013/03/21 18:01:02 | 000,031,434 | ---- | C] () -- C:\ProgramData\1363885262.324.bin
[2013/03/21 17:56:19 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363884979.2776.bin
[2013/03/21 17:56:19 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363884979.4240.bin
[2013/03/21 17:56:10 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363884969.3552.bin
[2013/03/21 17:56:09 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363884969.4628.bin
[2013/03/21 17:56:08 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363884967.4836.bin
[2013/03/21 17:56:07 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363884967.1808.bin
[2013/03/21 17:56:06 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363884965.4188.bin
[2013/03/21 17:56:05 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363884965.4012.bin
[2013/03/21 17:52:07 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363884726.3720.bin
[2013/03/21 17:52:06 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363884726.2656.bin
[2013/03/21 17:52:05 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363884724.4420.bin
[2013/03/21 17:52:04 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363884724.3152.bin
[2013/03/21 17:51:56 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363884715.1440.bin
[2013/03/21 17:51:55 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363884715.4776.bin
[2013/03/21 17:51:50 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363884709.4836.bin
[2013/03/21 17:51:49 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363884709.4792.bin
[2013/03/21 17:49:04 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363884544.4760.bin
[2013/03/21 17:49:04 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363884544.4696.bin
[2013/03/21 17:48:46 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363884525.2340.bin
[2013/03/21 17:48:45 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363884525.1668.bin
[2013/03/21 17:48:33 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363884513.3956.bin
[2013/03/21 17:48:33 | 000,000,461 | ---- | C] () -- C:\ProgramData\1363884513.148.bin
[2013/03/21 17:48:23 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363884503.4872.bin
[2013/03/21 17:48:23 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363884503.4804.bin
[2013/03/21 17:33:47 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363883626.4868.bin
[2013/03/21 17:33:46 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363883626.2256.bin
[2013/03/21 17:27:49 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363883269.4192.bin
[2013/03/21 17:27:49 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363883269.4964.bin
[2013/03/21 17:27:38 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363883257.4740.bin
[2013/03/21 17:27:37 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363883257.3720.bin
[2013/03/21 17:27:14 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363883234.3540.bin
[2013/03/21 17:27:14 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363883234.4816.bin
[2013/03/21 17:26:57 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363883216.3512.bin
[2013/03/21 17:26:56 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363883216.4388.bin
[2013/03/21 17:25:38 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363883137.4784.bin
[2013/03/21 17:25:37 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363883137.4724.bin
[2013/03/21 17:22:59 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363882978.4524.bin
[2013/03/21 17:22:58 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363882978.1044.bin
[2013/03/21 17:14:17 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363882456.1360.bin
[2013/03/21 17:14:16 | 000,031,435 | ---- | C] () -- C:\ProgramData\1363882456.3856.bin
[2013/03/21 17:12:02 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363882321.4728.bin
[2013/03/21 17:12:01 | 000,031,434 | ---- | C] () -- C:\ProgramData\1363882321.172.bin
[2013/03/21 15:53:31 | 000,031,439 | ---- | C] () -- C:\ProgramData\1363877611.892.bin
[2013/03/21 15:53:31 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363877611.4560.bin
[2013/03/21 15:53:16 | 000,031,440 | ---- | C] () -- C:\ProgramData\1363877596.4932.bin
[2013/03/21 15:53:16 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363877596.4696.bin
[2013/03/21 15:46:03 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363877162.3560.bin
[2013/03/21 15:46:02 | 000,031,440 | ---- | C] () -- C:\ProgramData\1363877162.4316.bin
[2013/03/21 15:45:38 | 000,031,440 | ---- | C] () -- C:\ProgramData\1363877138.4132.bin
[2013/03/21 15:45:38 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363877138.4796.bin
[2013/03/21 15:45:19 | 000,031,440 | ---- | C] () -- C:\ProgramData\1363877119.5040.bin
[2013/03/21 15:45:19 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363877119.4560.bin
[2013/03/21 15:43:33 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363877012.2132.bin
[2013/03/21 15:43:32 | 000,031,440 | ---- | C] () -- C:\ProgramData\1363877012.5020.bin
[2013/03/21 15:41:34 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363876893.4364.bin
[2013/03/21 15:41:33 | 000,031,440 | ---- | C] () -- C:\ProgramData\1363876893.2044.bin
[2013/03/21 15:41:23 | 000,031,440 | ---- | C] () -- C:\ProgramData\1363876883.4244.bin
[2013/03/21 15:41:23 | 000,000,462 | ---- | C] () -- C:\ProgramData\1363876883.4052.bin
[2012/07/09 14:16:28 | 000,074,703 | ---- | C] () -- C:\Windows\SysWow64\mfc45.dll
[2012/04/24 11:30:30 | 001,576,716 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012/04/05 11:52:23 | 000,240,336 | ---- | C] () -- C:\Windows\hpwins26.dat
[2012/03/28 12:19:19 | 000,062,660 | ---- | C] () -- C:\ProgramData\1332933437.bdinstall.bin
[2012/03/28 12:15:37 | 000,063,419 | ---- | C] () -- C:\ProgramData\1332933326.bdinstall.bin
[2012/03/28 11:40:52 | 000,066,321 | ---- | C] () -- C:\ProgramData\1332931220.bdinstall.bin
[2012/03/21 10:49:02 | 000,188,220 | ---- | C] () -- C:\ProgramData\1332323077.bdinstall.bin
[2011/08/27 06:30:20 | 000,000,000 | ---- | C] () -- C:\Users\louis\AppData\Local\{440BB0E8-1610-4538-BFC3-E46A5017F988}
[2011/08/23 09:07:39 | 000,000,000 | ---- | C] () -- C:\Users\louis\AppData\Local\{81B7679A-67F0-4481-BA85-EF0DEFC0FAAC}
[2011/08/20 11:47:26 | 000,000,000 | ---- | C] () -- C:\Users\louis\AppData\Local\{621AB84D-1321-41D7-913E-757A8FF41CAF}
[2011/08/20 10:33:00 | 000,000,000 | ---- | C] () -- C:\Users\louis\AppData\Local\{7E67093B-C6A6-486E-A993-939FB6424D53}
[2010/05/05 16:03:02 | 000,047,616 | ---- | C] () -- C:\Users\louis\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

========== ZeroAccess Check ==========

[2012/03/30 18:21:20 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/07/26 03:24:57 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/26 02:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013/03/22 05:32:52 | 000,000,000 | ---D | M] -- C:\Users\louis\AppData\Roaming\Bitdefender
[2013/07/06 00:10:50 | 000,000,000 | ---D | M] -- C:\Users\louis\AppData\Roaming\Canneverbe Limited
[2013/07/28 13:35:45 | 000,000,000 | ---D | M] -- C:\Users\louis\AppData\Roaming\com.adobe.downloadassistant.AdobeDownloadAssistant
[2012/04/24 11:30:37 | 000,000,000 | ---D | M] -- C:\Users\louis\AppData\Roaming\Fighters
[2010/04/30 08:01:48 | 000,000,000 | ---D | M] -- C:\Users\louis\AppData\Roaming\FileZilla
[2013/05/20 08:14:28 | 000,000,000 | ---D | M] -- C:\Users\louis\AppData\Roaming\GARMIN
[2010/03/24 15:10:06 | 000,000,000 | ---D | M] -- C:\Users\louis\AppData\Roaming\InfraRecorder
[2013/07/06 00:12:33 | 000,000,000 | ---D | M] -- C:\Users\louis\AppData\Roaming\iolo
[2010/05/09 07:51:59 | 000,000,000 | ---D | M] -- C:\Users\louis\AppData\Roaming\PC Suite
[2010/03/17 14:13:55 | 000,000,000 | ---D | M] -- C:\Users\louis\AppData\Roaming\QUAD Utilities
[2012/03/21 10:45:12 | 000,000,000 | ---D | M] -- C:\Users\louis\AppData\Roaming\QuickScan
[2011/10/05 16:03:00 | 000,000,000 | ---D | M] -- C:\Users\louis\AppData\Roaming\Reviversoft
[2010/07/15 11:44:19 | 000,000,000 | ---D | M] -- C:\Users\louis\AppData\Roaming\Samsung
[2013/08/08 10:10:31 | 000,000,000 | ---D | M] -- C:\Users\louis\AppData\Roaming\SAMSUNG GT-E2530 user guide
[2013/07/06 00:12:34 | 000,000,000 | ---D | M] -- C:\Users\louis\AppData\Roaming\Spamihilator
[2012/04/27 14:15:15 | 000,000,000 | ---D | M] -- C:\Users\louis\AppData\Roaming\TeamViewer
[2012/01/14 08:36:03 | 000,000,000 | ---D | M] -- C:\Users\louis\AppData\Roaming\TuneUp Software
[2013/11/09 09:10:02 | 000,000,000 | ---D | M] -- C:\Users\louis\AppData\Roaming\Uniblue
[2012/07/11 06:56:54 | 000,000,000 | ---D | M] -- C:\Users\louis\AppData\Roaming\uTorrent
[2013/07/06 00:10:54 | 000,000,000 | ---D | M] -- C:\Users\louis\AppData\Roaming\VSRevoGroup
[2012/04/06 11:26:37 | 000,000,000 | ---D | M] -- C:\Users\louis\AppData\Roaming\WinBatch
[2010/05/19 12:45:34 | 000,000,000 | ---D | M] -- C:\Users\louis\AppData\Roaming\Windows Live Writer
[2010/09/09 05:57:10 | 000,000,000 | ---D | M] -- C:\Users\louis\AppData\Roaming\_MDLogs

========== Purity Check ==========

========== Alternate Data Streams ==========

@Alternate Data Stream - 117 bytes -> C:\ProgramData\Temp:58DD92AC

< End of report >

SkyTech · par **SkyTech** » 10 nov. 2013 19:06

Pour OTL ce n'est pas ça, relis bien l'explication ;)

louis · par **louis** » 11 nov. 2013 07:40

salut
ses trop long je l'ai envoyer a l'adresse que vu ma donné
merci pour ton aide ,
PS
j'aimerai bien te donner mon ordi pour le corriger a distance , je doute que tu n'est pas dispos
a+ louis

SkyTech · par **SkyTech** » 11 nov. 2013 09:25

louis a écrit :ses trop long je l'ai envoyer a l'adresse que vu ma donné

Il faudrait le lien que le site t'a renvoyé.

louis a écrit :j'aimerai bien te donner mon ordi pour le corriger a distance , je doute que tu n'est pas dispos

Avec les études c'est pas possible.

louis · par **louis** » 11 nov. 2013 10:45

SkyTech a écrit :
louis a écrit :ses trop long je l'ai envoyer a l'adresse que vu ma donné
Il faudrait le lien que le site t'a renvoyé.

louis a écrit :j'aimerai bien te donner mon ordi pour le corriger a distance , je doute que tu n'est pas dispos
Avec les études c'est pas possible.

voici le lien

http://pjjoint.malekal.com/index.php?lang=fr

SkyTech · par **SkyTech** » 11 nov. 2013 13:52

Tu m'as envoyé le lien du site de dépot, pas le lien que le site de dépot ta donné après avoir envoyé le rapport.

Malekal.com forum

[Résolu] ouverture de la page

[Résolu] ouverture de la page

Re: ouverture de la page

Re: ouverture de la page

Re: ouverture de la page

Re: [Résolu] ouverture de la page

Re: [Résolu] ouverture de la page

Re: [Résolu] ouverture de la page

Re: [Résolu] ouverture de la page

Re: [Résolu] ouverture de la page

Re: [Résolu] ouverture de la page

Re: [Résolu] ouverture de la page

Re: [Résolu] ouverture de la page

Re: [Résolu] ouverture de la page

Re: [Résolu] ouverture de la page

Re: [Résolu] ouverture de la page