Sujet Précédent Sujet Suivant

Pubs

Fermé
komarr Messages postés 645 Date d'inscription dimanche 6 juillet 2008 Statut Membre Dernière intervention 5 octobre 2019 - 2 août 2014 à 19:48
 Utilisateur anonyme - 3 août 2014 à 12:30
Bonjour,

Depuis deux jours je n'arrete pas d'avoir des publicités intempestives sur firefox qui ralentissent ma connexion internet. Je viens vers vous pour demander de l'aide.

Merci d'avance

18 réponses

Réponse 1 / 18
Utilisateur anonyme
2 août 2014 à 19:49
Bonsoir

Télécharge AdwCleaner ( d'Xplode ) sur ton bureau.
Lance le, clique sur [Scanner] puis patiente le temps du scan.
Une fois le scan terminé clique sur le bouton [Nettoyer]
Patiente durant le nettoyage. Lis le message qui apparaît, puis clique sur Ok . Le PC va être redémarré automatiquement et le rapport s'ouvrira à la fin du redémarrage.
Poste le rapport

Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt

A lire :
Les programmes potentiellement indésirables :
https://www.malekal.com/adwares-pup-protection/

Les toolbars, c'est pas obligatoire ( par Malekal ) :https://forum.malekal.com/viewtopic.php?t=6173&start=


@+
0
Réponse 2 / 18
komarr Messages postés 645 Date d'inscription dimanche 6 juillet 2008 Statut Membre Dernière intervention 5 octobre 2019 85
2 août 2014 à 19:56
merci pour la réponse rapide, je fais ça de suite et je post le rapport
0
Réponse 3 / 18
komarr Messages postés 645 Date d'inscription dimanche 6 juillet 2008 Statut Membre Dernière intervention 5 octobre 2019 85
2 août 2014 à 20:21
voici le rapport

# AdwCleaner v3.302 - Rapport créé le 02/08/2014 à 20:10:18
# Mis à jour le 30/07/2014 par Xplode
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
# Nom d'utilisateur : komar - KOMAR-PC
# Exécuté depuis : C:\Users\komar\Desktop\adwcleaner_3.302.exe
# Option : Nettoyer

***** [ Services ] *****


***** [ Fichiers / Dossiers ] *****

[!] Dossier Supprimé : C:\Program Files (x86)\iSafe
Dossier Supprimé : C:\Users\komar\AppData\Roaming\iSafe
[!] Dossier Supprimé : C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
Dossier Supprimé : C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\Extensions\staged\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[!] Dossier Supprimé : C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\Extensions\firefoxdav@icloud.com

***** [ Tâches planifiées ] *****


***** [ Raccourcis ] *****


***** [ Registre ] *****

Clé Supprimée : HKLM\Software\iSafe
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\iSafe

***** [ Navigateurs ] *****

-\\ Internet Explorer v11.0.9600.17207


-\\ Mozilla Firefox v31.0 (x86 fr)

[ Fichier : C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js ]

Ligne Supprimée : user_pref("extensions.a44e4876d5886435183fea8e44f892d6c2ac4a44858c85e3636com61855.61855.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssfiles.com%22%5D[...]
Ligne Supprimée : user_pref("extensions.crossrider.bic", "1433f74fcf6690690aba7160c5130716");
Ligne Supprimée : user_pref("extensions.helperbar.DockingPositionDown", false);
Ligne Supprimée : user_pref("extensions.helperbar.SmartbarDisabled", false);
Ligne Supprimée : user_pref("extensions.helperbar.SmartbarStateMinimaized", false);
Ligne Supprimée : user_pref("extensions.helperbar.Visibility", false);
Ligne Supprimée : user_pref("extensions.irmysearch.aflt", "tele1202");
Ligne Supprimée : user_pref("extensions.irmysearch.cd", "2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0CyB0CyDzyyD0CyC0DtN0D0Tzu0SyBtBzytN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R");
Ligne Supprimée : user_pref("extensions.irmysearch.cr", "1044123687");
Ligne Supprimée : user_pref("extensions.irmysearch.instlRef", "");
Ligne Supprimée : user_pref("extensions.mysearchdial.aflt", "tele1202");
Ligne Supprimée : user_pref("extensions.mysearchdial.appId", "{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}");
Ligne Supprimée : user_pref("extensions.mysearchdial.cd", "2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0CyB0CyDzyyD0CyC0DtN0D0Tzu0SyBtBzytN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R");
Ligne Supprimée : user_pref("extensions.mysearchdial.cr", "1044123687");
Ligne Supprimée : user_pref("extensions.mysearchdial.dfltLng", "");
Ligne Supprimée : user_pref("extensions.mysearchdial.dfltSrch", true);
Ligne Supprimée : user_pref("extensions.mysearchdial.dnsErr", true);
Ligne Supprimée : user_pref("extensions.mysearchdial.excTlbr", false);
Ligne Supprimée : user_pref("extensions.mysearchdial.hmpg", true);
Ligne Supprimée : user_pref("extensions.mysearchdial.hmpgUrl", "hxxp://start.mysearchdial.com/?f=1&a=tele1202&cd=2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0CyB0CyDzyyD0CyC0DtN0D0Tzu0SyBtBzytN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCy[...]
Ligne Supprimée : user_pref("extensions.mysearchdial.id", "002421AC7C595C6D");
Ligne Supprimée : user_pref("extensions.mysearchdial.instlDay", "16068");
Ligne Supprimée : user_pref("extensions.mysearchdial.instlRef", "");
Ligne Supprimée : user_pref("extensions.mysearchdial.newTabUrl", "hxxp://start.mysearchdial.com/?f=2&a=tele1202&cd=2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0CyB0CyDzyyD0CyC0DtN0D0Tzu0SyBtBzytN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1Czut[...]
Ligne Supprimée : user_pref("extensions.mysearchdial.prdct", "mysearchdial");
Ligne Supprimée : user_pref("extensions.mysearchdial.prtnrId", "mysearchdial");
Ligne Supprimée : user_pref("extensions.mysearchdial.srchPrvdr", "Mysearchdial");
Ligne Supprimée : user_pref("extensions.mysearchdial.tlbrId", "base");
Ligne Supprimée : user_pref("extensions.mysearchdial.tlbrSrchUrl", "hxxp://start.mysearchdial.com/?f=3&a=tele1202&cd=2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0CyB0CyDzyyD0CyC0DtN0D0Tzu0SyBtBzytN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1Cz[...]
Ligne Supprimée : user_pref("extensions.mysearchdial.vrsn", "1.8.21.0");
Ligne Supprimée : user_pref("extensions.mysearchdial.vrsni", "1.8.21.0");
Ligne Supprimée : user_pref("extensions.mysearchdial_i.hmpg", true);
Ligne Supprimée : user_pref("extensions.mysearchdial_i.newTab", false);
Ligne Supprimée : user_pref("extensions.mysearchdial_i.smplGrp", "none");
Ligne Supprimée : user_pref("extensions.mysearchdial_i.vrsnTs", "1.8.21.018:32:33");
Ligne Supprimée : user_pref("iminent.LayoutId", "1");
Ligne Supprimée : user_pref("iminent.ShowThankyouPixel", "0");
Ligne Supprimée : user_pref("iminent.adapters", "{\"youtube\":{\"CountryCode\":\"FR\",\"NoAds\":false,\"Status\":1,\"expireTime\":\"13897096814271814400\"},\"mediafire\":{\"CountryCode\":\"FR\",\"NoAds\":false,\"Status[...]
Ligne Supprimée : user_pref("iminent.newtabredirect", "false");
Ligne Supprimée : user_pref("iminent.registerToolbarEvent101", "1389549063166");
Ligne Supprimée : user_pref("iminent.registerToolbarEvent102", "1389649792407");
Ligne Supprimée : user_pref("iminent.registerToolbarEvent105", "1386177956120");
Ligne Supprimée : user_pref("iminent.registerToolbarEvent136", "1388246644638");
Ligne Supprimée : user_pref("iminent.registerToolbarEvent140", "1389646757156");
Ligne Supprimée : user_pref("iminent.searchindex", "1");
Ligne Supprimée : user_pref("iminent.version", "8.1.2.3");
Ligne Supprimée : user_pref("iminent.versioning", "{\"CurrentVersion\":\"7.41.2.1\",\"InstallEventCTime\":1381522374569,\"InstallEvent\":\"True\",\"UpdateEventCTime\":1389709647546}");

-\\ Google Chrome v

[ Fichier : C:\Users\komar\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [11785 octets] - [02/08/2014 19:54:58]
AdwCleaner[R1].txt - [6323 octets] - [02/08/2014 20:07:50]
AdwCleaner[S0].txt - [11825 octets] - [02/08/2014 19:59:53]
AdwCleaner[S1].txt - [6262 octets] - [02/08/2014 20:10:18]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [6322 octets] ##########
0
Réponse 4 / 18
Utilisateur anonyme
2 août 2014 à 20:23
Re

Télécharge Malwaresbytes anti malware ici
https://www.commentcamarche.net/telecharger/securite/14361-malwarebytes-anti-malware/

--->> Installe le (choisis bien français ); ne modifie pas les paramètres d'installe
--->> Décoche la case Activer l'essai gratuit de Malwarebytes Anti-Malware Premium à la fin de l'installation
--->> /!\ Utilisateurs de Vista/7/8/8.1 : faire un clic droit sur le raccourci de MalwareBytes' Anti-Malware et choisir Exécuter en tant qu'administrateur
--->> Clique sur Mettre à jour dans le Tableau de bord afin de mettre à jour la base de données.
--->> Dans l'onglet Examen, sélectionnez Examen Menaces puis clique sur Examiner maintenant.
--->> Une fois le scan terminé, clique sur Tout mettre en quarantaine puis sur Appliquez les actions

--->> (Si un message demande de redémarrer le PC pour terminer la suppression, accepte)

--->> Le rapport est disponible dans Historique > Journaux de l'application. (Choisis bien le dernier en date
Tu sélectionnes le fichier et tu demandes l'affichage
En bas à gauche un bouton exporter ; tu cliques dessus et tu choisis fichier texte et tu choisis ensuite ou l'enregistrer pour ensuite pouvoir le poster dans ta prochaine réponse

Merci

@+
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 18
komarr Messages postés 645 Date d'inscription dimanche 6 juillet 2008 Statut Membre Dernière intervention 5 octobre 2019 85
2 août 2014 à 20:48
voila le rapport

Malwarebytes Anti-Malware
www.malwarebytes.org

Date de l'examen: 02/08/2014
Heure de l'examen: 20:30:38
Fichier journal: mbam.txt
Administrateur: Oui

Version: 2.00.2.1012
Base de données Malveillants: v2014.08.02.04
Base de données Rootkits: v2014.08.01.01
Licence: Premium
Protection contre les malveillants: Désactivé(e)
Protection contre les sites Web malveillants: Désactivé(e)
Self-protection: Désactivé(e)

Système d'exploitation: Windows 7 Service Pack 1
Processeur: x64
Système de fichiers: NTFS
Utilisateur: komar

Type d'examen: Examen "Menaces"
Résultat: Terminé
Objets analysés: 338384
Temps écoulé: 14 min, 15 sec

Mémoire: Activé(e)
Démarrage: Activé(e)
Système de fichiers: Activé(e)
Archives: Activé(e)
Rootkits: Désactivé(e)
Heuristics: Activé(e)
PUP: Avertir
PUM: Activé(e)

Processus: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Clés du Registre: 1
PUP.Optional.SuperFish.A, HKU\S-1-5-21-846553455-1940334665-2938013052-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\DOMSTORAGE\superfish.com, Mis en quarantaine, [6a62ead73447dd592c73696e7d851de3],

Valeurs du Registre: 0
(No malicious items detected)

Données du Registre: 0
(No malicious items detected)

Dossiers: 0
(No malicious items detected)

Fichiers: 26
PUP.Optional.CrossRider.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.crossrider.bic", "1433f74fcf6690690aba7160c5130716");), Échec de la suppression,[2f9debd6ed8e37ffef5418d6d52f768a]
PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.aflt", "tele1202");), Échec de la suppression,[329a6e53bfbc2214eb5f7d71fb09f808]
PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.appId", "{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}");), Échec de la suppression,[9438546dd0abf83e133745a9e81c54ac]
PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.cd", "2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0CyB0CyDzyyD0CyC0DtN0D0Tzu0SyBtBzytN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R");), Échec de la suppression,[6a62d3eec4b78ea8d872549a33d12bd5]
PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.cr", "1044123687");), Échec de la suppression,[953714ad5d1e63d3da70af3f42c26799]
PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.dfltLng", "");), Échec de la suppression,[4983843d7dfeb185460428c6d82cad53]
PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.dfltSrch", true);), Échec de la suppression,[9a32c10093e859dd7ad0ad41b45060a0]
PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.dnsErr", true);), Échec de la suppression,[5676edd42b5086b03614806ee71d8f71]
PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.excTlbr", false);), Échec de la suppression,[12ba6b563447d85e7ad0f0fe33d1817f]
PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.hmpg", true);), Échec de la suppression,[735905bc3c3f211529213bb342c2f709]
PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.hmpgUrl", "http://start.mysearchdial.com/?f=1&a=tele1202&cd=2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0CyB0CyDzyyD0CyC0DtN0D0Tzu0SyBtBzytN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=1044123687&ir=");), Échec de la suppression,[963611b0c9b2dc5a470322cc4bb99e62]
PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.id", "002421AC7C595C6D");), Échec de la suppression,[e3e913ae4a31d75f53f7fef028dc41bf]
PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.instlDay", "16068");), Échec de la suppression,[9636269b2754a294be8cc529c14334cc]
PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.instlRef", "");), Échec de la suppression,[5f6da12081fa0e2860eab23ca55fa15f]
PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.newTabUrl", "http://start.mysearchdial.com/?f=2&a=tele1202&cd=2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0CyB0CyDzyyD0CyC0DtN0D0Tzu0SyBtBzytN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=1044123687&ir=");), Échec de la suppression,[bd0f853c8eed78be1d2d915d4fb5c040]
PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.prdct", "mysearchdial");), Échec de la suppression,[26a63f82c5b680b6004aeb0351b34ab6]
PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.prtnrId", "mysearchdial");), Échec de la suppression,[7e4e635e53287cbaab9f876747bd43bd]
PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.srchPrvdr", "Mysearchdial");), Échec de la suppression,[05c77849700bce683515bc328b79cf31]
PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.tlbrId", "base");), Échec de la suppression,[ffcd16ab6a11a2949eac7e706e96a858]
PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.tlbrSrchUrl", "http://start.mysearchdial.com/?f=3&a=tele1202&cd=2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0CyB0CyDzyyD0CyC0DtN0D0Tzu0SyBtBzytN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=1044123687&ir=&q=");), Échec de la suppression,[bc105968eb90e155e56507e770946f91]
PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.vrsn", "1.8.21.0");), Échec de la suppression,[b5175d644d2e80b6c882faf4897b3cc4]
PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.vrsni", "1.8.21.0");), Échec de la suppression,[48843f829ae1db5ba3a7af3fad5732ce]
PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial_i.hmpg", true);), Échec de la suppression,[dfed477adba040f6e268816d18ec9a66]
PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial_i.newTab", false);), Échec de la suppression,[e6e6ab16443716209dad7e70f4109d63]
PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial_i.smplGrp", "none");), Échec de la suppression,[3a92d9e8e299e84e06440ee05fa5c739]
PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial_i.vrsnTs", "1.8.21.018:32:33");), Échec de la suppression,[6b6118a986f5d95d282237b747bd9c64]

Secteurs physiques: 0
(No malicious items detected)


(end)
0
Réponse 6 / 18
Utilisateur anonyme
2 août 2014 à 20:51
Re

Fait ceci stp

Ouvre ce lien et télécharge ZHPDiag de Nicolas Coolman :

https://nicolascoolman.eu

Ou

https://www.commentcamarche.net/telecharger/utilitaires/24803-zhpdiag/



Une fois le téléchargement achevé,

Double-clique sur l'icône pour lancer le programme. Sous Vista ; Seven ou Windows 8 clic droit « exécuter en tant que administrateur »


Dans la fenêtre ZHPDiag qui vient de s'ouvrir, clique sur "Configurer"

Clique sur la loupe en bas à gauche avec le signe plus pour lancer l'analyse.


Laisse l'outil travailler, il peut être assez long.

Un rapport s'ouvre. Ce rapport se trouve également sur ton bureau

Pour transmettre le rapport clique sur ce lien:
http://pjjoint.malekal.com/

Si problème utilise un des suivants

https://forums-fec.be/upload
https://www.cjoint.com/


Regarde sur le bureau

Sélectionne le fichier ZHPDiag.txt.

Clique sur "Cliquez ici pour déposer le fichier".

Un lien de cette forme :

http://www.cijoint.com/cjlink.php?file=cj200905/cijSKAP5fU.txt

est ajouté dans la page.

Copie ce lien dans ta réponse.

Merci

@+

0
Réponse 7 / 18
komarr Messages postés 645 Date d'inscription dimanche 6 juillet 2008 Statut Membre Dernière intervention 5 octobre 2019 85
2 août 2014 à 21:05
~Rapport de ZHPDiag v2014.8.2.112 - Nicolas Coolman (02/08/2014)
~ Lancé par komar (02/08/2014 20:58:05)
~ Adresse du Site Web https://nicolascoolman.eu
~ Adresse du Forum https://nicolascoolman.eu
~ Traduit par Nicolas Coolman
~ Etat de la version : Version à jour.
~ Liste blanche : Activée par le programme
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Activate by user


---\\ Navigateurs Internet
MSIE: Internet Explorer v11.0.9600.17207 (Defaut)
MFIE: Mozilla Firefox 31.0

---\\ Informations sur les produits Windows
~ Langage: Français
Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)
Windows Server License Manager Script : OK
~ Windows Operating System - Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 3Q6C9
Windows License : OK
~ Windows Remaining Initializations Number : 4
Software Protection Service (Protection logicielle) : OK
Key Management Service client information : KO
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection du système
AVG 2014 v14.0.4716
Malwarebytes Anti-Malware version 2.0.2.1012
Windows Defender W7 (Deactivate)

---\\ Logiciels d'optimisation du système
CCleaner v4.01

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 14 Plugin
Adobe Reader XI
Java 7 Update 10
Java 7 Update 65

---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 4094 MB (55% free)
System Restore: Activé (Enable)
System drive C: has 230 GB (50%) free of 451 GB

---\\ Mode de connexion au système
~ Computer Name: KOMAR-PC
~ User Name: komar
~ All Users Names: UpdatusUser, komar, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\komar\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\komar\AppData\Roaming\
~ %Desktop% : C:\Users\komar\Desktop\
~ %Favorites% : C:\Users\komar\Favorites\
~ %LocalAppData% : C:\Users\komar\AppData\Local\
~ %StartMenu% : C:\Users\komar\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 230 Go of 451 Go)
D: Hard drive, Flash drive, Thumb drive (Free 2 Go of 14 Go)
E: CD-ROM drive (Not Inserted)
G: Floppy drive, Flash card reader, USB Key (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
~ Security Center: 49 Legitimates Filtered in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.2EE102DF0EDD8A1EDD3D1E9B99A91BEC] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.18/06/2014 - 23:58:27.) -- C:\Windows\System32\wininet.dll [2266112]
[MD5.88AB9B72B4BF3963A0DE0820B4B0B06C] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.04/03/2014 - 10:43:50.) -- C:\Windows\System32\Winlogon.exe [455168]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 14:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 07:45:52.) -- C:\Windows\system32\Drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.24/01/2014 - 03:37:55.) -- C:\Windows\system32\Drivers\ntfs.sys [1684928]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:56.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 1/9275
~ Mes musiques (My Musics) : 1/1049
~ Mes Videos (My Videos) : 1/3
~ Mes Favoris (My Favorites) : 1/18
~ Mes Documents (My Documents) : 3/91
~ Mon Bureau (My Desktop) : 1/2313
~ Menu demarrer (Programs) : 1/32
~ Hidden Files: Scanned in 00mn 09s



---\\ Processus lancés
[MD5.E4B3F350F6B87D82F726C4B30F2BC5CD] - (.IObit - Advanced SystemCare 7 Monitor.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe [763680] [PID.3256]
[MD5.FB0C6F8A040626D689236AA913D6E8C9] - (.Elex do Brasil Participações Ltda - YACTray.) -- C:\Program Files (x86)\iSafe\iSafeTray.exe [1018696] [PID.3376] =>Trojan.Staser
[MD5.FC169AE00FCE9E01B276F2A5AA01C977] - (...) -- C:\Users\komar\Desktop\sauvegarde\ifunbox.win\ifb_conn.exe [812544] [PID.4180]
[MD5.ECE79D5AB0C8A7E6ADA407FAB3666852] - (.IObit - Advanced SystemCare 7.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe [2283296] [PID.4188]
[MD5.A8B68D4A0B815294819E2647D54A7686] - (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files (x86)\AVG\AVG2014\avgui.exe [5179408] [PID.4412]
[MD5.A08A6D194884DFC35C619F8A5E1FFFBD] - (.Pas de propriétaire - Real-time Protector.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\RealTimeProtector.exe [1120032] [PID.4100]
[MD5.10F36FB8CD6218CD7F818268E0F3F9C6] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [275568] [PID.4524]
[MD5.4FBC630768570E6AC35C3DE8F6EC79F5] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe [6970168] [PID.180]
[MD5.D97BF9F66430717C7981048CA88F2C63] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8084480] [PID.3396]
[MD5.9D35F4CD788ED5FF8CC22F89317E7C83] - (.IObit - Advanced SystemCare Service.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [878368] [PID.1008]
[MD5.38FF5A50F85B7CFE5F711E1361A1D4C7] - (.TODO: <Company name> - TODO: <File description>.) -- C:\Program Files (x86)\iSafe\appstore\appstoreSvc.exe [12464] [PID.1080] =>Trojan.Staser
[MD5.11F6F9216D8F77EAC196B07D66E819EA] - (.Elex do Brasil Participações Ltda - iSafeSvc.) -- C:\Program Files (x86)\iSafe\iSafeSvc.exe [118048] [PID.1204] =>Trojan.Staser
[MD5.A03A95B389479B2ADE3A288FA2EA11D1] - (.Elex do Brasil Participações Ltda - iSafeSvc2.) -- C:\Program Files (x86)\iSafe\iSafeSvc2.exe [118048] [PID.1236] =>Trojan.Staser
[MD5.6B73E94F9FE82D45781B8C8A09483082] - (.Apple Inc. - YSLoader.exe.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [43336] [PID.2100]
[MD5.20B2C28E3914C6837B30D44D31D2A294] - (.AVG Technologies CZ, s.r.o. - AVG Identity Protection Service.) -- C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3241488] [PID.2296]
[MD5.13BB5F8819F90CE30A967FD94823E21B] - (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) -- C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [289328] [PID.2324]
[MD5.BEFF149A82F78B648046108EB9D28893] - (.IObit - Product Updater.) -- C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151200] [PID.2504]
[MD5.332D341D92B933600D41953B08360DFB] - (.Ulead Systems, Inc. - ULCDRSvr.) -- C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152] [PID.3532]
[MD5.2F2372B5FF8C513C6D39E298CF749E4C] - (...) -- C:\Program Files (x86)\iSafe\appstore\ipcdl.exe [2229592] [PID.3028] =>Trojan.Staser
[MD5.D84AEA3F3329D622DFC1297DDDF6163B] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720] [PID.2764]
~ Processes Running: Scanned in 00mn 01s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\komar\AppData\Local\Google\Chrome\User Data\Default\Preferences

---\\ Liste des dossiers d'extension Google Chrome
~ Google Lines Browser: 0 Legitimates Filtered in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js
M0 - MFSP: prefs.js [komar - jl3am0gp.default] about:blank
M2 - MFEP: prefs.js [komar - jl3am0gp.default\ascsurfingprotection@iobit.com] [] Advanced SystemCare Surfing Protection v1.0 (..)
~ Firefox Browser: 24 Legitimates Filtered in 00mn 01s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;127.0.0.1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=c:\windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 14



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: WsSVRIEHelper [64Bits] - {65DEE40A-3E93-4cae-9F98-B8E06DCEE2BF} . (.Wondershare Software Co., Ltd. - Wondershare Video Converter Ultimate Plugin.) -- C:\Program Files (x86)\Wondershare\Video Converter Ultimate\SVRIEPlugin.dll
O2 - BHO: AllDaySavings [64Bits] - {fbdff406-2c4c-5d35-8469-34bb67ea3353} . (...) -- C:\Program Files\E061490F-E994-4CAC-95B5-87635F824BF7\kzhxnitccw.dll
~ BHO: 15 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar\WebBrowser: (no name) - [HKCU]{47833539-D0C5-4125-9FA8-0819E2EAAC93} Clé orpheline
~ Toolbar: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: YAC App Store.lnk . (.Woodtale Technology Inc - app store.) -- C:\Program Files (x86)\iSafe\appstore\isafeAppStore.exe =>Trojan.Staser
O4 - GS\Desktop [Public]: YAC.lnk . (.Elex do Brasil Participações Ltda - iStart.) -- C:\Program Files (x86)\iSafe\iStart.exe =>Trojan.Staser
O4 - GS\QuickLaunch [komar]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\komar\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
~ Global Startup: 3 Legitimates Filtered in 00mn 04s



---\\ Applications lancées au démarrage du système (O4)
O4 - HKLM\..\Run: [BCSSync] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files\Microsoft Office\Office14\BCSSync.exe =>.Microsoft Corporation
O4 - HKCU\..\Run: [iFunBoxConnector] . (...) -- C:\Users\komar\Desktop\sauvegarde\ifunbox.win\ifb_conn.exe
O4 - HKCU\..\Run: [Advanced SystemCare 7] . (.IObit - Advanced SystemCare 7.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [ASUS Ai Charger] . (.ASUSTek Computer Inc. - AiChargerAP MFC Application.) -- C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe
O4 - HKLM\..\Wow6432Node\Run: [Acrobat Assistant 8.0] . (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe
O4 - HKLM\..\Wow6432Node\Run: [AVG_UI] . (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files (x86)\AVG\AVG2014\avgui.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-846553455-1940334665-2938013052-1001\..\Run: [iFunBoxConnector] . (...) -- C:\Users\komar\Desktop\sauvegarde\ifunbox.win\ifb_conn.exe
O4 - HKUS\S-1-5-21-846553455-1940334665-2938013052-1001\..\Run: [Advanced SystemCare 7] . (.IObit - Advanced SystemCare 7.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe
~ Application: Scanned in 00mn 00s



---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: &Envoyer à OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} -- C:\Program Files (x86)\MICROS~2\Office15\ONBttnIE.dll (.not file.)
O9 - Extra button: Cliquer pour appeler Lync [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files\Microsoft Office\Office15\lync.exe
O9 - Extra button: Notes &liées OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} -- C:\Program Files (x86)\MICROS~2\Office15\ONBTTN~1.dll (.not file.)
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{1DA7B828-DBAF-48FD-8548-16A64B5B8D67}: NameServer = 8.8.8.8,8.8.4.4 =>.Google DNS Redirections
O17 - HKLM\System\CCS\Services\Tcpip\..\{1DA7B828-DBAF-48FD-8548-16A64B5B8D67}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CCS\Services\Tcpip\..\{DD57E249-B0AB-4E5E-A6D7-24CBCA3CC5F5}: DhcpNameServer = 172.20.2.10 172.20.2.39
O17 - HKLM\System\CCS\Services\Tcpip\..\{F0C7B543-0FA3-45F1-A0FC-375B7DF676DC}: DhcpNameServer = 172.20.2.10 172.20.2.39
O17 - HKLM\System\CS1\Services\Tcpip\..\{1DA7B828-DBAF-48FD-8548-16A64B5B8D67}: NameServer = 8.8.8.8,8.8.4.4 =>.Google DNS Redirections
O17 - HKLM\System\CS1\Services\Tcpip\..\{1DA7B828-DBAF-48FD-8548-16A64B5B8D67}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS1\Services\Tcpip\..\{DD57E249-B0AB-4E5E-A6D7-24CBCA3CC5F5}: DhcpNameServer = 172.20.2.10 172.20.2.39
O17 - HKLM\System\CS1\Services\Tcpip\..\{F0C7B543-0FA3-45F1-A0FC-375B7DF676DC}: DhcpNameServer = 172.20.2.10 172.20.2.39
O17 - HKLM\System\CS2\Services\Tcpip\..\{1DA7B828-DBAF-48FD-8548-16A64B5B8D67}: NameServer = 8.8.8.8,8.8.4.4 =>.Google DNS Redirections
O17 - HKLM\System\CS2\Services\Tcpip\..\{1DA7B828-DBAF-48FD-8548-16A64B5B8D67}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS2\Services\Tcpip\..\{DD57E249-B0AB-4E5E-A6D7-24CBCA3CC5F5}: DhcpNameServer = 172.20.2.10 172.20.2.39
O17 - HKLM\System\CS2\Services\Tcpip\..\{F0C7B543-0FA3-45F1-A0FC-375B7DF676DC}: DhcpNameServer = 172.20.2.10 172.20.2.39
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.2.0.1 89.2.0.2
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: WSWSVCUchrome [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: appstoreService (appstoreService) . (.TODO: <Company name> - TODO: <File description>.) - C:\Program Files (x86)\iSafe\appstore\appstoreSvc.exe =>Trojan.Staser
O23 - Service: iSafeService (iSafeService) . (.Elex do Brasil Participações Ltda - iSafeSvc.) - C:\Program Files (x86)\iSafe\iSafeSvc.exe =>Trojan.Staser
O23 - Service: KMService (KMService) . (...) - C:\Windows\SysWOW64\srvany.exe
~ Services: 15 Legitimates Filtered in 00mn 05s



---\\ Tâches planifiées en automatique (O39)
[MD5.00000000000000000000000000000000] [APT] [Ad-Aware Antivirus Scheduled Scan] (...) -- C:\Program Files (x86)\AD-AWA~1\AdAwareLauncher.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [Kerish Doctor] (...) -- C:\Program Files (x86)\Kerish Doctor 2012\KerishDoctor.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{1EC5BA0D-E1A9-450E-BA80-786D9557742E}] (...) -- C:\Program Files (x86)\Photodex\ProShowGold\remove.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{40B17A90-27B4-49D6-8831-53A65554DAE4}] (...) -- C:\Users\komar\Downloads\wirelesshacker2012.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{57F227A4-706E-43A4-BE1C-8F269DF14263}] (...) -- C:\Program Files (x86)\Photodex\ProShow Producer\remove.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{6E1A26EC-E3F8-47E4-89FC-562E311A28C4}] (...) -- C:\Program Files (x86)\USBScan\unins000.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{C17707BC-716C-4F05-AF33-2C5B4077D1B0}] (...) -- E:\setup.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{C8EA6374-8984-492A-8961-4285B683C798}] (...) -- C:\Users\komar\Desktop\nettoyeurs\Ad-Aware_pro.exe (.not file.) [0]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002]
O39 - APT: - (..) -- C:\Windows\System32\Tasks\GlaryInitialize [324]
~ Scheduled Task: 27 Legitimates Filtered in 00mn 06s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: (iSafeKrnl) . (.Elex do Brasil Participações Ltda - iSafe Kernel Driver.) - C:\Program Files (x86)\iSafe\iSafeKrnl.sys
O41 - Driver: (iSafeKrnlKit) . (.Elex do Brasil Participações Ltda - iSafe Kernel Kit Driver.) - C:\Program Files (x86)\iSafe\iSafeKrnlKit.sys
O41 - Driver: (iSafeKrnlR3) . (.Elex do Brasil Participações Ltda - iSafe Kernel Ring3 Driver.) - C:\Program Files (x86)\iSafe\iSafeKrnlR3.sys
O41 - Driver: (iSafeNetFilter) . (.Elex do Brasil Participações Ltda - iSafeNetFilter SDK WFP Driver (WPP).) - C:\Program Files (x86)\iSafe\iSafeNetFilter.sys =>Trojan.Staser
~ Drivers: 84 Legitimates Filtered in 00mn 01s



---\\ Logiciels installés (O42)
O42 - Logiciel: AiroWizard 1.0 Beta - (...) [HKLM][64Bits] -- AiroWizard 1.0 Beta
O42 - Logiciel: Duuqu Update Helper - (.Duuqu Group.) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>PUP.Duuqu
O42 - Logiciel: PPÖúÊÖ PC°æ 1.0.5.0 - (.¹ãÖÝÌúÈËÍøÂç¿Æ¼¼ÓÐÏÞ¹«Ë¾.) [HKLM][64Bits] -- PPÖúÊÖ PC°æ
O42 - Logiciel: YAC App Store - (.Woodtale Technology Inc..) [HKLM][64Bits] -- Computer Software Market
O42 - Logiciel: Yet Another Cleaner! - (.ELEX DO BRASIL PARTICIPAÇÕES LTDA.) [HKLM][64Bits] -- iSafe =>Trojan.Staser
O42 - Logiciel: allday savings - (.allday savings.) [HKLM][64Bits] -- E061490F-E994-4CAC-95B5-87635F824BF7
O42 - Logiciel: ¿ìÓÃ×ÊÔ'¹ÜÀíÆ÷ °æ±¾ 2.010 - (...) [HKLM][64Bits] -- {0B41A8C4-1FB8-4B8B-B8FE-D643A617A7DB}_is1
~ Logic: 7 Legitimates Filtered in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\Drivers]
[HKCU\Software\System32]
[HKCU\Software\WSVCUPlugin]
[HKCU\Software\Win]
[HKCU\Software\YRTD]
[HKLM\Software\AllDaySavings ]
[HKLM\Software\Wow6432Node\Kerish Products]
[HKLM\Software\Wow6432Node\Server Info]
[HKLM\Software\Wow6432Node\Wow64Node]
[HKLM\Software\Wow6432Node\YRTD]
~ Key Software: 335 Legitimates Filtered in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 02/08/2014 - 18:22:04 - [] ----D C:\Program Files (x86)\E061490F-E994-4CAC-95B5-87635F824BF7
O43 - CFD: 02/08/2014 - 20:33:08 - [] ----D C:\Program Files (x86)\iSafe =>Trojan.Staser
O43 - CFD: 13/04/2013 - 18:59:48 - [] ----D C:\Program Files (x86)\Portable
O43 - CFD: 29/04/2013 - 16:53:09 - [] ----D C:\Program Files (x86)\PPÖúÊÖ
O43 - CFD: 15/04/2013 - 16:11:27 - [] ----D C:\ProgramData\Kerish Products
O43 - CFD: 01/08/2014 - 16:52:58 - [] ----D C:\ProgramData\ProductData
O43 - CFD: 03/10/2013 - 16:19:30 - [] -SH-D C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
O43 - CFD: 30/03/2013 - 22:11:21 - [] ----D C:\ProgramData\{5A85B23A-4B58-47D1-9B9C-DFBD7866099F}
O43 - CFD: 30/03/2013 - 21:29:09 - [] ----D C:\ProgramData\{BDDB56DE-AE4E-48A2-B856-FB60C8498453}
O43 - CFD: 08/04/2013 - 21:03:51 - [] -SH-D C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
O43 - CFD: 30/03/2013 - 22:11:25 - [] ----D C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
O43 - CFD: 29/01/2013 - 22:21:54 - [] ----D C:\Users\komar\AppData\Roaming\.oit
O43 - CFD: 13/12/2012 - 19:02:43 - [] --H-D C:\Users\komar\AppData\Roaming\36165C6D
O43 - CFD: 02/08/2014 - 20:19:19 - [] ----D C:\Users\komar\AppData\Roaming\iSafe =>Trojan.Staser
O43 - CFD: 29/07/2013 - 16:27:29 - [] ----D C:\Users\komar\AppData\Roaming\main
O43 - CFD: 06/02/2013 - 18:36:26 - [] --H-D C:\Users\komar\AppData\Roaming\RPPrivate
O43 - CFD: 01/08/2014 - 18:00:46 - [0] ----D C:\Users\komar\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A}
O43 - CFD: 05/04/2013 - 23:17:52 - [] ----D C:\Users\komar\AppData\Local\Ares
O43 - CFD: 29/01/2013 - 22:20:38 - [] ----D C:\Users\komar\AppData\Local\OfficeDrop
O43 - CFD: 05/02/2013 - 21:12:39 - [] ----D C:\Users\komar\AppData\Local\Pando_Temp
O43 - CFD: 19/07/2014 - 17:21:11 - [0] ----D C:\Users\komar\AppData\Local\pangu
O43 - CFD: 15/06/2013 - 19:56:28 - [] ----D C:\Users\komar\AppData\Local\PDF-TIFF-Tools.com
~ Program Folder: 273 Legitimates Filtered in 00mn 01s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.D9A1F3F9D8CB997B9302DFB39446A0E8] - 25/07/2014 - 11:13:13 ---A- . (.Elex do Brasil Participações Ltda - iSafe Kernel Boot Driver.) -- C:\Windows\System32\Drivers\iSafeKrnlBoot.sys [45248]
~ Files: 7 Legitimates Filtered in 00mn 02s



---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook [64Bits] - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
~ ShellExecuteHooks: Scanned in 00mn 00s



---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - Acrobat.exe - "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
O50 - IFEO:Image File Execution Options - acrodist.exe - "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
O50 - IFEO:Image File Execution Options - AcroRd32.exe - "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
O50 - IFEO:Image File Execution Options - adobe air application installer.exe - "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
O50 - IFEO:Image File Execution Options - fileencrypt.exe - "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
O50 - IFEO:Image File Execution Options - formscentralforacrobat.exe - "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
O50 - IFEO:Image File Execution Options - integrator.exe - "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
O50 - IFEO:Image File Execution Options - mcdetection.exe - "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
O50 - IFEO:Image File Execution Options - mcsettings.exe - "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
O50 - IFEO:Image File Execution Options - pdapp.exe - "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
O50 - IFEO:Image File Execution Options - switchboard.exe - "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
O50 - IFEO:Image File Execution Options - unins000.exe - "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
O50 - IFEO:Image File Execution Options - uninstall.exe - "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
~ IFEO: Scanned in 00mn 00s



---\\ Clé de registre Shell MountPoints2 (MPKS) (O51)
O51 - MPSK:{4d350a5f-ab5a-11e2-993e-002421ac7c59}\AutoRun\command. (...) -- F:\SETUP.exe (.not file.)
O51 - MPSK:{ab778e5b-ac23-11e2-96d9-002421ac7c59}\AutoRun\command. (...) -- F:\SETUP.exe (.not file.)
O51 - MPSK:{d11c77e7-e8e7-11e3-aa15-002421ac7c59}\AutoRun\command. (...) -- F:\MediaManager.exe (.not file.)
O51 - MPSK:{e975dc0e-f93e-11e2-a982-002421ac7c59}\AutoRun\command. (...) -- F:\AUTORUN.exe (.not file.)
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"VIDC.FICV"="ficvdec_x64.dll" . (...) -- C:\Windows\System32\ficvdec_x64.dll
~ TDSD: 4 Legitimates Filtered in 00mn 00s



---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
~ MWPS: 17 Legitimates Filtered in 00mn 00s



---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoChangeStartMenu"=0
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoClose"=0
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoLogOff"=0
O56 - MWPE:[HKCU\...\policies\Explorer] - "NoLowDiskSpaceChecks"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
~ MWPE Keys: 8 Legitimates Filtered in 00mn 00s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [530496]
O58 - SDL:17/12/2012 - 06:43:13 ---A- . (.GFI Software - gfiark64.sys.) -- C:\Windows\System32\Drivers\gfiark.sys [38096]
O58 - SDL:10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys [31232]
O58 - SDL:25/07/2014 - 11:13:13 ---A- . (.Elex do Brasil Participações Ltda - iSafe Kernel Boot Driver.) -- C:\Windows\System32\Drivers\iSafeKrnlBoot.sys [45248]
O58 - SDL:11/05/2014 - 12:12:07 ---A- . (.https://sourceforge.net/p/libusb-win32/wiki/Home/ - LibUSB-Win32 - Kernel Driver.) -- C:\Windows\System32\Drivers\libusb0.sys [52832]
O58 - SDL:14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys [24656]
O58 - SDL:13/12/2012 - 13:50:36 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\Drivers\usbaapl64.sys [54784]
~ Drivers: 70 Legitimates Filtered in 00mn 05s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 01/08/2014 - 20:59:50 ---A- . (.Elex do Brasil Participações Ltda.) -- C:\Users\komar\Desktop\yet_another_cleaner_sk.exe [12920728]
O61 - LFC: 02/08/2014 - 20:59:50 ---A- . (...) -- C:\Users\komar\Desktop\ZHPCleaner.exe [1185280] =>.Nicolas Coolman
O61 - LFC: 02/08/2014 - 20:59:50 ---A- . (...) -- C:\Users\komar\Desktop\adwcleaner_3.302.exe [1361309]
~ 77 Fichiers temporaires (Temporary files)
~ 72 Fichiers cookies (Cookies files)
~ Files: 6 Legitimates Filtered in 00mn 55s



---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s



---\\ Liste les services legacy du registre (LALS) (O64)
O64 - Services: CurCS - 25/07/2014 - C:\Program Files (x86)\iSafe\iSafeKrnl.sys (iSafeKrnl) .(.Elex do Brasil Participações Ltda - iSafe Kernel Driver.) - LEGACY_ISAFEKRNL
O64 - Services: CurCS - 25/07/2014 - C:\Program Files (x86)\iSafe\iSafeKrnlKit.sys (iSafeKrnlKit) .(.Elex do Brasil Participações Ltda - iSafe Kernel Kit Driver.) - LEGACY_ISAFEKRNLKIT
O64 - Services: CurCS - 25/07/2014 - C:\Program Files (x86)\iSafe\iSafeKrnlR3.sys (iSafeKrnlR3) .(.Elex do Brasil Participações Ltda - iSafe Kernel Ring3 Driver.) - LEGACY_ISAFEKRNLR3
O64 - Services: CurCS - 09/07/2014 - C:\Program Files (x86)\iSafe\iSafeNetFilter.sys (iSafeNetFilter) .(.Elex do Brasil Participações Ltda - iSafeNetFilter SDK WFP Driver (WPP).) - LEGACY_ISAFENETFILTER =>Trojan.Staser
~ Legacy: 87 Legitimates Filtered in 00mn 00s



---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: <Opera> <Opera>[HKLM\..\Shell\open\Command] (.Not Key.)
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.crossrider.bic", "1433f74fcf6690690aba7160c5130716"); =>PUP.CrossRider
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.helperbar.DockingPositionDown", false); =>PUP.HelperBar
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.helperbar.SmartbarDisabled", false); =>PUP.HelperBar
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.helperbar.SmartbarStateMinimaized", false); =>PUP.HelperBar
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.helperbar.Visibility", false); =>PUP.HelperBar
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.aflt", "tele1202"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.appId", "{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.cd", "2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0CyB0CyDzyyD0CyC0DtN0D0Tzu0SyBtBzytN1L2XzutBtFtBtFtCyEtFtCt[...] =>Adware.MyWebSearch
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.cr", "1044123687"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.dfltLng", ""); =>Adware.MyWebSearch
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.dfltSrch", true); =>Adware.MyWebSearch
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.dnsErr", true); =>Adware.MyWebSearch
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.excTlbr", false); =>Adware.MyWebSearch
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.hmpg", true); =>Adware.MyWebSearch
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.hmpgUrl", "http://start.mysearchdial.com/?f=1&a=tele1202&cd=2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0CyB0[...] =>Adware.MyWebSearch
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.id", "002421AC7C595C6D"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.instlDay", "16068"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.instlRef", ""); =>Adware.MyWebSearch
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.newTabUrl", "http://start.mysearchdial.com/?f=2&a=tele1202&cd=2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0Cy[...] =>Adware.MyWebSearch
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.prdct", "mysearchdial"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.prtnrId", "mysearchdial"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.srchPrvdr", "Mysearchdial"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.tlbrId", "base"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.tlbrSrchUrl", "http://start.mysearchdial.com/?f=3&a=tele1202&cd=2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0[...] =>Adware.MyWebSearch
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.vrsn", "1.8.21.0"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.vrsni", "1.8.21.0"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial_i.hmpg", true); =>Adware.MyWebSearch
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial_i.newTab", false); =>Adware.MyWebSearch
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial_i.smplGrp", "none"); =>Adware.MyWebSearch
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial_i.vrsnTs", "1.8.21.018:32:33"); =>Adware.MyWebSearch
O69 - SBI: SearchScopes [HKCU] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - https://www.google.com/?gws_rd=ssl
O69 - SBI: SearchScopes [HKCU] {5BACD312-DAD3-4414-B46A-C386D114BA9B} - (uTorrentBar_FR Customized Web Search) - http://search.conduit.com =>P2P.µTorrent
O69 - SBI: SearchScopes [HKCU] {6767E280-5FC0-40B6-9569-81E03B558EAC} - (Yahoo! Search) - https://fr.search.yahoo.com/
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - https://www.google.com/?gws_rd=ssl
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - https://www.bing.com/?toHttps=1&redig=69DA0EF8272048D9864AF4DB37211DE8
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - https://www.google.com/?gws_rd=ssl
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - https://www.bing.com/?toHttps=1&redig=69DA0EF8272048D9864AF4DB37211DE8
O69 - SBI: SearchScopes [HKUS\S-1-5-19] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - https://www.google.com/?gws_rd=ssl
O69 - SBI: SearchScopes [HKUS\S-1-5-20] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - https://www.google.com/?gws_rd=ssl
~ Keys: Scanned in 00mn 00s



---\\ Enumère les fichiers Crack & Keygen (CKF) (O82)
C:\crack\tt8_keygen.exe =>.Crack,Keygen
C:\Users\komar\Desktop\FR\keygen-FFF.exe =>.Crack,Keygen
C:\Users\komar\Desktop\nettoyeurs\Crack\lavalicense.dll cracked.exe =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Acrobat XI Pro 11.0.0 Multilanguage (Cracked dll ) [ChingLiu]\Adobe Acrobat XI\AcroPro.msi =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Acrobat XI Pro 11.0.0 Multilanguage (Cracked dll ) [ChingLiu]\Adobe Acrobat XI\Setup.exe =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Acrobat XI Pro 11.0.0 Multilanguage (Cracked dll ) [ChingLiu]\Adobe Acrobat XI\VC10RT_x64\vc_red.msi =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Acrobat XI Pro 11.0.0 Multilanguage (Cracked dll ) [ChingLiu]\Adobe Acrobat XI\WindowsInstaller-KB893803-v2-x86.exe =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeAPE3.3-mul\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeAPE3.3_x64-mul\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeBridge5-mul\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeBridge5-mul\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeBridge5-mul\customaction.data =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeBridge5-mul-x64\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeBridge5-mul-x64\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeBridge5-mul-x64\customaction.data =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeCameraRaw7.0All\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeCameraRaw7.0All-x64\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeCameraRawProfile7.0All\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeCMaps4-mul\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeCMaps4_x64-mul\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeColorCommonSetCMYK4_0-mul\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeColorCommonSetRGB4_0-mul\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeColorEU_ExtraSettings4_0-mul\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeColorEU_Recommended4_0-mul\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeColorJA_ExtraSettings4_0-mul\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeColorJA_Recommended4_0-mul\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeColorNA_ExtraSettings4_0-mul\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeColorNA_Recommended4_0-mul\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeColorPhotoshop4_0-mul\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeCSXSExtensions3-mul\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeCSXSExtensions3-mul\customaction.data =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeCSXSInfrastructure3-mul\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeCSXSInfrastructure3-mul\customaction.data =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeDynamicLinkMediaServer1All\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeDynamiclinkSupport6All\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeExtendScriptToolkit3.8.0-mul\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeExtendScriptToolkit3.8.0-mul\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeExtensionManager6.0All\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeExtensionManager6.0All\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeFontsRecommended-mul\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeFontsRecommended_x64-mul\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeFontsRequired-mul\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeFontsRequired_x64-mul\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeHunspellPlugin_4_0_All\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeHunspellPlugin_4_0_All_x64\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeLinguistics_4_0_All\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeLinguistics_4_0_All\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeLinguistics_4_0_All_x64\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeMiniBridge2-mul\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePDFL10.9-mul\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePDFL10.9_x64-mul\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePDFSettings11-ja_JP\AdobePDFSettings11-ja_JP.msi =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePDFSettings11-mul\AdobePDFSettings11-mul.msi =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-Core\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-Core\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-Core_x64\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-Core_x64\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-cs_CZ\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-cs_CZ_x64\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-Driver\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-Driver\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-en_AE\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-en_AE_x64\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-en_IL\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-en_IL_x64\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-fr_MA\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-fr_MA_x64\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-hu_HU\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-hu_HU_x64\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-pl_PL\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-pl_PL_x64\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-ru_RU\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-ru_RU_x64\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-Support\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-tr_TR\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-tr_TR_x64\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-uk_UA\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-uk_UA_x64\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeSuiteSharedConfiguration3-mul\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeTypeSupport11-mul\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeTypeSupport11_x64-mul\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeVideoProfilesCS4_0-mul\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeWinSoftLinguisticsPluginAll\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeWinSoftLinguisticsPluginAll_x64\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeXMPPanelsAll\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\Microsoft VC 2005 Redist (x64)\vcredist_x64.EXE =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\Microsoft VC 2005 Redist (x86)\vcredist_x86.exe =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\Microsoft VC 2008 Redist (x64)\vcredist_x64.exe =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\Microsoft VC 2008 Redist (x86)\vcredist_x86.exe =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\Microsoft VC 2010 Redist (x64)\vcredist_x64.exe =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\Microsoft VC 2010 Redist (x86)\vcredist_x86.exe =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\Microsoft_VC80_CRT_x86\Microsoft_VC80_CRT_x86.msi =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\Microsoft_VC90_CRT_x86\Microsoft_VC90_CRT_x86.msi =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\SwitchBoard2.0All\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\SwitchBoard2.0All\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\Set-up.exe =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\AdobePatchInstaller.exe =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-Core-090812131523\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-Core-090812131523\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-Core_x64-090812132024\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-Core_x64-090812132024\Assets2_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-cs_CZ-090812124825\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-cs_CZ_x64-090812124956\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-da_DK-090812121759\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-da_DK_x64-090812121931\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-de_DE-090812121155\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-de_DE_x64-090812121326\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-en_AE-090812130636\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-en_AE_x64-090812130806\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-en_GB-090812115650\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-en_GB_x64-090812115821\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-en_IL-090812130936\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-en_IL_x64-090812131108\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-es_ES-090812123614\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-es_ES_x64-090812123746\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-es_MX-090812123312\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-es_MX_x64-090812123443\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-fi_FI-090812124218\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-fi_FI_x64-090812124351\Assets1_1.zip =>.Crack,Keygen
C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-fr_CA-09
0
Réponse 8 / 18
komarr Messages postés 645 Date d'inscription dimanche 6 juillet 2008 Statut Membre Dernière intervention 5 octobre 2019 85
2 août 2014 à 21:18
voici le lien du rapport

https://www.cjoint.com/?DHcvrqqKzjA
0
Réponse 9 / 18
Utilisateur anonyme
2 août 2014 à 21:29
Re

Utilisation de l'outil ZHPFix :

* Copie tout le texte présent dans l'encadré ci-dessous (tu le sélectionnes avec ta souris / Clique droit dessus et choisis "copier" ou fait Ctrl+C )

Script ZHPFix
[MD5.FB0C6F8A040626D689236AA913D6E8C9] - (.Elex do Brasil Participações Ltda - YACTray.) -- C:\Program Files (x86)\iSafe\iSafeTray.exe [1018696] [PID.3376]
[MD5.38FF5A50F85B7CFE5F711E1361A1D4C7] - (.TODO: <Company name> - TODO: <File description>.) -- C:\Program Files (x86)\iSafe\appstore\appstoreSvc.exe [12464] [PID.1080]
[MD5.11F6F9216D8F77EAC196B07D66E819EA] - (.Elex do Brasil Participações Ltda - iSafeSvc.) -- C:\Program Files (x86)\iSafe\iSafeSvc.exe [118048] [PID.1204]
[MD5.A03A95B389479B2ADE3A288FA2EA11D1] - (.Elex do Brasil Participações Ltda - iSafeSvc2.) -- C:\Program Files (x86)\iSafe\iSafeSvc2.exe [118048] [PID.1236]
[MD5.2F2372B5FF8C513C6D39E298CF749E4C] - (...) -- C:\Program Files (x86)\iSafe\appstore\ipcdl.exe [2229592] [PID.3028]
O4 - GS\Desktop [Public]: YAC App Store.lnk . (.Woodtale Technology Inc - app store.) -- C:\Program Files (x86)\iSafe\appstore\isafeAppStore.exe
O4 - GS\Desktop [Public]: YAC.lnk . (.Elex do Brasil Participações Ltda - iStart.) -- C:\Program Files (x86)\iSafe\iStart.exe
O23 - Service: appstoreService (appstoreService) . (.TODO: <Company name> - TODO: <File description>.) - C:\Program Files (x86)\iSafe\appstore\appstoreSvc.exe
O23 - Service: iSafeService (iSafeService) . (.Elex do Brasil Participações Ltda - iSafeSvc.) - C:\Program Files (x86)\iSafe\iSafeSvc.exe
[MD5.00000000000000000000000000000000] [APT] [{6E1A26EC-E3F8-47E4-89FC-562E311A28C4}] (...) -- C:\Program Files (x86)\USBScan\unins000.exe (.not file.) [0]
O41 - Driver: (iSafeKrnl) . (.Elex do Brasil Participações Ltda - iSafe Kernel Driver.) - C:\Program Files (x86)\iSafe\iSafeKrnl.sys
O41 - Driver: (iSafeKrnlKit) . (.Elex do Brasil Participações Ltda - iSafe Kernel Kit Driver.) - C:\Program Files (x86)\iSafe\iSafeKrnlKit.sys
O41 - Driver: (iSafeKrnlR3) . (.Elex do Brasil Participações Ltda - iSafe Kernel Ring3 Driver.) - C:\Program Files (x86)\iSafe\iSafeKrnlR3.sys
O41 - Driver: (iSafeNetFilter) . (.Elex do Brasil Participações Ltda - iSafeNetFilter SDK WFP Driver (WPP).) - C:\Program Files (x86)\iSafe\iSafeNetFilter.sys
O42 - Logiciel: Duuqu Update Helper - (.Duuqu Group.) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Yet Another Cleaner! - (.ELEX DO BRASIL PARTICIPAÇÕES LTDA.) [HKLM][64Bits] -- iSafe
O43 - CFD: 02/08/2014 - 20:33:08 - [] ----D C:\Program Files (x86)\iSafe
O43 - CFD: 03/10/2013 - 16:19:30 - [] -SH-D C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
O43 - CFD: 02/08/2014 - 20:19:19 - [] ----D C:\Users\komar\AppData\Roaming\iSafe
O64 - Services: CurCS - 25/07/2014 - C:\Program Files (x86)\iSafe\iSafeKrnl.sys (iSafeKrnl) .(.Elex do Brasil Participações Ltda - iSafe Kernel Driver.) - LEGACY_ISAFEKRNL
O64 - Services: CurCS - 25/07/2014 - C:\Program Files (x86)\iSafe\iSafeKrnlKit.sys (iSafeKrnlKit) .(.Elex do Brasil Participações Ltda - iSafe Kernel Kit Driver.) - LEGACY_ISAFEKRNLKIT
O64 - Services: CurCS - 25/07/2014 - C:\Program Files (x86)\iSafe\iSafeKrnlR3.sys (iSafeKrnlR3) .(.Elex do Brasil Participações Ltda - iSafe Kernel Ring3 Driver.) - LEGACY_ISAFEKRNLR3
O64 - Services: CurCS - 09/07/2014 - C:\Program Files (x86)\iSafe\iSafeNetFilter.sys (iSafeNetFilter) .(.Elex do Brasil Participações Ltda - iSafeNetFilter SDK WFP Driver (WPP).) - LEGACY_ISAFENETFILTER
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.crossrider.bic", "1433f74fcf6690690aba7160c5130716");
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.helperbar.DockingPositionDown", false);
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.helperbar.SmartbarDisabled", false);
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.helperbar.SmartbarStateMinimaized", false);
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.helperbar.Visibility", false);
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.aflt", "tele1202");
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.appId", "{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}");
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.cd", "2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0CyB0CyDzyyD0CyC0DtN0D0Tzu0SyBtBzytN1L2XzutBtFtBtFtCyEtFtCt[...]
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.cr", "1044123687");
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.dfltLng", "");
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.dfltSrch", true);
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.dnsErr", true);
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.excTlbr", false);
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.hmpg", true);
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.hmpgUrl", "http://start.mysearchdial.com/?f=1&a=tele1202&cd=2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0CyB0[...]
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.id", "002421AC7C595C6D");
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.instlDay", "16068");
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.instlRef", "");
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.newTabUrl", "http://start.mysearchdial.com/?f=2&a=tele1202&cd=2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0Cy[...]
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.prdct", "mysearchdial");
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.prtnrId", "mysearchdial");
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.srchPrvdr", "Mysearchdial");
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.tlbrId", "base");
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.tlbrSrchUrl", "http://start.mysearchdial.com/?f=3&a=tele1202&cd=2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0[...]
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.vrsn", "1.8.21.0");
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.vrsni", "1.8.21.0");
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial_i.hmpg", true);
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial_i.newTab", false);
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial_i.smplGrp", "none");
O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial_i.vrsnTs", "1.8.21.018:32:33");
O90 - PUC: "F1437DE4249132642AC7C9F4838371F2" . (.IObit Apps Toolbar v7.0.) -- C:\Windows\Installer\{4ED7341F-1942-4623-A27C-9C4F3838172F}\ARPPRODUCTICON.exe
[MD5.33BB2D31C914EC33595F4C271A49FAD4] [WIS][30/07/2013] (.QwertyBox Team - FrameFox Extensions 1.0.5.0 Setup.) -- C:\Windows\Installer\1a916e.msi [397312]
[MD5.C13388A1D0EB8A495C7014805AE236EF] [WIS][27/07/2013] (.Duuqu Group - Duuqu Update Helper.) -- C:\Windows\Installer\c4c0f6.msi [45056]
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\IminentSetup_20121115_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\IminentSetup_20121115_RASMANCS
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SmartbarExeInstaller_RASAPI32
HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SmartbarExeInstaller_RASMANCS
SR - | Auto 18/07/2014 12464 | (appstoreService) . (.TODO: <Company name>.) - C:\Program Files (x86)\iSafe\appstore\appstoreSvc.exe
SR - | Auto 25/07/2014 118048 | (iSafeService) . (.Elex do Brasil Participações Ltda.) - C:\Program Files (x86)\iSafe\iSafeSvc.exe
[HKLM\SYSTEM\CurrentControlSet\Services\appstoreService]
[HKLM\SYSTEM\CurrentControlSet\Services\iSafeService]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\iSafe]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1CAE30F47D14B41B5FC8FA53658044]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\30C16B15B255BD349A1157B8A83E2AF9]
[HKCU\Software\IObit Apps]
[HKCU\Software\AppDataLow\Software\IObit Apps]
[HKLM\Software\Wow6432Node\IObit Apps]
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F1057DD419AED0B468AD8888429E139A]
C:\Program Files (x86)\iSafe
C:\Users\komar\AppData\Roaming\iSafe
C:\Program Files (x86)\iSafe\iSafeTray.exe
C:\Program Files (x86)\iSafe\appstore\appstoreSvc.exe
C:\Program Files (x86)\iSafe\iSafeSvc.exe
C:\Program Files (x86)\iSafe\iSafeSvc2.exe
C:\Program Files (x86)\iSafe\appstore\ipcdl.exe
C:\Windows\Installer\1a916e.msi
C:\Windows\Installer\c4c0f6.msi
[MD5.00000000000000000000000000000000] [APT] [Ad-Aware Antivirus Scheduled Scan] (...) -- C:\Program Files (x86)\AD-AWA~1\AdAwareLauncher.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [Kerish Doctor] (...) -- C:\Program Files (x86)\Kerish Doctor 2012\KerishDoctor.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{40B17A90-27B4-49D6-8831-53A65554DAE4}] (...) -- C:\Users\komar\Downloads\wirelesshacker2012.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{57F227A4-706E-43A4-BE1C-8F269DF14263}] (...) -- C:\Program Files (x86)\Photodex\ProShow Producer\remove.exe (.not file.) [0]
[MD5.00000000000000000000000000000000] [APT] [{C8EA6374-8984-492A-8961-4285B683C798}] (...) -- C:\Users\komar\Desktop\nettoyeurs\Ad-Aware_pro.exe (.not file.) [0]


ShortcutFix
EmptyPrefetch
FirewallRAZ
Emptytemp
EmptyCLSID

--------------------------------------------------------------------------------------------
Lance ZHPFix à partir du raccourci sur ton Bureau (si tu es sous Windows Vista ou Windows 7 ou 8, fais le par un clic-droit --> Exécuter en tant qu'administrateur)

Cliquer sur le bouton Importer. Le contenu du Presse-papier vient se coller dans la zone de saisie de ZHPFix

NB (W8) : Dans certains cas le script se colle automatiquement dans la zone de script et ne nécessite pas de cliquer sur le bouton "IMPORTER".

* Clique sur le bouton GO pour lancer le nettoyage.

-> laisse travailler l'outil et ne touche à rien ...
-> S'il t'est demandé de redémarrer le PC pour finir le nettoyage, fais le !


Une fois terminé, un nouveau rapport s'affiche : poste le contenu de ce dernier dans ta prochaine réponse ...
Ce rapport est copié sur le bureau

( ce rapport est en outre sauvegardé dans ce dossier :
- Pour XP : C:\Documents and Settings\username\Local Settings\Application Data\ZHP
- Depuis Vista : C:\Users\username\AppData\Roaming\ZHP\ZHPFix [R1].txt)



@+
0
Réponse 10 / 18
komarr Messages postés 645 Date d'inscription dimanche 6 juillet 2008 Statut Membre Dernière intervention 5 octobre 2019 85
2 août 2014 à 22:06
je n'arrive pas a continuer l'analyse après avoir cliquer sur importer ça me dit si je suis sur de vouloir effectuer le nettoyage et ensuite au bout de quelques minutes l'avancement bloque
0
Réponse 11 / 18
Utilisateur anonyme
2 août 2014 à 22:07
fait pour le mieux

@+
0
Réponse 12 / 18
komarr Messages postés 645 Date d'inscription dimanche 6 juillet 2008 Statut Membre Dernière intervention 5 octobre 2019 85
2 août 2014 à 22:11
comment faire
0
Réponse 13 / 18
Utilisateur anonyme
2 août 2014 à 22:13
Re

Prend le temps de le laisser faire.
Merci
0
komarr Messages postés 645 Date d'inscription dimanche 6 juillet 2008 Statut Membre Dernière intervention 5 octobre 2019 85
2 août 2014 à 23:47
après deux heures l'avancement est toujours au meme endroit
0
Réponse 14 / 18
komarr Messages postés 645 Date d'inscription dimanche 6 juillet 2008 Statut Membre Dernière intervention 5 octobre 2019 85
2 août 2014 à 22:24
très bien je laisse tourner
0
Réponse 15 / 18
Utilisateur anonyme
2 août 2014 à 23:55
Re

Essaie de procéder en mode sans echec

à+
0
Réponse 16 / 18
komarr Messages postés 645 Date d'inscription dimanche 6 juillet 2008 Statut Membre Dernière intervention 5 octobre 2019 85
3 août 2014 à 11:15
rien n'y fait ça fonctionne toujours pas
0
Réponse 17 / 18
Utilisateur anonyme
3 août 2014 à 11:22
Bonjour

Tu as encore des publicités?
0
komarr Messages postés 645 Date d'inscription dimanche 6 juillet 2008 Statut Membre Dernière intervention 5 octobre 2019 85
3 août 2014 à 12:08
Oui toujours
0
Réponse 18 / 18
Utilisateur anonyme
3 août 2014 à 12:30
Re

Installe adblock et ensuite tu désinstalles ZHPDiag et tu le télécharges à nouveau et ensuite tu reprends avec ZHPFix

@+

0

Discussions similaires

apparation intempestives de pub type site de rencontre et photo dans le même ton
Crokino -
Crokino -

6 réponses
Candy crush
eric2850 -
MPMP10 -

6 réponses
Publicité s'ouvre toute seule ! ?
RRD91 -
crisgoss -

51 réponses
Combien de temps dure les bandes annonces ?
Utilisateur anonyme -
phobos -

3 réponses
Pub intempestive sur smartphone Android.
Camitte -
Yoyo -

31 réponses