Pubs

komarr Messages postés 721 Date d'inscription   Statut Membre Dernière intervention   -  
 Utilisateur anonyme -
Bonjour,

Depuis deux jours je n'arrete pas d'avoir des publicités intempestives sur firefox qui ralentissent ma connexion internet. Je viens vers vous pour demander de l'aide.

Merci d'avance

18 réponses

  1. Utilisateur anonyme
     
    Bonsoir

    Télécharge AdwCleaner ( d'Xplode ) sur ton bureau.
    Lance le, clique sur [Scanner] puis patiente le temps du scan.
    Une fois le scan terminé clique sur le bouton [Nettoyer]
    Patiente durant le nettoyage. Lis le message qui apparaît, puis clique sur Ok . Le PC va être redémarré automatiquement et le rapport s'ouvrira à la fin du redémarrage.
    Poste le rapport

    Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt

    A lire :
    Les programmes potentiellement indésirables :
    https://www.malekal.com/adwares-pup-protection/

    Les toolbars, c'est pas obligatoire ( par Malekal ) :https://forum.malekal.com/viewtopic.php?t=6173&start=

    @+
    0
  2. komarr Messages postés 721 Date d'inscription   Statut Membre Dernière intervention   86
     
    merci pour la réponse rapide, je fais ça de suite et je post le rapport
    0
  3. komarr Messages postés 721 Date d'inscription   Statut Membre Dernière intervention   86
     
    voici le rapport

    # AdwCleaner v3.302 - Rapport créé le 02/08/2014 à 20:10:18
    # Mis à jour le 30/07/2014 par Xplode
    # Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
    # Nom d'utilisateur : komar - KOMAR-PC
    # Exécuté depuis : C:\Users\komar\Desktop\adwcleaner_3.302.exe
    # Option : Nettoyer

    ***** [ Services ] *****

    ***** [ Fichiers / Dossiers ] *****

    [!] Dossier Supprimé : C:\Program Files (x86)\iSafe
    Dossier Supprimé : C:\Users\komar\AppData\Roaming\iSafe
    [!] Dossier Supprimé : C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
    Dossier Supprimé : C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\Extensions\staged\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
    [!] Dossier Supprimé : C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\Extensions\firefoxdav@icloud.com

    ***** [ Tâches planifiées ] *****

    ***** [ Raccourcis ] *****

    ***** [ Registre ] *****

    Clé Supprimée : HKLM\Software\iSafe
    Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\iSafe

    ***** [ Navigateurs ] *****

    -\\ Internet Explorer v11.0.9600.17207

    -\\ Mozilla Firefox v31.0 (x86 fr)

    [ Fichier : C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js ]

    Ligne Supprimée : user_pref("extensions.a44e4876d5886435183fea8e44f892d6c2ac4a44858c85e3636com61855.61855.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssfiles.com%22%5D[...]
    Ligne Supprimée : user_pref("extensions.crossrider.bic", "1433f74fcf6690690aba7160c5130716");
    Ligne Supprimée : user_pref("extensions.helperbar.DockingPositionDown", false);
    Ligne Supprimée : user_pref("extensions.helperbar.SmartbarDisabled", false);
    Ligne Supprimée : user_pref("extensions.helperbar.SmartbarStateMinimaized", false);
    Ligne Supprimée : user_pref("extensions.helperbar.Visibility", false);
    Ligne Supprimée : user_pref("extensions.irmysearch.aflt", "tele1202");
    Ligne Supprimée : user_pref("extensions.irmysearch.cd", "2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0CyB0CyDzyyD0CyC0DtN0D0Tzu0SyBtBzytN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R");
    Ligne Supprimée : user_pref("extensions.irmysearch.cr", "1044123687");
    Ligne Supprimée : user_pref("extensions.irmysearch.instlRef", "");
    Ligne Supprimée : user_pref("extensions.mysearchdial.aflt", "tele1202");
    Ligne Supprimée : user_pref("extensions.mysearchdial.appId", "{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}");
    Ligne Supprimée : user_pref("extensions.mysearchdial.cd", "2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0CyB0CyDzyyD0CyC0DtN0D0Tzu0SyBtBzytN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R");
    Ligne Supprimée : user_pref("extensions.mysearchdial.cr", "1044123687");
    Ligne Supprimée : user_pref("extensions.mysearchdial.dfltLng", "");
    Ligne Supprimée : user_pref("extensions.mysearchdial.dfltSrch", true);
    Ligne Supprimée : user_pref("extensions.mysearchdial.dnsErr", true);
    Ligne Supprimée : user_pref("extensions.mysearchdial.excTlbr", false);
    Ligne Supprimée : user_pref("extensions.mysearchdial.hmpg", true);
    Ligne Supprimée : user_pref("extensions.mysearchdial.hmpgUrl", "hxxp://start.mysearchdial.com/?f=1&a=tele1202&cd=2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0CyB0CyDzyyD0CyC0DtN0D0Tzu0SyBtBzytN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCy[...]
    Ligne Supprimée : user_pref("extensions.mysearchdial.id", "002421AC7C595C6D");
    Ligne Supprimée : user_pref("extensions.mysearchdial.instlDay", "16068");
    Ligne Supprimée : user_pref("extensions.mysearchdial.instlRef", "");
    Ligne Supprimée : user_pref("extensions.mysearchdial.newTabUrl", "hxxp://start.mysearchdial.com/?f=2&a=tele1202&cd=2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0CyB0CyDzyyD0CyC0DtN0D0Tzu0SyBtBzytN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1Czut[...]
    Ligne Supprimée : user_pref("extensions.mysearchdial.prdct", "mysearchdial");
    Ligne Supprimée : user_pref("extensions.mysearchdial.prtnrId", "mysearchdial");
    Ligne Supprimée : user_pref("extensions.mysearchdial.srchPrvdr", "Mysearchdial");
    Ligne Supprimée : user_pref("extensions.mysearchdial.tlbrId", "base");
    Ligne Supprimée : user_pref("extensions.mysearchdial.tlbrSrchUrl", "hxxp://start.mysearchdial.com/?f=3&a=tele1202&cd=2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0CyB0CyDzyyD0CyC0DtN0D0Tzu0SyBtBzytN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1Cz[...]
    Ligne Supprimée : user_pref("extensions.mysearchdial.vrsn", "1.8.21.0");
    Ligne Supprimée : user_pref("extensions.mysearchdial.vrsni", "1.8.21.0");
    Ligne Supprimée : user_pref("extensions.mysearchdial_i.hmpg", true);
    Ligne Supprimée : user_pref("extensions.mysearchdial_i.newTab", false);
    Ligne Supprimée : user_pref("extensions.mysearchdial_i.smplGrp", "none");
    Ligne Supprimée : user_pref("extensions.mysearchdial_i.vrsnTs", "1.8.21.018:32:33");
    Ligne Supprimée : user_pref("iminent.LayoutId", "1");
    Ligne Supprimée : user_pref("iminent.ShowThankyouPixel", "0");
    Ligne Supprimée : user_pref("iminent.adapters", "{\"youtube\":{\"CountryCode\":\"FR\",\"NoAds\":false,\"Status\":1,\"expireTime\":\"13897096814271814400\"},\"mediafire\":{\"CountryCode\":\"FR\",\"NoAds\":false,\"Status[...]
    Ligne Supprimée : user_pref("iminent.newtabredirect", "false");
    Ligne Supprimée : user_pref("iminent.registerToolbarEvent101", "1389549063166");
    Ligne Supprimée : user_pref("iminent.registerToolbarEvent102", "1389649792407");
    Ligne Supprimée : user_pref("iminent.registerToolbarEvent105", "1386177956120");
    Ligne Supprimée : user_pref("iminent.registerToolbarEvent136", "1388246644638");
    Ligne Supprimée : user_pref("iminent.registerToolbarEvent140", "1389646757156");
    Ligne Supprimée : user_pref("iminent.searchindex", "1");
    Ligne Supprimée : user_pref("iminent.version", "8.1.2.3");
    Ligne Supprimée : user_pref("iminent.versioning", "{\"CurrentVersion\":\"7.41.2.1\",\"InstallEventCTime\":1381522374569,\"InstallEvent\":\"True\",\"UpdateEventCTime\":1389709647546}");

    -\\ Google Chrome v

    [ Fichier : C:\Users\komar\AppData\Local\Google\Chrome\User Data\Default\preferences ]

    *************************

    AdwCleaner[R0].txt - [11785 octets] - [02/08/2014 19:54:58]
    AdwCleaner[R1].txt - [6323 octets] - [02/08/2014 20:07:50]
    AdwCleaner[S0].txt - [11825 octets] - [02/08/2014 19:59:53]
    AdwCleaner[S1].txt - [6262 octets] - [02/08/2014 20:10:18]

    ########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [6322 octets] ##########
    0
  4. Utilisateur anonyme
     
    Re

    Télécharge Malwaresbytes anti malware ici
    https://www.commentcamarche.net/telecharger/securite/14361-malwarebytes-anti-malware/

    --->> Installe le (choisis bien français ); ne modifie pas les paramètres d'installe
    --->> Décoche la case Activer l'essai gratuit de Malwarebytes Anti-Malware Premium à la fin de l'installation
    --->> /!\ Utilisateurs de Vista/7/8/8.1 : faire un clic droit sur le raccourci de MalwareBytes' Anti-Malware et choisir Exécuter en tant qu'administrateur
    --->> Clique sur Mettre à jour dans le Tableau de bord afin de mettre à jour la base de données.
    --->> Dans l'onglet Examen, sélectionnez Examen Menaces puis clique sur Examiner maintenant.
    --->> Une fois le scan terminé, clique sur Tout mettre en quarantaine puis sur Appliquez les actions

    --->> (Si un message demande de redémarrer le PC pour terminer la suppression, accepte)

    --->> Le rapport est disponible dans Historique > Journaux de l'application. (Choisis bien le dernier en date
    Tu sélectionnes le fichier et tu demandes l'affichage
    En bas à gauche un bouton exporter ; tu cliques dessus et tu choisis fichier texte et tu choisis ensuite ou l'enregistrer pour ensuite pouvoir le poster dans ta prochaine réponse

    Merci

    @+
    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. komarr Messages postés 721 Date d'inscription   Statut Membre Dernière intervention   86
     
    voila le rapport

    Malwarebytes Anti-Malware
    www.malwarebytes.org

    Date de l'examen: 02/08/2014
    Heure de l'examen: 20:30:38
    Fichier journal: mbam.txt
    Administrateur: Oui

    Version: 2.00.2.1012
    Base de données Malveillants: v2014.08.02.04
    Base de données Rootkits: v2014.08.01.01
    Licence: Premium
    Protection contre les malveillants: Désactivé(e)
    Protection contre les sites Web malveillants: Désactivé(e)
    Self-protection: Désactivé(e)

    Système d'exploitation: Windows 7 Service Pack 1
    Processeur: x64
    Système de fichiers: NTFS
    Utilisateur: komar

    Type d'examen: Examen "Menaces"
    Résultat: Terminé
    Objets analysés: 338384
    Temps écoulé: 14 min, 15 sec

    Mémoire: Activé(e)
    Démarrage: Activé(e)
    Système de fichiers: Activé(e)
    Archives: Activé(e)
    Rootkits: Désactivé(e)
    Heuristics: Activé(e)
    PUP: Avertir
    PUM: Activé(e)

    Processus: 0
    (No malicious items detected)

    Modules: 0
    (No malicious items detected)

    Clés du Registre: 1
    PUP.Optional.SuperFish.A, HKU\S-1-5-21-846553455-1940334665-2938013052-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\DOMSTORAGE\superfish.com, Mis en quarantaine, [6a62ead73447dd592c73696e7d851de3],

    Valeurs du Registre: 0
    (No malicious items detected)

    Données du Registre: 0
    (No malicious items detected)

    Dossiers: 0
    (No malicious items detected)

    Fichiers: 26
    PUP.Optional.CrossRider.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.crossrider.bic", "1433f74fcf6690690aba7160c5130716");), Échec de la suppression,[2f9debd6ed8e37ffef5418d6d52f768a]
    PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.aflt", "tele1202");), Échec de la suppression,[329a6e53bfbc2214eb5f7d71fb09f808]
    PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.appId", "{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}");), Échec de la suppression,[9438546dd0abf83e133745a9e81c54ac]
    PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.cd", "2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0CyB0CyDzyyD0CyC0DtN0D0Tzu0SyBtBzytN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R");), Échec de la suppression,[6a62d3eec4b78ea8d872549a33d12bd5]
    PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.cr", "1044123687");), Échec de la suppression,[953714ad5d1e63d3da70af3f42c26799]
    PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.dfltLng", "");), Échec de la suppression,[4983843d7dfeb185460428c6d82cad53]
    PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.dfltSrch", true);), Échec de la suppression,[9a32c10093e859dd7ad0ad41b45060a0]
    PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.dnsErr", true);), Échec de la suppression,[5676edd42b5086b03614806ee71d8f71]
    PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.excTlbr", false);), Échec de la suppression,[12ba6b563447d85e7ad0f0fe33d1817f]
    PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.hmpg", true);), Échec de la suppression,[735905bc3c3f211529213bb342c2f709]
    PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.hmpgUrl", "http://start.mysearchdial.com/?f=1&a=tele1202&cd=2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0CyB0CyDzyyD0CyC0DtN0D0Tzu0SyBtBzytN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=1044123687&ir=");), Échec de la suppression,[963611b0c9b2dc5a470322cc4bb99e62]
    PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.id", "002421AC7C595C6D");), Échec de la suppression,[e3e913ae4a31d75f53f7fef028dc41bf]
    PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.instlDay", "16068");), Échec de la suppression,[9636269b2754a294be8cc529c14334cc]
    PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.instlRef", "");), Échec de la suppression,[5f6da12081fa0e2860eab23ca55fa15f]
    PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.newTabUrl", "http://start.mysearchdial.com/?f=2&a=tele1202&cd=2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0CyB0CyDzyyD0CyC0DtN0D0Tzu0SyBtBzytN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=1044123687&ir=");), Échec de la suppression,[bd0f853c8eed78be1d2d915d4fb5c040]
    PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.prdct", "mysearchdial");), Échec de la suppression,[26a63f82c5b680b6004aeb0351b34ab6]
    PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.prtnrId", "mysearchdial");), Échec de la suppression,[7e4e635e53287cbaab9f876747bd43bd]
    PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.srchPrvdr", "Mysearchdial");), Échec de la suppression,[05c77849700bce683515bc328b79cf31]
    PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.tlbrId", "base");), Échec de la suppression,[ffcd16ab6a11a2949eac7e706e96a858]
    PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.tlbrSrchUrl", "http://start.mysearchdial.com/?f=3&a=tele1202&cd=2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0CyB0CyDzyyD0CyC0DtN0D0Tzu0SyBtBzytN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=1044123687&ir=&q=");), Échec de la suppression,[bc105968eb90e155e56507e770946f91]
    PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.vrsn", "1.8.21.0");), Échec de la suppression,[b5175d644d2e80b6c882faf4897b3cc4]
    PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial.vrsni", "1.8.21.0");), Échec de la suppression,[48843f829ae1db5ba3a7af3fad5732ce]
    PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial_i.hmpg", true);), Échec de la suppression,[dfed477adba040f6e268816d18ec9a66]
    PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial_i.newTab", false);), Échec de la suppression,[e6e6ab16443716209dad7e70f4109d63]
    PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial_i.smplGrp", "none");), Échec de la suppression,[3a92d9e8e299e84e06440ee05fa5c739]
    PUP.Optional.MySearchDial.A, C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js, Bon: (), Mauvais: (user_pref("extensions.mysearchdial_i.vrsnTs", "1.8.21.018:32:33");), Échec de la suppression,[6b6118a986f5d95d282237b747bd9c64]

    Secteurs physiques: 0
    (No malicious items detected)

    (end)
    0
  7. Utilisateur anonyme
     
    Re

    Fait ceci stp

    Ouvre ce lien et télécharge ZHPDiag de Nicolas Coolman :

    https://nicolascoolman.eu

    Ou

    https://www.commentcamarche.net/telecharger/utilitaires/24803-zhpdiag/

    Une fois le téléchargement achevé,

    Double-clique sur l'icône pour lancer le programme. Sous Vista ; Seven ou Windows 8 clic droit « exécuter en tant que administrateur »

    Dans la fenêtre ZHPDiag qui vient de s'ouvrir, clique sur "Configurer"

    Clique sur la loupe en bas à gauche avec le signe plus pour lancer l'analyse.

    Laisse l'outil travailler, il peut être assez long.

    Un rapport s'ouvre. Ce rapport se trouve également sur ton bureau

    Pour transmettre le rapport clique sur ce lien:
    http://pjjoint.malekal.com/

    Si problème utilise un des suivants

    https://forums-fec.be/upload
    https://www.cjoint.com/

    Regarde sur le bureau

    Sélectionne le fichier ZHPDiag.txt.

    Clique sur "Cliquez ici pour déposer le fichier".

    Un lien de cette forme :

    http://www.cijoint.com/cjlink.php?file=cj200905/cijSKAP5fU.txt

    est ajouté dans la page.

    Copie ce lien dans ta réponse.

    Merci

    @+

    0
  8. komarr Messages postés 721 Date d'inscription   Statut Membre Dernière intervention   86
     
    ~Rapport de ZHPDiag v2014.8.2.112 - Nicolas Coolman (02/08/2014)
    ~ Lancé par komar (02/08/2014 20:58:05)
    ~ Adresse du Site Web https://nicolascoolman.eu
    ~ Adresse du Forum https://nicolascoolman.eu
    ~ Traduit par Nicolas Coolman
    ~ Etat de la version : Version à jour.
    ~ Liste blanche : Activée par le programme
    ~ Elévation des Privilèges : OK
    ~ User Account Control (UAC): Activate by user

    ---\\ Navigateurs Internet
    MSIE: Internet Explorer v11.0.9600.17207 (Defaut)
    MFIE: Mozilla Firefox 31.0

    ---\\ Informations sur les produits Windows
    ~ Langage: Français
    Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)
    Windows Server License Manager Script : OK
    ~ Windows Operating System - Windows(R) 7, OEM_SLP channel
    System Locked Preinstallation (OEM_SLP) : OK
    Windows ID Activation : OK
    ~ Windows Partial Key : 3Q6C9
    Windows License : OK
    ~ Windows Remaining Initializations Number : 4
    Software Protection Service (Protection logicielle) : OK
    Key Management Service client information : KO
    Windows Automatic Updates : OK
    Windows Activation Technologies : OK

    ---\\ Logiciels de protection du système
    AVG 2014 v14.0.4716
    Malwarebytes Anti-Malware version 2.0.2.1012
    Windows Defender W7 (Deactivate)

    ---\\ Logiciels d'optimisation du système
    CCleaner v4.01

    ---\\ Logiciels de partage PeerToPeer

    ---\\ Surveillance de Logiciels
    Adobe Flash Player 14 Plugin
    Adobe Reader XI
    Java 7 Update 10
    Java 7 Update 65

    ---\\ Informations sur le système
    ~ Processor: Intel64 Family 6 Model 23 Stepping 10, GenuineIntel
    ~ Operating System: 64 Bits
    Boot mode: Normal (Normal boot)
    Total RAM: 4094 MB (55% free)
    System Restore: Activé (Enable)
    System drive C: has 230 GB (50%) free of 451 GB

    ---\\ Mode de connexion au système
    ~ Computer Name: KOMAR-PC
    ~ User Name: komar
    ~ All Users Names: UpdatusUser, komar, Administrateur,
    ~ Unselected Option: None
    Logged in as Administrator

    ---\\ Variables d'environnement
    ~ System Unit : C:\
    ~ %AppZHP% : C:\Users\komar\AppData\Roaming\ZHP\
    ~ %AppData% : C:\Users\komar\AppData\Roaming\
    ~ %Desktop% : C:\Users\komar\Desktop\
    ~ %Favorites% : C:\Users\komar\Favorites\
    ~ %LocalAppData% : C:\Users\komar\AppData\Local\
    ~ %StartMenu% : C:\Users\komar\AppData\Roaming\Microsoft\Windows\Start Menu\
    ~ %Windir% : C:\Windows\
    ~ %System% : C:\Windows\System32\

    ---\\ Enumération des unités disques
    C: Hard drive, Flash drive, Thumb drive (Free 230 Go of 451 Go)
    D: Hard drive, Flash drive, Thumb drive (Free 2 Go of 14 Go)
    E: CD-ROM drive (Not Inserted)
    G: Floppy drive, Flash card reader, USB Key (Not Inserted)

    ---\\ Etat du Centre de Sécurité Windows
    [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
    ~ Security Center: 49 Legitimates Filtered in 00mn 00s

    ---\\ Recherche particulière de fichiers génériques
    [MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]
    [MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
    [MD5.2EE102DF0EDD8A1EDD3D1E9B99A91BEC] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.18/06/2014 - 23:58:27.) -- C:\Windows\System32\wininet.dll [2266112]
    [MD5.88AB9B72B4BF3963A0DE0820B4B0B06C] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.04/03/2014 - 10:43:50.) -- C:\Windows\System32\Winlogon.exe [455168]
    [MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 14:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448]
    [MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 07:45:52.) -- C:\Windows\system32\Drivers\AFD.sys [497152]
    [MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
    [MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
    [MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
    [MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
    [MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
    [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
    [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
    [MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
    [MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
    [MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.24/01/2014 - 03:37:55.) -- C:\Windows\system32\Drivers\ntfs.sys [1684928]
    [MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
    [MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
    [MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
    [MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:56.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
    [MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]
    ~ Generic Processes: Scanned in 00mn 00s

    ---\\ Etat des fichiers cachés (Caché/Total)
    ~ Mes images (My Pictures) : 1/9275
    ~ Mes musiques (My Musics) : 1/1049
    ~ Mes Videos (My Videos) : 1/3
    ~ Mes Favoris (My Favorites) : 1/18
    ~ Mes Documents (My Documents) : 3/91
    ~ Mon Bureau (My Desktop) : 1/2313
    ~ Menu demarrer (Programs) : 1/32
    ~ Hidden Files: Scanned in 00mn 09s

    ---\\ Processus lancés
    [MD5.E4B3F350F6B87D82F726C4B30F2BC5CD] - (.IObit - Advanced SystemCare 7 Monitor.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe [763680] [PID.3256]
    [MD5.FB0C6F8A040626D689236AA913D6E8C9] - (.Elex do Brasil Participações Ltda - YACTray.) -- C:\Program Files (x86)\iSafe\iSafeTray.exe [1018696] [PID.3376] =>Trojan.Staser
    [MD5.FC169AE00FCE9E01B276F2A5AA01C977] - (...) -- C:\Users\komar\Desktop\sauvegarde\ifunbox.win\ifb_conn.exe [812544] [PID.4180]
    [MD5.ECE79D5AB0C8A7E6ADA407FAB3666852] - (.IObit - Advanced SystemCare 7.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe [2283296] [PID.4188]
    [MD5.A8B68D4A0B815294819E2647D54A7686] - (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files (x86)\AVG\AVG2014\avgui.exe [5179408] [PID.4412]
    [MD5.A08A6D194884DFC35C619F8A5E1FFFBD] - (.Pas de propriétaire - Real-time Protector.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\RealTimeProtector.exe [1120032] [PID.4100]
    [MD5.10F36FB8CD6218CD7F818268E0F3F9C6] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [275568] [PID.4524]
    [MD5.4FBC630768570E6AC35C3DE8F6EC79F5] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe [6970168] [PID.180]
    [MD5.D97BF9F66430717C7981048CA88F2C63] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8084480] [PID.3396]
    [MD5.9D35F4CD788ED5FF8CC22F89317E7C83] - (.IObit - Advanced SystemCare Service.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [878368] [PID.1008]
    [MD5.38FF5A50F85B7CFE5F711E1361A1D4C7] - (.TODO: <Company name> - TODO: <File description>.) -- C:\Program Files (x86)\iSafe\appstore\appstoreSvc.exe [12464] [PID.1080] =>Trojan.Staser
    [MD5.11F6F9216D8F77EAC196B07D66E819EA] - (.Elex do Brasil Participações Ltda - iSafeSvc.) -- C:\Program Files (x86)\iSafe\iSafeSvc.exe [118048] [PID.1204] =>Trojan.Staser
    [MD5.A03A95B389479B2ADE3A288FA2EA11D1] - (.Elex do Brasil Participações Ltda - iSafeSvc2.) -- C:\Program Files (x86)\iSafe\iSafeSvc2.exe [118048] [PID.1236] =>Trojan.Staser
    [MD5.6B73E94F9FE82D45781B8C8A09483082] - (.Apple Inc. - YSLoader.exe.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [43336] [PID.2100]
    [MD5.20B2C28E3914C6837B30D44D31D2A294] - (.AVG Technologies CZ, s.r.o. - AVG Identity Protection Service.) -- C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3241488] [PID.2296]
    [MD5.13BB5F8819F90CE30A967FD94823E21B] - (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) -- C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [289328] [PID.2324]
    [MD5.BEFF149A82F78B648046108EB9D28893] - (.IObit - Product Updater.) -- C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151200] [PID.2504]
    [MD5.332D341D92B933600D41953B08360DFB] - (.Ulead Systems, Inc. - ULCDRSvr.) -- C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152] [PID.3532]
    [MD5.2F2372B5FF8C513C6D39E298CF749E4C] - (...) -- C:\Program Files (x86)\iSafe\appstore\ipcdl.exe [2229592] [PID.3028] =>Trojan.Staser
    [MD5.D84AEA3F3329D622DFC1297DDDF6163B] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720] [PID.2764]
    ~ Processes Running: Scanned in 00mn 01s

    ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
    C:\Users\komar\AppData\Local\Google\Chrome\User Data\Default\Preferences

    ---\\ Liste des dossiers d'extension Google Chrome
    ~ Google Lines Browser: 0 Legitimates Filtered in 00mn 00s

    ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
    C:\Users\komar\AppData\Roaming\Mozilla\Firefox\Profiles\jl3am0gp.default\prefs.js
    M0 - MFSP: prefs.js [komar - jl3am0gp.default] about:blank
    M2 - MFEP: prefs.js [komar - jl3am0gp.default\ascsurfingprotection@iobit.com] [] Advanced SystemCare Surfing Protection v1.0 (..)
    ~ Firefox Browser: 24 Legitimates Filtered in 00mn 01s

    ---\\ Internet Explorer, Proxy Management (R5)
    R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;127.0.0.1
    R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
    R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
    R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
    R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
    R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
    ~ Proxy management: Scanned in 00mn 00s

    ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
    F2 - REG:system.ini: USERINIT=c:\windows\system32\userinit.exe,
    F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
    F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
    ~ Keys: Scanned in 00mn 00s

    ---\\ Hosts file redirection (O1)
    ~ Le fichier hosts est sain (The hosts file is clean).
    ~ Hosts File: Scanned in 00mn 00s
    ~ Nombre de lignes (Lines number): 14

    ---\\ Browser Helper Objects de navigateur (O2)
    O2 - BHO: WsSVRIEHelper [64Bits] - {65DEE40A-3E93-4cae-9F98-B8E06DCEE2BF} . (.Wondershare Software Co., Ltd. - Wondershare Video Converter Ultimate Plugin.) -- C:\Program Files (x86)\Wondershare\Video Converter Ultimate\SVRIEPlugin.dll
    O2 - BHO: AllDaySavings [64Bits] - {fbdff406-2c4c-5d35-8469-34bb67ea3353} . (...) -- C:\Program Files\E061490F-E994-4CAC-95B5-87635F824BF7\kzhxnitccw.dll
    ~ BHO: 15 Legitimates Filtered in 00mn 00s

    ---\\ Internet Explorer Toolbars (O3)
    O3 - Toolbar\WebBrowser: (no name) - [HKCU]{47833539-D0C5-4125-9FA8-0819E2EAAC93} Clé orpheline
    ~ Toolbar: Scanned in 00mn 00s

    ---\\ Autres liens utilisateurs (O4)
    O4 - GS\Desktop [Public]: YAC App Store.lnk . (.Woodtale Technology Inc - app store.) -- C:\Program Files (x86)\iSafe\appstore\isafeAppStore.exe =>Trojan.Staser
    O4 - GS\Desktop [Public]: YAC.lnk . (.Elex do Brasil Participações Ltda - iStart.) -- C:\Program Files (x86)\iSafe\iStart.exe =>Trojan.Staser
    O4 - GS\QuickLaunch [komar]: µTorrent.lnk . (.BitTorrent Inc. - µTorrent.) -- C:\Users\komar\AppData\Roaming\uTorrent\uTorrent.exe =>P2P.BitTorrent
    ~ Global Startup: 3 Legitimates Filtered in 00mn 04s

    ---\\ Applications lancées au démarrage du système (O4)
    O4 - HKLM\..\Run: [BCSSync] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files\Microsoft Office\Office14\BCSSync.exe =>.Microsoft Corporation
    O4 - HKCU\..\Run: [iFunBoxConnector] . (...) -- C:\Users\komar\Desktop\sauvegarde\ifunbox.win\ifb_conn.exe
    O4 - HKCU\..\Run: [Advanced SystemCare 7] . (.IObit - Advanced SystemCare 7.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe
    O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
    O4 - HKLM\..\Wow6432Node\Run: [ASUS Ai Charger] . (.ASUSTek Computer Inc. - AiChargerAP MFC Application.) -- C:\Program Files (x86)\ASUS\ASUS Ai Charger\AiChargerAP.exe
    O4 - HKLM\..\Wow6432Node\Run: [Acrobat Assistant 8.0] . (.Adobe Systems Inc. - AcroTray.) -- C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe
    O4 - HKLM\..\Wow6432Node\Run: [AVG_UI] . (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files (x86)\AVG\AVG2014\avgui.exe
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
    O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
    O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
    O4 - HKUS\S-1-5-21-846553455-1940334665-2938013052-1001\..\Run: [iFunBoxConnector] . (...) -- C:\Users\komar\Desktop\sauvegarde\ifunbox.win\ifb_conn.exe
    O4 - HKUS\S-1-5-21-846553455-1940334665-2938013052-1001\..\Run: [Advanced SystemCare 7] . (.IObit - Advanced SystemCare 7.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe
    ~ Application: Scanned in 00mn 00s

    ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)
    O9 - Extra button: &Envoyer à OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} -- C:\Program Files (x86)\MICROS~2\Office15\ONBttnIE.dll (.not file.)
    O9 - Extra button: Cliquer pour appeler Lync [64Bits] - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} . (.Microsoft Corporation - Microsoft Lync.) -- C:\Program Files\Microsoft Office\Office15\lync.exe
    O9 - Extra button: Notes &liées OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} -- C:\Program Files (x86)\MICROS~2\Office15\ONBTTN~1.dll (.not file.)
    ~ IE Extra Buttons: Scanned in 00mn 00s

    ---\\ Modification Domaine/Adresses DNS (O17)
    O17 - HKLM\System\CCS\Services\Tcpip\..\{1DA7B828-DBAF-48FD-8548-16A64B5B8D67}: NameServer = 8.8.8.8,8.8.4.4 =>.Google DNS Redirections
    O17 - HKLM\System\CCS\Services\Tcpip\..\{1DA7B828-DBAF-48FD-8548-16A64B5B8D67}: DhcpNameServer = 89.2.0.1 89.2.0.2
    O17 - HKLM\System\CCS\Services\Tcpip\..\{DD57E249-B0AB-4E5E-A6D7-24CBCA3CC5F5}: DhcpNameServer = 172.20.2.10 172.20.2.39
    O17 - HKLM\System\CCS\Services\Tcpip\..\{F0C7B543-0FA3-45F1-A0FC-375B7DF676DC}: DhcpNameServer = 172.20.2.10 172.20.2.39
    O17 - HKLM\System\CS1\Services\Tcpip\..\{1DA7B828-DBAF-48FD-8548-16A64B5B8D67}: NameServer = 8.8.8.8,8.8.4.4 =>.Google DNS Redirections
    O17 - HKLM\System\CS1\Services\Tcpip\..\{1DA7B828-DBAF-48FD-8548-16A64B5B8D67}: DhcpNameServer = 89.2.0.1 89.2.0.2
    O17 - HKLM\System\CS1\Services\Tcpip\..\{DD57E249-B0AB-4E5E-A6D7-24CBCA3CC5F5}: DhcpNameServer = 172.20.2.10 172.20.2.39
    O17 - HKLM\System\CS1\Services\Tcpip\..\{F0C7B543-0FA3-45F1-A0FC-375B7DF676DC}: DhcpNameServer = 172.20.2.10 172.20.2.39
    O17 - HKLM\System\CS2\Services\Tcpip\..\{1DA7B828-DBAF-48FD-8548-16A64B5B8D67}: NameServer = 8.8.8.8,8.8.4.4 =>.Google DNS Redirections
    O17 - HKLM\System\CS2\Services\Tcpip\..\{1DA7B828-DBAF-48FD-8548-16A64B5B8D67}: DhcpNameServer = 89.2.0.1 89.2.0.2
    O17 - HKLM\System\CS2\Services\Tcpip\..\{DD57E249-B0AB-4E5E-A6D7-24CBCA3CC5F5}: DhcpNameServer = 172.20.2.10 172.20.2.39
    O17 - HKLM\System\CS2\Services\Tcpip\..\{F0C7B543-0FA3-45F1-A0FC-375B7DF676DC}: DhcpNameServer = 172.20.2.10 172.20.2.39
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.2.0.1 89.2.0.2
    ~ Domain: Scanned in 00mn 00s

    ---\\ Protocole additionnel (O18)
    O18 - Handler: WSWSVCUchrome [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\SysWOW64\mshtml.dll =>.Microsoft Corporation
    O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll =>.Microsoft Corporation
    ~ Protocole Additionnel: Scanned in 00mn 00s

    ---\\ Liste des services NT non Microsoft et non désactivés (O23)
    O23 - Service: appstoreService (appstoreService) . (.TODO: <Company name> - TODO: <File description>.) - C:\Program Files (x86)\iSafe\appstore\appstoreSvc.exe =>Trojan.Staser
    O23 - Service: iSafeService (iSafeService) . (.Elex do Brasil Participações Ltda - iSafeSvc.) - C:\Program Files (x86)\iSafe\iSafeSvc.exe =>Trojan.Staser
    O23 - Service: KMService (KMService) . (...) - C:\Windows\SysWOW64\srvany.exe
    ~ Services: 15 Legitimates Filtered in 00mn 05s

    ---\\ Tâches planifiées en automatique (O39)
    [MD5.00000000000000000000000000000000] [APT] [Ad-Aware Antivirus Scheduled Scan] (...) -- C:\Program Files (x86)\AD-AWA~1\AdAwareLauncher.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [Kerish Doctor] (...) -- C:\Program Files (x86)\Kerish Doctor 2012\KerishDoctor.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{1EC5BA0D-E1A9-450E-BA80-786D9557742E}] (...) -- C:\Program Files (x86)\Photodex\ProShowGold\remove.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{40B17A90-27B4-49D6-8831-53A65554DAE4}] (...) -- C:\Users\komar\Downloads\wirelesshacker2012.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{57F227A4-706E-43A4-BE1C-8F269DF14263}] (...) -- C:\Program Files (x86)\Photodex\ProShow Producer\remove.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{6E1A26EC-E3F8-47E4-89FC-562E311A28C4}] (...) -- C:\Program Files (x86)\USBScan\unins000.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{C17707BC-716C-4F05-AF33-2C5B4077D1B0}] (...) -- E:\setup.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{C8EA6374-8984-492A-8961-4285B683C798}] (...) -- C:\Users\komar\Desktop\nettoyeurs\Ad-Aware_pro.exe (.not file.) [0]
    O39 - APT: - (..) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002]
    O39 - APT: - (..) -- C:\Windows\System32\Tasks\GlaryInitialize [324]
    ~ Scheduled Task: 27 Legitimates Filtered in 00mn 06s

    ---\\ Pilotes lancés au démarrage du système (O41)
    O41 - Driver: (iSafeKrnl) . (.Elex do Brasil Participações Ltda - iSafe Kernel Driver.) - C:\Program Files (x86)\iSafe\iSafeKrnl.sys
    O41 - Driver: (iSafeKrnlKit) . (.Elex do Brasil Participações Ltda - iSafe Kernel Kit Driver.) - C:\Program Files (x86)\iSafe\iSafeKrnlKit.sys
    O41 - Driver: (iSafeKrnlR3) . (.Elex do Brasil Participações Ltda - iSafe Kernel Ring3 Driver.) - C:\Program Files (x86)\iSafe\iSafeKrnlR3.sys
    O41 - Driver: (iSafeNetFilter) . (.Elex do Brasil Participações Ltda - iSafeNetFilter SDK WFP Driver (WPP).) - C:\Program Files (x86)\iSafe\iSafeNetFilter.sys =>Trojan.Staser
    ~ Drivers: 84 Legitimates Filtered in 00mn 01s

    ---\\ Logiciels installés (O42)
    O42 - Logiciel: AiroWizard 1.0 Beta - (...) [HKLM][64Bits] -- AiroWizard 1.0 Beta
    O42 - Logiciel: Duuqu Update Helper - (.Duuqu Group.) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>PUP.Duuqu
    O42 - Logiciel: PPÖúÊÖ PC°æ 1.0.5.0 - (.¹ãÖÝÌúÈËÍøÂç¿Æ¼¼ÓÐÏÞ¹«Ë¾.) [HKLM][64Bits] -- PPÖúÊÖ PC°æ
    O42 - Logiciel: YAC App Store - (.Woodtale Technology Inc..) [HKLM][64Bits] -- Computer Software Market
    O42 - Logiciel: Yet Another Cleaner! - (.ELEX DO BRASIL PARTICIPAÇÕES LTDA.) [HKLM][64Bits] -- iSafe =>Trojan.Staser
    O42 - Logiciel: allday savings - (.allday savings.) [HKLM][64Bits] -- E061490F-E994-4CAC-95B5-87635F824BF7
    O42 - Logiciel: ¿ìÓÃ×ÊÔ'¹ÜÀíÆ÷ °æ±¾ 2.010 - (...) [HKLM][64Bits] -- {0B41A8C4-1FB8-4B8B-B8FE-D643A617A7DB}_is1
    ~ Logic: 7 Legitimates Filtered in 00mn 00s

    ---\\ HKCU & HKLM Software Keys
    [HKCU\Software\Drivers]
    [HKCU\Software\System32]
    [HKCU\Software\WSVCUPlugin]
    [HKCU\Software\Win]
    [HKCU\Software\YRTD]
    [HKLM\Software\AllDaySavings ]
    [HKLM\Software\Wow6432Node\Kerish Products]
    [HKLM\Software\Wow6432Node\Server Info]
    [HKLM\Software\Wow6432Node\Wow64Node]
    [HKLM\Software\Wow6432Node\YRTD]
    ~ Key Software: 335 Legitimates Filtered in 00mn 00s

    ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
    O43 - CFD: 02/08/2014 - 18:22:04 - [] ----D C:\Program Files (x86)\E061490F-E994-4CAC-95B5-87635F824BF7
    O43 - CFD: 02/08/2014 - 20:33:08 - [] ----D C:\Program Files (x86)\iSafe =>Trojan.Staser
    O43 - CFD: 13/04/2013 - 18:59:48 - [] ----D C:\Program Files (x86)\Portable
    O43 - CFD: 29/04/2013 - 16:53:09 - [] ----D C:\Program Files (x86)\PPÖúÊÖ
    O43 - CFD: 15/04/2013 - 16:11:27 - [] ----D C:\ProgramData\Kerish Products
    O43 - CFD: 01/08/2014 - 16:52:58 - [] ----D C:\ProgramData\ProductData
    O43 - CFD: 03/10/2013 - 16:19:30 - [] -SH-D C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
    O43 - CFD: 30/03/2013 - 22:11:21 - [] ----D C:\ProgramData\{5A85B23A-4B58-47D1-9B9C-DFBD7866099F}
    O43 - CFD: 30/03/2013 - 21:29:09 - [] ----D C:\ProgramData\{BDDB56DE-AE4E-48A2-B856-FB60C8498453}
    O43 - CFD: 08/04/2013 - 21:03:51 - [] -SH-D C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
    O43 - CFD: 30/03/2013 - 22:11:25 - [] ----D C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690}
    O43 - CFD: 29/01/2013 - 22:21:54 - [] ----D C:\Users\komar\AppData\Roaming\.oit
    O43 - CFD: 13/12/2012 - 19:02:43 - [] --H-D C:\Users\komar\AppData\Roaming\36165C6D
    O43 - CFD: 02/08/2014 - 20:19:19 - [] ----D C:\Users\komar\AppData\Roaming\iSafe =>Trojan.Staser
    O43 - CFD: 29/07/2013 - 16:27:29 - [] ----D C:\Users\komar\AppData\Roaming\main
    O43 - CFD: 06/02/2013 - 18:36:26 - [] --H-D C:\Users\komar\AppData\Roaming\RPPrivate
    O43 - CFD: 01/08/2014 - 18:00:46 - [0] ----D C:\Users\komar\AppData\Roaming\{950EB46C-6AC7-4ACC-AB36-9A6A77C08B6A}
    O43 - CFD: 05/04/2013 - 23:17:52 - [] ----D C:\Users\komar\AppData\Local\Ares
    O43 - CFD: 29/01/2013 - 22:20:38 - [] ----D C:\Users\komar\AppData\Local\OfficeDrop
    O43 - CFD: 05/02/2013 - 21:12:39 - [] ----D C:\Users\komar\AppData\Local\Pando_Temp
    O43 - CFD: 19/07/2014 - 17:21:11 - [0] ----D C:\Users\komar\AppData\Local\pangu
    O43 - CFD: 15/06/2013 - 19:56:28 - [] ----D C:\Users\komar\AppData\Local\PDF-TIFF-Tools.com
    ~ Program Folder: 273 Legitimates Filtered in 00mn 01s

    ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
    O44 - LFC:[MD5.D9A1F3F9D8CB997B9302DFB39446A0E8] - 25/07/2014 - 11:13:13 ---A- . (.Elex do Brasil Participações Ltda - iSafe Kernel Boot Driver.) -- C:\Windows\System32\Drivers\iSafeKrnlBoot.sys [45248]
    ~ Files: 7 Legitimates Filtered in 00mn 02s

    ---\\ Opérations et fonctions au démarrage de Windows Explorer (O46)
    O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
    O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook [64Bits] - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
    ~ ShellExecuteHooks: Scanned in 00mn 00s

    ---\\ Image File Execution Options (IFEO) (O50)
    O50 - IFEO:Image File Execution Options - Acrobat.exe - "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
    O50 - IFEO:Image File Execution Options - acrodist.exe - "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
    O50 - IFEO:Image File Execution Options - AcroRd32.exe - "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
    O50 - IFEO:Image File Execution Options - adobe air application installer.exe - "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
    O50 - IFEO:Image File Execution Options - fileencrypt.exe - "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
    O50 - IFEO:Image File Execution Options - formscentralforacrobat.exe - "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
    O50 - IFEO:Image File Execution Options - integrator.exe - "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
    O50 - IFEO:Image File Execution Options - mcdetection.exe - "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
    O50 - IFEO:Image File Execution Options - mcsettings.exe - "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
    O50 - IFEO:Image File Execution Options - pdapp.exe - "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
    O50 - IFEO:Image File Execution Options - switchboard.exe - "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
    O50 - IFEO:Image File Execution Options - unins000.exe - "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
    O50 - IFEO:Image File Execution Options - uninstall.exe - "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
    ~ IFEO: Scanned in 00mn 00s

    ---\\ Clé de registre Shell MountPoints2 (MPKS) (O51)
    O51 - MPSK:{4d350a5f-ab5a-11e2-993e-002421ac7c59}\AutoRun\command. (...) -- F:\SETUP.exe (.not file.)
    O51 - MPSK:{ab778e5b-ac23-11e2-96d9-002421ac7c59}\AutoRun\command. (...) -- F:\SETUP.exe (.not file.)
    O51 - MPSK:{d11c77e7-e8e7-11e3-aa15-002421ac7c59}\AutoRun\command. (...) -- F:\MediaManager.exe (.not file.)
    O51 - MPSK:{e975dc0e-f93e-11e2-a982-002421ac7c59}\AutoRun\command. (...) -- F:\AUTORUN.exe (.not file.)
    ~ Keys: Scanned in 00mn 00s

    ---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
    O52 - TDSD: \Drivers32\"VIDC.FICV"="ficvdec_x64.dll" . (...) -- C:\Windows\System32\ficvdec_x64.dll
    ~ TDSD: 4 Legitimates Filtered in 00mn 00s

    ---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
    O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
    O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
    ~ MWPS: 17 Legitimates Filtered in 00mn 00s

    ---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
    O56 - MWPE:[HKCU\...\policies\Explorer] - "NoChangeStartMenu"=0
    O56 - MWPE:[HKCU\...\policies\Explorer] - "NoClose"=0
    O56 - MWPE:[HKCU\...\policies\Explorer] - "NoLogOff"=0
    O56 - MWPE:[HKCU\...\policies\Explorer] - "NoLowDiskSpaceChecks"=1
    O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
    ~ MWPE Keys: 8 Legitimates Filtered in 00mn 00s

    ---\\ Liste des pilotes du système (SDL) (O58)
    O58 - SDL:14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [530496]
    O58 - SDL:17/12/2012 - 06:43:13 ---A- . (.GFI Software - gfiark64.sys.) -- C:\Windows\System32\Drivers\gfiark.sys [38096]
    O58 - SDL:10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys [31232]
    O58 - SDL:25/07/2014 - 11:13:13 ---A- . (.Elex do Brasil Participações Ltda - iSafe Kernel Boot Driver.) -- C:\Windows\System32\Drivers\iSafeKrnlBoot.sys [45248]
    O58 - SDL:11/05/2014 - 12:12:07 ---A- . (.https://sourceforge.net/p/libusb-win32/wiki/Home/ - LibUSB-Win32 - Kernel Driver.) -- C:\Windows\System32\Drivers\libusb0.sys [52832]
    O58 - SDL:14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys [24656]
    O58 - SDL:13/12/2012 - 13:50:36 ---A- . (.Apple, Inc. - Apple Mobile Device USB Driver.) -- C:\Windows\System32\Drivers\usbaapl64.sys [54784]
    ~ Drivers: 70 Legitimates Filtered in 00mn 05s

    ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
    O61 - LFC: 01/08/2014 - 20:59:50 ---A- . (.Elex do Brasil Participações Ltda.) -- C:\Users\komar\Desktop\yet_another_cleaner_sk.exe [12920728]
    O61 - LFC: 02/08/2014 - 20:59:50 ---A- . (...) -- C:\Users\komar\Desktop\ZHPCleaner.exe [1185280] =>.Nicolas Coolman
    O61 - LFC: 02/08/2014 - 20:59:50 ---A- . (...) -- C:\Users\komar\Desktop\adwcleaner_3.302.exe [1361309]
    ~ 77 Fichiers temporaires (Temporary files)
    ~ 72 Fichiers cookies (Cookies files)
    ~ Files: 6 Legitimates Filtered in 00mn 55s

    ---\\ Liste des outils de désinfection (LATC) (O63)
    O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
    ~ ADS: Scanned in 00mn 00s

    ---\\ Liste les services legacy du registre (LALS) (O64)
    O64 - Services: CurCS - 25/07/2014 - C:\Program Files (x86)\iSafe\iSafeKrnl.sys (iSafeKrnl) .(.Elex do Brasil Participações Ltda - iSafe Kernel Driver.) - LEGACY_ISAFEKRNL
    O64 - Services: CurCS - 25/07/2014 - C:\Program Files (x86)\iSafe\iSafeKrnlKit.sys (iSafeKrnlKit) .(.Elex do Brasil Participações Ltda - iSafe Kernel Kit Driver.) - LEGACY_ISAFEKRNLKIT
    O64 - Services: CurCS - 25/07/2014 - C:\Program Files (x86)\iSafe\iSafeKrnlR3.sys (iSafeKrnlR3) .(.Elex do Brasil Participações Ltda - iSafe Kernel Ring3 Driver.) - LEGACY_ISAFEKRNLR3
    O64 - Services: CurCS - 09/07/2014 - C:\Program Files (x86)\iSafe\iSafeNetFilter.sys (iSafeNetFilter) .(.Elex do Brasil Participações Ltda - iSafeNetFilter SDK WFP Driver (WPP).) - LEGACY_ISAFENETFILTER =>Trojan.Staser
    ~ Legacy: 87 Legitimates Filtered in 00mn 00s

    ---\\ Menu de démarrage Internet (SMI) (O68)
    O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
    O68 - StartMenuInternet: <Opera> <Opera>[HKLM\..\Shell\open\Command] (.Not Key.)
    ~ Keys: Scanned in 00mn 00s

    ---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.crossrider.bic", "1433f74fcf6690690aba7160c5130716"); =>PUP.CrossRider
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.helperbar.DockingPositionDown", false); =>PUP.HelperBar
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.helperbar.SmartbarDisabled", false); =>PUP.HelperBar
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.helperbar.SmartbarStateMinimaized", false); =>PUP.HelperBar
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.helperbar.Visibility", false); =>PUP.HelperBar
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.aflt", "tele1202"); =>Adware.MyWebSearch
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.appId", "{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}"); =>Adware.MyWebSearch
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.cd", "2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0CyB0CyDzyyD0CyC0DtN0D0Tzu0SyBtBzytN1L2XzutBtFtBtFtCyEtFtCt[...] =>Adware.MyWebSearch
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.cr", "1044123687"); =>Adware.MyWebSearch
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.dfltLng", ""); =>Adware.MyWebSearch
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.dfltSrch", true); =>Adware.MyWebSearch
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.dnsErr", true); =>Adware.MyWebSearch
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.excTlbr", false); =>Adware.MyWebSearch
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.hmpg", true); =>Adware.MyWebSearch
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.hmpgUrl", "http://start.mysearchdial.com/?f=1&a=tele1202&cd=2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0CyB0[...] =>Adware.MyWebSearch
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.id", "002421AC7C595C6D"); =>Adware.MyWebSearch
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.instlDay", "16068"); =>Adware.MyWebSearch
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.instlRef", ""); =>Adware.MyWebSearch
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.newTabUrl", "http://start.mysearchdial.com/?f=2&a=tele1202&cd=2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0Cy[...] =>Adware.MyWebSearch
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.prdct", "mysearchdial"); =>Adware.MyWebSearch
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.prtnrId", "mysearchdial"); =>Adware.MyWebSearch
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.srchPrvdr", "Mysearchdial"); =>Adware.MyWebSearch
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.tlbrId", "base"); =>Adware.MyWebSearch
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.tlbrSrchUrl", "http://start.mysearchdial.com/?f=3&a=tele1202&cd=2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0[...] =>Adware.MyWebSearch
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.vrsn", "1.8.21.0"); =>Adware.MyWebSearch
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.vrsni", "1.8.21.0"); =>Adware.MyWebSearch
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial_i.hmpg", true); =>Adware.MyWebSearch
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial_i.newTab", false); =>Adware.MyWebSearch
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial_i.smplGrp", "none"); =>Adware.MyWebSearch
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial_i.vrsnTs", "1.8.21.018:32:33"); =>Adware.MyWebSearch
    O69 - SBI: SearchScopes [HKCU] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - https://www.google.com/?gws_rd=ssl
    O69 - SBI: SearchScopes [HKCU] {5BACD312-DAD3-4414-B46A-C386D114BA9B} - (uTorrentBar_FR Customized Web Search) - http://search.conduit.com =>P2P.µTorrent
    O69 - SBI: SearchScopes [HKCU] {6767E280-5FC0-40B6-9569-81E03B558EAC} - (Yahoo! Search) - https://fr.search.yahoo.com/
    O69 - SBI: SearchScopes [HKUS\.DEFAULT] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - https://www.google.com/?gws_rd=ssl
    O69 - SBI: SearchScopes [HKUS\.DEFAULT] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - https://www.bing.com/?toHttps=1&redig=69DA0EF8272048D9864AF4DB37211DE8
    O69 - SBI: SearchScopes [HKUS\S-1-5-18] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - https://www.google.com/?gws_rd=ssl
    O69 - SBI: SearchScopes [HKUS\S-1-5-18] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - https://www.bing.com/?toHttps=1&redig=69DA0EF8272048D9864AF4DB37211DE8
    O69 - SBI: SearchScopes [HKUS\S-1-5-19] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - https://www.google.com/?gws_rd=ssl
    O69 - SBI: SearchScopes [HKUS\S-1-5-20] {0191A6B0-1154-4C22-9182-23A95BBE92D9} [DefaultScope] - (Google) - https://www.google.com/?gws_rd=ssl
    ~ Keys: Scanned in 00mn 00s

    ---\\ Enumère les fichiers Crack & Keygen (CKF) (O82)
    C:\crack\tt8_keygen.exe =>.Crack,Keygen
    C:\Users\komar\Desktop\FR\keygen-FFF.exe =>.Crack,Keygen
    C:\Users\komar\Desktop\nettoyeurs\Crack\lavalicense.dll cracked.exe =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Acrobat XI Pro 11.0.0 Multilanguage (Cracked dll ) [ChingLiu]\Adobe Acrobat XI\AcroPro.msi =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Acrobat XI Pro 11.0.0 Multilanguage (Cracked dll ) [ChingLiu]\Adobe Acrobat XI\Setup.exe =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Acrobat XI Pro 11.0.0 Multilanguage (Cracked dll ) [ChingLiu]\Adobe Acrobat XI\VC10RT_x64\vc_red.msi =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Acrobat XI Pro 11.0.0 Multilanguage (Cracked dll ) [ChingLiu]\Adobe Acrobat XI\WindowsInstaller-KB893803-v2-x86.exe =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeAPE3.3-mul\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeAPE3.3_x64-mul\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeBridge5-mul\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeBridge5-mul\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeBridge5-mul\customaction.data =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeBridge5-mul-x64\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeBridge5-mul-x64\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeBridge5-mul-x64\customaction.data =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeCameraRaw7.0All\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeCameraRaw7.0All-x64\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeCameraRawProfile7.0All\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeCMaps4-mul\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeCMaps4_x64-mul\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeColorCommonSetCMYK4_0-mul\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeColorCommonSetRGB4_0-mul\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeColorEU_ExtraSettings4_0-mul\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeColorEU_Recommended4_0-mul\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeColorJA_ExtraSettings4_0-mul\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeColorJA_Recommended4_0-mul\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeColorNA_ExtraSettings4_0-mul\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeColorNA_Recommended4_0-mul\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeColorPhotoshop4_0-mul\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeCSXSExtensions3-mul\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeCSXSExtensions3-mul\customaction.data =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeCSXSInfrastructure3-mul\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeCSXSInfrastructure3-mul\customaction.data =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeDynamicLinkMediaServer1All\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeDynamiclinkSupport6All\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeExtendScriptToolkit3.8.0-mul\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeExtendScriptToolkit3.8.0-mul\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeExtensionManager6.0All\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeExtensionManager6.0All\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeFontsRecommended-mul\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeFontsRecommended_x64-mul\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeFontsRequired-mul\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeFontsRequired_x64-mul\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeHunspellPlugin_4_0_All\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeHunspellPlugin_4_0_All_x64\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeLinguistics_4_0_All\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeLinguistics_4_0_All\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeLinguistics_4_0_All_x64\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeMiniBridge2-mul\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePDFL10.9-mul\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePDFL10.9_x64-mul\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePDFSettings11-ja_JP\AdobePDFSettings11-ja_JP.msi =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePDFSettings11-mul\AdobePDFSettings11-mul.msi =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-Core\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-Core\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-Core_x64\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-Core_x64\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-cs_CZ\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-cs_CZ_x64\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-Driver\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-Driver\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-en_AE\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-en_AE_x64\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-en_IL\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-en_IL_x64\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-fr_MA\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-fr_MA_x64\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-hu_HU\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-hu_HU_x64\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-pl_PL\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-pl_PL_x64\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-ru_RU\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-ru_RU_x64\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-Support\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-tr_TR\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-tr_TR_x64\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-uk_UA\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobePhotoshop13-uk_UA_x64\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeSuiteSharedConfiguration3-mul\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeTypeSupport11-mul\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeTypeSupport11_x64-mul\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeVideoProfilesCS4_0-mul\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeWinSoftLinguisticsPluginAll\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeWinSoftLinguisticsPluginAll_x64\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\AdobeXMPPanelsAll\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\Microsoft VC 2005 Redist (x64)\vcredist_x64.EXE =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\Microsoft VC 2005 Redist (x86)\vcredist_x86.exe =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\Microsoft VC 2008 Redist (x64)\vcredist_x64.exe =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\Microsoft VC 2008 Redist (x86)\vcredist_x86.exe =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\Microsoft VC 2010 Redist (x64)\vcredist_x64.exe =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\Microsoft VC 2010 Redist (x86)\vcredist_x86.exe =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\Microsoft_VC80_CRT_x86\Microsoft_VC80_CRT_x86.msi =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\Microsoft_VC90_CRT_x86\Microsoft_VC90_CRT_x86.msi =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\SwitchBoard2.0All\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\payloads\SwitchBoard2.0All\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Adobe CS6\Set-up.exe =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\AdobePatchInstaller.exe =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-Core-090812131523\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-Core-090812131523\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-Core_x64-090812132024\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-Core_x64-090812132024\Assets2_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-cs_CZ-090812124825\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-cs_CZ_x64-090812124956\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-da_DK-090812121759\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-da_DK_x64-090812121931\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-de_DE-090812121155\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-de_DE_x64-090812121326\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-en_AE-090812130636\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-en_AE_x64-090812130806\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-en_GB-090812115650\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-en_GB_x64-090812115821\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-en_IL-090812130936\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-en_IL_x64-090812131108\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-es_ES-090812123614\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-es_ES_x64-090812123746\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-es_MX-090812123312\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-es_MX_x64-090812123443\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-fi_FI-090812124218\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-fi_FI_x64-090812124351\Assets1_1.zip =>.Crack,Keygen
    C:\Users\komar\Desktop\sauvegarde\Adobe Photoshop CS6 13.0.1 Final Multilanguage (cracked dll) [ChingLiu]\Photoshop_CS6_13_0_1_update\payloads\AdobePhotoshop13-fr_CA-09
    0
  9. Utilisateur anonyme
     
    Re

    Utilisation de l'outil ZHPFix :

    * Copie tout le texte présent dans l'encadré ci-dessous (tu le sélectionnes avec ta souris / Clique droit dessus et choisis "copier" ou fait Ctrl+C )

    Script ZHPFix
    [MD5.FB0C6F8A040626D689236AA913D6E8C9] - (.Elex do Brasil Participações Ltda - YACTray.) -- C:\Program Files (x86)\iSafe\iSafeTray.exe [1018696] [PID.3376]
    [MD5.38FF5A50F85B7CFE5F711E1361A1D4C7] - (.TODO: <Company name> - TODO: <File description>.) -- C:\Program Files (x86)\iSafe\appstore\appstoreSvc.exe [12464] [PID.1080]
    [MD5.11F6F9216D8F77EAC196B07D66E819EA] - (.Elex do Brasil Participações Ltda - iSafeSvc.) -- C:\Program Files (x86)\iSafe\iSafeSvc.exe [118048] [PID.1204]
    [MD5.A03A95B389479B2ADE3A288FA2EA11D1] - (.Elex do Brasil Participações Ltda - iSafeSvc2.) -- C:\Program Files (x86)\iSafe\iSafeSvc2.exe [118048] [PID.1236]
    [MD5.2F2372B5FF8C513C6D39E298CF749E4C] - (...) -- C:\Program Files (x86)\iSafe\appstore\ipcdl.exe [2229592] [PID.3028]
    O4 - GS\Desktop [Public]: YAC App Store.lnk . (.Woodtale Technology Inc - app store.) -- C:\Program Files (x86)\iSafe\appstore\isafeAppStore.exe
    O4 - GS\Desktop [Public]: YAC.lnk . (.Elex do Brasil Participações Ltda - iStart.) -- C:\Program Files (x86)\iSafe\iStart.exe
    O23 - Service: appstoreService (appstoreService) . (.TODO: <Company name> - TODO: <File description>.) - C:\Program Files (x86)\iSafe\appstore\appstoreSvc.exe
    O23 - Service: iSafeService (iSafeService) . (.Elex do Brasil Participações Ltda - iSafeSvc.) - C:\Program Files (x86)\iSafe\iSafeSvc.exe
    [MD5.00000000000000000000000000000000] [APT] [{6E1A26EC-E3F8-47E4-89FC-562E311A28C4}] (...) -- C:\Program Files (x86)\USBScan\unins000.exe (.not file.) [0]
    O41 - Driver: (iSafeKrnl) . (.Elex do Brasil Participações Ltda - iSafe Kernel Driver.) - C:\Program Files (x86)\iSafe\iSafeKrnl.sys
    O41 - Driver: (iSafeKrnlKit) . (.Elex do Brasil Participações Ltda - iSafe Kernel Kit Driver.) - C:\Program Files (x86)\iSafe\iSafeKrnlKit.sys
    O41 - Driver: (iSafeKrnlR3) . (.Elex do Brasil Participações Ltda - iSafe Kernel Ring3 Driver.) - C:\Program Files (x86)\iSafe\iSafeKrnlR3.sys
    O41 - Driver: (iSafeNetFilter) . (.Elex do Brasil Participações Ltda - iSafeNetFilter SDK WFP Driver (WPP).) - C:\Program Files (x86)\iSafe\iSafeNetFilter.sys
    O42 - Logiciel: Duuqu Update Helper - (.Duuqu Group.) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
    O42 - Logiciel: Yet Another Cleaner! - (.ELEX DO BRASIL PARTICIPAÇÕES LTDA.) [HKLM][64Bits] -- iSafe
    O43 - CFD: 02/08/2014 - 20:33:08 - [] ----D C:\Program Files (x86)\iSafe
    O43 - CFD: 03/10/2013 - 16:19:30 - [] -SH-D C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
    O43 - CFD: 02/08/2014 - 20:19:19 - [] ----D C:\Users\komar\AppData\Roaming\iSafe
    O64 - Services: CurCS - 25/07/2014 - C:\Program Files (x86)\iSafe\iSafeKrnl.sys (iSafeKrnl) .(.Elex do Brasil Participações Ltda - iSafe Kernel Driver.) - LEGACY_ISAFEKRNL
    O64 - Services: CurCS - 25/07/2014 - C:\Program Files (x86)\iSafe\iSafeKrnlKit.sys (iSafeKrnlKit) .(.Elex do Brasil Participações Ltda - iSafe Kernel Kit Driver.) - LEGACY_ISAFEKRNLKIT
    O64 - Services: CurCS - 25/07/2014 - C:\Program Files (x86)\iSafe\iSafeKrnlR3.sys (iSafeKrnlR3) .(.Elex do Brasil Participações Ltda - iSafe Kernel Ring3 Driver.) - LEGACY_ISAFEKRNLR3
    O64 - Services: CurCS - 09/07/2014 - C:\Program Files (x86)\iSafe\iSafeNetFilter.sys (iSafeNetFilter) .(.Elex do Brasil Participações Ltda - iSafeNetFilter SDK WFP Driver (WPP).) - LEGACY_ISAFENETFILTER
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.crossrider.bic", "1433f74fcf6690690aba7160c5130716");
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.helperbar.DockingPositionDown", false);
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.helperbar.SmartbarDisabled", false);
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.helperbar.SmartbarStateMinimaized", false);
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.helperbar.Visibility", false);
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.aflt", "tele1202");
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.appId", "{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}");
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.cd", "2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0CyB0CyDzyyD0CyC0DtN0D0Tzu0SyBtBzytN1L2XzutBtFtBtFtCyEtFtCt[...]
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.cr", "1044123687");
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.dfltLng", "");
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.dfltSrch", true);
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.dnsErr", true);
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.excTlbr", false);
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.hmpg", true);
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.hmpgUrl", "http://start.mysearchdial.com/?f=1&a=tele1202&cd=2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0CyB0[...]
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.id", "002421AC7C595C6D");
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.instlDay", "16068");
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.instlRef", "");
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.newTabUrl", "http://start.mysearchdial.com/?f=2&a=tele1202&cd=2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0Cy[...]
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.prdct", "mysearchdial");
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.prtnrId", "mysearchdial");
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.srchPrvdr", "Mysearchdial");
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.tlbrId", "base");
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.tlbrSrchUrl", "http://start.mysearchdial.com/?f=3&a=tele1202&cd=2XzuyEtN2Y1L1QzutDtDtByEtBtC0A0[...]
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.vrsn", "1.8.21.0");
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial.vrsni", "1.8.21.0");
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial_i.hmpg", true);
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial_i.newTab", false);
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial_i.smplGrp", "none");
    O69 - SBI: prefs.js [komar - jl3am0gp.default] user_pref("extensions.mysearchdial_i.vrsnTs", "1.8.21.018:32:33");
    O90 - PUC: "F1437DE4249132642AC7C9F4838371F2" . (.IObit Apps Toolbar v7.0.) -- C:\Windows\Installer\{4ED7341F-1942-4623-A27C-9C4F3838172F}\ARPPRODUCTICON.exe
    [MD5.33BB2D31C914EC33595F4C271A49FAD4] [WIS][30/07/2013] (.QwertyBox Team - FrameFox Extensions 1.0.5.0 Setup.) -- C:\Windows\Installer\1a916e.msi [397312]
    [MD5.C13388A1D0EB8A495C7014805AE236EF] [WIS][27/07/2013] (.Duuqu Group - Duuqu Update Helper.) -- C:\Windows\Installer\c4c0f6.msi [45056]
    HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\IminentSetup_20121115_RASAPI32
    HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\IminentSetup_20121115_RASMANCS
    HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SmartbarExeInstaller_RASAPI32
    HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SmartbarExeInstaller_RASMANCS
    SR - | Auto 18/07/2014 12464 | (appstoreService) . (.TODO: <Company name>.) - C:\Program Files (x86)\iSafe\appstore\appstoreSvc.exe
    SR - | Auto 25/07/2014 118048 | (iSafeService) . (.Elex do Brasil Participações Ltda.) - C:\Program Files (x86)\iSafe\iSafeSvc.exe
    [HKLM\SYSTEM\CurrentControlSet\Services\appstoreService]
    [HKLM\SYSTEM\CurrentControlSet\Services\iSafeService]
    [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}]
    [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\iSafe]
    [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375]
    [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5]
    [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1CAE30F47D14B41B5FC8FA53658044]
    [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\30C16B15B255BD349A1157B8A83E2AF9]
    [HKCU\Software\IObit Apps]
    [HKCU\Software\AppDataLow\Software\IObit Apps]
    [HKLM\Software\Wow6432Node\IObit Apps]
    [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F1057DD419AED0B468AD8888429E139A]
    C:\Program Files (x86)\iSafe
    C:\Users\komar\AppData\Roaming\iSafe
    C:\Program Files (x86)\iSafe\iSafeTray.exe
    C:\Program Files (x86)\iSafe\appstore\appstoreSvc.exe
    C:\Program Files (x86)\iSafe\iSafeSvc.exe
    C:\Program Files (x86)\iSafe\iSafeSvc2.exe
    C:\Program Files (x86)\iSafe\appstore\ipcdl.exe
    C:\Windows\Installer\1a916e.msi
    C:\Windows\Installer\c4c0f6.msi
    [MD5.00000000000000000000000000000000] [APT] [Ad-Aware Antivirus Scheduled Scan] (...) -- C:\Program Files (x86)\AD-AWA~1\AdAwareLauncher.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [Kerish Doctor] (...) -- C:\Program Files (x86)\Kerish Doctor 2012\KerishDoctor.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{40B17A90-27B4-49D6-8831-53A65554DAE4}] (...) -- C:\Users\komar\Downloads\wirelesshacker2012.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{57F227A4-706E-43A4-BE1C-8F269DF14263}] (...) -- C:\Program Files (x86)\Photodex\ProShow Producer\remove.exe (.not file.) [0]
    [MD5.00000000000000000000000000000000] [APT] [{C8EA6374-8984-492A-8961-4285B683C798}] (...) -- C:\Users\komar\Desktop\nettoyeurs\Ad-Aware_pro.exe (.not file.) [0]

    ShortcutFix
    EmptyPrefetch
    FirewallRAZ
    Emptytemp
    EmptyCLSID

    --------------------------------------------------------------------------------------------
    Lance ZHPFix à partir du raccourci sur ton Bureau (si tu es sous Windows Vista ou Windows 7 ou 8, fais le par un clic-droit --> Exécuter en tant qu'administrateur)

    Cliquer sur le bouton Importer. Le contenu du Presse-papier vient se coller dans la zone de saisie de ZHPFix

    NB (W8) : Dans certains cas le script se colle automatiquement dans la zone de script et ne nécessite pas de cliquer sur le bouton "IMPORTER".

    * Clique sur le bouton GO pour lancer le nettoyage.

    -> laisse travailler l'outil et ne touche à rien ...
    -> S'il t'est demandé de redémarrer le PC pour finir le nettoyage, fais le !

    Une fois terminé, un nouveau rapport s'affiche : poste le contenu de ce dernier dans ta prochaine réponse ...
    Ce rapport est copié sur le bureau

    ( ce rapport est en outre sauvegardé dans ce dossier :
    - Pour XP : C:\Documents and Settings\username\Local Settings\Application Data\ZHP
    - Depuis Vista : C:\Users\username\AppData\Roaming\ZHP\ZHPFix [R1].txt
    )

    @+
    0
  10. komarr Messages postés 721 Date d'inscription   Statut Membre Dernière intervention   86
     
    je n'arrive pas a continuer l'analyse après avoir cliquer sur importer ça me dit si je suis sur de vouloir effectuer le nettoyage et ensuite au bout de quelques minutes l'avancement bloque
    0
  11. komarr Messages postés 721 Date d'inscription   Statut Membre Dernière intervention   86
     
    comment faire
    0
  12. Utilisateur anonyme
     
    Re

    Prend le temps de le laisser faire.
    Merci
    0
    1. komarr Messages postés 721 Date d'inscription   Statut Membre Dernière intervention   86
       
      après deux heures l'avancement est toujours au meme endroit
      0
  13. komarr Messages postés 721 Date d'inscription   Statut Membre Dernière intervention   86
     
    très bien je laisse tourner
    0
  14. komarr Messages postés 721 Date d'inscription   Statut Membre Dernière intervention   86
     
    rien n'y fait ça fonctionne toujours pas
    0
  15. Utilisateur anonyme
     
    Bonjour

    Tu as encore des publicités?
    0
    1. komarr Messages postés 721 Date d'inscription   Statut Membre Dernière intervention   86
       
      Oui toujours
      0
  16. Utilisateur anonyme
     
    Re

    Installe adblock et ensuite tu désinstalles ZHPDiag et tu le télécharges à nouveau et ensuite tu reprends avec ZHPFix

    @+

    0