---------- | AdsFix | g3n-h@ckm@n | V4_01.06.17.2 ----- Vista | 7 | 8 | 8.1 | 10 - 32/64 bits ----- Start 12:12:05 - 17/06/2017 Mis a jour le : 01/06/2017 | 08.20 (GMT) par g3n-h@ckm@n Contact : http://www.sosvirus.net Assistance : http://www.sosvirus.net/forum-virus-securite.html Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html Facebook : https://www.facebook.com/AdsFixAntiAdware C:\Users\Mohammed HEYOUNI\Desktop\AdsFix.exe Boot: Normal boot [Mohammed HEYOUNI (Administrator)] - [DESKTOP-PAOU9HG] - (Maroc [040C]) SID = S-1-5-21-1636346787-4185295157-1300820904-1001 || [4d6f68616d6d6564204845594f554e49205e5e] PC : HP - 80A5 - P1D60EA#BH4 Processor : X64 - 2592 - Intel(R) Core(TM) i7-6500U CPU @ 2.50GHz Bios : Insyde - 11/18/2015 - V.F.74 CoreTemp : 41 C CPU #1 value:0 % CPU #2 value:0 % CPU #3 value:0 % CPU #4 value:0 % Total Overall CPU Usage value:0 % Systeme : Windows 10 Home Single Language (64 bits) CoreSingleLanguage Memoire RAM = Total (MB) : 12418 | Libre (MB) : 8833 Pagefile = Total (MB) : 14318 | Libre (MB) : 10627 Virtuelle = Total (MB) : 4194 | Libre (MB) : 3919 C:\ -> [Fixed] | [Windows] | Total : 480.8 Go | Free : 415.63 Go -> NTFS [SATA] D:\ -> [Fixed] | [RECOVERY] | Total : 19.98 Go | Free : 2.3 Go -> NTFS [SATA] Z:\ -> [Fixed] | [Donnees] | Total : 429.49 Go | Free : 396.06 Go -> NTFS [SATA] Sauvegarde du registre , pour restaurer : Cliquer sur Options & Restaurer le registre (C:\AdsFix\Save\Registry [17.06.2017 @ 12_12_01]) ou un element Restauration de fichiers ou dossiers supprimes par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Selectionner un element >> "Restaurer" ---------- | Mises a jour Windows Windows Is Activated Possible Fixed Windows ---------- | Navigateurs IE : 11.0.14393.953 (© Microsoft Corporation. Tous droits réservés.) FF : 53.0.3.6347 (©Firefox and Mozilla Developers; available under the MPL 2 license.) GC : 58.0.3029.110 (Copyright 2016 Google Inc. All rights reserved.) MS-Edge : 11.0.14393.1358 (© Microsoft Corporation. All rights reserved.) ---------- | Security (atcav : 0) AV : Windows Defender Disabled FW : WMI : OK WU: Windows Update Service [Manual(3)] = en cours AS: Windows Defender [Manual(3)] = non en cours FW: Windows FireWall Service [Auto(2)] = en cours WMI: Windows Management Instrumentation (System Information) [Auto(2)] = en cours ---------- | FlashPlayer ActiveX : 26.0.0.120 ---------- | Processes closed 1140 | [Owner : SERVICE LOCAL |Parent : 956(svchost.exe)] - (.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes en mode utilisateur.) - (10.0.14393.0) = C:\Windows\System32\WUDFHost.exe 1528 | [Owner : Système |Parent : 808(services.exe)] - (.Intel Corporation - igfxCUIService Module.) - (6.15.10.4542) = C:\Windows\System32\DriverStore\FileRepository\120322.inf_amd64_496b556827a662cb\igfxCUIService.exe 1712 | [Owner : Système |Parent : 808(services.exe)] - (.Hewlett-Packard Company - HpService.) - (6.0.11.1) = C:\Windows\System32\hpservice.exe 1784 | [Owner : Système |Parent : 808(services.exe)] - (.Realtek Semiconductor - Realtek Audio Service.) - (1.0.0.67) = C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe 1336 | [Owner : Système |Parent : 808(services.exe)] - (.AVAST Software - Avast Service.) - (17.4.3482.0) = C:\Program Files\AVAST Software\Avast\AvastSvc.exe 1740 | [Owner : Système |Parent : 2032(svchost.exe)] - (.Microsoft Corporation - Infrastructure d’extensibilité pour les services réseau Windows sans fil 802.11.) - (10.0.14393.0) = C:\Windows\System32\wlanext.exe 2176 | [Owner : SERVICE LOCAL |Parent : 956(svchost.exe)] - (.Microsoft Corporation - Device Association Framework Provider Host.) - (10.0.14393.82) = C:\Windows\System32\dasHost.exe 2236 | [Owner : Système |Parent : 808(services.exe)] - (.Microsoft Corporation - Application sous-système spouleur.) - (10.0.14393.953) = C:\Windows\System32\spoolsv.exe 2460 | [Owner : Système |Parent : 808(services.exe)] - (.- RichVideo Module.) - (2.0.1.7413) = C:\Program Files\CyberLink\Shared files\RichVideo64.exe 2468 | [Owner : Système |Parent : 808(services.exe)] - (.NVIDIA Corporation - NVIDIA Container.) - (1.0.0.0) = C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe 2476 | [Owner : Système |Parent : 808(services.exe)] - (.-.) - (0.0.0.0) = C:\Program Files\AVAST Software\SecureLine\vpnsvc.exe 2492 | [Owner : Système |Parent : 808(services.exe)] - (.Apple Inc. - Bonjour Service.) - (3.0.0.10) = C:\Program Files\Bonjour\mDNSResponder.exe 2500 | [Owner : Système |Parent : 808(services.exe)] - (.Hewlett-Packard Development Company, L.P. - HP WMI Service.) - (1.4.1.0) = C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe 2508 | [Owner : Système |Parent : 808(services.exe)] - (.Broadcom Corporation. - Bluetooth Radio Management Support.) - (12.0.0.8048) = C:\Windows\System32\BtwRSupportService.exe 2592 | [Owner : Système |Parent : 808(services.exe)] - (.NVIDIA Corporation - NVIDIA Streamer Service.) - (4.1.1979.3879) = C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe 2624 | [Owner : Système |Parent : 808(services.exe)] - (.Intel Corporation - Intel(R) Dynamic Platform and Thermal Framework.) - (8.1.10603.192) = C:\Windows\SysWOW64\esif_uf.exe 2656 | [Owner : Système |Parent : 808(services.exe)] - (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) - (19.3.11.37) = C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe 5392 | [Owner : SERVICE LOCAL |Parent : 808(services.exe)] - (.Microsoft Corporation - PresentationFontCache.exe.) - (3.0.6920.8763) = C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe 2100 | [Owner : Système |Parent : 808(services.exe)] - (.Intel Corporation - Intel® SGX Application Enclave Services Manager.) - (1.0.26920.1392) = C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe 6356 | [Owner : Système |Parent : 808(services.exe)] - (.HP Inc. - HP Support Solutions Framework Service.) - (8.7.22.13) = C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe 7292 | [Owner : Système |Parent : 808(services.exe)] - (.Intel Corporation - IAStorDataSvc.) - (14.5.2.1088) = C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe 7440 | [Owner : Système |Parent : 808(services.exe)] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host Interface.) - (11.0.0.1163) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe 7608 | [Owner : Système |Parent : 808(services.exe)] - (.Hewlett-Packard Company - HP Software Framework WMI Service.) - (6.5.6.1) = C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe 2880 | [Owner : Système |Parent : 2468(NVDisplay.Container.exe)] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) - (8.17.13.7682) = C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe 6152 | [Owner : Système |Parent : 1784()] - (.Realtek Semiconductor - HD Audio Background Process.) - (1.0.0.222) = C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe 3076 | [Owner : Mohammed HEYOUNI |Parent : 2624()] - (.Intel Corporation - Intel(R) Dynamic Platform and Thermal Framework Utility Application.) - (8.1.10603.192) = C:\Windows\Temp\DPTF\esif_assist_64.exe 5116 | [Owner : Mohammed HEYOUNI |Parent : 2656()] - (.Synaptics Incorporated - Synaptics TouchPad 64-bit Enhancements.) - (19.3.11.37) = C:\Program Files\Synaptics\SynTP\SynTPEnh.exe 5856 | [Owner : Mohammed HEYOUNI |Parent : 768()] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) - (19.3.11.37) = C:\Program Files\Synaptics\SynTP\SynTPHelper.exe 6980 | [Owner : Mohammed HEYOUNI |Parent : 808(services.exe)] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (10.0.14393.0) = C:\Windows\System32\svchost.exe 200 | [Owner : Mohammed HEYOUNI |Parent : 604(svchost.exe)] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) - (10.0.14393.0) = C:\Windows\System32\taskhostw.exe 3228 | [Owner : Mohammed HEYOUNI |Parent : 968(svchost.exe)] - (.Microsoft Corporation - Runtime Broker.) - (10.0.14393.0) = C:\Windows\System32\RuntimeBroker.exe 488 | [Owner : Mohammed HEYOUNI |Parent : 7228()] - (.Intel Corporation - igfxEM Module.) - (6.15.10.4542) = C:\Windows\System32\DriverStore\FileRepository\120322.inf_amd64_496b556827a662cb\igfxEM.exe 4296 | [Owner : SERVICE RÉSEAU |Parent : 2592()] - (.NVIDIA Corporation - NVIDIA Network Stream Service.) - (4.1.1977.6980) = C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe 636 | [Owner : Système |Parent : 2592()] - (.NVIDIA Corporation - NVIDIA Streamer User Agent.) - (4.1.1979.4813) = C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe 7956 | [Owner : Système |Parent : 636(NvStreamUserAgent.exe)] - (.Microsoft Corporation - Console Window Host.) - (10.0.14393.0) = C:\Windows\System32\conhost.exe 1732 | [Owner : Mohammed HEYOUNI |Parent : 968(svchost.exe)] - (.Microsoft Corporation - Host Process for Setting Synchronization.) - (10.0.14393.1198) = C:\Windows\System32\SettingSyncHost.exe 7136 | [Owner : Mohammed HEYOUNI |Parent : 4552(explorer.exe)] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) - (1.0.495.0) = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe 6100 | [Owner : Mohammed HEYOUNI |Parent : 4552(explorer.exe)] - (.CANON INC. - Canon Advanced Printing Technology Printer Status Window Launcher.) - (4.7.0.14) = C:\Windows\System32\spool\drivers\x64\3\CNAP2LAK.EXE 6920 | [Owner : Mohammed HEYOUNI |Parent : 6100(CNAP2LAK.EXE)] - (.CANON INC. - Canon Advanced Printing Technology Printer Status Window.) - (4.7.8.5) = C:\Windows\System32\spool\drivers\x64\3\CNABCSWK.EXE 6168 | [Owner : Mohammed HEYOUNI |Parent : 4552(explorer.exe)] - (.Microsoft Corporation - Microsoft OneDrive.) - (17.3.6799.327) = C:\Users\Mohammed HEYOUNI\AppData\Local\Microsoft\OneDrive\OneDrive.exe 340 | [Owner : Mohammed HEYOUNI |Parent : 6460()] - (.Hewlett-Packard Company - Hp Accelerometer System Tray.) - (6.0.28.1) = C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe 7936 | [Owner : Mohammed HEYOUNI |Parent : 6460()] - (.Hewlett-Packard Development Company, L.P. - HP Message Service.) - (1.4.5.0) = C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe 416 | [Owner : Mohammed HEYOUNI |Parent : 6460()] - (.HP - HP Radio Manager.) - (1.1.17.1) = C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe 7468 | [Owner : Mohammed HEYOUNI |Parent : 6460()] - (.Oracle Corporation - Java Update Scheduler.) - (2.8.131.11) = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe 5176 | [Owner : Mohammed HEYOUNI |Parent : 604(svchost.exe)] - (.CyberLink Corp. - CyberLink YouCam Service.) - (6.0.4508.0) = C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe 5984 | [Owner : Mohammed HEYOUNI |Parent : 604(svchost.exe)] - (.Hewlett-Packard Development Company, L.P. - HP CoolSense.) - (2.2.0.51) = C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe 4544 | [Owner : Système |Parent : 2060(winlogon.exe)] - (.Microsoft Corporation - Usermode Font Driver Host.) - (10.0.14393.1358) = C:\Windows\System32\fontdrvhost.exe 4916 | [Owner : Mohammed HEYOUNI |Parent : 604(svchost.exe)] - (.AVAST Software - SecureLine.) - (1.0.289.0) = C:\Program Files\AVAST Software\SecureLine\secureline.exe 2112 | [Owner : Mohammed HEYOUNI |Parent : 968(svchost.exe)] - (.Microsoft Corporation - Application Frame Host.) - (10.0.14393.0) = C:\Windows\System32\ApplicationFrameHost.exe 6280 | [Owner : Mohammed HEYOUNI |Parent : 5732(AvastUI.exe)] - (.Microsoft Corporation - Chargeur CTF.) - (10.0.14393.0) = C:\Windows\SysWOW64\ctfmon.exe 8196 | [Owner : Mohammed HEYOUNI |Parent : 8520()] - (.Microsoft Corporation - Windows Defender notification icon.) - (4.10.14393.1198) = C:\Program Files\Windows Defender\MSASCuiL.exe 7232 | [Owner : Mohammed HEYOUNI |Parent : 4552(explorer.exe)] - (.Microsoft Corporation - Microsoft Word.) - (15.0.4420.1017) = C:\Program Files\Microsoft Office\Office15\WINWORD.EXE 8840 | [Owner : Mohammed HEYOUNI |Parent : 968(svchost.exe)] - (.Microsoft Corporation - Paramètres.) - (10.0.14393.82) = C:\Windows\ImmersiveControlPanel\SystemSettings.exe 1888 | [Owner : Mohammed HEYOUNI |Parent : 968(svchost.exe)] - (.-.) - (1.0.1706.13001) = C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.12990.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 4020 | [Owner : Mohammed HEYOUNI |Parent : 8592(chrome.exe)] - (.Google Inc. - Google Chrome.) - (58.0.3029.110) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 6220 | [Owner : Mohammed HEYOUNI |Parent : 8592(chrome.exe)] - (.Google Inc. - Google Chrome.) - (58.0.3029.110) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 4008 | [Owner : Mohammed HEYOUNI |Parent : 8592(chrome.exe)] - (.Google Inc. - Google Chrome.) - (58.0.3029.110) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 8548 | [Owner : Mohammed HEYOUNI |Parent : 8592(chrome.exe)] - (.Google Inc. - Google Chrome.) - (58.0.3029.110) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 8052 | [Owner : Mohammed HEYOUNI |Parent : 8592(chrome.exe)] - (.Google Inc. - Google Chrome.) - (58.0.3029.110) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 4640 | [Owner : Mohammed HEYOUNI |Parent : 8592(chrome.exe)] - (.Google Inc. - Google Chrome.) - (58.0.3029.110) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 2008 | [Owner : Mohammed HEYOUNI |Parent : 968(svchost.exe)] - (.-.) - (10.1705.1705.10001) = C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1705.1301.0_x64__8wekyb3d8bbwe\Calculator.exe 6308 | [Owner : Mohammed HEYOUNI |Parent : 8592(chrome.exe)] - (.Google Inc. - Google Chrome.) - (58.0.3029.110) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 8852 | [Owner : Mohammed HEYOUNI |Parent : 8592(chrome.exe)] - (.Google Inc. - Google Chrome.) - (58.0.3029.110) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 8748 | [Owner : Mohammed HEYOUNI |Parent : 8592(chrome.exe)] - (.Google Inc. - Google Chrome.) - (58.0.3029.110) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 8704 | [Owner : Mohammed HEYOUNI |Parent : 8592(chrome.exe)] - (.Google Inc. - Google Chrome.) - (58.0.3029.110) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 3652 | [Owner : Mohammed HEYOUNI |Parent : 8592(chrome.exe)] - (.Google Inc. - Google Chrome.) - (58.0.3029.110) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 8184 | [Owner : |Parent : 808(services.exe)] - (.Microsoft Corporation - Service de la plateforme de protection logicielle Microsoft.) - (10.0.14393.351) = C:\Windows\System32\sppsvc.exe ---------- | Tasks Suppression : YCMServiceAgent ---------- | Services ---------- | AppCertDlls | AppInit_DLLs ---------- | DNSapi.dll C:\WINDOWS\System32\dnsapi.dll : \drivers\etc\hosts C:\WINDOWS\SysWOW64\dnsapi.dll : \drivers\etc\hosts ---------- | Hosts ---------- | SafeBoot ---------- | Winsock ---------- | DNS ---------- | Registre Suppression : HKU\S-1-5-21-1636346787-4185295157-1300820904-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\fr.news.yahoo.com Suppression : HKU\S-1-5-21-1636346787-4185295157-1300820904-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\myaccount.google.com Suppression : HKU\S-1-5-21-1636346787-4185295157-1300820904-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\yahoo.com Suppression : HKU\S-1-5-21-1636346787-4185295157-1300820904-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\fr.news.yahoo.com Suppression : HKU\S-1-5-21-1636346787-4185295157-1300820904-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\myaccount.google.com Suppression : HKU\S-1-5-21-1636346787-4185295157-1300820904-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\yahoo.com Suppression : HKU\S-1-5-21-1636346787-4185295157-1300820904-1001\SOFTWARE\Classes\TypeLib\{CAB6EFF3-1533-4341-B0D2-FACC687C285B} : C:\Users\MOHAMM~1\AppData\Local\Temp\VBE\MSForms.exd Suppression : HKU\S-1-5-21-1636346787-4185295157-1300820904-1001\SOFTWARE\Chromium Suppression : [HKU\S-1-5-21-1636346787-4185295157-1300820904-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]~[DefaultScope] : {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Suppression : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]~[DefaultScope] Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes]~[DefaultScope] ---------- | Dossiers | Fichiers Suppression : C:\Users\Mohammed HEYOUNI\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_s0.2mdn.net_0.localstorage (.-.) Suppression : C:\Users\Mohammed HEYOUNI\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_s0.2mdn.net_0.localstorage-journal (.-.) Suppression : C:\Users\Mohammed HEYOUNI\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.01net.com_0.localstorage (.-.) Suppression : C:\Users\Mohammed HEYOUNI\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.01net.com_0.localstorage-journal (.-.) Suppression : C:\Program Files\Ghostgum Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ghostgum ---------- | .LNK ---------- | Ouverture extension inconnue ---------- | Proxy ---------- | Internet Explorer Reparation : [HKU\S-1-5-21-1636346787-4185295157-1300820904-1001\SOFTWARE\Microsoft\Internet Explorer\Main]~[Local Page] : %11%\blank.htm -> C:\WINDOWS\System32\blank.htm Reparation : [HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main]~[Local Page] : %11%\blank.htm -> C:\WINDOWS\System32\blank.htm Reparation : [HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main]~[Local Page] : %11%\blank.htm -> C:\WINDOWS\System32\blank.htm Reparation : [HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main]~[Local Page] : C:\Windows\SysWOW64\blank.htm -> C:\WINDOWS\System32\blank.htm Reparation : [HKU\S-1-5-21-1636346787-4185295157-1300820904-1001\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter]~[Enabled] : -> 2 Reparation : [HKU\S-1-5-21-1636346787-4185295157-1300820904-1001\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter]~[EnabledV8] : -> 1 Reparation : [HKU\S-1-5-21-1636346787-4185295157-1300820904-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings]~[WarNonBadCertReceving] : -> 1 Reparation : [HKU\S-1-5-21-1636346787-4185295157-1300820904-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings]~[WarNonHTTPSToHTTPRedirect] : -> 1 Reparation : [HKU\S-1-5-21-1636346787-4185295157-1300820904-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar]~[Locked] : 1 -> 0 ---------- | Yandex : X ---------- | Google Chrome Suppression : C:\Users\Mohammed HEYOUNI\AppData\Local\Google\Chrome\User Data\Default\Web Data (.-.) Remis a zero avec succes : SearchURL Suppression : C:\Users\Mohammed HEYOUNI\AppData\Local\Google\Chrome\User Data\Default\Preferences (.-.) Remis a zero avec succes : Preferences Suppression : C:\Users\Mohammed HEYOUNI\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (.-.) Remis a zero avec succes : Preferences Suppression : C:\Users\Mohammed HEYOUNI\AppData\Local\Google\Chrome\User Data\Default\extensions\apdfllckaahabafndbhieahigkjlhalf = permissions: [ background clipboardRead clipboardWrite notifications unlimitedStorage ] Suppression : C:\Users\Mohammed HEYOUNI\AppData\Local\Google\Chrome\User Data\Default\extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm = ids: [ idmofbkcelhplfjnmmdolenpigiiiecc ggedfkijiiammpnbdadhllnehapomdge njjegkblellcjnakomndbaloifhcoccg ] C:\Users\Mohammed HEYOUNI\AppData\Local\Google\Chrome\User Data\Default\extensions\aapocclcgogkmnckokdopfmhonfmgoek = : Google & co - Google & co - https://clients2.google.com/service/update2/crx C:\Users\Mohammed HEYOUNI\AppData\Local\Google\Chrome\User Data\Default\extensions\aohghmighlieiainnegkcijnfilokake = : Google & co - Google & co - https://clients2.google.com/service/update2/crx C:\Users\Mohammed HEYOUNI\AppData\Local\Google\Chrome\User Data\Default\extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo = : Google & co - http://www.youtube.com - http://www.youtube.com - Google & co - http://clients2.google.com/service/update2/crx C:\Users\Mohammed HEYOUNI\AppData\Local\Google\Chrome\User Data\Default\extensions\daanglpcpkjjlkhcbladppjphglbigam = : Avast Browser Security and Web Reputation Plugin. - Avast Online Security (BETA) - matches:[\u003Call_urls>] - https://clients2.google.com/service/update2/crx C:\Users\Mohammed HEYOUNI\AppData\Local\Google\Chrome\User Data\Default\extensions\eofcbnmajmjmplflapaojjnihcjkigck = : Avast SafePrice - safe shopping extension. - Avast SafePrice - https://clients2.google.com/service/update2/crx C:\Users\Mohammed HEYOUNI\AppData\Local\Google\Chrome\User Data\Default\extensions\felcaaldnbdncclmgdcncolpebgiejap = : Google & co - Google & co - https://clients2.google.com/service/update2/crx C:\Users\Mohammed HEYOUNI\AppData\Local\Google\Chrome\User Data\Default\extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi = : __MSG_extDesc__ - __MSG_extName__ - https://clients2.google.com/service/update2/crx C:\Users\Mohammed HEYOUNI\AppData\Local\Google\Chrome\User Data\Default\extensions\gomekmidlodglbbmalcneegieacbdmki = : Avast Browser Security and Web Reputation Plugin. - Avast Online Security - matches:[\u003Call_urls>] - https://clients2.google.com/service/update2/crx C:\Users\Mohammed HEYOUNI\AppData\Local\Google\Chrome\User Data\Default\extensions\nmmhkkegccagdldgiimedpiccmgmieda = : Google & co - Google & co - 203784468217.apps.googleusercontent.com - https://clients2.google.com/service/update2/crx C:\Users\Mohammed HEYOUNI\AppData\Local\Google\Chrome\User Data\Default\extensions\pjkljhegncpnkpknbcohdijeoejaedia = : Google & co - https://mail.google.com/mail/ca - Google & co - [*://mail.google.com/mail/ca] - http://clients2.google.com/service/update2/crx ---------- | Comodo Dragon : X ---------- | Firefox Suppression : C:\Users\Mohammed HEYOUNI\AppData\Roaming\Mozilla\Firefox\Profiles\8r89llk3.default\sessionstore.js (.-.) ---------- | SeaMonkey : X ---------- | Pale moon : X ---------- | Opera : X ---------- | Spark : X ---------- | StartMenuInternet ---------- | Javascript ---------- | Firewall ---------- | ADS Autre rapport Analyses : 336542 | Modifications : 9 | Suppressions : 24 ---------- |EOF| ---------- | 16:00:46 | [24 Ko]