Restaure : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software ---------- | AdsFix | g3n-h@ckm@n | 3_31.07.2016.5 ----- Vista | 7 | 8 | 8.1 | 10 - 32/64 bits ----- Start 12:01:35 - 14/08/2016 Mis a jour le : 31/07/2016 | 22.10 par g3n-h@ckm@n Contact : http://www.sosvirus.net Assistance : http://www.sosvirus.net/forum-virus-securite.html Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html Facebook : https://www.facebook.com/AdsFixAntiAdware C:\Users\Flint\Desktop\adsfix_3_31.07.2016.5.exe Boot: Normal boot [Flint (Administrator)] - [FLINT-PORTABLE] - (France [040C]) SID = S-1-5-21-3528452110-590337430-2345150132-1001 || [466c696e74205e5e] PC : ASUSTeK COMPUTER INC. - X550JK - ASUS-NotebookSKU Processor : X64 - 2794 - Intel(R) Core(TM) i5-4200H CPU @ 2.80GHz Bios : American Megatrends Inc. - 10/08/2014 - V.X550JK.303 CoreTemp : 29 C CPU #1 value:39 % CPU #2 value:0 % CPU #3 value:0 % CPU #4 value:3 % Total Overall CPU Usage value:9 % Système : Windows 8.1 (64 bits) Core Memoire RAM = Total (MB) : 8269 | Libre (MB) : 5996 Pagefile = Total (MB) : 9580 | Libre (MB) : 7170 Virtuelle = Total (MB) : 4194 | Libre (MB) : 3927 C:\ -> [Fixed] | [OS] | Total : 372.6 Go | Free : 301.19 Go -> NTFS [SATA] D:\ -> [Fixed] | [Data] | Total : 537.8 Go | Free : 177.19 Go -> NTFS [SATA] Registre sauvegardé , pour restaurer : Cliquer sur Options & Restaurer le registre (C:\AdsFix\Save\Registry [14.08.2016 @ 12_01_33]) ou un element Restauration de fichiers ou dossiers supprimes par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Selectionner un element >> "Restaurer" ---------- | Mises a jour Windows Derniere(s) détection(s) : 2016-08-14 09:56:46 Dernieres Telechargees : 2016-08-10 06:48:02 Dernieres installees : 2016-08-10 07:10:14 Prochaine recherche : 2016-08-15 04:13:44 ---------- | Navigateurs IE : 11.0.9600.18124 (© Microsoft Corporation. Tous droits réservés.) GC : 52.0.2743.116 (Copyright 2016 Google Inc. All rights reserved.) ---------- | Security (atcav : 0) AM : Malwarebytes' Anti-Malware (2.3.173.0) [Update : 01/08/2016 22:07:53] FW : WMI : OK WU: Windows Update Service [Manual(3)] = non en cours AS: Windows Defender [Manual(3)] = non en cours FW: Windows FireWall Service [Auto(2)] = en cours WMI: Windows Management Instrumentation (System Information) [Auto(2)] = en cours ---------- | FlashPlayer ActiveX : 22.0.0.209 ---------- | Processes closed 292 | [Owner : |Parent : 780(services.exe)] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 364.72.) - (8.17.13.6472) = C:\Windows\System32\nvvsvc.exe 436 | [Owner : |Parent : 292()] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) - (8.17.13.6472) = C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe 444 | [Owner : |Parent : 292()] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 364.72.) - (8.17.13.6472) = C:\Windows\System32\nvvsvc.exe 1060 | [Owner : |Parent : 780(services.exe)] - (.Intel Corporation - igfxCUIService Module.) - (6.15.10.3496) = C:\Windows\System32\igfxCUIService.exe 1424 | [Owner : |Parent : 780(services.exe)] - (.ASUSTek Computer Inc. - ASLDR Service.) - (1.0.81.2) = C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe 1468 | [Owner : |Parent : 780(services.exe)] - (.ASUS - GFNEXSrv.) - (1.0.11.1) = C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe 1596 | [Owner : |Parent : 1424()] - (.ASUSTek Computer Inc. - HControl.) - (1.0.82.1) = C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe 1716 | [Owner : |Parent : 1596()] - (.ASUSTek Computer Inc. - KBFiltr.) - (1.0.67.1) = C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe 1784 | [Owner : |Parent : 780(services.exe)] - (.Microsoft Corporation - Application sous-système spouleur.) - (6.3.9600.17415) = C:\Windows\System32\spoolsv.exe 1160 | [Owner : Système |Parent : 780(services.exe)] - (.Apple Inc. - MobileDeviceService.) - (17.364.0.84) = C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 1168 | [Owner : Aucun |Parent : 728(svchost.exe)] - (.ASUSTek Computer Inc. - ASUS USB Charger Plus.) - (4.0.2.0) = C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe 1192 | [Owner : Flint |Parent : 728(svchost.exe)] - (.ASUS - ACMON.) - (1.0.8.0) = C:\Program Files (x86)\ASUS\Splendid\ACMON.exe 1908 | [Owner : Aucun |Parent : 728(svchost.exe)] - (.ASUS - Power4Gear Hybrid.) - (2.2.0.0) = C:\Program Files\ASUS\P4G\BatteryLife.exe 2064 | [Owner : Flint |Parent : 728(svchost.exe)] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) - (6.3.9600.17415) = C:\Windows\System32\taskhostex.exe 2252 | [Owner : Système |Parent : 780(services.exe)] - (.ASUS Cloud Corporation - Asus WebStorage Windows Service.) - (1.0.0.0) = C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe 2328 | [Owner : Flint |Parent : 2032()] - (.AsusTek - ASUS Smart Gesture Loader.) - (1.0.34.0) = C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe 2448 | [Owner : Système |Parent : 780(services.exe)] - (.Windows (R) Win 7 DDK provider - Windows Setup API.) - (6.2.9200.16384) = C:\Program Files (x86)\Bluetooth Suite\AdminService.exe 2700 | [Owner : Système |Parent : 780(services.exe)] - (.Apple Inc. - Bonjour Service.) - (3.1.0.1) = C:\Program Files\Bonjour\mDNSResponder.exe 2724 | [Owner : Système |Parent : 780(services.exe)] - (.Conexant Systems Inc. - Conexant Audio Message Service.) - (1.13.0.0) = C:\Windows\System32\CxAudMsg64.exe 2784 | [Owner : Système |Parent : 780(services.exe)] - (.- DDJ-SZ_AutoSetup.) - (1.0.0.0) = C:\Program Files (x86)\Pioneer\DDJ-SZ\DDJ-SZ_AutoSetup.exe 2816 | [Owner : SERVICE LOCAL |Parent : 1204(svchost.exe)] - (.Microsoft Corporation - Device Association Framework Provider Host.) - (6.3.9600.17415) = C:\Windows\System32\dasHost.exe 2920 | [Owner : Flint |Parent : 436()] - (.NVIDIA Corporation - NVIDIA Settings.) - (7.17.13.6472) = C:\Program Files\NVIDIA Corporation\Display\nvtray.exe 2948 | [Owner : Système |Parent : 780(services.exe)] - (.NVIDIA Corporation - NVIDIA GeForce ExperienceService.) - (2.9.1.22) = C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe 3048 | [Owner : Système |Parent : 780(services.exe)] - (.Intel(R) Corporation - Intel(R) Capability Licensing Service Interface.) - (1.31.8.1) = C:\Program Files\Intel\iCLS Client\HeciServer.exe 3056 | [Owner : Flint |Parent : 2920()] - (.NVIDIA Corporation - NVIDIA Backend.) - (20.14.1.0) = C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe 3200 | [Owner : Flint |Parent : 1664(explorer.exe)] - (.Google Inc. - Google Chrome.) - (52.0.2743.116) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 3288 | [Owner : Système |Parent : 780(services.exe)] - (.NVIDIA Corporation - NVIDIA Network Service.) - (2.4.13.69) = C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe 3376 | [Owner : Système |Parent : 780(services.exe)] - (.NVIDIA Corporation - NVIDIA Streamer Service.) - (4.1.2032.8372) = C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe 3500 | [Owner : Système |Parent : 780(services.exe)] - (.Conexant Systems, Inc. - SmartAudio Service Application.) - (1.0.4.0) = C:\Windows\SysWOW64\SASrv.exe 3644 | [Owner : Système |Parent : 780(services.exe)] - (.Atheros - Atheros Coex Service Application.) - (8.0.0.270) = C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe 3156 | [Owner : Flint |Parent : 2328()] - (.AsusTek - ASUS Smart Gesture Center.) - (1.0.0.72) = C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe 3440 | [Owner : Flint |Parent : 2328()] - (.ASUSTeK Computer Inc. - Asus Smart Gesture Detector.) - (1.0.0.3) = C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusSmartGestureDetector64.exe 4224 | [Owner : SERVICE RÉSEAU |Parent : 780(services.exe)] - (.NVIDIA Corporation - NVIDIA Network Stream Service.) - (4.1.2032.8372) = C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe 4400 | [Owner : Système |Parent : 3376()] - (.NVIDIA Corporation - NVIDIA Streamer User Agent.) - (4.1.2032.8372) = C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe 4880 | [Owner : SERVICE LOCAL |Parent : 780(services.exe)] - (.Microsoft Corporation - PresentationFontCache.exe.) - (3.0.6920.7903) = C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe 4564 | [Owner : Flint |Parent : 3156()] - (.AsusTek - ASUS Smart Gesture Helper.) - (1.0.18.0) = C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe 3332 | [Owner : Flint |Parent : 1636()] - (.ASUSTek Computer Inc. - ATKOSD2.) - (7.0.30.3) = C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe 3428 | [Owner : Flint |Parent : 1672()] - (.ASUSTek Computer Inc. - ATK Media.) - (2.0.19.3) = C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe 5280 | [Owner : Flint |Parent : 1664(explorer.exe)] - (.Qualcomm®Atheros® - Extension Core.) - (8.0.1.318) = C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe 5416 | [Owner : Flint |Parent : 4792()] - (.Intel Corporation - igfxHK Module.) - (6.15.10.3496) = C:\Windows\System32\igfxHK.exe 5860 | [Owner : Flint |Parent : 4792()] - (.Intel Corporation - igfxTray Module.) - (6.15.10.3496) = C:\Windows\System32\igfxTray.exe 6084 | [Owner : Flint |Parent : 872(svchost.exe)] - (.Intel Corporation - igfxEM Module.) - (6.15.10.3496) = C:\Windows\System32\igfxEM.exe 1812 | [Owner : Flint |Parent : 1664(explorer.exe)] - (.Conexant Systems, Inc. - Conexant High Definition Audio Filter Agent.) - (1.7.76.0) = C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe 6092 | [Owner : Flint |Parent : 1664(explorer.exe)] - (.Apple Inc. - iTunesHelper.) - (12.4.3.1) = C:\Program Files\iTunes\iTunesHelper.exe 5056 | [Owner : Flint |Parent : 1664(explorer.exe)] - (.Apple Inc. - iCloud Services.) - (45.0.0.25) = C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe 6216 | [Owner : Système |Parent : 780(services.exe)] - (.Apple Inc. - iPodService Module (64-bit).) - (12.4.3.1) = C:\Program Files\iPod\bin\iPodService.exe 4200 | [Owner : Flint |Parent : 6028()] - (.Conexant Systems, Inc - SmartAudio.) - (6.0.204.0) = C:\Program Files\CONEXANT\SAII\SmartAudio.exe 6572 | [Owner : Système |Parent : 780(services.exe)] - (.WildTangent - WildTangent Games App Integration Service.) - (4.0.34.25) = C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe 6596 | [Owner : Système |Parent : 780(services.exe)] - (.Intel Corporation - Intel(R) ME Service.) - (9.5.10.1628) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe 6648 | [Owner : Système |Parent : 780(services.exe)] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host Interface.) - (9.5.12.1682) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe 4012 | [Owner : Système |Parent : 780(services.exe)] - (.Intel Corporation - Intel(R) Local Management Service.) - (9.5.10.1628) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe 6912 | [Owner : SERVICE RÉSEAU |Parent : 780(services.exe)] - (.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) - (12.0.9600.17415) = C:\Program Files\Windows Media Player\wmpnetwk.exe 2176 | [Owner : Flint |Parent : 1800()] - (.ASUS Cloud Corporation - .) - (1.0.0.0) = C:\Program Files (x86)\ASUS\WebStorage\2.2.6.547\AsusWSPanel.exe 5256 | [Owner : Système |Parent : 728(svchost.exe)] - (.Microsoft Corporation - Microsoft Compatibility Telemetry.) - (10.0.14361.1000) = C:\Windows\System32\CompatTelRunner.exe 3968 | [Owner : Système |Parent : 5256()] - (.Microsoft Corporation - Microsoft Compatibility Telemetry.) - (10.0.14361.1000) = C:\Windows\System32\CompatTelRunner.exe 5568 | [Owner : Flint |Parent : 6392(avastui.exe)] - (.Microsoft Corporation - Chargeur CTF.) - (6.3.9600.17415) = C:\Windows\SysWOW64\ctfmon.exe ---------- | Tasks ---------- | Services ---------- | AppCertDlls | AppInit_DLLs ---------- | DNSapi.dll C:\Windows\System32\dnsapi.dll : \drivers\etc\hosts C:\Windows\SysWOW64\dnsapi.dll : \drivers\etc\hosts ---------- | Hosts ---------- | SafeBoot ¤ ---------- | Winsock ---------- | DNS ---------- | Registre Suppression : HKLM\SOFTWARE\Classes\AppID\SoftwareUpdate.exe : # Suppression : HKLM\SOFTWARE\Classes\AppID\{6A070EEA-E3F8-411E-9D3A-F3814ED6D1A8} : SoftwareUpdateApp # Suppression : HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\avast! Emergency Update ---------- | Dossiers | Fichiers Suppression : C:\Users\Flint\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_soundcloud.com_0.localstorage (.-.) Suppression : C:\Users\Flint\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_soundcloud.com_0.localstorage-journal (.-.) Suppression : C:\Users\Flint\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.coupons.com_0.localstorage (.-.) Suppression : C:\Users\Flint\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.coupons.com_0.localstorage-journal (.-.) Suppression : C:\Users\Flint\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_forum.telecharger.01net.com_0.localstorage (.-.) Suppression : C:\Users\Flint\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_forum.telecharger.01net.com_0.localstorage-journal (.-.) Suppression : C:\Users\Flint\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.01net.com_0.localstorage (.-.) Suppression : C:\Users\Flint\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.01net.com_0.localstorage-journal (.-.) ---------- | .LNK ---------- | Ouverture extension inconnue ---------- | Proxy ---------- | Internet Explorer ---------- | Yandex ---------- | Google Chrome Suppression : C:\Users\Flint\AppData\Local\Google\Chrome\User Data\Default\Web Data (.-.) Remis a zero avec succes : SearchURL Suppression : C:\Users\Flint\AppData\Local\Google\Chrome\User Data\Default\Preferences (.-.) Remis a zero avec succes : Preferences Suppression : C:\Users\Flint\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (.-.) Remis a zero avec succes : Preferences Suppression : C:\Users\Flint\AppData\Local\Google\Chrome\User Data\Default\extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm = permissions: [ alarms cast cast.streaming declarativeWebRequest dial http://*/* identity identity.email management mdns mediaRouterPrivate metricsPrivate networkingPrivate processes storage system.cpu settingsPrivate tabCapture tabs webview https://hangouts.google.com/* ] C:\Users\Flint\AppData\Local\Google\Chrome\User Data\Default\extensions\gomekmidlodglbbmalcneegieacbdmki = : Avast Browser Security and Web Reputation Plugin. - Avast Online Security - https://clients2.google.com/service/update2/crx C:\Users\Flint\AppData\Local\Google\Chrome\User Data\Default\extensions\nmmhkkegccagdldgiimedpiccmgmieda = : Google & co - Google & co - 203784468217.apps.googleusercontent.com - https://clients2.google.com/service/update2/crx ---------- | Chromium ---------- | Comodo Dragon ---------- | Firefox ---------- | SeaMonkey ---------- | Pale moon ---------- | Opera ---------- | Spark ---------- | StartMenuInternet Reparation : [HKLM\SOFTWARE\Clients\StartMenuInternet\SafeZoneStable\InstallInfo]~[] : "C:\Program Files\AVAST Software\SZBrowser\Launcher.exe" --makedefaultbrowser -> "C:\Program Files (x86)\AVAST Software\SZBrowser\Launcher.exe" --makedefaultbrowser Reparation : [HKLM\SOFTWARE\WOW6432Node\Clients\StartMenuInternet\SafeZoneStable\InstallInfo]~[] : "C:\Program Files\AVAST Software\SZBrowser\Launcher.exe" --makedefaultbrowser -> "C:\Program Files (x86)\AVAST Software\SZBrowser\Launcher.exe" --makedefaultbrowser ---------- | Javascript ---------- | Firewall ---------- | ADS Autre rapport C:\AdsFix_01_08_2016_14_22_34.txt[29 Ko] Analyses : 335481 | Modifications : 2 | Suppressions : 15 ---------- |EOF| ---------- | 17:34:23 | [17 Ko]