---------- | AdsFix | g3n-h@ckm@n | 3_25.10.2016.2

----- Vista | 7 | 8 | 8.1 | 10 - 32/64 bits ----- Start 08:52:32 - 27/10/2016

Mis a jour le : 25/10/2016 | 23.40 par g3n-h@ckm@n
Contact : http://www.sosvirus.net
Assistance : http://www.sosvirus.net/forum-virus-securite.html
Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html
Facebook : https://www.facebook.com/AdsFixAntiAdware
C:\Users\Damien\Desktop\adsfix_3_25.10.2016.1.exe
Boot: Normal boot
[Damien (Administrator)] - [DAMIEN-PC] -  (France [040C])
SID = S-1-5-21-632178411-2394207594-2140285815-1000 || [44616d69656e205e5e]
PC : MSI - Z87-G45 GAMING (MS-7821) - To be filled by O.E.M.
Processor : X64 - 3400 - Intel(R) Core(TM) i7-4770 CPU @ 3.40GHz
Bios : American Megatrends Inc. - 07/21/2014 - V.V1.9
CoreTemp : 29.8 C

CPU #1 value:0 %
CPU #2 value:0 %
CPU #3 value:0 %
CPU #4 value:0 %
Total Overall CPU Usage value:0 %

Systeme : Windows 7 Ultimate (64 bits) Ultimate Service Pack 1
Memoire RAM = Total (MB) : 16720 | Libre (MB) : 12942
Pagefile = Total (MB) : 16923 | Libre (MB) : 12733
Virtuelle = Total (MB) : 4194 | Libre (MB) : 3988

C:\ -> [Fixed] | [] | Total : 232.88 Go | Free : 108.78 Go -> NTFS (SSD) [SATA]
D:\ -> [Fixed] | [] | Total : 465.76 Go | Free : 311.79 Go -> NTFS (SSD) [SATA]
E:\ -> [CDROM] | [Farming Simulator 17] | Total : 4.13 Go | Free : 0 Go -> UDF [FileBackedVirtual]
F:\ -> [Fixed] | [Nouveau nom] | Total : 1863.01 Go | Free : 1463.3 Go -> NTFS [SATA]

Sauvegarde du registre , pour restaurer :  Cliquer sur Options & Restaurer le registre (C:\AdsFix\Save\Registry [27.10.2016 @ 08_52_31]) ou un element
Restauration de fichiers ou dossiers supprimes par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Selectionner un element >> "Restaurer"

---------- | Mises a jour Windows

Derniere(s) detection(s) : 2016-09-29 19:31:30
Dernieres Telechargees : 2016-09-29 19:55:39
Dernieres installees : 2016-09-29 21:12:39

---------- | Navigateurs

IE : 11.0.9600.17840     (© Microsoft Corporation. Tous droits réservés.)
FF : 49.0.1.6109     (©Firefox and Mozilla Developers; available under the MPL 2 license.)

---------- | Security (atcav : 0)

AM : Malwarebytes' Anti-Malware   (2.3.173.0)     [Update : 18/10/2016 20:08:03]
WMI : OK
WU: Windows Update Service [Auto(2)] = non en cours
AS: Windows Defender [Auto(2)] = non en cours
FW: Windows FireWall Service [Auto(2)] = en cours
WMI: Windows Management Instrumentation (System Information) [Auto(2)] = en cours

---------- | FlashPlayer

Plugin : 23.0.0.185

---------- | Processes closed

1800 | [Owner : Système |Parent : 888(services.exe)] - (.Microsoft Corporation - Application sous-système spouleur.) - (6.1.7601.17514) = C:\Windows\System32\spoolsv.exe
1836 | [Owner : Damien |Parent : 888(services.exe)] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) - (6.1.7601.18010) = C:\Windows\System32\taskhost.exe
2040 | [Owner : Système |Parent : 888(services.exe)] - (.Apple Inc. - MobileDeviceService.) - (17.374.70.8) = C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
1556 | [Owner : Système |Parent : 888(services.exe)] - (.Apple Inc. - Bonjour Service.) - (3.1.0.1) = C:\Program Files\Bonjour\mDNSResponder.exe
1816 | [Owner : Système |Parent : 888(services.exe)] - (.Micro-Star Int'l Co., Ltd. - GamingApp_Service.) - (1.0.0.9) = C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe
1296 | [Owner : Damien |Parent : 1340(svchost.exe)] - (.Microsoft Corporation - Moteur du Planificateur de tâches.) - (6.1.7601.17514) = C:\Windows\System32\taskeng.exe
2148 | [Owner : Système |Parent : 888(services.exe)] - (.Micro-Star INT'L CO., LTD. - Gaming Hotkey Service.) - (1.0.0.6) = C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe
2180 | [Owner : Damien |Parent : 1296()] - (.Micro-Star INT'L CO., LTD. - MsiGamingOSD_x86.) - (1.0.0.3) = C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MsiGamingOSD_x86.exe
2196 | [Owner : Damien |Parent : 1296()] - (.Micro-Star INT'L CO., LTD. - MsiGamingOSD_x64.) - (1.0.0.3) = C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\MsiGamingOSD_x64.exe
2204 | [Owner : Damien |Parent : 1296()] - (.MSI - Windows Host Process.) - (1.0.0.1) = C:\Windows\SysWOW64\muachost.exe
2232 | [Owner : Système |Parent : 888(services.exe)] - (.- ISCT Agent Application.) - (5.0.10.2907) = C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
2412 | [Owner : Système |Parent : 888(services.exe)] - (.Micro-Star INT'L CO., LTD. - MSI Live Update Service.) - (1.0.0.34) = C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
2440 | [Owner : Système |Parent : 888(services.exe)] - (.MSI - Super Charger Service.) - (1.3.0.7) = C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
2544 | [Owner : Système |Parent : 888(services.exe)] - (.- MediatekSw Application.) - (1.0.1.3) = C:\Program Files (x86)\NETGEAR\A6210\NetgearSwitchUSB.exe
2580 | [Owner : Système |Parent : 888(services.exe)] - (.NVIDIA Corporation - NVIDIA Container.) - (1.0.2118.2499) = C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
2624 | [Owner : Système |Parent : 888(services.exe)] - (.NVIDIA Corporation - NVIDIA Container.) - (1.0.0.0) = C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
2672 | [Owner : Système |Parent : 888(services.exe)] - (.NVIDIA Corporation - NVIDIA Wireless Controller Service.) - (3.0.7.34) = C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
2952 | [Owner : Damien |Parent : 1972(explorer.exe)] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) - (1.0.561.0) = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
2960 | [Owner : Damien |Parent : 1972(explorer.exe)] - (.Intel Corporation - ISCT SysTray.) - (5.0.10.2907) = C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
3020 | [Owner : Damien |Parent : 1972(explorer.exe)] - (.Samsung Electronics Co., Ltd. - Samsung RAPID Mode Notification Utility.) - (1.0.1.96) = C:\Program Files (x86)\Samsung\RAPID\CacheFilter\SamsungRapidApp.exe
3068 | [Owner : Damien |Parent : 1972(explorer.exe)] - (.Apple Inc. - iTunesHelper.) - (12.5.1.21) = C:\Program Files\iTunes\iTunesHelper.exe
2312 | [Owner : Système |Parent : 2624()] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) - (8.17.13.7563) = C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
2892 | [Owner : Damien |Parent : 1972(explorer.exe)] - (.Disc Soft Ltd - DAEMON Tools Shell Extensions Helper.) - (6.1.0.484) = C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe
3216 | [Owner : Damien |Parent : 2552()] - (.NETGEAR - A6210 Genie MFC Application.) - (1.0.0.35) = C:\Program Files (x86)\NETGEAR\A6210\A6210.EXE
3228 | [Owner : Damien |Parent : 2552()] - (.MSI - Super Charger.) - (1.3.0.7) = C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
3244 | [Owner : Damien |Parent : 2552()] - (.Micro-Star INT'L CO., LTD. - Live Update 6 Application.) - (6.1.23.0) = C:\Program Files (x86)\MSI\Live Update\Live Update.exe
3324 | [Owner : Damien |Parent : 2552()] - (.Intel Corporation - iusb3mon.) - (3.0.5.69) = C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
3544 | [Owner : Damien |Parent : 876(svchost.exe)] - (.NVIDIA Corporation - NVIDIA Capture Server.) - (3.0.7.34) = C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
3984 | [Owner : Damien |Parent : 3544(nvspcaps64.exe)] - (.NVIDIA Corporation - NVIDIA Share.) - (51.2704.1434.1) = C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
4060 | [Owner : Damien |Parent : 3984(NVIDIA Share.exe)] - (.NVIDIA Corporation - NVIDIA Share.) - (51.2704.1434.1) = C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
4000 | [Owner : Damien |Parent : 3808()] - (.Node.js - NVIDIA Web Helper Service.) - (4.4.3.0) = C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
4092 | [Owner : Damien |Parent : 756(csrss.exe)] - (.Microsoft Corporation - Hôte de la fenêtre de la console.) - (6.1.7601.23539) = C:\Windows\System32\conhost.exe
4264 | [Owner : Damien |Parent : 2312()] - (.NVIDIA Corporation - NVIDIA Settings.) - (7.17.13.7563) = C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
4704 | [Owner : Système |Parent : 888(services.exe)] - (.Panda Security, S.L. - Agent Service.) - (1.3.8.0) = C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
4828 | [Owner : Système |Parent : 888(services.exe)] - (.Visicom Media Inc. - Anti-phishing Domain Advisor (Powered by Panda Security).) - (2.0.1.48) = C:\Program Files\Panda Security URL Filtering\Panda_URL_Filteringb.exe
2860 | [Owner : Système |Parent : 888(services.exe)] - (.Samsung Electronics Co., Ltd. - Samsung RAPID Mode Service.) - (1.0.1.96) = C:\Windows\System32\RAPID\SamsungRapidSvc.exe
1932 | [Owner : Système |Parent : 888(services.exe)] - (.Microsoft Corporation - SQL Server VSS Writer - 64 Bit.) - (2011.110.2318.0) = C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
5088 | [Owner : Damien |Parent : 2980()] - (.Intel Corporation - IAStorIcon.) - (13.1.0.1058) = C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
5140 | [Owner : Système |Parent : 888(services.exe)] - (.Apple Inc. - iPodService Module (64-bit).) - (12.5.1.21) = C:\Program Files\iPod\bin\iPodService.exe
3276 | [Owner : Système |Parent : 888(services.exe)] - (.Disc Soft Ltd - Disc Soft Bus Service.) - (6.1.0.484) = C:\Program Files\DAEMON Tools Pro\DiscSoftBusService.exe
5216 | [Owner : SERVICE RÉSEAU |Parent : 888(services.exe)] - (.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) - (12.0.7601.17514) = C:\Program Files\Windows Media Player\wmpnetwk.exe
5696 | [Owner : Damien |Parent : 1972(explorer.exe)] - (.Mozilla Corporation - Firefox.) - (49.0.1.6109) = C:\Program Files (x86)\Mozilla Firefox\firefox.exe
4872 | [Owner : Système |Parent : 3644()] - (.Google Inc. - Programme d'installation de Google.) - (1.3.31.5) = C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
5496 | [Owner : Système |Parent : 888(services.exe)] - (.Intel Corporation - IAStorDataSvc.) - (13.1.0.1058) = C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
5620 | [Owner : Système |Parent : 888(services.exe)] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host Interface.) - (10.0.30.1054) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
4148 | [Owner : Système |Parent : 888(services.exe)] - (.Intel Corporation - Intel(R) Local Management Service.) - (10.0.30.1054) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

---------- | Tasks

Suppression : MSIOSDx64_Host
Suppression : MSIOSDx86_Host
Suppression : MSISW_Host


---------- | Services


---------- | AppCertDlls | AppInit_DLLs


---------- | DNSapi.dll

C:\Windows\System32\dnsapi.dll : \drivers\etc\hosts
C:\Windows\SysWOW64\dnsapi.dll : \drivers\etc\hosts

---------- | Hosts


---------- | SafeBoot


---------- | Winsock


---------- | DNS


---------- | Registre

Suppression : HKLM\SOFTWARE\Classes\AppID\SoftwareUpdate.exe :  # 
Suppression : HKLM\SOFTWARE\Classes\AppID\{6A070EEA-E3F8-411E-9D3A-F3814ED6D1A8} : SoftwareUpdateApp # 
Suppression : HKLM\SOFTWARE\Wow6432Node\Classes\AppID\SoftwareUpdateAdmin.DLL :  # 
Suppression : HKLM\SOFTWARE\Classes\CLSID\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} : C:\Program Files (x86)\pandasecuritytb\pandasecurityDx64.dll # 
Suppression : HKLM\SOFTWARE\Microsoft\Tracing\Hola-Setup-Core_RASAPI32
Suppression : HKLM\SOFTWARE\Microsoft\Tracing\hola_RASAPI32
Suppression : HKLM\SOFTWARE\Microsoft\Tracing\hola_svc_RASAPI32
Suppression : HKU\S-1-5-21-632178411-2394207594-2140285815-1000\SOFTWARE\eSellerate
Suppression : HKLM\SOFTWARE\Wow6432Node\eSellerate
Suppression : HKLM\SOFTWARE\Wow6432Node\IObit
Suppression : HKLM\SOFTWARE\Wow6432Node\pandasecuritytb
Suppression : [HKU\S-1-5-21-632178411-2394207594-2140285815-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]~[DefaultScope] : {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Suppression : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar]~[{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}] : Panda Safe Web
Suppression : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]~[DefaultScope]
Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes]~[DefaultScope]
Suppression : HKU\S-1-5-21-632178411-2394207594-2140285815-1000\SOFTWARE\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\2058188a_0 : {0.0.0.00000000}.{a63fa9db-1347-4389-a271-44eb9b9c6913}|\Device\HarddiskVolume1\Program Files (x86)\Trojan Remover\Trjscan.exe%b{00000000-0000-0000-0000-000000000000}
Suppression : HKU\S-1-5-21-632178411-2394207594-2140285815-1000\SOFTWARE\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\a96bdd29_0 : {0.0.0.00000000}.{a63fa9db-1347-4389-a271-44eb9b9c6913}|\Device\HarddiskVolume1\Program Files (x86)\Trojan Remover\Rmvtrjan.exe%b{00000000-0000-0000-0000-000000000000}
Suppression : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62155D33-3CE2-401E-8967-5A270628A3D5} : C:\Program Files (x86)\pandasecuritytb
Suppression : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}
Suppression : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CC2DE09D-AF76-42f2-80E9-E5FFE623B971} : C:\Program Files (x86)\pandasecuritytb
Suppression : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{62155D33-3CE2-401E-8967-5A270628A3D5}
Suppression : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}
Suppression : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CC2DE09D-AF76-42f2-80E9-E5FFE623B971}
Suppression : HKU\S-1-5-21-632178411-2394207594-2140285815-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}
Suppression : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4}
Suppression : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} : Panda Safe Web
---------- | AdsFix | g3n-h@ckm@n | 3_25.10.2016.2

----- Vista | 7 | 8 | 8.1 | 10 - 32/64 bits ----- Start 12:54:00 - 27/10/2016

Mis a jour le : 25/10/2016 | 23.40 par g3n-h@ckm@n
Contact : http://www.sosvirus.net
Assistance : http://www.sosvirus.net/forum-virus-securite.html
Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html
Facebook : https://www.facebook.com/AdsFixAntiAdware
C:\Users\Damien\Desktop\adsfix_3_25.10.2016.1.exe
Boot: Normal boot
[Damien (Administrator)] - [DAMIEN-PC] -  (France [040C])
SID = S-1-5-21-632178411-2394207594-2140285815-1000 || [44616d69656e205e5e]
PC : MSI - Z87-G45 GAMING (MS-7821) - To be filled by O.E.M.
Processor : X64 - 3400 - Intel(R) Core(TM) i7-4770 CPU @ 3.40GHz
Bios : American Megatrends Inc. - 07/21/2014 - V.V1.9
CoreTemp : 29.8 C

CPU #1 value:0 %
CPU #2 value:0 %
CPU #3 value:0 %
CPU #4 value:0 %
Total Overall CPU Usage value:0 %

Systeme : Windows 7 Ultimate (64 bits) Ultimate Service Pack 1
Memoire RAM = Total (MB) : 16720 | Libre (MB) : 13223
Pagefile = Total (MB) : 16923 | Libre (MB) : 13344
Virtuelle = Total (MB) : 4194 | Libre (MB) : 3988

C:\ -> [Fixed] | [] | Total : 232.88 Go | Free : 108.77 Go -> NTFS (SSD) [SATA]
D:\ -> [Fixed] | [] | Total : 465.76 Go | Free : 311.79 Go -> NTFS (SSD) [SATA]
E:\ -> [CDROM] | [Farming Simulator 17] | Total : 4.13 Go | Free : 0 Go -> UDF [FileBackedVirtual]
F:\ -> [Fixed] | [Nouveau nom] | Total : 1863.01 Go | Free : 1463.3 Go -> NTFS [SATA]

Sauvegarde du registre , pour restaurer :  Cliquer sur Options & Restaurer le registre (C:\AdsFix\Save\Registry [27.10.2016 @ 12_54_00]) ou un element
Restauration de fichiers ou dossiers supprimes par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Selectionner un element >> "Restaurer"

---------- | Mises a jour Windows

Derniere(s) detection(s) : 2016-09-29 19:31:30
Dernieres Telechargees : 2016-09-29 19:55:39
Dernieres installees : 2016-09-29 21:12:39

---------- | Navigateurs

IE : 11.0.9600.17840     (© Microsoft Corporation. Tous droits réservés.)
FF : 49.0.1.6109     (©Firefox and Mozilla Developers; available under the MPL 2 license.)

---------- | Security (atcav : 0)

AM : Malwarebytes' Anti-Malware   (2.3.173.0)     [Update : 18/10/2016 20:08:03]
WMI : OK
WU: Windows Update Service [Auto(2)] = non en cours
AS: Windows Defender [Auto(2)] = non en cours
FW: Windows FireWall Service [Auto(2)] = en cours
WMI: Windows Management Instrumentation (System Information) [Auto(2)] = en cours

---------- | FlashPlayer

Plugin : 23.0.0.185

---------- | Processes closed

1908 | [Owner : Système |Parent : 888(services.exe)] - (.Microsoft Corporation - Application sous-système spouleur.) - (6.1.7601.17514) = C:\Windows\System32\spoolsv.exe
1916 | [Owner : Damien |Parent : 888(services.exe)] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) - (6.1.7601.18010) = C:\Windows\System32\taskhost.exe
1556 | [Owner : Système |Parent : 888(services.exe)] - (.Apple Inc. - MobileDeviceService.) - (17.374.70.8) = C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
1568 | [Owner : Damien |Parent : 1348(svchost.exe)] - (.Microsoft Corporation - Moteur du Planificateur de tâches.) - (6.1.7601.17514) = C:\Windows\System32\taskeng.exe
1736 | [Owner : Système |Parent : 888(services.exe)] - (.Apple Inc. - Bonjour Service.) - (3.1.0.1) = C:\Program Files\Bonjour\mDNSResponder.exe
744 | [Owner : Système |Parent : 888(services.exe)] - (.Micro-Star Int'l Co., Ltd. - GamingApp_Service.) - (1.0.0.9) = C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe
2248 | [Owner : Système |Parent : 888(services.exe)] - (.Micro-Star INT'L CO., LTD. - Gaming Hotkey Service.) - (1.0.0.6) = C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe
2280 | [Owner : Système |Parent : 888(services.exe)] - (.- ISCT Agent Application.) - (5.0.10.2907) = C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
2464 | [Owner : Système |Parent : 888(services.exe)] - (.Micro-Star INT'L CO., LTD. - MSI Live Update Service.) - (1.0.0.34) = C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
2488 | [Owner : Système |Parent : 888(services.exe)] - (.MSI - Super Charger Service.) - (1.3.0.7) = C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
2596 | [Owner : Système |Parent : 888(services.exe)] - (.- MediatekSw Application.) - (1.0.1.3) = C:\Program Files (x86)\NETGEAR\A6210\NetgearSwitchUSB.exe
2636 | [Owner : Système |Parent : 888(services.exe)] - (.NVIDIA Corporation - NVIDIA Container.) - (1.0.2118.2499) = C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
2680 | [Owner : Système |Parent : 888(services.exe)] - (.NVIDIA Corporation - NVIDIA Container.) - (1.0.0.0) = C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
2740 | [Owner : Système |Parent : 888(services.exe)] - (.NVIDIA Corporation - NVIDIA Wireless Controller Service.) - (3.0.7.34) = C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
2992 | [Owner : Damien |Parent : 1852(explorer.exe)] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) - (1.0.561.0) = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
3008 | [Owner : Damien |Parent : 1852(explorer.exe)] - (.Intel Corporation - ISCT SysTray.) - (5.0.10.2907) = C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
3044 | [Owner : Damien |Parent : 1852(explorer.exe)] - (.Samsung Electronics Co., Ltd. - Samsung RAPID Mode Notification Utility.) - (1.0.1.96) = C:\Program Files (x86)\Samsung\RAPID\CacheFilter\SamsungRapidApp.exe
2040 | [Owner : Damien |Parent : 1852(explorer.exe)] - (.Apple Inc. - iTunesHelper.) - (12.5.1.21) = C:\Program Files\iTunes\iTunesHelper.exe
2604 | [Owner : Damien |Parent : 1852(explorer.exe)] - (.Disc Soft Ltd - DAEMON Tools Shell Extensions Helper.) - (6.1.0.484) = C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe
3128 | [Owner : Système |Parent : 2680()] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) - (8.17.13.7563) = C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
3168 | [Owner : Damien |Parent : 2908()] - (.NETGEAR - A6210 Genie MFC Application.) - (1.0.0.35) = C:\Program Files (x86)\NETGEAR\A6210\A6210.EXE
3180 | [Owner : Damien |Parent : 2908()] - (.MSI - Super Charger.) - (1.3.0.7) = C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
3200 | [Owner : Damien |Parent : 2908()] - (.Micro-Star INT'L CO., LTD. - Live Update 6 Application.) - (6.1.23.0) = C:\Program Files (x86)\MSI\Live Update\Live Update.exe
3232 | [Owner : Damien |Parent : 2908()] - (.Intel Corporation - iusb3mon.) - (3.0.5.69) = C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
3932 | [Owner : Damien |Parent : 568(svchost.exe)] - (.NVIDIA Corporation - NVIDIA Capture Server.) - (3.0.7.34) = C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
3088 | [Owner : Damien |Parent : 3932(nvspcaps64.exe)] - (.NVIDIA Corporation - NVIDIA Share.) - (51.2704.1434.1) = C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
3700 | [Owner : Damien |Parent : 3088(NVIDIA Share.exe)] - (.NVIDIA Corporation - NVIDIA Share.) - (51.2704.1434.1) = C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
3748 | [Owner : Damien |Parent : 3712()] - (.Node.js - NVIDIA Web Helper Service.) - (4.4.3.0) = C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
4472 | [Owner : Damien |Parent : 3128()] - (.NVIDIA Corporation - NVIDIA Settings.) - (7.17.13.7563) = C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
4568 | [Owner : Système |Parent : 888(services.exe)] - (.Panda Security, S.L. - Agent Service.) - (1.3.8.0) = C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
4596 | [Owner : Système |Parent : 888(services.exe)] - (.Visicom Media Inc. - Anti-phishing Domain Advisor (Powered by Panda Security).) - (2.0.1.48) = C:\Program Files\Panda Security URL Filtering\Panda_URL_Filteringb.exe
4672 | [Owner : Système |Parent : 888(services.exe)] - (.Samsung Electronics Co., Ltd. - Samsung RAPID Mode Service.) - (1.0.1.96) = C:\Windows\System32\RAPID\SamsungRapidSvc.exe
4728 | [Owner : Système |Parent : 888(services.exe)] - (.Microsoft Corporation - SQL Server VSS Writer - 64 Bit.) - (2011.110.2318.0) = C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
4260 | [Owner : Damien |Parent : 1568()] - (.Micro-Star INT'L CO., LTD. - MsiGamingOSD_x64.) - (1.0.0.3) = C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\MsiGamingOSD_x64.exe
4560 | [Owner : Damien |Parent : 1568()] - (.MSI - Windows Host Process.) - (1.0.0.1) = C:\Windows\SysWOW64\muachost.exe
2812 | [Owner : Damien |Parent : 3024()] - (.Intel Corporation - IAStorIcon.) - (13.1.0.1058) = C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
5852 | [Owner : Système |Parent : 888(services.exe)] - (.Apple Inc. - iPodService Module (64-bit).) - (12.5.1.21) = C:\Program Files\iPod\bin\iPodService.exe
5892 | [Owner : Système |Parent : 888(services.exe)] - (.Disc Soft Ltd - Disc Soft Bus Service.) - (6.1.0.484) = C:\Program Files\DAEMON Tools Pro\DiscSoftBusService.exe
5392 | [Owner : SERVICE RÉSEAU |Parent : 888(services.exe)] - (.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) - (12.0.7601.17514) = C:\Program Files\Windows Media Player\wmpnetwk.exe
5196 | [Owner : Système |Parent : 5936()] - (.Google Inc. - Programme d'installation de Google.) - (1.3.31.5) = C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
1324 | [Owner : Système |Parent : 888(services.exe)] - (.Intel Corporation - IAStorDataSvc.) - (13.1.0.1058) = C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
5236 | [Owner : Système |Parent : 888(services.exe)] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host Interface.) - (10.0.30.1054) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
5428 | [Owner : Système |Parent : 888(services.exe)] - (.Intel Corporation - Intel(R) Local Management Service.) - (10.0.30.1054) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

---------- | Tasks

Suppression : MSIOSDx64_Host
Suppression : MSISW_Host


---------- | Services


---------- | AppCertDlls | AppInit_DLLs


---------- | DNSapi.dll

C:\Windows\System32\dnsapi.dll : \drivers\etc\hosts
C:\Windows\SysWOW64\dnsapi.dll : \drivers\etc\hosts

---------- | Hosts


---------- | SafeBoot


---------- | Winsock


---------- | DNS


---------- | Registre

Suppression : HKLM\SOFTWARE\Microsoft\Tracing\Hola-Setup-Core_RASMANCS
Suppression : HKU\S-1-5-21-632178411-2394207594-2140285815-1000\SOFTWARE\eSellerate
Suppression : HKLM\SOFTWARE\Wow6432Node\eSellerate
Suppression : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BB2DE08D-AF76-42f2-80E9-E5EEE624A973} : C:\Program Files (x86)\pandasecuritytb
---------- | AdsFix | g3n-h@ckm@n | 3_25.10.2016.2

----- Vista | 7 | 8 | 8.1 | 10 - 32/64 bits ----- Start 04:46:40 - 28/10/2016

Mis a jour le : 25/10/2016 | 23.40 par g3n-h@ckm@n
Contact : http://www.sosvirus.net
Assistance : http://www.sosvirus.net/forum-virus-securite.html
Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html
Facebook : https://www.facebook.com/AdsFixAntiAdware
C:\Users\Damien\Desktop\adsfix_3_25.10.2016.1.exe
Boot: Normal boot
[Damien (Administrator)] - [DAMIEN-PC] -  ([040C])
SID = S-1-5-21-632178411-2394207594-2140285815-1000 || [44616d69656e205e5e]
PC : MSI - Z87-G45 GAMING (MS-7821) - To be filled by O.E.M.
Processor : X64 - 3400 - Intel(R) Core(TM) i7-4770 CPU @ 3.40GHz
Bios : American Megatrends Inc. - 07/21/2014 - V.V1.9
CoreTemp : 29.8 C

CPU #1 value:6 %
CPU #2 value:0 %
CPU #3 value:0 %
CPU #4 value:6 %
Total Overall CPU Usage value:3 %

Systeme : Windows 7 Ultimate (64 bits) Ultimate Service Pack 1
Memoire RAM = Total (MB) : 16720 | Libre (MB) : 12965
Pagefile = Total (MB) : 16923 | Libre (MB) : 13075
Virtuelle = Total (MB) : 4194 | Libre (MB) : 3988

C:\ -> [Fixed] | [] | Total : 232.88 Go | Free : 108.57 Go -> NTFS (SSD) [SATA]
D:\ -> [Fixed] | [] | Total : 465.76 Go | Free : 311.79 Go -> NTFS (SSD) [SATA]
F:\ -> [Fixed] | [Nouveau nom] | Total : 1863.01 Go | Free : 1463.3 Go -> NTFS [SATA]

Sauvegarde du registre , pour restaurer :  Cliquer sur Options & Restaurer le registre (C:\AdsFix\Save\Registry [28.10.2016 @ 04_46_39]) ou un element
Restauration de fichiers ou dossiers supprimes par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Selectionner un element >> "Restaurer"

---------- | Mises a jour Windows

Derniere(s) detection(s) : 2016-09-29 19:31:30
Dernieres Telechargees : 2016-09-29 19:55:39
Dernieres installees : 2016-09-29 21:12:39

---------- | Navigateurs

IE : 11.0.9600.17840     (© Microsoft Corporation. Tous droits réservés.)
FF : 49.0.1.6109     (©Firefox and Mozilla Developers; available under the MPL 2 license.)

---------- | Security (atcav : 0)

AM : Malwarebytes' Anti-Malware   (2.3.173.0)     [Update : 18/10/2016 20:08:03]
WMI : OK
WU: Windows Update Service [Auto(2)] = non en cours
AS: Windows Defender [Auto(2)] = non en cours
FW: Windows FireWall Service [Auto(2)] = en cours
WMI: Windows Management Instrumentation (System Information) [Auto(2)] = en cours

---------- | FlashPlayer

Plugin : 23.0.0.185

---------- | Processes closed

1908 | [Owner : Système |Parent : 888(services.exe)] - (.Microsoft Corporation - Application sous-système spouleur.) - (6.1.7601.17514) = C:\Windows\System32\spoolsv.exe
1916 | [Owner : Damien |Parent : 888(services.exe)] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) - (6.1.7601.18010) = C:\Windows\System32\taskhost.exe
1540 | [Owner : Système |Parent : 888(services.exe)] - (.Apple Inc. - MobileDeviceService.) - (17.374.70.8) = C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
1552 | [Owner : Damien |Parent : 1340(svchost.exe)] - (.Microsoft Corporation - Moteur du Planificateur de tâches.) - (6.1.7601.17514) = C:\Windows\System32\taskeng.exe
1728 | [Owner : Système |Parent : 888(services.exe)] - (.Apple Inc. - Bonjour Service.) - (3.1.0.1) = C:\Program Files\Bonjour\mDNSResponder.exe
740 | [Owner : Système |Parent : 888(services.exe)] - (.Micro-Star Int'l Co., Ltd. - GamingApp_Service.) - (1.0.0.9) = C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe
2216 | [Owner : Système |Parent : 888(services.exe)] - (.Micro-Star INT'L CO., LTD. - Gaming Hotkey Service.) - (1.0.0.6) = C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe
2248 | [Owner : Système |Parent : 888(services.exe)] - (.- ISCT Agent Application.) - (5.0.10.2907) = C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
2432 | [Owner : Système |Parent : 888(services.exe)] - (.Micro-Star INT'L CO., LTD. - MSI Live Update Service.) - (1.0.0.34) = C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
2456 | [Owner : Système |Parent : 888(services.exe)] - (.MSI - Super Charger Service.) - (1.3.0.7) = C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
2572 | [Owner : Système |Parent : 888(services.exe)] - (.- MediatekSw Application.) - (1.0.1.3) = C:\Program Files (x86)\NETGEAR\A6210\NetgearSwitchUSB.exe
2604 | [Owner : Système |Parent : 888(services.exe)] - (.NVIDIA Corporation - NVIDIA Container.) - (1.0.2118.2499) = C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
2660 | [Owner : Système |Parent : 888(services.exe)] - (.NVIDIA Corporation - NVIDIA Container.) - (1.0.0.0) = C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
2708 | [Owner : Système |Parent : 888(services.exe)] - (.NVIDIA Corporation - NVIDIA Wireless Controller Service.) - (3.0.7.34) = C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
2932 | [Owner : Damien |Parent : 1852(explorer.exe)] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) - (1.0.561.0) = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
2944 | [Owner : Damien |Parent : 1852(explorer.exe)] - (.Intel Corporation - ISCT SysTray.) - (5.0.10.2907) = C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
2972 | [Owner : Damien |Parent : 1852(explorer.exe)] - (.Samsung Electronics Co., Ltd. - Samsung RAPID Mode Notification Utility.) - (1.0.1.96) = C:\Program Files (x86)\Samsung\RAPID\CacheFilter\SamsungRapidApp.exe
2980 | [Owner : Damien |Parent : 1852(explorer.exe)] - (.Apple Inc. - iTunesHelper.) - (12.5.1.21) = C:\Program Files\iTunes\iTunesHelper.exe
2804 | [Owner : Damien |Parent : 3008()] - (.NETGEAR - A6210 Genie MFC Application.) - (1.0.0.35) = C:\Program Files (x86)\NETGEAR\A6210\A6210.EXE
3020 | [Owner : Damien |Parent : 3008()] - (.MSI - Super Charger.) - (1.3.0.7) = C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
3080 | [Owner : Damien |Parent : 3008()] - (.Micro-Star INT'L CO., LTD. - Live Update 6 Application.) - (6.1.23.0) = C:\Program Files (x86)\MSI\Live Update\Live Update.exe
3092 | [Owner : Système |Parent : 2660()] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) - (8.17.13.7563) = C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
3100 | [Owner : Damien |Parent : 3008()] - (.Intel Corporation - iusb3mon.) - (3.0.5.69) = C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
3772 | [Owner : Damien |Parent : 672(svchost.exe)] - (.NVIDIA Corporation - NVIDIA Capture Server.) - (3.0.7.34) = C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
3924 | [Owner : Damien |Parent : 2604()] - (.NVIDIA Corporation - NVIDIA ShadowPlay Helper.) - (3.0.7.34) = C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
3944 | [Owner : Damien |Parent : 3772()] - (.NVIDIA Corporation - NVIDIA Share.) - (51.2704.1434.1) = C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
3348 | [Owner : Damien |Parent : 3944(NVIDIA Share.exe)] - (.NVIDIA Corporation - NVIDIA Share.) - (51.2704.1434.1) = C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
3424 | [Owner : Damien |Parent : 3364()] - (.Node.js - NVIDIA Web Helper Service.) - (4.4.3.0) = C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
4272 | [Owner : Système |Parent : 888(services.exe)] - (.Panda Security, S.L. - Agent Service.) - (1.3.8.0) = C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
4300 | [Owner : Système |Parent : 888(services.exe)] - (.Visicom Media Inc. - Anti-phishing Domain Advisor (Powered by Panda Security).) - (2.0.1.48) = C:\Program Files\Panda Security URL Filtering\Panda_URL_Filteringb.exe
4376 | [Owner : Système |Parent : 888(services.exe)] - (.Samsung Electronics Co., Ltd. - Samsung RAPID Mode Service.) - (1.0.1.96) = C:\Windows\System32\RAPID\SamsungRapidSvc.exe
4432 | [Owner : Système |Parent : 888(services.exe)] - (.Microsoft Corporation - SQL Server VSS Writer - 64 Bit.) - (2011.110.2318.0) = C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
2264 | [Owner : Damien |Parent : 1552()] - (.Micro-Star INT'L CO., LTD. - MsiGamingOSD_x64.) - (1.0.0.3) = C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\MsiGamingOSD_x64.exe
2596 | [Owner : Damien |Parent : 2960()] - (.Intel Corporation - IAStorIcon.) - (13.1.0.1058) = C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
5272 | [Owner : Damien |Parent : 1552()] - (.MSI - Windows Host Process.) - (1.0.0.1) = C:\Windows\SysWOW64\muachost.exe
5452 | [Owner : Système |Parent : 888(services.exe)] - (.Apple Inc. - iPodService Module (64-bit).) - (12.5.1.21) = C:\Program Files\iPod\bin\iPodService.exe
2876 | [Owner : SERVICE RÉSEAU |Parent : 888(services.exe)] - (.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) - (12.0.7601.17514) = C:\Program Files\Windows Media Player\wmpnetwk.exe
3200 | [Owner : Système |Parent : 5632()] - (.Google Inc. - Programme d'installation de Google.) - (1.3.31.5) = C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
5544 | [Owner : Système |Parent : 888(services.exe)] - (.Intel Corporation - IAStorDataSvc.) - (13.1.0.1058) = C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
5724 | [Owner : Système |Parent : 888(services.exe)] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host Interface.) - (10.0.30.1054) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
1244 | [Owner : Système |Parent : 888(services.exe)] - (.Intel Corporation - Intel(R) Local Management Service.) - (10.0.30.1054) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
5860 | [Owner : Damien |Parent : 1852(explorer.exe)] - (.Malwarebytes - Malwarebytes Anti-Malware.) - (2.3.173.0) = C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
4612 | [Owner : Système |Parent : 888(services.exe)] - (.Malwarebytes - Malwarebytes Anti-Malware.) - (3.1.7.0) = C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe

---------- | Argument de recherche

---------- | AdsFix | g3n-h@ckm@n | 3_25.10.2016.2

----- Vista | 7 | 8 | 8.1 | 10 - 32/64 bits ----- Start 04:49:05 - 28/10/2016

Mis a jour le : 25/10/2016 | 23.40 par g3n-h@ckm@n
Contact : http://www.sosvirus.net
Assistance : http://www.sosvirus.net/forum-virus-securite.html
Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html
Facebook : https://www.facebook.com/AdsFixAntiAdware
C:\Users\Damien\Desktop\adsfix_3_25.10.2016.1.exe
Boot: Normal boot
[Damien (Administrator)] - [DAMIEN-PC] -  (france [040C])
SID = S-1-5-21-632178411-2394207594-2140285815-1000 || [44616d69656e205e5e]
PC : MSI - Z87-G45 GAMING (MS-7821) - To be filled by O.E.M.
Processor : X64 - 3400 - Intel(R) Core(TM) i7-4770 CPU @ 3.40GHz
Bios : American Megatrends Inc. - 07/21/2014 - V.V1.9
CoreTemp : 29.8 C

CPU #1 value:0 %
CPU #2 value:0 %
CPU #3 value:0 %
CPU #4 value:0 %
Total Overall CPU Usage value:0 %

Systeme : Windows 7 Ultimate (64 bits) Ultimate Service Pack 1
Memoire RAM = Total (MB) : 16720 | Libre (MB) : 13375
Pagefile = Total (MB) : 16923 | Libre (MB) : 13642
Virtuelle = Total (MB) : 4194 | Libre (MB) : 3988

C:\ -> [Fixed] | [] | Total : 232.88 Go | Free : 108.3 Go -> NTFS (SSD) [SATA]
D:\ -> [Fixed] | [] | Total : 465.76 Go | Free : 311.79 Go -> NTFS (SSD) [SATA]
F:\ -> [Fixed] | [Nouveau nom] | Total : 1863.01 Go | Free : 1463.3 Go -> NTFS [SATA]

Sauvegarde du registre , pour restaurer :  Cliquer sur Options & Restaurer le registre (C:\AdsFix\Save\Registry [28.10.2016 @ 04_49_04]) ou un element
Restauration de fichiers ou dossiers supprimes par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Selectionner un element >> "Restaurer"

---------- | Mises a jour Windows

Derniere(s) detection(s) : 2016-09-29 19:31:30
Dernieres Telechargees : 2016-09-29 19:55:39
Dernieres installees : 2016-09-29 21:12:39

---------- | Navigateurs

IE : 11.0.9600.17840     (© Microsoft Corporation. Tous droits réservés.)
FF : 49.0.1.6109     (©Firefox and Mozilla Developers; available under the MPL 2 license.)

---------- | Security (atcav : 0)

AM : Malwarebytes' Anti-Malware   (2.3.173.0)     [Update : 18/10/2016 20:08:03]
WMI : OK
WU: Windows Update Service [Auto(2)] = non en cours
AS: Windows Defender [Auto(2)] = non en cours
FW: Windows FireWall Service [Auto(2)] = en cours
WMI: Windows Management Instrumentation (System Information) [Auto(2)] = en cours

---------- | FlashPlayer

Plugin : 23.0.0.185

---------- | Processes closed

2812 | [Owner : Système |Parent : 888(services.exe)] - (.NVIDIA Corporation - NVIDIA Container.) - (1.0.2118.2499) = C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
3864 | [Owner : Système |Parent : 888(services.exe)] - (.NVIDIA Corporation - NVIDIA Container.) - (1.0.0.0) = C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
5032 | [Owner : Système |Parent : 3864()] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) - (8.17.13.7563) = C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
4136 | [Owner : Système |Parent : 888(services.exe)] - (.- ISCT Agent Application.) - (5.0.10.2907) = C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
2400 | [Owner : Damien |Parent : 2812()] - (.NVIDIA Corporation - NVIDIA Container.) - (1.0.2118.2499) = C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
5100 | [Owner : Damien |Parent : 5760()] - (.NVIDIA Corporation - OpenAutomate wrapper cache.) - (32.0.15.0) = C:\Users\Damien\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
2424 | [Owner : SERVICE RÉSEAU |Parent : 888(services.exe)] - (.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) - (12.0.7601.17514) = C:\Program Files\Windows Media Player\wmpnetwk.exe
5168 | [Owner : Damien |Parent : 5032()] - (.NVIDIA Corporation - NVIDIA Settings.) - (7.17.13.7563) = C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
2428 | [Owner : Système |Parent : 888(services.exe)] - (.Microsoft Corporation - Application sous-système spouleur.) - (6.1.7601.17514) = C:\Windows\System32\spoolsv.exe
1224 | [Owner : Système |Parent : 888(services.exe)] - (.Apple Inc. - MobileDeviceService.) - (17.374.70.8) = C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

---------- | Tasks

Suppression : MSIOSDx64_Host
Suppression : MSISW_Host


---------- | Services


---------- | AppCertDlls | AppInit_DLLs


---------- | DNSapi.dll

C:\Windows\System32\dnsapi.dll : \drivers\etc\hosts
C:\Windows\SysWOW64\dnsapi.dll : \drivers\etc\hosts

---------- | Hosts


---------- | SafeBoot


---------- | Winsock


---------- | DNS


---------- | Registre

Suppression : HKLM\SOFTWARE\Microsoft\Tracing\hola_RASMANCS
---------- | AdsFix | g3n-h@ckm@n | 3_25.10.2016.2

----- Vista | 7 | 8 | 8.1 | 10 - 32/64 bits ----- Start 17:25:51 - 28/10/2016

Mis a jour le : 25/10/2016 | 23.40 par g3n-h@ckm@n
Contact : http://www.sosvirus.net
Assistance : http://www.sosvirus.net/forum-virus-securite.html
Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html
Facebook : https://www.facebook.com/AdsFixAntiAdware
C:\Users\Damien\Desktop\adsfix_3_25.10.2016.1.exe
Boot: Normal boot
[Damien (Administrator)] - [DAMIEN-PC] -  (france [040C])
SID = S-1-5-21-632178411-2394207594-2140285815-1000 || [44616d69656e205e5e]
PC : MSI - Z87-G45 GAMING (MS-7821) - To be filled by O.E.M.
Processor : X64 - 3400 - Intel(R) Core(TM) i7-4770 CPU @ 3.40GHz
Bios : American Megatrends Inc. - 07/21/2014 - V.V1.9
CoreTemp : 29.8 C

CPU #1 value:0 %
CPU #2 value:0 %
CPU #3 value:0 %
CPU #4 value:0 %
Total Overall CPU Usage value:0 %

Systeme : Windows 7 Ultimate (64 bits) Ultimate Service Pack 1
Memoire RAM = Total (MB) : 16720 | Libre (MB) : 12745
Pagefile = Total (MB) : 16923 | Libre (MB) : 12674
Virtuelle = Total (MB) : 4194 | Libre (MB) : 3988

C:\ -> [Fixed] | [] | Total : 232.88 Go | Free : 107.78 Go -> NTFS (SSD) [SATA]
D:\ -> [Fixed] | [] | Total : 465.76 Go | Free : 311.79 Go -> NTFS (SSD) [SATA]
F:\ -> [Fixed] | [Nouveau nom] | Total : 1863.01 Go | Free : 1463.3 Go -> NTFS [SATA]
I:\ -> [CDROM] | [Farming Simulator 17] | Total : 4.13 Go | Free : 0 Go -> UDF [FileBackedVirtual]

Sauvegarde du registre , pour restaurer :  Cliquer sur Options & Restaurer le registre (C:\AdsFix\Save\Registry [28.10.2016 @ 17_25_48]) ou un element
Restauration de fichiers ou dossiers supprimes par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Selectionner un element >> "Restaurer"

---------- | Mises a jour Windows

Derniere(s) detection(s) : 2016-09-29 19:31:30
Dernieres Telechargees : 2016-09-29 19:55:39
Dernieres installees : 2016-09-29 21:12:39

---------- | Navigateurs

IE : 11.0.9600.17840     (© Microsoft Corporation. Tous droits réservés.)
FF : 49.0.1.6109     (©Firefox and Mozilla Developers; available under the MPL 2 license.)

---------- | Security (atcav : 0)

AM : Malwarebytes' Anti-Malware   (2.3.173.0)     [Update : 18/10/2016 20:08:03]
WMI : OK
WU: Windows Update Service [Auto(2)] = non en cours
AS: Windows Defender [Auto(2)] = non en cours
FW: Windows FireWall Service [Auto(2)] = en cours
WMI: Windows Management Instrumentation (System Information) [Auto(2)] = en cours

---------- | FlashPlayer

Plugin : 23.0.0.185

---------- | Processes closed

1920 | [Owner : Système |Parent : 880(services.exe)] - (.Microsoft Corporation - Application sous-système spouleur.) - (6.1.7601.17514) = C:\Windows\System32\spoolsv.exe
1928 | [Owner : Damien |Parent : 880(services.exe)] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) - (6.1.7601.18010) = C:\Windows\System32\taskhost.exe
1436 | [Owner : Système |Parent : 880(services.exe)] - (.Apple Inc. - MobileDeviceService.) - (17.374.70.8) = C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
1508 | [Owner : Damien |Parent : 1352(svchost.exe)] - (.Microsoft Corporation - Moteur du Planificateur de tâches.) - (6.1.7601.17514) = C:\Windows\System32\taskeng.exe
1624 | [Owner : Système |Parent : 880(services.exe)] - (.Apple Inc. - Bonjour Service.) - (3.1.0.1) = C:\Program Files\Bonjour\mDNSResponder.exe
2004 | [Owner : Système |Parent : 880(services.exe)] - (.Micro-Star Int'l Co., Ltd. - GamingApp_Service.) - (1.0.0.9) = C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe
2152 | [Owner : Damien |Parent : 1508()] - (.Micro-Star INT'L CO., LTD. - MsiGamingOSD_x64.) - (1.0.0.3) = C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\MsiGamingOSD_x64.exe
2160 | [Owner : Damien |Parent : 1508()] - (.MSI - Windows Host Process.) - (1.0.0.1) = C:\Windows\SysWOW64\muachost.exe
2188 | [Owner : Système |Parent : 880(services.exe)] - (.Micro-Star INT'L CO., LTD. - Gaming Hotkey Service.) - (1.0.0.6) = C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe
2220 | [Owner : Système |Parent : 880(services.exe)] - (.- ISCT Agent Application.) - (5.0.10.2907) = C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
2256 | [Owner : Système |Parent : 880(services.exe)] - (.Malwarebytes - Malwarebytes Anti-Malware.) - (3.1.7.0) = C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
2488 | [Owner : Système |Parent : 880(services.exe)] - (.Micro-Star INT'L CO., LTD. - MSI Live Update Service.) - (1.0.0.34) = C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
2520 | [Owner : Système |Parent : 880(services.exe)] - (.MSI - Super Charger Service.) - (1.3.0.7) = C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
2648 | [Owner : Système |Parent : 880(services.exe)] - (.- MediatekSw Application.) - (1.0.1.3) = C:\Program Files (x86)\NETGEAR\A6210\NetgearSwitchUSB.exe
2692 | [Owner : Système |Parent : 880(services.exe)] - (.NVIDIA Corporation - NVIDIA Container.) - (1.0.2118.2499) = C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
2732 | [Owner : Système |Parent : 880(services.exe)] - (.NVIDIA Corporation - NVIDIA Container.) - (1.0.0.0) = C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
2788 | [Owner : Système |Parent : 880(services.exe)] - (.NVIDIA Corporation - NVIDIA Wireless Controller Service.) - (3.0.7.34) = C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
2968 | [Owner : Damien |Parent : 1840(explorer.exe)] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) - (1.0.561.0) = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
2980 | [Owner : Damien |Parent : 1840(explorer.exe)] - (.Intel Corporation - ISCT SysTray.) - (5.0.10.2907) = C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
3044 | [Owner : Damien |Parent : 1840(explorer.exe)] - (.Samsung Electronics Co., Ltd. - Samsung RAPID Mode Notification Utility.) - (1.0.1.96) = C:\Program Files (x86)\Samsung\RAPID\CacheFilter\SamsungRapidApp.exe
3060 | [Owner : Damien |Parent : 1840(explorer.exe)] - (.Apple Inc. - iTunesHelper.) - (12.5.1.21) = C:\Program Files\iTunes\iTunesHelper.exe
3112 | [Owner : Damien |Parent : 2100()] - (.NETGEAR - A6210 Genie MFC Application.) - (1.0.0.35) = C:\Program Files (x86)\NETGEAR\A6210\A6210.EXE
3128 | [Owner : Damien |Parent : 2100()] - (.MSI - Super Charger.) - (1.3.0.7) = C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
3140 | [Owner : Damien |Parent : 2100()] - (.Micro-Star INT'L CO., LTD. - Live Update 6 Application.) - (6.1.23.0) = C:\Program Files (x86)\MSI\Live Update\Live Update.exe
3148 | [Owner : Damien |Parent : 2100()] - (.Intel Corporation - iusb3mon.) - (3.0.5.69) = C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
3376 | [Owner : Système |Parent : 2732()] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) - (8.17.13.7563) = C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
4052 | [Owner : Damien |Parent : 576(svchost.exe)] - (.NVIDIA Corporation - NVIDIA Capture Server.) - (3.0.7.34) = C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
3712 | [Owner : Damien |Parent : 4052()] - (.NVIDIA Corporation - NVIDIA Share.) - (51.2704.1434.1) = C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
3760 | [Owner : Damien |Parent : 2692()] - (.NVIDIA Corporation - NVIDIA Container.) - (1.0.2118.2499) = C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
3884 | [Owner : Damien |Parent : 3712()] - (.NVIDIA Corporation - NVIDIA Share.) - (51.2704.1434.1) = C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
3932 | [Owner : Damien |Parent : 3896()] - (.Node.js - NVIDIA Web Helper Service.) - (4.4.3.0) = C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
3984 | [Owner : Damien |Parent : 3376()] - (.NVIDIA Corporation - NVIDIA Settings.) - (7.17.13.7563) = C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
4892 | [Owner : Système |Parent : 880(services.exe)] - (.Panda Security, S.L. - Agent Service.) - (1.3.8.0) = C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
4920 | [Owner : Système |Parent : 880(services.exe)] - (.Visicom Media Inc. - Anti-phishing Domain Advisor (Powered by Panda Security).) - (2.0.1.48) = C:\Program Files\Panda Security URL Filtering\Panda_URL_Filteringb.exe
5012 | [Owner : Système |Parent : 880(services.exe)] - (.Samsung Electronics Co., Ltd. - Samsung RAPID Mode Service.) - (1.0.1.96) = C:\Windows\System32\RAPID\SamsungRapidSvc.exe
5080 | [Owner : Système |Parent : 880(services.exe)] - (.Microsoft Corporation - SQL Server VSS Writer - 64 Bit.) - (2011.110.2318.0) = C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
5144 | [Owner : Damien |Parent : 3032()] - (.Intel Corporation - IAStorIcon.) - (13.1.0.1058) = C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
5672 | [Owner : Système |Parent : 880(services.exe)] - (.Disc Soft Ltd - Disc Soft Bus Service Lite.) - (10.4.0.196) = C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
5792 | [Owner : Système |Parent : 880(services.exe)] - (.Apple Inc. - iPodService Module (64-bit).) - (12.5.1.21) = C:\Program Files\iPod\bin\iPodService.exe
5412 | [Owner : SERVICE RÉSEAU |Parent : 880(services.exe)] - (.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) - (12.0.7601.17514) = C:\Program Files\Windows Media Player\wmpnetwk.exe
6384 | [Owner : Système |Parent : 6184()] - (.Google Inc. - Programme d'installation de Google.) - (1.3.31.5) = C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
2460 | [Owner : Système |Parent : 880(services.exe)] - (.Intel Corporation - IAStorDataSvc.) - (13.1.0.1058) = C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
6444 | [Owner : Système |Parent : 880(services.exe)] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host Interface.) - (10.0.30.1054) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
4124 | [Owner : Système |Parent : 880(services.exe)] - (.Intel Corporation - Intel(R) Local Management Service.) - (10.0.30.1054) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
4344 | [Owner : Damien |Parent : 2256()] - (.Malwarebytes - Malwarebytes Anti-Malware.) - (2.3.173.0) = C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
4664 | [Owner : Damien |Parent : 1840(explorer.exe)] - (.Valve Corporation - Steam Client Bootstrapper.) - (3.65.13.80) = C:\Program Files (x86)\Steam\Steam.exe
6364 | [Owner : Damien |Parent : 4664(Steam.exe)] - (.Valve Corporation - Steam Client WebHelper.) - (3.65.13.80) = C:\Program Files (x86)\Steam\bin\cef\cef.winxp\steamwebhelper.exe
4788 | [Owner : Damien |Parent : 6364(steamwebhelper.exe)] - (.Valve Corporation - Steam Client WebHelper.) - (3.65.13.80) = C:\Program Files (x86)\Steam\bin\cef\cef.winxp\steamwebhelper.exe
6344 | [Owner : Damien |Parent : 6364(steamwebhelper.exe)] - (.Valve Corporation - Steam Client WebHelper.) - (3.65.13.80) = C:\Program Files (x86)\Steam\bin\cef\cef.winxp\steamwebhelper.exe

---------- | Tasks

Suppression : MSIOSDx64_Host
Suppression : MSISW_Host


---------- | Services


---------- | AppCertDlls | AppInit_DLLs


---------- | DNSapi.dll

C:\Windows\System32\dnsapi.dll : \drivers\etc\hosts
C:\Windows\SysWOW64\dnsapi.dll : \drivers\etc\hosts

---------- | Hosts


---------- | SafeBoot


---------- | Winsock


---------- | DNS


---------- | Registre


---------- | Dossiers | Fichiers

Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hola.lnk     (.-.)     C:\Program Files (x86)\Hola\app\hola.exe
Suppression : C:\Users\Damien\AppData\Roaming\IObit
Suppression : C:\Users\Damien\Downloads\gputemp_setup.exe     (  .-.GPU Temp   )     
Suppression : C:\ProgramData\IObit
Suppression : C:\ProgramData\ProductData
Suppression : C:\ProgramData\panda_url_filtering
Suppression : C:\ProgramData\Esellerate\eSellerateEngine.dll     (.-.)     
Suppression : C:\ProgramData\eSellerate
Suppression : C:\Windows\IObit

---------- | .LNK


---------- | Ouverture extension inconnue


---------- | Proxy


---------- | Internet Explorer

Reparation : [HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main]~[Local Page] : C:\Windows\SysWOW64\blank.htm -> C:\Windows\System32\blank.htm
Reparation : [HKU\S-1-5-21-632178411-2394207594-2140285815-1000\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter]~[Enabled] :  -> 2
Reparation : [HKU\S-1-5-21-632178411-2394207594-2140285815-1000\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter]~[EnabledV8] :  -> 1
Reparation : [HKU\S-1-5-21-632178411-2394207594-2140285815-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings]~[WarNonBadCertReceving] :  -> 1
Reparation : [HKU\S-1-5-21-632178411-2394207594-2140285815-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings]~[WarNonHTTPSToHTTPRedirect] :  -> 1
Reparation : [HKU\S-1-5-21-632178411-2394207594-2140285815-1000\SOFTWARE\Microsoft\Internet Explorer\Toolbar]~[Locked] : 1 -> 0

---------- | Yandex



---------- | Google Chrome



---------- | Comodo Dragon



---------- | Firefox

Suppression : C:\Users\Damien\AppData\Roaming\Mozilla\Firefox\Profiles\kefx2svl.default\sessionstore.js     (.-.)     
Suppression : C:\Users\Damien\AppData\Roaming\Mozilla\Firefox\Profiles\kefx2svl.default\extensions\jid1-4P0kohSJxU1qGg@jetpack = 


---------- | SeaMonkey



---------- | Pale moon



---------- | Opera



---------- | Spark



---------- | StartMenuInternet


---------- | Javascript


---------- | Firewall


---------- | ADS


Autre rapport


Analyses : 474804 | Modifications : 6 | Suppressions : 13

---------- |EOF| ---------- | 06:00:12 | [55 Ko]