¤¤¤¤¤¤¤¤¤¤ | AdsFix | g3n-h@ckm@n | 29.09.2014.2 ¤¤¤¤¤ Vista | 7 | 8 | 8.1 - 32/64 bits ¤¤¤¤¤ - Start 19:29:15 - 04/12/2015 Mis à jour le : 29/09/2014 | 17.55 par g3n-h@ckm@n™ Contact : http://www.sosvirus.net Assistance : http://www.sosvirus.net/forum-virus-securite.html Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html Facebook : https://www.facebook.com/AdsFix Boot: Normal boot [SEB-HELENE (Administrator)] - [SEB-HELENE-PC] - (france [040C]) SID = S-1-5-21-2873932325-3188013618-777927492-1000 || [5345422d48454c454e45205e5e] PC : MSI - Z87-G43 (MS-7816) - To be filled by O.E.M. Bios : American Megatrends Inc. - 11/27/2013 Système : Windows 7 Home Premium (64 bits) HomePremium Service Pack 1 Mémoire RAM = Total (MB) : 8321 | Libre (MB) : 5846 Pagefile = Total (MB) : 16640 | Libre (MB) : 14081 Virtuelle = Total (MB) : 4194 | Libre (MB) : 4031 Registre sauvegardé , pour restaurer : : C:\AdsFix\Save\Registry [04.12.2015 @ 19_29_11] (Cliquer sur Options & Restaurer le registre) Restauration de fichiers ou dossiers supprimés par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Sélectionner un élément >> "Restaurer" ¤¤¤¤¤¤¤¤¤¤ | Mises à jour Windows Aucune mise à jour détectée !!! ¤¤¤¤¤¤¤¤¤¤ | Navigateurs IE : 11.0.9600.18098 (© Microsoft Corporation. Tous droits réservés.) FF : 42.0.0.5780 (©Firefox and Mozilla Developers; available under the MPL 2 license.) GC : 47.0.2526.73 (Copyright 2015 Google Inc. All rights reserved.) ¤¤¤¤¤¤¤¤¤¤ | Security (atcav : 3) AV : AS : Windows Defender Disabled FW : WMI : OK WU: Windows Update Service [Auto(2)] = Arrêté AS: Windows Defender [Manual(3)] = Arrêté FW: Windows FireWall Service [Auto(2)] = Arrêté ¤¤¤¤¤¤¤¤¤¤ | FlashPlayer ActiveX : 19.0.0.245 Plugin : 19.0.0.245 ¤¤¤¤¤¤¤¤¤¤ | Processus tués 896 | [Owner : Système |Parent : 668] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 359.00.) - (8.17.13.5900) = C:\Windows\System32\nvvsvc.exe 924 | [Owner : Système |Parent : 668] - (.NVIDIA Corporation - Stereo Vision Control Panel API Server.) - (7.17.13.5900) = C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe 1364 | [Owner : Système |Parent : 668] - (.Microsoft Corporation - Application sous-système spouleur.) - (6.1.7601.17777) = C:\Windows\System32\spoolsv.exe 1536 | [Owner : Système |Parent : 668] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - (1.824.16.1310) = C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 1548 | [Owner : Système |Parent : 896] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) - (8.17.13.5900) = C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe 1556 | [Owner : Système |Parent : 896] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 359.00.) - (8.17.13.5900) = C:\Windows\System32\nvvsvc.exe 1688 | [Owner : SEB-HELENE |Parent : 668] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) - (6.1.7601.18010) = C:\Windows\System32\taskhost.exe 1756 | [Owner : Système |Parent : 668] - (.Apple Inc. - Bonjour Service.) - (3.0.0.10) = C:\Program Files\Bonjour\mDNSResponder.exe 1764 | [Owner : SEB-HELENE |Parent : 796] - (.Microsoft Corporation - Moteur du Planificateur de tâches.) - (6.1.7601.17514) = C:\Windows\System32\taskeng.exe 1796 | [Owner : Système |Parent : 668] - (.- DedicarzService.) - (1.4.10.1418) = C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe 1968 | [Owner : SEB-HELENE |Parent : 1764] - (.Orange - Executable Orange Inside.) - (1.4.2.8) = C:\Users\SEB-HELENE\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe 2000 | [Owner : SEB-HELENE |Parent : 1764] - (.Microsoft Corporation - IPoint.exe.) - (2.3.188.0) = C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe 2008 | [Owner : SEB-HELENE |Parent : 1764] - (.Microsoft Corporation - IType.exe.) - (2.3.188.0) = C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe 2020 | [Owner : SEB-HELENE |Parent : 1764] - (.-.) - (0.0.0.0) = C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe 1296 | [Owner : SEB-HELENE |Parent : 1764] - (.Orange - ma Livebox.) - (3.0.0.0) = C:\Program Files (x86)\Orange\ma Livebox\maLivebox.exe 1080 | [Owner : Système |Parent : 668] - (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - (4.0.0.0) = C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE 1908 | [Owner : Système |Parent : 668] - (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - (4.0.2.0) = C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE 1676 | [Owner : SEB-HELENE |Parent : 1864] - (.Microsoft Corporation - Explorateur Windows.) - (6.1.7601.17567) = C:\Windows\explorer.exe 1396 | [Owner : Système |Parent : 668] - (.NVIDIA Corporation - NVIDIA GeForce ExperienceService.) - (2.7.4.10) = C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe 2148 | [Owner : Système |Parent : 668] - (.NVIDIA Corporation - NVIDIA Network Service.) - (2.4.13.69) = C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe 2180 | [Owner : Système |Parent : 668] - (.NVIDIA Corporation - NVIDIA Streamer Service.) - (4.1.2014.398) = C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe 2216 | [Owner : Système |Parent : 668] - (.-.) - (0.0.0.0) = C:\Windows\System32\PnkBstrA.exe 2244 | [Owner : Système |Parent : 668] - (.PacketVideo - TwonkyMedia Server watchdog.) - (6.0.0.0) = C:\Program Files (x86)\Serveur Media\twonkymediaserverwatchdog.exe 2276 | [Owner : Système |Parent : 668] - (.DEVGURU Co., LTD. - MSS CS Connectivity Service.) - (2.5.5.0) = C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe 2532 | [Owner : Système |Parent : 2244] - (.-.) - (0.0.0.0) = C:\Program Files (x86)\Serveur Media\twonkymediaserver.exe 2540 | [Owner : Système |Parent : 524] - (.Microsoft Corporation - Hôte de la fenêtre de la console.) - (6.1.7601.19045) = C:\Windows\System32\conhost.exe 2832 | [Owner : SEB-HELENE |Parent : 2580] - (.Microsoft Corporation - GWX.) - (6.3.9600.18064) = C:\Windows\System32\GWX\GWX.exe 2332 | [Owner : SEB-HELENE |Parent : 1296] - (.Orange - ma Livebox.) - (3.0.0.0) = C:\Program Files (x86)\Orange\ma Livebox\dist\ST2.exe 3416 | [Owner : SERVICE RÉSEAU |Parent : 668] - (.NVIDIA Corporation - NVIDIA Network Stream Service.) - (4.1.2014.398) = C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe 3632 | [Owner : Système |Parent : 2180] - (.NVIDIA Corporation - NVIDIA Streamer User Agent.) - (4.1.2014.398) = C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe 3740 | [Owner : SEB-HELENE |Parent : 1548] - (.NVIDIA Corporation - NVIDIA Settings.) - (7.17.13.5900) = C:\Program Files\NVIDIA Corporation\Display\nvtray.exe 3824 | [Owner : SEB-HELENE |Parent : 3740] - (.NVIDIA Corporation - NVIDIA Backend.) - (20.9.3.0) = C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe 4156 | [Owner : SEB-HELENE |Parent : 1676] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) - (1.0.0.260) = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe 4432 | [Owner : SEB-HELENE |Parent : 1676] - (.Logitech, Inc. - Logitech SetPoint Event Manager (UNICODE).) - (6.67.83.0) = C:\Program Files\Logitech\SetPointP\SetPoint.exe 4752 | [Owner : Système |Parent : 668] - (.Microsoft Corporation - Indexeur Microsoft Windows Search.) - (7.0.7601.17610) = C:\Windows\System32\SearchIndexer.exe 4848 | [Owner : SERVICE RÉSEAU |Parent : 668] - (.Microsoft Corporation - Service Partage réseau du Lecteur Windows Media.) - (12.0.7601.17514) = C:\Program Files\Windows Media Player\wmpnetwk.exe 4944 | [Owner : SEB-HELENE |Parent : 1676] - (.Orange - Executable Orange Inside.) - (1.4.2.8) = C:\Users\SEB-HELENE\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe 4984 | [Owner : SEB-HELENE |Parent : 4952] - (.Intel Corporation - iusb3mon.) - (2.0.0.100) = C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe 5072 | [Owner : SEB-HELENE |Parent : 4952] - (.Oracle Corporation - Java Update Scheduler.) - (2.8.66.18) = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe 4312 | [Owner : SEB-HELENE |Parent : 4432] - (.Logitech, Inc. - Logitech KHAL Main Process.) - (5.90.41.0) = C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe 4452 | [Owner : SEB-HELENE |Parent : 1676] - (.TeamSpeak Systems GmbH - TeamSpeak 3 Client.) - (3.0.18.2) = C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe 1224 | [Owner : SEB-HELENE |Parent : 1676] - (.Valve Corporation - Steam Client Bootstrapper.) - (3.9.53.23) = C:\Program Files (x86)\Steam\Steam.exe 5128 | [Owner : SEB-HELENE |Parent : 1224] - (.Valve Corporation - Steam Client WebHelper.) - (3.9.53.23) = C:\Program Files (x86)\Steam\bin\steamwebhelper.exe 5460 | [Owner : SEB-HELENE |Parent : 5128] - (.Valve Corporation - Steam Client WebHelper.) - (3.9.53.23) = C:\Program Files (x86)\Steam\bin\steamwebhelper.exe 5912 | [Owner : SEB-HELENE |Parent : 4432] - (.Logitech, Inc. - LogiAppBroker.exe (UNICODE).) - (6.67.83.0) = C:\Program Files\Logitech\SetPointP\LogiAppBroker.exe 5604 | [Owner : SEB-HELENE |Parent : 3276] - (.Ubisoft - Uplay launcher.) - (14.0.4.4605) = C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\Uplay.exe 5756 | [Owner : SEB-HELENE |Parent : 5604] - (.Ubisoft - Uplay WebCore.) - (14.0.4.4605) = C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UplayWebCore.exe ¤¤¤¤¤¤¤¤¤¤ | Tasks ¤¤¤¤¤¤¤¤¤¤ | Services ¤¤¤¤¤¤¤¤¤¤ | AppCertDlls | AppInit_DLLs ¤¤¤¤¤¤¤¤¤¤ | Hosts Hosts : Ok ¤¤¤¤¤¤¤¤¤¤ | SafeBoot ¤¤¤¤¤¤¤¤¤¤ | Registre Supprimé avec succès : HKLM\SOFTWARE\Classes\FMMediaSource.MediaSourceFile Supprimé avec succès : HKLM\SOFTWARE\Classes\FMMediaSource.MediaSourceFile.1 Supprimé avec succès : HKLM\SOFTWARE\Classes\CLSID\{0344ec28-5339-4124-a186-2e8eef168785} : MFSourceFilter (String_data) Supprimé avec succès : HKLM\SOFTWARE\Classes\Interface\{4812405D-07C3-4717-8FE3-25D7B8867718} : IMediaSourceFile Supprimé avec succès : HKLM\SOFTWARE\Classes\Interface\{D0D4C9C8-6701-4C82-ADFF-3178B47D74DB} : IMediaSourceFreemake Supprimé avec succès : HKLM\SOFTWARE\Classes\Interface\{4812405D-07C3-4717-8FE3-25D7B8867718} : IMediaSourceFile Supprimé avec succès : HKLM\SOFTWARE\Classes\Interface\{D0D4C9C8-6701-4C82-ADFF-3178B47D74DB} : IMediaSourceFreemake ¤¤¤¤¤¤¤¤¤¤ | Heuristique ¤¤¤¤¤¤¤¤¤¤ | reparsepoint ---------- | AdsFix | g3n-h@ckm@n | V4_01.03.17.1 ----- Vista | 7 | 8 | 8.1 | 10 - 32/64 bits ----- Start 11:51:55 - 22/04/2017 Mis a jour le : 01.03.17.1 | 10.10 par g3n-h@ckm@n Contact : http://www.sosvirus.net Assistance : http://www.sosvirus.net/forum-virus-securite.html Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html Facebook : https://www.facebook.com/AdsFixAntiAdware C:\Users\SEB-HELENE\Desktop\AdsFix.exe Boot: Normal boot [SEB-HELENE (Administrator)] - [SEB-HELENE-PC] - (france [040C]) SID = S-1-5-21-2873932325-3188013618-777927492-1000 || [5345422d48454c454e45205e5e] PC : MSI - Z87-G43 (MS-7816) - To be filled by O.E.M. Processor : X64 - 3000 - Intel(R) Core(TM) i5-4430 CPU @ 3.00GHz Bios : American Megatrends Inc. - 11/27/2013 - V.V1.6 CoreTemp : 29.8 C CPU #1 value:10 % CPU #2 value:0 % CPU #3 value:0 % CPU #4 value:10 % Total Overall CPU Usage value:4 % Systeme : Windows 10 Home (64 bits) Core Memoire RAM = Total (MB) : 8321 | Libre (MB) : 5849 Pagefile = Total (MB) : 16710 | Libre (MB) : 13893 Virtuelle = Total (MB) : 4194 | Libre (MB) : 3923 C:\ -> [Fixed] | [] | Total : 930.97 Go | Free : 60.56 Go -> NTFS [SATA] D:\ -> [Fixed] | [] | Total : 465.76 Go | Free : 28.21 Go -> NTFS [SATA] Sauvegarde du registre , pour restaurer : Cliquer sur Options & Restaurer le registre (C:\AdsFix\Save\Registry [22.04.2017 @ 11_51_52]) ou un element Restauration de fichiers ou dossiers supprimes par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Selectionner un element >> "Restaurer" ---------- | Mises a jour Windows Windows Is Activated ---------- | Navigateurs IE : 11.0.14393.953 (© Microsoft Corporation. Tous droits réservés.) FF : 53.0.0.6312 (©Firefox and Mozilla Developers; available under the MPL 2 license.) GC : 57.0.2987.133 (Copyright 2016 Google Inc. All rights reserved.) MS-Edge : 11.0.14393.1066 (© Microsoft Corporation. All rights reserved.) ---------- | Security (atcav : 0) FW : WMI : OK WU: Windows Update Service [Manual(3)] = non en cours AS: Windows Defender [Auto(2)] = en cours FW: Windows FireWall Service [Auto(2)] = en cours WMI: Windows Management Instrumentation (System Information) [Auto(2)] = en cours ---------- | FlashPlayer ActiveX : 25.0.0.148 Plugin : 25.0.0.148 ---------- | Processes closed 1836 | [Owner : Système |Parent : 816(services.exe)] - (.Microsoft Corporation - Application sous-système spouleur.) - (10.0.14393.953) = C:\Windows\System32\spoolsv.exe 2036 | [Owner : Système |Parent : 816(services.exe)] - (.Apple Inc. - Bonjour Service.) - (3.0.0.10) = C:\Program Files\Bonjour\mDNSResponder.exe 1200 | [Owner : Système |Parent : 816(services.exe)] - (.- DedicarzService.) - (1.4.10.1418) = C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe 1208 | [Owner : Système |Parent : 816(services.exe)] - (.Micro-Star Int'l Co., Ltd. - GamingApp_Service.) - (1.0.0.14) = C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe 2056 | [Owner : Système |Parent : 816(services.exe)] - (.Micro-Star INT'L CO., LTD. - Gaming Hotkey Service.) - (1.0.0.6) = C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe 2140 | [Owner : Système |Parent : 816(services.exe)] - (.Seiko Epson Corporation - Epson Scanner Service (64bit).) - (1.1.0.1) = C:\Windows\System32\escsvc64.exe 2232 | [Owner : SERVICE RÉSEAU |Parent : 816(services.exe)] - (.Microsoft Corporation - Message Queuing Service.) - (5.0.1.1) = C:\Windows\System32\mqsvc.exe 2276 | [Owner : SERVICE LOCAL |Parent : 972(svchost.exe)] - (.Microsoft Corporation - Device Association Framework Provider Host.) - (10.0.14393.82) = C:\Windows\System32\dasHost.exe 2308 | [Owner : Système |Parent : 816(services.exe)] - (.-.) - (0.0.0.0) = C:\Windows\System32\PnkBstrA.exe 2324 | [Owner : Système |Parent : 816(services.exe)] - (.NVIDIA Corporation - NVIDIA Container.) - (1.2.2158.9553) = C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe 2332 | [Owner : SERVICE LOCAL |Parent : 816(services.exe)] - (.Electronic Arts - OriginWebHelperService.) - (10.1.1.35466) = C:\Program Files (x86)\Origin\OriginWebHelperService.exe 2368 | [Owner : Système |Parent : 816(services.exe)] - (.PacketVideo - TwonkyMedia Server watchdog.) - (6.0.0.0) = C:\Program Files (x86)\Serveur Media\twonkymediaserverwatchdog.exe 2408 | [Owner : Système |Parent : 816(services.exe)] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - (1.824.21.4663) = C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 2476 | [Owner : Système |Parent : 816(services.exe)] - (.NVIDIA Corporation - NVIDIA Container.) - (1.2.0.0) = C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe 2592 | [Owner : Système |Parent : 816(services.exe)] - (.Microsoft Corporation - Antimalware Service Executable.) - (4.10.14393.1066) = C:\Program Files\Windows Defender\MsMpEng.exe 2824 | [Owner : SERVICE RÉSEAU |Parent : 816(services.exe)] - (.NVIDIA Corporation - NVIDIA Container.) - (1.2.2159.775) = C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe 3028 | [Owner : Système |Parent : 816(services.exe)] - (.DEVGURU Co., LTD. - MSS CS Connectivity Service.) - (2.5.5.0) = C:\Program Files (x86)\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe 3900 | [Owner : Système |Parent : 2368()] - (.-.) - (0.0.0.0) = C:\Program Files (x86)\Serveur Media\twonkymediaserver.exe 3908 | [Owner : Système |Parent : 3900(twonkymediaserver.exe)] - (.Microsoft Corporation - Console Window Host.) - (10.0.14393.0) = C:\Windows\System32\conhost.exe 10364 | [Owner : Système |Parent : 2476()] - (.NVIDIA Corporation - NVIDIA User Experience Driver Component.) - (8.17.13.7878) = C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe 8340 | [Owner : SEB-HELENE |Parent : 2324()] - (.NVIDIA Corporation - NVIDIA Container.) - (1.2.2158.9553) = C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe 9160 | [Owner : SEB-HELENE |Parent : 816(services.exe)] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (10.0.14393.0) = C:\Windows\System32\svchost.exe 3296 | [Owner : SEB-HELENE |Parent : 1148(svchost.exe)] - (.Microsoft Corporation - IPoint.exe.) - (2.3.188.0) = C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe 8976 | [Owner : SEB-HELENE |Parent : 1148(svchost.exe)] - (.-.) - (0.0.0.0) = C:\Program Files (x86)\Orange\Orange Installer\OrangeInstaller.exe 8316 | [Owner : SEB-HELENE |Parent : 1148(svchost.exe)] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) - (10.0.14393.0) = C:\Windows\System32\taskhostw.exe 4332 | [Owner : SEB-HELENE |Parent : 1148(svchost.exe)] - (.Micro-Star INT'L CO., LTD. - MsiGamingOSD_x86.) - (1.0.0.5) = C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MsiGamingOSD_x86.exe 6488 | [Owner : SEB-HELENE |Parent : 1148(svchost.exe)] - (.Microsoft Corporation - IType.exe.) - (2.3.188.0) = C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe 2104 | [Owner : SEB-HELENE |Parent : 1148(svchost.exe)] - (.MSI - Windows Host Process.) - (1.0.0.1) = C:\Windows\SysWOW64\muachost.exe 9044 | [Owner : SEB-HELENE |Parent : 924(svchost.exe)] - (.Microsoft Corporation - Runtime Broker.) - (10.0.14393.0) = C:\Windows\System32\RuntimeBroker.exe 5184 | [Owner : SEB-HELENE |Parent : 1148(svchost.exe)] - (.Micro-Star INT'L CO., LTD. - MsiGamingOSD_x64.) - (1.0.0.5) = C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\MsiGamingOSD_x64.exe 2576 | [Owner : SEB-HELENE |Parent : 1148(svchost.exe)] - (.Orange - ma Livebox.) - (3.0.0.0) = C:\Program Files (x86)\Orange\ma Livebox\maLivebox.exe 8748 | [Owner : SEB-HELENE |Parent : 924(svchost.exe)] - (.-.) - (11.13.133.0) = C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.13.133.0_x64__kzf8qxf38zg5c\SkypeHost.exe 700 | [Owner : SEB-HELENE |Parent : 924(svchost.exe)] - (.Microsoft Corporation - Speech Runtime Executable.) - (10.0.14393.0) = C:\Windows\System32\Speech_OneCore\Common\SpeechRuntime.exe 8108 | [Owner : SEB-HELENE |Parent : 10364()] - (.NVIDIA Corporation - NVIDIA Settings.) - (7.17.13.7878) = C:\Program Files\NVIDIA Corporation\Display\nvtray.exe 7528 | [Owner : SEB-HELENE |Parent : 924(svchost.exe)] - (.Microsoft Corporation - Host Process for Setting Synchronization.) - (10.0.14393.953) = C:\Windows\System32\SettingSyncHost.exe 5696 | [Owner : SEB-HELENE |Parent : 8160(explorer.exe)] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) - (1.0.0.260) = C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe 11116 | [Owner : SEB-HELENE |Parent : 8160(explorer.exe)] - (.Logitech, Inc. - Logitech SetPoint Event Manager (UNICODE).) - (6.67.83.0) = C:\Program Files\Logitech\SetPointP\SetPoint.exe 8084 | [Owner : SEB-HELENE |Parent : 8160(explorer.exe)] - (.Microsoft Corporation - Windows Defender notification icon.) - (4.10.14393.1066) = C:\Program Files\Windows Defender\MSASCuiL.exe 9456 | [Owner : SEB-HELENE |Parent : 4880()] - (.Oracle Corporation - Java Update Scheduler.) - (2.8.121.13) = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe 10016 | [Owner : SEB-HELENE |Parent : 11116(SetPoint.exe)] - (.Logitech, Inc. - Logitech KHAL Main Process.) - (5.90.41.0) = C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe 5272 | [Owner : SERVICE RÉSEAU |Parent : 5884()] - (.Microsoft Corporation - Microsoft Malware Protection Command Line Utility.) - (4.10.14393.1066) = C:\Program Files\Windows Defender\MpCmdRun.exe 6292 | [Owner : SEB-HELENE |Parent : 2576()] - (.Orange - ma Livebox.) - (3.0.0.0) = C:\Program Files (x86)\Orange\ma Livebox\dist\ST2.exe 6872 | [Owner : SEB-HELENE |Parent : 10208(jucheck.exe)] - (.Node.js - NVIDIA Web Helper Service.) - (6.9.1.0) = C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe 2788 | [Owner : SEB-HELENE |Parent : 6872(NVIDIA Web Helper.exe)] - (.Microsoft Corporation - Console Window Host.) - (10.0.14393.0) = C:\Windows\System32\conhost.exe 10208 | [Owner : SEB-HELENE |Parent : 9456()] - (.Oracle Corporation - Java Update Checker.) - (2.8.121.13) = C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe 9296 | [Owner : SEB-HELENE |Parent : 924(svchost.exe)] - (.Microsoft Corporation - Application Frame Host.) - (10.0.14393.0) = C:\Windows\System32\ApplicationFrameHost.exe 7892 | [Owner : SEB-HELENE |Parent : 924(svchost.exe)] - (.Microsoft Corporation - SmartScreen.) - (10.0.14393.1066) = C:\Windows\System32\smartscreen.exe 2064 | [Owner : SERVICE RÉSEAU |Parent : 816(services.exe)] - (.Microsoft Corporation - Service de la plateforme de protection logicielle Microsoft.) - (10.0.14393.351) = C:\Windows\System32\sppsvc.exe ---------- | Tasks Suppression : CreateChoiceProcessTask ---------- | Services ---------- | AppCertDlls | AppInit_DLLs ---------- | DNSapi.dll C:\WINDOWS\System32\dnsapi.dll : \drivers\etc\hosts C:\WINDOWS\SysWOW64\dnsapi.dll : \drivers\etc\hosts ---------- | Hosts ---------- | SafeBoot ---------- | Winsock ---------- | DNS ---------- | Registre Suppression : HKU\S-1-5-21-2873932325-3188013618-777927492-1000\SOFTWARE\Microsoft\Internet Explorer\DOMStorage\wotlauncher.exe Suppression : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FD501041-8EBE-11CE-8183-00AA00577DA2} : C:\Program Files (x86)\MyFree Codec\1.0b beta\MyFree.ax # Suppression : [HKU\S-1-5-18\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted]~[C:\Program Files (x86)\AskPartnerNetwork\Toolbar\APNSetup.exe] Suppression : HKU\S-1-5-21-2873932325-3188013618-777927492-1000\SOFTWARE\Chromium Suppression : HKLM\SOFTWARE\Wow6432Node\WinPcap Suppression : [HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]~[DefaultScope] : {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Suppression : [HKU\S-1-5-21-2873932325-3188013618-777927492-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]~[DefaultScope] Suppression : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]~[DefaultScope] Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes]~[DefaultScope] Suppression : HKU\S-1-5-21-2873932325-3188013618-777927492-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} : C:\Users\SEB-HELENE\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico Suppression : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Suppression : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Suppression : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WinPcapInst : (WinPcap 4.1.2) "C:\Program Files\WinPcap\uninstall.exe" ---------- | Dossiers | Fichiers Reboot : C:\Program Files\WinPcap Suppression : C:\Users\SEB-HELENE\AppData\Local\Chromium Suppression : C:\Users\SEB-HELENE\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico (.-.) Suppression : C:\WINDOWS\System32\AI_RecycleBin Reboot : C:\Program Files\WinPcap Reboot : C:\Program Files\WinPcap ---------- | .LNK ---------- | Ouverture extension inconnue ---------- | Proxy ---------- | Internet Explorer Reparation : [HKU\S-1-5-21-2873932325-3188013618-777927492-1000\SOFTWARE\Microsoft\Internet Explorer\Main]~[Local Page] : C:\Windows\SysWOW64\blank.htm -> C:\WINDOWS\System32\blank.htm Reparation : [HKU\S-1-5-21-2873932325-3188013618-777927492-1000\SOFTWARE\Microsoft\Internet Explorer\Search]~[Local Page] : C:\Windows\SysWOW64\blank.htm -> C:\WINDOWS\System32\blank.htm Reparation : [HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main]~[Local Page] : %11%\blank.htm -> C:\WINDOWS\System32\blank.htm Reparation : [HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main]~[Local Page] : %11%\blank.htm -> C:\WINDOWS\System32\blank.htm Reparation : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main]~[Local Page] : C:\Windows\SysWOW64\blank.htm -> C:\WINDOWS\System32\blank.htm Reparation : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Search]~[Local Page] : C:\Windows\SysWOW64\blank.htm -> C:\WINDOWS\System32\blank.htm Reparation : [HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main]~[Local Page] : C:\Windows\SysWOW64\blank.htm -> C:\WINDOWS\System32\blank.htm Reparation : [HKU\S-1-5-21-2873932325-3188013618-777927492-1000\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter]~[Enabled] : -> 2 Reparation : [HKU\S-1-5-21-2873932325-3188013618-777927492-1000\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter]~[EnabledV8] : -> 1 Reparation : [HKU\S-1-5-21-2873932325-3188013618-777927492-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings]~[WarNonBadCertReceving] : -> 1 Reparation : [HKU\S-1-5-21-2873932325-3188013618-777927492-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings]~[WarNonHTTPSToHTTPRedirect] : -> 1 Reparation : [HKU\S-1-5-21-2873932325-3188013618-777927492-1000\SOFTWARE\Microsoft\Internet Explorer\Toolbar]~[Locked] : 1 -> 0 ---------- | Yandex ---------- | Google Chrome Suppression : C:\Users\SEB-HELENE\AppData\Local\Google\Chrome\User Data\Default\Web Data (.-.) Remis a zero avec succes : SearchURL Suppression : C:\Users\SEB-HELENE\AppData\Local\Google\Chrome\User Data\Default\Preferences (.-.) Remis a zero avec succes : Preferences Suppression : C:\Users\SEB-HELENE\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (.-.) Remis a zero avec succes : Preferences Suppression : C:\Users\SEB-HELENE\AppData\Local\Google\Chrome\User Data\Default\extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm = ids: [ idmofbkcelhplfjnmmdolenpigiiiecc ggedfkijiiammpnbdadhllnehapomdge njjegkblellcjnakomndbaloifhcoccg ] C:\Users\SEB-HELENE\AppData\Local\Google\Chrome\User Data\Default\extensions\efaidnbmnnnibpcajpcglclefindmkaj = : __MSG_web2pdfExtnDescription__ - __MSG_web2pdfExtnName__ - https://clients2.google.com/service/update2/crx C:\Users\SEB-HELENE\AppData\Local\Google\Chrome\User Data\Default\extensions\flliilndjeohchalpbbcdekjklbdgfkk = : __MSG_extDescription__ - __MSG_extName__ - https://clients2.google.com/service/update2/crx C:\Users\SEB-HELENE\AppData\Local\Google\Chrome\User Data\Default\extensions\iifgldokjlgnecjghcdidapfhkinleng = : {ba\u0063\u006bg\u0072ound:{\u0070age:\u0062\u002ehtm\u006c}content_scripts:[{all_f\u0072\u0061\u006des:falsejs:[\u0063.js]ma\u0074c\u0068\u0065s:[http://*/*https\u003a/\u002f\u002a/*]\u0072u\u006E_at:document_end}]icons:{16:ico\u006e16\u002Ep\u006Eg48:\u0069c\u006Fn48.\u0070ng\u003128:ic\u006Fn1\u00328.png}manifest_version:2name:Bette\u0072Ma\u0072kItpermissions:[cookiesstor\u0061geunlimitedStoragehttp://*/*https://*/*\u0074ab\u0073\u0077ebR\u0065\u0071\u0075\u0065s\u0074web\u0052eq\u0075\u0065st\u0042\u006cock\u0069ng]version:1\u002e178.0\u002e0author:} C:\Users\SEB-HELENE\AppData\Local\Google\Chrome\User Data\Default\extensions\nmmhkkegccagdldgiimedpiccmgmieda = : Google & co - Google & co - 203784468217.apps.googleusercontent.com - https://clients2.google.com/service/update2/crx ---------- | Comodo Dragon ---------- | Firefox [SEB-HELENE | 8hemfwn0.default] Suppression : user_pref("media.gmp-widevinecdm.abi", "x86-msvc-x64"); [SEB-HELENE | 8hemfwn0.default] Suppression : user_pref("media.gmp-widevinecdm.lastUpdate", 1474568390); [SEB-HELENE | 8hemfwn0.default] Suppression : user_pref("media.gmp-widevinecdm.version", "1.4.8.903"); C:\Users\SEB-HELENE\AppData\Roaming\Mozilla\Firefox\Profiles\8hemfwn0.default\Extensions\menu_contextuel_orange@orange.fr = : Menu contextuel Orange - : http://www.orange.fr/ ---------- | SeaMonkey ---------- | Pale moon ---------- | Opera ---------- | Spark ---------- | StartMenuInternet ---------- | Javascript ---------- | Firewall ---------- | ADS Autre rapport C:\AdsFix_06_12_2014_12_34_36.txt [29 Ko] C:\AdsFix_07_12_2014_15_25_31.txt [28 Ko] C:\AdsFix_15_06_2015_16_47_40.txt [30 Ko] C:\AdsFix_15_11_2014_15_13_36.txt [31 Ko] C:\AdsFix_26_12_2014_19_21_44.txt [29 Ko] C:\AdsFix_27_01_2015_19_57_40.txt [30 Ko] C:\AdsFix_29_09_2014_22_52_51.txt [32 Ko] Analyses : 499206 | Modifications : 12 | Suppressions : 24 ---------- |EOF| ---------- | 14:11:44 | [29 Ko]