---------- | AdsFix | g3n-h@ckm@n | V5_02.01.18.1

----- Vista | 7 | 8 | 8.1 | 10 - 32/64 bits ----- Start 12:35:06 - 07/01/2018

Mis a jour le : 02/01/2018 | 06.10 (GMT) par g3n-h@ckm@n
Contact : http://www.sosvirus.net
Assistance : http://www.sosvirus.net/forum-virus-securite.html
Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html
Facebook : https://www.facebook.com/AdsFixAntiAdware
C:\Users\patsong\Desktop\AdsFix.exe
Boot: Normal boot
[patsong (Administrator)] - [PATSONG-PC] -  (france [040C])
SID = S-1-5-21-3885057622-3054522135-2263952012-1000 || [706174736f6e67205e5e]
PC : Packard Bell - ixtreme M5860 - 
Processor : X64 - 3392 - Intel(R) Core(TM) i3-2130 CPU @ 3.40GHz
Bios : American Megatrends Inc. - 08/09/2011 - V.P01-B2
CoreTemp : ? C


Systeme : Windows 7 Home Premium (64 bits) HomePremium Service Pack 1
Memoire RAM = Total (MB) : 4099 | Libre (MB) : 2437
Pagefile = Total (MB) : 8195 | Libre (MB) : 6329
Virtuelle = Total (MB) : 4194 | Libre (MB) : 3977

C:\ -> [Fixed] | [Packard Bell] | Total : 456.71 Go | Free : 237.77 Go -> NTFS [ATA]
D:\ -> [Fixed] | [DATA] | Total : 456.71 Go | Free : 0 Go -> NTFS [ATA]

Sauvegarde du registre , pour restaurer :  Cliquer sur Options & Restaurer le registre (C:\AdsFix\Save\Registry [07.01.2018 @ 12_35_00]) ou un element
Restauration de fichiers ou dossiers supprimes par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Selectionner un element >> "Restaurer"

---------- | Mises a jour Windows

Derniere(s) detection(s) : 2017-12-03 04:49:39
Dernieres Telechargees : 2017-11-30 21:18:41
Dernieres installees : 2017-11-30 22:19:48
Prochaine recherche : 2018-01-07 11:26:48

Windows Is Activated

---------- | Navigateurs

GC : 63.0.3239.132     (Copyright 2016 Google Inc. All rights reserved.)
OP : 48.0.2685.39     (Copyright Opera Software 2017)

---------- | Security (atcav : 3)

AV : BullGuard Antivirus Disabled
AS : Windows Defender Disabled
FW : BullGuard Firewall Enabled
WMI : OK
WU: Windows Update Service [Auto(2)] = en cours
AS: Windows Defender [Manual(3)] = non en cours
FW: Windows FireWall Service [Auto(2)] = en cours
WMI: Windows Management Instrumentation (System Information) [Auto(2)] = en cours

---------- | FlashPlayer

Plugin : 28.0.0.126

---------- | Processes closed

1172 | [Owner :  |Parent : 616(services.exe)] - (.SurfRight B.V. - HitmanPro Scheduler.) - (3.7.0.5) = C:\Program Files\HitmanPro\hmpsched.exe
1672 | [Owner : patsong |Parent : 1544(taskeng.exe)] - (.Orange - ma Livebox.) - (3.4.8.0) = C:\Program Files (x86)\Orange\ma Livebox\maLivebox.exe
1680 | [Owner :  |Parent : 616(services.exe)] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - (1.824.24.5926) = C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
1688 | [Owner :  |Parent : 1328(taskeng.exe)] - (.Google Inc. - Programme d'installation de Google.) - (1.3.31.5) = C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
1904 | [Owner :  |Parent : 616(services.exe)] - (.Adobe Systems Incorporated - Adobe Update Service.) - (4.3.0.256) = C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
1936 | [Owner :  |Parent : 616(services.exe)] - (.Adobe Systems, Incorporated - Adobe Genuine Software Integrity Service.) - (4.4.0.652) = C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
2012 | [Owner :  |Parent : 616(services.exe)] - (.Apple Inc. - Bonjour Service.) - (3.0.0.10) = C:\Program Files\Bonjour\mDNSResponder.exe
1844 | [Owner : Système |Parent : 1688()] - (.Google Inc. - Google Crash Handler.) - (1.3.33.7) = C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
1508 | [Owner : Système |Parent : 1688()] - (.Google Inc. - Google Crash Handler.) - (1.3.33.7) = C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
2152 | [Owner : Système |Parent : 616(services.exe)] - (.Dropbox, Inc. - Dropbox Service.) - (1.0.24.0) = C:\Windows\System32\DbxSvc.exe
2308 | [Owner : Système |Parent : 616(services.exe)] - (.- DedicarzService.) - (1.4.10.1418) = C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe
2992 | [Owner : patsong |Parent : 2980()] - (.Piriform Ltd - CCleaner.) - (5.38.99.6357) = C:\Program Files\CCleaner\CCleaner64.exe
3316 | [Owner : patsong |Parent : 1672()] - (.Orange - ma Livebox.) - (3.4.8.0) = C:\Program Files (x86)\Orange\ma Livebox\dist\ST2.exe
3724 | [Owner : Système |Parent : 616(services.exe)] - (.DEVGURU Co., LTD. - MSS CS Connectivity Service.) - (2.5.8.0) = C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
780 | [Owner : Système |Parent : 2332()] - (.Dropbox, Inc. - Dropbox Update.) - (1.3.27.73) = C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
816 | [Owner : Système |Parent : 616(services.exe)] - (.Nero AG - NeroUpdate.) - (1.0.31.0) = C:\Program Files (x86)\Nero\Update\NASvc.exe
5356 | [Owner : patsong |Parent : 6096()] - (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) - (15.23.20053.15062) = C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\reader_sl.exe

---------- | Tasks

Suppression : Apple Diagnostics
Suppression : OrangeUpdate_Install
Suppression : OrangeUpdate_Launch


---------- | Services


---------- | AppCertDlls | AppInit_DLLs


---------- | DNSapi.dll

C:\Windows\System32\dnsapi.dll : \drivers\etc\hosts
C:\Windows\SysWOW64\dnsapi.dll : \drivers\etc\hosts

---------- | Hosts


---------- | SafeBoot


---------- | Winsock


---------- | DNS


---------- | Registre

Suppression : HKU\S-1-5-18\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\Feven 1.7
Suppression : HKU\S-1-5-21-3885057622-3054522135-2263952012-1000\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\Feven 1.7
Suppression : HKLM\SOFTWARE\Classes\Applications\FreeMp3WmaConverterSetup-r0-n.exe
Suppression : HKLM\SOFTWARE\Classes\AppID\protector_dll.DLL :  # 
Suppression : HKLM\SOFTWARE\Classes\AppID\SoftwareUpdateAdmin.DLL :  # 
Suppression : HKLM\SOFTWARE\Classes\AppID\{96FBC13C-8214-4100-88E0-FF74D7A1CB4D} : protector_dll # 
Suppression : HKLM\SOFTWARE\Classes\TypeLib\{12631F96-F37E-4975-81D5-16E871EE557B} : C:\Program Files (x86)\RealArcade\Installer\bin\InstallerDlg.dll
Suppression : HKLM\SOFTWARE\Classes\TypeLib\{1D947539-6085-485F-AEBC-97F6124CE951} : C:\Program Files (x86)\RealArcade\Installer\bin\gtbCom.dll
Suppression : HKLM\SOFTWARE\Classes\TypeLib\{334A3120-6600-41F2-81BC-97D6DC7C9CB7} : C:\Program Files (x86)\RealArcade\Installer\CheckInst.dll
Suppression : HKLM\SOFTWARE\Classes\TypeLib\{3DB21602-EF19-4521-8942-DFDFEC05549B} : C:\Program Files\BullGuard Ltd\BullGuard\Files32\Spamfilter\MailScanAddin.dll # C:\Program Files\BullGuard Ltd\BullGuard\Spamfilter\MailScanAddin.dll
Suppression : HKLM\SOFTWARE\Classes\TypeLib\{7D10077E-0FF1-42E9-940A-CFFEE4DC7D63} : C:\Program Files (x86)\RealArcade\Installer\bin\GCHROME.dll
Suppression : HKLM\SOFTWARE\Classes\TypeLib\{98108A40-24C3-4C6E-A189-144AE27A9C70} : c:\program files\bullguard ltd\bullguard\Files32\Antiphishing\IE\BGAntiphishingIE.dll # c:\program files\bullguard ltd\bullguard\Antiphishing\IE\BGAntiphishingIE.dll
Suppression : HKLM\SOFTWARE\Classes\Interface\{093F91D4-570D-4CBF-9867-4083F173CCAF} : {1D947539-6085-485F-AEBC-97F6124CE951}
Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{093F91D4-570D-4CBF-9867-4083F173CCAF} : {1D947539-6085-485F-AEBC-97F6124CE951}
Suppression : HKLM\SOFTWARE\Classes\Interface\{0D60A064-2009-4623-8FC1-F99CAC01037E} : {12631F96-F37E-4975-81D5-16E871EE557B}
Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{0D60A064-2009-4623-8FC1-F99CAC01037E} : {12631F96-F37E-4975-81D5-16E871EE557B}
Suppression : HKLM\SOFTWARE\Classes\Interface\{12DE7CAC-9F64-48FA-9526-212043DF0AAE} : {12631F96-F37E-4975-81D5-16E871EE557B}
Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{12DE7CAC-9F64-48FA-9526-212043DF0AAE} : {12631F96-F37E-4975-81D5-16E871EE557B}
Suppression : HKLM\SOFTWARE\Classes\Interface\{1DEF9184-E71F-4085-A152-B5B7F8AFEB9F} : {98108A40-24C3-4C6E-A189-144AE27A9C70}
Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{1DEF9184-E71F-4085-A152-B5B7F8AFEB9F} : {98108A40-24C3-4C6E-A189-144AE27A9C70}
Suppression : HKLM\SOFTWARE\Classes\Interface\{299F36BE-119F-40CE-8AD6-64AA20818C80} : {3DB21602-EF19-4521-8942-DFDFEC05549B}
Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{299F36BE-119F-40CE-8AD6-64AA20818C80} : {3DB21602-EF19-4521-8942-DFDFEC05549B}
Suppression : HKLM\SOFTWARE\Classes\Interface\{29F023B2-B05F-4613-A60F-2A0094DF3017} : {12631F96-F37E-4975-81D5-16E871EE557B}
Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{29F023B2-B05F-4613-A60F-2A0094DF3017} : {12631F96-F37E-4975-81D5-16E871EE557B}
Suppression : HKLM\SOFTWARE\Classes\Interface\{36E38C6F-0EF2-4681-80D9-98B60B057709} : {3DB21602-EF19-4521-8942-DFDFEC05549B}
Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{36E38C6F-0EF2-4681-80D9-98B60B057709} : {3DB21602-EF19-4521-8942-DFDFEC05549B}
Suppression : HKLM\SOFTWARE\Classes\Interface\{48D11E12-E33E-40A7-A78D-2EAFD88906DC} : {12631F96-F37E-4975-81D5-16E871EE557B}
Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{48D11E12-E33E-40A7-A78D-2EAFD88906DC} : {12631F96-F37E-4975-81D5-16E871EE557B}
Suppression : HKLM\SOFTWARE\Classes\Interface\{6AAA7D05-AC75-4B10-88A1-D4F6344158DD} : {12631F96-F37E-4975-81D5-16E871EE557B}
Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{6AAA7D05-AC75-4B10-88A1-D4F6344158DD} : {12631F96-F37E-4975-81D5-16E871EE557B}
Suppression : HKLM\SOFTWARE\Classes\Interface\{71AFB688-0483-40F7-A49B-6A411DA1DF0B} : {7D10077E-0FF1-42E9-940A-CFFEE4DC7D63}
Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{71AFB688-0483-40F7-A49B-6A411DA1DF0B} : {7D10077E-0FF1-42E9-940A-CFFEE4DC7D63}
Suppression : HKLM\SOFTWARE\Classes\Interface\{860450DB-79C1-44E4-96E0-C89144E4B444} : {12631F96-F37E-4975-81D5-16E871EE557B}
Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{860450DB-79C1-44E4-96E0-C89144E4B444} : {12631F96-F37E-4975-81D5-16E871EE557B}
Suppression : HKLM\SOFTWARE\Classes\Interface\{C2EF5953-ED8A-43C5-927F-DA3C36F37AC5} : {3DB21602-EF19-4521-8942-DFDFEC05549B}
Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{C2EF5953-ED8A-43C5-927F-DA3C36F37AC5} : {3DB21602-EF19-4521-8942-DFDFEC05549B}
Suppression : HKLM\SOFTWARE\Classes\Interface\{C7E480B1-78D1-4D43-8B94-0D32DD109899} : {12631F96-F37E-4975-81D5-16E871EE557B}
Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{C7E480B1-78D1-4D43-8B94-0D32DD109899} : {12631F96-F37E-4975-81D5-16E871EE557B}
Suppression : HKLM\SOFTWARE\Classes\Interface\{C7FD6819-9EB2-4330-A161-77CC9225DAA1} : {334A3120-6600-41F2-81BC-97D6DC7C9CB7}
Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{C7FD6819-9EB2-4330-A161-77CC9225DAA1} : {334A3120-6600-41F2-81BC-97D6DC7C9CB7}
Suppression : HKLM\SOFTWARE\Classes\Interface\{D0A4EAC1-BD78-4D2D-AAAD-3C6558E74008} : {12631F96-F37E-4975-81D5-16E871EE557B}
Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{D0A4EAC1-BD78-4D2D-AAAD-3C6558E74008} : {12631F96-F37E-4975-81D5-16E871EE557B}
Suppression : HKLM\SOFTWARE\Classes\Interface\{D991AAA3-6CEB-47CD-9A34-08E0C9D0959E} : {12631F96-F37E-4975-81D5-16E871EE557B}
Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{D991AAA3-6CEB-47CD-9A34-08E0C9D0959E} : {12631F96-F37E-4975-81D5-16E871EE557B}
Suppression : HKLM\SOFTWARE\Classes\Interface\{F5609BFB-AC99-4F0C-AA90-5BA58C1E382E} : {12631F96-F37E-4975-81D5-16E871EE557B}
Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{F5609BFB-AC99-4F0C-AA90-5BA58C1E382E} : {12631F96-F37E-4975-81D5-16E871EE557B}
Suppression : [HKU\S-1-5-21-3885057622-3054522135-2263952012-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]~[01net_Free_MP3_WMA_Converter.exe]
Suppression : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MediaEspresso
Suppression : HKU\S-1-5-21-3885057622-3054522135-2263952012-1000\SOFTWARE\Chromium
Suppression : HKU\S-1-5-21-3885057622-3054522135-2263952012-1000\SOFTWARE\Zylom
Suppression : HKU\S-1-5-21-3885057622-3054522135-2263952012-1000\SOFTWARE\Artogon
Suppression : HKU\S-1-5-21-3885057622-3054522135-2263952012-1000\SOFTWARE\Wargaming.net
Suppression : HKU\S-1-5-21-3885057622-3054522135-2263952012-1000\SOFTWARE\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\9d08fabd_0 : {0.0.0.00000000}.{a9435d57-90c6-4a08-9455-0f00a0dabb68}|\Device\HarddiskVolume3\Program Files (x86)\FreeGamePick\The Witchs Green Amulet\game.exe%b{00000000-0000-0000-0000-000000000000}
Suppression : HKU\S-1-5-21-3885057622-3054522135-2263952012-1000\SOFTWARE\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\e27cd2bb_0 : {0.0.0.00000000}.{a9435d57-90c6-4a08-9455-0f00a0dabb68}|\Device\HarddiskVolume3\Program Files (x86)\GameTop.com\Amulet of Dreams\wrapgame.exe%b{00000000-0000-0000-0000-000000000000}
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\32DF3C84BE725644F83A492D57170E27 : 02:\Software\Duuqu\FrameFox\name
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AF85C1F50EB3A0D42AAF49ED74C9A89E : 02:\Software\Duuqu\Update\Clients\{AC14D5E8-02B7-4849-B31E-35E81F72D121}\name
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\8489373E92353E84D882B5DBE6B83E48 :     [C:\Windows\Installer\d9a4.msi]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\system32\HPZipm12.dll] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\system32\hpzipt12.dll] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\system32\hpbmiapi.dll] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\system32\hpboidps.dll] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\system32\hpbprops.dll] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\system32\hplbddrv.dll] [X]

---------- | Dossiers | Fichiers

Suppression : C:\Users\patsong\AppData\LocalLow\Unity\WebPlayer
Suppression : C:\Users\patsong\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico     (.-.)     
Suppression : C:\Users\patsong\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{6A1806CD-94D4-4689-BA73-E35EA1EA9990}.ico     (.-.)     
Suppression : C:\Windows\Installer\d9a4.msi     (.-.)    [Package Install]
Suppression : C:\Users\patsong\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CIC.lnk     (.-.)     
Suppression : C:\Users\patsong\AppData\Local\slot2.mm1     (.-.)     
Suppression : C:\Users\patsong\AppData\Local\slot1.mm1     (.-.)     

---------- | .LNK


---------- | Ouverture extension inconnue


---------- | Proxy


---------- | Internet Explorer

Reparation : [HKU\S-1-5-21-3885057622-3054522135-2263952012-1000\SOFTWARE\Microsoft\Internet Explorer\Main]~[Local Page] : C:\Windows\SysWOW64\blank.htm -> C:\Windows\System32\blank.htm
Reparation : [HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main]~[Start Page] : about:blank -> https://www.google.com/
Reparation : [HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Search]~[SearchAssistant] : http://www.bing.com/search?q={searchTerms} -> https://www.google.com/ie
Reparation : [HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Search]~[CustomizeSearch] : http://www.bing.com/search?q={searchTerms} -> https://www.google.com/
Reparation : [HKU\S-1-5-21-3885057622-3054522135-2263952012-1000\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter]~[Enabled] :  -> 2
Reparation : [HKU\S-1-5-21-3885057622-3054522135-2263952012-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings]~[WarNonBadCertReceving] :  -> 1
Reparation : [HKU\S-1-5-21-3885057622-3054522135-2263952012-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings]~[WarNonHTTPSToHTTPRedirect] : 0 -> 1
Reparation : [HKU\S-1-5-21-3885057622-3054522135-2263952012-1000\SOFTWARE\Microsoft\Internet Explorer\Toolbar]~[Locked] : 1 -> 0
Suppression : [HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[SavedLegacySettings] : 0x460000005802000009000000000000000000000000000000040000000000000000000000000000000000000000000000000000000100000002000000C0A8010B000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
Suppression : [HKU\S-1-5-21-3885057622-3054522135-2263952012-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[SavedLegacySettings] : 0x46000000310000000900000000000000070000002A2E6C6F63616C00000000040000000000000000000000000000000000000000000000000000000100000002000000C0A8010B000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
Suppression : [HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[DefaultConnectionSettings] : 0x46000000CD05000009000000000000000000000000000000040000000000000000000000000000000000000000000000000000000300000017000000000000002A01CB088421D200449B7FFF78C66DDF000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000017000000000000002A01CB088421D200E4A2F4C63EAFC4AD000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000C0A8010B000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
Suppression : [HKU\S-1-5-21-3885057622-3054522135-2263952012-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[DefaultConnectionSettings] : 0x46000000382600000900000000000000070000002A2E6C6F63616C00000000040000000000000000000000000000000000000000000000000000000100000002000000C0A8010B000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000

---------- | Yandex : X

---------- | CLIQZ : X

---------- | Google Chrome

Suppression : C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\Web Data     (.-.)     Remis a zero avec succes : SearchURL
Suppression : C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\Preferences     (.-.)     Remis a zero avec succes : Preferences 
Suppression : C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences     (.-.)     Remis a zero avec succes : Preferences 
Suppression : C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\extensions\cfhdojbkjhnklbpkdaibdccddilifddb =  permissions: [ tabs \u003Call_urls> contextMenus webRequest webRequestBlocking webNavigation storage unlimitedStorage notifications ]
Suppression : C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\extensions\gglkpjjpfmemlgepdbccfdjemammpola =  web_url: https://assure.ameli.fr/PortailAS/appmanager/PortailAS/assure?_nfpb=true&_pageLabel=as_paiements_page&paiements_1afficherIJ=false&paiements_1flagAccueil=rechercherDepuisAccueil&paiements_1afficherRS=false&paiements_1DateDebut=11/10/2017&paiements_1DateFin=10/12/2017&paiements_1afficherReleves=false&paiements_1afficherRentes=false&paiements_1afficherInva=false&paiements_1Beneficiaire=19580317!-!MARIE-LINE!-!1
Suppression : C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\extensions\hfoapfmejnjkbefgohceiefnjmbaamfh =  web_url: https://assure.ameli.fr/PortailAS/appmanager/PortailAS/assure?_nfpb=true&_windowLabel=connexioncompte_2&connexioncompte_2_actionOverride=/portlets/connexioncompte/validationconnexioncompte&_pageLabel=as_login_page
Suppression : C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\extensions\hkikafclghhklglnclcbicicmopkkaha =  web_url: https://assure.ameli.fr/PortailAS/appmanager/PortailAS/assure?_nfpb=true&_pageLabel=as_paiements_page&paiements_1afficherIJ=false&paiements_1flagAccueil=rechercherDepuisAccueil&paiements_1afficherRS=false&paiements_1DateDebut=23/10/2016&paiements_1DateFin=22/12/2016&paiements_1afficherReleves=false&paiements_1afficherRentes=false&paiements_1afficherInva=false&paiements_1Beneficiaire=19490227!-!PATRICK!-!1
Suppression : C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\extensions\ifhmckjaglfcobbjankfnikjnjdjoldh =  web_url: https://assure.ameli.fr/PortailAS/appmanager/PortailAS/assure?_somtc=true
Suppression : C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\extensions\kipdbpcahkkbdhfffehoppfkmdjfkihf =  web_url: https://assure.ameli.fr/PortailAS/appmanager/PortailAS/assure?_nfpb=true&_pageLabel=as_paiements_page&paiements_1afficherIJ=false&paiements_1flagAccueil=rechercherDepuisAccueil&paiements_1afficherRS=false&paiements_1DateDebut=02/03/2017&paiements_1DateFin=01/05/2017&paiements_1afficherReleves=false&paiements_1afficherRentes=false&paiements_1afficherInva=false&paiements_1Beneficiaire=19490227!-!PATRICK!-!1
Suppression : C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm = ids: [ idmofbkcelhplfjnmmdolenpigiiiecc ggedfkijiiammpnbdadhllnehapomdge njjegkblellcjnakomndbaloifhcoccg ]

C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\extensions\aohghmighlieiainnegkcijnfilokake =  : Google & co - Google & co - https://clients2.google.com/service/update2/crx
C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\extensions\apdfllckaahabafndbhieahigkjlhalf =  : Google & co - https://drive.google.com/?usp=chrome_app - Google & co - [http://docs.google.com/http://drive.google.com/https://docs.google.com/https://drive.google.com/] - https://clients2.google.com/service/update2/crx
C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\extensions\bcaeafomihkhapaphjdpjkjnonoefmho =  :- https://particulier.edf.fr/fr/accueil/espace-client/tableau-de-bord.html -     Tableau de bord
C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\extensions\bgffhecnachigndbmaflgegecifieklo =  :- https://outlook.live.com/owa/?path=/mail/junkemail -     Messagerie - malibarbereau@msn.com
C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo =  : Google & co - http://www.youtube.com - http://www.youtube.com - Google & co - http://clients2.google.com/service/update2/crx
C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\extensions\cphndflkcfeehnlelkokcnlcgkdkbdod =  :- https://www.prestaow.com/Default.aspx -     OWLIANCE PRESTAOW
C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\extensions\efaidnbmnnnibpcajpcglclefindmkaj =  :     __MSG_web2pdfExtnDescription__ -     __MSG_web2pdfExtnName__ - https://clients2.google.com/service/update2/crx
C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\extensions\fliobllokadbkbkjeofmbjoihiogpjhd =  :- https://outlook.live.com/owa/?id=64855&owa=1&owasuffix=owa%2f%3fbO%3d1%26lex%3dredirecturl%2f -     Messagerie - patrick barbereau - Outlook
C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\extensions\ggachlhhiohoadflmajpkmadlneknmde =  :- https://outlook.live.com/owa/?id=64855 -     Courrier - malibarbereau@msn.com
C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi =  :     __MSG_extDesc__ -     __MSG_extName__ - https://clients2.google.com/service/update2/crx
C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\extensions\ieejicgleknlpponebpaidiokejpmgkl =  :- https://www.toutsurmoneau.fr/mon-compte-en-ligne/mon-echeancier-mes-operations -     Mon échéancier mes opérations
C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\extensions\jbipmebinepnflihlffhejiaffngmifn =  :- https://www.google.fr/search?q=j%27ouvre+une+page+dans+google+je+fais+ouvrir+sur+le+bureau+est+c%27est+google+qui+s%27ouvre&oq=j%27ouvre+une+page+dans+google+je+fais+ouvrir+sur+le+bureau+est+c%27est+google+qui+s%27ouvre&aqs=chrome..69i57.38519j0j8&sourceid=chrome&ie=UTF-8#q=j'ouvre+une+page+dans+google+je+fais+ouvrir+sur+le+bureau+est+c'est+google+qui+s'ouvre&start=10 -     j'ouvre une page dans google je fais ...
C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\extensions\kgjnbdpbicdodhlemodacmeoodkcgilo =  :- https://outlook.live.com/owa/ -     Messagerie - mali barbereau - Outlook
C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\extensions\ljfjfmjhnphapahedocomfcglipgoccm =  :- https://outlook.live.com/owa/?id=64855&owa=1&owasuffix=owa%2f -     Courrier - malibarbereau@msn.com
C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\extensions\lneaknkopdijkpnocmklfnjbeapigfbh =  : Google & co - http://maps.google.com - http://maps.google.com - Google & co - http://clients2.google.com/service/update2/crx
C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\extensions\nmmhkkegccagdldgiimedpiccmgmieda =  : Google & co - Google & co - 203784468217.apps.googleusercontent.com - https://clients2.google.com/service/update2/crx
C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\extensions\pcchkfbfahheddjdlbbkcejafhknbkeg =  :- https://www.toutsurmoneau.fr/mon-compte-en-ligne/tableau-de-bord/98-5211961283 -     TABLEAU DE BORD
C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\extensions\pchkhcnofmbbpoaiganjipbnainpcbni =  :- https://outlook.live.com/mail/#/inbox -     Courrier - mali barbereau - Outlook
C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\extensions\pdkpkgbelpbdeejlfbmmnnoeeldilhoc =  :     Qwant est un moteur de recherche qui respecte votre vie privée tout en facilitant la découverte et le partage grâce à une approche sociale. - https://www.qwant.com/?client=mobile-app -     Qwant
C:\Users\patsong\AppData\Local\Google\Chrome\User Data\Default\extensions\pjkljhegncpnkpknbcohdijeoejaedia =  : Google & co - https://mail.google.com/mail/ca - Google & co - [*://mail.google.com/mail/ca] - http://clients2.google.com/service/update2/crx

---------- | Comodo Dragon : X

---------- | Firefox


C:\Users\patsong\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\Extensions\toolbar@Orange.fr =  :   barre d'outils Orange -  :   http://www.orange.fr
C:\Users\patsong\AppData\Roaming\Mozilla\Firefox\Profiles\PbJ8MpId.default\Extensions\abs@avira.com =  :     Segurança do navegador Avira - 

---------- | SeaMonkey : X

---------- | Pale moon : X

---------- | Opera

Suppression : C:\Users\patsong\AppData\Roaming\Opera Software\Opera Stable\extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo = (Changelog)

C:\Users\patsong\AppData\Roaming\Opera Software\Opera Stable\extensions\ibnombjmjocaccigcefonnipcnlaeaed =  : Google & co - Google & co - permissions:[\u003Call_urls>tabs] - https://extension-updates.opera.com/api/omaha/update/

---------- | Spark : X

---------- | StartMenuInternet


---------- | Javascript


---------- | Firewall


Autre rapport


Analyses : 413258 | Modifications : 8 | Suppressions : 90

---------- |EOF| ---------- | 16:16:38 | [28 Ko]