---------- | AdsFix | g3n-h@ckm@n | V5_02.07.18.3 ----- Vista | 7 | 8 | 8.1 | 10 - 32/64 bits ----- Start 00:33:04 - 03/07/2018 Mis a jour le : 02/07/2018 | 17:50 (GMT) par g3n-h@ckm@n Contact : http://www.sosvirus.net Assistance : http://www.sosvirus.net/forum-virus-securite.html Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html Facebook : https://www.facebook.com/AdsFixAntiAdware C:\Users\Jean Morea\Desktop\AdsFix.exe Boot: Normal boot [Jean Morea (Administrator)] - [JEANMOREA-PC] - (france [040C]) SID = S-1-5-21-3353024563-3861455640-128521138-1000 || [4a65616e204d6f726561205e5e] PC : ASUSTeK COMPUTER INC. - P8Z77-V LX2 - SKU Processor : X64 - 3510 - Intel(R) Core(TM) i7-3770K CPU @ 3.50GHz Bios : American Megatrends Inc. - 09/02/2014 - V.2501 CoreTemp : 29.8 C CPU #1 value:0 % CPU #2 value:37 % CPU #3 value:0 % CPU #4 value:6 % CPU #5 value:12 % CPU #6 value:12 % CPU #7 value:6 % CPU #8 value:31 % Total Overall CPU Usage value:13 % Systeme : Windows 7 Home Premium (64 bits) HomePremium Service Pack 1 Memoire RAM = Total (MB) : 8335 | Libre (MB) : 6306 Pagefile = Total (MB) : 16668 | Libre (MB) : 14245 Virtuelle = Total (MB) : 4194 | Libre (MB) : 3988 C:\ -> [Fixed] | [Réservé au système] | Total : 390.62 Go | Free : 352.92 Go -> NTFS [ATA] D:\ -> [Fixed] | [TITAN (2)] | Total : 931.5 Go | Free : 417.76 Go -> NTFS [ATA] E:\ -> [Fixed] | [SaveData] | Total : 540.89 Go | Free : 420.56 Go -> NTFS [ATA] G:\ -> [Fixed] | [HERMES] | Total : 596.17 Go | Free : 474.77 Go -> NTFS [ATA] Sauvegarde du registre , pour restaurer : Cliquer sur Options & Restaurer le registre (C:\AdsFix\Save\Registry [03.07.2018 @ 00_33_03]) ou un element Restauration de fichiers ou dossiers supprimes par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Selectionner un element >> "Restaurer" ---------- | Mises a jour Windows - Activation - Licence Derniere(s) detection(s) : 2018-07-02 21:53:27 Dernieres Telechargees : 2018-07-02 13:44:50 Dernieres installees : 2018-07-02 13:45:12 Prochaine recherche : 2018-07-03 15:45:55 Licence Volume ---------- | Navigateurs IE : 8.0.7601.19104 (© Microsoft Corporation. Tous droits réservés.) FF : 61.0.0.6746 (©Firefox and Mozilla Developers; available under the MPL 2 license.) ---------- | Security AV : Malwarebytes Disabled FW : WMI : OK WU: Windows Update Service [Auto(2)] = en cours AS: Windows Defender [Manual(3)] = non en cours FW: Windows FireWall Service [Auto(2)] = en cours WMI: Windows Management Instrumentation (System Information) [Auto(2)] = en cours ---------- | FlashPlayer ActiveX : 30.0.0.113 Plugin : 30.0.0.113 ---------- | Processes closed 2108 | [Owner : Système |Parent : 920(services.exe)] - (.Acronis - Acronis Scheduler 2.) - (1.0.0.473) = C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe 2404 | [Owner : Jean Morea |Parent : 1916(explorer.exe)] - (.-.) - (0.0.0.0) = C:\Program Files (x86)\RocketDock\RocketDock.exe 3020 | [Owner : Système |Parent : 920(services.exe)] - (.Foxit Software Inc. - Foxit Reader ConnectedPDF Windows Service..) - (9.1.0.4717) = C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe 2544 | [Owner : Système |Parent : 920(services.exe)] - (.StarWind Software - StarWind iSCSI Target (Alcohol Edition).) - (12.1.0.4625) = C:\Program Files (x86)\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe 4892 | [Owner : Jean Morea |Parent : 4740()] - (.Piriform Ltd - CCleaner.) - (5.44.162.6575) = C:\Program Files\CCleaner\CCleaner64.exe 5388 | [Owner : Jean Morea |Parent : 5200()] - (.- OnScreenApplication.) - (2.86.0.0) = C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\OnScreen Control.exe 5904 | [Owner : Jean Morea |Parent : 5388(OnScreen Control.exe)] - (.LG Electronisc Inc - OSCApplicationManager.) - (1.0.0.1) = C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\OSCApplicationManager.exe 5948 | [Owner : Jean Morea |Parent : 5904()] - (.TODO: - TODO: .) - (1.0.0.1) = C:\Program Files (x86)\LG Electronics\OnScreen Control\bin\ScreenSplitterHook64App.exe ---------- | Tasks ---------- | Services ---------- | AppCertDlls | AppInit_DLLs ---------- | DNSapi.dll C:\Windows\System32\dnsapi.dll : \drivers\etc\hosts C:\Windows\SysWOW64\dnsapi.dll : \drivers\etc\hosts ---------- | Hosts ---------- | SafeBoot ---------- | Winsock ---------- | DNS ---------- | Registre Suppression : HKLM\SOFTWARE\Classes\TypeLib\{35AE4004-4194-4243-92AA-351BB7239539} : C:\Program Files (x86)\Glary Utilities 5\GridMap.ocx Suppression : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Spybot - Search & Destroy 2 Suppression : [HKU\S-1-5-21-3353024563-3861455640-128521138-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted]~[C:\Users\Jean Morea\Downloads\Programmes\spybot-search-destroy_2-6-46_fr_10965.exe] Suppression : HKU\S-1-5-18\SOFTWARE\Safer Networking Limited Suppression : HKU\S-1-5-21-3353024563-3861455640-128521138-1000\SOFTWARE\Chromium Suppression : HKU\S-1-5-21-3353024563-3861455640-128521138-1000\SOFTWARE\Safer Networking Limited Suppression : HKLM\SOFTWARE\Wow6432Node\Safer Networking Limited Suppression : HKU\S-1-5-21-3353024563-3861455640-128521138-1000\SOFTWARE\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\46e99e83_0 : {0.0.0.00000000}.{23ecf5db-c6dc-4d9b-82f2-3cb8773e5c92}|\Device\HarddiskVolume1\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe%b{00000000-0000-0000-0000-000000000000} Suppression : HKU\S-1-5-21-3353024563-3861455640-128521138-1000\SOFTWARE\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\8df80d9c_0 : {0.0.0.00000000}.{967aaf8b-5aee-498c-9c1d-9bb78e2983a7}|\Device\HarddiskVolume1\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe%b{00000000-0000-0000-0000-000000000000} Suppression : HKU\S-1-5-21-3353024563-3861455640-128521138-1000\SOFTWARE\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\e364eed0_0 : {0.0.0.00000000}.{23ecf5db-c6dc-4d9b-82f2-3cb8773e5c92}|\Device\HarddiskVolume1\Program Files (x86)\Spybot - Search & Destroy 2\SDRootAlyzer.exe%b{00000000-0000-0000-0000-000000000000} Suppression : HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Safer-Networking ---------- | Dossiers | Fichiers Suppression : C:\ProgramData\Spybot - Search & Destroy ---------- | .LNK ---------- | Ouverture extension inconnue ---------- | Proxy ---------- | Internet Explorer Reparation : [HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[SavedLegacySettings] : 0x4600000005000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000 -> Reparation : [HKU\S-1-5-21-3353024563-3861455640-128521138-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[SavedLegacySettings] : 0x46000000470000000100000000000000070000002A2E6C6F63616C000000000000000000000000000000000000000000000000000000000000000000000000 -> Reparation : [HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[SavedLegacySettings] : -> Reparation : [HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[DefaultConnectionSettings] : -> Reparation : [HKU\S-1-5-21-3353024563-3861455640-128521138-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[DefaultConnectionSettings] : 0x46000000020000000100000000000000070000002A2E6C6F63616C000000000000000000000000000000000000000000000000000000000000000000000000 -> Reparation : [HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[DefaultConnectionSettings] : -> ---------- | Yandex : X ---------- | CLIQZ : X ---------- | Google Chrome C:\Users\Jean Morea\AppData\Local\Google\Chrome\User Data\Default\extensions\aapocclcgogkmnckokdopfmhonfmgoek = : Google & co - Google & co - https://clients2.google.com/service/update2/crx C:\Users\Jean Morea\AppData\Local\Google\Chrome\User Data\Default\extensions\aohghmighlieiainnegkcijnfilokake = : Create share and access your Google Docs from anywhere. - Docs - http://clients2.google.com/service/update2/crx C:\Users\Jean Morea\AppData\Local\Google\Chrome\User Data\Default\extensions\apdfllckaahabafndbhieahigkjlhalf = : Google & co - https://drive.google.com/?usp=chrome_app - Google & co - [http://docs.google.com/http://drive.google.com/https://docs.google.com/https://drive.google.com/] - https://clients2.google.com/service/update2/crx C:\Users\Jean Morea\AppData\Local\Google\Chrome\User Data\Default\extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo = : Google & co - http://www.youtube.com - http://www.youtube.com/ - Google & co - http://clients2.google.com/service/update2/crx C:\Users\Jean Morea\AppData\Local\Google\Chrome\User Data\Default\extensions\eofcbnmajmjmplflapaojjnihcjkigck = : __MSG_avastAppDesc__ - __MSG_avastAppName__ - https://clients2.google.com/service/update2/crx C:\Users\Jean Morea\AppData\Local\Google\Chrome\User Data\Default\extensions\felcaaldnbdncclmgdcncolpebgiejap = : Google & co - Google & co - https://clients2.google.com/service/update2/crx C:\Users\Jean Morea\AppData\Local\Google\Chrome\User Data\Default\extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi = : __MSG_extDesc__ - __MSG_extName__ - https://clients2.google.com/service/update2/crx C:\Users\Jean Morea\AppData\Local\Google\Chrome\User Data\Default\extensions\nmmhkkegccagdldgiimedpiccmgmieda = : Google & co - Google & co - 203784468217.apps.googleusercontent.com - https://clients2.google.com/service/update2/crx C:\Users\Jean Morea\AppData\Local\Google\Chrome\User Data\Default\extensions\pjkljhegncpnkpknbcohdijeoejaedia = : Google & co - https://mail.google.com/mail/ca - Google & co - [*://mail.google.com/mail/ca] - http://clients2.google.com/service/update2/crx C:\Users\Jean Morea\AppData\Local\Google\Chrome\User Data\Default\extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm = : Provider for discovery and services for mirroring of Chrome Media Router - Chrome Media Router - 919648714761-55j965o0km033psv3i9qls5mo3qtdrb0.apps.googleusercontent.com - https://clients2.google.com/service/update2/crx ---------- | Comodo Dragon : X ---------- | Firefox ---------- | SeaMonkey : X ---------- | Pale moon : X ---------- | Opera : X ---------- | Spark : X ---------- | StartMenuInternet ---------- | Javascript ---------- | Firewall Autre rapport Analyses : 111677 | Modifications : 0 | Suppressions : 12 ---------- |EOF| ---------- | 01:18:15 | [11 Ko]