---------- | AdsFix | g3n-h@ckm@n | V6_01.03.19.1 ----- Vista | 7 | 8 | 8.1 | 10 - 32/64 bits ----- Start 05:23:11 - 05/03/2019 Mis a jour le : 01/03/2019 | 16:55 (GMT) par g3n-h@ckm@n Contact : http://www.sosvirus.net Assistance : http://www.sosvirus.net/forum-virus-securite.html Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html Facebook : https://www.facebook.com/AdsFixAntiAdware C:\Users\Leblabou\Desktop\AdsFix.exe Boot: Normal boot [Leblabou (Administrator)] - [LEBLABOU-TOSH] - (france [040C]) SID = S-1-5-21-2948383825-1797202739-3644341417-1000 || [4c65626c61626f75205e5e] PC : TOSHIBA - NTWAA - * Processor : X64 - 2261 - Intel(R) Core(TM) i5 CPU M 430 @ 2.27GHz Bios : TOSHIBA - 03/02/10 - V.1.70 CoreTemp : ? C CPU #1 value:0 % CPU #2 value:6 % CPU #3 value:0 % CPU #4 value:6 % Total Overall CPU Usage value:3 % Systeme : Windows 7 Home Premium (64 bits) HomePremium Service Pack 1 Memoire RAM = Total (MB) : 4053 | Libre (MB) : 1641 Pagefile = Total (MB) : 8103 | Libre (MB) : 5357 Virtuelle = Total (MB) : 4194 | Libre (MB) : 3965 C:\ -> [Fixed] | [WINDOWS] | Total : 298.09 Go | Free : 126.15 Go -> NTFS [ATA] D:\ -> [Fixed] | [Data] | Total : 297.69 Go | Free : 121.26 Go -> NTFS [ATA] Sauvegarde du registre , pour restaurer : Cliquer sur Options & Restaurer le registre (C:\AdsFix\Save\Registry [05.03.2019 @ 05_23_05]) ou un element Restauration de fichiers ou dossiers supprimes par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Selectionner un element >> "Restaurer" ---------- | Mises a jour Windows - Activation - Licence Derniere(s) detection(s) : 2017-12-03 12:11:37 Dernieres Telechargees : 2017-11-30 11:12:01 Dernieres installees : 2017-12-01 03:36:25 Prochaine recherche : 2019-03-05 04:12:45 W.A.T : :) Test 1 : Windows Activated Licence Volume ---------- | Navigateurs IE : 11.0.9600.18838 (© Microsoft Corporation. Tous droits réservés.) FF : 59.0.2.6656 (©Firefox and Mozilla Developers; available under the MPL 2 license.) GC : 72.0.3626.119 (Copyright 2018 Google Inc. All rights reserved.) ---------- | Security AV : Malwarebytes Disabled FW : WMI : OK WU: Windows Update Service [Auto(2)] = en cours AS: Windows Defender [Manual(3)] = non en cours FW: Windows FireWall Service [Auto(2)] = en cours WMI: Windows Management Instrumentation (System Information) [Auto(2)] = en cours ---------- | FlashPlayer ActiveX : 30.0.0.134 Plugin : 32.0.0.114 ---------- | Processes closed 324 | [Owner : | Parent : 708 (services.exe)] - (.AMD - AMD External Events Service Module.) - (6.14.11.1040) = C:\Windows\System32\atiesrxx.exe 1308 | [Owner : | Parent : 324 ()] - (.AMD - AMD External Events Client Module.) - (6.14.11.1040) = C:\Windows\System32\atieclxx.exe 1448 | [Owner : Système | Parent : 708 (services.exe)] - (.ABBYY - ABBYY network license server.) - (1.0.0.375) = C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe 2072 | [Owner : Système | Parent : 708 (services.exe)] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - (1.824.31.1644) = C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 2168 | [Owner : Système | Parent : 708 (services.exe)] - (.Apple Inc. - Bonjour Service.) - (3.0.0.10) = C:\Program Files\Bonjour\mDNSResponder.exe 2208 | [Owner : Système | Parent : 708 (services.exe)] - (.Hewlett-Packard Company - SolutionsFrameworkService.) - (1.0.11.0) = C:\Program Files (x86)\HP\Common\HPSupportSolutionsFrameworkService.exe 2240 | [Owner : Leblabou | Parent : 1524 (explorer.exe)] - (.TomTom - TomTom Sports Connect.) - (3.3.9.0) = C:\Program Files (x86)\TomTom\MySportsConnect\TomTom MySports Connect.exe 2360 | [Owner : Leblabou | Parent : 2256 ()] - (.Suunto - Moveslink2.) - (1.5.0.318) = C:\Users\Leblabou\AppData\Local\Apps\2.0\GKM7BEOG.HWT\KGOWT4RD.OT8\move..tion_7b728a49b2b0d019_0001.0005_cab60a8d7bc05604\Moveslink2.exe 2564 | [Owner : Leblabou | Parent : 2396 ()] - (.Hewlett-Packard - hpwuSchd Application.) - (80.1.1.0) = C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe 2600 | [Owner : Leblabou | Parent : 2396 ()] - (.Oracle Corporation - Java Update Scheduler.) - (2.8.201.9) = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe 2700 | [Owner : Système | Parent : 708 (services.exe)] - (.Nero AG - NService Application.) - (1.0.15.0) = C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe 2756 | [Owner : Système | Parent : 708 (services.exe)] - (.McAfee, Inc. - McAfee WebAdvisor.) - (4.1.0.19) = C:\Program Files\McAfee\WebAdvisor\servicehost.exe 3032 | [Owner : Système | Parent : 708 (services.exe)] - (.- PassThruSvr Application.) - (1.2.1.9) = C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe 2532 | [Owner : Système | Parent : 708 (services.exe)] - (.-.) - (0.0.0.0) = C:\Windows\SysWOW64\PnkBstrA.exe 3136 | [Owner : Leblabou | Parent : 1316 ()] - (.-.) - (0.0.0.0) = C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe 3600 | [Owner : Leblabou | Parent : 2468 ()] - (.Piriform Ltd - CCleaner.) - (5.44.162.6575) = C:\Program Files\CCleaner\CCleaner64.exe 3844 | [Owner : Système | Parent : 708 (services.exe)] - (.TOSHIBA Corporation - TDCSrv Application.) - (1.0.0.7) = C:\Windows\System32\TODDSrv.exe 3872 | [Owner : Système | Parent : 708 (services.exe)] - (.TOSHIBA Corporation - TOSHIBA Power Saver.) - (1.0.0.4) = C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe 3956 | [Owner : Système | Parent : 708 (services.exe)] - (.TOSHIBA Corporation - TOSHIBA eco Utility Service.) - (1.1.5.0) = C:\Program Files\TOSHIBA\TECO\TecoService.exe 5836 | [Owner : Système | Parent : 708 (services.exe)] - (.TOSHIBA CORPORATION - ConfigFree Service Process.) - (8.0.0.15) = C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe 6004 | [Owner : Système | Parent : 708 (services.exe)] - (.TOSHIBA CORPORATION - ConfigFree Service Process.) - (7.0.1.8) = C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe 5528 | [Owner : Système | Parent : 5560 ()] - (.Piriform Ltd - CCleaner.) - (5.44.162.6575) = C:\Program Files\CCleaner\CCleaner64.exe 3436 | [Owner : Système | Parent : 5528 (CCleaner64.exe)] - (.Piriform Ltd - CCleaner.) - (5.44.162.6575) = C:\Program Files\CCleaner\CCleaner64.exe 4304 | [Owner : Système | Parent : 3480 ()] - (.Piriform Ltd - CCleaner.) - (5.44.162.6575) = C:\Program Files\CCleaner\CCleaner64.exe 1820 | [Owner : Leblabou | Parent : 1524 (explorer.exe)] - (.Mozilla Corporation - Firefox.) - (65.0.2.6995) = C:\Program Files\Mozilla Firefox\firefox.exe 2336 | [Owner : Leblabou | Parent : 1820 (firefox.exe)] - (.Mozilla Corporation - Firefox.) - (65.0.2.6995) = C:\Program Files\Mozilla Firefox\firefox.exe 5952 | [Owner : Leblabou | Parent : 1820 (firefox.exe)] - (.Mozilla Corporation - Firefox.) - (65.0.2.6995) = C:\Program Files\Mozilla Firefox\firefox.exe 4816 | [Owner : Leblabou | Parent : 1820 (firefox.exe)] - (.Mozilla Corporation - Firefox.) - (65.0.2.6995) = C:\Program Files\Mozilla Firefox\firefox.exe 6388 | [Owner : Leblabou | Parent : 1820 (firefox.exe)] - (.McAfee, Inc. - McAfee WebAdvisor.) - (4.1.0.23) = C:\Program Files\McAfee\WebAdvisor\O0014FF.tmp 6824 | [Owner : Leblabou | Parent : 2756 ()] - (.McAfee, Inc. - McAfee WebAdvisor.) - (4.1.0.19) = C:\Program Files\McAfee\WebAdvisor\uihost.exe 4516 | [Owner : Système | Parent : 5172 ()] - (.Piriform Ltd - CCleaner.) - (5.44.162.6575) = C:\Program Files\CCleaner\CCleaner64.exe ---------- | Tasks ---------- | Services ---------- | AppCertDlls | AppInit_DLLs ---------- | DNSapi.dll C:\Windows\System32\dnsapi.dll : \drivers\etc\hosts C:\Windows\SysWOW64\dnsapi.dll : \drivers\etc\hosts ---------- | Hosts ---------- | SafeBoot ---------- | Winsock ---------- | DNS ---------- | Registre Suppression : HKLM\SOFTWARE\Classes\AppID\{062C56BD-B2FF-4405-88D9-93154F27D785} : IDBHO # Suppression : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\cfWiMAXService Suppression : HKLM\SYSTEM\ControlSet002\Services\Eventlog\Application\cfWiMAXService Suppression : HKU\S-1-5-21-2948383825-1797202739-3644341417-1000\SOFTWARE\cacaoweb Suppression : HKU\S-1-5-21-2948383825-1797202739-3644341417-1000\SOFTWARE\undefined Suppression : HKU\S-1-5-21-2948383825-1797202739-3644341417-1000\Software\Microsoft\Search Assistant Suppression : HKU\S-1-5-18\SOFTWARE\Nico Mak Computing Suppression : HKU\S-1-5-21-2948383825-1797202739-3644341417-1000\SOFTWARE\Chromium Suppression : HKU\S-1-5-21-2948383825-1797202739-3644341417-1000\SOFTWARE\Nico Mak Computing Suppression : [HKU\S-1-5-21-2948383825-1797202739-3644341417-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]~[DefaultScope] : {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Suppression : HKU\S-1-5-21-2948383825-1797202739-3644341417-1000\SOFTWARE\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\7303db72_0 : {0.0.0.00000000}.{fa8f3b00-7b1a-4211-aed0-152f81fd311d}|\Device\HarddiskVolume2\Users\Leblabou\AppData\Roaming\WTools\Selection Tools\Selection Tools.exe%b{00000000-0000-0000-0000-000000000000} Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0AA8D035DBE9CD04C84DADB13AE16476 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista32\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\10D85CDB036F561449FFCDA6A2477F32 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista32\cs-CZ\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\13D0F37BF43FCD34EBDC5B62994E9D8B : C:\Users\ADMINI~1\AppData\Local\Temp\Vista32\tr-TR\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\157D5BBC8FB691E4BAA4FFC64E635B60 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista64\pl-PL\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1BB9475013A828E4AA870B756E2B531F : C:\Users\ADMINI~1\AppData\Local\Temp\Vista32\de-DE\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2749F8F1D668C01439F6FC52C4D91CD7 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista64\es-ES\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2770D25FBD5F7C143BCD9F7A2CA7D159 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista32\sk-SK\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E65908AA1B71F64AB51F2D72EAB3385 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista32\ja-JP\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3249094A9D426084E880AFCD731780BD : C:\Users\ADMINI~1\AppData\Local\Temp\Vista64\ru-RU\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\339C1A6C8B50E9C439EA9A4CE7CD43C3 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista64\tr-TR\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\33DCDE36A85471D46BF25A328AA6DD42 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista64\zh-CN\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34257FA92547F304294660D341277A56 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista64\sk-SK\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\35FF4DD1CBD938B4A8D095EBBF855100 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista32\it-IT\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3995B92C4852F184B935AFB6A20DE179 : C?\Users\ADMINI~1\AppData\Local\Temp\Vista32\HWSetup.exe Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\402C2CDA662780D47B49503B6CBA6AAD : C:\Users\ADMINI~1\AppData\Local\Temp\Vista64\hu-HU\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45B96902EC20A9E4FBD424A210745A0E : C:\Users\ADMINI~1\AppData\Local\Temp\Vista64\pt-PT\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4B05143A233A0B348A9E1A276AB57156 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista64\it-IT\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4B903EF54685A1746AF47AC08F297D78 : C?\Users\ADMINI~1\AppData\Local\Temp\Vista64\Microsoft.VC80.MFC\mfc80.dll Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4F291C5A1ABDD024BAC56963FBA06184 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista64\en-US\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5A09DB1AC98C16C499468CADE192FCFB : C:\Users\ADMINI~1\AppData\Local\Temp\Vista32\nb-NO\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D09862873396114CA20560840C36F0B : C:\Users\ADMINI~1\AppData\Local\Temp\Vista32\nl-NL\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\616EBDE15B5ED5C44A327553757506F6 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista32\fi-FI\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\64D95AB56C093A74AB225EEB14DC6D04 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista32\en-US\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6ED7F16D7997C6D4D8663B801CCB0665 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista64\el-GR\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\73B77AE1F6DEEEB41BB873FF2F1D3107 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista64\da-DK\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\840FDE3120E87184CAD8F9E457A35B51 : C?\Users\ADMINI~1\AppData\Local\Temp\Vista64\HWSetup.exe Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\873B7CF662B7CE748930FE5725CD0048 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista32\zh-CN\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\87BC3F485E7CF7D479289E00A6ED1665 : C:\Users\ADMINI~1\AppData\Local\Temp\DLL32\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8D8DB571511ABE44B993795946F90350 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista64\cs-CZ\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\951DA49380320F847837388996FDA0C4 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista32\pt-PT\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A028A66290C36C4BBACCA3CE83353E8 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista32\fr-FR\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9B0E637613EF1544C99D44AE13D8F6C9 : C?\Users\ADMINI~1\AppData\Local\Temp\DLL64\TSBWLS.dll Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A182EBB87E4BEA846901B9876DE0DDBD : 02:\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}\NoExplorer Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A8EF7C1873FBBE642AFB3022AF4C3DBC : C:\Users\ADMINI~1\AppData\Local\Temp\Vista64\sv-SE\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ACE05E90A6B40784AB76A7F019603FAA : C:\Users\ADMINI~1\AppData\Local\Temp\Vista32\hu-HU\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B09F0991B50E9934B88F5B39375CE292 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista64\fi-FI\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B33E5883CBA4D9B4D961A0305A09DE95 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista64\nb-NO\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B3A67AA3B7E626F4FB9283DABD0BFDFA : C:\Users\ADMINI~1\AppData\Local\Temp\Vista64\ja-JP\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C67A1B58C9F6D7740B1C250D63BFA24A : C?\Users\ADMINI~1\AppData\Local\Temp\DLL64\HWS_Ctrl.dll Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C90D7D2765ECC8C45937CEBE600C6208 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista64\Microsoft.VC80.MFC\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C971080C4CB0E394580EC45CC4CCA9EC : C:\Users\ADMINI~1\AppData\Local\Temp\Vista32\es-ES\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CC5E517B5BCE6A44B8520A63A6F8B624 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista32\pl-PL\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CD301C0442CAFFE4AA2F445A44F92B53 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista32\ru-RU\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D2246C99638D401418BE4701229F31B2 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista64\nl-NL\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D268E348B2F71124C977F84EA430E4B2 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista64\de-DE\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D553CB5DED40E6E4AA6054CE439590DB : C?\Users\ADMINI~1\AppData\Local\Temp\DLL32\HWS_Ctrl.dll Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6764EB5D21D88D49917A80621BED318 : C?\Users\ADMINI~1\AppData\Local\Temp\DLL32\TSBWLS.dll Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D848327AD75FF5842B8BAD3782971427 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista32\da-DK\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D959A37B61BD4474D8CBCC8B51ED9A0C : C:\Users\ADMINI~1\AppData\Local\Temp\Vista64\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD9C57FA8D7A5644E94037D08DEA0361 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista64\ko-KR\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E251B97D0D66FEA4F8F7AE6B258E608D : C:\Users\ADMINI~1\AppData\Local\Temp\Vista32\sv-SE\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E64F346AACB5B5E489508FA3FA74B5BB : C:\Users\ADMINI~1\AppData\Local\Temp\DLL64\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EDE93ACF3E3E99D4FB39EA7A8E98D369 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista64\fr-FR\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F5C8D12C4F69FE044ADE129C4798CB1B : C:\Users\ADMINI~1\AppData\Local\Temp\Vista32\ko-KR\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FC977260DEF2EB54AB943F1D736D0444 : C:\Users\ADMINI~1\AppData\Local\Temp\Vista32\el-GR\ Suppression : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\cacaoweb : "C:\Users\Leblabou\AppData\Roaming\cacaoweb\cacaoweb.exe" -noplayer ---------- | Dossiers | Fichiers Suppression : C:\Users\Leblabou\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\fheoggkfdfchfphceeifdbepaooicaho Reboot : C:\Users\Leblabou\AppData\Roaming\Byiko Reboot : C:\Users\Leblabou\AppData\Roaming\Ivcaa Reboot : C:\ProgramData\UniqueId Suppression : C:\Users\Leblabou\Desktop\cacaoweb.exe (.-.) Suppression : C:\Users\Leblabou\Downloads\cacaoweb(1).exe (.-.) Suppression : C:\Users\Leblabou\Downloads\cacaoweb(2).exe (.-.) Suppression : C:\Users\Leblabou\Downloads\cacaoweb.exe (.-.) Suppression : C:\ProgramData\Reprise\wupeogjxldtlfudivq`qsp`27hfm (.-.) Suppression : C:\Windows\System\w98eject.exe (Copyright © 2003.-.Sigmatel w98Eject) w98Eject.exe Suppression : C:\Windows\xó© (.-.) Suppression : C:\Users\Leblabou\AppData\Local\Cache ---------- | .LNK ---------- | Ouverture extension inconnue ---------- | Proxy ---------- | Internet Explorer Reparation : [HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[SavedLegacySettings] : 0x46000000..... -> Reparation : [HKU\S-1-5-21-2948383825-1797202739-3644341417-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[SavedLegacySettings] : 0x46000000..... -> Reparation : [HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[DefaultConnectionSettings] : 0x46000000..... -> Reparation : [HKU\S-1-5-21-2948383825-1797202739-3644341417-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[DefaultConnectionSettings] : 0x46000000..... -> ---------- | Yandex : X ---------- | CLIQZ : X ---------- | Google Chrome Suppression : C:\Users\Leblabou\AppData\Local\Google\Chrome\User Data\Default\Web Data (.-.) Remis a zero avec succes : SearchURL Suppression : C:\Users\Leblabou\AppData\Local\Google\Chrome\User Data\Default\Preferences (.-.) Remis a zero avec succes : Preferences Suppression : C:\Users\Leblabou\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (.-.) Remis a zero avec succes : Preferences Suppression : C:\Users\Leblabou\AppData\Local\Google\Chrome\User Data\Default\extensions\fheoggkfdfchfphceeifdbepaooicaho = (Changelog) C:\Users\Leblabou\AppData\Local\Google\Chrome\User Data\Default\extensions\aapocclcgogkmnckokdopfmhonfmgoek = : Google & co - Google & co - https://clients2.google.com/service/update2/crx C:\Users\Leblabou\AppData\Local\Google\Chrome\User Data\Default\extensions\aohghmighlieiainnegkcijnfilokake = : Google & co - Google & co - https://clients2.google.com/service/update2/crx C:\Users\Leblabou\AppData\Local\Google\Chrome\User Data\Default\extensions\apdfllckaahabafndbhieahigkjlhalf = : Google & co - https://drive.google.com/?usp=chrome_app - Google & co - [http://docs.google.com/http://drive.google.com/https://docs.google.com/https://drive.google.com/] - https://clients2.google.com/service/update2/crx C:\Users\Leblabou\AppData\Local\Google\Chrome\User Data\Default\extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo = : Google & co - http://www.youtube.com - http://www.youtube.com - Google & co - http://clients2.google.com/service/update2/crx C:\Users\Leblabou\AppData\Local\Google\Chrome\User Data\Default\extensions\efaidnbmnnnibpcajpcglclefindmkaj = : __MSG_web2pdfExtnDescription__ - __MSG_web2pdfExtnName__ - https://clients2.google.com/service/update2/crx C:\Users\Leblabou\AppData\Local\Google\Chrome\User Data\Default\extensions\eofcbnmajmjmplflapaojjnihcjkigck = : __MSG_avastAppDesc__ - __MSG_avastAppShortName__ - https://clients2.google.com/service/update2/crx C:\Users\Leblabou\AppData\Local\Google\Chrome\User Data\Default\extensions\felcaaldnbdncclmgdcncolpebgiejap = : Google & co - Google & co - https://clients2.google.com/service/update2/crx C:\Users\Leblabou\AppData\Local\Google\Chrome\User Data\Default\extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi = : __MSG_extDesc__ - __MSG_extName__ - https://clients2.google.com/service/update2/crx C:\Users\Leblabou\AppData\Local\Google\Chrome\User Data\Default\extensions\gomekmidlodglbbmalcneegieacbdmki = : Avast Browser Security and Web Reputation Plugin. - Avast Online Security - matches:[\u003Call_urls>] - https://clients2.google.com/service/update2/crx C:\Users\Leblabou\AppData\Local\Google\Chrome\User Data\Default\extensions\nmmhkkegccagdldgiimedpiccmgmieda = : Google & co - Google & co - 203784468217.apps.googleusercontent.com - https://clients2.google.com/service/update2/crx C:\Users\Leblabou\AppData\Local\Google\Chrome\User Data\Default\extensions\pjkljhegncpnkpknbcohdijeoejaedia = : Google & co - https://mail.google.com/mail/ca - Google & co - [*://mail.google.com/mail/ca] - http://clients2.google.com/service/update2/crx C:\Users\Leblabou\AppData\Local\Google\Chrome\User Data\Default\extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm = : Provider for discovery and services for mirroring of Chrome Media Router - Chrome Media Router - 919648714761-55j965o0km033psv3i9qls5mo3qtdrb0.apps.googleusercontent.com - https://clients2.google.com/service/update2/crx ---------- | Comodo Dragon : X ---------- | Firefox [Leblabou | s4wwmloi.default-1524209821013] Suppression : user_pref("browser.newtabpage.blocked", "{\"XMCS4Ht3gZgnHeUUanG2CA==\":1,\"uTrIXHmU0tkTPFCuFK/u5Q==\":1,\"Tqq6tTkMiNttmvSCZcYoHg==\":1,\"tCIUTFi8HwtiGG5geYj3jA==\":1,\"ruW8k5D4ZznQpy3LEVgq+Q==\":1,\"ye8A3jPG5TSkgQqWXeyMzg==\":1,\"Vd8S6P5iWMysuUqlvaTYuw==\":1,\"lnt89jB3Y39Hpl+CbbsM8Q==\":1,\"lvof4qcqKwKR62ueZvlJ+w==\":1,\"2q0aWT0KVPxTO8cTQ1zyYQ==\":1,\"FPt6yVXWt0VU2xyPPvm+Hg==\":1,\"OKkmJxfXK5cB8+zV/oTRxQ==\":1,\"5wa9IOPMVhhjT9RSXxDj1A==\":1,\"JJ8HFCTMwipsHnz5sHiRbg==\":1,\"9U6/2OkgDiwLWMWDEIIJFQ==\":1,\"g9WX0ZVBcKPX9cn7XIKkOA==\":1,\"CLLak+Ka9EklyUma1/65rA==\":1,\"2Z/a35RfPNOiZc12ed2+ww==\":1,\"SweMweZuCImWIsNVuL2znA==\":1,\"0sQw0dq7qA2DTsHc92/71Q==\":1,\"rEyp3O3jcy9mt6sJQPU1yg==\":1,\"PLBWnG2g8SJCvZ6uCYHDCQ==\":1,\"YG5p3pqSf8omHWswRDwQhw==\":1}"); ---------- | SeaMonkey : X ---------- | Pale moon : X ---------- | Opera : X ---------- | Spark : X ---------- | StartMenuInternet ---------- | Javascript ---------- | Firewall Autre rapport C:\AdsFix_01_09_2017_21_22_58.txt[25 Ko] C:\AdsFix_04_09_2017_05_52_31.txt[58 Ko] Analyses : 244769 | Modifications : 4 | Suppressions : 85 ---------- |EOF| ---------- | 10:37:32 | [26 Ko]