---------- | AdsFix | g3n-h@ckm@n | V6_02.07.19.1

----- Vista | 7 | 8 | 8.1 | 10 - 32/64 bits ----- Start 19:30:13 - 03/07/2019

Mis a jour le : 02/07/2019 | 08:15 (GMT) par g3n-h@ckm@n
Contact : http://www.sosvirus.net
Assistance : http://www.sosvirus.net/forum-virus-securite.html
Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html
Facebook : https://www.facebook.com/AdsFixAntiAdware
C:\Users\MAIDINE\Desktop\AdsFix.exe
Boot: Normal boot
[MAIDINE (Administrator)] - [MAIDINE-PC] -  (France [040C])
SID = S-1-5-21-1441418299-2428568342-1713308981-1000 || [4d414944494e45205e5e]
PC : ASUSTeK COMPUTER INC. - B85M-G - All
Processor : X64 - 3193 - Intel(R) Core(TM) i5-4570 CPU @ 3.20GHz
Bios : American Megatrends Inc. - 09/13/2013 - V.0604
CoreTemp : 29.8 C

CPU #1 value:8 %
CPU #2 value:20 %
CPU #3 value:1 %
CPU #4 value:1 %
Total Overall CPU Usage value:8 %

Systeme : Windows 10 Home (64 bits) Core 
Memoire RAM = Total (MB) : 16714 | Libre (MB) : 12465
Pagefile = Total (MB) : 33491 | Libre (MB) : 27685
Virtuelle = Total (MB) : 4194 | Libre (MB) : 3889

C:\ -> [Fixed] | [SSD 6GB/s] | Total : 237.94 Go | Free : 10.17 Go -> NTFS (SSD) [SATA]
D:\ -> [Fixed] | [Réservé au système] | Total : 0.1 Go | Free : 0.07 Go -> NTFS [SATA]
E:\ -> [Fixed] | [Data 6GB/s] | Total : 465.66 Go | Free : 23.63 Go -> NTFS [SATA]

Sauvegarde du registre , pour restaurer :  Cliquer sur Options & Restaurer le registre (C:\AdsFix\Save\Registry [03.07.2019 @ 19_30_12]) ou un element
Restauration de fichiers ou dossiers supprimes par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Selectionner un element >> "Restaurer"

---------- | Mises a jour Windows - Activation - Licence


W.A.T : :)

Test 1 : Windows Activated

Licence Volume

---------- | Navigateurs

IE : 11.0.17763.1     (© Microsoft Corporation. Tous droits réservés.)
GC : 75.0.3770.100     (Copyright 2019 Google LLC. All rights reserved.)
MS-Edge : 11.0.17763.557     (© Microsoft Corporation. All rights reserved.)

---------- | Security 

FW : 
WMI : OK
WU: Windows Update Service [Manual(3)] = en cours
AS: Windows Defender [Auto(2)] = en cours
FW: Windows FireWall Service [Auto(2)] = en cours
WMI: Windows Management Instrumentation (System Information) [Auto(2)] = en cours

---------- | FlashPlayer

ActiveX : 32.0.0.207

---------- | Processes closed

3596 | [Owner : Système | Parent : 796 (services.exe)] - (.AVerMedia TECHNOLOGIES, Inc. - RECentral hot key remote service.) - (1.0.30.8) = C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe
3668 | [Owner : Système | Parent : 796 (services.exe)] - (.Locktime Software - NetLimiter Service.) - (4.0.35.0) = C:\Program Files\Locktime Software\NetLimiter 4\NLSvc.exe
3772 | [Owner : Système | Parent : 796 (services.exe)] - (.Razer Inc. - Razer Chroma SDK REST Server.) - (1.2.4.20) = C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
3780 | [Owner : SERVICE LOCAL | Parent : 796 (services.exe)] - (.Electronic Arts - OriginWebHelperService.) - (10.5.40.26928) = C:\Program Files (x86)\Origin\OriginWebHelperService.exe
3788 | [Owner : Système | Parent : 796 (services.exe)] - (.Razer Inc. - Razer Chroma SDK Service.) - (2.1.9.8) = C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
3808 | [Owner : Système | Parent : 796 (services.exe)] - (.Razer Inc - GameManagerService.) - (2.0.133.3207) = C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
3848 | [Owner : Système | Parent : 796 (services.exe)] - (.Razer Inc. - Razer Central Service.) - (7.2.86.3581) = C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
5680 | [Owner : Système | Parent : 796 (services.exe)] - (.- Razer Synapse Service.) - (1.0.0.0) = C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
1880 | [Owner : Système | Parent : 4896 ()] - (.Google LLC - Google Crash Handler.) - (1.3.34.11) = C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
2736 | [Owner : Système | Parent : 4896 ()] - (.Google LLC - Google Crash Handler.) - (1.3.34.11) = C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
10276 | [Owner : MAIDINE | Parent : 5680 ()] - (.- Razer Synapse Service Process.) - (1.0.0.0) = C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
8372 | [Owner : MAIDINE | Parent : 796 (services.exe)] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (10.0.17763.1) = C:\Windows\System32\svchost.exe
6824 | [Owner : MAIDINE | Parent : 796 (services.exe)] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (10.0.17763.1) = C:\Windows\System32\svchost.exe
1808 | [Owner : MAIDINE | Parent : 796 (services.exe)] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (10.0.17763.1) = C:\Windows\System32\svchost.exe
2280 | [Owner : MAIDINE | Parent : 10060 (explorer.exe)] - (.Epic Games, Inc. - EpicGamesLauncher.) - (10.2.4.0) = C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe
1296 | [Owner : MAIDINE | Parent : 2280 (EpicGamesLauncher.exe)] - (.Epic Games, Inc. - UnrealCEFSubProcess.) - (4.21.0.0) = C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe
8904 | [Owner : MAIDINE | Parent : 10060 (explorer.exe)] - (.Discord Inc. - Discord.) - (0.0.305.0) = C:\Users\MAIDINE\AppData\Local\Discord\app-0.0.305\Discord.exe
1140 | [Owner : MAIDINE | Parent : 3848 ()] - (.Razer Inc. - Razer Central.) - (7.2.86.3581) = C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe
9664 | [Owner : MAIDINE | Parent : 8904 (Discord.exe)] - (.Discord Inc. - Discord.) - (0.0.305.0) = C:\Users\MAIDINE\AppData\Local\Discord\app-0.0.305\Discord.exe
5752 | [Owner : MAIDINE | Parent : 8904 ()] - (.Discord Inc. - Discord.) - (0.0.305.0) = C:\Users\MAIDINE\AppData\Local\Discord\app-0.0.305\Discord.exe
8712 | [Owner : MAIDINE | Parent : 10060 (explorer.exe)] - (.Spotify Ltd - Spotify.) - (1.1.10.540) = C:\Users\MAIDINE\AppData\Roaming\Spotify\Spotify.exe
2716 | [Owner : MAIDINE | Parent : 8712 (Spotify.exe)] - (.Spotify Ltd - Spotify.) - (1.1.10.540) = C:\Users\MAIDINE\AppData\Roaming\Spotify\Spotify.exe
8584 | [Owner : MAIDINE | Parent : 8712 (Spotify.exe)] - (.Spotify Ltd - Spotify.) - (1.1.10.540) = C:\Users\MAIDINE\AppData\Roaming\Spotify\Spotify.exe
10392 | [Owner : MAIDINE | Parent : 10060 (explorer.exe)] - (.f.lux Software LLC - f.lux.) - (4.104.0.0) = C:\Users\MAIDINE\AppData\Local\FluxSoftware\Flux\flux.exe
10924 | [Owner : MAIDINE | Parent : 10060 (explorer.exe)] - (.- Razer Synapse 3.) - (3.1.627.5) = C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe
10740 | [Owner : MAIDINE | Parent : 10468 ()] - (.Oracle Corporation - Java Update Scheduler.) - (2.8.211.12) = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
9912 | [Owner : MAIDINE | Parent : 796 (services.exe)] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (10.0.17763.1) = C:\Windows\System32\svchost.exe
9980 | [Owner : MAIDINE | Parent : 10060 (explorer.exe)] - (.Mozilla Corporation - Firefox.) - (67.0.4.7109) = C:\Program Files\Mozilla Firefox\firefox.exe
11044 | [Owner : MAIDINE | Parent : 9980 (firefox.exe)] - (.Mozilla Corporation - Firefox.) - (67.0.4.7109) = C:\Program Files\Mozilla Firefox\firefox.exe
9276 | [Owner : MAIDINE | Parent : 9980 ()] - (.Mozilla Corporation - Firefox.) - (67.0.4.7109) = C:\Program Files\Mozilla Firefox\firefox.exe

---------- | Tasks

Suppression : BlueStacksHelper


---------- | Services


---------- | AppCertDlls | AppInit_DLLs


---------- | DNSapi.dll

C:\WINDOWS\System32\dnsapi.dll : \drivers\etc\hosts
C:\WINDOWS\SysWOW64\dnsapi.dll : \drivers\etc\hosts

---------- | Hosts


---------- | SafeBoot

Reparation : [HKLM | Minimal\WudfSvc] :  -> Service
Reparation : [HKLM | Minimal\vga.sys] :  -> Driver
Reparation : [HKLM | Minimal\vgasave.sys] :  -> Driver

¤

Reparation : [HKLM | Network\WudfSvc] :  -> Service
Reparation : [HKLM | Network\vga.sys] :  -> Driver
Reparation : [HKLM | Network\vgasave.sys] :  -> Driver

---------- | Winsock


---------- | DNS


---------- | Registre

Suppression : HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Classes\D
Suppression : HKLM\SOFTWARE\Classes\CleanPC :
Suppression : HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Internet Explorer\LowRegistry\DOMStorage\pubmatic.com
Suppression : HKLM\SOFTWARE\Microsoft\Tracing\HD-Player_RASAPI32
Suppression : HKLM\SOFTWARE\Microsoft\Tracing\HD-Player_RASMANCS
Suppression : HKLM\SOFTWARE\Microsoft\Tracing\HD-Quit_RASMANCS
Suppression : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\MAIDINE\AppData\Local\Microsoft\OneDrive\18.143.0717.0002\FileSyncConfig.exe] [X]
Suppression : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\MAIDINE\AppData\Local\Microsoft\OneDrive\19.043.0304.0007\FileSyncConfig.exe] [X]
Suppression : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Program Files (x86)\Common Files\Oracle\Java\javapath_target_4956385\java.exe] [X]
Suppression : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\MAIDINE\AppData\Local\Temp\7zS6D97.tmp\BlueStacksHelper.exe] [X]
Suppression : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\MAIDINE\AppData\Local\Microsoft\OneDrive\19.062.0331.0006\FileSyncConfig.exe] [X]
Suppression : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\MAIDINE\AppData\Local\Microsoft\OneDrive\19.070.0410.0005\FileSyncConfig.exe] [X]
Suppression : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\MAIDINE\Desktop\Emulateurs\Dolphin-x64_(Emulateur Wii)\Dolphin.exe] [X]
Suppression : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[E:\AVerMedia\GCNadapter\GCNUSBFeeder.exe] [X]
Suppression : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\MAIDINE\Desktop\Emulateurs\Emulateur Wii\Patches\IEGS13 English Patch v1.exe] [X]
Suppression : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[E:\Steam\Origin\The Sims 4\Game\Bin\TS4.exe] [X]
Suppression : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\MAIDINE\AppData\Local\Microsoft\OneDrive\19.070.0410.0007\FileSyncConfig.exe] [X]
Suppression : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Program Files\DAEMON Tools Lite\DTLauncher.exe] [X]
Suppression : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Program Files\WinZip Registry Optimizer\Uninstall.exe]
Suppression : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[E:\Sims 4\The Sims 4 Get Famous\Game\Bin\TS4_x64.exe] [X]
Suppression : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[E:\Sims 4\PCSX2 1.4.0\pcsx2.exe] [X]
Suppression : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\MAIDINE\Desktop\Les Sims 4 (Patch FR)\The Sims 4-PatchFR.exe] [X]
Suppression : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[E:\Sims 4\The Sims 4 Get Famous\__Installer\Cleanup.exe] [X]
Suppression : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Program Files\DAEMON Tools Lite\uninst.exe] [X]
Suppression : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\MAIDINE\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe] [X]
Suppression : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\MAIDINE\Desktop\TS4_x64.exe] [X]
Suppression : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\MAIDINE\Desktop\Adobe Premiere Pro CC.exe] [X]
Suppression : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_3.30.12001.0_x64__8wekyb3d8bbwe\GameBarFT.exe] [X]
Suppression : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\MAIDINE\Desktop\Emulateurs\ShiginimaSE_v4100_(Emulateur Minecraft)\Windows EXE\Shiginima Launcher SE v4.100.exe] [X]
Suppression : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\MAIDINE\Downloads\FRST64.exe] [X]
Suppression : HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Chromium
Suppression : HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\undefined
Suppression : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]~[DefaultScope] : {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes]~[DefaultScope]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\system.enterpriseservices.dll] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\wminet_utils.dll] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\mscordbi.dll] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\diasymreader.dll] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\microsoft.jscript.dll] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\iehost.dll] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\system32\msvcp140_1.dll] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Windows\Microsoft.NET\Framework64\v4.0.30319\en-US\] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Windows\Microsoft.NET\Framework64\v4.0.30319\MOF\] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Windows\Microsoft.NET\Framework64\v4.0.30319\MOF\fr\] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Program Files (x86)\Epic Games\Launcher\Engine\Content\Slate\Testing\Fonts\] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Windows\Microsoft.NET\assembly\GAC_MSIL\AspNetMMCExt\v4.0_4.0.0.0__b03f5f7f11d50a3a\] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.7.03062\] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.7.03062\1025\] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.7.03062\1029\] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.7.03062\1031\] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.7.03062\1033\] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.7.03062\1036\] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.7.03062\1038\] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.7.03062\1041\] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.7.03062\1043\] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.7.03062\1045\] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.7.03062\1049\] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.7.03062\1055\] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.7.03062\2070\] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.7.03062\Graphics\] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.7.03062\FRA\] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.7.03062\FRA\1033\] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\v4.7.03062\FRA\Graphics\] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Program Files\Java\jre1.8.0_191\] [X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Program Files (x86)\Common Files\AVerTmp\] [X]
Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.1.4322\System.Windows.Forms.tlb] [X]
Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.1.4322\System.EnterpriseServices.tlb] [X]
Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.1.4322\mscorlib.tlb] [X]
Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.1.4322\Microsoft.JScript.tlb] [X]
Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\System.tlb] [X]
Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\System.Drawing.tlb] [X]
Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\mscoree.tlb] [X]
Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\SysWOW64\vfpodbc.dll] [X]
Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\system.enterpriseservices.dll] [X]
Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\mscordbi.dll] [X]
Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\system.configuration.install.dll] [X]
Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\wminet_utils.dll] [X]
Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\diasymreader.dll] [X]
Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\system.data.dll] [X]

---------- | Dossiers | Fichiers

Suppression : C:\Users\Yassine\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{6A1806CD-94D4-4689-BA73-E35EA1EA9990}.ico     (.-.)     
Suppression : C:\Users\MAIDINE\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{6A1806CD-94D4-4689-BA73-E35EA1EA9990}.ico     (.-.)     

---------- | .LNK


---------- | Ouverture extension inconnue


---------- | Proxy


---------- | Internet Explorer

Reparation : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Internet Explorer\Main]~[Start Page] : http://www.accueil-nav.com/ -> https://www.google.com/
Reparation : [HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main]~[Local Page] : %11%\blank.htm -> C:\WINDOWS\System32\blank.htm
Reparation : [HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main]~[Local Page] : %11%\blank.htm -> C:\WINDOWS\System32\blank.htm
Reparation : [HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main]~[Local Page] : C:\Windows\SysWOW64\blank.htm -> C:\WINDOWS\System32\blank.htm
Reparation : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter]~[Enabled] :  -> 2
Reparation : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter]~[EnabledV8] :  -> 1
Reparation : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings]~[WarNonBadCertReceving] :  -> 1
Reparation : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings]~[WarNonHTTPSToHTTPRedirect] :  -> 1
Reparation : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Internet Explorer\Toolbar]~[Locked] : 1 -> 0
Reparation : [HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[SavedLegacySettings] : 0x46000000..... -> 
Reparation : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[SavedLegacySettings] : 0x46000000..... -> 
Reparation : [HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[DefaultConnectionSettings] : 0x46000000..... -> 
Reparation : [HKU\S-1-5-21-1441418299-2428568342-1713308981-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[DefaultConnectionSettings] : 0x46000000..... -> 

---------- | Yandex : X

---------- | CLIQZ : X

---------- | Google Chrome

Suppression : C:\Users\MAIDINE\AppData\Local\Google\Chrome\User Data\Default\Web Data     (.-.)     Remis a zero avec succes : SearchURL
Suppression : C:\Users\MAIDINE\AppData\Local\Google\Chrome\User Data\Default\Preferences     (.-.)     Remis a zero avec succes : Preferences 
Suppression : C:\Users\MAIDINE\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences     (.-.)     Remis a zero avec succes : Preferences 
Suppression : C:\Users\Yassine\AppData\Local\Google\Chrome\User Data\Default\Web Data     (.-.)     Remis a zero avec succes : SearchURL
Suppression : C:\Users\Yassine\AppData\Local\Google\Chrome\User Data\Default\Preferences     (.-.)     Remis a zero avec succes : Preferences 
Suppression : C:\Users\Yassine\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences     (.-.)     Remis a zero avec succes : Preferences 

C:\Users\MAIDINE\AppData\Local\Google\Chrome\User Data\Default\extensions\aapocclcgogkmnckokdopfmhonfmgoek =  : Google & co - Google & co - https://clients2.google.com/service/update2/crx
C:\Users\MAIDINE\AppData\Local\Google\Chrome\User Data\Default\extensions\aohghmighlieiainnegkcijnfilokake =  : Google & co - Google & co - https://clients2.google.com/service/update2/crx
C:\Users\MAIDINE\AppData\Local\Google\Chrome\User Data\Default\extensions\apdfllckaahabafndbhieahigkjlhalf =  : Google & co - https://drive.google.com/?usp=chrome_app - Google & co - [http://docs.google.com/http://drive.google.com/https://docs.google.com/https://drive.google.com/] - https://clients2.google.com/service/update2/crx
C:\Users\MAIDINE\AppData\Local\Google\Chrome\User Data\Default\extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo =  : Google & co - http://www.youtube.com - http://www.youtube.com - Google & co - http://clients2.google.com/service/update2/crx
C:\Users\MAIDINE\AppData\Local\Google\Chrome\User Data\Default\extensions\felcaaldnbdncclmgdcncolpebgiejap =  : Google & co - Google & co - https://clients2.google.com/service/update2/crx
C:\Users\MAIDINE\AppData\Local\Google\Chrome\User Data\Default\extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi =  :     __MSG_extDesc__ -     __MSG_extName__ - https://clients2.google.com/service/update2/crx
C:\Users\MAIDINE\AppData\Local\Google\Chrome\User Data\Default\extensions\nmmhkkegccagdldgiimedpiccmgmieda =  : Google & co - Google & co - 203784468217.apps.googleusercontent.com - https://clients2.google.com/service/update2/crx
C:\Users\MAIDINE\AppData\Local\Google\Chrome\User Data\Default\extensions\pjkljhegncpnkpknbcohdijeoejaedia =  : Google & co - https://mail.google.com/mail - Google & co - [*://mail.google.com/mail] - https://clients2.google.com/service/update2/crx
C:\Users\MAIDINE\AppData\Local\Google\Chrome\User Data\Default\extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm =  :     Provider for discovery and services for mirroring of Chrome Media Router -     Chrome Media Router - 919648714761-55j965o0km033psv3i9qls5mo3qtdrb0.apps.googleusercontent.com - https://clients2.google.com/service/update2/crx
C:\Users\Yassine\AppData\Local\Google\Chrome\User Data\Default\extensions\aapocclcgogkmnckokdopfmhonfmgoek =  : Google & co - Google & co - https://clients2.google.com/service/update2/crx
C:\Users\Yassine\AppData\Local\Google\Chrome\User Data\Default\extensions\aohghmighlieiainnegkcijnfilokake =  : Google & co - Google & co - https://clients2.google.com/service/update2/crx
C:\Users\Yassine\AppData\Local\Google\Chrome\User Data\Default\extensions\apdfllckaahabafndbhieahigkjlhalf =  : Google & co - https://drive.google.com/?usp=chrome_app - Google & co - [http://docs.google.com/http://drive.google.com/https://docs.google.com/https://drive.google.com/] - https://clients2.google.com/service/update2/crx
C:\Users\Yassine\AppData\Local\Google\Chrome\User Data\Default\extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo =  : Google & co - http://www.youtube.com - http://www.youtube.com - Google & co - http://clients2.google.com/service/update2/crx
C:\Users\Yassine\AppData\Local\Google\Chrome\User Data\Default\extensions\eedlgdlajadkbbjoobobefphmfkcchfk =  :     __MSG_store_shortdesc_new__ -     __MSG_store_title_new__ - https://clients2.google.com/service/update2/crx
C:\Users\Yassine\AppData\Local\Google\Chrome\User Data\Default\extensions\felcaaldnbdncclmgdcncolpebgiejap =  : Google & co - Google & co - https://clients2.google.com/service/update2/crx
C:\Users\Yassine\AppData\Local\Google\Chrome\User Data\Default\extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi =  :     __MSG_extDesc__ -     __MSG_extName__ - https://clients2.google.com/service/update2/crx
C:\Users\Yassine\AppData\Local\Google\Chrome\User Data\Default\extensions\nmmhkkegccagdldgiimedpiccmgmieda =  : Google & co - Google & co - 203784468217.apps.googleusercontent.com - https://clients2.google.com/service/update2/crx
C:\Users\Yassine\AppData\Local\Google\Chrome\User Data\Default\extensions\pjkljhegncpnkpknbcohdijeoejaedia =  : Google & co - https://mail.google.com/mail - Google & co - [*://mail.google.com/mail] - https://clients2.google.com/service/update2/crx
C:\Users\Yassine\AppData\Local\Google\Chrome\User Data\Default\extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm =  :     Provider for discovery and services for mirroring of Chrome Media Router -     Chrome Media Router - 919648714761-55j965o0km033psv3i9qls5mo3qtdrb0.apps.googleusercontent.com - https://clients2.google.com/service/update2/crx

---------- | Comodo Dragon : X

---------- | Firefox

[MAIDINE | 5lyzd80k.default-1535472764661] Suppression : user_pref("browser.newtab.privateAllowed", true);
[MAIDINE | 5lyzd80k.default-1535472764661] Remplacement : user_pref("browser.newtab.url", "http://www.bing.com/?pc=COSP&ptag=D120318-A915F698E57&form=CONMHP&conlogo=CT3335818"); -> user_pref("browser.newtab.url", "https://www.google.com");
[MAIDINE | 5lyzd80k.default-1535472764661] Suppression : user_pref("browser.newtabpage.blocked", "{\"kpJ9R0mTclhCSbWEGibovQ==\":1,\"+MROLhS62sR2bmvgs/1jog==\":1,\"G/d1ioXOngjS061+BZjAVw==\":1}");
[MAIDINE | 5lyzd80k.default-1535472764661] Remplacement : user_pref("browser.search.defaultenginename", "Bing Search Engine"); -> user_pref("browser.search.defaultenginename", "google");
[MAIDINE | 5lyzd80k.default-1535472764661] Remplacement : user_pref("browser.search.selectedEngine", "Bing Search Engine"); -> user_pref("browser.search.selectedEngine", "google");
[MAIDINE | 5lyzd80k.default-1535472764661] Remplacement : user_pref("browser.startup.homepage", "http://www.accueil-nav.com/"); -> user_pref("browser.startup.homepage", "https://www.google.com");
Suppression : C:\Users\MAIDINE\AppData\Roaming\Mozilla\Firefox\Profiles\5lyzd80k.default-1535472764661\extensions\jid0-UVAeBCfd34Kk5usS8A1CBiobvM8@jetpack.xpi     (.-.)= jid0-UVAeBCfd34Kk5usS8A1CBiobvM8@jetpack.xpi


---------- | SeaMonkey : X

---------- | Pale moon : X

---------- | Opera : X

---------- | Spark : X

---------- | StartMenuInternet


---------- | Javascript


---------- | Firewall


Autre rapport


Analyses : 192320 | Modifications : 17 | Suppressions : 93

---------- |EOF| ---------- | 20:48:04 | [32 Ko]