---------- | AdsFix | g3n-h@ckm@n | V6_23.07.19.1 ----- Vista | 7 | 8 | 8.1 | 10 - 32/64 bits ----- Start 20:50:47 - 25/07/2019 Mis a jour le : 23/07/2019 | 19:55 (GMT) par g3n-h@ckm@n Contact : http://www.sosvirus.net Assistance : http://www.sosvirus.net/forum-virus-securite.html Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html Facebook : https://www.facebook.com/AdsFixAntiAdware C:\Users\ramms\OneDrive\Bureau\AdsFix.exe Boot: Normal boot [ramms (Administrator)] - [DESKTOP-0UH1M6A] - (france [040C]) SID = S-1-5-21-3767140921-2732883879-1582514217-1001 || [72616d6d73205e5e] PC : Gigabyte Technology Co., Ltd. - AB350-Gaming 3-CF - Default string Processor : X64 - 3593 - AMD Ryzen 5 1600X Six-Core Processor Bios : American Megatrends Inc. - 09/08/2017 - V.F9d CoreTemp : ? C CPU #1 value:2 % CPU #2 value:2 % CPU #3 value:2 % CPU #4 value:2 % CPU #5 value:8 % CPU #6 value:2 % CPU #7 value:14 % CPU #8 value:2 % CPU #9 value:27 % CPU #10 value:8 % CPU #11 value:2 % CPU #12 value:2 % Total Overall CPU Usage value:6 % Systeme : Windows 10 Home (64 bits) Core Memoire RAM = Total (MB) : 16728 | Libre (MB) : 10074 Pagefile = Total (MB) : 19218 | Libre (MB) : 9513 Virtuelle = Total (MB) : 4194 | Libre (MB) : 3885 C:\ -> [Fixed] | [Réservé au système] | Total : 146.01 Go | Free : 47.13 Go -> NTFS (SSD) [SATA] E:\ -> [Fixed] | [STOCKAGE] | Total : 319.28 Go | Free : 271.97 Go -> NTFS (SSD) [SATA] Sauvegarde du registre , pour restaurer : Cliquer sur Options & Restaurer le registre (C:\AdsFix\Save\Registry [25.07.2019 @ 20_50_47]) ou un element Restauration de fichiers ou dossiers supprimes par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Selectionner un element >> "Restaurer" ---------- | Mises a jour Windows - Activation - Licence W.A.T : :) Test 1 : Windows Activated Licence Volume ---------- | Navigateurs IE : 11.0.17134.1 (© Microsoft Corporation. Tous droits réservés.) GC : 75.0.3770.142 (Copyright 2019 Google LLC. All rights reserved.) MS-Edge : 11.0.17134.858 (© Microsoft Corporation. All rights reserved.) ---------- | Security AV : Kaspersky Total Security Disabled AS : Windows Defender Disabled FW : Kaspersky Total Security Disabled WMI : OK WU: Windows Update Service [Manual(3)] = non en cours AS: Windows Defender [Manual(3)] = non en cours FW: Windows FireWall Service [Auto(2)] = en cours WMI: Windows Management Instrumentation (System Information) [Auto(2)] = en cours ---------- | FlashPlayer ActiveX : 32.0.0.207 Plugin : 32.0.0.223 ---------- | Processes closed 3528 | [Owner : | Parent : 996 (services.exe)] - (.Seiko Epson Corporation - Epson Scanner Service (64bit).) - (1.1.0.1) = C:\Windows\System32\escsvc64.exe 3560 | [Owner : | Parent : 996 (services.exe)] - (.Micro-Star Int'l Co., Ltd. - GamingApp_Service.) - (6.2.0.31) = C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe 3568 | [Owner : | Parent : 996 (services.exe)] - (.Micro-Star INT'L CO., LTD. - MSI_ActiveX_Service.) - (1.0.1.26) = C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe 3576 | [Owner : | Parent : 996 (services.exe)] - (.Seiko Epson Corporation - MyEpson Portal Service.) - (1.0.3.3) = C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe 3584 | [Owner : | Parent : 996 (services.exe)] - (.Micro-Star INT'L CO., LTD. - MSI Live Update Service.) - (1.0.0.65) = C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe 3592 | [Owner : | Parent : 996 (services.exe)] - (.Micro-Star INT'L CO., LTD. - MSI Register Service.) - (1.0.0.8) = C:\MSI\MSIRegister\MSIRegisterService.exe 3636 | [Owner : | Parent : 996 (services.exe)] - (.Micro-Star INT'L CO., LTD. - Gaming Hotkey Service.) - (1.0.0.7) = C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe 3772 | [Owner : | Parent : 996 (services.exe)] - (.Micro-Star Int'l Co., Ltd. - MysticLight2_Service.) - (2.0.0.21) = C:\Program Files (x86)\MSI\MysticLight\MysticLight2_Service.exe 3844 | [Owner : | Parent : 996 (services.exe)] - (.DEVGURU Co., LTD. - MSS CS Connectivity Service.) - (2.5.11.0) = C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe 3852 | [Owner : | Parent : 996 (services.exe)] - (.AO Kaspersky Lab - Kaspersky Anti-Virus.) - (19.0.0.1088) = C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 19.0.0\avp.exe 5112 | [Owner : ramms | Parent : 3576 ()] - (.Seiko Epson Corporation - MyEpson Portal.) - (1.1.3.0) = C:\Program Files (x86)\epson\MyEpson Portal\mep.exe 3488 | [Owner : ramms | Parent : 996 (services.exe)] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (10.0.17134.556) = C:\Windows\System32\svchost.exe 620 | [Owner : ramms | Parent : 996 (services.exe)] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (10.0.17134.556) = C:\Windows\System32\svchost.exe 6168 | [Owner : ramms | Parent : 1536 (svchost.exe)] - (.Micro-Star INT'L CO., LTD. - Gaming Hotkey.) - (1.0.0.19) = C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe 6240 | [Owner : ramms | Parent : 1536 (svchost.exe)] - (.Micro-Star INT'L CO., LTD. - MsiGamingOSD_x86.) - (1.0.0.7) = C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MsiGamingOSD_x86.exe 6256 | [Owner : ramms | Parent : 1536 (svchost.exe)] - (.Micro-Star INT'L CO., LTD. - MsiGamingOSD_x64.) - (1.0.0.7) = C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\MsiGamingOSD_x64.exe 6320 | [Owner : ramms | Parent : 1536 (svchost.exe)] - (.MSI - Windows Host Process.) - (1.0.0.1) = C:\Windows\SysWOW64\muachost.exe 6340 | [Owner : ramms | Parent : 1536 (svchost.exe)] - (.Micro-Star Int'l Co., Ltd. - LEDKeeper.) - (2.0.0.28) = C:\Program Files (x86)\MSI\MysticLight\LEDKeeper.exe 8384 | [Owner : Système | Parent : 3568 ()] - (.Micro-Star INT'L CO., LTD. - VideoCardMonitor.) - (1.0.1.6) = C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\VideoCardMonitorII.exe 8412 | [Owner : Système | Parent : 3568 ()] - (.Micro-Star INT'L CO., LTD. - EyeRest.) - (1.0.1.23) = C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\EyeRest.exe 8460 | [Owner : Système | Parent : 3568 ()] - (.Micro-Star INT'L CO., LTD. - TriggerModeMonitor.) - (1.0.1.24) = C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\TriggerModeMonitor.exe 13020 | [Owner : ramms | Parent : 996 (services.exe)] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (10.0.17134.556) = C:\Windows\System32\svchost.exe 14232 | [Owner : ramms | Parent : 6968 (explorer.exe)] - (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) - (9.0.0.0) = C:\Windows\System32\spool\drivers\x64\3\E_YATIMDE.EXE 14944 | [Owner : ramms | Parent : 14604 ()] - (.Micro-Star INT'L CO., LTD. - MSI Register.) - (2.0.0.19) = C:\MSI\MSIRegister\MSIRegister.exe 14992 | [Owner : ramms | Parent : 1536 (svchost.exe)] - (.Micro-Star INT'L CO., LTD. - Live Update 6 Application.) - (6.2.0.57) = C:\Program Files (x86)\MSI\Live Update\Live Update.exe 13288 | [Owner : ramms | Parent : 14584 ()] - (.Wargaming.net - World of Tanks Game Updater.) - (0.3.25.160) = C:\Games\World_of_Tanks\WargamingGameUpdater.exe 12004 | [Owner : ramms | Parent : 14584 ()] - (.Wargaming.net - World of Tanks.) - (1.5.1.10008) = C:\Games\World_of_Tanks\WorldOfTanks.exe 12460 | [Owner : ramms | Parent : 12004 (WorldOfTanks.exe)] - (.Wargaming.net - World Of Tanks Chromium Embedded Browser.) - (1.5.1.10008) = C:\Games\World_of_Tanks\cef_browser_process.exe 11768 | [Owner : Système | Parent : 996 (services.exe)] - (.AO Kaspersky Lab - Kaspersky Password Manager Service.) - (9.0.2.767) = C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe 13036 | [Owner : ramms | Parent : 12072 ()] - (.Mozilla Corporation - Firefox.) - (68.0.1.7137) = C:\Program Files\Mozilla Firefox\firefox.exe 15116 | [Owner : ramms | Parent : 13036 (firefox.exe)] - (.Mozilla Corporation - Firefox.) - (68.0.1.7137) = C:\Program Files\Mozilla Firefox\firefox.exe ---------- | Tasks ---------- | Services ---------- | AppCertDlls | AppInit_DLLs ---------- | DNSapi.dll C:\WINDOWS\System32\dnsapi.dll : \drivers\etc\hosts C:\WINDOWS\SysWOW64\dnsapi.dll : \drivers\etc\hosts ---------- | Hosts ---------- | SafeBoot ¤ ---------- | Winsock ---------- | DNS ---------- | Registre Suppression : HKLM\SOFTWARE\Classes\AppID\{2C2FD0A5-5C8D-436B-BC8A-7FDF7FC115D4} : db_manager Class # Suppression : [HKU\S-1-5-18\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Windows\SysWOW64\Macromed\Temp\{9235877E-E135-42C1-9D87-4E8E32A6CB55}\InstallFlashPlayer.exe] [X] Suppression : [HKU\S-1-5-18\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Windows\SysWOW64\Macromed\Temp\{3B2CCD21-6C71-429E-AE9F-2F7CE93F5FF4}\InstallFlashPlayer.exe] [X] Suppression : [HKU\S-1-5-21-3767140921-2732883879-1582514217-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[SIGN.MEDIA=5C8A500 Driver\GFExperienceSetupIntFull.exe] [X] Suppression : [HKU\S-1-5-21-3767140921-2732883879-1582514217-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[SIGN.MEDIA=525BDAA Utility\MSI\Afterburner\MSI_Kombustor_Setup_3.5.0.4_x64.exe] [X] Suppression : [HKU\S-1-5-21-3767140921-2732883879-1582514217-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[SIGN.MEDIA=F0B4D90 Utility\Google\Chrome.exe] [X] Suppression : [HKU\S-1-5-21-3767140921-2732883879-1582514217-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[SIGN.MEDIA=6386CF0 Utility\Xsplit\XSplit.exe] [X] Suppression : [HKU\S-1-5-21-3767140921-2732883879-1582514217-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\ramms\Downloads\advanced_systemcare_setup.exe] Suppression : [HKU\S-1-5-21-3767140921-2732883879-1582514217-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\ramms\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads\kpm (1).exe] [X] Suppression : [HKU\.DEFAULT\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Windows\SysWOW64\Macromed\Temp\{9D4BC086-3E9F-453B-962A-C7DA509B5378}\InstallFlashPlayer.exe] [X] Suppression : HKU\S-1-5-21-3767140921-2732883879-1582514217-1001\SOFTWARE\Chromium Suppression : [HKU\S-1-5-21-3767140921-2732883879-1582514217-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]~[DefaultScope] : {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\WINDOWS\system32\enppui.dll] [X] Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\WINDOWS\system32\msvcp140_2.dll] [X] ---------- | Dossiers | Fichiers ---------- | .LNK ---------- | Ouverture extension inconnue ---------- | Proxy ---------- | Internet Explorer Reparation : [HKU\S-1-5-21-3767140921-2732883879-1582514217-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[SavedLegacySettings] : 0x46000000..... -> Reparation : [HKU\S-1-5-21-3767140921-2732883879-1582514217-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[DefaultConnectionSettings] : 0x46000000..... -> ---------- | Yandex : X ---------- | CLIQZ : X ---------- | Google Chrome ---------- | Comodo Dragon : X ---------- | Firefox ---------- | SeaMonkey : X ---------- | Pale moon : X ---------- | Opera : X ---------- | Spark : X ---------- | StartMenuInternet ---------- | Javascript ---------- | Firewall Autre rapport C:\AdsFix_25_07_2019_18_23_06.txt[20 Ko] Analyses : 159713 | Modifications : 2 | Suppressions : 15 ---------- |EOF| ---------- | 21:48:17 | [12 Ko]