---------- | AdsFix | g3n-h@ckm@n | V6_27.12.19.2 ----- Vista | 7 | 8 | 8.1 | 10 - 32/64 bits ----- Start 12:43:26 - 29/12/2019 Mis a jour le : 27/12/2019 | 19:00 (GMT) par g3n-h@ckm@n Contact : http://www.sosvirus.net Assistance : http://www.sosvirus.net/forum-virus-securite.html Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html Facebook : https://www.facebook.com/AdsFixAntiAdware C:\Users\cecil\Desktop\AdsFix.exe Boot: Normal boot [cecil - [LAPTOP-87N3VN6U] - (france [040C]) SID = S-1-5-21-512792505-2350162440-2437998076-1001 || [636563696c] System: Microsoft Windows 10 Famille - - (10.0.17134) - BuildType: Multiprocessor Free - OSLanguage: 1036 (040c) -> (1803) PC : GLK - Sapporo_GL_S - 0000000000000000 Processor : X64 - 1094 - Intel(R) Pentium(R) Silver N5000 CPU @ 1.10GHz Bios : Insyde Corp. - 05/02/2018 - V.V1.03 CoreTemp : 44 C ---------- | Physical Memory (MB) Total: 3902 Available: 1699 Cached: 1238 Free:375 ---------- | HDD C:\ -> [Fixed] | [Acer] | Total : 57.13 Go | Free : 17.68 Go -> NTFS (SSD) [SD] ---------- | Backup Point de restauration créé : RP_AdsFix --------------------- En cas de problème après le scan : Options > Restauration Systeme > Raccourci bureau Restauration de fichiers ou dossiers supprimes par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Selectionner un element >> "Restaurer" ---------- | Mises a jour Windows - Activation - Licence W.A.T : :) Test 1 : Windows Activated Test 2 : Possible Fixed Windows Test 3 : Possible Fixed Windows Licence Volume ---------- | Navigateurs IE : 11.0.17134.1 (© Microsoft Corporation. Tous droits réservés.) MS-Edge : 11.0.17134.1130 (© Microsoft Corporation. All rights reserved.) ---------- | Security AV : Windows Defender Disabled AS : Windows Defender Disabled FW : WMI : OK WU: Windows Update Service [Auto(2)] = en cours AS: Windows Defender [Manual(3)] = non en cours FW: Windows FireWall Service [Auto(2)] = en cours WMI: Windows Management Instrumentation (System Information) [Auto(2)] = en cours ---------- | FlashPlayer ActiveX : 32.0.0.255 Plugin : 32.0.0.303 ---------- | Processes closed 1340 | [Owner : cecil | Parent : 716 (services.exe)] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (10.0.17134.556) = C:\Windows\System32\svchost.exe 7492 | [Owner : cecil | Parent : 716 (services.exe)] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (10.0.17134.556) = C:\Windows\System32\svchost.exe 312 | [Owner : cecil | Parent : 716 (services.exe)] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (10.0.17134.556) = C:\Windows\System32\svchost.exe 7908 | [Owner : cecil | Parent : 6876 ()] - (.Mozilla Corporation - Firefox.) - (71.0.0.7275) = C:\Program Files\Mozilla Firefox\firefox.exe 1988 | [Owner : cecil | Parent : 7908 (firefox.exe)] - (.Mozilla Corporation - Firefox.) - (71.0.0.7275) = C:\Program Files\Mozilla Firefox\firefox.exe 6124 | [Owner : cecil | Parent : 7908 ()] - (.Mozilla Corporation - Firefox.) - (71.0.0.7275) = C:\Program Files\Mozilla Firefox\firefox.exe ---------- | Tasks ---------- | Services ---------- | AppCertDlls | AppInit_DLLs ---------- | DNSapi.dll C:\Windows\System32\dnsapi.dll : \drivers\etc\hosts C:\Windows\SysWOW64\dnsapi.dll : \drivers\etc\hosts ---------- | Hosts ---------- | SafeBoot ¤ ---------- | Winsock ---------- | DNS ---------- | Registre Suppression : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\SegurazoSvc Suppression : HKLM\SOFTWARE\Microsoft\Tracing\ByteFence_RASAPI32 Suppression : HKLM\SOFTWARE\Microsoft\Tracing\SegurazoService_RASAPI32 Suppression : HKLM\SOFTWARE\Microsoft\Tracing\SegurazoService_RASMANCS Suppression : HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\WebCompanion_RASAPI32 Suppression : [HKU\S-1-5-21-512792505-2350162440-2437998076-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\cecil\Downloads\readerdc_fr_xa_crd_install.exe] [X] Suppression : [HKU\S-1-5-21-512792505-2350162440-2437998076-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Program Files\WinZip System Utilities Suite\uninst.exe] Suppression : [HKU\S-1-5-21-512792505-2350162440-2437998076-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\cecil\Downloads\7z1900-x64.exe] [X] Suppression : [HKU\S-1-5-21-512792505-2350162440-2437998076-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Program Files\ITL Driver Updater\unins000.exe] [X] Suppression : [HKU\S-1-5-21-512792505-2350162440-2437998076-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\cecil\Desktop\AdsFix(1).exe] [X] Suppression : HKLM\SOFTWARE\Segurazo Suppression : HKLM\Software\Microsoft\Windows\Segurazo Suppression : HKLM\SOFTWARE\Wow6432Node\Segurazo Suppression : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\Segurazo Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-512792505-2350162440-2437998076-1001\Components\A094B30EAEF98481FF0EA62178FB0200 : C:\Users\cecil\AppData\Local\Temp\Installer.dll Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\vsavb7rt.dll]---[X] Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\mscorsec.dll]---[X] Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\microsoft.jscript.dll]---[X] Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\system32\msvcp120.dll]---[X] Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\system32\mfc120.dll]---[X] Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\system32\mfc120cht.dll]---[X] Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\system32\mfc120esn.dll]---[X] Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\system32\mfc120kor.dll]---[X] Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Program Files (x86)\SafeMyWeb\]---[X] Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\ProgramData\Hotspot Shield\config\]---[X] Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\vsavb7rt.dll]---[X] Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\mscorsec.dll]---[X] Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\microsoft.jscript.dll]---[X] Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.1.4322\System.tlb]---[X] Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.1.4322\mscoree.tlb]---[X] Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\System.EnterpriseServices.tlb]---[X] Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\Microsoft.JScript.tlb]---[X] Suppression : [HKU\S-1-5-21-512792505-2350162440-2437998076-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]~[GoogleChromeAutoLaunch_D41565228BB0FC25B22EE987ABF64086] : 0x020000000000000000000000 ---------- | Dossiers | Fichiers Reboot : C:\Program Files (x86)\Segurazo Suppression : C:\Program Files (x86)\Segurazo\rsEngine.dll (Copyright © 2019 Reason Software Company Inc.-.Reason Core Security) rsEngine.dll Suppression : C:\Program Files (x86)\Segurazo\rsEngineHelper.exe (Copyright © 2019 Reason Software Company Inc.-.Reason Core Security) rsEngineHelper.exe Suppression : C:\Program Files (x86)\Segurazo\SegurazoClient.exe (Copyright © Digital Communications Inc 2018.-.Segurazo Antivirus) SegurazoClient.exe Suppression : C:\Program Files (x86)\Segurazo\SegurazoClient.exe.config (.-.) Suppression : C:\Program Files (x86)\Segurazo\SegurazoEngine.dll (Copyright © Digital Communications Inc 2018.-.Digital Communications Inc) Segurazo Engine Suppression : C:\Program Files (x86)\Segurazo\SegurazoIC.config (.-.) Suppression : C:\Program Files (x86)\Segurazo\SegurazoIC.exe (Copyright © Digital Communications Inc 2018.-.Digital Communications Inc) Segurazo IC Suppression : C:\Program Files (x86)\Segurazo\SegurazoKD.sys (Copyright © Digital Communications Inc 2018.-.Segurazo Antivirus) segurazokd.sys Suppression : C:\Program Files (x86)\Segurazo\SegurazoService.config (.-.) Suppression : C:\Program Files (x86)\Segurazo\SegurazoService.exe (Copyright © Digital Communications Inc 2018.-.Segurazo Antivirus) SegurazoService.exe Suppression : C:\Program Files (x86)\Segurazo\SegurazoService.exe.config (.-.) Suppression : C:\Program Files (x86)\Segurazo\SegurazoTools.dll (Copyright © Digital Communications Inc 2018.-.Segurazo Antivirus) SegurazoTools.dll Suppression : C:\Program Files (x86)\Segurazo\SegurazoUninstaller.exe (Copyright © Digital Communications Inc 2018.-.SegurazoUninstaller) SegurazoUninstaller.exe Suppression : C:\Program Files (x86)\Segurazo\SegurazoUninstaller.exe.config (.-.) Suppression : C:\Users\defaultuser1\AppData\Roaming\segurazoclient Suppression : C:\Users\cecil_8\AppData\Roaming\segurazoclient Reboot : C:\Users\cecil\AppData\Roaming\segurazoclient Reboot : C:\ProgramData\Segurazo ---------- | .LNK ---------- | Ouverture extension inconnue ---------- | Proxy ---------- | Internet Explorer Reparation : [HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[SavedLegacySettings] : 0x46000000..... -> Reparation : [HKU\S-1-5-21-512792505-2350162440-2437998076-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[SavedLegacySettings] : 0x46000000..... -> Reparation : [HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[DefaultConnectionSettings] : 0x46000000..... -> Reparation : [HKU\S-1-5-21-512792505-2350162440-2437998076-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[DefaultConnectionSettings] : 0x46000000..... -> ---------- | Yandex : X ---------- | CLIQZ : X ---------- | Google Chrome : X ---------- | Comodo Dragon : X ---------- | Firefox ---------- | SeaMonkey : X ---------- | Pale moon : X ---------- | Opera : X ---------- | Spark : X ---------- | StartMenuInternet ---------- | Javascript ---------- | Firewall Reparation : [HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]~[EnableFirewall] : 0 -> 1 Reparation : [HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]~[EnableFirewall] : 0 -> 1 ---------- | ADS Autre rapport Analyses : 104542 | Modifications : 4 | Suppressions : 52 ---------- |EOF| ---------- | 13:20:56 | [12 Ko]