---------- | AdsFix | g3n-h@ckm@n | V8.204.21.1

----- Vista | 7 | 8 | 8.1 | 10 - 32/64 bits ----- DÃ©marrage 14:08:04 - 21/08/2021

Mis a jour le : 23/07/2021 | 15:15 (GMT) par g3n-h@ckm@n
Contact : https://www.sosvirus.net
Facebook : https://www.facebook.com/AdsFixAntiAdware (French)
C:\Users\Laurenceau\Desktop\AdsFix.exe
Boot: Normal boot
[Laurenceau] - [LAURENCEAU-HP] -  (france [040C])
SID = S-1-5-21-2603305841-1989612468-1150847816-1001
System: Microsoft Windows 10 Famille -  - (10.0.19043) -  BuildType: Multiprocessor Free - OSLanguage: 1036 (040c) 21H1
Time Zone : (UTC+01:00) Bruxelles, Copenhague, Madrid, Paris
PC : HP Pavilion g7 Notebook PC - Hewlett-Packard - IdNumber: 5CD2260JRH - UUID: 32444335-3632-4A30-5248-A0B3CC86EC6D
Motherboard : Hewlett-Packard - Product: 184B - SerialNumber: PCTXA012C209ON - Status: OK - Version: 57.16
CoreTemp : 71 C

---------- | Physical Memory (MB)

Total:     3561
Available: 1419
Cached:    1217
Free:482

---------- | HDD

C:\ -> [Fixed] | [] | Total : 910.9 Go | Free : 787.87 Go -> NTFS [SATA]
D:\ -> [Fixed] | [Recovery] | Total : 20.32 Go | Free : 2.11 Go -> NTFS [SATA]

---------- | Backup

Point de restauration crÃ©Ã© : RP_AdsFix  --------------------- En cas de problÃ¨me aprÃ¨s le scan : Options > Restauration Systeme
Restauration de fichiers ou dossiers supprimes par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Selectionner un element >> "Restaurer"

---------- | Mises a jour Windows - Activation - Licence


W.A.T : :)

Test 1 : Windows Activated

Licence Volume

---------- | Navigateurs

IE : 11.0.19041.906     (Â© Microsoft Corporation. Tous droits rÃ©servÃ©s.)
FF : 91.0.1.7898     (Â©Firefox and Mozilla Developers; available under the MPL 2 license.)
GC : 92.0.4515.159     (Copyright 2021 Google LLC. All rights reserved.)

---------- | Security 

AV : Avast Antivirus Enabled
AS : Avast Antivirus Enabled
FW : 
WMI : OK
WU: Windows Update Service [Manual(3)] = en cours
AS: Windows Defender [Auto(2)] = en cours
FW: Windows FireWall Service [Auto(2)] = en cours
WMI: Windows Management Instrumentation (System Information) [Auto(2)] = en cours

---------- | FlashPlayer

Plugin : 32.0.0.465

---------- | Processes closed

1272 | [Owner : SystÃ¨me | Parent : 712 (services.exe)] - (.AMD - AMD External Events Service Module.) - (6.14.11.1199) = C:\Windows\System32\atiesrxx.exe
1804 | [Owner : SystÃ¨me | Parent : 712 (services.exe)] - (.Hewlett-Packard Company - HpService.) - (4.2.9.1) = C:\Windows\System32\hpservice.exe
2336 | [Owner : SystÃ¨me | Parent : 712 (services.exe)] - (.Apple Inc. - MobileDeviceService.) - (486.100.2.42) = C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
2344 | [Owner : SystÃ¨me | Parent : 712 (services.exe)] - (.Autodesk, Inc. - Content Service.) - (3.0.84.0) = C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
2352 | [Owner : SystÃ¨me | Parent : 712 (services.exe)] - (.Autodesk Inc. - Autodesk Desktop App.) - (7.0.6.378) = C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
2360 | [Owner : SystÃ¨me | Parent : 712 (services.exe)] - (.Adobe Inc. - Adobe Acrobat Update Service.) - (1.824.42.176) = C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
2368 | [Owner : SystÃ¨me | Parent : 712 (services.exe)] - (.Apple Inc. - Bonjour Service.) - (3.1.0.1) = C:\Program Files\Bonjour\mDNSResponder.exe
2512 | [Owner : SystÃ¨me | Parent : 712 (services.exe)] - (.pdfforge GmbH - PDF Architect 7.) - (7.1.14.4969) = C:\Program Files\PDF Architect 7\updater-ws.exe
2520 | [Owner : SystÃ¨me | Parent : 712 (services.exe)] - (.DEVGURU Co., LTD. - MSS CS Connectivity Service.) - (2.5.11.0) = C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
2612 | [Owner : SystÃ¨me | Parent : 712 (services.exe)] - (.Synaptics Incorporated - 64-bit Synaptics Pointing Enhance Service.) - (19.0.12.98) = C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
3088 | [Owner : SystÃ¨me | Parent : 712 (services.exe)] - (.pdfforge GmbH - PDF Architect 7.) - (7.1.14.4969) = C:\Program Files\PDF Architect 7\ws.exe
4588 | [Owner : SystÃ¨me | Parent : 4328 ()] - (.Google LLC - Google Crash Handler.) - (1.3.36.101) = C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler.exe
5028 | [Owner : SystÃ¨me | Parent : 4348 ()] - (.Piriform Software - CCleaner Browser Crash Handler.) - (1.8.1067.0) = C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler.exe
4408 | [Owner : SystÃ¨me | Parent : 4328 ()] - (.Google LLC - Google Crash Handler.) - (1.3.36.101) = C:\Program Files (x86)\Google\Update\1.3.36.102\GoogleCrashHandler64.exe
2744 | [Owner : SystÃ¨me | Parent : 4348 ()] - (.Piriform Software - CCleaner Browser Crash Handler.) - (1.8.1067.0) = C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler64.exe
3692 | [Owner : SystÃ¨me | Parent : 712 (services.exe)] - (.TomTom - Windows Service for TTHOME.) - (1.0.0.0) = C:\Program Files\TomTom HOME\TTHOMEService.exe
6060 | [Owner : SystÃ¨me | Parent : 1272 ()] - (.AMD - AMD External Events Client Module.) - (6.14.11.1199) = C:\Windows\System32\atieclxx.exe
4912 | [Owner : SystÃ¨me | Parent : 1304 (svchost.exe)] - (.Piriform Software - CCleaner Browser.) - (1.8.1067.0) = C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe
2444 | [Owner : Laurenceau | Parent : 2612 ()] - (.Synaptics Incorporated - Synaptics TouchPad 64-bit Enhancements.) - (19.0.12.98) = C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
5884 | [Owner : Laurenceau | Parent : 2544 (MBAMService.exe)] - (.Malwarebytes - Malwarebytes Tray Application.) - (4.0.0.1073) = C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
6348 | [Owner : Laurenceau | Parent : 712 (services.exe)] - (.Microsoft Corporation - Processus hÃ´te pour les services Windows.) - (10.0.19041.546) = C:\Windows\System32\svchost.exe
1764 | [Owner : SystÃ¨me | Parent : 1304 (svchost.exe)] - (.Piriform Software - CCleaner Browser.) - (1.8.1067.0) = C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe
1852 | [Owner : SystÃ¨me | Parent : 1304 (svchost.exe)] - (.Google Inc. - Programme d'installation de Google.) - (1.3.33.7) = C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
1832 | [Owner : Laurenceau | Parent : 5924 ()] - (.Synaptics Incorporated - Synaptics Pointing Device Helper.) - (19.0.12.98) = C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
8816 | [Owner : Laurenceau | Parent : 712 (services.exe)] - (.Microsoft Corporation - Processus hÃ´te pour les services Windows.) - (10.0.19041.546) = C:\Windows\System32\svchost.exe
7492 | [Owner : SystÃ¨me | Parent : 1304 (svchost.exe)] - (.Piriform Software - CCleaner Browser.) - (92.0.11264.134) = C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe
4244 | [Owner : Laurenceau | Parent : 1304 (svchost.exe)] - (.Adobe Inc. - Adobe Reader and Acrobat Manager.) - (1.824.42.176) = C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
484 | [Owner : Laurenceau | Parent : 5076 ()] - (.Piriform Software Ltd - CCleaner.) - (5.84.0.9126) = C:\Program Files\CCleaner\CCleaner64.exe
6820 | [Owner : SystÃ¨me | Parent : 1304 (svchost.exe)] - (.Piriform Software - CCleaner Browser.) - (92.0.11264.134) = C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe
9948 | [Owner : Laurenceau | Parent : 7492 ()] - (.Piriform Software - CCleaner Browser.) - (92.0.11264.134) = C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe
976 | [Owner : SERVICE RÃSEAU | Parent : 9904 (mpam-6ed8f413.exe)] - (.-.) - (0.0.0.0) = C:\Windows\SERVIC~1\NETWOR~1\AppData\Local\Temp\52B923B3-3679-4998-B8A9-9F61BEA7A74F\MpSigStub.exe
9708 | [Owner : Laurenceau | Parent : 6820 ()] - (.Piriform Software - CCleaner Browser.) - (92.0.11264.134) = C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe
5080 | [Owner : Laurenceau | Parent : 9708 (CCleanerBrowser.exe)] - (.Piriform Software - CCleaner Browser.) - (92.0.11264.134) = C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe
9824 | [Owner : Laurenceau | Parent : 9948 (CCleanerBrowser.exe)] - (.Piriform Software - CCleaner Browser.) - (92.0.11264.134) = C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe
5144 | [Owner : Laurenceau | Parent : 7872 ()] - (.Adobe Systems Incorporated - Adobe Acrobat Reader DC.) - (19.21.20061.33636) = C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe

---------- | Tasks

Suppression : CCleaner Browser Heartbeat Task (Hourly)
Suppression : CCleaner Browser Heartbeat Task (Logon)


---------- | Services

Restauration : BROWSER

---------- | AppCertDlls | AppInit_DLLs


---------- | DNSapi.dll

C:\WINDOWS\System32\dnsapi.dll : /!\ hijacked 
Reboot : C:\WINDOWS\Winsxs\amd64_microsoft-windows-dns-client-minwin_31bf3856ad364e35_10.0.19041.1023_none_0a636a4dd84a05ee\dnsapi.dll - > C:\WINDOWS\System32\dnsapi.dll
C:\WINDOWS\SysWOW64\dnsapi.dll : /!\ hijacked 
Reboot : C:\WINDOWS\Winsxs\wow64_microsoft-windows-dns-client-minwin_31bf3856ad364e35_10.0.19041.1023_none_14b814a00caac7e9\dnsapi.dll - > C:\WINDOWS\SysWOW64\dnsapi.dll

---------- | Hosts


---------- | SafeBoot


Â¤


---------- | Winsock


---------- | DNS


---------- | Registre

Suppression : HKLM\SOFTWARE\Wow6432Node\MozillaPlugins\@update.ccleanerbrowser.com/CCleaner Browser;version=3 : C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll
Suppression : [HKU\S-1-5-18\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Windows\SysWOW64\Macromed\Temp\{519CDED1-1952-4F59-9D6C-B185C4666344}\InstallFlashPlayer.exe]---[X]
Suppression : [HKU\S-1-5-18\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Windows\SysWOW64\Macromed\Temp\{117E1F95-F155-44DB-A627-66E8C526FCF7}\InstallFlashPlayer.exe]---[X]
Suppression : [HKU\S-1-5-18\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Windows\SysWOW64\Macromed\Temp\{F2E9CA59-D03F-40CB-9F42-E7F003E340A6}\InstallFlashPlayer.exe]---[X]
Suppression : [HKU\S-1-5-18\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Windows\SysWOW64\Macromed\Temp\{0D0E6816-C04D-457C-AA80-A58A4EDD97D4}\InstallFlashPlayer.exe]---[X]
Suppression : [HKU\S-1-5-18\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Windows\SysWOW64\Macromed\Temp\{40935018-5159-4FAC-B81D-FA389998C7D7}\InstallFlashPlayer.exe]---[X]
Suppression : [HKU\S-1-5-18\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Windows\SysWOW64\Macromed\Temp\{DD624443-F240-4329-B1C7-76334EB0595B}\InstallFlashPlayer.exe]---[X]
Suppression : [HKU\S-1-5-18\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Windows\SysWOW64\Macromed\Temp\{1CC37E6B-66A0-4CDD-8A54-370444FA50E4}\InstallFlashPlayer.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Program Files\Windows Defender\MSASCui.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Program Files\AVAST Software\Avast\VisthAux.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\Desktop\RogueKiller_portable64.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.38.138.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\Desktop\ZHPFix.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Program Files\Autodesk\Autodesk ReCap\Setup\Setup.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Program Files (x86)\Samsung\Smart Switch PC\SmartSwitchPC.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\Downloads\ZHPCleaner(1).exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\Downloads\ZHPCleaner(2).exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\AppData\Local\Microsoft\OneDrive\19.222.1110.0006\FileSyncConfig.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Program Files\AVAST Software\Avast\AvastUI.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\Downloads\kprm_2.8.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\Downloads\ccsetup565(1).exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\Downloads\ccsetup566.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\Downloads\ccsetup566(1).exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\Downloads\ccsetup566(2).exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\Downloads\ccsetup567.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\Downloads\ccsetup567(1).exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\Downloads\readerdc_fr_xa_crd_install.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\Downloads\ccsetup567(2).exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\Downloads\ccsetup568.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\Downloads\ccsetup568(2).exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\Downloads\ccsetup569.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\Desktop\UCheck_portable64(14).exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\AppData\Local\Microsoft\OneDrive\20.143.0716.0003\FileSyncConfig.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\AppData\Local\Microsoft\OneDrive\20.169.0823.0006\FileSyncConfig.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\Desktop\ZHPCleaner.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\Downloads\Clean_Dns.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\Downloads\UCheck64(3).exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c\Skype\Skype.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\Desktop\UCheck_portable64(19).exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Program Files (x86)\Glarysoft\Malware Hunter\MalwareHunter.exe]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\AppData\Local\Microsoft\OneDrive\21.002.0104.0005\FileSyncConfig.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\AppData\Local\Microsoft\OneDrive\21.016.0124.0003\FileSyncConfig.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\Desktop\UCheck_portable64(20).exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\AppData\Local\Microsoft\OneDrive\21.052.0314.0001\FileSyncConfig.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\AppData\Local\Microsoft\OneDrive\21.099.0516.0003\FileSyncConfig.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\AppData\Local\Microsoft\OneDrive\21.109.0530.0001\FileSyncConfig.exe]---[X]
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\Laurenceau\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe]---[X]
Suppression : [HKU\.DEFAULT\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Windows\SysWOW64\Macromed\Temp\{E2B89193-FE1D-4616-8822-0E1495A1A1BE}\InstallFlashPlayer.exe]---[X]
Suppression : [HKU\.DEFAULT\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Windows\SysWOW64\Macromed\Temp\{3BB80881-F7CB-4F45-B8D3-91220223B6E3}\InstallFlashPlayer.exe]---[X]
Suppression : [HKU\.DEFAULT\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Windows\SysWOW64\Macromed\Temp\{D6EA413F-AD66-4221-B115-939F1EEACD3C}\InstallFlashPlayer.exe]---[X]
Suppression : [HKU\.DEFAULT\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Windows\SysWOW64\Macromed\Temp\{C4367592-A317-403A-B011-19BF3B2337D6}\InstallFlashPlayer.exe]---[X]
Suppression : HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Chromium
Suppression : HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Glarysoft
Suppression : HKLM\SOFTWARE\Wow6432Node\GlarySoft
Suppression : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]~[DefaultScope] : {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Suppression : HKLM\Software\Classes\Installer\Products\5EF8D25866CB16041B4CACFD155E2BD7 : (Microsoft Update Health Tools) C:\WINDOWS\TEMP\
Suppression : HKLM\Software\Classes\Installer\Products\7FC71E3CCCB466C4EBC655AF91B83773 : (iTunes) C:\Users\LAUREN~1\AppData\Local\Temp\IXP468.TMP\
Suppression : HKLM\Software\Classes\Installer\Products\9eab5ec6ac3d99b498a1d16c1c815acf : (Microsoft Visual C++ 2005 Redistributable (x64)) C:\Users\Laurenceau\AppData\Local\Temp\IXP000.TMP\
Suppression : HKLM\Software\Classes\Installer\Products\B5754C1123B42D440A795DA900AB06ED : (Apple Application Support (32 bits)) C:\Users\Laurenceau\AppData\Local\Temp\IXP998.TMP\
Suppression : HKLM\Software\Classes\Installer\Products\BE99CC470CD70BC448A78F2CEF9396C0 : (Apple Mobile Device Support) C:\Users\LAUREN~1\AppData\Local\Temp\IXP468.TMP\
Suppression : HKLM\Software\Classes\Installer\Products\DC60BFB952932E94AB7BAE968512ECC4 : (Google Earth Pro) C:\WINDOWS\TEMP\
Suppression : HKLM\Software\Classes\Installer\Products\FEF010002A28E79489A317500A63F47A : (PDFCreator) C:\Users\Laurenceau\AppData\Local\Temp\lfrdrkrp.ypu\
Suppression : HKLM\SOFTWARE\Wow6432Node\Classes\Installer\Products\8BFDDD6597F70844985D521E5FA22BF8 : (Bonjour) C:\Users\Laurenceau\AppData\Local\Temp\IXP242.TMP\
Suppression : HKLM\SOFTWARE\Wow6432Node\Classes\Installer\Products\A361B93D21E9C244599E33AF7564BA12 : (Apple Application Support (64 bits)) C:\Users\Laurenceau\AppData\Local\Temp\IXP998.TMP\
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-2603305841-1989612468-1150847816-1001\Components\E1B47BBDD70D8978E1D52D309B624221 : C:\Users\Laurenceau\AppData\Local\Akamai\ControlPanel_Installer.exe
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\system.enterpriseservices.dll]---[X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\iehost.dll]---[X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\mscordbi.dll]---[X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\WINDOWS\system32\AcSignExtRes.dll]---[X]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\WINDOWS\system32\vcruntime140_1.dll]---[X]
Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\system.enterpriseservices.dll]---[X]
Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\iehost.dll]---[X]
Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.1.4322\Microsoft.JScript.tlb]---[X]
Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\vsavb7rt.dll]---[X]
Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\microsoft.jscript.dll]---[X]
Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.1.4322\mscoree.tlb]---[X]
Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Windows\Microsoft.NET\Framework\v1.0.3705\Microsoft.JScript.tlb]---[X]

---------- | Dossiers | Fichiers

Suppression : C:\Program Files (x86)\Glarysoft
Suppression : C:\Users\Laurenceau\AppData\Roaming\GlarySoft
Suppression : C:\ProgramData\GlarySoft
Suppression : C:\Users\Laurenceau\AppData\LocalLow\Microsoft\Internet Explorer\Services\search_{0633EE93-D776-472f-A0FF-E1416B8B2E3A}.ico     (.-.)     

---------- | .LNK


---------- | Ouverture extension inconnue


---------- | Proxy


---------- | Internet Explorer

Modification : [HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[SavedLegacySettings] : 0x46000000..... -> 
Modification : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[SavedLegacySettings] : 0x46000000..... -> 
Modification : [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[SavedLegacySettings] : 0x2800000000000000010000000000000000000000 -> 
Modification : [HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[SavedLegacySettings] : 0x1800000000000000010000000000000000000000 -> 
Modification : [HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[DefaultConnectionSettings] : 0x46000000..... -> 
Modification : [HKU\S-1-5-21-2603305841-1989612468-1150847816-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings\Connections]~[DefaultConnectionSettings] : 0x46000000..... -> 

---------- | Yandex : X

---------- | CLIQZ : X

---------- | Google Chrome

Suppression : C:\Users\Laurenceau\AppData\Local\Google\Chrome\User Data\Default\Web Data     (.-.)     Remis a zero avec succes : SearchURL
Suppression : C:\Users\Laurenceau\AppData\Local\Google\Chrome\User Data\Default\Preferences     (.-.)     Remis a zero avec succes : Preferences 
Suppression : C:\Users\Laurenceau\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences     (.-.)     Remis a zero avec succes : Preferences 

C:\Users\Laurenceau\AppData\Local\Google\Chrome\User Data\Default\extensions\aapocclcgogkmnckokdopfmhonfmgoek =  : Google & co - Google & co - https://clients2.google.com/service/update2/crx
C:\Users\Laurenceau\AppData\Local\Google\Chrome\User Data\Default\extensions\aohghmighlieiainnegkcijnfilokake =  : Google & co - Google & co - https://clients2.google.com/service/update2/crx
C:\Users\Laurenceau\AppData\Local\Google\Chrome\User Data\Default\extensions\apdfllckaahabafndbhieahigkjlhalf =  : Google & co - https://drive.google.com/?usp=chrome_app - Google & co - [http://docs.google.com/http://drive.google.com/https://docs.google.com/https://drive.google.com/] - https://clients2.google.com/service/update2/crx
C:\Users\Laurenceau\AppData\Local\Google\Chrome\User Data\Default\extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo =  : Google & co - http://www.youtube.com - http://www.youtube.com - Google & co - http://clients2.google.com/service/update2/crx
C:\Users\Laurenceau\AppData\Local\Google\Chrome\User Data\Default\extensions\felcaaldnbdncclmgdcncolpebgiejap =  : Google & co - Google & co - https://clients2.google.com/service/update2/crx
C:\Users\Laurenceau\AppData\Local\Google\Chrome\User Data\Default\extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi =  :     __MSG_extDesc__ -     __MSG_extName__ - https://clients2.google.com/service/update2/crx
C:\Users\Laurenceau\AppData\Local\Google\Chrome\User Data\Default\extensions\ihcjicgdanjaechkgeegckofjjedodee =  :     The fastest and safest web browsing experience. -     Malwarebytes Browser Guard - permissions:[downloadsstoragetabswebRequestwebRequestBlockingunlimitedStorage\u003Call_urls>] - https://clients2.google.com/service/update2/crx
C:\Users\Laurenceau\AppData\Local\Google\Chrome\User Data\Default\extensions\nmmhkkegccagdldgiimedpiccmgmieda =  : Google & co - Google & co - 203784468217.apps.googleusercontent.com - https://clients2.google.com/service/update2/crx
C:\Users\Laurenceau\AppData\Local\Google\Chrome\User Data\Default\extensions\pjkljhegncpnkpknbcohdijeoejaedia =  : Google & co - https://mail.google.com/mail - Google & co - [*://mail.google.com/mail] - https://clients2.google.com/service/update2/crx
C:\Users\Laurenceau\AppData\Local\Google\Chrome\User Data\Default\extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm =  :     Provider for discovery and services for mirroring of Chrome Media Router -     Chrome Media Router - 919648714761-55j965o0km033psv3i9qls5mo3qtdrb0.apps.googleusercontent.com - https://clients2.google.com/service/update2/crx

---------- | Comodo Dragon : X

---------- | IceDragon : X

---------- | Firefox



---------- | SeaMonkey : X

---------- | | Vivaldi : X

---------- | Pale moon : X

---------- | Opera : X

---------- | Spark : X

---------- | StartMenuInternet


---------- | Javascript


---------- | Firewall

Modification : [HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]~[EnableFirewall] : 0 -> 1
Modification : [HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]~[EnableFirewall] : 0 -> 1


---------- | ADS


Autre rapport


Analyses : 197007 | Modifications : 9 | Suppressions : 118

---------- |EOF| ---------- | 17:20:02 | [31 Ko]