---------- | AdsFix | g3n-h@ckm@n | V3_30.12.2016.1 ----- Vista | 7 | 8 | 8.1 | 10 - 32/64 bits ----- Start 20:19:17 - 01/01/2017 Mis a jour le : 30/12/2016 | 13.15 par g3n-h@ckm@n Contact : http://www.sosvirus.net Assistance : http://www.sosvirus.net/forum-virus-securite.html Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html Facebook : https://www.facebook.com/AdsFixAntiAdware C:\Users\jean-\Desktop\adsfix_3_30.12.2016.1.exe Boot: Normal boot [jean- (Administrator)] - [DESKTOP-37KC94K] - (France [040C]) SID = S-1-5-21-4265624635-2019933758-61733912-1001 || [6a65616e2d205e5e] PC : Hewlett-Packard - 2AE3 - D2J52EA#ABF Processor : X64 - 1397 - AMD E1-1200 APU with Radeon(tm) HD Graphics Bios : AMI - 01/25/2013 - V.8.17 CoreTemp : ? C CPU #1 value:38 % CPU #2 value:44 % Total Overall CPU Usage value:41 % Systeme : Windows 10 Home (64 bits) Core Memoire RAM = Total (MB) : 3748 | Libre (MB) : 1849 Pagefile = Total (MB) : 7549 | Libre (MB) : 5364 Virtuelle = Total (MB) : 4194 | Libre (MB) : 3920 C:\ -> [Fixed] | [OS] | Total : 930.26 Go | Free : 820.01 Go -> NTFS [SATA] D:\ -> [CDROM] | [ludie zagier] | Total : 91.77 Go | Free : 0 Go -> UDF [USB] F:\ -> [CDROM] | [3211634072-1] | Total : 0.03 Go | Free : 0 Go -> CDFS [SATA] G:\ -> [Removable] | [PARTED MAGI] | Total : 57.89 Go | Free : 32.83 Go -> FAT32 [USB] H:\ -> [Removable] | [michel] | Total : 119.06 Go | Free : 80.54 Go -> exFAT [USB] J:\ -> [Removable] | [WinToUSB] | Total : 115.59 Go | Free : 90.41 Go -> NTFS [USB] K:\ -> [Removable] | [] | Total : 119.5 Go | Free : 106.62 Go -> NTFS [USB] L:\ -> [Fixed] | [WD My Passport 3To] | Total : 2794.49 Go | Free : 220.29 Go -> NTFS [USB] M:\ -> [Removable] | [] | Total : 7.32 Go | Free : 7.32 Go -> FAT32 [USB] N:\ -> [Removable] | [COMPANION] | Total : 30.02 Go | Free : 1.77 Go -> FAT32 [USB] O:\ -> [Fixed] | [ZALMAN VE-350] | Total : 931.06 Go | Free : 385.1 Go -> NTFS [USB] S:\ -> [Removable] | [] | Total : 3.7 Go | Free : 1.48 Go -> FAT32 [USB] T:\ -> [Removable] | [FramaLive] | Total : 14.87 Go | Free : 7.95 Go -> FAT32 [USB] U:\ -> [Removable] | [UUI] | Total : 7.26 Go | Free : 1.91 Go -> FAT32 [USB] Sauvegarde du registre , pour restaurer : Cliquer sur Options & Restaurer le registre (C:\AdsFix\Save\Registry [01.01.2017 @ 20_19_12]) ou un element Restauration de fichiers ou dossiers supprimes par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Selectionner un element >> "Restaurer" ---------- | Mises a jour Windows ---------- | Navigateurs IE : 11.0.14393.0 (© Microsoft Corporation. Tous droits réservés.) FF : 50.1.0.6186 (©Firefox and Mozilla Developers; available under the MPL 2 license.) MS-Edge : 11.0.14393.576 (© Microsoft Corporation. All rights reserved.) ---------- | Security (atcav : 0) AV : Malwarebytes Disabled AS : IObit Malware Fighter Disabled FW : Ad-Aware Firewall Disabled WMI : OK WU: Windows Update Service [Manual(3)] = non en cours AS: Windows Defender [Manual(3)] = non en cours FW: Windows FireWall Service [Auto(2)] = en cours WMI: Windows Management Instrumentation (System Information) [Auto(2)] = en cours ---------- | FlashPlayer ActiveX : 24.0.0.186 ---------- | Processes closed 8644 | [Owner : jean- |Parent : 10796()] - (.SosVirus - Process Killer.) - (1.0.0.3) = L:\barrow 3, widen 2 & 100% sécurisé finalis\cyberlink youcam 8 essentials\sosvirus app for stop all youcam 8 process for facilite iobit unlocker work\processclose_1.0.0.3(4).exe 2160 | [Owner : jean- |Parent : 4184()] - (.SosVirus - Process Killer.) - (1.0.0.3) = L:\barrow 3, widen 2 & 100% sécurisé finalis\cyberlink youcam 8 essentials\sosvirus app for stop all youcam 8 process for facilite iobit unlocker work\Download\processclose_1.0.0.3(4).exe 1360 | [Owner : jean- |Parent : 4184()] - (.-.) - (0.0.0.0) = C:\Program Files (x86)\EaseUS\EaseUS EverySync\bin\EaseUSEverySyncCache.exe 2444 | [Owner : Système |Parent : 976(services.exe)] - (.Paramount Software UK Ltd - Macrium Reflect Utility Service.) - (6.3.1665.0) = C:\Program Files\Macrium\Common\MacriumService.exe 9256 | [Owner : SERVICE LOCAL |Parent : 1080(svchost.exe)] - (.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes en mode utilisateur.) - (10.0.14393.0) = C:\Windows\System32\WUDFHost.exe 5724 | [Owner : SERVICE LOCAL |Parent : 1080(svchost.exe)] - (.Microsoft Corporation - Device Association Framework Provider Host.) - (10.0.14393.82) = C:\Windows\System32\dasHost.exe 5720 | [Owner : jean- |Parent : 512(svchost.exe)] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) - (10.0.14393.0) = C:\Windows\System32\rundll32.exe 6236 | [Owner : jean- |Parent : 512(svchost.exe)] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) - (10.0.14393.0) = C:\Windows\System32\rundll32.exe 8104 | [Owner : SERVICE LOCAL |Parent : 976(services.exe)] - (.Microsoft Corporation - PresentationFontCache.exe.) - (3.0.6920.8763) = C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe 10424 | [Owner : jean- |Parent : 976(services.exe)] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (10.0.14393.0) = C:\Windows\System32\svchost.exe 5380 | [Owner : Système |Parent : 976(services.exe)] - (.Microsoft Corporation - Application sous-système spouleur.) - (10.0.14393.351) = C:\Windows\System32\spoolsv.exe 6156 | [Owner : SERVICE LOCAL |Parent : 1080(svchost.exe)] - (.Microsoft Corporation - Device Association Framework Provider Host.) - (10.0.14393.82) = C:\Windows\System32\dasHost.exe 9972 | [Owner : jean- |Parent : 512(svchost.exe)] - (.Microsoft Corporation - Runtime Broker.) - (10.0.14393.0) = C:\Windows\System32\RuntimeBroker.exe 2752 | [Owner : jean- |Parent : 7924(explorer.exe)] - (.Disc Soft Ltd - DAEMON Tools Shell Extensions Helper.) - (8.1.0.654) = C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe 7236 | [Owner : jean- |Parent : 512(svchost.exe)] - (.Microsoft Corporation - SmartScreen.) - (10.0.14393.321) = C:\Windows\System32\smartscreen.exe 3580 | [Owner : Système |Parent : 976(services.exe)] - (.Disc Soft Ltd - Disc Soft Bus Service Pro.) - (8.1.0.654) = C:\Program Files\DAEMON Tools Pro\DiscSoftBusServicePro.exe 3204 | [Owner : Système |Parent : 976(services.exe)] - (.Rebit, Inc. - Rebit Pro Backup Service.) - (5.1.3001.14505) = C:\Program Files\Rebit\Rebit Pro\Rebit-Pro-Svc.exe 9808 | [Owner : SERVICE LOCAL |Parent : 976(services.exe)] - (.Sophos Limited - Sophos Heartbeat Service.) - (4.2.0.79) = C:\Program Files (x86)\Sophos\Heartbeat\Heartbeat.exe 10104 | [Owner : jean- |Parent : 1036(svchost.exe)] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) - (10.0.14393.0) = C:\Windows\System32\taskhostw.exe 5692 | [Owner : jean- |Parent : 512(svchost.exe)] - (.Microsoft Corporation - Host Process for Setting Synchronization.) - (10.0.14393.187) = C:\Windows\System32\SettingSyncHost.exe 10256 | [Owner : Système |Parent : 824(winlogon.exe)] - (.Microsoft Corporation - Usermode Font Driver Host.) - (10.0.14393.447) = C:\Windows\System32\fontdrvhost.exe 2492 | [Owner : LogonSessionId_0_20565749 |Parent : 976(services.exe)] - (.Microsoft Corporation - Service de disque virtuel.) - (10.0.14393.0) = C:\Windows\System32\vds.exe 3032 | [Owner : LogonSessionId_0_20565861 |Parent : 976(services.exe)] - (.Sophos Limited - Sophos Network Threat Protection Service.) - (1.3.1.12) = C:\Program Files\Sophos\Sophos Network Threat Protection\bin\SntpService.exe 5612 | [Owner : jean- |Parent : 8240()] - (.Avanquest Software - Smart Privacy Cleaner.) - (2.0.0.0) = C:\Program Files (x86)\Smart Privacy Cleaner\SmartPrivacyCleaner.exe 8120 | [Owner : jean- |Parent : 512(svchost.exe)] - (.Microsoft Corporation - Background Task Host.) - (10.0.14393.0) = C:\Windows\System32\backgroundTaskHost.exe 9588 | [Owner : Système |Parent : 976(services.exe)] - (.- DHCP Service.) - (1.0.12.32) = C:\Program Files (x86)\OSTotoHotspot\WifiService.exe ---------- | Tasks Suppression : BackItUp_Launch Suppression : Boost Suppression : Driver Easy Scheduled Scan Suppression : GMHSkipUAC Suppression : iolo Process Governor Suppression : ShouldIRemoveIt_Notifications Suppression : SoftwareUpdate Pro Suppression : Uninstaller_SkipUac_jean- Suppression : WinZipBackGroundToolsTask Suppression : Wise Hotkey.job Suppression : Ashampoo Privacy Protector Weekly Security Scan Suppression : CreateExplorerShellUnelevatedTask Suppression : ReasonSecurityScheduledScan Suppression : SupersonicPC ---------- | Services Suppression : GUSBootStartup : \??\C:\WINDOWS\System32\drivers\GUSBootStartup.sys Suppression : IObitUnSvr : C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe ---------- | AppCertDlls | AppInit_DLLs ---------- | DNSapi.dll C:\WINDOWS\System32\dnsapi.dll : \drivers\etc\hosts C:\WINDOWS\SysWOW64\dnsapi.dll : \drivers\etc\hosts ---------- | Hosts ---------- | SafeBoot Suppression : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ioloSystemService Suppression : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\LavasoftAdAwareService11 Suppression : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ioloSystemService Suppression : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\LavasoftAdAwareService11 ---------- | Winsock ---------- | DNS ---------- | Registre Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\a.clipconverter.cc Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\avanquest.com Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\clipconverter.cc Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\glarysoft.com Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\iobit.com Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\s0.2mdn.net Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\store.iobit.com Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.avanquest.com Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.clipconverter.cc Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.glarysoft.com Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.iobit.com Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\a.clipconverter.cc Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\avanquest.com Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\clipconverter.cc Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\glarysoft.com Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\iobit.com Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\s0.2mdn.net Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\store.iobit.com Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.avanquest.com Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.clipconverter.cc Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.glarysoft.com Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.iobit.com Suppression : HKLM\SOFTWARE\Classes\iolocowithdb.ioloChangeTool : Suppression : HKLM\SOFTWARE\Classes\ioloServiceManager.Helpers : Suppression : HKLM\SOFTWARE\Classes\iolosm : URL: iolo SM Protocol "C:\Program Files (x86)\iolo\System Mechanic\ioloUPHc.exe" "%1" Suppression : HKLM\SOFTWARE\Classes\WSBrowserAppMgr.ISVCUchrome : Suppression : HKLM\SOFTWARE\Classes\AppID\ioloServiceManager.exe : # Suppression : HKLM\SOFTWARE\Wow6432Node\Classes\ioloPIA.TioloPIAImpl : TioloPIAImpl Suppression : HKLM\SOFTWARE\Wow6432Node\Classes\ioloServiceManager.WipeTool : WipeTool Suppression : HKLM\SOFTWARE\Classes\CLSID\{10921475-03CE-4E04-90CE-E2E7EF20C814} : C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll # Suppression : HKLM\SOFTWARE\Classes\CLSID\{B19ED566-D419-470b-B111-3C89040BC027} : C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll # Suppression : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{1DDF2B94-44C6-4E74-9C51-6757253E2DF7} Suppression : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{30C21488-5F00-4F77-BA34-38C6744BEBBB} : C:\PROGRA~2\iolo\Common\Lib\iolopia.dll Suppression : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{40310869-27A4-42B1-8AAD-E4CEFB3BE286} Suppression : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4E8B3177-3B8E-493E-9616-BA24E5DA7FD6} : C:\PROGRA~2\iolo\Common\Lib\ioloSoftSearch.dll # Suppression : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{78A543EB-3A61-4ED3-9F4E-457DD8364A5F} : C:\PROGRA~3\iSkysoft\Video Converter Ultimate\WSBrowserAppMgr.dll Suppression : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{C59B8820-B97D-467D-9787-68811ADBC288} : C:\PROGRA~2\iolo\Common\Lib\MessageToaster.exe Suppression : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CF74784C-28F7-4681-8CFA-2807AD09388D} : C:\PROGRA~2\iolo\Common\Lib\ioloServiceManager.exe Suppression : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D2CA5A83-7DE8-4DD7-9F9D-98550538C1C1} : C:\PROGRA~2\iolo\Common\Lib\iolocowithdb.dll Suppression : HKLM\SOFTWARE\Classes\TypeLib\{3A2E674C-52F9-41A0-A593-CE0E49E21434} : C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe Suppression : HKLM\SOFTWARE\Classes\TypeLib\{6624F170-E89F-43F8-856E-DE0BF8A41414} : C:\Program Files (x86)\iolo\Common\Lib\iolopia.dll Suppression : HKLM\SOFTWARE\Classes\TypeLib\{7CD37F36-0BEF-11DC-8314-0800200C9A67} : O:\paw - vaicre the négation caus' ou dropy fin li'lis of beyonce tiers of les intui de la log - pro files (x64)\IObit Malware Fighter\Surfing Protection\Adblock\Adblock.dll Suppression : HKLM\SOFTWARE\Classes\TypeLib\{7DE8ECAF-818D-41B5-9C2B-37E143E55248} : C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe Suppression : HKLM\SOFTWARE\Classes\TypeLib\{7E6FA6B5-48E9-4941-935E-C0959D86BA9A} : # C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe Suppression : HKLM\SOFTWARE\Classes\TypeLib\{C4DE0514-F644-487F-84DD-DD1038FF207A} : C:\Program Files (x86)\iolo\Common\Lib\MessageToaster.exe Suppression : HKLM\SOFTWARE\Classes\TypeLib\{CFDD9042-CEFB-4B68-B956-90CB0E466B38} : # C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll Suppression : HKLM\SOFTWARE\Classes\Interface\{055FFB19-10B0-4187-B1B9-FC793FA38FE8} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{055FFB19-10B0-4187-B1B9-FC793FA38FE8} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\SOFTWARE\Classes\Interface\{05F031B8-9160-424B-83BF-184D2A4D65B3} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{05F031B8-9160-424B-83BF-184D2A4D65B3} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\SOFTWARE\Classes\Interface\{081D87E3-4600-4563-BE08-1215C32EB2FF} : {7E6FA6B5-48E9-4941-935E-C0959D86BA9A} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{081D87E3-4600-4563-BE08-1215C32EB2FF} : {7E6FA6B5-48E9-4941-935E-C0959D86BA9A} Suppression : HKLM\SOFTWARE\Classes\Interface\{0895902C-131B-4AA1-98B4-2A5B1CEA3EA6} : {7E6FA6B5-48E9-4941-935E-C0959D86BA9A} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{0895902C-131B-4AA1-98B4-2A5B1CEA3EA6} : {7E6FA6B5-48E9-4941-935E-C0959D86BA9A} Suppression : HKLM\SOFTWARE\Classes\Interface\{0D209159-C208-44F6-A749-7644146A620F} : {3A2E674C-52F9-41A0-A593-CE0E49E21434} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{0D209159-C208-44F6-A749-7644146A620F} : {3A2E674C-52F9-41A0-A593-CE0E49E21434} Suppression : HKLM\SOFTWARE\Classes\Interface\{13145FDA-9FB8-41C6-8B28-13D750E806BC} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{13145FDA-9FB8-41C6-8B28-13D750E806BC} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\SOFTWARE\Classes\Interface\{16045B21-A249-4436-9E97-1FBBBF4F0755} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{16045B21-A249-4436-9E97-1FBBBF4F0755} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\SOFTWARE\Classes\Interface\{1A5BCF9B-039D-4422-9380-274D98D27265} : {7E6FA6B5-48E9-4941-935E-C0959D86BA9A} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{1A5BCF9B-039D-4422-9380-274D98D27265} : {7E6FA6B5-48E9-4941-935E-C0959D86BA9A} Suppression : HKLM\SOFTWARE\Classes\Interface\{20F837DD-7478-4765-AA1F-D77F63B8C5BE} : {3A2E674C-52F9-41A0-A593-CE0E49E21434} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{20F837DD-7478-4765-AA1F-D77F63B8C5BE} : {3A2E674C-52F9-41A0-A593-CE0E49E21434} Suppression : HKLM\SOFTWARE\Classes\Interface\{21EE4B4D-2005-4881-948A-F45C9B42462C} : {3A2E674C-52F9-41A0-A593-CE0E49E21434} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{21EE4B4D-2005-4881-948A-F45C9B42462C} : {3A2E674C-52F9-41A0-A593-CE0E49E21434} Suppression : HKLM\SOFTWARE\Classes\Interface\{279E3403-4A2F-4455-8E85-C887931EA67D} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{279E3403-4A2F-4455-8E85-C887931EA67D} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\SOFTWARE\Classes\Interface\{38C26606-33D1-4EEE-801F-FCEFB8B9EB3D} : {7E6FA6B5-48E9-4941-935E-C0959D86BA9A} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{38C26606-33D1-4EEE-801F-FCEFB8B9EB3D} : {7E6FA6B5-48E9-4941-935E-C0959D86BA9A} Suppression : HKLM\SOFTWARE\Classes\Interface\{4023ED46-158A-4AA9-89C1-7E3B330D791E} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{4023ED46-158A-4AA9-89C1-7E3B330D791E} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\SOFTWARE\Classes\Interface\{4FC4D67F-2F00-437F-A1D3-D601201CBD49} : {C4DE0514-F644-487F-84DD-DD1038FF207A} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{4FC4D67F-2F00-437F-A1D3-D601201CBD49} : {C4DE0514-F644-487F-84DD-DD1038FF207A} Suppression : HKLM\SOFTWARE\Classes\Interface\{554B4C02-8C1E-4799-B21E-51C611AA2DC1} : {3A2E674C-52F9-41A0-A593-CE0E49E21434} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{554B4C02-8C1E-4799-B21E-51C611AA2DC1} : {3A2E674C-52F9-41A0-A593-CE0E49E21434} Suppression : HKLM\SOFTWARE\Classes\Interface\{5A2956CD-9640-4B53-B921-CE795A223ABA} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{5A2956CD-9640-4B53-B921-CE795A223ABA} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\SOFTWARE\Classes\Interface\{5D3D2B5F-1AD8-48F7-BC63-DFF7E6BED182} : {7E6FA6B5-48E9-4941-935E-C0959D86BA9A} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{5D3D2B5F-1AD8-48F7-BC63-DFF7E6BED182} : {7E6FA6B5-48E9-4941-935E-C0959D86BA9A} Suppression : HKLM\SOFTWARE\Classes\Interface\{5F827976-E5C4-4E7F-8806-EE14C55AE04A} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{5F827976-E5C4-4E7F-8806-EE14C55AE04A} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\SOFTWARE\Classes\Interface\{682C387C-C2A1-4F5F-B331-B03F2652CE85} : {C4DE0514-F644-487F-84DD-DD1038FF207A} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{682C387C-C2A1-4F5F-B331-B03F2652CE85} : {C4DE0514-F644-487F-84DD-DD1038FF207A} Suppression : HKLM\SOFTWARE\Classes\Interface\{7B57FA7F-9B0A-42F8-BD71-3BA1098E3FE3} : {6624F170-E89F-43F8-856E-DE0BF8A41414} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{7B57FA7F-9B0A-42F8-BD71-3BA1098E3FE3} : {6624F170-E89F-43F8-856E-DE0BF8A41414} Suppression : HKLM\SOFTWARE\Classes\Interface\{8140F476-54D6-41FD-ACE7-D3BBAA947C93} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{8140F476-54D6-41FD-ACE7-D3BBAA947C93} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\SOFTWARE\Classes\Interface\{81DB2B13-518F-4748-B55F-98154929DC9E} : {7E6FA6B5-48E9-4941-935E-C0959D86BA9A} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{81DB2B13-518F-4748-B55F-98154929DC9E} : {7E6FA6B5-48E9-4941-935E-C0959D86BA9A} Suppression : HKLM\SOFTWARE\Classes\Interface\{823D0D8F-6BC0-4C95-826E-2E679B5A6E1B} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{823D0D8F-6BC0-4C95-826E-2E679B5A6E1B} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\SOFTWARE\Classes\Interface\{8952B091-63B3-4BCF-8247-548CBC87E080} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{8952B091-63B3-4BCF-8247-548CBC87E080} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\SOFTWARE\Classes\Interface\{9DB88962-4E1E-4681-9E7D-F9EA342CF464} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{9DB88962-4E1E-4681-9E7D-F9EA342CF464} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\SOFTWARE\Classes\Interface\{A10E312F-612F-4B6D-BE4C-898BFC1D237B} : {3A2E674C-52F9-41A0-A593-CE0E49E21434} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{A10E312F-612F-4B6D-BE4C-898BFC1D237B} : {3A2E674C-52F9-41A0-A593-CE0E49E21434} Suppression : HKLM\SOFTWARE\Classes\Interface\{B4EFFA1A-C33C-4A08-8732-DD8901172FCA} : {3A2E674C-52F9-41A0-A593-CE0E49E21434} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{B4EFFA1A-C33C-4A08-8732-DD8901172FCA} : {3A2E674C-52F9-41A0-A593-CE0E49E21434} Suppression : HKLM\SOFTWARE\Classes\Interface\{B79717BE-29C9-43F6-90D5-EB0D8BDB0456} : {7E6FA6B5-48E9-4941-935E-C0959D86BA9A} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{B79717BE-29C9-43F6-90D5-EB0D8BDB0456} : {7E6FA6B5-48E9-4941-935E-C0959D86BA9A} Suppression : HKLM\SOFTWARE\Classes\Interface\{BDEB182C-B9D1-49AD-B1BB-2561B216CA0B} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{BDEB182C-B9D1-49AD-B1BB-2561B216CA0B} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\SOFTWARE\Classes\Interface\{C07E6A12-B45E-4DEC-A2B4-49A293EDC6AE} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{C07E6A12-B45E-4DEC-A2B4-49A293EDC6AE} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\SOFTWARE\Classes\Interface\{C1F12418-B8BF-4BAE-84C5-88662A89963A} : {3A2E674C-52F9-41A0-A593-CE0E49E21434} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{C1F12418-B8BF-4BAE-84C5-88662A89963A} : {3A2E674C-52F9-41A0-A593-CE0E49E21434} Suppression : HKLM\SOFTWARE\Classes\Interface\{C220922B-6BE3-4D02-9402-1E8955F0AEC5} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{C220922B-6BE3-4D02-9402-1E8955F0AEC5} : {7DE8ECAF-818D-41B5-9C2B-37E143E55248} Suppression : HKLM\SOFTWARE\Classes\Interface\{CF86A2EB-8704-41C3-B017-86F3F0BF926F} : {7E6FA6B5-48E9-4941-935E-C0959D86BA9A} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{CF86A2EB-8704-41C3-B017-86F3F0BF926F} : {7E6FA6B5-48E9-4941-935E-C0959D86BA9A} Suppression : HKLM\SOFTWARE\Classes\Interface\{D5A1F5A5-1C8B-4C4E-9E43-22C8B7FB84F0} : {7E6FA6B5-48E9-4941-935E-C0959D86BA9A} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{D5A1F5A5-1C8B-4C4E-9E43-22C8B7FB84F0} : {7E6FA6B5-48E9-4941-935E-C0959D86BA9A} Suppression : HKLM\SOFTWARE\Classes\Interface\{E532C2FC-FD72-4826-9AC4-1AE052C4345A} : {7E6FA6B5-48E9-4941-935E-C0959D86BA9A} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{E532C2FC-FD72-4826-9AC4-1AE052C4345A} : {7E6FA6B5-48E9-4941-935E-C0959D86BA9A} Suppression : HKLM\SOFTWARE\Classes\Interface\{F223E815-C27B-4779-9167-971A6D544690} : {3A2E674C-52F9-41A0-A593-CE0E49E21434} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{F223E815-C27B-4779-9167-971A6D544690} : {3A2E674C-52F9-41A0-A593-CE0E49E21434} Suppression : HKLM\SOFTWARE\Classes\Interface\{FB3E4CCB-0215-45D3-AECC-1AA41BF7D6E4} : {3A2E674C-52F9-41A0-A593-CE0E49E21434} Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{FB3E4CCB-0215-45D3-AECC-1AA41BF7D6E4} : {3A2E674C-52F9-41A0-A593-CE0E49E21434} Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION]~[WiseDiskCleaner.exe] Suppression : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\ioloUPHc.exe Suppression : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MalwareHunter.exe Suppression : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\SoftwareUpdatePro.exe Suppression : HKLM\SOFTWARE\Microsoft\Tracing\DriverEasy_RASAPI32 Suppression : [HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[G:\Ad-Aware Personal Security\Adaware_Installer.exe] Suppression : [HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Users\jean-\AppData\Local\Temp\SoftwareUpdate_Temp\Data\Setup.exe] Suppression : [HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Program Files (x86)\Glarysoft\Software Update Pro\SoftwareUpdatePro.exe] Suppression : [HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Program Files (x86)\Glarysoft\Malware Hunter\MalwareHunter.exe] Suppression : [HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Program Files (x86)\Glarysoft\Software Update Pro\Modifyiconmodule.exe] Suppression : HKU\S-1-5-18\SOFTWARE\Embarcadero Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Embarcadero Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\GlarySoft Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\iolo Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\PhotoDonut 64 Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Smart Privacy Cleaner Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Solvusoft Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Systweak Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\AppDataLow\Software\adawarebp Suppression : HKLM\SOFTWARE\iolo Suppression : HKLM\SOFTWARE\Reimage Suppression : HKLM\SOFTWARE\Wow6432Node\Avanquest Suppression : HKLM\SOFTWARE\Wow6432Node\GlarySoft Suppression : HKLM\SOFTWARE\Wow6432Node\IObit Suppression : HKLM\SOFTWARE\Wow6432Node\PerformerSoft Suppression : HKLM\SOFTWARE\Wow6432Node\simplitec Suppression : HKLM\SOFTWARE\Wow6432Node\Systweak Suppression : HKU\S-1-5-18\SOFTWARE\Nico Mak Computing Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Nico Mak Computing Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Xycod Suppression : HKLM\SOFTWARE\Nico Mak Computing Suppression : HKLM\SOFTWARE\WOW6432Node\Avanquest Software Suppression : HKLM\SOFTWARE\WOW6432Node\iolo Suppression : HKLM\SOFTWARE\WOW6432Node\Lavasoft Suppression : HKLM\SOFTWARE\Wow6432Node\Nico Mak Computing Suppression : [HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser]~[ITBar7Height] : 22 Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{96BBC430-9900-4299-9F5D-7951AB36EFDF} : 1 Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\Software\Microsoft\Installer\Products\DF0BF511A0A162C4287A6A86A997B99B : C:\Users\jean-\AppData\Roaming\Reason Software Company Inc\Boost 1.0.2\install\A799BB9\ # Boost Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\0EA8C7F7B169DEA49BA99DEB920C2FC4 : [C:\WINDOWS\Installer\be785.msi] Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6DBEC9DAD2449794D9D11E50F0E272D2 : [C:\WINDOWS\Installer\28dd6d.msi] Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\960CB88DFFFB244419CE91E82F7B46EF : [C:\WINDOWS\Installer\28de09.msi] Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\WINDOWS\system32\iolobtdfg.exe] Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Program Files (x86)\iolo\Common\Lib\rawdsk3.sys] Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Users\jean-\AppData\Roaming\AutoSave\PLAN\] Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Users\jean-\AppData\Roaming\AutoSave\PLAN\1\] Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Users\jean-\AppData\Roaming\AutoSave\PLAN\3\] Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Users\jean-\AppData\Roaming\Reason\Boost\] Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Program Files (x86)\iolo\Common\Lib\Corvus.dll] Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Program Files (x86)\iolo\Common\Lib\SNMPAPI.DLL] Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Program Files (x86)\iolo\System Mechanic\dvrupdr.dll] Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Program Files (x86)\iolo\Common\Lib\ioloFILParser.fr] Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe] Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Program Files (x86)\iolo\Common\Lib\ioloTTOL.dll] Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Program Files (x86)\iolo\Common\Lib\ioloFILParser.exe] Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\SharedDLLs]~[C:\Program Files (x86)\iolo\Common\Lib\iolopia.dll] Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\Boost 1.0.2 : (Boost) msiexec.exe /x {115FB0FD-1A0A-4C26-82A7-A6689A799BB9} -> C:\Users\jean-\AppData\Roaming\Reason\Boost\ Suppression : HKU\S-1-5-21-4265624635-2019933758-61733912-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\PhotoDonut 1.1 : (PhotoDonut) C:\Users\jean-\AppData\Local\PhotoDonut\uninstall.exe -> C:\Users\jean-\AppData\Local\PhotoDonut Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\DriverEasy_is1 : (Driver Easy 5.1.5) "C:\Program Files\Easeware\DriverEasy\unins000.exe" -> C:\Program Files\Easeware\DriverEasy\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Reimage Repair Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{115FB0FD-1A0A-4C26-82A7-A6689A799BB9} : (Boost) MsiExec.exe /X{115FB0FD-1A0A-4C26-82A7-A6689A799BB9} -> C:\Users\jean-\AppData\Roaming\Reason\Boost\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{20334FA5-6CD5-48FC-B5F9-D34D75E07845} : (AntimalwareEngine) MsiExec.exe /I{20334FA5-6CD5-48FC-B5F9-D34D75E07845} -> C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\3.0.129.0\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2CAC4882-997E-4F61-8D5F-5E11E3FC7177} : (AntispamEngine) MsiExec.exe /I{2CAC4882-997E-4F61-8D5F-5E11E3FC7177} -> C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antispam Engine\2.5.0.320\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{36036827-FA38-4A74-8333-26BC4EEC9308}_AdAwareUpdater Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{3E5BEF30-3962-4B47-AECA-937B6CBB0A68} : (AvcEngine) MsiExec.exe /I{3E5BEF30-3962-4B47-AECA-937B6CBB0A68} -> C:\Program Files\Lavasoft\Ad-Aware Antivirus\AVC Engine\3.12.15976.0\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{7F7C8AE0-961B-4AED-B99A-D9BE29C0F24C} : (AdAwareProxyEngine) MsiExec.exe /I{7F7C8AE0-961B-4AED-B99A-D9BE29C0F24C} -> C:\Program Files\Lavasoft\Ad-Aware Antivirus\AdAwareProxyEngine\1.0.0.8\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{AAF4B2C1-2E27-46EF-9B9E-2B2130F056F3} : (FirewallEngine) MsiExec.exe /I{AAF4B2C1-2E27-46EF-9B9E-2B2130F056F3} -> C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\2.0.0.20\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{AD9CEBD6-442D-4979-9D1D-E1050F2E272D}_AdAwareUpdater : (Ad-Aware Antivirus) "C:\Program Files\Common Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus Updater\11.15.1046.10613\AdAwareUpdater.exe" --uninstall -> C:\Program Files\Common Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus Updater\11.15.1046.10613\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D88BC069-BFFF-4442-91EC-198EF2B764FE} : (AdAwareInstaller) MsiExec.exe /I{D88BC069-BFFF-4442-91EC-198EF2B764FE} -> C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.15.1046.10613\ Suppression : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\IObit Malware Fighter_is1 : (IObit Malware Fighter 5) "O:\paw - vaicre the négation caus' ou dropy fin li'lis of beyonce tiers of les intui de la log - pro files (x64)\IObit Malware Fighter\unins000.exe" -> O:\paw - vaicre the négation caus' ou dropy fin li'lis of beyonce tiers of les intui de la log - pro files (x64)\IObit Malware Fighter\ Suppression : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\IObitUninstall : (IObit Uninstaller) "C:\Program Files (x86)\IObit\IObit Uninstaller\unins000.exe" -> C:\Program Files (x86)\IObit\IObit Uninstaller\ Suppression : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Malware Hunter : (Malware Hunter 1.26.0.43) C:\Program Files (x86)\Glarysoft\Malware Hunter\uninst.exe Suppression : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Smart Privacy Cleaner_is1 : (Smart Privacy Cleaner v2.0) "C:\Program Files (x86)\Smart Privacy Cleaner\unins000.exe" -> C:\Program Files (x86)\Smart Privacy Cleaner\ Suppression : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Wise Memory Optimizer_is1 : (Wise Memory Optimizer 3.32) "C:\Program Files (x86)\Wise\Wise Memory Optimizer\unins000.exe" -> C:\Program Files (x86)\Wise\Wise Memory Optimizer\ Suppression : [HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]~[Software Informer] : 0x020000000000000000000000 Suppression : [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]~[rfagent] : "C:\Program Files\RFA 10\rfagent64.exe" Suppression : [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run]~[AdAwareTray] : 0x020000000000000000000000 Suppression : [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32]~[IObit Malware Fighter] : 0x020000000000000000000000 Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]~[MalTray] : C:\Program Files (x86)\Glarysoft\Malware Hunter\mhtray.exe Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]~[iolo Startup] : "C:\Program Files (x86)\iolo\Common\Lib\ioloLManager.exe" ---------- | Dossiers | Fichiers Suppression : C:\Program Files\Copy Handler\ictranslate64.exe (TODO: (c) . All rights reserved..-.TODO: ) ictranslate.exe Suppression : C:\Program Files\Copy Handler\libictranslate64u.dll (TODO: (c) . All rights reserved..-.TODO: ) libictranslate.dll Suppression : C:\Program Files\WinZip\SugarSyncService.dll ((c) 2012-2016 VAPC (Lux) S.a.r.L. All rights reserved..-.WinZip) SugarSyncService.dll Reboot : C:\Program Files (x86)\ASP\AdvancedSystemProtector.exe.config (.-.) Reboot : C:\Program Files (x86)\ASP\BrowserCleaner.exe (Copyright © Systweak Software 2015.-.Browser Cleaner) BCNewUI.exe Reboot : C:\Program Files (x86)\ASP\filetypehelper.exe (Copyright.-.ASP) filetypehelper.exe Suppression : C:\Program Files (x86)\Glarysoft Suppression : C:\Program Files (x86)\IObit Suppression : C:\Program Files (x86)\iolo Suppression : C:\Program Files (x86)\Wise\Wise Memory Optimizer Suppression : C:\Program Files (x86)\Common Files\IObit Suppression : C:\Users\Public\Desktop\Advanced System Protector.lnk (.-.) C:\Program Files (x86)\ASP\AdvancedSystemProtector.exe Suppression : C:\Users\Public\Desktop\IObit Malware Fighter.lnk (.-.) O:\paw - vaicre the négation caus' ou dropy fin li'lis of beyonce tiers of les intui de la log - pro files (x64)\IObit Malware Fighter\IMF.exe Suppression : C:\Users\Public\Desktop\IObit Uninstaller.lnk (.-.) C:\Program Files (x86)\IObit\IObit Uninstaller\Uninstaler_SkipUac.exe Suppression : C:\Users\Public\Desktop\Registry First Aid.lnk (.-.) C:\Program Files\RFA 10\RFA_start.exe Suppression : C:\Users\jean-\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Ad-Aware Antivirus.lnk (.-.) Suppression : C:\Users\jean-\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Malware Hunter.lnk (.-.) C:\Program Files (x86)\Glarysoft\Malware Hunter\MalwareHunter.exe Suppression : C:\Users\jean-\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Software Update Pro.lnk (.-.) C:\Program Files (x86)\Glarysoft\Software Update Pro\SoftwareUpdatePro.exe Suppression : C:\Users\jean-\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Malware Hunter.lnk (.-.) C:\Program Files (x86)\Glarysoft\Malware Hunter\MalwareHunter.exe Suppression : C:\Users\jean-\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Software Update Pro.lnk (.-.) C:\Program Files (x86)\Glarysoft\Software Update Pro\SoftwareUpdatePro.exe Suppression : C:\Users\jean-\Desktop\Smart Privacy Cleaner.lnk (.-.) C:\Program Files (x86)\Smart Privacy Cleaner\SmartPrivacyCleaner.exe Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malware Hunter.lnk (.-.) C:\Program Files (x86)\Glarysoft\Malware Hunter\MalwareHunter.exe Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Software Update Pro.lnk (.-.) C:\Program Files (x86)\Glarysoft\Software Update Pro\SoftwareUpdatePro.exe Reboot : C:\Users\jean-\AppData\Local\PhotoDonut\Uninstall PhotoDonut.lnk (.-.) Suppression : C:\Users\jean-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoDonut\PhotoDonut.lnk (.-.) Suppression : C:\Users\jean-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoDonut\Uninstall PhotoDonut.lnk (.-.) Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System Protector\Advanced System Protector.lnk (.-.) Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System Protector\Désinstaller Advanced System Protector.lnk (.-.) Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System Protector\Register Advanced System Protector.lnk (.-.) Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Easy\Driver Easy.lnk (.-.) Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Easy\Désinstaller Driver Easy.lnk (.-.) Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter\Désinstaller IObit Malware Fighter.lnk (.-.) Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter\IObit Malware Fighter.lnk (.-.) Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller\Désinstaller IObit Uninstaller.lnk (.-.) Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller\IObit Uninstaller.lnk (.-.) Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registry First Aid 10\Aide Registry First Aid.lnk (.-.) Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registry First Aid 10\Registry First Aid.lnk (.-.) Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Privacy Cleaner\Désinstaller Smart Privacy Cleaner.lnk (.-.) Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Privacy Cleaner\Page d'accueil de Smart Privacy Cleaner.lnk (.-.) Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Privacy Cleaner\Smart Privacy Cleaner.lnk (.-.) Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Memory Optimizer\Wise Memory Optimizer.lnk (.-.) Suppression : C:\Users\Public\Desktop\Poursuivre l'installation de Reimage Repair.lnk (.-.) Suppression : C:\Users\Public\Desktop\Your Software Deals.url (.-.) Suppression : C:\Users\jean-\AppData\Local\Chromium Suppression : C:\Users\jean-\AppData\Local\PCPerformerSetup Suppression : C:\Users\jean-\AppData\Local\Systweak Suppression : C:\Users\jean-\AppData\LocalLow\IObit Suppression : C:\Users\jean-\AppData\Roaming\AutoSave Suppression : C:\Users\jean-\AppData\Roaming\GlarySoft Suppression : C:\Users\jean-\AppData\Roaming\IObit Suppression : C:\Users\jean-\AppData\Roaming\iolo Suppression : C:\Users\jean-\AppData\Roaming\Software Informer Suppression : C:\Users\jean-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoDonut Suppression : C:\Users\jean-\Downloads\DriverEasy_Setup.exe (Copyright © 2016 Easeware. .-.Driver Easy) Suppression : C:\Users\jean-\Downloads\PhotoDonut-windows-installer.exe (Copyright Xycod.-.PhotoDonut) setup.exe Suppression : C:\ProgramData\Glarysoft Suppression : C:\ProgramData\Informer Technologies, Inc\Software Informer Suppression : C:\ProgramData\IObit Suppression : C:\ProgramData\iolo Suppression : C:\ProgramData\ProductData Suppression : C:\ProgramData\Registry First Aid Suppression : C:\ProgramData\simplitec Suppression : C:\ProgramData\Systweak Suppression : C:\ProgramData\Xycod\PhotoDonut 64 Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System Protector Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Easy Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glarysoft Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registry First Aid 10 Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Privacy Cleaner Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wise Memory Optimizer Suppression : C:\WINDOWS\Reimage.ini (.-.) Suppression : C:\WINDOWS\System32\AI_RecycleBin Suppression : C:\WINDOWS\Installer\28de09.msi (.-.) [Package Install] Suppression : C:\WINDOWS\Installer\28dd6d.msi (.-.) [Package Install] Suppression : C:\WINDOWS\Installer\be785.msi (.-.) [Package Install] Suppression : C:\ProgramData\install_clap Suppression : C:\ProgramData\install_backup Suppression : C:\ProgramData\fltk.org Suppression : C:\WINDOWS\Syswow64\Config\Systemprofile\AppData\Roaming\iolo Suppression : C:\searchplugins Suppression : C:\rei Suppression : C:\WINDOWS\Installer\20b246.msi (.-.)-> (AntimalwareEngine - Lavasoft) Suppression : C:\WINDOWS\Installer\20b250.msi (.-.)-> (OnlineThreatsEngine - Lavasoft) Suppression : C:\WINDOWS\Installer\28dd7b.msi (.-.)-> (AntispamEngine - Lavasoft) Suppression : C:\WINDOWS\Installer\28dd8f.msi (.-.)-> (AvcEngine - Lavasoft) Suppression : C:\WINDOWS\Installer\be780.msi (.-.)-> (FirewallEngine - Lavasoft) Suppression : C:\Users\Public\Desktop\quick PC Booster.lnk (.-.) Suppression : C:\Users\Public\Desktop\SupersonicPC.lnk (.-.) Suppression : C:\Users\jean-\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\quick PC Booster.lnk (.-.) Suppression : C:\Users\jean-\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\SupersonicPC.lnk (.-.) Suppression : C:\Users\jean-\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\\boost Suppression : C:\Users\jean-\AppData\Roaming\ioloGovernor Suppression : C:\Users\jean-\AppData\Roaming\Easeware Suppression : C:\Users\jean-\AppData\Roaming\Lavasoft Suppression : C:\Program Files\Common Files\Lavasoft Suppression : C:\Program Files\Easeware Suppression : C:\Program Files\Lavasoft Suppression : C:\ProgramData\ioloGovernor Suppression : C:\ProgramData\Lavasoft Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\quick PC Booster Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SupersonicPC Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft Suppression : C:\Program Files (x86)\SupersonicPC Suppression : C:\Program Files (x86)\QuickTime ---------- | .LNK ---------- | Ouverture extension inconnue ---------- | Proxy ---------- | Internet Explorer Reparation : [HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Microsoft\Internet Explorer\Main]~[Local Page] : C:\Windows\SysWOW64\blank.htm -> C:\WINDOWS\System32\blank.htm Reparation : [HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main]~[Local Page] : %11%\blank.htm -> C:\WINDOWS\System32\blank.htm Reparation : [HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main]~[Local Page] : %11%\blank.htm -> C:\WINDOWS\System32\blank.htm Reparation : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main]~[Local Page] : C:\Windows\SysWOW64\blank.htm -> C:\WINDOWS\System32\blank.htm Reparation : [HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main]~[Local Page] : C:\Windows\SysWOW64\blank.htm -> C:\WINDOWS\System32\blank.htm Reparation : [HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter]~[Enabled] : -> 2 Reparation : [HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter]~[EnabledV8] : -> 1 Reparation : [HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings]~[WarNonBadCertReceving] : -> 1 Reparation : [HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings]~[WarNonHTTPSToHTTPRedirect] : -> 1 Reparation : [HKU\S-1-5-21-4265624635-2019933758-61733912-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar]~[Locked] : 1 -> 0 ---------- | Yandex ---------- | Google Chrome ---------- | Comodo Dragon ---------- | Firefox [jean- | bhow6yjr.default] Remplacement : user_pref("browser.search.defaultenginename", "Google"); -> user_pref("browser.search.defaultenginename", "google"); ---------- | SeaMonkey ---------- | Pale moon ---------- | Opera ---------- | Spark ---------- | StartMenuInternet ---------- | Javascript ---------- | Firewall ---------- | ADS Autre rapport C:\AdsFix_31_12_2016_15_44_32 pc portable win7 avant veille widen.txt[25 Ko] C:\AdsFix_31_12_2016_15_44_32.txt[25 Ko] Analyses : 888156 | Modifications : 11 | Suppressions : 325 ---------- |EOF| ---------- | 14:51:35 | [52 Ko]