---------- | AdsFix | g3n-h@ckm@n | V4_19.03.17.2

----- Vista | 7 | 8 | 8.1 | 10 - 32/64 bits ----- Start 20:28:55 - 19/03/2017

Mis a jour le : 19.03.17.2 | 20.00 par g3n-h@ckm@n
Contact : http://www.sosvirus.net
Assistance : http://www.sosvirus.net/forum-virus-securite.html
Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html
Facebook : https://www.facebook.com/AdsFixAntiAdware
C:\Users\corinne\Desktop\AdsFix.exe
Boot: Normal boot
[corinne (Administrator)] - [LAPTOP-QP72AKNM] -  (france [040C])
SID = S-1-5-21-1396447695-2402169208-1946997637-1001 || [636f72696e6e65205e5e]
PC : Packard Bell - Kaku_BA - Easynote ENLG81BA_1011_1_12
Processor : X64 - 1600 - Intel(R) Celeron(R) CPU  N3050  @ 1.60GHz
Bios : Insyde Corp. - 07/29/2015 - V.V1.12
CoreTemp : 44 C

CPU #1 value:0 %
CPU #2 value:6 %
Total Overall CPU Usage value:3 %

Systeme : Windows 10 Home (64 bits) Core 
Memoire RAM = Total (MB) : 2009 | Libre (MB) : 605
Pagefile = Total (MB) : 4309 | Libre (MB) : 2114
Virtuelle = Total (MB) : 4194 | Libre (MB) : 3928

C:\ -> [Fixed] | [Packard Bell] | Total : 465.16 Go | Free : 422.88 Go -> NTFS [SATA]

Sauvegarde du registre , pour restaurer :  Cliquer sur Options & Restaurer le registre (C:\AdsFix\Save\Registry [19.03.2017 @ 20_28_45]) ou un element
Restauration de fichiers ou dossiers supprimes par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Selectionner un element >> "Restaurer"

---------- | Mises a jour Windows

Windows Is Activated

---------- | Navigateurs

IE : 11.0.14393.953 (© Microsoft Corporation. Tous droits réservés.)
FF : 52.0.1.6284 (©Firefox and Mozilla Developers; available under the MPL 2 license.)
GC : 57.0.2987.110 (Copyright 2016 Google Inc. All rights reserved.)
MS-Edge : 11.0.14393.953 (© Microsoft Corporation. All rights reserved.)

---------- | Security (atcav : 0)

FW : 
WMI : OK
WU: Windows Update Service [Manual(3)] = non en cours
AS: Windows Defender [Auto(2)] = en cours
FW: Windows FireWall Service [Auto(2)] = en cours
WMI: Windows Management Instrumentation (System Information) [Auto(2)] = en cours

---------- | FlashPlayer

ActiveX : 25.0.0.127
Plugin : 25.0.0.127
---------- | AdsFix | g3n-h@ckm@n | V4_19.03.17.2

----- Vista | 7 | 8 | 8.1 | 10 - 32/64 bits ----- Start 20:30:39 - 19/03/2017

Mis a jour le : 19.03.17.2 | 20.00 par g3n-h@ckm@n
Contact : http://www.sosvirus.net
Assistance : http://www.sosvirus.net/forum-virus-securite.html
Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html
Facebook : https://www.facebook.com/AdsFixAntiAdware
C:\Users\corinne\Desktop\AdsFix.exe
Boot: Normal boot
[corinne (Administrator)] - [LAPTOP-QP72AKNM] -  (france [040C])
SID = S-1-5-21-1396447695-2402169208-1946997637-1001 || [636f72696e6e65205e5e]
PC : Packard Bell - Kaku_BA - Easynote ENLG81BA_1011_1_12
Processor : X64 - 1600 - Intel(R) Celeron(R) CPU  N3050  @ 1.60GHz
Bios : Insyde Corp. - 07/29/2015 - V.V1.12
CoreTemp : 47 C

CPU #1 value:0 %
CPU #2 value:0 %
Total Overall CPU Usage value:0 %

Systeme : Windows 10 Home (64 bits) Core 
Memoire RAM = Total (MB) : 2009 | Libre (MB) : 654
Pagefile = Total (MB) : 4309 | Libre (MB) : 2305
Virtuelle = Total (MB) : 4194 | Libre (MB) : 3928

C:\ -> [Fixed] | [Packard Bell] | Total : 465.16 Go | Free : 422.78 Go -> NTFS [SATA]

Sauvegarde du registre , pour restaurer :  Cliquer sur Options & Restaurer le registre (C:\AdsFix\Save\Registry [19.03.2017 @ 20_30_36]) ou un element
Restauration de fichiers ou dossiers supprimes par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Selectionner un element >> "Restaurer"

---------- | Mises a jour Windows

Windows Is Activated

---------- | Navigateurs

IE : 11.0.14393.953 (© Microsoft Corporation. Tous droits réservés.)
FF : 52.0.1.6284 (©Firefox and Mozilla Developers; available under the MPL 2 license.)
GC : 57.0.2987.110 (Copyright 2016 Google Inc. All rights reserved.)
MS-Edge : 11.0.14393.953 (© Microsoft Corporation. All rights reserved.)

---------- | Security (atcav : 0)

FW : 
WMI : OK
WU: Windows Update Service [Manual(3)] = non en cours
AS: Windows Defender [Auto(2)] = en cours
FW: Windows FireWall Service [Auto(2)] = en cours
WMI: Windows Management Instrumentation (System Information) [Auto(2)] = en cours

---------- | FlashPlayer

ActiveX : 25.0.0.127
Plugin : 25.0.0.127
---------- | AdsFix | g3n-h@ckm@n | V4_19.03.17.2

----- Vista | 7 | 8 | 8.1 | 10 - 32/64 bits ----- Start 20:58:33 - 19/03/2017

Mis a jour le : 19.03.17.2 | 20.00 par g3n-h@ckm@n
Contact : http://www.sosvirus.net
Assistance : http://www.sosvirus.net/forum-virus-securite.html
Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html
Facebook : https://www.facebook.com/AdsFixAntiAdware
C:\Users\corinne\Desktop\AdsFix.exe
Boot: Normal boot
[corinne (Administrator)] - [LAPTOP-QP72AKNM] -  (france [040C])
SID = S-1-5-21-1396447695-2402169208-1946997637-1001 || [636f72696e6e65205e5e]
PC : Packard Bell - Kaku_BA - Easynote ENLG81BA_1011_1_12
Processor : X64 - 1600 - Intel(R) Celeron(R) CPU  N3050  @ 1.60GHz
Bios : Insyde Corp. - 07/29/2015 - V.V1.12
CoreTemp : 51 C

CPU #1 value:22 %
CPU #2 value:88 %
Total Overall CPU Usage value:55 %

Systeme : Windows 10 Home (64 bits) Core 
Memoire RAM = Total (MB) : 2009 | Libre (MB) : 221
Pagefile = Total (MB) : 3910 | Libre (MB) : 1413
Virtuelle = Total (MB) : 4194 | Libre (MB) : 3924

C:\ -> [Fixed] | [Packard Bell] | Total : 465.16 Go | Free : 423.1 Go -> NTFS [SATA]

Sauvegarde du registre , pour restaurer :  Cliquer sur Options & Restaurer le registre (C:\AdsFix\Save\Registry [19.03.2017 @ 20_58_13]) ou un element
Restauration de fichiers ou dossiers supprimes par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Selectionner un element >> "Restaurer"

---------- | Mises a jour Windows

Windows Is Activated

---------- | Navigateurs

IE : 11.0.14393.953 (© Microsoft Corporation. Tous droits réservés.)
FF : 52.0.1.6284 (©Firefox and Mozilla Developers; available under the MPL 2 license.)
GC : 57.0.2987.110 (Copyright 2016 Google Inc. All rights reserved.)
MS-Edge : 11.0.14393.953 (© Microsoft Corporation. All rights reserved.)

---------- | Security (atcav : 0)

AV : Windows Defender Enabled
AS : Windows Defender Enabled
FW : 
WMI : OK
WU: Windows Update Service [Manual(3)] = non en cours
AS: Windows Defender [Auto(2)] = en cours
FW: Windows FireWall Service [Auto(2)] = en cours
WMI: Windows Management Instrumentation (System Information) [Auto(2)] = en cours

---------- | FlashPlayer

ActiveX : 25.0.0.127
Plugin : 25.0.0.127

---------- | Processes closed

1336 | [Owner : Système |Parent : 744(services.exe)] - (.Intel Corporation - igfxCUIService Module.) - (6.15.10.4248) = C:\Windows\System32\igfxCUIService.exe
1724 | [Owner : Système |Parent : 744(services.exe)] - (.Microsoft Corporation - Application sous-système spouleur.) - (10.0.14393.953) = C:\Windows\System32\spoolsv.exe
2000 | [Owner : Système |Parent : 744(services.exe)] - (.- AmazonAssistantService.) - (1.0.0.0) = C:\Program Files (x86)\Amazon\Amazon Assistant\amazonAssistantService.exe
2008 | [Owner : Système |Parent : 744(services.exe)] - (.Acer Incorporated - CCD Monitor Service.) - (2.1.3007.0) = C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
2016 | [Owner : Système |Parent : 744(services.exe)] - (.Windows (R) Win 7 DDK provider - Windows Setup API.) - (6.2.9200.16384) = C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
1244 | [Owner : Système |Parent : 744(services.exe)] - (.-.) - (0.0.0.0) = C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
2116 | [Owner : Système |Parent : 744(services.exe)] - (.Microsoft Corporation - Antimalware Service Executable.) - (4.10.14393.953) = C:\Program Files\Windows Defender\MsMpEng.exe
2304 | [Owner : corinne |Parent : 744(services.exe)] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (10.0.14393.0) = C:\Windows\System32\svchost.exe
2648 | [Owner : SERVICE LOCAL |Parent : 744(services.exe)] - (.Microsoft Corporation - PresentationFontCache.exe.) - (3.0.6920.8763) = C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
2792 | [Owner : corinne |Parent : 456(svchost.exe)] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) - (10.0.14393.0) = C:\Windows\System32\taskhostw.exe
3128 | [Owner : Système |Parent : 456(svchost.exe)] - (.Google Inc. - Programme d'installation de Google.) - (1.3.31.5) = C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
3304 | [Owner : corinne |Parent : 2000()] - (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) - (11.0.14393.0) = C:\Windows\System32\mshta.exe
3436 | [Owner : corinne |Parent : 456(svchost.exe)] - (.Acer Incorporate - QAHotkeyPatch.) - (1.0.3000.0) = C:\ProgramData\OEM\CustomHotkey\QAHotkeyPatch.exe
3600 | [Owner : corinne |Parent : 840(svchost.exe)] - (.Microsoft Corporation - SmartScreen.) - (10.0.14393.321) = C:\Windows\System32\smartscreen.exe
3640 | [Owner : corinne |Parent : 2000()] - (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) - (11.0.14393.0) = C:\Windows\System32\mshta.exe
3732 | [Owner : corinne |Parent : 3696()] - (.Intel Corporation - igfxEM Module.) - (6.15.10.4248) = C:\Windows\System32\igfxEM.exe
3748 | [Owner : corinne |Parent : 3696()] - (.Intel Corporation - igfxHK Module.) - (6.15.10.4248) = C:\Windows\System32\igfxHK.exe
3764 | [Owner : corinne |Parent : 3696()] - (.-.) - (0.0.0.0) = C:\Windows\System32\igfxTray.exe
3928 | [Owner : Système |Parent : 744(services.exe)] - (.Acer Incorporated - QASvc.) - (2.0.3005.0) = C:\Program Files\Packard Bell\Packard Bell Quick Access\QASvc.exe
3980 | [Owner : SERVICE LOCAL |Parent : 744(services.exe)] - (.Acer Incorporated - QALSvc.) - (2.0.3005.0) = C:\Program Files\Packard Bell\Packard Bell Quick Access\QALSvc.exe
3256 | [Owner : corinne |Parent : 2000()] - (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) - (11.0.14393.0) = C:\Windows\System32\mshta.exe
3708 | [Owner : SERVICE LOCAL |Parent : 744(services.exe)] - (.Microsoft Corporation - Microsoft Network Realtime Inspection Service.) - (4.10.14393.0) = C:\Program Files\Windows Defender\NisSrv.exe
1752 | [Owner : corinne |Parent : 3444()] - (.Acer Incorporated - QAAgent.) - (2.0.3005.0) = C:\Program Files\Packard Bell\Packard Bell Quick Access\QAAgent.exe
4576 | [Owner : corinne |Parent : 840(svchost.exe)] - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) - (10.0.14393.0) = C:\Windows\System32\rundll32.exe
4692 | [Owner : corinne |Parent : 456(svchost.exe)] - (.- FubTracking.) - (1.0.0.0) = C:\OEM\Preload\FubTracking\FubTracking.exe
4080 | [Owner : corinne |Parent : 2000()] - (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) - (11.0.14393.0) = C:\Windows\System32\mshta.exe
3608 | [Owner : Système |Parent : 744(services.exe)] - (.Acer Incorporated - ePowerSvc.) - (7.0.8109.0) = C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
5168 | [Owner : corinne |Parent : 2000()] - (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) - (11.0.14393.0) = C:\Windows\System32\mshta.exe
5232 | [Owner : Système |Parent : 3928()] - (.Acer Incorporated - QAAdminAgent.) - (2.0.3005.0) = C:\Program Files\Packard Bell\Packard Bell Quick Access\QAAdminAgent.exe
5372 | [Owner : Système |Parent : 3928()] - (.Acer Incorporated - QALockHandler.) - (2.0.3005.0) = C:\Program Files\Packard Bell\Packard Bell Quick Access\QALockHandler.exe
5424 | [Owner : corinne |Parent : 3608()] - (.Acer Incorporated - ePowerTray.) - (7.0.8109.0) = C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe
5776 | [Owner : corinne |Parent : 840(svchost.exe)] - (.Intel Corporation - igfxext Module.) - (6.15.10.4248) = C:\Windows\System32\igfxext.exe
5940 | [Owner : Système |Parent : 3608()] - (.Acer Incorporated - ePowerEvent.) - (7.0.8109.0) = C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerEvent.exe
5684 | [Owner : corinne |Parent : 840(svchost.exe)] - (.Microsoft Corporation - Runtime Broker.) - (10.0.14393.0) = C:\Windows\System32\RuntimeBroker.exe
6276 | [Owner : corinne |Parent : 456(svchost.exe)] - (.Acer Incorporated - Background Agent.) - (1.0.1.7) = C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
6380 | [Owner : corinne |Parent : 456(svchost.exe)] - (.-.) - (0.0.0.0) = C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
6516 | [Owner : corinne |Parent : 840(svchost.exe)] - (.Microsoft Corporation - Host Process for Setting Synchronization.) - (10.0.14393.953) = C:\Windows\System32\SettingSyncHost.exe
6652 | [Owner : Système |Parent : 2008()] - (.Acer Cloud Technology - AcerCloud Client.) - (0.0.0.0) = C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
6680 | [Owner : corinne |Parent : 3492(explorer.exe)] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) - (1.0.0.967) = C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
6760 | [Owner : Système |Parent : 6652(ccd.exe)] - (.Microsoft Corporation - Console Window Host.) - (10.0.14393.0) = C:\Windows\System32\conhost.exe
6792 | [Owner : corinne |Parent : 3492(explorer.exe)] - (.Malwarebytes - Malwarebytes Tray Application.) - (3.0.0.912) = C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
6812 | [Owner : corinne |Parent : 3492(explorer.exe)] - (.Microsoft Corporation - Windows Defender notification icon.) - (4.10.14393.187) = C:\Program Files\Windows Defender\MSASCuiL.exe
6400 | [Owner : corinne |Parent : 840(svchost.exe)] - (.Microsoft Corporation - Background Task Host.) - (10.0.14393.0) = C:\Windows\System32\backgroundTaskHost.exe
7128 | [Owner : corinne |Parent : 3492(explorer.exe)] - (.McAfee, Inc. - McAfee Security Scanner Scheduler.) - (3.11.500.0) = C:\Program Files\McAfee Security Scan\3.11.500\SSScheduler.exe
4140 | [Owner : corinne |Parent : 6764()] - (.- Intel(R) Security Assist.) - (1.0.0.523) = C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
6740 | [Owner : corinne |Parent : 4924()] - (.Piriform Ltd - CCleaner.) - (5.28.0.6005) = C:\Program Files\CCleaner\CCleaner64.exe
1928 | [Owner : corinne |Parent : 2000()] - (.Microsoft Corporation - Hôte des applications HTML de Microsoft(R).) - (11.0.14393.0) = C:\Windows\System32\mshta.exe
3368 | [Owner : corinne |Parent : 840(svchost.exe)] - (.-.) - (11.12.112.0) = C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeHost.exe
4796 | [Owner : corinne |Parent : 456(svchost.exe)] - (.- ACCStd.) - (2.0.3305.0) = C:\Program Files (x86)\Packard Bell\Care Center\ACCStd.exe
7748 | [Owner : corinne |Parent : 6060(firefox.exe)] - (.Mozilla Corporation - Firefox.) - (52.0.1.6284) = C:\Program Files (x86)\Mozilla Firefox\firefox.exe
7364 | [Owner : Système |Parent : 456(svchost.exe)] - (.AVAST Software - avast! SecureLine Update.) - (6.0.999.0) = C:\Program Files\AVAST Software\SecureLine\slupdate.exe
7608 | [Owner : Système |Parent : 744(services.exe)] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host Interface.) - (2.0.0.1062) = C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe
7948 | [Owner : corinne |Parent : 6060(firefox.exe)] - (.Mozilla Corporation - Plugin Container for Firefox.) - (52.0.1.6284) = C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
6440 | [Owner : corinne |Parent : 7948(plugin-container.exe)] - (.Adobe Systems, Inc. - Adobe Flash Player 25.0 r0.) - (25.0.0.127) = C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_25_0_0_127.exe
8132 | [Owner : corinne |Parent : 6440(FlashPlayerPlugin_25_0_0_127.exe)] - (.Adobe Systems, Inc. - Adobe Flash Player 25.0 r0.) - (25.0.0.127) = C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_25_0_0_127.exe
7628 | [Owner : corinne |Parent : 840(svchost.exe)] - (.Microsoft Corporation - Background Task Host.) - (10.0.14393.0) = C:\Windows\System32\backgroundTaskHost.exe
7908 | [Owner : corinne |Parent : 840(svchost.exe)] - (.Microsoft Corporation - Background Task Host.) - (10.0.14393.0) = C:\Windows\System32\backgroundTaskHost.exe
7964 | [Owner : corinne |Parent : 840(svchost.exe)] - (.Microsoft Corporation - Background Task Host.) - (10.0.14393.0) = C:\Windows\System32\backgroundTaskHost.exe
7728 | [Owner : corinne |Parent : 840(svchost.exe)] - (.Microsoft Corporation - Background Task Host.) - (10.0.14393.0) = C:\Windows\System32\backgroundTaskHost.exe
7560 | [Owner : corinne |Parent : 840(svchost.exe)] - (.Microsoft Corporation - Microsoft Outlook Communications.) - (16.0.8008.4200) = C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8008.42007.0_x64__8wekyb3d8bbwe\HxTsr.exe
4292 | [Owner : corinne |Parent : 840(svchost.exe)] - (.Microsoft Corporation - Background Task Host.) - (10.0.14393.0) = C:\Windows\System32\backgroundTaskHost.exe
3200 | [Owner : corinne |Parent : 840(svchost.exe)] - (.Microsoft Corporation - Background Task Host.) - (10.0.14393.0) = C:\Windows\System32\backgroundTaskHost.exe
6964 | [Owner : Système |Parent : 744(services.exe)] - (.Intel Corporation - IntelCpHeciSvc Executable.) - (9.0.31.9000) = C:\Windows\SysWOW64\IntelCpHeciSvc.exe
7976 | [Owner : Système |Parent : 744(services.exe)] - (.acer - UEIPSvc.) - (2.1.3002.0) = C:\Program Files\Packard Bell\User Experience Improvement Program\Framework\UBTService.exe

---------- | Tasks

Suppression : BacKGroundAgent
Suppression : FUBTrackingByPLD
Suppression : QuickAccess Hotkey via PLD


---------- | Services


---------- | AppCertDlls | AppInit_DLLs


---------- | DNSapi.dll

C:\WINDOWS\System32\dnsapi.dll : \drivers\etc\hosts
C:\WINDOWS\SysWOW64\dnsapi.dll : \drivers\etc\hosts

---------- | Hosts


---------- | SafeBoot


---------- | Winsock


---------- | DNS


---------- | Registre

Suppression : HKU\S-1-5-21-1396447695-2402169208-1946997637-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\login.yahoo.com
Suppression : HKU\S-1-5-21-1396447695-2402169208-1946997637-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\yahoo.com
Suppression : HKU\S-1-5-21-1396447695-2402169208-1946997637-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\login.yahoo.com
Suppression : HKU\S-1-5-21-1396447695-2402169208-1946997637-1001\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\yahoo.com
Suppression : [HKU\S-1-5-21-1396447695-2402169208-1946997637-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Program Files\Reimage\Reimage Repair\uninst.exe]
Suppression : [HKU\S-1-5-21-1396447695-2402169208-1946997637-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Program Files (x86)\Security Cleaner llc\System Optimizer\SystemOptimizer.exe]
Suppression : [HKU\S-1-5-21-1396447695-2402169208-1946997637-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Program Files\Reimage\Reimage Protector\uninst.exe]
Suppression : [HKU\S-1-5-21-1396447695-2402169208-1946997637-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Program Files (x86)\PremierOpinion\pmropn32.exe]
Suppression : [HKU\S-1-5-21-1396447695-2402169208-1946997637-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Program Files (x86)\PRO PC Cleaner\uninstall.exe]
Suppression : HKU\S-1-5-18\SOFTWARE\AppDataLow\Software\PasswordBox
Suppression : HKU\S-1-5-21-1396447695-2402169208-1946997637-1001\SOFTWARE\AppDataLow\Software\PasswordBox
Suppression : HKU\S-1-5-21-1396447695-2402169208-1946997637-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{603A25CF-4F41-464E-88EA-2DBAE1A53523} : 1
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\064CC6FBF96E53656BB022D0636BAFF8 : C:\Program Files\SlimService\SlimService.exe
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0800CEA69D2D89054A0AA12E10C70F74 : C:\Program Files\SlimCleaner Plus\locales\pl.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\115F541272442CE5E897A5683E850A35 : C:\Program Files\SlimCleaner Plus\locales\es.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\14EA134D31848DC5F92EA9E1D583F73D : C:\Program Files\SlimCleaner Plus\locales\fa.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\18181EEDB0C84405A9C7C485165063AF : C:\Program Files\SlimService\icudt46l.dat
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1B4943C89AC7C365DB335C84425862B0 : C:\Program Files\SlimCleaner Plus\locales\en-GB.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2BEAA2CE06974C255A30A6AD0459DE0B : C:\Program Files\SlimCleaner Plus\locales\sv.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2F10791AC87C09852B6FE7AEBE8ECB15 : C:\Program Files\SlimCleaner Plus\locales\ja.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3519C284838A7D059A7547C4ECD1BFF3 : C:\Program Files\SlimCleaner Plus\mdp.exe
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3A68C8B335937DB5DA253355C0BD62AF : C:\Program Files\SlimCleaner Plus\locales\fil.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4986AE666A382FA5AA4C6B874E68A16C : C:\Program Files\SlimService\Analyze.MyD
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\58B90119489ECB752BD303C6CE03D680 : C:\Program Files\SlimCleaner Plus\locales\fr.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5A95ABF898811C15DB06B9CAEB12608A : C:\Program Files\SlimCleaner Plus\locales\hr.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5AC51CEC34308C659AAB7B66A1562411 : C:\Program Files\SlimCleaner Plus\locales\tr.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5CDD5A76A2EA65D53B67166F95FEA9B6 : C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6961C65E5945F6E569E51148072E1A81 : C:\Program Files\SlimService\Full.MyD
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6A4D205C8DE0EDB56B5D114EDE9595A0 : C:\Program Files\SlimCleaner Plus\locales\lv.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6C33F1E72CE997C5FB6EA9D051372C1D : C:\Program Files\SlimCleaner Plus\locales\am.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\71893EAD864C0CB518E4F46E65E5B0AD : C:\Program Files\SlimCleaner Plus\locales\sl.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\71A06C5D54431135180E2928EFEB8829 : C:\Program Files\SlimCleaner Plus\locales\ta.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7254D7A5160DC34568388FDF3E004F54 : C:\Program Files\SlimCleaner Plus\locales\it.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\78A37064499AEF551A4603322116A613 : C:\Program Files\SlimService\Quick.MyD
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\79B58F15007FD015BB89A3E1DDBE8BAD : C:\Program Files\SlimCleaner Plus\locales\bg.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DAF2E38AE955E85EA750E4B97937795 : C:\Program Files\SlimCleaner Plus\locales\he.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\847372443FC0E7B54B9192BB2605360C : C:\Program Files\SlimCleaner Plus\locales\lt.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8905F4633A1BE2B56B68B541E6CC3FBE : C:\Program Files\SlimCleaner Plus\default.ui
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\892C0A75E6C91D651A7E769ECD1421DE : C:\Program Files\SlimCleaner Plus\locales\bn.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8E3D5E04A8B9D9350A6F6396AD871CD1 : C:\Program Files\SlimCleaner Plus\locales\zh-CN.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8F498B42C32B56250877018120C4FBEA : C:\Program Files\SlimCleaner Plus\locales\ms.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8FF5DE2A9DFC43755BE74C79464DAE50 : C:\Program Files\SlimCleaner Plus\locales\ro.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\91D9CABA654C0BA54A1DA5B69875C987 : C:\Program Files\SlimCleaner Plus\locales\ru.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9372230666EAD1558BD57702A6655EA1 : C:\Program Files\SlimCleaner Plus\locales\sr.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9F24A853DD30B68569722E1F8C603DFB : C:\Program Files\SlimService\SlimServiceFactory.exe
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A273112D784E6AD5E897595ACCD66663 : C:\Program Files\SlimService\Ssd.MyD
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AAC960E1476460B50AB9FA9B7A40D894 : C:\Program Files\SlimCleaner Plus\locales\gu.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB728EFFEB11A8E5193A936C5D9A1F61 : C:\Program Files\SlimCleaner Plus\locales\hu.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AE5A41BA0BCD1235CB6DBD5AB9BAF037 : C:\Program Files\SlimCleaner Plus\locales\uk.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AEE976918C4B01150884785713C49119 : C:\Program Files\SlimCleaner Plus\locales\th.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B12C0933E3C8BB05A88C30CCDDAA173B : C:\Program Files\SlimCleaner Plus\locales\el.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B2541714C6BC0675ABFBE1FAE52E8595 : C:\Program Files\SlimCleaner Plus\locales\nb.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B37ACD6E1F4D4BF57BB68D386F2712C0 : C:\Program Files\SlimCleaner Plus\locales\ca.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B767CC21737534457A6FA15D395B29CF : C:\Program Files\SlimCleaner Plus\locales\de.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BDEA04EEEBB56DE539A33DFF69388E53 : C:\Program Files\SlimCleaner Plus\locales\pt-BR.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BF74C8199B191215388F5073172BA713 : C:\Program Files\SlimCleaner Plus\locales\es-419.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C874534C40B962C51B5FCBD4AF4EEB94 : C:\Program Files\SlimCleaner Plus\locales\da.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C95F750F3D7FA9D5DBE26AA5B3C0BECF : C:\Program Files\SlimCleaner Plus\UninstallStub.exe
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CF5184B97688B78539A6B91A0071BB96 : C:\Program Files\SlimService\cleaner.db
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D280BE135F4A4DD5D81491CE343FA58D : C:\Program Files\SlimCleaner Plus\locales\te.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D415D57CB636E9550A571F2F19B47A69 : C:\Program Files\SlimCleaner Plus\locales\sw.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D84A2753F7EA3C85BA1F6538FD638ADB : C:\Program Files\SlimCleaner Plus\locales\ar.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DFBB2B840F3BEA951ADAC49B713FC3CE : C:\Program Files\SlimCleaner Plus\locales\cs.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4654F2542983E35F96C1F1F8919FC42 : C:\Program Files\SlimCleaner Plus\locales\fi.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E9FEB4983F37D315CBB3A828B7E96048 : C:\Program Files\SlimService\UnifiedLogger.dll
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EAA7A16901A703553A07CE3C68F4E633 : C:\Program Files\SlimCleaner Plus\locales\hi.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED9E1559DBA72275593B811FA14147F5 : C:\Program Files\SlimCleaner Plus\locales\vi.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EEB4672BEC1D4DD5ABD3B2121A05811F : C:\Program Files\SlimCleaner Plus\locales\pt-PT.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F2D6BF336329AF9518608498DC1092A1 : C:\Program Files\SlimCleaner Plus\locales\id.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F3F13E1C26B16A4589FE33533143F926 : C:\Program Files\SlimCleaner Plus\locales\ml.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F5AF4171CA9B5E75F84EE263B3FE9375 : C:\Program Files\SlimCleaner Plus\locales\zh-TW.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F5E979B4AEED8A35689B97410AFAC35B : C:\Program Files\SlimCleaner Plus\locales\et.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FEA20D1120432D55983293429F70EBDD : C:\Program Files\SlimCleaner Plus\locales\ko.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FF6A41FA1739A3858869B320E53E433B : C:\Program Files\SlimCleaner Plus\locales\mr.pak
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\884BB3934C2952F4299D95C9121AD998 :   [C:\Windows\Installer\518c5e.msi]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Program Files\SlimCleaner Plus\locales\]
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Program Files\SlimService\]
---------- | AdsFix | g3n-h@ckm@n | V4_24.03.17.3

----- Vista | 7 | 8 | 8.1 | 10 - 32/64 bits ----- Start 18:22:23 - 24/03/2017

Mis a jour le : 24/03/2017 | 13.40 (GMT) par g3n-h@ckm@n
Contact : http://www.sosvirus.net
Assistance : http://www.sosvirus.net/forum-virus-securite.html
Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html
Facebook : https://www.facebook.com/AdsFixAntiAdware
C:\Users\corinne\Desktop\AdsFix.exe
Boot: Normal boot
[corinne (Administrator)] - [LAPTOP-QP72AKNM] -  (FRANCE [040C])
SID = S-1-5-21-1396447695-2402169208-1946997637-1001 || [636f72696e6e65205e5e]
PC : Packard Bell - Kaku_BA - Easynote ENLG81BA_1011_1_12
Processor : X64 - 1600 - Intel(R) Celeron(R) CPU  N3050  @ 1.60GHz
Bios : Insyde Corp. - 07/29/2015 - V.V1.12
CoreTemp : 46 C

CPU #1 value:87 %
CPU #2 value:44 %
Total Overall CPU Usage value:65 %

Systeme : Windows 10 Home (64 bits) Core 
Memoire RAM = Total (MB) : 2009 | Libre (MB) : 518
Pagefile = Total (MB) : 4106 | Libre (MB) : 2022
Virtuelle = Total (MB) : 4194 | Libre (MB) : 3915

C:\ -> [Fixed] | [Packard Bell] | Total : 465.16 Go | Free : 426.86 Go -> NTFS [SATA]

Sauvegarde du registre , pour restaurer :  Cliquer sur Options & Restaurer le registre (C:\AdsFix\Save\Registry [24.03.2017 @ 18_22_15]) ou un element
Restauration de fichiers ou dossiers supprimes par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Selectionner un element >> "Restaurer"

---------- | Mises a jour Windows

Windows Is Activated

---------- | Navigateurs

IE : 11.0.14393.953 (© Microsoft Corporation. Tous droits réservés.)
FF : 52.0.1.6284 (©Firefox and Mozilla Developers; available under the MPL 2 license.)
GC : 57.0.2987.110 (Copyright 2016 Google Inc. All rights reserved.)
MS-Edge : 11.0.14393.953 (© Microsoft Corporation. All rights reserved.)

---------- | Security (atcav : 3)

AV : Windows Defender Enabled
AS : Windows Defender Enabled
FW : 
WMI : OK
WU: Windows Update Service [Manual(3)] = non en cours
AS: Windows Defender [Auto(2)] = en cours
FW: Windows FireWall Service [Auto(2)] = en cours
WMI: Windows Management Instrumentation (System Information) [Auto(2)] = en cours

---------- | FlashPlayer

ActiveX : 25.0.0.127
Plugin : 25.0.0.127

---------- | Processes closed

1356 | [Owner : Système |Parent : 736(services.exe)] - (.Intel Corporation - igfxCUIService Module.) - (6.15.10.4248) = C:\Windows\System32\igfxCUIService.exe
1740 | [Owner : Système |Parent : 736(services.exe)] - (.Microsoft Corporation - Application sous-système spouleur.) - (10.0.14393.953) = C:\Windows\System32\spoolsv.exe
1388 | [Owner : Système |Parent : 736(services.exe)] - (.Windows (R) Win 7 DDK provider - Windows Setup API.) - (6.2.9200.16384) = C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
2176 | [Owner : Système |Parent : 736(services.exe)] - (.Acer Incorporated - CCD Monitor Service.) - (2.1.3007.0) = C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
2188 | [Owner : Système |Parent : 736(services.exe)] - (.Microsoft Corporation - Antimalware Service Executable.) - (4.10.14393.953) = C:\Program Files\Windows Defender\MsMpEng.exe
2196 | [Owner : Système |Parent : 736(services.exe)] - (.-.) - (0.0.0.0) = C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
2456 | [Owner : Système |Parent : 736(services.exe)] - (.Reimage® - Reimage Real Time Protection.) - (2.0.1.6) = C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe
3352 | [Owner : Système |Parent : 2456()] - (.Reimage® - Reimage System Protection.) - (2.0.1.6) = C:\Program Files\Reimage\Reimage Protector\ReiSystem.exe
3792 | [Owner : corinne |Parent : 736(services.exe)] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (10.0.14393.0) = C:\Windows\System32\svchost.exe
3908 | [Owner : corinne |Parent : 536(svchost.exe)] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) - (10.0.14393.0) = C:\Windows\System32\taskhostw.exe
4016 | [Owner : SERVICE LOCAL |Parent : 736(services.exe)] - (.Microsoft Corporation - PresentationFontCache.exe.) - (3.0.6920.8763) = C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
1564 | [Owner : corinne |Parent : 824(svchost.exe)] - (.Microsoft Corporation - Runtime Broker.) - (10.0.14393.0) = C:\Windows\System32\RuntimeBroker.exe
3764 | [Owner : SERVICE LOCAL |Parent : 736(services.exe)] - (.Microsoft Corporation - Microsoft Network Realtime Inspection Service.) - (4.10.14393.0) = C:\Program Files\Windows Defender\NisSrv.exe
3080 | [Owner : Système |Parent : 736(services.exe)] - (.Acer Incorporated - QASvc.) - (2.0.3005.0) = C:\Program Files\Packard Bell\Packard Bell Quick Access\QASvc.exe
4120 | [Owner : SERVICE LOCAL |Parent : 736(services.exe)] - (.Acer Incorporated - QALSvc.) - (2.0.3005.0) = C:\Program Files\Packard Bell\Packard Bell Quick Access\QALSvc.exe
4980 | [Owner : corinne |Parent : 4716()] - (.Intel Corporation - igfxEM Module.) - (6.15.10.4248) = C:\Windows\System32\igfxEM.exe
5068 | [Owner : corinne |Parent : 4716()] - (.Intel Corporation - igfxHK Module.) - (6.15.10.4248) = C:\Windows\System32\igfxHK.exe
5112 | [Owner : corinne |Parent : 4716()] - (.-.) - (0.0.0.0) = C:\Windows\System32\igfxTray.exe
5536 | [Owner : Système |Parent : 736(services.exe)] - (.Acer Incorporated - ePowerSvc.) - (7.0.8109.0) = C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
5696 | [Owner : corinne |Parent : 824(svchost.exe)] - (.Microsoft Corporation - Host Process for Setting Synchronization.) - (10.0.14393.953) = C:\Windows\System32\SettingSyncHost.exe
5816 | [Owner : corinne |Parent : 5536()] - (.Acer Incorporated - ePowerTray.) - (7.0.8109.0) = C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe
5924 | [Owner : corinne |Parent : 824(svchost.exe)] - (.Intel Corporation - igfxext Module.) - (6.15.10.4248) = C:\Windows\System32\igfxext.exe
6056 | [Owner : Système |Parent : 5536()] - (.Acer Incorporated - ePowerEvent.) - (7.0.8109.0) = C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerEvent.exe
6112 | [Owner : corinne |Parent : 3888(explorer.exe)] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) - (1.0.0.967) = C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
1000 | [Owner : corinne |Parent : 3888(explorer.exe)] - (.Malwarebytes - Malwarebytes Tray Application.) - (3.0.0.912) = C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
1796 | [Owner : corinne |Parent : 3888(explorer.exe)] - (.Microsoft Corporation - Windows Defender notification icon.) - (4.10.14393.187) = C:\Program Files\Windows Defender\MSASCuiL.exe
3364 | [Owner : corinne |Parent : 3888(explorer.exe)] - (.McAfee, Inc. - McAfee Security Scanner Scheduler.) - (3.11.500.0) = C:\Program Files\McAfee Security Scan\3.11.500\SSScheduler.exe
3488 | [Owner : corinne |Parent : 3864()] - (.Acer Incorporated - QAAgent.) - (2.0.3005.0) = C:\Program Files\Packard Bell\Packard Bell Quick Access\QAAgent.exe
5212 | [Owner : corinne |Parent : 2416()] - (.- Intel(R) Security Assist.) - (1.0.0.523) = C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
3528 | [Owner : corinne |Parent : 4432()] - (.Piriform Ltd - CCleaner.) - (5.28.0.6005) = C:\Program Files\CCleaner\CCleaner64.exe
1572 | [Owner : Système |Parent : 3080()] - (.Acer Incorporated - QAAdminAgent.) - (2.0.3005.0) = C:\Program Files\Packard Bell\Packard Bell Quick Access\QAAdminAgent.exe
5200 | [Owner : Système |Parent : 3080()] - (.Acer Incorporated - QALockHandler.) - (2.0.3005.0) = C:\Program Files\Packard Bell\Packard Bell Quick Access\QALockHandler.exe
5984 | [Owner : corinne |Parent : 3456()] - (.-.) - (0.0.0.0) = C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
1352 | [Owner : Système |Parent : 2176()] - (.Acer Cloud Technology - AcerCloud Client.) - (0.0.0.0) = C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
6576 | [Owner : corinne |Parent : 824(svchost.exe)] - (.-.) - (11.12.112.0) = C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeHost.exe
6328 | [Owner : Système |Parent : 736(services.exe)] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host Interface.) - (2.0.0.1062) = C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe
3672 | [Owner : corinne |Parent : 536(svchost.exe)] - (.- ACCStd.) - (2.0.3305.0) = C:\Program Files (x86)\Packard Bell\Care Center\ACCStd.exe
5912 | [Owner : Système |Parent : 736(services.exe)] - (.acer - UEIPSvc.) - (2.1.3002.0) = C:\Program Files\Packard Bell\User Experience Improvement Program\Framework\UBTService.exe
3876 | [Owner : corinne |Parent : 824(svchost.exe)] - (.Microsoft Corporation - SmartScreen.) - (10.0.14393.321) = C:\Windows\System32\smartscreen.exe

---------- | Tasks

Suppression : Reimage Reminder
Suppression : ReimageUpdater
Suppression : CreateExplorerShellUnelevatedTask


---------- | Services

Suppression : ReimageRealTimeProtector : C:\Program Files\Reimage\Reimage Protector\ReiGuard.exe

---------- | AppCertDlls | AppInit_DLLs


---------- | DNSapi.dll

C:\WINDOWS\System32\dnsapi.dll : \drivers\etc\hosts
C:\WINDOWS\SysWOW64\dnsapi.dll : \drivers\etc\hosts

---------- | Hosts


---------- | SafeBoot


---------- | Winsock


---------- | DNS


---------- | Registre

Suppression : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine : ReiEngine Class 
Suppression : HKLM\SOFTWARE\Classes\REI_AxControl.ReiEngine.1 : ReiEngine Class 
Suppression : HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL :  # 
Suppression : HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A} : REI_AxControl # 
Suppression : HKLM\SOFTWARE\Classes\CLSID\{10ECCE17-29B5-4880-A8F5-EAD298611484} : C:\Program Files\Reimage\Reimage Repair\REI_Axcontrol.dll
Suppression : HKLM\SOFTWARE\Classes\CLSID\{801B440B-1EE3-49B0-B05D-2AB076D4E8CB} : C:\Program Files\Reimage\Reimage Repair\REI_Axcontrol.dll # 
Suppression : HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36} :  # C:\Program Files\Reimage\Reimage Repair\REI_Axcontrol.dll
Suppression : HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4} : {FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4} : {FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
Suppression : HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546} : {FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
Suppression : HKLM\Software\Classes\WOW6432Node\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546} : {FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
Suppression : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Reimage.exe
Suppression : [HKU\S-1-5-21-1396447695-2402169208-1946997637-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Program Files (x86)\PremierOpinion\pmropn64.exe]
Suppression : [HKU\S-1-5-21-1396447695-2402169208-1946997637-1001\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]~[C:\Program Files (x86)\PremierOpinion\pmropn.exe]
Suppression : HKU\S-1-5-21-1396447695-2402169208-1946997637-1001\SOFTWARE\Reimage
Suppression : HKU\S-1-5-21-1396447695-2402169208-1946997637-1001\Software\Local AppWizard-Generated Applications\Reimage - Windows Problem Relief.
Suppression : HKLM\SOFTWARE\Reimage
Suppression : [HKU\S-1-5-21-1396447695-2402169208-1946997637-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]~[DefaultScope] : {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Suppression : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]~[DefaultScope]
Suppression : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes]~[DefaultScope]
Suppression : HKU\S-1-5-21-1396447695-2402169208-1946997637-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} : 1
Suppression : HKU\S-1-5-21-1396447695-2402169208-1946997637-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{96BBC430-9900-4299-9F5D-7951AB36EFDF} : 1
Suppression : HKU\S-1-5-21-1396447695-2402169208-1946997637-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3A6C4DC1239161F5686111D17E20DA43 : C:\Program Files\SlimCleaner Plus\main.ui
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B7730A18138EF2A559EFF699ADAD920D : C:\Program Files\SlimCleaner Plus\locales\kn.pak
Suppression : [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders]~[C:\Program Files\SlimCleaner Plus\]
Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Reimage Repair : (Reimage Repair) C:\Program Files\Reimage\Reimage Repair\uninst.exe -> C:\Program Files\Reimage\Reimage Repair

---------- | Dossiers | Fichiers

Suppression : C:\Program Files\Reimage
Suppression : C:\Users\Public\Desktop\PC Scan & Repair by Reimage.lnk (.-.) C:\Program Files\Reimage\Reimage Repair\ReimageRepair.exe
Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reimage Repair\Reimage Repair.lnk (.-.) 
Suppression : C:\Users\corinne\Downloads\printcreations_softonic_tbyb_all.exe (  .-.Print Creations   ) stub32i.exe 
Suppression : C:\Users\corinne\Downloads\ReimageRepair.exe (© Reimage 2016.-.Reimage Repair) 
Suppression : C:\ProgramData\Reimage Protector
Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programmes\Reimage Repair
Suppression : C:\WINDOWS\Reimage.ini (.-.) 
Suppression : C:\rei
Suppression : C:\WINDOWS\Installer\518c5e.msi (.-.)  -> (SlimCleaner Plus - Slimware Utilities Holdings, Inc.)
Suppression : C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk (.-.) 
Suppression : C:\Program Files\McAfee Security Scan
Suppression : C:\ProgramData\McAfee Security Scan
Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk (.-.) 

---------- | .LNK


---------- | Ouverture extension inconnue


---------- | Proxy


---------- | Internet Explorer

Reparation : [HKU\S-1-5-21-1396447695-2402169208-1946997637-1001\SOFTWARE\Microsoft\Internet Explorer\Main]~[Search Bar] : Preserve -> https://www.google.com/
Reparation : [HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main]~[Local Page] : %11%\blank.htm -> C:\WINDOWS\System32\blank.htm
Reparation : [HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main]~[Local Page] : %11%\blank.htm -> C:\WINDOWS\System32\blank.htm
Reparation : [HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Main]~[Local Page] : C:\Windows\SysWOW64\blank.htm -> C:\WINDOWS\System32\blank.htm
Reparation : [HKU\S-1-5-21-1396447695-2402169208-1946997637-1001\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter]~[Enabled] :  -> 2
Reparation : [HKU\S-1-5-21-1396447695-2402169208-1946997637-1001\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter]~[EnabledV8] :  -> 1
Reparation : [HKU\S-1-5-21-1396447695-2402169208-1946997637-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings]~[WarNonBadCertReceving] :  -> 1
Reparation : [HKU\S-1-5-21-1396447695-2402169208-1946997637-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings]~[WarNonHTTPSToHTTPRedirect] :  -> 1
Reparation : [HKU\S-1-5-21-1396447695-2402169208-1946997637-1001\SOFTWARE\Microsoft\Internet Explorer\Toolbar]~[Locked] : 1 -> 0

---------- | Yandex



---------- | Google Chrome

Suppression : C:\Users\corinne\AppData\Local\Google\Chrome\User Data\Default\Web Data (.-.) Remis a zero avec succes : SearchURL
Suppression : C:\Users\corinne\AppData\Local\Google\Chrome\User Data\Default\Preferences (.-.) Remis a zero avec succes : Preferences 
Suppression : C:\Users\corinne\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (.-.) Remis a zero avec succes : Preferences 

C:\Users\corinne\AppData\Local\Google\Chrome\User Data\Default\extensions\aapocclcgogkmnckokdopfmhonfmgoek =  : Google & co - Google & co - https://clients2.google.com/service/update2/crx
C:\Users\corinne\AppData\Local\Google\Chrome\User Data\Default\extensions\aohghmighlieiainnegkcijnfilokake =  : Create share and access your Google Docs from anywhere. - Docs - http://clients2.google.com/service/update2/crx
C:\Users\corinne\AppData\Local\Google\Chrome\User Data\Default\extensions\apdfllckaahabafndbhieahigkjlhalf =  : Google & co - https://drive.google.com/ - Google & co - [http://docs.google.com/http://drive.google.com/https://docs.google.com/https://drive.google.com/] - http://clients2.google.com/service/update2/crx
C:\Users\corinne\AppData\Local\Google\Chrome\User Data\Default\extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo =  : Google & co - http://www.youtube.com - http://www.youtube.com/ - Google & co - http://clients2.google.com/service/update2/crx
C:\Users\corinne\AppData\Local\Google\Chrome\User Data\Default\extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi =  : __MSG_extDesc__ - __MSG_extName__ - https://clients2.google.com/service/update2/crx
C:\Users\corinne\AppData\Local\Google\Chrome\User Data\Default\extensions\nmmhkkegccagdldgiimedpiccmgmieda =  : Google & co - Google & co - 203784468217.apps.googleusercontent.com - https://clients2.google.com/service/update2/crx
C:\Users\corinne\AppData\Local\Google\Chrome\User Data\Default\extensions\pjkljhegncpnkpknbcohdijeoejaedia =  : Google & co - https://mail.google.com/mail/ca - Google & co - [*://mail.google.com/mail/ca] - http://clients2.google.com/service/update2/crx

---------- | Comodo Dragon



---------- | Firefox

[corinne | fyawiakq.default-1473971058050] Suppression : user_pref("media.gmp-widevinecdm.abi", "x86-msvc-x64");
[corinne | fyawiakq.default-1473971058050] Suppression : user_pref("media.gmp-widevinecdm.version", "1.4.8.903");


---------- | SeaMonkey



---------- | Pale moon



---------- | Opera



---------- | Spark



---------- | StartMenuInternet


---------- | Javascript


---------- | Firewall


---------- | ADS


Autre rapport


Analyses : 368064 | Modifications : 9 | Suppressions : 52

---------- |EOF| ---------- | 23:31:59 | [51 Ko]