Restaure : C:\Program Files\Lavasoft Restaure : C:\ProgramData\Lavasoft Restaure : C:\Program Files\Common Files\Lavasoft Restaure : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft Restaure : C:\Users\barrow 2 & widen\AppData\Roaming\Lavasoft ---------- | AdsFix | g3n-h@ckm@n | 3_09.11.2016.1 ----- Vista | 7 | 8 | 8.1 | 10 - 32/64 bits ----- Start 10:32:45 - 09/11/2016 Mis a jour le : 09/11/2016 |01.50 par g3n-h@ckm@n Contact : http://www.sosvirus.net Assistance : http://www.sosvirus.net/forum-virus-securite.html Feedbacks : http://www.sosvirus.net/feedbacks-t75915.html Facebook : https://www.facebook.com/AdsFixAntiAdware C:\Users\Power2Go 11 promo\Desktop\adsfix_3_09.11.2016.1.exe Boot: Normal boot [Power2Go 11 promo (Administrator)] - [BARROW2ETWIDEN] - (France [040C]) SID = S-1-5-21-1541472888-895532398-2178115478-1001 || [506f77657232476f2031312070726f6d6f205e5e] PC : Acer - JE02_PT - NetTopSku Processor : X64 - 1662 - Intel(R) Atom(TM) CPU N450 @ 1.66GHz Bios : Acer - 10/07/2010 - V.V3.08(DDR2) CoreTemp : 61 C CPU #1 value:100 % CPU #2 value:100 % Total Overall CPU Usage value:100 % Systeme : Windows 7 Starter (32 bits) Starter Service Pack 1 Memoire RAM = Total (MB) : 1037 | Libre (MB) : 128 Pagefile = Total (MB) : 2379 | Libre (MB) : 245 Virtuelle = Total (MB) : 2097 | Libre (MB) : 1923 C:\ -> [Fixed] | [Acer] | Total : 215.78 Go | Free : 98.22 Go -> NTFS [ATA] E:\ -> [Removable] | [PARTED MAGI] | Total : 57.89 Go | Free : 39.12 Go -> FAT32 [USB] G:\ -> [Removable] | [COMPANION] | Total : 30.02 Go | Free : 1.71 Go -> FAT32 [USB] H:\ -> [Removable] | [CLONEZILLA] | Total : 1.86 Go | Free : 0.2 Go -> FAT32 [USB] I:\ -> [Removable] | [UUI] | Total : 7.26 Go | Free : 0.27 Go -> FAT32 [USB] L:\ -> [Removable] | [HITMANPRO] | Total : 57.55 Go | Free : 26.33 Go -> FAT32 [USB] M:\ -> [Removable] | [FRAMAKEY SA] | Total : 28.78 Go | Free : 11.29 Go -> FAT32 [USB] O:\ -> [Removable] | [PARTED MAGI] | Total : 15 Go | Free : 1.15 Go -> FAT32 [USB] Q:\ -> [Removable] | [FramaLive] | Total : 14.41 Go | Free : 3.17 Go -> FAT32 [USB] R:\ -> [Removable] | [PARTED MAGI] | Total : 3.74 Go | Free : 0.43 Go -> FAT32 [USB] S:\ -> [Removable] | [PartedMagic] | Total : 59.5 Go | Free : 53.05 Go -> exFAT [USB] V:\ -> [Removable] | [FRAMAKEY UB] | Total : 57.64 Go | Free : 53.06 Go -> FAT32 [USB] Sauvegarde du registre , pour restaurer : Cliquer sur Options & Restaurer le registre (C:\AdsFix\Save\Registry [09.11.2016 @ 10_32_08]) ou un element Restauration de fichiers ou dossiers supprimes par erreur : Cliquer sur Options & Restaurer Fichiers ou dossiers, Selectionner un element >> "Restaurer" ---------- | Mises a jour Windows Derniere(s) detection(s) : 2016-11-09 01:34:51 Dernieres Telechargees : 2016-11-09 01:50:24 Dernieres installees : 2016-11-09 02:19:11 Prochaine recherche : 2016-11-09 22:01:10 ---------- | Navigateurs IE : 11.0.9600.18523 (© Microsoft Corporation. Tous droits réservés.) FF : 49.0.2.6136 (©Firefox and Mozilla Developers; available under the MPL 2 license.) GC : 54.0.2840.87 (Copyright 2016 Google Inc. All rights reserved.) ---------- | Security (atcav : 0) AV : COMODO Cloud Antivirus Disabled AS : Windows Defender Disabled AM : Malwarebytes' Anti-Malware (2.3.173.0) [Update : 04/11/2016 07:41:32] FW : WMI : OK WU: Windows Update Service [Auto(2)] = non en cours AS: Windows Defender [Manual(3)] = non en cours FW: Windows FireWall Service [Auto(2)] = en cours WMI: Windows Management Instrumentation (System Information) [Auto(2)] = en cours ---------- | FlashPlayer ActiveX : 23.0.0.205 ---------- | Processes closed 888 | [Owner : Système |Parent : 684(services.exe)] - (.Comodo Security Solutions, Inc. - livePCsupport Component.) - (4.0.0.0) = C:\Program Files\Common Files\COMODO\launcher_service.exe 1464 | [Owner : Système |Parent : 684(services.exe)] - (.Microsoft Corporation - Application sous-système spouleur.) - (6.1.7601.17777) = C:\Windows\System32\spoolsv.exe 1660 | [Owner : Système |Parent : 684(services.exe)] - (.Comodo - Chromodo.) - (1.0.0.1) = C:\Program Files\COMODO\Chromodo\chromodo_updater.exe 1896 | [Owner : Système |Parent : 684(services.exe)] - (.Comodo - Comodo Dragon.) - (1.0.0.1) = C:\Program Files\COMODO\Dragon\dragon_updater.exe 1936 | [Owner : Système |Parent : 684(services.exe)] - (.Dritek System Inc. - Dritek WMI Service.) - (2.8.0.854) = C:\Program Files\Launch Manager\dsiwmis.exe 1552 | [Owner : Système |Parent : 684(services.exe)] - (.CHENGDU YIWO Tech Development Co., Ltd - EaseUS Todo Backup Agent Application.) - (5.0.0.1) = C:\Program Files\EaseUS\Todo Backup\bin\Agent.exe 1560 | [Owner : Système |Parent : 684(services.exe)] - (.Acer Incorporated - ePowerSvc.) - (5.0.3005.0) = C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe 2084 | [Owner : Système |Parent : 684(services.exe)] - (.Comodo Security Solutions, Inc. - GeekBuddy Remote Screen Protocol Server.) - (4.2.7.1) = C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe 2280 | [Owner : Système |Parent : 684(services.exe)] - (.Acer Incorporated - Global Registration Service.) - (1.0.0.1) = C:\Program Files\Acer\Registration\GREGsvc.exe 2312 | [Owner : Système |Parent : 684(services.exe)] - (.COMODO - Internet Security Essentials.) - (1.1.7388.29) = C:\Program Files\COMODO\Internet Security Essentials\isesrv.exe 2424 | [Owner : Système |Parent : 684(services.exe)] - (.Acer Incorporated - Updater Service.) - (1.2.3502.0) = C:\Program Files\Acer\Acer Updater\UpdaterService.exe 2460 | [Owner : Système |Parent : 684(services.exe)] - (.Bitdefender - 60-Second Scan Service.) - (1.0.3.71) = C:\Program Files\Bitdefender\60-Second Virus Scanner\pdscan.exe 2512 | [Owner : Système |Parent : 1552(Agent.exe)] - (.-.) - (0.0.0.0) = C:\Program Files\EaseUS\Todo Backup\bin\TodoBackupService.exe 2696 | [Owner : Système |Parent : 684(services.exe)] - (.Acer Incorporated - Raw Socket Service.) - (4.5.3000.9285) = C:\Program Files\Acer\Acer VCM\RS_Service.exe 2840 | [Owner : Système |Parent : 684(services.exe)] - (.RaMMicHaeL - Unchecky Service.) - (1.0.1.0) = C:\Program Files\Unchecky\bin\unchecky_svc.exe 2868 | [Owner : Système |Parent : 684(services.exe)] - (.Acer Incorporated - Updater Service.) - (1.2.3502.0) = C:\Program Files\Acer\Acer Updater\UpdaterService.exe 3740 | [Owner : Système |Parent : 684(services.exe)] - (.Microsoft Corporation - Service de disque virtuel.) - (6.1.7601.17514) = C:\Windows\System32\vds.exe 3148 | [Owner : SERVICE LOCAL |Parent : 1064(svchost.exe)] - (.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes en mode utilisateur.) - (6.2.9200.16384) = C:\Windows\System32\WUDFHost.exe 3368 | [Owner : Système |Parent : 684(services.exe)] - (.Intel Corporation - IAStorDataSvc.) - (11.1.5.1001) = C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe 5084 | [Owner : Power2Go 11 promo |Parent : 684(services.exe)] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) - (6.1.7601.18010) = C:\Windows\System32\taskhost.exe 5200 | [Owner : Power2Go 11 promo |Parent : 2840()] - (.RaMMicHaeL - Unchecky Background Process.) - (1.0.1.0) = C:\Program Files\Unchecky\bin\unchecky_bg.exe 3728 | [Owner : Système |Parent : 5512()] - (.Panda Security - USB Vaccine.) - (1.0.1.16) = C:\Program Files\Panda USB Vaccine\USBVaccine.exe 4964 | [Owner : Power2Go 11 promo |Parent : 5280(explorer.exe)] - (.Dritek System Inc. - Launch Manager.) - (4.0.14.854) = C:\Program Files\Launch Manager\LManager.exe 4836 | [Owner : Power2Go 11 promo |Parent : 5280(explorer.exe)] - (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) - (1.0.0.556) = C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe 5572 | [Owner : Power2Go 11 promo |Parent : 5280(explorer.exe)] - (.Egis Technology Inc. - PMM Update Application.) - (1.1.34.0) = C:\Program Files\EgisTec IPS\PmmUpdate.exe 1192 | [Owner : Power2Go 11 promo |Parent : 1936()] - (.Dritek System Inc. - Launch Manager Worker.) - (1.9.0.854) = C:\Program Files\Launch Manager\LMworker.exe 5460 | [Owner : Power2Go 11 promo |Parent : 5280(explorer.exe)] - (.Egis Technology Inc. - MyWinLocker.) - (3.1.212.0) = C:\Program Files\EgisTec MyWinLocker\x86\mwlDaemon.exe 4136 | [Owner : Power2Go 11 promo |Parent : 5280(explorer.exe)] - (.Intel Corporation - igfxTray Module.) - (8.14.10.2117) = C:\Windows\System32\igfxtray.exe 3960 | [Owner : Power2Go 11 promo |Parent : 5904()] - (.Egis Technology Inc. - EgisUpdate Release Application.) - (1.1.34.0) = C:\Program Files\EgisTec IPS\EgisUpdate.exe 5072 | [Owner : Power2Go 11 promo |Parent : 5280(explorer.exe)] - (.Intel Corporation - hkcmd Module.) - (8.14.10.2117) = C:\Windows\System32\hkcmd.exe 4552 | [Owner : Power2Go 11 promo |Parent : 828(svchost.exe)] - (.Intel Corporation - igfxsrvc Module.) - (8.14.10.2117) = C:\Windows\System32\igfxsrvc.exe 5452 | [Owner : Power2Go 11 promo |Parent : 5280(explorer.exe)] - (.Intel Corporation - persistence Module.) - (8.14.10.2117) = C:\Windows\System32\igfxpers.exe 4628 | [Owner : Power2Go 11 promo |Parent : 5280(explorer.exe)] - (.ELAN Microelectronics Corp. - ETD Control Center.) - (10.0.0.105) = C:\Program Files\Elantech\ETDCtrl.exe 4636 | [Owner : Power2Go 11 promo |Parent : 5280(explorer.exe)] - (.- DefaultSettingEXE MFC Application.) - (1.1.0.1) = C:\Windows\PLFSetI.exe 5636 | [Owner : Power2Go 11 promo |Parent : 5280(explorer.exe)] - (.Insyde Software Corp. - Sync Data.) - (1.1.1.1016) = C:\Program Files\Acer\Android Manager\iSync.exe 4796 | [Owner : Power2Go 11 promo |Parent : 5280(explorer.exe)] - (.Insyde Software Corp. - Acer Updater for Android™.) - (1.1.1.1019) = C:\Program Files\Acer\Updater\iUpdate.exe 3012 | [Owner : Power2Go 11 promo |Parent : 5280(explorer.exe)] - (.Acer Incorporated - ePowerTray.) - (5.0.3005.0) = C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe 5784 | [Owner : Power2Go 11 promo |Parent : 5280(explorer.exe)] - (.-.) - (11.12.945.9202) = C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.12.945.9202\AdAwareTray.exe 3492 | [Owner : Power2Go 11 promo |Parent : 5280(explorer.exe)] - (.Wondershare - Wondershare Studio.) - (2.5.0.0) = C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe 5508 | [Owner : Power2Go 11 promo |Parent : 5280(explorer.exe)] - (.CHENGDU YIWO Tech Development Co., Ltd - EaseUS Partition Master Free Edition Application.) - (1.0.0.1) = C:\Program Files\EaseUS\EaseUS Partition Master 11.9\bin\EpmNews.exe 5236 | [Owner : Power2Go 11 promo |Parent : 5280(explorer.exe)] - (.CHENGDU Yiwo Tech Development Co., Ltd. - CleanUpUI Application.) - (11.0.0.0) = C:\Program Files\EaseUS\EaseUS Partition Master 11.9\bin\CleanUpUI.exe 2804 | [Owner : Power2Go 11 promo |Parent : 780()] - (.Intel Corporation - IAStorIcon.) - (11.1.5.1001) = C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe 4520 | [Owner : Power2Go 11 promo |Parent : 828(svchost.exe)] - (.Intel Corporation - igfxext Module.) - (8.14.10.2117) = C:\Windows\System32\igfxext.exe 4348 | [Owner : Système |Parent : 1560()] - (.Acer Incorporated - ePowerEvent.) - (5.0.3005.0) = C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe 5596 | [Owner : Power2Go 11 promo |Parent : 5280(explorer.exe)] - (.COMODO - Internet Security Essentials.) - (1.1.7388.29) = C:\Program Files\COMODO\Internet Security Essentials\vkise.exe 800 | [Owner : Power2Go 11 promo |Parent : 5280(explorer.exe)] - (.Acer Incorporated - Acer VCM.) - (4.5.3006.62) = C:\Program Files\Acer\Acer VCM\AcerVCM.exe 5436 | [Owner : Power2Go 11 promo |Parent : 4628()] - (.ELAN Microelectronics Corp. - ETD Control Center Helper.) - (10.0.0.69) = C:\Program Files\Elantech\ETDCtrlHelper.exe 2020 | [Owner : Power2Go 11 promo |Parent : 5280(explorer.exe)] - (.Comodo - Chromodo.) - (52.15.25.665) = C:\Program Files\COMODO\Chromodo\chromodo.exe 1316 | [Owner : Power2Go 11 promo |Parent : 2020(chromodo.exe)] - (.Comodo - Chromodo.) - (52.15.25.665) = C:\Program Files\COMODO\Chromodo\chromodo.exe 4996 | [Owner : Power2Go 11 promo |Parent : 2020(chromodo.exe)] - (.Comodo - Chromodo.) - (52.15.25.665) = C:\Program Files\COMODO\Chromodo\chromodo.exe 5176 | [Owner : Power2Go 11 promo |Parent : 2020(chromodo.exe)] - (.Comodo - Chromodo.) - (52.15.25.665) = C:\Program Files\COMODO\Chromodo\chromodo.exe 6060 | [Owner : Power2Go 11 promo |Parent : 2020(chromodo.exe)] - (.Comodo - Chromodo.) - (52.15.25.665) = C:\Program Files\COMODO\Chromodo\chromodo.exe 4904 | [Owner : Power2Go 11 promo |Parent : 2020(chromodo.exe)] - (.Comodo - Chromodo.) - (52.15.25.665) = C:\Program Files\COMODO\Chromodo\chromodo.exe 5256 | [Owner : Power2Go 11 promo |Parent : 684(services.exe)] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) - (6.1.7601.18010) = C:\Windows\System32\taskhost.exe 5828 | [Owner : Power2Go 11 promo |Parent : 5280(explorer.exe)] - (.Mozilla Corporation - Firefox.) - (49.0.2.6136) = C:\Program Files\Mozilla Firefox\firefox.exe 8100 | [Owner : Système |Parent : 684(services.exe)] - (.VoiceFive, Inc. - PremierOpinion.) - (1.1.23.141) = C:\Program Files\PremierOpinion\pmservice.exe 2704 | [Owner : Power2Go 11 promo |Parent : 5932()] - (.-.) - (0.0.0.0) = C:\Users\Power2Go 11 promo\Downloads\Power2Go_11.0.1013.0_Essential_Essential_P2G160727-05.exe 2256 | [Owner : Power2Go 11 promo |Parent : 2704(Power2Go_11.0.1013.0_Essential_Essential_P2G160727-05.exe)] - (.CyberLink Corp. -.) - (1.0.0.0) = C:\Users\Power2Go 11 promo\AppData\Local\Temp\RarSFX0\Setup.exe 4668 | [Owner : Power2Go 11 promo |Parent : 5280(explorer.exe)] - (.-.) - (11.12.945.9202) = C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.12.945.9202\AdAwareDesktop.exe 6272 | [Owner : Power2Go 11 promo |Parent : 5280(explorer.exe)] - (.CyberLink Corp. - CyberLink Power2Go 11.) - (11.0.1013.0) = C:\Program Files\CyberLink\Power2Go11\Power2Go.exe 3432 | [Owner : Power2Go 11 promo |Parent : 5280(explorer.exe)] - (.CyberLink Corp. - CyberLink Power2Go 11.) - (11.0.1013.0) = C:\Program Files\CyberLink\Power2Go11\Power2Go.exe 5544 | [Owner : Power2Go 11 promo |Parent : 7524()] - (.KsL Software - Registry First Aid Agent.) - (10.0.0.2267) = C:\Program Files\RFA 10\rfagent32.exe 1640 | [Owner : Power2Go 11 promo |Parent : 7524()] - (.KsL Software - Registry First Aid, the easy powerful registry maintenance program.) - (10.0.0.2267) = C:\Program Files\RFA 10\reg1aid32.exe 7248 | [Owner : Power2Go 11 promo |Parent : 3304()] - (.- ASP.) - (2.2.1000.20625) = C:\Program Files\ASP\AdvancedSystemProtector.exe 6664 | [Owner : Power2Go 11 promo |Parent : 6352()] - (.Avanquest Software - Smart Privacy Cleaner.) - (2.0.0.0) = C:\Program Files\Smart Privacy Cleaner\SmartPrivacyCleaner.exe 6828 | [Owner : Power2Go 11 promo |Parent : 5188()] - (.Solvusoft - SupersonicPC.) - (1.0.648.12715) = C:\Program Files\SupersonicPC\SolvusoftWM.exe 1828 | [Owner : Power2Go 11 promo |Parent : 6828(SolvusoftWM.exe)] - (.Solvusoft - SupersonicPC - System Cleaner.) - (1.0.648.12715) = C:\Program Files\SupersonicPC\SolvusoftWMSystemCleaner.exe ---------- | Tasks Suppression : Advanced System~Protector Suppression : Advanced System~Protector_startup Suppression : SupersonicPC ---------- | Services Suppression : PremierOpinion : C:\Program Files\PremierOpinion\pmservice.exe /service ---------- | AppCertDlls | AppInit_DLLs ---------- | DNSapi.dll C:\Windows\System32\dnsapi.dll : \drivers\etc\hosts ---------- | Hosts ---------- | SafeBoot ---------- | Winsock ---------- | DNS ---------- | Registre Suppression : HKLM\SOFTWARE\Classes\Codejock.BackstageListBox.16.4.0 : Xtreme Backstage ListBox Control Suppression : HKLM\SOFTWARE\Classes\Codejock.ColorPicker.16.4.0 : Xtreme ColorPicker Control Suppression : HKLM\SOFTWARE\Classes\Codejock.CommonDialog.16.4.0 : Xtreme CommonDialog Control Suppression : HKLM\SOFTWARE\Classes\Codejock.FormExtender.16.4.0 : Xtreme FormExtender Control Suppression : HKLM\SOFTWARE\Classes\Codejock.Label.16.4.0 : Xtreme Label Control Suppression : HKLM\SOFTWARE\Classes\Codejock.PopupControl.16.4.0 : Xtreme Popup Control Suppression : HKLM\SOFTWARE\Classes\Codejock.PushButton.16.4.0 : Xtreme PushButton Control Suppression : HKLM\SOFTWARE\Classes\Codejock.ReportRecord.16.4.0 : Codejock.ReportRecord.16.4.0 Suppression : HKLM\SOFTWARE\Classes\Codejock.SuiteControlsGlobalSettings.16.4.0 : Codejock.SuiteControlsGlobalSettings.16.4.0 Suppression : HKLM\SOFTWARE\Classes\Codejock.TaskDialog.16.4.0 : Xtreme TaskDialog Control Suppression : HKLM\SOFTWARE\Classes\Codejock.UpDown.16.4.0 : Xtreme UpDown Control Suppression : HKLM\SOFTWARE\Classes\XceedSoftware.XceedCompression.5 : Xceed Compression Control Suppression : HKLM\SOFTWARE\Classes\CLSID\{067255A1-392D-4DFF-A119-771E9DBA5320} : C:\PROGRA~1\DRIVER~1\DRIVER~1\CODEJO~1.OCX Suppression : HKLM\SOFTWARE\Classes\CLSID\{4C163B0C-2E30-4137-BE03-DCDC810F1A13} : C:\PROGRA~1\DRIVER~1\DRIVER~1\CODEJO~1.OCX Suppression : HKLM\SOFTWARE\Classes\CLSID\{53F8B853-02C0-4164-8787-4A426E3B53AF} : C:\PROGRA~1\DRIVER~1\DRIVER~1\CODEJO~1.OCX Suppression : HKLM\SOFTWARE\Classes\CLSID\{5A8DB280-A236-4BAF-9C3C-759588DC059F} : C:\PROGRA~1\DRIVER~1\DRIVER~1\CODEJO~1.OCX Suppression : HKLM\SOFTWARE\Classes\CLSID\{6E2CAEB9-C0E3-4470-AFB1-5DE7C87803F7} : C:\PROGRA~1\DRIVER~1\DRIVER~1\CODEJO~1.OCX Suppression : HKLM\SOFTWARE\Classes\CLSID\{8E83839D-722C-425D-ADD3-ABF1C1F51B0A} : C:\PROGRA~1\DRIVER~1\DRIVER~1\CODEJO~1.OCX Suppression : HKLM\SOFTWARE\Classes\CLSID\{A7E47767-BAF7-4BB7-9355-28DE6769AF32} : C:\PROGRA~1\DRIVER~1\DRIVER~1\CODEJO~1.OCX Suppression : HKLM\SOFTWARE\Classes\CLSID\{B6763C3E-31AD-4A6E-AD1F-BB0E5E65396F} : C:\PROGRA~1\DRIVER~1\DRIVER~1\CODEJO~3.OCX Suppression : HKLM\SOFTWARE\Classes\CLSID\{D767D59A-C320-4226-9AE7-6D234AB51654} : C:\PROGRA~1\DRIVER~1\DRIVER~1\CODEJO~1.OCX Suppression : HKLM\SOFTWARE\Classes\CLSID\{E1069582-C746-488F-B051-F5E4B97A954B} : C:\PROGRA~1\DRIVER~1\DRIVER~1\CODEJO~1.OCX Suppression : HKLM\SOFTWARE\Classes\CLSID\{E1334D77-6A94-4E93-9803-D90DF8B1033F} : C:\PROGRA~1\DRIVER~1\DRIVER~1\CODEJO~2.OCX Suppression : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\GeekBuddyRSP Suppression : HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32 Suppression : HKLM\SOFTWARE\Microsoft\Tracing\PMMdatamgr_RASAPI32 Suppression : HKU\S-1-5-21-1541472888-895532398-2178115478-1001\SOFTWARE\Chromium Suppression : HKU\S-1-5-21-1541472888-895532398-2178115478-1001\SOFTWARE\KsL Software Suppression : HKU\S-1-5-21-1541472888-895532398-2178115478-1001\SOFTWARE\Smart Privacy Cleaner Suppression : HKU\S-1-5-21-1541472888-895532398-2178115478-1001\SOFTWARE\Systweak Suppression : HKU\S-1-5-21-1541472888-895532398-2178115478-1001\SOFTWARE\AppDataLow\Software\adawarebp Suppression : HKLM\SOFTWARE\Chromium Suppression : HKLM\SOFTWARE\GeekBuddyRSP Suppression : HKLM\SOFTWARE\Systweak Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\RFA10_is1 : (Registry First Aid 10) "C:\Program Files\RFA 10\unins000.exe" -> C:\Program Files\RFA 10\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Smart Privacy Cleaner_is1 : (Smart Privacy Cleaner v2.0) "C:\Program Files\Smart Privacy Cleaner\unins000.exe" -> C:\Program Files\Smart Privacy Cleaner\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{115C1C6A-15A2-48B1-A599-79F1AA1A03F6} : (FirewallEngine) MsiExec.exe /I{115C1C6A-15A2-48B1-A599-79F1AA1A03F6} -> C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.1.0\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{28349A67-1D99-45A6-A1C1-C5B6D1DF937A} : (AvcEngine) MsiExec.exe /I{28349A67-1D99-45A6-A1C1-C5B6D1DF937A} -> C:\Program Files\Lavasoft\Ad-Aware Antivirus\AVC Engine\3.11.12293.0\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{3F5DFA1C-DAD9-49F7-B40D-DE40559C439F}_AdAwareUpdater : (Ad-Aware Antivirus) "C:\Program Files\Common Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus Updater\11.12.945.9202\AdAwareUpdater.exe" --uninstall -> C:\Program Files\Common Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus Updater\11.12.945.9202\ Suppression : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{eeb86aef-4a5d-4b75-9d74-f16d438fc286} : (PremierOpinion) C:\Program Files\PremierOpinion\pmropn.exe -bootremove -uninst:PremierOpinion Suppression : [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]~[rfagent] : "C:\Program Files\RFA 10\rfagent32.exe" ---------- | Dossiers | Fichiers Suppression : C:\Program Files\Advanced System Protector Reboot : C:\Program Files\ASP\AdvancedSystemProtector.exe (Copyright.-.ASP) AdvancedSystemProtector.exe Reboot : C:\Program Files\ASP\AdvancedSystemProtector.exe.config (.-.) Reboot : C:\Program Files\ASP\BrowserCleaner.exe (Copyright © Systweak Software 2015.-.Browser Cleaner) BCNewUI.exe Reboot : C:\Program Files\ASP\filetypehelper.exe (Copyright.-.ASP) filetypehelper.exe Suppression : C:\Users\Public\Desktop\Advanced System~Protector.lnk (.-.) C:\Program Files\ASP\AdvancedSystemProtector.exe Suppression : C:\Users\Public\Desktop\Registry First Aid.lnk (.-.) C:\Program Files\RFA 10\RFA_start.exe Suppression : C:\Users\Power2Go 11 promo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Ad-Aware Antivirus.lnk (.-.) Suppression : C:\Users\Power2Go 11 promo\Desktop\Smart Privacy Cleaner.lnk (.-.) C:\Program Files\Smart Privacy Cleaner\SmartPrivacyCleaner.exe Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System~Protector\Advanced System~Protector.lnk (.-.) Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System~Protector\Désinstaller Advanced System~Protector.lnk (.-.) Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced System~Protector\Register Advanced System~Protector.lnk (.-.) Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PremierOpinion\About PremierOpinion.lnk (.-.) Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registry First Aid 10\Aide Registry First Aid.lnk (.-.) Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registry First Aid 10\Registry First Aid.lnk (.-.) Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Privacy Cleaner\Désinstaller Smart Privacy Cleaner.lnk (.-.) Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Privacy Cleaner\Page d'accueil de Smart Privacy Cleaner.lnk (.-.) Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Privacy Cleaner\Smart Privacy Cleaner.lnk (.-.) Suppression : C:\Users\Power2Go 11 promo\AppData\Local\Chromium Suppression : C:\Users\Power2Go 11 promo\AppData\Local\Systweak Suppression : C:\Users\Power2Go 11 promo\AppData\Roaming\Systweak Suppression : C:\Users\Power2Go 11 promo\Downloads\RegistryFirstAid_AQFR.exe (Copyright (c) KsL Software and Published by RoseCitySoftware .-.Registry First Aid 10 ) Suppression : C:\Users\Power2Go 11 promo\Downloads\SmartPrivacyCleaner_FR.exe (Avanquest Software .-.Smart Privacy Cleaner ) Suppression : C:\Users\barrow 2 & widen\AppData\Local\Chromium Suppression : C:\ProgramData\Registry First Aid Suppression : C:\ProgramData\Systweak Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programmes\Advanced System~Protector Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programmes\PremierOpinion Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programmes\Registry First Aid 10 Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programmes\Smart Privacy Cleaner Suppression : C:\Windows\System32\sasnative32.exe (.-.) Suppression : C:\ProgramData\install_clap Suppression : C:\ProgramData\install_backup Suppression : C:\Users\Public\Desktop\SupersonicPC.lnk (.-.) Suppression : C:\Users\Power2Go 11 promo\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\SupersonicPC.lnk (.-.) Suppression : C:\Users\barrow 2 & widen\AppData\Roaming\Lavasoft Suppression : C:\ProgramData\Lavasoft Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SupersonicPC Suppression : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft Suppression : C:\Program Files\SupersonicPC Suppression : C:\Program Files\Common Files\Lavasoft Suppression : C:\Windows\System32\Roboot.exe (.-.) ---------- | .LNK ---------- | Ouverture extension inconnue ---------- | Proxy ---------- | Internet Explorer Reparation : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main]~[Start Page] : about:blank -> https://www.google.com/ Reparation : [HKU\S-1-5-21-1541472888-895532398-2178115478-1001\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter]~[Enabled] : -> 2 Reparation : [HKU\S-1-5-21-1541472888-895532398-2178115478-1001\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter]~[EnabledV8] : -> 1 Reparation : [HKU\S-1-5-21-1541472888-895532398-2178115478-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings]~[WarNonBadCertReceving] : -> 1 Reparation : [HKU\S-1-5-21-1541472888-895532398-2178115478-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet settings]~[WarNonHTTPSToHTTPRedirect] : -> 1 ---------- | Yandex ---------- | Google Chrome ---------- | Comodo Dragon ---------- | Firefox [barrow 2 & widen | 4hml8hmp.default-1478423378248] Remplacement : user_pref("browser.startup.homepage", "https://fr.yahoo.com/?fr=fp-comodo&type=42_33220001004_1.7.402730.374_u_hp_sp"); -> user_pref("browser.startup.homepage", "https://www.google.com"); ---------- | SeaMonkey ---------- | Pale moon ---------- | Opera ---------- | Spark ---------- | StartMenuInternet ---------- | Javascript ---------- | Firewall ---------- | ADS Autre rapport C:\AdsFix_05_11_2016_05_06_54.txt[85 Ko] Analyses : 336132 | Modifications : 6 | Suppressions : 87 ---------- |EOF| ---------- | 06:35:22 | [27 Ko]