Search

Greetings,

About KLM\SOFTWARE\CLASSES\APPID\{93469602-4134-4012-A6BC-3E73B9855F90}, this entry is related to a potentialy unwanted software (AuslogicsBoostSpeed).

About WinZip, it seems to come with nasty things (repack/bundle). Of course, we stands against such practices. We'll do some more research on that, I'll keep you informed.

Regards,

Hello, Pelle!

It's sad to say, but all versions of Locky ransomware, including .shit can't be decrypted. The only thing that you can do is to delete the virus from your PC and try to avoid the suchlike infection next time. Of course, you should keep the encrypted files somewhere, to be able to decrypt them when the decryption tool will be released. If you're interested in this - this article m...

Delfix.txt: 

# DelFix v1.013 - Logfile created 26/11/2016 at 21:14:24 # Updated 17/04/2016 by Xplode # Username : M2-1900 - DESKTOP-KCS8S2N # Operating System : Windows 10 Pro  (64 bits)

~ Activating UAC ... OK

~ Removing disinfection tools ...

Deleted : C:\FRST Deleted : C:\AdwCleaner Deleted : C:\Users\M2-1900\Downloads\Addition.txt Deleted : C:\Users\M2-1900\Downloads\adwcleaner_6.000 (1...

Yeah, that old as hell, but classic, screensaver that used to be all the rage. I've still got my disc for it and put it on for old time's sake. But, it does show up in ADWCleaner as of the most recent version. Please whitelist it!

***** [ Registry ] *****

Key Found:  HKU\S-1-5-21-3460766699-1431320899-1007752869-1000\Software\SereneScreen
Key Found:  HKCU\Software\SereneScreen
Key Found: ...

Bonjour!

Pour SmartDefrag, je vous conseille plutot le très bon Defraggler:

1. Téléchargez Defraggler ici
2. Installez ensuite le logiciel en suivant les instructions, puis exécutez-le
3. Dans la fenêtre qui s'ouvre, cliquez alors sur le bouton [Défragmenter]. L'opération peut prendre plusieurs heures durant lesquelles il est souhaitable de ne pas utiliser l'ordinateur pour rendre l'opération plus e...

Hello,

Thanks!

So, we'll remove the tools we've used:

• Download DelFix from Xplode on your desktop;
• Launch it with administrator rights;
• Select all the option except the one proposing to save the registry;
• Then click on the "Execute" button;
• When everything is finish, the software will close itself;
• Then a report appear on the notepad, please copy paste it's content in your answer.

Final...

Hello,

Fixlog:

Fix result of Farbar Recovery Scan Tool (x64) Version: 23-11-2016 Ran by M2-1900 (26-11-2016 08:42:31) Run:1 Running from C:\Users\M2-1900\Downloads Loaded Profiles: M2-1900 (Available Profiles: M2-1900) Boot Mode: Normal ==============================================

fixlist content: ***************** CloseProcesses: R1 UCGuard; C:\WINDOWS\System32\DRIVERS\ucguard.sys [81792 ...

Hello,

Thanks. So, you can uninstall:

- McAfee,

- AdAware  

Then, we'll use FRST to remove the UCGuard remaining:

Download fixlist.txt file and save it to the Desktop (with the name "fixlist.txt")

NOTE. It's important that both files, FRST/FRST64 and fixlist.txt are in the same location or the fix will not work.

NOTICE: This script was written specifically for this user, for use on that ...

Voici le rapport et si je comprend bien, ce serait la protection internet de IObit  Surfing Protection qui serait un faux positif? C'est bien celle que je retrouve à chaque nettoyage d'Adwcleaner. 

http://pjjoint.malekal.com/files.php?id=FRST_20161125_j15n6v6i13r8

Hello,

Addition: https://up2sha.re/file?f=cRDLGy2Z1KMQ

FRST: https://up2sha.re/file?f=I7EvDbiQQIp6

Thanks.