Mon pc rame
Résolu
mister1616
Messages postés
299
Date d'inscription
Statut
Membre
Dernière intervention
-
mister1616 Messages postés 299 Date d'inscription Statut Membre Dernière intervention -
mister1616 Messages postés 299 Date d'inscription Statut Membre Dernière intervention -
Bonjour,
depuis quelques jours mon pc rame un temps fou pour ouvrir google chrome et des fois il va vite.
D'avance merci de votre aide
depuis quelques jours mon pc rame un temps fou pour ouvrir google chrome et des fois il va vite.
D'avance merci de votre aide
A voir également:
- Mon pc rame
- Pc qui rame - Guide
- Reinitialiser pc - Guide
- Test performance pc - Guide
- Plus de son sur mon pc - Guide
- Downloader for pc - Télécharger - Téléchargement & Transfert
96 réponses
Je poste via mon autre pc car j'air encore lancé ComboFix mais tout bloque de nouveau mon antivirus se remet tout seul malgré sa désactivation , incredimail se remet aussi malgré sa désactivation enfin bref je desespère...
ComboFix 12-10-10.02 - user 10/10/2012 18:19:54.4.1 - x86
Microsoft Windows 7 Édition Familiale Premium 6.1.7601.1.1252.32.1036.18.1471.974 [GMT 2:00]
Lancé depuis: c:\users\user\Downloads\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Un nouveau point de restauration a été créé
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\user\AppData\Local\temp\fbe2808e-2380-4f14-a1fa-3fa9c3a364e8\CliSecureRT.dll
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2012-09-10 au 2012-10-10 ))))))))))))))))))))))))))))))))))))
.
.
8212-02-07 06:30 . 8212-02-07 06:30 -------- d-----w- c:\windows\msdownld.tmp
8212-02-07 06:17 . 2012-02-09 09:14 -------- d-----w- c:\programdata\AVAST Software
2012-10-10 16:30 . 2012-10-10 16:33 -------- d-----w- c:\users\user\AppData\Local\temp
2012-10-10 16:30 . 2012-10-10 16:30 -------- d-----w- c:\users\Public\AppData\Local\temp
2012-10-10 16:30 . 2012-10-10 16:30 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-10-10 10:36 . 2012-10-10 10:36 -------- d-sh--w- c:\windows\system32\%APPDATA%
2012-10-10 09:50 . 2012-08-31 17:18 1211760 ----a-w- c:\windows\system32\drivers\ntfs.sys
2012-10-10 09:50 . 2012-08-10 23:56 542208 ----a-w- c:\windows\system32\kerberos.dll
2012-10-10 09:50 . 2012-08-30 17:12 3914096 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-10-10 09:50 . 2012-08-30 17:12 3968880 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-10-02 08:00 . 2012-06-27 08:37 136808 ----a-w- c:\windows\system32\drivers\ssadmdm.sys
2012-10-02 08:00 . 2012-06-27 08:37 12776 ----a-w- c:\windows\system32\drivers\ssadmdfl.sys
2012-10-02 08:00 . 2012-06-27 08:37 10344 ----a-w- c:\windows\system32\drivers\ssadwhnt.sys
2012-10-02 08:00 . 2012-06-27 08:37 121064 ----a-w- c:\windows\system32\drivers\ssadbus.sys
2012-10-02 08:00 . 2012-06-27 08:37 114280 ----a-w- c:\windows\system32\drivers\ssadserd.sys
2012-10-02 08:00 . 2012-06-27 08:37 10472 ----a-w- c:\windows\system32\drivers\ssadcmnt.sys
2012-10-01 09:04 . 2012-10-06 17:08 -------- d-----w- C:\Pre_Scan
2012-09-26 04:40 . 2012-08-21 20:12 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
2012-09-22 15:00 . 2012-09-22 15:00 -------- d-----w- c:\programdata\CreativePark
2012-09-22 15:00 . 2012-09-30 12:06 -------- d-----w- C:\feuvert
2012-09-22 14:58 . 2012-10-01 09:47 -------- d-----w- c:\users\user\AppData\Roaming\ProtectDISC
2012-09-15 05:23 . 2011-05-13 23:17 632656 ----a-w- c:\windows\system32\msvcr80.dll
2012-09-15 05:23 . 2011-05-13 23:17 479232 ----a-w- c:\windows\system32\msvcm80.dll
2012-09-15 05:23 . 2011-05-13 23:17 554832 ----a-w- c:\windows\system32\msvcp80.dll
2012-09-15 05:23 . 2012-09-29 06:12 -------- d-----w- c:\windows\system32\ARFC
2012-09-15 05:23 . 2012-09-13 13:26 1006448 ----a-w- C:\dmwu.exe
2012-09-15 05:23 . 2012-09-13 13:24 28160 ----a-w- c:\windows\system32\ImHttpComm.dll
2012-09-12 04:36 . 2012-08-22 17:16 712048 ----a-w- c:\windows\system32\drivers\ndis.sys
2012-09-12 04:36 . 2012-07-04 19:45 33280 ----a-w- c:\windows\system32\drivers\RNDISMP.sys
2012-09-12 04:36 . 2012-08-22 17:16 1292144 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-09-12 04:36 . 2012-08-22 17:16 240496 ----a-w- c:\windows\system32\drivers\netio.sys
2012-09-12 04:36 . 2012-08-22 17:16 187760 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2012-09-12 04:36 . 2012-08-02 16:57 490496 ----a-w- c:\windows\system32\d3d10level9.dll
2012-09-11 07:58 . 2012-09-11 07:58 -------- d-----w- c:\windows\fr
2012-09-11 07:57 . 2012-03-08 16:32 39272 ----a-w- c:\windows\system32\drivers\fssfltr.sys
2012-09-11 07:55 . 2012-09-11 07:55 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-10 05:43 . 2012-04-01 09:49 696760 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-10-10 05:43 . 2011-05-21 05:38 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-09-14 18:28 . 2012-10-10 09:51 2048 ----a-w- c:\windows\system32\tzres.dll
2012-09-11 07:51 . 2011-03-28 16:36 19720 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2012-09-07 15:04 . 2010-12-16 18:45 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-09-01 05:16 . 2012-09-01 05:16 93672 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2012-09-01 05:16 . 2012-05-29 13:00 821736 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-09-01 05:16 . 2010-05-18 04:42 746984 ----a-w- c:\windows\system32\deployJava1.dll
2012-08-24 16:57 . 2012-10-10 09:51 172544 ----a-w- c:\windows\system32\wintrust.dll
2012-08-24 06:51 . 2012-09-22 18:51 1129472 ----a-w- c:\windows\system32\wininet.dll
2012-08-24 06:47 . 2012-09-22 18:51 420864 ----a-w- c:\windows\system32\vbscript.dll
2012-08-20 17:40 . 2012-10-10 09:51 169984 ----a-w- c:\windows\system32\winsrv.dll
2012-08-14 06:23 . 2012-02-08 12:43 83392 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2012-08-14 06:23 . 2012-02-08 12:43 137928 ----a-w- c:\windows\system32\drivers\avipbb.sys
2012-07-18 17:47 . 2012-08-15 04:56 2345984 ----a-w- c:\windows\system32\win32k.sys
2012-09-30 12:29 . 2012-09-30 12:29 266720 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IncrediMail"="c:\program files\IncrediMail\bin\IncMail.exe" [2012-08-15 366576]
"KiesPDLR"="c:\program files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" [2012-08-31 21432]
"KiesPreload"="c:\program files\Samsung\Kies\Kies.exe" [2012-08-31 964024]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
"PlusService"="c:\program files\Yuna Software\Messenger Plus!\PlusService.exe" [2012-07-24 801792]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2012-08-14 348664]
"KiesTrayAgent"="c:\program files\Samsung\Kies\KiesTrayAgent.exe" [2012-08-31 3524536]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sr.sys]
@="FSFilter System Recovery"
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Secunia PSI Tray.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
backup=c:\windows\pss\Secunia PSI Tray.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^Users^user^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 - Capture d'écran et lancement.lnk]
path=c:\users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 - Capture d'écran et lancement.lnk
backup=c:\windows\pss\OneNote 2007 - Capture d'écran et lancement.lnk.Startup
backupExtension=.Startup
.
[HKLM\~\startupfolder\C:^Users^user^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.1.lnk]
path=c:\users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.1.lnk
backup=c:\windows\pss\OpenOffice.org 3.1.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-07-27 20:51 919008 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2012-07-27 20:51 35768 ----a-w- c:\program files\Adobe\Reader 10.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
2012-07-09 04:17 116648 ----atw- c:\users\user\AppData\Local\Google\Update\GoogleUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
2012-03-08 16:50 4280184 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
2010-11-20 12:17 1174016 ----a-w- c:\program files\Windows Sidebar\sidebar.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
2009-04-14 06:43 604704 ----a-w- c:\windows\SOUNDMAN.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2012-07-03 07:04 252848 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
R2 gupdate;Service Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [x]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
R3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [x]
R3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.SYS [x]
R3 gupdatem;Service Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [x]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [x]
R3 ovt530;TM507A USB Camera;c:\windows\system32\Drivers\ov530vid.sys [x]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys [x]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys [x]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys [x]
R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\DRIVERS\ssadserd.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R4 WebOptimizer;WebOptimizer;c:\windows\system32\dmwu.exe [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x]
S2 AntiVirSchedulerService;Avira Planificateur;c:\program files\Avira\AntiVir Desktop\sched.exe [x]
S2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [x]
S2 TeamViewer7;TeamViewer 7;c:\program files\TeamViewer\Version7\TeamViewer_Service.exe [x]
.
.
Contenu du dossier 'Tâches planifiées'
.
2012-10-10 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-31 05:48]
.
2012-10-10 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-03-07 11:11]
.
2012-10-10 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-03-07 11:11]
.
2012-10-10 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3096423070-2644274965-933376917-1000Core.job
- c:\users\user\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-31 04:17]
.
2012-10-10 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3096423070-2644274965-933376917-1000UA.job
- c:\users\user\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-31 04:17]
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.google.com/
uInternet Settings,ProxyOverride = *.local
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\bwguf087.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - www.google.be
FF - prefs.js: keyword.URL - hxxp://mystart.incredibar.com/mb128/?loc=IB_DS&a=NUYisZvANM&&i=26&search=
FF - prefs.js: network.proxy.type - 0
FF - user.js: extensions.incredibar_i.newTab - false
FF - user.js: extensions.incredibar_i.tlbrSrchUrl - hxxp://mystart.Incredibar.com/?a=NUYisZvANM&loc=IB_TB&i=26&search=
FF - user.js: extensions.incredibar_i.id - a8e4232b00000000000000138f706392
FF - user.js: extensions.incredibar_i.instlDay - 15583
FF - user.js: extensions.incredibar_i.vrsn - 1.5.11.14
FF - user.js: extensions.incredibar_i.vrsni - 1.5.11.14
FF - user.js: extensions.incredibar_i.vrsnTs - 1.5.11.1414:08
FF - user.js: extensions.incredibar_i.prtnrId - Incredibar
FF - user.js: extensions.incredibar_i.prdct - incredibar
FF - user.js: extensions.incredibar_i.aflt - orgnl
FF - user.js: extensions.incredibar_i.smplGrp - none
FF - user.js: extensions.incredibar_i.tlbrId - base
FF - user.js: extensions.incredibar_i.instlRef -
FF - user.js: extensions.incredibar_i.dfltLng -
FF - user.js: extensions.incredibar_i.excTlbr - false
FF - user.js: extensions.incredibar_i.ms_url_id -
FF - user.js: extensions.incredibar_i.upn2 - NUYisZvANM
FF - user.js: extensions.incredibar_i.upn2n - 675756632520886646
FF - user.js: extensions.incredibar_i.productid - 26
FF - user.js: extensions.incredibar_i.installerproductid - 26
FF - user.js: extensions.incredibar_i.did - 10658
FF - user.js: extensions.incredibar_i.ppd -
.
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Autres processus actifs ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\windows\system32\nvvsvc.exe
c:\windows\system32\taskhost.exe
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\windows\system32\conhost.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\program files\TeamViewer\Version7\TeamViewer.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
c:\windows\system32\conhost.exe
c:\program files\TeamViewer\Version7\tv_w32.exe
c:\program files\IncrediMail\Bin\ImApp.exe
.
**************************************************************************
.
Heure de fin: 2012-10-10 18:53:23 - La machine a redémarré
ComboFix-quarantined-files.txt 2012-10-10 16:53
ComboFix2.txt 2012-10-10 10:21
ComboFix3.txt 2012-10-08 16:58
.
Avant-CF: 272.678.219.776 octets libres
Après-CF: 272.619.847.680 octets libres
.
- - End Of File - - 3A3FF24E16AA5AA91412C2A7EF94246C
Microsoft Windows 7 Édition Familiale Premium 6.1.7601.1.1252.32.1036.18.1471.974 [GMT 2:00]
Lancé depuis: c:\users\user\Downloads\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Un nouveau point de restauration a été créé
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\user\AppData\Local\temp\fbe2808e-2380-4f14-a1fa-3fa9c3a364e8\CliSecureRT.dll
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2012-09-10 au 2012-10-10 ))))))))))))))))))))))))))))))))))))
.
.
8212-02-07 06:30 . 8212-02-07 06:30 -------- d-----w- c:\windows\msdownld.tmp
8212-02-07 06:17 . 2012-02-09 09:14 -------- d-----w- c:\programdata\AVAST Software
2012-10-10 16:30 . 2012-10-10 16:33 -------- d-----w- c:\users\user\AppData\Local\temp
2012-10-10 16:30 . 2012-10-10 16:30 -------- d-----w- c:\users\Public\AppData\Local\temp
2012-10-10 16:30 . 2012-10-10 16:30 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-10-10 10:36 . 2012-10-10 10:36 -------- d-sh--w- c:\windows\system32\%APPDATA%
2012-10-10 09:50 . 2012-08-31 17:18 1211760 ----a-w- c:\windows\system32\drivers\ntfs.sys
2012-10-10 09:50 . 2012-08-10 23:56 542208 ----a-w- c:\windows\system32\kerberos.dll
2012-10-10 09:50 . 2012-08-30 17:12 3914096 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-10-10 09:50 . 2012-08-30 17:12 3968880 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-10-02 08:00 . 2012-06-27 08:37 136808 ----a-w- c:\windows\system32\drivers\ssadmdm.sys
2012-10-02 08:00 . 2012-06-27 08:37 12776 ----a-w- c:\windows\system32\drivers\ssadmdfl.sys
2012-10-02 08:00 . 2012-06-27 08:37 10344 ----a-w- c:\windows\system32\drivers\ssadwhnt.sys
2012-10-02 08:00 . 2012-06-27 08:37 121064 ----a-w- c:\windows\system32\drivers\ssadbus.sys
2012-10-02 08:00 . 2012-06-27 08:37 114280 ----a-w- c:\windows\system32\drivers\ssadserd.sys
2012-10-02 08:00 . 2012-06-27 08:37 10472 ----a-w- c:\windows\system32\drivers\ssadcmnt.sys
2012-10-01 09:04 . 2012-10-06 17:08 -------- d-----w- C:\Pre_Scan
2012-09-26 04:40 . 2012-08-21 20:12 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
2012-09-22 15:00 . 2012-09-22 15:00 -------- d-----w- c:\programdata\CreativePark
2012-09-22 15:00 . 2012-09-30 12:06 -------- d-----w- C:\feuvert
2012-09-22 14:58 . 2012-10-01 09:47 -------- d-----w- c:\users\user\AppData\Roaming\ProtectDISC
2012-09-15 05:23 . 2011-05-13 23:17 632656 ----a-w- c:\windows\system32\msvcr80.dll
2012-09-15 05:23 . 2011-05-13 23:17 479232 ----a-w- c:\windows\system32\msvcm80.dll
2012-09-15 05:23 . 2011-05-13 23:17 554832 ----a-w- c:\windows\system32\msvcp80.dll
2012-09-15 05:23 . 2012-09-29 06:12 -------- d-----w- c:\windows\system32\ARFC
2012-09-15 05:23 . 2012-09-13 13:26 1006448 ----a-w- C:\dmwu.exe
2012-09-15 05:23 . 2012-09-13 13:24 28160 ----a-w- c:\windows\system32\ImHttpComm.dll
2012-09-12 04:36 . 2012-08-22 17:16 712048 ----a-w- c:\windows\system32\drivers\ndis.sys
2012-09-12 04:36 . 2012-07-04 19:45 33280 ----a-w- c:\windows\system32\drivers\RNDISMP.sys
2012-09-12 04:36 . 2012-08-22 17:16 1292144 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-09-12 04:36 . 2012-08-22 17:16 240496 ----a-w- c:\windows\system32\drivers\netio.sys
2012-09-12 04:36 . 2012-08-22 17:16 187760 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2012-09-12 04:36 . 2012-08-02 16:57 490496 ----a-w- c:\windows\system32\d3d10level9.dll
2012-09-11 07:58 . 2012-09-11 07:58 -------- d-----w- c:\windows\fr
2012-09-11 07:57 . 2012-03-08 16:32 39272 ----a-w- c:\windows\system32\drivers\fssfltr.sys
2012-09-11 07:55 . 2012-09-11 07:55 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-10 05:43 . 2012-04-01 09:49 696760 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-10-10 05:43 . 2011-05-21 05:38 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-09-14 18:28 . 2012-10-10 09:51 2048 ----a-w- c:\windows\system32\tzres.dll
2012-09-11 07:51 . 2011-03-28 16:36 19720 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2012-09-07 15:04 . 2010-12-16 18:45 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-09-01 05:16 . 2012-09-01 05:16 93672 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2012-09-01 05:16 . 2012-05-29 13:00 821736 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-09-01 05:16 . 2010-05-18 04:42 746984 ----a-w- c:\windows\system32\deployJava1.dll
2012-08-24 16:57 . 2012-10-10 09:51 172544 ----a-w- c:\windows\system32\wintrust.dll
2012-08-24 06:51 . 2012-09-22 18:51 1129472 ----a-w- c:\windows\system32\wininet.dll
2012-08-24 06:47 . 2012-09-22 18:51 420864 ----a-w- c:\windows\system32\vbscript.dll
2012-08-20 17:40 . 2012-10-10 09:51 169984 ----a-w- c:\windows\system32\winsrv.dll
2012-08-14 06:23 . 2012-02-08 12:43 83392 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2012-08-14 06:23 . 2012-02-08 12:43 137928 ----a-w- c:\windows\system32\drivers\avipbb.sys
2012-07-18 17:47 . 2012-08-15 04:56 2345984 ----a-w- c:\windows\system32\win32k.sys
2012-09-30 12:29 . 2012-09-30 12:29 266720 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IncrediMail"="c:\program files\IncrediMail\bin\IncMail.exe" [2012-08-15 366576]
"KiesPDLR"="c:\program files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" [2012-08-31 21432]
"KiesPreload"="c:\program files\Samsung\Kies\Kies.exe" [2012-08-31 964024]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
"PlusService"="c:\program files\Yuna Software\Messenger Plus!\PlusService.exe" [2012-07-24 801792]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2012-08-14 348664]
"KiesTrayAgent"="c:\program files\Samsung\Kies\KiesTrayAgent.exe" [2012-08-31 3524536]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sr.sys]
@="FSFilter System Recovery"
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Secunia PSI Tray.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
backup=c:\windows\pss\Secunia PSI Tray.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^Users^user^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 - Capture d'écran et lancement.lnk]
path=c:\users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 - Capture d'écran et lancement.lnk
backup=c:\windows\pss\OneNote 2007 - Capture d'écran et lancement.lnk.Startup
backupExtension=.Startup
.
[HKLM\~\startupfolder\C:^Users^user^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.1.lnk]
path=c:\users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.1.lnk
backup=c:\windows\pss\OpenOffice.org 3.1.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-07-27 20:51 919008 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2012-07-27 20:51 35768 ----a-w- c:\program files\Adobe\Reader 10.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
2012-07-09 04:17 116648 ----atw- c:\users\user\AppData\Local\Google\Update\GoogleUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
2012-03-08 16:50 4280184 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
2010-11-20 12:17 1174016 ----a-w- c:\program files\Windows Sidebar\sidebar.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
2009-04-14 06:43 604704 ----a-w- c:\windows\SOUNDMAN.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2012-07-03 07:04 252848 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
R2 gupdate;Service Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [x]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
R3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [x]
R3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.SYS [x]
R3 gupdatem;Service Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [x]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [x]
R3 ovt530;TM507A USB Camera;c:\windows\system32\Drivers\ov530vid.sys [x]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys [x]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys [x]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys [x]
R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\DRIVERS\ssadserd.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R4 WebOptimizer;WebOptimizer;c:\windows\system32\dmwu.exe [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x]
S2 AntiVirSchedulerService;Avira Planificateur;c:\program files\Avira\AntiVir Desktop\sched.exe [x]
S2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [x]
S2 TeamViewer7;TeamViewer 7;c:\program files\TeamViewer\Version7\TeamViewer_Service.exe [x]
.
.
Contenu du dossier 'Tâches planifiées'
.
2012-10-10 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-31 05:48]
.
2012-10-10 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-03-07 11:11]
.
2012-10-10 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-03-07 11:11]
.
2012-10-10 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3096423070-2644274965-933376917-1000Core.job
- c:\users\user\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-31 04:17]
.
2012-10-10 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3096423070-2644274965-933376917-1000UA.job
- c:\users\user\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-31 04:17]
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.google.com/
uInternet Settings,ProxyOverride = *.local
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\bwguf087.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - www.google.be
FF - prefs.js: keyword.URL - hxxp://mystart.incredibar.com/mb128/?loc=IB_DS&a=NUYisZvANM&&i=26&search=
FF - prefs.js: network.proxy.type - 0
FF - user.js: extensions.incredibar_i.newTab - false
FF - user.js: extensions.incredibar_i.tlbrSrchUrl - hxxp://mystart.Incredibar.com/?a=NUYisZvANM&loc=IB_TB&i=26&search=
FF - user.js: extensions.incredibar_i.id - a8e4232b00000000000000138f706392
FF - user.js: extensions.incredibar_i.instlDay - 15583
FF - user.js: extensions.incredibar_i.vrsn - 1.5.11.14
FF - user.js: extensions.incredibar_i.vrsni - 1.5.11.14
FF - user.js: extensions.incredibar_i.vrsnTs - 1.5.11.1414:08
FF - user.js: extensions.incredibar_i.prtnrId - Incredibar
FF - user.js: extensions.incredibar_i.prdct - incredibar
FF - user.js: extensions.incredibar_i.aflt - orgnl
FF - user.js: extensions.incredibar_i.smplGrp - none
FF - user.js: extensions.incredibar_i.tlbrId - base
FF - user.js: extensions.incredibar_i.instlRef -
FF - user.js: extensions.incredibar_i.dfltLng -
FF - user.js: extensions.incredibar_i.excTlbr - false
FF - user.js: extensions.incredibar_i.ms_url_id -
FF - user.js: extensions.incredibar_i.upn2 - NUYisZvANM
FF - user.js: extensions.incredibar_i.upn2n - 675756632520886646
FF - user.js: extensions.incredibar_i.productid - 26
FF - user.js: extensions.incredibar_i.installerproductid - 26
FF - user.js: extensions.incredibar_i.did - 10658
FF - user.js: extensions.incredibar_i.ppd -
.
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Autres processus actifs ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\windows\system32\nvvsvc.exe
c:\windows\system32\taskhost.exe
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\windows\system32\conhost.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\program files\TeamViewer\Version7\TeamViewer.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
c:\windows\system32\conhost.exe
c:\program files\TeamViewer\Version7\tv_w32.exe
c:\program files\IncrediMail\Bin\ImApp.exe
.
**************************************************************************
.
Heure de fin: 2012-10-10 18:53:23 - La machine a redémarré
ComboFix-quarantined-files.txt 2012-10-10 16:53
ComboFix2.txt 2012-10-10 10:21
ComboFix3.txt 2012-10-08 16:58
.
Avant-CF: 272.678.219.776 octets libres
Après-CF: 272.619.847.680 octets libres
.
- - End Of File - - 3A3FF24E16AA5AA91412C2A7EF94246C
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Version de Java vérifiée Félicitations ! Vous disposez de la version Java recommandée (Version 7 Update 7).
# DelFix v9.0 - Rapport créé le 11/10/2012 à 09:52:39
# Mis à jour le 23/09/12 par Xplode
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (32 bits)
# Nom d'utilisateur : user - USER-PC (Administrateur)
# Exécuté depuis : C:\Users\user\Downloads\delfix.exe
# Option [Suppression]
~~~~~~ Dossiers(s) ~~~~~~
Supprimé : C:\Qoobox
Supprimé : C:\pre_scan
Supprimé : C:\Combofix
Supprimé : C:\Program Files\ZHPDiag
~~~~~~ Fichier(s) ~~~~~~
Supprimé : C:\ComboFix.txt
Supprimé : C:\Users\user\Downloads\ComboFix.exe
Supprimé : C:\Windows\grep.exe
Supprimé : C:\Windows\PEV.exe
Supprimé : C:\Windows\NIRCMD.exe
Supprimé : C:\Windows\MBR.exe
Supprimé : C:\Windows\SED.exe
Supprimé : C:\Windows\SWREG.exe
Supprimé : C:\Windows\SWSC.exe
Supprimé : C:\Windows\SWXCACLS.exe
Supprimé : C:\Windows\Zip.exe
~~~~~~ Registre ~~~~~~
Clé Supprimée : HKCU\Software\g3n-h@ckm@n
Clé Supprimée : HKLM\SOFTWARE\AdwCleaner
Clé Supprimée : HKLM\SOFTWARE\Swearware
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\combofix.exe
~~~~~~ Autres ~~~~~~
-> Prefetch Vidé
RaProducts' PureRa v1.7
Log created at 09:56 on 11/10/2012 (user)
C:\Config.MSI emptied.
C:\Users\user\AppData\LocalLow\Microsoft\CryptNetURLCache\Content emptied.
C:\Users\user\AppData\LocalLow\Microsoft\CryptNetURLCache\MetaData emptied.
C:\Windows\system32\FNTCACHE.DAT <- Le fichier spécifié est introuvable.
Recycle bin emptied.
C:\Windows\SoftwareDistribution\DataStore\Logs emptied.
C:\Windows\SoftwareDistribution\Download emptied.
C:\Windows\SoftwareDistribution\SelfUpdate\Default emptied.
C:\Windows\SoftwareDistribution\WuRedir emptied.
C:\Windows\SoftwareDistribution\ReportingEvents.log <- Le processus ne peut pas accéder au fichier car ce fichier est utilisé par un autre processus.
C:\Users\user\AppData\Local\Temp emptied.
C:\Windows\TEMP emptied.
Total space cleaned: 0 bytes
-=E.O.F=-
Pendant le nettoyage après désinfection j'ai eu cette fenêtre
http://tinypic.com/images/goodbye.jpg
n'ai rien installé cette fenêtre sait ouverte seul et j'ai rien touché j'ai fait une capture d'écran pour te le montrai.
J'espère et un GRAND MERCI pour ton temps et aide .
Bonjour
A toutes fins utiles ==> https://www.commentcamarche.net/infos/25917-marquer-un-fil-de-discussion-comme-etant-resolu/
A toutes fins utiles ==> https://www.commentcamarche.net/infos/25917-marquer-un-fil-de-discussion-comme-etant-resolu/