Votre question

rapport combo fix : je ne comprends rien

Tags :
  • Windows
  • Microsoft
  • Sécurité
Dernière réponse : dans Sécurité et virus
16 Novembre 2013 11:59:21

bonjour,

j'ai lance combo fix pour essayer de regler un probleme de pc lent au demarrage notamment et de moteur de recherches qui s'incrustent sous chrome (je recherche.org / do searches, etc...)

voici le rapport, qui pourrait m'aider et me conseiller ce que je dois faire :

ComboFix 13-11-16.01 - user 11/16/2013 11:31:56.1.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2038.678 [GMT 1:00]
Running from: c:\documents and settings\user\My Documents\Downloads\ComboFix.exe
AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\PricePeep
c:\program files\PricePeep\installer.ico
c:\program files\PricePeep\prICepeep.dll
c:\program files\PricePeep\uninstall.exe
c:\program files\PricePeep\unutil.exe
.
.
((((((((((((((((((((((((( Files Created from 2013-10-16 to 2013-11-16 )))))))))))))))))))))))))))))))
.
.
2013-11-16 10:25 . 2013-11-16 10:25 40392 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{41A3E851-FB75-4F0B-B0E0-42E2BD2E4673}\MpKsle174b366.sys
2013-11-15 19:15 . 2013-10-14 06:39 7796464 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{41A3E851-FB75-4F0B-B0E0-42E2BD2E4673}\mpengine.dll
2013-11-13 19:30 . 2008-04-14 04:41 21504 -c--a-w- c:\windows\system32\dllcache\hidserv.dll
2013-11-13 19:30 . 2008-04-14 04:41 21504 ----a-w- c:\windows\system32\hidserv.dll
2013-11-04 22:04 . 2013-11-04 22:05 -------- d-----w- c:\program files\Software
2013-11-04 22:04 . 2013-11-04 22:04 -------- d-----w- c:\documents and settings\user\Local Settings\Application Data\Software
2013-11-04 22:02 . 2013-11-04 22:02 -------- d-----w- c:\documents and settings\user\Local Settings\Application Data\Wajam
2013-11-04 22:02 . 2013-11-04 22:03 -------- d-----w- c:\program files\Wajam
2013-11-04 21:59 . 2013-11-04 22:00 -------- d-----w- c:\documents and settings\All Users\Application Data\ZalmanInstaller_5313
2013-11-04 21:58 . 2013-11-04 21:59 -------- d-----w- c:\program files\Browsersafeguard
2013-11-04 21:18 . 2013-11-04 21:21 -------- d-----w- C:\AdwCleaner
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-10-14 06:39 . 2011-10-13 12:01 7796464 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-10-13 07:25 . 2008-04-14 12:00 920064 ----a-w- c:\windows\system32\wininet.dll
2013-10-13 07:25 . 2008-04-14 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
2013-10-13 07:25 . 2008-04-14 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2013-10-13 07:24 . 2008-04-14 12:00 18944 ----a-w- c:\windows\system32\corpol.dll
2013-10-13 06:57 . 2008-04-14 12:00 385024 ------w- c:\windows\system32\html.iec
2013-10-12 15:56 . 2008-04-14 12:00 278528 ----a-w- c:\windows\system32\oakley.dll
2013-10-09 13:12 . 2008-04-14 12:00 287744 ----a-w- c:\windows\system32\gdi32.dll
2013-10-07 10:59 . 2008-04-14 12:00 603136 ----a-w- c:\windows\system32\crypt32.dll
2013-10-05 01:14 . 2011-10-12 14:04 7168 ----a-w- c:\windows\system32\xpsp4res.dll
2013-08-29 01:31 . 2008-04-14 12:00 1878656 ----a-w- c:\windows\system32\win32k.sys
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-05-09 08:58 121968 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2013-10-21 20549280]
"BrowserSafeguard"="c:\program files\Browsersafeguard\Browsersafeguard.exe" [2013-11-04 574464]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"IntelZeroConfig"="c:\program files\Intel\Wireless\bin\ZCfgSvc.exe" [2007-07-25 823296]
"IntelWireless"="c:\program files\Intel\Wireless\Bin\ifrmewrk.exe" [2007-07-25 974848]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2011-06-15 997920]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-03-31 138008]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-03-31 162584]
"Persistence"="c:\windows\system32\igfxpers.exe" [2007-03-31 138008]
"KADxMain"="c:\windows\system32\KADxMain.exe" [2006-11-02 282624]
"SigmatelSysTrayApp"="c:\program files\SigmaTel\C-Major Audio\WDM\stsystra.exe" [2007-05-10 405504]
"ITSecMng"="c:\program files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe" [2007-09-29 75136]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"Bouygues Connection Manager"="c:\program files\Bouygues Telecom\Internet 3G+\Bouygues.exe" [2011-03-09 323584]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
"lxdrmon.exe"="c:\program files\Lexmark 4900 Series\lxdrmon.exe" [2010-02-04 676520]
"EzPrint"="c:\program files\Lexmark 4900 Series\ezprint.exe" [2010-02-04 131752]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2007-02-26 437160]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-25 304128]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0\0sdnclean.exe
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\LinuxLive USB Creator\\LiLi USB Creator.exe"=
"c:\\WINDOWS\\system32\\lxdrcoms.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5985:TCP"= 5985:TCP:*:D isabled:Windows Remote Management
.
R0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys [8/9/2013 10:11 PM 49376]
R0 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys [8/9/2013 10:11 PM 175176]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [8/9/2013 10:11 PM 770344]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [8/9/2013 10:11 PM 369584]
R1 MpKsle174b366;MpKsle174b366;c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{41A3E851-FB75-4F0B-B0E0-42E2BD2E4673}\MpKsle174b366.sys [11/16/2013 11:25 AM 40392]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [8/9/2013 10:11 PM 29816]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [8/9/2013 10:11 PM 66336]
R2 lxdr_device;lxdr_device;c:\windows\system32\lxdrcoms.exe -service --> c:\windows\system32\lxdrcoms.exe -service [?]
R2 WajamUpdaterV3;WajamUpdaterV3;c:\program files\Wajam\Updater\WajamUpdaterV3.exe [10/22/2013 9:52 PM 114176]
S2 lxdrCATSCustConnectService;lxdrCATSCustConnectService;c:\windows\system32\spool\drivers\w32x86\3\lxdrserv.exe [8/8/2013 6:53 PM 94208]
S2 Skype C2C Service;Skype C2C Service;c:\documents and settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe [10/9/2013 9:58 AM 3275136]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [9/5/2013 10:34 AM 171680]
S3 BouyguesRcAppSvc;T-Mobile RcApp Svc;c:\program files\Bouygues Telecom\Internet 3G+\RcAppSvc.exe [3/9/2011 12:47 AM 114688]
S3 DXEC01;DXEC01;c:\windows\system32\drivers\dxec01.sys [11/2/2006 9:32 PM 97536]
S3 EapSgnSvc;EapSgnSvc;c:\program files\Bouygues Telecom\Internet 3G+\EapSgnSvc32.exe [3/9/2011 12:37 AM 154944]
S3 massfilter;MBB Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [3/9/2011 12:37 AM 9216]
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - MPKSLE174B366
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-10-20 12:13 1185744 ----a-w- c:\program files\Google\Chrome\Application\30.0.1599.101\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2013-11-15 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2013-08-09 08:58]
.
2013-11-05 c:\windows\Tasks\BrowserSafeguard Update Task.job
- c:\program files\Browsersafeguard\uninstall.browsersafeguard.exe [2013-11-04 21:58]
.
2013-11-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-04-25 17:41]
.
2013-11-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-04-25 17:41]
.
2013-11-15 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Microsoft Security Client\Antimalware\MpCmdRun.exe [2011-04-27 22:39]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.dosearches.com/?utm_source=b&utm_medium=kdl&utm_cam...
uDefault_Search_URL = hxxp://www.google.com
uSearchMigratedDefaultURL = hxxp://www.google.com
mStart Page = hxxp://www.dosearches.com/?utm_source=b&utm_medium=kdl&utm_cam...
uInternet Settings,ProxyOverride = <-loopback>
uInternet Settings,ProxyServer = http=127.0.0.1:1051;https=127.0.0.1:1051;
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
TCP: DhcpNameServer = 192.168.1.1 192.168.1.1
.
- - - - ORPHANS REMOVED - - - -
.
AddRemove-PricePeep - c:\program files\PricePeep\uninstall.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-11-16 11:38
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(1180)
c:\windows\system32\igfxdev.dll
.
Completion time: 2013-11-16 11:41:56
ComboFix-quarantined-files.txt 2013-11-16 10:41
.
Pre-Run: 60,413,272,064 bytes free
Post-Run: 60,426,166,272 bytes free
.
WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
.
- - End Of File - - 7F5876FBFC4485EADA0B76747523445E
8F558EB6672622401DA993E1E865C861

Autres pages sur : rapport combo fix comprends rien

a c 295 8 Sécurité
a b 9 Windows
16 Novembre 2013 12:03:17

Bonjour,

  • Télécharge et lance AdwCleaner (d'Xplode), choisis l'option "Scanner".

  • Une fois le scan terminé, choisis l'option "Nettoyer".

  • Redémarre le PC comme demandé puis poste le rapport. Il est enregistré dans C:\AdwCleaner sous le nom d'AdwCleaner[S0].
    m
    0
    l
    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS