cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ComboFix 15-10-09.01 - USER 12/10/2015 1:11.2.2 - x86
Microsoft Windows XP Professionnel 5.1.2600.3.1252.33.1036.18.1527.898 [GMT 0:00]
Lancé depuis: c:\documents and settings\USER\Bureau\ComboFix.exe
AV: Avira Desktop *Disabled/Outdated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\AUTOEXEC.tmp
C:\CONFIG.tmp
c:\documents and settings\All Users\Application Data\ma-config.com
c:\documents and settings\All Users\Application Data\ma-config.com\Logs\activex.txt
c:\documents and settings\All Users\Application Data\ma-config.com\Logs\maconfservice.txt
c:\documents and settings\All Users\Application Data\ma-config.com\Logs\websocketpp.log
c:\documents and settings\All Users\Application Data\ma-config.com\mcbase.db
c:\documents and settings\All Users\Application Data\ma-config.com\server.pem
c:\documents and settings\All Users\Application Data\TEMP
c:\documents and settings\All Users\Application Data\TEMP\RAIDTest
C:\install.res.1028.tmp
C:\install.res.1031.tmp
C:\install.res.1033.tmp
C:\install.res.1036.tmp
C:\install.res.1040.tmp
C:\install.res.1041.tmp
C:\install.res.1042.tmp
C:\install.res.2052.tmp
C:\install.res.3082.tmp
c:\program files\ma-config.com
c:\program files\ma-config.com\config.xml
c:\program files\ma-config.com\CPUID\cpuidsdk.dll
c:\program files\ma-config.com\Drivers\ma-config.inf
c:\program files\ma-config.com\Drivers\ma-config_amd64.cat
c:\program files\ma-config.com\Drivers\ma-config_amd64.sys
c:\program files\ma-config.com\Drivers\ma-config_x86.cat
c:\program files\ma-config.com\Drivers\ma-config_x86.sys
c:\program files\ma-config.com\gdiplus.dll
c:\program files\ma-config.com\Langues\LangueMC.ar.resx
c:\program files\ma-config.com\Langues\LangueMC.de.resx
c:\program files\ma-config.com\Langues\LangueMC.en.resx
c:\program files\ma-config.com\Langues\LangueMC.es.resx
c:\program files\ma-config.com\Langues\LangueMC.fr.resx
c:\program files\ma-config.com\Langues\LangueMC.pt.resx
c:\program files\ma-config.com\Langues\LangueMC.ru.resx
c:\program files\ma-config.com\ma-config.html
c:\program files\ma-config.com\MaConfigAgent.exe
c:\program files\ma-config.com\MCBCL.dll
c:\program files\ma-config.com\MCDetection.exe
c:\program files\ma-config.com\MCNoyau.dll
c:\program files\ma-config.com\MCrypt.dll
c:\program files\ma-config.com\MCSettings.exe
c:\program files\ma-config.com\sqlite3old.dll
.
.
((((((((((((((((((((((((((((((((((((((( Pilotes/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_ma-config_x86
-------\Legacy_MaConfigAgent
-------\Legacy_ma-config_x86
-------\Legacy_MaConfigAgent
-------\Service_ma-config_x86
-------\Service_MaConfigAgent
-------\Service_ma-config_x86
-------\Service_MaConfigAgent
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2015-09-12 au 2015-10-12 ))))))))))))))))))))))))))))))))))))
.
.
2015-10-11 23:39 . 2015-10-11 23:42 -------- d-----w- c:\program files\ZHPFix
2015-10-08 19:16 . 2015-10-12 00:25 -------- d-----w- C:\AdwCleaner
2015-10-08 12:44 . 2015-10-08 12:44 -------- d-----w- c:\program files\FileZilla FTP Client
2015-10-08 12:10 . 2015-10-12 00:25 35064 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2015-10-08 12:10 . 2015-10-08 12:34 -------- d-----w- c:\documents and settings\All Users\Application Data\RogueKiller
2015-10-08 11:53 . 2015-10-12 00:23 -------- d-----w- c:\documents and settings\USER\Application Data\ZHP
2015-10-08 03:26 . 2015-10-12 01:19 98520 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2015-10-08 03:26 . 2015-06-18 08:41 121560 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2015-10-08 03:26 . 2015-06-18 08:41 23256 ----a-w- c:\windows\system32\drivers\mbam.sys
2015-10-08 03:16 . 2015-10-08 03:16 -------- d-----w- c:\windows\system32\wbem\Repository
2015-10-08 03:11 . 2015-10-08 03:14 -------- d-s---w- c:\documents and settings\Administrateur.A6-E9467ED056A2
2015-10-08 02:35 . 2015-10-08 02:36 -------- d-----w- C:\sh4ldr
2015-10-08 02:01 . 2015-10-08 03:26 -------- d-----w- c:\program files\Malwarebytes Anti-Malware
2015-10-08 02:01 . 2015-10-08 02:01 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2015-10-06 21:53 . 2015-10-06 21:53 -------- d-----w- c:\program files\SAGEM
2015-10-06 21:53 . 2015-10-06 21:53 -------- d-----w- c:\documents and settings\USER\Application Data\InstallShield
2015-09-29 16:38 . 2015-10-08 11:45 -------- d-----w- c:\windows\system32\config\systemprofile\opera autoupdate
2015-09-28 20:43 . 2015-10-12 01:19 -------- d-----w- c:\program files\Opera
2015-09-28 01:13 . 2015-09-29 18:24 -------- d-----w- c:\documents and settings\USER\Local Settings\Application Data\purevpn
2015-09-28 00:35 . 2013-08-22 05:40 35288 ----a-w- c:\windows\system32\drivers\tap0901.sys
2015-09-26 18:39 . 2015-09-26 18:39 -------- d-----w- c:\documents and settings\USER\.oracle_jre_usage
2015-09-26 18:34 . 2015-09-26 18:34 -------- d-----w- c:\documents and settings\USER\Application Data\Oracle
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-09-26 18:38 . 2015-07-11 06:51 97888 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2015-09-26 18:38 . 2014-08-04 13:49 146432 ----a-w- c:\windows\system32\javacpl.cpl
2015-09-22 03:58 . 2014-07-16 11:17 780488 -c--a-w- c:\windows\system32\FlashPlayerApp.exe
2015-09-22 03:58 . 2014-07-16 11:17 142536 -c--a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[-] 2008-05-07 . 50C27DB0AC142028795C5565D96F4FED . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2008-04-14 455168]
"MSPY2002"="c:\windows\system32\IME\PINTLGNT\ImScInst.exe" [2008-04-14 59392]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-02-15 131072]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-02-15 159744]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-02-15 135168]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2014-10-14 703736]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nltide_2"="shell32" [X]
.
c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\
DSLMON.lnk - c:\program files\SAGEM\SAGEM F@st 800-840\dslmon.exe [2015-10-8 1205840]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"MemCheckBoxInRunDlg"= 1 (0x1)
"NoSMBalloonTip"= 1 (0x1)
"NoWelcomeScreen"= 1 (0x1)
"NoStrCmpLogical"= 0 (0x0)
.
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"MemCheckBoxInRunDlg"= 1 (0x1)
"NoSMBalloonTip"= 1 (0x1)
"NoWelcomeScreen"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2014-12-19 16:50 1022152 ----a-w- c:\program files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avgnt]
2014-10-14 14:48 703736 ----a-w- c:\program files\Avira\AntiVir Desktop\avgnt.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EagleGet]
2015-06-19 00:23 1859072 ----a-w- c:\program files\EagleGet\EagleGet.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Facebook Update]
2014-08-10 22:30 138096 ----atw- c:\documents and settings\USER\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
2008-02-15 12:46 159744 -c--a-w- c:\windows\system32\hkcmd.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IMJPMIG8.1]
2008-04-14 12:00 208952 -c--a-w- c:\windows\ime\imjp8_1\imjpmig.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
2010-04-16 22:12 3872080 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2015-09-04 13:43 55358992 ----a-r- c:\program files\Skype\Phone\Skype.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2015-08-04 12:47 597552 ----a-w- c:\program files\Fichiers communs\Java\Java Update\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Wondershare Helper Compact.exe]
2014-10-31 16:38 2072928 ----a-w- c:\program files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
"FirewallOverride"=dword:00000001
"DisablePagingExecutive"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Google\\Chrome\\Application\\chrome.exe"=
"c:\\Documents and Settings\\USER\\Local Settings\\Application Data\\Facebook\\Video\\Skype\\FacebookVideoCalling.exe"=
"c:\\Program Files\\Samsung\\Samsung Universal Print Driver 2\\PrinterSelector\\SUPDApp.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
R1 avkmgr;avkmgr;c:\windows\system32\drivers\avkmgr.sys [29/07/2014 01:06 37352]
R2 123FlashChatServer7.7.1;123FlashChatServer7.7.1;c:\program files\123FlashChat7.7.1\server\fcserver.exe [20/05/2015 14:58 159896]
R2 713xTVCard;SAA7130 TV Card;c:\windows\system32\drivers\SAA713x.sys [22/01/2015 15:24 279552]
R2 AntiVirSchedulerService;Avira Planificateur;c:\program files\Avira\AntiVir Desktop\sched.exe [29/07/2014 01:06 431920]
R2 egGetSvc;egGetSvc;c:\program files\EagleGet\EGMonitor.exe [06/04/2015 16:04 233472]
R2 ss_conn_service;SAMSUNG Mobile Connectivity Service;c:\program files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [23/08/2015 15:16 743688]
R2 WDMTVTuner;Universal WDM TV Tuner;c:\windows\system32\drivers\WDMTuner.sys [22/01/2015 15:24 25984]
R3 eagleGet;eagleGet;c:\windows\system32\drivers\eagleGet.sys [06/04/2015 16:04 61752]
S1 ZAM;ZAM Helper Driver;\??\c:\windows\System32\drivers\zam32.sys --> c:\windows\System32\drivers\zam32.sys [?]
S1 ZAM_Guard;ZAM Guard Driver;\??\c:\windows\System32\drivers\zamguard32.sys --> c:\windows\System32\drivers\zamguard32.sys [?]
S2 ELOADER;General Purpose USB Driver (adildr.sys);c:\windows\system32\drivers\adildr.sys [08/10/2015 03:22 56088]
S2 MBAMScheduler;MBAMScheduler;c:\program files\Malwarebytes Anti-Malware\mbamscheduler.exe [08/10/2015 03:26 1871160]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes Anti-Malware\mbamservice.exe [08/10/2015 03:26 1133880]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [09/07/2015 13:14 327296]
S2 ZAMSvc;ZAM Controller Service;"c:\program files\Zemana AntiMalware\ZAM.exe" /service --> c:\program files\Zemana AntiMalware\ZAM.exe [?]
S3 3xHybrid;SAA7130 TV Card Service;c:\windows\system32\drivers\3xHybrid.sys [22/01/2015 14:28 716160]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [16/07/2014 10:18 1691480]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\drivers\ssudbus.sys [23/08/2015 15:16 89984]
S3 DtvAudio;DtvAudio;c:\windows\system32\drivers\DtvAudio.sys [22/01/2015 14:27 10330]
S3 DtvVideo;DtvVideo;c:\windows\system32\drivers\DtvVideo.sys [22/01/2015 14:27 26730]
S3 EsgScanner;EsgScanner;c:\windows\system32\DRIVERS\EsgScanner.sys --> c:\windows\system32\DRIVERS\EsgScanner.sys [?]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [08/10/2015 03:26 23256]
S3 scvad_simple;SplitCam Virtual Microphone (WDM);c:\windows\system32\drivers\SplitCamAudio.sys [30/06/2014 05:23 18944]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\drivers\ssudmdm.sys [23/08/2015 15:16 184192]
S3 ssudserd;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.);c:\windows\system32\drivers\ssudserd.sys [23/08/2015 15:16 184192]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\drivers\VBoxNetAdp.sys [12/04/2013 12:33 104720]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys --> c:\windows\system32\DRIVERS\VBoxNetFlt.sys [?]
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-09-26 21:28 997704 ----a-w- c:\program files\Google\Chrome\Application\45.0.2454.101\Installer\chrmstp.exe
.
Contenu du dossier 'Tâches planifiées'
.
2015-10-10 c:\windows\Tasks\Adobe Flash Player PPAPI Notifier.job
- c:\windows\system32\Macromed\Flash\FlashUtil32_19_0_0_185_pepper.exe [2015-09-22 03:58]
.
2015-10-12 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-16 03:58]
.
2015-10-11 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-117609710-261478967-1417001333-1003Core.job
- c:\documents and settings\USER\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe [2014-08-10 22:30]
.
2015-10-11 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-117609710-261478967-1417001333-1003UA.job
- c:\documents and settings\USER\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe [2014-08-10 22:30]
.
2015-10-12 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-07-28 23:17]
.
2015-10-12 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-07-28 23:17]
.
2015-10-12 c:\windows\Tasks\Notification de fin de service de Microsoft Windows XP - à la connexion.job
- c:\windows\system32\xp_eos.exe [2014-07-22 23:28]
.
2015-10-08 c:\windows\Tasks\Notification de fin de service de Microsoft Windows XP -mensuellement.job
- c:\windows\system32\xp_eos.exe [2014-07-22 23:28]
.
2015-10-12 c:\windows\Tasks\Opera scheduled Autoupdate 1434377502.job
- c:\program files\Opera\launcher.exe [2015-09-28 07:30]
.
2015-10-12 c:\windows\Tasks\Opera scheduled Autoupdate 1443473164.job
- c:\program files\Opera\launcher.exe [2015-09-28 07:30]
.
.
------- Examen supplémentaire -------
.
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uSearchURL,(Default) = hxxp://www.google.fr/keyword/%s
FF - ProfilePath - c:\documents and settings\USER\Application Data\Mozilla\Firefox\Profiles\bwxmqi7i.default-1435344809437\
FF - prefs.js: network.proxy.ftp - 46.105.152.78
FF - prefs.js: network.proxy.ftp_port - 8888
FF - prefs.js: network.proxy.gopher - 46.105.152.78
FF - prefs.js: network.proxy.gopher_port - 8888
FF - prefs.js: network.proxy.socks - 46.105.152.78
FF - prefs.js: network.proxy.socks_port - 8888
FF - prefs.js: network.proxy.ssl - 46.105.152.78
FF - prefs.js: network.proxy.ssl_port - 8888
FF - prefs.js: network.proxy.type - 0
.
- - - - ORPHELINS SUPPRIMES - - - -
.
Toolbar-Locked - (no file)
AddRemove-HP LaserJet P1000 series - c:\program files\Avago-HP\{4202e576-62bb-492a-b044-4567b3979037}\uninstall.exe
AddRemove-25_escape - c:\program files\Samsung\USB Drivers\25_escape\Uninstall.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2015-10-12 01:20
Windows 5.1.2600 Service Pack 3 NTFS
.
Recherche de processus cachés ...
.
Recherche d'éléments en démarrage automatique cachés ...
.
Recherche de fichiers cachés ...
.
Scan terminé avec succès
Fichiers cachés: 0
.
**************************************************************************
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_19_0_0_185_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_19_0_0_185_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- DLLs chargées dans les processus actifs ---------------------
.
- - - - - - - > 'explorer.exe'(2492)
c:\windows\system32\eappprxy.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\wpdshserviceobj.dll
c:\windows\system32\portabledevicetypes.dll
c:\windows\system32\portabledeviceapi.dll
.
------------------------ Autres processus actifs ------------------------
.
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\program files\fichiers communs\i4j_jres\1.5.0_17\bin\java.exe
c:\program files\fichiers communs\i4j_jres\1.5.0_17\bin\java.exe
c:\windows\System32\spool\DRIVERS\W32X86\3\HP1006MC.EXE
c:\windows\system32\igfxsrvc.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
.
**************************************************************************
.
Heure de fin: 2015-10-12 01:25:42 - La machine a redémarré
ComboFix-quarantined-files.txt 2015-10-12 01:25
.
Avant-CF: 16 005 918 720 octets libres
Après-CF: 16 012 279 808 octets libres
.
- - End Of File - - 39B79F52186F7A2B3A0B017977ADE757
8F558EB6672622401DA993E1E865C861

Publicité


Signaler le contenu de ce document

Publicité