ComboFix 16-12-15.01 - ORANI31 17/12/2016 22:12:44.1.2 - x86 Microsoft Windows 7 Professionnel 6.1.7601.1.1252.33.1036.18.2016.1314 [GMT 1:00] Lancé depuis: c:\users\ORANI31\Desktop\ComboFix.exe AV: Kaspersky Internet Security *Disabled/Updated* {86367591-4BE4-AE08-2FD9-7FCB8259CD98} FW: Kaspersky Internet Security *Disabled* {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3} SP: Kaspersky Internet Security *Disabled/Updated* {3D579475-6DDE-A186-1569-44B9F9DE8725} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . . c:\programdata\ntuser.pol c:\users\ORANI31\AppData\Roaming\DRPSu c:\users\ORANI31\AppData\Roaming\DRPSu\diagnostics\drivers.json c:\users\ORANI31\AppData\Roaming\DRPSu\diagnostics\hardware.json c:\users\ORANI31\AppData\Roaming\DRPSu\diagnostics\localdiagnostics.json c:\users\ORANI31\AppData\Roaming\DRPSu\diagnostics\newsoft.json c:\users\ORANI31\AppData\Roaming\DRPSu\diagnostics\soft.json c:\users\ORANI31\AppData\Roaming\DRPSu\diagnostics\softchanges.json c:\users\ORANI31\AppData\Roaming\DRPSu\DRIVERS\Intel-FORCED-Chipset-AllNTx64x86-10.1.1.38-drp.zip c:\users\ORANI31\AppData\Roaming\DRPSu\Internet\WifiInterface.txt c:\users\ORANI31\AppData\Roaming\DRPSu\Logs\log___2016-11-19-00-10-06.html c:\users\ORANI31\AppData\Roaming\DRPSu\Logs\log___2016-11-19-00-16-48.html c:\users\ORANI31\AppData\Roaming\DRPSu\Logs\log___2016-11-19-00-17-31.html c:\users\ORANI31\AppData\Roaming\DRPSu\PROGRAMS\DriverPack-Notifier.exe c:\users\ORANI31\AppData\Roaming\DRPSu\PROGRAMS\OperaBlink.exe c:\users\ORANI31\AppData\Roaming\DRPSu\snapshots\DriverPack_Snapshot_20161119_001011.zip c:\users\ORANI31\AppData\Roaming\DRPSu\snapshots\DriverPack_Snapshot_20161119_001652.zip c:\users\ORANI31\AppData\Roaming\DRPSu\temp\ps.ivoeey1n.c0j3a.cmd.txt c:\users\ORANI31\AppData\Roaming\DRPSu\temp\ps.ivoeey1n.c0j3a.stderr.log c:\users\ORANI31\AppData\Roaming\DRPSu\temp\ps.ivoeey1n.c0j3a.stdout.log c:\users\ORANI31\AppData\Roaming\DRPSu\temp\ps.ivoenk41.mdmat.cmd.txt c:\users\ORANI31\AppData\Roaming\DRPSu\temp\ps.ivoenk41.mdmat.stderr.log c:\users\ORANI31\AppData\Roaming\DRPSu\temp\ps.ivoenk41.mdmat.stdout.log c:\users\ORANI31\AppData\Roaming\DRPSu\temp\ps.ivoeohdi.1cit1.cmd.txt c:\users\ORANI31\AppData\Roaming\DRPSu\temp\ps.ivoeohdi.1cit1.stderr.log c:\users\ORANI31\AppData\Roaming\DRPSu\temp\ps.ivoeohdi.1cit1.stdout.log c:\users\ORANI31\AppData\Roaming\DRPSu\temp\ps.ivofquvv.nlqz8.cmd.txt c:\users\ORANI31\AppData\Roaming\DRPSu\temp\ps.ivofquvv.nlqz8.stderr.log c:\users\ORANI31\AppData\Roaming\DRPSu\temp\ps.ivofquvv.nlqz8.stdout.log c:\users\ORANI31\AppData\Roaming\DRPSu\temp\wget_finished_20138.txt c:\users\ORANI31\AppData\Roaming\DRPSu\temp\wget_finished_42819.txt c:\users\ORANI31\AppData\Roaming\DRPSu\temp\wget_finished_44285.txt c:\users\ORANI31\AppData\Roaming\DRPSu\temp\wget_finished_69127.txt c:\users\ORANI31\AppData\Roaming\DRPSu\temp\wget_finished_80263.txt c:\users\ORANI31\AppData\Roaming\DRPSu\temp\wget_log_20138.log c:\users\ORANI31\AppData\Roaming\DRPSu\temp\wget_log_42819.log c:\users\ORANI31\AppData\Roaming\DRPSu\temp\wget_log_44285.log c:\users\ORANI31\AppData\Roaming\DRPSu\temp\wget_log_69127.log c:\users\ORANI31\AppData\Roaming\DRPSu\temp\wget_log_80263.log c:\windows\msdownld.tmp c:\windows\system32\ReadMe.txt . . ((((((((((((((((((((((((((((( Fichiers créés du 2016-11-17 au 2016-12-17 )))))))))))))))))))))))))))))))))))) . . 2016-12-17 21:17 . 2016-12-17 21:17 -------- d-----w- c:\users\ORANI31\AppData\Local\temp 2016-12-17 21:17 . 2016-12-17 21:17 -------- d-----w- c:\users\Default\AppData\Local\temp 2016-12-17 18:32 . 2016-12-17 18:32 -------- d-----w- c:\windows\ELAMBKUP 2016-12-17 18:32 . 2016-12-17 18:34 -------- d-----w- c:\program files\Kaspersky Lab 2016-12-17 18:32 . 2016-06-26 14:10 149840 ----a-w- c:\windows\system32\drivers\klflt.sys 2016-12-17 18:17 . 2016-12-17 18:17 62576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{C1A47764-F5F6-4CD5-906F-A304A6473B77}\offreg.2032.dll 2016-12-17 11:25 . 2016-12-17 20:01 -------- d-----w- C:\Pre_Scan 2016-12-16 22:40 . 2016-12-16 22:40 62576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{C1A47764-F5F6-4CD5-906F-A304A6473B77}\offreg.2088.dll 2016-12-16 21:55 . 2016-12-16 21:55 24688 ----a-w- c:\windows\system32\drivers\TrueSight.sys 2016-12-16 21:55 . 2016-12-16 21:55 -------- d-----w- c:\programdata\RogueKiller 2016-12-16 21:12 . 2016-12-17 20:01 -------- d-----w- C:\AdwCleaner 2016-12-16 16:37 . 2016-11-17 12:56 9834504 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{C1A47764-F5F6-4CD5-906F-A304A6473B77}\mpengine.dll 2016-12-16 15:29 . 2016-12-17 20:26 -------- d-----w- c:\users\ORANI31\AppData\Roaming\ZHP 2016-12-16 14:46 . 2016-12-17 20:01 -------- d-----w- C:\UsbFix 2016-12-15 11:23 . 2016-12-17 20:01 -------- d-----r- C:\Skypee 2016-12-15 11:22 . 2016-12-17 20:01 -------- d-----r- C:\Google 2016-12-04 21:09 . 2016-12-04 21:09 -------- d-----w- c:\program files\Karmian 2016-11-30 22:37 . 2016-12-17 20:01 -------- d-----w- C:\wifidata 2016-11-29 21:48 . 2016-11-29 21:48 -------- d-----w- c:\program files\City Interactive 2016-11-24 15:47 . 2016-11-24 15:47 -------- d-----w- c:\users\ORANI31\AppData\Local\storage 2016-11-24 15:47 . 2016-11-24 15:47 -------- d-----w- c:\users\ORANI31\AppData\Roaming\Ubisoft 2016-11-24 15:17 . 2016-11-24 15:17 -------- d-----w- c:\program files\Ubisoft 2016-11-24 00:45 . 2016-12-15 09:20 -------- d-----w- c:\users\ORANI31\AppData\Local\Disc_Soft_Ltd 2016-11-24 00:41 . 2016-11-24 00:42 26168 ----a-w- c:\windows\system32\drivers\dtlitescsibus.sys 2016-11-24 00:41 . 2016-11-24 00:49 -------- d-----w- c:\users\ORANI31\AppData\Roaming\DAEMON Tools Lite 2016-11-24 00:37 . 2016-11-24 00:41 -------- d-----w- c:\programdata\DAEMON Tools Lite 2016-11-23 16:47 . 2016-11-23 16:47 -------- d-----w- c:\users\ORANI31\AppData\Roaming\PowerISO 2016-11-21 16:09 . 2011-12-16 12:26 306688 ----a-w- c:\windows\system32\unarc.dll 2016-11-21 16:09 . 2011-12-16 12:26 222 ----a-w- c:\windows\system32\._unarc.dll 2016-11-20 20:28 . 2016-11-20 20:29 -------- d-----w- c:\users\ORANI31\AppData\Roaming\dvdcss 2016-11-20 11:03 . 2016-11-20 11:03 -------- d-----w- c:\users\ORANI31\AppData\Local\Risen3 2016-11-19 00:04 . 2016-11-19 00:04 -------- d-----r- c:\users\ORANI31\AppData\Roaming\Brother 2016-11-18 23:50 . 2016-11-18 23:50 -------- d-----w- c:\program files\SAMSUNG 2016-11-18 23:49 . 2016-11-18 23:49 -------- d-----w- c:\programdata\Samsung 2016-11-18 23:37 . 2016-11-18 23:37 -------- d-----w- c:\users\ORANI31\AppData\Roaming\DRPNPS 2016-11-18 22:03 . 2016-11-19 15:29 -------- d-----w- c:\users\ORANI31\AppData\Local\Mediatek 2016-11-18 21:57 . 2016-11-18 21:57 -------- d-----w- c:\program files\DIFX 2016-11-18 21:49 . 2016-11-19 15:29 -------- d-----w- c:\programdata\SP_FT_Logs 2016-11-18 21:48 . 2015-11-25 23:45 -------- d-----w- c:\program files\SP Flash Tool v5.1352.01 . . . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2016-12-17 18:53 . 2016-06-02 21:39 115936 ----a-w- c:\windows\system32\drivers\klwtp.sys 2016-12-17 18:52 . 2016-06-20 16:29 49744 ----a-w- c:\windows\system32\drivers\klim6.sys 2016-12-17 18:52 . 2016-06-20 16:51 120664 ----a-w- c:\windows\system32\drivers\klhk.sys 2016-12-15 11:49 . 2016-10-12 20:01 802904 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2016-12-15 11:49 . 2016-10-12 20:01 144472 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2016-11-13 23:26 . 2016-11-04 00:46 119296 ----a-w- c:\windows\system32\zlib.dll 2016-10-26 15:29 . 2016-10-14 15:30 407720 ----a-w- c:\windows\system32\MpSigStub.exe 2016-10-26 14:18 . 2016-10-26 14:18 138904 ----a-w- c:\users\ORANI31\AppData\Roaming\PnkBstrK.sys 2016-10-26 14:18 . 2016-10-26 14:18 189248 ----a-w- c:\windows\system32\PnkBstrB.ex0 2016-10-20 17:14 . 2010-11-20 21:29 1493504 ----a-w- c:\windows\system32\ExplorerFrame.dll 2016-10-20 17:14 . 2009-07-13 23:27 53760 ----a-w- c:\windows\system32\wermgr.exe 2016-10-06 08:17 . 2016-10-06 08:17 171072 ----a-w- c:\windows\system32\drivers\ser2pl.sys 2013-02-07 12:22 . 2013-02-07 12:22 50330 ----a-w- c:\program files\AntiDust.exe . . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 . [HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{2E38825B-8815-42CF-9126-C58BC28D4591}] 2016-12-17 18:52 1028968 ----a-w- c:\program files\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{093F479D-712E-46CD-9E06-62E734A05F68}"= "c:\program files\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll" [2016-12-17 1028968] . [HKEY_CLASSES_ROOT\clsid\{093f479d-712e-46cd-9e06-62e734a05f68}] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ IDM Shell Extension] @="{CDC95B92-E27C-4745-A8C5-64A52A78855D}" [HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}] 2012-11-15 23:07 21904 ----a-w- c:\program files\Internet Download Manager\IDMShellExt.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2016-10-22 3981368] "CCleaner Monitoring"="c:\program files\CCleaner\CCleaner.exe" [2016-08-05 6854360] "uTorrent"="c:\users\ORANI31\AppData\Roaming\uTorrent\uTorrent.exe" [2016-11-18 1995968] "Skype"="c:\program files\Skype\Phone\Skype.exe" [2016-10-17 27011712] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ControlCenter4"="c:\program files\ControlCenter4\BrCcBoot.exe" [2013-04-05 139264] "BrStsMon00"="c:\program files\Browny02\Brother\BrStMonW.exe" [2012-12-27 4522496] "BrHelp"="c:\program files\Brother\Brother Help\BrotherHelp.exe" [2013-01-18 2009088] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2016-10-01 1156824] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "aux1"=wdmaud.drv . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus] "DisableMonitoring"=dword:00000001 . R2 AVP17.0.0;Kaspersky Anti-Virus Service 17.0.0;c:\program files\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe [2016-06-28 241544] R2 KSDE1.0.0;Kaspersky Secure Connection Service 1.0.0;c:\program files\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe [2016-06-28 241544] R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2016-09-20 324224] R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-20 62464] R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus;c:\windows\system32\DRIVERS\dtlitescsibus.sys [2016-11-24 26168] R3 MSICDSetup;MSICDSetup;E:\CDriver.sys [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224] R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264] R3 wdm_usb;wdm_usb;c:\windows\system32\DRIVERS\usb2ser.sys [2016-08-16 128704] S0 cm_km;AO Kaspersky Lab Cryptographic Module x86 (56 bit);c:\windows\system32\DRIVERS\cm_km.sys [2016-06-10 170840] S0 iusb3hcs;Pilote de commutateur de contrôleur d'hôte Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys [2012-12-04 16440] S0 klbackupdisk;Kaspersky Lab klbackupdisk;c:\windows\system32\DRIVERS\klbackupdisk.sys [2016-06-07 57264] S1 klbackupflt;Kaspersky Lab klbackupflt;c:\windows\system32\DRIVERS\klbackupflt.sys [2016-06-14 71504] S1 klhk;Kaspersky Lab service driver;c:\windows\system32\DRIVERS\klhk.sys [2016-12-17 120664] S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys [2016-12-17 49744] S1 klpd;Kaspersky Lab format recognizer driver;c:\windows\system32\DRIVERS\klpd.sys [2016-05-31 41392] S1 kltdi;kltdi;c:\windows\system32\DRIVERS\kltdi.sys [2016-05-17 71088] S1 Klwtp;KLwtp - WFP callout traffic inspector;c:\windows\system32\DRIVERS\klwtp.sys [2016-12-17 115936] S1 kneps;kneps;c:\windows\system32\DRIVERS\kneps.sys [2016-06-14 161712] S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-03-28 163328] S2 IDMWFP;IDMWFP;c:\windows\system32\DRIVERS\idmwfp.sys [2013-11-28 108000] S2 kldisk;kldisk;c:\windows\system32\DRIVERS\kldisk.sys [2016-05-31 69000] S2 ss_conn_service;SAMSUNG Mobile Connectivity Service;c:\program files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [2014-12-03 743688] S2 VIAKaraokeService;VIA Karaoke digital mixer Service;c:\windows\system32\viakaraokesrv.exe [2012-10-22 27768] S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2012-02-23 86544] S3 BrYNSvc;BrYNSvc;c:\program files\Browny02\BrYNSvc.exe [2012-10-26 282112] S3 klflt;Kaspersky Lab Kernel DLL;c:\windows\system32\DRIVERS\klflt.sys [2016-06-26 149840] S3 klkbdflt;Kaspersky Lab KLKBDFLT;c:\windows\system32\DRIVERS\klkbdflt.sys [2016-05-18 46000] S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys [2015-06-07 38072] S3 kltap;Kaspersky Security Data Escort Adapter;c:\windows\system32\DRIVERS\kltap.sys [2016-06-07 48056] S3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [2013-03-04 108624] S3 MEI;Intel(R) Management Engine Interface ;c:\windows\system32\DRIVERS\HECI.sys [2013-01-23 56432] S3 Ser2plx86;Prolific Serial port WDF driver;c:\windows\system32\DRIVERS\ser2pl.sys [2016-10-06 171072] S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2012-10-22 1841272] . . --- Autres Services/Pilotes en mémoire --- . *NewlyCreated* - KLBACKUPDISK . Contenu du dossier 'Tâches planifiées' . 2016-12-17 c:\windows\Tasks\Adobe Flash Player PPAPI Notifier.job - c:\windows\system32\Macromed\Flash\FlashUtil32_24_0_0_186_pepper.exe [2016-12-15 11:49] . 2016-12-17 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-14 11:49] . . ------- Examen supplémentaire ------- . IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~1\Office12\EXCEL.EXE/3000 IE: Télécharger avec IDM - c:\program files\Internet Download Manager\IEExt.htm IE: Télécharger tous les liens avec IDM - c:\program files\Internet Download Manager\IEGetAll.htm TCP: DhcpNameServer = 192.168.1.1 FF - ProfilePath - c:\users\ORANI31\AppData\Roaming\Mozilla\Firefox\Profiles\7owidw96.default\ . - - - - ORPHELINS SUPPRIMES - - - - . AddRemove-utvideo_is1 - c:\program files\utvideo\unins000.exe AddRemove-Xvid_is1 - c:\program files\Xvid\unins000.exe AddRemove-01_Simmental - c:\program files\SAMSUNG\USB Drivers\01_Simmental\Uninstall.exe AddRemove-02_Siberian - c:\program files\SAMSUNG\USB Drivers\02_Siberian\Uninstall.exe AddRemove-03_Swallowtail - c:\program files\SAMSUNG\USB Drivers\03_Swallowtail\Uninstall.exe AddRemove-04_semseyite - c:\program files\SAMSUNG\USB Drivers\04_semseyite\Uninstall.exe AddRemove-07_Schorl - c:\program files\SAMSUNG\USB Drivers\07_Schorl\Uninstall.exe AddRemove-09_Hsp - c:\program files\SAMSUNG\USB Drivers\09_Hsp\Uninstall.exe AddRemove-11_HSP_Plus_Default - c:\program files\SAMSUNG\USB Drivers\11_HSP_Plus_Default\Uninstall.exe AddRemove-16_Shrewsbury - c:\program files\SAMSUNG\USB Drivers\16_Shrewsbury\Uninstall.exe AddRemove-20_NXP_Driver - c:\program files\SAMSUNG\USB Drivers\20_NXP_Driver\Uninstall.exe AddRemove-24_flashusbdriver - c:\program files\SAMSUNG\USB Drivers\24_flashusbdriver\Uninstall.exe AddRemove-25_escape - c:\program files\SAMSUNG\USB Drivers\25_escape\Uninstall.exe . . . --------------------- CLES DE REGISTRE BLOQUEES --------------------- . [HKEY_USERS\S-1-5-21-3235856546-844269278-4031702888-1000_Classes\CLSID\{0ea281b6-93a6-4737-8e71-c3e883515b50}] @Denied: (Full) (Everyone) @Allowed: (Read) (RestrictedCode) "Model"=dword:0000013b "Therad"=dword:0000001e "MData"=hex(0):2b,8f,78,29,5a,0c,ce,ec,48,d4,68,e5,9f,6a,96,3e,ab,de,c5,81,26, 38,95,44,75,07,18,dd,fb,11,42,94,27,b7,99,0d,2a,ba,05,1a,a2,02,c9,3e,9b,f9,\ . [HKEY_USERS\S-1-5-21-3235856546-844269278-4031702888-1000_Classes\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}] @Denied: (Full) (Everyone) @Allowed: (Read) (RestrictedCode) "scansk"=hex(0):bf,52,b2,3b,4c,2d,77,b9,65,21,20,b8,c0,b0,dc,f7,ce,d0,b2,d4,a7, 7e,93,4b,e6,40,fd,e7,36,4b,ff,f2,87,64,c5,94,be,46,f9,84,00,00,00,00,00,00,\ . [HKEY_USERS\S-1-5-21-3235856546-844269278-4031702888-1000_Classes\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}] @Denied: (Full) (Everyone) "scansk"=hex(0):69,b8,c3,ff,30,5d,e0,6e,13,a3,c8,b5,38,b1,67,32,e9,bc,5c,01,51, ac,bf,1c,05,75,e0,40,7e,af,34,be,e9,6f,78,2d,df,56,20,07,00,00,00,00,00,00,\ . [HKEY_USERS\S-1-5-21-3235856546-844269278-4031702888-1000_Classes\CLSID\{f666efa1-a0a6-4fc9-9a19-36c12d358adb}] @Denied: (Full) (Everyone) @Allowed: (Read) (RestrictedCode) "Model"=dword:0000015f "Therad"=dword:00000002 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Heure de fin: 2016-12-17 22:18:45 ComboFix-quarantined-files.txt 2016-12-17 21:18 . Avant-CF: 152 126 935 040 octets libres Après-CF: 152 149 180 416 octets libres . - - End Of File - - E88660970DC6B1964DFBB0C7649FAB06 A36C5E4F47E84449FF07ED3517B43A31