Répondre à : Ralentissement du PC 2016-09-08T13:38:27+00:00
Guesswhat
Participant
Nombre d'articles : 12

Merci de m’aider 🙂

[shadow=blue:hh577cc4][glow=red:hh577cc4]Rapport USBFix[/glow:hh577cc4][/shadow:hh577cc4]:

############################## | UsbFix V 7.169 | [Suppression]

Utilisateur: libax (Administrateur) # LIBAX-HP
Mis à jour le 31/03/2014 par El Desaparecido – Team SosVirus
Lancé à 12:07:38 | 04/05/2014

Site Web : http://www.usbfix.net/” onclick=”window.open(this.href);return false;
Changelog : http://www.usbfix.net/maj/” onclick=”window.open(this.href);return false;
Support : forum-virus-securite.html
Upload Malware : upload_malware.php
Contact : http://www.usbfix.net/contact/” onclick=”window.open(this.href);return false;

PC: Foxconn (2ADA)
CPU: Intel(R) Core(TM) i5-2320 CPU @ 3.00GHz
RAM -> [Total : 6100 Mo| Free : 4502 Mo]
Bios: AMI
Boot: Normal boot

OS: Microsoft Windows 7 Édition Familiale Premium (6.1.7601 64-Bit) Service Pack 1
WB: Windows Internet Explorer : 11.0.9600.17105
WB: Google Chrome : 34.0.1847.131
WB: Mozilla Firefox : 29.0
WB: Safari : 534.57.2

SC: Security Center [Enabled]
WU: Windows Update [Enabled]
AV: avast! Antivirus [(!) Disabled | Updated]
AS: Windows Defender [Enabled | Updated]
AS: avast! Antivirus [(!) Disabled | Updated]
FW: Windows FireWall [Enabled]
AS: Malwarebytes’ Anti-Malware : 1.75.0001

C: (%systemdrive%) -> Disque fixe # 915 Go (842 Go libre(s) – 92%) [OS] # NTFS
D: -> Disque fixe # 17 Go (2 Go libre(s) – 11%) [HP_RECOVERY] # NTFS
E: -> CD-ROM

################## | Processus Actif |

C:Windowssystem32csrss.exe (ID: 424 |ParentID: 416)
C:Windowssystem32wininit.exe (ID: 484 |ParentID: 416)
C:Windowssystem32csrss.exe (ID: 512 |ParentID: 496)
C:Windowssystem32services.exe (ID: 552 |ParentID: 484)
C:Windowssystem32lsass.exe (ID: 572 |ParentID: 484)
C:Windowssystem32lsm.exe (ID: 580 |ParentID: 484)
C:Windowssystem32winlogon.exe (ID: 652 |ParentID: 496)
C:Windowssystem32svchost.exe (ID: 724 |ParentID: 552)
C:Windowssystem32svchost.exe (ID: 820 |ParentID: 552)
C:Windowssystem32atiesrxx.exe (ID: 884 |ParentID: 552)
C:WindowsSystem32svchost.exe (ID: 944 |ParentID: 552)
C:WindowsSystem32svchost.exe (ID: 988 |ParentID: 552)
C:Windowssystem32svchost.exe (ID: 116 |ParentID: 552)
C:Program FilesIDTWDMSTacSV64.exe (ID: 360 |ParentID: 552)
C:Windowssystem32atieclxx.exe (ID: 1356 |ParentID: 884)
C:Windowssystem32svchost.exe (ID: 1392 |ParentID: 552)
C:Program FilesAVAST SoftwareAvastAvastSvc.exe (ID: 1524 |ParentID: 552)
C:Windowssystem32WLANExt.exe (ID: 1532 |ParentID: 988)
C:Windowssystem32conhost.exe (ID: 1540 |ParentID: 424)
C:WindowsSystem32spoolsv.exe (ID: 1776 |ParentID: 552)
C:Windowssystem32taskeng.exe (ID: 1784 |ParentID: 356)
C:Windowssystem32svchost.exe (ID: 1820 |ParentID: 552)
C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe (ID: 1892 |ParentID: 552)
C:WindowsSysWOW64ezSharedSvcHost.exe (ID: 1952 |ParentID: 552)
C:Program Files (x86)PDF Completepdfsvc.exe (ID: 2032 |ParentID: 552)
C:Windowssystem32lpksetup.exe (ID: 1160 |ParentID: 724)
C:Program Files (x86)RalinkCommonRaRegistry64.exe (ID: 1336 |ParentID: 552)
C:Windowssystem32taskhost.exe (ID: 2516 |ParentID: 552)
C:Windowssystem32Dwm.exe (ID: 2608 |ParentID: 988)
C:WindowsExplorer.EXE (ID: 2652 |ParentID: 2600)
C:Windowssystem32runonce.exe (ID: 2852 |ParentID: 2652)
C:WindowsSysWOW64runonce.exe (ID: 2916 |ParentID: 2852)
C:Program Files (x86)Microsoft Application Virtualization Clientsftvsa.exe (ID: 2676 |ParentID: 552)
C:Program Files (x86)SkypeUpdaterUpdater.exe (ID: 2660 |ParentID: 552)
C:Windowssystem32svchost.exe (ID: 2808 |ParentID: 552)
C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSVC.EXE (ID: 2892 |ParentID: 552)
C:Program Files (x86)Microsoft Application Virtualization Clientsftlist.exe (ID: 3028 |ParentID: 552)
C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSvcM.exe (ID: 1176 |ParentID: 2892)
C:Program Files (x86)Common FilesMicrosoft SharedVirtualization HandlerCVHSVC.EXE (ID: 3784 |ParentID: 552)
C:Windowssystem32SearchIndexer.exe (ID: 3836 |ParentID: 552)
C:WindowsSystem32svchost.exe (ID: 3884 |ParentID: 552)
C:WindowsservicingTrustedInstaller.exe (ID: 3940 |ParentID: 552)
C:Windowssystem32SearchProtocolHost.exe (ID: 3272 |ParentID: 3836)
C:Windowssystem32svchost.exe (ID: 3308 |ParentID: 552)
C:Windowssystem32svchost.exe (ID: 1188 |ParentID: 552)
C:Windowssystem32SearchFilterHost.exe (ID: 1472 |ParentID: 3836)
C:WindowsSystem32svchost.exe (ID: 1740 |ParentID: 552)
C:WindowsSystem32WUDFHost.exe (ID: 344 |ParentID: 988)
C:Windowssystem32wbemwmiprvse.exe (ID: 1976 |ParentID: 724)

################## | Recherche générique |

(!) Fichiers temporaires supprimés.

################## | Registre |

Réparé ! HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesExplorer|EnableShellExecuteHooks -> 0
Supprimé! HKUS-1-5-21-4175682021-1730363644-2950262031-1000Software….Mountpoints2{fd86dc34-dd54-11e2-a06f-ac162d01d533}

################## | Regedit Run |

F2 – HKLM..Winlogon : [Shell] explorer.exe
F2 – [x64] HKLM..Winlogon : [Shell] explorer.exe
F2 – HKLM..Winlogon : [Userinit] userinit.exe,
F2 – [x64] HKLM..Winlogon : [Userinit] C:Windowssystem32userinit.exe,
04 – HKCU..Run : [Sidebar] C:Program FilesWindows Sidebarsidebar.exe /autoRun
04 – HKCU..Run : [HP Photosmart 7520 series (NET)] “C:Program FilesHPHP Photosmart 7520 seriesBinScanToPCActivationApp.exe” -deviceID “CN36F492H705YY:NW” -scfn “HP Photosmart 7520 series (NET)” -AutoStart 1
04 – HKLM..Run : [StartCCC] “C:Program Files (x86)ATI TechnologiesATI.ACECore-StaticCLIStart.exe” MSRun
04 – HKLM..Run : [AMD AVT] Cmd.exe /c start “AMD Accelerated Video Transcoding device initialization” /min “C:Program Files (x86)AMD AVTbinkdbsync.exe” aml
04 – HKLM..Run : [Easybits Recovery] C:Program Files (x86)EasyBits For KidsezRecover.exe
04 – HKLM..Run : [PDF Complete] C:Program Files (x86)PDF Completepdfsty.exe
04 – HKLM..Run : [Adobe ARM] “C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe”
04 – HKLM..Run : [HP Software Update] C:Program Files (x86)HPHP Software UpdateHPWuSchd2.exe
04 – HKLM..Run : []
04 – HKLM..Run : [SunJavaUpdateSched] “C:Program Files (x86)Common FilesJavaJava Updatejusched.exe”
04 – HKLM..Run : [AvastUI.exe] “C:Program FilesAVAST SoftwareAvastAvastUI.exe” /nogui
04 – [x64] HKLM..Run : [SysTrayApp] C:Program FilesIDTWDMsttray64.exe
04 – [x64] HKLM..Run : [BeatsOSDApp] C:Program FilesIDTWDMbeats64.exe
04 – [x64] HKLM..Run : [HPSYSDRV] C:Program Files (x86)Hewlett-PackardHP OdometerHPSYSDRV.EXE
04 – [x64] HKLM..RunOnce : [NCPluginUpdater] “C:Program Files (x86)Hewlett-PackardHP Health CheckActiveCheckproduct_lineNCPluginUpdater.exe” Update
04 – HKUS-1-5-19..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
04 – HKUS-1-5-20..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
04 – HKUS-1-5-21-4175682021-1730363644-2950262031-1000..Run : [Sidebar] C:Program FilesWindows Sidebarsidebar.exe /autoRun
04 – HKUS-1-5-21-4175682021-1730363644-2950262031-1000..Run : [HP Photosmart 7520 series (NET)] “C:Program FilesHPHP Photosmart 7520 seriesBinScanToPCActivationApp.exe” -deviceID “CN36F492H705YY:NW” -scfn “HP Photosmart 7520 series (NET)” -AutoStart 1
04 – HKUS-1-5-19..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe
04 – HKUS-1-5-20..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe

################## | Listing |

[12/12/2012 – 23:14:35 | SHD] – C:$RECYCLE.BIN
[11/02/2011 – 19:00:41 | SHD] – C:Boot
[21/11/2010 – 05:23:51 | RASH | 375 Ko] – C:bootmgr
[11/02/2011 – 19:00:42 | RASH | 8 Ko] – C:BOOTSECT.BAK
[14/07/2009 – 07:08:56 | SHD] – C:Documents and Settings
[04/05/2014 – 12:06:44 | ASH | 4684808 Ko] – C:hiberfil.sys
[29/06/2012 – 17:09:38 | D] – C:hp
[12/03/2013 – 20:05:19 | D] – C:Kaspersky Keys
[12/03/2013 – 20:05:23 | D] – C:Kaspersky-Keys
[12/03/2013 – 20:14:24 | D] – C:KAV
[21/04/2013 – 16:06:19 | RHD] – C:MSOCache
[29/06/2012 – 16:20:31 | N | 0 Ko] – C:OS
[04/05/2014 – 12:06:28 | ASH | 6246412 Ko] – C:pagefile.sys
[14/07/2009 – 05:20:08 | D] – C:PerfLogs
[04/05/2014 – 09:45:10 | N | 1 Ko] – C:PhysicalDisk0_MBR.bin
[23/12/2013 – 12:39:08 | D] – C:Program Files
[04/05/2014 – 09:42:52 | D] – C:Program Files (x86)
[15/03/2014 – 21:32:28 | HD] – C:ProgramData
[11/02/2011 – 21:24:35 | SHD] – C:Recovery
[15/03/2014 – 21:30:50 | D] – C:SWSETUP
[03/05/2014 – 00:45:41 | SHD] – C:System Volume Information
[12/12/2012 – 23:14:27 | D] – C:SYSTEM.SAV
[04/05/2014 – 12:05:23 | D] – C:UsbFix
[04/05/2014 – 12:08:05 | A | 8 Ko | 49CC7475B27B0DB5056AA70FB633245C] – C:UsbFix [Clean 2] LIBAX-HP.txt
[12/12/2012 – 23:11:21 | D] – C:Users
[30/01/2014 – 01:42:12 | D] – C:Windows
[12/12/2012 – 23:14:35 | SHD] – D:$RECYCLE.BIN
[25/11/2012 – 13:38:10 | SHD] – D:boot
[20/11/2010 – 09:33:54 | N | 654 Ko] – D:bootmgr.efi
[12/12/2012 – 23:11:11 | N | 0 Ko] – D:BT_HP.FLG
[29/06/2012 – 18:39:20 | N | 1 Ko] – D:CSP.DAT
[29/06/2012 – 18:53:04 | N | 14 Ko] – D:DeployRp.log
[25/11/2012 – 13:38:10 | D] – D:EFI
[25/11/2012 – 13:38:10 | D] – D:hp
[13/12/2012 – 20:18:49 | N | 0 Ko | 9673DD9329303C78FA5017A02758ED5F] – D:HPSF_Rep.txt
[25/11/2012 – 13:42:23 | N | 0 Ko] – D:HP_WSD.dat
[12/12/2012 – 23:11:00 | N | 0 Ko] – D:language.ini
[25/11/2012 – 13:38:10 | SHD] – D:preload
[13/12/2012 – 08:07:25 | SD] – D:Recovery
[12/12/2012 – 23:11:00 | N | 0 Ko] – D:RPCONFIG.LOG
[29/04/2014 – 18:15:13 | SHD] – D:System Volume Information

################## | Vaccin |

D:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

################## | E.O.F | http://www.usbfix.net/” onclick=”window.open(this.href);return false; – https://www.sosvirus.net” onclick=”window.open(this.href);return false; |

_____________________________
[shadow=blue:hh577cc4][glow=red:hh577cc4]Rapport Shotcut_Module[/glow:hh577cc4][/shadow:hh577cc4] :

https://antimalware.top/www/?a=d&i=CislnMDcL8” onclick=”window.open(this.href);return false;

________________________________

[shadow=blue:hh577cc4][glow=red:hh577cc4]Rapport ZGPDiag[/glow:hh577cc4][/shadow:hh577cc4] :

https://antimalware.top/www/?a=d&i=RWpCDS0lUu” onclick=”window.open(this.href);return false;

Voilà.
Est-ce que vous savez comment j’ai pu avoir ces trucs bizarres qui ralentissent mon PC sachant que je ne suis pas fan de téléchargement ?

:merci2: