cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ComboFix 15-03-09.01 - imad 13/03/2015 1:09.1.2 - x86
Microsoft Windows�7 �dition Int�grale 6.1.7601.1.1252.33.1036.18.1981.525 [GMT 1:00]
Lanc� depuis: c:\users\imad\Downloads\Programs\ComboFix.exe
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
FW: avast! Antivirus *Disabled* {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((( Fichiers cr��s du 2015-02-13 au 2015-03-13 ))))))))))))))))))))))))))))))))))))
.
.
2015-03-13 00:15 . 2015-03-13 00:15 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-03-12 22:20 . 2015-03-12 22:20 -------- d-----w- C:\[Smad-Cage]
2015-03-12 22:20 . 2015-03-13 00:05 -------- d-----w- c:\program files\SMADAV
2015-03-12 17:23 . 2015-03-12 17:24 -------- d-----w- c:\programdata\BlueStacks
2015-03-12 17:23 . 2015-03-12 17:24 -------- d-----w- c:\program files\BlueStacks
2015-03-12 16:34 . 2015-03-12 16:40 -------- d-----w- c:\program files\Google
2015-03-09 22:17 . 2015-03-09 22:17 -------- d-----w- c:\program files\FastStone Capture
2015-03-09 21:09 . 2015-03-09 21:09 -------- d-----w- c:\program files\Andy
2015-03-09 16:09 . 2015-03-09 16:09 -------- d-----w- c:\program files\Notepad++
2015-03-09 04:14 . 2015-03-08 19:23 -------- d-----w- c:\windows\Panther
2015-03-09 04:14 . 2015-03-09 04:14 -------- d-----w- C:\Boot
2015-03-08 20:30 . 2015-03-08 20:30 -------- d-----w- c:\program files\InstallShield Installation Information
2015-03-08 20:27 . 2015-03-08 20:27 -------- d-----w- c:\program files\Common Files\InstallShield
2015-03-08 20:13 . 2015-03-08 20:13 -------- d-----w- c:\program files\Common Files\Skype
2015-03-08 20:13 . 2015-03-09 05:55 -------- d-----r- c:\program files\Skype
2015-03-08 20:07 . 2015-02-24 02:23 246920 ------w- c:\windows\system32\MpSigStub.exe
2015-03-08 20:07 . 2015-02-16 03:21 9041640 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{D8F7E2B9-F452-4077-BC88-CFEE3AA304D2}\mpengine.dll
2015-03-08 20:07 . 2015-03-08 20:07 -------- d-----w- C:\HSM
2015-03-08 19:53 . 2015-03-09 05:55 -------- d-----w- c:\programdata\Skype
2015-03-08 19:46 . 2015-03-08 19:46 71944 ----a-w- c:\windows\system32\drivers\aswStm.sys
2015-03-08 19:46 . 2015-03-08 19:49 779536 ----a-w- c:\windows\system32\drivers\aswsnx.sys
2015-03-08 19:46 . 2015-03-08 19:46 192352 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2015-03-08 19:46 . 2015-03-08 19:47 414520 ----a-w- c:\windows\system32\drivers\aswsp.sys
2015-03-08 19:46 . 2015-03-08 19:46 67824 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2015-03-08 19:46 . 2015-03-08 19:46 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2015-03-08 19:46 . 2015-03-08 19:46 24184 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2015-03-08 19:46 . 2015-03-08 19:46 81768 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2015-03-08 19:46 . 2015-03-08 19:46 26136 ----a-w- c:\windows\system32\drivers\aswKbd.sys
2015-03-08 19:46 . 2015-03-08 19:46 276432 ----a-w- c:\windows\system32\aswBoot.exe
2015-03-08 19:46 . 2015-03-08 19:46 43152 ----a-w- c:\windows\avastSS.scr
2015-03-08 19:46 . 2015-03-08 19:46 270752 ----a-w- c:\windows\system32\drivers\aswNdisFlt.sys
2015-03-08 19:45 . 2015-03-08 19:45 -------- d-----w- c:\program files\AVAST Software
2015-03-08 19:43 . 2015-03-08 19:45 -------- d-----w- c:\programdata\AVAST Software
2015-03-08 19:42 . 2015-03-08 19:42 -------- d-----w- c:\program files\Microsoft.NET
2015-03-08 19:41 . 2015-03-12 17:26 -------- d-sh--w- c:\windows\Installer
2015-03-08 19:41 . 2015-03-08 19:41 -------- d-----w- c:\program files\SuperCopier2
2015-03-08 19:41 . 2015-03-09 20:49 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2015-03-08 19:41 . 2015-03-09 20:49 701616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2015-03-08 19:41 . 2015-03-08 19:41 -------- d-----w- c:\windows\system32\Macromed
2015-03-08 19:36 . 2015-03-08 20:10 -------- d-----w- C:\d774a497dfebd9f7bbcd0077673f7cd8
2015-03-08 19:33 . 2013-12-01 12:10 218200 ----a-w- c:\windows\system32\unrar.dll
2015-03-08 19:33 . 2015-03-08 19:33 -------- d-----w- c:\program files\K-Lite Codec Pack
2015-03-08 19:31 . 2015-03-10 15:56 -------- d-----w- c:\program files\Opera
2015-03-08 19:31 . 2015-03-08 19:31 -------- d-----w- c:\programdata\IDM
2015-03-08 19:31 . 2015-03-08 19:31 -------- d-----w- c:\program files\Internet Download Manager
2015-03-08 19:29 . 2014-05-08 11:25 76872 ----a-w- c:\windows\system32\RtNicProp32.dll
2015-03-08 19:29 . 2014-05-08 11:25 716504 ----a-w- c:\windows\system32\drivers\Rt86win7.sys
2015-03-08 19:29 . 2014-05-08 11:25 100896 ----a-w- c:\windows\system32\RTNUninst32.dll
2015-03-08 19:23 . 2015-03-09 05:56 -------- d-----w- c:\users\imad
2015-03-08 19:22 . 2015-03-08 19:22 -------- d-----w- C:\Recovery
2015-03-08 19:22 . 2015-03-08 19:22 -------- d-sh--we c:\users\Default\Voisinage r�seau
2015-03-08 19:22 . 2015-03-08 19:22 -------- d-sh--we c:\users\Default\Voisinage d'impression
2015-03-08 19:22 . 2015-03-08 19:22 -------- d-sh--we c:\users\Default\Mod�les
2015-03-08 19:22 . 2015-03-08 19:22 -------- d-sh--we c:\users\Default\Mes documents
2015-03-08 19:22 . 2015-03-08 19:22 -------- d-sh--we c:\users\Default\Menu D�marrer
2015-03-08 19:22 . 2015-03-08 19:22 -------- d-sh--we c:\users\Default\AppData\Local\Historique
2015-03-08 19:22 . 2015-03-08 19:22 -------- d-sh--we c:\programdata\Mod�les
2015-03-08 19:22 . 2015-03-08 19:22 -------- d-sh--we c:\programdata\Menu D�marrer
2015-03-08 19:22 . 2015-03-08 19:22 -------- d-sh--we c:\programdata\Favoris
2015-03-08 19:22 . 2015-03-08 19:22 -------- d-sh--we c:\programdata\Bureau
2015-03-08 19:22 . 2015-03-08 19:22 -------- d-sh--we c:\program files\Fichiers communs
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les �l�ments vides & les �l�ments initiaux l�gitimes ne sont pas list�s
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2015-03-08 19:46 578240 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
2014-04-21 10:02 23008 ----a-w- c:\program files\Internet Download Manager\IDMShellExt.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SuperCopier2.exe"="c:\program files\SuperCopier2\SuperCopier2.exe" [2009-08-16 955392]
"IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2014-06-17 3837520]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2015-02-26 31346784]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2015-03-08 4085896]
"HDAudDeck"="c:\program files\VIA\VIAudioi\VDeck\VDeck.exe" [2012-10-25 4045432]
"BlueStacks Agent"="c:\program files\BlueStacks\HD-Agent.exe" [2015-02-03 847576]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 BstHdAndroidSvc;BlueStacks Android Service;c:\program files\BlueStacks\HD-Service.exe BstHdAndroidSvc Android [x]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2015-01-02 315488]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [2010-11-20 77184]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [2010-11-20 25600]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2010-11-20 112640]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
S0 aswNdisFlt;Avast! Firewall Driver;c:\windows\system32\DRIVERS\aswNdisFlt.sys [2015-03-08 270752]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys [2015-03-08 26136]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2015-03-08 779536]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2015-03-08 414520]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [2015-03-08 24184]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2015-03-08 67824]
S2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys [2015-03-08 71944]
S2 avast! Firewall;avast! Firewall;c:\program files\AVAST Software\Avast\afwServ.exe [2015-03-08 106488]
S2 BstHdDrv;BlueStacks Hypervisor;c:\program files\BlueStacks\HD-Hypervisor-x86.sys [2015-02-03 112856]
S2 BstHdLogRotatorSvc;BlueStacks Log Rotator Service;c:\program files\BlueStacks\HD-LogRotatorService.exe [2015-02-03 388824]
S2 BstHdUpdaterSvc;BlueStacks Updater Service;c:\program files\BlueStacks\HD-UpdaterService.exe [2015-02-03 794328]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-07-14 1390176]
S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-07-14 1767520]
S2 IDMWFP;IDMWFP;c:\windows\system32\DRIVERS\idmwfp.sys [2014-06-09 113680]
S2 VIAKaraokeService;VIA Karaoke digital mixer Service;c:\windows\system32\viakaraokesrv.exe [2012-10-22 27768]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2014-05-08 716504]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2012-10-22 1841272]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-03-12 16:40 1061704 ----a-w- c:\program files\Google\Chrome\Application\41.0.2272.89\Installer\chrmstp.exe
.
Contenu du dossier 'T�ches planifi�es'
.
2015-03-12 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-08 20:49]
.
2015-03-12 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2015-03-12 16:34]
.
2015-03-12 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2015-03-12 16:34]
.
.
------- Examen suppl�mentaire -------
.
IE: T�l�charger avec Internet Download Manager - c:\program files\Internet Download Manager\IEExt.htm
IE: T�l�charger tous les liens avec Internet Download Manager - c:\program files\Internet Download Manager\IEGetAll.htm
TCP: DhcpNameServer = 192.168.1.1
.
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Heure de fin: 2015-03-13 01:16:11
ComboFix-quarantined-files.txt 2015-03-13 00:16
.
Avant-CF: 14�241�222�656 octets libres
Apr�s-CF: 14�890�520�576 octets libres
.
- - End Of File - - 37DA3DFE5E864E9937A1035BDDFAA3AA
A36C5E4F47E84449FF07ED3517B43A31

Publicité


Signaler le contenu de ce document

Publicité