Publicité
Publicité
Format du document : text/plain
Prévisualisation
ComboFix 15-07-20.01 - YASSINE 22/07/2015 12:53:45.1.2 - x86
Microsoft Windows 7 Édition Intégrale 6.1.7600.0.1252.33.1036.18.3071.1876 [GMT 1:00]
Lancé depuis: c:\users\YASSINE\Downloads\Programs\ComboFix.exe
AV: ESET Smart Security 8.0 *Enabled/Updated* {19259FAE-8396-A113-46DB-15B0E7DFA289}
FW: Pare-feu personnel d'ESET *Enabled* {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}
SP: ESET Smart Security 8.0 *Enabled/Updated* {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Un nouveau point de restauration a été créé
* Un antivirus résident est actif
.
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2015-06-22 au 2015-07-22 ))))))))))))))))))))))))))))))))))))
.
.
2015-07-22 12:03 . 2015-07-22 12:03 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-07-18 12:29 . 2015-07-18 12:29 -------- d-----w- c:\programdata\Malwarebytes
2015-07-15 08:00 . 2015-07-15 08:00 -------- d-----w- c:\users\YASSINE\AppData\Roaming\PC Remote
2015-07-14 00:33 . 2015-07-14 00:33 -------- d-----w- c:\program files\Total Video Converter
2015-07-14 00:04 . 2015-07-14 00:04 -------- d-----w- C:\Fraps
2015-07-13 10:10 . 2015-07-14 00:05 -------- d-----w- c:\program files\Mirillis
2015-07-13 08:42 . 2015-07-13 08:42 -------- d-----w- c:\users\YASSINE\AppData\Local\Steam
2015-07-13 08:34 . 2015-07-13 08:34 -------- d-----w- c:\users\YASSINE\AppData\Local\Skyrim
2015-07-13 08:33 . 2008-10-15 06:22 452440 ----a-w- c:\windows\system32\d3dx10_40.dll
2015-07-13 08:33 . 2008-10-15 06:22 2036576 ----a-w- c:\windows\system32\D3DCompiler_40.dll
2015-07-13 08:33 . 2008-10-15 06:22 4379984 ----a-w- c:\windows\system32\D3DX9_40.dll
2015-07-13 06:18 . 2015-07-13 06:18 -------- d-----w- c:\program files\SystemRequirementsLab
2015-07-13 05:47 . 2015-07-13 19:58 -------- d-----w- C:\wifidata
2015-07-13 05:05 . 2015-07-13 05:05 -------- d-----w- c:\users\YASSINE\AppData\Roaming\Mirillis
2015-07-13 05:05 . 2015-07-13 05:05 -------- d-----w- c:\programdata\Mirillis
2015-07-13 05:05 . 2015-07-13 05:05 -------- d-----w- c:\users\YASSINE\AppData\Local\Mirillis
2015-07-13 04:35 . 2015-07-13 04:39 -------- d-----w- c:\users\YASSINE\AppData\Local\NVIDIA Corporation
2015-07-13 04:33 . 2015-05-19 03:29 41648 ----a-w- c:\windows\system32\drivers\nvvad32v.sys
2015-07-13 04:33 . 2015-05-19 03:14 57520 ----a-w- c:\windows\system32\nvaudcap32v.dll
2015-07-10 02:21 . 2015-07-10 02:21 -------- d-----w- c:\programdata\McAfee
2015-07-09 04:31 . 2015-07-09 04:31 -------- d-----w- c:\programdata\regid.1986-12.com.adobe
2015-07-09 04:16 . 2015-07-15 03:40 -------- d-----w- c:\users\YASSINE\AppData\Local\Adobe
2015-07-08 01:22 . 2009-11-25 19:47 49472 ----a-w- c:\windows\system32\netfxperf.dll
2015-07-08 01:22 . 2009-11-25 19:47 297808 ----a-w- c:\windows\system32\mscoree.dll
2015-07-08 01:22 . 2009-11-25 19:47 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2015-07-08 01:22 . 2009-11-25 19:47 295264 ----a-w- c:\windows\system32\PresentationHost.exe
2015-07-08 01:22 . 2009-11-25 19:47 1130824 ----a-w- c:\windows\system32\dfshim.dll
2015-07-08 01:05 . 2015-07-08 01:05 -------- d-----w- c:\programdata\Steam
2015-07-08 00:52 . 2015-07-08 00:52 39992 ----a-w- c:\windows\system32\drivers\dtultrausbbus.sys
2015-07-08 00:49 . 2015-07-08 00:51 25016 ----a-w- c:\windows\system32\drivers\dtultrascsibus.sys
2015-07-08 00:49 . 2015-07-08 00:53 -------- d-----w- c:\users\YASSINE\AppData\Roaming\DAEMON Tools Ultra
2015-07-08 00:48 . 2015-07-08 00:52 -------- d-----w- c:\program files\DAEMON Tools Ultra
2015-07-08 00:48 . 2015-07-08 00:48 -------- d-----w- c:\programdata\DAEMON Tools Ultra
2015-07-07 18:27 . 2015-07-07 18:27 -------- d-----w- c:\program files\ESET
2015-07-07 09:24 . 2015-07-07 09:24 -------- d-----w- c:\users\YASSINE\AppData\Roaming\Image-Line
2015-07-06 22:54 . 2015-07-06 22:54 -------- d-----w- c:\program files\ASIO4ALL v2
2015-07-06 22:54 . 2006-06-20 08:56 225280 ----a-w- c:\windows\system32\rewire.dll
2015-07-06 22:54 . 2009-09-15 09:14 1554944 ----a-w- c:\windows\system32\vorbis.acm
2015-07-06 22:53 . 2015-07-06 22:53 -------- d-----w- c:\program files\Outsim
2015-07-06 22:49 . 2015-07-06 22:54 -------- d-----w- c:\program files\Image-Line
2015-07-05 08:15 . 2015-07-05 08:15 -------- d-----w- c:\programdata\Electronic Arts
2015-07-05 07:33 . 2015-07-05 07:33 -------- d-----w- c:\programdata\Origin
2015-07-05 05:40 . 2015-07-05 05:41 -------- d-----w- c:\users\YASSINE\AppData\Roaming\Prison Break
2015-07-05 05:39 . 2015-07-05 05:39 -------- d-----w- c:\users\YASSINE\AppData\Roaming\Prison Break The Conspiracy
2015-07-05 02:15 . 2015-07-05 02:17 -------- d-----w- c:\users\enfants
2015-07-04 06:30 . 2015-07-04 06:30 -------- d-----w- c:\program files\ElcomSoft
2015-07-04 02:32 . 2015-07-04 02:32 -------- d-----w- c:\users\YASSINE\AppData\Roaming\Microsoft Game Studios
2015-07-04 02:31 . 2009-09-04 17:29 453456 ----a-w- c:\windows\system32\d3dx10_42.dll
2015-07-04 02:31 . 2009-09-04 17:29 1892184 ----a-w- c:\windows\system32\D3DX9_42.dll
2015-07-04 02:31 . 2015-07-04 02:31 -------- d-----w- c:\windows\system32\xlive
2015-07-04 02:31 . 2015-07-04 02:31 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE
2015-07-04 02:27 . 2007-04-04 18:53 81768 ----a-w- c:\windows\system32\xinput1_3.dll
2015-07-04 02:27 . 2006-09-28 16:05 2414360 ----a-w- c:\windows\system32\d3dx9_31.dll
2015-07-03 22:18 . 2015-07-05 05:40 -------- d-----w- c:\users\YASSINE\AppData\Roaming\NVIDIA
2015-07-03 03:03 . 2015-07-03 03:03 23456 ----a-w- c:\windows\system32\drivers\DrvAgent32.sys
2015-07-03 03:03 . 2015-07-03 03:03 -------- d-----w- c:\users\YASSINE\AppData\Local\eSupport.com
2015-07-03 03:03 . 2015-07-03 03:03 -------- d-----w- c:\program files\eSupport.com
2015-07-03 00:20 . 2015-07-03 00:20 -------- d-----w- C:\DRIVERS
2015-07-02 21:28 . 2015-07-02 21:28 -------- d-----w- c:\users\YASSINE\AppData\Local\Apple Computer
2015-07-02 21:28 . 2015-07-03 06:49 -------- d-----w- c:\users\YASSINE\AppData\Roaming\Apple Computer
2015-07-02 21:27 . 2015-07-02 21:27 -------- d-----w- c:\program files\iPod
2015-07-02 21:27 . 2015-07-02 21:28 -------- d-----w- c:\program files\iTunes
2015-07-02 21:27 . 2015-07-02 21:27 -------- d-----w- c:\programdata\Apple Computer
2015-07-02 21:26 . 2015-07-02 21:26 -------- d-----w- c:\users\YASSINE\AppData\Local\Apple
2015-07-02 21:26 . 2015-07-02 21:26 -------- d-----w- c:\program files\Apple Software Update
2015-07-02 21:26 . 2015-07-02 21:26 -------- d-----w- c:\program files\Bonjour
2015-07-02 21:25 . 2015-07-02 21:27 -------- d-----w- c:\program files\Common Files\Apple
2015-07-02 21:25 . 2015-07-02 21:26 -------- d-----w- c:\programdata\Apple
2015-07-02 08:22 . 2015-07-13 10:34 -------- d-----w- c:\users\YASSINE\AppData\Roaming\uTorrent
2015-07-02 08:17 . 2015-07-02 08:17 -------- d-----w- c:\users\YASSINE\AppData\Local\Macromedia
2015-07-02 08:02 . 2015-07-02 08:13 -------- d-----w- C:\GAMES
2015-07-02 06:37 . 2015-07-02 06:37 -------- d-----w- c:\program files\Realtek
2015-07-02 06:36 . 2015-07-02 17:42 -------- d--h--w- c:\program files\Temp
2015-07-02 06:36 . 2015-05-27 17:38 2825944 ----a-w- c:\windows\RtlExUpd.dll
2015-07-02 06:33 . 2015-07-15 03:39 778416 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2015-07-02 06:33 . 2015-07-15 03:39 142512 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2015-07-02 03:54 . 2015-07-02 04:02 -------- d-----w- c:\users\YASSINE\AppData\Local\Mozilla
2015-07-02 03:53 . 2015-07-04 04:14 -------- d-----w- c:\program files\Mozilla Maintenance Service
2015-07-02 03:30 . 2012-09-19 11:51 31584 ----a-w- c:\windows\system32\TURegOpt.exe
2015-07-02 03:30 . 2012-09-19 11:51 21344 ----a-w- c:\windows\system32\authuitu.dll
2015-07-02 03:29 . 2015-07-02 03:29 -------- d-----w- c:\users\YASSINE\AppData\Roaming\TuneUp Software
2015-07-02 03:29 . 2015-07-02 03:30 -------- d-----w- c:\program files\TuneUp Utilities 2013
2015-07-02 03:28 . 2015-07-02 03:29 -------- d-----w- c:\programdata\TuneUp Software
2015-07-02 03:28 . 2015-07-03 00:11 -------- d-sh--w- c:\programdata\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2015-07-02 03:28 . 2015-07-02 03:28 -------- d--h--w- c:\programdata\Common Files
2015-07-02 02:19 . 2015-07-02 02:19 -------- d-----w- c:\program files\DartyBox
2015-07-02 02:19 . 2007-04-04 08:08 184320 ----a-w- c:\windows\system32\coclassfast.dll
2015-07-02 02:19 . 2015-07-02 02:19 -------- d-----w- c:\users\YASSINE\AppData\Roaming\InstallShield
2015-07-02 02:15 . 2015-07-02 02:15 -------- d-----w- c:\programdata\Age of Empires 3
2015-07-02 02:05 . 2006-12-22 20:05 449536 ----a-w- c:\windows\system32\drivers\athrusb.sys
2015-07-02 02:05 . 2015-07-02 02:05 -------- d-----w- c:\program files\DartyBox Wifi
2015-07-02 02:05 . 2015-07-02 02:05 -------- d-----w- c:\users\YASSINE\AppData\Roaming\DartyBox ADSL
2015-07-02 02:04 . 2015-07-02 15:25 -------- d--h--w- c:\program files\InstallShield Installation Information
2015-07-02 02:03 . 2015-07-02 20:11 -------- d-----w- c:\program files\Assistant DartyBox
2015-07-02 02:03 . 2015-07-02 02:03 -------- d-----w- c:\program files\Citrix
2015-07-02 02:03 . 2015-07-02 20:11 -------- d-----w- c:\program files\CD_DartyBox
2015-07-02 02:00 . 2015-07-02 02:00 -------- d-----w- c:\program files\MSXML 4.0
2015-07-02 02:00 . 2015-07-02 02:00 -------- d-----w- c:\users\YASSINE\AppData\Roaming\Age of Empires III - Complete Collection_unistall
2015-07-02 01:19 . 2015-07-02 01:28 -------- d-----w- c:\users\YASSINE\AppData\Local\Microsoft Games
2015-07-02 00:36 . 2015-07-22 12:04 -------- d-----w- c:\users\YASSINE\AppData\Roaming\DMCache
2015-07-02 00:36 . 2015-07-19 04:11 -------- d-----w- c:\users\YASSINE\AppData\Roaming\IDM
2015-07-02 00:36 . 2015-07-02 00:37 -------- d-----w- c:\program files\Internet Download Manager
2015-07-02 00:33 . 2015-07-02 00:33 -------- d-----w- C:\SysInfo
2015-07-01 16:17 . 2015-07-01 16:17 -------- d-----w- c:\program files\Common Files\EZB Systems
2015-07-01 16:17 . 2015-07-01 16:17 -------- d-----w- c:\program files\UltraISO
2015-07-01 01:16 . 2015-07-22 11:40 -------- d-----w- c:\programdata\NVIDIA
2015-07-01 01:15 . 2012-10-02 19:29 645992 ----a-w- c:\windows\system32\nvvsvc.exe
2015-07-01 01:15 . 2012-10-02 19:29 62312 ----a-w- c:\windows\system32\nvshext.dll
2015-07-01 01:15 . 2012-10-02 19:29 2557288 ----a-w- c:\windows\system32\nvsvcr.dll
2015-07-01 01:15 . 2012-10-02 19:29 108392 ----a-w- c:\windows\system32\nvmctray.dll
2015-07-01 01:15 . 2012-10-02 19:29 3536817 ----a-w- c:\windows\system32\nvcoproc.bin
2015-07-01 01:15 . 2012-10-02 19:29 2853224 ----a-w- c:\windows\system32\nvsvc.dll
2015-07-01 01:15 . 2012-10-02 19:28 3965288 ----a-w- c:\windows\system32\nvcpl.dll
2015-07-01 01:15 . 2015-07-13 04:39 -------- d-----w- c:\programdata\NVIDIA Corporation
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-07-04 02:57 . 2009-08-18 11:30 564632 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\wlidui.dll
2015-07-04 02:57 . 2009-08-18 11:24 23776 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2015-06-10 23:08 . 2015-06-10 23:08 6112072 ----a-w- c:\windows\system32\usbaaplrc.dll
2015-06-10 23:08 . 2015-06-10 23:08 45056 ----a-w- c:\windows\system32\drivers\usbaapl.sys
2015-05-18 04:57 . 2015-06-09 16:14 9265072 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{8FF93EA8-8DE8-4434-A5C1-CC98B1FBE4B8}\mpengine.dll
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
2012-02-08 00:49 22376 ----a-w- c:\program files\Internet Download Manager\IDMShellExt.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]
"IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2015-07-02 3519936]
"uTorrent"="c:\users\YASSINE\AppData\Roaming\uTorrent\uTorrent.exe" [2015-07-02 1994592]
"DAEMON Tools Ultra Agent"="c:\program files\DAEMON Tools Ultra\DTAgent.exe" [2015-06-10 3753304]
"RESTART_STICKY_NOTES"="c:\windows\System32\StikyNot.exe" [2009-07-14 354304]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-27 31016]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2015-06-29 157992]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2015-01-28 5088456]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2013-03-21 472992]
"AdobeCEPServiceManager"="c:\program files\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe" [2013-03-13 1039248]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\GoToAssist]
2015-07-02 02:03 10536 ----a-w- c:\program files\Citrix\GoToAssist\508\g2awinlogon.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer3"=wdmaud.drv
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Assistant DartyBox"=c:\program files\DartyBox_v3\Sagem\AssistantDB\AssistantDB_Sagem.exe -m
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe"
.
R3 athrusb;Atheros Wireless LAN USB device driver;c:\windows\system32\DRIVERS\athrusb.sys [2006-12-22 449536]
R3 DrvAgent32;DrvAgent32;c:\windows\system32\Drivers\DrvAgent32.sys [2015-07-03 23456]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys [x]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad32v.sys [2015-05-19 41648]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2015-03-10 51824]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2015-03-10 193464]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2015-03-10 135808]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [2015-03-10 37928]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2013-04-30 217088]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-04-29 291840]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2015-01-28 1349576]
S2 IDMWFP;IDMWFP;c:\windows\system32\DRIVERS\idmwfp.sys [2012-08-02 97632]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-10-02 382824]
S2 Streamware;Streamware Protocol Driver;c:\windows\system32\DRIVERS\Streamware.sys [2013-12-03 57248]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe [2012-09-19 1699168]
S3 amdiox86;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox86.sys [2010-02-18 37944]
S3 Disc Soft Ultra Bus Service;Disc Soft Ultra Bus Service;c:\program files\DAEMON Tools Ultra\DiscSoftBusService.exe [2015-06-10 1094488]
S3 dtultrascsibus;DAEMON Tools Ultra Virtual SCSI Bus;c:\windows\system32\DRIVERS\dtultrascsibus.sys [2015-07-08 25016]
S3 dtultrausbbus;DAEMON Tools Ultra Virtual USB Bus;c:\windows\system32\DRIVERS\dtultrausbbus.sys [2015-07-08 39992]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys [2012-09-18 10088]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-07-14 23:13 991048 ----a-w- c:\program files\Google\Chrome\Application\43.0.2357.134\Installer\chrmstp.exe
.
Contenu du dossier 'Tâches planifiées'
.
2015-07-22 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-03-07 16:37]
.
2015-07-22 c:\windows\Tasks\GoogleUpdateTaskMachineUA1cf56a845c6cfeb.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-03-07 16:37]
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://portail.dartybox.com
mStart Page = www.google.com
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Télécharger avec IDM - c:\program files\Internet Download Manager\IEExt.htm
IE: Télécharger tous les liens avec IDM - c:\program files\Internet Download Manager\IEGetAll.htm
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\YASSINE\AppData\Roaming\Mozilla\Firefox\Profiles\1pwh9dta.default\
FF - prefs.js: browser.startup.homepage - hxxps://www.google.com/
FF - ExtSQL: 2015-06-09 17:20; wrc@avast.com; c:\program files\AVAST Software\Avast\WebRep\FF
FF - ExtSQL: 2015-07-02 01:36; mozilla_cc@internetdownloadmanager.com; c:\users\YASSINE\AppData\Roaming\IDM\idmmzcc5
FF - ExtSQL: 2015-07-03 06:55; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\YASSINE\AppData\Roaming\Mozilla\Firefox\Profiles\1pwh9dta.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
.
- - - - ORPHELINS SUPPRIMES - - - -
.
ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file)
.
.
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Heure de fin: 2015-07-22 13:05:49
ComboFix-quarantined-files.txt 2015-07-22 12:05
.
Avant-CF: 5 324 845 056 octets libres
Après-CF: 4 999 409 664 octets libres
.
- - End Of File - - 29E5F18A1A2106B575E09BEF8DB6D988
A36C5E4F47E84449FF07ED3517B43A31
Microsoft Windows 7 Édition Intégrale 6.1.7600.0.1252.33.1036.18.3071.1876 [GMT 1:00]
Lancé depuis: c:\users\YASSINE\Downloads\Programs\ComboFix.exe
AV: ESET Smart Security 8.0 *Enabled/Updated* {19259FAE-8396-A113-46DB-15B0E7DFA289}
FW: Pare-feu personnel d'ESET *Enabled* {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}
SP: ESET Smart Security 8.0 *Enabled/Updated* {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Un nouveau point de restauration a été créé
* Un antivirus résident est actif
.
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2015-06-22 au 2015-07-22 ))))))))))))))))))))))))))))))))))))
.
.
2015-07-22 12:03 . 2015-07-22 12:03 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-07-18 12:29 . 2015-07-18 12:29 -------- d-----w- c:\programdata\Malwarebytes
2015-07-15 08:00 . 2015-07-15 08:00 -------- d-----w- c:\users\YASSINE\AppData\Roaming\PC Remote
2015-07-14 00:33 . 2015-07-14 00:33 -------- d-----w- c:\program files\Total Video Converter
2015-07-14 00:04 . 2015-07-14 00:04 -------- d-----w- C:\Fraps
2015-07-13 10:10 . 2015-07-14 00:05 -------- d-----w- c:\program files\Mirillis
2015-07-13 08:42 . 2015-07-13 08:42 -------- d-----w- c:\users\YASSINE\AppData\Local\Steam
2015-07-13 08:34 . 2015-07-13 08:34 -------- d-----w- c:\users\YASSINE\AppData\Local\Skyrim
2015-07-13 08:33 . 2008-10-15 06:22 452440 ----a-w- c:\windows\system32\d3dx10_40.dll
2015-07-13 08:33 . 2008-10-15 06:22 2036576 ----a-w- c:\windows\system32\D3DCompiler_40.dll
2015-07-13 08:33 . 2008-10-15 06:22 4379984 ----a-w- c:\windows\system32\D3DX9_40.dll
2015-07-13 06:18 . 2015-07-13 06:18 -------- d-----w- c:\program files\SystemRequirementsLab
2015-07-13 05:47 . 2015-07-13 19:58 -------- d-----w- C:\wifidata
2015-07-13 05:05 . 2015-07-13 05:05 -------- d-----w- c:\users\YASSINE\AppData\Roaming\Mirillis
2015-07-13 05:05 . 2015-07-13 05:05 -------- d-----w- c:\programdata\Mirillis
2015-07-13 05:05 . 2015-07-13 05:05 -------- d-----w- c:\users\YASSINE\AppData\Local\Mirillis
2015-07-13 04:35 . 2015-07-13 04:39 -------- d-----w- c:\users\YASSINE\AppData\Local\NVIDIA Corporation
2015-07-13 04:33 . 2015-05-19 03:29 41648 ----a-w- c:\windows\system32\drivers\nvvad32v.sys
2015-07-13 04:33 . 2015-05-19 03:14 57520 ----a-w- c:\windows\system32\nvaudcap32v.dll
2015-07-10 02:21 . 2015-07-10 02:21 -------- d-----w- c:\programdata\McAfee
2015-07-09 04:31 . 2015-07-09 04:31 -------- d-----w- c:\programdata\regid.1986-12.com.adobe
2015-07-09 04:16 . 2015-07-15 03:40 -------- d-----w- c:\users\YASSINE\AppData\Local\Adobe
2015-07-08 01:22 . 2009-11-25 19:47 49472 ----a-w- c:\windows\system32\netfxperf.dll
2015-07-08 01:22 . 2009-11-25 19:47 297808 ----a-w- c:\windows\system32\mscoree.dll
2015-07-08 01:22 . 2009-11-25 19:47 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2015-07-08 01:22 . 2009-11-25 19:47 295264 ----a-w- c:\windows\system32\PresentationHost.exe
2015-07-08 01:22 . 2009-11-25 19:47 1130824 ----a-w- c:\windows\system32\dfshim.dll
2015-07-08 01:05 . 2015-07-08 01:05 -------- d-----w- c:\programdata\Steam
2015-07-08 00:52 . 2015-07-08 00:52 39992 ----a-w- c:\windows\system32\drivers\dtultrausbbus.sys
2015-07-08 00:49 . 2015-07-08 00:51 25016 ----a-w- c:\windows\system32\drivers\dtultrascsibus.sys
2015-07-08 00:49 . 2015-07-08 00:53 -------- d-----w- c:\users\YASSINE\AppData\Roaming\DAEMON Tools Ultra
2015-07-08 00:48 . 2015-07-08 00:52 -------- d-----w- c:\program files\DAEMON Tools Ultra
2015-07-08 00:48 . 2015-07-08 00:48 -------- d-----w- c:\programdata\DAEMON Tools Ultra
2015-07-07 18:27 . 2015-07-07 18:27 -------- d-----w- c:\program files\ESET
2015-07-07 09:24 . 2015-07-07 09:24 -------- d-----w- c:\users\YASSINE\AppData\Roaming\Image-Line
2015-07-06 22:54 . 2015-07-06 22:54 -------- d-----w- c:\program files\ASIO4ALL v2
2015-07-06 22:54 . 2006-06-20 08:56 225280 ----a-w- c:\windows\system32\rewire.dll
2015-07-06 22:54 . 2009-09-15 09:14 1554944 ----a-w- c:\windows\system32\vorbis.acm
2015-07-06 22:53 . 2015-07-06 22:53 -------- d-----w- c:\program files\Outsim
2015-07-06 22:49 . 2015-07-06 22:54 -------- d-----w- c:\program files\Image-Line
2015-07-05 08:15 . 2015-07-05 08:15 -------- d-----w- c:\programdata\Electronic Arts
2015-07-05 07:33 . 2015-07-05 07:33 -------- d-----w- c:\programdata\Origin
2015-07-05 05:40 . 2015-07-05 05:41 -------- d-----w- c:\users\YASSINE\AppData\Roaming\Prison Break
2015-07-05 05:39 . 2015-07-05 05:39 -------- d-----w- c:\users\YASSINE\AppData\Roaming\Prison Break The Conspiracy
2015-07-05 02:15 . 2015-07-05 02:17 -------- d-----w- c:\users\enfants
2015-07-04 06:30 . 2015-07-04 06:30 -------- d-----w- c:\program files\ElcomSoft
2015-07-04 02:32 . 2015-07-04 02:32 -------- d-----w- c:\users\YASSINE\AppData\Roaming\Microsoft Game Studios
2015-07-04 02:31 . 2009-09-04 17:29 453456 ----a-w- c:\windows\system32\d3dx10_42.dll
2015-07-04 02:31 . 2009-09-04 17:29 1892184 ----a-w- c:\windows\system32\D3DX9_42.dll
2015-07-04 02:31 . 2015-07-04 02:31 -------- d-----w- c:\windows\system32\xlive
2015-07-04 02:31 . 2015-07-04 02:31 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE
2015-07-04 02:27 . 2007-04-04 18:53 81768 ----a-w- c:\windows\system32\xinput1_3.dll
2015-07-04 02:27 . 2006-09-28 16:05 2414360 ----a-w- c:\windows\system32\d3dx9_31.dll
2015-07-03 22:18 . 2015-07-05 05:40 -------- d-----w- c:\users\YASSINE\AppData\Roaming\NVIDIA
2015-07-03 03:03 . 2015-07-03 03:03 23456 ----a-w- c:\windows\system32\drivers\DrvAgent32.sys
2015-07-03 03:03 . 2015-07-03 03:03 -------- d-----w- c:\users\YASSINE\AppData\Local\eSupport.com
2015-07-03 03:03 . 2015-07-03 03:03 -------- d-----w- c:\program files\eSupport.com
2015-07-03 00:20 . 2015-07-03 00:20 -------- d-----w- C:\DRIVERS
2015-07-02 21:28 . 2015-07-02 21:28 -------- d-----w- c:\users\YASSINE\AppData\Local\Apple Computer
2015-07-02 21:28 . 2015-07-03 06:49 -------- d-----w- c:\users\YASSINE\AppData\Roaming\Apple Computer
2015-07-02 21:27 . 2015-07-02 21:27 -------- d-----w- c:\program files\iPod
2015-07-02 21:27 . 2015-07-02 21:28 -------- d-----w- c:\program files\iTunes
2015-07-02 21:27 . 2015-07-02 21:27 -------- d-----w- c:\programdata\Apple Computer
2015-07-02 21:26 . 2015-07-02 21:26 -------- d-----w- c:\users\YASSINE\AppData\Local\Apple
2015-07-02 21:26 . 2015-07-02 21:26 -------- d-----w- c:\program files\Apple Software Update
2015-07-02 21:26 . 2015-07-02 21:26 -------- d-----w- c:\program files\Bonjour
2015-07-02 21:25 . 2015-07-02 21:27 -------- d-----w- c:\program files\Common Files\Apple
2015-07-02 21:25 . 2015-07-02 21:26 -------- d-----w- c:\programdata\Apple
2015-07-02 08:22 . 2015-07-13 10:34 -------- d-----w- c:\users\YASSINE\AppData\Roaming\uTorrent
2015-07-02 08:17 . 2015-07-02 08:17 -------- d-----w- c:\users\YASSINE\AppData\Local\Macromedia
2015-07-02 08:02 . 2015-07-02 08:13 -------- d-----w- C:\GAMES
2015-07-02 06:37 . 2015-07-02 06:37 -------- d-----w- c:\program files\Realtek
2015-07-02 06:36 . 2015-07-02 17:42 -------- d--h--w- c:\program files\Temp
2015-07-02 06:36 . 2015-05-27 17:38 2825944 ----a-w- c:\windows\RtlExUpd.dll
2015-07-02 06:33 . 2015-07-15 03:39 778416 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2015-07-02 06:33 . 2015-07-15 03:39 142512 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2015-07-02 03:54 . 2015-07-02 04:02 -------- d-----w- c:\users\YASSINE\AppData\Local\Mozilla
2015-07-02 03:53 . 2015-07-04 04:14 -------- d-----w- c:\program files\Mozilla Maintenance Service
2015-07-02 03:30 . 2012-09-19 11:51 31584 ----a-w- c:\windows\system32\TURegOpt.exe
2015-07-02 03:30 . 2012-09-19 11:51 21344 ----a-w- c:\windows\system32\authuitu.dll
2015-07-02 03:29 . 2015-07-02 03:29 -------- d-----w- c:\users\YASSINE\AppData\Roaming\TuneUp Software
2015-07-02 03:29 . 2015-07-02 03:30 -------- d-----w- c:\program files\TuneUp Utilities 2013
2015-07-02 03:28 . 2015-07-02 03:29 -------- d-----w- c:\programdata\TuneUp Software
2015-07-02 03:28 . 2015-07-03 00:11 -------- d-sh--w- c:\programdata\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2015-07-02 03:28 . 2015-07-02 03:28 -------- d--h--w- c:\programdata\Common Files
2015-07-02 02:19 . 2015-07-02 02:19 -------- d-----w- c:\program files\DartyBox
2015-07-02 02:19 . 2007-04-04 08:08 184320 ----a-w- c:\windows\system32\coclassfast.dll
2015-07-02 02:19 . 2015-07-02 02:19 -------- d-----w- c:\users\YASSINE\AppData\Roaming\InstallShield
2015-07-02 02:15 . 2015-07-02 02:15 -------- d-----w- c:\programdata\Age of Empires 3
2015-07-02 02:05 . 2006-12-22 20:05 449536 ----a-w- c:\windows\system32\drivers\athrusb.sys
2015-07-02 02:05 . 2015-07-02 02:05 -------- d-----w- c:\program files\DartyBox Wifi
2015-07-02 02:05 . 2015-07-02 02:05 -------- d-----w- c:\users\YASSINE\AppData\Roaming\DartyBox ADSL
2015-07-02 02:04 . 2015-07-02 15:25 -------- d--h--w- c:\program files\InstallShield Installation Information
2015-07-02 02:03 . 2015-07-02 20:11 -------- d-----w- c:\program files\Assistant DartyBox
2015-07-02 02:03 . 2015-07-02 02:03 -------- d-----w- c:\program files\Citrix
2015-07-02 02:03 . 2015-07-02 20:11 -------- d-----w- c:\program files\CD_DartyBox
2015-07-02 02:00 . 2015-07-02 02:00 -------- d-----w- c:\program files\MSXML 4.0
2015-07-02 02:00 . 2015-07-02 02:00 -------- d-----w- c:\users\YASSINE\AppData\Roaming\Age of Empires III - Complete Collection_unistall
2015-07-02 01:19 . 2015-07-02 01:28 -------- d-----w- c:\users\YASSINE\AppData\Local\Microsoft Games
2015-07-02 00:36 . 2015-07-22 12:04 -------- d-----w- c:\users\YASSINE\AppData\Roaming\DMCache
2015-07-02 00:36 . 2015-07-19 04:11 -------- d-----w- c:\users\YASSINE\AppData\Roaming\IDM
2015-07-02 00:36 . 2015-07-02 00:37 -------- d-----w- c:\program files\Internet Download Manager
2015-07-02 00:33 . 2015-07-02 00:33 -------- d-----w- C:\SysInfo
2015-07-01 16:17 . 2015-07-01 16:17 -------- d-----w- c:\program files\Common Files\EZB Systems
2015-07-01 16:17 . 2015-07-01 16:17 -------- d-----w- c:\program files\UltraISO
2015-07-01 01:16 . 2015-07-22 11:40 -------- d-----w- c:\programdata\NVIDIA
2015-07-01 01:15 . 2012-10-02 19:29 645992 ----a-w- c:\windows\system32\nvvsvc.exe
2015-07-01 01:15 . 2012-10-02 19:29 62312 ----a-w- c:\windows\system32\nvshext.dll
2015-07-01 01:15 . 2012-10-02 19:29 2557288 ----a-w- c:\windows\system32\nvsvcr.dll
2015-07-01 01:15 . 2012-10-02 19:29 108392 ----a-w- c:\windows\system32\nvmctray.dll
2015-07-01 01:15 . 2012-10-02 19:29 3536817 ----a-w- c:\windows\system32\nvcoproc.bin
2015-07-01 01:15 . 2012-10-02 19:29 2853224 ----a-w- c:\windows\system32\nvsvc.dll
2015-07-01 01:15 . 2012-10-02 19:28 3965288 ----a-w- c:\windows\system32\nvcpl.dll
2015-07-01 01:15 . 2015-07-13 04:39 -------- d-----w- c:\programdata\NVIDIA Corporation
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-07-04 02:57 . 2009-08-18 11:30 564632 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\wlidui.dll
2015-07-04 02:57 . 2009-08-18 11:24 23776 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2015-06-10 23:08 . 2015-06-10 23:08 6112072 ----a-w- c:\windows\system32\usbaaplrc.dll
2015-06-10 23:08 . 2015-06-10 23:08 45056 ----a-w- c:\windows\system32\drivers\usbaapl.sys
2015-05-18 04:57 . 2015-06-09 16:14 9265072 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{8FF93EA8-8DE8-4434-A5C1-CC98B1FBE4B8}\mpengine.dll
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
2012-02-08 00:49 22376 ----a-w- c:\program files\Internet Download Manager\IDMShellExt.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]
"IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2015-07-02 3519936]
"uTorrent"="c:\users\YASSINE\AppData\Roaming\uTorrent\uTorrent.exe" [2015-07-02 1994592]
"DAEMON Tools Ultra Agent"="c:\program files\DAEMON Tools Ultra\DTAgent.exe" [2015-06-10 3753304]
"RESTART_STICKY_NOTES"="c:\windows\System32\StikyNot.exe" [2009-07-14 354304]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-27 31016]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2015-06-29 157992]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2015-01-28 5088456]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2013-03-21 472992]
"AdobeCEPServiceManager"="c:\program files\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe" [2013-03-13 1039248]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\GoToAssist]
2015-07-02 02:03 10536 ----a-w- c:\program files\Citrix\GoToAssist\508\g2awinlogon.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer3"=wdmaud.drv
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Assistant DartyBox"=c:\program files\DartyBox_v3\Sagem\AssistantDB\AssistantDB_Sagem.exe -m
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe"
.
R3 athrusb;Atheros Wireless LAN USB device driver;c:\windows\system32\DRIVERS\athrusb.sys [2006-12-22 449536]
R3 DrvAgent32;DrvAgent32;c:\windows\system32\Drivers\DrvAgent32.sys [2015-07-03 23456]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys [x]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad32v.sys [2015-05-19 41648]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2015-03-10 51824]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2015-03-10 193464]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2015-03-10 135808]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [2015-03-10 37928]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2013-04-30 217088]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-04-29 291840]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2015-01-28 1349576]
S2 IDMWFP;IDMWFP;c:\windows\system32\DRIVERS\idmwfp.sys [2012-08-02 97632]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-10-02 382824]
S2 Streamware;Streamware Protocol Driver;c:\windows\system32\DRIVERS\Streamware.sys [2013-12-03 57248]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe [2012-09-19 1699168]
S3 amdiox86;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox86.sys [2010-02-18 37944]
S3 Disc Soft Ultra Bus Service;Disc Soft Ultra Bus Service;c:\program files\DAEMON Tools Ultra\DiscSoftBusService.exe [2015-06-10 1094488]
S3 dtultrascsibus;DAEMON Tools Ultra Virtual SCSI Bus;c:\windows\system32\DRIVERS\dtultrascsibus.sys [2015-07-08 25016]
S3 dtultrausbbus;DAEMON Tools Ultra Virtual USB Bus;c:\windows\system32\DRIVERS\dtultrausbbus.sys [2015-07-08 39992]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys [2012-09-18 10088]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-07-14 23:13 991048 ----a-w- c:\program files\Google\Chrome\Application\43.0.2357.134\Installer\chrmstp.exe
.
Contenu du dossier 'Tâches planifiées'
.
2015-07-22 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-03-07 16:37]
.
2015-07-22 c:\windows\Tasks\GoogleUpdateTaskMachineUA1cf56a845c6cfeb.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-03-07 16:37]
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://portail.dartybox.com
mStart Page = www.google.com
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Télécharger avec IDM - c:\program files\Internet Download Manager\IEExt.htm
IE: Télécharger tous les liens avec IDM - c:\program files\Internet Download Manager\IEGetAll.htm
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\YASSINE\AppData\Roaming\Mozilla\Firefox\Profiles\1pwh9dta.default\
FF - prefs.js: browser.startup.homepage - hxxps://www.google.com/
FF - ExtSQL: 2015-06-09 17:20; wrc@avast.com; c:\program files\AVAST Software\Avast\WebRep\FF
FF - ExtSQL: 2015-07-02 01:36; mozilla_cc@internetdownloadmanager.com; c:\users\YASSINE\AppData\Roaming\IDM\idmmzcc5
FF - ExtSQL: 2015-07-03 06:55; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\YASSINE\AppData\Roaming\Mozilla\Firefox\Profiles\1pwh9dta.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
.
- - - - ORPHELINS SUPPRIMES - - - -
.
ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file)
.
.
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Heure de fin: 2015-07-22 13:05:49
ComboFix-quarantined-files.txt 2015-07-22 12:05
.
Avant-CF: 5 324 845 056 octets libres
Après-CF: 4 999 409 664 octets libres
.
- - End Of File - - 29E5F18A1A2106B575E09BEF8DB6D988
A36C5E4F47E84449FF07ED3517B43A31