cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ComboFix 15-10-09.01 - Acer 13/10/2015 11:02:21.1.2 - x64
Microsoft Windows 7 Édition Familiale Premium 6.1.7601.1.1252.33.1036.18.3838.2479 [GMT 2:00]
Lancé depuis: c:\users\Acer\Downloads\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
c:\programdata\ma-config.com\Logs\activex.txt
c:\programdata\ma-config.com\Logs\mcdetection.txt
c:\programdata\ma-config.com\Logs\mcstubuser.txt
c:\programdata\ma-config.com\mcbase.db
c:\programdata\ma-config.com\server.pem
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2015-09-13 au 2015-10-13 ))))))))))))))))))))))))))))))))))))
.
.
2015-10-13 09:11 . 2015-10-13 09:11 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-10-08 21:01 . 2015-10-08 21:01 -------- d-----w- c:\program files (x86)\ZHPFix
2015-10-08 15:13 . 2015-10-13 08:47 113880 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2015-10-08 15:13 . 2015-10-08 15:13 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2015-10-08 15:13 . 2015-10-08 15:13 -------- d-----w- c:\programdata\Malwarebytes
2015-10-08 15:13 . 2015-06-18 06:41 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
2015-10-08 15:13 . 2015-06-18 06:41 109272 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2015-10-08 15:13 . 2015-06-18 06:41 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2015-10-08 12:33 . 2015-10-08 12:33 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2015-10-08 12:07 . 2015-10-08 12:08 -------- d-----w- c:\programdata\Blueberry
2015-10-08 12:04 . 2015-10-08 12:09 -------- d-----w- c:\users\Acer\AppData\Roaming\Blueberry
2015-10-08 12:04 . 2015-10-08 12:05 -------- d-----w- c:\users\Acer\AppData\Roaming\LogSys
2015-10-08 12:04 . 2015-10-08 12:04 -------- d-----w- c:\programdata\LogSys
2015-10-08 12:04 . 2015-10-08 12:04 -------- d-----w- c:\windows\SysWow64\MTSLog
2015-10-08 12:04 . 2015-10-08 12:04 -------- d-----w- c:\program files (x86)\Common Files\Blueberry Software
2015-10-08 12:04 . 2015-10-08 12:04 -------- d-----w- c:\program files (x86)\Blueberry Software
2015-10-06 09:29 . 2015-10-06 09:29 -------- d-----w- c:\program files (x86)\FormatFactory
2015-10-04 16:13 . 2015-10-04 16:14 -------- d-----w- c:\program files\Dolphin
2015-10-03 12:00 . 2007-11-07 06:12 232960 ----a-w- C:\VC_RED.MSI
2015-10-03 12:00 . 2007-11-07 06:03 97296 ----a-w- C:\install.res.1036.dll
2015-10-03 12:00 . 2007-11-07 06:03 96272 ----a-w- C:\install.res.3082.dll
2015-10-03 12:00 . 2007-11-07 06:03 96272 ----a-w- C:\install.res.1031.dll
2015-10-03 12:00 . 2007-11-07 06:03 95248 ----a-w- C:\install.res.1040.dll
2015-10-03 12:00 . 2007-11-07 06:03 91152 ----a-w- C:\install.res.1033.dll
2015-10-03 12:00 . 2007-11-07 06:03 81424 ----a-w- C:\install.res.1041.dll
2015-10-03 12:00 . 2007-11-07 06:03 79888 ----a-w- C:\install.res.1042.dll
2015-10-03 12:00 . 2007-11-07 06:03 76304 ----a-w- C:\install.res.1028.dll
2015-10-03 12:00 . 2007-11-07 06:03 75792 ----a-w- C:\install.res.2052.dll
2015-09-27 08:05 . 2015-09-27 08:05 -------- d-----w- c:\program files (x86)\freebird
2015-09-23 18:38 . 2015-09-23 18:38 -------- d-----w- c:\users\Acer\AppData\Roaming\AVAST Software
2015-09-23 18:37 . 2015-09-23 18:36 153744 ----a-w- c:\windows\system32\drivers\aswStm.sys
2015-09-23 18:37 . 2015-09-23 18:36 274808 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2015-09-23 18:37 . 2015-09-23 18:36 448968 ----a-w- c:\windows\system32\drivers\aswSP.sys
2015-09-23 18:37 . 2015-09-23 18:36 65224 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2015-09-23 18:37 . 2015-09-23 18:36 90968 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2015-09-23 18:37 . 2015-09-23 18:36 28656 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2015-09-23 18:37 . 2015-09-23 18:36 93528 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2015-09-23 18:37 . 2015-09-23 18:36 1049880 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2015-09-23 18:36 . 2015-09-23 18:36 132656 ----a-w- c:\windows\system32\drivers\ngvss.sys
2015-09-23 18:36 . 2015-09-23 18:36 378880 ----a-w- c:\windows\system32\aswBoot.exe
2015-09-23 18:36 . 2015-09-23 18:36 43112 ----a-w- c:\windows\avastSS.scr
2015-09-23 18:36 . 2015-09-23 18:36 -------- d-----w- c:\program files\AVAST Software
2015-09-19 09:13 . 2015-09-19 09:13 -------- d-----w- c:\program files (x86)\DXBX
2015-09-19 08:58 . 2015-09-19 09:05 -------- d-----w- c:\users\Acer\AppData\Roaming\Dxbx
2015-09-19 08:47 . 2015-09-19 08:47 -------- d-----w- c:\program files (x86)\PowerISO
2015-09-19 08:47 . 2015-04-08 02:01 127760 ----a-w- c:\windows\system32\drivers\scdemu.sys
2015-09-19 08:10 . 2015-09-19 08:10 -------- d-----w- c:\program files (x86)\Team Craxtion
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-09-22 16:52 . 2015-05-20 07:19 780488 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2015-09-22 16:52 . 2015-05-20 07:19 142536 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-09-02 03:04 . 2015-09-09 15:27 41984 ----a-w- c:\windows\system32\lpk.dll
2015-09-02 03:04 . 2015-09-09 15:27 100864 ----a-w- c:\windows\system32\fontsub.dll
2015-09-02 03:04 . 2015-09-09 15:27 14336 ----a-w- c:\windows\system32\dciman32.dll
2015-09-02 03:04 . 2015-09-09 15:27 46080 ----a-w- c:\windows\system32\atmlib.dll
2015-09-02 02:48 . 2015-09-09 15:27 70656 ----a-w- c:\windows\SysWow64\fontsub.dll
2015-09-02 02:48 . 2015-09-09 15:27 10240 ----a-w- c:\windows\SysWow64\dciman32.dll
2015-09-02 02:48 . 2015-09-09 15:27 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2015-09-02 02:47 . 2015-09-09 15:27 25600 ----a-w- c:\windows\SysWow64\lpk.dll
2015-09-02 01:51 . 2015-09-09 15:27 3209216 ----a-w- c:\windows\system32\win32k.sys
2015-09-02 01:47 . 2015-09-09 15:27 372736 ----a-w- c:\windows\system32\atmfd.dll
2015-09-02 01:33 . 2015-09-09 15:27 299520 ----a-w- c:\windows\SysWow64\atmfd.dll
2015-08-27 18:18 . 2015-09-09 15:28 2004480 ----a-w- c:\windows\system32\msxml6.dll
2015-08-27 18:18 . 2015-09-09 15:28 1887232 ----a-w- c:\windows\system32\msxml3.dll
2015-08-27 18:13 . 2015-09-09 15:28 2048 ----a-w- c:\windows\system32\msxml6r.dll
2015-08-27 18:13 . 2015-09-09 15:28 2048 ----a-w- c:\windows\system32\msxml3r.dll
2015-08-27 17:58 . 2015-09-09 15:28 1391104 ----a-w- c:\windows\SysWow64\msxml6.dll
2015-08-27 17:58 . 2015-09-09 15:28 1241088 ----a-w- c:\windows\SysWow64\msxml3.dll
2015-08-27 17:51 . 2015-09-09 15:28 2048 ----a-w- c:\windows\SysWow64\msxml6r.dll
2015-08-27 17:51 . 2015-09-09 15:28 2048 ----a-w- c:\windows\SysWow64\msxml3r.dll
2015-08-26 18:07 . 2015-09-09 15:21 2606080 ----a-w- c:\windows\system32\wuaueng.dll
2015-08-26 18:07 . 2015-09-09 15:21 3165696 ----a-w- c:\windows\system32\wucltux.dll
2015-08-26 18:07 . 2015-09-09 15:21 192000 ----a-w- c:\windows\system32\wuwebv.dll
2015-08-26 18:07 . 2015-09-09 15:21 98304 ----a-w- c:\windows\system32\wudriver.dll
2015-08-26 18:07 . 2015-09-09 15:21 37888 ----a-w- c:\windows\system32\wups2.dll
2015-08-26 18:07 . 2015-09-09 15:21 36864 ----a-w- c:\windows\system32\wups.dll
2015-08-26 18:07 . 2015-09-09 15:21 696320 ----a-w- c:\windows\system32\wuapi.dll
2015-08-26 18:06 . 2015-09-09 15:21 91136 ----a-w- c:\windows\system32\WinSetupUI.dll
2015-08-26 18:06 . 2015-09-09 15:21 12288 ----a-w- c:\windows\system32\wu.upgrade.ps.dll
2015-08-26 18:06 . 2015-09-09 15:21 37376 ----a-w- c:\windows\system32\wuapp.exe
2015-08-26 18:06 . 2015-09-09 15:21 139776 ----a-w- c:\windows\system32\wuauclt.exe
2015-08-26 17:56 . 2015-09-09 15:21 173056 ----a-w- c:\windows\SysWow64\wuwebv.dll
2015-08-26 17:56 . 2015-09-09 15:21 93184 ----a-w- c:\windows\SysWow64\wudriver.dll
2015-08-26 17:56 . 2015-09-09 15:21 30208 ----a-w- c:\windows\SysWow64\wups.dll
2015-08-26 17:56 . 2015-09-09 15:21 566784 ----a-w- c:\windows\SysWow64\wuapi.dll
2015-08-26 17:55 . 2015-09-09 15:21 34816 ----a-w- c:\windows\SysWow64\wuapp.exe
2015-08-18 01:42 . 2015-09-09 15:56 393304 ----a-w- c:\windows\system32\iedkcs32.dll
2015-08-15 06:48 . 2015-09-09 15:56 25190400 ----a-w- c:\windows\system32\mshtml.dll
2015-08-15 06:34 . 2015-09-09 15:56 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2015-08-15 06:33 . 2015-09-09 15:56 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2015-08-15 06:18 . 2015-09-09 15:56 66560 ----a-w- c:\windows\system32\iesetup.dll
2015-08-15 06:18 . 2015-09-09 15:56 48640 ----a-w- c:\windows\system32\ieetwproxystub.dll
2015-08-15 06:17 . 2015-09-09 15:56 417792 ----a-w- c:\windows\system32\html.iec
2015-08-15 06:17 . 2015-09-09 15:56 585216 ----a-w- c:\windows\system32\vbscript.dll
2015-08-15 06:17 . 2015-09-09 15:56 2886144 ----a-w- c:\windows\system32\iertutil.dll
2015-08-15 06:17 . 2015-09-09 15:56 88064 ----a-w- c:\windows\system32\MshtmlDac.dll
2015-08-15 06:10 . 2015-09-09 15:56 54784 ----a-w- c:\windows\system32\jsproxy.dll
2015-08-15 06:09 . 2015-09-09 15:56 34304 ----a-w- c:\windows\system32\iernonce.dll
2015-08-15 06:06 . 2015-09-09 15:56 615936 ----a-w- c:\windows\system32\ieui.dll
2015-08-15 06:04 . 2015-09-09 15:56 114688 ----a-w- c:\windows\system32\ieetwcollector.exe
2015-08-15 06:04 . 2015-09-09 15:56 144384 ----a-w- c:\windows\system32\ieUnatt.exe
2015-08-15 06:04 . 2015-09-09 15:56 817664 ----a-w- c:\windows\system32\jscript.dll
2015-08-15 06:04 . 2015-09-09 15:56 814080 ----a-w- c:\windows\system32\jscript9diag.dll
2015-08-15 06:00 . 2015-09-09 15:56 5923328 ----a-w- c:\windows\system32\jscript9.dll
2015-08-15 05:57 . 2015-09-09 15:56 968704 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2015-08-15 05:53 . 2015-09-09 15:56 490496 ----a-w- c:\windows\system32\dxtmsft.dll
2015-08-15 05:53 . 2015-09-09 15:56 2724864 ----a-w- c:\windows\SysWow64\mshtml.tlb
2015-08-15 05:46 . 2015-09-09 15:56 77824 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2015-08-15 05:42 . 2015-09-09 15:56 199680 ----a-w- c:\windows\system32\msrating.dll
2015-08-15 05:41 . 2015-09-09 15:56 92160 ----a-w- c:\windows\system32\mshtmled.dll
2015-08-15 05:40 . 2015-09-09 15:56 504832 ----a-w- c:\windows\SysWow64\vbscript.dll
2015-08-15 05:40 . 2015-09-09 15:56 62464 ----a-w- c:\windows\SysWow64\iesetup.dll
2015-08-15 05:39 . 2015-09-09 15:56 47616 ----a-w- c:\windows\SysWow64\ieetwproxystub.dll
2015-08-15 05:39 . 2015-09-09 15:56 341504 ----a-w- c:\windows\SysWow64\html.iec
2015-08-15 05:39 . 2015-09-09 15:56 316928 ----a-w- c:\windows\system32\dxtrans.dll
2015-08-15 05:38 . 2015-09-09 15:56 64000 ----a-w- c:\windows\SysWow64\MshtmlDac.dll
2015-08-15 05:29 . 2015-09-09 15:56 115712 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2015-08-15 05:29 . 2015-09-09 15:56 620032 ----a-w- c:\windows\SysWow64\jscript9diag.dll
2015-08-15 05:24 . 2015-09-09 15:56 720384 ----a-w- c:\windows\system32\ie4uinit.exe
2015-08-15 05:23 . 2015-09-09 15:56 801280 ----a-w- c:\windows\system32\msfeeds.dll
2015-08-15 05:22 . 2015-09-09 15:56 1359360 ----a-w- c:\windows\system32\mshtmlmedia.dll
2015-08-15 05:22 . 2015-09-09 15:56 2126336 ----a-w- c:\windows\system32\inetcpl.cpl
2015-08-15 05:16 . 2015-09-09 15:56 60416 ----a-w- c:\windows\SysWow64\JavaScriptCollectionAgent.dll
2015-08-15 05:16 . 2015-09-09 15:56 14451712 ----a-w- c:\windows\system32\ieframe.dll
2015-08-15 05:10 . 2015-09-09 15:56 4520448 ----a-w- c:\windows\SysWow64\jscript9.dll
2015-08-15 05:07 . 2015-09-09 15:56 2427392 ----a-w- c:\windows\system32\wininet.dll
2015-08-15 05:01 . 2015-09-09 15:56 2052608 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2015-08-15 05:01 . 2015-09-09 15:56 1155072 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2015-08-15 04:55 . 2015-09-09 15:56 1545728 ----a-w- c:\windows\system32\urlmon.dll
2015-08-15 04:43 . 2015-09-09 15:56 800768 ----a-w- c:\windows\system32\ieapfltr.dll
2015-08-15 04:43 . 2015-09-09 15:56 1951232 ----a-w- c:\windows\SysWow64\wininet.dll
2015-08-05 17:56 . 2015-09-09 15:31 1110016 ----a-w- c:\windows\system32\schedsvc.dll
2015-08-05 17:56 . 2015-09-09 15:34 24576 ----a-w- c:\windows\system32\jnwmon.dll
2015-08-05 17:56 . 2015-09-09 15:34 275456 ----a-w- c:\windows\system32\InkEd.dll
2015-08-05 17:40 . 2015-09-09 15:34 216064 ----a-w- c:\windows\SysWow64\InkEd.dll
2015-08-04 18:03 . 2015-09-09 15:27 692672 ----a-w- c:\windows\system32\winload.efi
2015-08-04 18:00 . 2015-09-09 15:27 616360 ----a-w- c:\windows\system32\winresume.efi
2015-08-04 17:56 . 2015-09-09 15:27 63488 ----a-w- c:\windows\system32\setbcdlocale.dll
2015-08-04 17:56 . 2015-09-09 15:27 59392 ----a-w- c:\windows\system32\appidapi.dll
2015-08-04 17:56 . 2015-09-09 15:27 32768 ----a-w- c:\windows\system32\appidsvc.dll
2015-08-04 17:55 . 2015-09-09 15:27 147456 ----a-w- c:\windows\system32\appidpolicyconverter.exe
2015-08-04 17:55 . 2015-09-09 15:27 17920 ----a-w- c:\windows\system32\appidcertstorecheck.exe
2015-08-04 17:47 . 2015-09-09 15:27 50688 ----a-w- c:\windows\SysWow64\appidapi.dll
2015-08-04 16:58 . 2015-09-09 15:27 61440 ----a-w- c:\windows\system32\drivers\appid.sys
2015-07-30 18:06 . 2015-08-12 08:05 1180160 ----a-w- c:\windows\system32\FntCache.dll
2015-07-30 18:06 . 2015-08-12 08:05 1648128 ----a-w- c:\windows\system32\DWrite.dll
2015-07-30 18:06 . 2015-08-12 08:05 2565120 ----a-w- c:\windows\system32\d3d10warp.dll
2015-07-30 17:57 . 2015-08-12 08:05 1251328 ----a-w- c:\windows\SysWow64\DWrite.dll
2015-07-30 17:57 . 2015-08-12 08:05 1987584 ----a-w- c:\windows\SysWow64\d3d10warp.dll
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CCleaner Monitoring"="c:\program files\CCleaner\CCleaner64.exe" [2015-06-01 8358680]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2015-09-23 6134544]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"RequireSignedAppInit_DLLs"=0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS;c:\windows\SYSNATIVE\drivers\AmUStor.SYS [x]
R3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus;c:\windows\system32\DRIVERS\dtlitescsibus.sys;c:\windows\SYSNATIVE\DRIVERS\dtlitescsibus.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 k57nd;Broadcom NetLink Gigabit Ethernet;c:\windows\system32\DRIVERS\k57amd64.sys;c:\windows\SYSNATIVE\DRIVERS\k57amd64.sys [x]
R3 ma-config_amd64;ma-config_amd64;c:\program files\ma-config.com\Drivers\ma-config_amd64.sys;c:\program files\ma-config.com\Drivers\ma-config_amd64.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S0 ngvss;ngvss; [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 MaConfigAgent;Ma-Config Agent;c:\program files\ma-config.com\MaConfigAgent.exe;c:\program files\ma-config.com\MaConfigAgent.exe [x]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [x]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]
S2 VBoxAswDrv;VBoxAsw Support Driver;c:\program files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys;c:\program files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [x]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 AvastVBoxSvc;AvastVBox COM Service;c:\program files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe;c:\program files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [x]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x]
S3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
.
.
--- Autres Services/Pilotes en mémoire ---
.
*NewlyCreated* - MBAMSWISSARMY
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-09-25 14:25 997704 ----a-w- c:\program files (x86)\Google\Chrome\Application\45.0.2454.101\Installer\chrmstp.exe
.
Contenu du dossier 'Tâches planifiées'
.
2015-10-13 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-05-20 16:52]
.
2015-10-13 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-05-25 08:59]
.
2015-09-17 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-05-25 08:59]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2015-09-23 18:36 780616 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AmIcoSinglun64"="c:\program files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" [2009-09-22 323584]
.
------- Examen supplémentaire -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = www.google.com
mDefault_Search_URL = hxxp://www.google.com
mDefault_Page_URL = about:blank
mStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearch Page = hxxp://www.google.com
Trusted Zone: localhost
Trusted Zone: webcompanion.com
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Acer\AppData\Roaming\Mozilla\Firefox\Profiles\wyjy8gu0.default\
.
- - - - ORPHELINS SUPPRIMES - - - -
.
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
.
.
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Heure de fin: 2015-10-13 11:14:38
ComboFix-quarantined-files.txt 2015-10-13 09:14
.
Avant-CF: 226 185 506 816 octets libres
Après-CF: 227 998 580 736 octets libres
.
- - End Of File - - 31C5DDA881D474C70A4149DB93575775
A36C5E4F47E84449FF07ED3517B43A31

Publicité


Signaler le contenu de ce document

Publicité