cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ComboFix 15-11-05.01 - Tristan 08/11/2015 15:30:02.1.4 - x64
Microsoft Windows 7 Édition Intégrale 6.1.7601.1.1252.33.1036.18.4066.2685 [GMT 1:00]
Lancé depuis: c:\users\Tristan\Desktop\TRISTAN.exe
AV: AVG AntiVirus Free Edition 2015 *Disabled/Updated* {4D41356F-32AD-7C42-C820-63775EE4F413}
SP: AVG AntiVirus Free Edition 2015 *Disabled/Updated* {F620D48B-1497-73CC-F290-58052563BEAE}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\ma-config.com\Logs\activex.txt
c:\programdata\ma-config.com\Logs\mcdetection.txt
c:\programdata\ma-config.com\Logs\mcstubuser.txt
c:\programdata\ma-config.com\mcbase.db
c:\programdata\ma-config.com\server.pem
c:\users\Tristan\ZHPDiag3.exe
c:\windows\msdownld.tmp
D:\install.exe
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2015-10-08 au 2015-11-08 ))))))))))))))))))))))))))))))))))))
.
.
2015-11-08 14:41 . 2015-11-08 14:41 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-11-07 18:51 . 2015-11-07 18:54 -------- d-----w- c:\program files (x86)\Azendar
2015-11-06 19:15 . 2015-11-06 19:15 -------- d-----w- c:\users\Tristan\AppData\Local\VirtualStore
2015-11-06 18:48 . 2015-11-06 16:26 24064 ----a-w- c:\windows\zoek-delete.exe
2015-11-06 18:48 . 2015-11-08 14:41 -------- d-----w- c:\users\Tristan\AppData\Local\Temp
2015-11-06 16:26 . 2015-11-06 17:37 -------- d-----w- C:\zoek_backup
2015-11-06 01:38 . 2015-11-06 15:15 -------- d-----w- C:\FRST
2015-11-06 01:32 . 2015-11-06 01:32 -------- d-----w- c:\program files (x86)\ZHPFix
2015-11-05 15:24 . 2015-08-06 18:04 14176768 ----a-w- c:\windows\system32\shell32.dll
2015-11-05 15:24 . 2015-08-06 18:03 1866752 ----a-w- c:\windows\system32\ExplorerFrame.dll
2015-11-05 15:22 . 2015-09-16 03:45 2724864 ----a-w- c:\windows\SysWow64\mshtml.tlb
2015-11-05 15:21 . 2015-09-16 04:08 817664 ----a-w- c:\windows\system32\jscript.dll
2015-11-05 15:20 . 2015-09-29 03:16 5569472 ----a-w- c:\windows\system32\ntoskrnl.exe
2015-11-05 15:19 . 2015-09-29 03:11 243712 ----a-w- c:\windows\system32\wow64.dll
2015-11-05 14:36 . 2015-11-05 15:16 -------- d-----w- c:\program files (x86)\Dofus
2015-10-19 12:32 . 2015-10-19 12:32 315312 ----a-w- c:\windows\system32\drivers\avgidsdrivera.sys
2015-10-13 19:26 . 2015-10-13 20:11 192216 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2015-10-13 19:26 . 2015-10-13 19:26 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2015-10-13 19:26 . 2015-10-13 19:26 -------- d-----w- c:\programdata\Malwarebytes
2015-10-13 19:26 . 2015-10-05 07:50 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
2015-10-13 19:26 . 2015-10-05 07:50 109272 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2015-10-13 19:26 . 2015-10-05 07:50 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2015-10-13 16:16 . 2015-11-05 15:33 -------- d-----w- C:\AdwCleaner
2015-10-13 13:38 . 2015-11-07 23:01 -------- d-----w- c:\users\Tristan\AppData\Roaming\ZHP
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-11-06 01:58 . 2015-05-09 21:15 143481208 ----a-w- c:\windows\system32\MRT.exe
2015-11-05 14:52 . 2015-05-11 11:49 780488 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2015-11-05 14:52 . 2015-05-11 11:49 142536 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-09-29 02:58 . 2015-11-05 15:19 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2015-09-14 00:29 . 2015-09-22 15:47 986232 ----a-w- c:\windows\SysWow64\NvIFR.dll
2015-09-14 00:29 . 2015-09-22 15:47 943712 ----a-w- c:\windows\SysWow64\nvumdshim.dll
2015-09-14 00:29 . 2015-09-22 15:47 22525560 ----a-w- c:\windows\system32\nvoglv64.dll
2015-09-14 00:29 . 2015-09-22 15:47 18543736 ----a-w- c:\windows\SysWow64\nvoglv32.dll
2015-09-14 00:29 . 2015-09-22 15:47 176904 ----a-w- c:\windows\system32\nvinitx.dll
2015-09-14 00:29 . 2015-09-22 15:47 16637528 ----a-w- c:\windows\system32\nvopencl.dll
2015-09-14 00:29 . 2015-09-22 15:47 155792 ----a-w- c:\windows\SysWow64\nvinit.dll
2015-09-14 00:29 . 2015-09-22 15:47 150832 ----a-w- c:\windows\system32\nvoglshim64.dll
2015-09-14 00:29 . 2015-09-22 15:47 13660648 ----a-w- c:\windows\SysWow64\nvopencl.dll
2015-09-14 00:29 . 2015-09-22 15:47 128512 ----a-w- c:\windows\SysWow64\nvoglshim32.dll
2015-09-14 00:29 . 2015-09-22 15:47 11096696 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2015-09-14 00:29 . 2015-09-22 15:47 1105976 ----a-w- c:\windows\system32\nvumdshimx.dll
2015-09-14 00:29 . 2015-09-22 15:47 1064056 ----a-w- c:\windows\system32\NvIFR64.dll
2015-09-14 00:29 . 2015-09-22 15:47 944760 ----a-w- c:\windows\SysWow64\NvFBC.dll
2015-09-14 00:29 . 2015-09-22 15:47 1898288 ----a-w- c:\windows\system32\nvdispco6435598.dll
2015-09-14 00:29 . 2015-09-22 15:47 1558832 ----a-w- c:\windows\system32\nvdispgenco6435598.dll
2015-09-14 00:29 . 2015-09-22 15:47 15513208 ----a-w- c:\windows\system32\nvd3dumx.dll
2015-09-14 00:29 . 2015-09-22 15:47 1074808 ----a-w- c:\windows\system32\NvFBC64.dll
2015-09-14 00:29 . 2015-09-22 15:47 2940024 ----a-w- c:\windows\system32\nvcuvid.dll
2015-09-14 00:29 . 2015-09-22 15:47 2627192 ----a-w- c:\windows\SysWow64\nvcuvid.dll
2015-09-14 00:29 . 2015-09-22 15:47 14936264 ----a-w- c:\windows\system32\nvcuda.dll
2015-09-14 00:29 . 2015-09-22 15:47 12185344 ----a-w- c:\windows\SysWow64\nvcuda.dll
2015-09-14 00:29 . 2015-09-22 15:47 42840368 ----a-w- c:\windows\system32\nvcompiler.dll
2015-09-14 00:29 . 2015-09-22 15:47 37819000 ----a-w- c:\windows\SysWow64\nvcompiler.dll
2015-09-14 00:29 . 2015-05-07 20:33 14635600 ----a-w- c:\windows\SysWow64\nvwgf2um.dll
2015-09-14 00:29 . 2015-05-07 19:59 112760 ----a-w- c:\windows\system32\OpenCL.dll
2015-09-14 00:29 . 2015-05-07 19:59 105080 ----a-w- c:\windows\SysWow64\OpenCL.dll
2015-09-14 00:29 . 2015-05-07 19:59 17082928 ----a-w- c:\windows\system32\nvwgf2umx.dll
2015-09-14 00:29 . 2015-05-07 19:59 12514824 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2015-09-14 00:29 . 2015-05-07 19:58 3530608 ----a-w- c:\windows\system32\nvapi64.dll
2015-09-14 00:29 . 2015-05-07 19:58 3116160 ----a-w- c:\windows\SysWow64\nvapi.dll
2015-09-13 22:09 . 2015-05-07 19:59 937776 ----a-w- c:\windows\system32\nvvsvc.exe
2015-09-13 22:09 . 2015-05-07 19:59 62584 ----a-w- c:\windows\system32\nvshext.dll
2015-09-13 22:09 . 2015-05-07 19:59 385144 ----a-w- c:\windows\system32\nvmctray.dll
2015-09-13 22:09 . 2015-05-07 19:59 2558584 ----a-w- c:\windows\system32\nvsvcr.dll
2015-09-13 22:09 . 2015-05-07 19:59 6884984 ----a-w- c:\windows\system32\nvcpl.dll
2015-09-13 22:09 . 2015-05-07 19:59 3496056 ----a-w- c:\windows\system32\nvsvc64.dll
2015-09-13 21:50 . 2015-09-22 15:52 574072 ----a-w- c:\windows\SysWow64\nvStreaming.exe
2015-09-11 12:17 . 2015-05-07 19:59 5231082 ----a-w- c:\windows\system32\nvcoproc.bin
2015-09-02 03:04 . 2015-09-09 14:01 41984 ----a-w- c:\windows\system32\lpk.dll
2015-09-02 03:04 . 2015-09-09 14:01 100864 ----a-w- c:\windows\system32\fontsub.dll
2015-09-02 03:04 . 2015-09-09 14:01 14336 ----a-w- c:\windows\system32\dciman32.dll
2015-09-02 03:04 . 2015-09-09 14:01 46080 ----a-w- c:\windows\system32\atmlib.dll
2015-09-02 02:48 . 2015-09-09 14:01 70656 ----a-w- c:\windows\SysWow64\fontsub.dll
2015-09-02 02:48 . 2015-09-09 14:01 10240 ----a-w- c:\windows\SysWow64\dciman32.dll
2015-09-02 02:48 . 2015-09-09 14:01 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2015-09-02 02:47 . 2015-09-09 14:01 25600 ----a-w- c:\windows\SysWow64\lpk.dll
2015-09-02 01:51 . 2015-09-09 14:01 3209216 ----a-w- c:\windows\system32\win32k.sys
2015-09-02 01:47 . 2015-09-09 14:01 372736 ----a-w- c:\windows\system32\atmfd.dll
2015-09-02 01:33 . 2015-09-09 14:01 299520 ----a-w- c:\windows\SysWow64\atmfd.dll
2015-08-27 00:37 . 2015-05-07 20:00 1316000 ----a-w- c:\windows\SysWow64\nvspbridge.dll
2015-08-27 00:37 . 2015-05-07 20:00 1423120 ----a-w- c:\windows\SysWow64\nvspcap.dll
2015-08-27 00:36 . 2015-05-07 20:00 1756424 ----a-w- c:\windows\system32\nvspbridge64.dll
2015-08-27 00:36 . 2015-05-07 20:00 1710568 ----a-w- c:\windows\system32\nvspcap64.dll
2015-08-19 09:53 . 2015-08-19 09:53 297904 ----a-w- c:\windows\system32\drivers\avgidsha.sys
2015-08-13 15:19 . 2015-08-13 15:19 50392 ----a-w- c:\windows\system32\drivers\rzendpt.sys
2015-08-13 15:19 . 2015-08-13 15:19 201432 ----a-w- c:\windows\system32\drivers\rzudd.sys
2015-08-13 15:19 . 2015-08-13 15:19 1730328 ----a-w- c:\windows\system32\WdfCoInstaller01009.dll
2015-08-11 11:08 . 2015-08-11 11:08 90112 ----a-w- c:\windows\SysWow64\rzdevinfo.dll
2015-08-11 11:08 . 2015-08-11 11:08 155648 ----a-w- c:\windows\SysWow64\rztouchdll.dll
2015-08-11 11:08 . 2015-08-11 11:08 117248 ----a-w- c:\windows\SysWow64\rzdisplaydll.dll
2015-08-11 11:08 . 2015-08-11 11:08 1197568 ----a-w- c:\windows\SysWow64\rzdevicedll.dll
2015-08-11 11:08 . 2015-08-11 11:08 421888 ----a-w- c:\windows\SysWow64\rzaudiodll.dll
2015-08-11 04:52 . 2015-09-22 15:30 69416 ----a-w- c:\windows\SysWow64\nvaudcap32v.dll
2015-08-11 04:52 . 2015-09-22 15:30 50472 ----a-w- c:\windows\system32\drivers\nvvad64v.sys
2015-08-11 04:52 . 2015-05-07 19:59 72504 ----a-w- c:\windows\system32\nvaudcap64v.dll
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2015-03-31 5585136]
"GoogleChromeAutoLaunch_58918049696FFD10F7847AFE5A3C2754"="c:\program files (x86)\Google\Chrome\Application\chrome.exe" [2015-10-20 811848]
"Spotify Web Helper"="c:\users\Tristan\AppData\Roaming\Spotify\SpotifyWebHelper.exe" [2015-11-08 2030912]
"Spotify"="c:\users\Tristan\AppData\Roaming\Spotify\Spotify.exe" [2015-11-08 7736128]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-11-17 113288]
"AVG_UI"="c:\program files (x86)\AVG\AVG2015\avgui.exe" [2015-10-19 3779496]
"Razer Synapse"="c:\program files (x86)\Razer\Synapse\RzSynapse.exe" [2015-08-31 593216]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
R2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2015\avgidsagent.exe;c:\program files (x86)\AVG\AVG2015\avgidsagent.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 BEService;BattlEye Service;c:\program files (x86)\Common Files\BattlEye\BEService.exe;c:\program files (x86)\Common Files\BattlEye\BEService.exe [x]
R3 BstHdAndroidSvc;BlueStacks Android Service;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 EasyAntiCheat;EasyAntiCheat;c:\windows\system32\EasyAntiCheat.exe;c:\windows\SYSNATIVE\EasyAntiCheat.exe [x]
R3 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 ma-config_amd64;ma-config_amd64;c:\program files\ma-config.com\Drivers\ma-config_amd64.sys;c:\program files\ma-config.com\Drivers\ma-config_amd64.sys [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver;c:\windows\system32\DRIVERS\MijXfilt.sys;c:\windows\SYSNATIVE\DRIVERS\MijXfilt.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys;c:\windows\SYSNATIVE\drivers\terminpt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]
R3 TunngleService;TunngleService;c:\program files (x86)\Tunngle\TnglCtrl.exe;c:\program files (x86)\Tunngle\TnglCtrl.exe [x]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetAdp.sys [x]
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsha.sys [x]
S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys;c:\windows\SYSNATIVE\DRIVERS\avgloga.sys [x]
S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgmfx64.sys [x]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgrkx64.sys [x]
S1 Avgdiska;AVG Disk Driver;c:\windows\system32\DRIVERS\avgdiska.sys;c:\windows\SYSNATIVE\DRIVERS\avgdiska.sys [x]
S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsdrivera.sys [x]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgldx64.sys [x]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys;c:\windows\SYSNATIVE\DRIVERS\avgtdia.sys [x]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxDrv.sys [x]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxUSBMon.sys [x]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2015\avgwdsvc.exe;c:\program files (x86)\AVG\AVG2015\avgwdsvc.exe [x]
S2 BstHdDrv;BlueStacks Hypervisor;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [x]
S2 BstHdLogRotatorSvc;BlueStacks Log Rotator Service;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe [x]
S2 BstHdUpdaterSvc;BlueStacks Updater Service;c:\program files (x86)\BlueStacks\HD-UpdaterService.exe;c:\program files (x86)\BlueStacks\HD-UpdaterService.exe [x]
S2 GfExperienceService;NVIDIA GeForce Experience Service;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [x]
S2 MaConfigAgent;Ma-Config Agent;c:\program files\ma-config.com\MaConfigAgent.exe;c:\program files\ma-config.com\MaConfigAgent.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [x]
S2 Razer Game Scanner Service;Razer Game Scanner;c:\program files (x86)\Razer\Razer Services\GSS\GameScannerService.exe;c:\program files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [x]
S2 rzpmgrk;rzpmgrk;c:\windows\system32\drivers\rzpmgrk.sys;c:\windows\SYSNATIVE\drivers\rzpmgrk.sys [x]
S2 rzpnk;rzpnk;c:\windows\system32\drivers\rzpnk.sys;c:\windows\SYSNATIVE\drivers\rzpnk.sys [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service;c:\program files\DAEMON Tools Lite\DiscSoftBusService.exe;c:\program files\DAEMON Tools Lite\DiscSoftBusService.exe [x]
S3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus;c:\windows\system32\DRIVERS\dtlitescsibus.sys;c:\windows\SYSNATIVE\DRIVERS\dtlitescsibus.sys [x]
S3 LADF_CaptureOnly;LADF Capture Filter Driver;c:\windows\system32\DRIVERS\ladfGSCamd64.sys;c:\windows\SYSNATIVE\DRIVERS\ladfGSCamd64.sys [x]
S3 LADF_RenderOnly;LADF Render Filter Driver;c:\windows\system32\DRIVERS\ladfGSRamd64.sys;c:\windows\SYSNATIVE\DRIVERS\ladfGSRamd64.sys [x]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]
S3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 MBfilt;MBfilt;c:\windows\system32\drivers\MBfilt64.sys;c:\windows\SYSNATIVE\drivers\MBfilt64.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 rzendpt;rzendpt;c:\windows\system32\DRIVERS\rzendpt.sys;c:\windows\SYSNATIVE\DRIVERS\rzendpt.sys [x]
S3 rzudd;Razer Keyboard Driver;c:\windows\system32\DRIVERS\rzudd.sys;c:\windows\SYSNATIVE\DRIVERS\rzudd.sys [x]
S3 SaiK0CCC;SaiK0CCC;c:\windows\system32\DRIVERS\SaiK0CCC.sys;c:\windows\SYSNATIVE\DRIVERS\SaiK0CCC.sys [x]
S3 SaiU0CCC;SaiU0CCC;c:\windows\system32\DRIVERS\SaiU0CCC.sys;c:\windows\SYSNATIVE\DRIVERS\SaiU0CCC.sys [x]
S3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);c:\windows\system32\DRIVERS\tap0901t.sys;c:\windows\SYSNATIVE\DRIVERS\tap0901t.sys [x]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetFlt.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-11-05 15:22 997704 ----a-w- c:\program files (x86)\Google\Chrome\Application\46.0.2490.80\Installer\chrmstp.exe
.
Contenu du dossier 'Tâches planifiées'
.
2015-11-08 c:\windows\Tasks\Adobe Flash Player PPAPI Notifier.job
- c:\windows\SysWOW64\Macromed\Flash\FlashUtil32_19_0_0_226_pepper.exe [2015-11-05 14:52]
.
2015-11-08 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-05-11 14:52]
.
2015-11-08 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-05-07 19:39]
.
2015-11-08 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-05-07 19:39]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Launch LCore"="c:\program files\Logitech Gaming Software\LCore.exe" [2015-03-12 13318424]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2015-03-04 8461528]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2015-08-27 2634872]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2015-08-27 1710568]
.
------- Examen supplémentaire -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://google.fr/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Tristan\AppData\Roaming\Mozilla\Firefox\Profiles\lazol12e.default\
FF - prefs.js: browser.startup.homepage - about:home
.
- - - - ORPHELINS SUPPRIMES - - - -
.
Wow6432Node-HKLM-Run- - (no file)
AddRemove-Mortal Kombat X - Patch FR 1.00 - c:\program files (x86)\Mortal Kombat X\Uninstall.exe
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe
AddRemove-{050d4fc8-5d48-4b8f-8972-47c82c46020f} - c:\programdata\Package Cache\{050d4fc8-5d48-4b8f-8972-47c82c46020f}\vcredist_x64.exe
AddRemove-{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f} - c:\programdata\Package Cache\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}\vcredist_x86.exe
AddRemove-{3bcf8c72-b231-4d28-9f39-3405c22d8b5a} - c:\programdata\Package Cache\{3bcf8c72-b231-4d28-9f39-3405c22d8b5a}\vcredist_x86.exe
AddRemove-{a1909659-0a08-4554-8af1-2175904903a1} - c:\programdata\Package Cache\{a1909659-0a08-4554-8af1-2175904903a1}\vcredist_x64.exe
AddRemove-{b3c7f59f-dc40-4be9-829c-77dd292978ea} - c:\programdata\Package Cache\{b3c7f59f-dc40-4be9-829c-77dd292978ea}\vcredist_x64.exe
AddRemove-{C029726A-CCBF-46D8-893A-E62105DB9803}_is1 - c:\program files (x86)\MotionInJoy\unins000.exe
AddRemove-{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6} - c:\programdata\Package Cache\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}\vcredist_x64.exe
AddRemove-{e0efdce9-a486-4676-8aa5-65bb08cbf34c} - c:\programdata\Package Cache\{e0efdce9-a486-4676-8aa5-65bb08cbf34c}\wdexpress_full.exe
AddRemove-{f65db027-aff3-4070-886a-0d87064aabb1} - c:\programdata\Package Cache\{f65db027-aff3-4070-886a-0d87064aabb1}\vcredist_x86.exe
AddRemove-{f9b04b37-35d5-4a19-a51b-fcf4a8734851} - c:\programdata\Package Cache\{f9b04b37-35d5-4a19-a51b-fcf4a8734851}\vcredist_x64.exe
.
.
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\BlueStacks]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Heure de fin: 2015-11-08 15:45:55
ComboFix-quarantined-files.txt 2015-11-08 14:45
.
Avant-CF: 540 318 453 760 octets libres
Après-CF: 539 761 577 984 octets libres
.
- - End Of File - - 7CDEF461E971FE9066FD9F3EFF169552
A36C5E4F47E84449FF07ED3517B43A31

Publicité


Signaler le contenu de ce document

Publicité