cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ComboFix 16-05-18.01 - Yacintos 23/05/2016 22:37:35.1.4 - x64
Microsoft Windows 7 Édition Intégrale 6.1.7601.1.1252.33.1036.18.3767.2132 [GMT 2:00]
Lancé depuis: c:\users\Yacintos\Desktop\ComboFix.exe
AV: ESET Smart Security 9.0.375.1 *Disabled/Updated* {19259FAE-8396-A113-46DB-15B0E7DFA289}
FW: Pare-feu personnel d'ESET *Disabled* {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}
SP: ESET Smart Security 9.0.375.1 *Disabled/Updated* {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\msdownld.tmp
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2016-04-23 au 2016-05-23 ))))))))))))))))))))))))))))))))))))
.
.
2016-05-22 14:46 . 2016-05-22 14:47 -------- d-----w- c:\users\Yacintos\AppData\Roaming\ZHP
2016-05-22 14:19 . 2016-05-22 16:09 -------- d-----w- c:\users\Yacintos\AppData\Roaming\uTorrent
2016-05-14 13:41 . 2016-05-14 13:41 -------- d-----w- c:\program files\VideoLAN
2016-05-12 17:43 . 2016-05-12 17:43 5995712 ----a-w- c:\windows\SysWow64\FlashPlayerInstaller.exe
2016-05-12 12:43 . 2016-05-22 21:06 -------- d-----w- c:\users\Yacintos\AppData\Local\CrashDumps
2016-05-10 21:56 . 2016-05-11 06:54 -------- d-----w- c:\program files (x86)\AAALOGO
2016-05-10 21:56 . 2016-05-10 21:56 -------- d-----w- c:\users\Yacintos\AppData\Local\Programs
2016-05-10 19:38 . 2016-05-10 19:38 -------- d-----w- c:\users\Yacintos\AppData\Roaming\TechSmith
2016-05-10 19:37 . 2016-05-10 19:37 -------- d-----w- c:\users\Yacintos\AppData\Local\TechSmith
2016-05-10 19:34 . 2016-05-10 19:34 -------- d-----w- c:\programdata\regid.1995-08.com.techsmith
2016-05-10 19:34 . 2016-05-10 19:34 -------- d-----w- c:\program files (x86)\QuickTime
2016-05-10 19:33 . 2016-05-10 19:33 -------- d-----w- c:\program files (x86)\Common Files\TechSmith Shared
2016-05-10 19:33 . 2016-05-10 19:37 -------- d-----w- c:\programdata\TechSmith
2016-05-10 19:33 . 2016-05-10 19:33 -------- d-----w- c:\program files (x86)\TechSmith
2016-05-10 19:31 . 2016-05-10 19:31 -------- d-----w- c:\users\Yacintos\AppData\Roaming\TeamViewer
2016-05-10 19:31 . 2016-05-10 19:34 -------- d-----w- c:\program files (x86)\TeamViewer
2016-05-10 17:05 . 2016-05-10 19:19 -------- d-----w- c:\users\Yacintos\AppData\Roaming\FileZilla
2016-05-10 17:05 . 2016-05-10 17:05 -------- d-----w- c:\program files\FileZilla FTP Client
2016-05-09 13:50 . 2016-05-10 06:45 -------- d-----w- c:\program files\CCleaner
2016-05-08 13:51 . 2016-05-08 13:51 -------- d-----w- c:\programdata\regid.1986-12.com.adobe
2016-05-01 21:08 . 2016-05-02 07:15 -------- d-----w- c:\windows\AutoKMS
2016-05-01 21:07 . 2016-05-01 21:07 -------- d-----w- c:\programdata\Microsoft Toolkit
2016-05-01 19:51 . 2016-05-01 19:51 -------- d-----w- c:\programdata\regid.1991-06.com.microsoft
2016-05-01 19:51 . 2016-05-01 19:52 -------- d-----w- c:\program files (x86)\Microsoft SQL Server
2016-05-01 19:51 . 2016-05-01 19:51 -------- d-----w- c:\windows\PCHEALTH
2016-05-01 19:47 . 2016-05-01 19:47 -------- d-----w- c:\users\Yacintos\AppData\Local\Microsoft Help
2016-05-01 19:47 . 2016-05-01 19:47 -------- d-----w- c:\program files (x86)\Microsoft Analysis Services
2016-05-01 19:47 . 2016-05-01 20:15 -------- d-----w- c:\programdata\Microsoft Help
2016-05-01 19:45 . 2016-05-01 19:45 -------- d-----w- c:\program files\Microsoft Office
2016-05-01 19:44 . 2016-05-01 19:44 -------- d-----r- C:\MSOCache
2016-04-30 22:19 . 2016-05-18 19:12 -------- d-----w- c:\users\Yacintos\AppData\Roaming\vlc
2016-04-30 22:18 . 2016-04-30 22:18 -------- d-----w- c:\program files (x86)\VideoLAN
2016-04-26 16:50 . 2016-04-26 16:51 -------- d-----w- c:\programdata\ShellIcons
2016-04-26 09:19 . 2016-04-26 09:20 -------- d-----w- c:\windows\SysWow64\Codecs
2016-04-24 13:26 . 2016-04-24 13:26 -------- d-----w- c:\program files\Microsoft Silverlight
2016-04-24 13:26 . 2016-04-24 13:26 -------- d-----w- c:\program files (x86)\Microsoft Silverlight
2016-04-24 12:52 . 2016-04-24 12:52 -------- d-----w- c:\users\Yacintos\AppData\Local\Macromedia
2016-04-24 12:22 . 2016-04-24 12:22 -------- d-----w- c:\program files (x86)\KeyTweak
2016-04-24 12:20 . 2016-05-22 13:28 -------- d-----w- c:\users\Yacintos\AppData\Roaming\IDM
2016-04-24 12:20 . 2016-04-25 07:21 -------- d-----w- c:\program files (x86)\Internet Download Manager
2016-04-23 21:37 . 2016-04-23 21:37 -------- d-----w- c:\windows\Migration
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2016-05-12 17:43 . 2016-04-12 22:32 797376 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2016-05-12 17:43 . 2016-04-12 22:32 142528 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2016-04-21 11:47 . 2016-04-21 11:48 6656 ----a-w- c:\windows\system32\bcmwlrc.dll
2016-04-21 11:47 . 2016-04-21 11:48 96600 ----a-w- c:\windows\system32\bcmwlcoi.dll
2016-04-21 11:47 . 2016-04-21 11:48 7765240 ----a-w- c:\windows\system32\drivers\BCMWL664.SYS
2016-04-21 11:47 . 2016-04-21 11:48 4401152 ----a-w- c:\windows\system32\bcmihvsrv64.dll
2016-04-21 11:47 . 2016-04-21 11:48 3667968 ----a-w- c:\windows\system32\bcmihvui64.dll
2016-04-16 16:37 . 2016-04-16 16:37 48368 ----a-w- c:\windows\SysWow64\DiscHandler.exe
2016-03-20 16:17 . 2016-03-20 16:17 314368 ----a-w- c:\windows\SysWow64\IcarosUICore.dll
2016-03-20 16:17 . 2016-03-20 16:17 314368 ----a-w- c:\windows\system32\IcarosUICore.dll
2016-03-20 16:17 . 2016-03-20 16:17 265216 ----a-w- c:\windows\SysWow64\IcarosConfig.exe
2016-03-20 16:17 . 2016-03-20 16:17 265216 ----a-w- c:\windows\system32\IcarosConfig.exe
2016-03-20 16:17 . 2016-03-20 16:17 716288 ----a-w- c:\windows\system32\IcarosPropertyHandler.dll
2016-03-20 16:17 . 2016-03-20 16:17 418816 ----a-w- c:\windows\system32\IcarosThumbnailProvider.dll
2016-03-20 16:17 . 2016-03-20 16:17 317440 ----a-w- c:\windows\system32\IcarosCache.dll
2016-03-20 16:17 . 2016-03-20 16:17 599040 ----a-w- c:\windows\SysWow64\IcarosPropertyHandler.dll
2016-03-20 16:17 . 2016-03-20 16:17 356352 ----a-w- c:\windows\SysWow64\IcarosThumbnailProvider.dll
2016-03-20 16:17 . 2016-03-20 16:17 259584 ----a-w- c:\windows\SysWow64\IcarosCache.dll
2016-03-20 14:49 . 2016-03-20 14:49 7858176 ----a-w- c:\windows\system32\avcodec-ics-57.dll
2016-03-20 14:49 . 2016-03-20 14:49 532480 ----a-w- c:\windows\system32\swscale-ics-4.dll
2016-03-20 14:49 . 2016-03-20 14:49 510976 ----a-w- c:\windows\system32\avutil-ics-55.dll
2016-03-20 14:49 . 2016-03-20 14:49 1126400 ----a-w- c:\windows\system32\avformat-ics-57.dll
2016-03-20 14:45 . 2016-03-20 14:45 7568384 ----a-w- c:\windows\SysWow64\avcodec-ics-57.dll
2016-03-20 14:45 . 2016-03-20 14:45 556544 ----a-w- c:\windows\SysWow64\avutil-ics-55.dll
2016-03-20 14:45 . 2016-03-20 14:45 537088 ----a-w- c:\windows\SysWow64\swscale-ics-4.dll
2016-03-20 14:45 . 2016-03-20 14:45 1199104 ----a-w- c:\windows\SysWow64\avformat-ics-57.dll
2016-03-08 12:33 . 2016-03-08 12:33 327864 ----a-w- c:\windows\system32\libbluray.dll
2016-03-08 12:33 . 2016-03-08 12:33 514744 ----a-w- c:\windows\system32\IntelQuickSyncDecoder.dll
2016-03-08 12:32 . 2016-03-08 12:32 1306296 ----a-w- c:\windows\system32\LAVVideo.ax
2016-03-08 12:32 . 2016-03-08 12:32 660152 ----a-w- c:\windows\system32\LAVSplitter.ax
2016-03-08 12:32 . 2016-03-08 12:32 306360 ----a-w- c:\windows\system32\LAVAudio.ax
2016-03-08 12:32 . 2016-03-08 12:32 532664 ----a-w- c:\windows\system32\swscale-lav-4.dll
2016-03-08 12:32 . 2016-03-08 12:32 510648 ----a-w- c:\windows\system32\avutil-lav-55.dll
2016-03-08 12:32 . 2016-03-08 12:32 168120 ----a-w- c:\windows\system32\avresample-lav-3.dll
2016-03-08 12:32 . 2016-03-08 12:32 1587896 ----a-w- c:\windows\system32\avformat-lav-57.dll
2016-03-08 12:32 . 2016-03-08 12:32 193720 ----a-w- c:\windows\system32\avfilter-lav-6.dll
2016-03-08 12:32 . 2016-03-08 12:32 11095736 ----a-w- c:\windows\system32\avcodec-lav-57.dll
2016-03-08 12:32 . 2016-03-08 12:32 271544 ----a-w- c:\windows\SysWow64\libbluray.dll
2016-03-08 12:32 . 2016-03-08 12:32 404152 ----a-w- c:\windows\SysWow64\IntelQuickSyncDecoder.dll
2016-03-08 12:32 . 2016-03-08 12:32 1083064 ----a-w- c:\windows\SysWow64\LAVVideo.ax
2016-03-08 12:32 . 2016-03-08 12:32 542392 ----a-w- c:\windows\SysWow64\LAVSplitter.ax
2016-03-08 12:32 . 2016-03-08 12:32 258744 ----a-w- c:\windows\SysWow64\LAVAudio.ax
2016-03-08 12:32 . 2016-03-08 12:32 537784 ----a-w- c:\windows\SysWow64\swscale-lav-4.dll
2016-03-08 12:32 . 2016-03-08 12:32 556216 ----a-w- c:\windows\SysWow64\avutil-lav-55.dll
2016-03-08 12:32 . 2016-03-08 12:32 160440 ----a-w- c:\windows\SysWow64\avresample-lav-3.dll
2016-03-08 12:32 . 2016-03-08 12:32 1697976 ----a-w- c:\windows\SysWow64\avformat-lav-57.dll
2016-03-08 12:32 . 2016-03-08 12:32 188088 ----a-w- c:\windows\SysWow64\avfilter-lav-6.dll
2016-03-08 12:31 . 2016-03-08 12:31 10766520 ----a-w- c:\windows\SysWow64\avcodec-lav-57.dll
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IDMan"="c:\program files (x86)\Internet Download Manager\IDMan.exe" [2016-04-24 3924024]
"CCleaner Monitoring"="c:\program files\CCleaner\CCleaner64.exe" [2016-04-15 8698584]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\drivers\asmthub3.sys;c:\windows\SYSNATIVE\drivers\asmthub3.sys [x]
R3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\drivers\asmtxhci.sys;c:\windows\SYSNATIVE\drivers\asmtxhci.sys [x]
R3 b06diag;Broadcom NetXtreme II Diag Driver;c:\windows\system32\drivers\bxdiaga.sys;c:\windows\SYSNATIVE\drivers\bxdiaga.sys [x]
R3 BFN7x64;Bigfoot Networks Killer Gaming Service;c:\windows\system32\drivers\Xeno7x64.sys;c:\windows\SYSNATIVE\drivers\Xeno7x64.sys [x]
R3 bxfcoe;bxfcoe;c:\windows\system32\drivers\bxfcoe.sys;c:\windows\SYSNATIVE\drivers\bxfcoe.sys [x]
R3 bxois;bxois;c:\windows\system32\drivers\bxois.sys;c:\windows\SYSNATIVE\drivers\bxois.sys [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;c:\windows\System32\Drivers\EtronHub3.sys;c:\windows\SYSNATIVE\Drivers\EtronHub3.sys [x]
R3 EtronSTOR;Etron Enhance USB BOT/UASP Mass Storage Driver;c:\windows\System32\Drivers\EtronSTOR.sys;c:\windows\SYSNATIVE\Drivers\EtronSTOR.sys [x]
R3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;c:\windows\System32\Drivers\EtronXHCI.sys;c:\windows\SYSNATIVE\Drivers\EtronXHCI.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 ioatdma1;ioatdma1;c:\windows\System32\Drivers\qd162x64.sys;c:\windows\SYSNATIVE\Drivers\qd162x64.sys [x]
R3 ioatdma2;Intel(R) QuickData Technology device ver.2;c:\windows\System32\Drivers\qd262x64.sys;c:\windows\SYSNATIVE\Drivers\qd262x64.sys [x]
R3 iusb3hub;Intel(R) USB 3.0 Hub Driver;c:\windows\system32\drivers\iusb3hub.sys;c:\windows\SYSNATIVE\drivers\iusb3hub.sys [x]
R3 iusb3xhc;Intel(R) USB 3.0 eXtensible Host Controller Driver;c:\windows\system32\drivers\iusb3xhc.sys;c:\windows\SYSNATIVE\drivers\iusb3xhc.sys [x]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys;c:\windows\SYSNATIVE\drivers\nusb3hub.sys [x]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys;c:\windows\SYSNATIVE\drivers\nusb3xhc.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys;c:\windows\SYSNATIVE\drivers\terminpt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys;c:\windows\SYSNATIVE\DRIVERS\epfwwfp.sys [x]
S0 iaStorA;iaStorA;c:\windows\system32\DRIVERS\iaStorA.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorA.sys [x]
S0 iaStorF;iaStorF;c:\windows\system32\DRIVERS\iaStorF.sys;c:\windows\SYSNATIVE\DRIVERS\iaStorF.sys [x]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys;c:\windows\SYSNATIVE\DRIVERS\eamonm.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys;c:\windows\SYSNATIVE\DRIVERS\ehdrv.sys [x]
S1 EpfwLWF;ESET Personal Firewall;c:\windows\system32\DRIVERS\EpfwLWF.sys;c:\windows\SYSNATIVE\DRIVERS\EpfwLWF.sys [x]
S2 ekbdflt;ekbdflt;c:\windows\system32\DRIVERS\ekbdflt.sys;c:\windows\SYSNATIVE\DRIVERS\ekbdflt.sys [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe;c:\program files\ESET\ESET Smart Security\ekrn.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 IDMWFP;IDMWFP;c:\windows\system32\DRIVERS\idmwfp.sys;c:\windows\SYSNATIVE\DRIVERS\idmwfp.sys [x]
S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe;c:\program files (x86)\Nero\Update\NASvc.exe [x]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]
S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys;c:\windows\SYSNATIVE\DRIVERS\Impcd.sys [x]
S3 IntcDAud;Son Intel(R) pour écrans;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x]
S3 RTSUER;Realtek USB Card Reader - UER;c:\windows\system32\Drivers\RtsUer.sys;c:\windows\SYSNATIVE\Drivers\RtsUer.sys [x]
.
.
Contenu du dossier 'Tâches planifiées'
.
2016-05-23 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-04-12 17:43]
.
2016-05-23 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2016-04-12 08:47]
.
2016-05-23 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2016-04-12 08:47]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ IDM Shell Extension]
@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
2015-08-14 13:52 25624 ----a-w- c:\program files (x86)\Internet Download Manager\IDMShellExt64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2014-05-14 06:18 2335960 ----a-w- c:\progra~1\MICROS~3\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2014-05-14 06:18 2335960 ----a-w- c:\progra~1\MICROS~3\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2014-05-14 06:18 2335960 ----a-w- c:\progra~1\MICROS~3\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-10-18 161304]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-10-18 386584]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-10-18 415256]
.
------- Examen supplémentaire -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://google.com/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyServer =
IE: E&xporter vers Microsoft Excel - c:\progra~2\MICROS~2\Office15\EXCEL.EXE/3000
IE: Télécharger avec IDM - c:\program files (x86)\Internet Download Manager\IEExt.htm
IE: Télécharger tous les liens avec Internet Download Manager - c:\program files (x86)\Internet Download Manager\IEGetAll.htm
Trusted Zone: eset.com\help
TCP: DhcpNameServer = 192.168.1.1
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL
FF - ProfilePath - c:\users\Yacintos\AppData\Roaming\Mozilla\Firefox\Profiles\212qulgr.default\
.
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_USERS\S-1-5-21-604554063-836220999-2510129048-1000_Classes\Wow6432Node\CLSID\{4e5eff5e-ccb4-4e35-8a06-116444b15b09}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"Model"=dword:00000071
"Therad"=dword:0000000c
.
[HKEY_USERS\S-1-5-21-604554063-836220999-2510129048-1000_Classes\Wow6432Node\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"scansk"=hex(0):b8,d3,af,50,fa,b5,d3,f5,d2,71,ef,86,60,39,d7,df,d6,33,d6,bd,2c,
50,4e,ba,d6,73,d7,33,3b,79,72,5a,1f,d5,a9,a3,9e,f3,02,53,00,00,00,00,00,00,\
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Heure de fin: 2016-05-23 22:49:07
ComboFix-quarantined-files.txt 2016-05-23 20:49
.
Avant-CF: 219 954 794 496 octets libres
Après-CF: 219 567 427 584 octets libres
.
- - End Of File - - 8C7FDD1C305BC517A39F4164A50137F3
A36C5E4F47E84449FF07ED3517B43A31

Publicité


Signaler le contenu de ce document

Publicité