cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ComboFix 16-07-16.01 - driss 21/07/2016 12:01:57.2.4 - x64
Microsoft Windows 7 Édition Familiale Premium 6.1.7601.1.1252.33.1036.18.6005.4329 [GMT 2:00]
Lancé depuis: c:\users\driss\Desktop\ComboFix.exe
AV: AVG AntiVirus Free Edition *Disabled/Updated* {4D41356F-32AD-7C42-C820-63775EE4F413}
SP: AVG AntiVirus Free Edition *Disabled/Updated* {F620D48B-1497-73CC-F290-58052563BEAE}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Exécution préalable -------
.
c:\windows\msdownld.tmp
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2016-06-21 au 2016-07-21 ))))))))))))))))))))))))))))))))))))
.
.
2016-07-21 10:06 . 2016-07-21 10:06 -------- d-----w- c:\users\Default\AppData\Local\temp
2016-07-21 09:48 . 2005-03-18 15:19 3823312 ----a-w- c:\windows\system32\d3dx9_25.dll
2016-07-21 09:48 . 2005-02-05 17:45 3544272 ----a-w- c:\windows\system32\d3dx9_24.dll
2016-07-20 12:22 . 2016-07-20 12:22 -------- d-----w- c:\program files (x86)\qBittorrent
2016-07-20 11:42 . 2016-07-20 11:42 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{CDED4F2F-9E66-4C5C-9D67-44B830021118}\offreg.2224.dll
2016-07-20 11:37 . 2016-07-20 11:38 -------- d-----w- c:\program files (x86)\ZHPFix
2016-07-19 17:20 . 2016-07-19 17:20 -------- d-----w- c:\programdata\Package Cache
2016-07-19 16:47 . 2005-07-22 17:59 3807440 ----a-w- c:\windows\system32\d3dx9_27.dll
2016-07-19 16:39 . 2016-07-19 16:39 -------- d-----w- c:\program files (x86)\Electronic Arts
2016-07-19 16:36 . 2016-07-19 16:36 -------- d--h--w- c:\program files (x86)\InstallShield Installation Information
2016-07-19 16:33 . 2016-07-19 16:33 47672 ----a-w- c:\windows\system32\drivers\dtliteusbbus.sys
2016-07-19 16:32 . 2016-07-19 16:32 30264 ----a-w- c:\windows\system32\drivers\dtlitescsibus.sys
2016-07-19 16:32 . 2016-07-19 16:33 -------- d-----w- c:\program files\DAEMON Tools Lite
2016-07-19 16:32 . 2016-07-19 16:32 -------- d-----w- c:\programdata\DAEMON Tools Lite
2016-07-19 13:05 . 2016-07-19 13:06 192216 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2016-07-19 12:35 . 2016-07-19 12:35 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{CDED4F2F-9E66-4C5C-9D67-44B830021118}\offreg.4836.dll
2016-07-19 12:02 . 2016-07-19 12:02 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2016-07-19 12:02 . 2016-07-19 12:02 -------- d-----w- c:\programdata\Malwarebytes
2016-07-19 12:02 . 2016-03-10 12:09 64896 ----a-w- c:\windows\system32\drivers\mwac.sys
2016-07-19 12:02 . 2016-03-10 12:08 140672 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2016-07-19 12:02 . 2016-03-10 12:08 27008 ----a-w- c:\windows\system32\drivers\mbam.sys
2016-07-19 12:01 . 2016-07-19 12:01 -------- d-----w- c:\program files (x86)\Mozilla Maintenance Service
2016-07-19 10:55 . 2016-06-29 10:19 12007136 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{CDED4F2F-9E66-4C5C-9D67-44B830021118}\mpengine.dll
2016-07-18 12:53 . 2016-07-18 12:55 -------- d-----w- c:\program files (x86)\Minecraft
2016-07-18 12:29 . 2015-09-16 06:07 127432 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
2016-07-18 12:28 . 2016-07-18 12:28 -------- d-----w- c:\program files\DIFX
2016-07-18 12:28 . 2015-09-16 03:29 253384 ----a-w- c:\windows\system32\drivers\XQHDrv.sys
2016-07-18 12:28 . 2016-07-18 12:29 -------- dc----w- c:\windows\system32\DRVSTORE
2016-07-17 10:17 . 2015-07-11 13:15 429568 ----a-w- c:\windows\system32\wksprt.exe
2016-07-17 10:17 . 2015-07-16 19:12 6131200 ----a-w- c:\windows\SysWow64\mstscax.dll
2016-07-17 10:17 . 2015-07-16 19:11 7077376 ----a-w- c:\windows\system32\mstscax.dll
2016-07-17 10:17 . 2015-07-16 19:12 856064 ----a-w- c:\windows\SysWow64\rdvidcrl.dll
2016-07-17 10:17 . 2015-07-16 19:12 53248 ----a-w- c:\windows\SysWow64\tsgqec.dll
2016-07-17 10:17 . 2015-07-16 19:11 62976 ----a-w- c:\windows\system32\tsgqec.dll
2016-07-17 10:17 . 2015-07-16 19:11 1057792 ----a-w- c:\windows\system32\rdvidcrl.dll
2016-07-17 09:09 . 2016-07-17 09:09 -------- d-----w- c:\program files (x86)\Common Files\Skype
2016-07-17 09:09 . 2016-07-17 09:09 -------- d-----r- c:\program files (x86)\Skype
2016-07-17 09:08 . 2016-07-17 09:08 -------- d-----w- c:\programdata\Skype
2016-07-17 08:55 . 2016-07-17 08:55 -------- d-----w- c:\program files (x86)\Common Files\Java
2016-07-17 08:54 . 2016-07-17 08:54 110144 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
2016-07-17 08:54 . 2016-07-17 08:54 -------- d-----w- c:\programdata\Oracle
2016-07-17 08:54 . 2016-07-17 08:54 -------- d-----w- c:\program files\Java
2016-07-17 08:52 . 2015-12-20 18:50 3180544 ----a-w- c:\windows\system32\rdpcorets.dll
2016-07-17 08:52 . 2015-12-20 18:50 16384 ----a-w- c:\windows\system32\RdpGroupPolicyExtension.dll
2016-07-17 08:52 . 2015-12-20 14:08 243200 ----a-w- c:\windows\system32\rdpudd.dll
2016-07-17 08:52 . 2014-12-11 17:47 87040 ----a-w- c:\windows\system32\TSWbPrxy.exe
2016-07-17 08:47 . 2016-07-17 08:49 -------- d-----w- c:\program files (x86)\Google
2016-07-16 17:05 . 2013-10-02 04:51 3584 ----a-w- c:\windows\system32\drivers\fr-FR\tsusbflt.sys.mui
2016-07-16 17:05 . 2013-10-02 01:10 44544 ----a-w- c:\windows\system32\TsUsbGDCoInstaller.dll
2016-07-16 17:05 . 2013-10-02 02:22 56832 ----a-w- c:\windows\system32\drivers\TsUsbFlt.sys
2016-07-16 17:05 . 2013-10-02 02:11 13824 ----a-w- c:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2016-07-16 17:05 . 2013-10-02 02:08 12800 ----a-w- c:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2016-07-16 17:05 . 2013-10-02 01:48 56832 ----a-w- c:\windows\system32\MsRdpWebAccess.dll
2016-07-16 17:05 . 2013-10-02 01:48 18944 ----a-w- c:\windows\system32\wksprtPS.dll
2016-07-16 17:05 . 2013-10-02 00:14 50176 ----a-w- c:\windows\SysWow64\MsRdpWebAccess.dll
2016-07-16 17:05 . 2013-10-02 00:14 17920 ----a-w- c:\windows\SysWow64\wksprtPS.dll
2016-07-16 17:05 . 2013-10-01 23:31 1147392 ----a-w- c:\windows\system32\mstsc.exe
2016-07-16 17:05 . 2013-10-01 22:34 1068544 ----a-w- c:\windows\SysWow64\mstsc.exe
2016-07-16 17:03 . 2012-08-23 14:10 19456 ----a-w- c:\windows\system32\drivers\rdpvideominiport.sys
2016-07-16 17:03 . 2012-08-23 14:08 30208 ----a-w- c:\windows\system32\drivers\TsUsbGD.sys
2016-07-16 17:03 . 2012-08-23 11:12 192000 ----a-w- c:\windows\SysWow64\rdpendp_winip.dll
2016-07-16 17:03 . 2012-08-23 10:51 228864 ----a-w- c:\windows\system32\rdpendp_winip.dll
2016-07-16 17:00 . 2015-08-05 17:56 22528 ----a-w- c:\windows\system32\icaapi.dll
2016-07-16 17:00 . 2015-08-05 17:06 39936 ----a-w- c:\windows\system32\drivers\tssecsrv.sys
2016-07-16 16:58 . 2015-12-16 18:55 69120 ----a-w- c:\windows\system32\nlsbres.dll
2016-07-16 16:58 . 2015-12-16 18:53 7168 ----a-w- c:\windows\system32\kbdgeoqw.dll
2016-07-16 16:58 . 2015-12-16 18:53 7168 ----a-w- c:\windows\system32\KBDAZEL.DLL
2016-07-16 16:58 . 2015-12-16 18:53 7168 ----a-w- c:\windows\system32\KBDAZE.DLL
2016-07-16 16:58 . 2015-12-16 18:48 6656 ----a-w- c:\windows\SysWow64\kbdgeoqw.dll
2016-07-16 16:58 . 2015-12-16 18:48 6656 ----a-w- c:\windows\SysWow64\KBDAZEL.DLL
2016-07-16 16:58 . 2015-12-16 18:47 69120 ----a-w- c:\windows\SysWow64\nlsbres.dll
2016-07-16 15:34 . 2016-07-16 15:36 -------- d-----w- c:\windows\system32\MRT
2016-07-15 18:03 . 2016-07-15 18:03 -------- d-----w- c:\program files\Common Files\AV
2016-07-15 18:02 . 2016-07-15 18:02 -------- d-----w- C:\$AVG
2016-07-15 17:59 . 2016-07-21 08:43 -------- d-----w- c:\programdata\MFAData
2016-07-15 17:57 . 2016-07-15 18:00 -------- d-----w- c:\program files (x86)\AVG
2016-07-15 17:55 . 2016-07-15 18:02 -------- d-----w- c:\programdata\Avg
2016-07-15 17:55 . 2016-07-15 17:55 -------- d--h--w- c:\programdata\Common Files
2016-07-15 01:25 . 2016-07-15 01:25 -------- d-s---w- c:\windows\system32\CompatTel
2016-07-15 01:25 . 2016-07-15 01:25 -------- d-----w- c:\windows\system32\appraiser
2016-07-14 07:21 . 2014-07-09 02:03 7168 ----a-w- c:\windows\system32\KBDYAK.DLL
2016-07-14 07:20 . 2011-03-11 06:33 2565632 ----a-w- c:\windows\system32\esent.dll
2016-07-14 07:20 . 2011-03-11 06:41 166272 ----a-w- c:\windows\system32\drivers\nvstor.sys
2016-07-14 07:20 . 2011-03-11 06:41 148352 ----a-w- c:\windows\system32\drivers\nvraid.sys
2016-07-14 07:20 . 2011-03-11 06:41 410496 ----a-w- c:\windows\system32\drivers\iaStorV.sys
2016-07-14 07:20 . 2011-03-11 06:41 27008 ----a-w- c:\windows\system32\drivers\amdxata.sys
2016-07-14 07:20 . 2011-03-11 06:41 107904 ----a-w- c:\windows\system32\drivers\amdsata.sys
2016-07-14 07:20 . 2011-03-11 06:30 96768 ----a-w- c:\windows\system32\fsutil.exe
2016-07-14 07:20 . 2011-03-11 05:33 1699328 ----a-w- c:\windows\SysWow64\esent.dll
2016-07-14 07:20 . 2011-03-11 05:31 74240 ----a-w- c:\windows\SysWow64\fsutil.exe
2016-07-14 07:20 . 2015-02-04 03:16 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2016-07-14 07:20 . 2015-02-04 02:54 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2016-07-13 19:35 . 2015-11-10 18:55 1648128 ----a-w- c:\windows\system32\DWrite.dll
2016-07-13 19:35 . 2015-11-10 18:55 1180160 ----a-w- c:\windows\system32\FntCache.dll
2016-07-13 19:35 . 2015-11-10 18:39 1251328 ----a-w- c:\windows\SysWow64\DWrite.dll
2016-07-13 19:35 . 2015-07-30 18:06 2565120 ----a-w- c:\windows\system32\d3d10warp.dll
2016-07-13 19:35 . 2015-07-30 17:57 1987584 ----a-w- c:\windows\SysWow64\d3d10warp.dll
2016-07-13 19:35 . 2016-04-14 13:49 603648 ----a-w- c:\windows\SysWow64\d3d10level9.dll
2016-07-13 19:35 . 2016-04-14 13:21 647680 ----a-w- c:\windows\system32\d3d10level9.dll
2016-07-13 19:35 . 2015-12-08 21:54 2285056 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll
2016-07-13 19:35 . 2015-12-08 19:07 2777088 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2016-07-13 19:34 . 2016-04-09 04:20 1230848 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2016-07-13 19:34 . 2016-04-09 03:52 1424896 ----a-w- c:\windows\system32\WindowsCodecs.dll
2016-07-13 18:49 . 2016-07-13 18:49 -------- d-----w- c:\windows\SysWow64\wbem\en-US
2016-07-13 18:49 . 2016-07-13 18:49 -------- d-----w- c:\windows\system32\wbem\en-US
2016-07-13 18:48 . 2016-07-13 18:48 -------- d-s---w- c:\windows\SysWow64\GWX
2016-07-13 18:48 . 2016-07-21 08:40 -------- d-s---w- c:\windows\system32\GWX
2016-07-13 18:48 . 2016-07-13 18:48 -------- d-----w- c:\windows\SysWow64\Wat
2016-07-13 18:48 . 2016-07-13 18:48 -------- d-----w- c:\windows\system32\Wat
2016-07-13 18:04 . 2015-07-30 13:13 103120 ----a-w- c:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2016-07-13 18:04 . 2015-07-30 13:13 124624 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2016-07-13 17:59 . 2013-10-14 16:00 28368 ----a-w- c:\windows\system32\IEUDINIT.EXE
2016-07-13 17:35 . 2016-07-13 17:35 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2016-07-13 16:38 . 2012-07-26 05:04 2560 ----a-w- c:\windows\system32\drivers\fr-FR\wdf01000.sys.mui
2016-07-13 16:13 . 2016-07-13 16:13 -------- d-----w- c:\windows\Migration
2016-07-13 16:13 . 2016-07-13 16:13 -------- d-----w- c:\program files (x86)\Microsoft.NET
2016-07-13 16:13 . 2016-07-20 12:02 -------- d-sh--w- c:\windows\Installer
2016-07-13 15:45 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe
2016-07-13 15:45 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
2016-07-13 15:45 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll
2016-07-13 15:45 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2016-07-13 15:45 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
2016-07-13 15:45 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2016-07-13 15:45 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2016-07-13 15:30 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2016-06-21 10:13 . 2010-11-21 03:27 485032 ------w- c:\windows\system32\MpSigStub.exe
2016-06-14 15:21 . 2016-07-13 14:01 2560 ----a-w- c:\windows\apppatch\AcRes.dll
2016-06-09 06:15 . 2016-06-09 06:15 310016 ----a-w- c:\windows\system32\drivers\avgidsdrivera.sys
2016-06-02 13:13 . 2016-06-02 13:13 249088 ----a-w- c:\windows\system32\drivers\avgmfx64.sys
2016-06-01 11:28 . 2016-06-01 11:28 260352 ----a-w- c:\windows\system32\drivers\avgldx64.sys
2016-06-01 11:26 . 2016-06-01 11:26 280320 ----a-w- c:\windows\system32\drivers\avgtdia.sys
2016-06-01 11:25 . 2016-06-01 11:25 261376 ----a-w- c:\windows\system32\drivers\avgidsha.sys
2016-06-01 11:25 . 2016-06-01 11:25 76544 ----a-w- c:\windows\system32\drivers\avguniva.sys
2016-06-01 11:16 . 2016-06-01 11:16 52992 ----a-w- c:\windows\system32\drivers\avgrkx64.sys
2016-05-16 23:14 . 2016-07-16 16:59 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2016-05-13 05:52 . 2016-05-13 05:52 163072 ----a-w- c:\windows\system32\drivers\avgdiska.sys
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2016-06-28 26424960]
"DAEMON Tools Lite Automount"="c:\program files\DAEMON Tools Lite\DTAgent.exe" [2016-06-22 4299968]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AvgUi"="c:\program files (x86)\AVG\Framework\Common\avguirnx.exe" [2016-06-21 186640]
"AVG_UI"="c:\program files (x86)\AVG\Av\avuirunnerx.exe" [2016-06-29 32528]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2016-05-20 596504]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"wextract_cleanup0"="c:\windows\system32\advpack.dll" [2009-07-14 126464]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\Av\avgidsagenta.exe;c:\program files (x86)\AVG\Av\avgidsagenta.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 AvgAMPS;AvgAMPS;c:\program files (x86)\AVG\Av\avgamps.exe;c:\program files (x86)\AVG\Av\avgamps.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsha.sys [x]
S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys;c:\windows\SYSNATIVE\DRIVERS\avgloga.sys [x]
S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgmfx64.sys [x]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgrkx64.sys [x]
S0 avguniva;AVG Universal Driver;c:\windows\system32\DRIVERS\avguniva.sys;c:\windows\SYSNATIVE\DRIVERS\avguniva.sys [x]
S1 Avgdiska;AVG Disk Driver;c:\windows\system32\DRIVERS\avgdiska.sys;c:\windows\SYSNATIVE\DRIVERS\avgdiska.sys [x]
S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsdrivera.sys [x]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgldx64.sys [x]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys;c:\windows\SYSNATIVE\DRIVERS\avgtdia.sys [x]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxUSBMon.sys [x]
S1 XQHDrv;BigNox Service;c:\windows\system32\DRIVERS\XQHDrv.sys;c:\windows\SYSNATIVE\DRIVERS\XQHDrv.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 avgsvc;AVG Service;c:\program files (x86)\AVG\Framework\Common\avgsvca.exe;c:\program files (x86)\AVG\Framework\Common\avgsvca.exe [x]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\Av\avgwdsvca.exe;c:\program files (x86)\AVG\Av\avgwdsvca.exe [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S3 Acceler;Accelerometer Service;c:\windows\system32\DRIVERS\Acceler.sys;c:\windows\SYSNATIVE\DRIVERS\Acceler.sys [x]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service;c:\program files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe;c:\program files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [x]
S3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus;c:\windows\system32\DRIVERS\dtlitescsibus.sys;c:\windows\SYSNATIVE\DRIVERS\dtlitescsibus.sys [x]
S3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus;c:\windows\system32\DRIVERS\dtliteusbbus.sys;c:\windows\SYSNATIVE\DRIVERS\dtliteusbbus.sys [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]
S3 O2MDGRDR;O2MDGRDR;c:\windows\system32\DRIVERS\o2mdgx64.sys;c:\windows\SYSNATIVE\DRIVERS\o2mdgx64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
--- Autres Services/Pilotes en mémoire ---
.
*NewlyCreated* - QWAVEDRV
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr QWAVE wcncsvc
.
Contenu du dossier 'Tâches planifiées'
.
2016-07-21 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2016-07-17 08:47]
.
2016-07-21 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2016-07-17 08:47]
.
.
--------- X64 Entries -----------
.
.
------- Examen supplémentaire -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 192.168.0.254
FF - ProfilePath - c:\users\driss\AppData\Roaming\Mozilla\Firefox\Profiles\up5f6kpr.default\
.
- - - - ORPHELINS SUPPRIMES - - - -
.
AddRemove-AVG Web TuneUp - c:\program files (x86)\AVG Web TuneUp\UNINSTALL.exe
AddRemove-Nox - c:\users\driss\AppData\Roaming\Nox\bin\Nox_unload.exe
.
.
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Heure de fin: 2016-07-21 12:07:55
ComboFix-quarantined-files.txt 2016-07-21 10:07
.
Avant-CF: 441 767 157 760 octets libres
Après-CF: 441 701 449 728 octets libres
.
- - End Of File - - 38607E4E54E9A8E827D5C2E625BE3E96
A36C5E4F47E84449FF07ED3517B43A31

Publicité


Signaler le contenu de ce document

Publicité