cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ComboFix 18-03-14.01 - pc-yann 01/05/2018 11:03:50.1.2 - x64
Microsoft Windows 7 Édition Intégrale 6.1.7600.0.1252.33.1036.18.3271.1900 [GMT 2:00]
Lancé depuis: c:\users\pc-yann\Desktop\ComboFix.exe
AV: Avast Antivirus *Disabled/Updated* {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Malwarebytes *Disabled/Updated* {23007AD3-69FE-687C-2629-D584AFFAF72B}
SP: Avast Antivirus *Disabled/Updated* {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
SP: Malwarebytes *Disabled/Updated* {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\pc-yann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Google Chrome.lnk
c:\windows\security\logs\scecomp.log
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2018-04-01 au 2018-05-01 ))))))))))))))))))))))))))))))))))))
.
.
2018-05-01 09:12 . 2018-05-01 09:12 -------- d-----w- c:\users\Default\AppData\Local\temp
2018-04-30 14:36 . 2018-04-30 14:36 -------- d-----w- c:\program files (x86)\OpenOffice 4
2018-04-30 11:39 . 2018-04-30 11:59 -------- d-----w- C:\$WINDOWS.~BT
2018-04-30 10:38 . 2018-04-30 10:38 -------- d-----w- C:\$Windows.~WS
2018-04-29 21:47 . 2018-04-30 05:09 -------- d-----w- C:\FRST
2018-04-29 19:38 . 2018-04-29 19:38 -------- d-----w- C:\$GetCurrent
2018-04-29 19:37 . 2018-04-30 09:40 -------- d-----w- C:\Windows10Upgrade
2018-04-29 19:36 . 2018-04-30 11:20 -------- d-----w- C:\ESD
2018-04-29 19:22 . 2018-04-29 19:23 -------- d-----w- C:\AdwCleaner
2018-04-29 18:14 . 2018-04-29 18:14 -------- d-----w- c:\program files\FreeMi UPnP Media Server
2018-04-29 17:23 . 2018-04-28 11:03 376536 ----a-w- c:\windows\system32\aswBoot.exe
2018-04-29 07:35 . 2018-04-29 07:35 -------- d-----w- c:\program files (x86)\RssBandit
2018-04-29 07:28 . 2018-04-29 07:28 -------- d-----w- c:\program files\LibreOffice
2018-04-29 06:55 . 2018-04-29 06:55 -------- d-----w- c:\program files (x86)\AVAST Software
2018-04-29 06:38 . 2018-04-30 15:16 193768 ----a-w- c:\windows\system32\drivers\MbamChameleon.sys
2018-04-29 06:38 . 2018-05-01 09:00 253664 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2018-04-29 06:37 . 2018-03-19 10:57 76192 ----a-w- c:\windows\system32\drivers\mbae64.sys
2018-04-29 06:37 . 2018-04-29 06:37 -------- d-----w- c:\programdata\Malwarebytes
2018-04-29 06:37 . 2018-04-29 06:37 -------- d-----w- c:\program files\Malwarebytes
2018-04-28 21:06 . 2018-04-29 06:48 -------- d-----w- c:\program files\CCleaner
2018-04-28 20:34 . 2018-04-30 11:39 -------- d-----w- c:\windows\Panther
2018-04-28 16:18 . 2018-04-28 16:18 -------- d-----w- c:\program files (x86)\2BrightSparks
2018-04-28 16:07 . 2014-09-15 00:44 3195392 ----a-w- c:\windows\system32\win32k.sys
2018-04-28 16:01 . 2018-04-28 16:01 -------- d-----w- c:\windows\system32\MRT
2018-04-28 16:00 . 2018-04-28 16:00 136971704 -c--a-w- c:\windows\system32\MRT-KB890830.exe
2018-04-28 16:00 . 2018-04-28 16:00 -------- d-----w- c:\windows\Migration
2018-04-28 15:57 . 2011-04-09 06:58 142336 ----a-w- c:\windows\system32\poqexec.exe
2018-04-28 15:57 . 2011-04-09 05:56 123904 ----a-w- c:\windows\SysWow64\poqexec.exe
2018-04-28 15:57 . 2015-03-19 03:07 5503416 ----a-w- c:\windows\system32\ntoskrnl.exe
2018-04-28 15:57 . 2015-03-19 02:57 3908024 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2018-04-28 15:57 . 2015-03-19 02:57 3963320 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2018-04-28 15:57 . 2013-03-19 05:54 43520 ----a-w- c:\windows\system32\csrsrv.dll
2018-04-28 15:57 . 2013-03-19 04:53 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll
2018-04-28 15:57 . 2013-03-19 03:19 112640 ----a-w- c:\windows\system32\smss.exe
2018-04-28 15:57 . 2016-06-25 16:03 304128 ----a-w- c:\windows\system32\EOSNotify.exe
2018-04-28 15:52 . 2018-04-28 15:52 -------- d-----w- c:\program files\Common Files\EPSON
2018-04-28 15:41 . 2018-04-28 15:41 -------- d-----w- c:\program files\EpsonNet
2018-04-28 15:41 . 2012-11-12 18:41 535552 ----a-w- c:\windows\system32\ensppui.dll
2018-04-28 15:41 . 2012-11-12 18:41 535552 ----a-w- c:\windows\system32\enppui.dll
2018-04-28 15:41 . 2012-11-12 13:15 558592 ----a-w- c:\windows\system32\ensppmon.dll
2018-04-28 15:41 . 2012-11-12 13:15 558592 ----a-w- c:\windows\system32\enppmon.dll
2018-04-28 15:41 . 2012-10-22 15:19 219648 ----a-w- c:\windows\system32\enspres.dll
2018-04-28 15:41 . 2012-10-22 15:19 219648 ----a-w- c:\windows\system32\enpres.dll
2018-04-28 15:40 . 2018-04-28 15:41 -------- d-----w- c:\program files (x86)\Epson Software
2018-04-28 15:39 . 2012-07-23 22:00 466432 ----a-w- c:\windows\system32\esxw2ud.dll
2018-04-28 15:39 . 2012-05-16 22:00 144560 ----a-w- c:\windows\system32\escsvc64.exe
2018-04-28 15:39 . 2010-11-22 11:27 147472 ----a-w- c:\windows\SysWow64\twaindsm.dll
2018-04-28 15:39 . 2018-04-28 15:40 -------- d-----w- c:\program files (x86)\epson
2018-04-28 15:39 . 2007-04-09 16:06 10752 ----a-w- c:\windows\system32\E_GCINST.DLL
2018-04-28 15:39 . 2013-10-21 19:04 179712 ----a-w- c:\windows\system32\E_YLMBKEE.DLL
2018-04-28 15:39 . 2011-03-14 18:03 83968 ----a-w- c:\windows\system32\E_YD4BKEE.DLL
2018-04-28 15:32 . 2018-04-28 15:57 -------- d-----w- c:\programdata\Epson
2018-04-28 15:28 . 2018-04-28 15:28 -------- d-----w- c:\program files (x86)\JAM Software
2018-04-28 13:19 . 2018-04-28 13:19 -------- d-----w- c:\program files\7-Zip
2018-04-28 11:41 . 2018-04-28 11:41 -------- d-----w- c:\programdata\Foxit Software
2018-04-28 11:40 . 2018-04-28 11:40 -------- d-----w- c:\users\Public\Foxit Software
2018-04-28 11:39 . 2018-04-28 11:39 -------- d-----w- c:\programdata\Foxit ContentPlatform
2018-04-28 11:39 . 2018-04-28 11:39 -------- d-----w- c:\program files (x86)\Foxit Software
2018-04-28 11:31 . 2018-05-01 09:00 -------- d-----w- c:\program files (x86)\TeamViewer
2018-04-28 11:28 . 2018-04-28 11:28 -------- d-----w- c:\program files\Mozilla Firefox
2018-04-28 11:25 . 2018-04-28 11:44 -------- d-----w- c:\program files (x86)\Mozilla Maintenance Service
2018-04-28 11:25 . 2018-04-28 11:25 -------- d-----w- c:\program files (x86)\Mozilla Thunderbird
2018-04-28 11:06 . 2018-04-28 11:06 -------- d-----w- c:\program files\Google
2018-04-28 11:00 . 2018-04-28 11:00 -------- d-----w- c:\program files\AVAST Software
2018-04-28 11:00 . 2018-04-28 11:06 -------- d-----w- c:\program files (x86)\Google
2018-04-28 11:00 . 2018-04-29 06:55 -------- d-----w- c:\programdata\AVAST Software
2018-04-28 10:57 . 2018-05-01 08:59 65536 ----a-w- c:\windows\system32\spu_storage.bin
2018-04-28 10:56 . 2018-04-28 10:56 0 ----a-w- c:\windows\ativpsrm.bin
2018-04-28 10:53 . 2012-06-02 22:19 2428952 ----a-w- c:\windows\system32\wuaueng.dll
2018-04-28 10:53 . 2012-06-02 22:19 57880 ----a-w- c:\windows\system32\wuauclt.exe
2018-04-28 10:53 . 2012-06-02 22:19 44056 ----a-w- c:\windows\system32\wups2.dll
2018-04-28 10:53 . 2012-06-02 22:15 2622464 ----a-w- c:\windows\system32\wucltux.dll
2018-04-28 10:53 . 2012-06-02 22:19 38424 ----a-w- c:\windows\system32\wups.dll
2018-04-28 10:53 . 2012-06-02 22:19 701976 ----a-w- c:\windows\system32\wuapi.dll
2018-04-28 10:53 . 2012-06-02 22:15 99840 ----a-w- c:\windows\system32\wudriver.dll
2018-04-28 10:53 . 2012-06-02 13:19 186752 ----a-w- c:\windows\system32\wuwebv.dll
2018-04-28 10:53 . 2012-06-02 13:15 36864 ----a-w- c:\windows\system32\wuapp.exe
2018-04-28 10:52 . 2018-04-28 10:52 -------- d-----w- c:\program files\Realtek
2018-04-28 10:52 . 2018-04-28 10:52 -------- d-----w- c:\windows\SysWow64\RTCOM
2018-04-28 10:52 . 2013-06-25 04:47 162224 ----a-w- c:\windows\system32\toseaeapo64.dll
2018-04-28 10:52 . 2013-06-25 04:47 871856 ----a-w- c:\windows\system32\tossaeapo64.dll
2018-04-28 10:52 . 2013-06-25 04:46 582056 ----a-w- c:\windows\system32\tosasfapo64.dll
2018-04-28 10:52 . 2012-01-10 02:20 65944 ----a-w- c:\windows\system32\tepeqapo64.dll
2018-04-28 10:52 . 2011-03-17 04:17 1361336 ----a-w- c:\windows\system32\tosade.dll
2018-04-28 10:52 . 2012-01-30 03:43 836544 ----a-w- c:\windows\system32\tadefxapo264.dll
2018-04-28 10:52 . 2011-03-07 09:11 148416 ----a-w- c:\windows\system32\tadefxapo.dll
2018-04-28 10:52 . 2014-03-04 21:11 724728 ----a-w- c:\windows\system32\sltech64.dll
2018-04-28 10:52 . 2014-03-04 21:11 246008 ----a-w- c:\windows\system32\slprp64.dll
2018-04-28 10:50 . 2014-04-10 04:20 1934424 ----a-w- c:\windows\system32\MaxxAudioRealtek264.dll
2018-04-28 10:49 . 2018-04-28 10:49 -------- d-----w- c:\program files (x86)\Common Files\ATI Technologies
2018-04-28 10:49 . 2018-04-28 10:49 -------- d-----w- c:\program files (x86)\AMD AVT
2018-04-28 10:49 . 2018-04-28 10:49 -------- d-----w- c:\programdata\AMD
2018-04-28 10:47 . 2018-04-28 10:47 -------- d-----w- c:\program files (x86)\Microsoft.NET
2018-04-28 10:47 . 2009-11-25 09:47 99176 ----a-w- c:\windows\SysWow64\PresentationHostProxy.dll
2018-04-28 10:47 . 2009-11-25 09:47 49472 ----a-w- c:\windows\SysWow64\netfxperf.dll
2018-04-28 10:47 . 2009-11-25 09:47 48960 ----a-w- c:\windows\system32\netfxperf.dll
2018-04-28 10:47 . 2009-11-25 09:47 297808 ----a-w- c:\windows\SysWow64\mscoree.dll
2018-04-28 10:47 . 2009-11-25 09:47 295264 ----a-w- c:\windows\SysWow64\PresentationHost.exe
2018-04-28 10:47 . 2009-11-25 09:47 1130824 ----a-w- c:\windows\SysWow64\dfshim.dll
2018-04-28 10:47 . 2009-11-25 09:47 109912 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2018-04-28 10:47 . 2009-11-25 09:47 444752 ----a-w- c:\windows\system32\mscoree.dll
2018-04-28 10:47 . 2009-11-25 09:47 320352 ----a-w- c:\windows\system32\PresentationHost.exe
2018-04-28 10:47 . 2009-11-25 09:47 1942856 ----a-w- c:\windows\system32\dfshim.dll
2018-04-28 10:46 . 2018-04-30 14:35 -------- d-sh--w- c:\windows\Installer
2018-04-28 10:46 . 2018-04-29 07:29 -------- d-----w- c:\programdata\Package Cache
2018-04-28 10:45 . 2018-04-28 10:49 -------- d-----w- c:\program files\AMD
2018-04-28 10:41 . 2018-04-29 15:52 -------- d-----w- c:\users\pc-yann
2018-04-28 10:40 . 2018-04-28 10:40 -------- d-sh--we c:\users\Default\Voisinage réseau
2018-04-28 10:40 . 2018-04-28 10:40 -------- d-sh--we c:\users\Default\Voisinage d'impression
2018-04-28 10:40 . 2018-04-28 10:40 -------- d-sh--we c:\users\Default\Modèles
2018-04-28 10:40 . 2018-04-28 10:40 -------- d-sh--we c:\users\Default\Mes documents
2018-04-28 10:40 . 2018-04-28 10:40 -------- d-sh--we c:\users\Default\Menu Démarrer
2018-04-28 10:40 . 2018-04-28 10:40 -------- d-sh--we c:\users\Default\AppData\Local\Historique
2018-04-28 10:40 . 2018-04-28 10:40 -------- d-sh--we c:\programdata\Modèles
2018-04-28 10:40 . 2018-04-28 10:40 -------- d-sh--we c:\programdata\Menu Démarrer
2018-04-28 10:40 . 2018-04-28 10:40 -------- d-sh--we c:\programdata\Favoris
2018-04-28 10:40 . 2018-04-28 10:40 -------- d-sh--we c:\programdata\Bureau
2018-04-28 10:40 . 2018-04-28 10:40 -------- d-sh--we c:\program files\Fichiers communs
2018-04-28 10:40 . 2018-04-28 10:40 -------- d-----w- C:\Recovery
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2018-03-29 17:45 . 2018-03-29 17:45 87880 ----a-w- c:\windows\system32\vcruntime140.dll
2018-03-29 17:45 . 2018-03-29 17:45 633144 ----a-w- c:\windows\system32\msvcp140.dll
2018-03-29 17:45 . 2018-03-29 17:45 395592 ----a-w- c:\windows\system32\vccorlib140.dll
2018-03-29 17:45 . 2018-03-29 17:45 333632 ----a-w- c:\windows\system32\concrt140.dll
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GoogleChromeAutoLaunch_0C4CBA6A82918EB7A2EDE8211F87F7E0"="c:\program files (x86)\Google\Chrome\Application\chrome.exe" [2018-04-26 1453912]
"EPLTarget\P0000000000000000"="c:\windows\system32\spool\DRIVERS\x64\3\E_YATIKEE.EXE" [2013-09-11 298560]
"CCleaner Monitoring"="c:\program files\CCleaner\CCleaner64.exe" [2018-04-12 18334528]
"FreeMi UPnP Media Server"="c:\program files\FreeMi UPnP Media Server\FreeMi UPnP Media Server.exe" [2016-05-24 279552]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" [2015-03-04 767176]
"FUFAXRCV"="c:\program files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe" [2014-02-20 642664]
"FUFAXSTM"="c:\program files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe" [2014-02-20 863848]
.
c:\users\pc-yann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Mozilla Thunderbird (2).lnk - c:\program files (x86)\Mozilla Thunderbird\thunderbird.exe [2018-4-28 601552]
RSS Bandit.lnk - c:\windows\Installer\{3CBE6C15-21D4-4F88-AB52-72446A6C6429}\_081A13158370D2FE32C81D.exe [2018-4-29 94334]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Avast Cleanup Premium.lnk - c:\program files (x86)\AVAST Software\Avast Cleanup\TuneupUI.exe /nogui [2018-4-29 1266448]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
@="Service"
.
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 aswbIDSAgent;aswbIDSAgent;c:\program files\AVAST Software\Avast\x64\aswidsagenta.exe;c:\program files\AVAST Software\Avast\x64\aswidsagenta.exe [x]
R3 aswHwid;aswHwid;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S0 amd_sata;amd_sata;c:\windows\system32\DRIVERS\amd_sata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_sata.sys [x]
S0 amd_xata;amd_xata;c:\windows\system32\DRIVERS\amd_xata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_xata.sys [x]
S0 amdkmpfd;AMD PCI Root Bus Lower Filter;c:\windows\system32\DRIVERS\amdkmpfd.sys;c:\windows\SYSNATIVE\DRIVERS\amdkmpfd.sys [x]
S0 aswbidsh;aswbidsh;c:\windows\system32\drivers\aswbidsha.sys;c:\windows\SYSNATIVE\drivers\aswbidsha.sys [x]
S0 aswblog;aswblog;c:\windows\system32\drivers\aswbloga.sys;c:\windows\SYSNATIVE\drivers\aswbloga.sys [x]
S0 aswbuniv;aswbuniv;c:\windows\system32\drivers\aswbuniva.sys;c:\windows\SYSNATIVE\drivers\aswbuniva.sys [x]
S0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys;c:\windows\SYSNATIVE\drivers\aswRvrt.sys [x]
S0 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys;c:\windows\SYSNATIVE\drivers\aswVmm.sys [x]
S1 aswArPot;aswArPot;c:\windows\system32\drivers\aswArPot.sys;c:\windows\SYSNATIVE\drivers\aswArPot.sys [x]
S1 aswbidsdriver;aswbidsdriver;c:\windows\system32\drivers\aswbidsdrivera.sys;c:\windows\SYSNATIVE\drivers\aswbidsdrivera.sys [x]
S1 aswHdsKe;aswHdsKe;c:\windows\system32\drivers\aswHdsKe.sys;c:\windows\SYSNATIVE\drivers\aswHdsKe.sys [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\AMD\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.3.0;AODDriver4.3.0;c:\program files (x86)\AMD\OverDrive\amd64\AODDriver2.sys;c:\program files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [x]
S2 AODDriver4.3;AODDriver4.3;c:\program files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 AODService;AODService;c:\program files (x86)\AMD\OverDrive\AODAssist.exe;c:\program files (x86)\AMD\OverDrive\AODAssist.exe [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 CleanupPSvc;Avast Cleanup Premium;c:\program files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe;c:\program files (x86)\AVAST Software\Avast Cleanup\TuneupSvc.exe [x]
S2 EpsonScanSvc;Epson Scanner Service;c:\windows\system32\EscSvc64.exe;c:\windows\SYSNATIVE\EscSvc64.exe [x]
S2 MBAMChameleon;MBAMChameleon;c:\windows\System32\Drivers\MbamChameleon.sys;c:\windows\SYSNATIVE\Drivers\MbamChameleon.sys [x]
S2 MBAMService;Malwarebytes Service;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe [x]
S3 amdhub30;AMD USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\amdhub30.sys;c:\windows\SYSNATIVE\DRIVERS\amdhub30.sys [x]
S3 amdxhc;AMD USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\amdxhc.sys;c:\windows\SYSNATIVE\DRIVERS\amdxhc.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\System32\Drivers\mbamswissarmy.sys;c:\windows\SYSNATIVE\Drivers\mbamswissarmy.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2018-04-28 11:06 1644888 ----a-w- c:\program files (x86)\Google\Chrome\Application\66.0.3359.139\Installer\chrmstp.exe
.
Contenu du dossier 'Tâches planifiées'
.
2018-05-01 c:\windows\Tasks\EPSON WF-3620 Series Invitation {A79E53AF-AE86-42E1-9CD2-AC42BD4B3702}.job
- c:\windows\system32\spool\DRIVERS\x64\3\E_YTSKEE.EXE [2018-04-28 16:20]
.
2018-05-01 c:\windows\Tasks\EPSON WF-3620 Series Update {A79E53AF-AE86-42E1-9CD2-AC42BD4B3702}.job
- c:\windows\system32\spool\DRIVERS\x64\3\E_YTSKEE.EXE [2018-04-28 16:20]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00asw]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2018-04-28 11:03 1771224 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2014-06-10 7632088]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvLaunch.exe" [2018-04-28 242392]
.
------- Examen supplémentaire -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com/
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 212.27.40.241 212.27.40.240
FF - ProfilePath - c:\users\pc-yann\AppData\Roaming\Mozilla\Firefox\Profiles\l2h039ee.default\
.
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Heure de fin: 2018-05-01 11:26:18
ComboFix-quarantined-files.txt 2018-05-01 09:26
.
Avant-CF: 9 018 851 328 octets libres
Après-CF: 8 919 224 320 octets libres
.
- - End Of File - - 2740A021F39C6F0AB370D314E9445E3E
A36C5E4F47E84449FF07ED3517B43A31

Publicité


Signaler le contenu de ce document

Publicité