ComboFix 17-12-11.01 - jean pierre 20/12/2017  18:54:32.1.2 - x64
Microsoft Windows 7 Édition Familiale Premium   6.1.7601.1.1252.33.1036.18.2815.1163 [GMT 1:00]
Lancé depuis: c:\users\jean pierre\Downloads\ComboFix.exe
AV: Malwarebytes *Disabled/Updated* {23007AD3-69FE-687C-2629-D584AFFAF72B}
SP: Malwarebytes *Disabled/Updated* {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Autres suppressions   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\jean pierre\AppData\Local\assembly\tmp
c:\users\jean pierre\ZHPCleaner.exe
c:\users\Public\AlexaNSISPlugin.5348.dll
c:\windows\security\logs\scecomp.log
c:\windows\tmp
c:\windows\tmp\dd_vcredistMSI22E0.txt
c:\windows\tmp\dd_vcredistMSI3655.txt
c:\windows\tmp\dd_vcredistUI22E0.txt
c:\windows\tmp\dd_vcredistUI3655.txt
c:\windows\tmp\qtsingleapp-koboex-7d5-1-lockfile
.
.
(((((((((((((((((((((((((((((   Fichiers créés du 2017-11-20 au 2017-12-20  ))))))))))))))))))))))))))))))))))))
.
.
2017-12-20 18:04 . 2017-12-20 18:04	--------	d-----w-	c:\users\Default\AppData\Local\temp
2017-12-20 17:26 . 2017-12-20 17:26	75888	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{A0BC36D0-F907-4633-8947-97C5565F57FA}\offreg.156.dll
2017-12-15 16:46 . 2016-08-02 22:36	11847048	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{A0BC36D0-F907-4633-8947-97C5565F57FA}\mpengine.dll
2017-12-14 17:10 . 2017-12-14 17:10	45704	----a-w-	c:\windows\system32\drivers\staport.sys
2017-12-13 19:23 . 2017-12-13 19:23	--------	d-----w-	c:\program files\Common Files\Avast Software
2017-12-10 08:12 . 2017-12-10 08:12	193968	----a-w-	c:\windows\system32\drivers\MbamChameleon.sys
2017-12-10 08:12 . 2017-12-20 17:14	253880	----a-w-	c:\windows\system32\drivers\mbamswissarmy.sys
2017-12-06 16:56 . 2017-12-19 10:18	--------	d-----w-	C:\FRST
2017-12-03 19:27 . 2017-12-03 19:27	--------	d-----w-	c:\windows\ERUNT
2017-12-01 17:21 . 2017-12-08 15:54	--------	d-----w-	C:\AdwCleaner
.
.
.
((((((((((((((((((((((((((((((((((   Compte-rendu de Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))
.
2017-12-13 19:00 . 2012-06-30 16:29	803328	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2017-12-13 19:00 . 2011-05-14 07:59	144896	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2017-12-10 08:12 . 2017-09-06 20:29	77432	----a-w-	c:\windows\system32\drivers\mbae64.sys
2017-10-18 07:31 . 2017-11-18 18:52	395976	----a-w-	c:\windows\system32\iedkcs32.dll
2017-10-18 02:34 . 2017-11-18 18:50	134376	----a-w-	c:\windows\system32\CompatTelRunner.exe
2017-10-18 02:30 . 2017-11-18 18:50	605184	----a-w-	c:\windows\system32\aeinv.dll
2017-10-18 02:06 . 2017-11-18 18:52	344064	----a-w-	c:\windows\system32\drivers\usbhub.sys
2017-10-18 02:06 . 2017-11-18 18:52	99840	----a-w-	c:\windows\system32\drivers\usbccgp.sys
2017-10-18 02:06 . 2017-11-18 18:51	327168	----a-w-	c:\windows\system32\drivers\usbport.sys
2017-10-18 02:06 . 2017-11-18 18:51	56320	----a-w-	c:\windows\system32\drivers\usbehci.sys
2017-10-18 02:06 . 2017-11-18 18:51	25600	----a-w-	c:\windows\system32\drivers\usbohci.sys
2017-10-18 02:06 . 2017-11-18 18:51	30720	----a-w-	c:\windows\system32\drivers\usbuhci.sys
2017-10-18 02:06 . 2017-11-18 18:51	7808	----a-w-	c:\windows\system32\drivers\usbd.sys
2017-10-16 23:07 . 2017-11-18 18:52	1680616	----a-w-	c:\windows\system32\drivers\ntfs.sys
2017-10-16 22:34 . 2017-11-18 18:52	3222528	----a-w-	c:\windows\system32\win32k.sys
2017-10-16 21:55 . 2017-11-18 18:52	339968	----a-w-	c:\windows\SysWow64\msexcl40.dll
2017-10-15 22:04 . 2017-11-18 18:50	407392	----a-w-	c:\windows\system32\centel.dll
2017-10-14 08:38 . 2017-11-18 18:52	25731584	----a-w-	c:\windows\system32\mshtml.dll
2017-10-14 08:23 . 2017-11-18 18:51	2724864	----a-w-	c:\windows\system32\mshtml.tlb
2017-10-14 08:23 . 2017-11-18 18:51	4096	----a-w-	c:\windows\system32\ieetwcollectorres.dll
2017-10-14 08:13 . 2017-11-18 18:52	2903552	----a-w-	c:\windows\system32\iertutil.dll
2017-10-14 08:12 . 2017-11-18 18:51	66560	----a-w-	c:\windows\system32\iesetup.dll
2017-10-14 08:11 . 2017-11-18 18:51	48640	----a-w-	c:\windows\system32\ieetwproxystub.dll
2017-10-14 08:11 . 2017-11-18 18:52	576512	----a-w-	c:\windows\system32\vbscript.dll
2017-10-14 08:11 . 2017-11-18 18:51	417792	----a-w-	c:\windows\system32\html.iec
2017-10-14 08:11 . 2017-11-18 18:51	88064	----a-w-	c:\windows\system32\MshtmlDac.dll
2017-10-14 08:09 . 2017-11-18 18:52	5979648	----a-w-	c:\windows\system32\jscript9.dll
2017-10-14 08:05 . 2017-11-18 18:51	54784	----a-w-	c:\windows\system32\jsproxy.dll
2017-10-14 08:04 . 2017-11-18 18:51	34304	----a-w-	c:\windows\system32\iernonce.dll
2017-10-14 08:02 . 2017-11-18 18:51	615936	----a-w-	c:\windows\system32\ieui.dll
2017-10-14 08:01 . 2017-11-18 18:51	116224	----a-w-	c:\windows\system32\ieetwcollector.exe
2017-10-14 08:01 . 2017-11-18 18:51	144384	----a-w-	c:\windows\system32\ieUnatt.exe
2017-10-14 08:01 . 2017-11-18 18:52	816640	----a-w-	c:\windows\system32\jscript.dll
2017-10-14 08:00 . 2017-11-18 18:51	814080	----a-w-	c:\windows\system32\jscript9diag.dll
2017-10-14 07:55 . 2017-11-18 18:52	968704	----a-w-	c:\windows\system32\MsSpellCheckingFacility.exe
2017-10-14 07:53 . 2017-11-18 18:51	489984	----a-w-	c:\windows\system32\dxtmsft.dll
2017-10-14 07:47 . 2017-11-18 18:51	77824	----a-w-	c:\windows\system32\JavaScriptCollectionAgent.dll
2017-10-14 07:47 . 2017-11-18 18:51	87552	----a-w-	c:\windows\system32\tdc.ocx
2017-10-14 07:46 . 2017-11-18 18:51	107520	----a-w-	c:\windows\system32\inseng.dll
2017-10-14 07:43 . 2017-11-18 18:51	199680	----a-w-	c:\windows\system32\msrating.dll
2017-10-14 07:43 . 2017-11-18 18:51	92160	----a-w-	c:\windows\system32\mshtmled.dll
2017-10-14 07:41 . 2017-11-18 18:51	315392	----a-w-	c:\windows\system32\dxtrans.dll
2017-10-14 07:40 . 2017-11-18 18:51	152064	----a-w-	c:\windows\system32\occache.dll
2017-10-14 07:31 . 2017-11-18 18:52	262144	----a-w-	c:\windows\system32\webcheck.dll
2017-10-14 07:30 . 2017-11-18 18:52	15266816	----a-w-	c:\windows\system32\ieframe.dll
2017-10-14 07:30 . 2017-11-18 18:52	726528	----a-w-	c:\windows\system32\ie4uinit.exe
2017-10-14 07:29 . 2017-11-18 18:52	807936	----a-w-	c:\windows\system32\msfeeds.dll
2017-10-14 07:28 . 2017-11-18 18:52	1359360	----a-w-	c:\windows\system32\mshtmlmedia.dll
2017-10-14 07:27 . 2017-11-18 18:52	2134528	----a-w-	c:\windows\system32\inetcpl.cpl
2017-10-14 07:21 . 2017-11-18 18:52	3241472	----a-w-	c:\windows\system32\wininet.dll
2017-10-14 07:09 . 2017-11-18 18:52	1544704	----a-w-	c:\windows\system32\urlmon.dll
2017-10-14 07:03 . 2017-11-18 18:51	2724864	----a-w-	c:\windows\SysWow64\mshtml.tlb
2017-10-14 06:58 . 2017-11-18 18:51	800768	----a-w-	c:\windows\system32\ieapfltr.dll
2017-10-14 06:53 . 2017-11-18 18:52	499200	----a-w-	c:\windows\SysWow64\vbscript.dll
2017-10-14 06:53 . 2017-11-18 18:51	62464	----a-w-	c:\windows\SysWow64\iesetup.dll
2017-10-14 06:52 . 2017-11-18 18:51	47616	----a-w-	c:\windows\SysWow64\ieetwproxystub.dll
2017-10-14 06:52 . 2017-11-18 18:51	341504	----a-w-	c:\windows\SysWow64\html.iec
2017-10-14 06:51 . 2017-11-18 18:51	64000	----a-w-	c:\windows\SysWow64\MshtmlDac.dll
2017-10-14 06:45 . 2017-11-18 18:51	115712	----a-w-	c:\windows\SysWow64\ieUnatt.exe
2017-10-14 06:45 . 2017-11-18 18:51	620032	----a-w-	c:\windows\SysWow64\jscript9diag.dll
2017-10-14 06:35 . 2017-11-18 18:51	60416	----a-w-	c:\windows\SysWow64\JavaScriptCollectionAgent.dll
2017-10-14 06:35 . 2017-11-18 18:51	73216	----a-w-	c:\windows\SysWow64\tdc.ocx
2017-10-14 06:33 . 2017-11-18 18:52	4542464	----a-w-	c:\windows\SysWow64\jscript9.dll
2017-10-14 06:23 . 2017-11-18 18:52	2058752	----a-w-	c:\windows\SysWow64\inetcpl.cpl
2017-10-14 06:23 . 2017-11-18 18:52	1155072	----a-w-	c:\windows\SysWow64\mshtmlmedia.dll
2017-10-14 06:10 . 2017-11-18 18:52	2767872	----a-w-	c:\windows\SysWow64\wininet.dll
2017-10-12 06:31 . 2017-10-12 06:31	126925120	-c--a-w-	c:\windows\system32\MRT-KB890830.exe
2017-10-12 06:31 . 2010-05-01 15:42	126925120	-c--a-w-	c:\windows\system32\MRT.exe
2017-10-12 00:58 . 2017-11-18 18:52	382696	----a-w-	c:\windows\system32\atmfd.dll
2017-10-12 00:55 . 2017-11-18 18:51	12574720	----a-w-	c:\windows\system32\wmploc.DLL
2017-10-12 00:55 . 2017-11-18 18:52	14635008	----a-w-	c:\windows\system32\wmp.dll
2017-10-12 00:55 . 2017-11-18 18:52	2319872	----a-w-	c:\windows\system32\tquery.dll
2017-10-12 00:55 . 2017-11-18 18:52	151552	----a-w-	c:\windows\system32\t2embed.dll
2017-10-12 00:55 . 2017-11-18 18:51	5120	----a-w-	c:\windows\system32\msdxm.ocx
2017-10-12 00:55 . 2017-11-18 18:51	5120	----a-w-	c:\windows\system32\dxmasf.dll
2017-10-12 00:55 . 2017-11-18 18:52	2058240	----a-w-	c:\windows\system32\Query.dll
2017-10-12 00:55 . 2017-11-18 18:51	9728	----a-w-	c:\windows\system32\spwmp.dll
2017-10-12 00:55 . 2017-11-18 18:51	2222080	----a-w-	c:\windows\system32\mssrch.dll
2017-10-12 00:55 . 2017-11-18 18:51	99840	----a-w-	c:\windows\system32\mssprxy.dll
2017-10-12 00:55 . 2017-11-18 18:51	778240	----a-w-	c:\windows\system32\mssvp.dll
2017-10-12 00:55 . 2017-11-18 18:51	491520	----a-w-	c:\windows\system32\mssph.dll
2017-10-12 00:55 . 2017-11-18 18:51	288256	----a-w-	c:\windows\system32\mssphtb.dll
2017-10-12 00:55 . 2017-11-18 18:51	115200	----a-w-	c:\windows\system32\mssitlb.dll
2017-10-12 00:55 . 2017-11-18 18:51	75264	----a-w-	c:\windows\system32\msscntrs.dll
2017-10-12 00:55 . 2017-11-18 18:51	14336	----a-w-	c:\windows\system32\msshooks.dll
2017-10-12 00:55 . 2017-11-18 18:51	41472	----a-w-	c:\windows\system32\lpk.dll
2017-10-12 00:55 . 2017-11-18 18:51	100864	----a-w-	c:\windows\system32\fontsub.dll
2017-10-12 00:55 . 2017-11-18 18:51	14336	----a-w-	c:\windows\system32\dciman32.dll
2017-10-12 00:55 . 2017-11-18 18:51	46080	----a-w-	c:\windows\system32\atmlib.dll
2017-10-12 00:40 . 2017-11-18 18:52	308456	----a-w-	c:\windows\SysWow64\atmfd.dll
2017-10-12 00:39 . 2017-11-18 18:51	591872	----a-w-	c:\windows\system32\SearchIndexer.exe
2017-10-12 00:38 . 2017-11-18 18:51	249856	----a-w-	c:\windows\system32\SearchProtocolHost.exe
2017-10-12 00:38 . 2017-11-18 18:51	113664	----a-w-	c:\windows\system32\SearchFilterHost.exe
2017-10-12 00:37 . 2017-11-18 18:51	25600	----a-w-	c:\windows\SysWow64\lpk.dll
2017-10-12 00:37 . 2017-11-18 18:51	12574208	----a-w-	c:\windows\SysWow64\wmploc.DLL
2017-10-12 00:37 . 2017-11-18 18:52	1549824	----a-w-	c:\windows\SysWow64\tquery.dll
2017-10-12 00:37 . 2017-11-18 18:52	111104	----a-w-	c:\windows\SysWow64\t2embed.dll
2017-10-12 00:37 . 2017-11-18 18:52	1363968	----a-w-	c:\windows\SysWow64\Query.dll
2017-10-12 00:37 . 2017-11-18 18:51	666624	----a-w-	c:\windows\SysWow64\mssvp.dll
2017-10-12 00:37 . 2017-11-18 18:51	1400320	----a-w-	c:\windows\SysWow64\mssrch.dll
.
.
(((((((((((((((((((((((((((((((((   Points de chargement Reg   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"HideFastUserSwitching"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
@="Service"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 ezSharedSvc;Easybits Shared Services for Windows;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R2 HOSTS Anti-PUPs;HOSTS Anti-PUPs;c:\program files (x86)\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware.exe;c:\program files (x86)\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 MBAMChameleon;MBAMChameleon;c:\windows\System32\Drivers\MbamChameleon.sys;c:\windows\SYSNATIVE\Drivers\MbamChameleon.sys [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 MBAMService;Malwarebytes Service;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe [x]
S2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe;c:\program files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [x]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\System32\Drivers\mbamswissarmy.sys;c:\windows\SYSNATIVE\Drivers\mbamswissarmy.sys [x]
.
.
--- Autres Services/Pilotes en mémoire ---
.
*NewlyCreated* - MBAMFARFLT
*NewlyCreated* - MBAMPROTECTION
*Deregistered* - ESProtectionDriver
*Deregistered* - MBAMFarflt
*Deregistered* - MBAMProtection
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation	REG_MULTI_SZ   	SSDPSRV upnphost SCardSvr QWAVE wcncsvc
.
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost  - NetSvcs
ezSharedSvc
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2017-12-19 10:27	1538904	----a-w-	c:\program files (x86)\Google\Chrome\Application\63.0.3239.108\Installer\chrmstp.exe
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{A6EADE66-0000-0000-484E-7E8A45000000}]
2017-07-31 22:31	324080	----a-w-	c:\program files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll
.
Contenu du dossier 'Tâches planifiées'
.
.
--------- X64 Entries -----------
.
.
------- Examen supplémentaire -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com/
uSearchAssistant = hxxp://www.google.com
IE: E&xporter vers Microsoft Excel - c:\progra~2\MICROS~4\Office12\EXCEL.EXE/3000
Trusted Zone: localhost
TCP: DhcpNameServer = 212.27.40.241 212.27.40.240
.
- - - - ORPHELINS SUPPRIMES - - - -
.
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
.
.
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_28_0_0_126_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_28_0_0_126_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_28_0_0_126_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_28_0_0_126_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_28_0_0_126.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.28"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_28_0_0_126.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_28_0_0_126.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_28_0_0_126.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Heure de fin: 2017-12-20  19:14:08
ComboFix-quarantined-files.txt  2017-12-20 18:14
.
Avant-CF: 405 080 895 488 octets libres
Après-CF: 404 680 790 016 octets libres
.
- - End Of File - - 171E46E37CD05B20228FAF2757AA06A3
FC115D97E695635930CC570F01F15CE4