Infection gomeo

Bonjour,




ComboFix 11-01-24.02 - D.F Dupé 25/01/2011 22:55:08.1.2 - x64
Microsoft Windows 7 Édition Familiale Premium 6.1.7600.0.1252.33.1036.18.4095.2558 [GMT 1:00]
Lancé depuis: c:\users\D.F Dupé\Downloads\ComboFix.exe
AV: BitDefender Antivirus *Disabled/Updated* {50909708-FF80-02AF-F814-B28405891E92}
FW: BitDefender Pare-feu *Enabled* {68AB162D-B5EF-03F7-D34B-1BB1FB5A59E9}
SP: BitDefender Antispyware *Disabled/Updated* {EBF176EC-D9BA-0D21-C2A4-89F67E0E542F}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Un antivirus résident est actif

.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\install.exe
c:\users\D.F Dupé\AppData\Roaming\Mozilla\Firefox\Profiles\aimp9tr7.default\extensions\{8269e223-7bac-4073-ba0e-d564594eb147}
c:\users\D.F Dupé\AppData\Roaming\Mozilla\Firefox\Profiles\aimp9tr7.default\extensions\{8269e223-7bac-4073-ba0e-d564594eb147}\chrome.manifest
c:\users\D.F Dupé\AppData\Roaming\Mozilla\Firefox\Profiles\aimp9tr7.default\extensions\{8269e223-7bac-4073-ba0e-d564594eb147}\chrome\xulcache.jar
c:\users\D.F Dupé\AppData\Roaming\Mozilla\Firefox\Profiles\aimp9tr7.default\extensions\{8269e223-7bac-4073-ba0e-d564594eb147}\defaults\preferences\xulcache.js
c:\users\D.F Dupé\AppData\Roaming\Mozilla\Firefox\Profiles\aimp9tr7.default\extensions\{8269e223-7bac-4073-ba0e-d564594eb147}\install.rdf

.
((((((((((((((((((((((((((((( Fichiers créés du 2010-12-25 au 2011-01-25 ))))))))))))))))))))))))))))))))))))
.

2011-01-25 22:08 . 2011-01-25 22:08 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-01-25 21:51 . 2011-01-25 21:52 -------- d-----r- C:\32788R22FWJFW
2011-01-25 21:05 . 2011-01-25 21:05 -------- d-----w- c:\programdata\Malwarebytes
2011-01-25 21:05 . 2010-11-29 16:42 38224 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
2011-01-25 21:05 . 2011-01-25 21:05 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2011-01-25 21:05 . 2010-11-29 16:42 24152 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-01-25 21:00 . 2011-01-25 21:00 -------- d-----w- c:\program files (x86)\Ad-Remover
2011-01-25 17:06 . 2011-01-13 10:20 7844688 ------w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{791F8C90-5F59-490D-87A3-C1CDCA822C4A}\mpengine.dll
2011-01-23 21:07 . 2011-01-23 21:07 -------- d-----w- c:\users\Public\CyberLink
2011-01-23 21:04 . 2011-01-23 21:04 -------- d-----w- c:\windows\fr
2011-01-23 21:02 . 2011-01-23 21:02 -------- dc----w- c:\windows\system32\DRVSTORE
2011-01-23 21:02 . 2010-09-22 23:36 48488 ----a-w- c:\windows\system32\drivers\fssfltr.sys
2011-01-23 21:02 . 2011-01-23 21:02 -------- d-----w- c:\program files\Windows Live
2011-01-23 21:01 . 2009-09-04 16:44 69464 ----a-w- c:\windows\SysWow64\XAPOFX1_3.dll
2011-01-23 21:01 . 2009-09-04 16:44 515416 ----a-w- c:\windows\SysWow64\XAudio2_5.dll
2011-01-23 21:01 . 2009-09-04 16:29 453456 ----a-w- c:\windows\SysWow64\d3dx10_42.dll
2011-01-23 21:01 . 2009-09-04 16:29 523088 ----a-w- c:\windows\system32\d3dx10_42.dll
2011-01-23 19:23 . 2011-01-23 19:23 15712 ----a-w- c:\program files (x86)\Common Files\Windows Live\.cache\a9761a1cbbb3322\MeshBetaRemover.exe
2011-01-23 19:23 . 2011-01-23 19:23 525656 ----a-w- c:\program files (x86)\Common Files\Windows Live\.cache\f8b17acf1cbbb321a\DXSETUP.exe
2011-01-23 19:23 . 2011-01-23 19:23 1691480 ----a-w- c:\program files (x86)\Common Files\Windows Live\.cache\f8b17acf1cbbb321a\dsetup32.dll
2011-01-23 19:23 . 2011-01-23 19:23 94040 ----a-w- c:\program files (x86)\Common Files\Windows Live\.cache\f8b17acf1cbbb321a\DSETUP.dll
2011-01-23 19:23 . 2011-01-23 19:23 94040 ----a-w- c:\program files (x86)\Common Files\Windows Live\.cache\f74085851cbbb3219\DSETUP.dll
2011-01-23 19:23 . 2011-01-23 19:23 525656 ----a-w- c:\program files (x86)\Common Files\Windows Live\.cache\f74085851cbbb3219\DXSETUP.exe
2011-01-23 19:23 . 2011-01-23 19:23 1691480 ----a-w- c:\program files (x86)\Common Files\Windows Live\.cache\f74085851cbbb3219\dsetup32.dll
2011-01-23 19:21 . 2011-01-23 19:21 -------- d-----w- c:\program files (x86)\Common Files\Java
2011-01-20 21:30 . 2011-01-20 21:30 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2011-01-19 15:48 . 2011-01-19 15:48 -------- d-----r- c:\program files (x86)\Skype
2011-01-19 15:48 . 2011-01-19 15:48 -------- d-----w- c:\programdata\Skype
2011-01-19 14:35 . 2011-01-19 14:35 -------- d-----w- c:\program files (x86)\JRE
2011-01-19 14:35 . 2011-01-19 14:35 -------- d-----w- c:\program files (x86)\OpenOffice.org 3
2011-01-19 14:33 . 2010-11-12 17:53 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll
2011-01-19 14:33 . 2011-01-23 19:19 -------- d-----w- c:\program files (x86)\Java
2011-01-19 14:03 . 2011-01-19 14:03 -------- d-----w- c:\programdata\Recovery
2011-01-19 13:58 . 2011-01-19 13:58 -------- d-----w- c:\program files (x86)\MSECache
2011-01-16 20:12 . 2009-07-14 01:40 38912 ----a-w- c:\windows\system32\Spool\prtprocs\x64\EP0NPP01.DLL
2011-01-15 14:13 . 2011-01-15 14:13 -------- d-----w- c:\programdata\bdch
2011-01-15 14:02 . 2009-07-14 01:14 1397248 ----a-w- c:\windows\SysWow64\win_utilman.exe
2011-01-14 19:09 . 2011-01-14 19:09 -------- d-----w- c:\programdata\{23D58E70-3B83-4B83-A227-68770F84F5EC}
2011-01-12 18:51 . 2011-01-12 18:51 -------- d-----w- c:\program files (x86)\Microsoft.NET
2011-01-12 18:50 . 2010-03-04 04:32 243712 ----a-w- c:\windows\system32\drivers\ks.sys
2011-01-12 18:49 . 2009-10-10 03:17 14336 ----a-w- c:\windows\system32\drivers\sffp_sd.sys
2011-01-12 18:47 . 2010-10-19 08:47 7680 ----a-w- c:\program files\Internet Explorer\iecompat.dll
2011-01-12 18:47 . 2010-10-19 08:10 7680 ----a-w- c:\program files (x86)\Internet Explorer\iecompat.dll
2011-01-12 18:47 . 2010-08-04 07:07 961024 ----a-w- c:\windows\system32\CPFilters.dll
2011-01-12 18:47 . 2010-08-04 06:18 641536 ----a-w- c:\windows\SysWow64\CPFilters.dll
2011-01-12 18:47 . 2010-08-04 07:07 552960 ----a-w- c:\windows\system32\msdri.dll
2011-01-12 18:47 . 2010-08-04 07:05 288256 ----a-w- c:\windows\system32\MSNP.ax
2011-01-12 18:47 . 2010-08-04 07:05 258560 ----a-w- c:\windows\system32\mpg2splt.ax
2011-01-12 18:47 . 2010-08-04 06:15 204288 ----a-w- c:\windows\SysWow64\MSNP.ax
2011-01-12 18:47 . 2010-08-04 06:15 199680 ----a-w- c:\windows\SysWow64\mpg2splt.ax
2011-01-12 18:47 . 2009-12-13 09:46 613888 ----a-w- c:\windows\system32\psisdecd.dll
2011-01-12 18:47 . 2009-12-13 09:30 465408 ----a-w- c:\windows\SysWow64\psisdecd.dll
2011-01-12 18:46 . 2010-07-13 05:37 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2011-01-12 18:46 . 2010-04-07 07:37 861184 ----a-w- c:\windows\system32\oleaut32.dll
2011-01-12 18:46 . 2010-04-07 07:10 571904 ----a-w- c:\windows\SysWow64\oleaut32.dll
2011-01-12 18:46 . 2010-03-24 06:59 1736608 ----a-w- c:\windows\system32\ntdll.dll
2011-01-12 18:46 . 2010-03-24 06:37 1289528 ----a-w- c:\windows\SysWow64\ntdll.dll
2011-01-12 18:46 . 2009-09-26 06:20 223448 ----a-w- c:\windows\system32\drivers\fvevol.sys
2011-01-12 18:31 . 2011-01-12 18:31 -------- d-----w- c:\windows\SysWow64\Wat
2011-01-12 18:31 . 2011-01-12 18:31 -------- d-----w- c:\windows\system32\Wat
2011-01-12 17:39 . 2009-11-25 11:47 99176 ----a-w- c:\windows\SysWow64\PresentationHostProxy.dll
2011-01-12 17:39 . 2009-11-25 11:47 49472 ----a-w- c:\windows\SysWow64\netfxperf.dll
2011-01-12 17:39 . 2009-11-25 11:47 48960 ----a-w- c:\windows\system32\netfxperf.dll
2011-01-12 17:39 . 2009-11-25 11:47 297808 ----a-w- c:\windows\SysWow64\mscoree.dll
2011-01-12 17:39 . 2009-11-25 11:47 295264 ----a-w- c:\windows\SysWow64\PresentationHost.exe
2011-01-12 17:39 . 2009-11-25 11:47 1130824 ----a-w- c:\windows\SysWow64\dfshim.dll
2011-01-12 17:39 . 2009-11-25 11:47 109912 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2011-01-12 17:39 . 2009-11-25 11:47 444752 ----a-w- c:\windows\system32\mscoree.dll
2011-01-12 17:39 . 2009-11-25 11:47 320352 ----a-w- c:\windows\system32\PresentationHost.exe
2011-01-12 17:39 . 2009-11-25 11:47 1942856 ----a-w- c:\windows\system32\dfshim.dll
2011-01-12 17:37 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
2011-01-12 17:36 . 2011-01-12 17:36 -------- d-----w- c:\program files (x86)\MSXML 4.0
2011-01-12 17:34 . 2010-10-16 05:17 720896 ----a-w- c:\windows\system32\odbc32.dll
2011-01-12 17:34 . 2010-10-16 05:16 495616 ----a-w- c:\program files\Common Files\System\ado\msadox.dll
2011-01-12 17:34 . 2010-10-16 05:16 466944 ----a-w- c:\program files\Common Files\System\ado\msadomd.dll
2011-01-12 17:34 . 2010-10-16 05:16 1425408 ----a-w- c:\program files\Common Files\System\ado\msado15.dll
2011-01-12 17:34 . 2010-10-16 05:16 258048 ----a-w- c:\program files\Common Files\System\msadc\msadco.dll
2011-01-12 17:34 . 2010-10-16 04:34 573440 ----a-w- c:\windows\SysWow64\odbc32.dll
2011-01-12 17:34 . 2010-10-16 04:33 372736 ----a-w- c:\program files (x86)\Common Files\System\ado\msadox.dll
2011-01-12 17:34 . 2010-10-16 04:33 352256 ----a-w- c:\program files (x86)\Common Files\System\ado\msadomd.dll
2011-01-12 17:34 . 2010-10-16 04:33 987136 ----a-w- c:\program files (x86)\Common Files\System\ado\msado15.dll
2011-01-12 17:34 . 2010-10-16 04:33 208896 ----a-w- c:\program files (x86)\Common Files\System\msadc\msadco.dll
2011-01-12 17:33 . 2010-10-27 05:06 2048 ----a-w- c:\windows\system32\tzres.dll
2011-01-12 17:33 . 2010-10-27 04:32 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2011-01-12 17:33 . 2010-10-20 05:20 46080 ----a-w- c:\windows\system32\atmlib.dll
2011-01-12 17:33 . 2010-10-20 04:54 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2011-01-12 17:33 . 2010-10-20 03:05 367104 ----a-w- c:\windows\system32\atmfd.dll
2011-01-12 17:33 . 2010-10-20 02:58 294400 ----a-w- c:\windows\SysWow64\atmfd.dll
2011-01-12 17:31 . 2010-06-29 05:35 4582912 ----a-w- c:\program files\Windows NT\Accessories\wordpad.exe
2011-01-12 17:31 . 2010-06-29 05:39 2085376 ----a-w- c:\windows\system32\ole32.dll
2011-01-12 17:31 . 2010-06-29 05:02 1413632 ----a-w- c:\windows\SysWow64\ole32.dll
2011-01-12 17:31 . 2010-06-29 04:57 4247040 ----a-w- c:\program files (x86)\Windows NT\Accessories\wordpad.exe
2011-01-12 17:31 . 2010-08-31 04:32 954752 ----a-w- c:\windows\SysWow64\mfc40.dll
2011-01-12 17:31 . 2010-08-31 04:32 954288 ----a-w- c:\windows\SysWow64\mfc40u.dll
2011-01-12 17:31 . 2010-08-21 06:31 633856 ----a-w- c:\windows\system32\comctl32.dll
2011-01-12 17:31 . 2010-08-21 05:33 530432 ----a-w- c:\windows\SysWow64\comctl32.dll
2011-01-12 17:31 . 2010-08-21 06:38 1024512 ----a-w- c:\windows\system32\wmpmde.dll
2011-01-12 17:31 . 2010-08-21 05:36 738816 ----a-w- c:\windows\SysWow64\wmpmde.dll
2011-01-12 17:31 . 2010-08-21 06:36 340992 ----a-w- c:\windows\system32\schannel.dll
2011-01-12 17:31 . 2010-08-21 05:36 224256 ----a-w- c:\windows\SysWow64\schannel.dll
2011-01-12 17:29 . 2010-09-01 05:14 167424 ----a-w- c:\program files\Windows Media Player\wmplayer.exe
2011-01-12 17:29 . 2010-09-01 04:26 164864 ----a-w- c:\program files (x86)\Windows Media Player\wmplayer.exe
2011-01-12 17:29 . 2010-09-01 05:12 12625920 ----a-w- c:\windows\system32\wmploc.DLL
2011-01-12 17:29 . 2010-09-01 04:23 12625408 ----a-w- c:\windows\SysWow64\wmploc.DLL
2011-01-12 17:28 . 2010-08-27 03:38 463360 ----a-w- c:\windows\system32\drivers\srv.sys
2011-01-12 17:28 . 2010-08-27 06:14 236032 ----a-w- c:\windows\system32\srvsvc.dll
2011-01-12 17:28 . 2010-08-27 05:46 9728 ----a-w- c:\windows\SysWow64\sscore.dll
2011-01-12 17:28 . 2010-08-27 03:37 402944 ----a-w- c:\windows\system32\drivers\srv2.sys
2011-01-12 17:28 . 2010-08-27 03:37 161792 ----a-w- c:\windows\system32\drivers\srvnet.sys
2011-01-12 17:28 . 2010-05-05 07:37 483840 ----a-w- c:\windows\system32\StructuredQuery.dll
2011-01-12 17:28 . 2010-05-05 06:46 363520 ----a-w- c:\windows\SysWow64\StructuredQuery.dll
2011-01-12 17:28 . 2010-08-21 06:29 558592 ----a-w- c:\windows\system32\spoolsv.exe
2011-01-12 17:28 . 2010-06-19 07:05 5507968 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-01-12 17:28 . 2010-06-19 06:33 3955080 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2011-01-12 17:28 . 2010-06-19 06:33 3899784 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2011-01-12 17:27 . 2010-06-14 06:37 1896832 ----a-w- c:\windows\system32\drivers\tcpip.sys
2011-01-12 17:27 . 2010-06-08 06:02 1233920 ----a-w- c:\windows\SysWow64\msxml3.dll
2011-01-12 17:27 . 2010-06-08 05:36 1877504 ----a-w- c:\windows\system32\msxml3.dll
2011-01-12 17:27 . 2010-06-19 06:53 52224 ----a-w- c:\windows\system32\rtutils.dll
2011-01-12 17:27 . 2010-06-19 06:23 37376 ----a-w- c:\windows\SysWow64\rtutils.dll
2011-01-12 17:27 . 2010-07-29 06:30 82944 ----a-w- c:\windows\SysWow64\iccvid.dll
2011-01-12 17:25 . 2010-03-05 07:52 84992 ----a-w- c:\windows\system32\asycfilt.dll
2011-01-12 17:25 . 2010-03-05 07:42 67584 ----a-w- c:\windows\SysWow64\asycfilt.dll
2011-01-12 17:25 . 2010-03-04 07:57 2080256 ----a-w- c:\program files\Windows Mail\msoe.dll
2011-01-12 17:25 . 2010-03-04 07:57 976896 ----a-w- c:\windows\system32\inetcomm.dll

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-07-08 08:37 . 2010-07-08 08:37 101544 ----a-w- c:\program files\Common Files\LinkInstaller.exe
.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"="c:\program files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe" [2010-02-10 1712184]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2009-10-09 25623336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"HP Software Update"="c:\program files (x86)\HP\HP Software Update\HPWuSchd2.exe" [2008-12-08 54576]
"Easybits Recovery"="c:\program files (x86)\EasyBits For Kids\ezRecover.exe" [2010-01-25 61112]
"MSN Toolbar"="c:\program files (x86)\MSN Toolbar\Platform\4.0.0369.0\mswinext.exe" [2009-11-30 240472]
"Microsoft Default Manager"="c:\program files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" [2009-07-17 288080]
"BitDefender Antiphishing Helper"="c:\program files\BitDefender\BitDefender 2011\Antispam32\ieshow.exe" [2010-12-06 71216]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2010-11-10 35736]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-11-10 932288]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"HideFastUserSwitching"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"EnableShellExecuteHooks"= 1 (0x1)

[hkey_local_machine\software\Wow6432Node\microsoft\windows\currentversion\explorer\ShellExecuteHooks]

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 PCDSRVC{F36B3A4C-F95654BD-06000000}_0;PCDSRVC{F36B3A4C-F95654BD-06000000}_0 - PCDR Kernel Mode Service Helper Driver;c:\program files\pc-doctor for windows\pcdsrvc_x64.pkms [2010-01-19 23536]
R3 Update Server;BitDefender Update Server v2;c:\program files\Common Files\BitDefender\BitDefender Arrakis Server\bin\arrakis3.exe [2010-10-11 467248]
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2011-01-12 1255736]
R4 avc3;avc3;c:\windows\system32\DRIVERS\avc3.sys [2010-06-28 692816]
R4 avckf;avckf;c:\windows\system32\DRIVERS\avckf.sys [2010-06-28 1040976]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S1 Bdfndisf;BitDefender Firewall NDIS 6 Filter Driver;c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [2010-08-20 88144]
S1 bdfwfpf;bdfwfpf;c:\program files\Common Files\BitDefender\BitDefender Firewall\bdfwfpf.sys [2010-08-20 99408]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 ezSharedSvc;Easybits Services for Windows;c:\windows\System32\ezSharedSvcHost.exe [x]
S2 Updatesrv;BitDefender Desktop Update Service;c:\program files\BitDefender\BitDefender 2011\updatesrv.exe [2010-12-06 51688]
S3 BDFM;BDFM;c:\windows\system32\DRIVERS\bdfm.sys [2010-05-13 162896]
S3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys [2009-12-19 852256]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2010-01-28 86120]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2010-03-04 346144]

.
Contenu du dossier 'Tâches planifiées'

2011-01-15 c:\windows\Tasks\HPCeeScheduleForD.F Dupé.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-01-05 10:53]

2011-01-12 c:\windows\Tasks\PCDRScheduledMaintenance.job
- c:\program files\PC-Doctor for Windows\pcdrcui.exe [2010-02-01 23:02]
.

--------- x86-64 -----------


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"hpsysdrv"="c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe" [2008-11-20 62768]
"SmartMenu"="c:\program files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" [2010-01-18 568888]
"BitDefender Antiphishing Helper"="c:\program files\BitDefender\BitDefender 2011\ieshow.exe" [2010-12-06 76360]
"BDAgent"="c:\program files\BitDefender\BitDefender 2011\bdagent.exe" [2010-12-07 1988552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Examen supplémentaire -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = localhost
FF - ProfilePath - c:\users\D.F Dupé\AppData\Roaming\Mozilla\Firefox\Profiles\aimp9tr7.default\
FF - prefs.js: browser.startup.homepage - hxxp://fr.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:fr:official
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: BitDefender QuickScan: {e001c731-5e37-4538-a5cb-8168736a2360} - %profile%\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}
FF - Ext: FoxLingo: {ef62e1ce-d2a4-4cdd-b7ec-92b120366b66} - %profile%\extensions\{ef62e1ce-d2a4-4cdd-b7ec-92b120366b66}
FF - Ext: BitDefender Antiphishing Toolbar: FFToolbar@bitdefender.com - c:\program files\BitDefender\BitDefender 2011\bdaphffext
.
- - - - ORPHELINS SUPPRIMES - - - -

AddRemove-EasyBits Magic Desktop - c:\windows\system32\ezMDUninstall.exe
AddRemove-{495A8A3C-8FD0-4C46-9979-95C26181A1AB} - c:\program files (x86)\InstallShield Installation Information\{495A8A3C-8FD0-4C46-9979-95C26181A1AB}\setup.exe



[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\PCDSRVC{F36B3A4C-F95654BD-06000000}_0]
"ImagePath"="\??\c:\program files\pc-doctor for windows\pcdsrvc_x64.pkms"
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe,-101"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx"
"ThreadingModel"="Apartment"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx, 1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx"
"ThreadingModel"="Apartment"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx, 1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Heure de fin: 2011-01-25 23:28:02
ComboFix-quarantined-files.txt 2011-01-25 22:27

Avant-CF: 910 981 222 400 octets libres
Après-CF: 911 046 717 440 octets libres

- - End Of File - - 7FD0617C869C6D7FDFC12FD7A81F76A8