Site bidon se met comme page d'accueil - Page 3

Précédent
  • 1
  • 2
  • 3
Réponse 41 / 45
dvdl35 Messages postés 36 Statut Membre
 
rapport combofix :

ComboFix 12-06-21.03 - .......... 22/06/2012 14:50:41.1.1 - x64
Microsoft Windows 7 Édition Familiale Premium 6.1.7601.1.1252.33.1036.18.3839.2376 [GMT 2:00]
Lancé depuis: c:\users\..........\Desktop\cequejeveux.exe
AV: Norton Internet Security *Disabled/Outdated* {88C95A36-8C3B-2F2C-1B8B-30FCCFDC4855}
FW: Norton Internet Security *Disabled* {B0F2DB13-C654-2E74-30D4-99C9310F0F2E}
SP: Norton Internet Security *Disabled/Updated* {33A8BBD2-AA01-20A2-213B-0B8EB45B02E8}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Un nouveau point de restauration a été créé
.
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Common Files\packardbell.ico
c:\users\christelle\AppData\Roaming\dllutils.exe
c:\users\..........~1\AppData\Local\Temp\26b4a1dd-e07b-48af-be4e-9642b273284b\CliSecureRT.dll
c:\users\..........\AppData\Local\Temp\26b4a1dd-e07b-48af-be4e-9642b273284b\CliSecureRT.dll
c:\users\..........\AppData\Roaming\.#
c:\windows\SysWow64\Packet.dll
c:\windows\SysWow64\pthreadVC.dll
c:\windows\SysWow64\SET138B.tmp
c:\windows\SysWow64\SET555B.tmp
c:\windows\SysWow64\SET6072.tmp
c:\windows\SysWow64\SETE9BD.tmp
c:\windows\SysWow64\wpcap.dll
.
.
((((((((((((((((((((((((((((((((((((((( Pilotes/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_NPF
-------\Service_npf
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2012-05-22 au 2012-06-22 ))))))))))))))))))))))))))))))))))))
.
.
2012-06-22 13:03 . 2012-06-22 13:18 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-06-22 13:03 . 2012-06-22 13:03 -------- d-----w- c:\users\Invité\AppData\Local\temp
2012-06-22 13:03 . 2012-06-22 13:03 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-06-22 13:03 . 2012-06-22 13:03 -------- d-----w- c:\users\christelle\AppData\Local\temp
2012-06-21 14:14 . 2012-06-21 14:15 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2012-06-21 13:36 . 2012-06-21 13:36 -------- d-----w- c:\programdata\2930
2012-06-20 21:23 . 2012-06-20 21:23 -------- d-----w- c:\program files (x86)\Common Files\xing shared
2012-06-20 20:46 . 2012-06-20 20:46 -------- d-----w- c:\windows\system32\SPReview
2012-06-20 20:21 . 2010-11-20 12:20 573440 ----a-w- c:\windows\SysWow64\odbc32.dll
2012-06-20 20:15 . 2010-11-20 13:27 577536 ----a-w- c:\windows\system32\WSDApi.dll
2012-06-20 20:14 . 2010-11-05 01:57 444752 ----a-w- c:\windows\system32\mscoree.dll
2012-06-20 20:13 . 2010-11-20 13:27 154624 ----a-w- c:\windows\system32\uxlib.dll
2012-06-20 20:12 . 2010-11-20 13:26 861184 ----a-w- c:\windows\system32\fontext.dll
2012-06-20 19:45 . 2012-06-20 19:45 -------- d-----w- c:\windows\system32\EventProviders
2012-06-19 16:50 . 2012-06-19 16:51 286173 ----a-w- c:\windows\SysWow64\HOSTS_Anti-Adware.exe
2012-06-19 15:15 . 2012-06-21 14:12 -------- d-----w- C:\Pre_Scan
2012-06-19 06:01 . 2012-05-31 04:04 9013136 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{9A0A3E2B-C3EB-434C-B4B1-B3C209A33DB1}\mpengine.dll
2012-06-18 10:05 . 2007-12-07 00:08 108032 ----a-w- c:\windows\system32\E_ILMCAE.DLL
2012-06-18 10:05 . 2007-12-07 00:01 81408 ----a-w- c:\windows\system32\E_IBCBCAE.DLL
2012-06-18 10:05 . 2005-02-02 10:05 8704 ----a-w- c:\windows\system32\E_GCINST.DLL
2012-06-18 09:12 . 2002-07-25 15:06 282624 ----a-w- c:\program files (x86)\Common Files\InstallShield\UpdateService\agent.exe
2012-06-18 09:07 . 2012-06-18 09:07 -------- d-----w- c:\programdata\UDL
2012-06-18 09:03 . 2002-12-05 12:10 155648 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iuser.dll
2012-06-18 09:03 . 2002-12-02 11:33 57344 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\ctor.dll
2012-06-18 09:03 . 2002-12-02 11:33 237568 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iscript.dll
2012-06-18 09:03 . 2003-02-27 14:12 696320 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iKernel.dll
2012-06-18 09:03 . 2002-12-02 13:22 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\DotNetInstaller.exe
2012-06-18 09:03 . 2012-06-18 09:03 282756 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\setup.dll
2012-06-18 09:03 . 2012-06-18 09:03 163972 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iGdi.dll
2012-06-18 08:59 . 2006-10-30 22:10 71840 ----a-w- c:\windows\SysWow64\EPPicMgr.dll
2012-06-18 08:59 . 2006-10-30 22:10 120992 ----a-w- c:\windows\SysWow64\EpPicPrt.dll
2012-06-18 08:59 . 2006-10-19 22:10 80024 ----a-w- c:\windows\SysWow64\PICSDK.dll
2012-06-18 08:59 . 2006-10-19 22:10 501912 ----a-w- c:\windows\SysWow64\PICSDK2.dll
2012-06-18 08:59 . 2006-10-19 22:10 108704 ----a-w- c:\windows\SysWow64\PICEntry.dll
2012-06-18 08:58 . 2012-06-18 08:58 -------- d-----w- c:\program files\EPSON
2012-06-18 08:57 . 2006-12-27 22:00 208896 ----a-w- c:\windows\SysWow64\esint7e.dll
2012-06-18 08:57 . 2012-06-18 09:04 -------- d-----w- c:\program files (x86)\epson
2012-06-18 08:57 . 2006-12-27 22:00 245248 ----a-w- c:\windows\system32\esxuin7e.dll
2012-06-18 08:57 . 2006-12-27 22:00 100352 ----a-w- c:\windows\system32\esxwia7e.dll
2012-06-18 08:57 . 2006-03-09 22:00 4608 ----a-w- c:\windows\system32\esxwiaml.dll
2012-06-13 19:12 . 2012-04-07 12:31 3216384 ----a-w- c:\windows\system32\msi.dll
2012-06-13 19:11 . 2012-04-07 11:26 2342400 ----a-w- c:\windows\SysWow64\msi.dll
2012-06-13 19:11 . 2012-04-24 05:37 1462272 ----a-w- c:\windows\system32\crypt32.dll
2012-06-13 19:11 . 2012-04-24 05:37 184320 ----a-w- c:\windows\system32\cryptsvc.dll
2012-06-13 19:11 . 2012-04-24 05:37 140288 ----a-w- c:\windows\system32\cryptnet.dll
2012-06-13 19:11 . 2012-04-24 04:36 140288 ----a-w- c:\windows\SysWow64\cryptsvc.dll
2012-06-13 19:11 . 2012-04-24 04:36 1158656 ----a-w- c:\windows\SysWow64\crypt32.dll
2012-06-13 19:11 . 2012-04-24 04:36 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
2012-06-13 01:10 . 2012-05-15 01:32 3146752 ----a-w- c:\windows\system32\win32k.sys
2012-06-13 01:10 . 2012-04-26 05:41 149504 ----a-w- c:\windows\system32\rdpcorekmts.dll
2012-06-13 01:10 . 2012-04-26 05:41 77312 ----a-w- c:\windows\system32\rdpwsx.dll
2012-06-13 01:10 . 2012-04-26 05:34 9216 ----a-w- c:\windows\system32\rdrmemptylst.exe
2012-06-13 01:10 . 2012-05-01 05:40 209920 ----a-w- c:\windows\system32\profsvc.dll
2012-06-13 01:10 . 2010-11-20 13:27 33792 ----a-w- c:\windows\system32\profprov.dll
2012-06-13 01:10 . 2012-05-04 11:06 5559664 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-06-13 01:10 . 2012-05-04 10:03 3913072 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2012-06-13 01:10 . 2012-05-04 10:03 3968368 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2012-06-13 01:10 . 2012-04-28 03:55 210944 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-06-02 20:08 . 2012-06-02 20:08 -------- d-----w- c:\users\christelle\AppData\Local\Facebook
2012-05-25 22:50 . 2012-05-25 22:50 -------- d-----w- c:\users\..........\AppData\Local\Samsung
2012-05-25 22:49 . 2012-05-25 22:49 -------- d-----w- c:\users\..........\AppData\Roaming\Samsung
2012-05-25 12:52 . 2012-05-25 12:52 -------- d-----w- c:\windows\SysWow64\System32
2012-05-25 12:48 . 2012-05-25 12:48 -------- d-----w- c:\users\christelle\AppData\Local\Samsung
2012-05-25 12:47 . 2012-05-25 12:47 -------- d-----w- c:\users\christelle\AppData\Roaming\Samsung
2012-05-25 12:46 . 2012-02-24 09:14 99384 ----a-w- c:\windows\system32\drivers\ssudbus.sys
2012-05-25 12:46 . 2012-02-24 09:14 203320 ----a-w- c:\windows\system32\drivers\ssudserd.sys
2012-05-25 12:46 . 2012-02-24 09:14 203320 ----a-w- c:\windows\system32\drivers\ssudmdm.sys
2012-05-25 12:46 . 2010-12-21 05:55 18944 ----a-w- c:\windows\system32\drivers\ss_bmdfl.sys
2012-05-25 12:46 . 2010-12-21 05:55 161280 ----a-w- c:\windows\system32\drivers\ss_bmdm.sys
2012-05-25 12:46 . 2010-12-21 05:55 15872 ----a-w- c:\windows\system32\drivers\ss_bwhnt.sys
2012-05-25 12:46 . 2010-12-21 05:55 15872 ----a-w- c:\windows\system32\drivers\ss_bwh.sys
2012-05-25 12:46 . 2010-12-21 05:55 15360 ----a-w- c:\windows\system32\drivers\ss_bcmnt.sys
2012-05-25 12:46 . 2010-12-21 05:55 15360 ----a-w- c:\windows\system32\drivers\ss_bcm.sys
2012-05-25 12:46 . 2010-12-21 05:55 128000 ----a-w- c:\windows\system32\drivers\ss_bserd.sys
2012-05-25 12:46 . 2010-12-21 05:55 127488 ----a-w- c:\windows\system32\drivers\ss_bbus.sys
2012-05-25 12:44 . 2011-03-02 05:58 4659712 ----a-w- c:\windows\SysWow64\Redemption.dll
2012-05-25 12:43 . 2011-03-02 05:57 821824 ----a-w- c:\windows\SysWow64\dgderapi.dll
.
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-06-22 10:47 . 2012-06-21 20:15 23958748 ----a-w- C:\UsbFix_Upload_Me_PACKARDBELL.zip
2012-06-20 20:58 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2012-06-20 20:58 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2012-05-28 10:07 . 2010-05-19 10:43 2306328 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\markup.dll
2012-05-28 10:07 . 2010-05-19 10:43 42776 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM\StartResources.dll
2012-05-17 22:35 . 2012-06-13 01:01 1129472 ----a-w- c:\windows\SysWow64\wininet.dll
2012-05-15 10:48 . 2012-03-06 21:19 68928 ----a-w- c:\windows\system32\OpenCL.dll
2012-05-15 10:48 . 2012-03-06 21:19 61248 ----a-w- c:\windows\SysWow64\OpenCL.dll
2012-05-15 10:48 . 2012-03-06 21:19 18044224 ----a-w- c:\windows\system32\nvd3dumx.dll
2012-05-15 10:48 . 2012-03-06 21:19 1738048 ----a-w- c:\windows\system32\nvdispco64.dll
2012-05-15 10:48 . 2012-03-06 21:19 15322432 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2012-05-15 10:48 . 2012-03-06 21:19 1468224 ----a-w- c:\windows\system32\nvgenco64.dll
2012-05-15 10:48 . 2011-05-21 05:01 8105280 ----a-w- c:\windows\SysWow64\nvwgf2um.dll
2012-05-15 10:48 . 2009-10-28 17:17 10194752 ----a-w- c:\windows\system32\nvwgf2umx.dll
2012-05-15 10:48 . 2009-10-28 17:17 2741568 ----a-w- c:\windows\system32\nvapi64.dll
2012-05-15 09:29 . 2010-07-09 15:27 889664 ----a-w- c:\windows\system32\nvvsvc.exe
2012-05-15 09:29 . 2010-07-09 15:27 118080 ----a-w- c:\windows\system32\nvmctray.dll
2012-05-15 09:29 . 2009-07-14 08:51 63296 ----a-w- c:\windows\system32\nvshext.dll
2012-05-15 09:29 . 2009-07-14 08:51 2561856 ----a-w- c:\windows\system32\nvsvcr.dll
2012-05-15 09:29 . 2010-07-09 15:27 3149632 ----a-w- c:\windows\system32\nvsvc64.dll
2012-05-15 09:28 . 2010-07-09 15:27 6151488 ----a-w- c:\windows\system32\nvcpl.dll
2012-05-15 00:21 . 2012-05-15 00:21 423744 ----a-w- c:\windows\SysWow64\nvStreaming.exe
2012-05-06 17:13 . 2012-05-06 17:13 0 ----a-w- c:\windows\DXT4CBE.tmp
2012-05-06 17:13 . 2012-05-06 17:13 0 ----a-w- c:\windows\DXT4CAE.tmp
2012-04-22 20:11 . 2010-08-03 15:26 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-04-18 17:08 . 2012-03-06 21:19 1451840 ----a-w- c:\windows\system32\nvhdagenco6420103.dll
2012-04-09 09:53 . 2011-03-28 16:36 19352 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2012-03-30 11:35 . 2012-05-11 23:14 1918320 ----a-w- c:\windows\system32\drivers\tcpip.sys
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Eraser"="c:\program files\Eraser\Eraser.exe" [2009-06-10 462736]
"SpybotSD TeaTimer"="c:\program files (x86)\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
"KiesTrayAgent"="c:\program files (x86)\Samsung\Kies\KiesTrayAgent.exe" [2012-05-25 3521464]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
"Xvid"="c:\program files (x86)\Xvid\CheckUpdate.exe" [2011-01-17 8192]
"OrangeInside"="c:\users\..........\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe" [2012-04-16 1508864]
"KiesPDLR"="c:\program files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" [2012-05-25 21432]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-28 35696]
"ccApp"="c:\program files (x86)\Common Files\Symantec Shared\ccApp.exe" [2007-01-09 115816]
"Symantec PIF AlertEng"="c:\program files (x86)\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" [2008-01-29 583048]
"ArcSoft Connection Service"="c:\program files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe" [2010-10-27 207424]
"DVAPTray"="c:\windows\System32\DVAPTray.exe" [2010-09-29 192512]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-09-27 59240]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2011-10-24 421888]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]
"KiesTrayAgent"="c:\program files (x86)\Samsung\Kies\KiesTrayAgent.exe" [2012-05-25 3521464]
"TkBellExe"="c:\program files (x86)\Real\RealPlayer\update\realsched.exe" [2012-06-20 296056]
.
c:\users\..........\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
DesktopEarth AutoStart.lnk - c:\users\..........\AppData\Roaming\Microsoft\Installer\{DBA5E973-660D-4CBE-A469-F5C37FBF0CE4}\_C1A9BF9D98647632ED5172.exe [2011-11-4 29926]
Ma Belle Ferme.lnk - c:\program files (x86)\Google\Chrome\Application\chrome.exe [N/A]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Microsoft Office.lnk - c:\program files (x86)\Microsoft Office\Office10\OSA.EXE [2001-2-13 83360]
TMMonitor.lnk - c:\program files (x86)\ArcSoft\TotalMedia 3.5\TMMonitor.exe [2011-5-3 258048]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sr.sys]
@="FSFilter System Recovery"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SymEFA.sys]
@="FSFilter Activity Monitor"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Service Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-03-20 136176]
R2 Orange update Core Service;Orange update Core Service;c:\program files (x86)\Orange\OrangeUpdate\Service\OUCore.exe [2012-04-13 1081984]
R3 AdobeActiveFileMonitor7.0;Adobe Active File Monitor V7;c:\program files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe [2008-12-08 169312]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys [x]
R3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [x]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2010-09-16 132656]
R3 gupdatem;Service Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-03-20 136176]
R3 nmwcdcx64;Nokia USB Generic;c:\windows\system32\drivers\ccdcmbox64.sys [x]
R3 nmwcdx64;Nokia USB Phone Parent;c:\windows\system32\drivers\ccdcmbx64.sys [x]
R3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys [x]
R3 RTL2832UBDA;REALTEK 2832U BDA Driver;c:\windows\system32\drivers\RTL2832UBDA.sys [x]
R3 RTL2832UUSB;REALTEK 2832U USB Driver;c:\windows\system32\Drivers\RTL2832UUSB.sys [x]
R3 ScreamBAudioSvc;ScreamBee Audio;c:\windows\system32\drivers\ScreamingBAudio64.sys [x]
R3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\DRIVERS\ss_bbus.sys [x]
R3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\DRIVERS\ss_bmdfl.sys [x]
R3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\DRIVERS\ss_bmdm.sys [x]
R3 ss_bserd;SAMSUNG USB Mobile Logging Driver;c:\windows\system32\DRIVERS\ss_bserd.sys [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys [x]
R3 ssudserd;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudserd.sys [x]
R3 SYMNDISV;Symantec Network Filter Driver;c:\windows\System32\Drivers\NISx64\1008000.029\SYMNDISV.SYS [x]
R3 TFsExDisk;TFsExDisk;c:\windows\System32\Drivers\TFsExDisk.sys [2010-05-13 16392]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [x]
S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NISx64\1008000.029\SYMEFA64.SYS [x]
S1 BHDrvx64;Symantec Heuristics Driver;c:\windows\System32\Drivers\NISx64\1008000.029\BHDrvx64.sys [x]
S1 ccHP;Symantec Hash Provider;c:\windows\System32\Drivers\NISx64\1008000.029\ccHPx64.sys [x]
S1 IDSvia64;Symantec Intrusion Prevention Driver;c:\progra~3\Symantec\DEFINI~1\SymcData\IDS-DI~1\20101013.001\IDSvia64.sys [2010-09-15 392752]
S2 Greg_Service;GRegService;c:\program files (x86)\Packard Bell\Registration\GregHSRW.exe [2009-08-28 1150496]
S2 Norton Internet Security;Norton Internet Security;c:\program files (x86)\Norton Internet Security\Engine\16.8.0.41\ccSvcHst.exe [2009-10-28 117640]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-05-15 1262400]
S2 SBSDWSCService;SBSD Security Center Service;c:\program files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-05-15 382272]
S2 TeamViewer5;TeamViewer 5;c:\program files (x86)\TeamViewer\Version5\TeamViewer_Service.exe [2010-03-18 172328]
S2 TeamViewer6;TeamViewer 6;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2011-04-15 2280312]
S2 Updater Service;Updater Service;c:\program files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2009-07-04 240160]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [x]
.
.
--- Autres Services/Pilotes en mémoire ---
.
*NewlyCreated* - WS2IFSL
.
Contenu du dossier 'Tâches planifiées'
.
2012-06-21 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2160020326-4033221634-1388059590-1006Core.job
- c:\users\christelle\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-06-02 20:08]
.
2012-06-22 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2160020326-4033221634-1388059590-1006UA.job
- c:\users\christelle\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-06-02 20:08]
.
2012-06-22 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-03-20 22:27]
.
2012-06-22 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-03-20 22:27]
.
2012-06-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2160020326-4033221634-1388059590-1001Core.job
- c:\users\..........\AppData\Local\Google\Update\GoogleUpdate.exe [2012-06-19 12:05]
.
2012-06-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2160020326-4033221634-1388059590-1001UA.job
- c:\users\..........\AppData\Local\Google\Update\GoogleUpdate.exe [2012-06-19 12:05]
.
2012-06-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2160020326-4033221634-1388059590-1006Core.job
- c:\users\christelle\AppData\Local\Google\Update\GoogleUpdate.exe [2012-06-19 12:05]
.
2012-06-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2160020326-4033221634-1388059590-1006UA.job
- c:\users\christelle\AppData\Local\Google\Update\GoogleUpdate.exe [2012-06-19 12:05]
.
2012-06-18 c:\windows\Tasks\Norton AntiVirus - Analyse système complète - ...........job
- c:\program files (x86)\Norton AntiVirus\Navw32.exe [2007-01-14 01:09]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-07-20 7981088]
"combofix"="c:\cequejeveux\CF30270.3XE" [2010-11-20 345088]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x1
.
------- Examen supplémentaire -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: ajouter cette page à vos favoris Orange - c:\users\..........\AppData\Roaming\Orange\OrangeInside\src\addfavorites_html\addfavorites.html
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: E&xporter vers Microsoft Excel - c:\progra~2\MICROS~1\Office10\EXCEL.EXE/3000
IE: envoyer le texte sélectionné par sms - c:\users\..........\AppData\Roaming\Orange\OrangeInside\src\sendsmsselectedtext_html\sendsmsselectedtext.html
IE: envoyer par sms - c:\users\..........\AppData\Roaming\Orange\OrangeInside\src\sendsms_html\sendsms.html
IE: envoyer un mail - c:\users\..........\AppData\Roaming\Orange\OrangeInside\src\sendmail_html\sendmail.html
IE: orange.fr - c:\users\..........\AppData\Roaming\Orange\OrangeInside\src\orange_html\orange.html
IE: rechercher le texte sélectionné - c:\users\..........\AppData\Roaming\Orange\OrangeInside\src\selectedsearch_html\selectedsearch.html
IE: traduire la page - c:\users\..........\AppData\Roaming\Orange\OrangeInside\src\translate_html\translate.html
IE: traduire le texte sélectionné - c:\users\..........\AppData\Roaming\Orange\OrangeInside\src\translateSelectedText_html\translateSelectedText.html
LSP: %SYSTEMROOT%\system32\nvLsp.dll
Trusted Zone: orange.fr\logicielsgratuits
TCP: DhcpNameServer = 192.168.1.1
.
.
------- Associations de fichier -------
.
JSEFile=%SystemRoot%\SysWow64\CScript.exe "%1" %*
.
- - - - ORPHELINS SUPPRIMES - - - -
.
Toolbar-Locked - (no file)
Toolbar-10 - (no file)
Wow6432Node-HKCU-Run-AnumanLive - c:\users\..........\AppData\Roaming\Anuman Interactive\AnumanLive\AnumanLive.exe
Wow6432Node-HKCU-Run-KiesHelper - c:\program files (x86)\Samsung\Kies\KiesHelper.exe
Wow6432Node-HKCU-Run-KiesAirMessage - c:\program files (x86)\Samsung\Kies\KiesAirMessage.exe
Wow6432Node-HKCU-Run-bRemoteControl - c:\program files (x86)\RemoteDesktopServer\RemoteDesktopServer.exe
Wow6432Node-HKLM-Run-WinampAgent - c:\program files (x86)\Winamp\winampa.exe
SafeBoot-dmboot.sys
SafeBoot-dmio.sys
SafeBoot-dmload.sys
SafeBoot-dmadmin
SafeBoot-dmserver
SafeBoot-SRService
Toolbar-Locked - (no file)
Toolbar-10 - (no file)
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
AddRemove-OrangeToolbar - c:\program files (x86)\Orange\ToolbarFr\uninstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\Norton Internet Security]
"ImagePath"="\"c:\program files (x86)\Norton Internet Security\Engine\16.8.0.41\ccSvcHst.exe\" /s \"Norton Internet Security\" /m \"c:\program files (x86)\Norton Internet Security\Engine\16.8.0.41\diMaster.dll\" /prefetch:1"
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Autres processus actifs ------------------------
.
c:\program files (x86)\Common Files\Symantec Shared\ccSvcHst.exe
c:\program files (x86)\Common Files\Symantec Shared\AppCore\AppSvc32.exe
c:\program files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
c:\program files (x86)\Common Files\Symantec Shared\ccSvcHst.exe
c:\program files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exe
c:\progra~2\Orange\ASSIST~1\ASSIST~1.EXE
c:\program files (x86)\DesktopEarth\DesktopEarth.exe
c:\windows\SysWOW64\DVAPTray.exe
c:\program files (x86)\real\realplayer\RealPlay.exe
.
**************************************************************************
.
Heure de fin: 2012-06-22 15:26:43 - La machine a redémarré
ComboFix-quarantined-files.txt 2012-06-22 13:26
.
Avant-CF: 125 921 783 808 octets libres
Après-CF: 127 701 143 552 octets libres
.
- - End Of File - - 3A35D770EF0520666F603B1C1F0549D2
0
Réponse 42 / 45
dvdl35 Messages postés 36 Statut Membre
 
bon à priori le site russe ne revient pu, j'espère c bon cette fois ci
0
Réponse 43 / 45
Utilisateur anonyme
 
veux-tu bien arrêter de tronquer les rapport stp ????!!!!

je te rapelle qu'il y a tous tes noms de sessions sur le rapports de pre_scan , c'est donc inutile

et tu es allé reinstaler spybot , tu ne fais pas ce que je conseille j'abandonne avec toi , dis "à bientôt" à commentcamarche....
¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Pre_Scan_Concept ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
0
Réponse 44 / 45
dvdl35 Messages postés 36 Statut Membre
 
j'ai pas réinstallé spybot

je sais meme pu si je l'ai enlevé
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 45 / 45
dvdl35 Messages postés 36 Statut Membre
 
c bon je l'est viré mais j'avai pas tout fais la 1ère partie, j'ai pas tous mis à jour encore java adobe et j'en passe çà attendra
0
Précédent
  • 1
  • 2
  • 3

Discussions similaires

COCO : où aller ensuite ?
MysticMagic77 -
bendrop -

1 réponse
comment revenir à ma page d'accueil "google.fr" ?
sirioja3 -
kaneagle -

5 réponses
Comment remplacer Vivastreet ?
BEN64200 -
MystreeX -

2 réponses