Aller au contenu

ouestfreeman

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    78

  • Inscription

  • Dernière visite

 Type de contenu 

Tout ce qui a été posté par ouestfreeman

  1. ouestfreeman
    bonjour quelqu'un peut il me donner un coup de main? Je suis a la bonne adresse? merci
  2. ouestfreeman
    bonjour Suite a une erreur (de ma part) j'ai autorisé la mise en place sur mon PC de "SECURITY TOOLS" erreur que l'on ne fait qu'une seul fois!!! Après avoir lu le tuto http://www.malekal.com/SecurityTool.php, j'ai passé "Malwarebyte's Anti-Malware" pour faire le ménage (14 trojean). Ensuite j'ai fait une analyse avec COMBOFIX, je me permets de vous solliciter et de vous faire suivre une copie du rapport afin que quelqu'un puisse me donner un coup de main pour finaliser le nettoyage de mon PC. merci d'avance OUESTFREEMAN jsifamilly@free.fr ComboFix 09-11-05.05 - jean.marie 06/11/2009 21:56.1.2 - NTFSx86 Microsoft Windows 7 Édition Intégrale 6.1.7600.0.1252.33.1036.18.1012.495 [GMT 1:00] Lancé depuis: c:\users\jean.marie\Downloads\ComboFix.exe . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . C:\install.exe c:\recycler\S-1-5-21-2161079974-4111578351-926022040-1006 c:\recycler\S-1-5-21-2161079974-4111578351-926022040-1007 . ((((((((((((((((((((((((((((( Fichiers créés du 2009-10-06 au 2009-11-06 )))))))))))))))))))))))))))))))))))) . 2009-11-06 21:19 . 2009-11-06 21:19 -------- d-----w- c:\users\jean.marie\AppData\Local\temp 2009-11-06 21:19 . 2009-11-06 21:19 -------- d-----w- c:\users\Isa\AppData\Local\temp 2009-11-06 21:19 . 2009-11-06 21:19 -------- d-----w- c:\users\Default\AppData\Local\temp 2009-11-06 17:05 . 2009-11-06 17:05 -------- d-----w- c:\users\jean.marie\AppData\Roaming\Malwarebytes 2009-11-06 17:04 . 2009-09-10 13:54 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2009-11-06 17:04 . 2009-11-06 17:04 -------- d-----w- c:\programdata\Malwarebytes 2009-11-06 17:04 . 2009-09-10 13:53 19160 ----a-w- c:\windows\system32\drivers\mbam.sys 2009-11-06 17:04 . 2009-11-06 17:04 4096 d-----w- c:\program files\Malwarebytes' Anti-Malware 2009-10-30 08:21 . 2009-10-30 08:25 -------- d-----w- c:\programdata\MyHeritage 2009-10-30 08:21 . 2009-10-30 08:21 -------- d-----w- c:\users\jean.marie\AppData\Roaming\MyHeritage 2009-10-30 08:20 . 2009-10-30 08:37 -------- d-----w- c:\program files\MyHeritage 2009-10-30 08:04 . 2009-10-30 08:37 -------- d-----w- c:\program files\Family Toolbar 2009-10-29 15:49 . 2009-10-29 15:49 3560 ------w- C:\bootsqm.dat 2009-10-28 20:09 . 2009-10-28 20:11 -------- d-----w- c:\users\jean.marie\AppData\Local\Algebrator 2009-10-28 20:09 . 2009-10-28 20:09 4096 d-----w- c:\program files\Algebrator 2009-10-27 21:57 . 2009-10-27 21:57 556848 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll 2009-10-23 20:41 . 2009-10-23 20:41 -------- d-----w- c:\users\jean.marie\AppData\Local\Apple Computer 2009-10-23 20:36 . 2009-10-23 20:37 4096 d-----w- c:\program files\QuickTime 2009-10-23 20:36 . 2009-10-23 20:36 -------- d-----w- c:\programdata\Apple Computer 2009-10-23 20:35 . 2009-10-23 20:35 -------- d-----w- c:\program files\Common Files\Apple 2009-10-23 20:35 . 2009-10-23 20:35 -------- d-----w- c:\users\jean.marie\AppData\Local\Apple 2009-10-23 20:35 . 2009-10-23 20:35 4096 d-----w- c:\program files\Apple Software Update 2009-10-23 20:35 . 2009-10-23 20:35 -------- d-----w- c:\programdata\Apple 2009-10-22 22:11 . 2009-10-30 22:50 -------- dc----w- c:\users\jean.marie\AppData\Local\MigWiz 2009-10-22 19:19 . 2009-10-22 19:19 -------- d-----w- c:\users\jean.marie\AppData\Roaming\Talkback 2009-10-21 22:40 . 2009-10-21 22:40 -------- d-----w- c:\users\jean.marie\AppData\Local\Microsoft Games 2009-10-21 21:07 . 2008-09-17 18:39 139264 ----a-w- c:\users\jean.marie\AppData\Roaming\Thunderbird\Profiles\mw8zj149.default\extensions\{e2fda1a4-762b-4020-b5ad-a41df1933103}\components\calbscmp.dll 2009-10-21 19:57 . 2009-10-21 19:57 0 ----a-w- c:\windows\nsreg.dat 2009-10-21 19:57 . 2009-10-21 19:57 -------- d-----w- c:\users\jean.marie\AppData\Local\Thunderbird 2009-10-21 19:57 . 2009-10-21 19:57 -------- d-----w- c:\users\jean.marie\AppData\Roaming\Thunderbird 2009-10-21 19:57 . 2009-10-22 19:38 12288 d-----w- c:\program files\Mozilla Thunderbird 2009-10-17 12:38 . 2009-10-02 04:06 728648 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys 2009-10-17 12:38 . 2009-09-03 07:04 1320960 ----a-w- c:\windows\system32\CertEnroll.dll 2009-10-17 12:38 . 2009-08-03 05:35 2613248 ----a-w- c:\windows\explorer.exe 2009-10-17 12:38 . 2009-08-19 07:20 507568 ----a-w- c:\windows\system32\winload.exe 2009-10-17 12:38 . 2009-08-19 07:20 442920 ----a-w- c:\windows\system32\winresume.exe 2009-10-17 12:38 . 2009-07-30 16:29 108544 ----a-w- c:\windows\system32\t2embed.dll 2009-10-17 12:38 . 2009-07-30 16:27 71168 ----a-w- c:\windows\system32\fontsub.dll 2009-10-17 12:38 . 2009-07-30 04:44 293888 ----a-w- c:\windows\system32\atmfd.dll 2009-10-17 12:38 . 2009-08-29 06:54 12625408 ----a-w- c:\windows\system32\wmploc.DLL 2009-10-15 20:56 . 2009-09-10 05:52 257024 ----a-w- c:\windows\system32\msv1_0.dll 2009-10-15 19:23 . 2009-08-29 06:57 34816 ----a-w- c:\windows\system32\msasn1.dll 2009-10-10 23:26 . 2009-10-10 23:26 -------- d-----w- c:\program files\JRE . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2009-11-06 19:48 . 2009-07-14 08:39 695004 ----a-w- c:\windows\system32\perfh00C.dat 2009-11-06 19:48 . 2009-07-14 08:39 127684 ----a-w- c:\windows\system32\perfc00C.dat 2009-11-05 17:17 . 2009-09-22 17:18 4096 d-----w- c:\users\jean.marie\AppData\Roaming\vlc 2009-11-01 13:41 . 2009-09-22 17:01 1 ----a-w- c:\users\jean.marie\AppData\Roaming\OpenOffice.org\3\user\uno_packages\cache\stamp.sys 2009-10-29 21:17 . 2009-09-22 17:27 -------- d-----w- c:\program files\Common Files\Adobe 2009-10-29 17:36 . 2009-09-24 21:38 4096 d-----w- c:\users\jean.marie\AppData\Roaming\FileZilla 2009-10-24 21:10 . 2009-09-24 21:38 4096 d-----w- c:\program files\FileZilla FTP Client 2009-10-11 15:16 . 2009-09-22 16:43 61736 ----a-w- c:\users\jean.marie\AppData\Local\GDIPFONTCACHEV1.DAT 2009-10-10 23:28 . 2009-09-22 16:57 4096 d-----w- c:\program files\OpenOffice.org 3 2009-10-10 23:19 . 2009-09-22 19:42 411368 ----a-w- c:\windows\system32\deploytk.dll 2009-10-10 23:19 . 2009-09-22 16:55 4096 d-----w- c:\program files\Java 2009-10-01 08:29 . 2009-10-03 10:47 195440 ------w- c:\windows\system32\MpSigStub.exe 2009-09-28 19:25 . 2009-09-28 19:25 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_09_00.Wdf 2009-09-24 22:05 . 2009-09-24 22:00 8192 d-----w- c:\program files\adslTV 2009-09-24 21:35 . 2009-09-24 21:35 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll 2009-09-24 21:35 . 2009-09-24 21:35 684872 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll 2009-09-24 21:00 . 2009-09-24 21:00 -------- d-----w- c:\program files\Memory-Map 2009-09-24 20:59 . 2009-09-24 20:59 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard 2009-09-24 20:32 . 2009-09-24 20:32 -------- d-----w- c:\program files\Microsoft 2009-09-24 20:31 . 2009-09-24 20:31 -------- d-----w- c:\program files\Windows Live SkyDrive 2009-09-24 20:31 . 2009-09-22 20:15 -------- d-----w- c:\program files\Windows Live 2009-09-24 20:27 . 2009-09-24 20:27 -------- d-----w- c:\program files\Common Files\Windows Live 2009-09-24 20:25 . 2009-09-22 20:14 -------- d-----w- c:\programdata\WLInstaller 2009-09-22 20:44 . 2009-09-22 20:44 -------- d-----w- c:\users\jean.marie\AppData\Roaming\Thinstall 2009-09-22 20:15 . 2009-09-22 20:15 -------- dcsh--w- c:\program files\Common Files\WindowsLiveInstaller 2009-09-22 17:17 . 2009-09-22 17:17 -------- d-----w- c:\program files\VideoLAN 2009-09-22 17:14 . 2009-09-22 17:14 -------- d-----w- c:\users\jean.marie\AppData\Roaming\VitySoft 2009-09-22 17:00 . 2009-09-22 17:00 -------- d-----w- c:\users\jean.marie\AppData\Roaming\OpenOffice.org 2009-09-22 16:55 . 2009-09-22 16:55 -------- d-----w- c:\program files\Common Files\Java 2009-09-22 14:09 . 2009-09-22 14:09 -------- d-----w- c:\program files\Alwil Software 2009-09-22 12:22 . 2009-09-22 12:22 -------- d-sh--we c:\programdata\Modèles 2009-09-22 12:22 . 2009-09-22 12:22 -------- d-sh--we c:\program files\Fichiers communs 2009-09-22 12:22 . 2009-09-22 12:22 -------- d-sh--we c:\programdata\Menu Démarrer 2009-09-22 12:22 . 2009-09-22 12:22 -------- d-sh--we c:\programdata\Favoris 2009-09-22 12:22 . 2009-09-22 12:22 -------- d-sh--we c:\programdata\Bureau 2009-09-03 09:53 . 2009-09-22 17:24 22848 ----a-w- c:\users\jean.marie\AppData\Roaming\Mozilla\Firefox\Profiles\gv4rjyrw.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}\chrome\content\getPlusPlus_Adobe_reg_bootstrap.exe 2009-09-03 09:53 . 2009-09-22 17:24 19792 ----a-w- c:\users\jean.marie\AppData\Roaming\Mozilla\Firefox\Profiles\gv4rjyrw.default\extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}\chrome\content\getPlusPlus_Adobe_reg.exe 2009-08-17 16:10 . 2009-09-22 14:09 1279456 ----a-w- c:\windows\system32\aswBoot.exe 2009-08-17 16:05 . 2009-09-22 14:10 114768 ----a-w- c:\windows\system32\drivers\aswSP.sys 2009-08-17 16:05 . 2009-09-22 14:10 20560 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys 2009-08-17 16:05 . 2009-09-22 14:09 53328 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys 2009-08-17 16:04 . 2009-09-22 14:10 51376 ----a-w- c:\windows\system32\drivers\aswTdi.sys 2009-08-17 16:04 . 2009-09-22 14:10 23152 ----a-w- c:\windows\system32\drivers\aswRdr.sys 2009-08-17 16:02 . 2009-09-22 14:10 97480 ----a-w- c:\windows\system32\AvastSS.scr 2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat 2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1173504] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "avast!"="c:\program files\Alwil Software\Avast4\ashDisp.exe" [2009-08-17 81000] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-06-16 141848] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-06-16 173592] "Persistence"="c:\windows\system32\igfxpers.exe" [2009-06-16 150552] "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-10-10 149280] "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-09-04 417792] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-10-03 35696] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2009-09-04 935288] "Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2009-09-10 1312080] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows] "LoadAppInit_DLLs"=0 (0x0) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "aux"=wdmaud.drv [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] SetupExecute REG_MULTI_SZ \0 R1 aswSP;avast! Self Protection;c:\windows\System32\drivers\aswSP.sys [22/09/2009 15:10 114768] R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\System32\drivers\vwififlt.sys [14/07/2009 00:52 48128] R2 aswFsBlk;aswFsBlk;c:\windows\System32\drivers\aswFsBlk.sys [22/09/2009 15:10 20560] R2 aswMonFlt;aswMonFlt;c:\windows\System32\drivers\aswMonFlt.sys [22/09/2009 15:09 53328] R3 RTL8167;Realtek 8167 NT Driver;c:\windows\System32\drivers\Rt86win7.sys [01/03/2009 22:05 139776] --- Autres Services/Pilotes en mémoire --- *NewlyCreated* - PROCEXP113 *Deregistered* - PROCEXP113 . Contenu du dossier 'Tâches planifiées' . . ------- Examen supplémentaire ------- . uStart Page = hxxp://www.google.fr/ FF - ProfilePath - c:\users\jean.marie\AppData\Roaming\Mozilla\Firefox\Profiles\gv4rjyrw.default\ FF - prefs.js: browser.startup.homepage - chrome://speeddial/content/speeddial.xul FF - prefs.js: keyword.URL - hxxp://search.myheritage.com/?orig=ds&q= FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll . . ------- Associations de fichier ------- . regedit=regedit.exe "%1" . . --------------------- CLES DE REGISTRE BLOQUEES --------------------- [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Heure de fin: 2009-11-06 22:28 ComboFix-quarantined-files.txt 2009-11-06 21:28 Avant-CF: 69 250 408 448 octets libres Après-CF: 68 861 329 408 octets libres - - End Of File - - 828D1AC774C17FD754444D9AFBEEF907
×
×
  • Créer...