Aller au contenu
Zebulon
  • Pas encore inscrit ?

    Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
    Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
    De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs ! :wink:

Programme « ne répond pas »


Moissette

Messages recommandés

Bonjour,

 

Depuis ce matin, la quasi totalité de mes programmes ne répondent plus après quelques minutes d'utilisation et pas possible d'afficher la console ctrl + alt + suppr.

 

Voici un scan combo fix puis une analyse HiJackThis obtenus à partir du mode sans échec.

 

Merci d'avance pour votre aide.

 

ComboFix 12-01-31.01 - Julien 01/02/2012 13:28:19.1.8 - x64 NETWORK

Microsoft Windows 7 Édition Familiale Premium 6.1.7601.1.1252.33.1036.18.4021.3162 [GMT 2:00]

Lancé depuis: c:\users\Julien\Downloads\ComboFix.exe

AV: Bitdefender Antivirus *Enabled/Updated* {50909708-FF80-02AF-F814-B28405891E92}

FW: Bitdefender Pare-feu *Enabled* {68AB162D-B5EF-03F7-D34B-1BB1FB5A59E9}

SP: Bitdefender Antispyware *Enabled/Updated* {EBF176EC-D9BA-0D21-C2A4-89F67E0E542F}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

* Un nouveau point de restauration a été créé

.

.

((((((((((((((((((((((((((((( Fichiers créés du 2012-01-01 au 2012-02-01 ))))))))))))))))))))))))))))))))))))

.

.

2012-02-01 11:33 . 2012-02-01 11:33 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp

2012-02-01 11:33 . 2012-02-01 11:33 -------- d-----w- c:\users\Default\AppData\Local\temp

2012-02-01 11:23 . 2012-02-01 11:23 -------- d-----w- c:\users\Julien\AppData\Roaming\Malwarebytes

2012-02-01 11:22 . 2012-02-01 11:22 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware

2012-02-01 11:22 . 2012-02-01 11:22 -------- d-----w- c:\programdata\Malwarebytes

2012-02-01 11:22 . 2011-12-10 13:24 23152 ----a-w- c:\windows\system32\drivers\mbam.sys

2012-01-31 17:21 . 2012-01-31 17:21 -------- d-----w- c:\program files (x86)\Common Files\BioWare

2012-01-31 16:16 . 2012-01-31 16:16 -------- d-----w- C:\OnlineUpdate

2012-01-31 16:16 . 2012-01-31 16:16 -------- d-----w- C:\log

2012-01-31 16:14 . 2012-01-31 16:16 -------- d-----w- c:\program files (x86)\Tele2 Mobile Partner

2012-01-31 16:14 . 2012-01-31 16:17 -------- d-----w- c:\programdata\DatacardService

2012-01-30 07:20 . 2012-01-30 07:21 -------- d-----w- c:\users\Julien\AppData\Local\Google

2012-01-25 10:01 . 2012-01-25 10:01 -------- d-----w- c:\users\Julien\AppData\Roaming\NVIDIA

2012-01-25 10:00 . 2012-01-25 10:01 -------- d-----w- c:\users\Julien\AppData\Roaming\StoneTrip

2012-01-24 20:10 . 2012-01-24 20:45 -------- d-----w- c:\programdata\Spybot - Search & Destroy

2012-01-24 20:10 . 2012-01-24 20:11 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy

2012-01-24 19:59 . 2012-01-24 19:59 -------- d-----w- c:\program files (x86)\Conduit

2012-01-24 19:58 . 2012-01-24 20:33 -------- d-----w- c:\users\Julien\AppData\Local\Conduit

2012-01-24 19:58 . 2012-01-25 10:29 -------- d-----w- c:\users\Julien\AppData\Roaming\uTorrent

2012-01-16 23:49 . 2012-01-16 23:49 -------- d-----w- c:\program files (x86)\Frogwares

2012-01-12 09:31 . 2012-01-31 20:48 45016 ----a-w- c:\program files (x86)\Mozilla Firefox\mozutils.dll

2012-01-12 09:31 . 2012-01-12 09:31 479232 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcm80.dll

2012-01-12 09:31 . 2012-01-12 09:31 548864 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcp80.dll

2012-01-12 09:31 . 2012-01-12 09:31 626688 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcr80.dll

2012-01-11 14:19 . 2011-10-26 05:25 1572864 ----a-w- c:\windows\system32\quartz.dll

2012-01-11 14:19 . 2011-10-26 05:25 366592 ----a-w- c:\windows\system32\qdvd.dll

2012-01-11 14:19 . 2011-10-26 04:32 514560 ----a-w- c:\windows\SysWow64\qdvd.dll

2012-01-11 14:19 . 2011-10-26 04:32 1328128 ----a-w- c:\windows\SysWow64\quartz.dll

2012-01-11 14:18 . 2011-11-17 06:41 1731920 ----a-w- c:\windows\system32\ntdll.dll

2012-01-11 14:18 . 2011-11-17 05:38 1292080 ----a-w- c:\windows\SysWow64\ntdll.dll

2012-01-11 14:18 . 2011-11-19 14:58 77312 ----a-w- c:\windows\system32\packager.dll

2012-01-11 14:18 . 2011-11-19 14:01 67072 ----a-w- c:\windows\SysWow64\packager.dll

2012-01-03 13:10 . 2012-01-03 13:10 182672 ----a-w- c:\program files (x86)\Mozilla Firefox\Plugins\nppdf32.dll

2012-01-02 20:56 . 2012-01-02 20:56 -------- d-----w- C:\BDLOGS

.

.

.

(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))

.

2011-12-22 15:44 . 2011-11-28 10:12 685192 ----a-w- c:\windows\system32\drivers\avc3.sys

2011-12-22 15:43 . 2011-07-15 14:12 258736 ----a-w- c:\windows\system32\drivers\avchv.sys

2011-12-22 15:43 . 2011-09-01 09:15 543528 ----a-w- c:\windows\system32\drivers\avckf.sys

2011-11-29 11:11 . 2011-11-29 11:11 189248 ----a-w- c:\windows\SysWow64\PnkBstrB.exe

2011-11-29 11:11 . 2011-11-29 11:11 75064 ----a-w- c:\windows\SysWow64\PnkBstrA.exe

2011-11-29 11:11 . 2011-11-29 11:11 2434856 ----a-w- c:\windows\SysWow64\pbsvc_bc2.exe

2011-11-28 10:50 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll

2011-11-28 10:50 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll

2011-11-28 10:13 . 2011-11-28 10:13 329800 ----a-w- c:\windows\system32\drivers\trufos.sys

2011-11-28 10:12 . 2011-11-28 10:12 90192 ----a-w- c:\windows\system32\drivers\bdfndisf6.sys

2011-11-24 04:52 . 2011-12-15 10:34 3145216 ----a-w- c:\windows\system32\win32k.sys

2011-11-23 23:03 . 2011-11-23 23:03 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe

2011-11-23 23:03 . 2011-11-23 23:03 161792 ----a-w- c:\windows\SysWow64\msls31.dll

2011-11-23 23:03 . 2011-11-23 23:03 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll

2011-11-23 23:03 . 2011-11-23 23:03 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe

2011-11-23 23:03 . 2011-11-23 23:03 63488 ----a-w- c:\windows\SysWow64\tdc.ocx

2011-11-23 23:03 . 2011-11-23 23:03 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll

2011-11-23 23:03 . 2011-11-23 23:03 367104 ----a-w- c:\windows\SysWow64\html.iec

2011-11-23 23:03 . 2011-11-23 23:03 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll

2011-11-23 23:03 . 2011-11-23 23:03 74752 ----a-w- c:\windows\SysWow64\iesetup.dll

2011-11-23 23:03 . 2011-11-23 23:03 420864 ----a-w- c:\windows\SysWow64\vbscript.dll

2011-11-23 23:03 . 2011-11-23 23:03 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll

2011-11-23 23:03 . 2011-11-23 23:03 152064 ----a-w- c:\windows\SysWow64\wextract.exe

2011-11-23 23:03 . 2011-11-23 23:03 150528 ----a-w- c:\windows\SysWow64\iexpress.exe

2011-11-23 23:03 . 2011-11-23 23:03 35840 ----a-w- c:\windows\SysWow64\imgutil.dll

2011-11-23 23:03 . 2011-11-23 23:03 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe

2011-11-23 23:03 . 2011-11-23 23:03 11776 ----a-w- c:\windows\SysWow64\mshta.exe

2011-11-23 23:03 . 2011-11-23 23:03 101888 ----a-w- c:\windows\SysWow64\admparse.dll

2011-11-23 23:03 . 2011-11-23 23:03 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe

2011-11-23 23:03 . 2011-11-23 23:03 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe

2011-11-23 23:03 . 2011-11-23 23:03 85504 ----a-w- c:\windows\system32\iesetup.dll

2011-11-23 23:03 . 2011-11-23 23:03 76800 ----a-w- c:\windows\system32\tdc.ocx

2011-11-23 23:03 . 2011-11-23 23:03 49664 ----a-w- c:\windows\system32\imgutil.dll

2011-11-23 23:03 . 2011-11-23 23:03 48640 ----a-w- c:\windows\system32\mshtmler.dll

2011-11-23 23:03 . 2011-11-23 23:03 448512 ----a-w- c:\windows\system32\html.iec

2011-11-23 23:03 . 2011-11-23 23:03 30720 ----a-w- c:\windows\system32\licmgr10.dll

2011-11-23 23:03 . 2011-11-23 23:03 222208 ----a-w- c:\windows\system32\msls31.dll

2011-11-23 23:03 . 2011-11-23 23:03 173056 ----a-w- c:\windows\system32\ieUnatt.exe

2011-11-23 23:03 . 2011-11-23 23:03 165888 ----a-w- c:\windows\system32\iexpress.exe

2011-11-23 23:03 . 2011-11-23 23:03 160256 ----a-w- c:\windows\system32\wextract.exe

2011-11-23 23:03 . 2011-11-23 23:03 135168 ----a-w- c:\windows\system32\IEAdvpack.dll

2011-11-23 23:03 . 2011-11-23 23:03 12288 ----a-w- c:\windows\system32\mshta.exe

2011-11-23 23:03 . 2011-11-23 23:03 114176 ----a-w- c:\windows\system32\admparse.dll

2011-11-23 23:03 . 2011-11-23 23:03 111616 ----a-w- c:\windows\system32\iesysprep.dll

2011-11-23 23:03 . 2011-11-23 23:03 603648 ----a-w- c:\windows\system32\vbscript.dll

2011-11-23 19:21 . 2011-11-23 19:15 270912 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys

2011-11-23 18:59 . 2011-11-23 18:59 466520 ----a-w- c:\windows\system32\wrap_oal.dll

2011-11-23 18:59 . 2011-11-23 18:59 445016 ----a-w- c:\windows\SysWow64\wrap_oal.dll

2011-11-23 18:59 . 2011-11-23 18:59 123480 ----a-w- c:\windows\system32\OpenAL32.dll

2011-11-23 18:59 . 2011-11-23 18:59 109144 ----a-w- c:\windows\SysWow64\OpenAL32.dll

2011-11-23 18:19 . 2011-11-23 18:19 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl

2011-11-23 18:19 . 2011-11-23 18:19 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll

2011-11-23 18:11 . 2011-11-23 18:11 237548 ----a-w- c:\programdata\1322071501.bdinstall.bin

2011-11-05 05:32 . 2011-12-15 10:34 2048 ----a-w- c:\windows\system32\tzres.dll

2011-11-05 04:26 . 2011-12-15 10:34 2048 ----a-w- c:\windows\SysWow64\tzres.dll

2011-11-04 01:53 . 2011-12-15 11:02 2309120 ----a-w- c:\windows\system32\jscript9.dll

2011-11-04 01:44 . 2011-12-15 11:02 1390080 ----a-w- c:\windows\system32\wininet.dll

2011-11-04 01:44 . 2011-12-15 11:02 1493504 ----a-w- c:\windows\system32\inetcpl.cpl

2011-11-04 01:34 . 2011-12-15 11:02 2382848 ----a-w- c:\windows\system32\mshtml.tlb

2011-11-03 22:47 . 2011-12-15 11:02 1798144 ----a-w- c:\windows\SysWow64\jscript9.dll

2011-11-03 22:40 . 2011-12-15 11:02 1427456 ----a-w- c:\windows\SysWow64\inetcpl.cpl

2011-11-03 22:39 . 2011-12-15 11:02 1127424 ----a-w- c:\windows\SysWow64\wininet.dll

2011-11-03 22:31 . 2011-12-15 11:02 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb

.

.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

REGEDIT4

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2011-08-02 4910912]

"Steam"="d:\steam\Steam.exe" [2011-11-23 1242448]

"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]

"HW_OPENEYE_OUC_Tele2 Mobile Partner"="c:\program files (x86)\Tele2 Mobile Partner\UpdateDog\ouc.exe" [2012-01-31 234496]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]

"ATKOSD2"="c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" [2010-06-24 6806144]

"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" [2010-05-03 170624]

"HControlUser"="c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]

"THX TruStudio NB Settings"="c:\program files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe" [2010-09-07 905216]

"UpdReg"="c:\windows\UpdReg.EXE" [2000-05-10 90112]

"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]

"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]

"Malwarebytes Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-01-13 460872]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

R0 avc3;avc3;c:\windows\system32\DRIVERS\avc3.sys [x]

R1 bdfwfpf;bdfwfpf;c:\program files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2011-11-28 103504]

R1 BDVEDISK;BDVEDISK;c:\windows\system32\DRIVERS\bdvedisk.sys [x]

R2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]

R2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]

R2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x64.sys [x]

R2 HWDeviceService64.exe;HWDeviceService64.exe;c:\programdata\DatacardService\HWDeviceService64.exe [2011-03-14 346976]

R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-10-15 2253120]

R2 SafeBox;SafeBox;c:\program files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [2011-12-22 75384]

R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-10-14 381248]

R2 TeamViewer7;TeamViewer 7;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-01-19 3027840]

R2 Tele2 Mobile Partner. RunOuc;Tele2 Mobile Partner. OUC;c:\program files (x86)\Tele2 Mobile Partner\UpdateDog\ouc.exe [2012-01-31 234496]

R2 UNS;Intel® Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2009-09-30 2314240]

R2 UPDATESRV;BitDefender Desktop Update Service;c:\program files\Bitdefender\Bitdefender 2012\updatesrv.exe [2011-12-22 62512]

R3 avckf;avckf;c:\windows\system32\DRIVERS\avckf.sys [x]

R3 bdsandbox;bdsandbox;c:\windows\system32\drivers\bdsandbox.sys [x]

R3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2011-11-23 79360]

R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2011-11-23 79360]

R3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\DRIVERS\ew_hwusbdev.sys [x]

R3 ewusbmbb;HUAWEI USB-WWAN miniport;c:\windows\system32\DRIVERS\ewusbwwan.sys [x]

R3 MBfilt;MBfilt;c:\windows\system32\drivers\MBfilt64.sys [x]

R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x]

R3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [x]

R3 RSPCIESTOR;Realtek PCIE CardReader Driver;c:\windows\system32\DRIVERS\RtsPStor.sys [x]

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]

R3 Update Server;BitDefender Update Server v2;c:\program files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe [2011-10-14 466736]

R3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]

R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [x]

S1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [2011-11-28 90192]

S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]

S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]

S3 avchv;avchv Function Driver;c:\windows\system32\DRIVERS\avchv.sys [x]

S3 FLxHCIc;Fresco Logic xHCI (USB3) Device Driver;c:\windows\system32\DRIVERS\FLxHCIc.sys [x]

S3 FLxHCIh;Fresco Logic xHCI (USB3) Hub Device Driver;c:\windows\system32\DRIVERS\FLxHCIh.sys [x]

S3 HECIx64;Intel® Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]

S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys [x]

S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]

.

.

--- Autres Services/Pilotes en mémoire ---

.

*NewlyCreated* - WS2IFSL

.

Contenu du dossier 'Tâches planifiées'

.

2012-02-01 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3844530428-3825580962-71670978-1000Core.job

- c:\users\Julien\AppData\Local\Google\Update\GoogleUpdate.exe [2012-01-30 07:20]

.

2012-02-01 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3844530428-3825580962-71670978-1000UA.job

- c:\users\Julien\AppData\Local\Google\Update\GoogleUpdate.exe [2012-01-30 07:20]

.

.

--------- x86-64 -----------

.

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox1]

@="{152C96EB-288E-4EDC-B7C6-D21F8250ADF3}"

[HKEY_CLASSES_ROOT\CLSID\{152C96EB-288E-4EDC-B7C6-D21F8250ADF3}]

2011-12-22 15:51 264344 ----a-w- c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox2]

@="{342DAA0B-D796-460D-8566-901E08A1CCAD}"

[HKEY_CLASSES_ROOT\CLSID\{342DAA0B-D796-460D-8566-901E08A1CCAD}]

2011-12-22 15:51 264344 ----a-w- c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox3]

@="{57595DAE-1AE1-4D97-A49E-67CBB53B52DF}"

[HKEY_CLASSES_ROOT\CLSID\{57595DAE-1AE1-4D97-A49E-67CBB53B52DF}]

2011-12-22 15:51 264344 ----a-w- c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox4]

@="{33816773-98AE-4723-ADE0-EBE54C8B5A67}"

[HKEY_CLASSES_ROOT\CLSID\{33816773-98AE-4723-ADE0-EBE54C8B5A67}]

2011-12-22 15:51 264344 ----a-w- c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"BDAgent"="c:\program files\Bitdefender\Bitdefender 2012\bdagent.exe" [2011-12-22 1063136]

"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-08-17 11438696]

"THXCfg64"="c:\windows\system32\RunDLL32.exe" [2009-07-14 45568]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"LoadAppInit_DLLs"=0x0

.

------- Examen supplémentaire -------

.

uLocal Page = c:\windows\system32\blank.htm

mLocal Page = c:\windows\SysWOW64\blank.htm

IE: E&xporter vers Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000

TCP: DhcpNameServer = 193.40.254.227 193.40.254.226

TCP: Interfaces\{DA27BE12-A798-4826-B71B-09ECDEAEEACA}: NameServer = 212.247.156.66 212.247.156.70

FF - ProfilePath - c:\users\Julien\AppData\Roaming\Mozilla\Firefox\Profiles\2bwvapuv.default\

.

- - - - ORPHELINS SUPPRIMES - - - -

.

URLSearchHooks-{05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} - (no file)

HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe

AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc_bc2.exe

.

.

.

--------------------- CLES DE REGISTRE BLOQUEES ---------------------

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Heure de fin: 2012-02-01 13:38:47 - La machine a redémarré

ComboFix-quarantined-files.txt 2012-02-01 11:38

.

Avant-CF: 81 568 833 536 octets libres

Après-CF: 81 342 582 784 octets libres

.

- - End Of File - - F0285086FC555B654A67098E0A338B0B

 

 

 

 

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 15:27:24, on 01/02/2012

Platform: Unknown Windows (WinNT 6.01.3505 SP1)

MSIE: Internet Explorer v9.00 (9.00.8112.16421)

Boot mode: Safe mode with network support

 

Running processes:

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

D:\Star Wars-The Old Republic\launcher.exe

C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe

C:\Users\Julien\Downloads\HiJackThis.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157'>http://go.microsoft.com/fwlink/?LinkId=69157'>http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896'>http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe

O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe

O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe

O4 - HKLM\..\Run: [THX TruStudio NB Settings] "C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe" /r

O4 - HKLM\..\Run: [updReg] C:\Windows\UpdReg.EXE

O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun

O4 - HKCU\..\Run: [steam] "D:\Steam\Steam.exe" -silent

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [HW_OPENEYE_OUC_Tele2 Mobile Partner] "C:\Program Files (x86)\Tele2 Mobile Partner\UpdateDog\ouc.exe"

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000

O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} (Creative Software AutoUpdate) - http://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab

O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab

O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwareupdate/ocx/110926/CTPID.cab

O17 - HKLM\System\CCS\Services\Tcpip\..\{DA27BE12-A798-4826-B71B-09ECDEAEEACA}: NameServer = 212.247.156.66 212.247.156.70

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe

O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe

O23 - Service: Creative ALchemy AL6 Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe

O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Unknown owner - C:\Program Files\Intel\WiFi\bin\EvtEng.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: HWDeviceService64.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService64.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)

O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe

O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe

O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Unknown owner - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: SafeBox - Bitdefender - C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe

O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe

O23 - Service: Tele2 Mobile Partner. OUC (Tele2 Mobile Partner. RunOuc) - Unknown owner - C:\Program Files (x86)\Tele2 Mobile Partner\UpdateDog\ouc.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

O23 - Service: BitDefender Update Server v2 (Update Server) - BitDefender - C:\Program Files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe

O23 - Service: BitDefender Desktop Update Service (UPDATESRV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: BitDefender Virus Shield (VSSERV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender 2012\vsserv.exe

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

 

--

End of file - 9857 bytes

Modifié par Moissette
Lien vers le commentaire
Partager sur d’autres sites

Rejoindre la conversation

Vous pouvez publier maintenant et vous inscrire plus tard. Si vous avez un compte, connectez-vous maintenant pour publier avec votre compte.
Remarque : votre message nécessitera l’approbation d’un modérateur avant de pouvoir être visible.

Invité
Répondre à ce sujet…

×   Collé en tant que texte enrichi.   Coller en tant que texte brut à la place

  Seulement 75 émoticônes maximum sont autorisées.

×   Votre lien a été automatiquement intégré.   Afficher plutôt comme un lien

×   Votre contenu précédent a été rétabli.   Vider l’éditeur

×   Vous ne pouvez pas directement coller des images. Envoyez-les depuis votre ordinateur ou insérez-les depuis une URL.

  • En ligne récemment   0 membre est en ligne

    • Aucun utilisateur enregistré regarde cette page.
×
×
  • Créer...