no save
Identification
Assistance
Achat
News

Forum | virus/sécurité
Desinfection impossible de Adware Gator C
OntheWaterfront, le jeu. 28 déc. 2006 à 02:54:25
Malina - 06-12-28 1:40:07,99 Service Pack 2
ComboFix 06.11.22 - Running from: "C:\Documents and Settings\Malina\Bureau"

((((((((((((((((((((((((((((((( Files Created from 2006-11-28 to 2006-12-28 ))))))))))))))))))))))))))))))))))


2006-12-28 00:18 <REP> d-------- C:\Documents and Settings\Malina\Application Data\Skype
2006-12-28 00:17 <REP> d-------- C:\Program Files\Fichiers communs\Skype
2006-12-28 00:17 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Skype
2006-12-27 00:08 <REP> dr-h----- C:\Documents and Settings\Malina\Recent
2006-12-18 22:32 <REP> d-------- C:\Program Files\eMule


(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))


2006-12-28 00:17 -------- d-------- C:\Program Files\Skype
2006-12-28 00:17 -------- d-------- C:\Program Files\Fichiers communs
2006-12-26 22:30 -------- d-------- C:\Program Files\SuperCopier
2006-12-26 21:29 -------- d-a------ C:\Program Files\QuickTime
2006-12-26 21:13 -------- d---s---- C:\Documents and Settings\Malina\Application Data\Microsoft
2006-12-24 02:54 -------- d--h----- C:\Program Files\InstallShield Installation Information
2006-12-17 13:41 -------- d-------- C:\Program Files\Internet Explorer
2006-12-17 13:39 -------- d-------- C:\Program Files\Outlook Express
2006-12-17 13:39 -------- d-------- C:\Program Files\Fichiers communs\System
2006-12-07 06:40 2362184 --a------ C:\WINDOWS\system32\wmvcore.dll
2006-11-25 19:55 -------- d-------- C:\Program Files\MSN Messenger
2006-11-25 18:01 -------- d-------- C:\Documents and Settings\Malina\Application Data\AdobeUM
2006-11-23 01:28 -------- d-------- C:\Program Files\CCleaner
2006-11-23 01:27 1496208 --a------ C:\Program Files\ccsetup134.exe
2006-11-22 22:44 -------- d-------- C:\Program Files\Grisoft
2006-11-22 22:43 6469352 --a------ C:\Program Files\avgas-setup-7.5.0.50.exe
2006-11-22 22:15 -------- d-------- C:\Program Files\iTunes
2006-11-22 22:15 -------- d-------- C:\Program Files\iPod
2006-11-12 23:23 -------- d-------- C:\Program Files\Soulseek
2006-11-08 05:07 679424 --a------ C:\WINDOWS\system32\inetcomm.dll
2006-10-20 01:38 716800 --a------ C:\WINDOWS\system32\sxs.dll
2006-10-13 12:36 145920 --a------ C:\WINDOWS\system32\nwprovau.dll
2006-10-03 15:27 532480 --a------ C:\Program Files\cwshredder anti spyware.exe


(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))

*Note* empty entries are not shown

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"Skype"="\"C:\\Program Files\\Skype\\Phone\\Skype.exe\" /nosplash /minimized"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"Apoint"="C:\\Program Files\\Apoint2K\\Apoint.exe"
"SiSUSBRG"="C:\\WINDOWS\\SiSUSBrg.exe"
"SiS Tray"="C:\\WINDOWS\\System32\\sistray.EXE"
"SiS KHooker"="C:\\WINDOWS\\System32\\khooker.exe"
"Smapp"="C:\\Program Files\\Analog Devices\\SoundMAX\\SMTray.exe"
"AGRSMMSG"="AGRSMMSG.exe"
"TkBellExe"="\"C:\\Program Files\\Fichiers communs\\Real\\Update_OB\\realsched.exe\" -osboot"
"BDMCon"="\"C:\\Program Files\\Softwin\\BitDefender9\\bdmcon.exe\""
"BDOESRV"="\"C:\\Program Files\\Softwin\\BitDefender9\\bdoesrv.exe\""
"BDNewsAgent"="\"c:\\program files\\softwin\\bitdefender9\\bdnagent.exe\""
"BDSwitchAgent"="\"c:\\program files\\softwin\\bitdefender9\\bdswitch.exe\""
"SunJavaUpdateSched"="C:\\Program Files\\Java\\jre1.5.0_06\\bin\\jusched.exe"
"iTunesHelper"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\""

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]
"Installed"="1"
"NoChange"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]
"Installed"="1"

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components]
"DeskHtmlVersion"=dword:00000110
"DeskHtmlMinorVersion"=dword:00000005
"Settings"=dword:00000001
"GeneralFlags"=dword:00000001

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="Ma page d'accueil"
"Flags"=dword:00000002
"Position"=hex:2c,00,00,00,cc,00,00,00,00,00,00,00,34,03,00,00,e2,02,00,00,00,\
00,00,00,01,00,00,00,01,00,00,00,01,00,00,00,00,00,00,00,00,00,00,00
"CurrentState"=hex:04,00,00,40
"OriginalStateInfo"=hex:18,00,00,00,ff,ff,00,00,ff,ff,00,00,ff,ff,ff,ff,ff,ff,\
ff,ff,04,00,00,00
"RestoredStateInfo"=hex:18,00,00,00,6a,02,00,00,23,00,00,00,a4,00,00,00,9a,00,\
00,00,01,00,00,00

[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\System32\\CTFMON.EXE"
"ALUAlert"="C:\\Program Files\\Symantec\\LiveUpdate\\ALUNotify.exe"

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\System32\\CTFMON.EXE"
"ALUAlert"="C:\\Program Files\\Symantec\\LiveUpdate\\ALUNotify.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=""
"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="AVG Anti-Spyware 7.5"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\Run]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload]
"PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}"
"CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}"
"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"
"SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}"
"UPnPMonitor"="{e57ce738-33e8-4c51-8354-bb4de9d215d1}"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"


Contents of the 'Scheduled Tasks' folder
C:\WINDOWS\tasks\AppleSoftwareUpdate.job

Completion time: 06-12-28 1:46:56.46
C:\ComboFix.txt ... 06-12-28 01:46
C:\ComboFix2.txt ... 06-12-27 00:14
C:\ComboFix3.txt ... 06-11-24 22:07
PrécédentOntheWaterfront
nov. 06
OntheWaterfront
déc. 06
Suivant
REPONSES
boulepate62
nov. 06
OntheWaterfront
nov. 06
OntheWaterfront
nov. 06
boulepate62
nov. 06
OntheWaterfront
nov. 06
boulepate62
nov. 06
OntheWaterfront
nov. 06
OntheWaterfront
nov. 06
OntheWaterfront
déc. 06
Version Web
Mentions légales (c)2009
Réalisé par RedShift
no save