no save
Identification
Assistance
Achat
News

Forum | virus/sécurité
problème avec secure32.html
martinicmiel, le sam. 30 déc. 2006 à 13:21:17
Administrateur - sam. 30/12/2006 13:25:23,76 Service Pack 4
ComboFix 06.11.27 - Running from: "C:\Documents and Settings\Administrateur\Bureau"

((((((((((((((((((((((((((((((( Files Created from 2006-11-30 to 2006-12-30 ))))))))))))))))))))))))))))))))))


2006-12-30 11:51 1,882 --a------ C:\WINNT\system32\tmp.reg
2006-12-30 11:36 <DIR> d-------- C:\Program Files\Sunbelt Software
2006-12-30 01:18 <DIR> d-------- C:\Program Files\a-squared Free
2006-12-30 00:47 3,968 --a------ C:\WINNT\system32\drivers\AvgAsCln.sys
2006-12-30 00:31 <DIR> d-------- C:\WINNT\Fichiers d'installation de Windows Update
2006-12-30 00:17 73,728 --a------ C:\WINNT\system32\out.dll
2006-12-30 00:15 0 --a------ C:\mvjhsl.exe
2006-12-30 00:15 0 --a------ C:\jnjabmmt.exe
2006-12-30 00:14 0 --a------ C:\qguv.exe
2006-12-30 00:14 0 --a------ C:\kcuqwo.exe
2006-12-30 00:14 0 --a------ C:\clfiuub.exe
2006-12-30 00:14 0 --a------ C:\chuym.exe
2006-12-29 22:55 <DIR> d-------- C:\Program Files\CCleaner
2006-12-29 18:17 90,112 --a------ C:\WINNT\system32\AVASTSS.scr
2006-12-29 18:17 87,424 --a------ C:\WINNT\system32\drivers\aswmon2.sys
2006-12-29 18:17 85,952 --a------ C:\WINNT\system32\drivers\aswmon.sys
2006-12-29 18:17 666,240 --a------ C:\WINNT\system32\aswBoot.exe
2006-12-29 18:17 36,176 --a------ C:\WINNT\system32\drivers\aswTdi.sys
2006-12-29 18:17 24,560 --a------ C:\WINNT\system32\drivers\aavmker4.sys
2006-12-29 18:17 16,352 --a------ C:\WINNT\system32\drivers\aswRdr.sys
2006-12-29 18:17 <DIR> d-------- C:\Program Files\Alwil Software
2006-12-29 18:16 93,696 --a------ C:\WINNT\system32\hrcopul.dll
2006-12-29 18:16 71,680 --a------ C:\WINNT\system32\nweipeg.dll
2006-12-29 18:16 656 --a------ C:\WINNT\system32\sfc_os.dll
2006-12-29 18:16 43,008 --a------ C:\WINNT\system32\msvcrl.dll
2006-12-29 18:15 73,728 --a------ C:\juyey.exe
2006-12-29 18:15 42,725 --a------ C:\cxbqler.exe
2006-12-29 17:25 141,824 -r-hs---- C:\WINNT\system32\vncmgr.exe
2006-12-29 14:23 <DIR> d-------- C:\Program Files\Mozilla Firefox
2006-12-29 14:23 <DIR> d-------- C:\Documents and Settings\Administrateur\Application Data\Mozilla
2006-12-28 16:06 1,352,192 -r-hs---- C:\WINNT\system32\link.exe


(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))


2006-12-30 00:17 0 --a------ C:\Documents and Settings\Administrateur\Application Data\amlistx.dat
2006-12-29 21:41 264 --a------ C:\WINNT\system32\winsusrm.dll
2006-12-08 02:02 2174976 --a------ C:\WINNT\system32\wmvcore.dll
2006-11-06 12:47 596480 --a------ C:\WINNT\system32\INETCOMM.DLL


(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))

*Note* empty entries are not shown

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"HTML Help System"="hhs.pif"
"swg"="C:\\Program Files\\Google\\GoogleToolbarNotifier\\1.0.720.3640\\GoogleToolbarNotifier.exe"
"SWClient"=""
"Aapp"=""
"CCB Enhancement"=""
"sys32cmd"=""
"Hot_Kiss"=""

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\runservices]
"HTML Help System"="hhs.pif"
"UMGR32.EXE"=""

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"Promon.exe"="Promon.exe"
"Synchronization Manager"="mobsync.exe /logon"
"SunJavaUpdateSched"="C:\\Program Files\\Java\\jre1.5.0_06\\bin\\jusched.exe"
"Creative WebCam Tray"="C:\\Program Files\\Creative\\Shared Files\\CAMTRAY.EXE"
"WinampAgent"="C:\\Program Files\\Winamp\\winampa.exe"
"HTML Help System"="hhs.pif"
"REGSHAVE"="C:\\Program Files\\REGSHAVE\\REGSHAVE.EXE /AUTORUN"
"iTunesHelper"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\""
"QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"
"hrcopul.dll"="C:\\WINNT\\system32\\rundll32.exe \"C:\\Documents and Settings\\Default User\\Local Settings\\Application Data\\hrcopul.dll\",vuljcec"
"avast!"="C:\\PROGRA~1\\ALWILS~1\\Avast4\\ashDisp.exe"
"!AVG Anti-Spyware"="\"C:\\Program Files\\Grisoft\\AVG Anti-Spyware 7.5\\avgas.exe\" /minimized"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runservices]
"HTML Help System"="hhs.pif"
"sqvawaigtqdaycoayqiav"="C:\\WINNT\\system32\\rgutmlk.exe"

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components]
"DeskHtmlVersion"=dword:00000110
"DeskHtmlMinorVersion"=dword:00000003
"Settings"=dword:00000001
"GeneralFlags"=dword:00000000

[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"internat.exe"="internat.exe"
"ALUAlert"="C:\\Program Files\\Symantec\\LiveUpdate\\ALUNotify.exe"
"Microsoft"="vncmgr.exe"

[HKEY_USERS\.default\software\microsoft\windows\currentversion\runonce]
"^SetupICWDesktop"="C:\\Program Files\\Internet Explorer\\Connection Wizard\\icwconn1.exe /desktop"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=""
"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="AVG Anti-Spyware 7.5"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000095
"CDRAutoRun"=dword:00000000

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\Run]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000095

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload]
"Network.ConnectionTray"="{7007ACCF-3202-11D1-AAD2-00805FC1270E}"
"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"
"SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"

Completion time: Sat 2006-12-30 13:26:53.39
C:\ComboFix.txt ... 06-12-30 13:26
C:\ComboFix3.txt ... 06-12-30 12:10
C:\ComboFix2.txt ... 06-12-30 12:57
Précédentmartinicmiel
déc. 06
Chercheurbis
déc. 06
Suivant
REPONSES
martinicmiel
déc. 06
martinicmiel
déc. 06
martinicmiel
déc. 06
martinicmiel
déc. 06
martinicmiel
déc. 06
Chercheurbis
déc. 06
martinicmiel
déc. 06
martinicmiel
déc. 06
martinicmiel
déc. 06
Chercheurbis
janv. 07
Version Web
Mentions légales (c)2009
Réalisé par RedShift
no save