[b]############################## | UsbFix V 7.176 | [Nettoyage][/b] Utilisateur: ho 2000 (Administrateur) # HP Mis à jour le 18/07/2014 par El Desaparecido - SosVirus Lancé à 17:46:16 | 23/07/2014 Site Web : [url=http://www.usbfix.net/]http://www.usbfix.net/[/url] Changelog : [url=http://www.usbfix.net/maj/]http://www.usbfix.net/maj/[/url] Assistance : [url=http://www.sosvirus.net/]http://www.sosvirus.net/[/url] Upload Malware : [url=http://www.sosvirus.net/upload_malware.php]http://www.sosvirus.net/upload_malware.php[/url] Contact : [url=http://www.usbfix.net/contact/]http://www.usbfix.net/contact/[/url] [b]################## | System information |[/b] MB: Hewlett-Packard (1854) CPU: Intel(R) Pentium(R) CPU 2030M @ 2.50GHz GC: Intel(R) HD Graphics RAM -> [Total : 3985 Mo | Free : 2511 Mo] Bios: Insyde Boot: Normal boot OS: Microsoft™ Windows 8 (6.2.9200 64-Bit) WB: Internet Explorer : 10.00.9200.16384 WB: Google Chrome : 38.0.2101.0 WB: Mozilla Firefox : 30.0 WB: Safari : 534.57.2 WB: Opera : 23.0.1522.60 [b]################## | Security Information |[/b] AV: Avira Desktop [Actif |A jour] AV: Windows Defender [[b](!) Désactivé[/b] |A jour] AS: Avira Desktop [Actif |A jour] AS: Windows Defender [[b](!) Désactivé[/b] |A jour] FW: Windows Firewall [[b](!) Désactivé[/b]] SC: Security Center [Actif] WU: Windows Update [Actif] [b]################## | Disk Information |[/b] C:\ (%SystemDrive%) -> Disque fixe # 339 Go (276 Go libre(s) - 81%) [Windows] # NTFS D:\ -> Disque fixe # 22 Go (2 Go libre(s) - 10%) [RECOVERY] # NTFS F:\ -> Disque fixe # 337 Go (295 Go libre(s) - 88%) [Données] # NTFS G:\ -> Disque amovible # 7 Go (7 Go libre(s) - 100%) [NOZESS CI] # FAT32 [b]################## | Processus Stoppés |[/b] C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe (ID: 1044|ParentID: 676) C:\Program Files (x86)\Stardock\Start8\Start8_64.exe (ID: 1076|ParentID: 1044) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE (ID: 1084|ParentID: 676) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (ID: 1104|ParentID: 1084) C:\Windows\System32\spoolsv.exe (ID: 1304|ParentID: 676) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (ID: 1584|ParentID: 676|SYSTEM) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe (ID: 1680|ParentID: 676|SYSTEM) C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe (ID: 1780|ParentID: 676|SYSTEM) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe (ID: 1860|ParentID: 676|SYSTEM) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (ID: 1892|ParentID: 676|SYSTEM) C:\Program Files\Intel\iCLS Client\HeciServer.exe (ID: 1932|ParentID: 676|SYSTEM) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (ID: 1952|ParentID: 676|SYSTEM) C:\Program Files\ma-config.com\MaConfigAgent.exe (ID: 1980|ParentID: 676|SYSTEM) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe (ID: 1340|ParentID: 676|SYSTEM) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe (ID: 2104|ParentID: 676|SYSTEM) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe (ID: 2200|ParentID: 676|SYSTEM) C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe (ID: 2228|ParentID: 676|SYSTEM) C:\Windows\System32\taskhostex.exe (ID: 3268|ParentID: 676|ho 2000) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (ID: 3304|ParentID: 676|ho 2000) C:\Program Files (x86)\SMADAV\SM?RTP.exe (ID: 3316|ParentID: 676|ho 2000) C:\Windows\explorer.exe (ID: 3476|ParentID: 3420|ho 2000) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe (ID: 3576|ParentID: 1340|ho 2000) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe (ID: 3772|ParentID: 1340|SYSTEM) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe (ID: 3780|ParentID: 1340|SYSTEM) C:\Windows\System32\SearchIndexer.exe (ID: 1064|ParentID: 676|SYSTEM) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (ID: 4000|ParentID: 1560|ho 2000) C:\Program Files (x86)\Internet Download Manager\IDMan.exe (ID: 4228|ParentID: 3476|ho 2000) C:\Users\ho 2000\AppData\Roaming\uTorrent\uTorrent.exe (ID: 4272|ParentID: 3476|ho 2000) C:\Program Files (x86)\ManyCam\ManyCam.exe (ID: 4284|ParentID: 3476|ho 2000) C:\Program Files (x86)\Yahoo!\Search Protection\SearchProtection.exe (ID: 4352|ParentID: 3476|ho 2000) C:\Program Files\Windows Sidebar\sidebar.exe (ID: 4520|ParentID: 3476|ho 2000) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe (ID: 4568|ParentID: 676|ho 2000) C:\Google\AutoIt3.exe (ID: 4644|ParentID: 4556|ho 2000) C:\Program Files (x86)\Bible Verse\verse.exe (ID: 4700|ParentID: 3476|ho 2000) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (ID: 4720|ParentID: 676|ho 2000) C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe (ID: 4736|ParentID: 4228|ho 2000) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (ID: 4944|ParentID: 4692|ho 2000) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe (ID: 4952|ParentID: 4692|ho 2000) C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe (ID: 5012|ParentID: 4692|ho 2000) C:\Windows\System32\WUDFHost.exe (ID: 4308|ParentID: 352|LOCAL SERVICE) C:\Windows\System32\LocationNotifications.exe (ID: 5372|ParentID: 676|ho 2000) C:\Program Files (x86)\Yahoo!\Messenger\Ymsgr_tray.exe (ID: 5468|ParentID: 4324|ho 2000) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 5936|ParentID: 5896|ho 2000) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 4824|ParentID: 5936|ho 2000) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe (ID: 5676|ParentID: 676|SYSTEM) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe (ID: 5752|ParentID: 676|SYSTEM) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (ID: 864|ParentID: 676|SYSTEM) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (ID: 2876|ParentID: 676|SYSTEM) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (ID: 5464|ParentID: 676|SYSTEM) C:\Windows\System32\WUDFHost.exe (ID: 6076|ParentID: 352|LOCAL SERVICE) [b]################## | Autorun |[/b] [b]################## | Recherche générique |[/b] Supprimé! C:\Google\googleupdate.a3x Supprimé! G:\My Games.lnk Supprimé! G:\My Pictuers.lnk Supprimé! G:\My Videos.lnk Supprimé! G:\Hot.lnk Supprimé! G:\Downloads.lnk Supprimé! G:\Movies.lnk Supprimé! D:\Skypee\googleupdate.a3x Supprimé! F:\Skypee\googleupdate.a3x Supprimé! G:\Skypee\googleupdate.a3x Supprimé! C:\Skypee\AutoIt3.exe Supprimé! C:\Skypee\Google.lnk Supprimé! C:\Skypee\googleupdate.a3x Supprimé! C:\Skypee\GoogleUpdate.lnk Supprimé! C:\Skypee\Skypee.lnk Supprimé! C:\Skypee\Windowsupdate.lnk Supprimé! C:\Skypee Supprimé! D:\Skypee\AutoIt3.exe Supprimé! D:\Skypee\Google.lnk Supprimé! D:\Skypee\GoogleUpdate.lnk Supprimé! D:\Skypee\Skypee.lnk Supprimé! D:\Skypee\Windowsupdate.lnk Supprimé! D:\Skypee Supprimé! F:\Skypee\AutoIt3.exe Supprimé! F:\Skypee\Google.lnk Supprimé! F:\Skypee\GoogleUpdate.lnk Supprimé! F:\Skypee\Skypee.lnk Supprimé! F:\Skypee\Windowsupdate.lnk Supprimé! F:\Skypee Supprimé! G:\Skypee\AutoIt3.exe Supprimé! G:\Skypee\Google.lnk Supprimé! G:\Skypee\GoogleUpdate.lnk Supprimé! G:\Skypee\Skypee.lnk Supprimé! G:\Skypee\Windowsupdate.lnk Supprimé! G:\Skypee (!) Fichiers temporaires supprimés. [b]################## | Registre |[/b] Supprimé! HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\Software\Microsoft\Windows\CurrentVersion\Run|Windows Update Supprimé! HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\Software\.\.\.\.\Mountpoints2\{9dfedbee-bb2a-11e3-be7c-9cb654c22c80} [b]################## | Regedit Run |[/b] F2 - HKLM\..\Winlogon : [Shell] Explorer.exe F2 - [x64] HKLM\..\Winlogon : [Shell] explorer.exe F2 - HKLM\..\Winlogon : [Userinit] C:\Windows\system32\userinit.exe F2 - [x64] HKLM\..\Winlogon : [Userinit] C:\Windows\System32\Userinit.exe, F3 - HKCU\..\Winlogon : [Shell] Explorer.exe 04 - HKCU\..\Run : [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot 04 - HKCU\..\Run : [uTorrent] "C:\Users\ho 2000\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED 04 - HKCU\..\Run : [ManyCam] "C:\Program Files (x86)\ManyCam\ManyCam.exe" --silent 04 - HKCU\..\Run : [Messenger (Yahoo!)] "C:\PROGRA~2\Yahoo!\Messenger\YahooMessenger.exe" -quiet 04 - HKCU\..\Run : [Search Protection] C:\Program Files (x86)\Yahoo!\Search Protection\SearchProtection.exe 04 - HKCU\..\Run : [Facebook Update] "C:\Users\ho 2000\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver 04 - HKCU\..\Run : [CCleaner] "C:\Program Files\CCleaner\CCleaner64.exe" /AUTO 04 - HKCU\..\Run : [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun 04 - HKCU\..\Run : [AdopeUpdate] C:\Google\GoogleUpdate.lnk 04 - HKCU\..\Run : [AdopeFlash] C:\Google\AutoIt3.exe /AutoIt3ExecuteScript C:\Google\googleupdate.a3x 04 - HKLM\..\Run : [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" 04 - HKLM\..\Run : [HPMessageService] C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe 04 - HKLM\..\Run : [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" 04 - HKLM\..\Run : [YSearchProtection] "C:\Program Files (x86)\Yahoo!\Search Protection\SearchProtection.exe" 04 - HKLM\..\Run : [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min 04 - HKLM\..\Run : [Avira Systray] C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe 04 - [x64] HKLM\..\RunOnce : [NCPluginUpdater] "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update 04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot 04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [uTorrent] "C:\Users\ho 2000\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED 04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [ManyCam] "C:\Program Files (x86)\ManyCam\ManyCam.exe" --silent 04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [Messenger (Yahoo!)] "C:\PROGRA~2\Yahoo!\Messenger\YahooMessenger.exe" -quiet 04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [Search Protection] C:\Program Files (x86)\Yahoo!\Search Protection\SearchProtection.exe 04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [Facebook Update] "C:\Users\ho 2000\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver 04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [CCleaner] "C:\Program Files\CCleaner\CCleaner64.exe" /AUTO 04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun 04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [AdopeUpdate] C:\Google\GoogleUpdate.lnk 04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [AdopeFlash] C:\Google\AutoIt3.exe /AutoIt3ExecuteScript C:\Google\googleupdate.a3x [b]################## | C:\ %SystemDrive% - Disque Fixe (NTFS) |[/b] [23/07/2014 - 17:34:18 | ASH | 3264732 Ko] - C:\hiberfil.sys [23/07/2014 - 17:34:59 | ASH | 4194304 Ko] - C:\pagefile.sys [23/07/2014 - 17:34:59 | ASH | 262144 Ko] - C:\swapfile.sys [03/07/2014 - 21:44:27 | D] - C:\SYSTEM.SAV [05/05/2014 - 19:18:34 | SHD] - C:\$Recycle.Bin [04/08/2012 - 01:21:37 | RASH | 8 Ko] - C:\BOOTSECT.BAK [02/06/2012 - 16:30:55 | N | 0 Ko] - C:\BOOTNXT [26/07/2012 - 05:44:30 | RASH | 389 Ko] - C:\bootmgr [26/07/2012 - 09:33:46 | D] - C:\PerfLogs [04/08/2012 - 00:39:51 | D] - C:\inetpub [04/08/2012 - 01:21:36 | SHD] - C:\Boot [03/04/2014 - 13:48:27 | D] - C:\Users [03/04/2014 - 14:10:12 | RHD] - C:\MSOCache [11/06/2014 - 22:40:09 | D] - C:\Program Files [03/07/2014 - 21:44:26 | D] - C:\HP [03/07/2014 - 21:44:27 | D] - C:\sources [03/07/2014 - 21:44:27 | D] - C:\SWSetup [03/07/2014 - 21:44:27 | D] - C:\Windows Activation Technologies [19/07/2014 - 22:35:44 | D] - C:\Program Files (x86) [20/07/2014 - 21:48:18 | HD] - C:\ProgramData [23/07/2014 - 14:44:17 | SHD] - C:\System Volume Information [23/07/2014 - 16:07:11 | D] - C:\Windows [23/07/2014 - 16:11:24 | D] - C:\[Smad-Cage] [23/07/2014 - 17:45:53 | D] - C:\UsbFix [23/07/2014 - 17:49:28 | D] - C:\Google [b]################## | D:\ - Disque Fixe (NTFS) |[/b] [26/07/2012 - 21:57:10 | N | 1319 Ko] - D:\bootmgr.efi [03/04/2014 - 13:52:13 | SHD] - D:\$RECYCLE.BIN [26/07/2012 - 20:44:32 | RASH | 389 Ko] - D:\bootmgr [07/06/2014 - 15:20:00 | SHD] - D:\System Volume Information [03/07/2014 - 21:44:27 | RSHD] - D:\boot [03/07/2014 - 21:44:28 | D] - D:\EFI [03/07/2014 - 21:44:28 | D] - D:\hp [03/07/2014 - 21:44:28 | RSHD] - D:\preload [03/07/2014 - 21:44:28 | RSD] - D:\recovery [03/07/2014 - 21:44:28 | D] - D:\RM_Reserve [b]################## | F:\ - Disque Fixe (NTFS) |[/b] [14/04/2014 - 14:50:42 | SHD] - F:\$RECYCLE.BIN [03/07/2014 - 21:44:28 | D] - F:\Films [03/07/2014 - 21:44:28 | D] - F:\Ivoire MIX DJ [03/07/2014 - 21:44:28 | D] - F:\Jeux [03/07/2014 - 21:44:29 | D] - F:\Nouveau dossier Musik (RNB) [03/07/2014 - 21:44:29 | D] - F:\Rap et zouk [03/07/2014 - 21:44:29 | SHD] - F:\System Volume Information [06/07/2014 - 15:17:55 | D] - F:\Vidéos [07/07/2014 - 03:58:40 | D] - F:\NEWS VIDEO [07/07/2014 - 03:58:41 | D] - F:\R&B USA [08/07/2014 - 01:49:57 | D] - F:\Musik ivoire [20/07/2014 - 17:16:50 | D] - F:\Dossier Sylvie [20/07/2014 - 17:16:50 | D] - F:\Dossier Thème [21/07/2014 - 16:05:39 | D] - F:\Docs Jésus [22/07/2014 - 04:52:33 | D] - F:\MUSIC DJ SCARFACE [b]################## | G:\ - Disque USB (FAT32) |[/b] [23/07/2014 - 11:38:04 | N | 6281 Ko | SHA1: E44E75492BE30EC16EDBDED81D2B7E3271CA5A51] - G:\OSGS14-WindowsUpgradeAssistant-32bitand64bit-ClientSKU-4141411.exe [b]################## | Vaccin |[/b] D:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido) F:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido) G:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido) [b]################## | E.O.F | [url=http://www.sosvirus.net/]http://www.sosvirus.net/[/url] | [url=http://www.usbfix.net/]http://www.usbfix.net/[/url] |[/b]