############################## | UsbFix V 7.159 | [Suppression]

Utilisateur: Mon ordinateur (Administrateur) # MONORDINATEUR
Mis à jour le 06/01/2014 par El Desaparecido - Team SosVirus
Lancé à 23:21:18 | 08/01/2014

Site Web : http://www.usbfix.net
Changelog : http://www.usbfix.net/maj/
Support : http://www.sosvirus.net/
Upload Malware : http://www.sosvirus.net/upload_malware.php
Contact : http://www.usbfix.net/contact/

PC: Packard Bell (SJE01_CT)
CPU: Intel(R) Atom(TM) CPU N2600   @ 1.60GHz
RAM -> [Total : 1012 Mo| Free : 347 Mo]
Bios: Insyde Corp.
Boot: Normal boot

OS: Microsoft Windows 7 Édition Starter  (6.1.7601 32-Bit) Service Pack 1
WB: Windows Internet Explorer : 10.0.9200.16750
WB: Google Chrome : 31.0.1650.57
WB: Mozilla Firefox : 23.0.1

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: avast! Antivirus [Enabled | Updated]
AS: Windows Defender : 6.1.7600.16385 (win7_rtm.090713-1255)
AS: Malwarebytes' Anti-Malware : 1.75.0001
FW: Windows FireWall Service [Enabled]

C:\ (%systemdrive%) -> Disque fixe # 285 Go (147 Go libre(s) - 52%) [Packard Bell] # NTFS
D:\ -> Disque amovible # 4 Go (2 Go libre(s) - 56%) [] # FAT32

################## | Processus Stoppés |

Stoppé! C:\Program Files\AVAST Software\Avast\AvastSvc.exe (ID: 1380 |ParentID: 600)
Stoppé! C:\Program Files\AVAST Software\Avast\AvastUI.exe (ID: 3256 |ParentID: 3836)
Stoppé! C:\Windows\System32\rundll32.exe (ID: 4496 |ParentID: 764)
Stoppé! C:\Windows\System32\WUDFHost.exe (ID: 4516 |ParentID: 984)
Stoppé! C:\Program Files\Launch Manager\dsiwmis.exe (ID: 3756 |ParentID: 600)
Stoppé! C:\Program Files\Launch Manager\LMworker.exe (ID: 3600 |ParentID: 3756)
Stoppé! C:\Program Files\Launch Manager\LMutilps32.exe (ID: 5552 |ParentID: 3756)
Stoppé! C:\Windows\system32\SearchIndexer.exe (ID: 5924 |ParentID: 600)
Stoppé! C:\Windows\system32\NOTEPAD.EXE (ID: 4824 |ParentID: 6088)

################## | Regedit Run |

04 - HKLM\..\Run : [Norton Online Backup] C:\Program Files\Symantec\Norton Online Backup\NOBuClient.exe
04 - HKLM\..\Run : [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
04 - HKLM\..\Run : [IgfxTray] C:\Windows\system32\igfxtray.exe
04 - HKLM\..\Run : [HotKeysCmds] C:\Windows\system32\hkcmd.exe
04 - HKLM\..\Run : [Persistence] C:\Windows\system32\igfxpers.exe
04 - HKLM\..\Run : [GfxServiceInstall] C:\Windows\system32\GfxCUIServiceInstall.vbs
04 - HKLM\..\Run : [LManager] C:\Program Files\Launch Manager\LManager.exe
04 - HKLM\..\Run : [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
04 - HKLM\..\Run : [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
04 - HKLM\..\Run : [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
04 - HKLM\..\Run : [Power Management] C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe
04 - HKLM\..\Run : [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
04 - HKLM\..\RunOnce : [] 
04 - HKU\S-1-5-19\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-19\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe

################## | Recherche générique |

Supprimé! C:\Users\Mon ordinateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\iTunesHelper.vbe
Supprimé! C:\Users\MONORD~1\AppData\Local\Temp\iTunesHelper.vbe
Supprimé! D:\iTunesHelper.vbe
Supprimé! D:\120105_001.lnk
Supprimé! D:\120106_001.lnk
Supprimé! D:\120106_002.lnk
Supprimé! D:\120107_001.lnk
Supprimé! D:\elizabethga_xvid.lnk
Supprimé! D:\SanDiskSecureAccess.lnk
Supprimé! D:\Fanfictions.lnk
Supprimé! D:\RunSanDiskSecureAccess_Win.lnk
Supprimé! D:\CM civilisation GB séance 8 end 18th century and early 19th.lnk
Supprimé! D:\cm Civilisation GB séance 5 British expansion n Road to democracy.lnk
Supprimé! D:\cm Civilisation GB séance 6 18th - Britain's paradoxes -opponents to liberalism.lnk
Supprimé! D:\cm Civilisation GB séance 11 WW1 n 2.lnk
Supprimé! D:\CM civilisation GB séance 9 franchise n chartism.lnk
Supprimé! D:\CM Civilisation GB séance 10.lnk
Supprimé! D:\CM8 civilisation GB end 18th century and early 19th.lnk
Supprimé! D:\131211_001.lnk
Supprimé! D:\120101_002.lnk
Supprimé! D:\écriture.lnk

(!) Fichiers temporaires supprimés.

################## | Registre |


################## | Listing |

[28/09/2012 - 16:56:18 | SD] - C:\$Recycle.Bin
[10/06/2009 - 22:42:20 | A | 0 Ko] - C:\autoexec.bat
[28/03/2012 - 20:47:13 | D] - C:\book
[16/12/2011 - 11:30:38 | N | 8 Ko] - C:\BOOTSECT.BAK
[02/01/2014 - 14:05:23 | D] - C:\Config.Msi
[10/06/2009 - 22:42:20 | N | 0 Ko] - C:\config.sys
[14/07/2009 - 05:53:55 | SHD] - C:\Documents and Settings
[08/01/2014 - 21:13:20 | ASH | 777444 Ko] - C:\hiberfil.sys
[28/03/2012 - 20:48:50 | D] - C:\Intel
[06/09/2013 - 20:33:25 | RHD] - C:\MSOCache
[28/09/2012 - 16:56:06 | D] - C:\OEM
[08/01/2014 - 21:27:58 | ASH | 1081344 Ko] - C:\pagefile.sys
[14/07/2009 - 03:37:05 | D] - C:\PerfLogs
[02/01/2014 - 14:01:28 | D] - C:\Program Files
[26/11/2013 - 18:49:40 | HD] - C:\ProgramData
[28/09/2012 - 16:53:25 | SD] - C:\Recovery
[08/01/2014 - 19:04:29 | SD] - C:\System Volume Information
[08/01/2014 - 23:21:21 | D] - C:\UsbFix
[08/01/2014 - 23:26:11 | A | 5 Ko | 7F477F78EA7ABC8EDE9B8C239D3CF995] - C:\UsbFix [Clean 2] MONORDINATEUR.txt
[08/01/2014 - 22:55:04 | N | 6 Ko | CCEE1B110D6926900BB784AD270BB862] - C:\UsbFix [Scan 2] MONORDINATEUR.txt
[08/01/2014 - 23:19:58 | N | 6 Ko | 09AF1CD8D0848BAD1CFE919E988CA2CC] - C:\UsbFix [Scan 4] MONORDINATEUR.txt
[28/09/2012 - 16:53:38 | D] - C:\Users
[04/01/2014 - 18:31:35 | D] - C:\Windows
[27/11/2012 - 15:38:26 | D] - D:\SanDiskSecureAccess
[15/02/2012 - 00:39:36 | N | 29986 Ko | 53AF21EEB4894CA7C84A5A65E50D7A49] - D:\RunSanDiskSecureAccess_Win.exe
[09/10/2014 - 12:08:46 | N | 68226 Ko] - D:\cm Civilisation GB séance 5 British expansion n Road to democracy.MP3
[31/12/2011 - 23:00:00 | N | 55843 Ko] - D:\cm Civilisation GB séance 6 18th - Britain's paradoxes -opponents to liberalism.MP3
[06/11/2013 - 14:02:16 | N | 71319 Ko] - D:\CM civilisation GB séance 8 end 18th century and early 19th.MP3
[13/11/2013 - 13:02:12 | N | 78958 Ko] - D:\CM civilisation GB séance 9 franchise n chartism.MP3
[07/01/2012 - 04:05:10 | N | 66281 Ko] - D:\CM Civilisation GB séance 10.MP3
[04/12/2013 - 13:03:22 | N | 65882 Ko] - D:\cm Civilisation GB séance 11 WW1 n 2.MP3
[06/11/2013 - 14:02:16 | N | 71319 Ko] - D:\CM8 civilisation GB end 18th century and early 19th.MP3
[11/12/2013 - 13:04:48 | N | 70907 Ko] - D:\131211_001.MP3
[01/01/2012 - 00:50:54 | N | 82626 Ko] - D:\120101_002.MP3
[05/01/2012 - 05:05:20 | N | 81508 Ko] - D:\120105_001.MP3
[06/01/2012 - 04:36:22 | N | 25238 Ko] - D:\120106_001.MP3
[06/01/2012 - 05:07:10 | N | 78972 Ko] - D:\120106_002.MP3
[07/01/2012 - 04:05:10 | N | 66281 Ko] - D:\120107_001.MP3
[08/01/2014 - 23:20:00 | RASHD] - D:\Autorun.inf
[17/11/2013 - 04:23:36 | N | 712524 Ko] - D:\elizabethga_xvid.avi
[24/06/2013 - 23:21:14 | D] - D:\écriture
[25/04/2012 - 19:29:28 | D] - D:\Fanfictions

################## | Vaccin |

D:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

################## | E.O.F | http://www.usbfix.net - http://www.sosvirus.net |