############################## | UsbFix V 7.166 | [Recherche] Utilisateur: ceraphine (Administrateur) # PC-DE-CERAPHINE Mis à jour le 26/02/2014 par El Desaparecido - Team SosVirus Lancé à 23:02:44 | 10/03/2014 Site Web : http://www.usbfix.net/ Changelog : http://www.usbfix.net/maj/ Support : http://www.sosvirus.net/ Upload Malware : http://www.sosvirus.net/upload_malware.php Contact : http://www.usbfix.net/contact/ PC: Hewlett-Packard (30C2) CPU: AMD Turion(tm) 64 X2 Mobile Technology TL-58 RAM -> [Total : 895 Mo| Free : 278 Mo] Bios: Hewlett-Packard Boot: Normal boot OS: Microsoft® Windows Vista™ Professionnel (6.0.6002 32-Bit) Service Pack 2 WB: Windows Internet Explorer : 9.0.8112.16421 WB: Google Chrome : 33.0.1750.146 WB: Mozilla Firefox : 26.0 SC: Security Center [Enabled] WU: Windows Update [Enabled] AV: AVG Internet Security 2014 [Enabled | Updated] AS: AVG Internet Security 2014 [Enabled | Updated] FW: AVG Internet Security 2014 [Enabled] FW: Windows FireWall [(!) Disabled] AS: Malwarebytes' Anti-Malware : 1.75.0001 C:\ (%systemdrive%) -> Disque fixe # 102 Go (21 Go libre(s) - 20%) [] # NTFS D:\ -> CD-ROM E:\ -> Disque fixe # 2 Go (1 Go libre(s) - 82%) [OS_TOOLS] # NTFS F:\ -> Disque fixe # 8 Go (731 Mo libre(s) - 9%) [HP_RECOVERY] # NTFS G:\ -> CD-ROM H:\ -> Disque fixe # 931 Go (56 Go libre(s) - 6%) [My Book] # NTFS ################## | Processus Actif | C:\PROGRA~1\AVG\AVG2014\avgrsx.exe (ID: 580 |ParentID: 568) C:\Program Files\AVG\AVG2014\avgcsrvx.exe (ID: 620 |ParentID: 580) C:\Windows\system32\csrss.exe (ID: 828 |ParentID: 816) C:\Windows\system32\wininit.exe (ID: 880 |ParentID: 816) C:\Windows\system32\csrss.exe (ID: 892 |ParentID: 872) C:\Windows\system32\services.exe (ID: 932 |ParentID: 880) C:\Windows\system32\winlogon.exe (ID: 964 |ParentID: 872) C:\Windows\system32\lsass.exe (ID: 992 |ParentID: 880) C:\Windows\system32\lsm.exe (ID: 1012 |ParentID: 880) C:\Windows\system32\svchost.exe (ID: 1144 |ParentID: 932) C:\Windows\System32\svchost.exe (ID: 1196 |ParentID: 932) C:\Windows\system32\svchost.exe (ID: 1244 |ParentID: 932) C:\Windows\system32\Ati2evxx.exe (ID: 1388 |ParentID: 932) C:\Windows\System32\svchost.exe (ID: 1416 |ParentID: 932) C:\Windows\System32\svchost.exe (ID: 1480 |ParentID: 932) C:\Windows\system32\svchost.exe (ID: 1496 |ParentID: 932) C:\Windows\system32\svchost.exe (ID: 1628 |ParentID: 932) C:\Windows\system32\SLsvc.exe (ID: 1656 |ParentID: 932) C:\Windows\system32\svchost.exe (ID: 1672 |ParentID: 932) C:\Windows\system32\Ati2evxx.exe (ID: 1848 |ParentID: 1388) C:\Windows\system32\svchost.exe (ID: 1888 |ParentID: 932) C:\Windows\System32\spoolsv.exe (ID: 804 |ParentID: 932) C:\Windows\system32\WLANExt.exe (ID: 816 |ParentID: 1480) C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe (ID: 896 |ParentID: 932) C:\Windows\system32\svchost.exe (ID: 1588 |ParentID: 932) C:\Program Files\ActivIdentity\ActivClient\acevents.exe (ID: 1776 |ParentID: 896) C:\Windows\system32\AEADISRV.EXE (ID: 2184 |ParentID: 932) C:\Program Files\LSI SoftModem\agrsmsvc.exe (ID: 2200 |ParentID: 932) C:\Program Files\AVG\AVG2014\avgfws.exe (ID: 2232 |ParentID: 932) C:\Program Files\AVG\AVG2014\avgidsagent.exe (ID: 2248 |ParentID: 932) C:\Program Files\AVG\AVG2014\avgwdsvc.exe (ID: 2276 |ParentID: 932) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe (ID: 2292 |ParentID: 932) C:\Windows\system32\svchost.exe (ID: 2308 |ParentID: 932) C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe (ID: 2396 |ParentID: 932) C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe (ID: 2800 |ParentID: 932) C:\Program Files\Common Files\LightScribe\LSSrvc.exe (ID: 2940 |ParentID: 932) C:\Program Files\ma-config.com\MaConfigAgent.exe (ID: 2972 |ParentID: 932) C:\Program Files\AVG\AVG2014\avgnsx.exe (ID: 3044 |ParentID: 2276) C:\Program Files\AVG\AVG2014\avgemcx.exe (ID: 3052 |ParentID: 2276) C:\Program Files\PDF Complete\pdfsvc.exe (ID: 3116 |ParentID: 932) C:\Windows\system32\svchost.exe (ID: 3500 |ParentID: 932) c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe (ID: 3584 |ParentID: 932) c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (ID: 3620 |ParentID: 932) C:\Windows\system32\svchost.exe (ID: 3692 |ParentID: 932) C:\Windows\System32\svchost.exe (ID: 3828 |ParentID: 932) C:\Windows\system32\Dwm.exe (ID: 3860 |ParentID: 1480) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (ID: 3884 |ParentID: 932) C:\Program Files\Windows Media Player\wmpnetwk.exe (ID: 3996 |ParentID: 932) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (ID: 2196 |ParentID: 3884) C:\Windows\system32\SearchIndexer.exe (ID: 2412 |ParentID: 932) C:\Program Files\AVG\AVG2014\avgcsrvx.exe (ID: 4100 |ParentID: 3044) C:\Windows\system32\taskeng.exe (ID: 4268 |ParentID: 1496) C:\Windows\System32\wbem\WmiPrvSE.exe (ID: 4560 |ParentID: 1144) C:\Windows\system32\svchost.exe (ID: 5132 |ParentID: 932) C:\Program Files\Google\Update\GoogleUpdate.exe (ID: 5252 |ParentID: 5228) C:\Windows\explorer.exe (ID: 5348 |ParentID: 1448) C:\Windows\system32\taskeng.exe (ID: 5552 |ParentID: 1496) C:\Program Files\Windows Media Player\wmpnscfg.exe (ID: 5652 |ParentID: 5348) C:\Windows\system32\SearchProtocolHost.exe (ID: 4204 |ParentID: 2412) C:\Windows\system32\SearchFilterHost.exe (ID: 2900 |ParentID: 2412) C:\Windows\System32\mobsync.exe (ID: 3224 |ParentID: 1144) ################## | Regedit Run | 04 - HKCU\..\Run : [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe 04 - HKLM\..\Run : [] 04 - HKLM\..\Run : [hpWirelessAssistant] c:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe 04 - HKLM\..\Run : [AVG_UI] "C:\Program Files\AVG\AVG2014\avgui.exe" /TRAYONLY 04 - HKLM\..\Run : [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" 04 - HKLM\..\Run : [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun 04 - HKU\S-1-5-19\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem 04 - HKU\S-1-5-19\..\Run : [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter 04 - HKU\S-1-5-20\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem 04 - HKU\S-1-5-20\..\Run : [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter 04 - HKU\S-1-5-21-4143526012-125387529-3862239965-1006\..\Run : [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe ################## | Recherche générique | ################## | Registre | ################## | E.O.F | http://www.usbfix.net/ - http://www.sosvirus.net |