Publicité
Publicité
Format du document : text/plain
Prévisualisation
############################## | UsbFix V 7.164 | [Recherche]
Utilisateur: HP (Administrateur) # HP-PC
Mis � jour le05/02/2014 par El Desaparecido - Team SosVirus
Lanc� � 22:30:51 | 13/02/2014
Site Web : http://www.usbfix.net/
Changelog : http://www.usbfix.net/maj/
Support : http://www.sosvirus.net/
Upload Malware : http://www.sosvirus.net/upload_malware.php
Contact : http://www.usbfix.net/contact/
PC: Hewlett-Packard (3674)
CPU: Intel(R) Core(TM) i3 CPU M 370 @ 2.40GHz
RAM -> [Total : 3894 Mo| Free : 1023 Mo]
Bios: Hewlett-Packard
Boot: Normal boot
OS: Microsoft Windows�7 �dition Int�grale (6.1.7601 64-Bit) Service Pack 1
WB: Windows Internet Explorer : 8.0.7601.17514
WB: Google Chrome : 32.0.1700.107
SC: Security Center [Enabled]
WU: Windows Update [Enabled]
AV: avast! Antivirus [(!) Disabled | Updated]
AS: avast! Antivirus [(!) Disabled | Updated]
AS: Windows Defender [Enabled | (!) Outdated]
FW: Windows FireWall [(!) Disabled]
C:\ (%systemdrive%) -> Disque fixe # 195 Go (84 Go libre(s) - 43%) [] # NTFS
D:\ -> Disque fixe # 103 Go (56 Go libre(s) - 55%) [] # NTFS
E:\ -> CD-ROM
F:\ -> Disque amovible # 7 Go (2 Go libre(s) - 23%) [KINGSTON] # FAT32
H:\ -> Disque amovible # 7 Go (1 Go libre(s) - 21%) [SAMYA MF] # FAT32
################## | Processus Actif |
C:\Windows\system32\csrss.exe (ID: 448 |ParentID: 432)
C:\Windows\system32\wininit.exe (ID: 516 |ParentID: 432)
C:\Windows\system32\csrss.exe (ID: 536 |ParentID: 524)
C:\Windows\system32\services.exe (ID: 580 |ParentID: 516)
C:\Windows\system32\lsass.exe (ID: 596 |ParentID: 516)
C:\Windows\system32\lsm.exe (ID: 604 |ParentID: 516)
C:\Windows\system32\winlogon.exe (ID: 672 |ParentID: 524)
C:\Windows\system32\svchost.exe (ID: 756 |ParentID: 580)
C:\Windows\system32\svchost.exe (ID: 852 |ParentID: 580)
C:\Windows\System32\svchost.exe (ID: 932 |ParentID: 580)
C:\Windows\System32\svchost.exe (ID: 984 |ParentID: 580)
C:\Windows\system32\svchost.exe (ID: 120 |ParentID: 580)
C:\Windows\system32\svchost.exe (ID: 868 |ParentID: 580)
C:\Windows\system32\svchost.exe (ID: 1172 |ParentID: 580)
C:\Windows\system32\svchost.exe (ID: 1288 |ParentID: 580)
C:\Program Files\AVAST Software\Avast\AvastSvc.exe (ID: 1332 |ParentID: 580)
C:\Windows\System32\spoolsv.exe (ID: 1476 |ParentID: 580)
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (ID: 1728 |ParentID: 580)
C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (ID: 1784 |ParentID: 580)
C:\Program Files\Bonjour\mDNSResponder.exe (ID: 1820 |ParentID: 580)
C:\OrCAD\license_manager\lmgrd.exe (ID: 1860 |ParentID: 580)
C:\Windows\system32\conhost.exe (ID: 1896 |ParentID: 448)
C:\ProgramData\DatacardService\HWDeviceService64.exe (ID: 1912 |ParentID: 580)
C:\OrCAD\license_manager\lmgrd.exe (ID: 1936 |ParentID: 1860)
C:\ProgramData\Internet Mobile\OnlineUpdate\ouc.exe (ID: 2000 |ParentID: 1964)
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (ID: 1060 |ParentID: 580)
C:\Windows\system32\svchost.exe (ID: 1104 |ParentID: 580)
C:\Windows\system32\taskhost.exe (ID: 2520 |ParentID: 580)
C:\Windows\system32\Dwm.exe (ID: 2612 |ParentID: 984)
C:\Windows\Explorer.EXE (ID: 2648 |ParentID: 2560)
C:\Windows\System32\igfxtray.exe (ID: 2912 |ParentID: 2648)
C:\Windows\System32\hkcmd.exe (ID: 2920 |ParentID: 2648)
C:\Windows\System32\igfxpers.exe (ID: 2928 |ParentID: 2648)
C:\ProgramData\DatacardService\DCSHelper.exe (ID: 1136 |ParentID: 1912)
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe (ID: 1108 |ParentID: 2648)
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe (ID: 2272 |ParentID: 2648)
C:\Program Files\Windows Sidebar\sidebar.exe (ID: 1692 |ParentID: 2648)
C:\Windows\System32\StikyNot.exe (ID: 2684 |ParentID: 2648)
C:\Program Files\AVAST Software\Avast\AvastUI.exe (ID: 3008 |ParentID: 2752)
C:\Program Files (x86)\Athan\Athan.exe (ID: 3172 |ParentID: 2752)
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (ID: 3336 |ParentID: 2752)
C:\Windows\SysWOW64\vmnat.exe (ID: 3460 |ParentID: 580)
C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe (ID: 3628 |ParentID: 2752)
C:\Windows\SysWOW64\vmnetdhcp.exe (ID: 3644 |ParentID: 580)
C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe (ID: 3756 |ParentID: 580)
C:\Windows\system32\SearchIndexer.exe (ID: 3860 |ParentID: 580)
C:\Windows\system32\svchost.exe (ID: 4060 |ParentID: 580)
C:\Windows\System32\svchost.exe (ID: 4840 |ParentID: 580)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 2456 |ParentID: 2648)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 4860 |ParentID: 2456)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 1524 |ParentID: 2456)
C:\Windows\system32\wbem\wmiprvse.exe (ID: 4216 |ParentID: 756)
C:\Windows\system32\WUDFHost.exe (ID: 5108 |ParentID: 984)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 2992 |ParentID: 2456)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 3892 |ParentID: 2456)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 2304 |ParentID: 2456)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 4416 |ParentID: 2456)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 4816 |ParentID: 2456)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 3680 |ParentID: 2456)
C:\Windows\system32\NOTEPAD.EXE (ID: 224 |ParentID: 872)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 1700 |ParentID: 2456)
C:\Windows\system32\msiexec.exe (ID: 392 |ParentID: 580)
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe (ID: 5704 |ParentID: 580)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 5568 |ParentID: 2456)
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (ID: 2628 |ParentID: 580)
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe (ID: 5600 |ParentID: 580)
C:\Windows\System32\WScript.exe (ID: 4268 |ParentID: 5672)
C:\Windows\System32\svchost.exe (ID: 4256 |ParentID: 580)
C:\Windows\servicing\TrustedInstaller.exe (ID: 2332 |ParentID: 580)
C:\Windows\System32\WScript.exe (ID: 2532 |ParentID: 1028)
C:\Windows\system32\vssvc.exe (ID: 1548 |ParentID: 580)
C:\Windows\system32\SearchProtocolHost.exe (ID: 4376 |ParentID: 3860)
C:\Windows\system32\SearchFilterHost.exe (ID: 4208 |ParentID: 3860)
C:\Windows\system32\igfxsrvc.exe (ID: 3092 |ParentID: 756)
C:\Program Files (x86)\Java\jre7\bin\keytool.exe (ID: 1084 |ParentID: 1332)
C:\Windows\system32\conhost.exe (ID: 4808 |ParentID: 448)
################## | Regedit Run |
04 - HKCU\..\Run : [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
04 - HKCU\..\Run : [install_flashplayer] wscript.exe //B "C:\Users\HP\AppData\Local\Temp\install_flashplayer.vbs"
04 - HKCU\..\Run : [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
04 - HKCU\..\Run : [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
04 - HKCU\..\Run : [SysDrivers] wscript.exe //B "C:\Users\HP\AppData\Roaming\SysDrivers.vbs"
04 - HKLM\..\Run : [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
04 - HKLM\..\Run : [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
04 - HKLM\..\Run : [adiras] C:\Windows\adirasx64.exe
04 - HKLM\..\Run : [Athan] C:\Program Files (x86)\Athan\Athan.exe
04 - HKLM\..\Run : [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
04 - HKLM\..\Run : [vmware-tray] "C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe"
04 - HKLM\..\RunOnce : []
04 - HKLM64\..\Run : [IgfxTray] C:\Windows\system32\igfxtray.exe
04 - HKLM64\..\Run : [HotKeysCmds] C:\Windows\system32\hkcmd.exe
04 - HKLM64\..\Run : [Persistence] C:\Windows\system32\igfxpers.exe
04 - HKLM64\..\Run : [AtherosBtStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
04 - HKLM64\..\Run : [AthBtTray] "C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
04 - HKU\S-1-5-19\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-21-1530809197-2676860455-784948724-1000\..\Run : [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
04 - HKU\S-1-5-21-1530809197-2676860455-784948724-1000\..\Run : [install_flashplayer] wscript.exe //B "C:\Users\HP\AppData\Local\Temp\install_flashplayer.vbs"
04 - HKU\S-1-5-21-1530809197-2676860455-784948724-1000\..\Run : [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
04 - HKU\S-1-5-21-1530809197-2676860455-784948724-1000\..\Run : [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
04 - HKU\S-1-5-21-1530809197-2676860455-784948724-1000\..\Run : [SysDrivers] wscript.exe //B "C:\Users\HP\AppData\Roaming\SysDrivers.vbs"
04 - HKU\S-1-5-19\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
################## | Recherche g�n�rique |
Pr�sent! C:\Users\HP\AppData\Roaming\SysDrivers.vbs
Pr�sent! C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SysDrivers.vbs
Pr�sent! F:\SysDrivers.vbs
Pr�sent! H:\SysDrivers.vbs
Pr�sent! F:\Gantt2.lnk
Pr�sent! F:\RAPPORT FINAL( SOLARINNOV).lnk
Pr�sent! F:\dialna.lnk
Pr�sent! F:\MATLAB 2010 install.lnk
Pr�sent! F:\MATLAB_R2012b_new.lnk
Pr�sent! H:\SetupSimple.lnk
Pr�sent! H:\activate.lnk
Pr�sent! H:\autorun.lnk
Pr�sent! H:\install_guide.lnk
Pr�sent! H:\installer_input.lnk
Pr�sent! H:\license.lnk
Pr�sent! H:\readme.lnk
Pr�sent! H:\setup.lnk
Pr�sent! H:\version.lnk
Pr�sent! H:\archives.lnk
Pr�sent! H:\bin.lnk
Pr�sent! H:\etc.lnk
Pr�sent! H:\help.lnk
Pr�sent! H:\java.lnk
Pr�sent! H:\serial.lnk
Pr�sent! H:\sys.lnk
Pr�sent! H:\utils.lnk
################## | Registre |
Pr�sent! HKU\S-1-5-21-1530809197-2676860455-784948724-1000\Software\Microsoft\Windows\CurrentVersion\Run|SysDrivers
Pr�sent! HKCU\Software\Microsoft\Windows\CurrentVersion\Run|SysDrivers
################## | Vaccin |
H:\Autorun.inf -> Vaccin cr�� par UsbFix (El Desaparecido)
################## | E.O.F | http://www.usbfix.net/ - http://www.sosvirus.net |
Utilisateur: HP (Administrateur) # HP-PC
Mis � jour le05/02/2014 par El Desaparecido - Team SosVirus
Lanc� � 22:30:51 | 13/02/2014
Site Web : http://www.usbfix.net/
Changelog : http://www.usbfix.net/maj/
Support : http://www.sosvirus.net/
Upload Malware : http://www.sosvirus.net/upload_malware.php
Contact : http://www.usbfix.net/contact/
PC: Hewlett-Packard (3674)
CPU: Intel(R) Core(TM) i3 CPU M 370 @ 2.40GHz
RAM -> [Total : 3894 Mo| Free : 1023 Mo]
Bios: Hewlett-Packard
Boot: Normal boot
OS: Microsoft Windows�7 �dition Int�grale (6.1.7601 64-Bit) Service Pack 1
WB: Windows Internet Explorer : 8.0.7601.17514
WB: Google Chrome : 32.0.1700.107
SC: Security Center [Enabled]
WU: Windows Update [Enabled]
AV: avast! Antivirus [(!) Disabled | Updated]
AS: avast! Antivirus [(!) Disabled | Updated]
AS: Windows Defender [Enabled | (!) Outdated]
FW: Windows FireWall [(!) Disabled]
C:\ (%systemdrive%) -> Disque fixe # 195 Go (84 Go libre(s) - 43%) [] # NTFS
D:\ -> Disque fixe # 103 Go (56 Go libre(s) - 55%) [] # NTFS
E:\ -> CD-ROM
F:\ -> Disque amovible # 7 Go (2 Go libre(s) - 23%) [KINGSTON] # FAT32
H:\ -> Disque amovible # 7 Go (1 Go libre(s) - 21%) [SAMYA MF] # FAT32
################## | Processus Actif |
C:\Windows\system32\csrss.exe (ID: 448 |ParentID: 432)
C:\Windows\system32\wininit.exe (ID: 516 |ParentID: 432)
C:\Windows\system32\csrss.exe (ID: 536 |ParentID: 524)
C:\Windows\system32\services.exe (ID: 580 |ParentID: 516)
C:\Windows\system32\lsass.exe (ID: 596 |ParentID: 516)
C:\Windows\system32\lsm.exe (ID: 604 |ParentID: 516)
C:\Windows\system32\winlogon.exe (ID: 672 |ParentID: 524)
C:\Windows\system32\svchost.exe (ID: 756 |ParentID: 580)
C:\Windows\system32\svchost.exe (ID: 852 |ParentID: 580)
C:\Windows\System32\svchost.exe (ID: 932 |ParentID: 580)
C:\Windows\System32\svchost.exe (ID: 984 |ParentID: 580)
C:\Windows\system32\svchost.exe (ID: 120 |ParentID: 580)
C:\Windows\system32\svchost.exe (ID: 868 |ParentID: 580)
C:\Windows\system32\svchost.exe (ID: 1172 |ParentID: 580)
C:\Windows\system32\svchost.exe (ID: 1288 |ParentID: 580)
C:\Program Files\AVAST Software\Avast\AvastSvc.exe (ID: 1332 |ParentID: 580)
C:\Windows\System32\spoolsv.exe (ID: 1476 |ParentID: 580)
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (ID: 1728 |ParentID: 580)
C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (ID: 1784 |ParentID: 580)
C:\Program Files\Bonjour\mDNSResponder.exe (ID: 1820 |ParentID: 580)
C:\OrCAD\license_manager\lmgrd.exe (ID: 1860 |ParentID: 580)
C:\Windows\system32\conhost.exe (ID: 1896 |ParentID: 448)
C:\ProgramData\DatacardService\HWDeviceService64.exe (ID: 1912 |ParentID: 580)
C:\OrCAD\license_manager\lmgrd.exe (ID: 1936 |ParentID: 1860)
C:\ProgramData\Internet Mobile\OnlineUpdate\ouc.exe (ID: 2000 |ParentID: 1964)
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (ID: 1060 |ParentID: 580)
C:\Windows\system32\svchost.exe (ID: 1104 |ParentID: 580)
C:\Windows\system32\taskhost.exe (ID: 2520 |ParentID: 580)
C:\Windows\system32\Dwm.exe (ID: 2612 |ParentID: 984)
C:\Windows\Explorer.EXE (ID: 2648 |ParentID: 2560)
C:\Windows\System32\igfxtray.exe (ID: 2912 |ParentID: 2648)
C:\Windows\System32\hkcmd.exe (ID: 2920 |ParentID: 2648)
C:\Windows\System32\igfxpers.exe (ID: 2928 |ParentID: 2648)
C:\ProgramData\DatacardService\DCSHelper.exe (ID: 1136 |ParentID: 1912)
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe (ID: 1108 |ParentID: 2648)
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe (ID: 2272 |ParentID: 2648)
C:\Program Files\Windows Sidebar\sidebar.exe (ID: 1692 |ParentID: 2648)
C:\Windows\System32\StikyNot.exe (ID: 2684 |ParentID: 2648)
C:\Program Files\AVAST Software\Avast\AvastUI.exe (ID: 3008 |ParentID: 2752)
C:\Program Files (x86)\Athan\Athan.exe (ID: 3172 |ParentID: 2752)
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (ID: 3336 |ParentID: 2752)
C:\Windows\SysWOW64\vmnat.exe (ID: 3460 |ParentID: 580)
C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe (ID: 3628 |ParentID: 2752)
C:\Windows\SysWOW64\vmnetdhcp.exe (ID: 3644 |ParentID: 580)
C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe (ID: 3756 |ParentID: 580)
C:\Windows\system32\SearchIndexer.exe (ID: 3860 |ParentID: 580)
C:\Windows\system32\svchost.exe (ID: 4060 |ParentID: 580)
C:\Windows\System32\svchost.exe (ID: 4840 |ParentID: 580)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 2456 |ParentID: 2648)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 4860 |ParentID: 2456)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 1524 |ParentID: 2456)
C:\Windows\system32\wbem\wmiprvse.exe (ID: 4216 |ParentID: 756)
C:\Windows\system32\WUDFHost.exe (ID: 5108 |ParentID: 984)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 2992 |ParentID: 2456)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 3892 |ParentID: 2456)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 2304 |ParentID: 2456)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 4416 |ParentID: 2456)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 4816 |ParentID: 2456)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 3680 |ParentID: 2456)
C:\Windows\system32\NOTEPAD.EXE (ID: 224 |ParentID: 872)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 1700 |ParentID: 2456)
C:\Windows\system32\msiexec.exe (ID: 392 |ParentID: 580)
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe (ID: 5704 |ParentID: 580)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 5568 |ParentID: 2456)
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (ID: 2628 |ParentID: 580)
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe (ID: 5600 |ParentID: 580)
C:\Windows\System32\WScript.exe (ID: 4268 |ParentID: 5672)
C:\Windows\System32\svchost.exe (ID: 4256 |ParentID: 580)
C:\Windows\servicing\TrustedInstaller.exe (ID: 2332 |ParentID: 580)
C:\Windows\System32\WScript.exe (ID: 2532 |ParentID: 1028)
C:\Windows\system32\vssvc.exe (ID: 1548 |ParentID: 580)
C:\Windows\system32\SearchProtocolHost.exe (ID: 4376 |ParentID: 3860)
C:\Windows\system32\SearchFilterHost.exe (ID: 4208 |ParentID: 3860)
C:\Windows\system32\igfxsrvc.exe (ID: 3092 |ParentID: 756)
C:\Program Files (x86)\Java\jre7\bin\keytool.exe (ID: 1084 |ParentID: 1332)
C:\Windows\system32\conhost.exe (ID: 4808 |ParentID: 448)
################## | Regedit Run |
04 - HKCU\..\Run : [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
04 - HKCU\..\Run : [install_flashplayer] wscript.exe //B "C:\Users\HP\AppData\Local\Temp\install_flashplayer.vbs"
04 - HKCU\..\Run : [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
04 - HKCU\..\Run : [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
04 - HKCU\..\Run : [SysDrivers] wscript.exe //B "C:\Users\HP\AppData\Roaming\SysDrivers.vbs"
04 - HKLM\..\Run : [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
04 - HKLM\..\Run : [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
04 - HKLM\..\Run : [adiras] C:\Windows\adirasx64.exe
04 - HKLM\..\Run : [Athan] C:\Program Files (x86)\Athan\Athan.exe
04 - HKLM\..\Run : [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
04 - HKLM\..\Run : [vmware-tray] "C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe"
04 - HKLM\..\RunOnce : []
04 - HKLM64\..\Run : [IgfxTray] C:\Windows\system32\igfxtray.exe
04 - HKLM64\..\Run : [HotKeysCmds] C:\Windows\system32\hkcmd.exe
04 - HKLM64\..\Run : [Persistence] C:\Windows\system32\igfxpers.exe
04 - HKLM64\..\Run : [AtherosBtStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
04 - HKLM64\..\Run : [AthBtTray] "C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
04 - HKU\S-1-5-19\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-21-1530809197-2676860455-784948724-1000\..\Run : [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
04 - HKU\S-1-5-21-1530809197-2676860455-784948724-1000\..\Run : [install_flashplayer] wscript.exe //B "C:\Users\HP\AppData\Local\Temp\install_flashplayer.vbs"
04 - HKU\S-1-5-21-1530809197-2676860455-784948724-1000\..\Run : [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
04 - HKU\S-1-5-21-1530809197-2676860455-784948724-1000\..\Run : [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
04 - HKU\S-1-5-21-1530809197-2676860455-784948724-1000\..\Run : [SysDrivers] wscript.exe //B "C:\Users\HP\AppData\Roaming\SysDrivers.vbs"
04 - HKU\S-1-5-19\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
################## | Recherche g�n�rique |
Pr�sent! C:\Users\HP\AppData\Roaming\SysDrivers.vbs
Pr�sent! C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SysDrivers.vbs
Pr�sent! F:\SysDrivers.vbs
Pr�sent! H:\SysDrivers.vbs
Pr�sent! F:\Gantt2.lnk
Pr�sent! F:\RAPPORT FINAL( SOLARINNOV).lnk
Pr�sent! F:\dialna.lnk
Pr�sent! F:\MATLAB 2010 install.lnk
Pr�sent! F:\MATLAB_R2012b_new.lnk
Pr�sent! H:\SetupSimple.lnk
Pr�sent! H:\activate.lnk
Pr�sent! H:\autorun.lnk
Pr�sent! H:\install_guide.lnk
Pr�sent! H:\installer_input.lnk
Pr�sent! H:\license.lnk
Pr�sent! H:\readme.lnk
Pr�sent! H:\setup.lnk
Pr�sent! H:\version.lnk
Pr�sent! H:\archives.lnk
Pr�sent! H:\bin.lnk
Pr�sent! H:\etc.lnk
Pr�sent! H:\help.lnk
Pr�sent! H:\java.lnk
Pr�sent! H:\serial.lnk
Pr�sent! H:\sys.lnk
Pr�sent! H:\utils.lnk
################## | Registre |
Pr�sent! HKU\S-1-5-21-1530809197-2676860455-784948724-1000\Software\Microsoft\Windows\CurrentVersion\Run|SysDrivers
Pr�sent! HKCU\Software\Microsoft\Windows\CurrentVersion\Run|SysDrivers
################## | Vaccin |
H:\Autorun.inf -> Vaccin cr�� par UsbFix (El Desaparecido)
################## | E.O.F | http://www.usbfix.net/ - http://www.sosvirus.net |