Publicité
Publicité
Format du document : text/plain
Prévisualisation
############################## | UsbFix V 7.169 | [Recherche]
Utilisateur: pimiento (Administrateur) # PIMIENTO-PC
Mis � jour le 31/03/2014 par El Desaparecido - Team SosVirus
Lanc� � 20:45:49 | 13/04/2014
Site Web : http://www.usbfix.net/
Changelog : http://www.usbfix.net/maj/
Support : http://www.sosvirus.net/forum-virus-securite.html
Upload Malware : http://www.sosvirus.net/upload_malware.php
Contact : http://www.usbfix.net/contact/
PC: ASUSTeK COMPUTER INC. (B85-PLUS)
CPU: Intel(R) Core(TM) i3-4130 CPU @ 3.40GHz
RAM -> [Total : 8098 Mo| Free : 5920 Mo]
Bios: American Megatrends Inc.
Boot: Normal boot
OS: Microsoft Windows�7 �dition Familiale Premium (6.1.7601 64-Bit) Service Pack 1
WB: Windows Internet Explorer : 11.0.9600.16659
WB: Google Chrome : 34.0.1847.116
SC: Security Center [Enabled]
WU: Windows Update [Enabled]
AV: avast! Antivirus [Enabled | Updated]
AS: Windows Defender [Enabled | Updated]
AS: avast! Antivirus [Enabled | Updated]
FW: Windows FireWall [(!) Disabled]
C:\ (%systemdrive%) -> Disque fixe # 112 Go (30 Go libre(s) - 27%) [] # NTFS
D:\ -> Disque fixe # 182 Go (39 Go libre(s) - 22%) [SAUVWIN] # NTFS
E:\ -> CD-ROM
F:\ -> Disque fixe # 233 Go (112 Go libre(s) - 48%) [Nouveau nom] # NTFS
G:\ -> Disque fixe # 268 Go (195 Go libre(s) - 73%) [IMA] # NTFS
H:\ -> Disque fixe # 482 Go (77 Go libre(s) - 16%) [PROG] # NTFS
I:\ -> CD-ROM
M:\ -> Disque amovible # 2 Go (2 Go libre(s) - 100%) [READY BOOST] # FAT32
N:\ -> CD-ROM
O:\ -> Disque amovible # 4 Go (4 Go libre(s) - 99%) [] # FAT32
################## | Processus Actif |
C:\Windows\system32\csrss.exe (ID: 560 |ParentID: 552)
C:\Windows\system32\wininit.exe (ID: 632 |ParentID: 552)
C:\Windows\system32\csrss.exe (ID: 644 |ParentID: 624)
C:\Windows\system32\services.exe (ID: 692 |ParentID: 632)
C:\Windows\system32\winlogon.exe (ID: 728 |ParentID: 624)
C:\Windows\system32\lsass.exe (ID: 740 |ParentID: 632)
C:\Windows\system32\lsm.exe (ID: 748 |ParentID: 632)
C:\Windows\system32\svchost.exe (ID: 856 |ParentID: 692)
C:\Windows\system32\nvvsvc.exe (ID: 948 |ParentID: 692)
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (ID: 972 |ParentID: 692)
C:\Windows\system32\svchost.exe (ID: 1016 |ParentID: 692)
C:\Windows\System32\svchost.exe (ID: 536 |ParentID: 692)
C:\Windows\System32\svchost.exe (ID: 628 |ParentID: 692)
C:\Windows\system32\svchost.exe (ID: 840 |ParentID: 692)
C:\Windows\system32\svchost.exe (ID: 1040 |ParentID: 692)
C:\Windows\system32\svchost.exe (ID: 1152 |ParentID: 692)
C:\Windows\system32\svchost.exe (ID: 1272 |ParentID: 692)
C:\Program Files\AVAST Software\Avast\AvastSvc.exe (ID: 1340 |ParentID: 692)
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (ID: 1492 |ParentID: 948)
C:\Windows\system32\nvvsvc.exe (ID: 1512 |ParentID: 948)
C:\Windows\System32\spoolsv.exe (ID: 1704 |ParentID: 692)
C:\Windows\system32\svchost.exe (ID: 1736 |ParentID: 692)
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (ID: 1828 |ParentID: 692)
C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe (ID: 1872 |ParentID: 692)
C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe (ID: 1064 |ParentID: 692)
C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.24\AsusFanControlService.exe (ID: 1260 |ParentID: 692)
C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe (ID: 1392 |ParentID: 692)
C:\Program Files\Intel\iCLS Client\HeciServer.exe (ID: 1684 |ParentID: 692)
C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (ID: 2884 |ParentID: 692)
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (ID: 2960 |ParentID: 692)
C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe (ID: 3012 |ParentID: 692)
C:\Windows\SysWOW64\PnkBstrA.exe (ID: 2052 |ParentID: 692)
C:\Windows\system32\svchost.exe (ID: 2080 |ParentID: 692)
C:\Windows\System32\WUDFHost.exe (ID: 2716 |ParentID: 628)
C:\Windows\System32\WUDFHost.exe (ID: 2800 |ParentID: 628)
C:\Windows\system32\svchost.exe (ID: 2880 |ParentID: 692)
C:\Windows\system32\taskhost.exe (ID: 3296 |ParentID: 692)
C:\Windows\system32\Dwm.exe (ID: 3504 |ParentID: 628)
C:\Windows\Explorer.EXE (ID: 3648 |ParentID: 3416)
C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe (ID: 3136 |ParentID: 3648)
C:\Program Files\AVAST Software\Avast\AvastUI.exe (ID: 3356 |ParentID: 1008)
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (ID: 3860 |ParentID: 1492)
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (ID: 1264 |ParentID: 3860)
C:\Windows\system32\taskeng.exe (ID: 3764 |ParentID: 1040)
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (ID: 3632 |ParentID: 2960)
C:\Windows\system32\conhost.exe (ID: 3720 |ParentID: 644)
C:\Program Files\Windows Media Player\wmpnetwk.exe (ID: 3796 |ParentID: 692)
C:\Windows\System32\svchost.exe (ID: 1720 |ParentID: 692)
C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe (ID: 4128 |ParentID: 3764)
C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe (ID: 4160 |ParentID: 3764)
C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr64.exe (ID: 4432 |ParentID: 4736)
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (ID: 4764 |ParentID: 692)
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (ID: 4412 |ParentID: 692)
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (ID: 5036 |ParentID: 692)
C:\Windows\System32\svchost.exe (ID: 4404 |ParentID: 692)
C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\EPUShortCut.exe (ID: 4964 |ParentID: 4160)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 3044 |ParentID: 3648)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 5100 |ParentID: 3044)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 5128 |ParentID: 3044)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 5436 |ParentID: 3044)
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (ID: 5952 |ParentID: 2176)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 6072 |ParentID: 3044)
C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe (ID: 4548 |ParentID: 5612)
C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe (ID: 5892 |ParentID: 1392)
C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe (ID: 5684 |ParentID: 2584)
C:\Windows\system32\AUDIODG.EXE (ID: 1672 |ParentID: 536)
C:\Windows\system32\svchost.exe (ID: 3248 |ParentID: 692)
C:\Windows\System32\WUDFHost.exe (ID: 1188 |ParentID: 628)
C:\Windows\system32\wbem\wmiprvse.exe (ID: 1256 |ParentID: 856)
\\?\C:\Windows\system32\wbem\WMIADAP.EXE (ID: 3896 |ParentID: 1040)
C:\Windows\system32\wbem\wmiprvse.exe (ID: 4504 |ParentID: 856)
################## | Regedit Run |
F2 - HKLM\..\Winlogon : [Shell] explorer.exe
F2 - [x64] HKLM\..\Winlogon : [Shell] explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] userinit.exe,
F2 - [x64] HKLM\..\Winlogon : [Userinit] C:\Windows\system32\userinit.exe,
04 - HKLM\..\Run : [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
04 - HKLM\..\RunOnce : []
04 - [x64] HKLM\..\Run : [IAStorIcon] "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
04 - HKU\S-1-5-19\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-19\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
################## | Recherche g�n�rique |
################## | Registre |
################## | E.O.F | http://www.usbfix.net/ - http://www.sosvirus.net |
Utilisateur: pimiento (Administrateur) # PIMIENTO-PC
Mis � jour le 31/03/2014 par El Desaparecido - Team SosVirus
Lanc� � 20:45:49 | 13/04/2014
Site Web : http://www.usbfix.net/
Changelog : http://www.usbfix.net/maj/
Support : http://www.sosvirus.net/forum-virus-securite.html
Upload Malware : http://www.sosvirus.net/upload_malware.php
Contact : http://www.usbfix.net/contact/
PC: ASUSTeK COMPUTER INC. (B85-PLUS)
CPU: Intel(R) Core(TM) i3-4130 CPU @ 3.40GHz
RAM -> [Total : 8098 Mo| Free : 5920 Mo]
Bios: American Megatrends Inc.
Boot: Normal boot
OS: Microsoft Windows�7 �dition Familiale Premium (6.1.7601 64-Bit) Service Pack 1
WB: Windows Internet Explorer : 11.0.9600.16659
WB: Google Chrome : 34.0.1847.116
SC: Security Center [Enabled]
WU: Windows Update [Enabled]
AV: avast! Antivirus [Enabled | Updated]
AS: Windows Defender [Enabled | Updated]
AS: avast! Antivirus [Enabled | Updated]
FW: Windows FireWall [(!) Disabled]
C:\ (%systemdrive%) -> Disque fixe # 112 Go (30 Go libre(s) - 27%) [] # NTFS
D:\ -> Disque fixe # 182 Go (39 Go libre(s) - 22%) [SAUVWIN] # NTFS
E:\ -> CD-ROM
F:\ -> Disque fixe # 233 Go (112 Go libre(s) - 48%) [Nouveau nom] # NTFS
G:\ -> Disque fixe # 268 Go (195 Go libre(s) - 73%) [IMA] # NTFS
H:\ -> Disque fixe # 482 Go (77 Go libre(s) - 16%) [PROG] # NTFS
I:\ -> CD-ROM
M:\ -> Disque amovible # 2 Go (2 Go libre(s) - 100%) [READY BOOST] # FAT32
N:\ -> CD-ROM
O:\ -> Disque amovible # 4 Go (4 Go libre(s) - 99%) [] # FAT32
################## | Processus Actif |
C:\Windows\system32\csrss.exe (ID: 560 |ParentID: 552)
C:\Windows\system32\wininit.exe (ID: 632 |ParentID: 552)
C:\Windows\system32\csrss.exe (ID: 644 |ParentID: 624)
C:\Windows\system32\services.exe (ID: 692 |ParentID: 632)
C:\Windows\system32\winlogon.exe (ID: 728 |ParentID: 624)
C:\Windows\system32\lsass.exe (ID: 740 |ParentID: 632)
C:\Windows\system32\lsm.exe (ID: 748 |ParentID: 632)
C:\Windows\system32\svchost.exe (ID: 856 |ParentID: 692)
C:\Windows\system32\nvvsvc.exe (ID: 948 |ParentID: 692)
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (ID: 972 |ParentID: 692)
C:\Windows\system32\svchost.exe (ID: 1016 |ParentID: 692)
C:\Windows\System32\svchost.exe (ID: 536 |ParentID: 692)
C:\Windows\System32\svchost.exe (ID: 628 |ParentID: 692)
C:\Windows\system32\svchost.exe (ID: 840 |ParentID: 692)
C:\Windows\system32\svchost.exe (ID: 1040 |ParentID: 692)
C:\Windows\system32\svchost.exe (ID: 1152 |ParentID: 692)
C:\Windows\system32\svchost.exe (ID: 1272 |ParentID: 692)
C:\Program Files\AVAST Software\Avast\AvastSvc.exe (ID: 1340 |ParentID: 692)
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (ID: 1492 |ParentID: 948)
C:\Windows\system32\nvvsvc.exe (ID: 1512 |ParentID: 948)
C:\Windows\System32\spoolsv.exe (ID: 1704 |ParentID: 692)
C:\Windows\system32\svchost.exe (ID: 1736 |ParentID: 692)
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (ID: 1828 |ParentID: 692)
C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe (ID: 1872 |ParentID: 692)
C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe (ID: 1064 |ParentID: 692)
C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.24\AsusFanControlService.exe (ID: 1260 |ParentID: 692)
C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe (ID: 1392 |ParentID: 692)
C:\Program Files\Intel\iCLS Client\HeciServer.exe (ID: 1684 |ParentID: 692)
C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (ID: 2884 |ParentID: 692)
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (ID: 2960 |ParentID: 692)
C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe (ID: 3012 |ParentID: 692)
C:\Windows\SysWOW64\PnkBstrA.exe (ID: 2052 |ParentID: 692)
C:\Windows\system32\svchost.exe (ID: 2080 |ParentID: 692)
C:\Windows\System32\WUDFHost.exe (ID: 2716 |ParentID: 628)
C:\Windows\System32\WUDFHost.exe (ID: 2800 |ParentID: 628)
C:\Windows\system32\svchost.exe (ID: 2880 |ParentID: 692)
C:\Windows\system32\taskhost.exe (ID: 3296 |ParentID: 692)
C:\Windows\system32\Dwm.exe (ID: 3504 |ParentID: 628)
C:\Windows\Explorer.EXE (ID: 3648 |ParentID: 3416)
C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe (ID: 3136 |ParentID: 3648)
C:\Program Files\AVAST Software\Avast\AvastUI.exe (ID: 3356 |ParentID: 1008)
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (ID: 3860 |ParentID: 1492)
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (ID: 1264 |ParentID: 3860)
C:\Windows\system32\taskeng.exe (ID: 3764 |ParentID: 1040)
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (ID: 3632 |ParentID: 2960)
C:\Windows\system32\conhost.exe (ID: 3720 |ParentID: 644)
C:\Program Files\Windows Media Player\wmpnetwk.exe (ID: 3796 |ParentID: 692)
C:\Windows\System32\svchost.exe (ID: 1720 |ParentID: 692)
C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe (ID: 4128 |ParentID: 3764)
C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe (ID: 4160 |ParentID: 3764)
C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr64.exe (ID: 4432 |ParentID: 4736)
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (ID: 4764 |ParentID: 692)
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (ID: 4412 |ParentID: 692)
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (ID: 5036 |ParentID: 692)
C:\Windows\System32\svchost.exe (ID: 4404 |ParentID: 692)
C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\EPUShortCut.exe (ID: 4964 |ParentID: 4160)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 3044 |ParentID: 3648)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 5100 |ParentID: 3044)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 5128 |ParentID: 3044)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 5436 |ParentID: 3044)
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (ID: 5952 |ParentID: 2176)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 6072 |ParentID: 3044)
C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe (ID: 4548 |ParentID: 5612)
C:\Program Files (x86)\HTC\HTC Sync Manager\HTCSyncManager.exe (ID: 5892 |ParentID: 1392)
C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe (ID: 5684 |ParentID: 2584)
C:\Windows\system32\AUDIODG.EXE (ID: 1672 |ParentID: 536)
C:\Windows\system32\svchost.exe (ID: 3248 |ParentID: 692)
C:\Windows\System32\WUDFHost.exe (ID: 1188 |ParentID: 628)
C:\Windows\system32\wbem\wmiprvse.exe (ID: 1256 |ParentID: 856)
\\?\C:\Windows\system32\wbem\WMIADAP.EXE (ID: 3896 |ParentID: 1040)
C:\Windows\system32\wbem\wmiprvse.exe (ID: 4504 |ParentID: 856)
################## | Regedit Run |
F2 - HKLM\..\Winlogon : [Shell] explorer.exe
F2 - [x64] HKLM\..\Winlogon : [Shell] explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] userinit.exe,
F2 - [x64] HKLM\..\Winlogon : [Userinit] C:\Windows\system32\userinit.exe,
04 - HKLM\..\Run : [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
04 - HKLM\..\RunOnce : []
04 - [x64] HKLM\..\Run : [IAStorIcon] "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
04 - HKU\S-1-5-19\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-19\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
################## | Recherche g�n�rique |
################## | Registre |
################## | E.O.F | http://www.usbfix.net/ - http://www.sosvirus.net |