cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

############################## | UsbFix V 7.167 | [Recherche]

Utilisateur: Administrateur (Administrateur) # PC
Mis � jour le 13/03/2014 par El Desaparecido - Team SosVirus
Lanc� � 06:37:58 | 11/04/2015

Site Web : http://www.usbfix.net/
Changelog : http://www.usbfix.net/maj/
Support : http://www.sosvirus.net/forum-virus-securite.html
Upload Malware : http://www.sosvirus.net/upload_malware.php
Contact : http://www.usbfix.net/contact/

CPU: Intel(R) Pentium(R) 4 CPU 2.80GHz
RAM -> [Total : 479 Mo| Free : 282 Mo]
Bios: Phoenix/Award Technologies, LTD
Boot: Normal boot

OS: Microsoft Windows XP Professionnel (5.1.2600 32-Bit) Service Pack 3
WB: Windows Internet Explorer : 8.0.6001.18702
WB: Google Chrome : 43.0.2351.3

SC: Security Center [Enabled]
WU: Windows Update [Enabled]

FW: Windows FireWall [Enabled]

C:\ (%systemdrive%) -> Disque fixe # 50 Go (35 Go libre(s) - 69%) [] # NTFS
D:\ -> Disque fixe # 25 Go (22 Go libre(s) - 89%) [] # NTFS
F:\ -> CD-ROM

################## | Processus Actif |

C:\WINDOWS\System32\smss.exe (ID: 436 |ParentID: 4)
C:\WINDOWS\system32\winlogon.exe (ID: 672 |ParentID: 436)
C:\WINDOWS\system32\services.exe (ID: 716 |ParentID: 672)
C:\WINDOWS\system32\lsass.exe (ID: 728 |ParentID: 672)
C:\WINDOWS\system32\svchost.exe (ID: 880 |ParentID: 716)
C:\WINDOWS\System32\svchost.exe (ID: 996 |ParentID: 716)
C:\WINDOWS\system32\svchost.exe (ID: 1032 |ParentID: 716)
C:\WINDOWS\system32\spoolsv.exe (ID: 1336 |ParentID: 716)
C:\WINDOWS\system32\svchost.exe (ID: 1444 |ParentID: 716)
C:\Program Files\InternetEverywhere\InternetEverywhere_Service.exe (ID: 1544 |ParentID: 716)
C:\Program Files\ma-config.com\MaConfigAgent.exe (ID: 1580 |ParentID: 716)
C:\WINDOWS\Explorer.EXE (ID: 1768 |ParentID: 1700)
C:\WINDOWS\system32\svchost.exe (ID: 1964 |ParentID: 716)
C:\Program Files\Google\Update\1.3.26.9\GoogleCrashHandler.exe (ID: 344 |ParentID: 1556)
C:\WINDOWS\system32\ctfmon.exe (ID: 308 |ParentID: 1768)
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe (ID: 692 |ParentID: 1768)
C:\Program Files\Shareaza\Shareaza.exe (ID: 844 |ParentID: 1768)
C:\Program Files\Skype\Phone\Skype.exe (ID: 840 |ParentID: 1768)
C:\Program Files\GetRight\getright.exe (ID: 1020 |ParentID: 1768)
C:\Program Files\InternetEverywhere\InternetEverywhere_Launcher.exe (ID: 1096 |ParentID: 1768)
C:\WINDOWS\system32\sistray.exe (ID: 1216 |ParentID: 1768)
C:\WINDOWS\system32\wscntfy.exe (ID: 1080 |ParentID: 996)
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (ID: 2076 |ParentID: 716)
C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe (ID: 2140 |ParentID: 2076)
C:\Program Files\InternetEverywhere\InternetEverywhere.exe (ID: 3700 |ParentID: 1768)

################## | Regedit Run |

F2 - HKLM\..\Winlogon : [Shell] Explorer.exe
F2 - [64bit] HKLM\..\Winlogon : [Shell] Explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] C:\WINDOWS\system32\userinit.exe,
F2 - [64bit] HKLM\..\Winlogon : [Userinit] C:\WINDOWS\system32\userinit.exe,
04 - HKCU\..\Run : [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE
04 - HKCU\..\Run : [win] C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\wocualts.exe
04 - HKCU\..\Run : [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
04 - HKCU\..\Run : [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
04 - HKCU\..\Run : [Shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray
04 - HKCU\..\Run : [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
04 - HKLM\..\Run : [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
04 - HKLM\..\Run : [win] C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\wocualts.exe
04 - HKLM\Software\Microsoft\Windows NT\CurrentVersion\Terminal Server\Install\..\Run : []
04 - HKLM\Software\Microsoft\Windows NT\CurrentVersion\Terminal Server\Install\..\RunOnce : []
04 - HKU\S-1-5-21-1454471165-1229272821-1606980848-500\..\Run : [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE
04 - HKU\S-1-5-21-1454471165-1229272821-1606980848-500\..\Run : [win] C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\wocualts.exe
04 - HKU\S-1-5-21-1454471165-1229272821-1606980848-500\..\Run : [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
04 - HKU\S-1-5-21-1454471165-1229272821-1606980848-500\..\Run : [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
04 - HKU\S-1-5-21-1454471165-1229272821-1606980848-500\..\Run : [Shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray
04 - HKU\S-1-5-21-1454471165-1229272821-1606980848-500\..\Run : [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
04 - HKU\S-1-5-18\..\Run : [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE

################## | Recherche g�n�rique |


################## | Registre |

Pr�sent! HKU\S-1-5-21-1454471165-1229272821-1606980848-500\Software\Microsoft\Windows\CurrentVersion\Run|win
Pr�sent! HKCU\Software\Microsoft\Windows\CurrentVersion\Run|win
Pr�sent! HKLM\Software\Microsoft\Windows\CurrentVersion\Run|win

################## | E.O.F | http://www.usbfix.net/ - http://www.sosvirus.net |

Publicité


Signaler le contenu de ce document

Publicité