cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

[b]############################## | UsbFix V 7.932 | [Recherche][/b]

Utilisateur: kays (Administrateur) # KAYS-PC
Mis � jour le 04/05/2015 par El Desaparecido - SosVirus
Lanc� � 04:01:28 | 06/05/2015

Site Web : [url=http://www.usbfix.net/]http://www.usbfix.net/[/url]
Changelog : [url=http://www.usbfix.net/maj/]http://www.usbfix.net/maj/[/url]
Assistance : [url=http://www.sosvirus.net/forum-virus-securite.html]http://www.sosvirus.net/forum-virus-securite.html[/url]
D�tection en Live : [url=http://comment-supprimer.fr/]http://comment-supprimer.fr/[/url]
Contact : [url=http://www.usbfix.net/contact/]http://www.usbfix.net/contact/[/url]

[b]################## | System information |[/b]

MB: FUJITSU SIEMENS (EF7)
CPU: Intel(R) Pentium(R) Dual CPU T3400 @ 2.16GHz
GC: Famille de jeu de puces Express Mobile Intel(R) 45 (Microsoft Corporation - WDDM 1.1)
RAM -> [Total : 2909 Mo | Free : 727 Mo]
Bios: Phoenix
Boot: Normal boot

OS: Microsoft� Windows 7 Professional (6.1.7600 32-Bit)
WB: Internet Explorer : 8.00.7600.16385
WB: Opera : 29.0.1795.47

[b]################## | Security Information |[/b]

AV: avast! Antivirus [[b](!) D�sactiv�[/b] |A jour]
AS: Windows Defender [Actif |[b](!) Non � jour[/b]]
AS: avast! Antivirus [[b](!) D�sactiv�[/b] |A jour]
FW: Windows Firewall [[b](!) D�sactiv�[/b]]
SC: Security Center [Actif]
WU: Windows Update [Actif]

[b]################## | Disk Information |[/b]

C:\ (%SystemDrive%) -> Disque fixe # 98 Go (66 Go libre(s) - 67%) [] # NTFS
D:\ -> Disque fixe # 200 Go (188 Go libre(s) - 94%) [] # NTFS
F:\ -> Disque amovible # 4 Go (4 Go libre(s) - 97%) [] # FAT32

[b]################## | Autorun |[/b]


[b]################## | Startup |[/b]

F2 - HKLM\..\Winlogon : [Shell] explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] C:\Windows\system32\userinit.exe,
04 - HKCU\..\Run : [Google Update] "C:\Users\kays\AppData\Local\Google\Update\GoogleUpdate.exe" /c
04 - HKCU\..\Run : [Facebook Update] "C:\Users\kays\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
04 - HKCU\..\Run : [iLivid] "C:\Users\kays\AppData\Local\iLivid\iLivid.exe" -autorun
04 - HKCU\..\Run : [DrvUpdater] C:\Users\kays\AppData\Roaming\DRPSu\DrvUpdater.exe /hide
04 - HKCU\..\Run : [Yahoo! Search] C:\Users\kays\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.25.0\dsrlte.exe
04 - HKCU\..\Run : [notepad] wscript.exe //B "C:\Users\kays\AppData\Roaming\notepad\\notepad.vbe"
04 - HKLM\..\Run : [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
04 - HKLM\..\Run : [AvastUI.exe] "C:\Program Files\Alwil Software\Avast5\AvastUI.exe" /nogui
04 - HKU\S-1-5-19\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-21-632197518-3645500878-309184464-1000\..\Run : [Google Update] "C:\Users\kays\AppData\Local\Google\Update\GoogleUpdate.exe" /c
04 - HKU\S-1-5-21-632197518-3645500878-309184464-1000\..\Run : [Facebook Update] "C:\Users\kays\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
04 - HKU\S-1-5-21-632197518-3645500878-309184464-1000\..\Run : [iLivid] "C:\Users\kays\AppData\Local\iLivid\iLivid.exe" -autorun
04 - HKU\S-1-5-21-632197518-3645500878-309184464-1000\..\Run : [DrvUpdater] C:\Users\kays\AppData\Roaming\DRPSu\DrvUpdater.exe /hide
04 - HKU\S-1-5-21-632197518-3645500878-309184464-1000\..\Run : [Yahoo! Search] C:\Users\kays\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.25.0\dsrlte.exe
04 - HKU\S-1-5-21-632197518-3645500878-309184464-1000\..\Run : [notepad] wscript.exe //B "C:\Users\kays\AppData\Roaming\notepad\\notepad.vbe"
04 - HKU\S-1-5-19\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04GS - notepad.lnk : C:\Users\kays\AppData\Roaming\notepad\notepad.vbe
04GS - Screen Capturer.lnk : C:\Program Files\Screen Capturer\ScreenCapturer.exe
04GS - McAfee Security Scan Plus.lnk : C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe

[b]################## | Recherche g�n�rique |[/b]

Pr�sent! C:\Users\kays\AppData\Roaming\notepad\notepad.vbe
Pr�sent! F:\notepad.vbe
Pr�sent! D:\Documents.lnk
Pr�sent! D:\Music.lnk
Pr�sent! D:\New Folder.lnk
Pr�sent! D:\Passwords.lnk
Pr�sent! D:\Pictures.lnk
Pr�sent! D:\Video.lnk
Pr�sent! F:\FoxitReader708.lnk
Pr�sent! F:\Nouveau dossier.lnk
Pr�sent! F:\scann�.lnk
Pr�sent! C:\Users\kays\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\notepad.lnk

[b]################## | Registre |[/b]

Pr�sent! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Pr�sent! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Pr�sent! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe
Pr�sent! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Pr�sent! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Pr�sent! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe
Pr�sent! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe
Pr�sent! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip
Pr�sent! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe
Pr�sent! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe
Pr�sent! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe
Pr�sent! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe
Pr�sent! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe
Pr�sent! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe
Pr�sent! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe
Pr�sent! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe
Pr�sent! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe
Pr�sent! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe
Pr�sent! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe
Pr�sent! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro
Pr�sent! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera
Pr�sent! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe
Pr�sent! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe
Pr�sent! HKCU\Software\Microsoft\Windows\CurrentVersion\Run|notepad
Pr�sent! HKU\S-1-5-21-632197518-3645500878-309184464-1000\Software\Microsoft\Windows\CurrentVersion\Run|notepad

[b]################## | UsbFix - Information |[/b]

Info : [url=https://www.youtube.com/watch?v=vUZYYASd7FE]Comment supprimer l'infection des raccourcis sur USB ? (Video)[/url]
Info : [url=http://www.usbfix.net/2014/10/supprimer-virus-raccourcis-usb/]L'infection des raccourcis USB, c'est quoi ?[/url]
D�tection en Live : [url=http://comment-supprimer.fr/]http://comment-supprimer.fr/[/url]

[b]################## | Attrib - Restore |[/b]


[b]################## | E.O.F | [url=http://www.sosvirus.net/]http://www.sosvirus.net/[/url] | [url=http://www.usbfix.net/]http://www.usbfix.net/[/url] |[/b]

Publicité


Signaler le contenu de ce document

Publicité