cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

[b]############################## | UsbFix V 8.163 | [Research][/b]

User: AOurhadja (Administrator) # AOURHADJA-PC
Updated 08/12/2015 by SosVirus
Started at 10:09:58 | 09/12/2015

Website : [url=http://www.en.usbfix.net/]http://www.en.usbfix.net/[/url]
Tutorial : [url=http://www.pt.usbfix.net/2014/03/tutorial-do-usbfix-scan/]http://www.pt.usbfix.net/2014/03/tutorial-do-usbfix-scan/[/url]
Support : [url=http://www.sos-virus.net/]http://www.sos-virus.net/[/url]
Live detection : [url=http://how-to-remove.us/]http://how-to-remove.us/[/url]
Contact : [url=http://www.en.usbfix.net/contact/]http://www.en.usbfix.net/contact/[/url]

[b]################## | System information |[/b]

MB: Hewlett-Packard (17F9)
CPU: Intel(R) Core(TM) i7-2670QM CPU @ 2.20GHz
GC: Intel(R) HD Graphics Family
RAM -> [Total : 6092 Mo | Free : 4508 Mo]
Bios: Hewlett-Packard
Boot: Normal boot

OS: Microsoft™ Windows 7 Professional (6.1.7601 64-Bit) Service Pack 1
WB: Internet Explorer : 9.00.8112.16421
WB: Google Chrome : 47.0.2526.73
WB: Mozilla Firefox : 40.0.3

[b]################## | Security Information |[/b]

AV: AVG Internet Security [[b](!) Disabled[/b] |Updated]
AS: Windows Defender [[b](!) Disabled[/b] |[b](!) Outdated[/b]]
AS: AVG Internet Security [[b](!) Disabled[/b] |Updated]
FW: AVG Internet Security [[b](!) Disabled[/b]]
FW: Windows Firewall [Enabled]
SC: Security Center [Enabled]
WU: Windows Update [Enabled]

[b]################## | Disk Information |[/b]

C:\ (%SystemDrive%) -> Fixed disk # 484 Gb (387 Gb free - 80%) [] # NTFS
D:\ -> Fixed disk # 447 Gb (63 Gb free - 14%) [] # NTFS
F:\ -> Removable disk # 14 Gb (10 Gb free - 71%) [IRM_CCSA_X64FRE_EN-US_DV5] # NTFS
H:\ -> Fixed disk # 199 Mb (165 Mb free - 83%) [SYSTEM] # NTFS

[b]################## | Startup |[/b]

F2 - HKLM\..\Winlogon : [Shell] explorer.exe
F2 - [x64] HKLM\..\Winlogon : [Shell] explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] userinit.exe
F2 - [x64] HKLM\..\Winlogon : [Userinit] C:\Windows\system32\userinit.exe,
04 - HKCU\..\Run : [Yahoo! Search] C:\Users\AOurhadja\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.19.2\dsrlte.exe
04 - HKCU\..\Run : [Remote Mouse] C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe
04 - HKCU\..\Run : [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
04 - HKCU\..\Run : [cacaoweb] "C:\Users\AOurhadja\AppData\Roaming\cacaoweb\cacaoweb.exe" -noplayer
04 - HKCU\..\Run : [GoogleChromeAutoLaunch_35272D633E5E4C18087D1CCA544B3D00] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
04 - HKCU\..\Run : [BingSvc] C:\Users\AOurhadja\AppData\Local\Microsoft\BingSvc\BingSvc.exe
04 - HKCU\..\Run : [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
04 - HKCU\..\Run : [winlogon] "C:\Users\AOURHA~1\AppData\Local\Temp\winlogon.bat"
04 - HKLM\..\Run : [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
04 - HKLM\..\Run : [PWRISOVM.EXE] D:\programs installed path\PowerISO\PWRISOVM.EXE
04 - HKLM\..\Run : [vmware-tray] "C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe"
04 - HKLM\..\Run : [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
04 - HKLM\..\Run : [AdobeCS5.5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
04 - HKLM\..\Run : [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
04 - HKLM\..\Run : [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguix.exe" /fmw.trayonly
04 - HKLM\..\Run : [AVG_UI] "C:\Program Files (x86)\AVG\Av\avgui.exe" /TRAYONLY
04 - [x64] HKLM\..\Run : [IgfxTray] C:\Windows\system32\igfxtray.exe
04 - [x64] HKLM\..\Run : [HotKeysCmds] C:\Windows\system32\hkcmd.exe
04 - [x64] HKLM\..\Run : [Persistence] C:\Windows\system32\igfxpers.exe
04 - [x64] HKLM\..\Run : [CNAP2 Launcher] C:\Windows\system32\spool\DRIVERS\x64\3\CNAP2LAK.EXE
04 - [x64] HKLM\..\Run : [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
04 - [x64] HKLM\..\Run : [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
04 - HKU\S-1-5-19\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-21-1824699774-1479739344-1998610386-1000\..\Run : [Yahoo! Search] C:\Users\AOurhadja\AppData\Local\Pay-By-Ads\Yahoo! Search\1.3.19.2\dsrlte.exe
04 - HKU\S-1-5-21-1824699774-1479739344-1998610386-1000\..\Run : [Remote Mouse] C:\Program Files (x86)\Remote Mouse\RemoteMouse.exe
04 - HKU\S-1-5-21-1824699774-1479739344-1998610386-1000\..\Run : [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
04 - HKU\S-1-5-21-1824699774-1479739344-1998610386-1000\..\Run : [cacaoweb] "C:\Users\AOurhadja\AppData\Roaming\cacaoweb\cacaoweb.exe" -noplayer
04 - HKU\S-1-5-21-1824699774-1479739344-1998610386-1000\..\Run : [GoogleChromeAutoLaunch_35272D633E5E4C18087D1CCA544B3D00] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
04 - HKU\S-1-5-21-1824699774-1479739344-1998610386-1000\..\Run : [BingSvc] C:\Users\AOurhadja\AppData\Local\Microsoft\BingSvc\BingSvc.exe
04 - HKU\S-1-5-21-1824699774-1479739344-1998610386-1000\..\Run : [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
04 - HKU\S-1-5-21-1824699774-1479739344-1998610386-1000\..\Run : [winlogon] "C:\Users\AOURHA~1\AppData\Local\Temp\winlogon.bat"
04 - HKU\S-1-5-80-1768481418-4243586691-1349411104-1299650809-3159321943\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-19\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-80-1768481418-4243586691-1349411104-1299650809-3159321943\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-80-3880006512-4290199581-1648723128-3569869737-3631323133\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04GS - Start.lnk :
04GS - Launcher.lnk : C:\Program Files (x86)\MeditelInternet\MeditelInternet_Launcher.exe

[b]################## | Generic Research |[/b]

Found! D:\explorer.exe
Found! F:\winlogon.vbs
Found! H:\explorer.exe
Found! H:\Ntldr.EXE
Found! D:\Nouveau Dossier.lnk
Found! F:\autorun - Copie.lnk
Found! F:\autorun.lnk
Found! F:\boot - Copie.lnk
Found! F:\boot.lnk
Found! F:\bootmgr - Copie.lnk
Found! F:\bootmgr.lnk
Found! F:\Code Route Maroc - Copie - Copie.lnk
Found! F:\Code Route Maroc - Copie.lnk
Found! F:\efi - Copie.lnk
Found! F:\efi.lnk
Found! F:\setup - Copie.lnk
Found! F:\setup.lnk
Found! F:\sources - Copie.lnk
Found! F:\sources.lnk
Found! F:\support - Copie.lnk
Found! F:\support.lnk
Found! H:\AOurhadja.lnk
Found! H:\Nouveau Dossier.lnk
Found! C:\Users\AOurhadja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Start.lnk
Found! C:\Users\AOURHA~1\AppData\Local\Temp\winlogon.bat
Found! D:\pict.jpg
Found! D:\Zain
Found! D:\bin.doc
Found! D:\bizo.doc
Found! D:\img.jpg
Found! D:\Photo0.jpg
Found! F:\winlogon.bat
Found! H:\pict.jpg
Found! H:\Zain
Found! H:\bin.doc
Found! H:\bizo.doc
Found! H:\img.jpg
Found! H:\Photo0.jpg
Found! C:\Users\AOurhadja\AppData\Local\Temp\winlogon.vbs
Found! F:\setup.exe
Found! HKCU\Software\Microsoft\Windows\CurrentVersion\Run|winlogon
Found! HKU\S-1-5-21-1824699774-1479739344-1998610386-1000\Software\Microsoft\Windows\CurrentVersion\Run|winlogon

[b]################## | UsbFix - Information |[/b]

Info : [url=https://www.youtube.com/watch?v=vUZYYASd7FE]How to remove shortcut virus on flash disk (Video)[/url]
Info : [url=http://www.en.usbfix.net/2014/03/remove-shortcut-virus-usb/]Shortcut virus on flash disk, What is it ?[/url]
Live detection : [url=http://how-to-remove.us/]http://how-to-remove.us/[/url]

[b]Analysed in 416.0 seconds[/b]

[b]################## | E.O.F | [url=http://www.sosvirus.net/]http://www.sosvirus.net/[/url] | [url=http://www.en.usbfix.net/]http://www.en.usbfix.net/[/url] |[/b]

Publicité


Signaler le contenu de ce document

Publicité