Publicité
Publicité
Format du document : text/plain
Prévisualisation
############################## | UsbFix V 7.127 | [Recherche]
Utilisateur: LOUISA (Administrateur) # LOUISA-TOSH
Mis � jour le 05/06/2013 par El Desaparecido
Lanc� � 14:41:13 | 12/06/2013
Site Web: http://sosvirus.org/
Upload Malware: http://upload.sosvirus.org/
Contact: contact@sosvirus.org
PC: TOSHIBA (Satellite L550) (x64-based PC)
CPU: Intel(R) Core(TM) i3 CPU M 330 @ 2.13GHz (2133)
RAM -> [Total : 3958 | Free : 2433]
BIOS: Phoenix SecureCore Version 1.20
BOOT: Normal boot
OS: Microsoft Windows�7 �dition Familiale Premium (6.1.7601 64-Bit) # Service Pack 1
WB: Windows Internet Explorer 10.0.9200.16576
SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: Microsoft Security Essentials [Enabled | Updated]
FW: Windows FireWall Service [Enabled]
C:\ (%systemdrive%) -> Disque fixe # 233 Go (174 Go libre(s) - 75%) [WINDOWS] # NTFS
D:\ -> Disque fixe # 232 Go (225 Go libre(s) - 97%) [Data] # NTFS
E:\ -> CD-ROM
F:\ -> CD-ROM
G:\ -> CD-ROM
H:\ -> Disque amovible # 2 Go (149 Mo libre(s) - 8%) [Cruzer] # FAT
I:\ -> Disque amovible # 4 Go (2 Mo libre(s) - 0%) [] # FAT32
################## | Processus Actif |
C:\Windows\system32\csrss.exe (468)
C:\Windows\system32\wininit.exe (536)
C:\Windows\system32\csrss.exe (560)
C:\Windows\system32\services.exe (596)
C:\Windows\system32\lsass.exe (624)
C:\Windows\system32\lsm.exe (632)
C:\Windows\system32\svchost.exe (736)
C:\Windows\system32\svchost.exe (812)
C:\Program Files\Microsoft Security Client\MsMpEng.exe (872)
C:\Windows\system32\winlogon.exe (920)
C:\Windows\system32\atiesrxx.exe (972)
C:\Windows\System32\svchost.exe (1012)
C:\Windows\System32\svchost.exe (368)
C:\Windows\system32\svchost.exe (588)
C:\Windows\system32\svchost.exe (796)
C:\Windows\system32\svchost.exe (1092)
C:\Windows\system32\svchost.exe (1188)
C:\Windows\system32\atieclxx.exe (1248)
C:\Windows\System32\spoolsv.exe (1408)
C:\Windows\system32\svchost.exe (1448)
C:\Windows\system32\svchost.exe (1544)
C:\Windows\SysWOW64\svchost.exe (1592)
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (1660)
C:\Windows\system32\taskhost.exe (1732)
C:\Windows\System32\svchost.exe (1744)
C:\Windows\System32\svchost.exe (1808)
C:\Windows\system32\svchost.exe (1928)
C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe (1980)
C:\Windows\system32\Dwm.exe (1568)
C:\Windows\Explorer.EXE (2052)
C:\Program Files\Microsoft Security Client\msseces.exe (2300)
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (2396)
C:\Windows\system32\TODDSrv.exe (2756)
C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe (2776)
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (2892)
C:\Windows\system32\svchost.exe (2472)
C:\Program Files\Microsoft Security Client\NisSrv.exe (1208)
C:\Windows\system32\SearchIndexer.exe (2532)
C:\Program Files\Windows Media Player\wmpnetwk.exe (3220)
C:\Windows\System32\svchost.exe (3608)
C:\Windows\system32\wbem\wmiprvse.exe (3892)
C:\Program Files (x86)\Mozilla Firefox\firefox.exe (3260)
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (3076)
C:\Windows\servicing\TrustedInstaller.exe (688)
C:\Program Files\Microsoft Security Client\MpCmdRun.exe (3736)
C:\Windows\System32\WUDFHost.exe (2272)
C:\Windows\system32\SearchProtocolHost.exe (2912)
C:\Windows\system32\SearchFilterHost.exe (1032)
C:\UsbFix\Go.exe (3316)
C:\Windows\system32\wbem\wmiprvse.exe (3972)
################## | El Desaparecido Section |
HKLM\SOFTWARE | Run : [] -
HKLM\SOFTWARE | Run : [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
HKLM\SOFTWARE\wow6432Node | Run : [] -
HKLM\SOFTWARE\wow6432Node | Run : [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
HKLM\SOFTWARE | RunOnce : [] -
HKLM\SOFTWARE\wow6432Node | RunOnce : [] -
################## | �l�ments infectieux |
Pr�sent! G:\autorun.inf
################## | Registre |
Pr�sent! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System|DisableTaskMgr
################## | Mountpoints2 |
################## | Vaccin |
(!) Cet ordinateur n'est pas vaccin�!
################## | E.O.F | http://sosvirus.org |
Utilisateur: LOUISA (Administrateur) # LOUISA-TOSH
Mis � jour le 05/06/2013 par El Desaparecido
Lanc� � 14:41:13 | 12/06/2013
Site Web: http://sosvirus.org/
Upload Malware: http://upload.sosvirus.org/
Contact: contact@sosvirus.org
PC: TOSHIBA (Satellite L550) (x64-based PC)
CPU: Intel(R) Core(TM) i3 CPU M 330 @ 2.13GHz (2133)
RAM -> [Total : 3958 | Free : 2433]
BIOS: Phoenix SecureCore Version 1.20
BOOT: Normal boot
OS: Microsoft Windows�7 �dition Familiale Premium (6.1.7601 64-Bit) # Service Pack 1
WB: Windows Internet Explorer 10.0.9200.16576
SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: Microsoft Security Essentials [Enabled | Updated]
FW: Windows FireWall Service [Enabled]
C:\ (%systemdrive%) -> Disque fixe # 233 Go (174 Go libre(s) - 75%) [WINDOWS] # NTFS
D:\ -> Disque fixe # 232 Go (225 Go libre(s) - 97%) [Data] # NTFS
E:\ -> CD-ROM
F:\ -> CD-ROM
G:\ -> CD-ROM
H:\ -> Disque amovible # 2 Go (149 Mo libre(s) - 8%) [Cruzer] # FAT
I:\ -> Disque amovible # 4 Go (2 Mo libre(s) - 0%) [] # FAT32
################## | Processus Actif |
C:\Windows\system32\csrss.exe (468)
C:\Windows\system32\wininit.exe (536)
C:\Windows\system32\csrss.exe (560)
C:\Windows\system32\services.exe (596)
C:\Windows\system32\lsass.exe (624)
C:\Windows\system32\lsm.exe (632)
C:\Windows\system32\svchost.exe (736)
C:\Windows\system32\svchost.exe (812)
C:\Program Files\Microsoft Security Client\MsMpEng.exe (872)
C:\Windows\system32\winlogon.exe (920)
C:\Windows\system32\atiesrxx.exe (972)
C:\Windows\System32\svchost.exe (1012)
C:\Windows\System32\svchost.exe (368)
C:\Windows\system32\svchost.exe (588)
C:\Windows\system32\svchost.exe (796)
C:\Windows\system32\svchost.exe (1092)
C:\Windows\system32\svchost.exe (1188)
C:\Windows\system32\atieclxx.exe (1248)
C:\Windows\System32\spoolsv.exe (1408)
C:\Windows\system32\svchost.exe (1448)
C:\Windows\system32\svchost.exe (1544)
C:\Windows\SysWOW64\svchost.exe (1592)
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (1660)
C:\Windows\system32\taskhost.exe (1732)
C:\Windows\System32\svchost.exe (1744)
C:\Windows\System32\svchost.exe (1808)
C:\Windows\system32\svchost.exe (1928)
C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe (1980)
C:\Windows\system32\Dwm.exe (1568)
C:\Windows\Explorer.EXE (2052)
C:\Program Files\Microsoft Security Client\msseces.exe (2300)
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (2396)
C:\Windows\system32\TODDSrv.exe (2756)
C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe (2776)
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (2892)
C:\Windows\system32\svchost.exe (2472)
C:\Program Files\Microsoft Security Client\NisSrv.exe (1208)
C:\Windows\system32\SearchIndexer.exe (2532)
C:\Program Files\Windows Media Player\wmpnetwk.exe (3220)
C:\Windows\System32\svchost.exe (3608)
C:\Windows\system32\wbem\wmiprvse.exe (3892)
C:\Program Files (x86)\Mozilla Firefox\firefox.exe (3260)
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (3076)
C:\Windows\servicing\TrustedInstaller.exe (688)
C:\Program Files\Microsoft Security Client\MpCmdRun.exe (3736)
C:\Windows\System32\WUDFHost.exe (2272)
C:\Windows\system32\SearchProtocolHost.exe (2912)
C:\Windows\system32\SearchFilterHost.exe (1032)
C:\UsbFix\Go.exe (3316)
C:\Windows\system32\wbem\wmiprvse.exe (3972)
################## | El Desaparecido Section |
HKLM\SOFTWARE | Run : [] -
HKLM\SOFTWARE | Run : [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
HKLM\SOFTWARE\wow6432Node | Run : [] -
HKLM\SOFTWARE\wow6432Node | Run : [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
HKLM\SOFTWARE | RunOnce : [] -
HKLM\SOFTWARE\wow6432Node | RunOnce : [] -
################## | �l�ments infectieux |
Pr�sent! G:\autorun.inf
################## | Registre |
Pr�sent! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System|DisableTaskMgr
################## | Mountpoints2 |
################## | Vaccin |
(!) Cet ordinateur n'est pas vaccin�!
################## | E.O.F | http://sosvirus.org |