cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

############################## | UsbFix V 7.152 | [Recherche]

Utilisateur: gaetan (Administrateur) # NATHALIE
Mis � jour le 20/11/2013 par El Desaparecido - Team SosVirus
Lanc� � 11:56:15 | 09/12/2013

Site Web : http://www.usbfix.net
Forum : http://www.sosvirus.net/
Upload Malware : http://www.sosvirus.net/upload_malware.php
Contact : http://www.usbfix.net/contact/

PC: Packard Bell (SJE06_PT)
CPU: Intel(R) Atom(TM) CPU N570 @ 1.66GHz
RAM -> [Total : 1012 | Free : 212]
Bios: INSYDE
Boot: Normal boot

OS: Microsoft Windows�7 �dition Starter (6.1.7601 32-Bit) Service Pack 1
WB: Windows Internet Explorer : 10.0.9200.16736

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: avast! Antivirus [Enabled | Updated]
AS: Windows Defender : 6.1.7600.16385 (win7_rtm.090713-1255)
AS: Malwarebytes' Anti-Malware : 1.75.0001
FW: Windows FireWall Service [Enabled]

C:\ (%systemdrive%) -> Disque fixe # 220 Go (174 Go libre(s) - 79%) [Packard Bell] # NTFS

################## | Processus Actif |

C:\Windows\system32\csrss.exe (ID: 520 |ParentID: 452)
C:\Windows\system32\wininit.exe (ID: 576 |ParentID: 452)
C:\Windows\system32\csrss.exe (ID: 584 |ParentID: 568)
C:\Windows\system32\services.exe (ID: 640 |ParentID: 576)
C:\Windows\system32\winlogon.exe (ID: 664 |ParentID: 568)
C:\Windows\system32\lsass.exe (ID: 676 |ParentID: 576)
C:\Windows\system32\lsm.exe (ID: 684 |ParentID: 576)
C:\Windows\system32\svchost.exe (ID: 796 |ParentID: 640)
C:\Windows\system32\svchost.exe (ID: 888 |ParentID: 640)
C:\Windows\System32\svchost.exe (ID: 984 |ParentID: 640)
C:\Windows\System32\svchost.exe (ID: 1020 |ParentID: 640)
C:\Windows\system32\svchost.exe (ID: 1068 |ParentID: 640)
C:\Windows\system32\svchost.exe (ID: 1104 |ParentID: 640)
C:\Windows\system32\svchost.exe (ID: 1268 |ParentID: 640)
C:\Program Files\AVAST Software\Avast\AvastSvc.exe (ID: 1384 |ParentID: 640)
C:\Windows\System32\spoolsv.exe (ID: 1536 |ParentID: 640)
C:\Windows\system32\svchost.exe (ID: 1588 |ParentID: 640)
C:\Windows\system32\taskhost.exe (ID: 1676 |ParentID: 640)
C:\Windows\system32\Dwm.exe (ID: 1768 |ParentID: 1020)
C:\Windows\Explorer.EXE (ID: 1888 |ParentID: 1752)
c:\Program Files\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe (ID: 1916 |ParentID: 640)
C:\Program Files\Launch Manager\dsiwmis.exe (ID: 124 |ParentID: 640)
C:\Program Files\Launch Manager\LMworker.exe (ID: 568 |ParentID: 124)
C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe (ID: 408 |ParentID: 640)
C:\Program Files\Launch Manager\LMutilps32.exe (ID: 424 |ParentID: 124)
C:\Program Files\Packard Bell\Registration\GREGsvc.exe (ID: 968 |ParentID: 640)
C:\Program Files\Realtek\Realtek PCIE Card Reader\RIconMan.exe (ID: 1460 |ParentID: 640)
C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe (ID: 1648 |ParentID: 640)
C:\Program Files\Microsoft\BingBar\SeaPort.EXE (ID: 1240 |ParentID: 640)
C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe (ID: 2260 |ParentID: 640)
C:\Windows\system32\svchost.exe (ID: 2288 |ParentID: 640)
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (ID: 2388 |ParentID: 640)
C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe (ID: 2532 |ParentID: 640)
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (ID: 2624 |ParentID: 2388)
C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE (ID: 2968 |ParentID: 640)
C:\Windows\system32\svchost.exe (ID: 3168 |ParentID: 640)
C:\Windows\system32\svchost.exe (ID: 3220 |ParentID: 640)
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (ID: 3716 |ParentID: 1888)
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (ID: 3828 |ParentID: 1888)
C:\Windows\System32\igfxtray.exe (ID: 3848 |ParentID: 1888)
C:\Windows\System32\hkcmd.exe (ID: 3860 |ParentID: 1888)
C:\Windows\System32\igfxpers.exe (ID: 3884 |ParentID: 1888)
C:\Windows\system32\igfxsrvc.exe (ID: 3972 |ParentID: 796)
C:\Program Files\Launch Manager\LManager.exe (ID: 4080 |ParentID: 1888)
C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe (ID: 2956 |ParentID: 1888)
C:\Program Files\AVAST Software\Avast\AvastUI.exe (ID: 2876 |ParentID: 1888)
C:\Windows\system32\SearchIndexer.exe (ID: 3432 |ParentID: 640)
C:\Windows\system32\igfxext.exe (ID: 2228 |ParentID: 796)
C:\Windows\system32\wbem\unsecapp.exe (ID: 3676 |ParentID: 796)
C:\Windows\system32\wbem\wmiprvse.exe (ID: 3692 |ParentID: 796)
C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerEvent.exe (ID: 780 |ParentID: 408)
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (ID: 3428 |ParentID: 640)
C:\Windows\System32\svchost.exe (ID: 4072 |ParentID: 640)
C:\Users\gaetan\AppData\Local\Google\Chrome\Application\chrome.exe (ID: 6368 |ParentID: 1888)
C:\Users\gaetan\AppData\Local\Google\Chrome\Application\chrome.exe (ID: 6536 |ParentID: 6368)
C:\Users\gaetan\AppData\Local\Google\Chrome\Application\chrome.exe (ID: 7072 |ParentID: 6368)
C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe (ID: 6648 |ParentID: 6564)
C:\Windows\servicing\TrustedInstaller.exe (ID: 7416 |ParentID: 640)
C:\Windows\system32\taskeng.exe (ID: 2740 |ParentID: 1104)
C:\Windows\system32\taskeng.exe (ID: 5876 |ParentID: 1104)
C:\Users\gaetan\AppData\Local\Google\Chrome\Application\chrome.exe (ID: 4968 |ParentID: 6368)
C:\UsbFix\Go.exe (ID: 2188 |ParentID: 7756)
C:\Windows\system32\taskhost.exe (ID: 5324 |ParentID: 640)
C:\Windows\system32\wbem\wmiprvse.exe (ID: 6520 |ParentID: 796)

################## | Regedit Run |

04 - HKLM\SOFTWARE | Run : [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
04 - HKLM\SOFTWARE | Run : [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
04 - HKLM\SOFTWARE | Run : [Adobe Reader Speed Launcher] - "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
04 - HKLM\SOFTWARE | Run : [IgfxTray] - C:\Windows\system32\igfxtray.exe
04 - HKLM\SOFTWARE | Run : [HotKeysCmds] - C:\Windows\system32\hkcmd.exe
04 - HKLM\SOFTWARE | Run : [Persistence] - C:\Windows\system32\igfxpers.exe
04 - HKLM\SOFTWARE | Run : [LManager] - C:\Program Files\Launch Manager\LManager.exe
04 - HKLM\SOFTWARE | Run : [AdobeAAMUpdater-1.0] - "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
04 - HKLM\SOFTWARE | Run : [Power Management] - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe
04 - HKLM\SOFTWARE | Run : [Adobe ARM] - "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
04 - HKLM\SOFTWARE | Run : [avast] - "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
04 - HKLM\SOFTWARE | RunOnce : [] -
04 - HKU\S-1-5-19\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-21-1651221028-3541460379-351665068-1000\SOFTWARE | Run : [Google Update] - "C:\Users\gaetan\AppData\Local\Google\Update\GoogleUpdate.exe" /c
04 - HKU\S-1-5-19\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe

################## | Recherche g�n�rique |


################## | Registre |


################## | Vaccin |

(!) Cet ordinateur n'est pas vaccin�!

################## | E.O.F | http://www.usbfix.net - http://www.sosvirus.net |

Publicité


Signaler le contenu de ce document

Publicité