Publicité
Publicité
Format du document : text/plain
Prévisualisation
############################## | UsbFix V 7.150 | [Recherche]
Utilisateur: laurent (Administrateur) # LAURENT-PC
Mis � jour le 08/11/2013 par El Desaparecido - Team SosVirus
Lanc� � 14:36:59 | 19/02/2014
Site Web : http://www.usbfix.net
Forum : http://www.sosvirus.net/
Upload Malware : http://www.sosvirus.net/upload_malware.php
Contact : http://www.usbfix.net/contact/
PC: PEGATRON CORPORATION (VIOLET)
CPU: AMD Athlon(tm) Dual Core Processor 4450e
RAM -> [Total : 3071 | Free : 2255]
Bios: American Megatrends Inc.
Boot: Fail-safe boot
OS: Microsoft Windows�7 �dition Familiale Premium (6.1.7601 32-Bit) Service Pack 1
WB: Windows Internet Explorer : 11.0.9600.16518
WB: Google Chrome : 32.0.1700.107
WB: Mozilla Firefox : 27.0.1
SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: Kaspersky Anti-Virus [Enabled | Updated]
AS: Windows Defender : 6.1.7600.16385 (win7_rtm.090713-1255)
AS: Malwarebytes' Anti-Malware : 1.75.0001
FW: Windows FireWall Service [(!) Disabled]
C:\ (%systemdrive%) -> Disque fixe # 149 Go (23 Go libre(s) - 15%) [] # NTFS
E:\ -> Disque fixe # 100 Mo (84 Mo libre(s) - 84%) [R�serv� au syst�me] # NTFS
F:\ -> Disque amovible # 15 Go (10 Go libre(s) - 71%) [LOLO] # NTFS
G:\ -> CD-ROM
H:\ -> CD-ROM
################## | Processus Actif |
C:\Windows\system32\csrss.exe (ID: 360 |ParentID: 352)
C:\Windows\system32\wininit.exe (ID: 396 |ParentID: 352)
C:\Windows\system32\csrss.exe (ID: 408 |ParentID: 388)
C:\Windows\system32\services.exe (ID: 464 |ParentID: 396)
C:\Windows\system32\lsass.exe (ID: 480 |ParentID: 396)
C:\Windows\system32\lsm.exe (ID: 488 |ParentID: 396)
C:\Windows\system32\winlogon.exe (ID: 552 |ParentID: 388)
C:\Windows\system32\svchost.exe (ID: 612 |ParentID: 464)
C:\Windows\system32\svchost.exe (ID: 676 |ParentID: 464)
C:\Windows\System32\svchost.exe (ID: 756 |ParentID: 464)
C:\Windows\system32\svchost.exe (ID: 808 |ParentID: 464)
C:\Windows\system32\svchost.exe (ID: 848 |ParentID: 464)
C:\Windows\system32\wbem\wmiprvse.exe (ID: 1680 |ParentID: 612)
C:\Windows\system32\ctfmon.exe (ID: 940 |ParentID: 992)
C:\Windows\Explorer.exe (ID: 1328 |ParentID: 1624)
C:\Windows\system32\DllHost.exe (ID: 1732 |ParentID: 612)
C:\UsbFix\Go.exe (ID: 1888 |ParentID: 1860)
################## | Regedit Run |
04 - HKLM\SOFTWARE | Run : [AVP] - "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe"
04 - HKLM\SOFTWARE | Run : [ISUSPM] - C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe -scheduler
04 - HKLM\SOFTWARE | Run : [Adobe ARM] - "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
04 - HKLM\SOFTWARE | Run : [USBToolTip] - C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe
04 - HKLM\SOFTWARE | Run : [RTHDVCPL] - "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
04 - HKLM\SOFTWARE | Run : [AgentAntidote32] - "C:\Program Files\Druide\Antidote 8\Programmes32\AgentAntidote.exe" /LancementSession
04 - HKLM\SOFTWARE | Run : [SunJavaUpdateSched] - "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
04 - HKLM\SOFTWARE | RunOnce : [] -
04 - HKU\S-1-5-19\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-21-2377026841-2706760585-1445537311-1001\SOFTWARE | Run : [Sidebar] - C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
04 - HKU\S-1-5-21-2377026841-2706760585-1445537311-1001\SOFTWARE | Run : [ISUSPM] - C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
04 - HKU\S-1-5-21-2377026841-2706760585-1445537311-1001\SOFTWARE | Run : [Animated Wallpaper] - C:\Users\laurent\Downloads\Calm-Before-Storm.exe
04 - HKU\S-1-5-19\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe
################## | Recherche g�n�rique |
################## | Registre |
################## | Vaccin |
(!) Cet ordinateur n'est pas vaccin�!
################## | E.O.F | http://www.usbfix.net - http://www.sosvirus.net |
Utilisateur: laurent (Administrateur) # LAURENT-PC
Mis � jour le 08/11/2013 par El Desaparecido - Team SosVirus
Lanc� � 14:36:59 | 19/02/2014
Site Web : http://www.usbfix.net
Forum : http://www.sosvirus.net/
Upload Malware : http://www.sosvirus.net/upload_malware.php
Contact : http://www.usbfix.net/contact/
PC: PEGATRON CORPORATION (VIOLET)
CPU: AMD Athlon(tm) Dual Core Processor 4450e
RAM -> [Total : 3071 | Free : 2255]
Bios: American Megatrends Inc.
Boot: Fail-safe boot
OS: Microsoft Windows�7 �dition Familiale Premium (6.1.7601 32-Bit) Service Pack 1
WB: Windows Internet Explorer : 11.0.9600.16518
WB: Google Chrome : 32.0.1700.107
WB: Mozilla Firefox : 27.0.1
SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: Kaspersky Anti-Virus [Enabled | Updated]
AS: Windows Defender : 6.1.7600.16385 (win7_rtm.090713-1255)
AS: Malwarebytes' Anti-Malware : 1.75.0001
FW: Windows FireWall Service [(!) Disabled]
C:\ (%systemdrive%) -> Disque fixe # 149 Go (23 Go libre(s) - 15%) [] # NTFS
E:\ -> Disque fixe # 100 Mo (84 Mo libre(s) - 84%) [R�serv� au syst�me] # NTFS
F:\ -> Disque amovible # 15 Go (10 Go libre(s) - 71%) [LOLO] # NTFS
G:\ -> CD-ROM
H:\ -> CD-ROM
################## | Processus Actif |
C:\Windows\system32\csrss.exe (ID: 360 |ParentID: 352)
C:\Windows\system32\wininit.exe (ID: 396 |ParentID: 352)
C:\Windows\system32\csrss.exe (ID: 408 |ParentID: 388)
C:\Windows\system32\services.exe (ID: 464 |ParentID: 396)
C:\Windows\system32\lsass.exe (ID: 480 |ParentID: 396)
C:\Windows\system32\lsm.exe (ID: 488 |ParentID: 396)
C:\Windows\system32\winlogon.exe (ID: 552 |ParentID: 388)
C:\Windows\system32\svchost.exe (ID: 612 |ParentID: 464)
C:\Windows\system32\svchost.exe (ID: 676 |ParentID: 464)
C:\Windows\System32\svchost.exe (ID: 756 |ParentID: 464)
C:\Windows\system32\svchost.exe (ID: 808 |ParentID: 464)
C:\Windows\system32\svchost.exe (ID: 848 |ParentID: 464)
C:\Windows\system32\wbem\wmiprvse.exe (ID: 1680 |ParentID: 612)
C:\Windows\system32\ctfmon.exe (ID: 940 |ParentID: 992)
C:\Windows\Explorer.exe (ID: 1328 |ParentID: 1624)
C:\Windows\system32\DllHost.exe (ID: 1732 |ParentID: 612)
C:\UsbFix\Go.exe (ID: 1888 |ParentID: 1860)
################## | Regedit Run |
04 - HKLM\SOFTWARE | Run : [AVP] - "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe"
04 - HKLM\SOFTWARE | Run : [ISUSPM] - C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe -scheduler
04 - HKLM\SOFTWARE | Run : [Adobe ARM] - "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
04 - HKLM\SOFTWARE | Run : [USBToolTip] - C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe
04 - HKLM\SOFTWARE | Run : [RTHDVCPL] - "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
04 - HKLM\SOFTWARE | Run : [AgentAntidote32] - "C:\Program Files\Druide\Antidote 8\Programmes32\AgentAntidote.exe" /LancementSession
04 - HKLM\SOFTWARE | Run : [SunJavaUpdateSched] - "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
04 - HKLM\SOFTWARE | RunOnce : [] -
04 - HKU\S-1-5-19\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-21-2377026841-2706760585-1445537311-1001\SOFTWARE | Run : [Sidebar] - C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
04 - HKU\S-1-5-21-2377026841-2706760585-1445537311-1001\SOFTWARE | Run : [ISUSPM] - C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler
04 - HKU\S-1-5-21-2377026841-2706760585-1445537311-1001\SOFTWARE | Run : [Animated Wallpaper] - C:\Users\laurent\Downloads\Calm-Before-Storm.exe
04 - HKU\S-1-5-19\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe
################## | Recherche g�n�rique |
################## | Registre |
################## | Vaccin |
(!) Cet ordinateur n'est pas vaccin�!
################## | E.O.F | http://www.usbfix.net - http://www.sosvirus.net |