Publicité
Publicité
Format du document : text/plain
Prévisualisation
[b]############################## | UsbFix V 7.176 | [Nettoyage][/b]
Utilisateur: ho 2000 (Administrateur) # HP
Mis � jour le 18/07/2014 par El Desaparecido - SosVirus
Lanc� � 17:46:16 | 23/07/2014
Site Web : [url=http://www.usbfix.net/]http://www.usbfix.net/[/url]
Changelog : [url=http://www.usbfix.net/maj/]http://www.usbfix.net/maj/[/url]
Assistance : [url=http://www.sosvirus.net/]http://www.sosvirus.net/[/url]
Upload Malware : [url=http://www.sosvirus.net/upload_malware.php]http://www.sosvirus.net/upload_malware.php[/url]
Contact : [url=http://www.usbfix.net/contact/]http://www.usbfix.net/contact/[/url]
[b]################## | System information |[/b]
MB: Hewlett-Packard (1854)
CPU: Intel(R) Pentium(R) CPU 2030M @ 2.50GHz
GC: Intel(R) HD Graphics
RAM -> [Total : 3985 Mo | Free : 2511 Mo]
Bios: Insyde
Boot: Normal boot
OS: Microsoft� Windows 8 (6.2.9200 64-Bit)
WB: Internet Explorer : 10.00.9200.16384
WB: Google Chrome : 38.0.2101.0
WB: Mozilla Firefox : 30.0
WB: Safari : 534.57.2
WB: Opera : 23.0.1522.60
[b]################## | Security Information |[/b]
AV: Avira Desktop [Actif |A jour]
AV: Windows Defender [[b](!) D�sactiv�[/b] |A jour]
AS: Avira Desktop [Actif |A jour]
AS: Windows Defender [[b](!) D�sactiv�[/b] |A jour]
FW: Windows Firewall [[b](!) D�sactiv�[/b]]
SC: Security Center [Actif]
WU: Windows Update [Actif]
[b]################## | Disk Information |[/b]
C:\ (%SystemDrive%) -> Disque fixe # 339 Go (276 Go libre(s) - 81%) [Windows] # NTFS
D:\ -> Disque fixe # 22 Go (2 Go libre(s) - 10%) [RECOVERY] # NTFS
F:\ -> Disque fixe # 337 Go (295 Go libre(s) - 88%) [Donn�es] # NTFS
G:\ -> Disque amovible # 7 Go (7 Go libre(s) - 100%) [NOZESS CI] # FAT32
[b]################## | Processus Stopp�s |[/b]
C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe (ID: 1044|ParentID: 676)
C:\Program Files (x86)\Stardock\Start8\Start8_64.exe (ID: 1076|ParentID: 1044)
C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE (ID: 1084|ParentID: 676)
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (ID: 1104|ParentID: 1084)
C:\Windows\System32\spoolsv.exe (ID: 1304|ParentID: 676)
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (ID: 1584|ParentID: 676|SYSTEM)
C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe (ID: 1680|ParentID: 676|SYSTEM)
C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe (ID: 1780|ParentID: 676|SYSTEM)
C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe (ID: 1860|ParentID: 676|SYSTEM)
C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (ID: 1892|ParentID: 676|SYSTEM)
C:\Program Files\Intel\iCLS Client\HeciServer.exe (ID: 1932|ParentID: 676|SYSTEM)
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (ID: 1952|ParentID: 676|SYSTEM)
C:\Program Files\ma-config.com\MaConfigAgent.exe (ID: 1980|ParentID: 676|SYSTEM)
C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe (ID: 1340|ParentID: 676|SYSTEM)
C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe (ID: 2104|ParentID: 676|SYSTEM)
C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe (ID: 2200|ParentID: 676|SYSTEM)
C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe (ID: 2228|ParentID: 676|SYSTEM)
C:\Windows\System32\taskhostex.exe (ID: 3268|ParentID: 676|ho 2000)
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (ID: 3304|ParentID: 676|ho 2000)
C:\Program Files (x86)\SMADAV\SM?RTP.exe (ID: 3316|ParentID: 676|ho 2000)
C:\Windows\explorer.exe (ID: 3476|ParentID: 3420|ho 2000)
C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe (ID: 3576|ParentID: 1340|ho 2000)
C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe (ID: 3772|ParentID: 1340|SYSTEM)
C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe (ID: 3780|ParentID: 1340|SYSTEM)
C:\Windows\System32\SearchIndexer.exe (ID: 1064|ParentID: 676|SYSTEM)
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (ID: 4000|ParentID: 1560|ho 2000)
C:\Program Files (x86)\Internet Download Manager\IDMan.exe (ID: 4228|ParentID: 3476|ho 2000)
C:\Users\ho 2000\AppData\Roaming\uTorrent\uTorrent.exe (ID: 4272|ParentID: 3476|ho 2000)
C:\Program Files (x86)\ManyCam\ManyCam.exe (ID: 4284|ParentID: 3476|ho 2000)
C:\Program Files (x86)\Yahoo!\Search Protection\SearchProtection.exe (ID: 4352|ParentID: 3476|ho 2000)
C:\Program Files\Windows Sidebar\sidebar.exe (ID: 4520|ParentID: 3476|ho 2000)
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe (ID: 4568|ParentID: 676|ho 2000)
C:\Google\AutoIt3.exe (ID: 4644|ParentID: 4556|ho 2000)
C:\Program Files (x86)\Bible Verse\verse.exe (ID: 4700|ParentID: 3476|ho 2000)
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (ID: 4720|ParentID: 676|ho 2000)
C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe (ID: 4736|ParentID: 4228|ho 2000)
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (ID: 4944|ParentID: 4692|ho 2000)
C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe (ID: 4952|ParentID: 4692|ho 2000)
C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe (ID: 5012|ParentID: 4692|ho 2000)
C:\Windows\System32\WUDFHost.exe (ID: 4308|ParentID: 352|LOCAL SERVICE)
C:\Windows\System32\LocationNotifications.exe (ID: 5372|ParentID: 676|ho 2000)
C:\Program Files (x86)\Yahoo!\Messenger\Ymsgr_tray.exe (ID: 5468|ParentID: 4324|ho 2000)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 5936|ParentID: 5896|ho 2000)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 4824|ParentID: 5936|ho 2000)
C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe (ID: 5676|ParentID: 676|SYSTEM)
C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe (ID: 5752|ParentID: 676|SYSTEM)
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (ID: 864|ParentID: 676|SYSTEM)
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (ID: 2876|ParentID: 676|SYSTEM)
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (ID: 5464|ParentID: 676|SYSTEM)
C:\Windows\System32\WUDFHost.exe (ID: 6076|ParentID: 352|LOCAL SERVICE)
[b]################## | Autorun |[/b]
[b]################## | Recherche g�n�rique |[/b]
Supprim�! C:\Google\googleupdate.a3x
Supprim�! G:\My Games.lnk
Supprim�! G:\My Pictuers.lnk
Supprim�! G:\My Videos.lnk
Supprim�! G:\Hot.lnk
Supprim�! G:\Downloads.lnk
Supprim�! G:\Movies.lnk
Supprim�! D:\Skypee\googleupdate.a3x
Supprim�! F:\Skypee\googleupdate.a3x
Supprim�! G:\Skypee\googleupdate.a3x
Supprim�! C:\Skypee\AutoIt3.exe
Supprim�! C:\Skypee\Google.lnk
Supprim�! C:\Skypee\googleupdate.a3x
Supprim�! C:\Skypee\GoogleUpdate.lnk
Supprim�! C:\Skypee\Skypee.lnk
Supprim�! C:\Skypee\Windowsupdate.lnk
Supprim�! C:\Skypee
Supprim�! D:\Skypee\AutoIt3.exe
Supprim�! D:\Skypee\Google.lnk
Supprim�! D:\Skypee\GoogleUpdate.lnk
Supprim�! D:\Skypee\Skypee.lnk
Supprim�! D:\Skypee\Windowsupdate.lnk
Supprim�! D:\Skypee
Supprim�! F:\Skypee\AutoIt3.exe
Supprim�! F:\Skypee\Google.lnk
Supprim�! F:\Skypee\GoogleUpdate.lnk
Supprim�! F:\Skypee\Skypee.lnk
Supprim�! F:\Skypee\Windowsupdate.lnk
Supprim�! F:\Skypee
Supprim�! G:\Skypee\AutoIt3.exe
Supprim�! G:\Skypee\Google.lnk
Supprim�! G:\Skypee\GoogleUpdate.lnk
Supprim�! G:\Skypee\Skypee.lnk
Supprim�! G:\Skypee\Windowsupdate.lnk
Supprim�! G:\Skypee
(!) Fichiers temporaires supprim�s.
[b]################## | Registre |[/b]
Supprim�! HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\Software\Microsoft\Windows\CurrentVersion\Run|Windows Update
Supprim�! HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\Software\.\.\.\.\Mountpoints2\{9dfedbee-bb2a-11e3-be7c-9cb654c22c80}
[b]################## | Regedit Run |[/b]
F2 - HKLM\..\Winlogon : [Shell] Explorer.exe
F2 - [x64] HKLM\..\Winlogon : [Shell] explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] C:\Windows\system32\userinit.exe
F2 - [x64] HKLM\..\Winlogon : [Userinit] C:\Windows\System32\Userinit.exe,
F3 - HKCU\..\Winlogon : [Shell] Explorer.exe
04 - HKCU\..\Run : [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
04 - HKCU\..\Run : [uTorrent] "C:\Users\ho 2000\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
04 - HKCU\..\Run : [ManyCam] "C:\Program Files (x86)\ManyCam\ManyCam.exe" --silent
04 - HKCU\..\Run : [Messenger (Yahoo!)] "C:\PROGRA~2\Yahoo!\Messenger\YahooMessenger.exe" -quiet
04 - HKCU\..\Run : [Search Protection] C:\Program Files (x86)\Yahoo!\Search Protection\SearchProtection.exe
04 - HKCU\..\Run : [Facebook Update] "C:\Users\ho 2000\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
04 - HKCU\..\Run : [CCleaner] "C:\Program Files\CCleaner\CCleaner64.exe" /AUTO
04 - HKCU\..\Run : [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
04 - HKCU\..\Run : [AdopeUpdate] C:\Google\GoogleUpdate.lnk
04 - HKCU\..\Run : [AdopeFlash] C:\Google\AutoIt3.exe /AutoIt3ExecuteScript C:\Google\googleupdate.a3x
04 - HKLM\..\Run : [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
04 - HKLM\..\Run : [HPMessageService] C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
04 - HKLM\..\Run : [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
04 - HKLM\..\Run : [YSearchProtection] "C:\Program Files (x86)\Yahoo!\Search Protection\SearchProtection.exe"
04 - HKLM\..\Run : [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
04 - HKLM\..\Run : [Avira Systray] C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
04 - [x64] HKLM\..\RunOnce : [NCPluginUpdater] "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update
04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [uTorrent] "C:\Users\ho 2000\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [ManyCam] "C:\Program Files (x86)\ManyCam\ManyCam.exe" --silent
04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [Messenger (Yahoo!)] "C:\PROGRA~2\Yahoo!\Messenger\YahooMessenger.exe" -quiet
04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [Search Protection] C:\Program Files (x86)\Yahoo!\Search Protection\SearchProtection.exe
04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [Facebook Update] "C:\Users\ho 2000\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [CCleaner] "C:\Program Files\CCleaner\CCleaner64.exe" /AUTO
04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [AdopeUpdate] C:\Google\GoogleUpdate.lnk
04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [AdopeFlash] C:\Google\AutoIt3.exe /AutoIt3ExecuteScript C:\Google\googleupdate.a3x
[b]################## | C:\ %SystemDrive% - Disque Fixe (NTFS) |[/b]
[23/07/2014 - 17:34:18 | ASH | 3264732 Ko] - C:\hiberfil.sys
[23/07/2014 - 17:34:59 | ASH | 4194304 Ko] - C:\pagefile.sys
[23/07/2014 - 17:34:59 | ASH | 262144 Ko] - C:\swapfile.sys
[03/07/2014 - 21:44:27 | D] - C:\SYSTEM.SAV
[05/05/2014 - 19:18:34 | SHD] - C:\$Recycle.Bin
[04/08/2012 - 01:21:37 | RASH | 8 Ko] - C:\BOOTSECT.BAK
[02/06/2012 - 16:30:55 | N | 0 Ko] - C:\BOOTNXT
[26/07/2012 - 05:44:30 | RASH | 389 Ko] - C:\bootmgr
[26/07/2012 - 09:33:46 | D] - C:\PerfLogs
[04/08/2012 - 00:39:51 | D] - C:\inetpub
[04/08/2012 - 01:21:36 | SHD] - C:\Boot
[03/04/2014 - 13:48:27 | D] - C:\Users
[03/04/2014 - 14:10:12 | RHD] - C:\MSOCache
[11/06/2014 - 22:40:09 | D] - C:\Program Files
[03/07/2014 - 21:44:26 | D] - C:\HP
[03/07/2014 - 21:44:27 | D] - C:\sources
[03/07/2014 - 21:44:27 | D] - C:\SWSetup
[03/07/2014 - 21:44:27 | D] - C:\Windows Activation Technologies
[19/07/2014 - 22:35:44 | D] - C:\Program Files (x86)
[20/07/2014 - 21:48:18 | HD] - C:\ProgramData
[23/07/2014 - 14:44:17 | SHD] - C:\System Volume Information
[23/07/2014 - 16:07:11 | D] - C:\Windows
[23/07/2014 - 16:11:24 | D] - C:\[Smad-Cage]
[23/07/2014 - 17:45:53 | D] - C:\UsbFix
[23/07/2014 - 17:49:28 | D] - C:\Google
[b]################## | D:\ - Disque Fixe (NTFS) |[/b]
[26/07/2012 - 21:57:10 | N | 1319 Ko] - D:\bootmgr.efi
[03/04/2014 - 13:52:13 | SHD] - D:\$RECYCLE.BIN
[26/07/2012 - 20:44:32 | RASH | 389 Ko] - D:\bootmgr
[07/06/2014 - 15:20:00 | SHD] - D:\System Volume Information
[03/07/2014 - 21:44:27 | RSHD] - D:\boot
[03/07/2014 - 21:44:28 | D] - D:\EFI
[03/07/2014 - 21:44:28 | D] - D:\hp
[03/07/2014 - 21:44:28 | RSHD] - D:\preload
[03/07/2014 - 21:44:28 | RSD] - D:\recovery
[03/07/2014 - 21:44:28 | D] - D:\RM_Reserve
[b]################## | F:\ - Disque Fixe (NTFS) |[/b]
[14/04/2014 - 14:50:42 | SHD] - F:\$RECYCLE.BIN
[03/07/2014 - 21:44:28 | D] - F:\Films
[03/07/2014 - 21:44:28 | D] - F:\Ivoire MIX DJ
[03/07/2014 - 21:44:28 | D] - F:\Jeux
[03/07/2014 - 21:44:29 | D] - F:\Nouveau dossier Musik (RNB)
[03/07/2014 - 21:44:29 | D] - F:\Rap et zouk
[03/07/2014 - 21:44:29 | SHD] - F:\System Volume Information
[06/07/2014 - 15:17:55 | D] - F:\Vid�os
[07/07/2014 - 03:58:40 | D] - F:\NEWS VIDEO
[07/07/2014 - 03:58:41 | D] - F:\R&B USA
[08/07/2014 - 01:49:57 | D] - F:\Musik ivoire
[20/07/2014 - 17:16:50 | D] - F:\Dossier Sylvie
[20/07/2014 - 17:16:50 | D] - F:\Dossier Th�me
[21/07/2014 - 16:05:39 | D] - F:\Docs J�sus
[22/07/2014 - 04:52:33 | D] - F:\MUSIC DJ SCARFACE
[b]################## | G:\ - Disque USB (FAT32) |[/b]
[23/07/2014 - 11:38:04 | N | 6281 Ko | SHA1: E44E75492BE30EC16EDBDED81D2B7E3271CA5A51] - G:\OSGS14-WindowsUpgradeAssistant-32bitand64bit-ClientSKU-4141411.exe
[b]################## | Vaccin |[/b]
D:\Autorun.inf -> Vaccin cr�� par UsbFix (El Desaparecido)
F:\Autorun.inf -> Vaccin cr�� par UsbFix (El Desaparecido)
G:\Autorun.inf -> Vaccin cr�� par UsbFix (El Desaparecido)
[b]################## | E.O.F | [url=http://www.sosvirus.net/]http://www.sosvirus.net/[/url] | [url=http://www.usbfix.net/]http://www.usbfix.net/[/url] |[/b]
Utilisateur: ho 2000 (Administrateur) # HP
Mis � jour le 18/07/2014 par El Desaparecido - SosVirus
Lanc� � 17:46:16 | 23/07/2014
Site Web : [url=http://www.usbfix.net/]http://www.usbfix.net/[/url]
Changelog : [url=http://www.usbfix.net/maj/]http://www.usbfix.net/maj/[/url]
Assistance : [url=http://www.sosvirus.net/]http://www.sosvirus.net/[/url]
Upload Malware : [url=http://www.sosvirus.net/upload_malware.php]http://www.sosvirus.net/upload_malware.php[/url]
Contact : [url=http://www.usbfix.net/contact/]http://www.usbfix.net/contact/[/url]
[b]################## | System information |[/b]
MB: Hewlett-Packard (1854)
CPU: Intel(R) Pentium(R) CPU 2030M @ 2.50GHz
GC: Intel(R) HD Graphics
RAM -> [Total : 3985 Mo | Free : 2511 Mo]
Bios: Insyde
Boot: Normal boot
OS: Microsoft� Windows 8 (6.2.9200 64-Bit)
WB: Internet Explorer : 10.00.9200.16384
WB: Google Chrome : 38.0.2101.0
WB: Mozilla Firefox : 30.0
WB: Safari : 534.57.2
WB: Opera : 23.0.1522.60
[b]################## | Security Information |[/b]
AV: Avira Desktop [Actif |A jour]
AV: Windows Defender [[b](!) D�sactiv�[/b] |A jour]
AS: Avira Desktop [Actif |A jour]
AS: Windows Defender [[b](!) D�sactiv�[/b] |A jour]
FW: Windows Firewall [[b](!) D�sactiv�[/b]]
SC: Security Center [Actif]
WU: Windows Update [Actif]
[b]################## | Disk Information |[/b]
C:\ (%SystemDrive%) -> Disque fixe # 339 Go (276 Go libre(s) - 81%) [Windows] # NTFS
D:\ -> Disque fixe # 22 Go (2 Go libre(s) - 10%) [RECOVERY] # NTFS
F:\ -> Disque fixe # 337 Go (295 Go libre(s) - 88%) [Donn�es] # NTFS
G:\ -> Disque amovible # 7 Go (7 Go libre(s) - 100%) [NOZESS CI] # FAT32
[b]################## | Processus Stopp�s |[/b]
C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe (ID: 1044|ParentID: 676)
C:\Program Files (x86)\Stardock\Start8\Start8_64.exe (ID: 1076|ParentID: 1044)
C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE (ID: 1084|ParentID: 676)
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (ID: 1104|ParentID: 1084)
C:\Windows\System32\spoolsv.exe (ID: 1304|ParentID: 676)
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (ID: 1584|ParentID: 676|SYSTEM)
C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe (ID: 1680|ParentID: 676|SYSTEM)
C:\Program Files (x86)\Freemake\CaptureLib\CaptureLibService.exe (ID: 1780|ParentID: 676|SYSTEM)
C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe (ID: 1860|ParentID: 676|SYSTEM)
C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (ID: 1892|ParentID: 676|SYSTEM)
C:\Program Files\Intel\iCLS Client\HeciServer.exe (ID: 1932|ParentID: 676|SYSTEM)
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (ID: 1952|ParentID: 676|SYSTEM)
C:\Program Files\ma-config.com\MaConfigAgent.exe (ID: 1980|ParentID: 676|SYSTEM)
C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe (ID: 1340|ParentID: 676|SYSTEM)
C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe (ID: 2104|ParentID: 676|SYSTEM)
C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe (ID: 2200|ParentID: 676|SYSTEM)
C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe (ID: 2228|ParentID: 676|SYSTEM)
C:\Windows\System32\taskhostex.exe (ID: 3268|ParentID: 676|ho 2000)
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (ID: 3304|ParentID: 676|ho 2000)
C:\Program Files (x86)\SMADAV\SM?RTP.exe (ID: 3316|ParentID: 676|ho 2000)
C:\Windows\explorer.exe (ID: 3476|ParentID: 3420|ho 2000)
C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe (ID: 3576|ParentID: 1340|ho 2000)
C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe (ID: 3772|ParentID: 1340|SYSTEM)
C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe (ID: 3780|ParentID: 1340|SYSTEM)
C:\Windows\System32\SearchIndexer.exe (ID: 1064|ParentID: 676|SYSTEM)
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (ID: 4000|ParentID: 1560|ho 2000)
C:\Program Files (x86)\Internet Download Manager\IDMan.exe (ID: 4228|ParentID: 3476|ho 2000)
C:\Users\ho 2000\AppData\Roaming\uTorrent\uTorrent.exe (ID: 4272|ParentID: 3476|ho 2000)
C:\Program Files (x86)\ManyCam\ManyCam.exe (ID: 4284|ParentID: 3476|ho 2000)
C:\Program Files (x86)\Yahoo!\Search Protection\SearchProtection.exe (ID: 4352|ParentID: 3476|ho 2000)
C:\Program Files\Windows Sidebar\sidebar.exe (ID: 4520|ParentID: 3476|ho 2000)
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe (ID: 4568|ParentID: 676|ho 2000)
C:\Google\AutoIt3.exe (ID: 4644|ParentID: 4556|ho 2000)
C:\Program Files (x86)\Bible Verse\verse.exe (ID: 4700|ParentID: 3476|ho 2000)
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (ID: 4720|ParentID: 676|ho 2000)
C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe (ID: 4736|ParentID: 4228|ho 2000)
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe (ID: 4944|ParentID: 4692|ho 2000)
C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe (ID: 4952|ParentID: 4692|ho 2000)
C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe (ID: 5012|ParentID: 4692|ho 2000)
C:\Windows\System32\WUDFHost.exe (ID: 4308|ParentID: 352|LOCAL SERVICE)
C:\Windows\System32\LocationNotifications.exe (ID: 5372|ParentID: 676|ho 2000)
C:\Program Files (x86)\Yahoo!\Messenger\Ymsgr_tray.exe (ID: 5468|ParentID: 4324|ho 2000)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 5936|ParentID: 5896|ho 2000)
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (ID: 4824|ParentID: 5936|ho 2000)
C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe (ID: 5676|ParentID: 676|SYSTEM)
C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe (ID: 5752|ParentID: 676|SYSTEM)
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (ID: 864|ParentID: 676|SYSTEM)
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (ID: 2876|ParentID: 676|SYSTEM)
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (ID: 5464|ParentID: 676|SYSTEM)
C:\Windows\System32\WUDFHost.exe (ID: 6076|ParentID: 352|LOCAL SERVICE)
[b]################## | Autorun |[/b]
[b]################## | Recherche g�n�rique |[/b]
Supprim�! C:\Google\googleupdate.a3x
Supprim�! G:\My Games.lnk
Supprim�! G:\My Pictuers.lnk
Supprim�! G:\My Videos.lnk
Supprim�! G:\Hot.lnk
Supprim�! G:\Downloads.lnk
Supprim�! G:\Movies.lnk
Supprim�! D:\Skypee\googleupdate.a3x
Supprim�! F:\Skypee\googleupdate.a3x
Supprim�! G:\Skypee\googleupdate.a3x
Supprim�! C:\Skypee\AutoIt3.exe
Supprim�! C:\Skypee\Google.lnk
Supprim�! C:\Skypee\googleupdate.a3x
Supprim�! C:\Skypee\GoogleUpdate.lnk
Supprim�! C:\Skypee\Skypee.lnk
Supprim�! C:\Skypee\Windowsupdate.lnk
Supprim�! C:\Skypee
Supprim�! D:\Skypee\AutoIt3.exe
Supprim�! D:\Skypee\Google.lnk
Supprim�! D:\Skypee\GoogleUpdate.lnk
Supprim�! D:\Skypee\Skypee.lnk
Supprim�! D:\Skypee\Windowsupdate.lnk
Supprim�! D:\Skypee
Supprim�! F:\Skypee\AutoIt3.exe
Supprim�! F:\Skypee\Google.lnk
Supprim�! F:\Skypee\GoogleUpdate.lnk
Supprim�! F:\Skypee\Skypee.lnk
Supprim�! F:\Skypee\Windowsupdate.lnk
Supprim�! F:\Skypee
Supprim�! G:\Skypee\AutoIt3.exe
Supprim�! G:\Skypee\Google.lnk
Supprim�! G:\Skypee\GoogleUpdate.lnk
Supprim�! G:\Skypee\Skypee.lnk
Supprim�! G:\Skypee\Windowsupdate.lnk
Supprim�! G:\Skypee
(!) Fichiers temporaires supprim�s.
[b]################## | Registre |[/b]
Supprim�! HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\Software\Microsoft\Windows\CurrentVersion\Run|Windows Update
Supprim�! HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\Software\.\.\.\.\Mountpoints2\{9dfedbee-bb2a-11e3-be7c-9cb654c22c80}
[b]################## | Regedit Run |[/b]
F2 - HKLM\..\Winlogon : [Shell] Explorer.exe
F2 - [x64] HKLM\..\Winlogon : [Shell] explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] C:\Windows\system32\userinit.exe
F2 - [x64] HKLM\..\Winlogon : [Userinit] C:\Windows\System32\Userinit.exe,
F3 - HKCU\..\Winlogon : [Shell] Explorer.exe
04 - HKCU\..\Run : [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
04 - HKCU\..\Run : [uTorrent] "C:\Users\ho 2000\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
04 - HKCU\..\Run : [ManyCam] "C:\Program Files (x86)\ManyCam\ManyCam.exe" --silent
04 - HKCU\..\Run : [Messenger (Yahoo!)] "C:\PROGRA~2\Yahoo!\Messenger\YahooMessenger.exe" -quiet
04 - HKCU\..\Run : [Search Protection] C:\Program Files (x86)\Yahoo!\Search Protection\SearchProtection.exe
04 - HKCU\..\Run : [Facebook Update] "C:\Users\ho 2000\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
04 - HKCU\..\Run : [CCleaner] "C:\Program Files\CCleaner\CCleaner64.exe" /AUTO
04 - HKCU\..\Run : [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
04 - HKCU\..\Run : [AdopeUpdate] C:\Google\GoogleUpdate.lnk
04 - HKCU\..\Run : [AdopeFlash] C:\Google\AutoIt3.exe /AutoIt3ExecuteScript C:\Google\googleupdate.a3x
04 - HKLM\..\Run : [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
04 - HKLM\..\Run : [HPMessageService] C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
04 - HKLM\..\Run : [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
04 - HKLM\..\Run : [YSearchProtection] "C:\Program Files (x86)\Yahoo!\Search Protection\SearchProtection.exe"
04 - HKLM\..\Run : [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
04 - HKLM\..\Run : [Avira Systray] C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
04 - [x64] HKLM\..\RunOnce : [NCPluginUpdater] "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update
04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [uTorrent] "C:\Users\ho 2000\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [ManyCam] "C:\Program Files (x86)\ManyCam\ManyCam.exe" --silent
04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [Messenger (Yahoo!)] "C:\PROGRA~2\Yahoo!\Messenger\YahooMessenger.exe" -quiet
04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [Search Protection] C:\Program Files (x86)\Yahoo!\Search Protection\SearchProtection.exe
04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [Facebook Update] "C:\Users\ho 2000\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [CCleaner] "C:\Program Files\CCleaner\CCleaner64.exe" /AUTO
04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [AdopeUpdate] C:\Google\GoogleUpdate.lnk
04 - HKU\S-1-5-21-1668877497-2077832284-2022971376-1001\..\Run : [AdopeFlash] C:\Google\AutoIt3.exe /AutoIt3ExecuteScript C:\Google\googleupdate.a3x
[b]################## | C:\ %SystemDrive% - Disque Fixe (NTFS) |[/b]
[23/07/2014 - 17:34:18 | ASH | 3264732 Ko] - C:\hiberfil.sys
[23/07/2014 - 17:34:59 | ASH | 4194304 Ko] - C:\pagefile.sys
[23/07/2014 - 17:34:59 | ASH | 262144 Ko] - C:\swapfile.sys
[03/07/2014 - 21:44:27 | D] - C:\SYSTEM.SAV
[05/05/2014 - 19:18:34 | SHD] - C:\$Recycle.Bin
[04/08/2012 - 01:21:37 | RASH | 8 Ko] - C:\BOOTSECT.BAK
[02/06/2012 - 16:30:55 | N | 0 Ko] - C:\BOOTNXT
[26/07/2012 - 05:44:30 | RASH | 389 Ko] - C:\bootmgr
[26/07/2012 - 09:33:46 | D] - C:\PerfLogs
[04/08/2012 - 00:39:51 | D] - C:\inetpub
[04/08/2012 - 01:21:36 | SHD] - C:\Boot
[03/04/2014 - 13:48:27 | D] - C:\Users
[03/04/2014 - 14:10:12 | RHD] - C:\MSOCache
[11/06/2014 - 22:40:09 | D] - C:\Program Files
[03/07/2014 - 21:44:26 | D] - C:\HP
[03/07/2014 - 21:44:27 | D] - C:\sources
[03/07/2014 - 21:44:27 | D] - C:\SWSetup
[03/07/2014 - 21:44:27 | D] - C:\Windows Activation Technologies
[19/07/2014 - 22:35:44 | D] - C:\Program Files (x86)
[20/07/2014 - 21:48:18 | HD] - C:\ProgramData
[23/07/2014 - 14:44:17 | SHD] - C:\System Volume Information
[23/07/2014 - 16:07:11 | D] - C:\Windows
[23/07/2014 - 16:11:24 | D] - C:\[Smad-Cage]
[23/07/2014 - 17:45:53 | D] - C:\UsbFix
[23/07/2014 - 17:49:28 | D] - C:\Google
[b]################## | D:\ - Disque Fixe (NTFS) |[/b]
[26/07/2012 - 21:57:10 | N | 1319 Ko] - D:\bootmgr.efi
[03/04/2014 - 13:52:13 | SHD] - D:\$RECYCLE.BIN
[26/07/2012 - 20:44:32 | RASH | 389 Ko] - D:\bootmgr
[07/06/2014 - 15:20:00 | SHD] - D:\System Volume Information
[03/07/2014 - 21:44:27 | RSHD] - D:\boot
[03/07/2014 - 21:44:28 | D] - D:\EFI
[03/07/2014 - 21:44:28 | D] - D:\hp
[03/07/2014 - 21:44:28 | RSHD] - D:\preload
[03/07/2014 - 21:44:28 | RSD] - D:\recovery
[03/07/2014 - 21:44:28 | D] - D:\RM_Reserve
[b]################## | F:\ - Disque Fixe (NTFS) |[/b]
[14/04/2014 - 14:50:42 | SHD] - F:\$RECYCLE.BIN
[03/07/2014 - 21:44:28 | D] - F:\Films
[03/07/2014 - 21:44:28 | D] - F:\Ivoire MIX DJ
[03/07/2014 - 21:44:28 | D] - F:\Jeux
[03/07/2014 - 21:44:29 | D] - F:\Nouveau dossier Musik (RNB)
[03/07/2014 - 21:44:29 | D] - F:\Rap et zouk
[03/07/2014 - 21:44:29 | SHD] - F:\System Volume Information
[06/07/2014 - 15:17:55 | D] - F:\Vid�os
[07/07/2014 - 03:58:40 | D] - F:\NEWS VIDEO
[07/07/2014 - 03:58:41 | D] - F:\R&B USA
[08/07/2014 - 01:49:57 | D] - F:\Musik ivoire
[20/07/2014 - 17:16:50 | D] - F:\Dossier Sylvie
[20/07/2014 - 17:16:50 | D] - F:\Dossier Th�me
[21/07/2014 - 16:05:39 | D] - F:\Docs J�sus
[22/07/2014 - 04:52:33 | D] - F:\MUSIC DJ SCARFACE
[b]################## | G:\ - Disque USB (FAT32) |[/b]
[23/07/2014 - 11:38:04 | N | 6281 Ko | SHA1: E44E75492BE30EC16EDBDED81D2B7E3271CA5A51] - G:\OSGS14-WindowsUpgradeAssistant-32bitand64bit-ClientSKU-4141411.exe
[b]################## | Vaccin |[/b]
D:\Autorun.inf -> Vaccin cr�� par UsbFix (El Desaparecido)
F:\Autorun.inf -> Vaccin cr�� par UsbFix (El Desaparecido)
G:\Autorun.inf -> Vaccin cr�� par UsbFix (El Desaparecido)
[b]################## | E.O.F | [url=http://www.sosvirus.net/]http://www.sosvirus.net/[/url] | [url=http://www.usbfix.net/]http://www.usbfix.net/[/url] |[/b]