[b]############################## | UsbFix V 9.040 | [Recherche][/b] Utilisateur: Elisa GUICHET (Administrateur) # PC-ELISA Mis à jour le 02/04/2017 par SOSVirus Lancé à 07:59:17 | 02/04/2017 Site Web : [url=https://www.usb-antivirus.com/fr/]https://www.usb-antivirus.com/fr/[/url] Tutoriel : [url=https://www.sosvirus.net/tutoriel-usbfix/]https://www.sosvirus.net/tutoriel-usbfix/[/url] Assistance : [url=https://www.sosvirus.net/]https://www.sosvirus.net/[/url] Détection en Live : [url=http://www.sosmalware.com/fr/usbfix/]http://www.sosmalware.com/fr/usbfix/[/url] Contact : [url=https://www.usb-antivirus.com/fr/contact/]https://www.usb-antivirus.com/fr/contact/[/url] [b]################## | System information |[/b] MB: Hewlett-Packard (1900) CPU: Intel(R) Pentium(R) CPU 987 @ 1.50GHz GC: Intel(R) HD Graphics RAM -> [Total : 6034 Mo | Free : 2776 Mo] Bios: Insyde Boot: Normal boot OS: Microsoft™ Windows 8 (6.2.9200 64-Bit) WB: Internet Explorer : 10.00.9200.16384 WB: Google Chrome : 37.0.2062.124 [b]################## | Security Information |[/b] AV: Norton AntiVirus [[b](!) Désactivé[/b] |[b](!) Non à jour[/b]] AV: Windows Defender [Actif |A jour] AS: Windows Defender [Actif |A jour] AS: Norton AntiVirus [[b](!) Désactivé[/b] |[b](!) Non à jour[/b]] AS: Malwarebytes Anti-Malware : 2.0.2.1012 FW: Windows Firewall [Actif] SC: Security Center [Actif] WU: Windows Update [Actif] [b]################## | Disk Information |[/b] C:\ (%SystemDrive%) -> Disque fixe # 910 Go (578 Go libre(s) - 64%) [] # NTFS D:\ -> Disque fixe # 20 Go (2 Go libre(s) - 12%) [RECOVERY] # NTFS E:\ -> Disque amovible # 30 Go (27 Go libre(s) - 92%) [] # FAT32 [b]################## | Startup |[/b] F2 - HKLM\..\Winlogon : [Shell] explorer.exe F2 - [x64] HKLM\..\Winlogon : [Shell] explorer.exe F2 - HKLM\..\Winlogon : [Userinit] userinit.exe, F2 - [x64] HKLM\..\Winlogon : [Userinit] C:\Windows\system32\userinit.exe, 04 - HKCU\..\Run : [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart 04 - HKCU\..\Run : [ManyCam] "C:\Program Files (x86)\ManyCam\ManyCam.exe" --silent 04 - HKCU\..\Run : [Epson Stylus SX230] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHKE.EXE /FU "C:\Users\ELISAG~1\AppData\Local\Temp\E_S4700.tmp" /EF "HKCU" 04 - HKCU\..\Run : [Akamai NetSession Interface] "C:\Users\Elisa GUICHET\AppData\Local\Akamai\netsession_win.exe" 04 - HKCU\..\Run : [EPLTarget\P0000000000000001] C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIJJE.EXE /EPT "EPLTarget\P0000000000000001" /M "WF-3520 Series" 04 - HKCU\..\Run : [Grindstone 2] "C:\Program Files (x86)\Grindstone 2\Grindstone 2.exe" 04 - HKCU\..\Run : [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart 04 - HKCU\..\Run : [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun 04 - HKCU\..\Run : [EPLTarget\P0000000000000002] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATILGE.EXE /EPT "EPLTarget\P0000000000000002" /M "XP-215 217 Series" 04 - HKCU\..\Run : [MerciJacquieMichel] wscript.exe //B "C:\Users\ELISAG~1\AppData\Local\Temp\MerciJacquieMichel.vbe" 04 - HKCU\..\Run : [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun 04 - HKCU\..\Run : [GoogleChromeAutoLaunch_6F39D101E6F91C9663B63666BAFF62E8] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window 04 - HKLM\..\Run : [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" 04 - HKLM\..\Run : [HP CoolSense] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey 04 - HKLM\..\Run : [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" 04 - HKLM\..\Run : [UpdatePDRShortCut] "C:\Program Files (x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\PowerDirector" UpdateWithCreateOnce "Software\CyberLink\PowerDirector\8.0" 04 - HKLM\..\Run : [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" 04 - HKLM\..\Run : [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" 04 - HKLM\..\Run : [Nikon Message Center 2] C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe -s 04 - HKLM\..\Run : [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe 04 - HKLM\..\Run : [Malwarebytes Anti-Exploit] C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe 04 - HKLM\..\Run : [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start 04 - HKLM\..\RunOnce : [Malwarebytes Anti-Malware (cleanup)] "C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbamdor.exe" "C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware" 04 - [x64] HKLM\..\Run : [IgfxTray] "C:\Windows\system32\igfxtray.exe" 04 - [x64] HKLM\..\Run : [HotKeysCmds] "C:\Windows\system32\hkcmd.exe" 04 - [x64] HKLM\..\Run : [Persistence] "C:\Windows\system32\igfxpers.exe" 04 - [x64] HKLM\..\Run : [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe 04 - [x64] HKLM\..\Run : [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe 04 - HKU\S-1-5-21-1027143150-2569027947-3288961077-1001\..\Run : [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart 04 - HKU\S-1-5-21-1027143150-2569027947-3288961077-1001\..\Run : [ManyCam] "C:\Program Files (x86)\ManyCam\ManyCam.exe" --silent 04 - HKU\S-1-5-21-1027143150-2569027947-3288961077-1001\..\Run : [Epson Stylus SX230] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHKE.EXE /FU "C:\Users\ELISAG~1\AppData\Local\Temp\E_S4700.tmp" /EF "HKCU" 04 - HKU\S-1-5-21-1027143150-2569027947-3288961077-1001\..\Run : [Akamai NetSession Interface] "C:\Users\Elisa GUICHET\AppData\Local\Akamai\netsession_win.exe" 04 - HKU\S-1-5-21-1027143150-2569027947-3288961077-1001\..\Run : [EPLTarget\P0000000000000001] C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIJJE.EXE /EPT "EPLTarget\P0000000000000001" /M "WF-3520 Series" 04 - HKU\S-1-5-21-1027143150-2569027947-3288961077-1001\..\Run : [Grindstone 2] "C:\Program Files (x86)\Grindstone 2\Grindstone 2.exe" 04 - HKU\S-1-5-21-1027143150-2569027947-3288961077-1001\..\Run : [EADM] "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart 04 - HKU\S-1-5-21-1027143150-2569027947-3288961077-1001\..\Run : [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun 04 - HKU\S-1-5-21-1027143150-2569027947-3288961077-1001\..\Run : [EPLTarget\P0000000000000002] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATILGE.EXE /EPT "EPLTarget\P0000000000000002" /M "XP-215 217 Series" 04 - HKU\S-1-5-21-1027143150-2569027947-3288961077-1001\..\Run : [MerciJacquieMichel] wscript.exe //B "C:\Users\ELISAG~1\AppData\Local\Temp\MerciJacquieMichel.vbe" 04 - HKU\S-1-5-21-1027143150-2569027947-3288961077-1001\..\Run : [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun 04 - HKU\S-1-5-21-1027143150-2569027947-3288961077-1001\..\Run : [GoogleChromeAutoLaunch_6F39D101E6F91C9663B63666BAFF62E8] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window 04 - HKU\S-1-5-18\..\RunOnce : [SpUninstallDeleteDir] rmdir /s /q "\SearchProtect" [b]################## | Recherche générique |[/b] Présent! C:\Users\Elisa GUICHET\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MerciJacquieMichel.vbe Présent! C:\Users\ELISAG~1\AppData\Local\Temp\MerciJacquieMichel.vbe Présent! E:\MerciJacquieMichel.vbe Présent! C:\Users\Elisa GUICHET\AppData\Local\Temp\MerciJacquieMichel.vbe Présent! HKCU\Software\b1dc744b25061e431af5806d6f40055c Présent! HKU\S-1-5-21-1027143150-2569027947-3288961077-1001\Software\b1dc744b25061e431af5806d6f40055c Présent! HKCU\Software\Microsoft\Windows\CurrentVersion\Run|MerciJacquieMichel Présent! HKU\S-1-5-21-1027143150-2569027947-3288961077-1001\Software\Microsoft\Windows\CurrentVersion\Run|MerciJacquieMichel Présent! HKCU|di [b]Analyse réalisée en 982.4 secondes[/b] [b]################## | E.O.F | [url=https://www.sosvirus.net/]https://www.sosvirus.net/[/url] | [url=https://www.usb-antivirus.com/fr/]https://www.usb-antivirus.com/fr/[/url] |[/b]