Vous pensez être infecté, des pubs s'affichent quand vous naviguez sur internet ?
Perte de données, ralentissement système, virus USB ?
Désinfectez votre ordinateur gratuitement !
  • Avatar du membre
Avatar du membre
par Renaud2
#13837
Bonjour,

J'ai un soucis de raccourcis qui se créent sur ma clef USB lorsque je tente de transférer des dossiers.

Après une petite balade sur le net, j'ai vu qu'UsbFix pourrait m'aider. Voici mon rapport ci-dessous.

A votre bon coeur ;) Merci!



############################## | UsbFix V 7.147 | [Recherche]

Utilisateur: Stéphanie (Administrateur) # STà‰PHANIE-PC
Mis à  jour le 30/10/2013 par El Desaparecido - Team SosVirus
Lancé à  11:27:47 | 01/11/2013

Site Web: http://www.usbfix.net/" onclick="window.open(this.href);return false;
Forum : http://www.sosvirus.net/" onclick="window.open(this.href);return false;
Upload Malware: http://www.sosvirus.net/upload_malware.php" onclick="window.open(this.href);return false;
Contact: http://www.usbfix.net/contact/" onclick="window.open(this.href);return false;

PC: Dell Inc. (0667CC)
CPU: Intel(R) Core(TM) i5 CPU M 560 @ 2.67GHz
RAM -> [Total : 1974 | Free : 726]
Bios: Dell Inc.
Boot: Normal boot

OS: Microsoft Windows 7 Professionnel (6.1.7601 32-Bit) Service Pack 1
WB: Windows Internet Explorer : 10.0.9200.16721
WB: Google Chrome : 30.0.1599.101
WB: Mozilla Firefox : 24.0

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: Microsoft Security Essentials [Enabled | Updated]
AS: Windows Defender : 6.1.7600.16385 (win7_rtm.090713-1255)
FW: Windows FireWall Service [Enabled]

C:\ (%systemdrive%) -> Disque fixe # 149 Go (8 Go libre(s) - 5%) [] # NTFS
D:\ -> CD-ROM
E:\ -> Disque amovible # 980 Mo (489 Mo libre(s) - 50%) [CLEF GRISE] # FAT32
F:\ -> Disque amovible # 982 Mo (159 Mo libre(s) - 16%) [CLEF BLEUE] # FAT

################## | Référence de comparaison MD5 |

Md5 : DENIED -> C:\Users\STPHAN~1\AppData\Local\Temp\mhH5Vwcp.vbs
Md5 : 38139914a81ebec818ed8428888f5a38 -> E:\mhH5Vwcp.vbs
Md5 : 38139914a81ebec818ed8428888f5a38 -> F:\mhH5Vwcp.vbs

################## | Processus Actif |

C:\Windows\system32\csrss.exe (ID: 420 |ParentID: 392)
C:\Windows\system32\wininit.exe (ID: 484 |ParentID: 392)
C:\Windows\system32\csrss.exe (ID: 492 |ParentID: 476)
C:\Windows\system32\services.exe (ID: 540 |ParentID: 484)
C:\Windows\system32\lsass.exe (ID: 568 |ParentID: 484)
C:\Windows\system32\lsm.exe (ID: 576 |ParentID: 484)
C:\Windows\system32\svchost.exe (ID: 680 |ParentID: 540)
C:\Windows\system32\winlogon.exe (ID: 752 |ParentID: 476)
C:\Windows\system32\svchost.exe (ID: 788 |ParentID: 540)
c:\Program Files\Microsoft Security Client\MsMpEng.exe (ID: 868 |ParentID: 540)
C:\Windows\System32\svchost.exe (ID: 980 |ParentID: 540)
C:\Windows\System32\svchost.exe (ID: 1020 |ParentID: 540)
C:\Windows\system32\svchost.exe (ID: 1048 |ParentID: 540)
C:\Windows\system32\svchost.exe (ID: 1080 |ParentID: 540)
C:\Program Files\IDT\WDM\STacSV.exe (ID: 1104 |ParentID: 540)
C:\Windows\system32\svchost.exe (ID: 1424 |ParentID: 540)
C:\Windows\System32\spoolsv.exe (ID: 1584 |ParentID: 540)
C:\Windows\system32\svchost.exe (ID: 1612 |ParentID: 540)
C:\Windows\system32\svchost.exe (ID: 1640 |ParentID: 540)
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (ID: 1724 |ParentID: 540)
C:\Program Files\IDT\WDM\aestsrv.exe (ID: 1748 |ParentID: 540)
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (ID: 1776 |ParentID: 540)
C:\Program Files\Bonjour\mDNSResponder.exe (ID: 1800 |ParentID: 540)
C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (ID: 1832 |ParentID: 540)
C:\Windows\system32\Dwm.exe (ID: 1044 |ParentID: 1020)
C:\Windows\system32\taskhost.exe (ID: 572 |ParentID: 540)
C:\Windows\system32\svchost.exe (ID: 2080 |ParentID: 540)
C:\Windows\Explorer.EXE (ID: 2116 |ParentID: 428)
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (ID: 2156 |ParentID: 540)
C:\Windows\System32\igfxtray.exe (ID: 2424 |ParentID: 2116)
C:\Windows\system32\svchost.exe (ID: 2672 |ParentID: 540)
C:\Windows\System32\WUDFHost.exe (ID: 2748 |ParentID: 1020)
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (ID: 2812 |ParentID: 2156)
C:\Windows\system32\svchost.exe (ID: 2884 |ParentID: 540)
C:\Windows\System32\hkcmd.exe (ID: 3076 |ParentID: 2116)
C:\Windows\System32\igfxpers.exe (ID: 3092 |ParentID: 2116)
C:\Program Files\DellTPad\Apoint.exe (ID: 3108 |ParentID: 2116)
C:\Program Files\Microsoft Security Client\msseces.exe (ID: 3164 |ParentID: 2116)
C:\Program Files\IDT\WDM\sttray.exe (ID: 3196 |ParentID: 2116)
C:\Program Files\DellTPad\ApMsgFwd.exe (ID: 3208 |ParentID: 3108)
C:\Program Files\DellTPad\HidFind.exe (ID: 3328 |ParentID: 3108)
C:\Program Files\DellTPad\Apntex.exe (ID: 3340 |ParentID: 3296)
C:\Windows\system32\conhost.exe (ID: 3412 |ParentID: 492)
C:\Program Files\iTunes\iTunesHelper.exe (ID: 3580 |ParentID: 2116)
C:\Windows\System32\wscript.exe (ID: 3596 |ParentID: 2116)
C:\Windows\system32\SearchIndexer.exe (ID: 3616 |ParentID: 540)
C:\Program Files\Common Files\Java\Java Update\jusched.exe (ID: 3664 |ParentID: 2116)
c:\Program Files\Microsoft Security Client\NisSrv.exe (ID: 3672 |ParentID: 540)
C:\Users\Stéphanie\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (ID: 3772 |ParentID: 2116)
C:\Users\Stéphanie\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe (ID: 3796 |ParentID: 2116)
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (ID: 3832 |ParentID: 2116)
C:\Program Files\iPod\bin\iPodService.exe (ID: 3880 |ParentID: 540)
C:\Windows\system32\wbem\wmiprvse.exe (ID: 2104 |ParentID: 680)
C:\Program Files\Windows Media Player\wmpnetwk.exe (ID: 2584 |ParentID: 540)
C:\Windows\System32\svchost.exe (ID: 3980 |ParentID: 540)
C:\Windows\system32\DllHost.exe (ID: 4448 |ParentID: 680)
C:\Windows\system32\igfxsrvc.exe (ID: 656 |ParentID: 680)
C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe (ID: 4960 |ParentID: 540)
C:\Windows\System32\WUDFHost.exe (ID: 2544 |ParentID: 1020)
C:\Program Files\Google\Chrome\Application\chrome.exe (ID: 5488 |ParentID: 2116)
C:\Program Files\Google\Chrome\Application\chrome.exe (ID: 4648 |ParentID: 5488)
C:\Program Files\Google\Chrome\Application\chrome.exe (ID: 5312 |ParentID: 5488)
C:\Program Files\Google\Chrome\Application\chrome.exe (ID: 5624 |ParentID: 5488)
C:\Program Files\Google\Chrome\Application\chrome.exe (ID: 6084 |ParentID: 5488)
C:\Program Files\Google\Chrome\Application\chrome.exe (ID: 5936 |ParentID: 5488)
C:\Program Files\Google\Chrome\Application\chrome.exe (ID: 5116 |ParentID: 5488)
C:\Program Files\Google\Chrome\Application\chrome.exe (ID: 3492 |ParentID: 5488)
C:\Program Files\Google\Chrome\Application\chrome.exe (ID: 4464 |ParentID: 5488)
C:\Program Files\Google\Chrome\Application\chrome.exe (ID: 2132 |ParentID: 5488)
C:\Program Files\Google\Chrome\Application\chrome.exe (ID: 4360 |ParentID: 5488)
C:\Program Files\Google\Chrome\Application\chrome.exe (ID: 976 |ParentID: 5488)
C:\UsbFix\Go.exe (ID: 5236 |ParentID: 4816)
C:\Windows\system32\DllHost.exe (ID: 5576 |ParentID: 680)

################## | Regedit Run |

HKLM\SOFTWARE | Run : [IgfxTray] - C:\Windows\system32\igfxtray.exe
HKLM\SOFTWARE | Run : [HotKeysCmds] - C:\Windows\system32\hkcmd.exe
HKLM\SOFTWARE | Run : [Persistence] - C:\Windows\system32\igfxpers.exe
HKLM\SOFTWARE | Run : [Apoint] - C:\Program Files\DellTPad\Apoint.exe
HKLM\SOFTWARE | Run : [Adobe ARM] - "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
HKLM\SOFTWARE | Run : [MSC] - "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
HKLM\SOFTWARE | Run : [APSDaemon] - "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
HKLM\SOFTWARE | Run : [SysTrayApp] - C:\Program Files\IDT\WDM\sttray.exe
HKLM\SOFTWARE | Run : [QuickTime Task] - "C:\Program Files\QuickTime\QTTask.exe" -atboottime
HKLM\SOFTWARE | Run : [iTunesHelper] - "C:\Program Files\iTunes\iTunesHelper.exe"
HKLM\SOFTWARE | Run : [mhH5Vwcp] - wscript.exe //B "C:\Users\STPHAN~1\AppData\Local\Temp\mhH5Vwcp.vbs"
HKLM\SOFTWARE | Run : [SunJavaUpdateSched] - "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
HKLM\SOFTWARE | RunOnce : [] -
HKU\S-1-5-19\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-20\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-21-2522388213-15676648-4119400170-1000\SOFTWARE | Run : [Spotify Web Helper] - "C:\Users\Stéphanie\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
HKU\S-1-5-21-2522388213-15676648-4119400170-1000\SOFTWARE | Run : [mhH5Vwcp] - wscript.exe //B "C:\Users\STPHAN~1\AppData\Local\Temp\mhH5Vwcp.vbs"
HKU\S-1-5-21-2522388213-15676648-4119400170-1000\SOFTWARE | Run : [SkyDrive] - "C:\Users\Stéphanie\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" /background
HKU\S-1-5-19\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe
HKU\S-1-5-20\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe

################## | Recherche générique |

Présent! E:\mhH5Vwcp.vbs
Présent! F:\mhH5Vwcp.vbs
Présent! C:\Users\STPHAN~1\AppData\Local\Temp\mhH5Vwcp.vbs
Présent! C:\Users\Stéphanie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\mhH5Vwcp.vbs
Présent! E:\Clé pour C&J.lnk
Présent! F:\Clé pour C&J.lnk
Présent! F:\Camille & Jonathan Diaporama.lnk

################## | Comparaison MD5 |

Présent! Md5 : 38139914A81EBEC818ED8428888F5A38 -> C:\Users\Stéphanie\AppData\Local\Temp\mhH5Vwcp.vbs
Présent! Md5 : 38139914A81EBEC818ED8428888F5A38 -> C:\Users\Stéphanie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\mhH5Vwcp.vbs
Présent! Md5 : 38139914A81EBEC818ED8428888F5A38 -> E:\mhH5Vwcp.vbs
Présent! Md5 : 38139914A81EBEC818ED8428888F5A38 -> F:\mhH5Vwcp.vbs

################## | Registre |

Présent! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System|EnableLUA -> 0
Présent! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System|ConsentPromptBehaviorAdmin -> 0
Présent! HKU\S-1-5-21-2522388213-15676648-4119400170-1000\Software\Microsoft\Windows\CurrentVersion\Run|mhH5Vwcp
Présent! HKCU\Software\Microsoft\Windows\CurrentVersion\Run|mhH5Vwcp
Présent! HKLM\Software\Microsoft\Windows\CurrentVersion\Run|mhH5Vwcp
Présent! HKU\S-1-5-21-2522388213-15676648-4119400170-1000\Software\Microsoft\Windows\CurrentVersion\Run|mhH5Vwcp
Présent! HKCU\Software\Microsoft\Windows\CurrentVersion\Run|mhH5Vwcp
Présent! HKLM\Software\Microsoft\Windows\CurrentVersion\Run|mhH5Vwcp
Présent! HKU\S-1-5-21-2522388213-15676648-4119400170-1000\Software\Microsoft\Windows\CurrentVersion\Run|mhH5Vwcp
Présent! HKCU\Software\Microsoft\Windows\CurrentVersion\Run|mhH5Vwcp
Présent! HKLM\Software\Microsoft\Windows\CurrentVersion\Run|mhH5Vwcp
Présent! HKU\S-1-5-21-2522388213-15676648-4119400170-1000\Software\Microsoft\Windows\CurrentVersion\Run|mhH5Vwcp
Présent! HKCU\Software\Microsoft\Windows\CurrentVersion\Run|mhH5Vwcp
Présent! HKLM\Software\Microsoft\Windows\CurrentVersion\Run|mhH5Vwcp

################## | Vaccin |

(!) Cet ordinateur n'est pas vacciné!

################## | E.O.F | http://www.usbfix.net" onclick="window.open(this.href);return false; - http://www.sosvirus.net" onclick="window.open(this.href);return false; |
Avatar du membre
par Renaud2
#13939
Sympa! Merci :)

Voici le récap:

############################## | UsbFix V 7.147 | [Suppression]

Utilisateur: Stéphanie (Administrateur) # STà‰PHANIE-PC
Mis à  jour le 30/10/2013 par El Desaparecido - Team SosVirus
Lancé à  18:28:35 | 01/11/2013

Site Web: http://www.usbfix.net/" onclick="window.open(this.href);return false;
Forum : http://www.sosvirus.net/" onclick="window.open(this.href);return false;
Upload Malware: http://www.sosvirus.net/upload_malware.php" onclick="window.open(this.href);return false;
Contact: http://www.usbfix.net/contact/" onclick="window.open(this.href);return false;

PC: Dell Inc. (0667CC)
CPU: Intel(R) Core(TM) i5 CPU M 560 @ 2.67GHz
RAM -> [Total : 1974 | Free : 504]
Bios: Dell Inc.
Boot: Normal boot

OS: Microsoft Windows 7 Professionnel (6.1.7601 32-Bit) Service Pack 1
WB: Windows Internet Explorer : 10.0.9200.16721
WB: Google Chrome : 30.0.1599.101
WB: Mozilla Firefox : 24.0

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: Microsoft Security Essentials [(!) Disabled | Updated]
AS: Windows Defender : 6.1.7600.16385 (win7_rtm.090713-1255)
FW: Windows FireWall Service [Enabled]

C:\ (%systemdrive%) -> Disque fixe # 149 Go (8 Go libre(s) - 5%) [] # NTFS
D:\ -> CD-ROM
E:\ -> Disque amovible # 980 Mo (159 Mo libre(s) - 16%) [CLEF GRISE] # FAT32
F:\ -> Disque amovible # 982 Mo (159 Mo libre(s) - 16%) [CLEF BLEUE] # FAT

################## | Référence de comparaison MD5 |

Md5 : DENIED -> C:\Users\STPHAN~1\AppData\Local\Temp\mhH5Vwcp.vbs
Md5 : 38139914a81ebec818ed8428888f5a38 -> E:\mhH5Vwcp.vbs
Md5 : 38139914a81ebec818ed8428888f5a38 -> F:\mhH5Vwcp.vbs

################## | Processus Stoppés |

Stoppé! c:\Program Files\Microsoft Security Client\MsMpEng.exe (ID: 868 |ParentID: 540)
Stoppé! C:\Program Files\IDT\WDM\STacSV.exe (ID: 1104 |ParentID: 540)
Stoppé! C:\Windows\System32\spoolsv.exe (ID: 1584 |ParentID: 540)
Stoppé! C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (ID: 1724 |ParentID: 540)
Stoppé! C:\Program Files\IDT\WDM\aestsrv.exe (ID: 1748 |ParentID: 540)
Stoppé! C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (ID: 1776 |ParentID: 540)
Stoppé! C:\Program Files\Bonjour\mDNSResponder.exe (ID: 1800 |ParentID: 540)
Stoppé! C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (ID: 1832 |ParentID: 540)
Stoppé! C:\Windows\system32\taskhost.exe (ID: 572 |ParentID: 540)
Stoppé! C:\Windows\Explorer.EXE (ID: 2116 |ParentID: 428)
Stoppé! C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (ID: 2156 |ParentID: 540)
Stoppé! C:\Windows\System32\igfxtray.exe (ID: 2424 |ParentID: 2116)
Stoppé! C:\Windows\System32\WUDFHost.exe (ID: 2748 |ParentID: 1020)
Stoppé! C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (ID: 2812 |ParentID: 2156)
Stoppé! C:\Windows\System32\hkcmd.exe (ID: 3076 |ParentID: 2116)
Stoppé! C:\Windows\System32\igfxpers.exe (ID: 3092 |ParentID: 2116)
Stoppé! C:\Program Files\DellTPad\Apoint.exe (ID: 3108 |ParentID: 2116)
Stoppé! C:\Program Files\Microsoft Security Client\msseces.exe (ID: 3164 |ParentID: 2116)
Stoppé! C:\Program Files\IDT\WDM\sttray.exe (ID: 3196 |ParentID: 2116)
Stoppé! C:\Program Files\DellTPad\ApMsgFwd.exe (ID: 3208 |ParentID: 3108)
Stoppé! C:\Program Files\DellTPad\HidFind.exe (ID: 3328 |ParentID: 3108)
Stoppé! C:\Program Files\DellTPad\Apntex.exe (ID: 3340 |ParentID: 3296)
Stoppé! C:\Windows\system32\conhost.exe (ID: 3412 |ParentID: 492)
Stoppé! C:\Program Files\iTunes\iTunesHelper.exe (ID: 3580 |ParentID: 2116)
Stoppé! C:\Windows\System32\wscript.exe (ID: 3596 |ParentID: 2116)
Stoppé! C:\Windows\system32\SearchIndexer.exe (ID: 3616 |ParentID: 540)
Stoppé! C:\Program Files\Common Files\Java\Java Update\jusched.exe (ID: 3664 |ParentID: 2116)
Stoppé! C:\Users\Stéphanie\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (ID: 3772 |ParentID: 2116)
Stoppé! C:\Users\Stéphanie\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe (ID: 3796 |ParentID: 2116)
Stoppé! C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (ID: 3832 |ParentID: 2116)
Stoppé! C:\Program Files\iPod\bin\iPodService.exe (ID: 3880 |ParentID: 540)
Stoppé! C:\Program Files\Windows Media Player\wmpnetwk.exe (ID: 2584 |ParentID: 540)
Stoppé! C:\Windows\system32\DllHost.exe (ID: 4448 |ParentID: 680)
Stoppé! C:\Windows\system32\igfxsrvc.exe (ID: 656 |ParentID: 680)
Stoppé! C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe (ID: 4960 |ParentID: 540)
Stoppé! C:\Windows\System32\WUDFHost.exe (ID: 2544 |ParentID: 1020)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (ID: 5488 |ParentID: 2116)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (ID: 4648 |ParentID: 5488)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (ID: 5624 |ParentID: 5488)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (ID: 6084 |ParentID: 5488)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (ID: 5936 |ParentID: 5488)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (ID: 5116 |ParentID: 5488)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (ID: 3492 |ParentID: 5488)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (ID: 4464 |ParentID: 5488)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (ID: 2132 |ParentID: 5488)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (ID: 4360 |ParentID: 5488)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (ID: 976 |ParentID: 5488)
Stoppé! C:\Windows\system32\taskeng.exe (ID: 5844 |ParentID: 1080)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (ID: 2000 |ParentID: 5488)
Stoppé! C:\Program Files\Mozilla Firefox\firefox.exe (ID: 3548 |ParentID: 360)
Stoppé! C:\Windows\system32\DllHost.exe (ID: 1380 |ParentID: 680)

################## | Regedit Run |

HKLM\SOFTWARE | Run : [IgfxTray] - C:\Windows\system32\igfxtray.exe
HKLM\SOFTWARE | Run : [HotKeysCmds] - C:\Windows\system32\hkcmd.exe
HKLM\SOFTWARE | Run : [Persistence] - C:\Windows\system32\igfxpers.exe
HKLM\SOFTWARE | Run : [Apoint] - C:\Program Files\DellTPad\Apoint.exe
HKLM\SOFTWARE | Run : [Adobe ARM] - "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
HKLM\SOFTWARE | Run : [MSC] - "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
HKLM\SOFTWARE | Run : [APSDaemon] - "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
HKLM\SOFTWARE | Run : [SysTrayApp] - C:\Program Files\IDT\WDM\sttray.exe
HKLM\SOFTWARE | Run : [QuickTime Task] - "C:\Program Files\QuickTime\QTTask.exe" -atboottime
HKLM\SOFTWARE | Run : [iTunesHelper] - "C:\Program Files\iTunes\iTunesHelper.exe"
HKLM\SOFTWARE | Run : [mhH5Vwcp] - wscript.exe //B "C:\Users\STPHAN~1\AppData\Local\Temp\mhH5Vwcp.vbs"
HKLM\SOFTWARE | Run : [SunJavaUpdateSched] - "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
HKLM\SOFTWARE | RunOnce : [] -
HKU\S-1-5-19\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-20\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-21-2522388213-15676648-4119400170-1000\SOFTWARE | Run : [Spotify Web Helper] - "C:\Users\Stéphanie\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
HKU\S-1-5-21-2522388213-15676648-4119400170-1000\SOFTWARE | Run : [mhH5Vwcp] - wscript.exe //B "C:\Users\STPHAN~1\AppData\Local\Temp\mhH5Vwcp.vbs"
HKU\S-1-5-21-2522388213-15676648-4119400170-1000\SOFTWARE | Run : [SkyDrive] - "C:\Users\Stéphanie\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" /background
HKU\S-1-5-19\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe
HKU\S-1-5-20\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe

################## | Recherche générique |

Supprimé! E:\mhH5Vwcp.vbs
Supprimé! F:\mhH5Vwcp.vbs
Supprimé! C:\Users\STPHAN~1\AppData\Local\Temp\mhH5Vwcp.vbs
Supprimé! C:\Users\Stéphanie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\mhH5Vwcp.vbs
Supprimé! E:\Clé pour C&J.lnk
Supprimé! E:\Camille & Jonathan Diaporama.lnk
Supprimé! F:\Clé pour C&J.lnk
Supprimé! F:\Camille & Jonathan Diaporama.lnk

(!) Fichiers temporaires supprimés.
################## | Comparaison MD5 |


################## | Registre |

Réparé ! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System|EnableLUA -> 1
Réparé ! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System|ConsentPromptBehaviorAdmin -> 5
Supprimé! HKU\S-1-5-21-2522388213-15676648-4119400170-1000\Software\Microsoft\Windows\CurrentVersion\Run|mhH5Vwcp
Supprimé! HKLM\Software\Microsoft\Windows\CurrentVersion\Run|mhH5Vwcp

################## | Listing |

[05/05/2012 - 10:55:19 | SHD ] C:\$Recycle.Bin
[10/06/2009 - 22:42:20 | N | 24] C:\autoexec.bat
[10/06/2009 - 22:42:20 | N | 10] C:\config.sys
[04/08/2012 - 11:51:46 | D ] C:\dell
[14/07/2009 - 05:53:55 | SHD ] C:\Documents and Settings
[04/05/2012 - 09:08:46 | D ] C:\Drivers
[29/06/2013 - 14:20:57 | N | 0] C:\END
[01/11/2013 - 10:33:27 | ASH | 1552281600] C:\hiberfil.sys
[04/05/2012 - 18:53:03 | D ] C:\Hotfix
[04/05/2012 - 09:45:29 | D ] C:\Intel
[04/05/2012 - 10:26:27 | RHD ] C:\MSOCache
[01/11/2013 - 10:33:31 | ASH | 2069712896] C:\pagefile.sys
[14/07/2009 - 03:37:05 | D ] C:\PerfLogs
[15/10/2013 - 08:34:37 | D ] C:\Program Files
[24/10/2013 - 22:44:30 | HD ] C:\ProgramData
[04/05/2012 - 09:00:13 | SHD ] C:\Recovery
[14/10/2013 - 11:40:36 | D ] C:\SkyDriveTemp
[29/10/2013 - 23:44:40 | SHD ] C:\System Volume Information
[01/11/2013 - 18:31:28 | D ] C:\UsbFix
[01/11/2013 - 18:32:23 | A | 9514] C:\UsbFix [Clean 2] STà‰PHANIE-PC.txt
[01/11/2013 - 11:35:49 | N | 10707] C:\UsbFix [Scan 1] STà‰PHANIE-PC.txt
[04/05/2012 - 09:00:19 | D ] C:\Users
[01/11/2013 - 10:36:42 | D ] C:\Windows
[01/11/2013 - 11:12:12 | D ] E:\Clé pour C&J
[06/10/2013 - 22:11:06 | N | 191245821] E:\Camille & Jonathan Diaporama.mp4
[01/11/2013 - 11:12:12 | D ] F:\Clé pour C&J
[06/10/2013 - 22:11:06 | N | 191245821] F:\Camille & Jonathan Diaporama.mp4

################## | Vaccin |

E:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
F:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

################## | E.O.F | http://www.usbfix.net" onclick="window.open(this.href);return false; - http://www.sosvirus.net" onclick="window.open(this.href);return false; |

bonsoir oki pour la fermeture je m'en charge car[…]

how to clean junk files

Hello don't use this program , it's a bullshit :)

Bonjour https://www.aht.li/3213847/AdsFix.exe b[…]

De rien Bon WE :)