- mar. 18 févr. 2014 13:07
#90854
Bonjour à tous,
Comme il est souhaité, veuillez trouver ci-dessous mon rapport de recherche.
Je dispose de captures d'écran des dysfonctionnement portants sur ma clé USB, et cela ne me rassure pas du tout...
Merci par avance pour votre aide!!
############################## | UsbFix V 7.165 | [Recherche]
Utilisateur: Admin (Administrateur) # GSPNOTARCHIVE
Mis à jour le16/02/2014 par El Desaparecido - Team SosVirus
Lancé à 12:55:54 | 18/02/2014
Site Web : http://www.usbfix.net/" onclick="window.open(this.href);return false;
Changelog : http://www.usbfix.net/maj/" onclick="window.open(this.href);return false;
Support : http://www.sosvirus.net/" onclick="window.open(this.href);return false;
Upload Malware : http://www.sosvirus.net/upload_malware.php" onclick="window.open(this.href);return false;
Contact : http://www.usbfix.net/contact/" onclick="window.open(this.href);return false;
PC: LENOVO (417883G)
CPU: Intel(R) Core(TM) i5-2410M CPU @ 2.30GHz
RAM -> [Total : 8079 Mo| Free : 5795 Mo]
Bios: LENOVO
Boot: Normal boot
OS: Microsoft Windows 7 Professionnel (6.1.7601 64-Bit) Service Pack 1
WB: Windows Internet Explorer : 10.0.9200.16736
SC: Security Center [Enabled]
WU: Windows Update [Enabled]
AV: AVG AntiVirus Free Edition 2014 [Enabled | Updated]
AS: Windows Defender [(!) Disabled | (!) Outdated]
AS: AVG AntiVirus Free Edition 2014 [Enabled | Updated]
FW: Windows FireWall [Enabled]
C:\ (%systemdrive%) -> Disque fixe # 281 Go (197 Go libre(s) - 70%) [Windows7_OS] # NTFS
F:\ -> Disque amovible # 964 Mo (185 Mo libre(s) - 19%) [USB DISK] # FAT
Q:\ -> Disque fixe # 16 Go (3 Go libre(s) - 21%) [Lenovo_Recovery] # NTFS
################## | Processus Actif |
C:\PROGRA~2\AVG\AVG2014\avgrsa.exe (ID: 480 |ParentID: 468)
C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe (ID: 520 |ParentID: 480)
C:\Windows\system32\csrss.exe (ID: 788 |ParentID: 780)
C:\Windows\system32\wininit.exe (ID: 860 |ParentID: 780)
C:\Windows\system32\csrss.exe (ID: 880 |ParentID: 868)
C:\Windows\system32\winlogon.exe (ID: 936 |ParentID: 868)
C:\Windows\system32\services.exe (ID: 976 |ParentID: 860)
C:\Windows\system32\lsass.exe (ID: 984 |ParentID: 860)
C:\Windows\system32\lsm.exe (ID: 992 |ParentID: 860)
C:\Windows\system32\svchost.exe (ID: 752 |ParentID: 976)
C:\Windows\system32\ibmpmsvc.exe (ID: 884 |ParentID: 976)
C:\Windows\system32\svchost.exe (ID: 1036 |ParentID: 976)
C:\Windows\System32\svchost.exe (ID: 1140 |ParentID: 976)
C:\Windows\System32\svchost.exe (ID: 1176 |ParentID: 976)
C:\Windows\system32\svchost.exe (ID: 1224 |ParentID: 976)
C:\Windows\system32\svchost.exe (ID: 1256 |ParentID: 976)
C:\Windows\System32\WUDFHost.exe (ID: 1492 |ParentID: 1176)
C:\Windows\system32\svchost.exe (ID: 1556 |ParentID: 976)
C:\Windows\system32\WLANExt.exe (ID: 1768 |ParentID: 1176)
C:\Windows\system32\conhost.exe (ID: 1776 |ParentID: 788)
C:\Program Files\ThinkVantage Fingerprint Software\upeksvr.exe (ID: 1836 |ParentID: 1112)
C:\Windows\System32\spoolsv.exe (ID: 1924 |ParentID: 976)
C:\Windows\system32\svchost.exe (ID: 1688 |ParentID: 976)
C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe (ID: 2080 |ParentID: 976)
C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe (ID: 2100 |ParentID: 976)
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (ID: 2212 |ParentID: 976)
C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe (ID: 2248 |ParentID: 976)
C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe (ID: 2304 |ParentID: 976)
C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe (ID: 2404 |ParentID: 976)
C:\Windows\system32\CxAudMsg64.exe (ID: 2444 |ParentID: 976)
C:\Program Files\Intel\WiFi\bin\EvtEng.exe (ID: 2492 |ParentID: 976)
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe (ID: 2644 |ParentID: 976)
C:\Windows\system32\taskhost.exe (ID: 2856 |ParentID: 976)
C:\PROGRA~1\Lenovo\HOTKEY\tpnumlkd.exe (ID: 2944 |ParentID: 2100)
C:\Windows\system32\Dwm.exe (ID: 2960 |ParentID: 1176)
C:\Windows\Explorer.EXE (ID: 3032 |ParentID: 2952)
C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe (ID: 2584 |ParentID: 976)
C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe (ID: 2660 |ParentID: 976)
C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe (ID: 2124 |ParentID: 976)
C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe (ID: 2880 |ParentID: 976)
C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe (ID: 2180 |ParentID: 976)
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe (ID: 2992 |ParentID: 2180)
C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe (ID: 3084 |ParentID: 976)
C:\Program Files (x86)\LogMeIn\x64\RaMaint.exe (ID: 3120 |ParentID: 976)
C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe (ID: 3156 |ParentID: 976)
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (ID: 3304 |ParentID: 976)
C:\Windows\SysWOW64\SAsrv.exe (ID: 3372 |ParentID: 976)
C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE (ID: 3412 |ParentID: 976)
C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe (ID: 3420 |ParentID: 2304)
C:\Program Files (x86)\AVG\AVG2014\avgemca.exe (ID: 3428 |ParentID: 2304)
C:\Windows\system32\svchost.exe (ID: 3504 |ParentID: 976)
C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe (ID: 3576 |ParentID: 976)
C:\Windows\SysWOW64\vmnat.exe (ID: 3636 |ParentID: 976)
C:\Program Files (x86)\VMware\VMware Server\tomcat\bin\Tomcat6.exe (ID: 3700 |ParentID: 976)
C:\Windows\system32\conhost.exe (ID: 3728 |ParentID: 788)
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\ToolbarUpdater.exe (ID: 3772 |ParentID: 976)
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (ID: 3796 |ParentID: 976)
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\loggingserver.exe (ID: 3912 |ParentID: 3772)
C:\Windows\system32\conhost.exe (ID: 3920 |ParentID: 788)
C:\Program Files (x86)\VMware\VMware Server\vmware-authd.exe (ID: 3936 |ParentID: 976)
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (ID: 3996 |ParentID: 3796)
C:\Windows\SysWOW64\vmnetdhcp.exe (ID: 4052 |ParentID: 976)
C:\Windows\system32\wbem\unsecapp.exe (ID: 2116 |ParentID: 752)
C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe (ID: 4272 |ParentID: 3032)
C:\Program Files (x86)\VMware\VMware Server\vmware-hostd.exe (ID: 4456 |ParentID: 976)
C:\Windows\system32\wbem\wmiprvse.exe (ID: 4464 |ParentID: 752)
C:\Windows\system32\wbem\wmiprvse.exe (ID: 4496 |ParentID: 752)
C:\Windows\system32\rundll32.exe (ID: 4756 |ParentID: 2080)
C:\PROGRA~1\Lenovo\Zoom\TPSCREX.EXE (ID: 4768 |ParentID: 2080)
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE (ID: 4776 |ParentID: 2080)
C:\Windows\servicing\TrustedInstaller.exe (ID: 4872 |ParentID: 976)
C:\Windows\System32\WUDFHost.exe (ID: 5020 |ParentID: 1176)
C:\Windows\system32\svchost.exe (ID: 4200 |ParentID: 976)
C:\Windows\system32\svchost.exe (ID: 4560 |ParentID: 976)
C:\Windows\sysWOW64\wbem\wmiprvse.exe (ID: 396 |ParentID: 752)
C:\Windows\System32\rundll32.exe (ID: 3732 |ParentID: 752)
C:\Windows\system32\SearchIndexer.exe (ID: 756 |ParentID: 976)
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (ID: 5212 |ParentID: 3032)
C:\Windows\System32\TpShocks.exe (ID: 5220 |ParentID: 3032)
C:\Program Files\CONEXANT\ForteConfig\fmapp.exe (ID: 5232 |ParentID: 3032)
C:\Windows\System32\hkcmd.exe (ID: 5352 |ParentID: 3032)
C:\Windows\System32\igfxpers.exe (ID: 5364 |ParentID: 3032)
C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe (ID: 5404 |ParentID: 3032)
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (ID: 5560 |ParentID: 5212)
C:\Program Files\Lenovo\AutoLock\ALCKRESI.exe (ID: 5588 |ParentID: 3032)
C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe (ID: 5740 |ParentID: 3032)
C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe (ID: 5760 |ParentID: 5712)
C:\Program Files (x86)\Digital Line Detect\DLG.exe (ID: 5768 |ParentID: 3032)
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (ID: 5792 |ParentID: 5212)
C:\Windows\SysWOW64\rundll32.exe (ID: 5812 |ParentID: 5712)
C:\Windows\system32\rundll32.exe (ID: 5892 |ParentID: 5812)
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (ID: 5940 |ParentID: 5712)
C:\Program Files (x86)\Optimizer Pro\OptProSmartScan.exe (ID: 5956 |ParentID: 5704)
C:\Program Files (x86)\Optimizer Pro\OptProReminder.exe (ID: 5968 |ParentID: 5704)
C:\Program Files (x86)\Sharp\Sharpdesk\SharpTray.exe (ID: 5976 |ParentID: 5712)
C:\Program Files (x86)\Sharp\Sharpdesk\FTPServer.exe (ID: 6004 |ParentID: 5712)
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe (ID: 6024 |ParentID: 5892)
C:\Program Files (x86)\AVG\AVG2014\avgui.exe (ID: 6080 |ParentID: 5712)
C:\Program Files (x86)\AVG Nation toolbar\vprot.exe (ID: 6104 |ParentID: 5712)
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (ID: 6112 |ParentID: 5712)
C:\Windows\SysWOW64\RunDll32.exe (ID: 1276 |ParentID: 5740)
C:\Program Files (x86)\Sharp\Sharpdesk\nsapp.exe (ID: 5908 |ParentID: 752)
C:\Windows\System32\mobsync.exe (ID: 5756 |ParentID: 752)
C:\Program Files\Windows Media Player\wmpnetwk.exe (ID: 4108 |ParentID: 976)
C:\Windows\system32\svchost.exe (ID: 6332 |ParentID: 976)
C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (ID: 6940 |ParentID: 976)
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (ID: 4368 |ParentID: 976)
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (ID: 5376 |ParentID: 976)
C:\Program Files (x86)\Lenovo\System Update\SUService.exe (ID: 4360 |ParentID: 976)
C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe (ID: 2516 |ParentID: 976)
C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE (ID: 6400 |ParentID: 976)
C:\Program Files\Internet Explorer\iexplore.exe (ID: 5708 |ParentID: 3032)
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE (ID: 6992 |ParentID: 5708)
C:\Windows\system32\taskeng.exe (ID: 8084 |ParentID: 1256)
C:\Program Files (x86)\LENOVO\Message Center Plus\MCPLaunch.exe (ID: 8176 |ParentID: 8084)
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (ID: 3532 |ParentID: 6112)
C:\Windows\system32\SearchFilterHost.exe (ID: 2204 |ParentID: 756)
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE (ID: 7220 |ParentID: 5708)
C:\Windows\system32\SearchProtocolHost.exe (ID: 7296 |ParentID: 756)
################## | Regedit Run |
04 - HKCU\..\Run : [Optimizer Pro] C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe
04 - HKLM\..\Run : [RotateImage] C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
04 - HKLM\..\Run : [PWMTRV] rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
04 - HKLM\..\Run : [Lenovo Registration] C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe /boot
04 - HKLM\..\Run : [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
04 - HKLM\..\Run : [SharpTray.exe] "C:\Program Files (x86)\Sharp\Sharpdesk\SharpTray.exe"
04 - HKLM\..\Run : []
04 - HKLM\..\Run : [FtpServer.exe] "C:\Program Files (x86)\Sharp\Sharpdesk\FtpServer.exe" -usedefault
04 - HKLM\..\Run : [IndexTray.exe] "C:\Program Files (x86)\Sharp\Sharpdesk\IndexTray.exe" /n
04 - HKLM\..\Run : [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
04 - HKLM\..\Run : [vProt] "C:\Program Files (x86)\AVG Nation toolbar\vprot.exe"
04 - HKLM\..\Run : [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
04 - HKLM\..\RunOnce : []
04 - HKLM64\..\Run : [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
04 - HKLM64\..\Run : [TpShocks] TpShocks.exe
04 - HKLM64\..\Run : [ForteConfig] C:\Program Files\Conexant\ForteConfig\fmapp.exe
04 - HKLM64\..\Run : [SmartAudio] C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t
04 - HKLM64\..\Run : [IgfxTray] C:\Windows\system32\igfxtray.exe
04 - HKLM64\..\Run : [HotKeysCmds] C:\Windows\system32\hkcmd.exe
04 - HKLM64\..\Run : [Persistence] C:\Windows\system32\igfxpers.exe
04 - HKLM64\..\Run : [LENOVO.TPKNRRES] C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe
04 - HKLM64\..\Run : [ALCKRESI.EXE] C:\Program Files\Lenovo\AutoLock\ALCKRESI.EXE
04 - HKLM64\..\Run : [LogMeIn GUI] "C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe"
04 - HKU\S-1-5-19\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-21-4080580822-1062106910-2580478834-1000\..\Run : [Optimizer Pro] C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe
04 - HKU\S-1-5-19\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
################## | Recherche générique |
Présent! F:\iTunesHelper.vbe
Présent! F:\DKV.lnk
################## | Registre |
################## | E.O.F | http://www.usbfix.net/" onclick="window.open(this.href);return false; - http://www.sosvirus.net" onclick="window.open(this.href);return false; |
Comme il est souhaité, veuillez trouver ci-dessous mon rapport de recherche.
Je dispose de captures d'écran des dysfonctionnement portants sur ma clé USB, et cela ne me rassure pas du tout...
Merci par avance pour votre aide!!
############################## | UsbFix V 7.165 | [Recherche]
Utilisateur: Admin (Administrateur) # GSPNOTARCHIVE
Mis à jour le16/02/2014 par El Desaparecido - Team SosVirus
Lancé à 12:55:54 | 18/02/2014
Site Web : http://www.usbfix.net/" onclick="window.open(this.href);return false;
Changelog : http://www.usbfix.net/maj/" onclick="window.open(this.href);return false;
Support : http://www.sosvirus.net/" onclick="window.open(this.href);return false;
Upload Malware : http://www.sosvirus.net/upload_malware.php" onclick="window.open(this.href);return false;
Contact : http://www.usbfix.net/contact/" onclick="window.open(this.href);return false;
PC: LENOVO (417883G)
CPU: Intel(R) Core(TM) i5-2410M CPU @ 2.30GHz
RAM -> [Total : 8079 Mo| Free : 5795 Mo]
Bios: LENOVO
Boot: Normal boot
OS: Microsoft Windows 7 Professionnel (6.1.7601 64-Bit) Service Pack 1
WB: Windows Internet Explorer : 10.0.9200.16736
SC: Security Center [Enabled]
WU: Windows Update [Enabled]
AV: AVG AntiVirus Free Edition 2014 [Enabled | Updated]
AS: Windows Defender [(!) Disabled | (!) Outdated]
AS: AVG AntiVirus Free Edition 2014 [Enabled | Updated]
FW: Windows FireWall [Enabled]
C:\ (%systemdrive%) -> Disque fixe # 281 Go (197 Go libre(s) - 70%) [Windows7_OS] # NTFS
F:\ -> Disque amovible # 964 Mo (185 Mo libre(s) - 19%) [USB DISK] # FAT
Q:\ -> Disque fixe # 16 Go (3 Go libre(s) - 21%) [Lenovo_Recovery] # NTFS
################## | Processus Actif |
C:\PROGRA~2\AVG\AVG2014\avgrsa.exe (ID: 480 |ParentID: 468)
C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe (ID: 520 |ParentID: 480)
C:\Windows\system32\csrss.exe (ID: 788 |ParentID: 780)
C:\Windows\system32\wininit.exe (ID: 860 |ParentID: 780)
C:\Windows\system32\csrss.exe (ID: 880 |ParentID: 868)
C:\Windows\system32\winlogon.exe (ID: 936 |ParentID: 868)
C:\Windows\system32\services.exe (ID: 976 |ParentID: 860)
C:\Windows\system32\lsass.exe (ID: 984 |ParentID: 860)
C:\Windows\system32\lsm.exe (ID: 992 |ParentID: 860)
C:\Windows\system32\svchost.exe (ID: 752 |ParentID: 976)
C:\Windows\system32\ibmpmsvc.exe (ID: 884 |ParentID: 976)
C:\Windows\system32\svchost.exe (ID: 1036 |ParentID: 976)
C:\Windows\System32\svchost.exe (ID: 1140 |ParentID: 976)
C:\Windows\System32\svchost.exe (ID: 1176 |ParentID: 976)
C:\Windows\system32\svchost.exe (ID: 1224 |ParentID: 976)
C:\Windows\system32\svchost.exe (ID: 1256 |ParentID: 976)
C:\Windows\System32\WUDFHost.exe (ID: 1492 |ParentID: 1176)
C:\Windows\system32\svchost.exe (ID: 1556 |ParentID: 976)
C:\Windows\system32\WLANExt.exe (ID: 1768 |ParentID: 1176)
C:\Windows\system32\conhost.exe (ID: 1776 |ParentID: 788)
C:\Program Files\ThinkVantage Fingerprint Software\upeksvr.exe (ID: 1836 |ParentID: 1112)
C:\Windows\System32\spoolsv.exe (ID: 1924 |ParentID: 976)
C:\Windows\system32\svchost.exe (ID: 1688 |ParentID: 976)
C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe (ID: 2080 |ParentID: 976)
C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe (ID: 2100 |ParentID: 976)
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (ID: 2212 |ParentID: 976)
C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe (ID: 2248 |ParentID: 976)
C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe (ID: 2304 |ParentID: 976)
C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe (ID: 2404 |ParentID: 976)
C:\Windows\system32\CxAudMsg64.exe (ID: 2444 |ParentID: 976)
C:\Program Files\Intel\WiFi\bin\EvtEng.exe (ID: 2492 |ParentID: 976)
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe (ID: 2644 |ParentID: 976)
C:\Windows\system32\taskhost.exe (ID: 2856 |ParentID: 976)
C:\PROGRA~1\Lenovo\HOTKEY\tpnumlkd.exe (ID: 2944 |ParentID: 2100)
C:\Windows\system32\Dwm.exe (ID: 2960 |ParentID: 1176)
C:\Windows\Explorer.EXE (ID: 3032 |ParentID: 2952)
C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe (ID: 2584 |ParentID: 976)
C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe (ID: 2660 |ParentID: 976)
C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe (ID: 2124 |ParentID: 976)
C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe (ID: 2880 |ParentID: 976)
C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe (ID: 2180 |ParentID: 976)
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe (ID: 2992 |ParentID: 2180)
C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe (ID: 3084 |ParentID: 976)
C:\Program Files (x86)\LogMeIn\x64\RaMaint.exe (ID: 3120 |ParentID: 976)
C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe (ID: 3156 |ParentID: 976)
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (ID: 3304 |ParentID: 976)
C:\Windows\SysWOW64\SAsrv.exe (ID: 3372 |ParentID: 976)
C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE (ID: 3412 |ParentID: 976)
C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe (ID: 3420 |ParentID: 2304)
C:\Program Files (x86)\AVG\AVG2014\avgemca.exe (ID: 3428 |ParentID: 2304)
C:\Windows\system32\svchost.exe (ID: 3504 |ParentID: 976)
C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe (ID: 3576 |ParentID: 976)
C:\Windows\SysWOW64\vmnat.exe (ID: 3636 |ParentID: 976)
C:\Program Files (x86)\VMware\VMware Server\tomcat\bin\Tomcat6.exe (ID: 3700 |ParentID: 976)
C:\Windows\system32\conhost.exe (ID: 3728 |ParentID: 788)
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\ToolbarUpdater.exe (ID: 3772 |ParentID: 976)
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (ID: 3796 |ParentID: 976)
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.3.0\loggingserver.exe (ID: 3912 |ParentID: 3772)
C:\Windows\system32\conhost.exe (ID: 3920 |ParentID: 788)
C:\Program Files (x86)\VMware\VMware Server\vmware-authd.exe (ID: 3936 |ParentID: 976)
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (ID: 3996 |ParentID: 3796)
C:\Windows\SysWOW64\vmnetdhcp.exe (ID: 4052 |ParentID: 976)
C:\Windows\system32\wbem\unsecapp.exe (ID: 2116 |ParentID: 752)
C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe (ID: 4272 |ParentID: 3032)
C:\Program Files (x86)\VMware\VMware Server\vmware-hostd.exe (ID: 4456 |ParentID: 976)
C:\Windows\system32\wbem\wmiprvse.exe (ID: 4464 |ParentID: 752)
C:\Windows\system32\wbem\wmiprvse.exe (ID: 4496 |ParentID: 752)
C:\Windows\system32\rundll32.exe (ID: 4756 |ParentID: 2080)
C:\PROGRA~1\Lenovo\Zoom\TPSCREX.EXE (ID: 4768 |ParentID: 2080)
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE (ID: 4776 |ParentID: 2080)
C:\Windows\servicing\TrustedInstaller.exe (ID: 4872 |ParentID: 976)
C:\Windows\System32\WUDFHost.exe (ID: 5020 |ParentID: 1176)
C:\Windows\system32\svchost.exe (ID: 4200 |ParentID: 976)
C:\Windows\system32\svchost.exe (ID: 4560 |ParentID: 976)
C:\Windows\sysWOW64\wbem\wmiprvse.exe (ID: 396 |ParentID: 752)
C:\Windows\System32\rundll32.exe (ID: 3732 |ParentID: 752)
C:\Windows\system32\SearchIndexer.exe (ID: 756 |ParentID: 976)
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (ID: 5212 |ParentID: 3032)
C:\Windows\System32\TpShocks.exe (ID: 5220 |ParentID: 3032)
C:\Program Files\CONEXANT\ForteConfig\fmapp.exe (ID: 5232 |ParentID: 3032)
C:\Windows\System32\hkcmd.exe (ID: 5352 |ParentID: 3032)
C:\Windows\System32\igfxpers.exe (ID: 5364 |ParentID: 3032)
C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe (ID: 5404 |ParentID: 3032)
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (ID: 5560 |ParentID: 5212)
C:\Program Files\Lenovo\AutoLock\ALCKRESI.exe (ID: 5588 |ParentID: 3032)
C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe (ID: 5740 |ParentID: 3032)
C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe (ID: 5760 |ParentID: 5712)
C:\Program Files (x86)\Digital Line Detect\DLG.exe (ID: 5768 |ParentID: 3032)
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (ID: 5792 |ParentID: 5212)
C:\Windows\SysWOW64\rundll32.exe (ID: 5812 |ParentID: 5712)
C:\Windows\system32\rundll32.exe (ID: 5892 |ParentID: 5812)
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (ID: 5940 |ParentID: 5712)
C:\Program Files (x86)\Optimizer Pro\OptProSmartScan.exe (ID: 5956 |ParentID: 5704)
C:\Program Files (x86)\Optimizer Pro\OptProReminder.exe (ID: 5968 |ParentID: 5704)
C:\Program Files (x86)\Sharp\Sharpdesk\SharpTray.exe (ID: 5976 |ParentID: 5712)
C:\Program Files (x86)\Sharp\Sharpdesk\FTPServer.exe (ID: 6004 |ParentID: 5712)
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe (ID: 6024 |ParentID: 5892)
C:\Program Files (x86)\AVG\AVG2014\avgui.exe (ID: 6080 |ParentID: 5712)
C:\Program Files (x86)\AVG Nation toolbar\vprot.exe (ID: 6104 |ParentID: 5712)
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (ID: 6112 |ParentID: 5712)
C:\Windows\SysWOW64\RunDll32.exe (ID: 1276 |ParentID: 5740)
C:\Program Files (x86)\Sharp\Sharpdesk\nsapp.exe (ID: 5908 |ParentID: 752)
C:\Windows\System32\mobsync.exe (ID: 5756 |ParentID: 752)
C:\Program Files\Windows Media Player\wmpnetwk.exe (ID: 4108 |ParentID: 976)
C:\Windows\system32\svchost.exe (ID: 6332 |ParentID: 976)
C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe (ID: 6940 |ParentID: 976)
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (ID: 4368 |ParentID: 976)
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (ID: 5376 |ParentID: 976)
C:\Program Files (x86)\Lenovo\System Update\SUService.exe (ID: 4360 |ParentID: 976)
C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe (ID: 2516 |ParentID: 976)
C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE (ID: 6400 |ParentID: 976)
C:\Program Files\Internet Explorer\iexplore.exe (ID: 5708 |ParentID: 3032)
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE (ID: 6992 |ParentID: 5708)
C:\Windows\system32\taskeng.exe (ID: 8084 |ParentID: 1256)
C:\Program Files (x86)\LENOVO\Message Center Plus\MCPLaunch.exe (ID: 8176 |ParentID: 8084)
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (ID: 3532 |ParentID: 6112)
C:\Windows\system32\SearchFilterHost.exe (ID: 2204 |ParentID: 756)
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE (ID: 7220 |ParentID: 5708)
C:\Windows\system32\SearchProtocolHost.exe (ID: 7296 |ParentID: 756)
################## | Regedit Run |
04 - HKCU\..\Run : [Optimizer Pro] C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe
04 - HKLM\..\Run : [RotateImage] C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
04 - HKLM\..\Run : [PWMTRV] rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
04 - HKLM\..\Run : [Lenovo Registration] C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe /boot
04 - HKLM\..\Run : [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
04 - HKLM\..\Run : [SharpTray.exe] "C:\Program Files (x86)\Sharp\Sharpdesk\SharpTray.exe"
04 - HKLM\..\Run : []
04 - HKLM\..\Run : [FtpServer.exe] "C:\Program Files (x86)\Sharp\Sharpdesk\FtpServer.exe" -usedefault
04 - HKLM\..\Run : [IndexTray.exe] "C:\Program Files (x86)\Sharp\Sharpdesk\IndexTray.exe" /n
04 - HKLM\..\Run : [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
04 - HKLM\..\Run : [vProt] "C:\Program Files (x86)\AVG Nation toolbar\vprot.exe"
04 - HKLM\..\Run : [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
04 - HKLM\..\RunOnce : []
04 - HKLM64\..\Run : [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
04 - HKLM64\..\Run : [TpShocks] TpShocks.exe
04 - HKLM64\..\Run : [ForteConfig] C:\Program Files\Conexant\ForteConfig\fmapp.exe
04 - HKLM64\..\Run : [SmartAudio] C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t
04 - HKLM64\..\Run : [IgfxTray] C:\Windows\system32\igfxtray.exe
04 - HKLM64\..\Run : [HotKeysCmds] C:\Windows\system32\hkcmd.exe
04 - HKLM64\..\Run : [Persistence] C:\Windows\system32\igfxpers.exe
04 - HKLM64\..\Run : [LENOVO.TPKNRRES] C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe
04 - HKLM64\..\Run : [ALCKRESI.EXE] C:\Program Files\Lenovo\AutoLock\ALCKRESI.EXE
04 - HKLM64\..\Run : [LogMeIn GUI] "C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe"
04 - HKU\S-1-5-19\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-21-4080580822-1062106910-2580478834-1000\..\Run : [Optimizer Pro] C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe
04 - HKU\S-1-5-19\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
################## | Recherche générique |
Présent! F:\iTunesHelper.vbe
Présent! F:\DKV.lnk
################## | Registre |
################## | E.O.F | http://www.usbfix.net/" onclick="window.open(this.href);return false; - http://www.sosvirus.net" onclick="window.open(this.href);return false; |
La désinfection doit être suivie jusqu'à la fin, même si tes problèmes ont disparu.
,
