- sam. 23 nov. 2013 11:33
#18649
Bonjour,
Comme beaucoup de personnes, j'ai ma clé USB qui transforme mes fichiers en raccourcis.
J'ai donc lancé MalwareBytes Anti-Malware et USBfix. Voilà les 2 rapports.
Merci pour l'aide que vous pourrez m'apporter
############################## | UsbFix V 7.152 | [Suppression]
Utilisateur: Estelle (Administrateur) # ESTELLE-HP
Mis à jour le 20/11/2013 par El Desaparecido - Team SosVirus
Lancé à 01:18:42 | 23/11/2013
Site Web : https://www.usbfix.net
Forum : https://www.sosvirus.net/
Upload Malware : https://www.sosvirus.net/upload_malware.php
Contact : https://www.usbfix.net/contact/
PC: Hewlett-Packard (1651)
CPU: Intel(R) Core(TM) i5-2410M CPU @ 2.30GHz
RAM -> [Total : 6092 | Free : 4268]
Bios: Hewlett-Packard
Boot: Normal boot
OS: Microsoft Windows 7 à‰dition Familiale Premium (6.1.7601 64-Bit) Service Pack 1
WB: Windows Internet Explorer : 10.0.9200.16736
WB: Google Chrome : 31.0.1650.57
WB: Mozilla Firefox : 25.0.1
SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: Avira Desktop [(!) Disabled | Updated]
AS: Windows Defender : 6.1.7600.16385 (win7_rtm.090713-1255)
FW: Windows FireWall Service [Enabled]
C:\ (%systemdrive%) -> Disque fixe # 683 Go (341 Go libre(s) - 50%) [] # NTFS
D:\ -> Disque fixe # 15 Go (1 Go libre(s) - 9%) [RECOVERY] # NTFS
E:\ -> CD-ROM
F:\ -> Disque fixe # 466 Go (136 Go libre(s) - 29%) [My Passport] # NTFS
G:\ -> Disque amovible # 4 Go (4 Go libre(s) - 98%) [TRANSCEND] # FAT32
################## | Processus Stoppés |
Stoppé! C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe (ID: 860 |ParentID: 588)
Stoppé! C:\Windows\system32\atiesrxx.exe (ID: 972 |ParentID: 588)
Stoppé! C:\Program Files\IDT\WDM\STacSV64.exe (ID: 1040 |ParentID: 588)
Stoppé! C:\Windows\system32\Hpservice.exe (ID: 1372 |ParentID: 588)
Stoppé! C:\Windows\System32\WUDFHost.exe (ID: 1420 |ParentID: 476)
Stoppé! C:\Windows\system32\atieclxx.exe (ID: 1496 |ParentID: 972)
Stoppé! C:\Windows\System32\spoolsv.exe (ID: 1732 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (ID: 1884 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (ID: 2020 |ParentID: 588)
Stoppé! C:\Program Files\IDT\WDM\AESTSr64.exe (ID: 1068 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (ID: 1220 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (ID: 1336 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Bluetooth Suite\adminservice.exe (ID: 1824 |ParentID: 588)
Stoppé! C:\Windows\SysWOW64\bgsvcgen.exe (ID: 2076 |ParentID: 588)
Stoppé! C:\Program Files\Bonjour\mDNSResponder.exe (ID: 2112 |ParentID: 588)
Stoppé! C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe (ID: 2168 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe (ID: 2292 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (ID: 2340 |ParentID: 588)
Stoppé! C:\Program Files (x86)\PDF Architect\HelperService.exe (ID: 2416 |ParentID: 588)
Stoppé! C:\Program Files (x86)\PDF Architect\ConversionService.exe (ID: 2440 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE (ID: 2480 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe (ID: 2648 |ParentID: 588)
Stoppé! C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (ID: 2716 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (ID: 2740 |ParentID: 588)
Stoppé! C:\Windows\system32\taskhost.exe (ID: 2904 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe (ID: 3016 |ParentID: 588)
Stoppé! C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (ID: 3056 |ParentID: 2716)
Stoppé! C:\Windows\Explorer.EXE (ID: 1256 |ParentID: 3004)
Stoppé! C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe (ID: 3676 |ParentID: 1220)
Stoppé! C:\Windows\System32\igfxtray.exe (ID: 4268 |ParentID: 1256)
Stoppé! C:\Windows\System32\hkcmd.exe (ID: 4284 |ParentID: 1256)
Stoppé! C:\Windows\System32\igfxpers.exe (ID: 4308 |ParentID: 1256)
Stoppé! C:\Program Files\Apoint2K\Apoint.exe (ID: 4348 |ParentID: 1256)
Stoppé! C:\Program Files\IDT\WDM\sttray64.exe (ID: 4364 |ParentID: 1256)
Stoppé! C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe (ID: 4372 |ParentID: 1256)
Stoppé! C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe (ID: 4408 |ParentID: 1256)
Stoppé! C:\Program Files\Windows Sidebar\sidebar.exe (ID: 4420 |ParentID: 1256)
Stoppé! C:\Windows\System32\StikyNot.exe (ID: 4432 |ParentID: 1256)
Stoppé! C:\Program Files (x86)\Samsung\Kies\Kies.exe (ID: 4532 |ParentID: 1256)
Stoppé! C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe (ID: 4640 |ParentID: 1256)
Stoppé! C:\Windows\system32\SearchIndexer.exe (ID: 4692 |ParentID: 588)
Stoppé! C:\Program Files\Apoint2K\ApMsgFwd.exe (ID: 4760 |ParentID: 4348)
Stoppé! C:\Program Files (x86)\Common Files\Panasonic\PHOTOfunSTUDIO AutoStart\AutoStartupService.exe (ID: 4928 |ParentID: 1256)
Stoppé! C:\Program Files\Apoint2K\Apntex.exe (ID: 4964 |ParentID: 4948)
Stoppé! C:\Windows\system32\conhost.exe (ID: 4988 |ParentID: 560)
Stoppé! C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (ID: 5072 |ParentID: 1256)
Stoppé! C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE (ID: 5096 |ParentID: 1256)
Stoppé! C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (ID: 3220 |ParentID: 4652)
Stoppé! C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe (ID: 3140 |ParentID: 4652)
Stoppé! C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (ID: 4224 |ParentID: 4652)
Stoppé! C:\Program Files (x86)\Western Digital\WD Apps\WDDriveAutoUnlock.exe (ID: 1816 |ParentID: 4652)
Stoppé! C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe (ID: 4232 |ParentID: 4652)
Stoppé! C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe (ID: 4132 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (ID: 4844 |ParentID: 4652)
Stoppé! C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe (ID: 1176 |ParentID: 4652)
Stoppé! C:\Program Files (x86)\iTunes\iTunesHelper.exe (ID: 4252 |ParentID: 4652)
Stoppé! C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe (ID: 4124 |ParentID: 4652)
Stoppé! C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (ID: 4196 |ParentID: 4652)
Stoppé! C:\Windows\system32\taskeng.exe (ID: 5244 |ParentID: 544)
Stoppé! C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe (ID: 5480 |ParentID: 5244)
Stoppé! C:\Program Files\iPod\bin\iPodService.exe (ID: 5644 |ParentID: 588)
Stoppé! C:\Program Files\Windows Media Player\wmpnetwk.exe (ID: 6040 |ParentID: 588)
Stoppé! C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (ID: 3196 |ParentID: 4048)
Stoppé! C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe (ID: 3124 |ParentID: 588)
Stoppé! C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (ID: 5252 |ParentID: 3196)
Stoppé! C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe (ID: 3880 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (ID: 5180 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (ID: 5524 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (ID: 6124 |ParentID: 588)
Stoppé! C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (ID: 6916 |ParentID: 588)
Stoppé! C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe (ID: 6380 |ParentID: 860)
Stoppé! C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe (ID: 6160 |ParentID: 772)
Stoppé! C:\Windows\system32\taskhost.exe (ID: 3972 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (ID: 7320 |ParentID: 772)
Stoppé! C:\Windows\System32\WUDFHost.exe (ID: 7444 |ParentID: 476)
Stoppé! C:\Program Files (x86)\Mozilla Firefox\firefox.exe (ID: 4492 |ParentID: 1256)
Stoppé! C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe (ID: 5388 |ParentID: 4492)
Stoppé! C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe (ID: 6540 |ParentID: 5388)
Stoppé! C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe (ID: 7720 |ParentID: 6540)
################## | Regedit Run |
04 - HKLM\SOFTWARE | Run : [StartCCC] - "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
04 - HKLM\SOFTWARE | Run : [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
04 - HKLM\SOFTWARE | Run : [] -
04 - HKLM\SOFTWARE | Run : [Adobe Reader Speed Launcher] - "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
04 - HKLM\SOFTWARE | Run : [HP CoolSense] - C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey
04 - HKLM\SOFTWARE | Run : [APSDaemon] - "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
04 - HKLM\SOFTWARE | Run : [avgnt] - "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
04 - HKLM\SOFTWARE | Run : [WD Drive Unlocker] - C:\Program Files (x86)\Western Digital\WD Apps\WDDriveAutoUnlock.exe
04 - HKLM\SOFTWARE | Run : [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
04 - HKLM\SOFTWARE | Run : [Adobe ARM] - "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
04 - HKLM\SOFTWARE | Run : [HP Quick Launch] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
04 - HKLM\SOFTWARE | Run : [HPOSD] - C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
04 - HKLM\SOFTWARE | Run : [QuickTime Task] - "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
04 - HKLM\SOFTWARE | Run : [iTunesHelper] - "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
04 - HKLM\SOFTWARE | Run : [WD Quick View] - C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
04 - HKLM\SOFTWARE | Run : [SunJavaUpdateSched] - "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
04 - HKLM\SOFTWARE\wow6432Node | Run : [StartCCC] - "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
04 - HKLM\SOFTWARE\wow6432Node | Run : [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
04 - HKLM\SOFTWARE\wow6432Node | Run : [] -
04 - HKLM\SOFTWARE\wow6432Node | Run : [Adobe Reader Speed Launcher] - "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
04 - HKLM\SOFTWARE\wow6432Node | Run : [HP CoolSense] - C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey
04 - HKLM\SOFTWARE\wow6432Node | Run : [APSDaemon] - "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
04 - HKLM\SOFTWARE\wow6432Node | Run : [avgnt] - "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
04 - HKLM\SOFTWARE\wow6432Node | Run : [WD Drive Unlocker] - C:\Program Files (x86)\Western Digital\WD Apps\WDDriveAutoUnlock.exe
04 - HKLM\SOFTWARE\wow6432Node | Run : [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
04 - HKLM\SOFTWARE\wow6432Node | Run : [Adobe ARM] - "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
04 - HKLM\SOFTWARE\wow6432Node | Run : [HP Quick Launch] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
04 - HKLM\SOFTWARE\wow6432Node | Run : [HPOSD] - C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
04 - HKLM\SOFTWARE\wow6432Node | Run : [QuickTime Task] - "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
04 - HKLM\SOFTWARE\wow6432Node | Run : [iTunesHelper] - "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
04 - HKLM\SOFTWARE\wow6432Node | Run : [WD Quick View] - C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
04 - HKLM\SOFTWARE\wow6432Node | Run : [SunJavaUpdateSched] - "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
04 - HKLM\SOFTWARE | RunOnce : [] -
04 - HKLM\SOFTWARE\wow6432Node | RunOnce : [] -
04 - HKU\S-1-5-19\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-21-3579483987-74944699-2884554317-1000\SOFTWARE | Run : [EA Core] - "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
04 - HKU\S-1-5-21-3579483987-74944699-2884554317-1000\SOFTWARE | Run : [Sidebar] - C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
04 - HKU\S-1-5-21-3579483987-74944699-2884554317-1000\SOFTWARE | Run : [MobileDocuments] - C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
04 - HKU\S-1-5-21-3579483987-74944699-2884554317-1000\SOFTWARE | Run : [RESTART_STICKY_NOTES] - C:\Windows\System32\StikyNot.exe
04 - HKU\S-1-5-21-3579483987-74944699-2884554317-1000\SOFTWARE | Run : [KiesPreload] - C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
04 - HKU\S-1-5-21-3579483987-74944699-2884554317-1000\SOFTWARE | Run : [] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe Run
04 - HKU\S-1-5-21-3579483987-74944699-2884554317-1000\SOFTWARE | Run : [KiesAirMessage] - C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup
04 - HKU\S-1-5-21-3579483987-74944699-2884554317-1000\SOFTWARE | Run : [cacaoweb] - "C:\Users\Estelle\AppData\Roaming\cacaoweb\cacaoweb.exe" -noplayer
04 - HKU\S-1-5-21-3579483987-74944699-2884554317-1000\SOFTWARE | Run : [Bubble Dock] - "C:\Users\Estelle\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe" /winstartup
04 - HKU\S-1-5-19\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe
################## | Recherche générique |
Supprimé! D:\uninstall.exe
Supprimé! G:\Base avocat1.lnk
Supprimé! D:\desktop.ini
Supprimé! G:\iTunesHelper.vbe
(!) Fichiers temporaires supprimés.
################## | Référence de comparaison MD5 |
Md5 : 44DC14692C600A9ED93BA3A353BDC7B8 -> G:\iTunesHelper.vbe
################## | Comparaison MD5 |
################## | Registre |
Réparé ! HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoActiveDesktop -> 0
Réparé ! HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoActiveDesktopChanges -> 0
Supprimé! HKU\S-1-5-21-3579483987-74944699-2884554317-1000\Software\.\.\.\.\Mountpoints2\F
Supprimé! HKU\S-1-5-21-3579483987-74944699-2884554317-1000\Software\.\.\.\.\Mountpoints2\{76685295-0654-11e2-994a-68a3c4f624a2}
################## | Listing |
[26/02/2012 - 13:25:03 | SHD ] C:\$Recycle.Bin
[24/08/2011 - 15:16:11 | N | 2006] C:\aqua_bitmap.cpp
[07/04/2011 - 19:53:43 | SHD ] C:\boot
[21/11/2010 - 04:23:51 | RASH | 383786] C:\bootmgr
[15/11/2013 - 11:03:42 | SHD ] C:\Config.Msi
[14/07/2009 - 06:08:56 | SHD ] C:\Documents and Settings
[22/11/2013 - 19:41:18 | ASH | 4790833152] C:\hiberfil.sys
[17/06/2011 - 23:52:27 | D ] C:\HP
[17/06/2011 - 23:38:03 | D ] C:\Intel
[13/07/2013 - 22:04:54 | D ] C:\Kreapixel
[07/09/2011 - 13:19:43 | RHD ] C:\MSOCache
[10/09/2013 - 18:21:23 | D ] C:\opticon_driver
[22/11/2013 - 19:41:22 | ASH | 6387777536] C:\pagefile.sys
[14/07/2009 - 04:20:08 | D ] C:\PerfLogs
[10/09/2013 - 18:22:08 | D ] C:\Program Files
[19/11/2013 - 08:01:51 | D ] C:\Program Files (x86)
[19/11/2013 - 08:01:51 | HD ] C:\ProgramData
[24/08/2011 - 11:11:10 | SHD ] C:\Recovery
[25/05/2013 - 12:28:02 | D ] C:\SWSetup
[19/11/2013 - 17:50:16 | SHD ] C:\System Volume Information
[24/08/2011 - 11:11:16 | D ] C:\SYSTEM.SAV
[24/05/2013 - 21:57:28 | D ] C:\Temp
[29/08/2011 - 14:23:53 | D ] C:\TVO
[23/11/2013 - 01:26:12 | D ] C:\UsbFix
[23/11/2013 - 01:26:15 | A | 15992] C:\UsbFix [Clean 2] ESTELLE-HP.txt
[31/12/2011 - 13:07:57 | N | 237] C:\user.js
[24/08/2011 - 11:10:17 | RD ] C:\Users
[20/09/2013 - 08:56:51 | D ] C:\Windows
[24/08/2011 - 11:12:18 | SHD ] D:\$RECYCLE.BIN
[15/06/2011 - 12:04:34 | N | 10124] D:\21_pro.png
[06/06/2011 - 20:07:12 | N | 23105] D:\58tuto02.jpg
[19/02/2004 - 01:14:16 | N | 1719] D:\about.html
[27/08/2011 - 13:48:20 | N | 12946] D:\basis.xml
[14/05/2011 - 12:48:34 | N | 12156] D:\bookmark_256.png
[24/08/2011 - 11:12:15 | RASHD ] D:\boot
[14/07/2009 - 19:39:00 | RASH | 383562] D:\bootmgr
[09/10/2006 - 15:07:00 | N | 56374] D:\ButtonHuge.bmp
[12/11/2006 - 14:42:02 | N | 165942] D:\ButtonHuge24.bmp
[15/06/2011 - 12:10:24 | N | 3313] D:\c1.png
[15/06/2011 - 12:10:38 | N | 3143] D:\c2.png
[09/08/2011 - 13:54:12 | N | 18486] D:\demo_logo.bmp
[09/08/2011 - 13:54:12 | N | 4662] D:\demo_logo.bmp_16.bmp
[15/06/2011 - 12:08:06 | N | 3842] D:\dice.png
[19/02/2004 - 01:14:16 | N | 519] D:\error.html
[09/08/2011 - 00:25:44 | N | 1147] D:\facebook.png
[15/06/2011 - 00:37:44 | N | 1086] D:\facebooklay.png
[24/08/2011 - 11:12:15 | D ] D:\FactoryUpdate
[27/08/2011 - 10:46:15 | N | 97566] D:\favicon.ico
[22/08/2011 - 18:44:52 | N | 1996] D:\fb.png
[25/08/2011 - 17:52:28 | N | 2093] D:\football.png
[25/08/2011 - 17:49:02 | N | 1763] D:\gaming_pad (1).png
[22/08/2011 - 17:58:24 | N | 3267] D:\gaming_pad.png
[09/08/2011 - 00:27:46 | N | 4473] D:\google_youtube.png
[24/08/2011 - 11:12:15 | D ] D:\hp
[23/01/2012 - 17:01:02 | N | 20] D:\HPSF_Rep.txt
[15/11/2012 - 14:33:28 | N | 8] D:\HP_WSD.dat
[19/02/2004 - 01:14:16 | N | 96822] D:\icons.bmp
[11/06/2011 - 20:27:32 | N | 1524] D:\icon_news.jpg
[15/06/2011 - 12:05:32 | N | 3883] D:\kpat.png
[15/06/2011 - 12:06:24 | N | 4429] D:\kpat2.png
[15/06/2011 - 11:39:46 | N | 3307] D:\label_new_blue.png
[15/06/2011 - 11:39:32 | N | 3565] D:\label_new_red.png
[13/06/2011 - 21:27:40 | N | 2482] D:\littlelogo.png
[22/08/2011 - 18:07:56 | N | 1836] D:\little_tv (1).png
[22/08/2011 - 18:07:16 | N | 3476] D:\little_tv.png
[25/08/2011 - 14:19:14 | N | 15606] D:\log.bmp
[24/08/2011 - 16:36:16 | N | 6966] D:\log.bmp_24.bmp
[09/08/2011 - 14:18:16 | N | 8214] D:\log.bmp_30.bmp
[24/08/2011 - 16:37:28 | N | 12342] D:\log.bmp_32.bmp
[24/08/2011 - 16:35:14 | N | 50754] D:\log.bmp_65.bmp
[24/08/2011 - 16:35:40 | N | 76854] D:\log.bmp_80.bmp
[25/08/2011 - 14:19:14 | N | 86754] D:\log.bmp_85.bmp
[24/08/2011 - 16:37:48 | N | 97254] D:\log.bmp_90.bmp
[08/08/2011 - 17:49:44 | N | 2780] D:\logotool.png
[22/08/2011 - 18:39:56 | N | 6269] D:\logotoolbar.png
[24/08/2011 - 16:40:40 | N | 3990] D:\logotooool.png
[08/08/2011 - 17:54:30 | N | 1590] D:\loupe.png
[07/09/2006 - 16:49:26 | N | 43702] D:\Master.bmp
[23/05/2011 - 21:40:36 | N | 8616] D:\megaupload.png
[08/08/2011 - 23:47:58 | N | 1738] D:\meteo.png
[09/08/2011 - 00:48:58 | N | 1346] D:\money.png
[25/08/2011 - 17:49:38 | N | 1710] D:\movie.png
[15/06/2011 - 12:14:32 | N | 2856] D:\movies.png
[15/06/2011 - 12:09:44 | N | 3592] D:\p1.png
[15/06/2011 - 12:09:58 | N | 3220] D:\p2.png
[09/08/2011 - 00:53:42 | N | 1277] D:\play.png
[24/08/2011 - 11:12:15 | RSHD ] D:\preload
[24/08/2011 - 16:39:12 | N | 1707] D:\rechercherh.png
[24/08/2011 - 11:12:15 | RSD ] D:\recovery
[15/06/2011 - 01:00:46 | N | 1112] D:\refre.png
[15/06/2011 - 01:00:18 | N | 2273] D:\refresh.png
[24/08/2011 - 11:12:15 | D ] D:\RM_Reserve
[23/05/2011 - 22:45:28 | N | 3669] D:\search_button_format_bing.png
[27/08/2011 - 13:48:30 | N | 1052] D:\seeearch.crc
[09/08/2011 - 00:56:24 | N | 2891] D:\sims2_1.png
[08/08/2011 - 23:39:08 | N | 5893] D:\social_youtube.png
[29/08/2007 - 13:52:58 | N | 488] D:\start.html
[15/06/2011 - 00:28:38 | N | 2611] D:\STREAM1.png
[15/06/2011 - 00:31:36 | N | 2642] D:\STREAM2.png
[19/11/2013 - 17:50:16 | SHD ] D:\System Volume Information
[03/09/2007 - 17:54:22 | N | 323584] D:\tbhelper.dll
[25/08/2011 - 17:50:08 | N | 2115] D:\tv.png
[15/06/2011 - 00:52:58 | N | 1086] D:\tweet.png
[22/08/2011 - 18:45:14 | N | 2110] D:\twii.png
[09/08/2011 - 00:26:10 | N | 1265] D:\twitter.png
[15/06/2011 - 12:14:54 | N | 2786] D:\v1.png
[15/06/2011 - 12:15:08 | N | 2380] D:\v2.png
[27/08/2011 - 10:46:15 | N | 40] D:\version.txt
[08/08/2011 - 23:43:18 | N | 1555] D:\video.png
[15/06/2011 - 00:57:30 | N | 893] D:\weather.png
[22/08/2011 - 18:45:26 | N | 1866] D:\you.png
[09/08/2011 - 00:28:40 | N | 2195] D:\youtube (1).png
[09/08/2011 - 00:28:12 | N | 1107] D:\youtube.png
[31/12/2012 - 15:45:48 | SHD ] F:\$RECYCLE.BIN
[12/10/2008 - 04:42:36 | N | 734906368] F:\1965 James Bond Thunderball.avi
[14/12/2008 - 00:54:20 | N | 725242088] F:\1976 Taxi Driver - Martin Scorses.avi
[12/10/2008 - 03:15:56 | N | 757753856] F:\1983 Un fauteuil pour deux - John Landis.avi
[12/10/2008 - 00:50:10 | N | 736268288] F:\1985 La Couleur Pourpre - Steven Spielberg.avi
[11/11/2008 - 07:59:00 | N | 731551744] F:\1985 Les Goonies - Richard Donner.avi
[15/11/2008 - 22:07:52 | N | 731378870] F:\1985 Subway - Luc Besson.avi
[10/11/2008 - 03:38:30 | N | 799203328] F:\1986 Le Maitre De Guerre - Clint Eastwood - FR.avi
[13/06/2010 - 03:51:34 | N | 1492258816] F:\1986 Out of Africa - Robert Redford .avi
[15/11/2008 - 15:34:36 | N | 725630976] F:\1986 Top Gun - Tony Scott.avi
[09/11/2008 - 13:05:40 | N | 732112896] F:\1988 Hairspray - John Waters.avi
[13/10/2008 - 17:36:18 | N | 733997056] F:\1992 Conte d'hiver - Eric Rohmer.avi
[12/06/2010 - 04:02:10 | N | 735504384] F:\1992 Cuisine Et Dépendance - Philippe Muyl.avi
[15/11/2008 - 02:10:34 | N | 736581632] F:\1992 Singles - Cameron Crowe.avi
[08/04/2011 - 11:10:46 | N | 749182976] F:\1993 L'odeur De La Papaye Verte - Tran Anh Hung VOST.avi
[12/10/2008 - 04:55:10 | N | 731412480] F:\1993 Le Temps De L'innocence - Martin Scorsese.avi
[10/11/2008 - 05:18:26 | N | 738746368] F:\1993 Meurtre Mysterieux A Manhattan - Woody Allen Vost Fr.avi
[10/10/2008 - 06:42:48 | N | 735084544] F:\1994 L'impasse - Brian De Palma.avi
[11/11/2008 - 17:38:24 | N | 734085120] F:\1994 Muriel's Wedding - P.J. Hogan.avi
[13/11/2008 - 00:35:22 | N | 731360812] F:\1994 Quatre mariages et un enterrement - Mike Newell.avi
[11/11/2008 - 20:10:34 | N | 735117312] F:\1995 Bienvenue dans l'age ingrat (Welcome to the Dollhouse) - Todd Solondz Vost.avi
[11/11/2008 - 16:53:04 | N | 705200128] F:\1995 Leaving Las Vegas - Mike Figgis.AVI
[13/11/2008 - 07:47:46 | N | 1455339520] F:\1995 Nixon - Oliver Stone.avi
[10/11/2008 - 09:53:32 | N | 735057920] F:\1995 Petits Meurtres Entre Amis - Danny Boyle.avi
[10/10/2008 - 12:49:38 | N | 730984184] F:\1995 Sur la Route de Madison - Clint Eastwood.avi
[16/11/2008 - 01:51:04 | N | 736024576] F:\1995 Usual Suspect - Bryan Singer.avi
[13/10/2008 - 19:11:26 | N | 734009344] F:\1996 conte d'ete - eric.rohmer.avi
[10/10/2008 - 11:37:28 | N | 731072512] F:\1997 Jackie Brown - Quentin Tarantino.avi
[09/10/2008 - 18:20:38 | N | 1457764352] F:\1997 La ligne verte Franck Daranbon.avi
[15/11/2008 - 22:14:08 | N | 731961850] F:\1997 Le Cinquième Element - Luc Besson.avi
[11/11/2008 - 10:44:24 | N | 733106176] F:\1997 The Game - David Fincher.avi
[15/11/2008 - 18:23:02 | N | 772274176] F:\1997 Tout le Monde Dit I Love You - Woody Allen - Vost.avi
[19/10/2008 - 15:37:02 | N | 1370088234] F:\1998 Conte d'automne - Eric Rohmer.avi
[10/10/2008 - 07:27:52 | N | 739042304] F:\1998 L'homme qui murmurait a l'oreille des chevaux - Robert Redford.avi
[10/10/2008 - 21:47:52 | N | 724367360] F:\1999 Le Talentueux Mr Ripley - Anthony Minghella.avi
[10/10/2008 - 08:16:18 | N | 743622144] F:\1999 Tout Sur Ma Mère - Pedro.Almodovar.avi
[11/10/2008 - 03:03:06 | N | 734402918] F:\1999 Un Plan Simple - Sam Raimi.avi
[30/05/2008 - 09:17:50 | N | 733954048] F:\2001 Le Fabuleux Destin d'amelie Poulain.avi
[08/10/2008 - 21:56:12 | N | 734932992] F:\2002 Bloody Sunday.avi
[10/10/2008 - 10:47:14 | N | 828805120] F:\2003 Big Fish - Tim Burton.avi
[25/07/2010 - 10:15:22 | N | 732358656] F:\2003 L'effet papillon - Eric Bress.avi
[10/11/2008 - 03:49:16 | N | 735612068] F:\2003 La Vie Et Tout Le Reste - Woody Allen - Fr.avi
[13/10/2008 - 02:04:40 | N | 737447936] F:\2004 A History of Violence.avi
[06/10/2008 - 09:06:52 | N | 734388224] F:\2004 A Tout de Suite - Benoit Jacquot.avi
[10/10/2008 - 15:54:28 | N | 731207936] F:\2004 Collateral Fr.avi
[10/10/2008 - 11:22:32 | N | 738096166] F:\2004 Collision.avi
[25/07/2010 - 01:03:36 | N | 746315776] F:\2004 Eternal sunshine of the spotless mind - Michel Gondry.avi
[07/10/2004 - 18:02:34 | N | 542756864] F:\2004 Farenheit 9 11 - Michael Moore.avi
[27/07/2008 - 11:01:20 | N | 728714480] F:\2004 Mystic River Clin Eastwood.avi
[10/10/2008 - 18:59:56 | N | 733181122] F:\2004 Retour à€ Cold Mountain - Anthony Minghella.avi
[15/07/2008 - 01:34:36 | N | 731039744] F:\2005 Les poupees russes.avi
[05/10/2008 - 18:50:16 | N | 732583936] F:\2005 Va Vis et Deviens Radu Mihaileanu.avi
[25/07/2010 - 02:27:24 | N | 732811264] F:\2006 Black Book - Paul Verhoeven.avi
[26/07/2010 - 20:36:46 | N | 734040064] F:\2006 Blood Diamond - Edward Zwick.avi
[25/12/2008 - 08:58:10 | N | 733655040] F:\2006 Lady Chatterley - Pascale Ferran.avi
[03/06/2007 - 03:16:32 | N | 1467834368] F:\2006 Pirates des caraibes Le secret du coffre maudit.AVI
[05/10/2008 - 20:27:08 | N | 734871478] F:\2007 Je vais bien ne t'en fait pas - Philippe Lioret.avi
[23/07/2010 - 17:50:30 | N | 731881472] F:\2007 No Country For Old Men - Frères Cohen.avi
[24/11/2008 - 00:40:04 | N | 731383808] F:\2007 Persepolis - dessins animés.avi
[19/07/2008 - 21:44:26 | N | 1458599936] F:\2007 Pirates des Caraà¯bes 3 'Jusqu'au bout du Monde'.avi
[24/01/2010 - 22:16:30 | N | 722792448] F:\2008 A bord du Darjeeling- limited - Wes Anderson.avi
[23/07/2010 - 03:21:42 | N | 735172608] F:\2008 Le premier jour du reste de ta vie - Rémi Bezançon.avi
[01/04/2009 - 17:15:18 | N | 731467776] F:\2008 Paris - Klapisch.CD1.avi
[01/04/2009 - 20:38:08 | N | 731856896] F:\2008 Paris - Klapisch.CD2.avi
[24/01/2010 - 01:57:48 | N | 728854528] F:\2008 Seraphine - Provost Martin.avi
[24/01/2010 - 01:32:22 | N | 733822976] F:\2008 There Will Be Blood - Paul Thomas Anderson.avi
[27/06/2012 - 05:37:42 | D ] F:\Extras
[27/06/2012 - 05:37:42 | D ] F:\Locale
[27/06/2012 - 05:37:42 | D ] F:\My Passport Apps for Mac
[29/12/2012 - 15:13:43 | D ] F:\Patricia
[22/12/2012 - 13:07:43 | SHD ] F:\System Volume Information
[27/06/2012 - 05:37:46 | D ] F:\User Manuals
[27/06/2012 - 05:37:50 | D ] F:\WD Apps for Windows
[12/04/2012 - 01:13:19 | N | 4207520] F:\WD Apps Setup.exe
[22/12/2012 - 13:50:20 | D ] F:\WD SmartWare.swstor
[22/11/2013 - 18:26:30 | N | 749568] G:\Base avocat1.accdb
[22/11/2013 - 17:41:08 | N | 64] G:\Base avocat1.laccdb
################## | Vaccin |
G:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
################## | E.O.F | https://www.usbfix.net - https://www.sosvirus.net |
Quand j'ai allumé mon ordinateur ce matin, j'ai eu un truc CHRDSK (je ne me rappelle plus exactement du nom) avec 3 étapes. Je sais pas si ça vous parle... siffle
Malwarebytes Anti-Malware 1.75.0.1300
https://www.malwarebytes.org
Version de la base de données: v2013.11.23.04
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16736
Estelle :: ESTELLE-HP [administrateur]
23/11/2013 08:51:34
mbam-log-2013-11-23 (08-51-34).txt
Type d'examen: Examen complet (C:\|D:\|F:\|G:\|)
Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
Options d'examen désactivées: P2P
Elément(s) analysé(s): 568898
Temps écoulé: 2 heure(s), 29 minute(s), 55 seconde(s)
Processus mémoire détecté(s): 0
(Aucun élément nuisible détecté)
Module(s) mémoire détecté(s): 0
(Aucun élément nuisible détecté)
Clé(s) du Registre détectée(s): 2
HKCU\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Mis en quarantaine et supprimé avec succès.
HKLM\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Mis en quarantaine et supprimé avec succès.
Valeur(s) du Registre détectée(s): 3
HKCU\Software\Microsoft\Windows\CurrentVersion\Run|Bubble Dock (PUP.Optional.BubbleDock.A) -> Données: "C:\Users\Estelle\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe" /winstartup -> Mis en quarantaine et supprimé avec succès.
HKCU\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Données: {2B31BE13-C3A9-11E1-B3B6-68A3C4F624A2} -> Mis en quarantaine et supprimé avec succès.
HKLM\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Données: {2B31BE13-C3A9-11E1-B3B6-68A3C4F624A2} -> Mis en quarantaine et supprimé avec succès.
Elément(s) de données du Registre détecté(s): 1
HKCU\SOFTWARE\Policies\Microsoft\Internet Explorer\control panel|HomePage (PUM.Hijack.HomePageControl) -> Mauvais: (1) Bon: (0) -> Mis en quarantaine et réparé avec succès
Dossier(s) détecté(s): 1
C:\Users\Estelle\AppData\Roaming\Babylon (PUP.Optional.Babylon.A) -> Mis en quarantaine et supprimé avec succès.
Fichier(s) détecté(s): 4
C:\Program Files (x86)\MaxTV\Common\hstart.exe (PUP.HiddenStart.H) -> Mis en quarantaine et supprimé avec succès.
C:\Users\Estelle\Documents\Estelle\est.durand\Logiciels\mini-KMS_Activator_v1.052\mini-KMS_Activator_v1.052.exe (Riskware.Keygen) -> Mis en quarantaine et supprimé avec succès.
C:\Windows\Installer\38456e.msi (PUP.HiddenStart.H) -> Mis en quarantaine et supprimé avec succès.
C:\Users\Estelle\AppData\Roaming\Babylon\log_file.txt (PUP.Optional.Babylon.A) -> Mis en quarantaine et supprimé avec succès.
(fin)
Comme beaucoup de personnes, j'ai ma clé USB qui transforme mes fichiers en raccourcis.
J'ai donc lancé MalwareBytes Anti-Malware et USBfix. Voilà les 2 rapports.
Merci pour l'aide que vous pourrez m'apporter
############################## | UsbFix V 7.152 | [Suppression]
Utilisateur: Estelle (Administrateur) # ESTELLE-HP
Mis à jour le 20/11/2013 par El Desaparecido - Team SosVirus
Lancé à 01:18:42 | 23/11/2013
Site Web : https://www.usbfix.net
Forum : https://www.sosvirus.net/
Upload Malware : https://www.sosvirus.net/upload_malware.php
Contact : https://www.usbfix.net/contact/
PC: Hewlett-Packard (1651)
CPU: Intel(R) Core(TM) i5-2410M CPU @ 2.30GHz
RAM -> [Total : 6092 | Free : 4268]
Bios: Hewlett-Packard
Boot: Normal boot
OS: Microsoft Windows 7 à‰dition Familiale Premium (6.1.7601 64-Bit) Service Pack 1
WB: Windows Internet Explorer : 10.0.9200.16736
WB: Google Chrome : 31.0.1650.57
WB: Mozilla Firefox : 25.0.1
SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: Avira Desktop [(!) Disabled | Updated]
AS: Windows Defender : 6.1.7600.16385 (win7_rtm.090713-1255)
FW: Windows FireWall Service [Enabled]
C:\ (%systemdrive%) -> Disque fixe # 683 Go (341 Go libre(s) - 50%) [] # NTFS
D:\ -> Disque fixe # 15 Go (1 Go libre(s) - 9%) [RECOVERY] # NTFS
E:\ -> CD-ROM
F:\ -> Disque fixe # 466 Go (136 Go libre(s) - 29%) [My Passport] # NTFS
G:\ -> Disque amovible # 4 Go (4 Go libre(s) - 98%) [TRANSCEND] # FAT32
################## | Processus Stoppés |
Stoppé! C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe (ID: 860 |ParentID: 588)
Stoppé! C:\Windows\system32\atiesrxx.exe (ID: 972 |ParentID: 588)
Stoppé! C:\Program Files\IDT\WDM\STacSV64.exe (ID: 1040 |ParentID: 588)
Stoppé! C:\Windows\system32\Hpservice.exe (ID: 1372 |ParentID: 588)
Stoppé! C:\Windows\System32\WUDFHost.exe (ID: 1420 |ParentID: 476)
Stoppé! C:\Windows\system32\atieclxx.exe (ID: 1496 |ParentID: 972)
Stoppé! C:\Windows\System32\spoolsv.exe (ID: 1732 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (ID: 1884 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (ID: 2020 |ParentID: 588)
Stoppé! C:\Program Files\IDT\WDM\AESTSr64.exe (ID: 1068 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (ID: 1220 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (ID: 1336 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Bluetooth Suite\adminservice.exe (ID: 1824 |ParentID: 588)
Stoppé! C:\Windows\SysWOW64\bgsvcgen.exe (ID: 2076 |ParentID: 588)
Stoppé! C:\Program Files\Bonjour\mDNSResponder.exe (ID: 2112 |ParentID: 588)
Stoppé! C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe (ID: 2168 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe (ID: 2292 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe (ID: 2340 |ParentID: 588)
Stoppé! C:\Program Files (x86)\PDF Architect\HelperService.exe (ID: 2416 |ParentID: 588)
Stoppé! C:\Program Files (x86)\PDF Architect\ConversionService.exe (ID: 2440 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE (ID: 2480 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe (ID: 2648 |ParentID: 588)
Stoppé! C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (ID: 2716 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (ID: 2740 |ParentID: 588)
Stoppé! C:\Windows\system32\taskhost.exe (ID: 2904 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe (ID: 3016 |ParentID: 588)
Stoppé! C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (ID: 3056 |ParentID: 2716)
Stoppé! C:\Windows\Explorer.EXE (ID: 1256 |ParentID: 3004)
Stoppé! C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe (ID: 3676 |ParentID: 1220)
Stoppé! C:\Windows\System32\igfxtray.exe (ID: 4268 |ParentID: 1256)
Stoppé! C:\Windows\System32\hkcmd.exe (ID: 4284 |ParentID: 1256)
Stoppé! C:\Windows\System32\igfxpers.exe (ID: 4308 |ParentID: 1256)
Stoppé! C:\Program Files\Apoint2K\Apoint.exe (ID: 4348 |ParentID: 1256)
Stoppé! C:\Program Files\IDT\WDM\sttray64.exe (ID: 4364 |ParentID: 1256)
Stoppé! C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe (ID: 4372 |ParentID: 1256)
Stoppé! C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe (ID: 4408 |ParentID: 1256)
Stoppé! C:\Program Files\Windows Sidebar\sidebar.exe (ID: 4420 |ParentID: 1256)
Stoppé! C:\Windows\System32\StikyNot.exe (ID: 4432 |ParentID: 1256)
Stoppé! C:\Program Files (x86)\Samsung\Kies\Kies.exe (ID: 4532 |ParentID: 1256)
Stoppé! C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe (ID: 4640 |ParentID: 1256)
Stoppé! C:\Windows\system32\SearchIndexer.exe (ID: 4692 |ParentID: 588)
Stoppé! C:\Program Files\Apoint2K\ApMsgFwd.exe (ID: 4760 |ParentID: 4348)
Stoppé! C:\Program Files (x86)\Common Files\Panasonic\PHOTOfunSTUDIO AutoStart\AutoStartupService.exe (ID: 4928 |ParentID: 1256)
Stoppé! C:\Program Files\Apoint2K\Apntex.exe (ID: 4964 |ParentID: 4948)
Stoppé! C:\Windows\system32\conhost.exe (ID: 4988 |ParentID: 560)
Stoppé! C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (ID: 5072 |ParentID: 1256)
Stoppé! C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE (ID: 5096 |ParentID: 1256)
Stoppé! C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (ID: 3220 |ParentID: 4652)
Stoppé! C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe (ID: 3140 |ParentID: 4652)
Stoppé! C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (ID: 4224 |ParentID: 4652)
Stoppé! C:\Program Files (x86)\Western Digital\WD Apps\WDDriveAutoUnlock.exe (ID: 1816 |ParentID: 4652)
Stoppé! C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe (ID: 4232 |ParentID: 4652)
Stoppé! C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe (ID: 4132 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (ID: 4844 |ParentID: 4652)
Stoppé! C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe (ID: 1176 |ParentID: 4652)
Stoppé! C:\Program Files (x86)\iTunes\iTunesHelper.exe (ID: 4252 |ParentID: 4652)
Stoppé! C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe (ID: 4124 |ParentID: 4652)
Stoppé! C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (ID: 4196 |ParentID: 4652)
Stoppé! C:\Windows\system32\taskeng.exe (ID: 5244 |ParentID: 544)
Stoppé! C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe (ID: 5480 |ParentID: 5244)
Stoppé! C:\Program Files\iPod\bin\iPodService.exe (ID: 5644 |ParentID: 588)
Stoppé! C:\Program Files\Windows Media Player\wmpnetwk.exe (ID: 6040 |ParentID: 588)
Stoppé! C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (ID: 3196 |ParentID: 4048)
Stoppé! C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe (ID: 3124 |ParentID: 588)
Stoppé! C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (ID: 5252 |ParentID: 3196)
Stoppé! C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe (ID: 3880 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (ID: 5180 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (ID: 5524 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (ID: 6124 |ParentID: 588)
Stoppé! C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (ID: 6916 |ParentID: 588)
Stoppé! C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe (ID: 6380 |ParentID: 860)
Stoppé! C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe (ID: 6160 |ParentID: 772)
Stoppé! C:\Windows\system32\taskhost.exe (ID: 3972 |ParentID: 588)
Stoppé! C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (ID: 7320 |ParentID: 772)
Stoppé! C:\Windows\System32\WUDFHost.exe (ID: 7444 |ParentID: 476)
Stoppé! C:\Program Files (x86)\Mozilla Firefox\firefox.exe (ID: 4492 |ParentID: 1256)
Stoppé! C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe (ID: 5388 |ParentID: 4492)
Stoppé! C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe (ID: 6540 |ParentID: 5388)
Stoppé! C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe (ID: 7720 |ParentID: 6540)
################## | Regedit Run |
04 - HKLM\SOFTWARE | Run : [StartCCC] - "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
04 - HKLM\SOFTWARE | Run : [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
04 - HKLM\SOFTWARE | Run : [] -
04 - HKLM\SOFTWARE | Run : [Adobe Reader Speed Launcher] - "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
04 - HKLM\SOFTWARE | Run : [HP CoolSense] - C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey
04 - HKLM\SOFTWARE | Run : [APSDaemon] - "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
04 - HKLM\SOFTWARE | Run : [avgnt] - "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
04 - HKLM\SOFTWARE | Run : [WD Drive Unlocker] - C:\Program Files (x86)\Western Digital\WD Apps\WDDriveAutoUnlock.exe
04 - HKLM\SOFTWARE | Run : [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
04 - HKLM\SOFTWARE | Run : [Adobe ARM] - "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
04 - HKLM\SOFTWARE | Run : [HP Quick Launch] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
04 - HKLM\SOFTWARE | Run : [HPOSD] - C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
04 - HKLM\SOFTWARE | Run : [QuickTime Task] - "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
04 - HKLM\SOFTWARE | Run : [iTunesHelper] - "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
04 - HKLM\SOFTWARE | Run : [WD Quick View] - C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
04 - HKLM\SOFTWARE | Run : [SunJavaUpdateSched] - "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
04 - HKLM\SOFTWARE\wow6432Node | Run : [StartCCC] - "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
04 - HKLM\SOFTWARE\wow6432Node | Run : [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
04 - HKLM\SOFTWARE\wow6432Node | Run : [] -
04 - HKLM\SOFTWARE\wow6432Node | Run : [Adobe Reader Speed Launcher] - "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
04 - HKLM\SOFTWARE\wow6432Node | Run : [HP CoolSense] - C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey
04 - HKLM\SOFTWARE\wow6432Node | Run : [APSDaemon] - "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
04 - HKLM\SOFTWARE\wow6432Node | Run : [avgnt] - "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
04 - HKLM\SOFTWARE\wow6432Node | Run : [WD Drive Unlocker] - C:\Program Files (x86)\Western Digital\WD Apps\WDDriveAutoUnlock.exe
04 - HKLM\SOFTWARE\wow6432Node | Run : [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
04 - HKLM\SOFTWARE\wow6432Node | Run : [Adobe ARM] - "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
04 - HKLM\SOFTWARE\wow6432Node | Run : [HP Quick Launch] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
04 - HKLM\SOFTWARE\wow6432Node | Run : [HPOSD] - C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
04 - HKLM\SOFTWARE\wow6432Node | Run : [QuickTime Task] - "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
04 - HKLM\SOFTWARE\wow6432Node | Run : [iTunesHelper] - "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
04 - HKLM\SOFTWARE\wow6432Node | Run : [WD Quick View] - C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
04 - HKLM\SOFTWARE\wow6432Node | Run : [SunJavaUpdateSched] - "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
04 - HKLM\SOFTWARE | RunOnce : [] -
04 - HKLM\SOFTWARE\wow6432Node | RunOnce : [] -
04 - HKU\S-1-5-19\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-21-3579483987-74944699-2884554317-1000\SOFTWARE | Run : [EA Core] - "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
04 - HKU\S-1-5-21-3579483987-74944699-2884554317-1000\SOFTWARE | Run : [Sidebar] - C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
04 - HKU\S-1-5-21-3579483987-74944699-2884554317-1000\SOFTWARE | Run : [MobileDocuments] - C:\Program Files (x86)\Common Files\Apple\Internet Services\ubd.exe
04 - HKU\S-1-5-21-3579483987-74944699-2884554317-1000\SOFTWARE | Run : [RESTART_STICKY_NOTES] - C:\Windows\System32\StikyNot.exe
04 - HKU\S-1-5-21-3579483987-74944699-2884554317-1000\SOFTWARE | Run : [KiesPreload] - C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
04 - HKU\S-1-5-21-3579483987-74944699-2884554317-1000\SOFTWARE | Run : [] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe Run
04 - HKU\S-1-5-21-3579483987-74944699-2884554317-1000\SOFTWARE | Run : [KiesAirMessage] - C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup
04 - HKU\S-1-5-21-3579483987-74944699-2884554317-1000\SOFTWARE | Run : [cacaoweb] - "C:\Users\Estelle\AppData\Roaming\cacaoweb\cacaoweb.exe" -noplayer
04 - HKU\S-1-5-21-3579483987-74944699-2884554317-1000\SOFTWARE | Run : [Bubble Dock] - "C:\Users\Estelle\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe" /winstartup
04 - HKU\S-1-5-19\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe
################## | Recherche générique |
Supprimé! D:\uninstall.exe
Supprimé! G:\Base avocat1.lnk
Supprimé! D:\desktop.ini
Supprimé! G:\iTunesHelper.vbe
(!) Fichiers temporaires supprimés.
################## | Référence de comparaison MD5 |
Md5 : 44DC14692C600A9ED93BA3A353BDC7B8 -> G:\iTunesHelper.vbe
################## | Comparaison MD5 |
################## | Registre |
Réparé ! HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoActiveDesktop -> 0
Réparé ! HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoActiveDesktopChanges -> 0
Supprimé! HKU\S-1-5-21-3579483987-74944699-2884554317-1000\Software\.\.\.\.\Mountpoints2\F
Supprimé! HKU\S-1-5-21-3579483987-74944699-2884554317-1000\Software\.\.\.\.\Mountpoints2\{76685295-0654-11e2-994a-68a3c4f624a2}
################## | Listing |
[26/02/2012 - 13:25:03 | SHD ] C:\$Recycle.Bin
[24/08/2011 - 15:16:11 | N | 2006] C:\aqua_bitmap.cpp
[07/04/2011 - 19:53:43 | SHD ] C:\boot
[21/11/2010 - 04:23:51 | RASH | 383786] C:\bootmgr
[15/11/2013 - 11:03:42 | SHD ] C:\Config.Msi
[14/07/2009 - 06:08:56 | SHD ] C:\Documents and Settings
[22/11/2013 - 19:41:18 | ASH | 4790833152] C:\hiberfil.sys
[17/06/2011 - 23:52:27 | D ] C:\HP
[17/06/2011 - 23:38:03 | D ] C:\Intel
[13/07/2013 - 22:04:54 | D ] C:\Kreapixel
[07/09/2011 - 13:19:43 | RHD ] C:\MSOCache
[10/09/2013 - 18:21:23 | D ] C:\opticon_driver
[22/11/2013 - 19:41:22 | ASH | 6387777536] C:\pagefile.sys
[14/07/2009 - 04:20:08 | D ] C:\PerfLogs
[10/09/2013 - 18:22:08 | D ] C:\Program Files
[19/11/2013 - 08:01:51 | D ] C:\Program Files (x86)
[19/11/2013 - 08:01:51 | HD ] C:\ProgramData
[24/08/2011 - 11:11:10 | SHD ] C:\Recovery
[25/05/2013 - 12:28:02 | D ] C:\SWSetup
[19/11/2013 - 17:50:16 | SHD ] C:\System Volume Information
[24/08/2011 - 11:11:16 | D ] C:\SYSTEM.SAV
[24/05/2013 - 21:57:28 | D ] C:\Temp
[29/08/2011 - 14:23:53 | D ] C:\TVO
[23/11/2013 - 01:26:12 | D ] C:\UsbFix
[23/11/2013 - 01:26:15 | A | 15992] C:\UsbFix [Clean 2] ESTELLE-HP.txt
[31/12/2011 - 13:07:57 | N | 237] C:\user.js
[24/08/2011 - 11:10:17 | RD ] C:\Users
[20/09/2013 - 08:56:51 | D ] C:\Windows
[24/08/2011 - 11:12:18 | SHD ] D:\$RECYCLE.BIN
[15/06/2011 - 12:04:34 | N | 10124] D:\21_pro.png
[06/06/2011 - 20:07:12 | N | 23105] D:\58tuto02.jpg
[19/02/2004 - 01:14:16 | N | 1719] D:\about.html
[27/08/2011 - 13:48:20 | N | 12946] D:\basis.xml
[14/05/2011 - 12:48:34 | N | 12156] D:\bookmark_256.png
[24/08/2011 - 11:12:15 | RASHD ] D:\boot
[14/07/2009 - 19:39:00 | RASH | 383562] D:\bootmgr
[09/10/2006 - 15:07:00 | N | 56374] D:\ButtonHuge.bmp
[12/11/2006 - 14:42:02 | N | 165942] D:\ButtonHuge24.bmp
[15/06/2011 - 12:10:24 | N | 3313] D:\c1.png
[15/06/2011 - 12:10:38 | N | 3143] D:\c2.png
[09/08/2011 - 13:54:12 | N | 18486] D:\demo_logo.bmp
[09/08/2011 - 13:54:12 | N | 4662] D:\demo_logo.bmp_16.bmp
[15/06/2011 - 12:08:06 | N | 3842] D:\dice.png
[19/02/2004 - 01:14:16 | N | 519] D:\error.html
[09/08/2011 - 00:25:44 | N | 1147] D:\facebook.png
[15/06/2011 - 00:37:44 | N | 1086] D:\facebooklay.png
[24/08/2011 - 11:12:15 | D ] D:\FactoryUpdate
[27/08/2011 - 10:46:15 | N | 97566] D:\favicon.ico
[22/08/2011 - 18:44:52 | N | 1996] D:\fb.png
[25/08/2011 - 17:52:28 | N | 2093] D:\football.png
[25/08/2011 - 17:49:02 | N | 1763] D:\gaming_pad (1).png
[22/08/2011 - 17:58:24 | N | 3267] D:\gaming_pad.png
[09/08/2011 - 00:27:46 | N | 4473] D:\google_youtube.png
[24/08/2011 - 11:12:15 | D ] D:\hp
[23/01/2012 - 17:01:02 | N | 20] D:\HPSF_Rep.txt
[15/11/2012 - 14:33:28 | N | 8] D:\HP_WSD.dat
[19/02/2004 - 01:14:16 | N | 96822] D:\icons.bmp
[11/06/2011 - 20:27:32 | N | 1524] D:\icon_news.jpg
[15/06/2011 - 12:05:32 | N | 3883] D:\kpat.png
[15/06/2011 - 12:06:24 | N | 4429] D:\kpat2.png
[15/06/2011 - 11:39:46 | N | 3307] D:\label_new_blue.png
[15/06/2011 - 11:39:32 | N | 3565] D:\label_new_red.png
[13/06/2011 - 21:27:40 | N | 2482] D:\littlelogo.png
[22/08/2011 - 18:07:56 | N | 1836] D:\little_tv (1).png
[22/08/2011 - 18:07:16 | N | 3476] D:\little_tv.png
[25/08/2011 - 14:19:14 | N | 15606] D:\log.bmp
[24/08/2011 - 16:36:16 | N | 6966] D:\log.bmp_24.bmp
[09/08/2011 - 14:18:16 | N | 8214] D:\log.bmp_30.bmp
[24/08/2011 - 16:37:28 | N | 12342] D:\log.bmp_32.bmp
[24/08/2011 - 16:35:14 | N | 50754] D:\log.bmp_65.bmp
[24/08/2011 - 16:35:40 | N | 76854] D:\log.bmp_80.bmp
[25/08/2011 - 14:19:14 | N | 86754] D:\log.bmp_85.bmp
[24/08/2011 - 16:37:48 | N | 97254] D:\log.bmp_90.bmp
[08/08/2011 - 17:49:44 | N | 2780] D:\logotool.png
[22/08/2011 - 18:39:56 | N | 6269] D:\logotoolbar.png
[24/08/2011 - 16:40:40 | N | 3990] D:\logotooool.png
[08/08/2011 - 17:54:30 | N | 1590] D:\loupe.png
[07/09/2006 - 16:49:26 | N | 43702] D:\Master.bmp
[23/05/2011 - 21:40:36 | N | 8616] D:\megaupload.png
[08/08/2011 - 23:47:58 | N | 1738] D:\meteo.png
[09/08/2011 - 00:48:58 | N | 1346] D:\money.png
[25/08/2011 - 17:49:38 | N | 1710] D:\movie.png
[15/06/2011 - 12:14:32 | N | 2856] D:\movies.png
[15/06/2011 - 12:09:44 | N | 3592] D:\p1.png
[15/06/2011 - 12:09:58 | N | 3220] D:\p2.png
[09/08/2011 - 00:53:42 | N | 1277] D:\play.png
[24/08/2011 - 11:12:15 | RSHD ] D:\preload
[24/08/2011 - 16:39:12 | N | 1707] D:\rechercherh.png
[24/08/2011 - 11:12:15 | RSD ] D:\recovery
[15/06/2011 - 01:00:46 | N | 1112] D:\refre.png
[15/06/2011 - 01:00:18 | N | 2273] D:\refresh.png
[24/08/2011 - 11:12:15 | D ] D:\RM_Reserve
[23/05/2011 - 22:45:28 | N | 3669] D:\search_button_format_bing.png
[27/08/2011 - 13:48:30 | N | 1052] D:\seeearch.crc
[09/08/2011 - 00:56:24 | N | 2891] D:\sims2_1.png
[08/08/2011 - 23:39:08 | N | 5893] D:\social_youtube.png
[29/08/2007 - 13:52:58 | N | 488] D:\start.html
[15/06/2011 - 00:28:38 | N | 2611] D:\STREAM1.png
[15/06/2011 - 00:31:36 | N | 2642] D:\STREAM2.png
[19/11/2013 - 17:50:16 | SHD ] D:\System Volume Information
[03/09/2007 - 17:54:22 | N | 323584] D:\tbhelper.dll
[25/08/2011 - 17:50:08 | N | 2115] D:\tv.png
[15/06/2011 - 00:52:58 | N | 1086] D:\tweet.png
[22/08/2011 - 18:45:14 | N | 2110] D:\twii.png
[09/08/2011 - 00:26:10 | N | 1265] D:\twitter.png
[15/06/2011 - 12:14:54 | N | 2786] D:\v1.png
[15/06/2011 - 12:15:08 | N | 2380] D:\v2.png
[27/08/2011 - 10:46:15 | N | 40] D:\version.txt
[08/08/2011 - 23:43:18 | N | 1555] D:\video.png
[15/06/2011 - 00:57:30 | N | 893] D:\weather.png
[22/08/2011 - 18:45:26 | N | 1866] D:\you.png
[09/08/2011 - 00:28:40 | N | 2195] D:\youtube (1).png
[09/08/2011 - 00:28:12 | N | 1107] D:\youtube.png
[31/12/2012 - 15:45:48 | SHD ] F:\$RECYCLE.BIN
[12/10/2008 - 04:42:36 | N | 734906368] F:\1965 James Bond Thunderball.avi
[14/12/2008 - 00:54:20 | N | 725242088] F:\1976 Taxi Driver - Martin Scorses.avi
[12/10/2008 - 03:15:56 | N | 757753856] F:\1983 Un fauteuil pour deux - John Landis.avi
[12/10/2008 - 00:50:10 | N | 736268288] F:\1985 La Couleur Pourpre - Steven Spielberg.avi
[11/11/2008 - 07:59:00 | N | 731551744] F:\1985 Les Goonies - Richard Donner.avi
[15/11/2008 - 22:07:52 | N | 731378870] F:\1985 Subway - Luc Besson.avi
[10/11/2008 - 03:38:30 | N | 799203328] F:\1986 Le Maitre De Guerre - Clint Eastwood - FR.avi
[13/06/2010 - 03:51:34 | N | 1492258816] F:\1986 Out of Africa - Robert Redford .avi
[15/11/2008 - 15:34:36 | N | 725630976] F:\1986 Top Gun - Tony Scott.avi
[09/11/2008 - 13:05:40 | N | 732112896] F:\1988 Hairspray - John Waters.avi
[13/10/2008 - 17:36:18 | N | 733997056] F:\1992 Conte d'hiver - Eric Rohmer.avi
[12/06/2010 - 04:02:10 | N | 735504384] F:\1992 Cuisine Et Dépendance - Philippe Muyl.avi
[15/11/2008 - 02:10:34 | N | 736581632] F:\1992 Singles - Cameron Crowe.avi
[08/04/2011 - 11:10:46 | N | 749182976] F:\1993 L'odeur De La Papaye Verte - Tran Anh Hung VOST.avi
[12/10/2008 - 04:55:10 | N | 731412480] F:\1993 Le Temps De L'innocence - Martin Scorsese.avi
[10/11/2008 - 05:18:26 | N | 738746368] F:\1993 Meurtre Mysterieux A Manhattan - Woody Allen Vost Fr.avi
[10/10/2008 - 06:42:48 | N | 735084544] F:\1994 L'impasse - Brian De Palma.avi
[11/11/2008 - 17:38:24 | N | 734085120] F:\1994 Muriel's Wedding - P.J. Hogan.avi
[13/11/2008 - 00:35:22 | N | 731360812] F:\1994 Quatre mariages et un enterrement - Mike Newell.avi
[11/11/2008 - 20:10:34 | N | 735117312] F:\1995 Bienvenue dans l'age ingrat (Welcome to the Dollhouse) - Todd Solondz Vost.avi
[11/11/2008 - 16:53:04 | N | 705200128] F:\1995 Leaving Las Vegas - Mike Figgis.AVI
[13/11/2008 - 07:47:46 | N | 1455339520] F:\1995 Nixon - Oliver Stone.avi
[10/11/2008 - 09:53:32 | N | 735057920] F:\1995 Petits Meurtres Entre Amis - Danny Boyle.avi
[10/10/2008 - 12:49:38 | N | 730984184] F:\1995 Sur la Route de Madison - Clint Eastwood.avi
[16/11/2008 - 01:51:04 | N | 736024576] F:\1995 Usual Suspect - Bryan Singer.avi
[13/10/2008 - 19:11:26 | N | 734009344] F:\1996 conte d'ete - eric.rohmer.avi
[10/10/2008 - 11:37:28 | N | 731072512] F:\1997 Jackie Brown - Quentin Tarantino.avi
[09/10/2008 - 18:20:38 | N | 1457764352] F:\1997 La ligne verte Franck Daranbon.avi
[15/11/2008 - 22:14:08 | N | 731961850] F:\1997 Le Cinquième Element - Luc Besson.avi
[11/11/2008 - 10:44:24 | N | 733106176] F:\1997 The Game - David Fincher.avi
[15/11/2008 - 18:23:02 | N | 772274176] F:\1997 Tout le Monde Dit I Love You - Woody Allen - Vost.avi
[19/10/2008 - 15:37:02 | N | 1370088234] F:\1998 Conte d'automne - Eric Rohmer.avi
[10/10/2008 - 07:27:52 | N | 739042304] F:\1998 L'homme qui murmurait a l'oreille des chevaux - Robert Redford.avi
[10/10/2008 - 21:47:52 | N | 724367360] F:\1999 Le Talentueux Mr Ripley - Anthony Minghella.avi
[10/10/2008 - 08:16:18 | N | 743622144] F:\1999 Tout Sur Ma Mère - Pedro.Almodovar.avi
[11/10/2008 - 03:03:06 | N | 734402918] F:\1999 Un Plan Simple - Sam Raimi.avi
[30/05/2008 - 09:17:50 | N | 733954048] F:\2001 Le Fabuleux Destin d'amelie Poulain.avi
[08/10/2008 - 21:56:12 | N | 734932992] F:\2002 Bloody Sunday.avi
[10/10/2008 - 10:47:14 | N | 828805120] F:\2003 Big Fish - Tim Burton.avi
[25/07/2010 - 10:15:22 | N | 732358656] F:\2003 L'effet papillon - Eric Bress.avi
[10/11/2008 - 03:49:16 | N | 735612068] F:\2003 La Vie Et Tout Le Reste - Woody Allen - Fr.avi
[13/10/2008 - 02:04:40 | N | 737447936] F:\2004 A History of Violence.avi
[06/10/2008 - 09:06:52 | N | 734388224] F:\2004 A Tout de Suite - Benoit Jacquot.avi
[10/10/2008 - 15:54:28 | N | 731207936] F:\2004 Collateral Fr.avi
[10/10/2008 - 11:22:32 | N | 738096166] F:\2004 Collision.avi
[25/07/2010 - 01:03:36 | N | 746315776] F:\2004 Eternal sunshine of the spotless mind - Michel Gondry.avi
[07/10/2004 - 18:02:34 | N | 542756864] F:\2004 Farenheit 9 11 - Michael Moore.avi
[27/07/2008 - 11:01:20 | N | 728714480] F:\2004 Mystic River Clin Eastwood.avi
[10/10/2008 - 18:59:56 | N | 733181122] F:\2004 Retour à€ Cold Mountain - Anthony Minghella.avi
[15/07/2008 - 01:34:36 | N | 731039744] F:\2005 Les poupees russes.avi
[05/10/2008 - 18:50:16 | N | 732583936] F:\2005 Va Vis et Deviens Radu Mihaileanu.avi
[25/07/2010 - 02:27:24 | N | 732811264] F:\2006 Black Book - Paul Verhoeven.avi
[26/07/2010 - 20:36:46 | N | 734040064] F:\2006 Blood Diamond - Edward Zwick.avi
[25/12/2008 - 08:58:10 | N | 733655040] F:\2006 Lady Chatterley - Pascale Ferran.avi
[03/06/2007 - 03:16:32 | N | 1467834368] F:\2006 Pirates des caraibes Le secret du coffre maudit.AVI
[05/10/2008 - 20:27:08 | N | 734871478] F:\2007 Je vais bien ne t'en fait pas - Philippe Lioret.avi
[23/07/2010 - 17:50:30 | N | 731881472] F:\2007 No Country For Old Men - Frères Cohen.avi
[24/11/2008 - 00:40:04 | N | 731383808] F:\2007 Persepolis - dessins animés.avi
[19/07/2008 - 21:44:26 | N | 1458599936] F:\2007 Pirates des Caraà¯bes 3 'Jusqu'au bout du Monde'.avi
[24/01/2010 - 22:16:30 | N | 722792448] F:\2008 A bord du Darjeeling- limited - Wes Anderson.avi
[23/07/2010 - 03:21:42 | N | 735172608] F:\2008 Le premier jour du reste de ta vie - Rémi Bezançon.avi
[01/04/2009 - 17:15:18 | N | 731467776] F:\2008 Paris - Klapisch.CD1.avi
[01/04/2009 - 20:38:08 | N | 731856896] F:\2008 Paris - Klapisch.CD2.avi
[24/01/2010 - 01:57:48 | N | 728854528] F:\2008 Seraphine - Provost Martin.avi
[24/01/2010 - 01:32:22 | N | 733822976] F:\2008 There Will Be Blood - Paul Thomas Anderson.avi
[27/06/2012 - 05:37:42 | D ] F:\Extras
[27/06/2012 - 05:37:42 | D ] F:\Locale
[27/06/2012 - 05:37:42 | D ] F:\My Passport Apps for Mac
[29/12/2012 - 15:13:43 | D ] F:\Patricia
[22/12/2012 - 13:07:43 | SHD ] F:\System Volume Information
[27/06/2012 - 05:37:46 | D ] F:\User Manuals
[27/06/2012 - 05:37:50 | D ] F:\WD Apps for Windows
[12/04/2012 - 01:13:19 | N | 4207520] F:\WD Apps Setup.exe
[22/12/2012 - 13:50:20 | D ] F:\WD SmartWare.swstor
[22/11/2013 - 18:26:30 | N | 749568] G:\Base avocat1.accdb
[22/11/2013 - 17:41:08 | N | 64] G:\Base avocat1.laccdb
################## | Vaccin |
G:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
################## | E.O.F | https://www.usbfix.net - https://www.sosvirus.net |
Quand j'ai allumé mon ordinateur ce matin, j'ai eu un truc CHRDSK (je ne me rappelle plus exactement du nom) avec 3 étapes. Je sais pas si ça vous parle... siffle
Malwarebytes Anti-Malware 1.75.0.1300
https://www.malwarebytes.org
Version de la base de données: v2013.11.23.04
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16736
Estelle :: ESTELLE-HP [administrateur]
23/11/2013 08:51:34
mbam-log-2013-11-23 (08-51-34).txt
Type d'examen: Examen complet (C:\|D:\|F:\|G:\|)
Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
Options d'examen désactivées: P2P
Elément(s) analysé(s): 568898
Temps écoulé: 2 heure(s), 29 minute(s), 55 seconde(s)
Processus mémoire détecté(s): 0
(Aucun élément nuisible détecté)
Module(s) mémoire détecté(s): 0
(Aucun élément nuisible détecté)
Clé(s) du Registre détectée(s): 2
HKCU\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Mis en quarantaine et supprimé avec succès.
HKLM\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Mis en quarantaine et supprimé avec succès.
Valeur(s) du Registre détectée(s): 3
HKCU\Software\Microsoft\Windows\CurrentVersion\Run|Bubble Dock (PUP.Optional.BubbleDock.A) -> Données: "C:\Users\Estelle\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe" /winstartup -> Mis en quarantaine et supprimé avec succès.
HKCU\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Données: {2B31BE13-C3A9-11E1-B3B6-68A3C4F624A2} -> Mis en quarantaine et supprimé avec succès.
HKLM\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Données: {2B31BE13-C3A9-11E1-B3B6-68A3C4F624A2} -> Mis en quarantaine et supprimé avec succès.
Elément(s) de données du Registre détecté(s): 1
HKCU\SOFTWARE\Policies\Microsoft\Internet Explorer\control panel|HomePage (PUM.Hijack.HomePageControl) -> Mauvais: (1) Bon: (0) -> Mis en quarantaine et réparé avec succès
Dossier(s) détecté(s): 1
C:\Users\Estelle\AppData\Roaming\Babylon (PUP.Optional.Babylon.A) -> Mis en quarantaine et supprimé avec succès.
Fichier(s) détecté(s): 4
C:\Program Files (x86)\MaxTV\Common\hstart.exe (PUP.HiddenStart.H) -> Mis en quarantaine et supprimé avec succès.
C:\Users\Estelle\Documents\Estelle\est.durand\Logiciels\mini-KMS_Activator_v1.052\mini-KMS_Activator_v1.052.exe (Riskware.Keygen) -> Mis en quarantaine et supprimé avec succès.
C:\Windows\Installer\38456e.msi (PUP.HiddenStart.H) -> Mis en quarantaine et supprimé avec succès.
C:\Users\Estelle\AppData\Roaming\Babylon\log_file.txt (PUP.Optional.Babylon.A) -> Mis en quarantaine et supprimé avec succès.
(fin)
- Par did80