[g3n-h@ckm@n] Infection Sality 2015-09-06T22:58:07+00:00
  • Auteur
    Messages
  • NezhaLar
    Participant
    Nombre d'articles : 0

    Bonsoir, Optimiste que les experts dans ce forum en viendront a bout de mon cheval de troie W32/Sality.AT

    Ci-dessous rapport USBFIX (scan) et HIJACKTHIS

    ///////////////////////////////////
    USBFIX
    /////////////////////////////////////////////////////////////////////

    ############################## | UsbFix V 8.101 | [Recherche]

    Utilisateur: KAOUTAR (Administrateur) # KAOUTAR-PC
    Mis à jour le 05/09/2015 par El Desaparecido – SosVirus
    Lancé à 20:01:10 | 06/09/2015

    Site Web : http://www.usbfix.net/
    Tutoriel : https://www.sosvirus.net/tutoriel-usbfix/
    Assistance : https://www.sosvirus.net/aide-nettoyage-pc/
    Détection en Live : http://comment-supprimer.fr/
    Contact : http://www.usbfix.net/contact/

    ################## | System information |

    MB: Type2 – Board Vendor Name1 (Type2 – Board Product Name1)
    CPU: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz
    RAM -> [Total : 3988 Mo | Free : 1755 Mo]
    Bios: Insyde Corp.
    Boot: Normal boot

    OS: Microsoft™ Windows 7 Professional (6.1.7601 64-Bit) Service Pack 1
    WB: Internet Explorer : 11.00.9600.16428
    WB: Google Chrome : 45.0.2454.85
    WB: Mozilla Firefox : 40.0.3

    ################## | Security Information |

    AV: Avira Antivirus [Actif |A jour]
    AS: Avira Antivirus [Actif |A jour]
    AS: Windows Defender [(!) Désactivé |A jour]
    FW: Windows Firewall [Actif]
    SC: Security Center [Actif]
    WU: Windows Update [Actif]

    ################## | Disk Information |

    Cmdss[{:}] (%SystemDrive%) -> Disque fixe # 221 Go (85 Go libre(s) – 38%) [] # NTFS
    Dmdss[{:}] -> Disque fixe # 245 Go (140 Go libre(s) – 57%) [] # NTFS
    Fmdss[{:}] -> Disque amovible # 4 Go (377 Mo libre(s) – 9%) [DOC-ONG] # FAT32

    ################## | Startup |

    F2 – HKLM..Winlogon : [Shell] explorer.exe
    F2 – [x64] HKLM..Winlogon : [Shell] explorer.exe
    F2 – HKLM..Winlogon : [Userinit] C:WindowsSystem32Userinit.exe,
    F2 – [x64] HKLM..Winlogon : [Userinit] C:WindowsSystem32Userinit.exe,
    04 – HKCU..Run : [OfficeSyncProcess] “C:Program Files (x86)Microsoft OfficeOffice14MSOSYNC.EXE”
    04 – HKCU..Run : [Skype] “C:Program Files (x86)SkypePhoneSkype.exe” /minimized /regrun
    04 – HKCU..Run : [Google Update] “C:UsersKAOUTARAppDataLocalGoogleUpdateGoogleUpdate.exe” /c
    04 – HKCU..Run : [SoftonicAssistant] “C:UsersKAOUTARAppDataLocalSoftonicAssistantSoftonicAssistant.exe”
    04 – HKCU..Run : [GoogleChromeAutoLaunch_7A596FC49919C34C880624902E6899C6] “C:Program Files (x86)GoogleChromeApplicationchrome.exe” –no-startup-window
    04 – HKLM..Run : [avgnt] “C:Program Files (x86)AviraAntiVir Desktopavgnt.exe” /min
    04 – HKLM..Run : [BCSSync] “C:Program Files (x86)Microsoft OfficeOffice14BCSSync.exe” /DelayServices
    04 – HKLM..Run : [ApnTBMon] “C:Program Files (x86)AskPartnerNetworkToolbarUpdaterTBNotifier.exe”
    04 – HKLM..Run : [Allin1Convert EPM Support] “C:PROGRA~2ALLIN1~2bar3.bin8hmedint.exe” T8EPMSUP.DLL,S
    04 – HKLM..Run : [Allin1Convert AppIntegrator 32-bit] C:PROGRA~2ALLIN1~2bar3.binAppIntegrator.exe
    04 – HKLM..Run : [Allin1Convert AppIntegrator 64-bit] C:PROGRA~2ALLIN1~2bar3.binAppIntegrator64.exe
    04 – HKLM..Run : [Allin1Convert Search Scope Monitor] “C:PROGRA~2ALLIN1~2bar2.bin8hsrchmn.exe” /m=2 /w /h
    04 – HKLM..Run : [MyWebFace EPM Support] “C:PROGRA~2MYWEBF~2bar2.bin5amedint.exe” T8EPMSUP.DLL,S
    04 – HKLM..Run : [MyWebFace AppIntegrator 32-bit] C:PROGRA~2MYWEBF~2bar2.binAppIntegrator.exe
    04 – HKLM..Run : [MyWebFace AppIntegrator 64-bit] C:PROGRA~2MYWEBF~2bar2.binAppIntegrator64.exe
    04 – HKLM..Run : [Avira SystrayStartTrigger] C:Program Files (x86)AviraLauncherAvira.SystrayStartTrigger.exe
    04 – HKLM..RunOnce : [{b76c0d12-422c-44e3-9daa-9363451e24cd}] “C:ProgramDataPackage Cache{b76c0d12-422c-44e3-9daa-9363451e24cd}Avira.OE.Setup.Bundle.exe” /quiet /norestart /burn.log.append “C:WindowsTEMPAvira_Launcher_20150831075833.log” /install CALLER_PARTNER_ID=avira /burn.runonce
    04 – [x64] HKLM..Run : [RtHDVCpl] C:Program FilesRealtekAudioHDARAVCpl64.exe -s
    04 – [x64] HKLM..Run : [IgfxTray] “C:Windowssystem32igfxtray.exe”
    04 – [x64] HKLM..Run : [HotKeysCmds] “C:Windowssystem32hkcmd.exe”
    04 – [x64] HKLM..Run : [Persistence] “C:Windowssystem32igfxpers.exe”
    04 – [x64] HKLM..Run : [SynTPEnh] %ProgramFiles%SynapticsSynTPSynTPEnh.exe
    04 – HKUS-1-5-19..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
    04 – HKUS-1-5-20..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
    04 – HKUS-1-5-21-333066005-201569939-389340648-1000..Run : [OfficeSyncProcess] “C:Program Files (x86)Microsoft OfficeOffice14MSOSYNC.EXE”
    04 – HKUS-1-5-21-333066005-201569939-389340648-1000..Run : [Skype] “C:Program Files (x86)SkypePhoneSkype.exe” /minimized /regrun
    04 – HKUS-1-5-21-333066005-201569939-389340648-1000..Run : [Google Update] “C:UsersKAOUTARAppDataLocalGoogleUpdateGoogleUpdate.exe” /c
    04 – HKUS-1-5-21-333066005-201569939-389340648-1000..Run : [SoftonicAssistant] “C:UsersKAOUTARAppDataLocalSoftonicAssistantSoftonicAssistant.exe”
    04 – HKUS-1-5-21-333066005-201569939-389340648-1000..Run : [GoogleChromeAutoLaunch_7A596FC49919C34C880624902E6899C6] “C:Program Files (x86)GoogleChromeApplicationchrome.exe” –no-startup-window
    04 – HKUS-1-5-19..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe
    04 – HKUS-1-5-20..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe
    04GS – Microsoft SharePoint Workspace.lnk : C:Program Files (x86)Microsoft OfficeOffice14GROOVE.EXE
    04GS – McAfee Security Scan Plus.lnk : C:Program FilesMcAfee Security Scan3.11.149SSScheduler.exe

    ################## | Recherche générique |

    Présent! F:.Trashes.exe
    Présent! F:RECYCLER.exe
    Présent! F:RecyclerS-4-6-27-2066215715-0871376070-624265165-6312KZEruwMy.exe
    Présent! F:RecyclerS-4-6-27-2066215715-0871376070-624265165-6312tWSUvslS.cpl
    Présent! F:RecyclerS-4-6-27-2066215715-0871376070-624265165-6312tosiJvNu.exe
    Présent! F:RecyclerS-4-6-27-2066215715-0871376070-624265165-6312yXGXnIGl.cpl
    Présent! F:RecyclerS-4-6-27-2066215715-0871376070-624265165-6312bnmaAoVO.exe
    Présent! F:RecyclerS-4-6-27-2066215715-0871376070-624265165-6312wZxaoQMj.cpl
    Présent! F:RecyclerS-4-6-27-2066215715-0871376070-624265165-6312ODpuVtrO.exe
    Présent! F:RecyclerS-4-6-27-2066215715-0871376070-624265165-6312kQhmmtCC.cpl
    Présent! F:RecyclerS-4-6-27-2066215715-0871376070-624265165-6312SxDhahpu.exe
    Présent! F:RecyclerS-4-6-27-2066215715-0871376070-624265165-6312VTvrpIro.cpl
    Présent! F:RecyclerS-4-6-27-2066215715-0871376070-624265165-6312reMriMgt.exe
    Présent! F:RecyclerS-4-6-27-2066215715-0871376070-624265165-6312hxTdOHbJ.cpl
    Présent! F:RecyclerS-4-6-27-2066215715-0871376070-624265165-6312
    Présent! F:RECYCLERS-4-6-27-2066215715-0871376070-624265165-6312KZEruwMy.exe
    Présent! F:RECYCLERS-4-6-27-2066215715-0871376070-624265165-6312tosiJvNu.exe
    Présent! F:RECYCLERS-4-6-27-2066215715-0871376070-624265165-6312bnmaAoVO.exe
    Présent! F:RECYCLERS-4-6-27-2066215715-0871376070-624265165-6312ODpuVtrO.exe
    Présent! F:RECYCLERS-4-6-27-2066215715-0871376070-624265165-6312SxDhahpu.exe
    Présent! F:RECYCLERS-4-6-27-2066215715-0871376070-624265165-6312reMriMgt.exe
    Présent! F:INPT.exe
    Présent! F:.fseventsd.exe
    Présent! F:.Spotlight-V100.exe
    Présent! F:Résidence Alhanaa.exe
    Présent! F:Association Akalino.exe
    Présent! F:Indian culture.exe
    Présent! F:Eden Association.exe
    Présent! F:Méga expériences livre adnane.exe
    Présent! F:Club Les Amis PUM.exe
    Présent! F:Yoga.exe
    Présent! F:History of Technology-Career Management.exe
    Présent! F:_Infography beautiful templates.exe
    Présent! F:Doctorat.exe

    ################## | UsbFix – Information |

    Info : Comment supprimer l’infection des raccourcis sur USB ? (Video)
    Info : L’infection des raccourcis USB, c’est quoi ?
    Détection en Live : http://comment-supprimer.fr/

    Analyse réalisée en 265.6 secondes

    ################## | E.O.F | https://www.sosvirus.net/ | http://www.usbfix.net/ |

    ///////////////////////////////////////////
    HIJACKTHIS
    //////////////////////////////////////////

    Logfile of Trend Micro HijackThis v2.0.5
    Scan saved at 23:09:09, on 06/09/2015
    Platform: Windows 7 SP1 (WinNT 6.00.3505)
    MSIE: Internet Explorer v11.0 (11.00.9600.17937)

    FIREFOX: 40.0.3 (x86 fr)
    Boot mode: Normal

    Running processes:
    C:Program Files (x86)Microsoft OfficeOffice14MSOSYNC.EXE
    C:Program Files (x86)SkypePhoneSkype.exe
    C:Program Files (x86)Microsoft OfficeOffice14GROOVE.EXE
    C:Program Files (x86)AviraAntiVir Desktopavgnt.exe
    C:Program Files (x86)AskPartnerNetworkToolbarUpdaterTBNotifier.exe
    C:Program Files (x86)Allin1Convert_8hbar3.binAPPINTEGRATOR.EXE
    C:Program Files (x86)MyWebFace_5abar2.binAPPINTEGRATOR.EXE
    C:Program Files (x86)GoogleChromeApplicationchrome.exe
    C:Program Files (x86)GoogleChromeApplicationchrome.exe
    C:Program Files (x86)GoogleChromeApplicationchrome.exe
    C:Program Files (x86)GoogleChromeApplicationchrome.exe
    C:Program Files (x86)GoogleChromeApplicationchrome.exe
    C:Program Files (x86)GoogleChromeApplicationchrome.exe
    C:Program Files (x86)GoogleChromeApplicationchrome.exe
    C:Program Files (x86)GoogleChromeApplicationchrome.exe
    C:Program Files (x86)GoogleChromeApplicationchrome.exe
    C:Program Files (x86)GoogleChromeApplicationchrome.exe
    C:Program Files (x86)HijackThisHijackThis.exe

    R1 – HKCUSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://www.sweet-page.com/?type=hp&ts=1429450520&from=cor&uid=TOSHIBAXMQ01ABF050_23QEC3P6TXX23QEC3P6T
    R1 – HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 – HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://home.tb.ask.com/index.jhtml?n=781B1D57&p2=^AYY^xdm399^YYA^ma&ptb=25E97AE1-E3AD-45A4-BD17-47357C26C03E&si=network_adcashfc_1XXXX9lc59a98li83
    R1 – HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://www.sweet-page.com/?type=hp&ts=1429450520&from=cor&uid=TOSHIBAXMQ01ABF050_23QEC3P6TXX23QEC3P6T
    R1 – HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://www.sweet-page.com/web/?type=ds&ts=1429450520&from=cor&uid=TOSHIBAXMQ01ABF050_23QEC3P6TXX23QEC3P6T&q={searchTerms}
    R1 – HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://www.sweet-page.com/web/?type=ds&ts=1429450520&from=cor&uid=TOSHIBAXMQ01ABF050_23QEC3P6TXX23QEC3P6T&q={searchTerms}
    R0 – HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.sweet-page.com/?type=hp&ts=1429450520&from=cor&uid=TOSHIBAXMQ01ABF050_23QEC3P6TXX23QEC3P6T
    R0 – HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant =
    R0 – HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch =
    R0 – HKLMSoftwareMicrosoftInternet ExplorerMain,Local Page = C:WindowsSysWOW64blank.htm
    R0 – HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName =
    R3 – URLSearchHook: (no name) – {5bcf818d-78c8-41b8-ba89-65c5fdac4fc4} – C:Program Files (x86)Allin1Convert_8hbar3.bin8hSrcAs.dll
    R3 – URLSearchHook: (no name) – {8040829d-1177-46e2-9157-8282438b79c7} – C:Program Files (x86)MyWebFace_5abar2.bin5aSrcAs.dll
    O2 – BHO: Search Assistant BHO – {14d02517-c8be-4735-a344-3c8366c77aa0} – C:Program Files (x86)MyWebFace_5abar2.bin5aSrcAs.dll
    O2 – BHO: Groove GFS Browser Helper – {72853161-30C5-4D22-B7F9-0BBC1D38A37E} – C:PROGRA~2MICROS~2Office14GROOVEEX.DLL
    O2 – BHO: Java(tm) Plug-In SSV Helper – {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} – C:Program Files (x86)Javajre7binssv.dll
    O2 – BHO: Programme d’aide de l’Assistant de connexion au compte Microsoft – {9030D464-4C02-4ABF-8ECC-5164760863C6} – C:Program Files (x86)Common FilesMicrosoft SharedWindows LiveWindowsLiveLogin.dll
    O2 – BHO: Search Assistant BHO – {a4c2fb10-84c3-44eb-9f9e-860fa1d9a797} – C:Program Files (x86)Allin1Convert_8hbar3.bin8hSrcAs.dll
    O2 – BHO: SkypeIEPluginBHO – {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} – C:Program Files (x86)SkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
    O2 – BHO: Toolbar BHO – {b1df253a-9e7a-480d-b6a5-7a435b520dbb} – C:PROGRA~2MYWEBF~2bar2.bin5abar.dll
    O2 – BHO: URLRedirectionBHO – {B4F3A835-0E21-4959-BA22-42B3008E02FF} – C:PROGRA~2MICROS~2Office14URLREDIR.DLL
    O2 – BHO: Java(tm) Plug-In 2 SSV Helper – {DBC80044-A445-435b-BC74-9C25C1C588A9} – C:Program Files (x86)Javajre7binjp2ssv.dll
    O2 – BHO: Toolbar BHO – {fbcbc43a-dca9-4192-a4c8-b57fd0f77d4d} – C:PROGRA~2ALLIN1~2bar3.bin8hbar.dll
    O3 – Toolbar: Allin1Convert – {cd1a63ba-a08c-431b-9a34-f240aadc728d} – C:Program Files (x86)Allin1Convert_8hbar3.bin8hbar.dll
    O3 – Toolbar: MyWebFace – {af94b35c-3ac5-4030-9f9c-15fb4e3dc339} – C:Program Files (x86)MyWebFace_5abar2.bin5abar.dll
    O4 – HKLM..Run: [avgnt] “C:Program Files (x86)AviraAntiVir Desktopavgnt.exe” /min
    O4 – HKLM..Run: [BCSSync] “C:Program Files (x86)Microsoft OfficeOffice14BCSSync.exe” /DelayServices
    O4 – HKLM..Run: [ApnTBMon] “C:Program Files (x86)AskPartnerNetworkToolbarUpdaterTBNotifier.exe”
    O4 – HKLM..Run: [Allin1Convert EPM Support] “C:PROGRA~2ALLIN1~2bar3.bin8hmedint.exe” T8EPMSUP.DLL,S
    O4 – HKLM..Run: [Allin1Convert AppIntegrator 32-bit] C:PROGRA~2ALLIN1~2bar3.binAppIntegrator.exe
    O4 – HKLM..Run: [Allin1Convert AppIntegrator 64-bit] C:PROGRA~2ALLIN1~2bar3.binAppIntegrator64.exe
    O4 – HKLM..Run: [Allin1Convert Search Scope Monitor] “C:PROGRA~2ALLIN1~2bar2.bin8hsrchmn.exe” /m=2 /w /h
    O4 – HKLM..Run: [MyWebFace EPM Support] “C:PROGRA~2MYWEBF~2bar2.bin5amedint.exe” T8EPMSUP.DLL,S
    O4 – HKLM..Run: [MyWebFace AppIntegrator 32-bit] C:PROGRA~2MYWEBF~2bar2.binAppIntegrator.exe
    O4 – HKLM..Run: [MyWebFace AppIntegrator 64-bit] C:PROGRA~2MYWEBF~2bar2.binAppIntegrator64.exe
    O4 – HKLM..Run: [Avira SystrayStartTrigger] C:Program Files (x86)AviraLauncherAvira.SystrayStartTrigger.exe
    O4 – HKLM..RunOnce: [{b76c0d12-422c-44e3-9daa-9363451e24cd}] “C:ProgramDataPackage Cache{b76c0d12-422c-44e3-9daa-9363451e24cd}Avira.OE.Setup.Bundle.exe” /quiet /norestart /burn.log.append “C:WindowsTEMPAvira_Launcher_20150831075833.log” /install CALLER_PARTNER_ID=avira /burn.runonce
    O4 – HKCU..Run: [OfficeSyncProcess] “C:Program Files (x86)Microsoft OfficeOffice14MSOSYNC.EXE”
    O4 – HKCU..Run: [Skype] “C:Program Files (x86)SkypePhoneSkype.exe” /minimized /regrun
    O4 – HKCU..Run: [Google Update] “C:UsersKAOUTARAppDataLocalGoogleUpdateGoogleUpdate.exe” /c
    O4 – HKCU..Run: [SoftonicAssistant] “C:UsersKAOUTARAppDataLocalSoftonicAssistantSoftonicAssistant.exe”
    O4 – HKCU..Run: [GoogleChromeAutoLaunch_7A596FC49919C34C880624902E6899C6] “C:Program Files (x86)GoogleChromeApplicationchrome.exe” –no-startup-window
    O4 – Startup: Microsoft SharePoint Workspace.lnk = C:Program Files (x86)Microsoft OfficeOffice14GROOVE.EXE
    O4 – Global Startup: McAfee Security Scan Plus.lnk = C:Program FilesMcAfee Security Scan3.11.149SSScheduler.exe
    O8 – Extra context menu item: &Envoyer à OneNote – res://C:PROGRA~2MICROS~2Office14ONBttnIE.dll/105
    O8 – Extra context menu item: E&xporter vers Microsoft Excel – res://C:PROGRA~2MICROS~2Office14EXCEL.EXE/3000
    O9 – Extra button: Envoyer à OneNote – {2670000A-7350-4f3c-8081-5663EE0C6C49} – C:Program Files (x86)Microsoft OfficeOffice14ONBttnIE.dll
    O9 – Extra ‘Tools’ menuitem: &Envoyer à OneNote – {2670000A-7350-4f3c-8081-5663EE0C6C49} – C:Program Files (x86)Microsoft OfficeOffice14ONBttnIE.dll
    O9 – Extra button: Search App by Ask – {4254522D-5350-006A-76A7-7A786E7484D7} – “C:Program Files (x86)AskPartnerNetworkToolbarBTR-SPPassportCrx.dll” (file missing)
    O9 – Extra button: Notes &liées OneNote – {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} – C:Program Files (x86)Microsoft OfficeOffice14ONBttnIELinkedNotes.dll
    O9 – Extra ‘Tools’ menuitem: Notes &liées OneNote – {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} – C:Program Files (x86)Microsoft OfficeOffice14ONBttnIELinkedNotes.dll
    O9 – Extra button: Skype Click to Call settings – {898EA8C8-E7FF-479B-8935-AEC46303B9E5} – C:Program Files (x86)SkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
    O10 – Unknown file in Winsock LSP: c:program files (x86)common filesmicrosoft sharedwindows livewlidnsp.dll
    O10 – Unknown file in Winsock LSP: c:program files (x86)common filesmicrosoft sharedwindows livewlidnsp.dll
    O11 – Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
    O17 – HKLMSystemCCSServicesTcpip..{C2AA7663-562D-4B58-A0B2-59D4E127BBC3}: NameServer = 192.168.1.4,192.168.2.3
    O18 – Protocol: skype4com – {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} – C:PROGRA~2COMMON~1SkypeSKYPE4~1.DLL
    O18 – Protocol: skypec2c – {91774881-D725-4E58-B298-07617B9B86A8} – C:Program Files (x86)SkypeToolbarsInternet ExplorerSkypeIEPlugin.dll
    O18 – Protocol: wlpg – {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} – C:Program Files (x86)Windows LivePhoto GalleryAlbumDownloadProtocolHandler.dll
    O18 – Filter hijack: text/xml – {807573E5-5146-11D5-A672-00B0D022E945} – C:Program Files (x86)Common FilesMicrosoft SharedOFFICE14MSOXMLMF.DLL
    O23 – Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) – Adobe Systems Incorporated – C:WindowsSysWOW64MacromedFlashFlashPlayerUpdateService.exe
    O23 – Service: @%SystemRoot%system32aelupsvc.dll,-1 (AeLookupSvc) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32Alg.exe,-112 (ALG) – Unknown owner – C:WindowsSystem32alg.exe (file missing)
    O23 – Service: Allin1ConvertService (Allin1Convert_8hService) – Mindspark – C:PROGRA~2ALLIN1~2bar3.bin8hbarsvc.exe
    O23 – Service: Avira Mail Protection (AntiVirMailService) – Avira Operations GmbH & Co. KG – C:Program Files (x86)AviraAntiVir Desktopavmailc7.exe
    O23 – Service: Avira Scheduler (AntiVirSchedulerService) – Avira Operations GmbH & Co. KG – C:Program Files (x86)AviraAntiVir Desktopsched.exe
    O23 – Service: Avira Real-Time Protection (AntiVirService) – Avira Operations GmbH & Co. KG – C:Program Files (x86)AviraAntiVir Desktopavguard.exe
    O23 – Service: Avira Web Protection (AntiVirWebService) – Avira Operations GmbH & Co. KG – C:Program Files (x86)AviraAntiVir Desktopavwebg7.exe
    O23 – Service: Service de mise à jour Ask (APNMCP) – APN LLC. – C:Program Files (x86)AskPartnerNetworkToolbarapnmcp.exe
    O23 – Service: @%systemroot%system32appidsvc.dll,-100 (AppIDSvc) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%systemroot%system32appinfo.dll,-100 (Appinfo) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @appmgmts.dll,-3250 (AppMgmt) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32audiosrv.dll,-204 (AudioEndpointBuilder) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%system32audiosrv.dll,-200 (AudioSrv) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: Avira Service Host (Avira.ServiceHost) – Avira Operations GmbH & Co. KG – C:Program Files (x86)AviraLauncherAvira.ServiceHost.exe
    O23 – Service: @%SystemRoot%system32AxInstSV.dll,-103 (AxInstSV) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32bdesvc.dll,-100 (BDESVC) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%system32bfe.dll,-1001 (BFE) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32qmgr.dll,-1000 (BITS) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%systemroot%system32browser.dll,-100 (Browser) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%System32bthserv.dll,-101 (bthserv) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%System32certprop.dll,-11 (CertPropSvc) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: CodeMeter Runtime Server (CodeMeter.exe) – WIBU-SYSTEMS AG – C:Program Files (x86)CodeMeterRuntimebinCodeMeter.exe
    O23 – Service: Intel(R) Content Protection HECI Service (cphs) – Intel Corporation – C:WindowsSysWow64IntelCpHeciSvc.exe
    O23 – Service: @%SystemRoot%system32cryptsvc.dll,-1001 (CryptSvc) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%systemroot%system32cscsvc.dll,-200 (CscService) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @oleres.dll,-5012 (DcomLaunch) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32defragsvc.dll,-101 (defragsvc) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32dhcpcore.dll,-100 (Dhcp) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32UtcResources.dll,-3001 (DiagTrack) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%System32dnsapi.dll,-101 (Dnscache) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%systemroot%system32dot3svc.dll,-1102 (dot3svc) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%systemroot%system32dps.dll,-500 (DPS) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%systemroot%system32eapsvc.dll,-1 (EapHost) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%system32efssvc.dll,-100 (EFS) – Unknown owner – C:WindowsSystem32lsass.exe (file missing)
    O23 – Service: @%SystemRoot%ehomeehrecvr.exe,-101 (ehRecvr) – Unknown owner – C:WindowsehomeehRecvr.exe
    O23 – Service: @%SystemRoot%ehomeehsched.exe,-101 (ehSched) – Unknown owner – C:Windowsehomeehsched.exe
    O23 – Service: @%SystemRoot%system32wevtsvc.dll,-200 (eventlog) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @comres.dll,-2450 (EventSystem) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%systemroot%system32fxsresm.dll,-118 (Fax) – Unknown owner – C:Windowssystem32fxssvc.exe (file missing)
    O23 – Service: @%systemroot%system32fdPHost.dll,-100 (fdPHost) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%systemroot%system32fdrespub.dll,-100 (FDResPub) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%systemroot%system32FntCache.dll,-100 (FontCache) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @gpapi.dll,-112 (gpsvc) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: Service Google Update (gupdate) (gupdate) – Unknown owner – C:Program Files (x86)GoogleUpdateGoogleUpdate.exe
    O23 – Service: Service Google Update (gupdatem) (gupdatem) – Unknown owner – C:Program Files (x86)GoogleUpdateGoogleUpdate.exe
    O23 – Service: @%SystemRoot%System32hidserv.dll,-101 (hidserv) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32kmsvc.dll,-6 (hkmsvc) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%System32ListSvc.dll,-100 (HomeGroupListener) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%System32provsvc.dll,-100 (HomeGroupProvider) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%system32ieetwcollectorres.dll,-1000 (IEEtwCollectorService) – Unknown owner – C:Windowssystem32IEEtwCollector.exe (file missing)
    O23 – Service: @%SystemRoot%system32ikeext.dll,-501 (IKEEXT) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%systemroot%system32IPBusEnum.dll,-102 (IPBusEnum) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32iphlpsvc.dll,-500 (iphlpsvc) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @keyiso.dll,-100 (KeyIso) – Unknown owner – C:Windowssystem32lsass.exe (file missing)
    O23 – Service: @comres.dll,-2946 (KtmRm) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%systemroot%system32srvsvc.dll,-100 (LanmanServer) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%systemroot%system32wkssvc.dll,-100 (LanmanWorkstation) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%system32lltdres.dll,-1 (lltdsvc) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%system32lmhsvc.dll,-101 (lmhosts) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: McAfee Security Scan Component Host Service (McComponentHostService) – McAfee, Inc. – C:Program FilesMcAfee Security Scan3.11.149McCHSvc.exe
    O23 – Service: @%systemroot%system32mmcss.dll,-100 (MMCSS) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: Mozilla Maintenance Service (MozillaMaintenance) – Mozilla Foundation – C:Program Files (x86)Mozilla Maintenance Servicemaintenanceservice.exe
    O23 – Service: @%SystemRoot%system32FirewallAPI.dll,-23090 (MpsSvc) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @comres.dll,-2797 (MSDTC) – Unknown owner – C:WindowsSystem32msdtc.exe (file missing)
    O23 – Service: @%SystemRoot%system32iscsidsc.dll,-5000 (MSiSCSI) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32msimsg.dll,-27 (msiserver) – Unknown owner – C:Windowssystem32msiexec.exe
    O23 – Service: MyWebFaceService (MyWebFace_5aService) – Mindspark – C:PROGRA~2MYWEBF~2bar2.bin5abarsvc.exe
    O23 – Service: @%SystemRoot%system32qagentrt.dll,-6 (napagent) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%System32netlogon.dll,-102 (Netlogon) – Unknown owner – C:Windowssystem32lsass.exe (file missing)
    O23 – Service: @%SystemRoot%system32netman.dll,-109 (Netman) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%system32netprofm.dll,-202 (netprofm) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%System32nlasvc.dll,-1 (NlaSvc) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%system32nsisvc.dll,-200 (nsi) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32pnrpsvc.dll,-8004 (p2pimsvc) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%system32p2psvc.dll,-8006 (p2psvc) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%system32pcasvc.dll,-1 (PcaSvc) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32peerdistsvc.dll,-9000 (PeerDistSvc) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%systemroot%sysWow64perfhost.exe,-2 (PerfHost) – Unknown owner – C:WindowsSysWow64perfhost.exe
    O23 – Service: @%systemroot%system32pla.dll,-500 (pla) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%system32umpnpmgr.dll,-100 (PlugPlay) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32pnrpauto.dll,-8002 (PNRPAutoReg) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%system32pnrpsvc.dll,-8000 (PNRPsvc) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%System32polstore.dll,-5010 (PolicyAgent) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32umpo.dll,-100 (Power) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%systemroot%system32profsvc.dll,-300 (ProfSvc) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%systemroot%system32psbase.dll,-300 (ProtectedStorage) – Unknown owner – C:Windowssystem32lsass.exe (file missing)
    O23 – Service: @%SystemRoot%system32qwave.dll,-1 (QWAVE) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%Systemroot%system32rasauto.dll,-200 (RasAuto) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%Systemroot%system32rasmans.dll,-200 (RasMan) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @regsvc.dll,-1 (RemoteRegistry) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%windir%system32RpcEpMap.dll,-1001 (RpcEptMapper) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%systemroot%system32Locator.exe,-2 (RpcLocator) – Unknown owner – C:Windowssystem32locator.exe (file missing)
    O23 – Service: @oleres.dll,-5010 (RpcSs) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: Realtek Audio Service (RtkAudioService) – Realtek Semiconductor – C:Program FilesRealtekAudioHDARtkAudioService64.exe
    O23 – Service: @%SystemRoot%system32samsrv.dll,-1 (SamSs) – Unknown owner – C:Windowssystem32lsass.exe (file missing)
    O23 – Service: @%SystemRoot%System32SCardSvr.dll,-1 (SCardSvr) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32schedsvc.dll,-100 (Schedule) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%System32certprop.dll,-13 (SCPolicySvc) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32sdrsvc.dll,-107 (SDRSVC) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32seclogon.dll,-7001 (seclogon) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32Sens.dll,-200 (SENS) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%System32sensrsvc.dll,-1000 (SensrSvc) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%System32SessEnv.dll,-1026 (SessionEnv) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%system32ipnathlp.dll,-106 (SharedAccess) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%System32shsvcs.dll,-12288 (ShellHWDetection) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: Skype Updater (SkypeUpdate) – Skype Technologies – C:Program Files (x86)SkypeUpdaterUpdater.exe
    O23 – Service: @%SystemRoot%system32snmptrap.exe,-3 (SNMPTRAP) – Unknown owner – C:WindowsSystem32snmptrap.exe (file missing)
    O23 – Service: @%systemroot%system32spoolsv.exe,-1 (Spooler) – Unknown owner – C:WindowsSystem32spoolsv.exe (file missing)
    O23 – Service: @%SystemRoot%system32sppsvc.exe,-101 (sppsvc) – Unknown owner – C:Windowssystem32sppsvc.exe (file missing)
    O23 – Service: @%SystemRoot%system32sppuinotify.dll,-103 (sppuinotify) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%systemroot%system32ssdpsrv.dll,-100 (SSDPSRV) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32sstpsvc.dll,-200 (SstpSvc) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32wiaservc.dll,-9 (stisvc) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%System32StorSvc.dll,-100 (StorSvc) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%System32swprv.dll,-103 (swprv) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%system32sysmain.dll,-1000 (SysMain) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32TabSvc.dll,-100 (TabletInputService) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%system32tapisrv.dll,-10100 (TapiSrv) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%system32tbssvc.dll,-100 (TBS) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%System32termsrv.dll,-268 (TermService) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%System32themeservice.dll,-8192 (Themes) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%systemroot%system32mmcss.dll,-102 (THREADORDER) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32trkwks.dll,-1 (TrkWks) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%servicingTrustedInstaller.exe,-100 (TrustedInstaller) – Unknown owner – C:WindowsservicingTrustedInstaller.exe
    O23 – Service: @%SystemRoot%system32ui0detect.exe,-101 (UI0Detect) – Unknown owner – C:Windowssystem32UI0Detect.exe (file missing)
    O23 – Service: @%SystemRoot%system32umrdp.dll,-1000 (UmRdpService) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%systemroot%system32upnphost.dll,-213 (upnphost) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32dwm.exe,-2000 (UxSms) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%system32vaultsvc.dll,-1003 (VaultSvc) – Unknown owner – C:Windowssystem32lsass.exe (file missing)
    O23 – Service: @%SystemRoot%system32vds.exe,-100 (vds) – Unknown owner – C:WindowsSystem32vds.exe (file missing)
    O23 – Service: @%systemroot%system32vssvc.exe,-102 (VSS) – Unknown owner – C:Windowssystem32vssvc.exe (file missing)
    O23 – Service: @%SystemRoot%system32w32time.dll,-200 (W32Time) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32WatWatUX.exe,-601 (WatAdminSvc) – Unknown owner – C:Windowssystem32WatWatAdminSvc.exe (file missing)
    O23 – Service: @%systemroot%system32wbengine.exe,-104 (wbengine) – Unknown owner – C:Windowssystem32wbengine.exe (file missing)
    O23 – Service: @%systemroot%system32wbiosrvc.dll,-100 (WbioSrvc) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32wcncsvc.dll,-3 (wcncsvc) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%system32WcsPlugInService.dll,-200 (WcsPlugInService) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%systemroot%system32wdi.dll,-502 (WdiServiceHost) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%systemroot%system32wdi.dll,-500 (WdiSystemHost) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%systemroot%system32webclnt.dll,-100 (WebClient) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32wecsvc.dll,-200 (Wecsvc) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%System32wercplsupport.dll,-101 (wercplsupport) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%System32wersvc.dll,-100 (WerSvc) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%ProgramFiles%Windows DefenderMsMpRes.dll,-103 (WinDefend) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%system32winhttp.dll,-100 (WinHttpAutoProxySvc) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%Systemroot%system32wbemwmisvc.dll,-205 (Winmgmt) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%Systemroot%system32wsmsvc.dll,-101 (WinRM) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%SystemRoot%System32wlansvc.dll,-257 (Wlansvc) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%Systemroot%system32wbemwmiapsrv.exe,-110 (wmiApSrv) – Unknown owner – C:Windowssystem32wbemWmiApSrv.exe (file missing)
    O23 – Service: @%PROGRAMFILES%Windows Media Playerwmpnetwk.exe,-101 (WMPNetworkSvc) – Unknown owner – C:Program Files (x86)Windows Media Playerwmpnetwk.exe (file missing)
    O23 – Service: @%SystemRoot%system32wpcsvc.dll,-100 (WPCSvc) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32wpdbusenum.dll,-100 (WPDBusEnum) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%System32wscsvc.dll,-200 (wscsvc) – Unknown owner – C:WindowsSystem32svchost.exe
    O23 – Service: @%systemroot%system32SearchIndexer.exe,-103 (WSearch) – Unknown owner – C:Windowssystem32SearchIndexer.exe
    O23 – Service: @%systemroot%system32wuaueng.dll,-105 (wuauserv) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%system32wudfsvc.dll,-1000 (wudfsvc) – Unknown owner – C:Windowssystem32svchost.exe
    O23 – Service: @%SystemRoot%System32wwansvc.dll,-257 (WwanSvc) – Unknown owner – C:Windowssystem32svchost.exe


    End of file – 28261 bytes

  • g3n-h@ckm@n
    Admin bbPress
    Nombre d'articles : 8323

    salut fais le nettoyage avec usbfix , puis poste le nouveau rapport

    ==

    ensuite :

    Désactiver la restauration système

    Pour XP : http://www.libellules.ch/desactiver_restauration.php
    Pour Vista : http://www.commentcamarche.net/faq/13214-vista-desactiver-reactiver-la-restauration-systeme-de-vista
    Pour Windows 7/8 : http://www.commentcamarche.net/faq/25651-desactiver-reactiver-la-restauration-systeme-de-windows-7

    Utilisation de DrWeb

    Télécharger drWeb , et l’enregistrer sur le bureau , grace à ce lien :

    https://www.freedrweb.com/download+cureit+free/?lng=fr

    Branche tous tes periphériques USB (mp3 , mp4 , disques durs externes , clés usb , appareil photo….) , tout ce qui a pu etre connecté à l’ordinateur.

    Lance DrWeb CureIt ,Clique sur OK

    Le programme va vérifier qu’il soit bien à jour.

    Coche la case « j’accepte de participer blablabla…… , puis clique sur continuer

    Sur la page d’accueil , clique sur « sélectionner des objets pour l’analyse »

    Coche tout à gauche , puis selectionne « Cliquez ici pour selectionner des fichiers et dossiers » .

    Coche « Mon ordinateur » , ce qui aura pour effet de cocher tous les stockages de mémoires préalablement branchés comme précité , puis clique sur « OK »

    Clique sur “OK” puis sur « lancer l’analyse »

    L’analyse complète s’ effectue ….

    Une fois terminée , laisser toutes les infections trouvées sur « Désinfecter » , puis cliquer sur « neutraliser »

    DrWeb va neutraliser les menaces et afficher le résultat

    DrWeb va demander de redémarrer l’ordinateur pour parfaire le nettoyage , faites-le

    Pour poster le rapport ensuite , se rendre dans :

    C:(généralement)La sessionDrWeb

    Dans ce dossier se trouve « CureIt.log« .

    Cliquer droit dessus puis sélectionner « envoyer vers » => dossiers compressés

    Héberger l’archive ainsi créée sur https://antimalware.top et donner le lien sur le forum

Le sujet ‘[g3n-h@ckm@n] Infection Sality’ est fermé à de nouvelles réponses.