kemindar
Participant
Nombre d'articles : 6

salut pour l’autre voici le rapport de l’autre ordinateur[spoiler:2c1iglvj]############################## | UsbFix V 7.150 | [Recherche]

Utilisateur: Administrateur (Administrateur) # NIGELEC-66B6418
Mis à jour le 08/11/2013 par El Desaparecido – Team SosVirus
Lancé à 12:47:06 | 09/11/2013

Site Web : http://www.usbfix.net » onclick= »window.open(this.href);return false;
Forum : http://www.sosvirus.net/ » onclick= »window.open(this.href);return false;
Upload Malware : upload_malware.php
Contact : http://www.usbfix.net/contact/ » onclick= »window.open(this.href);return false;

PC: Hewlett-Packard (0AACh)
CPU: Intel(R) Pentium(R) Dual CPU E2160 @ 1.80GHz
RAM -> [Total : 994 | Free : 518]
Bios: Hewlett-Packard
Boot: Normal boot

OS: Microsoft Windows XP Professionnel (5.1.2600 32-Bit) Service Pack 3
WB: Windows Internet Explorer : 7.0.5730.13
WB: Mozilla Firefox : 24.0

SC: Security Center Service [(!) Disabled]
WU: Windows Update Service [Enabled]
FW: Windows FireWall Service [Enabled]

C: (%systemdrive%) -> Disque fixe # 32 Go (17 Go libre(s) – 53%) [] # NTFS
D: -> Disque fixe # 117 Go (75 Go libre(s) – 64%) [DONNEES] # NTFS
E: -> CD-ROM
F: -> Disque amovible # 1017 Mo (655 Mo libre(s) – 64%) [] # FAT32

################## | Processus Actif |

C:WINDOWSSystem32smss.exe (ID: 856 |ParentID: 4)
C:WINDOWSsystem32winlogon.exe (ID: 1180 |ParentID: 856)
C:WINDOWSsystem32services.exe (ID: 1224 |ParentID: 1180)
C:WINDOWSsystem32lsass.exe (ID: 1236 |ParentID: 1180)
C:WINDOWSsystem32svchost.exe (ID: 1408 |ParentID: 1224)
C:WINDOWSSystem32svchost.exe (ID: 1632 |ParentID: 1224)
C:WINDOWSSystem32svchost.exe (ID: 3288 |ParentID: 1224)
C:Program FilesAVGAVG2013avgwdsvc.exe (ID: 5124 |ParentID: 1224)
C:Program FilesDiVaptonbinutilDiVapton.exe (ID: 5372 |ParentID: 1224)
C:Program FilesAVGAVG2013avgnsx.exe (ID: 952 |ParentID: 5124)
C:Program FilesDiVaptonupdateDiVapton.exe (ID: 2784 |ParentID: 1224)
C:Program FilesAVGAVG2013avgfws.exe (ID: 580 |ParentID: 1224)
C:Program FilesAVGAVG2013avgemcx.exe (ID: 5164 |ParentID: 5124)
C:Program FilesAVGAVG2013avgrsx.exe (ID: 2020 |ParentID: 5124)
C:Program FilesAVGAVG2013avgcsrvx.exe (ID: 2992 |ParentID: 2020)
C:WINDOWSsystem32spoolsv.exe (ID: 5940 |ParentID: 1224)
C:WINDOWSExplorer.exe (ID: 3500 |ParentID: 5588)
C:Program FilesInternet Exploreriexplore.exe (ID: 1576 |ParentID: 3500)
C:WINDOWSsystem32ctfmon.exe (ID: 1664 |ParentID: 1576)
C:Program FilesMicrosoftBingBar7.2.241.0BingApp.exe (ID: 5820 |ParentID: 1408)
C:Program FilesMicrosoftBingBar7.2.241.0BingBar.exe (ID: 5932 |ParentID: 1408)
C:Program FilesMicrosoftBingBar7.2.241.0SeaPort.exe (ID: 1704 |ParentID: 1224)
C:UsbFixGo.exe (ID: 5480 |ParentID: 2664)
C:Program FilesMicrosoftBingBar7.2.241.0BingSurrogate.exe (ID: 6024 |ParentID: 1408)
C:Program FilesMicrosoftBingBar7.2.241.0BingSurrogate.exe (ID: 6040 |ParentID: 1408)

################## | Regedit Run |

04 – HKLMSOFTWARE | Run : [SoundMAXPnP] – C:Program FilesAnalog DevicesCoresmax4pnp.exe
04 – HKLMSOFTWARE | Run : [VistaDrive] – C:WINDOWSVistaDriveVistaDrive.exe
04 – HKLMSOFTWARE | Run : [AVG_UI] – « C:Program FilesAVGAVG2013avgui.exe » /TRAYONLY
04 – HKLMSOFTWARE | Run : [vProt] – « C:Program FilesAVG Secure Searchvprot.exe »
04 – HKLMSOFTWARE | Run : [EaseUS EPM tray] – C:Program FilesEaseUSEaseUS Partition Master 9.2.1 Home EditionbinEpmNews.exe
04 – HKLMSOFTWARE | Run : [Airtel_Niger Wave ModemListener] – C:Program FilesAirtel Mobile InternetBackgroundServiceModemListener.exe start
04 – HKLMSOFTWARE | Run : [ApnTBMon] – « C:Program FilesAskPartnerNetworkToolbarUpdaterTBNotifier.exe »
04 – HKLMSOFTWARE | RunOnce : [] –
04 – HKUS-1-5-19SOFTWARE | Run : [CTFMON.EXE] – C:WINDOWSsystem32CTFMON.EXE
04 – HKUS-1-5-19SOFTWARE | Run : [RocketDock] – « C:Program FilesRocketDockRocketDock.exe »
04 – HKUS-1-5-19SOFTWARE | Run : [VisualTaskTip] – Program FilesVisualTaskTipsVisualTaskTips.exe
04 – HKUS-1-5-20SOFTWARE | Run : [CTFMON.EXE] – C:WINDOWSsystem32CTFMON.EXE
04 – HKUS-1-5-20SOFTWARE | Run : [RocketDock] – « C:Program FilesRocketDockRocketDock.exe »
04 – HKUS-1-5-20SOFTWARE | Run : [VisualTaskTip] – Program FilesVisualTaskTipsVisualTaskTips.exe
04 – HKUS-1-5-21-1292428093-1547161642-1177238915-500SOFTWARE | Run : [RocketDock] – « C:Program FilesRocketDockRocketDock.exe »
04 – HKUS-1-5-21-1292428093-1547161642-1177238915-500SOFTWARE | Run : [Sidebar] – C:Program FilesWindows Sidebarsidebar.exe /autoRun
04 – HKUS-1-5-21-1292428093-1547161642-1177238915-500SOFTWARE | Run : [IDMan] – C:Program FilesS.P.DInternet Download Manager Premium v6.15.8 FinalIDMan.exe /onboot
04 – HKUS-1-5-21-1292428093-1547161642-1177238915-500SOFTWARE | Run : [Le Petit Robert V4 Hyperappel] – C:Program FilesLe RobertLe Petit Robert 2014PetitRobertHA.exe
04 – HKUS-1-5-21-1292428093-1547161642-1177238915-500SOFTWARE | Run : [Softonic for Windows] – « C:Documents and SettingsAdministrateurLocal SettingsApplication DataSoftonicSoftonic.exe » -minimize
04 – HKUS-1-5-21-1292428093-1547161642-1177238915-500SOFTWARE | Run : [MediaGet2] – C:Documents and SettingsAdministrateurLocal SettingsApplication DataMediaGet2mediaget.exe –minimized
04 – HKUS-1-5-21-1292428093-1547161642-1177238915-500SOFTWARE | Run : [Google Update] – « C:Documents and SettingsAdministrateurLocal SettingsApplication DataGoogleUpdateGoogleUpdate.exe » /c
04 – HKUS-1-5-21-1292428093-1547161642-1177238915-500SOFTWARE | Run : [ultracopier] – « C:Program FilesSupercopiersupercopier.exe »
04 – HKUS-1-5-21-1292428093-1547161642-1177238915-500SOFTWARE | Run : [AppsHat] – C:Documents and SettingsAdministrateurLocal SettingsApplication DataWebPlayerAppsHatWebPlayer.exe
04 – HKUS-1-5-21-1292428093-1547161642-1177238915-500SOFTWARE | Run : [SDP] – C:Documents and SettingsAdministrateurLocal SettingsApplication DataFilesFrog Update Checkerupdate_checker.exe /auto
04 – HKUS-1-5-21-1292428093-1547161642-1177238915-500SOFTWARE | Run : [ctfmon.exe] – C:WINDOWSsystem32ctfmon.exe
04 – HKUS-1-5-18SOFTWARE | Run : [VisualTaskTip] – Program FilesVisualTaskTipsVisualTaskTips.exe
04 – HKUS-1-5-19SOFTWARE | RunOnce : [nltide_2] – regsvr32 /s /n /i:U shell32
04 – HKUS-1-5-19SOFTWARE | RunOnce : [nltide_3] – rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N
04 – HKUS-1-5-19SOFTWARE | RunOnce : [_nltide_3] – rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N
04 – HKUS-1-5-20SOFTWARE | RunOnce : [nltide_2] – regsvr32 /s /n /i:U shell32
04 – HKUS-1-5-20SOFTWARE | RunOnce : [nltide_3] – rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N
04 – HKUS-1-5-20SOFTWARE | RunOnce : [_nltide_3] – rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N
04 – HKUS-1-5-18SOFTWARE | RunOnce : [nltide_2] – regsvr32 /s /n /i:U shell32
04 – HKUS-1-5-18SOFTWARE | RunOnce : [nltide_3] – rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N
04 – HKUS-1-5-18SOFTWARE | RunOnce : [_nltide_3] – rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N

################## | Recherche générique |

################## | Registre |

################## | Vaccin |

(!) Cet ordinateur n'est pas vacciné!

################## | E.O.F | http://www.usbfix.net » onclick= »window.open(this.href);return false; – http://www.sosvirus.net » onclick= »window.open(this.href);return false; |[/spoiler:2c1iglvj]