maestro100
Participant
Nombre d'articles : 31

:merci2: voila j ai même vacciné je crois que je suis bon enfin j espère , :super: en tout cas votre forum est sympa et utile :bravo1:
voici dernier rapport après vaccin
############################## | UsbFix V 7.150 | [Recherche]

Utilisateur: ACER (Administrateur) # ACER-PC
Mis à jour le 08/11/2013 par El Desaparecido – Team SosVirus
Lancé à 10:10:25 | 16/11/2013

Site Web : http://www.usbfix.net” onclick=”window.open(this.href);return false;
Forum : https://www.sosvirus.net/” onclick=”window.open(this.href);return false;
Upload Malware : upload_malware.php
Contact : http://www.usbfix.net/contact/” onclick=”window.open(this.href);return false;

PC: Acer (MRS600M)
CPU: Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz
RAM -> [Total : 3328 | Free : 2215]
Bios: Phoenix Technologies, LTD
Boot: Normal boot

OS: Microsoft Windows 7 Édition Intégrale (6.1.7601 32-Bit) Service Pack 1
WB: Windows Internet Explorer : 10.0.9200.16736
WB: Mozilla Firefox : 25.0

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: avast! Antivirus [Enabled | Updated]
AS: Windows Defender : 6.1.7600.16385 (win7_rtm.090713-1255)
FW: Windows FireWall Service [Enabled]

C: (%systemdrive%) -> Disque fixe # 466 Go (68 Go libre(s) – 14%) [] # NTFS
D: -> CD-ROM
E: -> Disque fixe # 456 Go (455 Go libre(s) – 100%) [ACER] # NTFS
I: -> Disque fixe # 298 Go (11 Go libre(s) – 4%) [stock] # NTFS
J: -> CD-ROM
K: -> CD-ROM
M: -> Disque amovible # 60 Go (59 Go libre(s) – 100%) [] # FAT32

################## | Processus Actif |

C:Windowssystem32csrss.exe (ID: 444 |ParentID: 436)
C:Windowssystem32wininit.exe (ID: 512 |ParentID: 436)
C:Windowssystem32csrss.exe (ID: 520 |ParentID: 504)
C:Windowssystem32services.exe (ID: 560 |ParentID: 512)
C:Windowssystem32lsass.exe (ID: 580 |ParentID: 512)
C:Windowssystem32lsm.exe (ID: 588 |ParentID: 512)
C:Windowssystem32winlogon.exe (ID: 648 |ParentID: 504)
C:Windowssystem32svchost.exe (ID: 732 |ParentID: 560)
C:Windowssystem32svchost.exe (ID: 884 |ParentID: 560)
C:WindowsSystem32svchost.exe (ID: 980 |ParentID: 560)
C:WindowsSystem32svchost.exe (ID: 1024 |ParentID: 560)
C:Windowssystem32svchost.exe (ID: 1068 |ParentID: 560)
C:Windowssystem32svchost.exe (ID: 1104 |ParentID: 560)
C:Windowssystem32svchost.exe (ID: 1348 |ParentID: 560)
C:Program FilesAVAST SoftwareAvastAvastSvc.exe (ID: 1540 |ParentID: 560)
C:Windowssystem32Dwm.exe (ID: 1720 |ParentID: 1024)
C:Windowssystem32svchost.exe (ID: 1904 |ParentID: 560)
C:Windowssystem32svchost.exe (ID: 1952 |ParentID: 560)
C:Windowssystem32svchost.exe (ID: 440 |ParentID: 560)
C:WindowsSystem32svchost.exe (ID: 1336 |ParentID: 560)
C:WindowsSystem32svchost.exe (ID: 1760 |ParentID: 560)
C:Windowssystem32svchost.exe (ID: 2560 |ParentID: 560)
C:Windowssystem32svchost.exe (ID: 3388 |ParentID: 560)
C:Windowssystem32svchost.exe (ID: 3588 |ParentID: 560)
C:Program FilesAVAST SoftwareAvastavastui.exe (ID: 3820 |ParentID: 1768)
C:WindowsSystem32svchost.exe (ID: 5820 |ParentID: 560)
C:WindowsSystem32svchost.exe (ID: 4948 |ParentID: 560)
C:WindowsSystem32WUDFHost.exe (ID: 2132 |ParentID: 1024)
C:WindowsSystem32rundll32.exe (ID: 4112 |ParentID: 732)
C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSVC.EXE (ID: 5636 |ParentID: 560)
C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSvcM.exe (ID: 1596 |ParentID: 5636)
C:WindowsExplorer.exe (ID: 4256 |ParentID: 5452)
C:Windowssystem32SearchIndexer.exe (ID: 1304 |ParentID: 560)
C:Program FilesWindows Media Playerwmpnetwk.exe (ID: 5264 |ParentID: 560)
C:WindowsSystem32spoolsv.exe (ID: 5172 |ParentID: 560)
C:Program FilesSpybot – Search & Destroy 2SDFSSvc.exe (ID: 1360 |ParentID: 560)
C:Program FilesSpybot – Search & Destroy 2SDUpdSvc.exe (ID: 5136 |ParentID: 560)
C:Program FilesSpybot – Search & Destroy 2SDWSCSvc.exe (ID: 4968 |ParentID: 560)
C:Program FilesMozilla Thunderbirdthunderbird.exe (ID: 2544 |ParentID: 4256)
C:Program FilesMozilla Firefoxfirefox.exe (ID: 416 |ParentID: 4256)
C:Windowssystem32taskeng.exe (ID: 4148 |ParentID: 1104)
C:Program FilesSpybot – Search & Destroy 2SDUpdate.exe (ID: 5292 |ParentID: 4148)
C:UsbFixGo.exe (ID: 1624 |ParentID: 4124)
C:Windowssystem32taskhost.exe (ID: 4532 |ParentID: 560)
C:Windowssystem32wbemwmiprvse.exe (ID: 5688 |ParentID: 732)

################## | Regedit Run |

04 – HKLMSOFTWARE | Run : [AvastUI.exe] – “C:Program FilesAVAST SoftwareAvastAvastUI.exe” /nogui
04 – HKLMSOFTWARE | Run : [hpqSRMon] – C:Program FilesHPDigital ImagingbinhpqSRMon.exe
04 – HKLMSOFTWARE | Run : [HP Software Update] – C:Program FilesHPHP Software UpdateHPWuSchd2.exe
04 – HKLMSOFTWARE | RunOnce : [] –
04 – HKUS-1-5-19SOFTWARE | Run : [Sidebar] – %ProgramFiles%Windows SidebarSidebar.exe /autoRun
04 – HKUS-1-5-20SOFTWARE | Run : [Sidebar] – %ProgramFiles%Windows SidebarSidebar.exe /autoRun
04 – HKUS-1-5-21-2971247320-2505455980-644888479-1000SOFTWARE | Run : [Spybot-S&D Cleaning] – “C:Program FilesSpybot – Search & Destroy 2SDCleaner.exe” /autoclean
04 – HKUS-1-5-19SOFTWARE | RunOnce : [mctadmin] – C:WindowsSystem32mctadmin.exe
04 – HKUS-1-5-20SOFTWARE | RunOnce : [mctadmin] – C:WindowsSystem32mctadmin.exe

################## | Recherche générique |

################## | Registre |

################## | Vaccin |

M:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

################## | E.O.F | http://www.usbfix.net” onclick=”window.open(this.href);return false; – https://www.sosvirus.net” onclick=”window.open(this.href);return false; |