Répondre à : fichier d’abord en raccourcis.. puis en hiéroglyphes et espace en G0 je ne peux plus ouvrir doss 2016-09-08T13:22:04+00:00
manuloves
Nombre d'articles : 0

VOICI LE RAPPORT USB FIX…………………..

############################## | UsbFix V 7.152 | [Recherche]

Utilisateur: Ordinateur (Administrateur) # ORDINATEUR-PC
Mis à jour le 20/11/2013 par El Desaparecido – Team SosVirus
Lancé à 10:49:08 | 30/11/2013

Site Web : http://www.usbfix.net” onclick=”window.open(this.href);return false;
Forum : https://www.sosvirus.net/” onclick=”window.open(this.href);return false;
Upload Malware : upload_malware.php
Contact : http://www.usbfix.net/contact/” onclick=”window.open(this.href);return false;

PC: Hewlett-Packard (30DD)
CPU: Celeron(R) Dual-Core CPU T3000 @ 1.80GHz
RAM -> [Total : 1976 | Free : 1108]
Bios: Hewlett-Packard
Boot: Normal boot

OS: Microsoft Windows 7 Édition Familiale Premium (6.1.7601 32-Bit) Service Pack 1
WB: Windows Internet Explorer : 11.0.9600.16428
WB: Google Chrome : 31.0.1650.57

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: avast! Antivirus [(!) Disabled | Updated]
AS: Windows Defender : 6.1.7600.16385 (win7_rtm.090713-1255)
FW: Windows FireWall Service [Enabled]

C: (%systemdrive%) -> Disque fixe # 49 Go (4 Go libre(s) – 7%) [] # NTFS
D: -> Disque fixe # 77 Go (56 Go libre(s) – 73%) [DONNEES] # NTFS
E: -> CD-ROM
F: -> Disque amovible # 4 Go (3 Go libre(s) – 85%) [CLE USB] # FAT32
H: -> Disque amovible # 4 Go (3 Go libre(s) – 82%) [USB DISK] # FAT32

################## | Processus Actif |

C:Windowssystem32csrss.exe (ID: 424 |ParentID: 416)
C:Windowssystem32wininit.exe (ID: 480 |ParentID: 416)
C:Windowssystem32csrss.exe (ID: 492 |ParentID: 472)
C:Windowssystem32winlogon.exe (ID: 536 |ParentID: 472)
C:Windowssystem32services.exe (ID: 580 |ParentID: 480)
C:Windowssystem32lsass.exe (ID: 596 |ParentID: 480)
C:Windowssystem32lsm.exe (ID: 604 |ParentID: 480)
C:Windowssystem32svchost.exe (ID: 716 |ParentID: 580)
C:Windowssystem32svchost.exe (ID: 808 |ParentID: 580)
C:WindowsSystem32svchost.exe (ID: 884 |ParentID: 580)
C:WindowsSystem32svchost.exe (ID: 948 |ParentID: 580)
C:Windowssystem32svchost.exe (ID: 972 |ParentID: 580)
C:Windowssystem32svchost.exe (ID: 996 |ParentID: 580)
C:Windowssystem32Hpservice.exe (ID: 1184 |ParentID: 580)
C:Windowssystem32svchost.exe (ID: 1236 |ParentID: 580)
C:Program FilesAVAST SoftwareAvastAvastSvc.exe (ID: 1344 |ParentID: 580)
C:WindowsSystem32spoolsv.exe (ID: 1572 |ParentID: 580)
C:Windowssystem32svchost.exe (ID: 1600 |ParentID: 580)
C:Windowssystem32taskhost.exe (ID: 1628 |ParentID: 580)
C:Program FilesCommon FilesAppleMobile Device SupportAppleMobileDeviceService.exe (ID: 1708 |ParentID: 580)
C:Program FilesBonjourmDNSResponder.exe (ID: 1836 |ParentID: 580)
C:Program FilesCanonIJPLMIJPLMSVC.EXE (ID: 1884 |ParentID: 580)
C:Windowssystem32svchost.exe (ID: 1960 |ParentID: 580)
C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSVC.EXE (ID: 1996 |ParentID: 580)
C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSvcM.exe (ID: 352 |ParentID: 1996)
C:Windowssystem32sppsvc.exe (ID: 2140 |ParentID: 580)
C:Windowssystem32svchost.exe (ID: 2420 |ParentID: 580)
C:Windowssystem32Dwm.exe (ID: 2604 |ParentID: 948)
C:WindowsExplorer.EXE (ID: 2628 |ParentID: 2596)
C:Program FilesHewlett-PackardHP Quick Launch ButtonsQLBCtrl.exe (ID: 2724 |ParentID: 2628)
C:Program FilesCommon FilesJavaJava Updatejusched.exe (ID: 2732 |ParentID: 2628)
C:Program FilesHewlett-PackardHP Quick Launch ButtonsVolCtrl.exe (ID: 2768 |ParentID: 2724)
C:Program FilesCanonMyPrinterBJMYPRT.EXE (ID: 2776 |ParentID: 2628)
C:Program FilesiTunesiTunesHelper.exe (ID: 2816 |ParentID: 2628)
C:Program FilesBouygues TelecomInternet 3G+Bouygues.exe (ID: 2864 |ParentID: 2628)
C:Program FilesAVAST SoftwareAvastAvastUI.exe (ID: 2880 |ParentID: 2628)
C:WindowsSystem32StikyNot.exe (ID: 2888 |ParentID: 2628)
C:Windowssystem32SearchIndexer.exe (ID: 3020 |ParentID: 580)
C:Program FilesOpenOffice.org 3programsoffice.exe (ID: 3104 |ParentID: 3080)
C:Program FilesOpenOffice.org 3programsoffice.bin (ID: 3116 |ParentID: 3104)
C:Program FilesiPodbiniPodService.exe (ID: 3160 |ParentID: 580)
C:Program FilesHewlett-PackardSharedhpqwmiex.exe (ID: 3248 |ParentID: 580)
C:Windowssystem32wbemwmiprvse.exe (ID: 3280 |ParentID: 716)
C:Program FilesHewlett-PackardHP Quick Launch ButtonsCom4QLBEx.exe (ID: 3392 |ParentID: 580)
C:Program FilesBouygues TelecomInternet 3G+RcAppSvc.exe (ID: 3860 |ParentID: 580)
C:Program FilesBouygues TelecomInternet 3G+conappssvc.exe (ID: 3884 |ParentID: 580)
C:Windowssystem32svchost.exe (ID: 4044 |ParentID: 580)
C:WindowsSystem32svchost.exe (ID: 1128 |ParentID: 580)
C:Program FilesWindows Media Playerwmpnetwk.exe (ID: 2308 |ParentID: 580)
C:WindowsSystem32svchost.exe (ID: 2540 |ParentID: 580)
C:Windowssystem32DllHost.exe (ID: 4816 |ParentID: 716)
C:Windowssystem32wuauclt.exe (ID: 5436 |ParentID: 996)
C:Windowssystem32AUDIODG.EXE (ID: 4708 |ParentID: 884)
C:WindowsSystem32WUDFHost.exe (ID: 4720 |ParentID: 948)
C:Program FilesMcAfee Security Scan3.0.285SSScheduler.exe (ID: 4728 |ParentID: 5004)
C:Windowssystem32taskhost.exe (ID: 6884 |ParentID: 580)
C:WindowsSystem32svchost.exe (ID: 5228 |ParentID: 580)
C:UsbFixGo.exe (ID: 3124 |ParentID: 8152)
C:Windowssystem32wbemwmiprvse.exe (ID: 6964 |ParentID: 716)

################## | Regedit Run |

04 – HKLMSOFTWARE | Run : [QlbCtrl.exe] – C:Program FilesHewlett-PackardHP Quick Launch ButtonsQlbCtrl.exe /Start
04 – HKLMSOFTWARE | Run : [SunJavaUpdateSched] – “C:Program FilesCommon FilesJavaJava Updatejusched.exe”
04 – HKLMSOFTWARE | Run : [CanonMyPrinter] – C:Program FilesCanonMyPrinterBJMyPrt.exe /logon
04 – HKLMSOFTWARE | Run : [CanonSolutionMenu] – C:Program FilesCanonSolutionMenuCNSLMAIN.exe /logon
04 – HKLMSOFTWARE | Run : [APSDaemon] – “C:Program FilesCommon FilesAppleApple Application SupportAPSDaemon.exe”
04 – HKLMSOFTWARE | Run : [iTunesHelper] – “C:Program FilesiTunesiTunesHelper.exe”
04 – HKLMSOFTWARE | Run : [Bouygues Connection Manager] – “C:Program FilesBouygues TelecomInternet 3G+Bouygues.exe” -a
04 – HKLMSOFTWARE | Run : [20131121] – C:Program FilesAVAST SoftwareAvastsetupemupdated0d258b4-bafc-43b1-bfe3-dca2ef1b0132.exe /check
04 – HKLMSOFTWARE | Run : [AvastUI.exe] – “C:Program FilesAVAST SoftwareAvastAvastUI.exe” /nogui
04 – HKLMSOFTWARE | RunOnce : [] –
04 – HKUS-1-5-19SOFTWARE | Run : [Sidebar] – %ProgramFiles%Windows SidebarSidebar.exe /autoRun
04 – HKUS-1-5-20SOFTWARE | Run : [Sidebar] – %ProgramFiles%Windows SidebarSidebar.exe /autoRun
04 – HKUS-1-5-21-784759915-360118177-1212145985-1000SOFTWARE | Run : [Bubble Dock] – “C:UsersOrdinateurAppDataRoamingNosibayBubble DockLBubble Dock.exe” /winstartup
04 – HKUS-1-5-21-784759915-360118177-1212145985-1000SOFTWARE | Run : [RESTART_STICKY_NOTES] – C:WindowsSystem32StikyNot.exe
04 – HKUS-1-5-21-784759915-360118177-1212145985-1000SOFTWARE | Run : [Facebook Update] – “C:UsersOrdinateurAppDataLocalFacebookUpdateFacebookUpdate.exe” /c /nocrashserver
04 – HKUS-1-5-21-784759915-360118177-1212145985-1000SOFTWARE | Run : [iTunesHelper] – wscript.exe //B “C:UsersORDINA~1AppDataLocalTempiTunesHelper.vbe”
04 – HKUS-1-5-19SOFTWARE | RunOnce : [mctadmin] – C:WindowsSystem32mctadmin.exe
04 – HKUS-1-5-20SOFTWARE | RunOnce : [mctadmin] – C:WindowsSystem32mctadmin.exe

################## | Recherche générique |

Présent! F:Baauer – Harlem Shake (HQ Full Version).lnk
Présent! F:carte ign 8500.lnk
Présent! F:Sad Violin 18.lnk
Présent! F:Nouveau dossier.lnk
Présent! F:Dossier TO.lnk
Présent! F:ECRITS CAPEPS.lnk
Présent! F:Clé USB 6-10 ans.lnk
Présent! H:Semestre 1.lnk
Présent! H:trz629B.tmp
Présent! H:trz8AC4.tmp

################## | Registre |

################## | Vaccin |

(!) Cet ordinateur n’est pas vacciné!

################## | E.O.F | http://www.usbfix.net” onclick=”window.open(this.href);return false; – https://www.sosvirus.net” onclick=”window.open(this.href);return false; |