OROR
Nombre d'articles : 0

Ca vous inspire pas trop???

Du coup j’ai continuer avec le « supprimer » de USBfix, vous trouverez le nouveau rapport
Merciiiii

:

############################# | UsbFix V 7.152 | [Suppression]

Utilisateur: Aurore (Administrateur) # AURORE-VAIO
Mis à jour le 20/11/2013 par El Desaparecido – Team SosVirus
Lancé à 17:03:49 | 02/12/2013

Site Web : http://www.usbfix.net » onclick= »window.open(this.href);return false;
Forum : http://www.sosvirus.net/ » onclick= »window.open(this.href);return false;
Upload Malware : upload_malware.php
Contact : http://www.usbfix.net/contact/ » onclick= »window.open(this.href);return false;

PC: Sony Corporation (VAIO)
CPU: Intel(R) Core(TM) i5-2450M CPU @ 2.50GHz
RAM -> [Total : 3991 | Free : 2100]
Bios: American Megatrends Inc.
Boot: Normal boot

OS: Microsoft Windows 7 Édition Familiale Premium (6.1.7601 64-Bit) Service Pack 1
WB: Windows Internet Explorer : 11.0.9600.16428
WB: Mozilla Firefox : 25.0.1

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: avast! Antivirus [(!) Disabled | Updated]
AS: Windows Defender : 6.1.7600.16385 (win7_rtm.090713-1255)
FW: Windows FireWall Service [Enabled]

C: (%systemdrive%) -> Disque fixe # 577 Go (423 Go libre(s) – 73%) [] # NTFS
D: -> CD-ROM
E: -> CD-ROM
F: -> Disque amovible # 15 Go (177 Mo libre(s) – 1%) [OROR] # FAT32

################## | Processus Stoppés |

Stoppé! C:Program FilesAVAST SoftwareAvastAvastSvc.exe (ID: 1472 |ParentID: 836)
Stoppé! C:Program FilesAVAST SoftwareAvastAvastUI.exe (ID: 4052 |ParentID: 4448)
Stoppé! C:Program FilesInteliCLS ClientHeciServer.exe (ID: 6164 |ParentID: 836)
Stoppé! C:Windowsexplorer.exe (ID: 3976 |ParentID: 920)
Stoppé! C:WindowsSystem32rundll32.exe (ID: 5604 |ParentID: 1000)
Stoppé! C:WindowsMicrosoft.NetFramework64v3.0WPFPresentationFontCache.exe (ID: 1488 |ParentID: 836)
Stoppé! C:WindowsSystem32WUDFHost.exe (ID: 2824 |ParentID: 1120)
Stoppé! C:Program Files (x86)SonyVAIO Control CenterVESMgr.exe (ID: 6140 |ParentID: 836)
Stoppé! C:Program Files (x86)SonyVAIO Control CenterVESMgrSub.exe (ID: 2616 |ParentID: 6140)
Stoppé! C:Program Files (x86)SonyVAIO Control CenterVESMgrSub.exe (ID: 2320 |ParentID: 6140)
Stoppé! C:WindowsSysWOW64DllHost.exe (ID: 2432 |ParentID: 1000)
Stoppé! C:WindowsSysWOW64DllHost.exe (ID: 3544 |ParentID: 1000)
Stoppé! C:Program FilesIntelBluetoothHSBTHSSecurityMgr.exe (ID: 2872 |ParentID: 836)
Stoppé! C:Windowssystem32SearchIndexer.exe (ID: 6748 |ParentID: 836)
Stoppé! C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSVC.EXE (ID: 5812 |ParentID: 836)
Stoppé! C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSvcM.exe (ID: 4876 |ParentID: 5812)
Stoppé! C:Program Files (x86)IntelIntel(R) Management Engine ComponentsLMSLMS.exe (ID: 5280 |ParentID: 836)
Stoppé! C:Program FilesWindows Media Playerwmpnetwk.exe (ID: 2500 |ParentID: 836)
Stoppé! C:WindowsSystem32spoolsv.exe (ID: 1068 |ParentID: 836)
Stoppé! C:Program Files (x86)Common FilesAppleMobile Device SupportAppleMobileDeviceService.exe (ID: 6484 |ParentID: 836)
Stoppé! C:Program FilesIntelBluetoothHSBTHSAmpPalService.exe (ID: 6996 |ParentID: 836)
Stoppé! C:WindowsSystem32vds.exe (ID: 7008 |ParentID: 836)
Stoppé! C:WindowsSysWOW64NOTEPAD.EXE (ID: 6216 |ParentID: 5688)
Stoppé! C:Program FilesSonyVAIO Update CommonVUAgent.exe (ID: 2828 |ParentID: 836)
Stoppé! C:Program Files (x86)Mozilla Firefoxfirefox.exe (ID: 6180 |ParentID: 3976)
Stoppé! C:Program FilesInternet ExplorerIEXPLORE.EXE (ID: 7100 |ParentID: 6232)
Stoppé! C:Windowssystem32DllHost.exe (ID: 6388 |ParentID: 1000)
Stoppé! C:Program Files (x86)Internet ExplorerIEXPLORE.EXE (ID: 5144 |ParentID: 7100)
Stoppé! C:Windowssystem32taskeng.exe (ID: 2348 |ParentID: 1176)
Stoppé! C:Program FilesSonyVAIO CareVCSystemTray.exe (ID: 2760 |ParentID: 2348)
Stoppé! C:Program FilesSonyVAIO CareVCService.exe (ID: 660 |ParentID: 836)
Stoppé! C:Windowssystem32MacromedFlashFlashUtil64_11_9_900_117_ActiveX.exe (ID: 4552 |ParentID: 1000)
Stoppé! C:WindowsSystem32MsSpellCheckingFacility.exe (ID: 6452 |ParentID: 1000)
Stoppé! C:Windowssystem32taskhost.exe (ID: 4780 |ParentID: 836)
Stoppé! C:Windowssystem32taskhost.exe (ID: 6424 |ParentID: 836)

################## | Regedit Run |

04 – HKLMSOFTWARE | Run : [IAStorIcon] – C:Program Files (x86)IntelIntel(R) Rapid Storage TechnologyIAStorIcon.exe
04 – HKLMSOFTWARE | Run : [Dolby Home Theater v4] – « C:Program Files (x86)Dolby Home Theater v4pcee4.exe » -autostart
04 – HKLMSOFTWARE | Run : [USB3MON] – « C:Program Files (x86)IntelIntel(R) USB 3.0 eXtensible Host Controller DriverApplicationiusb3mon.exe »
04 – HKLMSOFTWARE | Run : [StartCCC] – « c:Program Files (x86)ATI TechnologiesATI.ACECore-StaticCLIStart.exe » MSRun
04 – HKLMSOFTWARE | Run : [ISBMgr.exe] – « C:Program Files (x86)SonyISB UtilityISBMgr.exe »
04 – HKLMSOFTWARE | Run : [PMBVolumeWatcher] – c:Program Files (x86)SonyPlayMemories HomePMBVolumeWatcher.exe
04 – HKLMSOFTWARE | Run : [PWRISOVM.EXE] – C:Program Files (x86)PowerISOPWRISOVM.EXE
04 – HKLMSOFTWARE | Run : [Acrobat Assistant 8.0] – « C:Program Files (x86)AdobeAcrobat 8.0AcrobatAcrotray.exe »
04 – HKLMSOFTWARE | Run : [] –
04 – HKLMSOFTWARE | Run : [Adobe ARM] – « C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe »
04 – HKLMSOFTWARE | Run : [APSDaemon] – « C:Program Files (x86)Common FilesAppleApple Application SupportAPSDaemon.exe »
04 – HKLMSOFTWARE | Run : [avast] – « C:Program FilesAVAST SoftwareAvastavastUI.exe » /nogui
04 – HKLMSOFTWARE | Run : [iTunesHelper] – « C:Program Files (x86)iTunesiTunesHelper.exe »
04 – HKLMSOFTWARE | Run : [20131121] – C:Program FilesAVAST SoftwareAvastsetupemupdatec08a43ed-6afe-46fe-9e32-92fbb566c862.exe /check
04 – HKLMSOFTWAREwow6432Node | Run : [IAStorIcon] – C:Program Files (x86)IntelIntel(R) Rapid Storage TechnologyIAStorIcon.exe
04 – HKLMSOFTWAREwow6432Node | Run : [Dolby Home Theater v4] – « C:Program Files (x86)Dolby Home Theater v4pcee4.exe » -autostart
04 – HKLMSOFTWAREwow6432Node | Run : [USB3MON] – « C:Program Files (x86)IntelIntel(R) USB 3.0 eXtensible Host Controller DriverApplicationiusb3mon.exe »
04 – HKLMSOFTWAREwow6432Node | Run : [StartCCC] – « c:Program Files (x86)ATI TechnologiesATI.ACECore-StaticCLIStart.exe » MSRun
04 – HKLMSOFTWAREwow6432Node | Run : [ISBMgr.exe] – « C:Program Files (x86)SonyISB UtilityISBMgr.exe »
04 – HKLMSOFTWAREwow6432Node | Run : [PMBVolumeWatcher] – c:Program Files (x86)SonyPlayMemories HomePMBVolumeWatcher.exe
04 – HKLMSOFTWAREwow6432Node | Run : [PWRISOVM.EXE] – C:Program Files (x86)PowerISOPWRISOVM.EXE
04 – HKLMSOFTWAREwow6432Node | Run : [Acrobat Assistant 8.0] – « C:Program Files (x86)AdobeAcrobat 8.0AcrobatAcrotray.exe »
04 – HKLMSOFTWAREwow6432Node | Run : [] –
04 – HKLMSOFTWAREwow6432Node | Run : [Adobe ARM] – « C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe »
04 – HKLMSOFTWAREwow6432Node | Run : [APSDaemon] – « C:Program Files (x86)Common FilesAppleApple Application SupportAPSDaemon.exe »
04 – HKLMSOFTWAREwow6432Node | Run : [avast] – « C:Program FilesAVAST SoftwareAvastavastUI.exe » /nogui
04 – HKLMSOFTWAREwow6432Node | Run : [iTunesHelper] – « C:Program Files (x86)iTunesiTunesHelper.exe »
04 – HKLMSOFTWAREwow6432Node | Run : [20131121] – C:Program FilesAVAST SoftwareAvastsetupemupdatec08a43ed-6afe-46fe-9e32-92fbb566c862.exe /check
04 – HKLMSOFTWARE | RunOnce : [] –
04 – HKLMSOFTWAREwow6432Node | RunOnce : [] –
04 – HKUS-1-5-19SOFTWARE | Run : [Sidebar] – %ProgramFiles%Windows SidebarSidebar.exe /autoRun
04 – HKUS-1-5-20SOFTWARE | Run : [Sidebar] – %ProgramFiles%Windows SidebarSidebar.exe /autoRun
04 – HKUS-1-5-21-2707779678-1721164100-107351434-1001SOFTWARE | Run : [Skype] – « C:Program Files (x86)SkypePhoneSkype.exe » /minimized /regrun
04 – HKUS-1-5-21-2707779678-1721164100-107351434-1001SOFTWARE | Run : [iCloudServices] – C:Program Files (x86)Common FilesAppleInternet ServicesiCloudServices.exe
04 – HKUS-1-5-21-2707779678-1721164100-107351434-1001SOFTWARE | Run : [ApplePhotoStreams] – C:Program Files (x86)Common FilesAppleInternet ServicesApplePhotoStreams.exe
04 – HKUS-1-5-21-2707779678-1721164100-107351434-1001SOFTWARE | Run : [BitTorrent] – « C:UsersAuroreAppDataRoamingBitTorrentBitTorrent.exe » /MINIMIZED
04 – HKUS-1-5-19SOFTWARE | RunOnce : [mctadmin] – C:WindowsSystem32mctadmin.exe
04 – HKUS-1-5-20SOFTWARE | RunOnce : [mctadmin] – C:WindowsSystem32mctadmin.exe

################## | Recherche générique |

Supprimé! F:JOA.lnk
Supprimé! F:Ania’s Music.lnk
Supprimé! F:AutoCad 2010.lnk
Supprimé! F:mexico, oror locotrona-kike diver.lnk
Supprimé! F:Radiostars.2012.FRENCH.DVDRip.XviD-BLOODYMARY.avi.001.lnk
Supprimé! F:Starbuck FRENCH BDRiP XViD ENjOi.lnk
Supprimé! F:.Trashes.lnk
Supprimé! F:LUIS.lnk
Supprimé! F:.Spotlight-V100.lnk
Supprimé! C:UsersAuroreAppDataLocalTemputtF7CA.tmp.exe

(!) Fichiers temporaires supprimés.

################## | Registre |

Réparé ! HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesExplorer|NoActiveDesktop -> 0
Réparé ! HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesExplorer|NoActiveDesktopChanges -> 0

################## | Listing |

[11/10/2012 – 05:30:26 | SHD ] C:$Recycle.Bin
[27/09/2012 – 01:06:08 | D ] C:Autodesk
[06/06/2012 – 15:23:01 | D ] C:Documentation
[14/07/2009 – 06:08:56 | SHD ] C:Documents and Settings
[02/12/2013 – 16:18:41 | ASH | 3138428928] C:hiberfil.sys
[06/06/2012 – 14:55:30 | D ] C:Intel
[19/09/2012 – 17:57:23 | RHD ] C:MSOCache
[02/12/2013 – 16:18:42 | ASH | 4184571904] C:pagefile.sys
[14/07/2009 – 04:20:08 | D ] C:PerfLogs
[11/11/2013 – 08:11:20 | D ] C:Program Files
[17/11/2013 – 01:58:54 | D ] C:Program Files (x86)
[11/11/2013 – 08:11:18 | HD ] C:ProgramData
[06/06/2012 – 14:58:45 | N | 2587] C:RHDSetup.log
[26/11/2013 – 20:24:53 | SHD ] C:System Volume Information
[06/06/2012 – 15:28:00 | D ] C:temp
[02/12/2013 – 17:04:41 | D ] C:UsbFix
[02/12/2013 – 17:04:45 | A | 10080] C:UsbFix [Clean 2] AURORE-VAIO.txt
[02/12/2013 – 16:38:38 | N | 15090] C:UsbFix [Scan 1] AURORE-VAIO.txt
[13/09/2012 – 13:15:54 | RD ] C:Users
[06/06/2012 – 15:58:08 | D ] C:VAIO Sample Contents
[20/11/2013 – 03:00:58 | D ] C:Windows
[21/09/2012 – 10:54:22 | AH | 4096] F:._.Trashes
[21/09/2012 – 10:54:22 | SHD ] F:.Trashes
[19/05/2013 – 00:05:58 | D ] F:Ania’s Music
[21/09/2012 – 10:54:24 | SHD ] F:.Spotlight-V100
[21/09/2012 – 10:55:10 | D ] F:AutoCad 2010
[20/08/2013 – 11:36:48 | N | 253292] F:Student.pdf
[24/07/2013 – 16:18:08 | N | 4043209] F:amigo.mp3
[13/09/2013 – 11:46:14 | D ] F:mexico, oror locotrona-kike diver
[08/01/2013 – 21:18:56 | D ] F:Radiostars.2012.FRENCH.DVDRip.XviD-BLOODYMARY.avi.001
[02/12/2012 – 20:08:36 | D ] F:Starbuck FRENCH BDRiP XViD ENjOi
[16/09/2013 – 04:22:42 | D ] F:FOUND.000
[13/08/2013 – 16:53:14 | HD ] F:recycler
[12/09/2013 – 11:37:44 | N | 11] F:Your Electronic Ticket Receipt.pdf
[25/03/2010 – 23:33:06 | N | 6527178] F:10 Pista 10.m4a
[12/05/2013 – 14:14:54 | N | 15653] F:Aurore Dufour_CV2013.docx
[12/05/2013 – 14:14:38 | N | 250226] F:Aurore Dufour_CV2013.pdf
[13/09/2013 – 16:14:08 | N | 9839] F:comptabilidad.xlsx
[24/07/2013 – 18:21:30 | N | 621474] F:El Frances es una idioma romana.docx
[13/08/2013 – 17:30:26 | D ] F:JOA
[24/07/2013 – 16:18:26 | D ] F:LUIS
[27/09/2012 – 01:55:22 | N | 36884] F:CV Aurore Dufour 2012 Eng.pdf

################## | Vaccin |

F:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

################## | E.O.F | http://www.usbfix.net » onclick= »window.open(this.href);return false; – http://www.sosvirus.net » onclick= »window.open(this.href);return false; |