Ludo
Nombre d'articles : 0

Bonjour et merci pour cette réponse rapide !
Voici le rapport UsbFix :

[spoiler:2f4e728c]############################## | UsbFix V 7.152 | [Suppression]

Utilisateur: llg (Administrateur) # GALOIS
Mis à jour le 20/11/2013 par El Desaparecido – Team SosVirus
Lancé à 10:19:31 | 07/12/2013

Site Web : http://www.usbfix.net » onclick= »window.open(this.href);return false;
Forum : http://www.sosvirus.net/ » onclick= »window.open(this.href);return false;
Upload Malware : upload_malware.php
Contact : http://www.usbfix.net/contact/ » onclick= »window.open(this.href);return false;

PC: Sony Corporation (VAIO)
CPU: Intel(R) Core(TM) i5-2410M CPU @ 2.30GHz
RAM -> [Total : 4078 | Free : 3090]
Bios: INSYDE
Boot: Fail-safe boot

OS: Microsoft Windows 7 Édition Familiale Premium (6.1.7601 64-Bit) Service Pack 1
WB: Windows Internet Explorer : 11.0.9600.16428
WB: Mozilla Firefox : 25.0.1

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: avast! Antivirus [(!) Disabled | Updated]
AS: Windows Defender : 6.1.7600.16385 (win7_rtm.090713-1255)
AS: Malwarebytes' Anti-Malware : 1.75.0001
FW: Windows FireWall Service [(!) Disabled]

C: (%systemdrive%) -> Disque fixe # 583 Go (80 Go libre(s) – 14%) [] # NTFS
D: -> CD-ROM

################## | Processus Stoppés |

Stoppé! C:WindowsExplorer.EXE (ID: 332 |ParentID: 308)
Stoppé! C:Windowssystem32ctfmon.exe (ID: 688 |ParentID: 332)
Stoppé! C:Program FilesTortoiseSVNbinTSVNCache.exe (ID: 1016 |ParentID: 332)
Stoppé! C:Windowssystem32DllHost.exe (ID: 1224 |ParentID: 612)

################## | Regedit Run |

04 – HKLMSOFTWARE | Run : [IAStorIcon] – C:Program Files (x86)IntelIntel(R) Rapid Storage TechnologyIAStorIcon.exe
04 – HKLMSOFTWARE | Run : [ISBMgr.exe] – « C:Program Files (x86)SonyISB UtilityISBMgr.exe »
04 – HKLMSOFTWARE | Run : [PMBVolumeWatcher] – c:Program Files (x86)SonyPMBPMBVolumeWatcher.exe
04 – HKLMSOFTWARE | Run : [BrStsMon00] – C:Program Files (x86)Browny02BrotherBrStMonW.exe /AUTORUN
04 – HKLMSOFTWARE | Run : [Freecorder FLV Service] – « C:Program Files (x86)FreecorderFLVSrvc.exe » /run
04 – HKLMSOFTWARE | Run : [KeePass 2 PreLoad] – « C:Program Files (x86)KeePass Password Safe 2KeePass.exe » –preload
04 – HKLMSOFTWARE | Run : [TkBellExe] – « c:program files (x86)realrealplayerUpdaterealsched.exe » -osboot
04 – HKLMSOFTWARE | Run : [AvastUI.exe] – « C:Program FilesAVAST SoftwareAvastAvastUI.exe » /nogui
04 – HKLMSOFTWAREwow6432Node | Run : [IAStorIcon] – C:Program Files (x86)IntelIntel(R) Rapid Storage TechnologyIAStorIcon.exe
04 – HKLMSOFTWAREwow6432Node | Run : [ISBMgr.exe] – « C:Program Files (x86)SonyISB UtilityISBMgr.exe »
04 – HKLMSOFTWAREwow6432Node | Run : [PMBVolumeWatcher] – c:Program Files (x86)SonyPMBPMBVolumeWatcher.exe
04 – HKLMSOFTWAREwow6432Node | Run : [BrStsMon00] – C:Program Files (x86)Browny02BrotherBrStMonW.exe /AUTORUN
04 – HKLMSOFTWAREwow6432Node | Run : [Freecorder FLV Service] – « C:Program Files (x86)FreecorderFLVSrvc.exe » /run
04 – HKLMSOFTWAREwow6432Node | Run : [KeePass 2 PreLoad] – « C:Program Files (x86)KeePass Password Safe 2KeePass.exe » –preload
04 – HKLMSOFTWAREwow6432Node | Run : [TkBellExe] – « c:program files (x86)realrealplayerUpdaterealsched.exe » -osboot
04 – HKLMSOFTWAREwow6432Node | Run : [AvastUI.exe] – « C:Program FilesAVAST SoftwareAvastAvastUI.exe » /nogui
04 – HKLMSOFTWARE | RunOnce : [] –
04 – HKLMSOFTWAREwow6432Node | RunOnce : [] –
04 – HKUS-1-5-19SOFTWARE | Run : [Sidebar] – %ProgramFiles%Windows SidebarSidebar.exe /autoRun
04 – HKUS-1-5-20SOFTWARE | Run : [Sidebar] – %ProgramFiles%Windows SidebarSidebar.exe /autoRun
04 – HKUS-1-5-21-1301682024-956692067-4001901071-1000SOFTWARE | Run : [googletalk] – « C:Program Files (x86)GoogleGoogle Talkgoogletalk.exe » /autostart
04 – HKUS-1-5-21-1301682024-956692067-4001901071-1000SOFTWARE | Run : [Google Update] – « C:UsersllgAppDataLocalGoogleUpdateGoogleUpdate.exe » /c
04 – HKUS-1-5-21-1301682024-956692067-4001901071-1000SOFTWARE | Run : [WordWeb] – « C:Program Files (x86)WordWebwweb32.exe » -startup
04 – HKUS-1-5-21-1301682024-956692067-4001901071-1000SOFTWARE | Run : [KSS] – « C:Program Files (x86)Kaspersky LabKaspersky Security Scan 2.0kss.exe » /autorun
04 – HKUS-1-5-21-1301682024-956692067-4001901071-1000SOFTWARE | Run : [AmazonMP3DownloaderHelper] – C:UsersllgAppDataLocalProgram FilesAmazonMP3 DownloaderAmazonMP3DownloaderHelper.exe
04 – HKUS-1-5-21-1301682024-956692067-4001901071-1000SOFTWARE | Run : [iTunesHelper] – wscript.exe //B « C:UsersllgAppDataLocalTempiTunesHelper.vbe »
04 – HKUS-1-5-21-1301682024-956692067-4001901071-1000SOFTWARE | Run : [MCShield Monitor] – C:Program Files (x86)MCShieldmcshieldrtm.exe
04 – HKUS-1-5-19SOFTWARE | RunOnce : [mctadmin] – C:WindowsSystem32mctadmin.exe
04 – HKUS-1-5-20SOFTWARE | RunOnce : [mctadmin] – C:WindowsSystem32mctadmin.exe

################## | Recherche générique |

Supprimé! C:UsersllgAppDataLocalTempiTunesHelper.vbe
Supprimé! C:UsersllgAppDataRoamingMicrosoftWindowsStart MenuProgramsStartupiTunesHelper.vbe
Supprimé! C:db2exc_974_WIN_x86_64.exe

(!) Fichiers temporaires supprimés.

################## | Référence de comparaison MD5 |

Md5 : 5B246D475157A6F6BDFC0007A782A293 -> C:UsersllgAppDataRoamingMicrosoftWindowsStart MenuProgramsStartupiTunesHelper.vbe
Md5 : 32BEF3BB4B558ADE6CF41113628FC86D -> C:UsersllgAppDataLocalTempiTunesHelper.vbe
Md5 : 5B246D475157A6F6BDFC0007A782A293 -> C:UsersllgAppDataRoamingMicrosoftWindowsStart MenuProgramsStartupiTunesHelper.vbe

################## | Comparaison MD5 |

################## | Registre |

Réparé ! HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesExplorer|NoActiveDesktop -> 0
Réparé ! HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciesExplorer|NoActiveDesktopChanges -> 0
Supprimé! HKUS-1-5-21-1301682024-956692067-4001901071-1000SoftwareMicrosoftWindowsCurrentVersionRun|iTunesHelper
Supprimé! HKUS-1-5-21-1301682024-956692067-4001901071-1000Software….Mountpoints2{6799cd41-20b4-11e1-8492-78843ce2ad95}

################## | Listing |

[13/02/2013 – 07:47:19 | D ] C:$AVG
[11/12/2011 – 20:39:11 | SHD ] C:$Recycle.Bin
[07/12/2011 – 09:50:07 | D ] C:3b64a82d0f8701d9d42589ae
[06/12/2013 – 19:53:08 | D ] C:AdwCleaner
[11/11/2012 – 19:14:35 | N | 24528] C:AdwCleaner[S1].txt
[05/07/2011 – 08:34:30 | D ] C:Brother
[07/12/2013 – 03:16:53 | SHD ] C:Config.Msi
[19/06/2012 – 12:18:50 | D ] C:cygwin
[06/07/2011 – 10:06:55 | D ] C:DB2
[04/02/2012 – 11:31:12 | D ] C:dev
[01/07/2011 – 08:51:07 | D ] C:Documentation
[14/07/2009 – 06:08:56 | SHD ] C:Documents and Settings
[18/04/2012 – 06:24:52 | D ] C:drivers
[18/04/2013 – 11:04:19 | D ] C:Eclipse
[11/02/2012 – 23:30:03 | D ] C:f07e536891ee5ca450
[07/07/2011 – 14:23:31 | D ] C:FirefoxPortable
[22/02/2012 – 08:32:06 | D ] C:found.000
[28/11/2013 – 08:55:33 | D ] C:found.001
[07/12/2013 – 10:17:14 | ASH | 3206959104] C:hiberfil.sys
[01/07/2011 – 08:38:08 | D ] C:Intel
[25/01/2012 – 08:56:32 | D ] C:isipharm
[13/11/2012 – 10:42:51 | D ] C:logs
[01/07/2011 – 09:11:03 | N | 321410] C:lv.log
[05/07/2011 – 11:00:06 | RHD ] C:MSOCache
[06/11/2011 – 14:59:48 | D ] C:My Web Sites
[12/03/2013 – 13:37:47 | D ] C:odase-java-sandbox
[07/12/2013 – 10:17:14 | ASH | 4275945472] C:pagefile.sys
[14/07/2009 – 04:20:08 | D ] C:PerfLogs
[06/12/2013 – 20:42:28 | N | 512] C:PhysicalDisk0_MBR.bin
[05/09/2013 – 12:48:03 | D ] C:Program Files
[06/12/2013 – 20:17:47 | D ] C:Program Files (x86)
[28/11/2013 – 13:54:50 | HD ] C:ProgramData
[06/03/2013 – 09:42:59 | D ] C:Repositories
[01/07/2011 – 15:49:20 | D ] C:SPLASH.000
[04/07/2012 – 11:56:57 | N | 74] C:splash.idx
[04/07/2012 – 11:56:42 | D ] C:SPLASH.SYS
[12/12/2012 – 11:03:45 | D ] C:SQL Server 2000 Sample Databases
[07/12/2013 – 00:05:47 | SHD ] C:System Volume Information
[16/10/2012 – 17:18:25 | D ] C:temp
[06/01/2012 – 22:22:13 | N | 11107] C:test.xml
[24/10/2013 – 22:15:43 | D ] C:Update
[07/12/2013 – 10:40:06 | D ] C:UsbFix
[07/12/2013 – 10:15:47 | N | 1190] C:UsbFix [Clean 1] GALOIS.txt
[07/12/2013 – 10:40:13 | A | 8186] C:UsbFix [Clean 2] GALOIS.txt
[28/11/2013 – 06:42:11 | N | 11763] C:UsbFix [Scan 1] GALOIS.txt
[06/07/2011 – 10:05:43 | RD ] C:Users
[01/07/2011 – 09:14:18 | D ] C:VAIO Sample Contents
[02/07/2011 – 12:04:27 | N | 191344] C:verdana.ttf
[21/11/2010 – 04:26:53 | N | 155384] C:verdanab.ttf
[21/11/2010 – 04:26:53 | N | 176992] C:verdanai.ttf
[21/11/2010 – 04:26:53 | N | 175444] C:verdanaz.ttf
[20/06/2011 – 09:16:28 | N | 4112] C:version
[07/12/2013 – 00:10:21 | D ] C:Windows
[20/07/2011 – 14:46:37 | D ] C:work
[29/08/2012 – 17:21:08 | D ] C:yafl
[01/07/2011 – 08:51:07 | D ] C:_FS_SWRINFO

################## | Vaccin |

(!) Cet ordinateur n'est pas vacciné!

################## | E.O.F | http://www.usbfix.net » onclick= »window.open(this.href);return false; – http://www.sosvirus.net » onclick= »window.open(this.href);return false; |[/spoiler:2f4e728c]