suzumiya
Participant
Nombre d'articles : 9

Je pense avoir correctement exécuté les tâches que vous m’avez demandé, voici le rapport :

############################## | UsbFix V 7.158 | [Suppression]

Utilisateur: Sue (Administrateur) # SUE-PC
Mis à jour le 02/01/2014 par El Desaparecido – Team SosVirus
Lancé à 14:25:33 | 04/01/2014

Site Web : http://www.usbfix.net” onclick=”window.open(this.href);return false;
Changelog : http://www.usbfix.net/maj/” onclick=”window.open(this.href);return false;
Support : https://www.sosvirus.net/” onclick=”window.open(this.href);return false;
Upload Malware : upload_malware.php
Contact : http://www.usbfix.net/contact/” onclick=”window.open(this.href);return false;

PC: SAMSUNG ELECTRONICS CO., LTD. (300E4A/300E5A/300E7A/3430EA/3530EA)
CPU: Intel(R) Core(TM) i5-2450M CPU @ 2.50GHz
RAM -> [Total : 4010 Mo| Free : 2543 Mo]
Bios: Phoenix Technologies Ltd.
Boot: Normal boot

OS: Microsoft Windows 7 Édition Familiale Premium (6.1.7601 64-Bit) Service Pack 1
WB: Windows Internet Explorer : 11.0.9600.16476
WB: Mozilla Firefox : 26.0

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: avast! Antivirus [Enabled | Updated]
AS: Windows Defender : 6.1.7600.16385 (win7_rtm.090713-1255)
FW: Windows FireWall Service [Enabled]

C: (%systemdrive%) -> Disque fixe # 443 Go (41 Go libre(s) – 9%) [] # NTFS
D: -> Disque amovible # 7 Go (5 Go libre(s) – 66%) [USB DISK] # FAT32
E: -> CD-ROM

################## | Processus Stoppés |

Stoppé! C:Program FilesAVAST SoftwareAvastAvastSvc.exe (ID: 1288 |ParentID: 700)
Stoppé! C:Program Files (x86)IntelBluetoothdevmonsrv.exe (ID: 1868 |ParentID: 700)
Stoppé! C:Program FilesAVAST SoftwareAvastAvastUI.exe (ID: 4040 |ParentID: 3856)
Stoppé! C:windowsSystem32rundll32.exe (ID: 5416 |ParentID: 852)
Stoppé! C:windowsSystem32WUDFHost.exe (ID: 1488 |ParentID: 540)
Stoppé! C:Program FilesIntelBluetoothHSBTHSSecurityMgr.exe (ID: 4496 |ParentID: 700)
Stoppé! C:Program Files (x86)IntelIntel(R) Management Engine ComponentsLMSLMS.exe (ID: 6124 |ParentID: 700)
Stoppé! C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSVC.EXE (ID: 3160 |ParentID: 700)
Stoppé! C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSvcM.exe (ID: 5340 |ParentID: 3160)
Stoppé! C:Program FilesWindows Media Playerwmpnetwk.exe (ID: 4848 |ParentID: 700)
Stoppé! C:windowssystem32SearchIndexer.exe (ID: 4304 |ParentID: 700)
Stoppé! C:windowsSystem32spoolsv.exe (ID: 3020 |ParentID: 700)
Stoppé! C:Program FilesIntelBluetoothHSBTHSAmpPalService.exe (ID: 5052 |ParentID: 700)
Stoppé! C:Program Files (x86)Common FilesAppleMobile Device SupportAppleMobileDeviceService.exe (ID: 4524 |ParentID: 700)
Stoppé! C:windowssystem32DllHost.exe (ID: 1232 |ParentID: 852)
Stoppé! C:UsersSueAppDataLocalGoogleChromeApplicationchrome.exe (ID: 1480 |ParentID: 6088)
Stoppé! C:UsersSueAppDataLocalGoogleChromeApplicationchrome.exe (ID: 3708 |ParentID: 1480)
Stoppé! C:UsersSueAppDataLocalGoogleChromeApplicationchrome.exe (ID: 2888 |ParentID: 1480)
Stoppé! C:UsersSueAppDataLocalGoogleChromeApplicationchrome.exe (ID: 1264 |ParentID: 1480)

################## | Regedit Run |

04 – HKLM..Run : [Adobe ARM] “C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe”
04 – HKLM..Run : [avast] “C:Program FilesAVAST SoftwareAvastavastUI.exe” /nogui
04 – HKLM..Run : [APSDaemon] “C:Program Files (x86)Common FilesAppleApple Application SupportAPSDaemon.exe”
04 – HKLM..Run : [iTunesHelper] “C:Program Files (x86)iTunesiTunesHelper.exe”
04 – HKLM..Run : [KiesTrayAgent] C:Program Files (x86)SamsungKiesKiesTrayAgent.exe
04 – HKLM..Run : [20131121] C:Program FilesAVAST SoftwareAvastsetupemupdatef0d1de22-418e-47b6-b8b7-ffeb8f9ce61a.exe /check
04 – HKLM..RunOnce : []
04 – HKLM64..Run : [RtHDVCpl] C:Program FilesRealtekAudioHDARAVCpl64.exe -s
04 – HKLM64..Run : [BTMTrayAgent] rundll32.exe “C:Program Files (x86)IntelBluetoothbtmshell.dll”,TrayApp
04 – HKUS-1-5-19..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
04 – HKUS-1-5-20..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
04 – HKUS-1-5-21-578327087-4110603385-1361986703-1001..Run : [Google Update] “C:UsersSueAppDataLocalGoogleUpdateGoogleUpdate.exe” /c
04 – HKUS-1-5-21-578327087-4110603385-1361986703-1001..Run : [msnmsgr] “C:Program Files (x86)Windows LiveMessengermsnmsgr.exe” /background
04 – HKUS-1-5-21-578327087-4110603385-1361986703-1001..Run : [KiesPreload] C:Program Files (x86)SamsungKiesKies.exe /preload
04 – HKUS-1-5-21-578327087-4110603385-1361986703-1001..Run : [KiesAirMessage] C:Program Files (x86)SamsungKiesKiesAirMessage.exe -startup
04 – HKUS-1-5-21-578327087-4110603385-1361986703-1001..Run : [flashmemory] wscript.exe //B “C:UsersSueAppDataLocalTempflashmemory.vbe”
04 – HKUS-1-5-19..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe
04 – HKUS-1-5-19..RunOnce : []
04 – HKUS-1-5-20..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe
04 – HKUS-1-5-20..RunOnce : []
04 – HKUS-1-5-18..RunOnce : []

################## | Recherche générique |

Supprimé! C:UsersSueAppDataLocalTempflashmemory.vbe
Supprimé! D:flashmemory.vbe

(!) Fichiers temporaires supprimés.

################## | Registre |

Supprimé! HKUS-1-5-21-578327087-4110603385-1361986703-1001SoftwareMicrosoftWindowsCurrentVersionRun|flashmemory

################## | Listing |

[26/05/2013 – 16:49:32 | SHD] – C:$Recycle.Bin
[14/07/2009 – 06:08:56 | SHD] – C:Documents and Settings
[02/01/2014 – 22:06:03 | ASH | 4105776 Ko] – C:hiberfil.sys
[11/10/2011 – 02:04:30 | D] – C:Intel
[13/02/2013 – 11:18:59 | RHD] – C:MSOCache
[02/01/2014 – 22:06:06 | ASH | 4105776 Ko] – C:pagefile.sys
[14/07/2009 – 04:20:08 | D] – C:PerfLogs
[26/05/2013 – 22:54:25 | D] – C:Program Files
[24/12/2013 – 20:42:16 | D] – C:Program Files (x86)
[26/05/2013 – 22:54:24 | HD] – C:ProgramData
[04/07/2012 – 21:51:13 | SHD] – C:Recovery
[11/10/2011 – 02:07:30 | N | 2 Ko] – C:RHDSetup.log
[11/10/2011 – 02:27:52 | N | 0 Ko] – C:setup.log
[31/12/2013 – 21:11:43 | SHD] – C:System Volume Information
[04/01/2014 – 14:25:36 | D] – C:UsbFix
[04/01/2014 – 14:31:25 | A | 6 Ko | 431A97E124BB318CCB819840E0327BBD] – C:UsbFix [Clean 1] SUE-PC.txt
[02/01/2014 – 21:31:00 | N | 10 Ko | 774B5469F7D481F6F8B3F50AC9F0124A] – C:UsbFix [Scan 1] SUE-PC.txt
[04/01/2014 – 14:01:37 | N | 9 Ko | 075FFA36D8FFDEAE9E195EBAE32AB530] – C:UsbFix [Scan 3] SUE-PC.txt
[26/05/2013 – 16:49:22 | D] – C:Users
[15/12/2013 – 13:03:33 | D] – C:Windows
[16/12/2013 – 11:33:24 | AH | 4 Ko] – D:._.Trashes
[16/12/2013 – 11:33:24 | HD] – D:.Trashes
[16/12/2013 – 11:33:24 | HD] – D:.fseventsd
[16/12/2013 – 11:33:26 | HD] – D:.Spotlight-V100
[15/12/2013 – 17:02:42 | N | 2503210 Ko] – D:Maboul de Seoul (documentaire Canal+).mp4
[04/01/2014 – 13:56:16 | RASHD] – D:Autorun.inf

################## | Vaccin |

D:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

################## | E.O.F | http://www.usbfix.net” onclick=”window.open(this.href);return false; – https://www.sosvirus.net” onclick=”window.open(this.href);return false; |