Répondre à : Serge le Lama 2016-09-08T13:28:35+00:00
Maringouin
Participant
Post count: 15

Bonjour
J’ai essayé en Mode Sans Echec et j’ai toujours le même message d’erreur à 99%
J’ai désinstallé et réinstallé USBFIX et toujours le même message
J’ai fait 2 scan de recherche:
SCAN 1
############################## | UsbFix V 7.159 | [Recherche]

Utilisateur: FROTTBF-GUY (Administrateur) # FROTTBF-GUY-HP
Mis à jour le 06/01/2014 par El Desaparecido – Team SosVirus
Lancé à 15:10:42 | 08/01/2014

Site Web : http://www.usbfix.net” onclick=”window.open(this.href);return false;
Changelog : http://www.usbfix.net/maj/” onclick=”window.open(this.href);return false;
Support : https://www.sosvirus.net/” onclick=”window.open(this.href);return false;
Upload Malware : upload_malware.php
Contact : http://www.usbfix.net/contact/” onclick=”window.open(this.href);return false;

PC: Hewlett-Packard (1425)
CPU: Intel(R) Core(TM) i3 CPU M 370 @ 2.40GHz
RAM -> [Total : 3894 Mo| Free : 2068 Mo]
Bios: Hewlett-Packard
Boot: Normal boot

OS: Microsoft Windows 7 Édition Familiale Premium (6.1.7601 64-Bit) Service Pack 1
WB: Windows Internet Explorer : 11.0.9600.16476

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: Lavasoft Ad-Watch Live! Anti-Virus [Enabled | Updated]
AS: Windows Defender : 6.1.7600.16385 (win7_rtm.090713-1255)
AS: Malwarebytes’ Anti-Malware : 1.75.0001
FW: Windows FireWall Service [Enabled]

C: (%systemdrive%) -> Disque fixe # 238 Go (161 Go libre(s) – 68%) [] # NTFS
D: -> Disque fixe # 21 Go (3 Go libre(s) – 14%) [RECOVERY] # NTFS
E: -> CD-ROM
F: -> Disque fixe # 3 Go (3 Go libre(s) – 98%) [Divers] # NTFS
G: -> Disque fixe # 155 Go (150 Go libre(s) – 97%) [FROTTBF] # NTFS
H: -> Disque amovible # 4 Go (4 Go libre(s) – 94%) [] # FAT32
I: -> Disque fixe # 49 Go (27 Go libre(s) – 55%) [Photos] # NTFS
J: -> Disque amovible # 4 Go (3 Go libre(s) – 91%) [SP UFD U2] # FAT32

################## | Processus Actif |

C:Windowssystem32csrss.exe (ID: 540 |ParentID: 532)
C:Windowssystem32wininit.exe (ID: 604 |ParentID: 532)
C:Windowssystem32csrss.exe (ID: 628 |ParentID: 612)
C:Windowssystem32services.exe (ID: 660 |ParentID: 604)
C:Windowssystem32lsass.exe (ID: 688 |ParentID: 604)
C:Windowssystem32lsm.exe (ID: 696 |ParentID: 604)
C:Windowssystem32winlogon.exe (ID: 764 |ParentID: 612)
C:Windowssystem32svchost.exe (ID: 836 |ParentID: 660)
C:Windowssystem32svchost.exe (ID: 944 |ParentID: 660)
C:WindowsSystem32svchost.exe (ID: 124 |ParentID: 660)
C:WindowsSystem32svchost.exe (ID: 468 |ParentID: 660)
C:Windowssystem32svchost.exe (ID: 552 |ParentID: 660)
C:Windowssystem32svchost.exe (ID: 572 |ParentID: 660)
C:Windowssystem32svchost.exe (ID: 1124 |ParentID: 660)
C:Program FilesAVAST SoftwareAvastAvastSvc.exe (ID: 1244 |ParentID: 660)
C:Program Files (x86)LavasoftAd-AwareAAWService.exe (ID: 1424 |ParentID: 660)
C:WindowsSystem32spoolsv.exe (ID: 1508 |ParentID: 660)
C:Windowssystem32svchost.exe (ID: 1756 |ParentID: 660)
C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe (ID: 1852 |ParentID: 660)
C:Program FilesRealtekAudioHDAAERTSr64.exe (ID: 1872 |ParentID: 660)
C:WindowsSysWOW64ezSharedSvcHost.exe (ID: 1908 |ParentID: 660)
C:Windowssystem32svchost.exe (ID: 1976 |ParentID: 660)
C:Program FilesHewlett-PackardHP Client ServicesHPClientServices.exe (ID: 2004 |ParentID: 660)
C:Program Files (x86)Hewlett-PackardSharedHPDrvMntSvc.exe (ID: 1096 |ParentID: 660)
C:Program Files (x86)Hewlett-PackardHP Quick LaunchHPWMISVC.exe (ID: 1356 |ParentID: 660)
C:Program Files (x86)Common FilesLightScribeLSSrvc.exe (ID: 1276 |ParentID: 660)
C:Program Files (x86)IntelIntel(R) Management Engine ComponentsLMSLMS.exe (ID: 1636 |ParentID: 660)
C:Windowssystem32svchost.exe (ID: 1916 |ParentID: 660)
C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSVC.EXE (ID: 2052 |ParentID: 660)
C:Program Files (x86)Spybot – Search & DestroySDWinSec.exe (ID: 2216 |ParentID: 660)
C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSvcM.exe (ID: 2368 |ParentID: 2052)
C:Windowssystem32taskhost.exe (ID: 2404 |ParentID: 660)
C:Windowssystem32Dwm.exe (ID: 2552 |ParentID: 468)
C:WindowsExplorer.EXE (ID: 2604 |ParentID: 2480)
C:Windowssystem32wbemunsecapp.exe (ID: 2632 |ParentID: 836)
C:Windowssystem32wbemwmiprvse.exe (ID: 2740 |ParentID: 836)
C:Windowssystem32svchost.exe (ID: 3100 |ParentID: 660)
C:WindowsservicingTrustedInstaller.exe (ID: 3264 |ParentID: 660)
C:WindowsSystem32rundll32.exe (ID: 3372 |ParentID: 836)
C:WindowsSystem32WUDFHost.exe (ID: 3412 |ParentID: 468)
C:WindowsSystem32igfxtray.exe (ID: 3704 |ParentID: 2604)
C:WindowsSystem32hkcmd.exe (ID: 3720 |ParentID: 2604)
C:WindowsSystem32igfxpers.exe (ID: 3752 |ParentID: 2604)
C:Windowssystem32taskeng.exe (ID: 4012 |ParentID: 572)
C:Windowssystem32SearchIndexer.exe (ID: 4076 |ParentID: 660)
C:Program Files (x86)CyberLinkYouCamYCMMirage.exe (ID: 3200 |ParentID: 4012)
C:Program FilesSynapticsSynTPSynTPEnh.exe (ID: 3348 |ParentID: 2604)
C:Program Files (x86)LavasoftAd-AwareAAWTray.exe (ID: 3504 |ParentID: 1424)
C:Program FilesRealtekAudioHDARtkNGUI64.exe (ID: 3948 |ParentID: 2604)
C:WindowsWindowsMobilewmdc.exe (ID: 3960 |ParentID: 2604)
C:Program Files (x86)Common FilesLightScribeLightScribeControlPanel.exe (ID: 3796 |ParentID: 2604)
C:Program FilesWindows Sidebarsidebar.exe (ID: 3784 |ParentID: 2604)
C:Program Files (x86)Spybot – Search & DestroyTeaTimer.exe (ID: 1312 |ParentID: 2604)
C:Program Files (x86)Hewlett-PackardHP Quick LaunchHPMSGSVC.exe (ID: 3340 |ParentID: 960)
C:Program Files (x86)Common FilesJavaJava Updatejusched.exe (ID: 364 |ParentID: 960)
C:Program FilesAVAST SoftwareAvastAvastUI.exe (ID: 3792 |ParentID: 960)
C:UsersFROTTBF-GUYAppDataRoamingDropboxbinDropbox.exe (ID: 4460 |ParentID: 2604)
C:Windowssystem32svchost.exe (ID: 4664 |ParentID: 660)
C:Program Files (x86)Hewlett-PackardSharedhpqwmiex.exe (ID: 4936 |ParentID: 660)
C:Program FilesSynapticsSynTPSynTPHelper.exe (ID: 5000 |ParentID: 3348)
C:Program Files (x86)Hewlett-PackardHP Health Checkhphc_service.exe (ID: 3608 |ParentID: 660)
C:Program FilesHewlett-PackardHP Wireless AssistantHPWA_Service.exe (ID: 5060 |ParentID: 660)
C:Program FilesRealtekRtVOsdRtVOsdService.exe (ID: 3108 |ParentID: 660)
C:Program FilesRealtekRtVOsdRtVOsd.exe (ID: 3576 |ParentID: 3108)
C:Windowssystem32sppsvc.exe (ID: 4136 |ParentID: 660)
C:Windowssystem32wbemwmiprvse.exe (ID: 1840 |ParentID: 836)
C:Program Files (x86)IntelIntel(R) Management Engine ComponentsUNSUNS.exe (ID: 1548 |ParentID: 660)
C:Program FilesHewlett-PackardHP Wireless AssistantHPWA_Main.exe (ID: 4528 |ParentID: 3916)
C:Program Files (x86)Hewlett-PackardSharedhpCaslNotification.exe (ID: 4260 |ParentID: 4528)
C:WindowsSystem32svchost.exe (ID: 1140 |ParentID: 660)
C:Program FilesWindows Media Playerwmpnetwk.exe (ID: 992 |ParentID: 660)
C:Program FilesInternet Exploreriexplore.exe (ID: 2068 |ParentID: 2604)
C:Program Files (x86)Internet ExplorerIEXPLORE.EXE (ID: 3748 |ParentID: 2068)
C:Windowssystem32taskeng.exe (ID: 5020 |ParentID: 572)
C:Windowssystem32SearchProtocolHost.exe (ID: 1580 |ParentID: 4076)
C:Windowssystem32SearchFilterHost.exe (ID: 4420 |ParentID: 4076)
C:UsbFixGo.exe (ID: 3808 |ParentID: 4804)

################## | Regedit Run |

04 – HKLM..Run : [HP Quick Launch] C:Program Files (x86)Hewlett-PackardHP Quick LaunchHPMSGSVC.exe
04 – HKLM..Run : [Easybits Recovery] C:Program Files (x86)EasyBits For KidsezRecover.exe
04 – HKLM..Run : [Ad-Aware Browsing Protection] “C:ProgramDataAd-Aware Browsing Protectionadawarebp.exe”
04 – HKLM..Run : [Adobe ARM] “C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe”
04 – HKLM..Run : [SunJavaUpdateSched] “C:Program Files (x86)Common FilesJavaJava Updatejusched.exe”
04 – HKLM..Run : [AvastUI.exe] “C:Program FilesAVAST SoftwareAvastAvastUI.exe” /nogui
04 – HKLM..RunOnce : []
04 – HKLM64..Run : [IgfxTray] C:Windowssystem32igfxtray.exe
04 – HKLM64..Run : [HotKeysCmds] C:Windowssystem32hkcmd.exe
04 – HKLM64..Run : [Persistence] C:Windowssystem32igfxpers.exe
04 – HKLM64..Run : [SynTPEnh] %ProgramFiles%SynapticsSynTPSynTPEnh.exe
04 – HKLM64..Run : [RTHDVCPL] C:Program FilesRealtekAudioHDARtkNGUI64.exe -s
04 – HKLM64..Run : [HPWirelessAssistant] C:Program FilesHewlett-PackardHP Wireless AssistantDelayedAppStarter.exe 120 C:Program FilesHewlett-PackardHP Wireless AssistantHPWA_Main.exe /hidden
04 – HKLM64..Run : [Windows Mobile Device Center] %windir%WindowsMobilewmdc.exe
04 – HKUS-1-5-19..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
04 – HKUS-1-5-20..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
04 – HKUS-1-5-21-1808001180-3675462397-1662788160-1001..Run : [LightScribe Control Panel] C:Program Files (x86)Common FilesLightScribeLightScribeControlPanel.exe -hidden
04 – HKUS-1-5-21-1808001180-3675462397-1662788160-1001..Run : [Sidebar] C:Program FilesWindows Sidebarsidebar.exe /autoRun
04 – HKUS-1-5-21-1808001180-3675462397-1662788160-1001..Run : [SpybotSD TeaTimer] C:Program Files (x86)Spybot – Search & DestroyTeaTimer.exe
04 – HKUS-1-5-21-1808001180-3675462397-1662788160-1001..Run : [Skype] “C:Program Files (x86)SkypePhoneSkype.exe” /minimized /regrun
04 – HKUS-1-5-19..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe
04 – HKUS-1-5-20..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe
04 – HKUS-1-5-18..RunOnce : [adawarebp] reg.exe delete “HKCUSoftwareAppDataLowSoftwareadawarebp” /f
04 – HKUS-1-5-18..RunOnce : [adawarebp_XP] reg.exe delete “HKCUSoftwareadawarebp” /f

################## | Recherche générique |

################## | Registre |

################## | Vaccin |

D:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
F:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
G:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
H:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
I:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
J:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

################## | E.O.F | http://www.usbfix.net” onclick=”window.open(this.href);return false; – https://www.sosvirus.net” onclick=”window.open(this.href);return false; |