Luddho
Participant
Nombre d'articles : 4

Oi, el Desaparecido rs…

Voilà le rapport:
############################## | UsbFix V 7.170 | [Pesquisa]

Usuário: Ludo (Administrador) # LUDO-PC
Atualizado em 13/05/2014 por El Desaparecido – SosVirus
Começou em 22:12:39 | 14/05/2014

Site : http://www.pt.usbfix.net/
Changelog : http://www.usbfix.net/maj/
Asistencia : http://pt.kioskea.net/forum/seguranca-virus-7
Upload Malware : http://www.sosvirus.net/upload_malware.php
Contato : http://www.pt.usbfix.net/contato/

PC: SAMSUNG ELECTRONICS CO., LTD. (305E4A/305E4A)
CPU: AMD A6-3420M APU with Radeon(tm) HD Graphics
RAM -> [Total : 3564 Mo| Free : 1557 Mo]
Bios: American Megatrends Inc.
Boot: Normal boot

OS: Microsoft Windows 7 Home Premium (6.1.7601 64-Bit) Service Pack 1
WB: Windows Internet Explorer : 11.0.9600.17107
WB: Google Chrome : 34.0.1847.131

SC: Security Center [Enabled]
WU: Windows Update [Enabled]
AV: Norton Internet Security [(!) Disabled | (!) Outdated]
AS: Windows Defender [Enabled | Updated]
AS: Norton Internet Security [(!) Disabled | (!) Outdated]
FW: Norton Internet Security [(!) Disabled]
FW: Windows FireWall [(!) Disabled]

C: (%SystemDrive%) -> Disco fixo # 88 Gb (54 Mb livre – 61%) [] # NTFS
D: -> CD-ROM
E: -> Disco fixo # 377 Gb (377 Mb livre – 100%) [Disco Local] # NTFS
F: -> Disco fixo # 1863 Gb (988 Mb livre – 53%) [TOSHIBA EXT] # NTFS
G: -> Disco fixo # 596 Gb (359 Mb livre – 60%) [HD LUDO] # NTFS
H: -> Disco fixo # 7 Gb (7 Mb livre – 92%) [] # NTFS

################## | Processos Ativos |

C:WindowsSystem32smss.exe (ID: 292|ParentID: 4|SISTEMA)
C:WindowsSystem32wininit.exe (ID: 528|ParentID: 412)
C:WindowsSystem32services.exe (ID: 592|ParentID: 528)
C:WindowsSystem32lsass.exe (ID: 608|ParentID: 528)
C:WindowsSystem32lsm.exe (ID: 616|ParentID: 528)
C:WindowsSystem32winlogon.exe (ID: 672|ParentID: 536)
C:WindowsSystem32svchost.exe (ID: 760|ParentID: 592)
C:WindowsSystem32svchost.exe (ID: 832|ParentID: 592)
C:WindowsSystem32atiesrxx.exe (ID: 904|ParentID: 592)
C:WindowsSystem32svchost.exe (ID: 972|ParentID: 592)
C:WindowsSystem32svchost.exe (ID: 1020|ParentID: 592)
C:WindowsSystem32svchost.exe (ID: 328|ParentID: 592)
C:WindowsSystem32svchost.exe (ID: 412|ParentID: 592)
C:WindowsSystem32svchost.exe (ID: 1232|ParentID: 592)
C:WindowsSystem32spoolsv.exe (ID: 1380|ParentID: 592)
C:WindowsSystem32svchost.exe (ID: 1424|ParentID: 592)
C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe (ID: 1536|ParentID: 592)
C:Program Files (x86)Bluetooth SuiteAth_CoexAgent.exe (ID: 1580|ParentID: 592)
C:Program Files (x86)Bluetooth SuiteAdminService.exe (ID: 1620|ParentID: 592)
C:Program Files (x86)Malwarebytes Anti-Malwarembamscheduler.exe (ID: 1660|ParentID: 592)
C:Program Files (x86)Malwarebytes Anti-Malwarembamservice.exe (ID: 1788|ParentID: 592)
C:Program Files (x86)Norton Internet SecurityEngine18.7.2.3ccsvchst.exe (ID: 1816|ParentID: 592)
C:Program Files (x86)SamsungEasy SettingsSamsungDeviceConfiguration.exe (ID: 1908|ParentID: 592)
C:WindowsSystem32svchost.exe (ID: 2264|ParentID: 592)
C:WindowsMicrosoft.NETFrameworkv4.0.30319mscorsvw.exe (ID: 2516|ParentID: 592)
C:WindowsMicrosoft.NETFramework64v4.0.30319mscorsvw.exe (ID: 2536|ParentID: 592)
C:WindowsSystem32atieclxx.exe (ID: 2860|ParentID: 904)
C:WindowsSystem32taskhost.exe (ID: 2868|ParentID: 592|Ludo)
C:Program Files (x86)Norton Internet SecurityEngine18.7.2.3ccsvchst.exe (ID: 2576|ParentID: 1816|Ludo)
C:Program Files (x86)Malwarebytes Anti-Malwarembam.exe (ID: 2940|ParentID: 1788|Ludo)
C:WindowsSystem32dwm.exe (ID: 2104|ParentID: 1020|Ludo)
C:Windowsexplorer.exe (ID: 1564|ParentID: 2900|Ludo)
C:WindowsSystem32SearchIndexer.exe (ID: 212|ParentID: 592)
C:WindowsSystem32taskeng.exe (ID: 3264|ParentID: 412|Ludo)
C:Program FilesRealtekAudioHDARAVCpl64.exe (ID: 3708|ParentID: 1564|Ludo)
C:Program Files (x86)Bluetooth SuiteBtvStack.exe (ID: 3716|ParentID: 1564|Ludo)
C:Program Files (x86)Bluetooth SuiteAthBtTray.exe (ID: 3736|ParentID: 1564|Ludo)
C:Program FilesElantechETDCtrl.exe (ID: 3768|ParentID: 1564|Ludo)
C:Program Files (x86)GoogleChromeApplicationchrome.exe (ID: 3632|ParentID: 1564|Ludo)
C:Program FilesWindows Sidebarsidebar.exe (ID: 4012|ParentID: 1564|Ludo)
C:Program Files (x86)GoogleChromeApplicationchrome.exe (ID: 3372|ParentID: 3632|Ludo)
C:Program FilesElantechETDCtrlHelper.exe (ID: 3788|ParentID: 3768|Ludo)
C:Program Files (x86)GoogleChromeApplicationchrome.exe (ID: 3552|ParentID: 3632|Ludo)
C:Program Files (x86)GoogleChromeApplicationchrome.exe (ID: 2780|ParentID: 3632|Ludo)
C:Program Files (x86)GoogleChromeApplicationchrome.exe (ID: 3152|ParentID: 3632|Ludo)
C:Program Files (x86)GoogleChromeApplicationchrome.exe (ID: 3976|ParentID: 3632|Ludo)
C:Program Files (x86)GoogleChromeApplicationchrome.exe (ID: 3964|ParentID: 3632|Ludo)
C:WindowsSystem32svchost.exe (ID: 2852|ParentID: 592)
C:Program Files (x86)SamsungEasy SettingsSmartSetting.exe (ID: 4156|ParentID: 3264|Ludo)
C:Program Files (x86)SamsungEasy SettingsEasySpeedUpManager.exe (ID: 4324|ParentID: 3264|Ludo)
C:Program Files (x86)SamsungEasy Settingsdmhkcore.exe (ID: 4336|ParentID: 3264|Ludo)
C:WindowsSystem32svchost.exe (ID: 4868|ParentID: 592)
C:Program FilesWindows Media Playerwmpnetwk.exe (ID: 4732|ParentID: 592)
C:Program FilesSamsungS AgentCommonAgent.exe (ID: 4560|ParentID: 3264|Ludo)
C:ProgramDataSamsungSW Update ServiceSWMAgent.exe (ID: 2472|ParentID: 592)
C:WindowsSystem32svchost.exe (ID: 5108|ParentID: 592)
C:Program Files (x86)ATI TechnologiesATI.ACECore-StaticMOM.exe (ID: 5664|ParentID: 4320|Ludo)
C:Program Files (x86)ATI TechnologiesATI.ACECore-StaticCCC.exe (ID: 2308|ParentID: 5664|Ludo)
C:Program Files (x86)GoogleChromeApplicationchrome.exe (ID: 5784|ParentID: 3632|Ludo)
C:WindowsMicrosoft.NETFramework64v3.0WPFPresentationFontCache.exe (ID: 4424|ParentID: 592)
C:Program Files (x86)GoogleChromeApplicationchrome.exe (ID: 3424|ParentID: 3632|Ludo)
C:Program Files (x86)GoogleChromeApplicationchrome.exe (ID: 3256|ParentID: 3632|Ludo)
C:Program Files (x86)GoogleChromeApplicationchrome.exe (ID: 5676|ParentID: 3632|Ludo)
C:WindowsSystem32svchost.exe (ID: 5632|ParentID: 592)
C:WindowsSystem32taskeng.exe (ID: 2980|ParentID: 412)
C:Program Files (x86)GoogleUpdateGoogleUpdate.exe (ID: 6628|ParentID: 2980)
C:WindowsSystem32audiodg.exe (ID: 6976|ParentID: 972)
C:WindowsSystem32vds.exe (ID: 7004|ParentID: 592)
C:UsbFixUsbFix.exe (ID: 6524|ParentID: 2592|Ludo)
C:WindowsSystem32SearchProtocolHost.exe (ID: 1972|ParentID: 212)
C:WindowsSystem32SearchFilterHost.exe (ID: 6792|ParentID: 212|SISTEMA)

################## | Autorun |

################## | Regedit Run |

F2 – HKLM..Winlogon : [Shell] explorer.exe
F2 – [x64] HKLM..Winlogon : [Shell] explorer.exe
F2 – HKLM..Winlogon : [Userinit] userinit.exe,
F2 – [x64] HKLM..Winlogon : [Userinit] C:Windowssystem32userinit.exe,
04 – HKCU..Run : [GoogleChromeAutoLaunch_DBB52AEA1016229FD1B343F06EC22265] « C:Program Files (x86)GoogleChromeApplicationchrome.exe » –no-startup-window
04 – HKCU..Run : [Sidebar] C:Program FilesWindows Sidebarsidebar.exe /autoRun
04 – [x64] HKLM..Run : [RtHDVCpl] C:Program FilesRealtekAudioHDARAVCpl64.exe -s
04 – [x64] HKLM..Run : [AtherosBtStack] « C:Program Files (x86)Bluetooth SuiteBtvStack.exe »
04 – [x64] HKLM..Run : [AthBtTray] « C:Program Files (x86)Bluetooth SuiteAthBtTray.exe »
04 – [x64] HKLM..Run : [ETDCtrl] %ProgramFiles%ElantechETDCtrl.exe
04 – HKUS-1-5-19..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
04 – HKUS-1-5-20..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
04 – HKUS-1-5-21-1193154667-3190062501-2572320609-1000..Run : [GoogleChromeAutoLaunch_DBB52AEA1016229FD1B343F06EC22265] « C:Program Files (x86)GoogleChromeApplicationchrome.exe » –no-startup-window
04 – HKUS-1-5-21-1193154667-3190062501-2572320609-1000..Run : [Sidebar] C:Program FilesWindows Sidebarsidebar.exe /autoRun
04 – HKUS-1-5-19..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe
04 – HKUS-1-5-20..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe

################## | Procura genérica |

################## | Registro |

################## | E.O.F | http://www.sosvirus.net/ | http://www.pt.usbfix.net/ |

Sinon à part ça, je sais pourquoi mon PC plante de temps en temps, si c’est pas un virus.

En tout cas merci à toi!