cat167
Participant
Nombre d'articles : 16

[spoiler:29m60ve0]Upload Malware : http://www.sosvirus.net/upload_malware.php
Contact : http://www.usbfix.net/contact/

################## | System information |

MB: Quanta (30CF)
CPU: AMD Turion(tm) 64 X2 Mobile Technology TL-58
GC: NVIDIA GeForce 7150M / nForce 630M
RAM -> [Total : 1982 Mo | Free : 595 Mo]
Bios: Hewlett-Packard
Boot: Normal boot

OS: Microsoft™ Windows Vista (TM) Home Premium (6.0.6002 32-Bit) Service Pack 2
WB: Internet Explorer : 9.00.8112.16421
WB: Google Chrome : 35.0.1916.153
WB: Mozilla Firefox : 1.9.0.17

################## | Security Information |

AV: avast! Antivirus [(!) Désactivé |(!) Non à jour]
AS: Windows Defender [Actif |A jour]
AS: avast! Antivirus [(!) Désactivé |(!) Non à jour]
AS: Malwarebytes Anti-Malware : 1.0.0.532
FW: Windows Firewall [(!) Désactivé]
SC: Security Center [Actif]
WU: Windows Update [Actif]

################## | Disk Information |

C: (%SystemDrive%) -> Disque fixe # 136 Go (45 Go libre(s) – 33%) [] # NTFS
D: -> Disque fixe # 13 Go (7 Go libre(s) – 58%) [PRESARIO_RP] # NTFS
E: -> CD-ROM # 185 Mo (0 Mo libre(s) – 0%) [eHWF60] # CDFS
F: -> CD-ROM # 6 Mo (0 Mo libre(s) – 0%) [U3 System] # CDFS
G: -> Disque amovible # 7 Go (4 Go libre(s) – 49%) [] # FAT32

################## | Processus Stoppés |

C:WINDOWSSystem32nvvsvc.exe (ID: 968|ParentID: 688)
C:WINDOWSSystem32SLsvc.exe (ID: 1340|ParentID: 688)
C:WINDOWSSystem32rundll32.exe (ID: 1448|ParentID: 968|SYSTEM)
C:WINDOWSexplorer.exe (ID: 1904|ParentID: 1832|Vista)
C:WINDOWSSystem32spoolsv.exe (ID: 396|ParentID: 688|SYSTEM)
C:WINDOWSSystem32taskeng.exe (ID: 468|ParentID: 1200|SYSTEM)
C:WINDOWSSystem32taskeng.exe (ID: 832|ParentID: 1200|Vista)
C:Program FilesCommon FilesAppleMobile Device SupportbinAppleMobileDeviceService.exe (ID: 2060|ParentID: 688|SYSTEM)
C:Program FilesBonjourmDNSResponder.exe (ID: 2092|ParentID: 688|SYSTEM)
C:Program FilesJuniper NetworksCommon FilesdsNcService.exe (ID: 2280|ParentID: 688|SYSTEM)
C:Program FilesCommon FilesLightScribeLSSrvc.exe (ID: 2384|ParentID: 688|SYSTEM)
C:Program FilesMalwarebytes Anti-Malwarembamscheduler.exe (ID: 2420|ParentID: 688|SYSTEM)
C:Program FilesMalwarebytes Anti-Malwarembam.exe (ID: 2532|ParentID: 2420|Vista)
C:Program FilesCommon Filesmicrosoft sharedVS7DEBUGmdm.exe (ID: 2612|ParentID: 688|SYSTEM)
C:WINDOWSSystem32PnkBstrA.exe (ID: 2660|ParentID: 688|SYSTEM)
C:WINDOWSSystem32SearchIndexer.exe (ID: 2884|ParentID: 688|SYSTEM)
C:WINDOWSSystem32driversXAudio.exe (ID: 3000|ParentID: 688|SYSTEM)
C:Program FilesHewlett-PackardSharedhpqwmiex.exe (ID: 3028|ParentID: 688|SYSTEM)
C:WINDOWSSystem32WUDFHost.exe (ID: 3180|ParentID: 1184|SERVICE LOCAL)
C:Program FilesWindows DefenderMSASCui.exe (ID: 3612|ParentID: 1904|Vista)
C:Program FilesHPQuickPlayQPService.exe (ID: 3628|ParentID: 1904|Vista)
C:Program FilesHewlett-PackardHP Quick Launch ButtonsQLBCTRL.exe (ID: 3664|ParentID: 1904|Vista)
C:Program FilesHewlett-PackardHP Wireless AssistantHPWAMain.exe (ID: 3692|ParentID: 1904|Vista)
C:Program FilesHewlett-PackardHP Wireless AssistantWiFiMsg.exe (ID: 3700|ParentID: 1904|Vista)
C:Program FilesAdobeAcrobat 8.0Acrobatacrotray.exe (ID: 3716|ParentID: 1904|Vista)
C:Program FilesHewlett-PackardSharedHpqToaster.exe (ID: 4072|ParentID: 892|Vista)
C:Program FilesCommon FilesRealUpdate_OBrealsched.exe (ID: 3112|ParentID: 1904|Vista)
C:Program FilesWinampwinampa.exe (ID: 1980|ParentID: 1904|Vista)
C:WINDOWSSystem32rundll32.exe (ID: 3728|ParentID: 1904|Vista)
C:Program FilesCommon FilesJavaJava Updatejusched.exe (ID: 4104|ParentID: 1904|Vista)
C:Program FilesWindows Sidebarsidebar.exe (ID: 4232|ParentID: 1904|Vista)
C:WINDOWSehomeehtray.exe (ID: 4408|ParentID: 1904|Vista)
C:Program FilesCurseCurseClient.exe (ID: 5124|ParentID: 1904|Vista)
C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe (ID: 5272|ParentID: 1904|Vista)
C:UsersVistaAppDataRoamingSpotifyDataSpotifyWebHelper.exe (ID: 5620|ParentID: 1904|Vista)
C:UsersVistaAppDataRoamingSpotifyspotify.exe (ID: 5732|ParentID: 1904|Vista)
C:Program FilesWindows Media Playerwmplayer.exe (ID: 6064|ParentID: 3956|Vista)
C:WINDOWSehomeehmsas.exe (ID: 6092|ParentID: 892|Vista)
C:Program FilesSkypePhoneSkype.exe (ID: 3148|ParentID: 1904|Vista)
C:Program FilesCommon FilesMacrovision SharedFLEXnet PublisherFNPLicensingService.exe (ID: 4544|ParentID: 688|SYSTEM)
C:UsersVistaAppDataRoamingDropboxbinDropbox.exe (ID: 4744|ParentID: 1904|Vista)
C:Program FilesHewlett-PackardHP Health CheckHPHC_Service.exe (ID: 4148|ParentID: 688|SYSTEM)
C:WINDOWSSystem32wbemunsecapp.exe (ID: 4224|ParentID: 892|Vista)
C:UsersVistaAppDataRoamingSpotifyDataSpotifyHelper.exe (ID: 4552|ParentID: 5732|Vista)
C:UsersVistaAppDataRoamingSpotifyDataSpotifyHelper.exe (ID: 5412|ParentID: 5732|Vista)
C:UsersVistaAppDataRoamingSpotifyDataSpotifyHelper.exe (ID: 4880|ParentID: 5732|Vista)
C:UsersVistaAppDataRoamingSpotifyDataSpotifyHelper.exe (ID: 2244|ParentID: 5732|Vista)
C:Program FilesGoogleChromeApplicationchrome.exe (ID: 5336|ParentID: 1904|Vista)
C:Program FilesGoogleChromeApplicationchrome.exe (ID: 6824|ParentID: 5336|Vista)
C:Program FilesGoogleChromeApplicationchrome.exe (ID: 6884|ParentID: 5336|Vista)

################## | Autorun |

G:photos identite cath.lnk -> G:Berzerk.vbe – (SHA1: 248FF7E518710FD2BE101A10CEC200AB40609167)
G:BOOTEX.lnk -> G:Berzerk.vbe – (SHA1: 248FF7E518710FD2BE101A10CEC200AB40609167)
G:LaunchU3.lnk -> G:Berzerk.vbe – (SHA1: 248FF7E518710FD2BE101A10CEC200AB40609167)
G:affiche angus.lnk -> G:Berzerk.vbe – (SHA1: 248FF7E518710FD2BE101A10CEC200AB40609167)
G:Documents.lnk -> G:Berzerk.vbe – (SHA1: 248FF7E518710FD2BE101A10CEC200AB40609167)
G:DEUTSCH divers non-uni.lnk -> G:Berzerk.vbe – (SHA1: 248FF7E518710FD2BE101A10CEC200AB40609167)
G:System.lnk -> G:Berzerk.vbe – (SHA1: 248FF7E518710FD2BE101A10CEC200AB40609167)
G:Autorun.inf.lnk -> G:Berzerk.vbe – (SHA1: 248FF7E518710FD2BE101A10CEC200AB40609167)
G:Zeta.lnk -> G:Berzerk.vbe – (SHA1: 248FF7E518710FD2BE101A10CEC200AB40609167)
G:anti dolphin protest.lnk -> G:Berzerk.vbe – (SHA1: 248FF7E518710FD2BE101A10CEC200AB40609167)
G:SPC_504406.lnk -> G:Berzerk.vbe – (SHA1: 248FF7E518710FD2BE101A10CEC200AB40609167)
G:lit 2.lnk -> G:Berzerk.vbe – (SHA1: 248FF7E518710FD2BE101A10CEC200AB40609167)
G:Scotland at best.lnk -> G:Berzerk.vbe – (SHA1: 248FF7E518710FD2BE101A10CEC200AB40609167)
G:System Volume Information.lnk -> G:Berzerk.vbe – (SHA1: 248FF7E518710FD2BE101A10CEC200AB40609167)
G:lit 1.lnk -> G:Berzerk.vbe – (SHA1: 248FF7E518710FD2BE101A10CEC200AB40609167)
G:affichette.lnk -> G:Berzerk.vbe – (SHA1: 248FF7E518710FD2BE101A10CEC200AB40609167)
G:photo chatte.lnk -> G:Berzerk.vbe – (SHA1: 248FF7E518710FD2BE101A10CEC200AB40609167)
G:RECYCLER.lnk -> G:Berzerk.vbe – (SHA1: 248FF7E518710FD2BE101A10CEC200AB40609167)
G:RESTORE.lnk -> G:Berzerk.vbe – (SHA1: 248FF7E518710FD2BE101A10CEC200AB40609167)
G:GERMANIQUE USB BIS.lnk -> G:Berzerk.vbe – (SHA1: 248FF7E518710FD2BE101A10CEC200AB40609167)
G:ANGLAIS divers non-uni.lnk -> G:Berzerk.vbe – (SHA1: 248FF7E518710FD2BE101A10CEC200AB40609167)

################## | Recherche générique |

Supprimé! G:Berzerk.vbe[/spoiler:29m60ve0]