Raccourci sur clé usb
adomi
-
Utilisateur anonyme -
Utilisateur anonyme -
Bonjour, j'ai un souci, à chaque fois que je branche une clé usb son mon pc tous les fichiers qui s'y trouvent s'affichent en raccourcis, j'ai installé usbfix et voici le rapport:
############################## | UsbFix V 7.138 | [Recherche]
Utilisateur: work (Administrateur) # Nom supprimé Modération CCM
Mis à jour le 20/09/2013 par El Desaparecido - Team SosVirus
Lancé à 16:33:04 | 24/09/2013
Site Web: https://www.usbfix.net/
Forum : https://www.sosvirus.net/
Upload Malware: http://www.sosvirus.net/upload_malware.php
Contact: https://www.usb-antivirus.com/fr/contact/
PC: Hewlett-Packard (Presario CQ61 Notebook PC) (x64-based PC)
CPU: AMD Sempron(tm) M120 (2100)
RAM -> [Total : 1788 | Free : 703]
BIOS: Default System BIOS
BOOT: Normal boot
OS: Microsoft Windows 7 Édition Familiale Premium (6.1.7601 64-Bit) # Service Pack 1
WB: Windows Internet Explorer 10.0.9200.16686
SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: Avira Desktop [(!) Disabled | Updated]
FW: Windows FireWall Service [Enabled]
C:\ (%systemdrive%) -> Disque fixe # 219 Go (122 Go libre(s) - 56%) [] # NTFS
D:\ -> Disque fixe # 13 Go (2 Go libre(s) - 17%) [RECOVERY] # NTFS
E:\ -> Disque fixe # 99 Mo (99 Mo libre(s) - 100%) [HP_TOOLS] # FAT32
F:\ -> CD-ROM
G:\ -> CD-ROM
H:\ -> Disque amovible # 2 Go (6 Mo libre(s) - 0%) [LOIC] # FAT
################## | Processus Actif |
C:\Windows\system32\csrss.exe (452)
C:\Windows\system32\wininit.exe (512)
C:\Windows\system32\csrss.exe (520)
C:\Windows\system32\services.exe (564)
C:\Windows\system32\winlogon.exe (600)
C:\Windows\system32\lsass.exe (628)
C:\Windows\system32\lsm.exe (636)
C:\Windows\system32\svchost.exe (752)
C:\Windows\system32\svchost.exe (824)
C:\Windows\system32\atiesrxx.exe (872)
C:\Windows\System32\svchost.exe (992)
C:\Windows\System32\svchost.exe (388)
C:\Windows\system32\svchost.exe (456)
C:\Windows\system32\svchost.exe (552)
C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe (820)
C:\Windows\System32\svchost.exe (1236)
C:\Windows\system32\svchost.exe (1296)
C:\Windows\system32\atieclxx.exe (1348)
C:\Windows\System32\spoolsv.exe (1476)
C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (1504)
C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe (1612)
C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (1652)
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (1680)
C:\Program Files (x86)\SearchProtect\bin\CltMngSvc.exe (1780)
C:\Windows\SysWOW64\svchost.exe (1824)
C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe (1876)
C:\Windows\system32\lxdncoms.exe (1908)
C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe (1928)
C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe (1984)
C:\Windows\system32\svchost.exe (1132)
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe (1224)
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (1708)
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (2100)
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\loggingserver.exe (2232)
C:\Windows\system32\conhost.exe (2240)
C:\Windows\system32\taskhost.exe (2528)
C:\Windows\system32\Dwm.exe (2616)
C:\Windows\Explorer.EXE (2656)
C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe (2844)
C:\Windows\system32\svchost.exe (2996)
C:\Program Files\Java\jre6\bin\jusched.exe (2880)
C:\Program Files (x86)\Lexmark 2600 Series\lxdnmon.exe (2500)
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe (1820)
C:\Program Files (x86)\Supercopier\supercopier.exe (2884)
C:\Users\work\AppData\Local\FilesFrog Update Checker\update_checker.exe (1048)
C:\Users\work\AppData\Roaming\uTorrent\uTorrent.exe (2892)
C:\Users\work\AppData\Roaming\Search Protection\SearchProtection.exe (396)
C:\Users\work\AppData\Roaming\SearchProtect\bin\cltmng.exe (932)
C:\Windows\System32\wscript.exe (2724)
C:\Users\work\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe (3156)
C:\Windows\system32\wbem\wmiprvse.exe (3636)
C:\Windows\system32\SearchIndexer.exe (3704)
C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe (3792)
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (3800)
C:\Program Files (x86)\iTunes\iTunesHelper.exe (3840)
C:\Program Files (x86)\PowerISO\PWRISOVM.EXE (3936)
C:\Program Files (x86)\AVG Secure Search\vprot.exe (4044)
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (2072)
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe (3456)
C:\Windows\system32\wbem\wmiprvse.exe (2296)
C:\Program Files\iPod\bin\iPodService.exe (3832)
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe (3500)
C:\Windows\system32\svchost.exe (4160)
C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe (4476)
C:\Windows\System32\svchost.exe (4720)
C:\Program Files\Windows Media Player\wmpnetwk.exe (2172)
C:\Windows\system32\svchost.exe (5108)
C:\Windows\system32\wuauclt.exe (4292)
C:\Program Files (x86)\VideoLAN\VLC\vlc.exe (6092)
C:\Windows\System32\WUDFHost.exe (3512)
C:\Program Files (x86)\Safari\Safari.exe (4340)
C:\Program Files (x86)\Safari\Apple Application Support\WebKit2WebProcess.exe (4124)
C:\Program Files (x86)\Avira\AntiVir Desktop\avcenter.exe (4572)
C:\Windows\system32\SearchProtocolHost.exe (4144)
C:\UsbFix\Go.exe (4824)
C:\Windows\system32\SearchFilterHost.exe (5812)
################## | El Desaparecido Section |
HKLM\SOFTWARE | Run : [WirelessAssistant] - C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
HKLM\SOFTWARE | Run : [SunJavaUpdateSched] - "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKLM\SOFTWARE | Run : [] -
HKLM\SOFTWARE | Run : [iTunesHelper] - "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
HKLM\SOFTWARE | Run : [RAMBoosterPro] - "C:\Program Files (x86)\RAM Booster Pro\RAMBoosterPro.exe" auto
HKLM\SOFTWARE | Run : [SearchProtectAll] - C:\Program Files (x86)\SearchProtect\bin\cltmng.exe
HKLM\SOFTWARE | Run : [PWRISOVM.EXE] - C:\Program Files (x86)\PowerISO\PWRISOVM.EXE -startup
HKLM\SOFTWARE | Run : [vProt] - "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
HKLM\SOFTWARE | Run : [ROC_roc_ssl_v12] - "C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe" / /PROMPT /CMPID=roc_ssl_v12
HKLM\SOFTWARE | Run : [avgnt] - "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
HKLM\SOFTWARE\wow6432Node | Run : [WirelessAssistant] - C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
HKLM\SOFTWARE\wow6432Node | Run : [SunJavaUpdateSched] - "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKLM\SOFTWARE\wow6432Node | Run : [] -
HKLM\SOFTWARE\wow6432Node | Run : [iTunesHelper] - "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
HKLM\SOFTWARE\wow6432Node | Run : [RAMBoosterPro] - "C:\Program Files (x86)\RAM Booster Pro\RAMBoosterPro.exe" auto
HKLM\SOFTWARE\wow6432Node | Run : [SearchProtectAll] - C:\Program Files (x86)\SearchProtect\bin\cltmng.exe
HKLM\SOFTWARE\wow6432Node | Run : [PWRISOVM.EXE] - C:\Program Files (x86)\PowerISO\PWRISOVM.EXE -startup
HKLM\SOFTWARE\wow6432Node | Run : [vProt] - "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
HKLM\SOFTWARE\wow6432Node | Run : [ROC_roc_ssl_v12] - "C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe" / /PROMPT /CMPID=roc_ssl_v12
HKLM\SOFTWARE\wow6432Node | Run : [avgnt] - "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
HKLM\SOFTWARE | RunOnce : [] -
HKLM\SOFTWARE\wow6432Node | RunOnce : [] -
HKU\S-1-5-19\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-20\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-21-739050814-2268839320-1314566503-1054\SOFTWARE | Run : [LightScribe Control Panel] - C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
HKU\S-1-5-21-739050814-2268839320-1314566503-1054\SOFTWARE | Run : [HPADVISOR] - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe view=DOCKVIEW
HKU\S-1-5-21-739050814-2268839320-1314566503-1054\SOFTWARE | Run : [ultracopier] - "C:\Program Files (x86)\Supercopier\supercopier.exe"
HKU\S-1-5-21-739050814-2268839320-1314566503-1054\SOFTWARE | Run : [SDP] - C:\Users\work\AppData\Local\FilesFrog Update Checker\update_checker.exe /auto
HKU\S-1-5-21-739050814-2268839320-1314566503-1054\SOFTWARE | Run : [uTorrent] - "C:\Users\work\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
HKU\S-1-5-21-739050814-2268839320-1314566503-1054\SOFTWARE | Run : [SearchProtection] - "C:\Users\work\AppData\Roaming\Search Protection\SearchProtection.EXE" /autostart
HKU\S-1-5-21-739050814-2268839320-1314566503-1054\SOFTWARE | Run : [Optimizer Pro] - C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe
HKU\S-1-5-21-739050814-2268839320-1314566503-1054\SOFTWARE | Run : [SearchProtect] - C:\Users\work\AppData\Roaming\SearchProtect\bin\cltmng.exe
HKU\S-1-5-21-739050814-2268839320-1314566503-1054\SOFTWARE | Run : [updat] - wscript.exe //B "C:\Users\work\AppData\Local\Temp\updat.vbs"
HKU\S-1-5-21-739050814-2268839320-1314566503-1054\SOFTWARE | Run : [FLV Player] - C:\Users\work\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe
HKU\S-1-5-19\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe
HKU\S-1-5-20\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe
################## | Éléments infectieux |
Présent! H:\updat.vbs
Présent! C:\Users\work\AppData\Local\Temp\updat.vbs
Présent! C:\Users\work\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\updat.vbs
Présent! H:\GTA Vice City.lnk
Présent! H:\04 ASHAWO RMX.lnk
Présent! H:\Track04.lnk
Présent! C:\Users\work\AppData\Roaming\dll-files.com
Présent! C:\Windows\Temp\.exe
Présent! H:\cold
Présent! H:\Usb 2.0 Driver
Présent! C:\Users\new\AppData\Local\Temp\updat.vbs
Présent! C:\Users\new\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\updat.vbs
################## | Mabezat |
Présent! H:\Usb 2.0 Driver\S-1-5-31-1286970278978-5713669491-166975984-320\dmc\Antenna2Net.exe
Présent! H:\Usb 2.0 Driver\S-1-5-31-1286970278978-5713669491-166975984-320\dmc\Crack_GoogleEarthPro.exe
Présent! H:\Usb 2.0 Driver\S-1-5-31-1286970278978-5713669491-166975984-320\tlsr\AmericanOnLine.exe
################## | Registre |
Présent! HKCU\Software\Microsoft\Windows\CurrentVersion\Run|updat
Présent! HKCU\Software\Microsoft\Windows\CurrentVersion\Run|updat
Présent! HKCU\Software\Microsoft\Windows\CurrentVersion\Run|updat
################## | Mountpoints2 |
HKCU\.\.\.\.\Explorer\MountPoints2\{1ff993a8-e30f-11e2-9634-c80aa91ec11a}
Shell\AutoRun\Command = G:\AutoRun.exe
HKCU\.\.\.\.\Explorer\MountPoints2\{b6363a20-d399-11e2-b301-c80aa91ec11a}
Shell\AutoRun\Command = G:\AutoRun.exe
HKCU\.\.\.\.\Explorer\MountPoints2\{d0b620eb-b649-11e2-8615-c80aa91ec11a}
Shell\AutoRun\Command = G:\AutoRun.exe
################## | Vaccin |
(!) Cet ordinateur n'est pas vacciné!
################## | E.O.F | https://www.usbfix.net/ - https://www.sosvirus.net/ |
############################## | UsbFix V 7.138 | [Recherche]
Utilisateur: work (Administrateur) # Nom supprimé Modération CCM
Mis à jour le 20/09/2013 par El Desaparecido - Team SosVirus
Lancé à 16:33:04 | 24/09/2013
Site Web: https://www.usbfix.net/
Forum : https://www.sosvirus.net/
Upload Malware: http://www.sosvirus.net/upload_malware.php
Contact: https://www.usb-antivirus.com/fr/contact/
PC: Hewlett-Packard (Presario CQ61 Notebook PC) (x64-based PC)
CPU: AMD Sempron(tm) M120 (2100)
RAM -> [Total : 1788 | Free : 703]
BIOS: Default System BIOS
BOOT: Normal boot
OS: Microsoft Windows 7 Édition Familiale Premium (6.1.7601 64-Bit) # Service Pack 1
WB: Windows Internet Explorer 10.0.9200.16686
SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: Avira Desktop [(!) Disabled | Updated]
FW: Windows FireWall Service [Enabled]
C:\ (%systemdrive%) -> Disque fixe # 219 Go (122 Go libre(s) - 56%) [] # NTFS
D:\ -> Disque fixe # 13 Go (2 Go libre(s) - 17%) [RECOVERY] # NTFS
E:\ -> Disque fixe # 99 Mo (99 Mo libre(s) - 100%) [HP_TOOLS] # FAT32
F:\ -> CD-ROM
G:\ -> CD-ROM
H:\ -> Disque amovible # 2 Go (6 Mo libre(s) - 0%) [LOIC] # FAT
################## | Processus Actif |
C:\Windows\system32\csrss.exe (452)
C:\Windows\system32\wininit.exe (512)
C:\Windows\system32\csrss.exe (520)
C:\Windows\system32\services.exe (564)
C:\Windows\system32\winlogon.exe (600)
C:\Windows\system32\lsass.exe (628)
C:\Windows\system32\lsm.exe (636)
C:\Windows\system32\svchost.exe (752)
C:\Windows\system32\svchost.exe (824)
C:\Windows\system32\atiesrxx.exe (872)
C:\Windows\System32\svchost.exe (992)
C:\Windows\System32\svchost.exe (388)
C:\Windows\system32\svchost.exe (456)
C:\Windows\system32\svchost.exe (552)
C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe (820)
C:\Windows\System32\svchost.exe (1236)
C:\Windows\system32\svchost.exe (1296)
C:\Windows\system32\atieclxx.exe (1348)
C:\Windows\System32\spoolsv.exe (1476)
C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (1504)
C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe (1612)
C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (1652)
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (1680)
C:\Program Files (x86)\SearchProtect\bin\CltMngSvc.exe (1780)
C:\Windows\SysWOW64\svchost.exe (1824)
C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe (1876)
C:\Windows\system32\lxdncoms.exe (1908)
C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe (1928)
C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe (1984)
C:\Windows\system32\svchost.exe (1132)
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\ToolbarUpdater.exe (1224)
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (1708)
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (2100)
C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.5.0\loggingserver.exe (2232)
C:\Windows\system32\conhost.exe (2240)
C:\Windows\system32\taskhost.exe (2528)
C:\Windows\system32\Dwm.exe (2616)
C:\Windows\Explorer.EXE (2656)
C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe (2844)
C:\Windows\system32\svchost.exe (2996)
C:\Program Files\Java\jre6\bin\jusched.exe (2880)
C:\Program Files (x86)\Lexmark 2600 Series\lxdnmon.exe (2500)
C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe (1820)
C:\Program Files (x86)\Supercopier\supercopier.exe (2884)
C:\Users\work\AppData\Local\FilesFrog Update Checker\update_checker.exe (1048)
C:\Users\work\AppData\Roaming\uTorrent\uTorrent.exe (2892)
C:\Users\work\AppData\Roaming\Search Protection\SearchProtection.exe (396)
C:\Users\work\AppData\Roaming\SearchProtect\bin\cltmng.exe (932)
C:\Windows\System32\wscript.exe (2724)
C:\Users\work\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe (3156)
C:\Windows\system32\wbem\wmiprvse.exe (3636)
C:\Windows\system32\SearchIndexer.exe (3704)
C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe (3792)
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (3800)
C:\Program Files (x86)\iTunes\iTunesHelper.exe (3840)
C:\Program Files (x86)\PowerISO\PWRISOVM.EXE (3936)
C:\Program Files (x86)\AVG Secure Search\vprot.exe (4044)
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (2072)
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe (3456)
C:\Windows\system32\wbem\wmiprvse.exe (2296)
C:\Program Files\iPod\bin\iPodService.exe (3832)
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe (3500)
C:\Windows\system32\svchost.exe (4160)
C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe (4476)
C:\Windows\System32\svchost.exe (4720)
C:\Program Files\Windows Media Player\wmpnetwk.exe (2172)
C:\Windows\system32\svchost.exe (5108)
C:\Windows\system32\wuauclt.exe (4292)
C:\Program Files (x86)\VideoLAN\VLC\vlc.exe (6092)
C:\Windows\System32\WUDFHost.exe (3512)
C:\Program Files (x86)\Safari\Safari.exe (4340)
C:\Program Files (x86)\Safari\Apple Application Support\WebKit2WebProcess.exe (4124)
C:\Program Files (x86)\Avira\AntiVir Desktop\avcenter.exe (4572)
C:\Windows\system32\SearchProtocolHost.exe (4144)
C:\UsbFix\Go.exe (4824)
C:\Windows\system32\SearchFilterHost.exe (5812)
################## | El Desaparecido Section |
HKLM\SOFTWARE | Run : [WirelessAssistant] - C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
HKLM\SOFTWARE | Run : [SunJavaUpdateSched] - "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKLM\SOFTWARE | Run : [] -
HKLM\SOFTWARE | Run : [iTunesHelper] - "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
HKLM\SOFTWARE | Run : [RAMBoosterPro] - "C:\Program Files (x86)\RAM Booster Pro\RAMBoosterPro.exe" auto
HKLM\SOFTWARE | Run : [SearchProtectAll] - C:\Program Files (x86)\SearchProtect\bin\cltmng.exe
HKLM\SOFTWARE | Run : [PWRISOVM.EXE] - C:\Program Files (x86)\PowerISO\PWRISOVM.EXE -startup
HKLM\SOFTWARE | Run : [vProt] - "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
HKLM\SOFTWARE | Run : [ROC_roc_ssl_v12] - "C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe" / /PROMPT /CMPID=roc_ssl_v12
HKLM\SOFTWARE | Run : [avgnt] - "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
HKLM\SOFTWARE\wow6432Node | Run : [WirelessAssistant] - C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
HKLM\SOFTWARE\wow6432Node | Run : [SunJavaUpdateSched] - "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKLM\SOFTWARE\wow6432Node | Run : [] -
HKLM\SOFTWARE\wow6432Node | Run : [iTunesHelper] - "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
HKLM\SOFTWARE\wow6432Node | Run : [RAMBoosterPro] - "C:\Program Files (x86)\RAM Booster Pro\RAMBoosterPro.exe" auto
HKLM\SOFTWARE\wow6432Node | Run : [SearchProtectAll] - C:\Program Files (x86)\SearchProtect\bin\cltmng.exe
HKLM\SOFTWARE\wow6432Node | Run : [PWRISOVM.EXE] - C:\Program Files (x86)\PowerISO\PWRISOVM.EXE -startup
HKLM\SOFTWARE\wow6432Node | Run : [vProt] - "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
HKLM\SOFTWARE\wow6432Node | Run : [ROC_roc_ssl_v12] - "C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe" / /PROMPT /CMPID=roc_ssl_v12
HKLM\SOFTWARE\wow6432Node | Run : [avgnt] - "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
HKLM\SOFTWARE | RunOnce : [] -
HKLM\SOFTWARE\wow6432Node | RunOnce : [] -
HKU\S-1-5-19\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-20\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-21-739050814-2268839320-1314566503-1054\SOFTWARE | Run : [LightScribe Control Panel] - C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
HKU\S-1-5-21-739050814-2268839320-1314566503-1054\SOFTWARE | Run : [HPADVISOR] - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe view=DOCKVIEW
HKU\S-1-5-21-739050814-2268839320-1314566503-1054\SOFTWARE | Run : [ultracopier] - "C:\Program Files (x86)\Supercopier\supercopier.exe"
HKU\S-1-5-21-739050814-2268839320-1314566503-1054\SOFTWARE | Run : [SDP] - C:\Users\work\AppData\Local\FilesFrog Update Checker\update_checker.exe /auto
HKU\S-1-5-21-739050814-2268839320-1314566503-1054\SOFTWARE | Run : [uTorrent] - "C:\Users\work\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
HKU\S-1-5-21-739050814-2268839320-1314566503-1054\SOFTWARE | Run : [SearchProtection] - "C:\Users\work\AppData\Roaming\Search Protection\SearchProtection.EXE" /autostart
HKU\S-1-5-21-739050814-2268839320-1314566503-1054\SOFTWARE | Run : [Optimizer Pro] - C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe
HKU\S-1-5-21-739050814-2268839320-1314566503-1054\SOFTWARE | Run : [SearchProtect] - C:\Users\work\AppData\Roaming\SearchProtect\bin\cltmng.exe
HKU\S-1-5-21-739050814-2268839320-1314566503-1054\SOFTWARE | Run : [updat] - wscript.exe //B "C:\Users\work\AppData\Local\Temp\updat.vbs"
HKU\S-1-5-21-739050814-2268839320-1314566503-1054\SOFTWARE | Run : [FLV Player] - C:\Users\work\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe
HKU\S-1-5-19\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe
HKU\S-1-5-20\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe
################## | Éléments infectieux |
Présent! H:\updat.vbs
Présent! C:\Users\work\AppData\Local\Temp\updat.vbs
Présent! C:\Users\work\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\updat.vbs
Présent! H:\GTA Vice City.lnk
Présent! H:\04 ASHAWO RMX.lnk
Présent! H:\Track04.lnk
Présent! C:\Users\work\AppData\Roaming\dll-files.com
Présent! C:\Windows\Temp\.exe
Présent! H:\cold
Présent! H:\Usb 2.0 Driver
Présent! C:\Users\new\AppData\Local\Temp\updat.vbs
Présent! C:\Users\new\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\updat.vbs
################## | Mabezat |
Présent! H:\Usb 2.0 Driver\S-1-5-31-1286970278978-5713669491-166975984-320\dmc\Antenna2Net.exe
Présent! H:\Usb 2.0 Driver\S-1-5-31-1286970278978-5713669491-166975984-320\dmc\Crack_GoogleEarthPro.exe
Présent! H:\Usb 2.0 Driver\S-1-5-31-1286970278978-5713669491-166975984-320\tlsr\AmericanOnLine.exe
################## | Registre |
Présent! HKCU\Software\Microsoft\Windows\CurrentVersion\Run|updat
Présent! HKCU\Software\Microsoft\Windows\CurrentVersion\Run|updat
Présent! HKCU\Software\Microsoft\Windows\CurrentVersion\Run|updat
################## | Mountpoints2 |
HKCU\.\.\.\.\Explorer\MountPoints2\{1ff993a8-e30f-11e2-9634-c80aa91ec11a}
Shell\AutoRun\Command = G:\AutoRun.exe
HKCU\.\.\.\.\Explorer\MountPoints2\{b6363a20-d399-11e2-b301-c80aa91ec11a}
Shell\AutoRun\Command = G:\AutoRun.exe
HKCU\.\.\.\.\Explorer\MountPoints2\{d0b620eb-b649-11e2-8615-c80aa91ec11a}
Shell\AutoRun\Command = G:\AutoRun.exe
################## | Vaccin |
(!) Cet ordinateur n'est pas vacciné!
################## | E.O.F | https://www.usbfix.net/ - https://www.sosvirus.net/ |
A voir également:
- Raccourci sur clé usb
- Clé usb non détectée - Guide
- Clé usb - Accueil - Stockage
- Formater clé usb - Guide
- Clé windows 8 - Guide
- Télécharger windows 7 sur clé usb gratuit - Télécharger - Systèmes d'exploitation
