############################## | UsbFix V 7.127 | [Suppression]

Utilisateur: SERGE (Administrateur) # PC-SERGE
Mis à jour le 05/06/2013 par El Desaparecido
Lancé à 12:04:47 | 18/06/2013

Site Web: http://sosvirus.org/
Upload Malware: http://upload.sosvirus.org/
Contact: contact@sosvirus.org

PC: ASUSTeK COMPUTER INC. (K75VM) (x64-based PC)
CPU: Intel(R) Core(TM) i7-3610QM CPU @ 2.30GHz (2301)
RAM -> [Total : 8078 | Free : 5808]
BIOS: BIOS Date: 03/14/12 14:45:00 Ver: 04.06.05
BOOT: Normal boot

OS: Microsoft Windows 7 Édition Familiale Premium  (6.1.7601 64-Bit) # Service Pack 1
WB: Windows Internet Explorer 10.0.9200.16618

SC: Security Center Service [Enabled]
WU: Windows Update Service [(!) Disabled]
AV: Bitdefender Antivirus [Enabled | Updated]
FW: Windows FireWall Service [(!) Disabled]

C:\ (%systemdrive%) -> Disque fixe # 300 Go (177 Go libre(s) - 59%) [OS] # NTFS
D:\ -> Disque fixe # 197 Go (95 Go libre(s) - 48%) [LOGICIELS & VIDEOS] # NTFS
E:\ -> Disque amovible # 4 Go (3 Go libre(s) - 89%) [SERGE 4GO] # FAT32
F:\ -> CD-ROM
G:\ -> Disque fixe # 492 Go (217 Go libre(s) - 44%) [MYP-Informatique] # NTFS
I:\ -> Disque fixe # 439 Go (288 Go libre(s) - 65%) [MYP-Docs] # NTFS
T:\ -> Disque fixe # 176 Go (157 Go libre(s) - 89%) [FORMATION & RESSOURCES] # NTFS

################## | El Desaparecido Section |

HKLM\SOFTWARE | Run : [] - 
HKLM\SOFTWARE | Run : [SunJavaUpdateSched] - "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKLM\SOFTWARE\wow6432Node | Run : [] - 
HKLM\SOFTWARE\wow6432Node | Run : [SunJavaUpdateSched] - "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKLM\SOFTWARE | RunOnce : [] - 
HKLM\SOFTWARE\wow6432Node | RunOnce : [] - 
HKU\S-1-5-19\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-20\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-19\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe
HKU\S-1-5-20\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe

################## | Processus Stoppés |

Stoppé! C:\Program Files\Bitdefender\Bitdefender 2012\vsserv.exe (528)
Stoppé! C:\Windows\system32\WLANExt.exe (1856)
Stoppé! C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe (2080)
Stoppé! C:\Windows\system32\taskhost.exe (3272)
Stoppé! C:\Program Files\Bitdefender\Bitdefender 2012\bdagent.exe (3300)
Stoppé! C:\Windows\System32\igfxpers.exe (3852)
Stoppé! C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (2676)
Stoppé! C:\Windows\system32\SearchIndexer.exe (4000)
Stoppé! C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (4112)
Stoppé! C:\PROGRA~1\Eraser\Eraser.exe (2456)
Stoppé! C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (4352)
Stoppé! C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (3936)
Stoppé! C:\Windows\System32\WUDFHost.exe (3268)
Stoppé! C:\Windows\system32\taskhost.exe (4092)
Stoppé! C:\Windows\system32\wbengine.exe (4308)
Stoppé! C:\Windows\system32\vssvc.exe (3772)
Stoppé! C:\Windows\System32\vds.exe (3708)

################## | Éléments infectieux |

Supprimé! G:\Sauvegarde dossier www 21-01-13\jquery.js
Supprimé! C:\Program Files (x86)\GUM6F43.tmp
Supprimé! Y:\desktop.ini
Supprimé! Y:\Thumbs.db

(!) Fichiers temporaires supprimés.

################## | Registre |

Supprimé! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System|DisableTaskMgr

################## | Mountpoints2 |

Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{00a9a70f-cb86-11e1-ac80-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{0272669e-692e-11e2-be2a-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{027266a0-692e-11e2-be2a-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{027266a5-692e-11e2-be2a-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{1452d014-66c8-11e2-9d9f-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{1452d031-66c8-11e2-9d9f-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{14f3abbb-be0a-11e2-b4b3-dd3a9ba93e34}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{14f3abc4-be0a-11e2-b4b3-dd3a9ba93e34}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{14f3abcd-be0a-11e2-b4b3-dd3a9ba93e34}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{14f3abe1-be0a-11e2-b4b3-dd3a9ba93e34}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{21a49095-5bd9-11e2-8557-f94d8218c0b0}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{2f0ab24b-0bcc-11e2-80c1-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{2f0ab24d-0bcc-11e2-80c1-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{4104a62e-c2bc-11e2-b4d3-80c2dac0fabb}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{433da58b-742d-11e2-b735-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{5a793224-06dc-11e2-a070-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{6047230d-c73e-11e1-983e-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{69c58105-fb1d-11e1-a13c-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{7815ac1a-1b61-11e2-9d76-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{786e1630-d896-11e1-b9cc-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{7b18a799-703f-11e2-9f3c-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{7c602126-c836-11e2-8bf8-afe9ea55deb6}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{84a49ba7-36ef-11e2-a00d-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{85aed0b0-ccec-11e1-bbd6-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{8be3005c-5033-11e2-8522-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{99517aab-b6f6-11e2-af5c-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{99517ac0-b6f6-11e2-af5c-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{9d099507-eb99-11e1-a661-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{a7a5803c-ceb1-11e1-9206-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{b280b38a-2a52-11e2-a8a2-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{bba39233-cd8c-11e1-a723-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{bbfaa107-24d3-11e2-83e9-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{bdaefcef-3f88-11e2-a1ae-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{bdaefcf1-3f88-11e2-a1ae-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{be69b998-ce54-11e1-b26b-685d43118a31}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{df747f80-d4d2-11e1-a1d7-685d43118a31}

################## | Listing |

[07/11/2012 - 12:36:02 | SHD ] 	C:\$Recycle.Bin
[21/05/2013 - 15:07:09 | N | 328] 	C:\.htaccess
[18/06/2013 - 02:40:36 | N | 53411] 	C:\bdlog.txt
[15/08/2012 - 14:28:18 | N | 2510608] 	C:\bdr-bz01
[13/06/2013 - 00:45:42 | N | 636] 	C:\bdr-cf01
[31/10/2012 - 14:05:26 | N | 37133166] 	C:\bdr-im01.gz
[13/06/2013 - 00:45:42 | N | 253404] 	C:\bdr-ld01
[13/06/2013 - 00:45:42 | N | 9216] 	C:\bdr-ld01.mbr
[29/07/2009 - 08:03:34 | SHD ] 	C:\Boot
[14/07/2009 - 03:38:58 | RASH | 383562] 	C:\bootmgr
[29/07/2009 - 08:03:37 | N | 8192] 	C:\BOOTSECT.BAK
[17/06/2013 - 23:15:49 | D ] 	C:\Config.Msi
[17/06/2013 - 23:19:55 | N | 954] 	C:\DelFix.txt
[14/07/2009 - 07:08:56 | SHD ] 	C:\Documents and Settings
[22/04/2012 - 04:26:30 | D ] 	C:\eSupport
[18/11/2012 - 15:44:21 | D ] 	C:\FFOutput
[16/05/2013 - 19:43:49 | D ] 	C:\Fichiers inconnus A conserver
[18/06/2013 - 10:39:19 | N | 2040] 	C:\IFRToolLog.txt
[23/10/2012 - 14:57:57 | D ] 	C:\inetpub
[27/06/2012 - 20:44:31 | D ] 	C:\Intel
[28/06/2012 - 15:54:02 | RHD ] 	C:\MSOCache
[16/05/2013 - 19:46:26 | N | 17] 	C:\open.ini
[18/06/2013 - 10:35:52 | ASH | 12705595392] 	C:\pagefile.sys
[25/07/2012 - 21:43:31 | D ] 	C:\PerfLogs
[13/06/2013 - 00:36:54 | D ] 	C:\Program Files
[17/06/2013 - 23:19:55 | D ] 	C:\Program Files (x86)
[17/06/2013 - 13:21:53 | HD ] 	C:\ProgramData
[29/07/2009 - 07:22:15 | SHD ] 	C:\Recovery
[17/06/2013 - 23:14:38 | SHD ] 	C:\System Volume Information
[27/12/2012 - 22:30:34 | D ] 	C:\Temp
[18/06/2013 - 12:05:50 | D ] 	C:\UsbFix
[18/06/2013 - 12:05:57 | A | 8252] 	C:\UsbFix [Clean 2] PC-SERGE.txt
[18/06/2013 - 12:00:28 | N | 11011] 	C:\UsbFix [Scan 2] PC-SERGE.txt
[16/06/2013 - 18:56:29 | D ] 	C:\Users
[13/06/2013 - 00:00:23 | D ] 	C:\wamp
[17/06/2013 - 13:12:11 | D ] 	C:\Windows
[07/11/2012 - 12:36:02 | SHD ] 	D:\$RECYCLE.BIN
[21/04/2013 - 12:55:25 | N | 2988916] 	D:\Backup-Microsoft_Office_2010-20130421T125525.opa
[16/07/2011 - 01:00:04 | N | 206851] 	D:\carnet.WAB
[29/10/2012 - 12:57:48 | D ] 	D:\Cles logiciels
[23/07/2012 - 14:33:33 | D ] 	D:\Fonts
[11/06/2013 - 23:41:54 | D ] 	D:\FORMATIONS VIDEOS
[10/06/2013 - 21:01:37 | D ] 	D:\Images Iso
[02/11/2012 - 16:54:51 | D ] 	D:\Jeux
[17/06/2013 - 18:58:36 | D ] 	D:\Livres
[02/11/2012 - 16:55:21 | D ] 	D:\LOGICIELS & UTILITAIRES
[07/10/2012 - 02:51:23 | D ] 	D:\Magazines
[27/07/2012 - 01:31:28 | N | 209408] 	D:\mdp-sites.xls
[28/06/2012 - 10:16:38 | SHD ] 	D:\System Volume Information
[12/01/2013 - 10:06:06 | D ] 	E:\Personnel Serge
[02/01/2013 - 23:23:02 | D ] 	E:\monCV
[08/11/2011 - 23:34:08 | D ] 	E:\Preparation install W7Ultimate
[10/05/2012 - 23:37:18 | D ] 	E:\dspp
[30/04/2013 - 14:59:28 | N | 1030] 	E:\licences installées sur l'ASUS.txt
[30/07/2012 - 16:16:22 | N | 26] 	E:\cle odette.txt
[19/06/2012 - 19:30:22 | N | 319] 	E:\licences hp.txt
[01/04/2013 - 00:45:46 | N | 776229] 	E:\Facture Asus0001.pdf
[21/05/2013 - 21:03:20 | D ] 	E:\Cinema Saint-Paul
[27/01/2013 - 21:40:42 | N | 68] 	E:\nouvelle clewifi.txt
[21/01/2013 - 14:42:08 | N | 452980] 	E:\recu upt0001.pdf
[17/05/2013 - 15:48:06 | N | 31] 	E:\cle family.txt
[17/05/2013 - 17:06:24 | D ] 	E:\reparation pc benoit
[17/03/2012 - 10:39:22 | D ] 	E:\i-2k8crack
[12/05/2013 - 15:36:41 | SHD ] 	G:\$RECYCLE.BIN
[30/12/2012 - 14:10:09 | D ] 	G:\A trier
[03/06/2012 - 13:11:49 | N | 8351] 	G:\Avatar n14.png
[03/06/2012 - 13:46:11 | N | 53990] 	G:\Avatar n14.psd
[27/06/2012 - 15:30:05 | D ] 	G:\favoris
[21/01/2013 - 01:45:40 | D ] 	G:\FORMATIONS INFORMATIQUES
[16/05/2013 - 19:52:37 | D ] 	G:\FORMATIONS VIDEOS
[18/09/2012 - 11:17:08 | D ] 	G:\Icones.ico
[30/12/2012 - 14:11:35 | D ] 	G:\LIVRES
[29/05/2013 - 21:43:12 | D ] 	G:\LOGICIELS & UTILITAIRES
[20/06/2012 - 04:22:36 | N | 4753] 	G:\Logiciels Asus a voir.txt
[20/06/2012 - 00:45:43 | D ] 	G:\Magazines
[11/01/2012 - 21:41:39 | N | 65893] 	G:\playlist.m3u
[18/06/2013 - 12:05:38 | D ] 	G:\Sauvegarde dossier www 21-01-13
[25/06/2012 - 23:56:32 | SHD ] 	G:\System Volume Information
[16/05/2013 - 19:26:23 | D ] 	G:\Virtual machines
[22/05/2012 - 20:09:45 | D ] 	G:\WD
[15/02/2013 - 03:47:35 | D ] 	G:\WEB & DESIGN
[12/05/2013 - 15:36:41 | SHD ] 	I:\$RECYCLE.BIN
[20/03/2013 - 10:11:09 | D ] 	I:\BD
[18/09/2012 - 21:34:43 | D ] 	I:\Bibliothèque calibre
[28/06/2012 - 03:09:28 | D ] 	I:\Dossier Famille
[12/05/2013 - 20:52:09 | D ] 	I:\Dossier personnel Serge
[14/03/2013 - 18:16:39 | D ] 	I:\Films & Séries & Docs
[23/08/2012 - 01:12:41 | D ] 	I:\Fonds d'écrans
[08/10/2012 - 01:26:38 | D ] 	I:\Galaxy SII
[12/05/2013 - 19:48:25 | D ] 	I:\Ma musique
[14/03/2013 - 15:57:24 | N | 243200] 	I:\mdp-sites.xls
[04/09/2012 - 00:15:01 | D ] 	I:\Mes images
[14/02/2009 - 17:15:27 | N | 91515] 	I:\numero non surtaxés.pdf
[24/01/2013 - 02:34:14 | D ] 	I:\Sauvegarde mails
[25/06/2012 - 23:56:32 | SHD ] 	I:\System Volume Information
[30/08/2012 - 17:11:07 | D ] 	P:\Musiques
[07/04/2013 - 20:44:59 | D ] 	P:\Enregistrements
[19/08/2012 - 18:35:32 | D ] 	P:\Photos
[15/06/2013 - 20:47:35 | D ] 	P:\Vidéos
[17/05/2013 - 20:40:21 | D ] 	P:\Téléchargements
[07/11/2012 - 12:36:02 | SHD ] 	T:\$RECYCLE.BIN
[18/11/2012 - 14:09:29 | D ] 	T:\abrViewer.NET
[03/03/2013 - 23:27:44 | N | 51529] 	T:\Check List _ Créer un blog de A à Z.pdf
[26/01/2013 - 17:14:38 | N | 631296] 	T:\Création d'un thème Wordpress.doc
[06/05/2013 - 16:09:08 | D ] 	T:\Drupal 7.22
[27/12/2012 - 20:19:41 | D ] 	T:\Exercices
[15/02/2013 - 03:47:00 | D ] 	T:\fichiers du doc - CreationTheme
[03/06/2013 - 12:45:13 | D ] 	T:\Formation  T2SI
[23/05/2013 - 20:09:20 | D ] 	T:\Formation informatique en pdf
[23/02/2013 - 13:43:14 | D ] 	T:\Formation Web Design pdf-doc
[29/05/2013 - 22:16:49 | D ] 	T:\FORMATIONS VIDEOS EN COURS
[16/05/2013 - 20:09:46 | D ] 	T:\GRAFIKART Sources & Vidéos
[13/11/2012 - 15:22:58 | D ] 	T:\JQuery_(Des-fichiers-complementaires-892-Ko)
[07/04/2013 - 00:16:21 | D ] 	T:\juizy-slideshow-v1.1.1-2013-03-04
[29/05/2013 - 23:02:10 | D ] 	T:\Ressources Web & Design
[18/06/2013 - 11:07:14 | D ] 	T:\RESSOURCES WORDPRESS
[10/06/2013 - 23:15:58 | D ] 	T:\Sites du dossier WWW
[27/06/2012 - 21:10:26 | SHD ] 	T:\System Volume Information
[23/10/2012 - 15:35:57 | D ] 	Y:\100_flash_backgrounds
[02/05/2013 - 01:02:42 | N | 5703676] 	Y:\Big ScaryThinking about you.mp3
[12/03/2013 - 15:32:29 | N | 70573] 	Y:\copie php.ini
[03/01/2013 - 18:17:46 | N | 70153] 	Y:\Lettre de stage Diane de LESTRANGE.pdf
[22/03/2013 - 02:04:23 | N | 368050286] 	Y:\Touch.S02E07.Vostfr-www.Series-Gratuit.com.rar

################## | Vaccin |

C:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
D:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
E:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
G:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
I:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
P:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
T:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
Y:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

################## | E.O.F | http://sosvirus.org |