cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

[b]############################## | UsbFix V 7.178 | [Nettoyage][/b]

Utilisateur: Jean-Baptiste (Administrateur) # JEANBAPTISTE
Mis � jour le 08/08/2014 par El Desaparecido - SosVirus
Lanc� � 18:03:44 | 18/08/2014

Site Web : [url=http://www.usbfix.net/]http://www.usbfix.net/[/url]
Changelog : [url=http://www.usbfix.net/maj/]http://www.usbfix.net/maj/[/url]
Assistance : [url=http://www.sosvirus.net/forum-virus-securite.html]http://www.sosvirus.net/forum-virus-securite.html[/url]
Upload Malware : [url=http://www.sosvirus.net/upload_malware.php]http://www.sosvirus.net/upload_malware.php[/url]
Contact : [url=http://www.usbfix.net/contact/]http://www.usbfix.net/contact/[/url]

[b]################## | System information |[/b]

MB: Dell Inc. (0W620R)
CPU: Intel(R) Core(TM)2 Duo CPU P8700 @ 2.53GHz
GC: Mobile Intel(R) 4 Series Express Chipset Family (Microsoft Corporation - WDDM 1.1)
RAM -> [Total : 3024 Mo | Free : 1149 Mo]
Bios: Dell Inc.
Boot: Normal boot

OS: Microsoft� Windows 8.1 Pro (6.3.9600 64-Bit)
WB: Internet Explorer : 11.00.9600.16384
WB: Google Chrome : 36.0.1985.143

[b]################## | Security Information |[/b]

AV: Windows Defender [[b](!) D�sactiv�[/b] |A jour]
AV: avast! Antivirus [[b](!) D�sactiv�[/b] |A jour]
AS: Windows Defender [[b](!) D�sactiv�[/b] |A jour]
AS: avast! Antivirus [[b](!) D�sactiv�[/b] |A jour]
FW: Windows Firewall [Actif]
SC: Security Center [Actif]
WU: Windows Update [Actif]

[b]################## | Disk Information |[/b]

C:\ (%SystemDrive%) -> Disque fixe # 149 Go (56 Go libre(s) - 38%) [] # NTFS
E:\ -> Disque amovible # 4 Go (4 Go libre(s) - 97%) [EASY KEY] # FAT32

[b]################## | Autorun |[/b]

E:\temp.lnk -> E:\flashmemory.vbe - (SHA1: 6DCBF25FC3C66605A1A8DCB82471024C2E273D10)
E:\TP1_ex8.lnk -> E:\flashmemory.vbe - (SHA1: 6DCBF25FC3C66605A1A8DCB82471024C2E273D10)
E:\Robot.lnk -> E:\flashmemory.vbe - (SHA1: 6DCBF25FC3C66605A1A8DCB82471024C2E273D10)
E:\Portfolio.lnk -> E:\flashmemory.vbe - (SHA1: 6DCBF25FC3C66605A1A8DCB82471024C2E273D10)
E:\Pi�ce1 max.lnk -> E:\flashmemory.vbe - (SHA1: 6DCBF25FC3C66605A1A8DCB82471024C2E273D10)
E:\Pi�ce2 max.lnk -> E:\flashmemory.vbe - (SHA1: 6DCBF25FC3C66605A1A8DCB82471024C2E273D10)
E:\ecrou aniss.lnk -> E:\flashmemory.vbe - (SHA1: 6DCBF25FC3C66605A1A8DCB82471024C2E273D10)
E:\carter principal aniss.lnk -> E:\flashmemory.vbe - (SHA1: 6DCBF25FC3C66605A1A8DCB82471024C2E273D10)
E:\La Femme - La femme.lnk -> E:\flashmemory.vbe - (SHA1: 6DCBF25FC3C66605A1A8DCB82471024C2E273D10)
E:\SUICIDAL SERENADE - Miss M.lnk -> E:\flashmemory.vbe - (SHA1: 6DCBF25FC3C66605A1A8DCB82471024C2E273D10)
E:\GO TO ME - Miss M.lnk -> E:\flashmemory.vbe - (SHA1: 6DCBF25FC3C66605A1A8DCB82471024C2E273D10)
E:\One Way Trigger - The Strokes.lnk -> E:\flashmemory.vbe - (SHA1: 6DCBF25FC3C66605A1A8DCB82471024C2E273D10)
E:\CV Tolkien.lnk -> E:\flashmemory.vbe - (SHA1: 6DCBF25FC3C66605A1A8DCB82471024C2E273D10)
E:\CV anglais.lnk -> E:\flashmemory.vbe - (SHA1: 6DCBF25FC3C66605A1A8DCB82471024C2E273D10)
E:\VW001.lnk -> E:\flashmemory.vbe - (SHA1: 6DCBF25FC3C66605A1A8DCB82471024C2E273D10)
E:\JB.lnk -> E:\flashmemory.vbe - (SHA1: 6DCBF25FC3C66605A1A8DCB82471024C2E273D10)
E:\positif.lnk -> E:\flashmemory.vbe - (SHA1: 6DCBF25FC3C66605A1A8DCB82471024C2E273D10)
E:\taux.lnk -> E:\flashmemory.vbe - (SHA1: 6DCBF25FC3C66605A1A8DCB82471024C2E273D10)
E:\tva.lnk -> E:\flashmemory.vbe - (SHA1: 6DCBF25FC3C66605A1A8DCB82471024C2E273D10)
E:\negatif.lnk -> E:\flashmemory.vbe - (SHA1: 6DCBF25FC3C66605A1A8DCB82471024C2E273D10)
E:\securite.lnk -> E:\flashmemory.vbe - (SHA1: 6DCBF25FC3C66605A1A8DCB82471024C2E273D10)

[b]################## | Recherche g�n�rique |[/b]

Supprim�! E:\flashmemory.vbe
Supprim�! E:\temp.lnk
Supprim�! E:\TP1_ex8.lnk
Supprim�! E:\Robot.lnk
Supprim�! E:\Portfolio.lnk
Supprim�! E:\Pi�ce1 max.lnk
Supprim�! E:\Pi�ce2 max.lnk
Supprim�! E:\ecrou aniss.lnk
Supprim�! E:\carter principal aniss.lnk
Supprim�! E:\La Femme - La femme.lnk
Supprim�! E:\SUICIDAL SERENADE - Miss M.lnk
Supprim�! E:\GO TO ME - Miss M.lnk
Supprim�! E:\One Way Trigger - The Strokes.lnk
Supprim�! E:\CV Tolkien.lnk
Supprim�! E:\CV anglais.lnk
Supprim�! E:\VW001.lnk
Supprim�! E:\JB.lnk
Supprim�! E:\positif.lnk
Supprim�! E:\taux.lnk
Supprim�! E:\tva.lnk
Supprim�! E:\negatif.lnk
Supprim�! E:\securite.lnk

(!) Fichiers temporaires supprim�s. (20.9886493682861 MB)

[b]################## | Registre |[/b]


[b]################## | Regedit Run |[/b]

F2 - HKLM\..\Winlogon : [Shell] explorer.exe
F2 - [x64] HKLM\..\Winlogon : [Shell] explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] userinit.exe
F2 - [x64] HKLM\..\Winlogon : [Userinit] C:\Windows\system32\userinit.exe,
04 - HKCU\..\Run : [DellSystemDetect] C:\Users\Jean-Baptiste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell\Dell System Detect.appref-ms
04 - HKCU\..\Run : [EPSON SX510W Series] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIFIE.EXE /FU "C:\WINDOWS\TEMP\E_S39A2.tmp" /EF "HKCU"
04 - HKCU\..\Run : [EPSON81D959AA] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIFIE.EXE /FU "C:\WINDOWS\TEMP\E_SD2FA.tmp" /EF "HKCU"
04 - HKCU\..\Run : [Spotify Web Helper] "C:\Users\Jean-Baptiste\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
04 - HKLM\..\Run : [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
04 - HKLM\..\Run : [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
04 - HKLM\..\Run : [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
04 - HKLM\..\Run : [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
04 - HKU\S-1-5-21-688639749-3887454041-3334078877-1001\..\Run : [DellSystemDetect] C:\Users\Jean-Baptiste\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell\Dell System Detect.appref-ms
04 - HKU\S-1-5-21-688639749-3887454041-3334078877-1001\..\Run : [EPSON SX510W Series] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIFIE.EXE /FU "C:\WINDOWS\TEMP\E_S39A2.tmp" /EF "HKCU"
04 - HKU\S-1-5-21-688639749-3887454041-3334078877-1001\..\Run : [EPSON81D959AA] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIFIE.EXE /FU "C:\WINDOWS\TEMP\E_SD2FA.tmp" /EF "HKCU"
04 - HKU\S-1-5-21-688639749-3887454041-3334078877-1001\..\Run : [Spotify Web Helper] "C:\Users\Jean-Baptiste\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

[b]################## | UsbFix - Information |[/b]

Info : [url=https://www.youtube.com/watch?v=vUZYYASd7FE]Comment supprimer l'infection des raccourcis sur USB ? (Video)[/url]
Info : [url=http://www.en.usbfix.net/2014/03/remove-shortcut-virus-usb/]L'infection des raccourcis USB, c'est quoi ?[/url]

[b]################## | Hijack |[/b]

Restaur�! [N] E:\Robot.rtf
Restaur�! [N] E:\Portfolio.docx
Restaur�! [N] E:\Pi�ce1 max.SLDPRT
Restaur�! [N] E:\Pi�ce2 max.SLDPRT
Restaur�! [N] E:\ecrou aniss.SLDPRT
Restaur�! [N] E:\carter principal aniss.SLDPRT
Restaur�! [D] E:\JB
Restaur�! [N] E:\La Femme - La femme.mp3
Restaur�! [N] E:\SUICIDAL SERENADE - Miss M.E.mp3
Restaur�! [N] E:\GO TO ME - Miss M.E.mp3
Restaur�! [N] E:\One Way Trigger - The Strokes.mp3
Restaur�! [N] E:\CV Tolkien.docx
Restaur�! [N] E:\CV anglais.docx
Restaur�! [D] E:\positif
Restaur�! [D] E:\taux
Restaur�! [D] E:\tva
Restaur�! [D] E:\negatif
Restaur�! [D] E:\securite
Restaur�! [D] E:\temp
Restaur�! [D] E:\TP1_ex8
Restaur�! [N] E:\VW001.pdf

[b]################## | C:\ %SystemDrive% - Disque Fixe (NTFS) |[/b]

[18/08/2014 - 12:54:36 | ASH | 2477176 Ko] - C:\hiberfil.sys
[18/08/2014 - 12:54:42 | ASH | 1310720 Ko] - C:\pagefile.sys
[18/08/2014 - 12:54:42 | ASH | 262144 Ko] - C:\swapfile.sys
[20/10/2013 - 12:01:09 | SHD] - C:\$Recycle.Bin
[18/06/2013 - 14:18:29 | N | 0 Ko] - C:\BOOTNXT
[22/08/2013 - 07:31:45 | RASH | 418 Ko] - C:\bootmgr
[22/08/2013 - 16:45:52 | SHD] - C:\Documents and Settings
[22/08/2013 - 17:22:35 | D] - C:\PerfLogs
[23/09/2013 - 08:32:21 | SHD] - C:\Recovery
[23/09/2013 - 20:25:48 | D] - C:\Users
[23/09/2013 - 22:43:44 | RHD] - C:\MSOCache
[23/09/2013 - 23:02:18 | D] - C:\Dell
[28/12/2013 - 02:39:32 | D] - C:\Program Files
[24/03/2014 - 17:37:39 | HD] - C:\ProgramData
[11/07/2014 - 22:19:50 | D] - C:\Program Files (x86)
[17/08/2014 - 15:19:42 | SHD] - C:\System Volume Information
[17/08/2014 - 15:59:28 | D] - C:\Windows
[18/08/2014 - 17:47:18 | D] - C:\UsbFix

[b]################## | E:\ - Disque USB (FAT32) |[/b]

[22/01/2013 - 09:30:14 | N | 190 Ko] - E:\Pi�ce1 max.SLDPRT
[22/01/2013 - 09:36:50 | N | 173 Ko] - E:\ecrou aniss.SLDPRT
[22/01/2013 - 11:55:46 | N | 634 Ko] - E:\Pi�ce2 max.SLDPRT
[22/01/2013 - 11:56:08 | N | 629 Ko] - E:\carter principal aniss.SLDPRT
[09/01/2013 - 15:57:12 | N | 1 Ko] - E:\Robot.rtf
[22/03/2014 - 23:42:02 | N | 673 Ko] - E:\VW001.pdf
[18/08/2014 - 12:37:32 | A | 2150 Ko] - E:\Permis_Jean-Baptiste_Passieux.pdf
[23/01/2013 - 18:59:48 | N | 4194 Ko] - E:\GO TO ME - Miss M.E.mp3
[23/01/2013 - 18:59:50 | N | 4939 Ko] - E:\SUICIDAL SERENADE - Miss M.E.mp3
[23/01/2013 - 19:21:00 | N | 2866 Ko] - E:\La Femme - La femme.mp3
[28/01/2013 - 20:06:26 | N | 9469 Ko] - E:\One Way Trigger - The Strokes.mp3
[11/01/2013 - 00:08:40 | N | 21 Ko] - E:\Portfolio.docx
[19/02/2013 - 12:11:20 | N | 11 Ko] - E:\CV Tolkien.docx
[28/02/2013 - 19:19:10 | N | 13 Ko] - E:\CV anglais.docx
[22/01/2013 - 11:58:14 | D] - E:\JB
[22/03/2013 - 09:08:14 | D] - E:\positif
[22/03/2013 - 09:08:14 | D] - E:\taux
[22/03/2013 - 09:08:14 | D] - E:\tva
[22/03/2013 - 09:08:16 | D] - E:\securite
[22/03/2013 - 09:08:16 | D] - E:\temp
[22/03/2013 - 09:08:16 | D] - E:\negatif
[22/03/2013 - 09:19:10 | D] - E:\TP1_ex8
[22/03/2014 - 23:43:08 | SHD] - E:\System Volume Information

[b]################## | Vaccin |[/b]

C:\Autorun.inf -> Vaccin cr�� par UsbFix (El Desaparecido)
E:\Autorun.inf -> Vaccin cr�� par UsbFix (El Desaparecido)

[b]################## | E.O.F | [url=http://www.sosvirus.net/]http://www.sosvirus.net/[/url] | [url=http://www.usbfix.net/]http://www.usbfix.net/[/url] |[/b]

Publicité


Signaler le contenu de ce document

Publicité