cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

############################## | UsbFix V 7.136 | [Suppression]

Utilisateur: Administrateur (Administrateur) # DELL-AC125E3196
Mis à jour le 17/09/2013 par El Desaparecido - Team SosVirus
Lancé à 11:13:31 | 18/01/2014

Site Web: http://www.usbfix.net/
Forum : http://www.sosvirus.net/
Upload Malware: http://www.sosvirus.net/upload_malware.php
Contact: http://www.usbfix.net/contact/

PC: Dell Computer Corporation (OptiPlex GX270 ) (X86-based PC)
CPU: Intel(R) Pentium(R) 4 CPU 2.80GHz (2793)
RAM -> [Total : 1534 | Free : 497]
BIOS: Phoenix ROM BIOS PLUS Version 1.10 A06
BOOT: Normal boot

OS: Microsoft Windows XP Professionnel (5.1.2600 32-Bit) # Service Pack 3
WB: Windows Internet Explorer 8.0.6001.18702

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
FW: Windows FireWall Service [Enabled]

C:\ (%systemdrive%) -> Disque fixe # 75 Go (12 Go libre(s) - 17%) [] # NTFS
D:\ -> CD-ROM
F:\ -> Disque amovible # 8 Go (8 Go libre(s) - 100%) [CATARINA] # FAT32

################## | El Desaparecido Section |

HKLM\SOFTWARE | Run : [Adobe ARM] - "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"
HKLM\SOFTWARE | Run : [Synchronization Manager] - %SystemRoot%\system32\mobsync.exe /logon
HKLM\SOFTWARE | Run : [Logitech Utility] - Logi_MwX.Exe
HKLM\SOFTWARE | Run : [AvastUI.exe] - "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
HKLM\SOFTWARE | Run : [] -
HKLM\SOFTWARE | Run : [PSBO Clean] - C:\Program Files\KONICA MINOLTA\PageScope Box Operator\PSBO.exe /clean
HKLM\SOFTWARE | Run : [SunJavaUpdateSched] - "C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe"
HKLM\SOFTWARE | Run : [KernelFaultCheck] - %systemroot%\system32\dumprep 0 -k
HKLM\SOFTWARE | RunOnce : [] -
HKU\S-1-5-19\SOFTWARE | Run : [CTFMON.EXE] - C:\WINDOWS\system32\CTFMON.EXE
HKU\S-1-5-20\SOFTWARE | Run : [CTFMON.EXE] - C:\WINDOWS\system32\CTFMON.EXE
HKU\S-1-5-21-1343024091-630328440-1801674531-500\SOFTWARE | Run : [ctfmon.exe] - C:\WINDOWS\system32\ctfmon.exe
HKU\S-1-5-21-1343024091-630328440-1801674531-500\SOFTWARE | Run : [MSMSGS] - "C:\Program Files\Messenger\msmsgs.exe" /background
HKU\S-1-5-18\SOFTWARE | Run : [CTFMON.EXE] - C:\WINDOWS\system32\CTFMON.EXE

################## | Processus Stoppés |

Stoppé! C:\Program Files\AVAST Software\Avast\AvastSvc.exe (336)
Stoppé! C:\Program Files\AVAST Software\Avast\afwServ.exe (416)
Stoppé! C:\WINDOWS\system32\spoolsv.exe (620)
Stoppé! C:\Program Files\AVAST Software\Avast\AvastUI.exe (1056)
Stoppé! C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (1080)
Stoppé! C:\WINDOWS\system32\ctfmon.exe (1116)
Stoppé! C:\Program Files\Messenger\msmsgs.exe (1120)
Stoppé! C:\Program Files\KONICA MINOLTA\PageScope Direct Print 1.1\KMDPHFMG.exe (1428)
Stoppé! C:\Documents and Settings\All Users\Application Data\U3\U3Launcher\LaunchU3.exe (1568)
Stoppé! C:\Program Files\Logitech\MouseWare\system\em_exec.exe (1592)
Stoppé! C:\Program Files\Nero\Nero8\InCD\InCDsrv.exe (1976)
Stoppé! C:\Program Files\Java\jre7\bin\jqs.exe (2004)
Stoppé! C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe (2044)
Stoppé! C:\Program Files\Nero\Nero8\InCD\NBHRegInCDSrv.exe (804)
Stoppé! C:\WINDOWS\system32\IoctlSvc.exe (880)
Stoppé! C:\WINDOWS\System32\alg.exe (3912)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (376)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (2172)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (240)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (2496)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (3364)
Stoppé! C:\Program Files\Adobe\Photoshop 7.0\Photoshop.exe (3528)

################## | Éléments infectieux |


(!) Fichiers temporaires supprimés.

################## | Registre |


################## | Mountpoints2 |


################## | Listing |

[07/04/2011 - 15:52:05 | N | 0] C:\AUTOEXEC.BAT
[10/01/2014 - 12:34:00 | RASHD ] C:\Autorun.inf
[14/02/2012 - 15:37:23 | N | 212] C:\boot.ini
[28/09/2001 - 13:00:00 | N | 4952] C:\Bootfont.bin
[09/07/2011 - 17:32:36 | D ] C:\ca581a0dab5e520c5a149d
[05/04/2012 - 11:01:43 | N | 192481] C:\canvasx.log
[16/01/2014 - 09:15:25 | D ] C:\Config.Msi
[07/04/2011 - 15:52:05 | N | 0] C:\CONFIG.SYS
[07/04/2011 - 17:15:09 | D ] C:\dell
[07/04/2011 - 15:59:39 | D ] C:\Documents and Settings
[07/04/2011 - 18:17:29 | D ] C:\drvrtmp
[15/12/2012 - 15:36:36 | D ] C:\ExtendedDB
[24/04/2013 - 08:39:08 | D ] C:\Firefox
[07/04/2011 - 15:52:05 | N | 0] C:\IO.SYS
[07/04/2011 - 15:52:05 | N | 0] C:\MSDOS.SYS
[08/04/2011 - 11:03:55 | RHD ] C:\MSOCache
[03/08/2004 - 21:38:34 | N | 47564] C:\NTDETECT.COM
[07/04/2011 - 17:30:36 | N | 252240] C:\ntldr
[17/01/2014 - 19:10:10 | ASH | 2097152000] C:\pagefile.sys
[27/12/2013 - 18:35:53 | D ] C:\Program Files
[07/04/2011 - 18:18:43 | SHD ] C:\RECYCLER
[30/09/2013 - 09:05:21 | D ] C:\scan
[21/11/2012 - 17:37:02 | SHD ] C:\System Volume Information
[18/01/2014 - 11:15:27 | D ] C:\UsbFix
[09/01/2014 - 15:12:21 | N | 4029] C:\UsbFix [Clean 1] DELL-AC125E3196.txt
[09/01/2014 - 15:22:22 | N | 7525] C:\UsbFix [Clean 2] DELL-AC125E3196.txt
[09/01/2014 - 16:00:53 | N | 5340] C:\UsbFix [Clean 3] DELL-AC125E3196.txt
[10/01/2014 - 12:34:12 | N | 5448] C:\UsbFix [Clean 4] DELL-AC125E3196.txt
[18/01/2014 - 11:16:27 | A | 5439] C:\UsbFix [Clean 5] DELL-AC125E3196.txt
[17/05/2011 - 16:52:30 | D ] C:\utils
[16/01/2014 - 18:54:31 | D ] C:\WINDOWS
[01/01/2000 - 01:00:00 | RD ] D:\VIDEO_RM
[01/01/2000 - 01:00:00 | RD ] D:\VIDEO_TS
[15/01/2014 - 18:56:32 | N | 3243413] F:\01111.jpg

################## | Vaccin |

C:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
F:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

################## | E.O.F | http://www.usbfix.net - http://www.sosvirus.net |

Publicité


Signaler le contenu de ce document

Publicité