Publicité
Publicité
Format du document : text/plain
Prévisualisation
[b]############################## | UsbFix V 8.248 | [Clean][/b]
User: Ibty (Administrator) # TAREK
Updated 27/05/2016 by SOSVirus
Started at 18:51:21 | 15/07/2016
Website : [url=https://www.usb-antivirus.com/]https://www.usb-antivirus.com/[/url]
Tutorial : [url=https://www.usb-antivirus.com/tutorial/]https://www.usb-antivirus.com/tutorial/[/url]
Support : [url=http://www.sosvirus.org/]http://www.sosvirus.org/[/url]
Live detection : [url=http://www.sosmalware.com/usbfix/]http://www.sosmalware.com/usbfix/[/url]
Contact : [url=https://www.usb-antivirus.com/contact/]https://www.usb-antivirus.com/contact/[/url]
[b]################## | System information |[/b]
MB: SAMSUNG ELECTRONICS CO., LTD. (NC10)
CPU: Intel(R) Atom(TM) CPU N270 @ 1.60GHz
RAM -> [Total : 1014 Mo | Free : 406 Mo]
Bios: Phoenix Technologies Ltd.
Boot: Normal boot
OS: Microsoft™ Windows 7 Ultimate (6.1.7601 32-Bit) Service Pack 1
WB: Internet Explorer : 8.00.7600.16385
WB: Google Chrome : 51.0.2704.103
[b]################## | Security Information |[/b]
AS: Windows Defender [Enabled |[b](!) Outdated[/b]]
FW: Windows Firewall [Enabled]
SC: Security Center [Enabled]
WU: Windows Update [Enabled]
[b]################## | Disk Information |[/b]
C:\ (%SystemDrive%) -> Fixed disk # 49 Gb (21 Gb free - 43%) [] # NTFS
D:\ -> Fixed disk # 100 Gb (8 Gb free - 8%) [] # NTFS
[b]################## | Generic Research |[/b]
Deleted! C:\Users\Ibty\AppData\Local\Temp\SysinfYhX.db
Deleted! C:\Users\Ibty\AppData\Roaming\service.exe
Deleted! D:\img.jpg
Deleted! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|SysinfYhX
Deleted! HKLM\Software\Microsoft\Windows\CurrentVersion\Run|dahbanty
Deleted! HKLM\Software\Microsoft\Windows\CurrentVersion\Run|dwnSYSB
Deleted! HKLM\Software\Microsoft\Windows\CurrentVersion\Run|fatSYSB
(!) Temporary files deleted. (174.897510528564 MB)
[b]################## | Startup |[/b]
F2 - HKLM\..\Winlogon : [Shell] explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] C:\Windows\system32\userinit.exe,
04 - HKCU\..\Run : [BingSvc] C:\Users\Ibty\AppData\Local\Microsoft\BingSvc\BingSvc.exe
04 - HKCU\..\Run : [SUPERAntiSpyware] C:\Downloads\SUPERAntiSpyware.exe
04 - HKLM\..\Run : [GLDStart] C:\Program Files\GLDirect\gldirect.exe -filterstart
04 - HKLM\..\Run : [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
04 - HKLM\..\Run : [Adobe Creative Cloud] "C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
04 - HKU\S-1-5-19\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-21-3081848085-2065966065-2830097689-1000\..\Run : [BingSvc] C:\Users\Ibty\AppData\Local\Microsoft\BingSvc\BingSvc.exe
04 - HKU\S-1-5-21-3081848085-2065966065-2830097689-1000\..\Run : [SUPERAntiSpyware] C:\Downloads\SUPERAntiSpyware.exe
04 - HKU\S-1-5-19\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
[b]################## | C:\ %SystemDrive% - Fixed drive (NTFS) |[/b]
[10/06/2009 - 21:42:20 | A | 0 Ko] - C:\config.sys
[24/12/2014 - 09:12:37 | RASH | 0 Ko] - C:\MSDOS.SYS
[24/12/2014 - 09:12:37 | RASH | 0 Ko] - C:\IO.SYS
[05/05/2016 - 13:45:38 | N | 1 Ko] - C:\io64.sys
[15/07/2016 - 11:10:13 | ASH | 779080 Ko] - C:\hiberfil.sys
[15/07/2016 - 11:10:13 | ASH | 2048000 Ko] - C:\pagefile.sys
[05/05/2016 - 13:42:20 | A | 0 Ko] - C:\INSTALL.LOG
[02/11/2015 - 10:28:48 | A | 0 Ko] - C:\ftconfig.ini
[19/02/2015 - 10:59:26 | A | 1279 Ko] - C:\Geckofx-Core.dll
[19/02/2015 - 10:59:26 | A | 131 Ko] - C:\Geckofx-Winforms.dll
[19/03/2016 - 20:59:10 | SHD] - C:\$Recycle.Bin
[10/06/2009 - 21:42:20 | A | 0 Ko] - C:\autoexec.bat
[21/03/2016 - 22:31:21 | A | 0 Ko] - C:\cleaner.bat
[29/05/2016 - 13:39:54 | D] - C:\$Windows.~WS
[29/05/2016 - 13:41:48 | D] - C:\$WINDOWS.~BT
[14/07/2009 - 04:53:55 | SHD] - C:\Documents and Settings
[23/12/2014 - 11:06:43 | SHD] - C:\Recovery
[01/12/2015 - 17:47:13 | D] - C:\KVRT_Data
[04/03/2016 - 13:32:35 | D] - C:\extensions
[15/03/2016 - 13:51:52 | D] - C:\rei
[18/03/2016 - 17:28:56 | D] - C:\inetpub
[31/03/2016 - 19:41:38 | D] - C:\xulrunner
[11/04/2016 - 18:02:09 | D] - C:\dltapp
[24/04/2016 - 13:16:42 | RD] - C:\Users
[06/05/2016 - 17:39:07 | D] - C:\5456874b962c6b4d4bb361d756
[06/05/2016 - 21:08:06 | D] - C:\Intel
[06/05/2016 - 21:19:46 | D] - C:\Drivers
[06/05/2016 - 21:44:06 | D] - C:\9b19b932fc06ce665ad57e8a
[11/06/2016 - 00:13:11 | D] - C:\QMDownload
[02/07/2016 - 23:23:34 | D] - C:\Spacekace
[03/07/2016 - 19:56:39 | D] - C:\TEMP
[14/07/2016 - 11:42:00 | HD] - C:\ProgramData
[14/07/2016 - 17:58:29 | D] - C:\Downloads
[14/07/2016 - 23:26:03 | D] - C:\Windows
[15/07/2016 - 12:27:24 | D] - C:\Program Files
[15/07/2016 - 18:19:36 | D] - C:\UsbFix
[b]################## | D:\ - Fixed drive (NTFS) |[/b]
[27/07/2013 - 12:08:22 | N | 0 Ko] - D:\autorun.inf
[15/01/2015 - 17:28:14 | N | 0 Ko] - D:\~$ communication en générale.docx
[26/05/2015 - 16:19:07 | N | 0 Ko] - D:\~$PPORT de stage.docx
[03/06/2016 - 15:23:06 | N | 0 Ko] - D:\~$AMEN DE FIN D FORMATION.docx
[16/06/2016 - 21:06:09 | A | 22 Ko] - D:\EXAMEN DE FIN D FORMATION.docx
[16/06/2016 - 22:01:01 | A | 19 Ko] - D:\examen ikram tsc variante 2.docx
[27/07/2013 - 12:08:22 | N | 0 Ko] - D:\Document.doc
[05/05/2016 - 20:01:01 | N | 3 Ko] - D:\bootsqm.dat
[21/06/2015 - 17:02:50 | RA | 1 Ko] - D:\MediaID.bin
[19/03/2016 - 20:59:10 | SHD] - D:\$RECYCLE.BIN
[29/05/2015 - 09:29:21 | D] - D:\WindowsImageBackup
[07/02/2016 - 22:34:52 | D] - D:\Nouveau dossier
[01/05/2016 - 21:09:45 | RD] - D:\IBTY-PC
[25/05/2016 - 11:52:48 | D] - D:\Charikati promo 2014
[20/06/2016 - 16:04:49 | RD] - D:\TAREK
[14/07/2016 - 00:43:01 | D] - D:\PSAutoRecover
[b]################## | Vaccin |[/b]
C:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
D:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
[b]Analysed in 275.8 seconds[/b]
[b]################## | E.O.F | [url=http://www.sosvirus.net/]http://www.sosvirus.net/[/url] | [url=https://www.usb-antivirus.com/]https://www.usb-antivirus.com/[/url] |[/b]
User: Ibty (Administrator) # TAREK
Updated 27/05/2016 by SOSVirus
Started at 18:51:21 | 15/07/2016
Website : [url=https://www.usb-antivirus.com/]https://www.usb-antivirus.com/[/url]
Tutorial : [url=https://www.usb-antivirus.com/tutorial/]https://www.usb-antivirus.com/tutorial/[/url]
Support : [url=http://www.sosvirus.org/]http://www.sosvirus.org/[/url]
Live detection : [url=http://www.sosmalware.com/usbfix/]http://www.sosmalware.com/usbfix/[/url]
Contact : [url=https://www.usb-antivirus.com/contact/]https://www.usb-antivirus.com/contact/[/url]
[b]################## | System information |[/b]
MB: SAMSUNG ELECTRONICS CO., LTD. (NC10)
CPU: Intel(R) Atom(TM) CPU N270 @ 1.60GHz
RAM -> [Total : 1014 Mo | Free : 406 Mo]
Bios: Phoenix Technologies Ltd.
Boot: Normal boot
OS: Microsoft™ Windows 7 Ultimate (6.1.7601 32-Bit) Service Pack 1
WB: Internet Explorer : 8.00.7600.16385
WB: Google Chrome : 51.0.2704.103
[b]################## | Security Information |[/b]
AS: Windows Defender [Enabled |[b](!) Outdated[/b]]
FW: Windows Firewall [Enabled]
SC: Security Center [Enabled]
WU: Windows Update [Enabled]
[b]################## | Disk Information |[/b]
C:\ (%SystemDrive%) -> Fixed disk # 49 Gb (21 Gb free - 43%) [] # NTFS
D:\ -> Fixed disk # 100 Gb (8 Gb free - 8%) [] # NTFS
[b]################## | Generic Research |[/b]
Deleted! C:\Users\Ibty\AppData\Local\Temp\SysinfYhX.db
Deleted! C:\Users\Ibty\AppData\Roaming\service.exe
Deleted! D:\img.jpg
Deleted! HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|SysinfYhX
Deleted! HKLM\Software\Microsoft\Windows\CurrentVersion\Run|dahbanty
Deleted! HKLM\Software\Microsoft\Windows\CurrentVersion\Run|dwnSYSB
Deleted! HKLM\Software\Microsoft\Windows\CurrentVersion\Run|fatSYSB
(!) Temporary files deleted. (174.897510528564 MB)
[b]################## | Startup |[/b]
F2 - HKLM\..\Winlogon : [Shell] explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] C:\Windows\system32\userinit.exe,
04 - HKCU\..\Run : [BingSvc] C:\Users\Ibty\AppData\Local\Microsoft\BingSvc\BingSvc.exe
04 - HKCU\..\Run : [SUPERAntiSpyware] C:\Downloads\SUPERAntiSpyware.exe
04 - HKLM\..\Run : [GLDStart] C:\Program Files\GLDirect\gldirect.exe -filterstart
04 - HKLM\..\Run : [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
04 - HKLM\..\Run : [Adobe Creative Cloud] "C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
04 - HKU\S-1-5-19\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-21-3081848085-2065966065-2830097689-1000\..\Run : [BingSvc] C:\Users\Ibty\AppData\Local\Microsoft\BingSvc\BingSvc.exe
04 - HKU\S-1-5-21-3081848085-2065966065-2830097689-1000\..\Run : [SUPERAntiSpyware] C:\Downloads\SUPERAntiSpyware.exe
04 - HKU\S-1-5-19\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
[b]################## | C:\ %SystemDrive% - Fixed drive (NTFS) |[/b]
[10/06/2009 - 21:42:20 | A | 0 Ko] - C:\config.sys
[24/12/2014 - 09:12:37 | RASH | 0 Ko] - C:\MSDOS.SYS
[24/12/2014 - 09:12:37 | RASH | 0 Ko] - C:\IO.SYS
[05/05/2016 - 13:45:38 | N | 1 Ko] - C:\io64.sys
[15/07/2016 - 11:10:13 | ASH | 779080 Ko] - C:\hiberfil.sys
[15/07/2016 - 11:10:13 | ASH | 2048000 Ko] - C:\pagefile.sys
[05/05/2016 - 13:42:20 | A | 0 Ko] - C:\INSTALL.LOG
[02/11/2015 - 10:28:48 | A | 0 Ko] - C:\ftconfig.ini
[19/02/2015 - 10:59:26 | A | 1279 Ko] - C:\Geckofx-Core.dll
[19/02/2015 - 10:59:26 | A | 131 Ko] - C:\Geckofx-Winforms.dll
[19/03/2016 - 20:59:10 | SHD] - C:\$Recycle.Bin
[10/06/2009 - 21:42:20 | A | 0 Ko] - C:\autoexec.bat
[21/03/2016 - 22:31:21 | A | 0 Ko] - C:\cleaner.bat
[29/05/2016 - 13:39:54 | D] - C:\$Windows.~WS
[29/05/2016 - 13:41:48 | D] - C:\$WINDOWS.~BT
[14/07/2009 - 04:53:55 | SHD] - C:\Documents and Settings
[23/12/2014 - 11:06:43 | SHD] - C:\Recovery
[01/12/2015 - 17:47:13 | D] - C:\KVRT_Data
[04/03/2016 - 13:32:35 | D] - C:\extensions
[15/03/2016 - 13:51:52 | D] - C:\rei
[18/03/2016 - 17:28:56 | D] - C:\inetpub
[31/03/2016 - 19:41:38 | D] - C:\xulrunner
[11/04/2016 - 18:02:09 | D] - C:\dltapp
[24/04/2016 - 13:16:42 | RD] - C:\Users
[06/05/2016 - 17:39:07 | D] - C:\5456874b962c6b4d4bb361d756
[06/05/2016 - 21:08:06 | D] - C:\Intel
[06/05/2016 - 21:19:46 | D] - C:\Drivers
[06/05/2016 - 21:44:06 | D] - C:\9b19b932fc06ce665ad57e8a
[11/06/2016 - 00:13:11 | D] - C:\QMDownload
[02/07/2016 - 23:23:34 | D] - C:\Spacekace
[03/07/2016 - 19:56:39 | D] - C:\TEMP
[14/07/2016 - 11:42:00 | HD] - C:\ProgramData
[14/07/2016 - 17:58:29 | D] - C:\Downloads
[14/07/2016 - 23:26:03 | D] - C:\Windows
[15/07/2016 - 12:27:24 | D] - C:\Program Files
[15/07/2016 - 18:19:36 | D] - C:\UsbFix
[b]################## | D:\ - Fixed drive (NTFS) |[/b]
[27/07/2013 - 12:08:22 | N | 0 Ko] - D:\autorun.inf
[15/01/2015 - 17:28:14 | N | 0 Ko] - D:\~$ communication en générale.docx
[26/05/2015 - 16:19:07 | N | 0 Ko] - D:\~$PPORT de stage.docx
[03/06/2016 - 15:23:06 | N | 0 Ko] - D:\~$AMEN DE FIN D FORMATION.docx
[16/06/2016 - 21:06:09 | A | 22 Ko] - D:\EXAMEN DE FIN D FORMATION.docx
[16/06/2016 - 22:01:01 | A | 19 Ko] - D:\examen ikram tsc variante 2.docx
[27/07/2013 - 12:08:22 | N | 0 Ko] - D:\Document.doc
[05/05/2016 - 20:01:01 | N | 3 Ko] - D:\bootsqm.dat
[21/06/2015 - 17:02:50 | RA | 1 Ko] - D:\MediaID.bin
[19/03/2016 - 20:59:10 | SHD] - D:\$RECYCLE.BIN
[29/05/2015 - 09:29:21 | D] - D:\WindowsImageBackup
[07/02/2016 - 22:34:52 | D] - D:\Nouveau dossier
[01/05/2016 - 21:09:45 | RD] - D:\IBTY-PC
[25/05/2016 - 11:52:48 | D] - D:\Charikati promo 2014
[20/06/2016 - 16:04:49 | RD] - D:\TAREK
[14/07/2016 - 00:43:01 | D] - D:\PSAutoRecover
[b]################## | Vaccin |[/b]
C:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
D:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)
[b]Analysed in 275.8 seconds[/b]
[b]################## | E.O.F | [url=http://www.sosvirus.net/]http://www.sosvirus.net/[/url] | [url=https://www.usb-antivirus.com/]https://www.usb-antivirus.com/[/url] |[/b]