[b]############################## | UsbFix V 7.181 | [Nettoyage][/b]

Utilisateur: admin (Administrateur) # SARA-PC
Mis à jour le 31/08/2014 par El Desaparecido - SosVirus
Lancé à 11:05:59 | 05/09/2014

Site Web : [url=http://www.usbfix.net/]http://www.usbfix.net/[/url]
Changelog : [url=http://www.usbfix.net/maj/]http://www.usbfix.net/maj/[/url]
Assistance : [url=http://www.sosvirus.net/forum-virus-securite.html]http://www.sosvirus.net/forum-virus-securite.html[/url]
Upload Malware : [url=http://www.sosvirus.net/upload_malware.php]http://www.sosvirus.net/upload_malware.php[/url]
Contact : [url=http://www.usbfix.net/contact/]http://www.usbfix.net/contact/[/url]

[b]################## | System information |[/b]

MB: ASUSTeK Computer Inc. (N73SV) 
CPU: Intel(R) Core(TM) i7-2670QM CPU @ 2.20GHz
GC: NVIDIA GeForce GT 540M 
RAM -> [Total : 8103 Mo | Free : 5915 Mo]
Bios: American Megatrends Inc.
Boot: Normal boot

OS: Microsoft™ Windows 7 Home Premium (6.1.7601 64-Bit) Service Pack 1
WB: Mozilla Firefox : 31.0

[b]################## | Security Information |[/b]

AV: avast! Antivirus [Actif |A jour]
AS: Windows Defender [Actif |[b](!) Non à jour[/b]]
AS: avast! Antivirus [Actif |A jour]
AS: Malwarebytes Anti-Malware : 2.0.2.1012
FW: Windows Firewall [Actif]
SC: Security Center [Actif]
WU: Windows Update [Actif]

[b]################## | Disk Information |[/b]

C:\ (%SystemDrive%) -> Disque fixe # 466 Go (374 Go libre(s) - 80%) [] # NTFS
D:\ -> CD-ROM # 1 Go (0 Mo libre(s) - 0%) [2013R3] # CDFS
E:\ -> Disque amovible # 2 Go (2 Go libre(s) - 100%) [] # FAT32
F:\ -> Disque amovible # 7 Go (93 Mo libre(s) - 1%) [STORE N GO] # FAT32
G:\ -> Disque amovible # 983 Mo (963 Mo libre(s) - 98%) [USB] # FAT

[b]################## | Recherche générique |[/b]


(!) Fichiers temporaires supprimés. (0.0625638961791992 MB)

[b]################## | Registre |[/b]


[b]################## | Regedit Run |[/b]

F2 - HKLM\..\Winlogon : [Shell] Explorer.exe
F2 - [x64] HKLM\..\Winlogon : [Shell] explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] C:\Windows\SysWOW64\Userinit.exe,
F2 - [x64] HKLM\..\Winlogon : [Userinit] C:\Windows\system32\userinit.exe,
04 - HKLM\..\Run : [FLxHCIm] "C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe"
04 - HKLM\..\Run : [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
04 - HKLM\..\Run : [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
04 - [x64] HKLM\..\Run : [IgfxTray] C:\Windows\system32\igfxtray.exe
04 - [x64] HKLM\..\Run : [Persistence] C:\Windows\system32\igfxpers.exe
04 - [x64] HKLM\..\Run : [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
04 - [x64] HKLM\..\Run : [ETDWare] %ProgramFiles%\Elantech\ETDCtrl.exe
04 - [x64] HKLM\..\Run : [AtherosBtStack] "C:\Program Files (x86)\Atheros\Bluetooth Suite\BtvStack.exe"
04 - [x64] HKLM\..\Run : [AthBtTray] "C:\Program Files (x86)\Atheros\Bluetooth Suite\AthBtTray.exe"
04 - HKU\S-1-5-19\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-19\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe

[b]################## | UsbFix - Information |[/b]

Info : [url=https://www.youtube.com/watch?v=vUZYYASd7FE]Comment supprimer l'infection des raccourcis sur USB ? (Video)[/url]
Info : [url=http://www.en.usbfix.net/2014/03/remove-shortcut-virus-usb/]L'infection des raccourcis USB, c'est quoi ?[/url]

[b]################## | Hijack |[/b]


[b]################## | C:\ %SystemDrive% - Disque Fixe (NTFS) |[/b]

[30/12/2011 - 18:26:04 | N | 0 Ko] - C:\mini-agent.txt
[08/01/2012 - 01:07:26 | N | 0 Ko] - C:\UsbFix.txt
[15/04/2012 - 16:38:46 | N | 1 Ko] - C:\DelFix[R1].txt
[28/08/2012 - 18:47:23 | N | 4 Ko] - C:\AdwCleaner[S1].txt
[05/12/2012 - 23:31:35 | N | 68 Ko] - C:\installer_debug.txt
[23/02/2013 - 02:23:57 | N | 1 Ko] - C:\AdwCleaner[S2].txt
[04/03/2013 - 23:02:00 | N | 1 Ko] - C:\AdwCleaner[S3].txt
[10/04/2013 - 17:54:19 | N | 1 Ko] - C:\AdwCleaner[S4].txt
[12/05/2013 - 12:54:47 | N | 3 Ko] - C:\AdwCleaner[S5].txt
[13/05/2013 - 21:23:18 | N | 1 Ko] - C:\AdwCleaner[S6].txt
[19/05/2013 - 12:28:24 | N | 1 Ko] - C:\AdwCleaner[S7].txt
[12/08/2013 - 22:49:55 | N | 2 Ko] - C:\AdwCleaner[S8].txt
[27/08/2013 - 20:21:32 | N | 2 Ko] - C:\AdwCleaner[S9].txt
[01/09/2013 - 12:45:02 | N | 0 Ko] - C:\AdwCleaner[S10].txt
[01/09/2013 - 12:45:29 | N | 2 Ko] - C:\AdwCleaner[S11].txt
[14/11/2013 - 20:26:35 | N | 1 Ko] - C:\AdwCleaner[S12].txt
[14/11/2013 - 20:55:33 | N | 10 Ko] - C:\UsbFix [Clean 1] SARA-PC.txt
[14/11/2013 - 21:05:43 | N | 6 Ko] - C:\UsbFix [Scan 1] SARA-PC.txt
[14/11/2013 - 21:08:05 | N | 7 Ko] - C:\UsbFix [Clean 3] SARA-PC.txt
[23/11/2013 - 17:15:18 | N | 2 Ko] - C:\AdwCleaner[S13].txt
[14/12/2013 - 15:18:38 | N | 2 Ko] - C:\AdwCleaner[S14].txt
[28/12/2013 - 11:58:37 | N | 2 Ko] - C:\AdwCleaner[S15].txt
[05/01/2014 - 17:23:42 | N | 2 Ko] - C:\AdwCleaner[S16].txt
[25/02/2014 - 21:55:58 | N | 2 Ko] - C:\AdwCleaner[S17].txt
[20/03/2014 - 18:19:17 | N | 2 Ko] - C:\AdwCleaner[S18].txt
[09/04/2014 - 19:52:35 | N | 2 Ko] - C:\AdwCleaner[S19].txt
[20/08/2014 - 20:56:31 | N | 2 Ko] - C:\AdwCleaner[R1].txt
[20/08/2014 - 20:58:22 | N | 2 Ko] - C:\AdwCleaner[S20].txt
[31/08/2014 - 18:44:48 | N | 8 Ko] - C:\UsbFix [Scan 2] SARA-PC.txt
[31/08/2014 - 18:48:22 | A | 8 Ko] - C:\UsbFix [Clean 5] SARA-PC.txt
[31/08/2014 - 21:44:11 | A | 2 Ko] - C:\AdwCleaner[S21].txt
[02/09/2014 - 13:55:44 | A | 2 Ko] - C:\AdwCleaner[S22].txt
[05/09/2014 - 10:31:02 | A | 3 Ko] - C:\AdwCleaner[S23].txt
[05/09/2014 - 10:31:45 | ASH | 6222888 Ko] - C:\hiberfil.sys
[05/09/2014 - 10:31:49 | ASH | 8297184 Ko] - C:\pagefile.sys
[30/12/2011 - 18:41:40 | N | 0 Ko] - C:\setup.log
[30/12/2011 - 18:44:18 | N | 0 Ko] - C:\setuplogfile.log
[30/12/2011 - 19:04:22 | D] - C:\ASUS.DAT
[22/05/2012 - 19:44:52 | SHD] - C:\$Recycle.Bin
[26/11/2010 - 00:50:57 | RASH | 8 Ko] - C:\BOOTSECT.BAK
[14/07/2009 - 05:20:08 | D] - C:\PerfLogs
[14/07/2009 - 07:08:56 | SHD] - C:\Documents and Settings
[20/11/2010 - 05:40:08 | RASH | 375 Ko] - C:\bootmgr
[26/11/2010 - 16:33:22 | D] - C:\ATI
[11/02/2011 - 17:07:11 | D] - C:\NVIDIA
[12/02/2011 - 16:12:50 | SHD] - C:\Boot
[30/12/2011 - 18:03:04 | D] - C:\Intel
[30/12/2011 - 18:35:48 | D] - C:\eSupport
[01/01/2012 - 03:46:26 | SHD] - C:\Recovery
[10/01/2012 - 14:24:15 | D] - C:\Inetpub
[22/05/2012 - 19:50:08 | RD] - C:\Users
[22/05/2012 - 21:15:48 | D] - C:\dreambox
[01/12/2012 - 17:48:48 | D] - C:\tmp
[05/12/2012 - 23:18:25 | D] - C:\SiLabs
[08/03/2013 - 20:57:18 | D] - C:\See_Technical_V5
[26/03/2013 - 21:07:08 | RHD] - C:\MSOCache
[20/05/2013 - 15:53:59 | D] - C:\ZHP
[30/07/2013 - 12:28:52 | D] - C:\Autodesk
[14/11/2013 - 19:09:47 | D] - C:\NvidiaLogs
[02/09/2014 - 17:35:01 | SHD] - C:\System Volume Information
[02/09/2014 - 17:40:39 | D] - C:\Program Files
[02/09/2014 - 17:48:08 | HD] - C:\ProgramData
[02/09/2014 - 18:15:31 | D] - C:\Program Files (x86)
[05/09/2014 - 10:25:00 | D] - C:\Windows
[05/09/2014 - 11:06:01 | D] - C:\UsbFix

[b]################## | F:\ - Disque USB (FAT32) |[/b]

[29/08/2013 - 10:54:46 | A | 18 Ko] - F:\document type analyse de risque.xlsx
[06/12/2013 - 14:31:06 | A | 2388 Ko] - F:\Rapport de stage.docx
[27/07/2012 - 10:12:42 | A | 4168 Ko] - F:\Installations non soumises au RGIE - Rapport v20120725.doc
[23/07/2005 - 09:38:30 | A | 686559 Ko] - F:\Snatch.avi
[01/02/2007 - 21:53:44 | A | 715778 Ko] - F:\The illusionist.avi
[04/02/2010 - 19:30:50 | A | 720608 Ko] - F:\Sherlock Holmes (Gui Ritchie - 2009 - Fr).avi
[08/02/2014 - 21:12:34 | A | 717292 Ko] - F:\Metastases 2012 FRENCH DVDRIP XviD-BLOODYMARY.avi
[08/02/2014 - 21:31:40 | A | 714722 Ko] - F:\SPECTACLE Dieudonné - Mes excuses -.avi
[08/02/2014 - 21:42:10 | A | 1439796 Ko] - F:\BENVENUTI_AL_SUD.AVI
[03/05/2013 - 14:56:34 | D] - F:\Formation Autocad2010
[13/05/2013 - 15:38:24 | D] - F:\Symbole autocad
[06/12/2013 - 14:33:26 | D] - F:\Stage

[b]################## | Vaccin |[/b]

C:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
F:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

[b]################## | E.O.F | [url=http://www.sosvirus.net/]http://www.sosvirus.net/[/url] | [url=http://www.usbfix.net/]http://www.usbfix.net/[/url] |[/b]