# ----------------------------------------------------
# UsbFix Antivirus Free
# ----------------------------------------------------
# Version : 11.002
# Base de données : 24-07-2018 
# Contact : https://www.usb-antivirus.com/fr/contact
# ----------------------------------------------------
# Type de scan : Full
# Utilisateur : Administrateur (Administrateur)
# Lancé : 27/09/2018 20:11:38
# ----------------------------------------------------

------------ | Disques analysés |

C:\	NTFS	(63GB/75GB)	[Fixed] 
G:\	NTFS	(48GB/75GB)	[Fixed] 
H:\	NTFS	(877GB/932GB)	[Fixed] 
I:\	NTFS	(66GB/932GB)	[Fixed] 
K:\	NTFS	(263GB/1863GB)	[Fixed] 

------------ | Elément(s) détecté(s) |

Supprimé! HKU\S-1-5-21-1220945662-1078081533-1801674531-500\Software\Microsoft\Windows\CurrentVersion\Run|Df5serv
Supprimé! HKLM\Software\Microsoft\Windows\CurrentVersion\Run|WinUpdate
Supprimé! HKU\S-1-5-21-1220945662-1078081533-1801674531-500\Software\Microsoft\Windows\CurrentVersion\Run|Explorer
Supprimé! C:\Documents and Settings\Administrateur\Mes documents\df5srvc.bfe
Supprimé! C:\Documents and Settings\NetworkService\autorun.inf
Supprimé! C:\Documents and Settings\LocalService\autorun.inf
Supprimé! C:\Documents and Settings\Default User\autorun.inf
Supprimé! C:\Documents and Settings\All Users\autorun.inf
Supprimé! C:\Documents and Settings\Administrateur\autorun.inf
Supprimé! K:\Microsoft.lnk
Supprimé! K:\Films 2016.lnk
Supprimé! K:\Film2018.lnk
Supprimé! K:\Film X 2017.lnk
Supprimé! K:\Couture.lnk
Supprimé! K:\$RECYCLE.BIN.lnk
Supprimé! I:\System Volume Information.lnk
Supprimé! I:\RECYCLER.lnk
Supprimé! I:\Microsoft.lnk
Supprimé! I:\Film 2018.lnk
Supprimé! I:\fILM 2017.lnk
Supprimé! I:\Couture.lnk
Supprimé! H:\Microsoft.lnk
Supprimé! H:\Billets avions Macri famille.lnk
Supprimé! H:\Banque BDP.lnk
Supprimé! H:\Affaire Macri-Damay enfants.lnk
Supprimé! H:\Affaire Macri Damay commerce.lnk
Supprimé! H:\$RECYCLE.BIN.lnk
Supprimé! G:\Microsoft.lnk
Supprimé! G:\Appart Grau du Roi.lnk
Supprimé! G:\Analyses médicales.lnk
Supprimé! G:\affaire Damay.lnk
Supprimé! G:\Adobe CS5.lnk
Supprimé! G:\$RECYCLE.BIN.lnk

------------ | Run |

F2 - HKLM\..\Winlogon : [Shell] Explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] C:\WINDOWS\system32\userinit.exe,
04 - HKCU\..\Run : [WinMover] "C:\Program Files\WinMover\WinMover.exe" /q
04 - HKCU\..\Run : [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
04 - HKCU\..\Run : [Df5serv] Wscript.exe //e:VBScript "C:\Documents and Settings\Administrateur\Mes documents\df5srvc.bfe"
04 - HKCU\..\Run : [Explorer] Wscript.exe //e:VBScript "C:\Documents and Settings\Administrateur\Local Settings\Application Data\Microsoft\CD Burning\dekstop.ini"
04 - HKLM\..\Run : [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
04 - HKLM\..\Run : [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
04 - HKLM\..\Run : [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
04 - HKLM\..\Run : [AdobeAAMUpdater-1.0] "C:\Program Files\Fichiers communs\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
04 - HKLM\..\Run : [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
04 - HKLM\..\Run : [QuickTime Task] "C:\Program Files\QT Lite\QTTask.exe" -atboottime
04 - HKLM\..\Run : [WinUpdate] Wscript.exe //e:VBScript "C:\WINDOWS\:Microsoft Office Update for Windows XP.sys"
04 - HKU\S-1-5-21-1220945662-1078081533-1801674531-500\..\Run : [WinMover] "C:\Program Files\WinMover\WinMover.exe" /q
04 - HKU\S-1-5-21-1220945662-1078081533-1801674531-500\..\Run : [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
04 - HKU\S-1-5-21-1220945662-1078081533-1801674531-500\..\Run : [Df5serv] Wscript.exe //e:VBScript "C:\Documents and Settings\Administrateur\Mes documents\df5srvc.bfe"
04 - HKU\S-1-5-21-1220945662-1078081533-1801674531-500\..\Run : [Explorer] Wscript.exe //e:VBScript "C:\Documents and Settings\Administrateur\Local Settings\Application Data\Microsoft\CD Burning\dekstop.ini"
04 - HKU\S-1-5-20\..\RunOnce : [JkDefrag] rundll32 advpack.dll,LaunchINFSection JKDEFRAG.INF,RunOnce,1,N
04 - HKU\S-1-5-20\..\RunOnce : [SweetRegistry] rundll32 advpack.dll,LaunchINFSection SweetReg.inf,PerUserStub
04 - HKU\S-1-5-18\..\RunOnce : [JkDefrag] rundll32 advpack.dll,LaunchINFSection JKDEFRAG.INF,RunOnce,1,N
04 - HKU\S-1-5-18\..\RunOnce : [SweetRegistry] rundll32 advpack.dll,LaunchINFSection SweetReg.inf,PerUserStub
04GS - Alertes de surveillance de l'encre - HP Officejet Pro 8610.lnk : C:\WINDOWS\system32\RunDll32.exe
04GS - Adobe Gamma Loader.exe.lnk : C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
04GS - Ralink Wireless Utility.lnk : C:\Program Files\RALINK\Common\RaUI.exe

------------ | C:\ %SystemDrive% - Disque Fixe (NTFS) |

[23/09/2008 - 06:01:14 | A | 1 Ko] - changelog_MassStorage.txt
[11/03/2015 - 22:30:33 | RASH | 0 Ko] - IO.SYS
[11/03/2015 - 22:30:33 | RASH | 0 Ko] - MSDOS.SYS
[11/03/2015 - 22:30:33 | A | 0 Ko] - CONFIG.SYS
[27/09/2018 - 18:09:00 | ASH | 2095104 Ko] - pagefile.sys
[27/09/2018 - 20:08:24 | A | 1 Ko] - Documents and Settings.lnk
[27/09/2018 - 20:08:24 | A | 0 Ko] - KPCMS.lnk
[27/09/2018 - 20:08:24 | A | 0 Ko] - Microsoft.lnk
[27/09/2018 - 20:08:24 | A | 0 Ko] - MSOCache.lnk
[27/09/2018 - 20:08:24 | A | 0 Ko] - Program Files.lnk
[03/02/2006 - 08:00:22 | RASH | 11 Ko] - dekstop.ini
[04/07/2016 - 13:19:02 | ASH | 0 Ko] - boot.ini
[27/09/2018 - 19:42:30 | RASH | 0 Ko] - autorun.inf
[14/04/2008 - 14:00:00 | N | 46 Ko] - NTDETECT.COM
[14/04/2008 - 14:00:00 | N | 5 Ko] - Bootfont.bin
[11/03/2015 - 22:30:33 | A | 0 Ko] - AUTOEXEC.BAT
[14/04/2008 - 14:00:00 | RASH | 246 Ko] - ntldr
[27/09/2018 - 14:06:10 | D] - KPCMS
[27/09/2018 - 14:06:11 | RHD] - MSOCache
[27/09/2018 - 14:06:54 | SHD] - RECYCLER
[27/09/2018 - 14:06:56 | D] - TickeResto
[27/09/2018 - 14:19:21 | D] - Microsoft
[27/09/2018 - 14:27:40 | D] - Documents and Settings
[27/09/2018 - 16:23:02 | RD] - Program Files
[27/09/2018 - 18:34:36 | D] - UsbFix
[27/09/2018 - 19:43:26 | D] - WINDOWS

------------ | G:\ - Disque Fixe (NTFS) |

[24/05/2014 - 20:57:50 | A | 1033 Ko] - Caisse 2014.xlsx
[09/07/2014 - 15:10:38 | A | 386 Ko] - Fichier clients Boulangerie Pont-Tournant.xlsx
[12/11/2015 - 19:01:25 | A | 5081 Ko] - Code wfiremy.rtf
[10/03/2014 - 11:36:26 | A | 858 Ko] - Reunion ecole poissy 10022014.pdf
[16/03/2015 - 12:56:22 | A | 4692 Ko] - Non lieu Procureur022013.pdf
[27/09/2018 - 20:08:29 | A | 0 Ko] - Microsoft.lnk
[27/09/2018 - 20:08:29 | A | 0 Ko] - $RECYCLE.BIN.lnk
[27/09/2018 - 20:08:29 | A | 0 Ko] - Adobe CS5.lnk
[27/09/2018 - 20:08:30 | A | 0 Ko] - affaire Damay.lnk
[27/09/2018 - 20:08:30 | A | 0 Ko] - Analyses médicales.lnk
[27/09/2018 - 20:08:30 | A | 0 Ko] - Appart Grau du Roi.lnk
[03/04/2017 - 17:50:03 | A | 141 Ko] - IMG-20170401-WA0000.jpg
[03/04/2017 - 17:53:44 | A | 151 Ko] - IMG-20170401-WA0001.jpg
[03/04/2017 - 17:56:00 | A | 248 Ko] - IMG-20170401-WA0003.jpg
[03/04/2017 - 17:57:07 | A | 155 Ko] - IMG-20170401-WA0002.jpg
[27/09/2018 - 17:32:02 | A | 13 Ko] - Image virus raccourci.jpg
[03/02/2006 - 08:00:22 | RASH | 11 Ko] - dekstop.ini
[27/09/2018 - 19:42:30 | RASH | 0 Ko] - autorun.inf
[30/10/2015 - 18:08:50 | A | 266 Ko] - connection team viewer serveur.bmp
[27/09/2018 - 15:23:12 | D] - $RECYCLE.BIN
[27/09/2018 - 14:07:53 | SHD] - found.000
[27/09/2018 - 14:08:24 | SHD] - RECYCLER
[27/09/2018 - 14:21:55 | D] - IBM Mutuelle- Securité Sociale
[27/09/2018 - 17:16:21 | D] - Fraude carte bleue Vis premier
[27/09/2018 - 17:16:21 | D] - Free
[27/09/2018 - 17:16:23 | D] - IBM Bulletin de paye
[27/09/2018 - 17:16:30 | D] - Lettre changement adresse
[27/09/2018 - 18:19:08 | D] - Diaporama voyage
[27/09/2018 - 18:19:08 | D] - Divers actes
[27/09/2018 - 18:19:09 | D] - Divorce
[27/09/2018 - 18:19:26 | D] - IBM CE
[27/09/2018 - 18:19:28 | D] - Laetitia
[27/09/2018 - 18:19:33 | D] - Logiciel
[27/09/2018 - 18:19:34 | D] - MAAF
[27/09/2018 - 18:19:35 | D] - Papier Divers
[27/09/2018 - 18:19:36 | D] - Photo x Mario
[27/09/2018 - 18:19:40 | D] - Photos Rémy
[27/09/2018 - 18:19:46 | D] - Pswd connections
[27/09/2018 - 18:19:49 | D] - Retraite
[27/09/2018 - 18:19:50 | D] - Senegal
[27/09/2018 - 18:22:23 | D] - Location Baillargues
[27/09/2018 - 19:42:30 | D] - Impots
[27/09/2018 - 19:44:06 | D] - Banque Dupuy Perceval
[27/09/2018 - 19:44:06 | D] - Banque Morgan Stanley
[27/09/2018 - 19:44:07 | D] - Chasse Notre Dame de Londres
[27/09/2018 - 19:44:07 | D] - Compte commun SG Florence
[27/09/2018 - 19:44:14 | D] - ESPEROU IBM
[27/09/2018 - 20:03:30 | D] - affaire Damay
[27/09/2018 - 20:03:32 | D] - Analyses médicales
[27/09/2018 - 20:03:33 | D] - Appart Grau du Roi
[27/09/2018 - 20:03:35 | D] - Autoroute
[27/09/2018 - 20:08:32 | D] - Adobe CS5

------------ | H:\ - Disque Fixe (NTFS) |

[05/05/2017 - 15:13:52 | A | 12 Ko] - Facture telephone senegal.xlsx
[02/09/2016 - 16:21:19 | A | 1477 Ko] - Mario Macri_2016_09_01_165117-N°G03Z8Q021PR.pdf
[08/05/2017 - 18:10:19 | A | 20 Ko] - Facture telephone senegal.pdf
[27/09/2018 - 20:09:28 | A | 0 Ko] - Microsoft.lnk
[27/09/2018 - 20:09:28 | A | 0 Ko] - $RECYCLE.BIN.lnk
[27/09/2018 - 20:09:28 | A | 0 Ko] - Affaire Macri Damay commerce.lnk
[27/09/2018 - 20:09:28 | A | 0 Ko] - Affaire Macri-Damay enfants.lnk
[27/09/2018 - 20:09:29 | A | 0 Ko] - Banque BDP.lnk
[27/09/2018 - 20:09:29 | A | 0 Ko] - Billets avions Macri famille.lnk
[03/02/2006 - 08:00:22 | RASH | 11 Ko] - dekstop.ini
[27/09/2018 - 19:42:30 | RASH | 0 Ko] - autorun.inf
[27/09/2018 - 15:16:43 | D] - $RECYCLE.BIN
[27/09/2018 - 14:08:51 | SHD] - RECYCLER
[27/09/2018 - 18:19:58 | D] - Affaire Macri-Damay enfants
[27/09/2018 - 18:20:00 | D] - Billets avions Macri famille
[27/09/2018 - 18:20:00 | D] - Examen midical
[27/09/2018 - 18:20:01 | D] - Identite Mario
[27/09/2018 - 18:20:01 | D] - Impot Macri
[27/09/2018 - 18:20:02 | D] - Nouveau dossier
[27/09/2018 - 18:20:09 | D] - Photos
[27/09/2018 - 18:20:15 | D] - SARL Traiteur Macri
[27/09/2018 - 18:20:37 | D] - Sauvegarde photos carte memoire telephone 2018
[27/09/2018 - 18:20:39 | D] - sauvegarde Thinkpad
[27/09/2018 - 18:20:41 | D] - Secu - Mutuelle
[27/09/2018 - 18:20:42 | D] - smartcaisse
[27/09/2018 - 19:44:56 | D] - Affaire Macri Damay commerce
[27/09/2018 - 19:44:59 | D] - Banque BDP
[27/09/2018 - 19:45:35 | D] - Sauvegarde SARL portable 05112015

------------ | I:\ - Disque Fixe (NTFS) |

[27/09/2018 - 20:10:13 | A | 0 Ko] - Microsoft.lnk
[27/09/2018 - 20:10:13 | A | 0 Ko] - Couture.lnk
[27/09/2018 - 20:10:13 | A | 0 Ko] - fILM 2017.lnk
[27/09/2018 - 20:10:13 | A | 0 Ko] - Film 2018.lnk
[27/09/2018 - 20:10:13 | A | 0 Ko] - RECYCLER.lnk
[03/02/2006 - 08:00:22 | RASH | 11 Ko] - dekstop.ini
[27/09/2018 - 19:42:30 | RASH | 0 Ko] - autorun.inf
[27/09/2018 - 14:09:36 | D] - fILM 2017
[27/09/2018 - 14:09:36 | D] - Film 2018
[27/09/2018 - 14:09:37 | SHD] - RECYCLER
[27/09/2018 - 17:17:42 | D] - Couture

------------ | K:\ - Disque Fixe (NTFS) |

[27/09/2018 - 20:10:55 | A | 0 Ko] - Microsoft.lnk
[27/09/2018 - 20:10:56 | A | 0 Ko] - $RECYCLE.BIN.lnk
[27/09/2018 - 20:10:56 | A | 0 Ko] - Couture.lnk
[27/09/2018 - 20:10:56 | A | 0 Ko] - Film X 2017.lnk
[27/09/2018 - 20:10:56 | A | 0 Ko] - Film2018.lnk
[27/09/2018 - 20:10:56 | A | 0 Ko] - Films 2016.lnk
[03/02/2006 - 08:00:22 | RASH | 11 Ko] - dekstop.ini
[27/09/2018 - 19:42:30 | RASH | 0 Ko] - autorun.inf
[27/09/2018 - 14:10:09 | SHD] - $RECYCLE.BIN
[27/09/2018 - 14:10:32 | D] - Films 2016
[27/09/2018 - 14:10:32 | D] - Films 2017
[27/09/2018 - 14:10:45 | SHD] - RECYCLER
[27/09/2018 - 14:30:50 | D] - Film2018
[27/09/2018 - 17:18:02 | D] - Couture
[27/09/2018 - 20:11:13 | D] - Film X 2017
[27/09/2018 - 20:11:17 | D] - logicielHDD
[27/09/2018 - 20:11:21 | D] - Musiques
[27/09/2018 - 20:11:25 | D] - Recycled

Elément(s) détecté(s) : 47
Elément(s) analysé(s) : 69684 en 00h 00m 07s

# UsbFix-Report-09.txt [12111B]

------------ | E.O.F  |