# ---------------------------------------------------- # UsbFix Antivirus Free # ---------------------------------------------------- # Version : 11.011 # Database : 2019.01.29 # Contact : https://www.usb-antivirus.com/contact # ---------------------------------------------------- # Scan type : Full # User : Saint-Louis (Administrator) # Device : DESKTOP-MUDRJQK # Started : 10/02/2019 16:24:22 # ---------------------------------------------------- ------------ | Analyzed disks | C:\ NTFS (342GB/915GB) [Fixed] D:\ NTFS (2GB/15GB) [Fixed] F:\ NTFS (148GB/466GB) [Fixed] H:\ FAT32 (3GB/15GB) [Removable] ------------ | Infected elements | Restored! H:\Files\[www.Cpasbien.me] Mandela Long Walk to Freedom 2013 FRENCH BRRiP XviD-CARPEDIEM.avi Restored! H:\Files\598\sepnowhq.js Restored! H:\Files\admis 1AF 2018-19.xlsx Restored! H:\Files\cbSetup.exe Restored! H:\Files\cobian-backup-11-2-0-582-es-en-br-fr-de-it-cn-ru-win.exe Restored! H:\Files\HandBrake-1.1.1-x86_64-Win_GUI.exe Restored! H:\Files\kramer.vs.kramer.(1979).avi Restored! H:\Files\L.enfant.De.Buchenwald.2015_4.0.avi Restored! H:\Files\La promesse.2016_4.3.avi Restored! H:\Files\Le petit prince.2015_4.2.mkv Restored! H:\Files\Les heures sombres_Churchill.2017_4.2.avi Restored! H:\Files\libdvdcss-2.dll Restored! H:\Files\Lincoln.avi Restored! H:\Files\L'Insulte.2017_4,4.avi Restored! H:\Files\LIVRET AVENT C 2018 - new.pdf Restored! H:\Files\Mauvaises.Herbes.2018_4,4.avi Restored! H:\Files\NS3_Mathématiques_Tableau synoptique.docx Restored! H:\Files\NS3_Tableau synoptique des matières.docx Restored! H:\Files\NS4_Maths_Tableau synoptique.docx Restored! H:\Files\NS4_Synoptique_Programmes par séries.docx Restored! H:\Files Deleted! H:\admis 1AF 2018-19.xlsx.lnk Deleted! H:\cbSetup.exe.lnk Deleted! H:\cobian-backup-11-2-0-582-es-en-br-fr-de-it-cn-ru-win.exe.lnk Deleted! H:\Files.bat Deleted! H:\files\598\sepnowhq.js Deleted! H:\files\598 Deleted! H:\HandBrake-1.1.1-x86_64-Win_GUI.exe.lnk Deleted! H:\L.enfant.De.Buchenwald.2015_4.0.avi.lnk Deleted! H:\La promesse.2016_4.3.avi.lnk Deleted! H:\Le petit prince.2015_4.2.mkv.lnk Deleted! H:\Les heures sombres_Churchill.2017_4.2.avi.lnk Deleted! H:\libdvdcss-2.dll.lnk Deleted! H:\LIVRET AVENT C 2018 - new.pdf.lnk Deleted! H:\Mauvaises.Herbes.2018_4,4.avi.lnk Deleted! H:\NS3_Mathématiques_Tableau synoptique.docx.lnk Deleted! H:\NS3_Tableau synoptique des matières.docx.lnk Deleted! H:\NS4_Maths_Tableau synoptique.docx.lnk Deleted! H:\NS4_Synoptique_Programmes par séries.docx.lnk ------------ | Run | F2 - HKLM\..\Winlogon : [Shell] explorer.exe F2 - [x64] HKLM\..\Winlogon : [Shell] explorer.exe F2 - [x64] HKLM\..\Winlogon : [Userinit] C:\Windows\system32\userinit.exe,c:\Program Files (x86)\HP\HP ProtectTools Security Manager\Bin\DPAgent.exe, 04 - HKCU\..\Run : [OneDrive] "C:\Users\Saint-Louis\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background 04 - HKCU\..\Run : [Web Companion] C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize 04 - HKCU\..\Run : [Copernic Desktop Search - Home] "C:\Program Files (x86)\Copernic Desktop Search - Home\DesktopSearchService.exe" /tray 04 - HKCU\..\Run : [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler 04 - HKCU\..\Run : [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR 04 - HKCU\..\Run : [GoogleChromeAutoLaunch_15BD2E1CEC2536FE57DBEAB7348EEC68] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5 04 - HKLM\..\Run : [IMSS] "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe" "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe" 60 04 - HKLM\..\Run : [Discover HP Touchpoint Manager] C:\Program Files (x86)\HP\HP Touchpoint Manager\Discover HP Touchpoint Manager\LHBeacon.exe 04 - HKLM\..\Run : [HPNotifications] C:\Program Files (x86)\HP\HP Notifications\HPNotifications.exe 04 - HKLM\..\Run : [HP Business Slim Keyboard] c:\Program Files (x86)\HP\HP Business Slim Keyboard\SKWLUSB.exe 04 - HKLM\..\Run : [CLMLServer_For_P2G8] "c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe" 04 - HKLM\..\Run : [CLVirtualDrive] "c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe" /R 04 - HKLM\..\Run : [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices 04 - HKLM\..\Run : [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe 04 - HKLM\..\Run : [Everything] "C:\Program Files (x86)\Everything\Everything.exe" -startup 04 - HKLM\..\Run : [Cobian Backup 11 interface] "C:\Program Files (x86)\Cobian Backup 11\cbInterface.exe" -service 04 - HKLM\..\Run : [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup 04 - HKLM\..\Run : [IndexSearch] "C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe" 04 - HKLM\..\Run : [PaperPort PTD] "C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe" 04 - HKLM\..\Run : [PDFHook] C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro5hook.exe 04 - HKLM\..\Run : [PDF5 Registry Controller] C:\Program Files (x86)\Nuance\PDF Viewer Plus\RegistryController.exe 04 - HKLM\..\Run : [ControlCenter4] C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe /autorun 04 - HKLM\..\Run : [BrStsMon00] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN 04 - HKLM\..\Run : [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" 04 - HKLM\..\Run : [IObit Malware Fighter] "C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe" /autostart 04 - HKLM\..\Run : [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui 04 - [x64] HKLM\..\Run : [SecurityHealth] %ProgramFiles%\Windows Defender\MSASCuiL.exe 04 - [x64] HKLM\..\Run : [IAStorIcon] "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60 04 - [x64] HKLM\..\Run : [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui 04 - HKU\S-1-5-19\..\Run : [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup 04 - HKU\S-1-5-20\..\Run : [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup 04 - HKU\S-1-5-21-2474231021-1058398886-1791856984-1001\..\Run : [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup 04 - HKU\S-1-5-21-2474231021-1058398886-1791856984-1002\..\Run : [OneDrive] "C:\Users\Saint-Louis\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background 04 - HKU\S-1-5-21-2474231021-1058398886-1791856984-1002\..\Run : [Web Companion] C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize 04 - HKU\S-1-5-21-2474231021-1058398886-1791856984-1002\..\Run : [Copernic Desktop Search - Home] "C:\Program Files (x86)\Copernic Desktop Search - Home\DesktopSearchService.exe" /tray 04 - HKU\S-1-5-21-2474231021-1058398886-1791856984-1002\..\Run : [ISUSPM] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler 04 - HKU\S-1-5-21-2474231021-1058398886-1791856984-1002\..\Run : [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR 04 - HKU\S-1-5-21-2474231021-1058398886-1791856984-1002\..\Run : [GoogleChromeAutoLaunch_15BD2E1CEC2536FE57DBEAB7348EEC68] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5 04 - HKU\S-1-5-21-2474231021-1058398886-1791856984-1001\..\RunOnce : [WAB Migrate] %ProgramFiles%\Windows Mail\wab.exe /Upgrade 04GS - Monitor Ink Alerts - HP Deskjet 2640 Series Class Driver.lnk : C:\WINDOWS\system32\RunDll32.exe 04GS - HP Velocity.lnk : C:\Program Files\HP\HP Velocity\SysTrayApp.exe ------------ | Tasks | Task - Avast Emergency Update --> C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe Task - AvastUpdateTaskMachineCore --> C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe /c Task - AvastUpdateTaskMachineUA --> C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe /ua /installsource scheduler Task - Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 --> C:\Program Files\Bitdefender Agent\WatchDog.exe repair Task - Bitdefender AgentTask_6F2980EE6088481484E6D8285516CD07 --> C:\Program Files\Bitdefender Home Scanner\hvaag.exe Task - CCleaner Update --> C:\Program Files\CCleaner\CCUpdate.exe Task - CCleanerSkipUAC --> "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0) Task - DropboxUpdateTaskMachineCore --> C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /c Task - DropboxUpdateTaskMachineUA --> C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler Task - GoogleUpdateTaskMachineCore --> C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c Task - GoogleUpdateTaskMachineUA --> C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler Task - HPCeeScheduleForSaint-Louis --> C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForSaint-Louis (null) Task - HPCustParticipation HP Deskjet 2640 series --> "C:\Program Files\HP\HP Deskjet 2640 series\Bin\HPCustPartic.exe" /UA 13.0 /DDV 0x0b05 Task - HPEA3JOBS --> C:\Program Files\HP\HP ePrint\hpeprint.exe /CheckJobs Task - HPJumpStartLaunch --> "C:\Program Files (x86)\HP\HP JumpStart Launch\HPJumpStartLaunch.exe" Task - Intel PTT EK Recertification --> "C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe" Task - OneDrive Standalone Update Task-S-1-5-21-2474231021-1058398886-1791856984-1002 --> %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe ------------ | C:\ %SystemDrive% - Fixed drive (NTFS) | [10/02/2019 - 16:13:49 | ASH | 3305968 Ko] - hiberfil.sys [10/02/2019 - 16:13:50 | ASH | 5242880 Ko] - pagefile.sys [10/02/2019 - 16:13:50 | ASH | 262144 Ko] - swapfile.sys [31/03/2017 - 10:07:08 | RSHD] - SYSTEM.SAV [06/10/2016 - 16:09:40 | A | 2 Ko] - win-add.mof [03/08/2018 - 13:07:41 | SHD] - $Recycle.Bin [29/07/2016 - 17:28:44 | SHD] - Documents and Settings [31/03/2017 - 15:36:28 | RSHD] - hp [31/03/2017 - 15:48:51 | D] - Intel [31/03/2017 - 16:07:18 | RASH | 0 Ko] - OS [11/04/2018 - 18:38:20 | D] - PerfLogs [30/07/2018 - 18:16:53 | RHD] - MSOCache [07/08/2018 - 16:45:01 | HD] - $SysReset [13/08/2018 - 21:32:23 | SHD] - Recovery [13/08/2018 - 21:37:12 | RD] - Users [14/08/2018 - 01:18:42 | D] - inetpub [14/08/2018 - 20:17:56 | D] - AA_DOC [27/08/2018 - 14:40:07 | D] - Horaires [31/08/2018 - 11:25:37 | D] - SWSETUP [03/10/2018 - 16:22:54 | D] - A_JMG_Ancien [30/10/2018 - 14:33:00 | D] - AA_Perso [25/11/2018 - 17:05:03 | D] - Brother [27/11/2018 - 17:16:28 | D] - AA_RECUPERATION [28/11/2018 - 16:19:36 | D] - A_JMG_2018-2019 [30/11/2018 - 17:49:37 | D] - AA_SLG [07/12/2018 - 17:48:03 | RD] - Program Files [26/12/2018 - 10:20:51 | D] - A_Turgeau [05/01/2019 - 12:01:07 | D] - calcul@TICE [18/01/2019 - 06:34:47 | HD] - ProgramData [31/01/2019 - 21:18:43 | D] - Films [07/02/2019 - 03:08:02 | D] - Windows [10/02/2019 - 16:16:21 | HD] - OneDriveTemp [10/02/2019 - 16:23:24 | RD] - Program Files (x86) ------------ | D:\ - Fixed drive (NTFS) | [31/03/2017 - 17:51:05 | ASH | 0 Ko] - RPCONFIG.LOG [31/03/2017 - 17:49:57 | ASH | 0 Ko] - RP.ini [16/07/2016 - 09:06:12 | ASH | 1141 Ko] - bootmgr.efi [30/07/2018 - 16:41:13 | SHD] - $RECYCLE.BIN [16/07/2016 - 12:23:30 | ASH | 378 Ko] - bootmgr [31/03/2017 - 17:51:27 | ASHD] - hp [31/03/2017 - 17:51:27 | SHD] - boot [31/03/2017 - 17:51:27 | ASHD] - RecoveryImage [31/03/2017 - 17:51:27 | SD] - Recovery [31/03/2017 - 17:51:27 | SHD] - SOURCES [31/03/2017 - 17:51:27 | SHD] - EFI ------------ | F:\ - Fixed drive (NTFS) | [03/08/2018 - 00:06:38 | SHD] - $RECYCLE.BIN [14/03/2018 - 22:14:05 | D] - Nokia [16/04/2018 - 09:14:39 | D] - Cayes_2004 [16/04/2018 - 09:16:26 | D] - CAP_2010 [29/07/2018 - 14:55:35 | D] - SLG_Ancien [25/10/2018 - 17:52:53 | D] - AA_SLG [25/10/2018 - 18:12:54 | D] - Horaires [25/10/2018 - 18:12:56 | D] - A_JMG_2018-2019 [25/10/2018 - 18:13:09 | D] - A_JMG_Ancien [25/10/2018 - 18:13:12 | D] - A_Turgeau [25/10/2018 - 20:25:16 | D] - AA_Perso ------------ | H:\ - Removable drive (FAT32) | [29/11/2018 - 13:21:08 | RSHD] - Autorun.inf [22/08/2018 - 14:59:40 | D] - transfert JMG-T [22/08/2018 - 15:00:18 | D] - Transfert T_JMG [23/09/2018 - 20:12:42 | D] - Chants [02/12/2018 - 15:03:36 | D] - Livres récents [09/12/2018 - 06:56:52 | D] - Famille mennaisienne [12/12/2018 - 12:20:16 | D] - Files [07/01/2019 - 08:40:24 | D] - Reseau [18/01/2019 - 11:30:30 | D] - Openoffice Infected elements : 58 Analyzed elements : 97096 in 00h 00m 18s # UsbFix-Report-01.txt [12803B] ------------ | E.O.F |