You are on page 1of 4

[b]############################## | UsbFix V 7.

171 | [Nettoyage][/b]
Utilisateur: PC BENLAY (Administrateur) # PCBENLAY-PC
Mis jour le 18/05/2014 par El Desaparecido - SosVirus
Lanc 22:28:59 | 17/09/2014
Site Web : [url=http://www.usbfix.net/]http://www.usbfix.net/[/url]
Changelog : [url=http://www.usbfix.net/maj/]http://www.usbfix.net/maj/[/url]
Assistance : [url=http://www.sosvirus.net/forum-virus-securite.html]http://www.s
osvirus.net/forum-virus-securite.html[/url]
Upload Malware : [url=http://www.sosvirus.net/upload_malware.php]http://www.sosv
irus.net/upload_malware.php[/url]
Contact : [url=http://www.usbfix.net/contact/]http://www.usbfix.net/contact/[/ur
l]
PC: Quanta (3069)
CPU: Intel(R) Celeron(R) CPU
900 @ 2.20GHz
RAM -> [Total : 2975 Mo| Free : 1986 Mo]
Bios: Hewlett-Packard
Boot: Normal boot
OS: Microsoft Windows7 dition Intgrale (6.1.7600 32-Bit)
WB: Windows Internet Explorer : 8.0.7600.16385
WB: Mozilla Firefox : 32.0.1
SC:
WU:
AV:
AS:
AS:
FW:
FW:

Security Center [Enabled]


Windows Update [Enabled]
ESET Smart Security 7.0 [Enabled | (!) Outdated]
Windows Defender [Enabled | (!) Outdated]
ESET Smart Security 7.0 [Enabled | (!) Outdated]
Pare-feu personnel d'ESET [Enabled]
Windows FireWall [(!) Disabled]

C:\
D:\
E:\
F:\

(%SystemDrive%) -> Disque fixe # 98 Go (69 Go libre(s) - 70%) [] # NTFS


-> Disque fixe # 368 Go (221 Go libre(s) - 60%) [] # NTFS
-> CD-ROM
-> Disque amovible # 7 Go (6 Go libre(s) - 85%) [HANAA] # FAT32

[b]################## | Processus Stopps |[/b]


C:\Windows\explorer.exe (ID: 1376|ParentID: 1352|PC BENLAY)
C:\Windows\System32\spoolsv.exe (ID: 1416|ParentID: 516)
C:\Windows\System32\taskhost.exe (ID: 1460|ParentID: 516|PC BENLAY)
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceServi
ce.exe (ID: 1668|ParentID: 516|Systme)
C:\Program Files\Bonjour\mDNSResponder.exe (ID: 1716|ParentID: 516|Systme)
C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (ID: 1748|P
arentID: 516|Systme)
C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (ID: 1784|ParentID: 51
6|SERVICE RSEAU)
C:\Windows\System32\hkcmd.exe (ID: 1940|ParentID: 1376|PC BENLAY)
C:\Windows\System32\igfxpers.exe (ID: 1948|ParentID: 1376|PC BENLAY)
C:\Program Files\USB Disk Security\USBGuard.exe (ID: 1964|ParentID: 1376|PC BENL
AY)
C:\Windows\System32\lxbkcoms.exe (ID: 292|ParentID: 516|Systme)
C:\Program Files\iTunes\iTunesHelper.exe (ID: 704|ParentID: 1376|PC BENLAY)
C:\Program Files\Lexmark X1100 Series\LXBKbmgr.exe (ID: 820|ParentID: 1376|PC BE
NLAY)
C:\Program Files\ma-config.com\MaConfigAgent.exe (ID: 924|ParentID: 516|Systme)
C:\Program Files\Common Files\microsoft shared\VS7DEBUG\mdm.exe (ID: 1148|Parent

ID: 516|Systme)
C:\Program Files\REALTEK\RTL8187 Wireless LAN Utility\RtlService.exe (ID: 1684|P
arentID: 516|Systme)
C:\Program Files\Common Files\Java\Java Update\jusched.exe (ID: 1296|ParentID: 1
376|PC BENLAY)
C:\Program Files\Internet Download Manager\IDMan.exe (ID: 1292|ParentID: 1376|PC
BENLAY)
C:\Program Files\Lexmark X1100 Series\LXBKbmon.exe (ID: 1284|ParentID: 820|PC BE
NLAY)
C:\Program Files\REALTEK\RTL8187 Wireless LAN Utility\RtWLan.exe (ID: 1936|Paren
tID: 1684|Systme)
C:\Program Files\Supercopier\supercopier.exe (ID: 2080|ParentID: 1376|PC BENLAY)
C:\Program Files\Skype\Phone\Skype.exe (ID: 2300|ParentID: 1376|PC BENLAY)
C:\Program Files\iPod\bin\iPodService.exe (ID: 3180|ParentID: 516|Systme)
C:\Windows\System32\SearchIndexer.exe (ID: 3240|ParentID: 516|Systme)
C:\Program Files\Internet Download Manager\IEMonitor.exe (ID: 3340|ParentID: 129
2|PC BENLAY)
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (ID: 398
4|ParentID: 1956|PC BENLAY)
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (I
D: 3032|ParentID: 516|Systme)
C:\Program Files\Microsoft Office\Office12\WINWORD.EXE (ID: 1312|ParentID: 1376|
PC BENLAY)
C:\Program Files\Windows Media Player\wmpnetwk.exe (ID: 328|ParentID: 516|SERVIC
E RSEAU)
C:\Program Files\Foxit Software\Foxit Reader\Foxit Reader.exe (ID: 4236|ParentID
: 1376|PC BENLAY)
C:\Program Files\Mozilla Firefox\firefox.exe (ID: 2524|ParentID: 1376|PC BENLAY)
C:\Windows\System32\WUDFHost.exe (ID: 5856|ParentID: 892|SERVICE LOCAL)
[b]################## | Autorun |[/b]
F:\gta_sa.exe (2).lnk -> F:\
[b]################## | Recherche gnrique |[/b]
Supprim! F:\gta_sa.exe (2).lnk
Supprim! F:\Skypee\googleupdate.a3x
(!) Fichiers temporaires supprims.
[b]################## | Registre |[/b]
Supprim! HKU\S-1-5-21-2677149150-2032248280-4292119169-1000\Software\.\.\.\.\Moun
tpoints2\{906b2a9a-0b2f-11e4-bc0d-00238bb1d62d}
[b]################## | Regedit Run |[/b]
F2 - HKLM\..\Winlogon : [Shell] explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] C:\Windows\system32\userinit.exe,
04 - HKCU\..\Run : [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe
/onboot
04 - HKCU\..\Run : [LightScribe Control Panel] C:\Program Files\Common Files\Lig
htScribe\LightScribeControlPanel.exe -hidden
04 - HKCU\..\Run : [ultracopier] "C:\Program Files\Supercopier\supercopier.exe"
04 - HKCU\..\Run : [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /
regrun
04 - HKLM\..\Run : [IgfxTray] C:\Windows\system32\igfxtray.exe
04 - HKLM\..\Run : [HotKeysCmds] C:\Windows\system32\hkcmd.exe
04 - HKLM\..\Run : [Persistence] C:\Windows\system32\igfxpers.exe

04 - HKLM\..\Run : [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Te


chnology\IAStorIconLaunch.exe "C:\Program Files\Intel\Intel(R) Rapid Storage Tec
hnology\IAStorIcon.exe" 60
04 - HKLM\..\Run : [USB Security] C:\Program Files\USB Disk Security\USBGuard.ex
e
04 - HKLM\..\Run : [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /
hide /waitservice
04 - HKLM\..\Run : [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
04 - HKLM\..\Run : [lxbkbmgr.exe] "C:\Program Files\Lexmark X1100 Series\lxbkbmg
r.exe"
04 - HKLM\..\Run : [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java
Update\jusched.exe"
04 - HKU\S-1-5-19\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
/autoRun
04 - HKU\S-1-5-20\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
/autoRun
04 - HKU\S-1-5-21-2677149150-2032248280-4292119169-1000\..\Run : [IDMan] C:\Prog
ram Files\Internet Download Manager\IDMan.exe /onboot
04 - HKU\S-1-5-21-2677149150-2032248280-4292119169-1000\..\Run : [LightScribe Co
ntrol Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.e
xe -hidden
04 - HKU\S-1-5-21-2677149150-2032248280-4292119169-1000\..\Run : [ultracopier] "
C:\Program Files\Supercopier\supercopier.exe"
04 - HKU\S-1-5-21-2677149150-2032248280-4292119169-1000\..\Run : [Skype] "C:\Pro
gram Files\Skype\Phone\Skype.exe" /minimized /regrun
04 - HKU\S-1-5-19\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
[b]################## | C:\ %SystemDrive% - Disque Fixe (NTFS) |[/b]
[10/06/2009
[16/09/2014
[16/09/2014
[13/06/2014
[30/06/2014
[10/06/2009
[14/07/2009
[14/07/2009
[13/06/2014
[13/06/2014
[13/06/2014
[13/06/2014
[13/06/2014
[13/06/2014
[13/06/2014
[17/06/2014
[30/06/2014
[03/07/2014
[04/09/2014
[04/09/2014
[14/09/2014
[16/09/2014
[16/09/2014

23:42:20
09:02:13
09:02:13
13:38:39
02:40:43
23:42:20
04:37:05
06:53:55
10:32:02
13:11:51
13:36:06
13:46:21
16:32:33
16:53:40
23:33:53
19:50:20
02:40:37
17:21:41
00:19:52
00:26:10
01:01:04
09:02:12
09:02:12

|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|

N | 0 Ko] - C:\config.sys
ASH | 2284748 Ko] - C:\hiberfil.sys
ASH | 3046332 Ko] - C:\pagefile.sys
N | 0 Ko] - C:\setup.log
SHD] - C:\$Recycle.Bin
A | 0 Ko] - C:\autoexec.bat
D] - C:\PerfLogs
SHD] - C:\Documents and Settings
SHD] - C:\Recovery
D] - C:\Intel
D] - C:\SWSetup
RHD] - C:\MSOCache
D] - C:\UsbFix
D] - C:\LJP1100_P1560_P1600_Full_Solution
D] - C:\PDFPasswordRemover
D] - C:\drivers
D] - C:\Users
D] - C:\temp
D] - C:\NeroPortable
HD] - C:\ProgramData
SHD] - C:\System Volume Information
D] - C:\Windows
D] - C:\Program Files

[b]################## | D:\ - Disque Fixe (NTFS) |[/b]


[11/06/2014 - 02:01:56 | N | 1164 Ko] - D:\passrec.zip
[01/08/2013 - 15:52:36 | N | 3628 Ko] - D:\023????? ?????? - ?????? ?????? ?????
??.pdf
[31/08/2009 - 12:00:34 | N | 2390874 Ko] - D:\fr_windows_7_ultimate_x86_dvd_X15-

65927.iso
[09/10/2009 - 03:17:58 | N | 606356 Ko] - D:\Windows XP SP3 Original.iso
[03/08/2011 - 18:30:36 | N | 1407776 Ko] - D:\CRACK WEP.iso
[20/05/2013 - 16:16:29 | N | 4500 Ko] - D:\super_grub_disk_0.9797.iso
[17/09/2014 - 22:28:35 | ASHD] - D:\Autorun.inf
[31/05/2014 - 08:35:12 | N | 145978 Ko | SHA1: 8B6FC30173E36E10FEA5C80D197F786C5
4CBC0E8] - D:\PILOTE HP LASER P1102.exe
[30/06/2014 - 02:40:44 | SHD] - D:\$RECYCLE.BIN
[13/06/2014 - 10:58:11 | D] - D:\TuneUp Utilities 2013 v13.0.3020.11 [Portable]
[13/06/2014 - 11:00:24 | D] - D:\Pictures
[13/06/2014 - 16:42:09 | D] - D:\Log
[13/06/2014 - 16:45:48 | D] - D:\ringtones
[13/06/2014 - 16:54:51 | D] - D:\12 livres de recettes de cuisine par Choumicha
- PDF
[13/06/2014 - 17:04:19 | D] - D:\CORAN 2014
[13/06/2014 - 17:04:32 | D] - D:\FOTO FORMATEUR
[13/06/2014 - 17:04:32 | D] - D:\glossaire marketing
[13/06/2014 - 17:06:51 | D] - D:\HDD HAYAT
[13/06/2014 - 17:17:41 | D] - D:\IPAD AZZOUZ
[13/06/2014 - 17:17:42 | D] - D:\iphone 2014
[13/06/2014 - 17:19:53 | D] - D:\recovriiii
[13/06/2014 - 17:23:01 | D] - D:\sony foto 2013
[13/06/2014 - 17:41:40 | D] - D:\Windows 7 Ultimate x86 X15-65927 Fr + MaJ + Val
id + Bonus
[13/06/2014 - 17:42:21 | D] - D:\Windows XP SP3 Original
[06/07/2014 - 21:28:28 | D] - D:\telechargement
[13/07/2014 - 18:24:16 | D] - D:\IPA IPHONE
[13/07/2014 - 18:27:32 | D] - D:\CA PREVISIONNEL
[21/07/2014 - 00:40:36 | D] - D:\AGC
[21/07/2014 - 00:40:44 | D] - D:\passrec
[21/07/2014 - 00:41:06 | D] - D:\N-ATV-2
[02/08/2014 - 13:59:51 | SHD] - D:\System Volume Information
[31/08/2014 - 19:26:12 | D] - D:\sara
[14/09/2014 - 01:01:59 | D] - D:\ISTA 2013
[14/09/2014 - 22:46:10 | D] - D:\bureau 2014
[b]################## | F:\ - Disque USB (FAT32) |[/b]
[27/06/2014
[26/06/2014
[26/06/2014
[26/06/2014
[26/06/2014
[26/06/2014
[27/06/2014
[07/07/2014

18:27:12
21:21:26
21:21:26
21:21:26
21:21:30
21:21:36
10:27:48
15:26:08

|
|
|
|
|
|
|
|

N | 0 Ko] - F:\~$final mem.pptx


RASH | 3 Ko] - F:\desktop.ini
RASH | 644 Ko] - F:\Thumbs.db
D] - F:\
D] - F:\Skypee
HD] - F:\RECYCLER
D] - F:\MELLAL-PC
D] - F:\5

[b]################## | Vaccin |[/b]


F:\Autorun.inf -> Vaccin cr par UsbFix (El Desaparecido)
[b]################## | E.O.F | [url=http://www.sosvirus.net/]http://www.sosviru
s.net/[/url] | [url=http://www.usbfix.net/]http://www.usbfix.net/[/url] |[/b]