[b]############################## | UsbFix V 7.

807 | [Nettoyage][/b]
Utilisateur: USER (Administrateur) # USER-PC
Mis jour le 18/12/2014 par El Desaparecido - SosVirus
Lanc 21:49:08 | 09/01/2015
Site Web : [url=http://www.usbfix.net/]http://www.usbfix.net/[/url]
Changelog : [url=http://www.usbfix.net/maj/]http://www.usbfix.net/maj/[/url]
Assistance : [url=http://www.sosvirus.net/forum-virus-securite.html]http://www.s
osvirus.net/forum-virus-securite.html[/url]
Upload Malware : [url=http://www.sosvirus.net/upload_malware.php]http://www.sosv
irus.net/upload_malware.php[/url]
Dtection en Live : [url=http://comment-supprimer.fr/]http://comment-supprimer.fr/
[/url]
Contact : [url=http://www.usbfix.net/contact/]http://www.usbfix.net/contact/[/ur
l]
[b]################## | System information |[/b]
MB: Dell Inc. (0YXXJJ)
CPU: Intel(R) Core(TM) i3 CPU
M 380 @ 2.53GHz
RAM -> [Total : 3959 Mo | Free : 2613 Mo]
Bios: Dell Inc.
Boot: Normal boot
OS:
WB:
WB:
WB:

Microsoft Windows 7 Ultimate (6.1.7600 64-Bit)

Internet Explorer : 8.00.7600.16385
Google Chrome : 39.0.2171.95
Mozilla Firefox : 34.0.5

[b]################## | Security Information |[/b]

AS:
FW:
SC:
WU:

Windows Defender [Actif |[b](!) Non jour[/b]]

Windows Firewall [Actif]
Security Center [Actif]
Windows Update [Actif]

[b]################## | Disk Information |[/b]

C:\ (%SystemDrive%) -> Disque fixe # 196 Go (130 Go libre(s) - 66%) [] # NTFS
D:\ -> Disque fixe # 270 Go (224 Go libre(s) - 83%) [] # NTFS
[b]################## | Recherche gnrique |[/b]
Non supprim ! ... Tentative au redmarrage... C:\kernel\lpt1
Supprim! C:\kernel
(!) Fichiers temporaires supprims. (0.0625638961791992 MB)
[b]################## | Registre |[/b]
[b]################## | Regedit Run |[/b]
F2 - HKLM\..\Winlogon : [Shell] explorer.exe
F2 - [x64] HKLM\..\Winlogon : [Shell] explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] userinit.exe
F2 - [x64] HKLM\..\Winlogon : [Userinit] C:\Windows\system32\userinit.exe,
04 - HKCU\..\Run : [Facebook Update] "C:\Users\USER\AppData\Local\Facebook\Updat
e\FacebookUpdate.exe" /c /nocrashserver

04 - HKCU\..\Run : [KiesHelper] C:\Program Files (x86)\Samsung\Kies\KiesHelper.e

xe /s
04 - HKCU\..\Run : [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayA
gent.exe
04 - HKLM\..\Run : [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\C
ore-Static\CLIStart.exe" MSRun
04 - HKLM\..\Run : [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple
Application Support\APSDaemon.exe"
04 - HKLM\..\Run : [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe
" -atboottime
04 - HKLM\..\Run : [BCSSync] "C:\Program Files (x86)\Microsoft Office\2010\Offic
e14\BCSSync.exe" /DelayServices
04 - HKLM\..\Run : [OfficeScanNT Monitor] "C:\Program Files (x86)\Trend Micro\Cl
ient Server Security Agent\pccntmon.exe" -HideWindow
04 - [x64] HKLM\..\Run : [IntelWireless] "C:\Program Files\Common Files\Intel\Wi
relessCommon\iFrmewrk.exe" /tf Intel Wireless Tray
04 - HKU\S-1-5-19\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
/autoRun
04 - HKU\S-1-5-20\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe
/autoRun
04 - HKU\S-1-5-21-3586198274-1144067708-1959387870-1000\..\Run : [Facebook Updat
e] "C:\Users\USER\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashs
erver
04 - HKU\S-1-5-21-3586198274-1144067708-1959387870-1000\..\Run : [KiesHelper] C:
\Program Files (x86)\Samsung\Kies\KiesHelper.exe /s
04 - HKU\S-1-5-21-3586198274-1144067708-1959387870-1000\..\Run : [KiesTrayAgent]
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
04 - HKU\S-1-5-19\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04GS - Bluetooth.lnk : C:\Program Files (x86)\WIDCOMM\Bluetooth Software\BTTray.
exe
04GS - vpngui.exe.lnk : C:\Windows\Installer\{467D5E81-8349-4892-9E81-C3674ED8E4
51}\Icon09DB8A851.exe
[b]################## | UsbFix - Information |[/b]
Info : [url=https://www.youtube.com/watch?v=vUZYYASd7FE]Comment supprimer l'infe
ction des raccourcis sur USB ? (Video)[/url]
Info : [url=http://www.usbfix.net/2014/10/supprimer-virus-raccourcis-usb/]L'infe
ction des raccourcis USB, c'est quoi ?[/url]
Dtection en Live : [url=http://comment-supprimer.fr/]http://comment-supprimer.fr/
[/url]
[b]################## | Hijack |[/b]
[b]################## | C:\ %SystemDrive% - Disque Fixe (NTFS) |[/b]
[23/11/2011
[09/01/2015
[09/01/2015
[06/01/2015
[09/01/2015
[26/12/2011
[22/08/2013
[18/05/2011
[14/07/2009
[14/07/2009
[18/05/2011
[18/05/2011

15:14:46
18:35:29
18:35:31
19:03:53
18:35:53
10:59:38
07:37:39
03:08:33
04:20:08
06:08:56
03:08:00
03:10:11

|
|
|
|
|
|
|
|
|
|
|
|

N | 1 Ko] - C:\Status_Log.txt
ASH | 3040272 Ko] - C:\hiberfil.sys
ASH | 4053696 Ko] - C:\pagefile.sys
D] - C:\Config.Msi
A | 648 Ko] - C:\ssapi.log
N | 0 Ko] - C:\user.js
N | 0 Ko] - C:\config.dat
D] - C:\$Recycle.Bin
D] - C:\PerfLogs
SHD] - C:\Documents and Settings
SHD] - C:\Recovery
D] - C:\dell

[18/05/2011
[23/11/2011
[11/10/2012
[11/10/2012
[04/06/2013
[07/09/2013
[14/05/2014
[23/06/2014
[07/09/2014
[13/10/2014
[18/11/2014
[09/01/2015

03:59:25
15:22:29
21:42:30
23:00:37
17:25:41
12:39:34
20:23:59
19:29:37
00:15:53
18:46:58
22:27:34
21:49:02

|
|
|
|
|
|
|
|
|
|
|
|

RHD] - C:\MSOCache
D] - C:\TokensBackup
D] - C:\Temp
N | 0 Ko] - C:\end
D] - C:\security
D] - C:\Users
D] - C:\Kernel
D] - C:\Program Files
HD] - C:\ProgramData
D] - C:\Windows
D] - C:\Program Files (x86)
D] - C:\UsbFix

[b]################## | D:\ - Disque Fixe (NTFS) |[/b]

[18/10/2014
[22/10/2014
[23/10/2014
[23/10/2014
[22/10/2012
[22/10/2012
[23/10/2012
[24/10/2012
[07/11/2007
[07/11/2007
[07/11/2007
[07/11/2007
[07/11/2007
[07/11/2007
[07/11/2007
[07/11/2007
[07/11/2007
[01/07/2011
[02/07/2011
[04/07/2011
[22/12/2011
[22/12/2011
[21/10/2012
[07/11/2007
[18/03/2013
[18/03/2013
[24/03/2014
[07/11/2007
[07/11/2007
[07/11/2007
[01/10/2014
[06/11/2009
[19/02/2010
[01/10/2014
[30/10/2014
[30/10/2014
[07/11/2007
[07/11/2007
[07/11/2007
[07/11/2007
[07/11/2007
[07/11/2007
[07/11/2007
[07/11/2007
[07/11/2007

08:53:57
16:52:24
14:33:52
16:06:32
12:35:46
21:20:28
21:19:37
11:33:16
07:00:40
07:00:40
07:00:40
07:00:40
07:00:40
07:00:40
07:00:40
07:00:40
07:00:40
18:40:48
18:55:46
15:36:06
20:20:44
20:45:50
17:32:47
07:53:12
08:30:46
11:53:24
21:04:55
07:00:40
07:00:40
07:44:20
22:14:30
14:02:16
14:53:26
21:50:45
22:49:25
22:57:34
07:44:20
07:44:20
07:44:20
07:44:20
07:44:20
07:44:20
07:44:20
07:44:20
07:44:20

|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|

A | 92 Ko] - D:\Collecte FH V1.xlsx

A | 176 Ko] - D:\Collecte FH V2.xlsx
A | 119 Ko] - D:\Collecte FH V3.xlsx
A | 38 Ko] - D:\Ericsson trafic23-10-2014.xlsx
N | 165 Ko] - D:\Huawei-DWDM-22-10-2012-12h30.xls
N | 270 Ko] - D:\Huawei-SDH-22-10-2012-12h30.xls
N | 292 Ko] - D:\ZTE-22-10-2012.xls
N | 381 Ko] - D:\Huawei-OCH-24-10-2012-11h30.xls
N | 17 Ko] - D:\eula.1042.txt
N | 0 Ko] - D:\eula.1041.txt
N | 17 Ko] - D:\eula.1040.txt
N | 17 Ko] - D:\eula.1036.txt
N | 10 Ko] - D:\eula.1033.txt
N | 17 Ko] - D:\eula.3082.txt
N | 17 Ko] - D:\eula.2052.txt
N | 17 Ko] - D:\eula.1028.txt
N | 17 Ko] - D:\eula.1031.txt
N | 49684 Ko] - D:\synch.rar
N | 354736 Ko] - D:\Outlook Express.rar
N | 552341 Ko] - D:\Outlook.rar
N | 62847 Ko] - D:\sec.rar
N | 413 Ko] - D:\Tel.rar
N | 326 Ko] - D:\minist.pdf
N | 237 Ko] - D:\VC_RED.MSI
N | 18485 Ko] - D:\Vido0002.mp4
N | 20416 Ko] - D:\Vido0004.mp4
D] - D:\M.Mbarek
N | 1 Ko] - D:\globdata.ini
N | 1 Ko] - D:\install.ini
N | 835 Ko] - D:\install.exe
A | 33 Ko] - D:\Fiche de Poste-mourad.docx
A | 439 Ko] - D:\thesemejda98.doc
A | 864 Ko] - D:\thesemejda982.doc
A | 2422 Ko] - D:\CVMourad Fr 2.doc
A | 59 Ko] - D:\CVMourad Eng.doc
A | 2427 Ko] - D:\CV-Mourad Satouri.doc
N | 74 Ko] - D:\install.res.1028.dll
N | 93 Ko] - D:\install.res.1031.dll
N | 88 Ko] - D:\install.res.1033.dll
N | 94 Ko] - D:\install.res.1036.dll
N | 92 Ko] - D:\install.res.1040.dll
N | 79 Ko] - D:\install.res.1041.dll
N | 77 Ko] - D:\install.res.1042.dll
N | 73 Ko] - D:\install.res.2052.dll
N | 93 Ko] - D:\install.res.3082.dll

[07/11/2007
[07/11/2007
[21/11/2012
[21/11/2012
[21/11/2012
[18/05/2011
[21/05/2011
[03/07/2011
[03/07/2011
[04/07/2011
[02/09/2011
[23/10/2011
[15/12/2011
[22/02/2012
[10/05/2012
[14/05/2012
[16/05/2012
[25/06/2012
[07/07/2012
[17/10/2012
[07/01/2013
[25/03/2013
[03/06/2013
[03/06/2013
[09/09/2013
[04/12/2013
[04/03/2014
[15/03/2014
[24/03/2014
[08/04/2014
[01/05/2014
[17/05/2014
[17/05/2014
[31/05/2014
[23/07/2014
[20/09/2014
[13/10/2014
[25/11/2014
[08/01/2015

07:50:40
07:00:40
21:13:23
21:37:29
21:47:23
03:08:33
18:35:40
18:46:40
18:48:18
20:52:38
23:19:47
14:42:51
19:44:32
17:14:35
18:01:41
19:49:09
17:16:23
15:16:27
13:14:19
18:05:07
23:12:16
23:48:54
18:20:34
18:32:05
06:05:49
20:58:02
22:05:41
23:02:50
21:02:08
21:30:34
21:44:52
20:27:24
20:46:39
11:47:03
20:27:54
11:54:01
19:01:10
23:37:17
21:22:04

|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|

N | 1883 Ko] - D:\VC_RED.cab

N | 6 Ko] - D:\vcredist.bmp
N | 3069 Ko] - D:\react10Gorange.bmp
N | 3069 Ko] - D:\reactgatt.bmp
N | 3069 Ko] - D:\AlarmsupprFEC_Hached.bmp
D] - D:\$RECYCLE.BIN
D] - D:\WindowsImageBackup
D] - D:\Outlook Express
D] - D:\Photo 28juin2011
D] - D:\Outlook
D] - D:\photo
D] - D:\Huawei technologie
D] - D:\Tel1
D] - D:\photo22fev2012
D] - D:\med
D] - D:\TELECOM
D] - D:\pir
D] - D:\Photo25juin2012
D] - D:\VIDEO_TS
D] - D:\visite
D] - D:\photo janv 2013
D] - D:\orgstm1
D] - D:\Office 2010
D] - D:\IDE
D] - D:\Scanner
D] - D:\CLE nano mejda
D] - D:\photomars2014
D] - D:\Dossier E1
D] - D:\Transmission Total
D] - D:\Nouveau dossier (2)
D] - D:\HUAWEI
D] - D:\BUREAU
D] - D:\dell
D] - D:\download
D] - D:\SPSS17
D] - D:\FLASH
D] - D:\comp
D] - D:\Huawei Budgets DWDM
D] - D:\Mourad2

[b]################## | Vaccin |[/b]

C:\Autorun.inf -> Vaccin cr par UsbFix (El Desaparecido)
D:\Autorun.inf -> Vaccin cr par UsbFix (El Desaparecido)
[b]################## | E.O.F | [url=http://www.sosvirus.net/]http://www.sosviru
s.net/[/url] | [url=http://www.usbfix.net/]http://www.usbfix.net/[/url] |[/b]