Satan Réparation PC

[g3n-h@ckm@n]

hello

est ce que je dois refaire toute la procédure en branchant celui-ci??

oui tout à  fait , c'est un ver transmissible sur les ports usb donc ....

pour la quarantaine on s'en occupera en temps voulu ne t'inquiete pas

[AlexaV]

ok.

Je refais tout alors : Usb Fix, Pre_Scan, Adw et je poste les rapports c'est ça ?

[AlexaV]

############################## | UsbFix V 7.116 | [Suppression]

Utilisateur: Alexandra (Administrateur) # ALEXANDRA-PC
Mis à  jour le 16/03/2013 par El Desaparecido
Lancé à  20:58:57 | 21/03/2013

Site Web: https://sosvirus.org/index.php
Contact: contact@sosvirus.org

PC: Acer (Aspire 7741) (x64-based PC)
CPU: Intel(R) Core(TM) i3 CPU M 380 @ 2.53GHz (2533)
RAM -> [Total : 6004 | Free : 3986]
BIOS: Ver 1.00PARTTBL
BOOT: Normal boot

OS: Microsoft Windows 7 à‰dition Familiale Premium (6.1.7600 64-Bit) #
WB: Windows Internet Explorer 9.0.8112.16421

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: AVG Internet Security 2013 [(!) Disabled | Updated]
FW: Windows FireWall Service [Enabled]

C:\ (%systemdrive%) -> Disque fixe # 684 Go (620 Go libre(s) - 91%) [ACER] # NTFS
D:\ -> CD-ROM
E:\ -> Disque amovible # 7 Go (7 Go libre(s) - 100%) [ALEXANDRA] # FAT32
G:\ -> Disque fixe # 466 Go (281 Go libre(s) - 60%) [LaCie] # NTFS

################## | Processus Stoppés |

Stoppé! C:\Windows\system32\atiesrxx.exe (724)
Stoppé! C:\Windows\System32\spoolsv.exe (1568)
Stoppé! C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe (1680)
Stoppé! C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (1724)
Stoppé! C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe (1896)
Stoppé! C:\Program Files (x86)\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\CanalPlus.VOD.exe (1932)
Stoppé! C:\Program Files (x86)\SearchProtect\bin\CltMngSvc.exe (1980)
Stoppé! C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe (2024)
Stoppé! C:\Program Files (x86)\Launch Manager\dsiwmis.exe (1104)
Stoppé! C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe (1360)
Stoppé! C:\Program Files (x86)\BboxUpdate\eSRunService.exe (1620)
Stoppé! C:\Program Files (x86)\Acer\Registration\GREGsvc.exe (1880)
Stoppé! C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (2060)
Stoppé! C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe (2096)
Stoppé! C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (2388)
Stoppé! C:\Program Files\Acer\Acer Updater\UpdaterService.exe (2440)
Stoppé! C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (2496)
Stoppé! C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (2768)
Stoppé! C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (2792)
Stoppé! C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE (616)
Stoppé! C:\Windows\system32\atieclxx.exe (1376)
Stoppé! C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (2540)
Stoppé! C:\Program Files\Windows Media Player\wmpnetwk.exe (2784)
Stoppé! C:\Windows\system32\SearchIndexer.exe (2884)
Stoppé! C:\Windows\system32\taskhost.exe (3816)
Stoppé! C:\Windows\System32\WScript.exe (584)
Stoppé! C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe (1792)
Stoppé! C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (4068)
Stoppé! C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe (3644)
Stoppé! C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (3988)
Stoppé! C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe (3712)
Stoppé! C:\Users\Alexandra\AppData\Roaming\SearchProtect\bin\cltmng.exe (1152)
Stoppé! C:\Users\Alexandra\AppData\Roaming\Dropbox\bin\Dropbox.exe (3416)
Stoppé! C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (1904)
Stoppé! C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe (1768)
Stoppé! C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe (3260)
Stoppé! C:\Program Files (x86)\Launch Manager\LManager.exe (1408)
Stoppé! C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (1172)
Stoppé! C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe (1424)
Stoppé! C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin (3448)
Stoppé! C:\Program Files (x86)\AVG\AVG2013\avgui.exe (4216)
Stoppé! C:\Program Files (x86)\BboxUpdate\BTLiveUpdate.exe (4240)
Stoppé! C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe (4408)
Stoppé! C:\Program Files (x86)\Launch Manager\LMworker.exe (4444)
Stoppé! C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe (4452)
Stoppé! C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe (4572)
Stoppé! C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\cvh.exe (4548)
Stoppé! C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe (4264)
Stoppé! C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (3900)
Stoppé! C:\Windows\splwow64.exe (7216)
Stoppé! C:\Program Files (x86)\Mozilla Firefox\firefox.exe (6672)
Stoppé! C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe (13580)
Stoppé! C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe (15240)
Stoppé! C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe (11800)
Stoppé! C:\Windows\System32\WUDFHost.exe (9688)

################## | à‰léments infectieux |

Supprimé! E:\Nouveau dossier.lnk
Supprimé! C:\Users\ALEXAN~1\AppData\Local\Temp\b.bat
Supprimé! C:\Users\Alexandra\s4t4n
Supprimé! C:\Users\Alexandra\Windows\HUMOUR.vbe
Supprimé! E:\satan.vbe
Non supprimé ! E:\autorun.inf
Supprimé! E:\AUTORUN_.INF
Supprimé! G:\._autorun.inf
Supprimé! G:\autorun.inf
Supprimé! C:\Users\HUMOUR.vbe

(!) Fichiers temporaires supprimés.

################## | Registre |

Supprimé! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System|DisableRegistryTools
Supprimé! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System|DisableTaskMgr
Supprimé! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System|DisableTaskMgr
Supprimé! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run|Updates

################## | Mountpoints2 |

Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{41137117-4142-11e2-8162-206a8a34827d}

################## | Listing |

[08/03/2013 - 12:06:50 | D ] C:\$AVG
[06/09/2012 - 14:21:39 | SHD ] C:\$Recycle.Bin
[19/03/2013 - 23:26:45 | D ] C:\0a37fe25bf5179c3934d55
[31/08/2012 - 03:03:20 | D ] C:\BigFishGamesCache
[04/03/2011 - 01:29:35 | D ] C:\BOOK
[14/07/2009 - 02:38:58 | RASH | 383562] C:\bootmgr
[27/07/2009 - 21:40:53 | N | 8192] C:\BOOTSECT.BAK
[21/03/2013 - 20:48:09 | D ] C:\CSR
[14/07/2009 - 06:08:56 | SHD ] C:\Documents and Settings
[14/04/2012 - 20:08:51 | DC ] C:\elements
[15/02/2013 - 19:48:46 | N | 9] C:\END
[16/01/2008 - 11:48:06 | N | 12246] C:\eula.1036.txt
[16/01/2008 - 11:48:06 | N | 1110] C:\globdata.ini
[21/03/2013 - 08:47:52 | ASH | 4722077696] C:\hiberfil.sys
[16/01/2008 - 11:48:06 | N | 562688] C:\install.exe
[16/01/2008 - 11:48:14 | N | 843] C:\install.ini
[16/01/2008 - 11:52:54 | N | 97296] C:\install.res.1036.dll
[04/03/2011 - 01:09:19 | D ] C:\Intel
[15/04/2012 - 11:48:28 | RHD ] C:\MSOCache
[14/04/2012 - 20:07:53 | D ] C:\oem
[21/03/2013 - 08:47:52 | ASH | 6296104960] C:\pagefile.sys
[17/02/2011 - 01:49:30 | N | 4663] C:\Patch.rev
[14/07/2009 - 04:20:08 | D ] C:\PerfLogs
[14/04/2012 - 20:07:29 | N | 206] C:\Preload.rev
[15/02/2013 - 20:08:00 | D ] C:\Program Files
[12/03/2013 - 21:35:37 | D ] C:\Program Files (x86)
[12/03/2013 - 21:36:44 | HD ] C:\ProgramData
[14/04/2012 - 20:07:15 | SHD ] C:\Recovery
[04/03/2011 - 01:14:06 | N | 2142] C:\RHDSetup.log
[21/03/2013 - 08:44:13 | SHD ] C:\System Volume Information
[21/03/2013 - 21:00:01 | D ] C:\UsbFix
[21/03/2013 - 21:00:09 | A | 7687] C:\UsbFix [Clean 1] ALEXANDRA-PC.txt
[21/03/2013 - 20:59:58 | D ] C:\Users
[16/01/2008 - 11:48:06 | N | 5686] C:\vcredist.bmp
[16/01/2008 - 11:58:54 | N | 1442522] C:\VC_RED.cab
[16/01/2008 - 12:00:56 | N | 233984] C:\VC_RED.MSI
[22/12/2012 - 04:53:32 | D ] C:\Windows
[02/02/2013 - 16:36:48 | D ] E:\articles
[27/10/2012 - 12:41:38 | H | 43] E:\autorun.inf
[22/03/2012 - 18:03:58 | N | 165] E:\~$La dyslexie. Les meuffffffssss pptx.pptx
[03/03/2010 - 17:46:24 | D ] E:\ZURIM
[03/03/2013 - 15:31:06 | SHD ] G:\$RECYCLE.BIN
[13/07/2009 - 00:02:46 | N | 29018] G:\.VolumeIcon.icns
[13/07/2009 - 00:02:46 | N | 25214] G:\.VolumeIcon.ico
[03/03/2013 - 15:38:51 | D ] G:\Administration
[13/07/2009 - 00:02:38 | D ] G:\Bin
[03/03/2013 - 15:39:37 | D ] G:\COURS
[26/12/2009 - 17:49:30 | D ] G:\Cours de Fitness
[07/11/2012 - 23:48:25 | D ] G:\CV
[29/03/2010 - 22:14:25 | SH | 87] G:\desktop.ini
[14/02/2010 - 13:45:14 | D ] G:\Favorites
[13/07/2009 - 00:02:38 | N | 393] G:\LaCie.ini
[16/03/2012 - 00:43:31 | D ] G:\Litt. Audio
[16/05/2012 - 15:59:45 | D ] G:\Ma musique
[13/07/2009 - 00:02:38 | D ] G:\MANUALS
[31/01/2012 - 21:36:57 | D ] G:\Manuel dictaphone
[03/03/2013 - 15:37:13 | D ] G:\Mes albums
[03/03/2013 - 15:37:37 | D ] G:\Mes images
[03/03/2013 - 18:38:04 | D ] G:\Mes vidéos
[21/11/2010 - 11:52:05 | D ] G:\Nouveau dossier
[13/07/2009 - 00:03:46 | SHD ] G:\RECYCLER
[07/11/2012 - 23:46:40 | D ] G:\ROXANE
[07/11/2012 - 23:49:50 | D ] G:\ROXANE ORDI
[28/03/2010 - 23:43:31 | D ] G:\Russe
[07/11/2012 - 23:50:52 | D ] G:\Sandra
[20/08/2009 - 01:04:09 | SHD ] G:\System Volume Information
[17/02/2010 - 22:01:28 | ASH | 9728] G:\Thumbs.db
[07/11/2012 - 23:49:22 | D ] G:\Words

################## | Vaccin |

C:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
G:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

[AlexaV]

############################## | UsbFix V 7.116 | [Suppression]

Utilisateur: Alexandra (Administrateur) # ALEXANDRA-PC
Mis à  jour le 16/03/2013 par El Desaparecido
Lancé à  19:46:25 | 22/03/2013

Site Web: https://sosvirus.org/index.php
Contact: contact@sosvirus.org

PC: Acer (Aspire 7741) (x64-based PC)
CPU: Intel(R) Core(TM) i3 CPU M 380 @ 2.53GHz (2533)
RAM -> [Total : 6004 | Free : 4096]
BIOS: Ver 1.00PARTTBL
BOOT: Normal boot

OS: Microsoft Windows 7 à‰dition Familiale Premium (6.1.7600 64-Bit) #
WB: Windows Internet Explorer 9.0.8112.16421

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: avast! Antivirus [Enabled | Updated]
FW: Windows FireWall Service [Enabled]

C:\ (%systemdrive%) -> Disque fixe # 684 Go (622 Go libre(s) - 91%) [ACER] # NTFS
D:\ -> CD-ROM
E:\ -> Disque amovible # 954 Mo (843 Mo libre(s) - 88%) [DICTA] # FAT
F:\ -> Disque amovible # 7 Go (7 Go libre(s) - 100%) [ALEXANDRA] # FAT32
G:\ -> Disque fixe # 466 Go (281 Go libre(s) - 60%) [LaCie] # NTFS

################## | Processus Stoppés |

Stoppé! C:\Windows\system32\atiesrxx.exe (868)
Stoppé! C:\Program Files\AVAST Software\Avast\AvastSvc.exe (1244)
Stoppé! C:\Windows\system32\atieclxx.exe (1276)
Stoppé! C:\Windows\System32\spoolsv.exe (1524)
Stoppé! C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe (1640)
Stoppé! C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (1700)
Stoppé! C:\Program Files (x86)\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\CanalPlus.VOD.exe (1724)
Stoppé! C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe (1844)
Stoppé! C:\Program Files (x86)\Launch Manager\dsiwmis.exe (1876)
Stoppé! C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe (1924)
Stoppé! C:\Program Files (x86)\BboxUpdate\eSRunService.exe (1084)
Stoppé! C:\Program Files (x86)\Acer\Registration\GREGsvc.exe (1492)
Stoppé! C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (420)
Stoppé! C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe (2052)
Stoppé! C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (2328)
Stoppé! C:\Program Files\Acer\Acer Updater\UpdaterService.exe (2380)
Stoppé! C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (2432)
Stoppé! C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (2488)
Stoppé! C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (2660)
Stoppé! C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE (2848)
Stoppé! C:\Windows\system32\taskhost.exe (2948)
Stoppé! C:\Windows\System32\rundll32.exe (3608)
Stoppé! C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe (3928)
Stoppé! C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (4000)
Stoppé! C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe (4028)
Stoppé! C:\Windows\system32\SearchIndexer.exe (4052)
Stoppé! C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe (3168)
Stoppé! C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (3320)
Stoppé! C:\Windows\System32\StikyNot.exe (424)
Stoppé! C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe (2576)
Stoppé! C:\Users\Alexandra\AppData\Roaming\Dropbox\bin\Dropbox.exe (3744)
Stoppé! C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe (3736)
Stoppé! C:\Program Files (x86)\Launch Manager\LManager.exe (4064)
Stoppé! C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (2740)
Stoppé! C:\Program Files\AVAST Software\Avast\AvastUI.exe (2184)
Stoppé! C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe (1708)
Stoppé! C:\Program Files (x86)\BboxUpdate\BTLiveUpdate.exe (1912)
Stoppé! C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe (3728)
Stoppé! C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe (236)
Stoppé! C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe (2196)
Stoppé! C:\Program Files (x86)\Launch Manager\LMworker.exe (2832)
Stoppé! C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin (4172)
Stoppé! C:\Program Files (x86)\Mozilla Firefox\firefox.exe (4368)
Stoppé! C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe (4824)
Stoppé! C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe (4864)
Stoppé! C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe (5100)
Stoppé! C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (4720)
Stoppé! C:\Program Files\Windows Media Player\wmpnetwk.exe (2888)
Stoppé! C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\cvh.exe (1256)
Stoppé! C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe (5068)
Stoppé! C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (372)
Stoppé! C:\Windows\System32\WUDFHost.exe (3804)

################## | à‰léments infectieux |

Supprimé! E:\autorun.inf
Non supprimé ! F:\autorun.inf

(!) Fichiers temporaires supprimés.

################## | Registre |


################## | Mountpoints2 |


################## | Listing |

[21/03/2013 - 23:05:23 | SHD ] C:\$Recycle.Bin
[19/03/2013 - 23:26:45 | D ] C:\0a37fe25bf5179c3934d55
[22/03/2013 - 12:55:26 | N | 609993] C:\AdwCleaner.exe
[22/03/2013 - 12:56:13 | N | 387] C:\AdwCleaner[S1].txt
[22/03/2013 - 12:56:46 | N | 4707] C:\AdwCleaner[S2].txt
[21/03/2013 - 21:00:09 | RASHD ] C:\Autorun.inf
[04/03/2011 - 01:29:35 | D ] C:\BOOK
[14/07/2009 - 02:38:58 | RASH | 383562] C:\bootmgr
[27/07/2009 - 21:40:53 | N | 8192] C:\BOOTSECT.BAK
[21/03/2013 - 23:03:49 | D ] C:\Config.Msi
[21/03/2013 - 20:48:09 | D ] C:\CSR
[14/07/2009 - 06:08:56 | SHD ] C:\Documents and Settings
[14/04/2012 - 20:08:51 | DC ] C:\elements
[16/01/2008 - 11:48:06 | N | 12246] C:\eula.1036.txt
[16/01/2008 - 11:48:06 | N | 1110] C:\globdata.ini
[22/03/2013 - 12:58:11 | ASH | 4722077696] C:\hiberfil.sys
[16/01/2008 - 11:48:14 | N | 843] C:\install.ini
[04/03/2011 - 01:09:19 | D ] C:\Intel
[15/04/2012 - 11:48:28 | RHD ] C:\MSOCache
[14/04/2012 - 20:07:53 | D ] C:\oem
[22/03/2013 - 12:58:10 | ASH | 6296104960] C:\pagefile.sys
[17/02/2011 - 01:49:30 | N | 4663] C:\Patch.rev
[14/07/2009 - 04:20:08 | D ] C:\PerfLogs
[14/04/2012 - 20:07:29 | N | 206] C:\Preload.rev
[22/03/2013 - 13:13:56 | D ] C:\Pre_Scan
[21/03/2013 - 23:03:07 | N | 37765] C:\Pre_Scan_21_03_2013_22_02_14.txt
[15/02/2013 - 20:08:00 | D ] C:\Program Files
[22/03/2013 - 12:56:36 | D ] C:\Program Files (x86)
[22/03/2013 - 12:56:36 | HD ] C:\ProgramData
[14/04/2012 - 20:07:15 | SHD ] C:\Recovery
[04/03/2011 - 01:14:06 | N | 2142] C:\RHDSetup.log
[21/03/2013 - 21:51:27 | SHD ] C:\System Volume Information
[21/03/2013 - 21:00:09 | N | 61675] C:\Upload_UsbFix.zip
[22/03/2013 - 19:47:03 | D ] C:\UsbFix
[22/03/2013 - 19:47:11 | A | 7012] C:\UsbFix [Clean 2] ALEXANDRA-PC.txt
[21/03/2013 - 20:59:58 | D ] C:\Users
[16/01/2008 - 11:48:06 | N | 5686] C:\vcredist.bmp
[16/01/2008 - 11:58:54 | N | 1442522] C:\VC_RED.cab
[16/01/2008 - 12:00:56 | N | 233984] C:\VC_RED.MSI
[21/03/2013 - 22:35:40 | D ] C:\Windows
[01/01/2010 - 00:06:52 | HD ] E:\SYSTEM
[01/01/2010 - 00:06:52 | D ] E:\RECORDER
[02/02/2013 - 16:36:48 | D ] F:\articles
[27/10/2012 - 12:41:38 | H | 43] F:\autorun.inf
[03/03/2013 - 15:31:06 | SHD ] G:\$RECYCLE.BIN
[13/07/2009 - 00:02:46 | N | 29018] G:\.VolumeIcon.icns
[13/07/2009 - 00:02:46 | N | 25214] G:\.VolumeIcon.ico
[21/03/2013 - 21:29:35 | D ] G:\Administration
[21/03/2013 - 21:00:09 | RASHD ] G:\Autorun.inf
[21/03/2013 - 21:25:18 | D ] G:\COURS
[26/12/2009 - 17:49:30 | D ] G:\Cours de Fitness
[07/11/2012 - 23:48:25 | D ] G:\CV
[29/03/2010 - 22:14:25 | SH | 87] G:\desktop.ini
[14/02/2010 - 13:45:14 | D ] G:\Favorites
[13/07/2009 - 00:02:38 | N | 393] G:\LaCie.ini
[16/03/2012 - 00:43:31 | D ] G:\Litt. Audio
[16/05/2012 - 15:59:45 | D ] G:\Ma musique
[13/07/2009 - 00:02:38 | D ] G:\MANUALS
[31/01/2012 - 21:36:57 | D ] G:\Manuel dictaphone
[03/03/2013 - 15:37:13 | D ] G:\Mes albums
[03/03/2013 - 15:37:37 | D ] G:\Mes images
[03/03/2013 - 18:38:04 | D ] G:\Mes vidéos
[21/11/2010 - 11:52:05 | D ] G:\Nouveau dossier
[13/07/2009 - 00:03:46 | SHD ] G:\RECYCLER
[07/11/2012 - 23:46:40 | D ] G:\ROXANE
[07/11/2012 - 23:49:50 | D ] G:\ROXANE ORDI
[28/03/2010 - 23:43:31 | D ] G:\Russe
[07/11/2012 - 23:50:52 | D ] G:\Sandra
[20/08/2009 - 01:04:09 | SHD ] G:\System Volume Information
[17/02/2010 - 22:01:28 | ASH | 9728] G:\Thumbs.db
[07/11/2012 - 23:49:22 | D ] G:\Words

################## | Vaccin |

C:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
E:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
G:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

################## | E.O.F | https://sosvirus.org |

[AlexaV]

Pre-Scan :

https://cjoint.com/data3/3CwvcBga2mP.htm

[AlexaV]

# AdwCleaner v2.115 - Rapport créé le 22/03/2013 à  12:56:13
# Mis à  jour le 17/03/2013 par Xplode
# Système d'exploitation : Windows 7 Home Premium (64 bits)
# Nom d'utilisateur : Alexandra - ALEXANDRA-PC
# Mode de démarrage : Normal
# Exécuté depuis : C:\Users\Alexandra\Desktop\AdwCleaner.exe
# Option [Suppression]


***** [Services] *****

Arrêté & Supprimé : CltMngSvc

[AlexaV]

# AdwCleaner v2.115 - Rapport créé le 22/03/2013 à  12:56:33
# Mis à  jour le 17/03/2013 par Xplode
# Système d'exploitation : Windows 7 Home Premium (64 bits)
# Nom d'utilisateur : Alexandra - ALEXANDRA-PC
# Mode de démarrage : Normal
# Exécuté depuis : C:\Users\Alexandra\Desktop\AdwCleaner.exe
# Option [Suppression]


***** [Services] *****


***** [Fichiers / Dossiers] *****

Dossier Supprimé : C:\Program Files (x86)\Conduit
Dossier Supprimé : C:\Program Files (x86)\GamesBar
Dossier Supprimé : C:\Program Files (x86)\majpctuto
Dossier Supprimé : C:\Program Files (x86)\SearchProtect
Dossier Supprimé : C:\ProgramData\AVG Security Toolbar
Dossier Supprimé : C:\Users\Alexandra\AppData\Local\Conduit
Dossier Supprimé : C:\Users\Alexandra\AppData\Local\Wajam
Dossier Supprimé : C:\Users\Alexandra\AppData\LocalLow\Conduit
Dossier Supprimé : C:\Users\Alexandra\AppData\Roaming\SearchProtect
Fichier Supprimé : C:\END

***** [Registre] *****

Clé Supprimée : HKCU\Software\AppDataLow\Software\SmartBar
Clé Supprimée : HKCU\Software\Conduit
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Clé Supprimée : HKCU\Software\SearchProtect
Clé Supprimée : HKCU\Software\Tutorials
Clé Supprimée : HKCU\Software\TutoTag
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT3285358
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Clé Supprimée : HKLM\Software\Conduit
Clé Supprimée : HKLM\Software\GamesBarSetup
Clé Supprimée : HKLM\Software\MajPCTuto
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASMANCS
Clé Supprimée : HKLM\Software\SearchProtect
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp
Clé Supprimée : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Valeur Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [searchprotect]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [pctuto_fr_4]
Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SearchProtectAll]

***** [Navigateurs] *****

-\\ Internet Explorer v9.0.8112.16470

[OK] Le registre ne contient aucune entrée illégitime.

-\\ Mozilla Firefox v19.0.2 (fr)

Fichier : C:\Users\Alexandra\AppData\Roaming\Mozilla\Firefox\Profiles\dfei6esy.default\prefs.js

Supprimée : user_pref("CT3285358_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\"[...]
Supprimée : user_pref("Smartbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT3285358&octid=CT328535[...]
Supprimée : user_pref("Smartbar.ConduitSearchEngineList", "01NET.com Main Customized Web Search");
Supprimée : user_pref("Smartbar.ConduitSearchUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3285358[...]
Supprimée : user_pref("Smartbar.keywordURLSelectedCTID", "CT3285358");
Supprimée : user_pref("browser.search.selectedEngine", "01NET.com Main Customized Web Search");
Supprimée : user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3285358&SearchSource=2&CU[...]
Supprimée : user_pref("smartBar.searchInNewTabOwner", "CT3285358");

-\\ Google Chrome v [Impossible d'obtenir la version]

Fichier : C:\Users\Alexandra\AppData\Local\Google\Chrome\User Data\Default\Preferences

Supprimée [l.1] : icon_url ={"browser":{"window_placement":{"bottom":850,"left":10,"maximized":false,"right":1060,"top":10,"work[...]

*************************

AdwCleaner[S1].txt - [387 octets] - [22/03/2013 12:56:13]
AdwCleaner[S2].txt - [4582 octets] - [22/03/2013 12:56:33]

########## EOF - C:\AdwCleaner[S2].txt - [4642 octets] ##########

[AlexaV]

# AdwCleaner v2.115 - Rapport créé le 22/03/2013 à  21:08:17
# Mis à  jour le 17/03/2013 par Xplode
# Système d'exploitation : Windows 7 Home Premium (64 bits)
# Nom d'utilisateur : Alexandra - ALEXANDRA-PC
# Mode de démarrage : Normal
# Exécuté depuis : C:\Users\Alexandra\Desktop\AdwCleaner.exe
# Option [Suppression]


***** [Services] *****


***** [Fichiers / Dossiers] *****


***** [Registre] *****


***** [Navigateurs] *****

-\\ Internet Explorer v9.0.8112.16470

[OK] Le registre ne contient aucune entrée illégitime.

-\\ Mozilla Firefox v19.0.2 (fr)

Fichier : C:\Users\Alexandra\AppData\Roaming\Mozilla\Firefox\Profiles\dfei6esy.default\prefs.js

[OK] Le fichier ne contient aucune entrée illégitime.

-\\ Google Chrome v [Impossible d'obtenir la version]

Fichier : C:\Users\Alexandra\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Le fichier ne contient aucune entrée illégitime.

*************************

AdwCleaner[S1].txt - [387 octets] - [22/03/2013 12:56:13]
AdwCleaner[S2].txt - [4707 octets] - [22/03/2013 12:56:33]
AdwCleaner[S3].txt - [1097 octets] - [22/03/2013 21:08:17]

########## EOF - C:\AdwCleaner[S3].txt - [1157 octets] ##########

[AlexaV]

Voilà  qui est fait...

Maintenant, que dois-je faire ?

Je débranche le périph?

[g3n-h@ckm@n]

une question :

l'autosandbox d'avast est-elle desactivée ?