Vous pensez être infecté, des pubs s'affichent quand vous naviguez sur internet ?
Perte de données, ralentissement système, virus USB ?
Réparez votre ordinateur gratuitement sur notre assistance en ligne.
  • Avatar du membre
  • Avatar du membre
#3790
J'ai fait tourner USBfix supression sur mon ordinateur
voilà le message ci dessous
Que dois je faire?
Merci par avance




############################## | UsbFix V 7.125 | [Suppression]

Utilisateur: Administrateur (Administrateur) # PAT8635
Mis à jour le 01/05/2013 par El Desaparecido
Lancé à 20:53:05 | 10/05/2013

Site Web: https://www.sosvirus.net/
Upload Malware: https://upload.sosvirus.net/
Contact: contact@sosvirus.net

PC: Dell Inc. (Latitude E4300 ) (X86-based PC)
CPU: Intel(R) Core(TM)2 Duo CPU P9400 @ 2.40GHz (2401)
RAM -> [Total : 3536 | Free : 1065]
BIOS: Phoenix ROM BIOS PLUS Version 1.10 A20
BOOT: Normal boot

OS: Microsoft Windows 7 Entreprise (6.1.7601 32-Bit) # Service Pack 1
WB: Windows Internet Explorer 8.0.7601.17514

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: Sophos Anti-Virus [(!) Disabled | Updated]
FW: Windows FireWall Service [Enabled]

C:\ (%systemdrive%) -> Disque fixe # 233 Go (177 Go libre(s) - 76%) [OSDisk] # NTFS
D:\ -> CD-ROM
E:\ -> Disque amovible # 960 Mo (960 Mo libre(s) - 100%) [CLEF BLEUE] # FAT
F:\ -> Disque fixe # 466 Go (199 Go libre(s) - 43%) [Verbatim] # FAT32

################## | El Desaparecido Section |

HKLM\SOFTWARE | Run : [Apoint] - C:\Program Files\DellTPad\Apoint.exe
HKLM\SOFTWARE | Run : [IgfxTray] - C:\windows\system32\igfxtray.exe
HKLM\SOFTWARE | Run : [HotKeysCmds] - C:\windows\system32\hkcmd.exe
HKLM\SOFTWARE | Run : [Persistence] - C:\windows\system32\igfxpers.exe
HKLM\SOFTWARE | Run : [SysTrayApp] - C:\Program Files\IDT\WDM\sttray.exe
HKLM\SOFTWARE | Run : [Adobe Reader Speed Launcher] - "C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"
HKLM\SOFTWARE | Run : [Adobe ARM] - "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
HKLM\SOFTWARE | Run : [SoftGridTray] - "C:\Program Files\Microsoft Application Virtualization Client\SFTTray.exe" /autostart
HKLM\SOFTWARE | Run : [QuickTime Task] - "C:\Program Files\QuickTime\QTTask.exe" -atboottime
HKLM\SOFTWARE | Run : [iTunesHelper] - "C:\Program Files\iTunes\iTunesHelper.exe"
HKLM\SOFTWARE | Run : [SunJavaUpdateSched] - "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
HKLM\SOFTWARE | Run : [Sophos AutoUpdate Monitor] - C:\Program Files\Sophos\AutoUpdate\almon.exe
HKLM\SOFTWARE | Run : [CardDetectorHUAWEI1752_1552] - C:\Program Files\CardDetector\HUAWEI1752_1552\CardDetector.exe
HKLM\SOFTWARE | Run : [BEWINTERNET-FR-DMGP-V2SessionManager] - "C:\Program Files\Orange\IEWInternet\SessionManager\SessionManager.exe"
HKLM\SOFTWARE | Run : [CanonSolutionMenu] - C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
HKLM\SOFTWARE | Run : [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
HKLM\SOFTWARE | Run : [Facebook.vbs] - "C:\Users\ADMINI~1\AppData\Local\Temp\Facebook.vbs"
HKLM\SOFTWARE | Run : [Anti-phishing Domain Advisor] - "C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe"
HKLM\SOFTWARE | RunOnce : [] -
HKU\S-1-5-19\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-20\SOFTWARE | Run : [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-21-2661640200-2355221084-366559791-500\SOFTWARE | Run : [Skype] - "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
HKU\S-1-5-21-2661640200-2355221084-366559791-500\SOFTWARE | Run : [Facebook.vbs] - "C:\Users\ADMINI~1\AppData\Local\Temp\Facebook.vbs"
HKU\S-1-5-21-682003330-1958367476-1801674531-20208\SOFTWARE | Run : [Skype] - "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
HKU\S-1-5-21-682003330-1958367476-1801674531-20208\SOFTWARE | Run : [Facebook.vbs] - "C:\Users\balague\AppData\Local\Temp\Facebook.vbs"
HKU\S-1-5-19\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe
HKU\S-1-5-20\SOFTWARE | RunOnce : [mctadmin] - C:\Windows\System32\mctadmin.exe

################## | Processus Stoppés |

Stoppé! C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_b8f542503f95f21b\STacSV.exe (952)
Stoppé! C:\Program Files\Sophos\Sophos Anti-Virus\SavService.exe (1300)
Stoppé! C:\windows\System32\spoolsv.exe (1852)
Stoppé! C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_b8f542503f95f21b\aestsrv.exe (2008)
Stoppé! C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (2036)
Stoppé! C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe (392)
Stoppé! C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE (872)
Stoppé! C:\Program Files\IBM\SPSS\Modeler\15\MPICH2\bin\smpd.exe (1064)
Stoppé! C:\Program Files\OCS Inventory Agent\ocsservice.exe (1476)
Stoppé! C:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exe (1908)
Stoppé! C:\Program Files\SFR\Gestionnaire de Connexion SFR\SFRABCDService.exe (796)
Stoppé! C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe (2264)
Stoppé! C:\Program Files\Sophos\Remote Management System\ManagementAgentNT.exe (2316)
Stoppé! C:\Program Files\Microsoft Application Virtualization Client\sftdcc.exe (2340)
Stoppé! C:\Program Files\Sophos\AutoUpdate\ALsvc.exe (2424)
Stoppé! C:\windows\system32\taskhost.exe (2440)
Stoppé! C:\Program Files\Sophos\Remote Management System\RouterNT.exe (2468)
Stoppé! C:\Program Files\Sophos\Sophos Anti-Virus\Web Control\swc_service.exe (2536)
Stoppé! C:\Program Files\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe (2644)
Stoppé! C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe (2756)
Stoppé! C:\Program Files\DellTPad\Apoint.exe (3448)
Stoppé! C:\Windows\System32\hkcmd.exe (3528)
Stoppé! C:\Windows\System32\igfxpers.exe (3572)
Stoppé! C:\Program Files\IDT\WDM\sttray.exe (3600)
Stoppé! C:\windows\system32\igfxsrvc.exe (3612)
Stoppé! C:\Program Files\Microsoft Application Virtualization Client\sfttray.exe (3748)
Stoppé! C:\Program Files\iTunes\iTunesHelper.exe (3828)
Stoppé! C:\Program Files\Sophos\AutoUpdate\ALMon.exe (3852)
Stoppé! C:\Program Files\CardDetector\HUAWEI1752_1552\CardDetector.exe (3876)
Stoppé! C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE (2356)
Stoppé! C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe (2884)
Stoppé! C:\Program Files\Skype\Phone\Skype.exe (2916)
Stoppé! C:\windows\System32\WScript.exe (3788)
Stoppé! C:\windows\System32\WUDFHost.exe (2132)
Stoppé! C:\Program Files\iPod\bin\iPodService.exe (1020)
Stoppé! C:\Program Files\DellTPad\ApMsgFwd.exe (4320)
Stoppé! C:\Program Files\DellTPad\HidFind.exe (4356)
Stoppé! C:\Program Files\DellTPad\Apntex.exe (4376)
Stoppé! C:\windows\system32\conhost.exe (4392)
Stoppé! C:\windows\system32\SearchIndexer.exe (4408)
Stoppé! C:\windows\System32\WUDFHost.exe (1100)
Stoppé! C:\Users\balague\AppData\Roaming\Dropbox\bin\Dropbox.exe (3084)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (188)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (5152)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (1228)
Stoppé! C:\windows\system32\UI0Detect.exe (3424)
Stoppé! C:\Program Files\Microsoft Application Virtualization Client\sftdcc.exe (1028)
Stoppé! C:\windows\system32\taskhost.exe (4756)
Stoppé! C:\Program Files\DellTPad\Apoint.exe (5124)
Stoppé! C:\Windows\System32\hkcmd.exe (4520)
Stoppé! C:\Windows\System32\igfxpers.exe (4868)
Stoppé! C:\Program Files\IDT\WDM\sttray.exe (3900)
Stoppé! C:\windows\system32\igfxsrvc.exe (4148)
Stoppé! C:\Program Files\Microsoft Application Virtualization Client\sfttray.exe (4836)
Stoppé! C:\Program Files\iTunes\iTunesHelper.exe (2348)
Stoppé! C:\Program Files\Sophos\AutoUpdate\ALMon.exe (788)
Stoppé! C:\Program Files\CardDetector\HUAWEI1752_1552\CardDetector.exe (6108)
Stoppé! C:\Program Files\DellTPad\ApMsgFwd.exe (5760)
Stoppé! C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE (5268)
Stoppé! C:\Program Files\DellTPad\HidFind.exe (3984)
Stoppé! C:\Program Files\DellTPad\Apntex.exe (5940)
Stoppé! C:\windows\system32\conhost.exe (5576)
Stoppé! C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe (3716)
Stoppé! C:\Program Files\Skype\Phone\Skype.exe (4480)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (6320)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (1364)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (7056)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (5804)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (7924)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (8108)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (6164)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (1456)
Stoppé! C:\Program Files\Google\Chrome\Application\chrome.exe (7324)

################## | à‰léments infectieux |

Supprimé! F:\2013_04_25 Factorielles.lnk
Supprimé! C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook.vbs
Supprimé! C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\FlashPlayerPlug.lnk
Supprimé! C:\Users\ADMINI~1\AppData\Local\Temp\Facebook.vbs
Supprimé! E:\Facebook.vbs
Supprimé! C:\Users\balague\AppData\Local\Temp\Facebook.vbs
Supprimé! C:\Users\balague\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook.vbs

(!) Fichiers temporaires supprimés.

################## | Registre |

Supprimé! HKCU|njq8
Supprimé! HKCU\Software\Microsoft\Windows\CurrentVersion\Run|Facebook.vbs
Supprimé! HKLM\Software\Microsoft\Windows\CurrentVersion\Run|Facebook.vbs

################## | Mountpoints2 |

Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{1f3e62c4-410b-11e2-b560-0024d6238428}

################## | Listing |

[07/12/2012 - 10:02:47 | SHD ] C:\$Recycle.Bin
[10/06/2009 - 23:42:20 | N | 24] C:\autoexec.bat
[06/12/2012 - 17:00:15 | SHD ] C:\Boot
[20/11/2010 - 23:29:06 | RASH | 383786] C:\bootmgr
[10/06/2009 - 23:42:20 | N | 10] C:\config.sys
[14/07/2009 - 06:53:55 | SHD ] C:\Documents and Settings
[07/11/2007 - 09:00:40 | N | 17734] C:\eula.1028.txt
[07/11/2007 - 09:00:40 | N | 17734] C:\eula.1031.txt
[07/11/2007 - 09:00:40 | N | 10134] C:\eula.1033.txt
[07/11/2007 - 09:00:40 | N | 17734] C:\eula.1036.txt
[07/11/2007 - 09:00:40 | N | 17734] C:\eula.1040.txt
[07/11/2007 - 09:00:40 | N | 118] C:\eula.1041.txt
[07/11/2007 - 09:00:40 | N | 17734] C:\eula.1042.txt
[07/11/2007 - 09:00:40 | N | 17734] C:\eula.2052.txt
[07/11/2007 - 09:00:40 | N | 17734] C:\eula.3082.txt
[07/11/2007 - 09:00:40 | N | 1110] C:\globdata.ini
[10/05/2013 - 11:05:24 | ASH | 2780758016] C:\hiberfil.sys
[07/11/2007 - 09:03:18 | N | 562688] C:\install.exe
[07/11/2007 - 09:00:40 | N | 843] C:\install.ini
[07/11/2007 - 09:03:18 | N | 76304] C:\install.res.1028.dll
[07/11/2007 - 09:03:18 | N | 96272] C:\install.res.1031.dll
[07/11/2007 - 09:03:18 | N | 91152] C:\install.res.1033.dll
[07/11/2007 - 09:03:18 | N | 97296] C:\install.res.1036.dll
[07/11/2007 - 09:03:18 | N | 95248] C:\install.res.1040.dll
[07/11/2007 - 09:03:18 | N | 81424] C:\install.res.1041.dll
[07/11/2007 - 09:03:18 | N | 79888] C:\install.res.1042.dll
[07/11/2007 - 09:03:18 | N | 75792] C:\install.res.2052.dll
[07/11/2007 - 09:03:18 | N | 96272] C:\install.res.3082.dll
[06/12/2012 - 20:05:04 | N | 0] C:\IO.SYS
[08/12/2012 - 16:27:58 | N | 0] C:\law.sp
[19/02/2013 - 18:31:00 | D ] C:\MATLAB_R2012a_installFile
[11/02/2013 - 13:15:57 | D ] C:\modeler
[06/12/2012 - 20:05:04 | N | 0] C:\MSDOS.SYS
[06/12/2012 - 17:27:33 | RHD ] C:\MSOCache
[10/05/2013 - 11:05:30 | ASH | 3707678720] C:\pagefile.sys
[14/07/2009 - 04:37:05 | D ] C:\PerfLogs
[10/05/2013 - 17:34:58 | D ] C:\Program Files
[08/05/2013 - 14:52:35 | HD ] C:\ProgramData
[06/12/2012 - 17:16:56 | SHD ] C:\Recovery
[25/04/2013 - 15:19:51 | N | 517] C:\startup.txt
[07/05/2013 - 12:21:56 | D ] C:\Stinger_Quarantine
[02/05/2013 - 11:02:05 | SHD ] C:\System Volume Information
[11/02/2013 - 17:05:54 | D ] C:\Temis
[10/05/2013 - 21:50:58 | D ] C:\UsbFix
[10/05/2013 - 21:51:10 | A | 12040] C:\UsbFix [Clean 2] PAT8635.txt
[07/05/2013 - 23:16:36 | N | 8535] C:\UsbFix [Listing 1 ] PAT8635.txt
[07/05/2013 - 22:20:32 | N | 9652] C:\UsbFix [Scan 1] PAT8635.txt
[10/05/2013 - 19:37:09 | N | 10022] C:\UsbFix [Scan 4] PAT8635.txt
[07/12/2012 - 10:02:32 | D ] C:\Users
[07/11/2007 - 09:00:40 | N | 5686] C:\vcredist.bmp
[07/11/2007 - 09:09:22 | N | 1442522] C:\VC_RED.cab
[07/11/2007 - 09:12:28 | N | 232960] C:\VC_RED.MSI
[29/04/2013 - 09:35:11 | D ] C:\Windows
[06/12/2012 - 17:08:07 | N | 76] C:\wsus.log
[11/02/2013 - 11:27:42 | HD ] F:\.Trashes
[18/03/2010 - 17:46:20 | SHD ] F:\System Volume Information
[11/02/2013 - 11:27:42 | N | 4096] F:\._.Trashes
[11/02/2013 - 11:27:42 | D ] F:\.fseventsd
[11/02/2013 - 11:27:44 | D ] F:\.Spotlight-V100
[02/09/2012 - 11:25:38 | SHD ] F:\$RECYCLE.BIN
[02/09/2012 - 15:50:10 | D ] F:\clem s02e02
[02/09/2012 - 15:37:58 | D ] F:\Clem
[02/09/2012 - 15:39:02 | D ] F:\clem la guerre des familles
[02/09/2012 - 15:38:42 | D ] F:\clem s02e01
[27/10/2012 - 18:05:30 | D ] F:\SAVE 2012_10_27
[12/10/2012 - 15:25:54 | D ] F:\IBM MODELER
[11/02/2013 - 11:27:42 | N | 0] F:\.com.apple.timemachine.donotpresent
[09/11/2012 - 11:22:44 | D ] F:\2012 AXE 1 Métriques et modèles
[11/02/2013 - 11:27:42 | N | 4096] F:\._.com.apple.timemachine.donotpresent
[01/12/2012 - 20:36:10 | D ] F:\SAVE 2012_12_02
[30/01/2013 - 10:21:46 | N | 692707460] F:\setupCEStudio.6.1.2.284-win32.exe
[10/02/2013 - 19:54:48 | N | 23222243] F:\smartpls_2.0.M3_win32.win32.x86_setup.exe
[11/02/2013 - 16:10:40 | D ] F:\2013_02_11 TEMIS
[19/04/2013 - 17:27:40 | D ] F:\2013_Finances
[26/04/2013 - 11:50:26 | D ] F:\2013_04_25 ENVOI NANTERRE
[14/04/2013 - 18:48:32 | D ] F:\2012 Article DM social shopping CB-LL
[19/04/2013 - 17:25:52 | D ] F:\2013 AXE 1 Métriques et modèles
[27/04/2013 - 11:27:08 | N | 182989] F:\DMR2012_6D_1 - Synthese (12).pdf
[27/04/2013 - 11:28:20 | N | 267600] F:\20120621090352_instructions_auteurs_dm_2012.pdf
[01/03/2013 - 19:41:22 | D ] F:\2013_02_18 INFLUENCE
[19/04/2013 - 17:21:24 | D ] F:\INfluence
[28/04/2013 - 19:56:14 | N | 4385792] F:\Hypam V0.ppt
[29/04/2013 - 19:18:54 | N | 422997] F:\Hypam V0.zip
[02/05/2013 - 12:05:44 | D ] F:\pourfixe
[02/05/2013 - 17:54:44 | D ] F:\FINAL HDR FINAL
[19/04/2013 - 03:40:40 | N | 562182] F:\JAMS-D-13-00103.pdf
[24/04/2013 - 12:11:50 | N | 36843] F:\PastedGraphic-1.jpg
[03/05/2013 - 19:47:42 | D ] F:\2013_04_25 Factorielles
[03/05/2013 - 19:50:24 | D ] F:\SAVE_2013_05_03
[08/05/2013 - 11:09:16 | N | 20447] F:\2013_05_03 Proposition Factorielles.docx
[08/05/2013 - 11:09:22 | N | 77186] F:\2013_05_03 Proposition Factorielles.pdf

################## | Vaccin |

C:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
E:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
F:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

################## | E.O.F | https://sosvirus.net |
#3792
Re bonsoir

Répond sur l'autre topic, ou je t'ai répondu
Celui-ci va être fermé !

Bonne réception

    Coucou, :) Avant de tout réinstaller en […]

    Suspicion de virus crypto

    Ok bonne route :)

    Problème avec Adsfix

    bonsoir ok , à te lire prochainement :)

    suspicion de contamination

    ok très bien, merci