[g3n-h@ckm@n] Infection Clés USB Réccourcis fichiers + fichiers cachés 2016-01-07T17:03:42+00:00

SOSVirus : Dépannage PC Gratuit Support Aide à la désinfection – Forum Virus Sécurité [g3n-h@ckm@n] Infection Clés USB Réccourcis fichiers + fichiers cachés

  • Auteur
    Messages
  • g3n-h@ckm@ng3n-h@ckm@n
    Admin bbPress
    Post count: 8281

    Salut

    McAfee Security Scan : tu peux désinstaller

    sinon tu ne dois plus avoir de soucis normalement :)

  • oelyamani
    Participant
    Post count: 0

    bonjour
    ma clés usb a été infectée, du coup tous mes fichiers sont devenus cachés et il n’y a plus que des raccourcis. Avast ne detecte rien.
    j’ai lancé USBFIX ci-aprés le rapport de l’analyse. merci de votre aide.

    ############################## | UsbFix V 8.170 | [Nettoyage]

    Utilisateur: Omar DELL (Administrateur) # OMAR
    Mis à jour le 16/12/2015 par SosVirus
    Lancé à 16:38:48 | 07/01/2016

    Site Web : http://www.usbfix.net/
    Tutoriel : https://www.sosvirus.net/tutoriel-usbfix/
    Assistance : https://www.sosvirus.net/aide-nettoyage-pc/
    Détection en Live : http://comment-supprimer.fr/
    Contact : http://www.usbfix.net/contact/

    ################## | System information |

    MB: Dell Inc. (0VP63H)
    CPU: Intel(R) Core(TM) i5-3210M CPU @ 2.50GHz
    RAM -> [Total : 3969 Mo | Free : 1786 Mo]
    Bios: Dell Inc.
    Boot: Normal boot

    OS: Microsoft™ Windows 8.1 Pro (6.3.9600 64-Bit)
    WB: Internet Explorer : 11.00.9600.16384
    WB: Google Chrome : 47.0.2526.106
    WB: Mozilla Firefox : 43.0.3

    ################## | Security Information |

    AV: Windows Defender [(!) Désactivé |(!) Non à jour]
    AV: avast! Antivirus [Actif |A jour]
    AS: Windows Defender [(!) Désactivé |(!) Non à jour]
    AS: avast! Antivirus [Actif |A jour]
    FW: Windows Firewall [Actif]
    SC: Security Center [Actif]
    WU: Windows Update [Actif]

    ################## | Disk Information |

    C: -> Disque fixe # 236 Go (136 Go libre(s) – 58%) [OS] # NTFS
    E: -> Disque fixe # 220 Go (55 Go libre(s) – 25%) [Sauvegarde Omar] # NTFS
    F: -> CD-ROM # 656 Mo (0 Mo libre(s) – 0%) [PRO Landscape 12.1 Tutorial] # UDF
    G: -> CD-ROM # 5 Mo (0 Mo libre(s) – 0%) [U3 System] # CDFS
    H: -> Disque amovible # 2 Go (2 Go libre(s) – 100%) [HELYAMANI] # FAT

    ################## | Recherche générique |

    Supprimé! H:winlogon.vbs
    Supprimé! H:UsbFix_2016_8.170.lnk
    Supprimé! H:UsbFix 2016 v8.lnk
    Supprimé! H:UsbFix.lnk
    Supprimé! H:winlogon.bat
    Non supprimé ! … Tentative au redémarrage… C:UsersoyamaniAppDataLocalTempwinlogon.vbs
    Supprimé! HKUS-1-5-21-3943152586-1599552608-3113047812-1195SoftwareMicrosoftWindowsCurrentVersionRun|winlogon
    Restauré! [N] H:UsbFix_2016_8.170.zip
    Restauré! [N] H:UsbFix 2016 v8.156 – DailyApp
    Restauré! [N] H:UsbFix.exe

    (!) Fichiers temporaires supprimés. (103.163276672363 MB)

    ################## | Startup |

    F2 – HKLM..Winlogon : [Shell] explorer.exe
    F2 – [x64] HKLM..Winlogon : [Shell] explorer.exe
    F2 – HKLM..Winlogon : [Userinit] userinit.exe
    F2 – [x64] HKLM..Winlogon : [Userinit] C:Windowssystem32userinit.exe,
    04 – HKCU..Run : [ultracopier] “C:Program Files (x86)Supercopiersupercopier.exe”
    04 – HKCU..Run : [IDMan] C:Program Files (x86)Internet Download ManagerIDMan.exe /onboot
    04 – HKCU..Run : [DAEMON Tools Lite] “C:Program Files (x86)DAEMON Tools LiteDTLite.exe” -autorun
    04 – HKCU..Run : [PRO Landscape Dashboard] C:Program Files (x86)DrafixPRO LandscapePRO Landscape Dashboard.exe /hide
    04 – HKCU..RunOnce : [FlashPlayerUpdate] C:WINDOWSSysWOW64MacromedFlashFlashUtil32_15_0_0_246_Plugin.exe -update plugin
    04 – HKLM..Run : [IMSS] “C:Program Files (x86)IntelIntel(R) Management Engine ComponentsIMSSPIconStartup.exe”
    04 – HKLM..Run : [IAStorIcon] C:Program Files (x86)IntelIntel(R) Rapid Storage TechnologyIAStorIconLaunch.exe “C:Program Files (x86)IntelIntel(R) Rapid Storage TechnologyIAStorIcon.exe” 60
    04 – HKLM..Run : [RemoteControl10] “C:Program Files (x86)CyberLinkPowerDVD10PDVD10Serv.exe”
    04 – HKLM..Run : [SunJavaUpdateSched] “C:Program Files (x86)Common FilesJavaJava Updatejusched.exe”
    04 – HKLM..Run : [APSDaemon] “C:Program Files (x86)Common FilesAppleApple Application SupportAPSDaemon.exe”
    04 – HKLM..Run : [iTunesHelper] “C:Program Files (x86)iTunesiTunesHelper.exe”
    04 – HKLM..Run : [AvastUI.exe] “C:Program FilesAVAST SoftwareAvastAvastUI.exe” /nogui
    04 – HKLM..Run : [Wondershare Helper Compact.exe] C:Program Files (x86)Common FilesWondershareWondershare Helper CompactWSHelper.exe
    04 – HKLM..Run : [HP Software Update] C:Program Files (x86)HPHP Software UpdateHPWuSchd2.exe
    04 – HKLM..RunOnce : [20150107] C:Program FilesAVAST SoftwareAvastsetupemupdatefc0cbeea-6678-4bd7-bcf7-49e8becef8f0.exe /check
    04 – [x64] HKLM..Run : [IgfxTray] “C:WINDOWSsystem32igfxtray.exe”
    04 – [x64] HKLM..Run : [HotKeysCmds] “C:WINDOWSsystem32hkcmd.exe”
    04 – [x64] HKLM..Run : [Persistence] “C:WINDOWSsystem32igfxpers.exe”
    04 – [x64] HKLM..Run : [SysTrayApp] C:Program FilesIDTWDMsttray64.exe
    04 – [x64] HKLM..Run : [Apoint] C:Program FilesDellTPadApoint.exe
    04 – [x64] HKLM..Run : [IntelPROSet] “C:Program FilesCommon FilesIntelWirelessCommoniFrmewrk.exe” /tf Intel PROSet/Wireless
    04 – [x64] HKLM..Run : [TdmNotify] C:Program FilesDellDell Data ProtectionAccessAdvancedWaveTrusted Drive ManagerTdmNotify.exe
    04 – [x64] HKLM..Run : [DFEPApplication] C:Program FilesDellFeature Enhancement PackDFEPApplication.exe
    04 – [x64] HKLM..Run : [SoftEther VPN Client UI Helper] “C:Program FilesSoftEther VPN Clientvpnclient_x64.exe” /uihelp
    04 – [x64] HKLM..Run : [Classic Start Menu] “C:Program FilesClassic ShellClassicStartMenu.exe” -autorun
    04 – [x64] HKLM..RunOnce : [*WerKernelReporting] %SYSTEMROOT%SYSTEM32WerFault.exe -k -rq
    04 – HKUS-1-5-21-3943152586-1599552608-3113047812-1195..Run : [GoogleContactSync] C:Program Files (x86)WebGearGO Contact SyncGOContactSync.exe
    04 – HKUS-1-5-21-3943152586-1599552608-3113047812-1195..Run : [GoogleDriveSync] “C:Program Files (x86)GoogleDrivegoogledrivesync.exe” /autostart
    04 – HKUS-1-5-21-3943152586-1599552608-3113047812-1195..Run : [Google Update] “C:UsersoyamaniAppDataLocalGoogleUpdateGoogleUpdate.exe” /c
    04 – HKUS-1-5-21-3943152586-1599552608-3113047812-1195..Run : [IDMan] C:Program Files (x86)Internet Download ManagerIDMan.exe /onboot
    04 – HKUS-1-5-21-3943152586-1599552608-3113047812-1195..Run : [DAEMON Tools Lite] “C:Program Files (x86)DAEMON Tools LiteDTLite.exe” -autorun
    04 – HKUS-1-5-21-824470728-1402000647-714367994-1001..Run : [ultracopier] “C:Program Files (x86)Supercopiersupercopier.exe”
    04 – HKUS-1-5-21-824470728-1402000647-714367994-1001..Run : [IDMan] C:Program Files (x86)Internet Download ManagerIDMan.exe /onboot
    04 – HKUS-1-5-21-824470728-1402000647-714367994-1001..Run : [DAEMON Tools Lite] “C:Program Files (x86)DAEMON Tools LiteDTLite.exe” -autorun
    04 – HKUS-1-5-21-824470728-1402000647-714367994-1001..Run : [PRO Landscape Dashboard] C:Program Files (x86)DrafixPRO LandscapePRO Landscape Dashboard.exe /hide
    04 – HKUS-1-5-21-824470728-1402000647-714367994-1001..RunOnce : [FlashPlayerUpdate] C:WINDOWSSysWOW64MacromedFlashFlashUtil32_15_0_0_246_Plugin.exe -update plugin
    04GS – Smart Settings.lnk :
    04GS – Adobe Reader Speed Launch.lnk :
    04GS – Bluetooth.lnk :
    04GS – Google Calendar Sync.lnk :
    04GS – HP Digital Imaging Monitor.lnk :
    04GS – McAfee Security Scan Plus.lnk :
    04GS – SoftEther VPN Client Manager Startup.lnk : /startup

    ################## | UsbFix – Information |

    Info : Comment supprimer l’infection des raccourcis sur USB ? (Video)
    Info : L’infection des raccourcis USB, c’est quoi ?
    Détection en Live : http://comment-supprimer.fr/

    ################## | C: – Disque Fixe (NTFS) |

    [04/09/2012 – 20:54:56 | N | 6 Ko] – C:bootmenu.xml
    [10/12/2015 – 11:18:37 | ASH | 3251576 Ko] – C:hiberfil.sys
    [10/12/2015 – 11:18:39 | ASH | 262144 Ko] – C:swapfile.sys
    [31/12/2015 – 10:46:08 | ASH | 1887652 Ko] – C:pagefile.sys
    [26/03/2013 – 09:34:15 | N | 30 Ko] – C:dell.sdr
    [17/12/2015 – 11:24:08 | D] – C:Config.Msi
    [10/12/2015 – 11:19:28 | A | 34 Ko] – C:SUService.log
    [02/11/2015 – 10:28:48 | A | 0 Ko] – C:ftconfig.ini
    [15/11/2013 – 07:37:44 | SHD] – C:$Recycle.Bin
    [26/07/2012 – 03:44:30 | RASH | 389 Ko] – C:bootmgr
    [26/03/2013 – 00:39:18 | D] – C:Intel
    [26/03/2013 – 01:17:07 | D] – C:Apps
    [26/03/2013 – 09:15:34 | D] – C:Drivers
    [26/03/2013 – 10:59:38 | D] – C:System Recovery
    [26/03/2013 – 11:05:45 | D] – C:Temp
    [18/06/2013 – 12:18:29 | N | 0 Ko] – C:BOOTNXT
    [22/08/2013 – 14:45:52 | SHD] – C:Documents and Settings
    [22/08/2013 – 15:22:35 | D] – C:PerfLogs
    [26/09/2013 – 03:30:19 | D] – C:DELL
    [26/09/2013 – 06:08:00 | RHD] – C:MSOCache
    [15/10/2013 – 07:30:11 | D] – C:Spacekace
    [29/10/2013 – 07:03:14 | SHD] – C:Recovery
    [29/10/2013 – 08:12:21 | RD] – C:Users
    [29/10/2013 – 10:55:46 | D] – C:crystalreportviewers12
    [24/12/2013 – 12:31:10 | D] – C:LJ_CP5520_Series
    [29/07/2014 – 22:25:21 | D] – C:AVAST Software
    [29/09/2014 – 12:22:34 | D] – C:PRO Landscape Library
    [05/11/2015 – 10:05:07 | HD] – C:ProgramData
    [23/11/2015 – 17:44:16 | RD] – C:Program Files
    [04/01/2016 – 09:10:49 | RD] – C:Program Files (x86)
    [06/01/2016 – 20:13:43 | D] – C:Windows
    [07/01/2016 – 16:30:28 | D] – C:Downloads
    [07/01/2016 – 16:45:22 | D] – C:UsbFix

    ################## | E: – Disque Fixe (NTFS) |

    [26/09/2013 – 11:07:28 | A | 10 Ko] – E:PF. Box 900 Kg.xlsx
    [02/01/2014 – 11:22:22 | A | 25 Ko] – E:ETAT RECAP STOCK.xlsx
    [02/01/2014 – 12:12:38 | A | 56 Ko] – E:PF. Estagnons 25L.xlsx
    [02/01/2014 – 12:20:06 | A | 99 Ko] – E:PF. Futs 200 L.xlsx
    [02/01/2014 – 12:22:46 | A | 27 Ko] – E:PF. Futs 225L.xlsx
    [02/01/2014 – 14:07:22 | A | 43 Ko] – E:PF. Bibons 2L.xlsx
    [02/01/2014 – 14:10:22 | A | 50 Ko] – E:PF. Bidons 1 L.xlsx
    [02/01/2014 – 14:12:14 | A | 43 Ko] – E:PF. Bidons 5L.xlsx
    [02/01/2014 – 14:13:28 | A | 12 Ko] – E:PF. Estagnons 20L.xlsx
    [04/01/2013 – 19:19:25 | A | 224532 Ko] – E:[Architecture.Ebook].Neufert_3_edition.pdf
    [28/12/2013 – 18:42:08 | A | 61 Ko] – E:Reçu haja 28122013.pdf
    [13/08/2014 – 08:09:12 | N | 893310 Ko] – E:20140813_085322.mp4
    [29/12/2013 – 10:43:44 | SHD] – E:$RECYCLE.BIN
    [26/11/2013 – 12:45:47 | RD] – E:Documents
    [29/12/2013 – 10:43:11 | D] – E:Quran Yasseen
    [30/12/2013 – 17:34:32 | D] – E:SMQ CMH
    [04/08/2014 – 09:21:51 | D] – E:sauvegarde SII
    [29/09/2014 – 12:24:02 | D] – E:Pro Landscape 12
    [18/05/2015 – 10:24:01 | D] – E:NOTE II
    [13/10/2015 – 14:41:05 | D] – E:Backup gmail sdcc
    [28/10/2015 – 15:52:56 | D] – E:Archive
    [09/11/2015 – 11:55:47 | D] – E:Note 4

    ################## | H: – Disque USB (FAT) |

    [07/01/2016 – 16:28:10 | N | 2760 Ko] – H:UsbFix_2016_8.170.zip
    [07/01/2016 – 16:30:30 | N | 2742 Ko] – H:UsbFix 2016 v8.156 – DailyApp
    [07/01/2016 – 16:28:52 | N | 3145 Ko] – H:UsbFix.exe

    ################## | Vaccin |

    C:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
    E:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
    H:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

    Analyse réalisée en 407.5 secondes

    ################## | E.O.F | https://www.sosvirus.net/ | http://www.usbfix.net/ |

    slts

Le sujet ‘[g3n-h@ckm@n] Infection Clés USB Réccourcis fichiers + fichiers cachés’ est fermé à de nouvelles réponses.