INFECTE PAR SKYPEE 2014-07-05T21:49:41+00:00
2 sujets de 1 à 2 (sur un total de 2)
  • Auteur
    Messages
  • korandjiface
    Participant
    Nombre d'articles : 8

    JAI LA PRESENCE DE SKYPEE SUR MON PC QUI TRANSFORME MES FICHIERS PARENTS EN RACCOURCI. JAI UTILISé USBFIX ADWCLEANER ZHPDIAG MALWAREBYTES RIEN NI FI :unhappy: HELP ME

    ############################## | UsbFix V 7.173 | [Nettoyage]

    Utilisateur: KORANDJI (Administrateur) # KORANDJI-PC
    Mis à jour le 04/07/2014 par El Desaparecido – SosVirus
    Lancé à 21:20:51 | 05/07/2014

    Site Web : http://www.usbfix.net/
    Changelog : http://www.usbfix.net/maj/
    Assistance : https://www.sosvirus.net/aide-nettoyage-pc/
    Upload Malware : https://www.sosvirus.net/upload_malware.php
    Contact : http://www.usbfix.net/contact/

    ################## | System information |

    MB: TOSHIBA (Portable PC)
    CPU: Intel(R) Core(TM) i3-2370M CPU @ 2.40GHz
    RAM -> [Total : 3989 Mo | Free : 2553 Mo]
    Bios: Insyde Corp.
    Boot: Normal boot

    OS: Microsoft™ Windows 7 Ultimate (6.1.7600 64-Bit)
    WB: Internet Explorer : 8.00.7600.16385
    WB: Mozilla Firefox : 30.0

    ################## | Security Information |

    AV: Microsoft Security Essentials [(!) Désactivé |A jour]
    AS: Windows Defender [(!) Désactivé |A jour]
    AS: Microsoft Security Essentials [(!) Désactivé |A jour]
    FW: Windows Firewall [(!) Désactivé]
    SC: Security Center [Actif]
    WU: Windows Update [Actif]

    ################## | Disk Information |

    C: (%SystemDrive%) -> Disque fixe # 238 Go (156 Go libre(s) – 65%) [] # NTFS
    E: -> Disque fixe # 122 Go (109 Go libre(s) – 89%) [BACKUP] # NTFS
    F: -> Disque fixe # 52 Go (38 Go libre(s) – 74%) [DIVERS] # NTFS
    G: -> Disque amovible # 4 Go (3 Go libre(s) – 81%) [POCKET] # FAT32
    Y: -> Disque fixe # 29 Go (29 Go libre(s) – 98%) [JOB_CV] # NTFS
    Z: -> Disque fixe # 24 Go (12 Go libre(s) – 51%) [WIN 8] # NTFS

    ################## | Processus Stoppés |

    C:WindowsSystem32spoolsv.exe (ID: 1364|ParentID: 672|Système)
    C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe (ID: 1504|ParentID: 672|Système)
    C:WindowsSystem32taskhost.exe (ID: 1568|ParentID: 672|KORANDJI)
    C:Program Files (x86)InternetEverywhereInternetEverywhere_Service.exe (ID: 1676|ParentID: 672|Système)
    C:Windowsexplorer.exe (ID: 1784|ParentID: 1732|KORANDJI)
    C:Program FilesRealtekAudioHDARAVCpl64.exe (ID: 2660|ParentID: 1784|KORANDJI)
    C:WindowsSystem32SearchIndexer.exe (ID: 2768|ParentID: 672|Système)
    C:WindowsSystem32igfxtray.exe (ID: 2756|ParentID: 1784|KORANDJI)
    C:WindowsSystem32hkcmd.exe (ID: 2840|ParentID: 1784|KORANDJI)
    C:WindowsSystem32igfxpers.exe (ID: 400|ParentID: 1784|KORANDJI)
    C:Program FilesSynapticsSynTPSynTPEnh.exe (ID: 2536|ParentID: 1784|KORANDJI)
    C:Program FilesMicrosoft Security Clientmsseces.exe (ID: 2684|ParentID: 1784|KORANDJI)
    C:Program Files (x86)Internet Download ManagerIDMan.exe (ID: 2376|ParentID: 1784|KORANDJI)
    C:Program Files (x86)InternetEverywhereInternetEverywhere_Launcher.exe (ID: 1816|ParentID: 1784|KORANDJI)
    C:Program FilesSynapticsSynTPSynTPHelper.exe (ID: 3716|ParentID: 2812|KORANDJI)
    C:Program Files (x86)UnHackMeGWebUpdate.exe (ID: 3456|ParentID: 2696|KORANDJI)
    C:Program Files (x86)Internet Download ManagerIEMonitor.exe (ID: 3304|ParentID: 2376|KORANDJI)
    C:Program FilesCommon FilesMicrosoft SharedOfficeSoftwareProtectionPlatformOSPPSVC.EXE (ID: 2500|ParentID: 672|SERVICE RÉSEAU)
    C:Program Files (x86)WiMAX Connection ManagerWiMAX Connection Manager.EXE (ID: 3012|ParentID: 1784|KORANDJI)
    C:Program Files (x86)Mozilla Firefoxfirefox.exe (ID: 836|ParentID: 2572|KORANDJI)
    C:WindowsSystem32WUDFHost.exe (ID: 3616|ParentID: 516|SERVICE LOCAL)

    ################## | Autorun |

    ################## | Recherche générique |

    (!) Fichiers temporaires supprimés.

    ################## | Registre |

    Supprimé! HKUS-1-5-21-3860222927-2786596504-4009621489-1000Software….Mountpoints2{76dd5293-fd46-11e3-afba-446d57d8dce8}

    ################## | Regedit Run |

    F2 – HKLM..Winlogon : [Shell] explorer.exe
    F2 – [x64] HKLM..Winlogon : [Shell] explorer.exe
    F2 – HKLM..Winlogon : [Userinit] userinit.exe,
    F2 – [x64] HKLM..Winlogon : [Userinit] C:Windowssystem32userinit.exe,
    04 – HKCU..Run : [IDMan] C:Program Files (x86)Internet Download ManagerIDMan.exe /onboot
    04 – HKLM..Run : [Adobe ARM] “C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe”
    04 – HKLM..Run : [BCSSync] “C:Program Files (x86)Microsoft OfficeOffice14BCSSync.exe” /DelayServices
    04 – [x64] HKLM..Run : [RTHDVCPL] “C:Program FilesRealtekAudioHDARAVCpl64.exe” -s
    04 – [x64] HKLM..Run : [IgfxTray] “C:Windowssystem32igfxtray.exe”
    04 – [x64] HKLM..Run : [HotKeysCmds] “C:Windowssystem32hkcmd.exe”
    04 – [x64] HKLM..Run : [Persistence] “C:Windowssystem32igfxpers.exe”
    04 – [x64] HKLM..Run : [SynTPEnh] %ProgramFiles%SynapticsSynTPSynTPEnh.exe
    04 – [x64] HKLM..Run : [MSC] “c:Program FilesMicrosoft Security Clientmsseces.exe” -hide -runkey
    04 – HKUS-1-5-19..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
    04 – HKUS-1-5-20..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
    04 – HKUS-1-5-21-3860222927-2786596504-4009621489-1000..Run : [IDMan] C:Program Files (x86)Internet Download ManagerIDMan.exe /onboot
    04 – HKUS-1-5-19..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe
    04 – HKUS-1-5-20..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe

    ################## | C: %SystemDrive% – Disque Fixe (NTFS) |

    [05/07/2014 – 20:22:15 | ASH | 4084536 Ko] – C:pagefile.sys
    [05/07/2014 – 20:22:15 | ASH | 3063400 Ko] – C:hiberfil.sys
    [25/06/2014 – 15:37:03 | SHD] – C:$Recycle.Bin
    [03/07/2014 – 15:53:47 | RASH | 8 Ko] – C:BOOTSECT.BAK
    [14/07/2009 – 03:20:08 | D] – C:PerfLogs
    [14/07/2009 – 05:08:56 | SHD] – C:Documents and Settings
    [18/06/2013 – 12:18:29 | N | 0 Ko] – C:BOOTNXT
    [30/09/2013 – 04:24:45 | RASH | 389 Ko] – C:bootmgr
    [25/06/2014 – 15:36:46 | D] – C:Users
    [26/06/2014 – 15:38:42 | N | 200 Ko] – C:grldr
    [27/06/2014 – 17:06:14 | RHD] – C:MSOCache
    [27/06/2014 – 17:07:38 | D] – C:Program Files
    [03/07/2014 – 14:56:35 | SHD] – C:Recovery
    [03/07/2014 – 15:53:45 | SHD] – C:Boot
    [05/07/2014 – 12:09:32 | D] – C:34895a871fdd26069f0ef21a2f
    [05/07/2014 – 12:09:32 | D] – C:8add7db37a3cba3a86a8e6
    [05/07/2014 – 12:09:32 | D] – C:b1a7ea375e2bcdaf9889
    [05/07/2014 – 12:09:32 | D] – C:Intel
    [05/07/2014 – 12:31:53 | D] – C:Skypee
    [05/07/2014 – 20:12:15 | D] – C:Windows
    [05/07/2014 – 20:16:08 | HD] – C:ProgramData
    [05/07/2014 – 21:17:37 | SHD] – C:System Volume Information
    [05/07/2014 – 21:17:54 | D] – C:Program Files (x86)
    [05/07/2014 – 21:20:30 | D] – C:UsbFix

    ################## | E: – Disque Fixe (NTFS) |

    [23/07/2011 – 08:44:22 | N | 1102 Ko] – E:chapitre 1-INTRODUCTION AUX SYSTEMES MICROPROGRAMMES.pdf
    [15/06/2011 – 20:54:36 | N | 3584 Ko] – E:Pitbull booba.mp3
    [09/07/2011 – 19:17:26 | N | 7551 Ko] – E:Eminem feat 50Cents – Keepin it gangsta ( Soldier remix ).mp3
    [31/08/2011 – 15:33:54 | N | 1965 Ko] – E:Garcia korandji.mp3
    [21/10/2011 – 20:26:20 | N | 4309 Ko] – E:DIMAS Spot.mp3
    [08/03/2013 – 20:59:07 | N | 5457 Ko] – E:Les Ingenieurs (Jeu D’epaules).mp3
    [05/07/2014 – 12:26:31 | N | 2 Ko] – E:AlbumArt_{00000000-0000-0000-0000-000000000000}_Small.jpg
    [05/07/2014 – 12:26:31 | N | 2 Ko] – E:AlbumArtSmall.jpg
    [05/07/2014 – 12:26:34 | N | 11 Ko] – E:AlbumArt_{00000000-0000-0000-0000-000000000000}_Large.jpg
    [05/07/2014 – 12:26:34 | N | 11 Ko] – E:Folder.jpg
    [10/11/2011 – 15:18:22 | N | 93 Ko] – E:logiciel_swf_createur_2676.html
    [30/06/2014 – 16:00:36 | N | 83 Ko] – E:Le support de Windows XP a pris fin – Microsoft Windows.htm
    [25/11/2011 – 07:20:14 | N | 54 Ko] – E:image1.gif
    [05/07/2014 – 12:26:16 | N | 3926 Ko | SHA1: 1B3092388F7E692451E1370087E57382E84BDF80] – E:UsbFix_2.exe
    [05/07/2014 – 12:09:35 | D] – E:S.G.B.D
    [02/07/2014 – 08:41:22 | SHD] – E:$RECYCLE.BIN
    [07/05/2008 – 21:31:58 | N | 20817 Ko] – E:Noeud de cravate double.avi
    [03/07/2014 – 15:01:08 | SHD] – E:System Volume Information
    [05/07/2014 – 12:09:33 | D] – E:ASTUCES
    [05/07/2014 – 12:09:34 | D] – E:bonnes habitude
    [05/07/2014 – 12:09:34 | D] – E:BUREAUTIQUE
    [05/07/2014 – 12:09:34 | D] – E:GSM
    [05/07/2014 – 12:09:34 | D] – E:Le support de Windows XP a pris fin – Microsoft Windows_fichiers
    [05/07/2014 – 12:09:34 | D] – E:LINUX
    [05/07/2014 – 12:09:34 | D] – E:MAINTENANCE
    [05/07/2014 – 12:09:34 | D] – E:Memoire
    [05/07/2014 – 12:09:34 | D] – E:Nouveau projet
    [05/07/2014 – 12:09:34 | D] – E:OP
    [05/07/2014 – 12:09:34 | D] – E:PHOTOS
    [05/07/2014 – 12:09:35 | D] – E:PHOTOSHOP
    [05/07/2014 – 12:09:35 | D] – E:PROGRAMMATION
    [05/07/2014 – 12:09:35 | D] – E:RENFO
    [05/07/2014 – 12:09:35 | D] – E:RESEAU
    [05/07/2014 – 12:09:35 | D] – E:Transmission
    [05/07/2014 – 12:31:53 | D] – E:Skypee

    ################## | F: – Disque Fixe (NTFS) |

    [02/06/2008 – 04:28:46 | N | 9510 Ko] – F:NVU(Siteweb).zip
    [29/11/2012 – 08:46:45 | N | 4590208 Ko] – F:FC_4 i386 DVD #9.iso
    [03/05/2013 – 00:32:09 | N | 436278 Ko] – F:Vmware workstation9.iso
    [25/11/2012 – 22:19:00 | N | 3347 Ko | SHA1: 7A966BB587B048F6AF128F76C419BC3D9E8DE914] – F:rcsetup144.exe
    [02/07/2014 – 08:41:22 | SHD] – F:$RECYCLE.BIN
    [05/07/2014 – 12:09:36 | D] – F:Folder Lock 6.4.1
    [05/07/2014 – 12:09:36 | D] – F:Internet_Download_Manager_6.08_build_9_+_Patch_+_Serial
    [05/07/2014 – 12:09:36 | D] – F:Camtasia Studio v7.0.0_Full Version-fAiPaSSa
    [05/07/2014 – 12:09:36 | D] – F:Beceem Diagnostic Control Panel 3.5.0
    [03/07/2014 – 15:01:08 | SHD] – F:System Volume Information
    [05/07/2014 – 12:09:36 | D] – F:Aspirateurs (sites)
    [05/07/2014 – 12:09:36 | D] – F:CCleaner
    [05/07/2014 – 12:09:36 | D] – F:Désert storm 2
    [05/07/2014 – 12:09:36 | D] – F:Mes Gadgets
    [05/07/2014 – 12:09:36 | D] – F:nero
    [05/07/2014 – 12:09:36 | D] – F:Restaurer les fichiers perdus
    [05/07/2014 – 12:09:37 | D] – F:scrabble
    [05/07/2014 – 12:09:37 | D] – F:scrabble 2009
    [05/07/2014 – 12:09:37 | D] – F:TRADUCTEUR
    [05/07/2014 – 12:09:37 | D] – F:Votre PC Prend la Parole MICRO Application
    [05/07/2014 – 15:49:00 | D] – F:software
    [05/07/2014 – 15:50:14 | D] – F:Office 2007
    [05/07/2014 – 15:51:47 | D] – F:KORANDJI DOSSIER

    ################## | G: – Disque USB (FAT32) |

    [10/06/2014 – 10:39:52 | N | 12542 Ko] – G:INVESTS _Cyber 4A_2014.xlsx
    [10/10/2013 – 03:03:18 | N | 238159 Ko] – G:passport pour le crime.mp4
    [22/10/2013 – 09:28:50 | N | 144426 Ko] – G:Passport pour le crime 2 (Low).mp4
    [06/05/2014 – 00:14:24 | N | 63722 Ko] – G:Casting Malien MDRRRRRR (CASE SARAMAYA).mp4
    [06/05/2014 – 00:18:16 | N | 36826 Ko] – G:MALI– Case saramaya (les reactions).mp4
    [12/06/2014 – 22:52:16 | N | 2467 Ko] – G:Scandale Miss Côte d’Ivoire 2014 nouvelle vidéo.mp4
    [12/05/2014 – 14:01:46 | N | 374 Ko] – G:Picture 008.jpg
    [12/05/2014 – 14:01:48 | N | 400 Ko] – G:Picture 011.jpg
    [27/10/2013 – 21:25:32 | N | 23710 Ko | SHA1: 8F45A84E7DDCCC5503BBEC6417789F164B00FF83] – G:vlc-2.1.0-win32.exe
    [10/02/2014 – 17:40:12 | N | 19 Ko] – G:BENCH MARK COÛT DES CARTES.docx
    [21/06/2014 – 17:25:22 | N | 28 Ko] – G:PREMIERE PARTIEfinir.docx
    [29/06/2014 – 00:28:16 | N | 30 Ko] – G:Prospectus.doc
    [27/01/2014 – 15:31:30 | SHD] – G:System Volume Information
    [12/05/2014 – 12:35:14 | D] – G:2014_05_12
    [12/05/2014 – 17:20:00 | D] – G:Downloads
    [16/05/2014 – 23:41:18 | D] – G:Cyber du 16-5-2014
    [29/06/2014 – 08:12:36 | D] – G:DB

    ################## | Y: – Disque Fixe (NTFS) |

    [20/04/2012 – 21:31:34 | N | 1257 Ko] – Y:dossier_reussir_son_parcours_professionnel20120321_2.ppt
    [14/06/2012 – 00:53:40 | N | 3515 Ko] – Y:COMPRENDRE LA CYBERCRIMINALITÉ-GUIDE POUR LES PAYS EN VOIE DE DEVELOPPEMENT.pdf
    [10/04/2013 – 05:06:32 | N | 105 Ko] – Y:cv.pdf
    [10/04/2013 – 08:40:34 | N | 54 Ko] – Y:METHODOLOGIE_DE_CONCEPTION.pdf
    [22/04/2013 – 14:23:42 | N | 252 Ko] – Y:F4_CAISS.pdf
    [24/06/2013 – 17:50:22 | N | 1680 Ko] – Y:Feuilletage.pdf
    [24/06/2013 – 18:56:20 | N | 66 Ko] – Y:Fiche_telecommunication.pdf
    [01/07/2013 – 19:53:24 | N | 150 Ko] – Y:modele_de_contrat_informatique.pdf
    [03/07/2013 – 18:32:48 | N | 71 Ko] – Y:modele_de_contrat_maintenance_logiciel.pdf
    [11/07/2013 – 19:32:58 | N | 149 Ko] – Y:CONTRAT DE MAINTENANCE.pdf
    [26/06/2012 – 11:37:30 | N | 8 Ko] – Y:46 002.jpg
    [23/08/2012 – 11:11:44 | N | 852 Ko] – Y:GEDC1718.jpg
    [26/06/2012 – 14:28:54 | N | 20 Ko] – Y:A Abidjan.docx
    [23/05/2013 – 17:07:42 | N | 33 Ko] – Y:KORANDJI ELODIE MIREILLE cv trafic.docx
    [04/07/2013 – 11:34:36 | N | 20 Ko] – Y:CONTRAT DE MAINTENANCE.docx
    [05/07/2014 – 20:41:01 | N | 863 Ko] – Y:Korandji flora marcelle.docx
    [12/03/2011 – 20:02:04 | N | 71 Ko] – Y:Mon CV DENISE OK.doc
    [27/06/2013 – 16:34:42 | N | 93 Ko] – Y:CV DE VANIE modifié encore 1.doc
    [03/07/2014 – 17:13:40 | SHD] – Y:$RECYCLE.BIN
    [03/07/2014 – 15:01:08 | SHD] – Y:System Volume Information
    [05/07/2014 – 12:09:48 | D] – Y:embauche
    [05/07/2014 – 12:09:48 | D] – Y:entretiens
    [05/07/2014 – 12:09:48 | D] – Y:Français
    [05/07/2014 – 12:09:48 | D] – Y:key_usb
    [05/07/2014 – 12:09:49 | D] – Y:net
    [05/07/2014 – 12:09:49 | D] – Y:net_net
    [05/07/2014 – 12:09:49 | D] – Y:PAPA_MAMAN
    [05/07/2014 – 12:09:49 | D] – Y:recherche_bara
    [05/07/2014 – 12:09:49 | D] – Y:TEMPLATES
    [05/07/2014 – 12:31:53 | D] – Y:Skypee

    ################## | Z: – Disque Fixe (NTFS) |

    [03/07/2014 – 15:05:35 | ASH | 3267624 Ko] – Z:hiberfil.sys
    [03/07/2014 – 15:05:37 | N | 1441792 Ko] – Z:pagefile.sys
    [03/07/2014 – 15:05:37 | N | 262144 Ko] – Z:swapfile.sys
    [05/07/2014 – 12:09:50 | D] – Z:Windows.old
    [03/07/2014 – 17:13:41 | SHD] – Z:$Recycle.Bin
    [18/06/2013 – 12:18:29 | N | 0 Ko] – Z:BOOTNXT
    [22/08/2013 – 14:45:52 | SHD] – Z:Documents and Settings
    [22/08/2013 – 15:22:35 | D] – Z:PerfLogs
    [22/08/2013 – 15:36:33 | D] – Z:Program Files (x86)
    [30/09/2013 – 04:24:45 | RASH | 389 Ko] – Z:bootmgr
    [03/07/2014 – 14:58:00 | D] – Z:Program Files
    [03/07/2014 – 14:59:50 | D] – Z:Users
    [03/07/2014 – 14:59:53 | D] – Z:Windows
    [03/07/2014 – 15:01:08 | SHD] – Z:System Volume Information
    [05/07/2014 – 12:09:50 | HD] – Z:ProgramData
    [05/07/2014 – 12:31:53 | D] – Z:Skypee

    ################## | Vaccin |

    E:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
    F:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
    G:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
    Y:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
    Z:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

    ################## | E.O.F | https://www.sosvirus.net/ | http://www.usbfix.net/ |

    korandjiface
    Participant
    Nombre d'articles : 8

    bonjour message recu 5/5

2 sujets de 1 à 2 (sur un total de 2)
  • Vous devez être connecté pour répondre à ce sujet.