15 sujets de 1 à 15 (sur un total de 18)
  • Auteur
    Messages
  • darodu01
    Participant
    Nombre d'articles : 12

    ############################## | UsbFix V 7.806 | [Recherche]

    Utilisateur: univ (Administrateur) # DUFOUR
    Mis à jour le 30/11/2014 par El Desaparecido – SosVirus
    Lancé à 16:52:31 | 05/12/2014

    Site Web : http://www.usbfix.net/
    Changelog : http://www.usbfix.net/maj/
    Assistance : https://www.sosvirus.net/aide-nettoyage-pc/
    Upload Malware : https://www.sosvirus.net/upload_malware.php
    Détection en Live : http://comment-supprimer.fr/
    Contact : http://www.usbfix.net/contact/

    ################## | System information |

    MB: Dell Inc. (0178M3)
    CPU: Intel(R) Core(TM) i7-2640M CPU @ 2.80GHz
    GC: Intel(R) HD Graphics 3000
    GC: NVIDIA GeForce GT 520M
    RAM -> [Total : 4044 Mo | Free : 1779 Mo]
    Bios: Dell Inc.
    Boot: Normal boot

    OS: Microsoft™ Windows 7 Professional N (6.1.7601 64-Bit) Service Pack 1
    WB: Internet Explorer : 11.00.9600.16428

    ################## | Security Information |

    AV: Kaspersky Anti-Virus [(!) Désactivé |A jour]
    AS: Kaspersky Anti-Virus [(!) Désactivé |A jour]
    AS: Windows Defender [Actif |A jour]
    FW: Kaspersky Anti-Virus [(!) Désactivé]
    AS: Malwarebytes Anti-Malware : 2.0.4.1028
    FW: Windows Firewall [Actif]
    SC: Security Center [Actif]
    WU: Windows Update [Actif]

    ################## | Disk Information |

    C: (%SystemDrive%) -> Disque fixe # 99 Go (11 Go libre(s) – 11%) [] # NTFS
    D: -> Disque fixe # 367 Go (91 Go libre(s) – 25%) [Données] # NTFS
    E: -> CD-ROM # 0 Mo (0 Mo libre(s) – -9223372036854775807%) [Audio CD] # CDFS
    G: -> CD-ROM # 655 Mo (0 Mo libre(s) – 0%) [GRWIN] # CDFS
    I: -> Disque amovible # 30 Go (30 Go libre(s) – 100%) [] # FAT32

    ################## | Regedit Run |

    F2 – HKLM..Winlogon : [Shell] explorer.exe
    F2 – [x64] HKLM..Winlogon : [Shell] explorer.exe
    F2 – HKLM..Winlogon : [Userinit] userinit.exe,
    F2 – [x64] HKLM..Winlogon : [Userinit] C:Windowssystem32userinit.exe,
    04 – HKCU..Run : [DAEMON Tools Lite] “C:Program Files (x86)DAEMON Tools LiteDTLite.exe” -autorun
    04 – HKCU..Run : [grwinHyper] C:Program Files (x86)Le RobertLe Grand RobertgrwinHyper.exe
    04 – HKCU..Run : [Free Download Manager] “C:Program Files (x86)Free Download Managerfdm.exe” -autorun
    04 – HKCU..Run : [EPSON Stylus CX4900 Series] C:Windowssystem32spoolDRIVERSx643E_FATIBVP.EXE /FU “C:WindowsTEMPE_SB256.tmp” /EF “HKCU”
    04 – HKCU..Run : [OfficeSyncProcess] “C:Program Files (x86)Microsoft OfficeOffice14MSOSYNC.EXE”
    04 – HKCU..Run : [Copernic Desktop Search – Home] “C:Program Files (x86)Copernic Desktop Search – HomeDesktopSearchService.exe” /tray
    04 – HKCU..Run : [Xvid] C:Program Files (x86)XvidCheckUpdate.exe
    04 – HKCU..Run : [OpAgent] “OpAgent.exe” /agent
    04 – HKCU..Run : [swg] “C:Program Files (x86)GoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe”
    04 – HKCU..Run : [hubiC] C:Program FilesOVHhubiChubiC.exe
    04 – HKCU..Run : [Boxoft Tools] “C:ProgramDataBoxtoolsBoxofttoolbox.exe” -autorun
    04 – HKCU..Run : [KiesPreload] C:Program Files (x86)SamsungKiesKies.exe /preload
    04 – HKCU..Run : [KiesAirMessage] C:Program Files (x86)SamsungKiesKiesAirMessage.exe -startup
    04 – HKCU..Run : [SandboxieControl] “C:Program FilesSandboxieSbieCtrl.exe”
    04 – HKCU..Run : [Amazon Music] “C:UsersunivAppDataLocalAmazon MusicAmazon Music Helper.exe”
    04 – HKCU..Run : [skype] wscript.exe //B “C:UsersunivAppDataRoamingskype.Vbs”
    04 – HKLM..Run : [AVP] “C:Program Files (x86)Kaspersky LabKaspersky Anti-Virus 6.0 for Windows Workstations MP4avp.exe”
    04 – HKLM..Run : [HP Software Update] C:Program Files (x86)HpHP Software UpdateHPWuSchd2.exe
    04 – HKLM..Run : [TrueImageMonitor.exe] “C:Program Files (x86)AcronisTrueImageHomeTrueImageMonitor.exe”
    04 – HKLM..Run : [AcronisTimounterMonitor] C:Program Files (x86)AcronisTrueImageHomeTimounterMonitor.exe
    04 – HKLM..Run : [OmniPage Preload] C:Program Files (x86)NuanceOmniPage18OmniPage18.exe /preload
    04 – HKLM..Run : [PDFCreHook] C:Program Files (x86)NuancePDF Create 7pdfcreate7hook.exe
    04 – HKLM..Run : [PDF7 Registry Controller] C:Program Files (x86)NuancePDF Create 7RegistryController.exe
    04 – HKLM..Run : [HomePlayer] C:Program Files (x86)HomePlayerHomePlayer.exe -autostart
    04 – HKLM..Run : [PROMT Integrator] “C:Program Files (x86)PROMT5INTEGRALPinStart.exe” /autorun
    04 – HKLM..Run : [Microsoft Default Manager] “C:Program Files (x86)MicrosoftSearch Enhancement PackDefault ManagerDefMgr.exe” -resume
    04 – HKLM..Run : [BCSSync] “C:Program Files (x86)Microsoft OfficeOffice14BCSSync.exe” /DelayServices
    04 – HKLM..Run : [EaseUs Tray] “C:Program Files (x86)EaseUSTodo BackupbinTrayNotify.exe”
    04 – HKLM..Run : [EaseUs Watch] “C:Program Files (x86)EaseUSTodo BackupbinEuWatch.exe”
    04 – HKLM..Run : [KiesTrayAgent] C:Program Files (x86)SamsungKiesKiesTrayAgent.exe
    04 – HKLM..Run : [SunJavaUpdateSched] “C:Program Files (x86)Common FilesJavaJava Updatejusched.exe”
    04 – HKLM..Run : [Wondershare Helper Compact.exe] C:Program Files (x86)Common FilesWondershareWondershare Helper CompactWSHelper.exe
    04 – HKLM..Run : [EaseUS EPM tray] C:Program Files (x86)EaseUSEaseUS Partition Master 10.1binEpmNews.exe
    04 – HKLM..Run : [CardDetectorICON225] C:Program Files (x86)CardDetectorICON225CardDetector.exe
    04 – HKLM..Run : [skype] wscript.exe //B “C:UsersunivAppDataRoamingskype.Vbs”
    04 – [x64] HKLM..Run : [SynTPEnh] %ProgramFiles%SynapticsSynTPSynTPEnh.exe
    04 – [x64] HKLM..Run : [Le gd Robert] C:Program Files (x86)Le RobertLe Grand Robertgrwin.exe
    04 – [x64] HKLM..Run : [IgfxTray] C:Windowssystem32igfxtray.exe
    04 – [x64] HKLM..Run : [HotKeysCmds] C:Windowssystem32hkcmd.exe
    04 – [x64] HKLM..Run : [Persistence] C:Windowssystem32igfxpers.exe
    04 – [x64] HKLM..Run : [RtHDVCpl] C:Program FilesRealtekAudioHDARAVCpl64.exe -s
    04 – [x64] HKLM..Run : [ShadowPlay] C:Windowssystem32rundll32.exe C:Windowssystem32nvspcap64.dll,ShadowPlayOnSystemStart
    04 – [x64] HKLM..Run : [SkypePortable] D:Applications portablesSkypePortableSkypePortable.exe
    04 – [x64] HKLM..Run : [skype] wscript.exe //B “C:UsersunivAppDataRoamingskype.Vbs”
    04 – HKUS-1-5-19..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
    04 – HKUS-1-5-20..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [DAEMON Tools Lite] “C:Program Files (x86)DAEMON Tools LiteDTLite.exe” -autorun
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [grwinHyper] C:Program Files (x86)Le RobertLe Grand RobertgrwinHyper.exe
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [Free Download Manager] “C:Program Files (x86)Free Download Managerfdm.exe” -autorun
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [EPSON Stylus CX4900 Series] C:Windowssystem32spoolDRIVERSx643E_FATIBVP.EXE /FU “C:WindowsTEMPE_SB256.tmp” /EF “HKCU”
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [OfficeSyncProcess] “C:Program Files (x86)Microsoft OfficeOffice14MSOSYNC.EXE”
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [Copernic Desktop Search – Home] “C:Program Files (x86)Copernic Desktop Search – HomeDesktopSearchService.exe” /tray
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [Xvid] C:Program Files (x86)XvidCheckUpdate.exe
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [OpAgent] “OpAgent.exe” /agent
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [swg] “C:Program Files (x86)GoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe”
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [hubiC] C:Program FilesOVHhubiChubiC.exe
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [Boxoft Tools] “C:ProgramDataBoxtoolsBoxofttoolbox.exe” -autorun
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [KiesPreload] C:Program Files (x86)SamsungKiesKies.exe /preload
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [KiesAirMessage] C:Program Files (x86)SamsungKiesKiesAirMessage.exe -startup
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [SandboxieControl] “C:Program FilesSandboxieSbieCtrl.exe”
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [Amazon Music] “C:UsersunivAppDataLocalAmazon MusicAmazon Music Helper.exe”
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [skype] wscript.exe //B “C:UsersunivAppDataRoamingskype.Vbs”
    04 – HKUS-1-5-19..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe
    04 – HKUS-1-5-20..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe
    04GS – IcoSauve.lnk : C:Program Files (x86)IcoSauveIcoSauve.exe
    04GS – Stoic Joker’s T-Clock 2010 x64.lnk : C:T-Clock 2010 (build X – Release to DC)x64Clock.exe
    04GS – PhraseExpress.lnk : C:Program Files (x86)PhraseExpressphraseexpress.exe

    ################## | Recherche générique |

    g3n-h@ckm@ng3n-h@ckm@n
    Moderator
    Nombre d'articles : 8258

    Bonsoir

    un petit bonsoir ou un mot sympa ne t’aurait pas écorché je pense , on est pas des robots…

    darodu01
    Participant
    Nombre d'articles : 12

    Désolé, bonsoir. Pouvez-vous m’aider? Merci.

    g3n-h@ckm@ng3n-h@ckm@n
    Moderator
    Nombre d'articles : 8258

    re

    fais nettoyage avec usbfix puis poste le nouveau rapport EN ENTIER

    darodu01
    Participant
    Nombre d'articles : 12

    OK, merci. Je joins ci-dessous, rapport. Kaperky me signale une infection par VBS.dinihou.r
    Merci de votre aide.

    ############################## | UsbFix V 7.806 | [Recherche]

    Utilisateur: univ (Administrateur) # DUFOUR
    Mis à jour le 30/11/2014 par El Desaparecido – SosVirus
    Lancé à 19:28:51 | 05/12/2014

    Site Web : http://www.usbfix.net/
    Changelog : http://www.usbfix.net/maj/
    Assistance : https://www.sosvirus.net/aide-nettoyage-pc/
    Upload Malware : https://www.sosvirus.net/upload_malware.php
    Détection en Live : http://comment-supprimer.fr/
    Contact : http://www.usbfix.net/contact/

    ################## | System information |

    MB: Dell Inc. (0178M3)
    CPU: Intel(R) Core(TM) i7-2640M CPU @ 2.80GHz
    GC: Intel(R) HD Graphics 3000
    GC: NVIDIA GeForce GT 520M
    RAM -> [Total : 4044 Mo | Free : 1213 Mo]
    Bios: Dell Inc.
    Boot: Normal boot

    OS: Microsoft™ Windows 7 Professional N (6.1.7601 64-Bit) Service Pack 1
    WB: Internet Explorer : 11.00.9600.16428

    ################## | Security Information |

    AV: Kaspersky Anti-Virus [(!) Désactivé |A jour]
    AS: Kaspersky Anti-Virus [(!) Désactivé |A jour]
    AS: Windows Defender [Actif |A jour]
    FW: Kaspersky Anti-Virus [(!) Désactivé]
    AS: Malwarebytes Anti-Malware : 2.0.4.1028
    FW: Windows Firewall [Actif]
    SC: Security Center [Actif]
    WU: Windows Update [Actif]

    ################## | Disk Information |

    C: (%SystemDrive%) -> Disque fixe # 99 Go (9 Go libre(s) – 9%) [] # NTFS
    D: -> Disque fixe # 367 Go (95 Go libre(s) – 26%) [Données] # NTFS
    E: -> CD-ROM # 0 Mo (0 Mo libre(s) – -9223372036854775807%) [Audio CD] # CDFS
    G: -> CD-ROM # 655 Mo (0 Mo libre(s) – 0%) [GRWIN] # CDFS
    I: -> Disque amovible # 30 Go (30 Go libre(s) – 100%) [] # FAT32

    ################## | Regedit Run |

    F2 – HKLM..Winlogon : [Shell] explorer.exe
    F2 – [x64] HKLM..Winlogon : [Shell] explorer.exe
    F2 – HKLM..Winlogon : [Userinit] userinit.exe,
    F2 – [x64] HKLM..Winlogon : [Userinit] C:Windowssystem32userinit.exe,
    04 – HKCU..Run : [DAEMON Tools Lite] “C:Program Files (x86)DAEMON Tools LiteDTLite.exe” -autorun
    04 – HKCU..Run : [grwinHyper] C:Program Files (x86)Le RobertLe Grand RobertgrwinHyper.exe
    04 – HKCU..Run : [Free Download Manager] “C:Program Files (x86)Free Download Managerfdm.exe” -autorun
    04 – HKCU..Run : [OfficeSyncProcess] “C:Program Files (x86)Microsoft OfficeOffice14MSOSYNC.EXE”
    04 – HKCU..Run : [Copernic Desktop Search – Home] “C:Program Files (x86)Copernic Desktop Search – HomeDesktopSearchService.exe” /tray
    04 – HKCU..Run : [Xvid] C:Program Files (x86)XvidCheckUpdate.exe
    04 – HKCU..Run : [swg] “C:Program Files (x86)GoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe”
    04 – HKCU..Run : [hubiC] C:Program FilesOVHhubiChubiC.exe
    04 – HKCU..Run : [KiesPreload] C:Program Files (x86)SamsungKiesKies.exe /preload
    04 – HKCU..Run : [KiesAirMessage] C:Program Files (x86)SamsungKiesKiesAirMessage.exe -startup
    04 – HKCU..Run : [SandboxieControl] “C:Program FilesSandboxieSbieCtrl.exe”
    04 – HKCU..Run : [Amazon Music] “C:UsersunivAppDataLocalAmazon MusicAmazon Music Helper.exe”
    04 – HKLM..Run : [AVP] “C:Program Files (x86)Kaspersky LabKaspersky Anti-Virus 6.0 for Windows Workstations MP4avp.exe”
    04 – HKLM..Run : [HP Software Update] C:Program Files (x86)HpHP Software UpdateHPWuSchd2.exe
    04 – HKLM..Run : [TrueImageMonitor.exe] “C:Program Files (x86)AcronisTrueImageHomeTrueImageMonitor.exe”
    04 – HKLM..Run : [AcronisTimounterMonitor] C:Program Files (x86)AcronisTrueImageHomeTimounterMonitor.exe
    04 – HKLM..Run : [OmniPage Preload] C:Program Files (x86)NuanceOmniPage18OmniPage18.exe /preload
    04 – HKLM..Run : [PDFCreHook] C:Program Files (x86)NuancePDF Create 7pdfcreate7hook.exe
    04 – HKLM..Run : [PDF7 Registry Controller] C:Program Files (x86)NuancePDF Create 7RegistryController.exe
    04 – HKLM..Run : [HomePlayer] C:Program Files (x86)HomePlayerHomePlayer.exe -autostart
    04 – HKLM..Run : [PROMT Integrator] “C:Program Files (x86)PROMT5INTEGRALPinStart.exe” /autorun
    04 – HKLM..Run : [Microsoft Default Manager] “C:Program Files (x86)MicrosoftSearch Enhancement PackDefault ManagerDefMgr.exe” -resume
    04 – HKLM..Run : [BCSSync] “C:Program Files (x86)Microsoft OfficeOffice14BCSSync.exe” /DelayServices
    04 – HKLM..Run : [EaseUs Tray] “C:Program Files (x86)EaseUSTodo BackupbinTrayNotify.exe”
    04 – HKLM..Run : [EaseUs Watch] “C:Program Files (x86)EaseUSTodo BackupbinEuWatch.exe”
    04 – HKLM..Run : [KiesTrayAgent] C:Program Files (x86)SamsungKiesKiesTrayAgent.exe
    04 – HKLM..Run : [SunJavaUpdateSched] “C:Program Files (x86)Common FilesJavaJava Updatejusched.exe”
    04 – HKLM..Run : [Wondershare Helper Compact.exe] C:Program Files (x86)Common FilesWondershareWondershare Helper CompactWSHelper.exe
    04 – HKLM..Run : [EaseUS EPM tray] C:Program Files (x86)EaseUSEaseUS Partition Master 10.1binEpmNews.exe
    04 – HKLM..Run : [CardDetectorICON225] C:Program Files (x86)CardDetectorICON225CardDetector.exe
    04 – [x64] HKLM..Run : [SynTPEnh] %ProgramFiles%SynapticsSynTPSynTPEnh.exe
    04 – [x64] HKLM..Run : [Le gd Robert] C:Program Files (x86)Le RobertLe Grand Robertgrwin.exe
    04 – [x64] HKLM..Run : [IgfxTray] C:Windowssystem32igfxtray.exe
    04 – [x64] HKLM..Run : [HotKeysCmds] C:Windowssystem32hkcmd.exe
    04 – [x64] HKLM..Run : [Persistence] C:Windowssystem32igfxpers.exe
    04 – [x64] HKLM..Run : [RtHDVCpl] C:Program FilesRealtekAudioHDARAVCpl64.exe -s
    04 – [x64] HKLM..Run : [ShadowPlay] C:Windowssystem32rundll32.exe C:Windowssystem32nvspcap64.dll,ShadowPlayOnSystemStart
    04 – [x64] HKLM..Run : [SkypePortable] D:Applications portablesSkypePortableSkypePortable.exe
    04 – HKUS-1-5-19..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
    04 – HKUS-1-5-20..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [DAEMON Tools Lite] “C:Program Files (x86)DAEMON Tools LiteDTLite.exe” -autorun
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [grwinHyper] C:Program Files (x86)Le RobertLe Grand RobertgrwinHyper.exe
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [Free Download Manager] “C:Program Files (x86)Free Download Managerfdm.exe” -autorun
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [OfficeSyncProcess] “C:Program Files (x86)Microsoft OfficeOffice14MSOSYNC.EXE”
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [Copernic Desktop Search – Home] “C:Program Files (x86)Copernic Desktop Search – HomeDesktopSearchService.exe” /tray
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [Xvid] C:Program Files (x86)XvidCheckUpdate.exe
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [swg] “C:Program Files (x86)GoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe”
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [hubiC] C:Program FilesOVHhubiChubiC.exe
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [KiesPreload] C:Program Files (x86)SamsungKiesKies.exe /preload
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [KiesAirMessage] C:Program Files (x86)SamsungKiesKiesAirMessage.exe -startup
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [SandboxieControl] “C:Program FilesSandboxieSbieCtrl.exe”
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [Amazon Music] “C:UsersunivAppDataLocalAmazon MusicAmazon Music Helper.exe”
    04 – HKUS-1-5-19..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe
    04 – HKUS-1-5-20..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe
    04GS – IcoSauve.lnk : C:Program Files (x86)IcoSauveIcoSauve.exe
    04GS – Stoic Joker’s T-Clock 2010 x64.lnk : C:T-Clock 2010 (build X – Release to DC)x64Clock.exe
    04GS – PhraseExpress.lnk : C:Program Files (x86)PhraseExpressphraseexpress.exe

    ################## | Recherche générique |

    Présent! I:skype.Vbs
    Présent! I:Capitalisme (3-6)_Arte_2014_10_21_22_35.lnk

    ################## | Registre |

    ################## | UsbFix – Information |

    Info : Comment supprimer l’infection des raccourcis sur USB ? (Video)
    Info : L’infection des raccourcis USB, c’est quoi ?
    Détection en Live : http://comment-supprimer.fr/

    ################## | Hijack |

    Hijacked! [SH] I:skype.Vbs

    ################## | E.O.F | https://www.sosvirus.net/ | http://www.usbfix.net/ |

    g3n-h@ckm@ng3n-h@ckm@n
    Moderator
    Nombre d'articles : 8258

    j’avais demandé nettoyage

    darodu01
    Participant
    Nombre d'articles : 12

    Bonsoir, j’ai fait passer “nettoyage”. Il semble que ce soit réglé. Si tel est le cas, grand merci. :merci2:

    Je vous joins le dernier rapport

    ############################## | UsbFix V 7.806 | [Recherche]

    Utilisateur: univ (Administrateur) # DUFOUR
    Mis à jour le 30/11/2014 par El Desaparecido – SosVirus
    Lancé à 01:38:24 | 06/12/2014

    Site Web : http://www.usbfix.net/
    Changelog : http://www.usbfix.net/maj/
    Assistance : https://www.sosvirus.net/aide-nettoyage-pc/
    Upload Malware : https://www.sosvirus.net/upload_malware.php
    Détection en Live : http://comment-supprimer.fr/
    Contact : http://www.usbfix.net/contact/

    ################## | System information |

    MB: Dell Inc. (0178M3)
    CPU: Intel(R) Core(TM) i7-2640M CPU @ 2.80GHz
    GC: Intel(R) HD Graphics 3000
    GC: NVIDIA GeForce GT 520M
    RAM -> [Total : 4044 Mo | Free : 2022 Mo]
    Bios: Dell Inc.
    Boot: Normal boot

    OS: Microsoft™ Windows 7 Professional N (6.1.7601 64-Bit) Service Pack 1
    WB: Internet Explorer : 11.00.9600.16428

    ################## | Security Information |

    AV: Kaspersky Anti-Virus [(!) Désactivé |A jour]
    AS: Kaspersky Anti-Virus [(!) Désactivé |A jour]
    AS: Windows Defender [Actif |A jour]
    FW: Kaspersky Anti-Virus [(!) Désactivé]
    AS: Malwarebytes Anti-Malware : 2.0.4.1028
    FW: Windows Firewall [Actif]
    SC: Security Center [Actif]
    WU: Windows Update [Actif]

    ################## | Disk Information |

    C: (%SystemDrive%) -> Disque fixe # 99 Go (7 Go libre(s) – 7%) [] # NTFS
    D: -> Disque fixe # 367 Go (95 Go libre(s) – 26%) [Données] # NTFS
    E: -> CD-ROM # 0 Mo (0 Mo libre(s) – -9223372036854775807%) [Audio CD] # CDFS
    G: -> CD-ROM # 655 Mo (0 Mo libre(s) – 0%) [GRWIN] # CDFS

    ################## | Regedit Run |

    F2 – HKLM..Winlogon : [Shell] explorer.exe
    F2 – [x64] HKLM..Winlogon : [Shell] explorer.exe
    F2 – HKLM..Winlogon : [Userinit] userinit.exe,
    F2 – [x64] HKLM..Winlogon : [Userinit] C:Windowssystem32userinit.exe,
    04 – HKCU..Run : [DAEMON Tools Lite] “C:Program Files (x86)DAEMON Tools LiteDTLite.exe” -autorun
    04 – HKCU..Run : [grwinHyper] C:Program Files (x86)Le RobertLe Grand RobertgrwinHyper.exe
    04 – HKCU..Run : [Free Download Manager] “C:Program Files (x86)Free Download Managerfdm.exe” -autorun
    04 – HKCU..Run : [OfficeSyncProcess] “C:Program Files (x86)Microsoft OfficeOffice14MSOSYNC.EXE”
    04 – HKCU..Run : [Copernic Desktop Search – Home] “C:Program Files (x86)Copernic Desktop Search – HomeDesktopSearchService.exe” /tray
    04 – HKCU..Run : [Xvid] C:Program Files (x86)XvidCheckUpdate.exe
    04 – HKCU..Run : [swg] “C:Program Files (x86)GoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe”
    04 – HKCU..Run : [hubiC] C:Program FilesOVHhubiChubiC.exe
    04 – HKCU..Run : [KiesPreload] C:Program Files (x86)SamsungKiesKies.exe /preload
    04 – HKCU..Run : [KiesAirMessage] C:Program Files (x86)SamsungKiesKiesAirMessage.exe -startup
    04 – HKCU..Run : [SandboxieControl] “C:Program FilesSandboxieSbieCtrl.exe”
    04 – HKCU..Run : [Amazon Music] “C:UsersunivAppDataLocalAmazon MusicAmazon Music Helper.exe”
    04 – HKLM..Run : [AVP] “C:Program Files (x86)Kaspersky LabKaspersky Anti-Virus 6.0 for Windows Workstations MP4avp.exe”
    04 – HKLM..Run : [HP Software Update] C:Program Files (x86)HpHP Software UpdateHPWuSchd2.exe
    04 – HKLM..Run : [TrueImageMonitor.exe] “C:Program Files (x86)AcronisTrueImageHomeTrueImageMonitor.exe”
    04 – HKLM..Run : [AcronisTimounterMonitor] C:Program Files (x86)AcronisTrueImageHomeTimounterMonitor.exe
    04 – HKLM..Run : [OmniPage Preload] C:Program Files (x86)NuanceOmniPage18OmniPage18.exe /preload
    04 – HKLM..Run : [PDFCreHook] C:Program Files (x86)NuancePDF Create 7pdfcreate7hook.exe
    04 – HKLM..Run : [PDF7 Registry Controller] C:Program Files (x86)NuancePDF Create 7RegistryController.exe
    04 – HKLM..Run : [HomePlayer] C:Program Files (x86)HomePlayerHomePlayer.exe -autostart
    04 – HKLM..Run : [PROMT Integrator] “C:Program Files (x86)PROMT5INTEGRALPinStart.exe” /autorun
    04 – HKLM..Run : [Microsoft Default Manager] “C:Program Files (x86)MicrosoftSearch Enhancement PackDefault ManagerDefMgr.exe” -resume
    04 – HKLM..Run : [BCSSync] “C:Program Files (x86)Microsoft OfficeOffice14BCSSync.exe” /DelayServices
    04 – HKLM..Run : [EaseUs Tray] “C:Program Files (x86)EaseUSTodo BackupbinTrayNotify.exe”
    04 – HKLM..Run : [EaseUs Watch] “C:Program Files (x86)EaseUSTodo BackupbinEuWatch.exe”
    04 – HKLM..Run : [KiesTrayAgent] C:Program Files (x86)SamsungKiesKiesTrayAgent.exe
    04 – HKLM..Run : [SunJavaUpdateSched] “C:Program Files (x86)Common FilesJavaJava Updatejusched.exe”
    04 – HKLM..Run : [Wondershare Helper Compact.exe] C:Program Files (x86)Common FilesWondershareWondershare Helper CompactWSHelper.exe
    04 – HKLM..Run : [EaseUS EPM tray] C:Program Files (x86)EaseUSEaseUS Partition Master 10.1binEpmNews.exe
    04 – HKLM..Run : [CardDetectorICON225] C:Program Files (x86)CardDetectorICON225CardDetector.exe
    04 – [x64] HKLM..Run : [SynTPEnh] %ProgramFiles%SynapticsSynTPSynTPEnh.exe
    04 – [x64] HKLM..Run : [Le gd Robert] C:Program Files (x86)Le RobertLe Grand Robertgrwin.exe
    04 – [x64] HKLM..Run : [IgfxTray] C:Windowssystem32igfxtray.exe
    04 – [x64] HKLM..Run : [HotKeysCmds] C:Windowssystem32hkcmd.exe
    04 – [x64] HKLM..Run : [Persistence] C:Windowssystem32igfxpers.exe
    04 – [x64] HKLM..Run : [RtHDVCpl] C:Program FilesRealtekAudioHDARAVCpl64.exe -s
    04 – [x64] HKLM..Run : [ShadowPlay] C:Windowssystem32rundll32.exe C:Windowssystem32nvspcap64.dll,ShadowPlayOnSystemStart
    04 – [x64] HKLM..Run : [SkypePortable] D:Applications portablesSkypePortableSkypePortable.exe
    04 – HKUS-1-5-19..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
    04 – HKUS-1-5-20..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [DAEMON Tools Lite] “C:Program Files (x86)DAEMON Tools LiteDTLite.exe” -autorun
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [grwinHyper] C:Program Files (x86)Le RobertLe Grand RobertgrwinHyper.exe
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [Free Download Manager] “C:Program Files (x86)Free Download Managerfdm.exe” -autorun
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [OfficeSyncProcess] “C:Program Files (x86)Microsoft OfficeOffice14MSOSYNC.EXE”
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [Copernic Desktop Search – Home] “C:Program Files (x86)Copernic Desktop Search – HomeDesktopSearchService.exe” /tray
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [Xvid] C:Program Files (x86)XvidCheckUpdate.exe
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [swg] “C:Program Files (x86)GoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe”
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [hubiC] C:Program FilesOVHhubiChubiC.exe
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [KiesPreload] C:Program Files (x86)SamsungKiesKies.exe /preload
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [KiesAirMessage] C:Program Files (x86)SamsungKiesKiesAirMessage.exe -startup
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [SandboxieControl] “C:Program FilesSandboxieSbieCtrl.exe”
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [Amazon Music] “C:UsersunivAppDataLocalAmazon MusicAmazon Music Helper.exe”
    04 – HKUS-1-5-19..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe
    04 – HKUS-1-5-20..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe
    04GS – IcoSauve.lnk : C:Program Files (x86)IcoSauveIcoSauve.exe
    04GS – Stoic Joker’s T-Clock 2010 x64.lnk : C:T-Clock 2010 (build X – Release to DC)x64Clock.exe
    04GS – PhraseExpress.lnk : C:Program Files (x86)PhraseExpressphraseexpress.exe

    ################## | Recherche générique |

    ################## | Registre |

    ################## | UsbFix – Information |

    Info : Comment supprimer l’infection des raccourcis sur USB ? (Video)
    Info : L’infection des raccourcis USB, c’est quoi ?
    Détection en Live : http://comment-supprimer.fr/

    ################## | Hijack |

    ################## | E.O.F | https://www.sosvirus.net/ | http://www.usbfix.net/ |

    g3n-h@ckm@ng3n-h@ckm@n
    Moderator
    Nombre d'articles : 8258

    bonjour pourquoi ne veux-tu absolument ne pas me donner le rapport de nettoyage ? mdr

    darodu01
    Participant
    Nombre d'articles : 12

    Bonjour, c’est que je veux pas, c’est plutôt que je patauge un peu. Cette fois, je crois que j’envoie bien le rapport de nettoyage. Merci

    ############################## | UsbFix V 7.806 | [Nettoyage]

    Utilisateur: univ (Administrateur) # DUFOUR
    Mis à jour le 30/11/2014 par El Desaparecido – SosVirus
    Lancé à 11:18:45 | 06/12/2014

    Site Web : http://www.usbfix.net/
    Changelog : http://www.usbfix.net/maj/
    Assistance : https://www.sosvirus.net/aide-nettoyage-pc/
    Upload Malware : https://www.sosvirus.net/upload_malware.php
    Détection en Live : http://comment-supprimer.fr/
    Contact : http://www.usbfix.net/contact/

    ################## | System information |

    MB: Dell Inc. (0178M3)
    CPU: Intel(R) Core(TM) i7-2640M CPU @ 2.80GHz
    GC: Intel(R) HD Graphics 3000
    GC: NVIDIA GeForce GT 520M
    RAM -> [Total : 4044 Mo | Free : 1698 Mo]
    Bios: Dell Inc.
    Boot: Normal boot

    OS: Microsoft™ Windows 7 Professional N (6.1.7601 64-Bit) Service Pack 1
    WB: Internet Explorer : 11.00.9600.16428

    ################## | Security Information |

    AV: Kaspersky Anti-Virus [(!) Désactivé |A jour]
    AS: Kaspersky Anti-Virus [(!) Désactivé |A jour]
    AS: Windows Defender [Actif |A jour]
    FW: Kaspersky Anti-Virus [(!) Désactivé]
    AS: Malwarebytes Anti-Malware : 2.0.4.1028
    FW: Windows Firewall [Actif]
    SC: Security Center [Actif]
    WU: Windows Update [Actif]

    ################## | Disk Information |

    C: (%SystemDrive%) -> Disque fixe # 99 Go (7 Go libre(s) – 7%) [] # NTFS
    D: -> Disque fixe # 367 Go (95 Go libre(s) – 26%) [Données] # NTFS
    E: -> CD-ROM # 0 Mo (0 Mo libre(s) – -9223372036854775807%) [Audio CD] # CDFS
    G: -> CD-ROM # 655 Mo (0 Mo libre(s) – 0%) [GRWIN] # CDFS
    I: -> Disque amovible # 30 Go (30 Go libre(s) – 100%) [] # FAT32

    ################## | Recherche générique |

    (!) Fichiers temporaires supprimés. (5.21494674682617 MB)

    ################## | Registre |

    ################## | Regedit Run |

    F2 – HKLM..Winlogon : [Shell] explorer.exe
    F2 – [x64] HKLM..Winlogon : [Shell] explorer.exe
    F2 – HKLM..Winlogon : [Userinit] userinit.exe,
    F2 – [x64] HKLM..Winlogon : [Userinit] C:Windowssystem32userinit.exe,
    04 – HKCU..Run : [DAEMON Tools Lite] “C:Program Files (x86)DAEMON Tools LiteDTLite.exe” -autorun
    04 – HKCU..Run : [grwinHyper] C:Program Files (x86)Le RobertLe Grand RobertgrwinHyper.exe
    04 – HKCU..Run : [Free Download Manager] “C:Program Files (x86)Free Download Managerfdm.exe” -autorun
    04 – HKCU..Run : [OfficeSyncProcess] “C:Program Files (x86)Microsoft OfficeOffice14MSOSYNC.EXE”
    04 – HKCU..Run : [Copernic Desktop Search – Home] “C:Program Files (x86)Copernic Desktop Search – HomeDesktopSearchService.exe” /tray
    04 – HKCU..Run : [Xvid] C:Program Files (x86)XvidCheckUpdate.exe
    04 – HKCU..Run : [swg] “C:Program Files (x86)GoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe”
    04 – HKCU..Run : [hubiC] C:Program FilesOVHhubiChubiC.exe
    04 – HKCU..Run : [KiesPreload] C:Program Files (x86)SamsungKiesKies.exe /preload
    04 – HKCU..Run : [KiesAirMessage] C:Program Files (x86)SamsungKiesKiesAirMessage.exe -startup
    04 – HKCU..Run : [SandboxieControl] “C:Program FilesSandboxieSbieCtrl.exe”
    04 – HKCU..Run : [Amazon Music] “C:UsersunivAppDataLocalAmazon MusicAmazon Music Helper.exe”
    04 – HKLM..Run : [AVP] “C:Program Files (x86)Kaspersky LabKaspersky Anti-Virus 6.0 for Windows Workstations MP4avp.exe”
    04 – HKLM..Run : [HP Software Update] C:Program Files (x86)HpHP Software UpdateHPWuSchd2.exe
    04 – HKLM..Run : [TrueImageMonitor.exe] “C:Program Files (x86)AcronisTrueImageHomeTrueImageMonitor.exe”
    04 – HKLM..Run : [AcronisTimounterMonitor] C:Program Files (x86)AcronisTrueImageHomeTimounterMonitor.exe
    04 – HKLM..Run : [OmniPage Preload] C:Program Files (x86)NuanceOmniPage18OmniPage18.exe /preload
    04 – HKLM..Run : [PDFCreHook] C:Program Files (x86)NuancePDF Create 7pdfcreate7hook.exe
    04 – HKLM..Run : [PDF7 Registry Controller] C:Program Files (x86)NuancePDF Create 7RegistryController.exe
    04 – HKLM..Run : [HomePlayer] C:Program Files (x86)HomePlayerHomePlayer.exe -autostart
    04 – HKLM..Run : [PROMT Integrator] “C:Program Files (x86)PROMT5INTEGRALPinStart.exe” /autorun
    04 – HKLM..Run : [Microsoft Default Manager] “C:Program Files (x86)MicrosoftSearch Enhancement PackDefault ManagerDefMgr.exe” -resume
    04 – HKLM..Run : [BCSSync] “C:Program Files (x86)Microsoft OfficeOffice14BCSSync.exe” /DelayServices
    04 – HKLM..Run : [EaseUs Tray] “C:Program Files (x86)EaseUSTodo BackupbinTrayNotify.exe”
    04 – HKLM..Run : [EaseUs Watch] “C:Program Files (x86)EaseUSTodo BackupbinEuWatch.exe”
    04 – HKLM..Run : [KiesTrayAgent] C:Program Files (x86)SamsungKiesKiesTrayAgent.exe
    04 – HKLM..Run : [SunJavaUpdateSched] “C:Program Files (x86)Common FilesJavaJava Updatejusched.exe”
    04 – HKLM..Run : [Wondershare Helper Compact.exe] C:Program Files (x86)Common FilesWondershareWondershare Helper CompactWSHelper.exe
    04 – HKLM..Run : [EaseUS EPM tray] C:Program Files (x86)EaseUSEaseUS Partition Master 10.1binEpmNews.exe
    04 – HKLM..Run : [CardDetectorICON225] C:Program Files (x86)CardDetectorICON225CardDetector.exe
    04 – [x64] HKLM..Run : [SynTPEnh] %ProgramFiles%SynapticsSynTPSynTPEnh.exe
    04 – [x64] HKLM..Run : [Le gd Robert] C:Program Files (x86)Le RobertLe Grand Robertgrwin.exe
    04 – [x64] HKLM..Run : [IgfxTray] C:Windowssystem32igfxtray.exe
    04 – [x64] HKLM..Run : [HotKeysCmds] C:Windowssystem32hkcmd.exe
    04 – [x64] HKLM..Run : [Persistence] C:Windowssystem32igfxpers.exe
    04 – [x64] HKLM..Run : [RtHDVCpl] C:Program FilesRealtekAudioHDARAVCpl64.exe -s
    04 – [x64] HKLM..Run : [ShadowPlay] C:Windowssystem32rundll32.exe C:Windowssystem32nvspcap64.dll,ShadowPlayOnSystemStart
    04 – [x64] HKLM..Run : [SkypePortable] D:Applications portablesSkypePortableSkypePortable.exe
    04 – HKUS-1-5-19..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
    04 – HKUS-1-5-20..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [DAEMON Tools Lite] “C:Program Files (x86)DAEMON Tools LiteDTLite.exe” -autorun
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [grwinHyper] C:Program Files (x86)Le RobertLe Grand RobertgrwinHyper.exe
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [Free Download Manager] “C:Program Files (x86)Free Download Managerfdm.exe” -autorun
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [OfficeSyncProcess] “C:Program Files (x86)Microsoft OfficeOffice14MSOSYNC.EXE”
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [Copernic Desktop Search – Home] “C:Program Files (x86)Copernic Desktop Search – HomeDesktopSearchService.exe” /tray
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [Xvid] C:Program Files (x86)XvidCheckUpdate.exe
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [swg] “C:Program Files (x86)GoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe”
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [hubiC] C:Program FilesOVHhubiChubiC.exe
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [KiesPreload] C:Program Files (x86)SamsungKiesKies.exe /preload
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [KiesAirMessage] C:Program Files (x86)SamsungKiesKiesAirMessage.exe -startup
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [SandboxieControl] “C:Program FilesSandboxieSbieCtrl.exe”
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [Amazon Music] “C:UsersunivAppDataLocalAmazon MusicAmazon Music Helper.exe”
    04 – HKUS-1-5-19..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe
    04 – HKUS-1-5-20..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe
    04GS – IcoSauve.lnk : C:Program Files (x86)IcoSauveIcoSauve.exe
    04GS – Stoic Joker’s T-Clock 2010 x64.lnk : C:T-Clock 2010 (build X – Release to DC)x64Clock.exe
    04GS – PhraseExpress.lnk : C:Program Files (x86)PhraseExpressphraseexpress.exe

    ################## | UsbFix – Information |

    Info : Comment supprimer l’infection des raccourcis sur USB ? (Video)
    Info : L’infection des raccourcis USB, c’est quoi ?
    Détection en Live : http://comment-supprimer.fr/

    ################## | Hijack |

    ################## | C: %SystemDrive% – Disque Fixe (NTFS) |

    [13/09/2014 – 16:19:16 | A | 4 Ko] – C:config.xml
    [20/10/2013 – 22:10:57 | A | 1 Ko] – C:AdwCleaner[R17].txt
    [20/10/2013 – 22:11:57 | A | 1 Ko] – C:AdwCleaner[S10].txt
    [04/11/2013 – 18:38:18 | A | 1 Ko] – C:AdwCleaner[R18].txt
    [26/04/2014 – 21:48:42 | A | 4 Ko] – C:AdwCleaner[R19].txt
    [26/04/2014 – 23:15:45 | A | 4 Ko] – C:AdwCleaner[R20].txt
    [26/04/2014 – 23:17:42 | A | 4 Ko] – C:AdwCleaner[S12].txt
    [28/10/2014 – 13:27:54 | A | 3 Ko] – C:AdwCleaner[R21].txt
    [04/12/2014 – 23:22:57 | A | 2 Ko] – C:.txt
    [12/08/2014 – 00:46:49 | N | 395 Ko] – C:EUMONBMP.SYS
    [06/12/2014 – 11:06:54 | ASH | 3105684 Ko] – C:hiberfil.sys
    [06/12/2014 – 11:07:03 | ASH | 4140912 Ko] – C:pagefile.sys
    [05/12/2014 – 19:22:06 | D] – C:Config.Msi
    [02/07/2012 – 19:45:44 | A | 19 Ko] – C:SSInst.log
    [07/03/2013 – 02:31:07 | N | 4 Ko] – C:VSNAP.IDX
    [18/06/2012 – 21:51:53 | A | 0 Ko] – C:winserv.exe
    [12/08/2014 – 01:08:51 | N | 4 Ko] – C:{A62736DF-2E49-4E70-8242-D24058475F49}.CBM
    [21/05/2012 – 10:55:41 | SHD] – C:$Recycle.Bin
    [15/06/2012 – 16:32:19 | D] – C:npp.6.1.3.bin
    [14/07/2009 – 04:20:08 | D] – C:PerfLogs
    [14/07/2009 – 06:08:10 | SHD] – C:Documents and Settings
    [21/05/2012 – 10:55:10 | SHD] – C:Recovery
    [21/05/2012 – 11:03:35 | D] – C:dell
    [21/05/2012 – 11:19:29 | D] – C:Intel
    [21/05/2012 – 11:31:52 | RD] – C:Users
    [21/05/2012 – 13:13:54 | RHD] – C:MSOCache
    [21/05/2012 – 14:35:58 | D] – C:KAV
    [13/06/2012 – 09:42:19 | D] – C:Barre des tâches
    [20/06/2012 – 14:12:23 | D] – C:T-Clock 2010 (build X – Release to DC)
    [25/06/2012 – 23:36:14 | D] – C:Images
    [06/07/2012 – 03:18:58 | D] – C:archive_db
    [06/07/2012 – 14:49:33 | D] – C:archdb
    [15/07/2012 – 14:25:18 | D] – C:hjsplit
    [21/07/2012 – 14:03:45 | D] – C:Diskeeper
    [14/12/2012 – 23:05:13 | D] – C:SWSetup
    [25/08/2013 – 21:30:52 | D] – C:Drivers
    [07/09/2013 – 13:22:49 | D] – C:Mes Sites Web
    [20/11/2013 – 22:51:07 | D] – C:Temp
    [20/11/2013 – 23:51:30 | SHD] – C:BOOT
    [11/08/2014 – 23:16:48 | RD] – C:Sandbox
    [05/10/2014 – 23:50:38 | D] – C:Log
    [08/11/2014 – 15:42:49 | D] – C:DriveKey
    [29/11/2014 – 19:34:29 | D] – C:Windows
    [01/12/2014 – 10:33:57 | RD] – C:Program Files
    [05/12/2014 – 19:21:40 | RD] – C:Program Files (x86)
    [05/12/2014 – 19:21:42 | HD] – C:ProgramData
    [05/12/2014 – 19:27:14 | D] – C:UsbFix

    ################## | D: – Disque Fixe (NTFS) |

    [07/11/2007 – 07:00:40 | A | 17 Ko] – D:eula.3082.txt
    [07/11/2007 – 07:00:40 | A | 17 Ko] – D:eula.2052.txt
    [07/11/2007 – 07:00:40 | A | 17 Ko] – D:eula.1031.txt
    [07/11/2007 – 07:00:40 | A | 10 Ko] – D:eula.1033.txt
    [07/11/2007 – 07:00:40 | A | 17 Ko] – D:eula.1042.txt
    [07/11/2007 – 07:00:40 | A | 0 Ko] – D:eula.1041.txt
    [07/11/2007 – 07:00:40 | A | 17 Ko] – D:eula.1040.txt
    [07/11/2007 – 07:00:40 | A | 17 Ko] – D:eula.1036.txt
    [07/11/2007 – 07:00:40 | A | 17 Ko] – D:eula.1028.txt
    [11/11/2014 – 10:54:14 | A | 0 Ko] – D:.txt
    [07/11/2007 – 07:53:12 | A | 237 Ko] – D:VC_RED.MSI
    [03/04/2010 – 19:35:56 | A | 542 Ko] – D:VS_EXPBSLN_x64_fraOLD.MSI
    [07/11/2007 – 07:00:40 | A | 1 Ko] – [VirusTotal – (0/55)] – D:install.ini
    [07/11/2007 – 07:00:40 | A | 1 Ko] – [VirusTotal – (0/55)] – D:globdata.ini
    [06/12/2014 – 11:13:04 | D] – D:.homeplayer
    [07/11/2007 – 07:03:18 | A | 550 Ko] – [VirusTotal – (0/55)] – D:install.exe
    [07/11/2007 – 07:03:18 | A | 89 Ko] – D:install.res.1033.dll
    [07/11/2007 – 07:03:18 | A | 95 Ko] – D:install.res.1036.dll
    [07/11/2007 – 07:03:18 | A | 93 Ko] – D:install.res.1040.dll
    [07/11/2007 – 07:03:18 | A | 80 Ko] – D:install.res.1041.dll
    [07/11/2007 – 07:03:18 | A | 78 Ko] – D:install.res.1042.dll
    [07/11/2007 – 07:03:18 | A | 74 Ko] – D:install.res.2052.dll
    [07/11/2007 – 07:03:18 | A | 94 Ko] – D:install.res.3082.dll
    [07/11/2007 – 07:03:18 | A | 94 Ko] – D:install.res.1031.dll
    [07/11/2007 – 07:03:18 | A | 75 Ko] – D:install.res.1028.dll
    [07/11/2007 – 07:50:40 | A | 1883 Ko] – D:VC_RED.cab
    [03/04/2010 – 19:33:31 | A | 2040 Ko] – D:VS_EXPBSLN_x64_fraOLD.CAB
    [07/11/2007 – 07:00:40 | A | 6 Ko] – D:vcredist.bmp
    [04/06/2012 – 10:43:44 | SHD] – D:$RECYCLE.BIN
    [10/06/2012 – 09:02:50 | D] – D:Derrida
    [21/07/2012 – 20:48:38 | D] – D:Diskeeper
    [28/07/2012 – 18:28:37 | D] – D:Lacan
    [28/07/2012 – 18:43:41 | D] – D:Sartre
    [01/08/2012 – 15:57:46 | D] – D:Documents and Settings
    [04/09/2012 – 19:31:30 | D] – D:Program Files
    [04/11/2012 – 18:55:16 | D] – D:Samsung
    [31/01/2013 – 21:57:10 | D] – D:MozBackUp
    [04/02/2013 – 19:22:42 | D] – D:Livres audio
    [22/02/2013 – 23:27:28 | N | 0 Ko] – D:46F5FFC2258AOLD
    [02/05/2013 – 11:48:03 | D] – D:Smart PC Recorder Records
    [18/05/2013 – 10:57:57 | D] – D:Log
    [22/06/2013 – 13:15:20 | D] – D:MSOCacheOLD
    [19/08/2013 – 22:17:58 | D] – D:Tropes
    [22/08/2013 – 01:26:45 | D] – D:Demenge
    [04/11/2013 – 00:17:13 | D] – D:OutputFolder
    [20/11/2013 – 14:04:26 | D] – D:Cours du Collège
    [20/11/2013 – 23:41:48 | D] – D:nvvp_workspaceOLD
    [14/03/2014 – 20:22:25 | D] – D:ThunderbirdPortable 24
    [28/03/2014 – 23:08:12 | D] – D:FF Portable 16
    [05/04/2014 – 15:36:16 | RHD] – D:MSOCache
    [26/08/2014 – 19:23:53 | N | 0 Ko] – D:46F5FFC2258A
    [22/09/2014 – 16:27:38 | D] – D:Config
    [29/09/2014 – 10:12:47 | RD] – D:Pictures
    [04/10/2014 – 09:56:52 | D] – D:Films
    [04/10/2014 – 17:19:48 | D] – D:Appareils
    [23/10/2014 – 01:38:26 | D] – D:Photos
    [14/11/2014 – 12:29:55 | D] – D:Livres
    [21/11/2014 – 13:03:31 | RD] – D:Videos
    [28/11/2014 – 19:08:10 | D] – D:programmes
    [28/11/2014 – 19:09:03 | D] – D:Applications portables
    [30/11/2014 – 17:12:58 | RD] – D:Music
    [04/12/2014 – 23:13:16 | D] – D:Films Vidéo
    [05/12/2014 – 18:18:11 | RD] – D:Downloads
    [05/12/2014 – 19:00:53 | RD] – D:Documents
    [06/12/2014 – 11:15:19 | RD] – D:Desktop

    ################## | I: – Disque USB (FAT32) |

    darodu01
    Participant
    Nombre d'articles : 12

    Rebonjour,
    J’avais une autre clef USB infectée. Je l’ai branchée et fais passer le nettoyage. Je crois qu’elle a été nettoyée. Voici le rapport de nettoyage. Merci.

    ############################## | UsbFix V 7.806 | [Nettoyage]

    Utilisateur: univ (Administrateur) # DUFOUR
    Mis à jour le 30/11/2014 par El Desaparecido – SosVirus
    Lancé à 11:28:53 | 06/12/2014

    Site Web : http://www.usbfix.net/
    Changelog : http://www.usbfix.net/maj/
    Assistance : https://www.sosvirus.net/aide-nettoyage-pc/
    Upload Malware : https://www.sosvirus.net/upload_malware.php
    Détection en Live : http://comment-supprimer.fr/
    Contact : http://www.usbfix.net/contact/

    ################## | System information |

    MB: Dell Inc. (0178M3)
    CPU: Intel(R) Core(TM) i7-2640M CPU @ 2.80GHz
    GC: Intel(R) HD Graphics 3000
    GC: NVIDIA GeForce GT 520M
    RAM -> [Total : 4044 Mo | Free : 2184 Mo]
    Bios: Dell Inc.
    Boot: Normal boot

    OS: Microsoft™ Windows 7 Professional N (6.1.7601 64-Bit) Service Pack 1
    WB: Internet Explorer : 11.00.9600.16428

    ################## | Security Information |

    AV: Kaspersky Anti-Virus [(!) Désactivé |A jour]
    AS: Kaspersky Anti-Virus [(!) Désactivé |A jour]
    AS: Windows Defender [Actif |A jour]
    FW: Kaspersky Anti-Virus [(!) Désactivé]
    AS: Malwarebytes Anti-Malware : 2.0.4.1028
    FW: Windows Firewall [Actif]
    SC: Security Center [Actif]
    WU: Windows Update [Actif]

    ################## | Disk Information |

    C: (%SystemDrive%) -> Disque fixe # 99 Go (7 Go libre(s) – 7%) [] # NTFS
    D: -> Disque fixe # 367 Go (95 Go libre(s) – 26%) [Données] # NTFS
    E: -> CD-ROM # 0 Mo (0 Mo libre(s) – -9223372036854775807%) [Audio CD] # CDFS
    G: -> CD-ROM # 655 Mo (0 Mo libre(s) – 0%) [GRWIN] # CDFS
    I: -> Disque amovible # 30 Go (30 Go libre(s) – 100%) [] # FAT32

    ################## | Recherche générique |

    Supprimé! I:skype.Vbs
    Supprimé! I:Capitalisme (4-6)_Arte_2014_10_21_23_25.lnk

    (!) Fichiers temporaires supprimés. (2.6472749710083 MB)

    ################## | Registre |

    ################## | Regedit Run |

    F2 – HKLM..Winlogon : [Shell] explorer.exe
    F2 – [x64] HKLM..Winlogon : [Shell] explorer.exe
    F2 – HKLM..Winlogon : [Userinit] userinit.exe,
    F2 – [x64] HKLM..Winlogon : [Userinit] C:Windowssystem32userinit.exe,
    04 – HKCU..Run : [DAEMON Tools Lite] “C:Program Files (x86)DAEMON Tools LiteDTLite.exe” -autorun
    04 – HKCU..Run : [grwinHyper] C:Program Files (x86)Le RobertLe Grand RobertgrwinHyper.exe
    04 – HKCU..Run : [Free Download Manager] “C:Program Files (x86)Free Download Managerfdm.exe” -autorun
    04 – HKCU..Run : [OfficeSyncProcess] “C:Program Files (x86)Microsoft OfficeOffice14MSOSYNC.EXE”
    04 – HKCU..Run : [Copernic Desktop Search – Home] “C:Program Files (x86)Copernic Desktop Search – HomeDesktopSearchService.exe” /tray
    04 – HKCU..Run : [Xvid] C:Program Files (x86)XvidCheckUpdate.exe
    04 – HKCU..Run : [swg] “C:Program Files (x86)GoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe”
    04 – HKCU..Run : [hubiC] C:Program FilesOVHhubiChubiC.exe
    04 – HKCU..Run : [KiesPreload] C:Program Files (x86)SamsungKiesKies.exe /preload
    04 – HKCU..Run : [KiesAirMessage] C:Program Files (x86)SamsungKiesKiesAirMessage.exe -startup
    04 – HKCU..Run : [SandboxieControl] “C:Program FilesSandboxieSbieCtrl.exe”
    04 – HKCU..Run : [Amazon Music] “C:UsersunivAppDataLocalAmazon MusicAmazon Music Helper.exe”
    04 – HKLM..Run : [AVP] “C:Program Files (x86)Kaspersky LabKaspersky Anti-Virus 6.0 for Windows Workstations MP4avp.exe”
    04 – HKLM..Run : [HP Software Update] C:Program Files (x86)HpHP Software UpdateHPWuSchd2.exe
    04 – HKLM..Run : [TrueImageMonitor.exe] “C:Program Files (x86)AcronisTrueImageHomeTrueImageMonitor.exe”
    04 – HKLM..Run : [AcronisTimounterMonitor] C:Program Files (x86)AcronisTrueImageHomeTimounterMonitor.exe
    04 – HKLM..Run : [OmniPage Preload] C:Program Files (x86)NuanceOmniPage18OmniPage18.exe /preload
    04 – HKLM..Run : [PDFCreHook] C:Program Files (x86)NuancePDF Create 7pdfcreate7hook.exe
    04 – HKLM..Run : [PDF7 Registry Controller] C:Program Files (x86)NuancePDF Create 7RegistryController.exe
    04 – HKLM..Run : [HomePlayer] C:Program Files (x86)HomePlayerHomePlayer.exe -autostart
    04 – HKLM..Run : [PROMT Integrator] “C:Program Files (x86)PROMT5INTEGRALPinStart.exe” /autorun
    04 – HKLM..Run : [Microsoft Default Manager] “C:Program Files (x86)MicrosoftSearch Enhancement PackDefault ManagerDefMgr.exe” -resume
    04 – HKLM..Run : [BCSSync] “C:Program Files (x86)Microsoft OfficeOffice14BCSSync.exe” /DelayServices
    04 – HKLM..Run : [EaseUs Tray] “C:Program Files (x86)EaseUSTodo BackupbinTrayNotify.exe”
    04 – HKLM..Run : [EaseUs Watch] “C:Program Files (x86)EaseUSTodo BackupbinEuWatch.exe”
    04 – HKLM..Run : [KiesTrayAgent] C:Program Files (x86)SamsungKiesKiesTrayAgent.exe
    04 – HKLM..Run : [SunJavaUpdateSched] “C:Program Files (x86)Common FilesJavaJava Updatejusched.exe”
    04 – HKLM..Run : [Wondershare Helper Compact.exe] C:Program Files (x86)Common FilesWondershareWondershare Helper CompactWSHelper.exe
    04 – HKLM..Run : [EaseUS EPM tray] C:Program Files (x86)EaseUSEaseUS Partition Master 10.1binEpmNews.exe
    04 – HKLM..Run : [CardDetectorICON225] C:Program Files (x86)CardDetectorICON225CardDetector.exe
    04 – [x64] HKLM..Run : [SynTPEnh] %ProgramFiles%SynapticsSynTPSynTPEnh.exe
    04 – [x64] HKLM..Run : [Le gd Robert] C:Program Files (x86)Le RobertLe Grand Robertgrwin.exe
    04 – [x64] HKLM..Run : [IgfxTray] C:Windowssystem32igfxtray.exe
    04 – [x64] HKLM..Run : [HotKeysCmds] C:Windowssystem32hkcmd.exe
    04 – [x64] HKLM..Run : [Persistence] C:Windowssystem32igfxpers.exe
    04 – [x64] HKLM..Run : [RtHDVCpl] C:Program FilesRealtekAudioHDARAVCpl64.exe -s
    04 – [x64] HKLM..Run : [ShadowPlay] C:Windowssystem32rundll32.exe C:Windowssystem32nvspcap64.dll,ShadowPlayOnSystemStart
    04 – [x64] HKLM..Run : [SkypePortable] D:Applications portablesSkypePortableSkypePortable.exe
    04 – HKUS-1-5-19..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
    04 – HKUS-1-5-20..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [DAEMON Tools Lite] “C:Program Files (x86)DAEMON Tools LiteDTLite.exe” -autorun
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [grwinHyper] C:Program Files (x86)Le RobertLe Grand RobertgrwinHyper.exe
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [Free Download Manager] “C:Program Files (x86)Free Download Managerfdm.exe” -autorun
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [OfficeSyncProcess] “C:Program Files (x86)Microsoft OfficeOffice14MSOSYNC.EXE”
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [Copernic Desktop Search – Home] “C:Program Files (x86)Copernic Desktop Search – HomeDesktopSearchService.exe” /tray
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [Xvid] C:Program Files (x86)XvidCheckUpdate.exe
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [swg] “C:Program Files (x86)GoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe”
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [hubiC] C:Program FilesOVHhubiChubiC.exe
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [KiesPreload] C:Program Files (x86)SamsungKiesKies.exe /preload
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [KiesAirMessage] C:Program Files (x86)SamsungKiesKiesAirMessage.exe -startup
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [SandboxieControl] “C:Program FilesSandboxieSbieCtrl.exe”
    04 – HKUS-1-5-21-3381041643-2925083757-3803532033-1000..Run : [Amazon Music] “C:UsersunivAppDataLocalAmazon MusicAmazon Music Helper.exe”
    04 – HKUS-1-5-19..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe
    04 – HKUS-1-5-20..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe
    04GS – IcoSauve.lnk : C:Program Files (x86)IcoSauveIcoSauve.exe
    04GS – Stoic Joker’s T-Clock 2010 x64.lnk : C:T-Clock 2010 (build X – Release to DC)x64Clock.exe
    04GS – PhraseExpress.lnk : C:Program Files (x86)PhraseExpressphraseexpress.exe

    ################## | UsbFix – Information |

    Info : Comment supprimer l’infection des raccourcis sur USB ? (Video)
    Info : L’infection des raccourcis USB, c’est quoi ?
    Détection en Live : http://comment-supprimer.fr/

    ################## | Hijack |

    ################## | C: %SystemDrive% – Disque Fixe (NTFS) |

    [13/09/2014 – 16:19:16 | A | 4 Ko] – C:config.xml
    [20/10/2013 – 22:10:57 | A | 1 Ko] – C:AdwCleaner[R17].txt
    [20/10/2013 – 22:11:57 | A | 1 Ko] – C:AdwCleaner[S10].txt
    [04/11/2013 – 18:38:18 | A | 1 Ko] – C:AdwCleaner[R18].txt
    [26/04/2014 – 21:48:42 | A | 4 Ko] – C:AdwCleaner[R19].txt
    [26/04/2014 – 23:15:45 | A | 4 Ko] – C:AdwCleaner[R20].txt
    [26/04/2014 – 23:17:42 | A | 4 Ko] – C:AdwCleaner[S12].txt
    [28/10/2014 – 13:27:54 | A | 3 Ko] – C:AdwCleaner[R21].txt
    [04/12/2014 – 23:22:57 | A | 2 Ko] – C:.txt
    [12/08/2014 – 00:46:49 | N | 395 Ko] – C:EUMONBMP.SYS
    [06/12/2014 – 11:06:54 | ASH | 3105684 Ko] – C:hiberfil.sys
    [06/12/2014 – 11:07:03 | ASH | 4140912 Ko] – C:pagefile.sys
    [05/12/2014 – 19:22:06 | D] – C:Config.Msi
    [02/07/2012 – 19:45:44 | A | 19 Ko] – C:SSInst.log
    [07/03/2013 – 02:31:07 | N | 4 Ko] – C:VSNAP.IDX
    [18/06/2012 – 21:51:53 | A | 0 Ko] – C:winserv.exe
    [12/08/2014 – 01:08:51 | N | 4 Ko] – C:{A62736DF-2E49-4E70-8242-D24058475F49}.CBM
    [21/05/2012 – 10:55:41 | SHD] – C:$Recycle.Bin
    [15/06/2012 – 16:32:19 | D] – C:npp.6.1.3.bin
    [14/07/2009 – 04:20:08 | D] – C:PerfLogs
    [14/07/2009 – 06:08:10 | SHD] – C:Documents and Settings
    [21/05/2012 – 10:55:10 | SHD] – C:Recovery
    [21/05/2012 – 11:03:35 | D] – C:dell
    [21/05/2012 – 11:19:29 | D] – C:Intel
    [21/05/2012 – 11:31:52 | RD] – C:Users
    [21/05/2012 – 13:13:54 | RHD] – C:MSOCache
    [21/05/2012 – 14:35:58 | D] – C:KAV
    [13/06/2012 – 09:42:19 | D] – C:Barre des tâches
    [20/06/2012 – 14:12:23 | D] – C:T-Clock 2010 (build X – Release to DC)
    [25/06/2012 – 23:36:14 | D] – C:Images
    [06/07/2012 – 03:18:58 | D] – C:archive_db
    [06/07/2012 – 14:49:33 | D] – C:archdb
    [15/07/2012 – 14:25:18 | D] – C:hjsplit
    [21/07/2012 – 14:03:45 | D] – C:Diskeeper
    [14/12/2012 – 23:05:13 | D] – C:SWSetup
    [25/08/2013 – 21:30:52 | D] – C:Drivers
    [07/09/2013 – 13:22:49 | D] – C:Mes Sites Web
    [20/11/2013 – 22:51:07 | D] – C:Temp
    [20/11/2013 – 23:51:30 | SHD] – C:BOOT
    [11/08/2014 – 23:16:48 | RD] – C:Sandbox
    [05/10/2014 – 23:50:38 | D] – C:Log
    [08/11/2014 – 15:42:49 | D] – C:DriveKey
    [29/11/2014 – 19:34:29 | D] – C:Windows
    [01/12/2014 – 10:33:57 | RD] – C:Program Files
    [05/12/2014 – 19:21:40 | RD] – C:Program Files (x86)
    [05/12/2014 – 19:21:42 | HD] – C:ProgramData
    [05/12/2014 – 19:27:14 | D] – C:UsbFix

    ################## | D: – Disque Fixe (NTFS) |

    [07/11/2007 – 07:00:40 | A | 17 Ko] – D:eula.3082.txt
    [07/11/2007 – 07:00:40 | A | 17 Ko] – D:eula.2052.txt
    [07/11/2007 – 07:00:40 | A | 17 Ko] – D:eula.1031.txt
    [07/11/2007 – 07:00:40 | A | 10 Ko] – D:eula.1033.txt
    [07/11/2007 – 07:00:40 | A | 17 Ko] – D:eula.1042.txt
    [07/11/2007 – 07:00:40 | A | 0 Ko] – D:eula.1041.txt
    [07/11/2007 – 07:00:40 | A | 17 Ko] – D:eula.1040.txt
    [07/11/2007 – 07:00:40 | A | 17 Ko] – D:eula.1036.txt
    [07/11/2007 – 07:00:40 | A | 17 Ko] – D:eula.1028.txt
    [11/11/2014 – 10:54:14 | A | 0 Ko] – D:.txt
    [07/11/2007 – 07:53:12 | A | 237 Ko] – D:VC_RED.MSI
    [03/04/2010 – 19:35:56 | A | 542 Ko] – D:VS_EXPBSLN_x64_fraOLD.MSI
    [07/11/2007 – 07:00:40 | A | 1 Ko] – [VirusTotal – (0/55)] – D:install.ini
    [07/11/2007 – 07:00:40 | A | 1 Ko] – [VirusTotal – (0/55)] – D:globdata.ini
    [06/12/2014 – 11:13:04 | D] – D:.homeplayer
    [07/11/2007 – 07:03:18 | A | 550 Ko] – [VirusTotal – (0/55)] – D:install.exe
    [07/11/2007 – 07:03:18 | A | 89 Ko] – D:install.res.1033.dll
    [07/11/2007 – 07:03:18 | A | 95 Ko] – D:install.res.1036.dll
    [07/11/2007 – 07:03:18 | A | 93 Ko] – D:install.res.1040.dll
    [07/11/2007 – 07:03:18 | A | 80 Ko] – D:install.res.1041.dll
    [07/11/2007 – 07:03:18 | A | 78 Ko] – D:install.res.1042.dll
    [07/11/2007 – 07:03:18 | A | 74 Ko] – D:install.res.2052.dll
    [07/11/2007 – 07:03:18 | A | 94 Ko] – D:install.res.3082.dll
    [07/11/2007 – 07:03:18 | A | 94 Ko] – D:install.res.1031.dll
    [07/11/2007 – 07:03:18 | A | 75 Ko] – D:install.res.1028.dll
    [07/11/2007 – 07:50:40 | A | 1883 Ko] – D:VC_RED.cab
    [03/04/2010 – 19:33:31 | A | 2040 Ko] – D:VS_EXPBSLN_x64_fraOLD.CAB
    [07/11/2007 – 07:00:40 | A | 6 Ko] – D:vcredist.bmp
    [04/06/2012 – 10:43:44 | SHD] – D:$RECYCLE.BIN
    [10/06/2012 – 09:02:50 | D] – D:Derrida
    [21/07/2012 – 20:48:38 | D] – D:Diskeeper
    [28/07/2012 – 18:28:37 | D] – D:Lacan
    [28/07/2012 – 18:43:41 | D] – D:Sartre
    [01/08/2012 – 15:57:46 | D] – D:Documents and Settings
    [04/09/2012 – 19:31:30 | D] – D:Program Files
    [04/11/2012 – 18:55:16 | D] – D:Samsung
    [31/01/2013 – 21:57:10 | D] – D:MozBackUp
    [04/02/2013 – 19:22:42 | D] – D:Livres audio
    [22/02/2013 – 23:27:28 | N | 0 Ko] – D:46F5FFC2258AOLD
    [02/05/2013 – 11:48:03 | D] – D:Smart PC Recorder Records
    [18/05/2013 – 10:57:57 | D] – D:Log
    [22/06/2013 – 13:15:20 | D] – D:MSOCacheOLD
    [19/08/2013 – 22:17:58 | D] – D:Tropes
    [22/08/2013 – 01:26:45 | D] – D:Demenge
    [04/11/2013 – 00:17:13 | D] – D:OutputFolder
    [20/11/2013 – 14:04:26 | D] – D:Cours du Collège
    [20/11/2013 – 23:41:48 | D] – D:nvvp_workspaceOLD
    [14/03/2014 – 20:22:25 | D] – D:ThunderbirdPortable 24
    [28/03/2014 – 23:08:12 | D] – D:FF Portable 16
    [05/04/2014 – 15:36:16 | RHD] – D:MSOCache
    [26/08/2014 – 19:23:53 | N | 0 Ko] – D:46F5FFC2258A
    [22/09/2014 – 16:27:38 | D] – D:Config
    [29/09/2014 – 10:12:47 | RD] – D:Pictures
    [04/10/2014 – 09:56:52 | D] – D:Films
    [04/10/2014 – 17:19:48 | D] – D:Appareils
    [23/10/2014 – 01:38:26 | D] – D:Photos
    [14/11/2014 – 12:29:55 | D] – D:Livres
    [21/11/2014 – 13:03:31 | RD] – D:Videos
    [28/11/2014 – 19:08:10 | D] – D:programmes
    [28/11/2014 – 19:09:03 | D] – D:Applications portables
    [30/11/2014 – 17:12:58 | RD] – D:Music
    [04/12/2014 – 23:13:16 | D] – D:Films Vidéo
    [05/12/2014 – 18:18:11 | RD] – D:Downloads
    [05/12/2014 – 19:00:53 | RD] – D:Documents
    [06/12/2014 – 11:15:19 | RD] – D:Desktop

    ################## | I: – Disque USB (FAT32) |

    g3n-h@ckm@ng3n-h@ckm@n
    Moderator
    Nombre d'articles : 8258

    hello

    rends-toi sur https://www.virustotal.com” onclick=”window.open(this.href);return false; puis fais analyser ce fichier :

    C:winserv.exe

    une fois l’analyse des antivirus terminée , récupère le lien de la page en haut puis colle-le ici que je puisse m’y rendre pour consulter

    darodu01
    Participant
    Nombre d'articles : 12

    rebonjour,
    Voici donc le lien pour l’analyse de winserv.exe
    https://www.virustotal.com/fr/file/e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855/analysis/1417864295/” onclick=”window.open(this.href);return false;

    g3n-h@ckm@ng3n-h@ckm@n
    Moderator
    Nombre d'articles : 8258

    il semblerait que tu aies joué avec des cracks …. pas bien malin , je sais pas si on va pouvoir désinfecter ton système si l’infection n’est pas trop avancée sinon tu devras réinstaller windows sans sauvegarder aucun fichier executable

    voici le genre d’infection que crée le fichier que tu viens d’analyser : https://www.virustotal.com/fr/file/81fe3b3f853048067296c24f48729ee588753337327eaf12ec40bdd96777b337/analysis/” onclick=”window.open(this.href);return false;

    infos sur l infection : https://fr.wikipedia.org/wiki/Virut” onclick=”window.open(this.href);return false;

    ==

    Utilisation de DrWeb

    Télécharger drWeb , et l’enregistrer sur le bureau , grace à ce lien :

    https://www.freedrweb.com/download+cureit+free/?lng=fr” onclick=”window.open(this.href);return false;

    Branche tous tes periphériques USB (mp3 , mp4 , disques durs externes , clés usb , appareil photo….) , tout ce qui a pu etre connecté à l’ordinateur.

    Lance DrWeb CureIt , Clique sur OK

    Le programme va vérifier qu’il soit bien à jour.

    Coche la case « j’accepte de participer blablabla…… , puis clique sur continuer

    Sur la page d’accueil , clique sur « sélectionner des objets pour l’analyse »

    Coche tout à gauche , puis selectionne « Cliquez ici pour selectionner des fichiers et dossiers » .

    Coche « Mon ordinateur » , ce qui aura pour effet de cocher tous les stockages de mémoires préalablement branchés comme précité , puis clique sur « OK »

    Clique sur “OK” puis sur « lancer l’analyse »

    L’analyse complète s’ effectue ….

    Une fois terminée , laisser toutes les infections trouvées sur « Désinfecter » , puis cliquer sur « neutraliser »

    DrWeb va neutraliser les menaces et afficher le résultat

    DrWeb va demander de redémarrer l’ordinateur pour parfaire le nettoyage , faites-le

    Pour poster le rapport ensuite , se rendre dans :

    C:(généralement)La sessionDrWeb

    Dans ce dossier se trouve « CureIt.log« .

    Cliquer droit dessus puis sélectionner « envoyer vers » => dossiers compressés

    Héberger l’archive ainsi créée sur https://antimalware.top” onclick=”window.open(this.href);return false; et donner le lien sur le forum où l’on s’est fait aider.

    Anonyme
    Nombre d'articles : 0

    Bonsoir,
    C’est fait. Voici le lien du rapport DrWeb:

    https://antimalware.top/www/?a=d&i=DtKAbB7AXo” onclick=”window.open(this.href);return false;
    Merci

    darodu01
    Participant
    Nombre d'articles : 12

    Bonsoir,
    C’est fait. Voici le lien du rapport DrWeb:

    https://antimalware.top/www/?a=d&i=DtKAbB7AXo” onclick=”window.open(this.href);return false;
    Merci

15 sujets de 1 à 15 (sur un total de 18)
  • Vous devez être connecté pour répondre à ce sujet.