Répondre à : clé usb semi HS 2016-09-08T13:02:36+00:00
pepsister
Participant
Nombre d'articles : 3

excuse moi j’ai oublié une partie du rapport. Je te le remet entièrement.
Et si si la clé est bien connecté sous I (i), l’ordi pour le moment la reconnait et j’arrive à l’ouvrir.


############################## | UsbFix V 7.129 | [Suppression]

Utilisateur: bsabatino (Administrateur) # BSABATINO-DESKT
Mis à jour le 24/06/2013 par El Desaparecido
Lancé à 16:42:36 | 06/08/2013

Site Web: https://www.sosvirus.net/
Upload Malware: https://www.sosvirus.net/upload-malware-pour-analyse-t489.html
Contact: contact@sosvirus.net

PC: Hewlett-Packard (HP Pro 3500 Series) (x64-based PC)
CPU: Intel(R) Core(TM) i3-2120 CPU @ 3.30GHz (3300)
RAM -> [Total : 3982 | Free : 2467]
BIOS: BIOS Date: 06/07/12 10:32:07 Ver: 7.06
BOOT: Normal boot

OS: Microsoft Windows 7 Professionnel (6.1.7601 64-Bit) # Service Pack 1
WB: Windows Internet Explorer 9.0.8112.16421

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: avast! Antivirus [Enabled | Updated]
FW: Windows FireWall Service [Enabled]

C: (%systemdrive%) -> Disque fixe # 451 Go (376 Go libre(s) - 83%) [OS] # NTFS
D: -> Disque fixe # 15 Go (2 Go libre(s) - 12%) [HP_RECOVERY] # NTFS
E: -> CD-ROM
H: -> Disque fixe # 97 Mo (89 Mo libre(s) - 92%) [HP_TOOLS] # FAT32

################## | El Desaparecido Section |

HKLMSOFTWARE | Run : [avast5] - "C:Program FilesAlwil SoftwareAvast5avastUI.exe" /nogui
HKLMSOFTWARE | Run : [Adobe ARM] - "C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe"
HKLMSOFTWARE | Run : [ASUS Ai Charger] - C:Program Files (x86)ASUSASUS Ai ChargerAiChargerAP.exe
HKLMSOFTWARE | Run : [ControlCenter4] - C:Program Files (x86)ControlCenter4BrCcBoot.exe /autorun
HKLMSOFTWARE | Run : [BrStsMon00] - C:Program Files (x86)Browny02BrotherBrStMonW.exe /AUTORUN
HKLMSOFTWARE | Run : [SSBkgdUpdate] - "C:Program Files (x86)Common FilesScansoft SharedSSBkgdUpdateSSBkgdupdate.exe" -Embedding -boot
HKLMSOFTWARE | Run : [PaperPort PTD] - "C:Program Files (x86)ScanSoftPaperPortpptd40nt.exe"
HKLMSOFTWARE | Run : [IndexSearch] - "C:Program Files (x86)ScanSoftPaperPortIndexSearch.exe"
HKLMSOFTWARE | Run : [PPort11reminder] - "C:Program Files (x86)ScanSoftPaperPortEregEreg.exe" -r "C:ProgramDataScanSoftPaperPort11ConfigEregEreg.ini"
HKLMSOFTWARE | Run : [BrMfcWnd] - C:Program Files (x86)BrotherBrmfcmonBrMfcWnd.exe /AUTORUN
HKLMSOFTWARE | Run : [ControlCenter3] - C:Program Files (x86)BrotherControlCenter3brctrcen.exe /autorun
HKLMSOFTWARE | Run : [SunJavaUpdateSched] - "C:Program Files (x86)Common FilesJavaJava Updatejusched.exe"
HKLMSOFTWARE | Run : [SDTray] - "C:Program Files (x86)Spybot - Search & Destroy 2SDTray.exe"
HKLMSOFTWAREwow6432Node | Run : [avast5] - "C:Program FilesAlwil SoftwareAvast5avastUI.exe" /nogui
HKLMSOFTWAREwow6432Node | Run : [Adobe ARM] - "C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe"
HKLMSOFTWAREwow6432Node | Run : [ASUS Ai Charger] - C:Program Files (x86)ASUSASUS Ai ChargerAiChargerAP.exe
HKLMSOFTWAREwow6432Node | Run : [ControlCenter4] - C:Program Files (x86)ControlCenter4BrCcBoot.exe /autorun
HKLMSOFTWAREwow6432Node | Run : [BrStsMon00] - C:Program Files (x86)Browny02BrotherBrStMonW.exe /AUTORUN
HKLMSOFTWAREwow6432Node | Run : [SSBkgdUpdate] - "C:Program Files (x86)Common FilesScansoft SharedSSBkgdUpdateSSBkgdupdate.exe" -Embedding -boot
HKLMSOFTWAREwow6432Node | Run : [PaperPort PTD] - "C:Program Files (x86)ScanSoftPaperPortpptd40nt.exe"
HKLMSOFTWAREwow6432Node | Run : [IndexSearch] - "C:Program Files (x86)ScanSoftPaperPortIndexSearch.exe"
HKLMSOFTWAREwow6432Node | Run : [PPort11reminder] - "C:Program Files (x86)ScanSoftPaperPortEregEreg.exe" -r "C:ProgramDataScanSoftPaperPort11ConfigEregEreg.ini"
HKLMSOFTWAREwow6432Node | Run : [BrMfcWnd] - C:Program Files (x86)BrotherBrmfcmonBrMfcWnd.exe /AUTORUN
HKLMSOFTWAREwow6432Node | Run : [ControlCenter3] - C:Program Files (x86)BrotherControlCenter3brctrcen.exe /autorun
HKLMSOFTWAREwow6432Node | Run : [SunJavaUpdateSched] - "C:Program Files (x86)Common FilesJavaJava Updatejusched.exe"
HKLMSOFTWAREwow6432Node | Run : [SDTray] - "C:Program Files (x86)Spybot - Search & Destroy 2SDTray.exe"
HKLMSOFTWARE | RunOnce : [] -
HKLMSOFTWAREwow6432Node | RunOnce : [] -
HKUS-1-5-19SOFTWARE | Run : [Sidebar] - %ProgramFiles%Windows SidebarSidebar.exe /autoRun
HKUS-1-5-20SOFTWARE | Run : [Sidebar] - %ProgramFiles%Windows SidebarSidebar.exe /autoRun
HKUS-1-5-21-1920962829-2903047442-890407604-3330SOFTWARE | Run : [BlosonAddonUpdater] - C:UsersbsabatinoAppDataRoamingBlosonBlosonAddonUpdater.exe
HKUS-1-5-21-1920962829-2903047442-890407604-3330SOFTWARE | Run : [msnmsgr] - ~"C:Program Files (x86)Windows LiveMessengermsnmsgr.exe" /background
HKUS-1-5-21-1920962829-2903047442-890407604-3330SOFTWARE | Run : [Sony PC Companion] - "C:Program Files (x86)SonySony PC CompanionPCCompanion.exe" /Background
HKUS-1-5-21-1920962829-2903047442-890407604-3330SOFTWARE | Run : [Gadwin PrintScreen] - C:Program Files (x86)Gadwin SystemsPrintScreenPrintScreen.exe /nosplash
HKUS-1-5-21-1920962829-2903047442-890407604-3330SOFTWARE | Run : [googletalk] - "C:Program Files (x86)GoogleGoogle Talkgoogletalk.exe" /autostart
HKUS-1-5-21-1920962829-2903047442-890407604-3330SOFTWARE | Run : [RESTART_STICKY_NOTES] - C:WindowsSystem32StikyNot.exe
HKUS-1-5-19SOFTWARE | RunOnce : [mctadmin] - C:WindowsSystem32mctadmin.exe
HKUS-1-5-20SOFTWARE | RunOnce : [mctadmin] - C:WindowsSystem32mctadmin.exe

################## | Processus Stoppés |

Stoppé! C:Program FilesAlwil SoftwareAvast5AvastSvc.exe (1316)
Stoppé! C:WindowsSystem32spoolsv.exe (1528)
Stoppé! C:Program Files (x86)Common FilesAdobeARM1.0armsvc.exe (1760)
Stoppé! C:ProgramDataBrowserDefender2.6.1519.190{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}BrowserDefender.exe (1796)
Stoppé! C:Program Files (x86)PDF ArchitectHelperService.exe (1956)
Stoppé! C:Program Files (x86)PDF ArchitectConversionService.exe (1928)
Stoppé! C:Program Files (x86)Spybot - Search & Destroy 2SDFSSvc.exe (2284)
Stoppé! C:Windowssystem32taskhost.exe (2428)
Stoppé! C:ProgramDataBrowserDefender2.6.1519.190{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}BrowserDefender.exe (2472)
Stoppé! C:WindowsExplorer.EXE (2604)
Stoppé! C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSVC.EXE (2900)
Stoppé! C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSvcM.exe (3020)
Stoppé! C:Program Files (x86)OCS Inventory AgentOcsService.exe (2484)
Stoppé! C:Program Files (x86)Spybot - Search & Destroy 2SDUpdSvc.exe (3176)
Stoppé! C:Program Files (x86)Spybot - Search & Destroy 2SDWSCSvc.exe (3276)
Stoppé! C:WindowsSystem32WUDFHost.exe (3800)
Stoppé! C:WindowsSystem32igfxtray.exe (4048)
Stoppé! C:WindowsSystem32hkcmd.exe (4060)
Stoppé! C:WindowsSystem32igfxpers.exe (3228)
Stoppé! C:UsersbsabatinoAppDataRoamingBlosonBlosonAddonUpdater.exe (3696)
Stoppé! C:Program Files (x86)SonySony PC CompanionPCCompanion.exe (2572)
Stoppé! C:Program FilesTortoiseSVNbinTSVNCache.exe (3532)
Stoppé! C:Program Files (x86)SonySony PC CompanionPCCompanionInfo.exe (2736)
Stoppé! C:Program Files (x86)Gadwin SystemsPrintScreenPrintScreen.exe (1020)
Stoppé! C:Program Files (x86)GoogleGoogle Talkgoogletalk.exe (3948)
Stoppé! C:Windowssplwow64.exe (1116)
Stoppé! C:WindowsSystem32StikyNot.exe (1128)
Stoppé! C:Program FilesAlwil SoftwareAvast5AvastUI.exe (524)
Stoppé! C:Program Files (x86)ASUSASUS Ai ChargerAiChargerAP.exe (4180)
Stoppé! C:Windowssystem32SearchIndexer.exe (4284)
Stoppé! C:Program Files (x86)Browny02BrotherBrStMonW.exe (4292)
Stoppé! C:Program Files (x86)ScanSoftPaperPortpptd40nt.exe (4352)
Stoppé! C:Program Files (x86)OCS Inventory AgentOcsSystray.exe (4408)
Stoppé! C:Program Files (x86)ControlCenter4BrCtrlCntr.exe (4528)
Stoppé! C:Program Files (x86)Common FilesJavaJava Updatejusched.exe (4552)
Stoppé! C:Program Files (x86)Spybot - Search & Destroy 2SDTray.exe (4576)
Stoppé! C:Program Files (x86)BrotherControlCenter3brccMCtl.exe (4732)
Stoppé! C:Program Files (x86)Browny02BrYNSvc.exe (4812)
Stoppé! C:Program Files (x86)ControlCenter4BrCcUxSys.exe (5000)
Stoppé! C:Program Files (x86)Mozilla Firefoxfirefox.exe (5032)
Stoppé! C:Program Files (x86)Mozilla Firefoxplugin-container.exe (788)
Stoppé! C:WindowsSysWOW64MacromedFlashFlashPlayerPlugin_11_7_700_224.exe (3136)
Stoppé! C:WindowsSysWOW64MacromedFlashFlashPlayerPlugin_11_7_700_224.exe (4008)
Stoppé! C:Program Files (x86)Microsoft OfficeOffice12OUTLOOK.EXE (2392)
Stoppé! C:Windowssystem32taskeng.exe (4924)

################## | Éléments infectieux |

Supprimé! W:vincentjquery_1.4.3.js
Supprimé! W:cyriljquery.PLUGINNAME.js
Supprimé! C:UsersbsabatinoAppDataLocalPUTTY.RND

(!) Fichiers temporaires supprimés.

################## | Registre |


################## | Mountpoints2 |

Supprimé! HKCU....ExplorerMountPoints2{4a548423-3d1b-11e2-9022-ac162d1194c0}

################## | Listing |

[26/10/2012 - 15:11:50 | SHD ] C:$Recycle.Bin
[11/02/2011 - 22:13:06 | N | 8192] C:BOOTSECT.BAK
[06/02/2013 - 13:02:33 | D ] C:Brother
[14/07/2009 - 07:08:56 | SHD ] C:Documents and Settings
[03/07/2012 - 08:23:03 | N | 95871] C:DPC11WWSNCW602.ini
[05/03/2013 - 10:25:58 | N | 64435] C:EAB_cros_20120228.dat.Z

[05/07/2013 - 08:26:44 | N | 0] C:END
[07/11/2007 - 08:00:40 | N | 17734] C:eula.1028.txt
[07/11/2007 - 08:00:40 | N | 17734] C:eula.1031.txt
[07/11/2007 - 08:00:40 | N | 10134] C:eula.1033.txt
[07/11/2007 - 08:00:40 | N | 17734] C:eula.1036.txt
[07/11/2007 - 08:00:40 | N | 17734] C:eula.1040.txt
[07/11/2007 - 08:00:40 | N | 118] C:eula.1041.txt
[07/11/2007 - 08:00:40 | N | 17734] C:eula.1042.txt
[07/11/2007 - 08:00:40 | N | 17734] C:eula.2052.txt
[07/11/2007 - 08:00:40 | N | 17734] C:eula.3082.txt
[21/11/2012 - 16:41:51 | D ] C:excel_macro
[06/12/2012 - 10:03:50 | D ] C:fastboot-USBdrivers
[06/12/2012 - 10:03:41 | N | 21877673] C:fastboot-USBdrivers.zip
[20/12/2012 - 09:58:56 | N | 1498] C:find_installed_search_provider.log
[06/12/2012 - 12:08:53 | D ] C:Flashtool
[14/09/2012 - 12:02:06 | D ] C:FRW764PR
[14/09/2012 - 12:02:06 | D ] C:FRWV64PR
[07/11/2007 - 08:00:40 | N | 1110] C:globdata.ini
[05/08/2013 - 08:36:38 | ASH | 3131572224] C:hiberfil.sys
[14/09/2012 - 12:50:20 | D ] C:hp
[07/11/2007 - 08:03:18 | N | 562688] C:install.exe
[07/11/2007 - 08:00:40 | N | 843] C:install.ini
[07/11/2007 - 08:03:18 | N | 76304] C:install.res.1028.dll
[07/11/2007 - 08:03:18 | N | 96272] C:install.res.1031.dll
[07/11/2007 - 08:03:18 | N | 91152] C:install.res.1033.dll
[07/11/2007 - 08:03:18 | N | 97296] C:install.res.1036.dll
[07/11/2007 - 08:03:18 | N | 95248] C:install.res.1040.dll
[07/11/2007 - 08:03:18 | N | 81424] C:install.res.1041.dll
[07/11/2007 - 08:03:18 | N | 79888] C:install.res.1042.dll
[07/11/2007 - 08:03:18 | N | 75792] C:install.res.2052.dll
[07/11/2007 - 08:03:18 | N | 96272] C:install.res.3082.dll
[14/09/2012 - 12:37:37 | D ] C:Intel
[19/11/2011 - 15:05:36 | N | 4458047] C:kernel.sin
[01/03/2013 - 17:08:37 | D ] C:mozilla
[02/12/2006 - 00:37:14 | N | 904704] C:msdia80.dll
[26/10/2012 - 11:19:43 | RHD ] C:MSOCache
[14/09/2012 - 12:01:29 | N | 0] C:OS
[05/08/2013 - 08:36:38 | ASH | 4175429632] C:pagefile.sys
[14/07/2009 - 05:20:08 | D ] C:PerfLogs
[02/04/2013 - 12:13:35 | D ] C:Program Files
[05/08/2013 - 16:47:30 | D ] C:Program Files (x86)
[10/07/2013 - 11:35:00 | HD ] C:ProgramData
[31/07/2013 - 14:33:49 | D ] C:projets
[11/01/2013 - 15:44:00 | N | 1163] C:proxyeab.pac
[25/10/2012 - 11:09:18 | SHD ] C:Recovery
[06/12/2012 - 10:03:07 | N | 4911104] C:recoveryRay.img
[14/09/2012 - 14:36:02 | D ] C:SOURCES
[05/07/2013 - 15:57:23 | D ] C:SVN
[25/10/2012 - 18:01:39 | D ] C:SWSETUP
[06/08/2013 - 08:39:41 | SHD ] C:System Volume Information
[25/10/2012 - 09:51:31 | D ] C:SYSTEM.SAV
[06/12/2012 - 10:03:06 | D ] C:tempRECOVERYRAY
[06/12/2012 - 10:01:40 | N | 4892855] C:tempRECOVERYRAY.zip
[02/11/2012 - 15:26:29 | D ] C:Téléchargements
[06/08/2013 - 16:48:18 | D ] C:UsbFix
[06/08/2013 - 16:48:25 | A | 14435] C:UsbFix [Clean 1] BSABATINO-DESKT.txt
[06/08/2013 - 08:45:03 | N | 9972] C:UsbFix [Scan 2] BSABATINO-DESKT.txt
[26/10/2012 - 15:13:47 | D ] C:Users
[07/11/2007 - 08:00:40 | N | 5686] C:vcredist.bmp
[07/11/2007 - 08:09:22 | N | 1442522] C:VC_RED.cab
[07/11/2007 - 08:12:28 | N | 232960] C:VC_RED.MSI
[25/06/2013 - 08:48:32 | D ] C:Windows
[25/10/2012 - 17:42:23 | D ] C:Windows.old
[14/09/2012 - 14:30:30 | N | 805306368] C:winpe_pagefile.sys
[26/10/2012 - 15:11:50 | SHD ] D:$RECYCLE.BIN
[25/10/2012 - 09:51:16 | SHD ] D:boot
[20/11/2010 - 08:40:07 | ASH | 383786] D:bootmgr
[25/10/2012 - 09:51:15 | N | 0] D:BT_HP.FLG
[14/09/2012 - 14:23:39 | N | 505] D:CSP.DAT
[14/09/2012 - 14:35:59 | N | 13748] D:DeployRp.log
[20/01/2009 - 06:11:34 | N | 69] D:EFI
[25/10/2012 - 09:51:16 | D ] D:hp
[25/10/2012 - 09:54:23 | N | 8] D:HP_WSD.dat
[25/10/2012 - 09:51:03 | N | 44] D:language.ini
[25/10/2012 - 09:51:16 | SHD ] D:preload
[25/10/2012 - 09:51:16 | SD ] D:Recovery
[25/10/2012 - 09:51:03 | N | 59] D:RPCONFIG.LOG
[14/09/2012 - 13:26:33 | SHD ] D:System Volume Information
[14/09/2012 - 04:30:54 | N | 0] H:HP_TOOLS
[14/09/2012 - 02:01:30 | D ] H:Hewlett-Packard
[25/10/2012 - 18:07:44 | SHD ] H:$RECYCLE.BIN
[13/04/2010 - 15:49:57 | D ] W:autres
[01/06/2010 - 12:19:05 | D ] W:Drivers_DELL
[30/11/2012 - 11:51:53 | D ] W:ScanToFolder
[15/02/2013 - 19:42:21 | D ] W:free trade
[13/09/2011 - 16:23:01 | D ] W:flash transparent 130911
[02/08/2013 - 10:11:56 | D ] W:Wyame
[26/05/2010 - 14:49:16 | D ] W:SSL
[28/04/2011 - 17:05:35 | D ] W:Scanner
[30/10/2012 - 17:05:29 | D ] W:OCSNG-Windows-Agent-2.0.5
[13/04/2010 - 16:05:42 | D ] W:projet
[22/10/2012 - 15:25:44 | D ] W:Drivers
[02/10/2012 - 20:16:45 | A | 13057708] W:20121002.log
[04/09/2012 - 12:28:06 | A | 102] W:FilteredOutOfBoundsOrderB2B_EAB.csv
[31/10/2012 - 17:32:06 | A | 947070088] W:Windows 7 service pack 1.exe
[30/04/2010 - 16:44:51 | D ] W:displays pub


################## | Vaccin |

C:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
D:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
H:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
W:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

################## | E.O.F | https://www.sosvirus.net |