Répondre à : Virus sur ma Clé Usb 2016-09-08T13:12:11+00:00
flow
Participant
Post count: 12

Ouf j’ai enfin terminé mes scans mais vu la lenteur de mon petit notebook et mes erreurs c’était pas gagné…. :P:
Voici les 2 scans de mes différentes clés usb et disque dur externe:

############################## | UsbFix V 7.145 | [Suppression]

Utilisateur: Florie (Administrateur) # CHTITEFEE-PC
Mis à jour le 17/10/2013 par El Desaparecido – Team SosVirus
Lancé à 23:42:52 | 28/10/2013

Site Web: http://www.usbfix.net/” onclick=”window.open(this.href);return false;
Forum : https://www.sosvirus.net/” onclick=”window.open(this.href);return false;
Upload Malware: upload_malware.php
Contact: http://www.usbfix.net/contact/” onclick=”window.open(this.href);return false;

PC: Hewlett-Packard (308F)
CPU: Intel(R) Atom(TM) CPU N270 @ 1.60GHz
RAM -> [Total : 1015 | Free : 632]
Bios: Hewlett-Packard
Boot: Fail-safe with network boot

OS: Microsoft Windows 7 Édition Starter (6.1.7601 32-Bit) # Service Pack 1
WB: Windows Internet Explorer 10.0.9200.16721

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: Microsoft Security Essentials [Enabled | Updated]
FW: Windows FireWall Service [Enabled]

C: (%systemdrive%) -> Disque fixe # 137 Go (36 Go libre(s) – 26%) [] # NTFS
D: -> Disque fixe # 12 Go (2 Go libre(s) – 17%) [RECOVERY] # NTFS
E: -> Disque amovible # 30 Go (30 Go libre(s) – 100%) [] # FAT32
F: -> CD-ROM
G: -> Disque amovible # 2 Go (1 Go libre(s) – 57%) [] # FAT

################## | Regedit Run |

HKLMSOFTWARE | Run : [SynTPEnh] – %ProgramFiles%SynapticsSynTPSynTPEnh.exe
HKLMSOFTWARE | Run : [SysTrayApp] – C:Program FilesIDTWDMsttray.exe
HKLMSOFTWARE | Run : [HP] – C:Program FilesHewlett-PackardHP QuickSyncQuickSync.exe
HKLMSOFTWARE | Run : [UpdatePRCShortCut] – “C:Program FilesHewlett-PackardRecoveryMUITransferMUIStartMenu.exe” “C:Program FilesHewlett-PackardRecovery” UpdateWithCreateOnce “SoftwareCyberLinkPowerRecover”
HKLMSOFTWARE | Run : [Adobe Reader Speed Launcher] – “C:Program FilesAdobeReader 9.0ReaderReader_sl.exe”
HKLMSOFTWARE | Run : [WirelessAssistant] – C:Program FilesHewlett-PackardHP Wireless AssistantHPWAMain.exe
HKLMSOFTWARE | Run : [Adobe ARM] – “C:Program FilesCommon FilesAdobeARM1.0AdobeARM.exe”
HKLMSOFTWARE | Run : [IgfxTray] – C:Windowssystem32igfxtray.exe
HKLMSOFTWARE | Run : [HotKeysCmds] – C:Windowssystem32hkcmd.exe
HKLMSOFTWARE | Run : [Persistence] – C:Windowssystem32igfxpers.exe
HKLMSOFTWARE | Run : [MSC] – “c:Program FilesMicrosoft Security Clientmsseces.exe” -hide -runkey
HKLMSOFTWARE | Run : [HP Software Update] – C:Program FilesHpHP Software UpdateHPWuSchd2.exe
HKLMSOFTWARE | Run : [] –
HKLMSOFTWARE | Run : [avgnt] – “C:Program FilesAviraAntiVir Desktopavgnt.exe” /min
HKLMSOFTWARE | Run : [SunJavaUpdateSched] – “C:Program FilesCommon FilesJavaJava Updatejusched.exe”
HKLMSOFTWARE | RunOnce : [] –
HKUS-1-5-19SOFTWARE | Run : [Sidebar] – %ProgramFiles%Windows SidebarSidebar.exe /autoRun
HKUS-1-5-20SOFTWARE | Run : [Sidebar] – %ProgramFiles%Windows SidebarSidebar.exe /autoRun
HKUS-1-5-21-1605167738-3065228679-1109121619-1000SOFTWARE | Run : [A7KGEquN] – wscript.exe //B “C:UsersFlorieAppDataLocalTempA7KGEquN.vbs”
HKUS-1-5-19SOFTWARE | RunOnce : [mctadmin] – C:WindowsSystem32mctadmin.exe
HKUS-1-5-20SOFTWARE | RunOnce : [mctadmin] – C:WindowsSystem32mctadmin.exe

################## | Processus Stoppés |

Stoppé! c:Program FilesMicrosoft Security ClientMsMpEng.exe (ID 752 |ParentID 488)
Stoppé! C:WindowsExplorer.EXE (ID 1408 |ParentID 1400)
Stoppé! C:Windowssystem32ctfmon.exe (ID 1464 |ParentID 1408)

################## | Éléments infectieux |

Supprimé! E:A7KGEquN.vbs
Supprimé! G:A7KGEquN.vbs
Supprimé! C:UsersFlorieAppDataLocalTempA7KGEquN.vbs
Supprimé! C:UsersFlorieAppDataRoamingMicrosoftWindowsStart MenuProgramsStartupA7KGEquN.vbs
Supprimé! G:World.lnk
Supprimé! G:LaunchU3.lnk
Supprimé! G:BUDA.lnk
Supprimé! G:System.lnk
Supprimé! G:lettre motivation celio.lnk
Supprimé! G:lettre motivation appel’s.lnk
Supprimé! G:liste deterioration pour agence immo.lnk
Supprimé! G:A7KGEquN.lnk
Supprimé! G:iTunesHelper.lnk
Supprimé! G:.lnk
Supprimé! G:Activator.lnk
Non supprimé ! F:autorun.inf
Supprimé! G:iTunesHelper.vbe
Supprimé! G:Activator.vbs

(!) Fichiers temporaires supprimés.

################## | Registre |

Supprimé! HKUS-1-5-21-1605167738-3065228679-1109121619-1000SoftwareMicrosoftWindowsCurrentVersionRun|A7KGEquN
Supprimé! HKCU….ExplorerMountPoints2{36f55351-7bb0-11df-b61e-d8d385216125}

################## | Listing |

[09/05/2010 – 18:00:18 | SHD ] C:$Recycle.Bin
[14/07/2011 – 06:22:40 | D ] C:677de4c8069da0abd45bb7434d3d9
[28/06/2010 – 20:02:54 | D ] C:852071b2400cf9a52311286abf32
[10/06/2009 – 22:42:20 | N | 24] C:autoexec.bat
[22/09/2009 – 23:52:27 | SHD ] C:boot
[14/07/2009 – 02:38:58 | RASH | 383562] C:bootmgr
[10/06/2009 – 22:42:20 | N | 10] C:config.sys
[14/07/2009 – 05:53:55 | SHD ] C:Documents and Settings
[22/06/2013 – 14:36:15 | D ] C:drivers
[09/05/2010 – 17:22:44 | D ] C:dvmexp
[28/10/2013 – 23:12:06 | N | 177] C:dvmexp.idx
[07/11/2007 – 07:00:40 | N | 17734] C:eula.1028.txt
[07/11/2007 – 07:00:40 | N | 17734] C:eula.1031.txt
[07/11/2007 – 07:00:40 | N | 10134] C:eula.1033.txt
[07/11/2007 – 07:00:40 | N | 17734] C:eula.1036.txt
[07/11/2007 – 07:00:40 | N | 17734] C:eula.1040.txt
[07/11/2007 – 07:00:40 | N | 118] C:eula.1041.txt
[07/11/2007 – 07:00:40 | N | 17734] C:eula.1042.txt
[07/11/2007 – 07:00:40 | N | 17734] C:eula.2052.txt
[07/11/2007 – 07:00:40 | N | 17734] C:eula.3082.txt
[19/06/2011 – 12:51:15 | D ] C:fb01f1338d1364bd9b5a3644
[07/11/2007 – 07:00:40 | N | 1110] C:globdata.ini
[28/10/2013 – 23:35:21 | ASH | 798466048] C:hiberfil.sys
[31/03/2010 – 19:20:41 | D ] C:HP
[09/05/2010 – 17:22:44 | D ] C:HPMBackup
[07/11/2007 – 07:03:18 | N | 562688] C:install.exe
[07/11/2007 – 07:00:40 | N | 843] C:install.ini
[07/11/2007 – 07:03:18 | N | 76304] C:install.res.1028.dll
[07/11/2007 – 07:03:18 | N | 96272] C:install.res.1031.dll
[07/11/2007 – 07:03:18 | N | 91152] C:install.res.1033.dll
[07/11/2007 – 07:03:18 | N | 97296] C:install.res.1036.dll
[07/11/2007 – 07:03:18 | N | 95248] C:install.res.1040.dll
[07/11/2007 – 07:03:18 | N | 81424] C:install.res.1041.dll
[07/11/2007 – 07:03:18 | N | 79888] C:install.res.1042.dll
[07/11/2007 – 07:03:18 | N | 75792] C:install.res.2052.dll
[07/11/2007 – 07:03:18 | N | 96272] C:install.res.3082.dll
[31/03/2010 – 18:29:54 | D ] C:Intel
[09/05/2010 – 17:24:09 | RHD ] C:MSOCache
[28/10/2013 – 23:35:28 | ASH | 1073741824] C:pagefile.sys
[14/07/2009 – 03:37:05 | D ] C:PerfLogs
[28/10/2013 – 20:25:14 | D ] C:Program Files
[28/10/2013 – 21:03:07 | HD ] C:ProgramData
[09/05/2010 – 17:48:25 | SHD ] C:Recovery
[24/09/2011 – 23:28:38 | D ] C:SPLASH.000
[09/05/2010 – 17:22:44 | N | 61] C:splash.idx
[10/05/2010 – 19:23:24 | D ] C:SPLASH.SYS
[21/10/2013 – 11:36:38 | D ] C:SwSetup
[28/10/2013 – 19:02:36 | SHD ] C:System Volume Information
[09/05/2010 – 17:48:35 | D ] C:SYSTEM.SAV
[22/09/2013 – 13:48:27 | D ] C:temp
[28/10/2013 – 23:48:56 | D ] C:UsbFix
[28/10/2013 – 23:17:46 | N | 7401] C:UsbFix [Clean 1] CHTITEFEE-PC.txt
[28/10/2013 – 23:54:05 | A | 7147] C:UsbFix [Clean 2] CHTITEFEE-PC.txt
[28/10/2013 – 20:25:45 | N | 8952] C:UsbFix [Scan 2] CHTITEFEE-PC.txt
[28/10/2013 – 21:29:54 | N | 9665] C:UsbFix [Scan 3] CHTITEFEE-PC.txt
[09/05/2010 – 17:21:39 | RD ] C:Users
[07/11/2007 – 07:00:40 | N | 5686] C:vcredist.bmp
[07/11/2007 – 07:09:22 | N | 1442522] C:VC_RED.cab
[07/11/2007 – 07:12:28 | N | 232960] C:VC_RED.MSI
[27/08/2009 – 18:03:10 | N | 5392] C:version
[28/10/2013 – 23:26:59 | D ] C:Windows
[09/05/2010 – 18:00:18 | SHD ] D:$RECYCLE.BIN
[09/05/2010 – 18:00:12 | SHD ] D:boot
[14/07/2009 – 19:39:00 | ASH | 383562] D:bootmgr
[09/05/2010 – 18:00:11 | N | 0] D:BT_HP.FLG
[31/03/2010 – 18:52:00 | N | 435] D:CSP.DAT
[31/03/2010 – 19:05:02 | N | 11601] D:DeployRp.log
[09/05/2010 – 18:00:12 | D ] D:hp
[08/04/2012 – 10:31:27 | N | 20] D:HPSF_Rep.txt
[09/05/2010 – 17:59:54 | N | 8] D:HP_WSD.dat
[09/05/2010 – 18:00:11 | N | 22] D:language.ini
[09/05/2010 – 18:00:12 | SHD ] D:preload
[09/05/2010 – 18:00:12 | SD ] D:Recovery
[31/03/2010 – 19:04:55 | N | 0] D:RPCONFIG.LOG
[15/07/2010 – 11:10:13 | SHD ] D:System Volume Information
[09/05/2010 – 18:00:12 | D ] D:system.sav
[06/05/2008 – 13:26:23 | R | 309] F:autorun.inf
[23/10/2007 – 08:45:39 | R | 1336632] F:LaunchU3.exe
[06/05/2008 – 13:11:20 | R | 5600229] F:LaunchPad.zip
[11/09/2013 – 22:11:40 | N | 786506214] G:World.War.Z (2013).avi
[01/01/2010 – 00:20:18 | D ] G:BUDA
[26/04/2011 – 19:15:26 | SHD ] G:System
[23/10/2007 – 09:45:40 | N | 1336632] G:LaunchU3.exe
[27/10/2013 – 21:23:14 | N | 2251] G:lettre motivation celio.rtf
[27/10/2013 – 21:22:08 | N | 2254] G:lettre motivation appel’s.rtf
[27/10/2013 – 21:30:12 | N | 2697] G:liste deterioration pour agence immo.rtf

################## | Vaccin |

C:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
D:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
E:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
G:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

################## | E.O.F | http://www.usbfix.net” onclick=”window.open(this.href);return false; – https://www.sosvirus.net” onclick=”window.open(this.href);return false; |

2e scan

############################## | UsbFix V 7.145 | [Suppression]

Utilisateur: Florie (Administrateur) # CHTITEFEE-PC
Mis à jour le 17/10/2013 par El Desaparecido – Team SosVirus
Lancé à 23:57:21 | 28/10/2013

Site Web: http://www.usbfix.net/” onclick=”window.open(this.href);return false;
Forum : https://www.sosvirus.net/” onclick=”window.open(this.href);return false;
Upload Malware: upload_malware.php
Contact: http://www.usbfix.net/contact/” onclick=”window.open(this.href);return false;

PC: Hewlett-Packard (308F)
CPU: Intel(R) Atom(TM) CPU N270 @ 1.60GHz
RAM -> [Total : 1015 | Free : 507]
Bios: Hewlett-Packard
Boot: Fail-safe with network boot

OS: Microsoft Windows 7 Édition Starter (6.1.7601 32-Bit) # Service Pack 1
WB: Windows Internet Explorer 10.0.9200.16721

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: Microsoft Security Essentials [Enabled | Updated]
FW: Windows FireWall Service [Enabled]

A: -> Disque amovible # 1 Mo (0 Mo libre(s) – 4%) [] # FAT
C: (%systemdrive%) -> Disque fixe # 137 Go (36 Go libre(s) – 26%) [] # NTFS
D: -> Disque fixe # 12 Go (2 Go libre(s) – 17%) [RECOVERY] # NTFS
E: -> Disque amovible # 7 Go (7 Go libre(s) – 89%) [CHTITE FÉE] # FAT32
F: -> Disque fixe # 466 Go (6 Go libre(s) – 1%) [Disque dur flo] # NTFS

################## | Regedit Run |

HKLMSOFTWARE | Run : [SynTPEnh] – %ProgramFiles%SynapticsSynTPSynTPEnh.exe
HKLMSOFTWARE | Run : [SysTrayApp] – C:Program FilesIDTWDMsttray.exe
HKLMSOFTWARE | Run : [HP] – C:Program FilesHewlett-PackardHP QuickSyncQuickSync.exe
HKLMSOFTWARE | Run : [UpdatePRCShortCut] – “C:Program FilesHewlett-PackardRecoveryMUITransferMUIStartMenu.exe” “C:Program FilesHewlett-PackardRecovery” UpdateWithCreateOnce “SoftwareCyberLinkPowerRecover”
HKLMSOFTWARE | Run : [Adobe Reader Speed Launcher] – “C:Program FilesAdobeReader 9.0ReaderReader_sl.exe”
HKLMSOFTWARE | Run : [WirelessAssistant] – C:Program FilesHewlett-PackardHP Wireless AssistantHPWAMain.exe
HKLMSOFTWARE | Run : [Adobe ARM] – “C:Program FilesCommon FilesAdobeARM1.0AdobeARM.exe”
HKLMSOFTWARE | Run : [IgfxTray] – C:Windowssystem32igfxtray.exe
HKLMSOFTWARE | Run : [HotKeysCmds] – C:Windowssystem32hkcmd.exe
HKLMSOFTWARE | Run : [Persistence] – C:Windowssystem32igfxpers.exe
HKLMSOFTWARE | Run : [MSC] – “c:Program FilesMicrosoft Security Clientmsseces.exe” -hide -runkey
HKLMSOFTWARE | Run : [HP Software Update] – C:Program FilesHpHP Software UpdateHPWuSchd2.exe
HKLMSOFTWARE | Run : [] –
HKLMSOFTWARE | Run : [avgnt] – “C:Program FilesAviraAntiVir Desktopavgnt.exe” /min
HKLMSOFTWARE | Run : [SunJavaUpdateSched] – “C:Program FilesCommon FilesJavaJava Updatejusched.exe”
HKLMSOFTWARE | RunOnce : [] –
HKUS-1-5-19SOFTWARE | Run : [Sidebar] – %ProgramFiles%Windows SidebarSidebar.exe /autoRun
HKUS-1-5-20SOFTWARE | Run : [Sidebar] – %ProgramFiles%Windows SidebarSidebar.exe /autoRun
HKUS-1-5-19SOFTWARE | RunOnce : [mctadmin] – C:WindowsSystem32mctadmin.exe
HKUS-1-5-20SOFTWARE | RunOnce : [mctadmin] – C:WindowsSystem32mctadmin.exe

################## | Processus Stoppés |

Stoppé! c:Program FilesMicrosoft Security ClientMsMpEng.exe (ID 316 |ParentID 488)
Stoppé! C:Windowssystem32ctfmon.exe (ID 1436 |ParentID 1116)
Stoppé! C:WindowsExplorer.exe (ID 1780 |ParentID 1116)
Stoppé! C:Windowssystem32DllHost.exe (ID 2020 |ParentID 608)

################## | Éléments infectieux |

Supprimé! A:LOCK User Manual v1.lnk
Supprimé! A:LOCKv220.lnk
Supprimé! A:BUDA.lnk
Supprimé! E:dmc.lnk
Supprimé! E:BUDA.lnk
Supprimé! E:A7KGEquN.lnk
Supprimé! E:lettre motiv spar.lnk
Supprimé! E:tfe tms.lnk
Supprimé! E:CV Hayen Florie.lnk
Supprimé! E:lettre de motivation Hayen Florie.lnk
Supprimé! E:.lnk
Supprimé! E:lettre de motivation new look.lnk
Supprimé! E:A imprimer pour agence immo.lnk
Supprimé! E:Activator.lnk
Non supprimé ! F:autorun.inf
Supprimé! E:A7KGEquN.vbs

(!) Fichiers temporaires supprimés.

################## | Registre |

################## | Listing |

[01/01/2010 – 00:00:22 | D ] A:BUDA
[04/03/2008 – 14:42:00 | N | 368072] A:LOCK User Manual v1.00 (mode 4).pdf
[13/12/2007 – 17:43:48 | N | 1024000] A:LOCKv220.exe
[09/05/2010 – 18:00:18 | SHD ] C:$Recycle.Bin
[14/07/2011 – 06:22:40 | D ] C:677de4c8069da0abd45bb7434d3d9
[28/06/2010 – 20:02:54 | D ] C:852071b2400cf9a52311286abf32
[10/06/2009 – 22:42:20 | N | 24] C:autoexec.bat
[28/10/2013 – 23:54:05 | RASHD ] C:Autorun.inf
[22/09/2009 – 23:52:27 | SHD ] C:boot
[14/07/2009 – 02:38:58 | RASH | 383562] C:bootmgr
[10/06/2009 – 22:42:20 | N | 10] C:config.sys
[14/07/2009 – 05:53:55 | SHD ] C:Documents and Settings
[22/06/2013 – 14:36:15 | D ] C:drivers
[09/05/2010 – 17:22:44 | D ] C:dvmexp
[28/10/2013 – 23:12:06 | N | 177] C:dvmexp.idx
[07/11/2007 – 07:00:40 | N | 17734] C:eula.1028.txt
[07/11/2007 – 07:00:40 | N | 17734] C:eula.1031.txt
[07/11/2007 – 07:00:40 | N | 10134] C:eula.1033.txt
[07/11/2007 – 07:00:40 | N | 17734] C:eula.1036.txt
[07/11/2007 – 07:00:40 | N | 17734] C:eula.1040.txt
[07/11/2007 – 07:00:40 | N | 118] C:eula.1041.txt
[07/11/2007 – 07:00:40 | N | 17734] C:eula.1042.txt
[07/11/2007 – 07:00:40 | N | 17734] C:eula.2052.txt
[07/11/2007 – 07:00:40 | N | 17734] C:eula.3082.txt
[19/06/2011 – 12:51:15 | D ] C:fb01f1338d1364bd9b5a3644
[07/11/2007 – 07:00:40 | N | 1110] C:globdata.ini
[28/10/2013 – 23:35:21 | ASH | 798466048] C:hiberfil.sys
[31/03/2010 – 19:20:41 | D ] C:HP
[09/05/2010 – 17:22:44 | D ] C:HPMBackup
[07/11/2007 – 07:03:18 | N | 562688] C:install.exe
[07/11/2007 – 07:00:40 | N | 843] C:install.ini
[07/11/2007 – 07:03:18 | N | 76304] C:install.res.1028.dll
[07/11/2007 – 07:03:18 | N | 96272] C:install.res.1031.dll
[07/11/2007 – 07:03:18 | N | 91152] C:install.res.1033.dll
[07/11/2007 – 07:03:18 | N | 97296] C:install.res.1036.dll
[07/11/2007 – 07:03:18 | N | 95248] C:install.res.1040.dll
[07/11/2007 – 07:03:18 | N | 81424] C:install.res.1041.dll
[07/11/2007 – 07:03:18 | N | 79888] C:install.res.1042.dll
[07/11/2007 – 07:03:18 | N | 75792] C:install.res.2052.dll
[07/11/2007 – 07:03:18 | N | 96272] C:install.res.3082.dll
[31/03/2010 – 18:29:54 | D ] C:Intel
[09/05/2010 – 17:24:09 | RHD ] C:MSOCache
[28/10/2013 – 23:35:28 | ASH | 1073741824] C:pagefile.sys
[14/07/2009 – 03:37:05 | D ] C:PerfLogs
[28/10/2013 – 20:25:14 | D ] C:Program Files
[28/10/2013 – 21:03:07 | HD ] C:ProgramData
[09/05/2010 – 17:48:25 | SHD ] C:Recovery
[24/09/2011 – 23:28:38 | D ] C:SPLASH.000
[09/05/2010 – 17:22:44 | N | 61] C:splash.idx
[10/05/2010 – 19:23:24 | D ] C:SPLASH.SYS
[21/10/2013 – 11:36:38 | D ] C:SwSetup
[28/10/2013 – 19:02:36 | SHD ] C:System Volume Information
[09/05/2010 – 17:48:35 | D ] C:SYSTEM.SAV
[22/09/2013 – 13:48:27 | D ] C:temp
[29/10/2013 – 00:00:56 | D ] C:UsbFix
[28/10/2013 – 23:17:46 | N | 7401] C:UsbFix [Clean 1] CHTITEFEE-PC.txt
[28/10/2013 – 23:54:10 | N | 9326] C:UsbFix [Clean 2] CHTITEFEE-PC.txt
[29/10/2013 – 00:06:08 | A | 7081] C:UsbFix [Clean 3] CHTITEFEE-PC.txt
[28/10/2013 – 20:25:45 | N | 8952] C:UsbFix [Scan 2] CHTITEFEE-PC.txt
[28/10/2013 – 21:29:54 | N | 9665] C:UsbFix [Scan 3] CHTITEFEE-PC.txt
[09/05/2010 – 17:21:39 | RD ] C:Users
[07/11/2007 – 07:00:40 | N | 5686] C:vcredist.bmp
[07/11/2007 – 07:09:22 | N | 1442522] C:VC_RED.cab
[07/11/2007 – 07:12:28 | N | 232960] C:VC_RED.MSI
[27/08/2009 – 18:03:10 | N | 5392] C:version
[28/10/2013 – 23:26:59 | D ] C:Windows
[09/05/2010 – 18:00:18 | SHD ] D:$RECYCLE.BIN
[28/10/2013 – 23:54:05 | RASHD ] D:Autorun.inf
[09/05/2010 – 18:00:12 | SHD ] D:boot
[14/07/2009 – 19:39:00 | ASH | 383562] D:bootmgr
[09/05/2010 – 18:00:11 | N | 0] D:BT_HP.FLG
[31/03/2010 – 18:52:00 | N | 435] D:CSP.DAT
[31/03/2010 – 19:05:02 | N | 11601] D:DeployRp.log
[09/05/2010 – 18:00:12 | D ] D:hp
[08/04/2012 – 10:31:27 | N | 20] D:HPSF_Rep.txt
[09/05/2010 – 17:59:54 | N | 8] D:HP_WSD.dat
[09/05/2010 – 18:00:11 | N | 22] D:language.ini
[09/05/2010 – 18:00:12 | SHD ] D:preload
[09/05/2010 – 18:00:12 | SD ] D:Recovery
[31/03/2010 – 19:04:55 | N | 0] D:RPCONFIG.LOG
[15/07/2010 – 11:10:13 | SHD ] D:System Volume Information
[09/05/2010 – 18:00:12 | D ] D:system.sav
[29/08/2009 – 04:34:42 | N | 10351360] E:dmc.exe
[01/01/2010 – 01:10:32 | D ] E:BUDA
[14/10/2013 – 09:58:06 | N | 2073] E:lettre motiv spar.rtf
[01/06/2011 – 09:58:34 | N | 238592] E:tfe tms.doc
[09/10/2013 – 14:13:16 | N | 135954] E:CV Hayen Florie.rtf
[14/10/2013 – 10:04:16 | N | 2306] E:lettre de motivation Hayen Florie.rtf
[23/10/2013 – 11:44:14 | N | 2122] E:lettre de motivation new look.rtf
[15/10/2013 – 18:50:20 | D ] E:A imprimer pour agence immo
[06/10/2012 – 22:29:30 | SHD ] F:$RECYCLE.BIN
[23/12/2009 – 13:32:36 | D ] F:autorun
[17/10/2002 – 03:56:50 | N | 36] F:autorun.inf
[28/10/2013 – 15:14:51 | D ] F:Dessins animes
[28/10/2013 – 15:11:27 | D ] F:Films
[20/09/2013 – 15:15:16 | D ] F:Ludo video
[28/10/2013 – 15:21:52 | D ] F:Mangas
[20/09/2013 – 16:44:36 | D ] F:Musique
[17/10/2013 – 14:18:07 | D ] F:Photos vacances et autres
[23/03/2012 – 07:19:37 | SHD ] F:System Volume Information
[17/10/2013 – 14:29:39 | D ] F:Séries

################## | Vaccin |

A:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
C:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
D:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
E:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
F:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

################## | E.O.F | http://www.usbfix.net” onclick=”window.open(this.href);return false; – https://www.sosvirus.net” onclick=”window.open(this.href);return false; |

Voici le lien pour le rapport de ZHPDiag : https://antimalware.top/log/SosUpload.597978d7aceaf980f5dcb3bf51a37ab7.txt” onclick=”window.open(this.href);return false;

Petite question à ce sujet , dois-je faire le scan ZHPDiag pour chaque clé USb également ou ce programme vérifie juste le PC? :shame: Pour ce rapport j’ai laissé 2 clés USb connectées mas je n’ai pas vérifié la 3e ni le disque dur…

Merci pour toutes les infos déjà données et pour celles à venir :)