zetransporteur
Participant
Nombre d'articles : 16

Bonjour, désolé je n’ai pas fais attention au lien j’ai pensé (comme j’avais déjà USBFix que c’était le bon.

############################## | UsbFix V 7.153 | [Suppression]

Utilisateur: Young G (Administrateur) # PC-DE-YOUNGG
Mis à jour le 09/12/2013 par El Desaparecido – Team SosVirus
Lancé à 07:07:34 | 10/12/2013

Site Web : http://www.usbfix.net » onclick= »window.open(this.href);return false;
Forum : http://www.sosvirus.net/ » onclick= »window.open(this.href);return false;
Upload Malware : upload_malware.php
Contact : http://www.usbfix.net/contact/ » onclick= »window.open(this.href);return false;

PC: TOSHIBA (KTKAA)
CPU: Intel(R) Core(TM)2 Duo CPU P7450 @ 2.13GHz
RAM -> [Total : 3037 | Free : 1828]
Bios: TOSHIBA
Boot: Normal boot

OS: Microsoft Windows 7 Édition Intégrale (6.1.7601 32-Bit) Service Pack 1
WB: Windows Internet Explorer : 10.0.9200.16736
WB: Mozilla Firefox : 25.0.1

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: Bitdefender Antivirus [(!) Disabled | Updated]
AS: Windows Defender : 6.1.7600.16385 (win7_rtm.090713-1255)
AS: Malwarebytes’ Anti-Malware : 1.75.0001
FW: Windows FireWall Service [Enabled]

C: (%systemdrive%) -> Disque fixe # 149 Go (69 Go libre(s) – 46%) [Vista] # NTFS
D: -> CD-ROM
E: -> Disque fixe # 147 Go (67 Go libre(s) – 46%) [Data] # NTFS
F: -> CD-ROM
G: -> Disque amovible # 7 Go (51 Mo libre(s) – 1%) [] # FAT32

################## | Processus Stoppés |

Stoppé! C:Program FilesBitdefenderBitdefendervsserv.exe (ID: 904 |ParentID: 684)
Stoppé! C:Windowssystem32atiesrxx.exe (ID: 1348 |ParentID: 684)
Stoppé! C:WindowsSystem32spoolsv.exe (ID: 1868 |ParentID: 684)
Stoppé! C:Windowssystem32atieclxx.exe (ID: 1988 |ParentID: 1348)
Stoppé! C:Program FilesCommon FilesEPSONEBAPIeEBSVC.exe (ID: 1996 |ParentID: 684)
Stoppé! C:Windowssystem32taskhost.exe (ID: 392 |ParentID: 684)
Stoppé! C:WindowsExplorer.EXE (ID: 2120 |ParentID: 1440)
Stoppé! C:Program FilesCommon FilesAppleMobile Device SupportAppleMobileDeviceService.exe (ID: 2364 |ParentID: 684)
Stoppé! C:Program FilesTOSHIBAConfigFreeCFSvcs.exe (ID: 2432 |ParentID: 684)
Stoppé! C:Program FilesMalwarebytes’ Anti-Malwarembamscheduler.exe (ID: 2540 |ParentID: 684)
Stoppé! C:Program FilesCommon FilesNeroNero BackItUp 4NBService.exe (ID: 2588 |ParentID: 684)
Stoppé! C:Program FilesRealNetworksRealDownloaderrndlresolversvc.exe (ID: 2700 |ParentID: 684)
Stoppé! C:Program FilesTuneUp Utilities 2012TuneUpUtilitiesService32.exe (ID: 2792 |ParentID: 684)
Stoppé! C:Program FilesBitdefenderBitdefenderupdatesrv.exe (ID: 2848 |ParentID: 684)
Stoppé! C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSVC.EXE (ID: 2920 |ParentID: 684)
Stoppé! C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSvcM.exe (ID: 3184 |ParentID: 2920)
Stoppé! C:Program FilesTuneUp Utilities 2012TuneUpUtilitiesApp32.exe (ID: 3480 |ParentID: 2792)
Stoppé! C:Program FilesApoint2KApoint.exe (ID: 3804 |ParentID: 2120)
Stoppé! C:Program FilesRealtekAudioHDARtHDVCpl.exe (ID: 3876 |ParentID: 2120)
Stoppé! C:Program FilesCamera Assistant Software for Toshibatraybar.exe (ID: 3896 |ParentID: 2120)
Stoppé! C:Program FilesBitdefenderBitdefenderbdagent.exe (ID: 4012 |ParentID: 2120)
Stoppé! C:Program FilesSteamSteam.exe (ID: 2900 |ParentID: 2120)
Stoppé! C:UsersYoung GAppDataLocalViberViber.exe (ID: 3756 |ParentID: 2120)
Stoppé! C:Program FilesInternet Download ManagerIDMan.exe (ID: 3572 |ParentID: 2120)
Stoppé! C:Windowssystem32SearchIndexer.exe (ID: 3412 |ParentID: 684)
Stoppé! C:Program FilesBitdefenderBitdefenderpmbxag.exe (ID: 3988 |ParentID: 2120)
Stoppé! C:Program FilesBitdefenderBitdefenderbdapppassmgr.exe (ID: 4020 |ParentID: 2120)
Stoppé! C:UsersYoung GAppDataRoamingDropboxbinDropbox.exe (ID: 4088 |ParentID: 2120)
Stoppé! C:Program FilesApoint2KApMsgFwd.exe (ID: 4196 |ParentID: 3804)
Stoppé! C:Program FilesApoint2KApntex.exe (ID: 4428 |ParentID: 4368)
Stoppé! C:Program FilesInternet Download ManagerIEMonitor.exe (ID: 4592 |ParentID: 3572)
Stoppé! C:Program FilesCommon FilesSteamSteamService.exe (ID: 6084 |ParentID: 684)
Stoppé! C:Program FilesBitdefenderBitdefenderOBKAgent.exe (ID: 112 |ParentID: 5108)
Stoppé! C:Windowssystem32ctfmon.exe (ID: 1740 |ParentID: 5988)
Stoppé! C:Windowssystem32taskeng.exe (ID: 3364 |ParentID: 1488)

################## | Regedit Run |

04 – HKLMSOFTWARE | Run : [Apoint] – C:Program FilesApoint2KApoint.exe
04 – HKLMSOFTWARE | Run : [RtHDVCpl] – C:Program FilesRealtekAudioHDARtHDVCpl.exe -s
04 – HKLMSOFTWARE | Run : [00TCrdMain] – C:Program FilesTOSHIBAFlashCardsTCrdMain.exe
04 – HKLMSOFTWARE | Run : [Camera Assistant Software] – « C:Program FilesCamera Assistant Software for Toshibatraybar.exe » /start
04 – HKLMSOFTWARE | Run : [SVPWUTIL] – C:Program FilesTOSHIBAUtilitiesSVPWUTIL.exe SVPwUTIL
04 – HKLMSOFTWARE | Run : [Toshiba TEMPO] – C:Program FilesToshiba TEMPROToshiba.Tempo.UI.TrayApplication.exe
04 – HKLMSOFTWARE | Run : [] –
04 – HKLMSOFTWARE | Run : [RIMBBLaunchAgent.exe] – C:Program FilesCommon FilesResearch In MotionUSB DriversRIMBBLaunchAgent.exe
04 – HKLMSOFTWARE | Run : [DivXMediaServer] – C:Program FilesDivXDivX Media ServerDivXMediaServer.exe
04 – HKLMSOFTWARE | Run : [Bdagent] – « C:Program FilesBitdefenderBitdefenderbdagent.exe »
04 – HKLMSOFTWARE | RunOnce : [] –
04 – HKUS-1-5-19SOFTWARE | Run : [Sidebar] – %ProgramFiles%Windows SidebarSidebar.exe /autoRun
04 – HKUS-1-5-20SOFTWARE | Run : [Sidebar] – %ProgramFiles%Windows SidebarSidebar.exe /autoRun
04 – HKUS-1-5-21-3032804369-3938535538-1029922377-1000SOFTWARE | Run : [ShowBatteryBar] – « C:Program FilesBatteryBarShowBatteryBar.exe » show
04 – HKUS-1-5-21-3032804369-3938535538-1029922377-1000SOFTWARE | Run : [DAEMON Tools Pro Agent] – « C:Program FilesDAEMON Tools ProDTAgent.exe » -autorun
04 – HKUS-1-5-21-3032804369-3938535538-1029922377-1000SOFTWARE | Run : [Spotify Web Helper] – « C:UsersYoung GAppDataRoamingSpotifyDataSpotifyWebHelper.exe »
04 – HKUS-1-5-21-3032804369-3938535538-1029922377-1000SOFTWARE | Run : [uTorrent] – « C:Program FilesuTorrentuTorrent.exe »
04 – HKUS-1-5-21-3032804369-3938535538-1029922377-1000SOFTWARE | Run : [Steam] – « C:Program FilesSteamsteam.exe » -silent
04 – HKUS-1-5-21-3032804369-3938535538-1029922377-1000SOFTWARE | Run : [Skype] – « C:Program FilesSkypePhoneSkype.exe » /minimized /regrun
04 – HKUS-1-5-21-3032804369-3938535538-1029922377-1000SOFTWARE | Run : [Viber] – « C:UsersYoung GAppDataLocalViberViber.exe » StartMinimized
04 – HKUS-1-5-21-3032804369-3938535538-1029922377-1000SOFTWARE | Run : [IDMan] – C:Program FilesInternet Download ManagerIDMan.exe /onboot
04 – HKUS-1-5-21-3032804369-3938535538-1029922377-1000SOFTWARE | Run : [Bitdefender Wallet Agent] – « C:Program FilesBitdefenderBitdefenderpmbxag.exe »
04 – HKUS-1-5-21-3032804369-3938535538-1029922377-1000SOFTWARE | Run : [Bitdefender Agent de l’application Wallet] – « C:Program FilesBitdefenderBitdefenderbdapppassmgr.exe »
04 – HKUS-1-5-18SOFTWARE | Run : [Bitdefender Wallet Agent] – « C:Program FilesBitdefenderBitdefenderpmbxag.exe »
04 – HKUS-1-5-18SOFTWARE | Run : [Bitdefender Wallet] – « C:Program FilesBitdefenderBitdefenderpwdmanui.exe » –hidden –nowizard
04 – HKUS-1-5-18SOFTWARE | Run : [Bitdefender Agent de l’application Wallet] – « C:Program FilesBitdefenderBitdefenderbdapppassmgr.exe »
04 – HKUS-1-5-19SOFTWARE | RunOnce : [mctadmin] – C:WindowsSystem32mctadmin.exe
04 – HKUS-1-5-20SOFTWARE | RunOnce : [mctadmin] – C:WindowsSystem32mctadmin.exe

################## | Recherche générique |

Non supprimé ! G:DCIM.lnk
Non supprimé ! G:MISC.lnk

(!) Fichiers temporaires supprimés.

################## | Registre |

################## | Listing |

[19/11/2008 – 14:51:21 | N | 0 Ko] – C:SWSTAMP.TXT
[09/12/2013 – 23:05:59 | N | 12 Ko] – C:UsbFix [Clean 1] PC-DE-YOUNGG.txt
[09/12/2013 – 23:16:21 | N | 2 Ko] – C:bdlog.txt
[10/12/2013 – 07:13:24 | A | 9 Ko] – C:UsbFix [Clean 2] PC-DE-YOUNGG.txt
[10/06/2009 – 22:42:20 | N | 0 Ko] – C:config.sys
[09/12/2013 – 23:54:25 | ASH | 2332332 Ko] – C:hiberfil.sys
[09/12/2013 – 23:54:28 | ASH | 3109776 Ko] – C:pagefile.sys
[08/12/2013 – 07:39:26 | D] – C:Config.Msi
[08/12/2013 – 07:58:51 | N | 9 Ko] – C:bdr-ld01.mbr
[22/06/2012 – 23:30:17 | N | 30 Ko] – C:install.log
[03/08/2012 – 17:08:01 | N | 13 Ko] – C:formatter.log
[11/04/2012 – 03:48:41 | N | 0 Ko] – C:user.js
[09/12/2013 – 23:05:58 | RASHD] – C:Autorun.inf
[25/06/2013 – 18:20:38 | N | 35722 Ko] – C:bdr-im01.gz
[26/05/2013 – 05:17:17 | D] – C:.cache
[14/04/2012 – 11:12:17 | SHD] – C:$RECYCLE.BIN
[08/12/2013 – 05:29:53 | N | 1 Ko] – C:PhysicalDisk0_MBR.bin
[10/06/2009 – 22:42:20 | N | 0 Ko] – C:autoexec.bat
[19/12/2011 – 01:46:58 | N | 8 Ko] – C:BOOTSECT.BAK
[19/12/2011 – 01:33:31 | D] – C:$INPLACE.~TR
[19/12/2011 – 02:17:00 | D] – C:$WINDOWS.~Q
[19/11/2008 – 13:43:25 | D] – C:Intel
[19/11/2008 – 14:31:38 | D] – C:Works
[14/07/2009 – 03:37:05 | D] – C:PerfLogs
[14/07/2009 – 05:53:55 | SHD] – C:Documents and Settings
[20/11/2010 – 13:40:07 | RASH | 375 Ko] – C:bootmgr
[22/11/2011 – 14:51:00 | D] – C:Toshiba
[22/11/2011 – 16:35:19 | D] – C:3d51ae3249afade494e835e0408b
[19/12/2011 – 02:29:39 | SHD] – C:Recovery
[19/12/2011 – 05:21:31 | SHD] – C:Boot
[17/01/2012 – 10:45:44 | | 456 Ko] – C:HBNPY
[15/08/2012 – 15:28:10 | N | 2241 Ko] – C:bdr-bz01
[28/08/2012 – 02:21:19 | D] – C:Temp
[17/10/2013 – 10:42:51 | D] – C:Users
[05/11/2013 – 15:15:05 | D] – C:Fraps
[04/12/2013 – 19:18:22 | D] – C:FM Genie Scout 14
[08/12/2013 – 05:01:53 | D] – C:AdwCleaner
[08/12/2013 – 07:12:02 | D] – C:FM Genie Scout 13
[08/12/2013 – 07:38:06 | SHD] – C:System Volume Information
[08/12/2013 – 07:58:02 | D] – C:Windows
[08/12/2013 – 07:58:51 | N | 247 Ko] – C:bdr-ld01
[08/12/2013 – 07:58:51 | N | 0 Ko] – C:bdr-cf01
[08/12/2013 – 20:17:29 | HD] – C:ProgramData
[08/12/2013 – 20:58:21 | D] – C:Program Files
[10/12/2013 – 07:07:36 | D] – C:UsbFix
[09/12/2013 – 23:05:58 | RASHD] – E:Autorun.inf
[22/11/2011 – 14:50:35 | SHD] – E:$RECYCLE.BIN
[22/11/2011 – 14:31:31 | SHD] – E:System Volume Information
[22/11/2011 – 23:01:00 | D] – E:HDDRecovery
[28/04/2012 – 15:32:43 | D] – E:Downloads
[05/10/2013 – 17:35:22 | A | 1 Ko] – G:DCIM.lnk
[05/10/2013 – 17:35:24 | A | 1 Ko] – G:MISC.lnk
[29/06/2013 – 12:23:00 | SHD] – G:MISC
[29/06/2013 – 12:23:00 | SHD] – G:DCIM
[09/12/2013 – 17:54:08 | D] – G:AD_LUMIX

################## | Vaccin |

E:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

################## | E.O.F | http://www.usbfix.net » onclick= »window.open(this.href);return false; – http://www.sosvirus.net » onclick= »window.open(this.href);return false; |