Répondre à : Problème usb / Port usb 2 2016-09-08T13:25:22+00:00
Lalita18
Participant
Nombre d'articles : 54

Voila le rapport ^^

Spoiler for 315suz0f

############################## | UsbFix V 7.154 | [Suppression]

Utilisateur: Lalita (Administrateur) # LALITA-PC
Mis à jour le 13/12/2013 par El Desaparecido – Team SosVirus
Lancé à 20:24:29 | 15/12/2013

Site Web : http://www.usbfix.net” onclick=”window.open(this.href);return false;
Forum : https://www.sosvirus.net/” onclick=”window.open(this.href);return false;
Upload Malware : upload_malware.php
Contact : http://www.usbfix.net/contact/” onclick=”window.open(this.href);return false;

PC: ASUSTeK Computer Inc. (K50IJ )
CPU: Pentium(R) Dual-Core CPU T4300 @ 2.10GHz
RAM -> [Total : 4061 | Free : 2579]
Bios: American Megatrends Inc.
Boot: Normal boot

OS: Microsoft Windows 7 Édition Familiale Premium (6.1.7600 64-Bit)
WB: Windows Internet Explorer : 9.0.8112.16421

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: Microsoft Security Essentials [(!) Disabled | Updated]
AS: Windows Defender : 6.1.7600.16385 (win7_rtm.090713-1255)
FW: Windows FireWall Service [Enabled]

C: (%systemdrive%) -> Disque fixe # 233 Go (186 Go libre(s) – 80%) [OS] # NTFS
D: -> Disque fixe # 218 Go (218 Go libre(s) – 100%) [DATA] # NTFS
E: -> CD-ROM
G: -> Disque amovible # 7 Go (7 Go libre(s) – 100%) [USB DISK] # FAT32

################## | Processus Stoppés |

Stoppé! C:Program FilesMicrosoft Security ClientMsMpEng.exe (ID: 808 |ParentID: 500)
Stoppé! C:Program Files (x86)ASUSATK HotkeyASLDRSrv.exe (ID: 1156 |ParentID: 500)
Stoppé! C:Program FilesATKGFNEXGFNEXSrv.exe (ID: 1176 |ParentID: 500)
Stoppé! C:WindowsSystem32spoolsv.exe (ID: 1344 |ParentID: 500)
Stoppé! C:Program Files (x86)Common FilesABBYYFineReaderSprint9.00LicensingNetworkLicenseServer.exe (ID: 1544 |ParentID: 500)
Stoppé! C:Windowssystem32taskhost.exe (ID: 1620 |ParentID: 500)
Stoppé! C:WindowsSysWOW64Fast BootFastBootAgent.exe (ID: 1656 |ParentID: 500)
Stoppé! C:Program Files (x86)ASUSATK HotkeyHControl.exe (ID: 1920 |ParentID: 1156)
Stoppé! C:Program Files (x86)ASUSATK HotkeyAtouch64.exe (ID: 1932 |ParentID: 1920)
Stoppé! C:Windowssystem32taskeng.exe (ID: 1592 |ParentID: 1016)
Stoppé! C:Program Files (x86)ASUSSmartLogonsensorsrv.exe (ID: 1764 |ParentID: 1592)
Stoppé! C:Program Files (x86)ASUSControlDeckControlDeckStartUp.exe (ID: 1612 |ParentID: 1592)
Stoppé! C:Program Files (x86)ASUSWireless Console 3wcourier.exe (ID: 1992 |ParentID: 1592)
Stoppé! C:Program Files (x86)ASUSSplendidACMON.exe (ID: 1996 |ParentID: 1592)
Stoppé! C:Program Files (x86)ASUSASUS CopyProtectaspg.exe (ID: 1012 |ParentID: 1592)
Stoppé! C:Program FilesP4GBatteryLife.exe (ID: 2060 |ParentID: 1592)
Stoppé! C:WindowsSysWOW64ACEngSvr.exe (ID: 2108 |ParentID: 680)
Stoppé! C:Program Files (x86)AmIcoSingLunAmIcoSinglun64.exe (ID: 2296 |ParentID: 2024)
Stoppé! C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSVC.EXE (ID: 2464 |ParentID: 500)
Stoppé! C:Program FilesCommon FilesMicrosoft SharedWindows LiveWLIDSvcM.exe (ID: 2648 |ParentID: 2464)
Stoppé! C:Program FilesElantechETDCtrl.exe (ID: 396 |ParentID: 2024)
Stoppé! C:WindowsSystem32igfxtray.exe (ID: 896 |ParentID: 2024)
Stoppé! C:WindowsSystem32hkcmd.exe (ID: 912 |ParentID: 2024)
Stoppé! C:WindowsSystem32igfxpers.exe (ID: 916 |ParentID: 2024)
Stoppé! C:Program FilesMicrosoft Security Clientmsseces.exe (ID: 2628 |ParentID: 2024)
Stoppé! C:UsersLalitaProgram Files (x86)DNAbtdna.exe (ID: 2784 |ParentID: 2024)
Stoppé! C:Program Files (x86)VIAVIAudioiVDeckVDECK.EXE (ID: 2592 |ParentID: 2408)
Stoppé! C:Program Files (x86)ASUSATK HotkeyHControlUser.exe (ID: 1796 |ParentID: 2408)
Stoppé! C:Program Files (x86)ASUSATKOSD2ATKOSD2.exe (ID: 3088 |ParentID: 2408)
Stoppé! C:Program Files (x86)ASUSATK MediaDMedia.exe (ID: 3096 |ParentID: 2408)
Stoppé! C:Program Files (x86)Epson SoftwareEvent ManagerEEventManager.exe (ID: 3120 |ParentID: 2408)
Stoppé! C:WindowsAsScrPro.exe (ID: 3828 |ParentID: 1656)
Stoppé! C:Program Files (x86)CyberLinkPower2GoCLMLSvc.exe (ID: 3996 |ParentID: 1656)
Stoppé! C:Program Files (x86)ASUSATK HotkeyATKOSD.exe (ID: 2536 |ParentID: 1920)
Stoppé! C:Program Files (x86)ASUSATK HotkeyKBFiltr.exe (ID: 3020 |ParentID: 1920)
Stoppé! C:Program Files (x86)ASUSATK HotkeyWDC.exe (ID: 2408 |ParentID: 1920)
Stoppé! C:Program Files (x86)ASUSASUS Live UpdateALU.exe (ID: 2204 |ParentID: 1592)
Stoppé! C:Program FilesWindows Media Playerwmpnetwk.exe (ID: 4008 |ParentID: 500)
Stoppé! C:Windowssystem32DllHost.exe (ID: 3308 |ParentID: 680)
Stoppé! C:WindowsSysWOW64MacromedFlashFlashUtil11e_ActiveX.exe (ID: 768 |ParentID: 680)
Stoppé! C:Windowssystem32wuauclt.exe (ID: 4928 |ParentID: 1016)
Stoppé! C:WindowsSystem32WUDFHost.exe (ID: 3776 |ParentID: 976)

################## | Regedit Run |

04 – HKLMSOFTWARE | Run : [HDAudDeck] – C:Program Files (x86)VIAVIAudioiVDeckVDeck.exe -r
04 – HKLMSOFTWARE | Run : [HControlUser] – C:Program Files (x86)ASUSATK HotkeyHControlUser.exe
04 – HKLMSOFTWARE | Run : [ATKOSD2] – C:Program Files (x86)ASUSATKOSD2ATKOSD2.exe
04 – HKLMSOFTWARE | Run : [ATKMEDIA] – C:Program Files (x86)ASUSATK MediaDMedia.exe
04 – HKLMSOFTWARE | Run : [Adobe ARM] – “C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe”
04 – HKLMSOFTWARE | Run : [EEventManager] – “C:Program Files (x86)Epson SoftwareEvent ManagerEEventManager.exe”
04 – HKLMSOFTWAREwow6432Node | Run : [HDAudDeck] – C:Program Files (x86)VIAVIAudioiVDeckVDeck.exe -r
04 – HKLMSOFTWAREwow6432Node | Run : [HControlUser] – C:Program Files (x86)ASUSATK HotkeyHControlUser.exe
04 – HKLMSOFTWAREwow6432Node | Run : [ATKOSD2] – C:Program Files (x86)ASUSATKOSD2ATKOSD2.exe
04 – HKLMSOFTWAREwow6432Node | Run : [ATKMEDIA] – C:Program Files (x86)ASUSATK MediaDMedia.exe
04 – HKLMSOFTWAREwow6432Node | Run : [Adobe ARM] – “C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe”
04 – HKLMSOFTWAREwow6432Node | Run : [EEventManager] – “C:Program Files (x86)Epson SoftwareEvent ManagerEEventManager.exe”
04 – HKLMSOFTWARE | RunOnce : [] –
04 – HKLMSOFTWAREwow6432Node | RunOnce : [] –
04 – HKUS-1-5-19SOFTWARE | Run : [Sidebar] – %ProgramFiles%Windows SidebarSidebar.exe /autoRun
04 – HKUS-1-5-20SOFTWARE | Run : [Sidebar] – %ProgramFiles%Windows SidebarSidebar.exe /autoRun
04 – HKUS-1-5-21-2636585911-1586567364-1655311612-1000SOFTWARE | Run : [BitTorrent DNA] – “C:UsersLalitaProgram Files (x86)DNAbtdna.exe”
04 – HKUS-1-5-21-2636585911-1586567364-1655311612-1000SOFTWARE | Run : [orangeinside] – C:UsersLalitaAppDataRoamingOrangeOrangeInsideoneOrangeInside.exe
04 – HKUS-1-5-21-2636585911-1586567364-1655311612-1000SOFTWARE | Run : [EPSON SX125 Series] – C:Windowssystem32spoolDRIVERSx643E_IATIGGE.EXE /FU “C:WindowsTEMPE_SD73B.tmp” /EF “HKCU”
04 – HKUS-1-5-21-2636585911-1586567364-1655311612-1000SOFTWARE | Run : [Google Update] – “C:UsersLalitaAppDataLocalGoogleUpdateGoogleUpdate.exe” /c
04 – HKUS-1-5-18SOFTWARE | Run : [SpywareTerminatorUpdate] – “C:Program Files (x86)Spyware TerminatorSpywareTerminatorUpdate.exe”
04 – HKUS-1-5-19SOFTWARE | RunOnce : [mctadmin] – C:WindowsSystem32mctadmin.exe
04 – HKUS-1-5-20SOFTWARE | RunOnce : [mctadmin] – C:WindowsSystem32mctadmin.exe

################## | Recherche générique |

Supprimé! G:updat.vbs
Supprimé! G:Bruits de couloirs.lnk
Supprimé! G:cartedepeche.lnk
Supprimé! G:cerfa_11527-02.lnk
Supprimé! G:Terminologie.lnk
Supprimé! G:Compte rendu 18 octobre.lnk
Supprimé! G:LOST.DIR.lnk
Supprimé! G:La sécurité est l.lnk
Supprimé! G:tenue novembre 2013.lnk
Supprimé! G:Convocation 20 déc 2013.lnk

(!) Fichiers temporaires supprimés. (920 Ko)

################## | Référence de comparaison MD5 |

Md5 : 01C034D0EFFBF218689F6F4678AF63CC -> G:updat.vbs

################## | Comparaison MD5 |

-> Pas de valeur Md5 identique trouvée.

################## | Registre |

Réparé ! HKLMSoftwareMicrosoftWindowsCurrentVersionPoliciesSystem|ConsentPromptBehaviorAdmin -> 5

################## | Listing |

[12/06/2009 – 02:32:00 | N | 0 Ko] – C:OFFICE2007_L.TXT
[07/09/2009 – 12:59:54 | N | 0 Ko] – C:v811.txt
[14/09/2009 – 07:44:21 | N | 0 Ko] – C:Pass.txt
[14/09/2009 – 20:04:43 | N | 0 Ko] – C:SumOS.txt
[14/09/2009 – 20:05:52 | N | 0 Ko] – C:SumHidd.txt
[14/09/2009 – 20:31:36 | N | 13 Ko] – C:devlist.txt
[15/12/2013 – 20:28:07 | A | 8 Ko] – C:UsbFix [Clean 1] LALITA-PC.txt
[15/12/2013 – 19:31:46 | ASH | 3118912 Ko] – C:hiberfil.sys
[15/12/2013 – 19:31:52 | ASH | 4158552 Ko] – C:pagefile.sys
[14/05/2006 – 09:22:24 | N | 0 Ko] – C:store.log
[15/06/2009 – 12:11:59 | N | 0 Ko] – C:AdobeReader.log
[02/07/2009 – 08:17:15 | N | 0 Ko] – C:Nero.Log
[24/07/2009 – 07:46:46 | N | 4 Ko] – C:Patch.LOG
[14/09/2009 – 20:21:26 | N | 0 Ko] – C:setup.log
[14/09/2009 – 20:31:35 | N | 0 Ko] – C:Finish.log
[29/07/2009 – 12:46:19 | N | 0 Ko] – C:RECOVERY.DAT
[15/12/2013 – 19:32:55 | D] – C:asus.dat
[10/07/2009 – 09:35:33 | N | 1024 Ko] – C:K40IJ.BIN
[10/07/2009 – 09:40:31 | N | 1024 Ko] – C:K50IJ.BIN
[01/03/2011 – 15:32:45 | SHD] – C:$Recycle.Bin
[29/07/2009 – 07:03:37 | N | 8 Ko] – C:BOOTSECT.BAK
[29/07/2009 – 12:46:19 | N | 0 Ko] – C:K40IJ_K50IJ_WIN7.10
[14/07/2009 – 02:38:58 | RASH | 375 Ko] – C:bootmgr
[14/07/2009 – 04:20:08 | D] – C:PerfLogs
[14/07/2009 – 06:08:56 | SHD] – C:Documents and Settings
[29/07/2009 – 07:03:34 | SHD] – C:Boot
[14/09/2009 – 19:42:39 | RHD] – C:MSOCache
[14/09/2009 – 20:12:01 | D] – C:Intel
[12/12/2009 – 15:41:52 | SHD] – C:Recovery
[20/02/2011 – 19:21:59 | D] – C:Downloads
[21/02/2011 – 19:08:30 | D] – C:b589f9424f2ab0fdb7c3f29
[28/12/2012 – 09:29:15 | N | 0 Ko] – C:END
[14/03/2013 – 08:59:28 | D] – C:Program Files
[14/06/2013 – 09:20:03 | HD] – C:ProgramData
[30/07/2013 – 15:10:50 | D] – C:Program Files (x86)
[28/08/2013 – 10:39:00 | D] – C:Users
[26/11/2013 – 18:15:02 | D] – C:Windows
[14/12/2013 – 18:40:12 | SHD] – C:System Volume Information
[15/12/2013 – 20:27:36 | D] – C:UsbFix
[01/03/2011 – 15:32:45 | SHD] – D:$RECYCLE.BIN
[14/09/2009 – 19:31:46 | SHD] – D:System Volume Information
[27/02/2011 – 16:14:15 | D] – D:Film
[13/05/2013 – 16:49:32 | N | 1114 Ko] – G:cartedepeche.pdf
[15/05/2013 – 11:26:52 | N | 41 Ko] – G:cerfa_11527-02.pdf
[07/09/2013 – 08:56:38 | N | 109 Ko] – G:Terminologie.pdf
[16/11/2013 – 17:47:58 | N | 269 Ko] – G:Compte rendu 18 octobre.pdf
[21/11/2013 – 18:18:32 | N | 210 Ko] – G:La sécurité est l.pdf
[30/11/2013 – 10:32:28 | N | 190 Ko] – G:tenue novembre 2013.pdf
[06/12/2013 – 12:14:44 | N | 125 Ko] – G:Convocation 20 déc 2013.pdf
[09/02/2013 – 12:11:26 | N | 14 Ko] – G:Bruits de couloirs.docx
[21/11/2013 – 18:13:20 | N | 19 Ko] – G:La sécurité est l.docx
[07/09/2013 – 12:40:48 | D] – G:LOST.DIR

################## | Vaccin |

D:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
G:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

################## | E.O.F | http://www.usbfix.net” onclick=”window.open(this.href);return false; – https://www.sosvirus.net” onclick=”window.open(this.href);return false; |[/spoiler:315suz0f]

Par contre est ce qu’il va devoir comme moi changé les mots de passe ? Parce que je le connais il refusera (explication : c’est un vieux qui n’y comprend tellement rien que juste pour faire un copier – coller il m’appelle pour que je luis fasse alors que je lui ais déjà expliqué une vingtaine de fois :) )