Répondre à : VBS:Agent-AXN -> USBFix plante à 26% 2016-09-08T13:27:47+00:00
Marloi
Participant
Post count: 1

Wao! merci beaucoup, ça a marché (à la deuxième tentative en mode sans échec, la première fois ça a buggué à 80% lors de l’analyse des fichiers temporaires), c’était pas si compliqué mais j’aurais pas trouvé toute seule.
Voici le rapport :

############################## | UsbFix V 7.158 | [Suppression]

Utilisateur: Marlène (Administrateur) # MARLÈNE-PC
Mis à jour le 02/01/2014 par El Desaparecido – Team SosVirus
Lancé à 15:54:14 | 03/01/2014

Site Web : http://www.usbfix.net” onclick=”window.open(this.href);return false;
Changelog : http://www.usbfix.net/maj/” onclick=”window.open(this.href);return false;
Support : https://www.sosvirus.net/” onclick=”window.open(this.href);return false;
Upload Malware : upload_malware.php
Contact : http://www.usbfix.net/contact/” onclick=”window.open(this.href);return false;

PC: Dell Inc. (0HN3RG)
CPU: Pentium(R) Dual-Core CPU T4500 @ 2.30GHz
RAM -> [Total : 4058 Mo| Free : 2810 Mo]
Bios: Dell Inc.
Boot: Fail-safe with network boot

OS: Microsoft Windows 7 Édition Familiale Premium (6.1.7600 64-Bit)
WB: Windows Internet Explorer : 9.0.8112.16421
WB: Google Chrome : 31.0.1650.63
WB: Mozilla Firefox : 26.0

SC: Security Center Service [Enabled]
WU: Windows Update Service [Enabled]
AV: avast! Antivirus [(!) Disabled | Updated]
AS: Windows Defender : 6.1.7600.16385 (win7_rtm.090713-1255)
AS: Malwarebytes’ Anti-Malware : 1.75.0001
FW: Windows FireWall Service [Enabled]

C: (%systemdrive%) -> Disque fixe # 451 Go (301 Go libre(s) – 67%) [OS] # NTFS
D: -> CD-ROM
F: -> Disque amovible # 964 Mo (700 Mo libre(s) – 73%) [STORE’N’GO] # FAT
G: -> Disque amovible # 246 Mo (179 Mo libre(s) – 73%) [UDISK 2.0] # FAT

################## | Processus Stoppés |

Stoppé! C:WindowsExplorer.EXE (ID: 1336 |ParentID: 1328)
Stoppé! C:Windowssystem32ctfmon.exe (ID: 1400 |ParentID: 1336)
Stoppé! C:Program FilesAVAST SoftwareAvastAvastUI.exe (ID: 1804 |ParentID: 1336)

################## | Regedit Run |

04 – HKLM..Run : [IAStorIcon] C:Program Files (x86)IntelIntel(R) Rapid Storage TechnologyIAStorIcon.exe
04 – HKLM..Run : [Dell DataSafe Online] “C:Program Files (x86)Dell DataSafe OnlineDataSafeOnline.exe” /m
04 – HKLM..Run : [Dell Webcam Central] “C:Program Files (x86)Dell WebcamDell Webcam CentralWebcamDell2.exe” /mode2
04 – HKLM..Run : [DellSupportCenter] “C:Program Files (x86)Dell Support Centerbinsprtcmd.exe” /P DellSupportCenter
04 – HKLM..Run : [DivXUpdate] “C:Program Files (x86)DivXDivX UpdateDivXUpdate.exe” /CHECKNOW
04 – HKLM..Run : [avast] “C:Program FilesAVAST SoftwareAvastavastUI.exe” /nogui
04 – HKLM..Run : [QuickTime Task] “C:Program Files (x86)QuickTimeqttask.exe” -atboottime
04 – HKLM..Run : [Adobe ARM] “C:Program Files (x86)Common FilesAdobeARM1.0AdobeARM.exe”
04 – HKLM..Run : [TkBellExe] “C:Program Files (x86)RealRealPlayerUpdaterealsched.exe” -osboot
04 – HKLM..Run : [APSDaemon] “C:Program Files (x86)Common FilesAppleApple Application SupportAPSDaemon.exe”
04 – HKLM..Run : [SunJavaUpdateSched] “C:Program Files (x86)Common FilesJavaJava Updatejusched.exe”
04 – HKLM..RunOnce : [Launcher] C:Program Files (x86)Dell DataSafe Local BackupComponentsSchedulerLauncher.exe
04 – HKLM..RunOnce : [DSUpdateLauncher] “C:Program Files (x86)Dell DataSafe Local BackupComponentsDSUpdatehstart.exe” /NOCONSOLE /D=”C:Program Files (x86)Dell DataSafe Local BackupComponentsDSUpdate” /RUNAS “C:Program Files (x86)Dell DataSafe Local BackupComponentsDSUpdateDSUpd.exe”
04 – HKLM..RunOnce : [STToasterLauncher] C:Program Files (x86)Dell DataSafe Local BackuptoasterLauncher.exe
04 – HKLM..RunOnce : []
04 – HKLM64..Run : [QuickSet] C:Program FilesDellQuickSetQuickSet.exe
04 – HKLM64..Run : [RtHDVCpl] C:Program FilesRealtekAudioHDARAVCpl64.exe -s
04 – HKLM64..Run : [Apoint] C:Program FilesDellTPadApoint.exe
04 – HKLM64..Run : [IgfxTray] C:Windowssystem32igfxtray.exe
04 – HKLM64..Run : [HotKeysCmds] C:Windowssystem32hkcmd.exe
04 – HKLM64..Run : [Persistence] C:Windowssystem32igfxpers.exe
04 – HKUS-1-5-19..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
04 – HKUS-1-5-20..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
04 – HKUS-1-5-21-672722308-2954159397-3891145070-1000..Run : [msnmsgr] “C:Program Files (x86)Windows LiveMessengermsnmsgr.exe” /background
04 – HKUS-1-5-21-672722308-2954159397-3891145070-1000..Run : [SpybotSD TeaTimer] C:Program Files (x86)Spybot – Search & DestroyTeaTimer.exe
04 – HKUS-1-5-21-672722308-2954159397-3891145070-1000..Run : [Facebook Update] “C:UsersMarlèneAppDataLocalFacebookUpdateFacebookUpdate.exe” /c /nocrashserver
04 – HKUS-1-5-21-672722308-2954159397-3891145070-1000..Run : [RESTART_STICKY_NOTES] C:WINDOWSSystem32StikyNot.exe
04 – HKUS-1-5-21-672722308-2954159397-3891145070-1000..Run : [iTunesHelper] wscript.exe //B “C:UsersMARLNE~1AppDataLocalTempiTunesHelper.vbe”
04 – HKUS-1-5-19..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe
04 – HKUS-1-5-20..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe

################## | Recherche générique |

(!) Fichiers temporaires supprimés.

################## | Registre |

################## | Listing |

[08/08/2012 – 18:40:37 | SHD] – C:$RECYCLE.BIN
[21/05/2013 – 02:01:50 | D] – C:29d6dc07479f1292bd08
[20/03/2011 – 18:20:52 | D] – C:9581801f4e055eeefb3e85ee0ff8
[27/07/2013 – 18:39:50 | D] – C:b4f71fae3fcf2410337a482457
[28/04/2009 – 17:27:08 | SHD] – C:Boot
[14/07/2009 – 02:38:58 | RASH | 375 Ko] – C:bootmgr
[28/04/2009 – 17:27:09 | N | 8 Ko] – C:BOOTSECT.BAK
[18/03/2011 – 14:15:22 | D] – C:Dell
[22/10/2010 – 11:21:11 | N | 3 Ko] – C:dell.sdr
[14/07/2009 – 06:08:56 | SHD] – C:Documents and Settings
[21/04/2013 – 15:39:06 | D] – C:drivers
[22/05/2013 – 23:31:21 | N | 0 Ko] – C:end
[01/08/2013 – 10:43:21 | D] – C:fa146ec936135ffcebba61
[03/01/2014 – 15:50:54 | ASH | 3116820 Ko] – C:hiberfil.sys
[18/03/2011 – 17:27:56 | D] – C:Intel
[26/11/2012 – 17:29:18 | D] – C:lexmark
[22/04/2013 – 16:50:05 | N | 0 Ko] – C:lxbt.log
[22/04/2013 – 16:45:03 | N | 0 Ko] – C:lxdi.log
[03/01/2014 – 15:50:54 | ASH | 4155764 Ko] – C:pagefile.sys
[14/07/2009 – 04:20:08 | D] – C:PerfLogs
[05/12/2013 – 12:23:18 | D] – C:Program Files
[28/12/2013 – 16:31:28 | D] – C:Program Files (x86)
[03/12/2013 – 17:39:09 | HD] – C:ProgramData
[03/01/2014 – 03:00:59 | SHD] – C:System Volume Information
[24/11/2013 – 18:22:48 | D] – C:Temp
[03/01/2014 – 15:54:16 | D] – C:UsbFix
[03/01/2014 – 15:45:58 | N | 11 Ko | 5F78A77AB2932D31B70613C3BC37A8DA] – C:UsbFix [Clean 1] MARLÈNE-PC.txt
[03/01/2014 – 15:54:39 | A | 6 Ko | 4D60605BC1D3B239DE1BC0F86C2C3F36] – C:UsbFix [Clean 2] MARLÈNE-PC.txt
[18/03/2011 – 14:43:02 | D] – C:Users
[03/01/2014 – 15:50:54 | D] – C:WINDOWS
[22/05/2013 – 13:12:18 | D] – F:memoire
[15/11/2009 – 16:50:12 | D] – F:Cours risques
[08/06/2012 – 08:30:58 | N | 2246 Ko] – F:DSC03416.JPG
[06/11/2009 – 19:18:26 | N | 4 Ko] – F:._.DS_Store
[21/01/2010 – 01:04:16 | D] – F:COURS ANGLAIS
[30/10/2013 – 14:59:46 | N | 342 Ko] – F:digitick machinedrum 1.pdf
[08/06/2012 – 08:33:26 | N | 2386 Ko] – F:DSC03419.JPG
[23/04/2013 – 13:30:12 | D] – F:a imprimer à la mairie
[01/10/2012 – 16:51:22 | N | 1987 Ko] – F:convention diversité biologique.pdf
[01/10/2012 – 16:50:44 | N | 585 Ko] – F:essai_societes_eskimos, marcel mauss.pdf
[23/04/2013 – 13:30:02 | D] – F:job ete
[25/06/2010 – 10:06:14 | N | 2538 Ko] – F:DSC02014.JPG
[06/11/2009 – 19:07:32 | SH | 39 Ko] – F:.DS_Store
[19/02/2013 – 21:55:26 | N | 0 Ko] – F:.dropbox.device
[13/02/2013 – 14:10:24 | N | 157 Ko] – F:le sauvage construit.pdf
[08/10/2009 – 18:44:54 | SH | 4 Ko] – F:._.Trashes
[28/06/2012 – 13:10:34 | N | 2414 Ko] – F:DSC03434.JPG
[08/10/2009 – 18:44:54 | SHD] – F:.Trashes
[08/04/2013 – 23:18:34 | D] – F:COURS DE STAT
[08/10/2009 – 18:44:56 | SHD] – F:.Spotlight-V100
[13/04/2013 – 12:11:22 | D] – F:internships
[13/01/2013 – 22:38:32 | D] – F:A DEVLPER
[18/04/2013 – 18:14:04 | N | 832 Ko] – F:anthropo corps rites funéraires.docx
[16/03/2013 – 16:29:44 | N | 582 Ko] – F:pygmées et pygmitude epelboin.pdf
[30/05/2013 – 10:13:40 | N | 33 Ko] – F:speech présentation orale.doc
[30/10/2013 – 14:59:46 | N | 342 Ko] – F:digitick machinedrum 2.pdf
[01/10/2013 – 14:41:48 | D] – F:UE 2 thème biodiversité & territoire
[31/07/2013 – 13:56:30 | N | 2388 Ko] – F:DSC04004.JPG
[14/06/2013 – 08:10:02 | N | 1875 Ko] – F:DSC03897.JPG
[07/03/2011 – 23:32:52 | N | 782 Ko] – F:manuel_ethnographie marcel mauss.pdf
[17/02/2013 – 16:44:16 | N | 583 Ko] – F:pecheurs kanaks et politiques developpement peche.pdf
[18/10/2013 – 13:53:48 | N | 399 Ko] – F:Fiche principales PE – Partie 1.doc
[06/08/2013 – 13:36:58 | N | 2582 Ko] – F:DSC04059.JPG
[11/07/2013 – 14:57:24 | N | 2264 Ko] – F:DSC03918.JPG
[20/02/2013 – 18:35:14 | N | 1511 Ko] – F:maison nvell caledonie aires coutumiere.pdf
[19/12/2011 – 13:49:32 | N | 2284 Ko] – F:Inventaire avifaunistique et batrachologique des frich_000.pdf
[25/04/2013 – 09:34:58 | N | 2356 Ko] – F:DSC03737.JPG
[25/04/2013 – 09:42:44 | N | 2253 Ko] – F:DSC03746.JPG
[18/01/2013 – 15:03:20 | N | 4 Ko] – F:.__formulaire demande diplome L3.pdf
[08/02/2012 – 17:42:32 | N | 16075 Ko] – F:encyclopédie pygmées Aka.pdf
[16/06/2010 – 11:27:04 | N | 2498 Ko] – F:DSC01867.JPG
[26/05/2010 – 13:19:38 | N | 2516 Ko] – F:DSC01821.JPG
[23/09/2009 – 12:07:52 | N | 2219 Ko] – F:DSC01330.JPG
[09/06/2009 – 08:49:32 | N | 2345 Ko] – F:DSC00845.JPG
[09/06/2009 – 08:49:28 | N | 2394 Ko] – F:DSC00851.JPG
[10/12/2012 – 10:38:52 | N | 1292 Ko] – F:Parc marin arcachon résultats enquêtes publiques.pdf
[29/01/2009 – 10:08:50 | N | 712 Ko] – F:100_2245.JPG
[11/09/2007 – 09:18:24 | N | 1036 Ko] – F:100_1350.JPG
[11/09/2007 – 09:17:44 | N | 1167 Ko] – F:100_1370.JPG
[22/11/2013 – 16:02:06 | D] – F:nichoirs
[26/05/2010 – 13:19:12 | N | 2894 Ko] – F:DSC01849.JPG
[26/05/2010 – 13:19:38 | N | 2480 Ko] – F:DSC01820.JPG
[08/06/2005 – 10:03:30 | N | 842 Ko] – F:00_0417.JPG
[08/06/2005 – 10:03:42 | N | 949 Ko] – F:00_0413.JPG
[18/09/2009 – 09:39:08 | N | 2555 Ko] – F:DSC01275.JPG
[18/09/2009 – 09:39:06 | N | 2407 Ko] – F:DSC01276.JPG
[18/09/2009 – 09:39:06 | N | 2515 Ko] – F:DSC01277.JPG
[18/09/2009 – 09:39:06 | N | 2638 Ko] – F:DSC01278.JPG
[18/09/2009 – 09:39:04 | N | 2198 Ko] – F:DSC01279.JPG
[18/09/2009 – 09:39:04 | N | 2416 Ko] – F:DSC01280.JPG
[08/06/2005 – 10:03:28 | N | 874 Ko] – F:00_0418.JPG
[12/03/2013 – 00:22:58 | N | 495 Ko] – F:Les marchés africains de france et de belgique.pdf
[10/12/2013 – 12:11:40 | D] – F:Dossier Paysage Gers
[23/11/2013 – 08:37:30 | SHD] – F:Autorun.inf
[29/11/2013 – 20:19:54 | D] – F:Nouveau dossier
[14/11/2013 – 10:44:02 | N | 109 Ko] – G:Coupon-NOEMIE.pdf
[21/09/2013 – 17:00:00 | SH | 4 Ko] – G:._.Trashes
[05/05/2013 – 15:38:56 | D] – G:Documents
[21/09/2013 – 17:00:00 | SHD] – G:.Trashes
[15/11/2013 – 01:37:42 | D] – G:a lire
[15/11/2013 – 18:31:10 | N | 192 Ko] – G:attestation-securite-sociale.pdf
[20/01/1980 – 15:22:46 | SH | 6 Ko] – G:.DS_Store
[20/02/2010 – 13:21:14 | N | 2 Ko] – G:BOOTEX.LOG
[10/11/2013 – 22:22:58 | SHD] – G:Autorun.inf
[14/11/2013 – 15:40:12 | N | 34 Ko] – G:Séminaire du 07-11-Droit.docx
[22/10/2013 – 21:51:18 | N | 41 Ko] – G:preuve logement EDF.pdf
[19/05/2010 – 13:38:22 | SHD] – G:.Spotlight-V100
[24/01/2011 – 12:31:12 | N | 1349 Ko] – G:couvrirlemonde.pdf
[28/02/2013 – 19:29:52 | N | 116 Ko] – G:Bulletin_inscription_sorties-18-4 SNPN.pdf
[15/11/2013 – 21:26:18 | N | 6880 Ko] – G:Planche de photos espaces verts.docx
[17/11/2013 – 17:16:46 | N | 3466 Ko] – G:Planche photo Gestion espaces verts.odt
[18/11/2013 – 02:38:24 | N | 1365 Ko] – G:plan_ville.pdf
[04/05/2010 – 11:13:16 | SH | 34 Ko] – G:Thumbs.db
[07/03/2011 – 23:32:52 | N | 782 Ko] – G:manuel_ethnographie marcel mauss.pdf
[28/03/2011 – 20:22:02 | N | 0 Ko] – G:WMPInfo.xml
[26/10/2013 – 15:04:48 | N | 27 Ko] – G:Paysage – Littoral 22.10.13.docx
[10/12/2013 – 12:11:40 | D] – G:Dossier Paysage Gers
[15/08/2011 – 09:40:34 | N | 409 Ko] – G:Le Prix du Silence.pdf

################## | Vaccin |

F:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
G:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

################## | E.O.F | http://www.usbfix.net” onclick=”window.open(this.href);return false; – https://www.sosvirus.net” onclick=”window.open(this.href);return false; |

:alcool: