Lebloleen
Participant
Nombre d'articles : 2

Voici le rapport

############################## | UsbFix V 7.171 | [Nettoyage]

Utilisateur: TONGA (Administrateur) # E600DB180CD0426
Mis à jour le 09/06/2014 par El Desaparecido – SosVirus
Lancé à 14:30:27 | 13/06/2014

Site Web : http://www.usbfix.net/
Changelog : http://www.usbfix.net/maj/
Assistance : http://www.sosvirus.net/forum-virus-securite.html
Upload Malware : http://www.sosvirus.net/upload_malware.php
Contact : http://www.usbfix.net/contact/

PC: eMachines (E945GCU)
CPU: Intel(R) Atom(TM) CPU 230 @ 1.60GHz
CPU: Intel(R) Atom(TM) CPU 230 @ 1.60GHz
RAM -> [Total : 1015 Mo| Free : 66 Mo]
Bios: AMI
Boot: Normal boot

OS: Microsoft Windows XP Professionnel (5.1.2600 32-Bit) Service Pack 2
WB: Windows Internet Explorer : 6.0.2900.2180
WB: Google Chrome : 22.0.1229.95

SC: Security Center [Enabled]
WU: Windows Update [Enabled]

FW: Windows FireWall [Enabled]

C: (%SystemDrive%) -> Disque fixe # 139 Go (70 Go libre(s) – 51%) [OS] # NTFS
D: -> Disque amovible # 8 Go (3 Go libre(s) – 43%) [PKBACK# 001] # FAT32
E: -> CD-ROM
G: -> Disque fixe # 141 Go (55 Go libre(s) – 39%) [OneTouch4] # NTFS

################## | Processus Stoppés |

C:WINDOWSsystem32spoolsv.exe (ID: 1828|ParentID: 1064|SYSTEM)
C:WINDOWSexplorer.exe (ID: 492|ParentID: 332|TONGA)
C:WINDOWSsystem32igfxtray.exe (ID: 700|ParentID: 492|TONGA)
C:WINDOWSsystem32hkcmd.exe (ID: 708|ParentID: 492|TONGA)
C:WINDOWSsystem32igfxpers.exe (ID: 716|ParentID: 492|TONGA)
C:WINDOWSRTHDCPL.EXE (ID: 748|ParentID: 492|TONGA)
C:WINDOWSsystem32igfxsrvc.exe (ID: 756|ParentID: 1276|TONGA)
C:Program FilesPlantronicsPlantronicsUREPlantronicsURE.exe (ID: 856|ParentID: 492|TONGA)
C:Program FilesPlantronicsPlantronicsUREPlantronicsBatteryStatus.exe (ID: 884|ParentID: 492|TONGA)
C:Program FilesRealRealPlayerUpdaterealsched.exe (ID: 912|ParentID: 492|TONGA)
C:Program FilesUberIconUberIcon Manager.exe (ID: 924|ParentID: 492|TONGA)
C:Program FilesSkypePhoneSkype.exe (ID: 984|ParentID: 492|TONGA)
C:Program FilesFichiers communsAppleMobile Device SupportAppleMobileDeviceService.exe (ID: 1032|ParentID: 1064|SYSTEM)
C:Documents and SettingsTONGA.E600DB180CD0426Menu DémarrerProgrammesDémarrageAdobe Online.com (ID: 1308|ParentID: 492|TONGA)
C:Program FilesBonjourmDNSResponder.exe (ID: 1388|ParentID: 1064|SYSTEM)
C:Documents and SettingsTONGA.E600DB180CD0426Menu DémarrerProgrammesDémarrageAdobe update.com (ID: 1472|ParentID: 492|TONGA)
C:Program FilesPDF ArchitectHelperService.exe (ID: 1796|ParentID: 1064|SYSTEM)
C:Program FilesOpenOffice.org 3programsoffice.exe (ID: 188|ParentID: 1852|TONGA)
C:Program FilesOpenOffice.org 3programsoffice.bin (ID: 276|ParentID: 188|TONGA)
C:Program FilesPDF ArchitectConversionService.exe (ID: 652|ParentID: 1064|SYSTEM)
C:Program FilesRealNetworksRealDownloaderrndlresolversvc.exe (ID: 816|ParentID: 1064|SYSTEM)
C:WINDOWSsystem32alg.exe (ID: 2656|ParentID: 1064|SERVICE LOCAL)
C:WINDOWSsystem32wscntfy.exe (ID: 3340|ParentID: 1448|TONGA)
C:Program FilesGoogleChromeApplicationchrome.exe (ID: 2464|ParentID: 492|TONGA)
C:Program FilesGoogleChromeApplicationchrome.exe (ID: 3180|ParentID: 2464|TONGA)
C:Program FilesGoogleChromeApplicationchrome.exe (ID: 3580|ParentID: 2464|TONGA)
C:Program FilesRealNetworksRealDownloaderrecordingmanager.exe (ID: 3732|ParentID: 3580|TONGA)
C:Program FilesGoogleChromeApplicationchrome.exe (ID: 2084|ParentID: 2464|TONGA)
C:WINDOWSsystem32wuauclt.exe (ID: 164|ParentID: 1448|TONGA)
C:Program FilesGoogleChromeApplicationchrome.exe (ID: 3832|ParentID: 2464|TONGA)
C:WINDOWSsystem32notepad.exe (ID: 3788|ParentID: 3920|TONGA)
C:Program FilesGoogleChromeApplicationchrome.exe (ID: 2228|ParentID: 2464|TONGA)
C:Program FilesGoogleChromeApplicationchrome.exe (ID: 2580|ParentID: 2464|TONGA)
C:Program FilesMozilla Thunderbirdthunderbird.exe (ID: 2360|ParentID: 504|TONGA)
C:Program FilesGoogleChromeApplicationchrome.exe (ID: 2744|ParentID: 2464|TONGA)
C:Program FilesGoogleChromeApplicationchrome.exe (ID: 1420|ParentID: 2464|TONGA)

################## | Autorun |

C:autorun.inf -> C:Thumbs.com | VirusTotal – (50/52)
C:autorun.inf -> C:Thumbs.com | VirusTotal – (50/52)

################## | Recherche générique |

Supprimé! D:APS .scr
Supprimé! D:Cv .scr
Supprimé! D: CARES .scr
Supprimé! D:Cadrex .scr
Supprimé! D:AUGIER .scr
Supprimé! D:Annuaire Val d’Oise .scr
Supprimé! D:Ciel Compta .scr
Supprimé! D:EMUGE FRANKEN SARL .scr
Supprimé! D:Nouveau dossier .scr
Supprimé! D:GARAGE JEAN JAURES .scr
Supprimé! D:Rapport de stage .scr
Supprimé! D:Logiciels .scr
Supprimé! D:PROGRESS .scr
Supprimé! D:PM SECURITE .scr
Supprimé! D:U3ROM .scr
Supprimé! D:Tout le dossier Greta-DT .scr
Supprimé! G:$RECYCLE.BIN .scr
Supprimé! G: CARES .scr
Supprimé! G:1e18fc017554599580a3d4522b2e84 .scr
Supprimé! G:3710983f5b178308b13927e481920696 .scr
Supprimé! G:86993b6b2cf1cbf4e3cb3e8c42fc55 .scr
Supprimé! G:Bin .scr
Supprimé! G:BIOMASSA .scr
Supprimé! G:c75a4df927b852acd7d05b798554b3f1 .scr
Supprimé! G:Didier Tonga .scr
Supprimé! G:Disque C .scr
Supprimé! G:DOSSIER SECRETARIAT ABJ 04_01_2010 .scr
Supprimé! G:DRIVER DUALIS .scr
Supprimé! G:drivers .scr
Supprimé! G:ELITE_60 .scr
Supprimé! G:Emachines El 1600 .scr
Supprimé! G:eMedia .scr
Supprimé! G:EULA .scr
Supprimé! G:IDE .scr
Supprimé! G:LE MESSAGER DES TENEBRE .scr
Supprimé! G:Mac OneTouch 4.app .scr
Supprimé! G:RECYCLER .scr
Supprimé! G:temp0134 .scr
Supprimé! G:Veille .scr
Supprimé! C:Documents and SettingsTONGA.E600DB180CD0426Menu DémarrerProgrammesDémarrageAdobe Online.com
Supprimé! C:Documents and SettingsTONGA.E600DB180CD0426Menu DémarrerProgrammesDémarrageAdobe update.com
Supprimé! C:WINDOWSsystem32dll32.dll
Supprimé! D:Thumbs .db
Supprimé! D:Thumbs.com
Supprimé! G:Thumbs .db
Supprimé! G:Thumbs.com
Supprimé! D:U3ROMdefault.ico
Supprimé! D:U3ROMusb.exe
Supprimé! D:U3ROM.DS_Store
Supprimé! D:U3ROM
Supprimé! C:21472ef651877d18af44 .scr
Supprimé! C:3a63a861b9cf2381080c42 .scr
Supprimé! C:7dbb110d33687688a7ea5a1894b4 .scr
Supprimé! C:8357cc3622a5b451ce61c0a2 .scr
Supprimé! C:ACER .scr
Supprimé! C:Acernb .scr
Supprimé! C:ACERSW .scr
Supprimé! C:AdwCleaner .scr
Supprimé! C:Book .scr
Supprimé! C:c40e8ecead810f01a4354fc128 .scr
Supprimé! C:Config.Msi .scr
Supprimé! C:C_DILLA .scr
Supprimé! C:Données Ciel .scr
Supprimé! C:DOTNETFX .scr
Supprimé! C:GTW .scr
Supprimé! C:i386 .scr
Supprimé! C:MSOCache .scr
Supprimé! C:Output Files .scr
Supprimé! C:Program Files .scr
Supprimé! C:RECYCLER .scr
Supprimé! C:temp .scr
Supprimé! C:Thumbs.com
Supprimé! C:UsbFix .scr
Supprimé! C:VALUEADD .scr
Supprimé! C:WINDOWS .scr
Supprimé! D:APSAPS-4-JAIGNY .scr
Supprimé! D:APSAPS-4-JAIGNYPrésentation .scr
Supprimé! D:APSAPS-4-JAIGNYDossier .scr
Supprimé! D:APSAPS Gréta FichesFiches APS Gréta 2013 2014 Définitives .scr
Supprimé! D:APSAPS-5-VECKAERT .scr
Supprimé! D:APSAPS-3- LASSALLE-MISSION2-ATLANTIC_COURTAGE .scr
Supprimé! D:APSAPS-2-FDO .scr
Supprimé! D:APSAPS-1-GRIMPO .scr
Supprimé! D:APSAPS Gréta Fiches .scr
Supprimé! D: CARES1 Métier .scr
Supprimé! D: CARES2 CV .scr
Supprimé! D: CARES3 CS .scr
Supprimé! D: CARES4 Phoning .scr
Supprimé! D: CARES5 Entretien .scr
Supprimé! G:RECYCLERS-1-5-21-861567501-436374069-1417001333-1004Dg132.scr
Supprimé! G:RECYCLERS-1-5-21-861567501-436374069-1417001333-1004Dg133.scr

(!) Fichiers temporaires supprimés.

################## | Registre |

Supprimé! HKUS-1-5-21-861567501-436374069-1417001333-1004Software….Mountpoints2{93c439cb-94f9-11e3-ad57-806d6172696f}

################## | Regedit Run |

F2 – HKLM..Winlogon : [Shell] Explorer.exe
F2 – HKLM..Winlogon : [Userinit] C:WINDOWSsystem32userinit.exe,
04 – HKCU..Run : [UberIcon] « C:Program FilesUberIconUberIcon Manager.exe »
04 – HKCU..Run : [Skype] « C:Program FilesSkypePhoneSkype.exe » /minimized /regrun
04 – HKLM..Run : [IgfxTray] C:WINDOWSsystem32igfxtray.exe
04 – HKLM..Run : [HotKeysCmds] C:WINDOWSsystem32hkcmd.exe
04 – HKLM..Run : [Persistence] C:WINDOWSsystem32igfxpers.exe
04 – HKLM..Run : [RTHDCPL] RTHDCPL.EXE
04 – HKLM..Run : [SkyTel] SkyTel.EXE
04 – HKLM..Run : [Alcmtr] ALCMTR.EXE
04 – HKLM..Run : [KernelFaultCheck] %systemroot%system32dumprep 0 -k
04 – HKLM..Run : [PlantronicsURE.exe] C:Program FilesPlantronicsPlantronicsUREPlantronicsURE.exe
04 – HKLM..Run : [PlantronicsBatteryStatus.exe] C:Program FilesPlantronicsPlantronicsUREPlantronicsBatteryStatus.exe
04 – HKLM..Run : [Adobe ARM] « C:Program FilesFichiers communsAdobeARM1.0AdobeARM.exe »
04 – HKLM..Run : [TkBellExe] « C:Program FilesRealRealPlayerupdaterealsched.exe » -osboot
04 – HKLM..Run : [iTunesHelper] « C:Program FilesiTunesiTunesHelper.exe »
04 – HKUS-1-5-19..Run : [UberIcon] « C:Program FilesUberIconUberIcon Manager.exe »
04 – HKUS-1-5-20..Run : [UberIcon] « C:Program FilesUberIconUberIcon Manager.exe »
04 – HKUS-1-5-21-861567501-436374069-1417001333-1004..Run : [UberIcon] « C:Program FilesUberIconUberIcon Manager.exe »
04 – HKUS-1-5-21-861567501-436374069-1417001333-1004..Run : [Skype] « C:Program FilesSkypePhoneSkype.exe » /minimized /regrun
04 – HKUS-1-5-18..Run : [UberIcon] « C:Program FilesUberIconUberIcon Manager.exe »
04 – HKUS-1-5-19..RunOnce : [nlpo_04] cmd.exe /c md « %USERPROFILE%Local SettingsTemp »
04 – HKUS-1-5-19..RunOnce : [nlpo_05] rundll32 advpack.dll,DelNodeRunDLL32 « %SystemRoot%NLDRV »
04 – HKUS-1-5-19..RunOnce : [nlpo_06] rundll32 advpack.dll,LaunchINFSection nlite.inf,I
04 – HKUS-1-5-19..RunOnce : [nlpo_07] cmd.exe /C move /Y « %SystemRoot%System32syssetub.dll » « %SystemRoot%System32syssetup.dll »
04 – HKUS-1-5-19..RunOnce : [nlpo_08] rundll32 advpack.dll,LaunchINFSection nlite.inf,nLiteReg
04 – HKUS-1-5-19..RunOnce : [nlpo_09] rundll32 advpack.dll,LaunchINFSection nlite.inf,S
04 – HKUS-1-5-20..RunOnce : [nlpo_04] cmd.exe /c md « %USERPROFILE%Local SettingsTemp »
04 – HKUS-1-5-20..RunOnce : [nlpo_05] rundll32 advpack.dll,DelNodeRunDLL32 « %SystemRoot%NLDRV »
04 – HKUS-1-5-20..RunOnce : [nlpo_06] rundll32 advpack.dll,LaunchINFSection nlite.inf,I
04 – HKUS-1-5-20..RunOnce : [nlpo_07] cmd.exe /C move /Y « %SystemRoot%System32syssetub.dll » « %SystemRoot%System32syssetup.dll »
04 – HKUS-1-5-20..RunOnce : [nlpo_08] rundll32 advpack.dll,LaunchINFSection nlite.inf,nLiteReg
04 – HKUS-1-5-20..RunOnce : [nlpo_09] rundll32 advpack.dll,LaunchINFSection nlite.inf,S

################## | C: %SystemDrive% – Disque Fixe (NTFS) |

[03/01/2014 – 22:29:37 | RASHC | 0 Ko] – C:MSDOS.SYS
[03/01/2014 – 22:29:37 | C | 0 Ko] – C:CONFIG.SYS
[03/01/2014 – 22:29:37 | RASHC | 0 Ko] – C:IO.SYS
[28/01/2014 – 08:31:31 | N | 1039604 Ko] – C:hiberfil.sys
[13/06/2014 – 13:06:40 | ASH | 1560576 Ko] – C:pagefile.sys
[01/06/2014 – 02:57:16 | DC] – C:Config.Msi
[25/03/2014 – 10:36:47 | SHC | 0 Ko] – C:boot.ini
[12/06/2014 – 13:54:17 | C | 0 Ko] – C:Autorun.inf
[09/05/2014 – 00:01:01 | C | 0 Ko] – C:infect.fstmp
[09/05/2014 – 00:15:14 | C | 0 Ko] – C:error.fstmp
[25/05/2010 – 18:58:46 | C | 1356 Ko] – C:Thumbs .db
[03/08/2004 – 23:38:34 | C | 46 Ko | VirusTotal – (0/54)] – C:NTDETECT.COM
[28/08/2001 – 14:00:00 | C | 5 Ko] – C:Bootfont.bin
[03/01/2014 – 22:29:37 | AC | 0 Ko] – C:AUTOEXEC.BAT
[02/02/2005 – 03:45:54 | RASH | 246 Ko] – C:ntldr
[11/09/2008 – 11:22:07 | D] – C:DOTNETFX
[03/03/2009 – 10:16:09 | HD] – C:MSOCache
[03/03/2009 – 10:49:01 | D] – C:GTW
[03/03/2009 – 10:53:53 | DC] – C:Book
[03/03/2009 – 11:20:49 | DC] – C:Acernb
[15/08/2009 – 21:12:37 | DC] – C:ACERSW
[15/08/2009 – 21:12:43 | DC] – C:ACER
[07/10/2009 – 21:38:54 | DC] – C:8357cc3622a5b451ce61c0a2
[15/10/2009 – 19:23:55 | DC] – C:7dbb110d33687688a7ea5a1894b4
[07/12/2009 – 18:48:22 | D] – C:VALUEADD
[13/01/2010 – 18:52:35 | DC] – C:21472ef651877d18af44
[15/09/2011 – 22:07:33 | DC] – C:3a63a861b9cf2381080c42
[23/12/2012 – 15:35:13 | DC] – C:C_DILLA
[27/09/2013 – 23:01:14 | DC] – C:Output Files
[11/10/2013 – 00:42:30 | D] – C:i386
[16/10/2013 – 06:28:54 | DC] – C:temp
[14/02/2014 – 00:07:08 | SHD] – C:System Volume Information
[14/02/2014 – 00:10:38 | DC] – C:Documents and Settings
[16/02/2014 – 14:08:23 | SHD] – C:RECYCLER
[18/02/2014 – 22:43:20 | DC] – C:c40e8ecead810f01a4354fc128
[28/05/2014 – 19:30:01 | DC] – C:AdwCleaner
[30/05/2014 – 22:26:10 | DC] – C:Données Ciel
[12/06/2014 – 13:54:15 | D] – C:WINDOWS
[13/06/2014 – 13:09:45 | DC] – C:UsbFix
[13/06/2014 – 13:57:55 | D] – C:Program Files

################## | D: – Disque USB (FAT32) |

[24/01/2014 – 18:38:54 | N | 26 Ko] – D:WILLEM Emprunt indivis.xlsx
[21/05/2014 – 09:56:20 | N | 104 Ko] – D:Analyse des écarts graphes.xls
[18/04/2014 – 09:58:50 | HD] – D:.Trashes
[18/04/2014 – 09:58:50 | AH | 4 Ko] – D:._.Trashes
[22/02/2013 – 18:40:08 | N | 12028 Ko] – D: CARES.rar
[19/02/2013 – 10:50:34 | N | 1207 Ko] – D:Management des organisations AGEE 2013.pptx
[25/02/2013 – 13:36:52 | N | 1211 Ko] – D:Eléments d’une structure d’organisation.pdf
[15/04/2013 – 09:46:44 | N | 45 Ko] – D:Lettre de motivation Didier TONGA.pdf
[21/05/2013 – 10:04:14 | N | 56 Ko] – D:CV Didier TONGA.pdf
[15/09/2013 – 09:39:18 | N | 2 Ko] – D:BOOTEX.LOG
[08/10/2011 – 18:09:26 | N | 149 Ko] – D:Tonga Didier 0001.jpg
[05/09/2012 – 12:09:34 | N | 51 Ko] – D:Photo d’identité Didier TONGA.jpg
[11/06/2014 – 14:44:06 | N | 0 Ko] – D:Autorun.inf
[20/04/2014 – 01:22:46 | AH | 15 Ko] – D:.DS_Store
[15/04/2013 – 10:24:08 | N | 49 Ko] – D:Didier TONGA.docx
[15/04/2013 – 10:27:48 | N | 79 Ko] – D:Didier TONGA.doc
[24/05/2013 – 07:31:22 | N | 18 Ko] – D:Lettre de motivation Didier TONGA.doc
[12/06/2013 – 16:54:26 | N | 33 Ko] – D:CV Didier TONGA.doc
[12/06/2013 – 16:54:32 | N | 43 Ko] – D:Lettre de motivation Didier TONGA-1.doc
[08/11/2012 – 09:59:02 | D] – D:Cv
[08/01/2013 – 06:23:22 | D] – D:Nouveau dossier
[14/01/2013 – 10:15:48 | D] – D:Annuaire Val d’Oise
[22/02/2013 – 15:11:06 | D] – D: CARES
[15/04/2013 – 10:37:44 | D] – D:Cadrex
[15/04/2013 – 10:54:40 | D] – D:GARAGE JEAN JAURES
[15/04/2013 – 12:15:20 | D] – D:EMUGE FRANKEN SARL
[15/04/2013 – 12:50:10 | D] – D:AUGIER
[15/04/2013 – 14:05:28 | D] – D:PROGRESS
[15/04/2013 – 14:11:56 | D] – D:PM SECURITE
[24/10/2013 – 18:18:28 | D] – D:Logiciels
[01/04/2014 – 00:40:20 | D] – D:Rapport de stage
[23/05/2014 – 13:05:22 | D] – D:Tout le dossier Greta-DT
[27/05/2014 – 14:40:06 | D] – D:Ciel Compta
[28/05/2014 – 08:14:42 | D] – D:APS

################## | G: – Disque Fixe (NTFS) |

[11/04/2008 – 10:07:18 | N | 13 Ko] – G:eula.3082.txt
[11/04/2008 – 10:07:18 | N | 15 Ko] – G:eula.1031.txt
[11/04/2008 – 10:07:18 | N | 10 Ko] – G:eula.1033.txt
[11/04/2008 – 10:07:18 | N | 12 Ko] – G:eula.1036.txt
[11/04/2008 – 10:07:18 | N | 14 Ko] – G:eula.1040.txt
[11/04/2008 – 10:07:18 | N | 6 Ko] – G:eula.1041.txt
[11/04/2008 – 10:07:18 | N | 6 Ko] – G:eula.1042.txt
[11/04/2008 – 10:07:18 | N | 10 Ko] – G:eula.1049.txt
[11/04/2008 – 10:07:18 | N | 4 Ko] – G:eula.2052.txt
[11/04/2008 – 10:07:18 | N | 4 Ko] – G:eula.1028.txt
[11/04/2008 – 10:11:40 | N | 228 Ko] – G:VC_RED.MSI
[11/04/2008 – 10:07:18 | N | 1 Ko] – G:globdata.ini
[11/04/2008 – 10:07:18 | N | 1 Ko] – G:install.ini
[12/06/2014 – 13:54:18 | N | 0 Ko] – G:Autorun.inf
[16/05/2007 – 00:35:34 | N | 402 Ko] – G:mxoicon6.ico
[07/08/2010 – 16:00:01 | N | 2 Ko] – G:FOXUSER.FPT
[11/04/2008 – 08:03:48 | N | 550 Ko | VirusTotal – (0/51)] – G:install.exe
[02/11/2011 – 22:11:49 | N | 18155 Ko | VirusTotal – (1/52)] – G:pdfcreator_pdfcreator_1.2.3_francais_11085.exe
[17/10/2013 – 22:44:32 | N | 1026 Ko | VirusTotal – (1/50)] – G:adwcleaner_2.exe
[25/09/2010 – 17:36:08 | N | 0 Ko] – G:~$DGE MDBC2.docx
[10/10/2007 – 13:46:12 | N | 82251 Ko] – G:OneTouch 4.dmg
[11/04/2008 – 08:03:48 | N | 89 Ko | VirusTotal – (0/51)] – G:install.res.1033.dll
[11/04/2008 – 08:03:48 | N | 94 Ko | VirusTotal – (0/51)] – G:install.res.1031.dll
[11/04/2008 – 08:03:48 | N | 95 Ko | VirusTotal – (0/51)] – G:install.res.1036.dll
[11/04/2008 – 08:03:48 | N | 94 Ko | VirusTotal – (0/51)] – G:install.res.3082.dll
[11/04/2008 – 08:03:48 | N | 74 Ko | VirusTotal – (0/50)] – G:install.res.2052.dll
[11/04/2008 – 08:03:48 | N | 93 Ko | VirusTotal – (0/50)] – G:install.res.1040.dll
[11/04/2008 – 08:03:48 | N | 78 Ko | VirusTotal – (0/50)] – G:install.res.1042.dll
[11/04/2008 – 08:03:48 | N | 80 Ko | VirusTotal – (0/50)] – G:install.res.1041.dll
[11/04/2008 – 08:03:48 | N | 75 Ko | VirusTotal – (0/50)] – G:install.res.1028.dll
[11/04/2008 – 10:09:24 | N | 91 Ko | VirusTotal – (0/49)] – G:install.res.1049.dll
[07/08/2010 – 16:00:01 | N | 1 Ko] – G:FOXUSER.DBF
[11/04/2008 – 10:09:38 | N | 3708 Ko] – G:VC_RED.cab
[11/04/2008 – 10:07:18 | N | 6 Ko] – G:vcredist.bmp
[26/10/2011 – 11:24:05 | HD] – G:$RECYCLE.BIN
[12/08/2009 – 11:09:43 | D] – G:Mac OneTouch 4.app
[01/01/2004 – 10:31:19 | D] – G:eMedia
[01/01/2004 – 10:31:25 | D] – G:ELITE_60
[01/01/2004 – 10:49:55 | D] – G:BIOMASSA
[01/01/2004 – 10:51:11 | D] – G:Bin
[02/01/2004 – 01:03:01 | N | 0 Ko] – G:151d4
[02/12/2007 – 04:24:25 | D] – G:drivers
[02/12/2007 – 04:24:26 | D] – G:EULA
[02/02/2010 – 19:26:53 | D] – G:86993b6b2cf1cbf4e3cb3e8c42fc55
[11/03/2010 – 18:07:48 | D] – G:c75a4df927b852acd7d05b798554b3f1
[01/05/2010 – 16:00:55 | D] – G:temp0134
[09/08/2010 – 21:43:39 | D] – G:LE MESSAGER DES TENEBRE
[13/02/2011 – 02:49:54 | D] – G:DRIVER DUALIS
[01/11/2011 – 10:29:22 | D] – G:Didier Tonga
[14/01/2012 – 00:22:52 | D] – G:3710983f5b178308b13927e481920696
[02/04/2012 – 07:54:05 | D] – G:DOSSIER SECRETARIAT ABJ 04_01_2010
[02/04/2012 – 07:55:00 | D] – G:Disque C
[22/02/2013 – 20:29:25 | D] – G: CARES
[15/09/2013 – 12:10:03 | D] – G:IDE
[14/10/2013 – 09:12:19 | D] – G:Veille
[03/01/2014 – 22:30:19 | D] – G:1e18fc017554599580a3d4522b2e84
[14/02/2014 – 00:10:58 | SHD] – G:System Volume Information
[14/02/2014 – 01:05:26 | D] – G:Emachines El 1600
[17/02/2014 – 19:09:45 | SHD] – G:RECYCLER

################## | Vaccin |

D:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
G:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

################## | E.O.F | http://www.sosvirus.net/ | http://www.usbfix.net/ |