Répondre à : Comment supprimer Omiga Plus 2016-09-08T13:50:48+00:00
chichouchachochou
Participant
Nombre d'articles : 4

Re-bonjour! Je suis désolée! Je suis partie et la personne détentrice du PC ne sachant pas bien l’utiliser ne pouvait pas continuer les manip! Je suis désolée!

Voilà les rapports :

USBfix:

############################## | UsbFix V 7.178 | [Nettoyage]

Utilisateur: célia (Administrateur) # CÉLIA-PC
Mis à jour le 08/08/2014 par El Desaparecido – SosVirus
Lancé à 21:04:46 | 14/08/2014

Site Web : http://www.usbfix.net/
Changelog : http://www.usbfix.net/maj/
Assistance : https://www.sosvirus.net/aide-nettoyage-pc/
Upload Malware : https://www.sosvirus.net/upload_malware.php
Contact : http://www.usbfix.net/contact/

################## | System information |

MB: ASUSTeK Computer Inc. (K53SC)
CPU: Intel(R) Pentium(R) CPU B950 @ 2.10GHz
RAM -> [Total : 8103 Mo | Free : 5915 Mo]
Bios: American Megatrends Inc.
Boot: Normal boot

OS: Microsoft™ Windows 7 Home Premium (6.1.7601 64-Bit) Service Pack 1
WB: Internet Explorer : 11.00.9600.16428

################## | Security Information |

AV: Microsoft Security Essentials [(!) Désactivé |A jour]
AV: Trend Micro Titanium Internet Security [(!) Désactivé |A jour]
AS: Trend Micro Titanium Internet Security [(!) Désactivé |A jour]
AS: Windows Defender [(!) Désactivé |A jour]
AS: Microsoft Security Essentials [(!) Désactivé |A jour]
AS: Malwarebytes Anti-Malware : 2.0.2.1012
FW: Windows Firewall [Actif]
SC: Security Center [Actif]
WU: Windows Update [Actif]

################## | Disk Information |

C: (%SystemDrive%) -> Disque fixe # 293 Go (207 Go libre(s) – 71%) [OS] # NTFS
D: -> Disque fixe # 381 Go (355 Go libre(s) – 93%) [Data] # NTFS
F: -> Disque amovible # 4 Go (3 Go libre(s) – 70%) [CHICHOU USB] # FAT32

################## | Autorun |

################## | Recherche générique |

Supprimé! F:Autorun.inf

(!) Fichiers temporaires supprimés. (41.4370021820068 MB)

################## | Registre |

################## | Regedit Run |

F2 – HKLM..Winlogon : [Shell] explorer.exe
F2 – [x64] HKLM..Winlogon : [Shell] explorer.exe
F2 – HKLM..Winlogon : [Userinit] userinit.exe,
F2 – [x64] HKLM..Winlogon : [Userinit] C:Windowssystem32userinit.exe,
04 – HKCU..Run : [Google Update] “C:UserscéliaAppDataLocalGoogleUpdateGoogleUpdate.exe” /c
04 – HKCU..Run : [Sidebar] C:Program FilesWindows Sidebarsidebar.exe /autoRun
04 – HKCU..Run : [GoogleChromeAutoLaunch_488AEF8A4D65172B4570F42DC4429BA4] “C:UserscéliaAppDataLocalGoogleChromeApplicationchrome.exe” –no-startup-window
04 – HKCU..Run : [GarminExpressTrayApp] “C:Program Files (x86)GarminExpress TrayExpressTray.exe”
04 – HKCU..Run : [Skype] “C:Program Files (x86)SkypePhoneSkype.exe” /minimized /regrun
04 – HKLM..Run : [Nuance PDF Reader-reminder] “C:Program Files (x86)NuancePDF ReaderEregEreg.exe” -r “C:ProgramDataNuancePDF ReaderEregEreg.ini”
04 – HKLM..Run : [ASUSPRP] “C:Program Files (x86)ASUSAPRPAPRP.EXE”
04 – HKLM..Run : [ASUSWebStorage] C:Program Files (x86)ASUSASUS WebStorage3.0.84.161AsusWSPanel.exe /S
04 – HKLM..Run : [SonicMasterTray] C:Program Files (x86)ASUSSonic FocusSonicFocusTray.exe
04 – HKLM..Run : [ATKOSD2] C:Program Files (x86)ASUSATK PackageATKOSD2ATKOSD2.exe
04 – HKLM..Run : [ATKMEDIA] C:Program Files (x86)ASUSATK PackageATK MediaDMedia.exe
04 – HKLM..Run : [HControlUser] C:Program Files (x86)ASUSATK PackageATK HotkeyHControlUser.exe
04 – HKLM..Run : [Wireless Console 3] C:Program Files (x86)ASUSWireless Console 3wcourier.exe
04 – HKLM..Run : [UpdateLBPShortCut] “C:Program Files (x86)CyberLinkLabelPrintMUITransferMUIStartMenu.exe” “C:Program Files (x86)CyberLinkLabelPrint” UpdateWithCreateOnce “SoftwareCyberLinkLabelPrint2.5”
04 – HKLM..Run : [UpdateP2GoShortCut] “C:Program Files (x86)CyberLinkPower2GoMUITransferMUIStartMenu.exe” “C:Program Files (x86)CyberLinkPower2Go” UpdateWithCreateOnce “SOFTWARECyberLinkPower2Go6.0”
04 – HKLM..Run : [APSDaemon] “C:Program Files (x86)Common FilesAppleApple Application SupportAPSDaemon.exe”
04 – HKLM..Run : [SunJavaUpdateSched] “C:Program Files (x86)Common FilesJavaJava Updatejusched.exe”
04 – HKLM..Run : [iTunesHelper] “D:iTunesiTunesHelper.exe”
04 – HKLM..Run : [AnyProtect Scanner] “C:Program Files (x86)AnyProtectExAnyProtect.exe”
04 – [x64] HKLM..Run : [VizorHtmlDialog.exe] “C:Program FilesTrend MicroTitaniumUIFrameworkVizorHtmlDialog.exe” “DEF” “EULA” “C:Program FilesTrend MicroTitaniumUIInstaller.cmptresourcespreinstall_01_welcome_trial.html” “DEF” “DEF” “DEF”
04 – [x64] HKLM..Run : [Trend Micro Client Framework] “C:Program FilesTrend MicroUniClientUiFrmWrkUIWatchDog.exe”
04 – [x64] HKLM..Run : [Trend Micro Titanium] C:Program FilesTrend MicroTitaniumVizorShortCut.exe -ReFlush “none” “none”
04 – [x64] HKLM..Run : [IgfxTray] C:Windowssystem32igfxtray.exe
04 – [x64] HKLM..Run : [HotKeysCmds] C:Windowssystem32hkcmd.exe
04 – [x64] HKLM..Run : [Persistence] C:Windowssystem32igfxpers.exe
04 – [x64] HKLM..Run : [RtHDVBg] C:Program FilesRealtekAudioHDARAVBg64.exe /SF3
04 – [x64] HKLM..Run : [ETDCtrl] %ProgramFiles%ElantechETDCtrl.exe
04 – [x64] HKLM..Run : [IntelPAN] “C:Program FilesCommon FilesIntelWirelessCommoniFrmewrk.exe” /tf Intel PAN Tray
04 – [x64] HKLM..Run : [Setwallpaper] c:programdataSetWallpaper.cmd
04 – [x64] HKLM..Run : [Logitech Download Assistant] C:Windowssystem32rundll32.exe C:WindowsSystem32LogiLDA.dll,LogiFetch
04 – [x64] HKLM..Run : [MSC] “C:Program FilesMicrosoft Security Clientmsseces.exe” -hide -runkey
04 – HKUS-1-5-19..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
04 – HKUS-1-5-20..Run : [Sidebar] %ProgramFiles%Windows SidebarSidebar.exe /autoRun
04 – HKUS-1-5-21-1767149129-3618008807-2779493463-1001..Run : [Google Update] “C:UserscéliaAppDataLocalGoogleUpdateGoogleUpdate.exe” /c
04 – HKUS-1-5-21-1767149129-3618008807-2779493463-1001..Run : [Sidebar] C:Program FilesWindows Sidebarsidebar.exe /autoRun
04 – HKUS-1-5-21-1767149129-3618008807-2779493463-1001..Run : [GoogleChromeAutoLaunch_488AEF8A4D65172B4570F42DC4429BA4] “C:UserscéliaAppDataLocalGoogleChromeApplicationchrome.exe” –no-startup-window
04 – HKUS-1-5-21-1767149129-3618008807-2779493463-1001..Run : [GarminExpressTrayApp] “C:Program Files (x86)GarminExpress TrayExpressTray.exe”
04 – HKUS-1-5-21-1767149129-3618008807-2779493463-1001..Run : [Skype] “C:Program Files (x86)SkypePhoneSkype.exe” /minimized /regrun
04 – HKUS-1-5-19..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe
04 – HKUS-1-5-20..RunOnce : [mctadmin] C:WindowsSystem32mctadmin.exe

################## | UsbFix – Information |

Info : Comment supprimer l’infection des raccourcis sur USB ? (Video)
Info : L’infection des raccourcis USB, c’est quoi ?

################## | Hijack |

################## | C: %SystemDrive% – Disque Fixe (NTFS) |

[16/11/2011 – 04:32:38 | N | 0 Ko] – C:Pass.txt
[16/11/2011 – 20:31:44 | N | 13 Ko] – C:devlist.txt
[14/02/2012 – 13:20:43 | N | 0 Ko] – C:BurnHelp.txt
[14/08/2014 – 20:03:39 | ASH | 6222872 Ko] – C:hiberfil.sys
[14/08/2014 – 20:03:49 | ASH | 8297164 Ko] – C:pagefile.sys
[16/11/2011 – 04:31:44 | N | 0 Ko] – C:Finish.log
[16/11/2011 – 20:07:00 | N | 2 Ko] – C:RHDSetup.log
[16/11/2011 – 20:16:15 | N | 0 Ko] – C:setup.log
[16/11/2011 – 20:17:56 | N | 0 Ko] – C:setuplogfile.log
[16/11/2011 – 20:09:15 | N | 0 Ko] – C:usetup.iss
[30/03/2011 – 09:12:29 | N | 0 Ko] – C:RECOVERY.DAT
[19/01/2012 – 15:52:57 | D] – C:ASUS.DAT
[30/05/2011 – 11:59:12 | N | 2560 Ko] – C:K53SC.BIN
[17/06/2011 – 09:20:18 | N | 2560 Ko] – C:K53SV.BIN
[17/06/2011 – 10:21:06 | N | 2560 Ko] – C:K53SJ.BIN
[19/01/2012 – 15:50:50 | D] – C:$Recycle.Bin
[29/07/2009 – 08:03:37 | N | 8 Ko] – C:BOOTSECT.BAK
[31/05/2011 – 04:26:54 | N | 0 Ko] – C:K53SJ_K53SV_K53SC_WIN7.120
[14/07/2009 – 03:38:58 | RASH | 375 Ko] – C:bootmgr
[14/07/2009 – 05:20:08 | D] – C:PerfLogs
[14/07/2009 – 07:08:56 | D] – C:Documents and Settings
[29/07/2009 – 08:03:34 | D] – C:Boot
[16/11/2011 – 20:02:16 | D] – C:Intel
[16/11/2011 – 20:18:02 | D] – C:eSupport
[19/01/2012 – 15:48:25 | D] – C:Recovery
[19/01/2012 – 15:49:58 | D] – C:Users
[19/01/2012 – 18:17:19 | D] – C:MSOCache
[05/02/2012 – 19:33:04 | D] – C:AsusVibeData
[21/07/2013 – 14:49:38 | D] – C:utorrent
[30/06/2014 – 14:49:55 | D] – C:Windows
[07/07/2014 – 20:19:32 | D] – C:Shortcut_Module
[07/07/2014 – 21:22:37 | HD] – C:ProgramData
[07/07/2014 – 21:22:37 | D] – C:Program Files (x86)
[07/07/2014 – 21:22:37 | D] – C:Program Files
[07/07/2014 – 21:22:58 | D] – C:AdwCleaner
[14/08/2014 – 20:27:37 | SHD] – C:System Volume Information
[14/08/2014 – 21:04:03 | D] – C:UsbFix

################## | D: – Disque Fixe (NTFS) |

[21/04/2014 – 16:35:50 | A | 11 Ko] – D:tableau excel_1.xlsx
[19/01/2012 – 15:50:50 | SHD] – D:$RECYCLE.BIN
[16/11/2011 – 19:50:11 | SHD] – D:System Volume Information
[26/01/2012 – 00:21:53 | D] – D:e3d0f242d4ba86f90c0f593d
[08/04/2012 – 13:07:00 | D] – D:PFiles
[14/05/2012 – 12:59:24 | D] – D:Madrid so GUAY
[29/09/2012 – 21:59:45 | D] – D:cadeau anne laure
[29/10/2012 – 17:13:40 | D] – D:iTunes
[11/11/2012 – 15:06:59 | D] – D:Photo portable XPeria
[27/01/2013 – 19:15:08 | D] – D:CV
[26/04/2014 – 18:09:05 | D] – D:HENRI

################## | F: – Disque USB (FAT32) |

[30/11/2013 – 16:55:52 | A | 7298 Ko] – F:Axwell—I-Found-U–Official-Video.mp3
[01/12/2013 – 21:34:02 | A | 8514 Ko] – F:Magenta.mp3
[01/12/2013 – 21:34:56 | A | 8355 Ko] – F:Hey Sexy Lady.mp3
[01/12/2013 – 21:35:46 | A | 13715 Ko] – F:J’ai pas vingt ans.mp3
[01/12/2013 – 21:36:30 | A | 14888 Ko] – F:Blink.mp3
[01/12/2013 – 21:37:56 | A | 8254 Ko] – F:Some Kinda Rush.mp3
[01/12/2013 – 21:38:44 | A | 9693 Ko] – F:Je Suis Music.mp3
[01/12/2013 – 21:39:44 | A | 7764 Ko] – F:Move Your Feet.mp3
[01/12/2013 – 21:40:10 | A | 11711 Ko] – F:Da Funk.mp3
[01/12/2013 – 21:40:50 | A | 8154 Ko] – F:Love To Love You Baby.mp3
[01/12/2013 – 21:41:22 | A | 8500 Ko] – F:Another Brick.mp3
[01/12/2013 – 21:42:24 | A | 9121 Ko] – F:Bleeding Starr.mp3
[01/12/2013 – 21:43:18 | A | 13829 Ko] – F:Unidos Para La Musica.mp3
[01/12/2013 – 21:43:50 | A | 7073 Ko] – F:Call On Me.mp3
[01/12/2013 – 21:44:22 | A | 11169 Ko] – F:Let Me Think About It.mp3
[01/12/2013 – 21:45:18 | A | 19550 Ko] – F:What you Waiting For.mp3
[01/12/2013 – 21:45:58 | A | 20752 Ko] – F:Tell Me Why.mp3
[01/12/2013 – 21:48:12 | A | 7997 Ko] – F:Philosophy.mp3
[01/12/2013 – 21:48:40 | A | 7967 Ko] – F:I’m A Slave For You.mp3
[01/12/2013 – 21:55:56 | A | 7523 Ko] – F:Gold.mp3
[01/12/2013 – 21:58:02 | A | 7302 Ko] – F:I Found You.mp3
[01/12/2013 – 22:05:50 | A | 16822 Ko] – F:California Dreaming 2004.mp3
[01/12/2013 – 22:06:20 | A | 15713 Ko] – F:What I Want.mp3
[01/12/2013 – 22:07:24 | A | 22545 Ko] – F:Break For Love.mp3
[01/12/2013 – 22:07:56 | A | 8985 Ko] – F:Hold That Sucker Down.mp3
[01/12/2013 – 22:08:18 | A | 10130 Ko] – F:The Pulse.mp3
[01/12/2013 – 22:08:48 | A | 13831 Ko] – F:Zdarlight.mp3
[01/12/2013 – 22:09:20 | A | 12072 Ko] – F:Illusion.mp3
[01/12/2013 – 22:09:56 | A | 15421 Ko] – F:Juliet Avalon.mp3
[01/12/2013 – 22:13:44 | A | 8366 Ko] – F:Saxo.mp3
[01/12/2013 – 22:14:26 | A | 9658 Ko] – F:Let Me Love You.mp3
[01/12/2013 – 22:15:52 | A | 10359 Ko] – F:Like A Prayer.mp3
[01/12/2013 – 22:16:30 | A | 8333 Ko] – F:The Weekend.mp3
[01/12/2013 – 22:17:12 | A | 9859 Ko] – F:Drop The Pressure.mp3
[01/12/2013 – 22:17:48 | A | 7928 Ko] – F:Some People.mp3
[01/12/2013 – 22:18:30 | A | 9259 Ko] – F:The Magic Key.mp3
[01/12/2013 – 22:19:08 | A | 8327 Ko] – F:Living On Video.mp3
[01/12/2013 – 22:19:36 | A | 10579 Ko] – F:No Superstar.mp3
[01/12/2013 – 22:19:58 | A | 7076 Ko] – F:Cry For You.mp3
[01/12/2013 – 22:20:28 | A | 9874 Ko] – F:Sensual Seduction.mp3
[01/12/2013 – 22:20:58 | A | 9874 Ko] – F:Snoop-Dogg—Sensual-Seduction.mp3
[01/12/2013 – 22:22:06 | A | 19180 Ko] – F:Four To the Floor.mp3
[01/12/2013 – 22:23:02 | A | 9489 Ko] – F:Lucky Star.mp3
[16/04/2011 – 09:01:32 | A | 2 Ko] – F:BOOTEX.LOG
[01/01/1980 – 00:00:00 | A | 512 Ko] – F:MM_PLAY_TIME.ini
[24/05/2012 – 12:59:08 | A | 31 Ko] – F:CV Célia.doc
[17/05/2012 – 16:26:42 | A | 703396 Ko] – F:Departures.LiMiTED.FRENCH.REPACK.1CD.DVDRip-ATeam.MZISYS.avi
[17/05/2014 – 21:16:24 | SHD] – F:System Volume Information

################## | Vaccin |

C:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
D:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
F:Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

################## | E.O.F | https://www.sosvirus.net/ | http://www.usbfix.net/ |

Delfix:

# DelFix v10.8 – Rapport créé le 14/08/2014 à 21:16:41
# Mis à jour le 29/07/2014 par Xplode
# Nom d’utilisateur : célia – CÉLIA-PC
# Système d’exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)

~ Activation de l’UAC … OK

~ Suppression des outils de désinfection …

Supprimé : C:USBFix
Supprimé : C:Shortcut_Module
Supprimé : C:AdwCleaner
Supprimé : C:UserscéliaAppDataRoamingZHP
Supprimé : C:ProgramDataMicrosoftWindowsStart MenuProgramsZHP
Supprimé : C:Program Files (x86)ZHPDiag
Supprimé : C:UserscéliaDesktopAdwCleaner[S0].txt
Supprimé : C:UserscéliaDesktopadwcleaner_3.214.exe
Supprimé : C:UserscéliaDesktopExtras.Txt
Supprimé : C:UserscéliaDesktopOTL.Txt
Supprimé : C:UserscéliaDesktopOTL.exe
Supprimé : C:UserscéliaDesktopShortcut_Module.exe
Supprimé : C:UserscéliaDesktopShortcut_Module_07_07_2014_15_36_10.txt
Supprimé : C:UserscéliaDesktopUsbFix.lnk
Supprimé : C:UserscéliaDesktopUsbFix1.exe
Supprimé : C:UserscéliaDesktopUsbFix_Report.txt
Supprimé : C:UserscéliaDesktopZHPDiag.lnk
Supprimé : C:UserscéliaDesktopZHPDiag.txt
Supprimé : C:UserscéliaDesktopZHPDiag2.exe
Supprimé : C:UserscéliaDesktopZHPFix.lnk
Supprimée : HKCUSoftwareUSBFix
Supprimée : HKCUSoftwareShortcut_Module
Supprimée : HKLMSOFTWAREOldTimer Tools
Supprimée : HKLMSOFTWAREAdwCleaner
Supprimée : HKLMSOFTWAREShortcut_Module
Supprimée : HKLMSOFTWAREMicrosoftWindowsCurrentVersionUninstallUSBFix
Supprimée : HKLMSOFTWAREMicrosoftWindowsCurrentVersionUninstallZHPDiag_is1

~ Sauvegarde de la base de registre … OK

~ Purge de la restauration système …

Supprimé : RP #235 [Removed BabylonObjectInstaller | 06/30/2014 11:33:03]
Supprimé : RP #236 [Installé PrintEco Office | 06/30/2014 12:00:20]
Supprimé : RP #237 [Supprimé PrintEco Office | 06/30/2014 12:09:44]
Supprimé : RP #238 [Removed Microsoft Visual C++ 2008 Redistributable – x64 9.0.30729.17 | 06/30/2014 12:12:04]
Supprimé : RP #239 [Removed SweetIM for Messenger 3.6 | 06/30/2014 12:13:49]
Supprimé : RP #240 [Removed SweetPacks Toolbar for Internet Explorer 4.4 | 06/30/2014 12:16:02]
Supprimé : RP #241 [Removed ASUS LifeFrame3 | 06/30/2014 12:47:18]
Supprimé : RP #242 [Removed ASUS Live Update | 06/30/2014 12:50:28]
Supprimé : RP #243 [Removed ASUS SmartLogon | 06/30/2014 12:51:37]
Supprimé : RP #244 [Supprimé ASUS Virtual Camera | 06/30/2014 12:54:35]
Supprimé : RP #245 [Windows Update | 07/03/2014 15:00:29]
Supprimé : RP #246 [Windows Update | 07/06/2014 20:48:45]
Supprimé : RP #247 [OTL Restore Point – 08/07/2014 12:50:02 | 07/08/2014 10:50:07]
Supprimé : RP #248 [Windows Update | 07/10/2014 17:03:09]
Supprimé : RP #249 [Windows Update | 07/10/2014 17:20:46]
Supprimé : RP #250 [Windows Update | 07/17/2014 09:37:35]
Supprimé : RP #251 [Windows Update | 07/21/2014 07:35:53]
Supprimé : RP #252 [Windows Update | 07/24/2014 10:06:23]
Supprimé : RP #253 [Windows Update | 07/25/2014 18:45:03]
Supprimé : RP #254 [Windows Update | 08/01/2014 16:57:27]
Supprimé : RP #255 [Windows Update | 08/03/2014 08:17:27]
Supprimé : RP #256 [Windows Update | 08/10/2014 08:25:05]
Supprimé : RP #257 [Windows Update | 08/14/2014 18:27:00]

Nouveau point de restauration créé !

~ Réinitialisation des paramètres système … OK

########## – EOF – ##########