############################## | UsbFix V 7.097 | [Suppression] Utilisateur: Administrateur (Administrateur) # SWEET-32F3C4F13 Mis à jour le 02/09/2012 par El Desaparecido Lancé à 00:18:31 | 27/10/2012 Site Web: http://eldesaparecido.com Forum: http://forum.eldesaparecido.com Fichier suspect ? : http://eldesaparecido.com/upload.php Contact: contact@eldesaparecido.com PC: NEC Computers SAS (ECS-945G) (X86-based PC CPU: Intel(R) Pentium(R) Dual CPU E2200 @ 2.20GHz (2194) RAM -> [Total : 1015 | Free : 633] BIOS: BIOS Date: 02/25/08 10:08:54 Ver: 0.23 BOOT: Normal boot OS: Microsoft Windows XP Professionnel (5.1.2600 32-Bit) # Service Pack 3 WB: Windows Internet Explorer 8.0.6001.18702 SC: Security Center Service [Enabled] WU: Windows Update Service [Enabled] FW: Windows FireWall Service [Enabled] C:\ (%systemdrive%) -> Disque fixe # 149 Go (112 Go libre(s) - 75%) [HDD] # NTFS D:\ -> CD-ROM E:\ -> CD-ROM ################## | Processus Actif | C:\WINDOWS.0\System32\smss.exe (1416) C:\WINDOWS.0\system32\winlogon.exe (152) C:\WINDOWS.0\system32\services.exe (500) C:\WINDOWS.0\system32\lsass.exe (508) C:\WINDOWS.0\system32\svchost.exe (964) C:\WINDOWS.0\System32\svchost.exe (1432) C:\WINDOWS.0\system32\svchost.exe (1476) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (644) C:\WINDOWS.0\system32\spoolsv.exe (1076) C:\Program Files\Java\jre7\bin\jqs.exe (1732) C:\Program Files\Google\Update\GoogleUpdate.exe (1780) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe (188) C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (1916) C:\WINDOWS.0\system32\svchost.exe (928) C:\Program Files\HHVcdV7Sys\VC7SecS.exe (1996) C:\WINDOWS.0\Explorer.EXE (1524) C:\WINDOWS.0\system32\wbem\wmiapsrv.exe (2060) C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe (1808) C:\Program Files\HHVcdV7Sys\VC7Play.exe (1616) C:\Program Files\SiteRanker\SiteRankTray.exe (4004) C:\WINDOWS.0\RTHDCPL.EXE (1264) C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (1928) C:\Program Files\AVAST Software\Avast\avastUI.exe (1824) C:\Program Files\WinMover\WinMover.exe (2196) C:\Documents and Settings\Administrateur.SWEET-32F3C4F13\Local Settings\Application Data\Google\Update\GoogleUpdate.exe (2112) C:\Program Files\SMC\SMCWUSB-G2 Wireless Utility\ZDWlan.exe (3896) C:\WINDOWS.0\system32\wscntfy.exe (668) C:\UsbFix\Go.exe (3516) ################## | Processus Stoppés | Stoppé! C:\Program Files\AVAST Software\Avast\AvastSvc.exe (644) Stoppé! C:\WINDOWS.0\system32\spoolsv.exe (1076) Stoppé! C:\Program Files\Java\jre7\bin\jqs.exe (1732) Stoppé! C:\Program Files\Google\Update\GoogleUpdate.exe (1780) Stoppé! C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe (188) Stoppé! C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (1916) Stoppé! C:\Program Files\HHVcdV7Sys\VC7SecS.exe (1996) Stoppé! C:\WINDOWS.0\Explorer.EXE (1524) Stoppé! C:\WINDOWS.0\system32\wbem\wmiapsrv.exe (2060) Stoppé! C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe (1808) Stoppé! C:\Program Files\HHVcdV7Sys\VC7Play.exe (1616) Stoppé! C:\Program Files\SiteRanker\SiteRankTray.exe (4004) Stoppé! C:\WINDOWS.0\RTHDCPL.EXE (1264) Stoppé! C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe (1928) Stoppé! C:\Program Files\AVAST Software\Avast\avastUI.exe (1824) Stoppé! C:\Program Files\WinMover\WinMover.exe (2196) Stoppé! C:\Documents and Settings\Administrateur.SWEET-32F3C4F13\Local Settings\Application Data\Google\Update\GoogleUpdate.exe (2112) Stoppé! C:\Program Files\SMC\SMCWUSB-G2 Wireless Utility\ZDWlan.exe (3896) Stoppé! C:\WINDOWS.0\system32\wscntfy.exe (668) ################## | Éléments infectieux | Supprimé! C:\Recycler\S-1-5-21-2298220646-1708788293-4193990210-500 Supprimé! C:\Recycler\S-1-5-21-3311270896-1163378935-4105032267-1004 Supprimé! C:\Recycler\S-1-5-21-3311270896-1163378935-4105032267-500 Supprimé! C:\Recycler\S-1-5-21-606747145-706699826-1801674531-500 (!) Fichiers temporaires supprimés. ################## | Registre | Supprimé! HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoRecentDocsHistory Supprimé! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoRecentDocsHistory Supprimé! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoRecentDocsMenu Supprimé! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoResolveSearch Supprimé! HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\explorer|NoSMHelp ################## | Mountpoints2 | Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\G Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{063e3480-291b-11df-8172-0013f7aa18ef} Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{d0468800-edbd-11e0-85e9-001e90477a1f} Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{d0468803-edbd-11e0-85e9-001e90477a1f} Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{d06d239e-7202-11df-8210-001d1a06d8cf} ################## | Listing | [27/11/2009 - 19:45:57 | N | 16299862] C:\$Persi0.sys [26/10/2012 - 22:26:15 | N | 9939] C:\AdwCleaner[R1].txt [26/10/2012 - 22:27:09 | N | 9999] C:\AdwCleaner[R2].txt [26/10/2012 - 22:29:15 | N | 9220] C:\AdwCleaner[S1].txt [27/09/2009 - 12:37:04 | N | 0] C:\AUTOEXEC.BAT [27/10/2012 - 00:17:37 | RASHD ] C:\Autorun.inf [07/12/2010 - 11:28:20 | N | 90] C:\bcmwl5.log [14/04/2012 - 15:37:40 | N | 216] C:\boot.ini [14/04/2008 - 14:00:00 | N | 4952] C:\Bootfont.bin [23/09/2008 - 06:01:14 | | 1364] C:\changelog_MassStorage.txt [01/08/2010 - 15:33:59 | N | 74] C:\CMLoader.log [17/10/2012 - 21:13:35 | D ] C:\Config.Msi [27/09/2009 - 12:37:04 | N | 0] C:\CONFIG.SYS [27/11/2009 - 19:45:02 | N | 0] C:\dfinstall.log [27/05/2012 - 18:15:22 | D ] C:\Documents and Settings [22/10/2009 - 15:48:07 | D ] C:\Drivers [03/08/2012 - 02:13:02 | N | 9] C:\END [02/03/2012 - 22:46:21 | D ] C:\found.000 [26/10/2012 - 23:53:41 | D ] C:\FyK [26/10/2012 - 23:53:43 | N | 1193] C:\FyK_Kill.txt [26/10/2012 - 23:22:16 | N | 1191] C:\FyK_Scan.txt [26/09/2009 - 15:58:43 | ASH | 1073074176] C:\hiberfil.sys [05/10/2011 - 02:11:16 | D ] C:\Hotspot Shield [26/02/2009 - 16:16:09 | D ] C:\Intel [23/04/1999 - 23:22:00 | N | 222390] C:\io.sys [23/04/1999 - 23:22:00 | N | 9] C:\msdos.sys [27/09/2009 - 12:45:58 | RHD ] C:\MSOCache [14/04/2008 - 14:00:00 | N | 47564] C:\NTDETECT.COM [14/04/2008 - 14:00:00 | N | 252240] C:\ntldr [22/10/2012 - 22:17:45 | D ] C:\NVIDIA [26/10/2012 - 23:52:04 | ASH | 2097152000] C:\pagefile.sys [28/02/2011 - 21:47:56 | D ] C:\PFiles [27/02/2009 - 02:07:04 | D ] C:\PNP [26/10/2012 - 22:29:09 | D ] C:\Program Files [30/10/2009 - 22:03:03 | D ] C:\ProgramData [27/10/2012 - 00:19:29 | SHD ] C:\RECYCLER [26/02/2009 - 16:16:08 | N | 575] C:\RHDSetup.log [26/10/2012 - 22:59:09 | N | 630] C:\RstAssociations.txt [27/10/2012 - 00:05:07 | N | 699] C:\RstHosts.txt [07/12/2010 - 11:28:07 | D ] C:\SWSetup [30/01/2011 - 15:27:27 | SHD ] C:\System Volume Information [21/10/2012 - 20:24:18 | N | 174906] C:\TDSSKiller.2.8.13.0_21.10.2012_20.21.08_log.txt [21/10/2012 - 20:27:40 | N | 86280] C:\TDSSKiller.2.8.13.0_21.10.2012_20.26.59_log.txt [21/10/2012 - 20:22:50 | D ] C:\TDSSKiller_Quarantine [01/08/2012 - 19:13:16 | N | 184700] C:\torrent.exe [27/10/2012 - 00:19:29 | D ] C:\UsbFix [27/10/2012 - 00:21:07 | A | 4608] C:\UsbFix.txt [29/12/2009 - 13:12:37 | D ] C:\windows [21/10/2012 - 20:25:11 | D ] C:\WINDOWS.0 [26/10/2012 - 20:04:47 | D ] C:\ZHP [10/06/2010 - 11:57:18 | D ] C:\ZMSoft ################## | Vaccin | C:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido) ################## | Upload | Veuillez envoyer le fichier: C:\UsbFix_Upload_Me_SWEET-32F3C4F13.zip http://eldesaparecido.com/upload.php Merci de votre contribution. ################## | E.O.F |