bonjour,
voilà pour le ien ,
############################## | UsbFix V 7.069 | [Suppression]
Utilisateur: david (Administrateur) # DAVID-TOSH
Mis à jour le 20/11/2011 par El Desaparecido
Lancé à 22:08:08 | 22/11/2011
Site Web: http://eldesaparecido.com
Fichier suspect ? : http://eldesaparecido.com/support.php
Contact: contact@eldesaparecido.com
PC: TOSHIBA (Satellite L670) (x64-based PC) # Notebook
CPU: Intel(R) Pentium(R) CPU P6100 @ 2.00GHz (1999)
RAM -> [ Total : 2931 | Free : 1447 ]
BIOS: Phoenix SecureCore Version 2.10
BOOT: Normal boot
OS: Microsoft Windows 7 Édition Familiale Premium (6.1.7600 64-Bit) #
WB: Windows Internet Explorer 8.0.7600.16385
SC: Security Center Service [ Enabled ]
WU: Windows Update Service [ Enabled ]
AV: BitDefender Antivirus [ Enabled | Updated ]
FW: Windows FireWall Service [ Enabled ]
C:\ (%systemdrive%) -> Disque fixe # 149 Go (76 Go libre(s) - 51%) [WINDOWS] # NTFS
D:\ -> Disque fixe # 148 Go (140 Go libre(s) - 94%) [Data] # NTFS
E:\ -> CD-ROM
G:\ -> Disque fixe # 128 Go (16 Go libre(s) - 12%) [] # NTFS
################## | Processus Actif |
C:\Windows\system32\csrss.exe (492)
C:\Windows\system32\wininit.exe (560)
C:\Windows\system32\csrss.exe (584)
C:\Windows\system32\services.exe (616)
C:\Windows\system32\lsass.exe (636)
C:\Windows\system32\lsm.exe (644)
C:\Windows\system32\svchost.exe (756)
C:\Windows\system32\svchost.exe (820)
C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe (872)
C:\Windows\system32\winlogon.exe (912)
C:\Windows\System32\svchost.exe (408)
C:\Windows\System32\svchost.exe (520)
C:\Windows\system32\svchost.exe (420)
C:\Windows\system32\svchost.exe (1108)
C:\Windows\system32\svchost.exe (1224)
C:\Windows\System32\spoolsv.exe (1432)
C:\Windows\system32\svchost.exe (1460)
C:\Windows\system32\svchost.exe (1548)
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (1580)
c:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe (1732)
C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (1816)
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (2004)
C:\Windows\system32\svchost.exe (2072)
C:\Windows\system32\TODDSrv.exe (2096)
C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe (2128)
C:\Program Files\TOSHIBA\TECO\TecoService.exe (2220)
C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe (2252)
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (2308)
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (2436)
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (2592)
C:\Windows\system32\wbem\wmiprvse.exe (2692)
C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE (2740)
C:\Windows\system32\SearchIndexer.exe (2860)
C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe (3248)
C:\Windows\system32\Dwm.exe (3328)
C:\Windows\system32\taskhost.exe (3408)
C:\Windows\Explorer.EXE (3604)
C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe (3804)
C:\Program Files\TOSHIBA\Registration\ToshibaReminder.exe (3896)
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (3920)
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (3976)
C:\Windows\System32\igfxpers.exe (3996)
C:\Windows\System32\igfxtray.exe (3116)
C:\Windows\System32\hkcmd.exe (3184)
C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe (984)
C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe (4128)
C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe (4428)
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (4628)
C:\Windows\System32\svchost.exe (4820)
C:\Program Files\Windows Media Player\wmpnetwk.exe (3548)
C:\Windows\system32\taskeng.exe (5104)
C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe (4984)
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe (488)
C:\Windows\system32\DllHost.exe (5248)
C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe (5396)
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe (1012)
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe (4340)
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (5584)
C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe (5892)
C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe (5828)
C:\Windows\system32\wuauclt.exe (3396)
C:\Program Files (x86)\VideoLAN\VLC\vlc.exe (1472)
C:\Program Files (x86)\Windows Media Player\wmplayer.exe (4296)
C:\Users\david\AppData\Local\Google\Chrome\Application\chrome.exe (3452)
C:\Users\david\AppData\Local\Google\Chrome\Application\chrome.exe (3440)
C:\Users\david\AppData\Local\Google\Chrome\Application\chrome.exe (1700)
C:\Users\david\AppData\Local\Google\Chrome\Application\chrome.exe (5884)
C:\Windows\SysWOW64\rundll32.exe (6028)
C:\Users\david\AppData\Local\Google\Chrome\Application\chrome.exe (1768)
C:\UsbFix\UsbFix.exe (3584)
C:\Windows\system32\wbem\wmiprvse.exe (4460)
C:\Windows\system32\WUDFHost.exe (1980)
C:\Windows\System32\svchost.exe (2008)
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe (3740)
################## | Processus Stoppés |
Stoppé! C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe (872)
Stoppé! C:\Windows\System32\spoolsv.exe (1432)
Stoppé! C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (1580)
Stoppé! c:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe (1732)
Stoppé! C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (1816)
Stoppé! C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (2004)
Stoppé! C:\Windows\system32\TODDSrv.exe (2096)
Stoppé! C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe (2128)
Stoppé! C:\Program Files\TOSHIBA\TECO\TecoService.exe (2220)
Stoppé! C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe (2252)
Stoppé! C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (2308)
Stoppé! C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (2436)
Stoppé! C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (2592)
Stoppé! C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE (2740)
Stoppé! C:\Windows\system32\SearchIndexer.exe (2860)
Stoppé! C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe (3248)
Stoppé! C:\Windows\system32\taskhost.exe (3408)
Stoppé! C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe (3804)
Stoppé! C:\Program Files\TOSHIBA\Registration\ToshibaReminder.exe (3896)
Stoppé! C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (3920)
Stoppé! C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (3976)
Stoppé! C:\Windows\System32\igfxpers.exe (3996)
Stoppé! C:\Windows\System32\igfxtray.exe (3116)
Stoppé! C:\Windows\System32\hkcmd.exe (3184)
Stoppé! C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe (984)
Stoppé! C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe (4428)
Stoppé! C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (4628)
Stoppé! C:\Program Files\Windows Media Player\wmpnetwk.exe (3548)
Stoppé! C:\Windows\system32\taskeng.exe (5104)
Stoppé! C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe (4984)
Stoppé! C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe (488)
Stoppé! C:\Windows\system32\DllHost.exe (5248)
Stoppé! C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe (5396)
Stoppé! C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe (1012)
Stoppé! C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe (4340)
Stoppé! C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (5584)
Stoppé! C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe (5892)
Stoppé! C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe (5828)
Stoppé! C:\Windows\system32\wuauclt.exe (3396)
Stoppé! C:\Program Files (x86)\VideoLAN\VLC\vlc.exe (1472)
Stoppé! C:\Program Files (x86)\Windows Media Player\wmplayer.exe (4296)
Stoppé! C:\Users\david\AppData\Local\Google\Chrome\Application\chrome.exe (3452)
Stoppé! C:\Windows\system32\WUDFHost.exe (1980)
Stoppé! C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe (3740)
################## | Éléments infectieux |
Supprimé! C:\$RECYCLE.BIN\S-1-5-21-2318277399-3833478585-1141259739-1001
Supprimé! C:\$RECYCLE.BIN\S-1-5-21-2318277399-3833478585-1141259739-500
Supprimé! D:\$RECYCLE.BIN\S-1-5-21-2318277399-3833478585-1141259739-1001
Supprimé! D:\$RECYCLE.BIN\S-1-5-21-2318277399-3833478585-1141259739-500
(!) Fichiers temporaires supprimés.
################## | Registre |
################## | Mountpoints2 |
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{643499b5-f955-11e0-8034-1c7508707682}
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{69248a80-0b9b-11e1-96f3-1c7508707682}
################## | Listing |
[22/11/2011 - 22:12:29 | SHD ] C:\$RECYCLE.BIN
[22/11/2011 - 12:23:40 | N | 2939] C:\AdwCleaner[R1].txt
[22/11/2011 - 12:38:39 | N | 3121] C:\AdwCleaner[R2].txt
[22/11/2011 - 13:21:52 | N | 1420] C:\AdwCleaner[R3].txt
[22/11/2011 - 12:27:19 | N | 311] C:\AdwCleaner[S1].txt
[22/11/2011 - 12:37:45 | N | 315] C:\AdwCleaner[S2].txt
[22/11/2011 - 12:38:52 | N | 2685] C:\AdwCleaner[S3].txt
[22/11/2011 - 13:22:10 | N | 1573] C:\AdwCleaner[S4].txt
[22/11/2011 - 15:30:51 | N | 79563] C:\bdlog.txt
[14/07/2009 - 06:08:56 | SHD ] C:\Documents and Settings
[21/11/2011 - 11:27:04 | D ] C:\Expat Shield
[22/11/2011 - 17:50:20 | ASH | 2304774144] C:\hiberfil.sys
[12/10/2011 - 19:15:17 | D ] C:\Intel
[22/11/2011 - 17:50:21 | ASH | 3073032192] C:\pagefile.sys
[21/11/2011 - 17:45:16 | N | 512] C:\PhysicalDisk0_MBR.bin
[04/11/2011 - 18:02:48 | D ] C:\Program Files
[21/11/2011 - 19:47:47 | D ] C:\Program Files (x86)
[21/11/2011 - 19:47:47 | HD ] C:\ProgramData
[12/10/2011 - 19:23:25 | N | 3155] C:\RHDSetup.log
[23/06/2010 - 13:13:40 | N | 229] C:\SWSTAMP.TXT
[18/11/2011 - 11:11:29 | SHD ] C:\System Volume Information
[12/10/2011 - 19:44:43 | D ] C:\Toshiba
[22/11/2011 - 22:12:29 | D ] C:\UsbFix
[22/11/2011 - 22:09:52 | A | 10337] C:\UsbFix.txt
[29/10/2011 - 11:32:40 | D ] C:\Users
[21/11/2011 - 19:47:47 | D ] C:\Windows
[21/11/2011 - 17:45:18 | D ] C:\ZHP
[22/11/2011 - 22:12:29 | SHD ] D:\$RECYCLE.BIN
[13/10/2011 - 04:35:11 | D ] D:\HDDRecovery
[12/10/2011 - 19:10:57 | SHD ] D:\System Volume Information
################## | Vaccin |
C:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
D:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
################## | Upload |
Veuillez envoyer le fichier: C:\UsbFix_Upload_Me_DAVID-TOSH.zip
http://eldesaparecido.com/upload.htmlp
Merci de votre contribution.
################## | Reboot |
L'ordinateur à été redémarré!
################## | E.O.F |