Message au démarrage Échec du chargement du script " D:/Bin.doc"
Résolu
nmf
Messages postés
5
Statut
Membre
-
yenayer -
yenayer -
Aprés nettoyage avec USBFix voici le rapport :
[b]############################## | UsbFix V 7.807 | [Nettoyage][/b]
Utilisateur: vaio (Administrateur) # VAIO-VAIO
Mis à jour le 18/12/2014 par El Desaparecido - SosVirus
Lancé à 10:14:34 | 03/01/2015
Site Web : [url=http://www.usbfix.net/]https://www.usbfix.net/[/url]
Changelog : [url=http://www.usbfix.net/maj/]https://www.usb-antivirus.com/fr/maj/[/url]
Assistance : [url=http://www.sosvirus.net/forum-virus-securite.html]https://depannageinformatique.org/acheter/reservation/?f=6[/url]
Upload Malware : [url=http://www.sosvirus.net/upload_malware.php]http://www.sosvirus.net/upload_malware.php[/url]
Détection en Live : [url=http://comment-supprimer.fr/]http://comment-supprimer.fr/[/url]
Contact : [url=http://www.usbfix.net/contact/]https://www.usb-antivirus.com/fr/contact/[/url]
[b]################## | System information |[/b]
MB: Sony Corporation (VAIO)
CPU: Intel(R) Pentium(R) CPU P6100 @ 2.00GHz
GC: ATI Mobility Radeon HD 5470
RAM -> [Total : 3950 Mo | Free : 1462 Mo]
Bios: American Megatrends Inc.
Boot: Normal boot
OS: Microsoft(TM) Windows 7 Home Premium (6.1.7601 64-Bit) Service Pack 1
WB: Internet Explorer : 11.00.9600.16428
WB: Google Chrome : 39.0.2171.95
WB: Mozilla Firefox : 33.0.2
[b]################## | Security Information |[/b]
AV: AVG AntiVirus Free Edition 2015 [Actif |A jour]
AS: Windows Defender [[b](!) Désactivé[/b] |[b](!) Non à jour[/b]]
AS: AVG AntiVirus Free Edition 2015 [Actif |A jour]
FW: Windows Firewall [Actif]
SC: Security Center [Actif]
WU: Windows Update [Actif]
[b]################## | Disk Information |[/b]
C:\ (%SystemDrive%) -> Disque fixe # 156 Go (55 Go libre(s) - 36%) [] # NTFS
E:\ -> Disque fixe # 129 Go (18 Go libre(s) - 14%) [Disque local ] # NTFS
F:\ -> CD-ROM # 257 Mo (0 Mo libre(s) - 0%) [AGU] # CDFS
G:\ -> Disque amovible # 4 Go (4 Go libre(s) - 100%) [NGOR] # FAT32
[b]################## | Recherche générique |[/b]
Supprimé! C:\Users\vaio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Start.lnk
(!) Fichiers temporaires supprimés. (474.006350517273 MB)
[b]################## | Registre |[/b]
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe
[b]################## | Regedit Run |[/b]
F2 - HKLM\..\Winlogon : [Shell] explorer.exe
F2 - [x64] HKLM\..\Winlogon : [Shell] explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] c:\windows\syswow64\userinit.exe,
F2 - [x64] HKLM\..\Winlogon : [Userinit] C:\Windows\system32\userinit.exe,
04 - HKCU\..\Run : [Google Update] "C:\Users\vaio\AppData\Local\Google\Update\GoogleUpdate.exe" /c
04 - HKCU\..\Run : [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
04 - HKCU\..\Run : [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
04 - HKCU\..\Run : [GoogleChromeAutoLaunch_C9F53FA431EBBDFE3A86E30C895D00E1] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
04 - HKLM\..\Run : [AVG_UI] "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
04 - HKLM\..\Run : [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
04 - HKU\S-1-5-19\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-21-2449437528-3020876798-923584576-1000\..\Run : [Google Update] "C:\Users\vaio\AppData\Local\Google\Update\GoogleUpdate.exe" /c
04 - HKU\S-1-5-21-2449437528-3020876798-923584576-1000\..\Run : [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
04 - HKU\S-1-5-21-2449437528-3020876798-923584576-1000\..\Run : [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
04 - HKU\S-1-5-21-2449437528-3020876798-923584576-1000\..\Run : [GoogleChromeAutoLaunch_C9F53FA431EBBDFE3A86E30C895D00E1] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
04 - HKU\S-1-5-19\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-18\..\RunOnce : [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"https://support.microsoft.com/en-us/windows/install-windows-7-service-pack-1-sp1-b3da2c0f-cdb6-0572-8596-bab972897f61" /build:7601
04GS - AccuWeather.lnk : C:\Program Files (x86)\AccuWeather.com Stratus\AccuWeather.com Stratus.exe
[b]################## | UsbFix - Information |[/b]
Info : [url=https://www.youtube.com/watch?v=vUZYYASd7FE]Comment supprimer l'infection des raccourcis sur USB ? (Video)[/url]
Info : [url=http://www.usbfix.net/2014/10/supprimer-virus-raccourcis-usb/]L'infection des raccourcis USB, c'est quoi ?[/url]
Détection en Live : [url=http://comment-supprimer.fr/]http://comment-supprimer.fr/[/url]
[b]################## | Hijack |[/b]
Restauré! [N] G:\~WRL0003.tmp
Restauré! [N] G:\~WRL0001.tmp
[b]################## | C:\ %SystemDrive% - Disque Fixe (NTFS) |[/b]
[25/12/2013 - 18:23:12 | A | 145 Ko] - C:\test.xml
[03/01/2015 - 09:57:22 | ASH | 4044908 Ko] - C:\hiberfil.sys
[03/01/2015 - 09:57:22 | ASH | 4044908 Ko] - C:\pagefile.sys
[05/09/2013 - 12:44:39 | N | 512 Ko] - C:\ntuser.dat{ca29a011-1610-11e3-a697-c0cb38d56eb4}.TMContainer00000000000000000001.regtrans-ms
[05/09/2013 - 12:44:39 | N | 512 Ko] - C:\ntuser.dat{ca29a011-1610-11e3-a697-c0cb38d56eb4}.TMContainer00000000000000000002.regtrans-ms
[28/12/2014 - 21:20:37 | D] - C:\Config.Msi
[31/05/2014 - 07:14:26 | A | 0 Ko] - [[url=https://www.virustotal.com/file/78cde9e212975173cb6868ea88559226249730a54e57dae7cd6c260765e004ef/analysis/1398554142/]VirusTotal[/url] - (0/51)] - C:\AVScanner.ini
[16/01/2014 - 00:42:40 | A | 594 Ko] - [[url=https://www.virustotal.com/file/fdd525dbcc1a3cef4fd02220b0b8b2d1113e9663ccadda1ef5fbc073ef2209b2/analysis/1419754772/]VirusTotal[/url] - (0/56)] - C:\SecurityScanner.dll
[05/09/2013 - 12:44:39 | N | 64 Ko] - C:\ntuser.dat{ca29a011-1610-11e3-a697-c0cb38d56eb4}.TM.blf
[18/01/2014 - 19:23:29 | SHD] - C:\$Recycle.Bin
[03/03/2014 - 20:54:37 | A | 1 Ko] - C:\PhysicalDisk0_MBR.bin
[14/07/2009 - 03:20:08 | D] - C:\PerfLogs
[14/07/2009 - 05:08:56 | SHD] - C:\Documents and Settings
[05/08/2010 - 12:05:03 | D] - C:\Documentation
[05/08/2010 - 12:41:10 | D] - C:\VAIO Sample Contents
[15/04/2011 - 18:19:22 | D] - C:\9db3f8978c9c47d3a8af02fede55
[28/06/2011 - 15:11:43 | D] - C:\12ee2f41e8b9f601451a7f
[22/09/2011 - 00:13:57 | D] - C:\8935941477b9dbf46e80
[27/11/2011 - 02:58:49 | D] - C:\Pack DFC JLogiciels
[04/12/2011 - 15:11:40 | D] - C:\Temp
[12/02/2012 - 15:16:25 | D] - C:\MyBackup
[19/05/2013 - 16:35:58 | RHD] - C:\MSOCache
[10/10/2013 - 14:26:42 | D] - C:\833558cd4de2c519555cf867
[01/12/2013 - 15:06:13 | RD] - C:\Users
[01/01/2014 - 09:18:50 | D] - C:\VAIO Entertainment
[23/02/2014 - 07:15:10 | D] - C:\Downloads
[06/06/2014 - 18:37:42 | D] - C:\Program Files
[15/10/2014 - 21:41:29 | D] - C:\2ff65d28ae71e470e2727fe31524cf70
[09/11/2014 - 18:29:28 | D] - C:\Cambridge
[13/11/2014 - 18:58:47 | RD] - C:\Program Files (x86)
[15/11/2014 - 09:19:22 | D] - C:\$AVG
[09/12/2014 - 19:46:04 | HD] - C:\ProgramData
[20/12/2014 - 10:09:03 | D] - C:\Windows
[21/12/2014 - 22:32:50 | D] - C:\60dc757c49839ab89e
[28/12/2014 - 21:20:45 | D] - C:\Update
[03/01/2015 - 10:14:15 | D] - C:\UsbFix
[b]################## | E:\ - Disque Fixe (NTFS) |[/b]
[03/11/2013 - 20:41:42 | A | 1576 Ko] - E:\La priere de l'éclipse.pdf
[26/12/2013 - 10:29:32 | A | 1552 Ko] - E:\Organisation d'un laboratoire d'étalonnage.pdf
[13/02/2011 - 19:02:53 | RA | 1 Ko] - E:\MediaID.bin
[18/01/2014 - 19:22:48 | SHD] - E:\$RECYCLE.BIN
[07/11/2014 - 12:57:09 | D] - E:\Dr. FAYE
[14/11/2013 - 11:55:23 | D] - E:\RELIGION
[02/03/2014 - 13:36:08 | D] - E:\DOCUMENTAIRE
[20/03/2014 - 20:49:23 | D] - E:\MUSIQUE
[24/05/2014 - 22:12:02 | D] - E:\Nouveau dossier (2)
[14/07/2014 - 21:16:14 | D] - E:\Marianne
[20/07/2014 - 19:38:10 | D] - E:\UTILITAIRES
[05/09/2014 - 21:20:14 | D] - E:\Cambridge - English In Use Complete Collection [Books & CD-ROMs]
[20/10/2014 - 18:52:24 | D] - E:\DV 2016
[24/10/2014 - 20:02:45 | D] - E:\MANEGEMENT QUALITE
[25/10/2014 - 10:19:22 | D] - E:\CULTURE SERERE
[06/11/2014 - 19:28:47 | RD] - E:\MES LIVRES
[10/11/2014 - 22:05:32 | D] - E:\SYSTEME DOCUMENTAIRE 18 08 2014
[07/12/2014 - 17:11:07 | D] - E:\PHOTO
[20/12/2014 - 19:14:24 | D] - E:\REGLEMENTATION
[31/12/2014 - 22:43:54 | D] - E:\DIVERS
[b]################## | G:\ - Disque USB (FAT32) |[/b]
[21/11/2014 - 17:19:12 | N | 94 Ko] - G:\~WRL0001.tmp
[17/12/2014 - 12:57:08 | N | 97 Ko] - G:\~WRL0003.tmp
[26/12/2014 - 17:05:10 | A | 18 Ko] - G:\ORGANISATION INTERNATIONALE BASEE A ABIDJAN.docx
[08/11/2014 - 21:10:38 | A | 37 Ko] - G:\Chimie Physique en 23 fiches.doc
[29/12/2014 - 18:50:06 | A | 95 Ko] - G:\Ngor Mack FAYE - CV (PR).doc
[02/01/2015 - 12:42:52 | A | 43 Ko] - G:\Ngor Mack FAYE - LM (PR).doc
[02/01/2015 - 13:06:00 | A | 96 Ko] - G:\Ngor Mack FAYE - CV (RQ).doc
[b]################## | Vaccin |[/b]
C:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
E:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
G:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
[b]################## | E.O.F | [url=http://www.sosvirus.net/]https://www.sosvirus.net/[/url] | [url=http://www.usbfix.net/]https://www.usbfix.net/[/url] |[/b]
[b]############################## | UsbFix V 7.807 | [Nettoyage][/b]
Utilisateur: vaio (Administrateur) # VAIO-VAIO
Mis à jour le 18/12/2014 par El Desaparecido - SosVirus
Lancé à 10:14:34 | 03/01/2015
Site Web : [url=http://www.usbfix.net/]https://www.usbfix.net/[/url]
Changelog : [url=http://www.usbfix.net/maj/]https://www.usb-antivirus.com/fr/maj/[/url]
Assistance : [url=http://www.sosvirus.net/forum-virus-securite.html]https://depannageinformatique.org/acheter/reservation/?f=6[/url]
Upload Malware : [url=http://www.sosvirus.net/upload_malware.php]http://www.sosvirus.net/upload_malware.php[/url]
Détection en Live : [url=http://comment-supprimer.fr/]http://comment-supprimer.fr/[/url]
Contact : [url=http://www.usbfix.net/contact/]https://www.usb-antivirus.com/fr/contact/[/url]
[b]################## | System information |[/b]
MB: Sony Corporation (VAIO)
CPU: Intel(R) Pentium(R) CPU P6100 @ 2.00GHz
GC: ATI Mobility Radeon HD 5470
RAM -> [Total : 3950 Mo | Free : 1462 Mo]
Bios: American Megatrends Inc.
Boot: Normal boot
OS: Microsoft(TM) Windows 7 Home Premium (6.1.7601 64-Bit) Service Pack 1
WB: Internet Explorer : 11.00.9600.16428
WB: Google Chrome : 39.0.2171.95
WB: Mozilla Firefox : 33.0.2
[b]################## | Security Information |[/b]
AV: AVG AntiVirus Free Edition 2015 [Actif |A jour]
AS: Windows Defender [[b](!) Désactivé[/b] |[b](!) Non à jour[/b]]
AS: AVG AntiVirus Free Edition 2015 [Actif |A jour]
FW: Windows Firewall [Actif]
SC: Security Center [Actif]
WU: Windows Update [Actif]
[b]################## | Disk Information |[/b]
C:\ (%SystemDrive%) -> Disque fixe # 156 Go (55 Go libre(s) - 36%) [] # NTFS
E:\ -> Disque fixe # 129 Go (18 Go libre(s) - 14%) [Disque local ] # NTFS
F:\ -> CD-ROM # 257 Mo (0 Mo libre(s) - 0%) [AGU] # CDFS
G:\ -> Disque amovible # 4 Go (4 Go libre(s) - 100%) [NGOR] # FAT32
[b]################## | Recherche générique |[/b]
Supprimé! C:\Users\vaio\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Start.lnk
(!) Fichiers temporaires supprimés. (474.006350517273 MB)
[b]################## | Registre |[/b]
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe
Supprimé! HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe
[b]################## | Regedit Run |[/b]
F2 - HKLM\..\Winlogon : [Shell] explorer.exe
F2 - [x64] HKLM\..\Winlogon : [Shell] explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] c:\windows\syswow64\userinit.exe,
F2 - [x64] HKLM\..\Winlogon : [Userinit] C:\Windows\system32\userinit.exe,
04 - HKCU\..\Run : [Google Update] "C:\Users\vaio\AppData\Local\Google\Update\GoogleUpdate.exe" /c
04 - HKCU\..\Run : [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
04 - HKCU\..\Run : [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
04 - HKCU\..\Run : [GoogleChromeAutoLaunch_C9F53FA431EBBDFE3A86E30C895D00E1] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
04 - HKLM\..\Run : [AVG_UI] "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
04 - HKLM\..\Run : [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
04 - HKU\S-1-5-19\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-20\..\Run : [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
04 - HKU\S-1-5-21-2449437528-3020876798-923584576-1000\..\Run : [Google Update] "C:\Users\vaio\AppData\Local\Google\Update\GoogleUpdate.exe" /c
04 - HKU\S-1-5-21-2449437528-3020876798-923584576-1000\..\Run : [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
04 - HKU\S-1-5-21-2449437528-3020876798-923584576-1000\..\Run : [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
04 - HKU\S-1-5-21-2449437528-3020876798-923584576-1000\..\Run : [GoogleChromeAutoLaunch_C9F53FA431EBBDFE3A86E30C895D00E1] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
04 - HKU\S-1-5-19\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-20\..\RunOnce : [mctadmin] C:\Windows\System32\mctadmin.exe
04 - HKU\S-1-5-18\..\RunOnce : [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"https://support.microsoft.com/en-us/windows/install-windows-7-service-pack-1-sp1-b3da2c0f-cdb6-0572-8596-bab972897f61" /build:7601
04GS - AccuWeather.lnk : C:\Program Files (x86)\AccuWeather.com Stratus\AccuWeather.com Stratus.exe
[b]################## | UsbFix - Information |[/b]
Info : [url=https://www.youtube.com/watch?v=vUZYYASd7FE]Comment supprimer l'infection des raccourcis sur USB ? (Video)[/url]
Info : [url=http://www.usbfix.net/2014/10/supprimer-virus-raccourcis-usb/]L'infection des raccourcis USB, c'est quoi ?[/url]
Détection en Live : [url=http://comment-supprimer.fr/]http://comment-supprimer.fr/[/url]
[b]################## | Hijack |[/b]
Restauré! [N] G:\~WRL0003.tmp
Restauré! [N] G:\~WRL0001.tmp
[b]################## | C:\ %SystemDrive% - Disque Fixe (NTFS) |[/b]
[25/12/2013 - 18:23:12 | A | 145 Ko] - C:\test.xml
[03/01/2015 - 09:57:22 | ASH | 4044908 Ko] - C:\hiberfil.sys
[03/01/2015 - 09:57:22 | ASH | 4044908 Ko] - C:\pagefile.sys
[05/09/2013 - 12:44:39 | N | 512 Ko] - C:\ntuser.dat{ca29a011-1610-11e3-a697-c0cb38d56eb4}.TMContainer00000000000000000001.regtrans-ms
[05/09/2013 - 12:44:39 | N | 512 Ko] - C:\ntuser.dat{ca29a011-1610-11e3-a697-c0cb38d56eb4}.TMContainer00000000000000000002.regtrans-ms
[28/12/2014 - 21:20:37 | D] - C:\Config.Msi
[31/05/2014 - 07:14:26 | A | 0 Ko] - [[url=https://www.virustotal.com/file/78cde9e212975173cb6868ea88559226249730a54e57dae7cd6c260765e004ef/analysis/1398554142/]VirusTotal[/url] - (0/51)] - C:\AVScanner.ini
[16/01/2014 - 00:42:40 | A | 594 Ko] - [[url=https://www.virustotal.com/file/fdd525dbcc1a3cef4fd02220b0b8b2d1113e9663ccadda1ef5fbc073ef2209b2/analysis/1419754772/]VirusTotal[/url] - (0/56)] - C:\SecurityScanner.dll
[05/09/2013 - 12:44:39 | N | 64 Ko] - C:\ntuser.dat{ca29a011-1610-11e3-a697-c0cb38d56eb4}.TM.blf
[18/01/2014 - 19:23:29 | SHD] - C:\$Recycle.Bin
[03/03/2014 - 20:54:37 | A | 1 Ko] - C:\PhysicalDisk0_MBR.bin
[14/07/2009 - 03:20:08 | D] - C:\PerfLogs
[14/07/2009 - 05:08:56 | SHD] - C:\Documents and Settings
[05/08/2010 - 12:05:03 | D] - C:\Documentation
[05/08/2010 - 12:41:10 | D] - C:\VAIO Sample Contents
[15/04/2011 - 18:19:22 | D] - C:\9db3f8978c9c47d3a8af02fede55
[28/06/2011 - 15:11:43 | D] - C:\12ee2f41e8b9f601451a7f
[22/09/2011 - 00:13:57 | D] - C:\8935941477b9dbf46e80
[27/11/2011 - 02:58:49 | D] - C:\Pack DFC JLogiciels
[04/12/2011 - 15:11:40 | D] - C:\Temp
[12/02/2012 - 15:16:25 | D] - C:\MyBackup
[19/05/2013 - 16:35:58 | RHD] - C:\MSOCache
[10/10/2013 - 14:26:42 | D] - C:\833558cd4de2c519555cf867
[01/12/2013 - 15:06:13 | RD] - C:\Users
[01/01/2014 - 09:18:50 | D] - C:\VAIO Entertainment
[23/02/2014 - 07:15:10 | D] - C:\Downloads
[06/06/2014 - 18:37:42 | D] - C:\Program Files
[15/10/2014 - 21:41:29 | D] - C:\2ff65d28ae71e470e2727fe31524cf70
[09/11/2014 - 18:29:28 | D] - C:\Cambridge
[13/11/2014 - 18:58:47 | RD] - C:\Program Files (x86)
[15/11/2014 - 09:19:22 | D] - C:\$AVG
[09/12/2014 - 19:46:04 | HD] - C:\ProgramData
[20/12/2014 - 10:09:03 | D] - C:\Windows
[21/12/2014 - 22:32:50 | D] - C:\60dc757c49839ab89e
[28/12/2014 - 21:20:45 | D] - C:\Update
[03/01/2015 - 10:14:15 | D] - C:\UsbFix
[b]################## | E:\ - Disque Fixe (NTFS) |[/b]
[03/11/2013 - 20:41:42 | A | 1576 Ko] - E:\La priere de l'éclipse.pdf
[26/12/2013 - 10:29:32 | A | 1552 Ko] - E:\Organisation d'un laboratoire d'étalonnage.pdf
[13/02/2011 - 19:02:53 | RA | 1 Ko] - E:\MediaID.bin
[18/01/2014 - 19:22:48 | SHD] - E:\$RECYCLE.BIN
[07/11/2014 - 12:57:09 | D] - E:\Dr. FAYE
[14/11/2013 - 11:55:23 | D] - E:\RELIGION
[02/03/2014 - 13:36:08 | D] - E:\DOCUMENTAIRE
[20/03/2014 - 20:49:23 | D] - E:\MUSIQUE
[24/05/2014 - 22:12:02 | D] - E:\Nouveau dossier (2)
[14/07/2014 - 21:16:14 | D] - E:\Marianne
[20/07/2014 - 19:38:10 | D] - E:\UTILITAIRES
[05/09/2014 - 21:20:14 | D] - E:\Cambridge - English In Use Complete Collection [Books & CD-ROMs]
[20/10/2014 - 18:52:24 | D] - E:\DV 2016
[24/10/2014 - 20:02:45 | D] - E:\MANEGEMENT QUALITE
[25/10/2014 - 10:19:22 | D] - E:\CULTURE SERERE
[06/11/2014 - 19:28:47 | RD] - E:\MES LIVRES
[10/11/2014 - 22:05:32 | D] - E:\SYSTEME DOCUMENTAIRE 18 08 2014
[07/12/2014 - 17:11:07 | D] - E:\PHOTO
[20/12/2014 - 19:14:24 | D] - E:\REGLEMENTATION
[31/12/2014 - 22:43:54 | D] - E:\DIVERS
[b]################## | G:\ - Disque USB (FAT32) |[/b]
[21/11/2014 - 17:19:12 | N | 94 Ko] - G:\~WRL0001.tmp
[17/12/2014 - 12:57:08 | N | 97 Ko] - G:\~WRL0003.tmp
[26/12/2014 - 17:05:10 | A | 18 Ko] - G:\ORGANISATION INTERNATIONALE BASEE A ABIDJAN.docx
[08/11/2014 - 21:10:38 | A | 37 Ko] - G:\Chimie Physique en 23 fiches.doc
[29/12/2014 - 18:50:06 | A | 95 Ko] - G:\Ngor Mack FAYE - CV (PR).doc
[02/01/2015 - 12:42:52 | A | 43 Ko] - G:\Ngor Mack FAYE - LM (PR).doc
[02/01/2015 - 13:06:00 | A | 96 Ko] - G:\Ngor Mack FAYE - CV (RQ).doc
[b]################## | Vaccin |[/b]
C:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
E:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
G:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
[b]################## | E.O.F | [url=http://www.sosvirus.net/]https://www.sosvirus.net/[/url] | [url=http://www.usbfix.net/]https://www.usbfix.net/[/url] |[/b]
A voir également:
- Echec du chargement du script
- Mode sans echec ps4 - Guide
- Script vidéo youtube - Guide
- Cloudflare echec ✓ - Forum Cloud
- Echec du chargement des anciens messages instagram ✓ - Forum iPhone
- Démarrage sans échec - Guide
3 réponses
Salut,
Cela a résolu le problème de message au démarrage?
Cela a résolu le problème de message au démarrage?
- brancher tous les periphérique que tu utilises (usb, disque dur externe, ...)
- telecharge usbfix : line de telechargement = https://www.usb-antivirus.com/fr/produit/usbfix-standard/
- executer et cliquer sur nettoyage
- quand il finit le nettoyage tu redémarre
- normalement ça doit disparaitre.
- telecharge usbfix : line de telechargement = https://www.usb-antivirus.com/fr/produit/usbfix-standard/
- executer et cliquer sur nettoyage
- quand il finit le nettoyage tu redémarre
- normalement ça doit disparaitre.
