Voilà le rapport UsbFix :
############################## | UsbFix V 7.088 | [Suppression]
Utilisateur: Audrey (Administrateur) # AUDREY-VAIO
Mis à jour le 16/05/2012 par El Desaparecido
Lancé à 19:18:05 | 18/05/2012
Site Web:
http://eldesaparecido.comForum:
http://forum.eldesaparecido.comFichier suspect ? :
http://eldesaparecido.com/upload.phpContact:
contact@eldesaparecido.comPC: Sony Corporation (VPCW12M1E) (X86-based PC) # Notebook
CPU: Intel(R) Atom(TM) CPU N280 @ 1.66GHz (1667)
RAM -> [ Total : 1014 | Free : 236 ]
BIOS: Ver 1.00PARTTBL
BOOT: Normal boot
OS: Microsoft Windows 7 Édition Starter (6.1.7601 32-Bit) # Service Pack 1
WB: Windows Internet Explorer 8.0.7601.17514
SC: Security Center Service [ Enabled ]
WU: Windows Update Service [ Enabled ]
AV: avast! Antivirus [ Enabled | Updated ]
FW: Windows FireWall Service [ Enabled ]
C:\ (%systemdrive%) -> Disque fixe # 142 Go (82 Go libre(s) - 58%) [] # NTFS
F:\ -> CD-ROM
G:\ -> Disque fixe # 466 Go (59 Go libre(s) - 13%) [LG_EXT_HDD] # NTFS
H:\ -> Disque amovible # 15 Go (15 Go libre(s) - 100%) [] # FAT32
################## | Processus Actif |
C:\Windows\system32\csrss.exe (500)
C:\Windows\system32\csrss.exe (564)
C:\Windows\system32\wininit.exe (572)
C:\Windows\system32\winlogon.exe (608)
C:\Windows\system32\services.exe (668)
C:\Windows\system32\lsass.exe (676)
C:\Windows\system32\lsm.exe (684)
C:\Windows\system32\svchost.exe (796)
C:\Windows\system32\svchost.exe (896)
C:\Windows\System32\svchost.exe (980)
C:\Windows\System32\svchost.exe (1036)
C:\Windows\system32\svchost.exe (1072)
C:\Windows\system32\svchost.exe (1208)
C:\Windows\system32\svchost.exe (1348)
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (1476)
C:\Windows\System32\spoolsv.exe (1560)
C:\Windows\system32\taskeng.exe (1584)
C:\Windows\system32\svchost.exe (1608)
C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (1724)
C:\Windows\system32\svchost.exe (1764)
C:\Windows\system32\svchost.exe (1816)
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe (1844)
C:\Windows\System32\svchost.exe (1964)
C:\Windows\System32\svchost.exe (2020)
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (408)
C:\Windows\system32\svchost.exe (1544)
C:\Program Files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe (1432)
C:\Program Files\Sony\VAIO Event Service\VESMgr.exe (1216)
C:\Windows\system32\taskhost.exe (2140)
C:\Windows\system32\taskeng.exe (2156)
C:\Windows\system32\Dwm.exe (2236)
C:\Windows\Explorer.EXE (2268)
C:\Windows\system32\taskeng.exe (2280)
C:\Program Files\Alwil Software\Avast5\AvastUI.exe (2624)
C:\Program Files\DAEMON Tools Lite\DTLite.exe (2632)
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (2664)
C:\Users\Audrey\AppData\Roaming\Dropbox\bin\Dropbox.exe (2692)
C:\Program Files\Sony\VAIO Update 5\VAIOUpdt.exe (2716)
C:\Program Files\Microsoft Office\Office12\WINWORD.EXE (2736)
C:\Program Files\Sony\VAIO Power Management\SPMService.exe (3260)
C:\Windows\system32\DllHost.exe (3308)
C:\Program Files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe (3360)
C:\Program Files\Sony\VAIO Smart Network\VSNService.exe (3400)
C:\Program Files\Sony\VAIO Event Service\VESMgrSub.exe (3424)
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe (3512)
C:\Windows\System32\svchost.exe (3532)
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (3596)
C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe (3720)
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (3896)
C:\Windows\system32\wbem\wmiprvse.exe (2064)
C:\Windows\system32\svchost.exe (2408)
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe (2676)
C:\Program Files\Sony\VAIO Power Management\SPMgr.exe (3164)
C:\Windows\system32\SearchIndexer.exe (1396)
C:\Windows\system32\svchost.exe (4168)
C:\Windows\system32\svchost.exe (4204)
C:\Program Files\Sony\VAIO Update Common\VUAgent.exe (4376)
C:\Windows\system32\WUDFHost.exe (4544)
C:\Program Files\Windows Media Player\wmpnetwk.exe (4620)
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe (4632)
C:\Windows\system32\SearchProtocolHost.exe (5148)
C:\Windows\system32\SearchFilterHost.exe (5180)
C:\UsbFix\Go.exe (6124)
C:\Windows\system32\sppsvc.exe (1456)
C:\Windows\system32\wbem\wmiprvse.exe (4964)
################## | Processus Stoppés |
Stoppé! C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (1476)
Stoppé! C:\Windows\System32\spoolsv.exe (1560)
Stoppé! C:\Windows\system32\taskeng.exe (1584)
Stoppé! C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (1724)
Stoppé! C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe (1844)
Stoppé! C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (408)
Stoppé! C:\Program Files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe (1432)
Stoppé! C:\Program Files\Sony\VAIO Event Service\VESMgr.exe (1216)
Stoppé! C:\Windows\system32\taskhost.exe (2140)
Stoppé! C:\Windows\system32\taskeng.exe (2156)
Stoppé! C:\Windows\system32\taskeng.exe (2280)
Stoppé! C:\Program Files\Alwil Software\Avast5\AvastUI.exe (2624)
Stoppé! C:\Program Files\DAEMON Tools Lite\DTLite.exe (2632)
Stoppé! C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (2664)
Stoppé! C:\Users\Audrey\AppData\Roaming\Dropbox\bin\Dropbox.exe (2692)
Stoppé! C:\Program Files\Sony\VAIO Update 5\VAIOUpdt.exe (2716)
Stoppé! C:\Program Files\Microsoft Office\Office12\WINWORD.EXE (2736)
Stoppé! C:\Program Files\Sony\VAIO Power Management\SPMService.exe (3260)
Stoppé! C:\Windows\system32\DllHost.exe (3308)
Stoppé! C:\Program Files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe (3360)
Stoppé! C:\Program Files\Sony\VAIO Smart Network\VSNService.exe (3400)
Stoppé! C:\Program Files\Sony\VAIO Event Service\VESMgrSub.exe (3424)
Stoppé! C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe (3512)
Stoppé! C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (3596)
Stoppé! C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe (3720)
Stoppé! C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (3896)
Stoppé! C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe (2676)
Stoppé! C:\Program Files\Sony\VAIO Power Management\SPMgr.exe (3164)
Stoppé! C:\Windows\system32\SearchIndexer.exe (1396)
Stoppé! C:\Program Files\Sony\VAIO Update Common\VUAgent.exe (4376)
Stoppé! C:\Windows\system32\WUDFHost.exe (4544)
Stoppé! C:\Program Files\Windows Media Player\wmpnetwk.exe (4620)
Stoppé! C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe (4632)
Stoppé! C:\Windows\system32\SearchProtocolHost.exe (5148)
Stoppé! C:\Windows\system32\SearchFilterHost.exe (5180)
Stoppé! C:\Windows\system32\sppsvc.exe (1456)
################## | Éléments infectieux |
Supprimé! C:\$RECYCLE.BIN\S-1-5-21-2436947842-2813412197-3126502625-1000
Supprimé! C:\$RECYCLE.BIN\S-1-5-21-2847672239-1694617294-2592813709-500
Supprimé! C:\$RECYCLE.BIN\S-1-5-21-3145835104-437485071-80917100-500
Supprimé! G:\$RECYCLE.BIN\S-1-5-21-2436947842-2813412197-3126502625-1000
Supprimé! G:\$RECYCLE.BIN\S-1-5-21-562397177-2493684371-1715799576-1000
Supprimé! G:\Recycler\S-1-5-21-3176114053-240930989-2078955159-1006
Supprimé! G:\Recycler\S-1-5-21-4193229187-1075102972-3358621332-1007
Supprimé! G:\Recycler\S-1-5-21-50674721-778706405-6498272-1090
Supprimé! G:\autorun.inf
(!) Fichiers temporaires supprimés.
################## | Registre |
################## | Mountpoints2 |
Supprimé! HKCU\.\.\.\.\Explorer\MountPoints2\{7b994249-f3e4-11de-b397-002643aa66f3}
################## | Listing |
[18/05/2012 - 19:48:39 | SHD ] C:\$Recycle.Bin
[17/05/2012 - 21:27:51 | N | 3570] C:\AdwCleaner[R1].txt
[17/05/2012 - 21:40:47 | N | 3674] C:\AdwCleaner[S1].txt
[10/06/2009 - 23:42:20 | N | 24] C:\autoexec.bat
[17/05/2012 - 21:24:49 | D ] C:\Config.Msi
[10/06/2009 - 23:42:20 | N | 10] C:\config.sys
[30/09/2009 - 05:02:43 | D ] C:\Documentation
[14/07/2009 - 06:53:55 | SHD ] C:\Documents and Settings
[02/12/2010 - 17:32:30 | D ] C:\e3208a2343c3eaa967278e1c
[07/11/2007 - 08:00:40 | N | 17734] C:\eula.1028.txt
[07/11/2007 - 08:00:40 | N | 17734] C:\eula.1031.txt
[07/11/2007 - 08:00:40 | N | 10134] C:\eula.1033.txt
[07/11/2007 - 08:00:40 | N | 17734] C:\eula.1036.txt
[07/11/2007 - 08:00:40 | N | 17734] C:\eula.1040.txt
[07/11/2007 - 08:00:40 | N | 118] C:\eula.1041.txt
[07/11/2007 - 08:00:40 | N | 17734] C:\eula.1042.txt
[07/11/2007 - 08:00:40 | N | 17734] C:\eula.2052.txt
[07/11/2007 - 08:00:40 | N | 17734] C:\eula.3082.txt
[07/11/2007 - 08:00:40 | N | 1110] C:\globdata.ini
[18/05/2012 - 19:14:11 | ASH | 797777920] C:\hiberfil.sys
[07/11/2007 - 08:03:18 | N | 562688] C:\install.exe
[07/11/2007 - 08:00:40 | N | 843] C:\install.ini
[07/11/2007 - 08:03:18 | N | 76304] C:\install.res.1028.dll
[07/11/2007 - 08:03:18 | N | 96272] C:\install.res.1031.dll
[07/11/2007 - 08:03:18 | N | 91152] C:\install.res.1033.dll
[07/11/2007 - 08:03:18 | N | 97296] C:\install.res.1036.dll
[07/11/2007 - 08:03:18 | N | 95248] C:\install.res.1040.dll
[07/11/2007 - 08:03:18 | N | 81424] C:\install.res.1041.dll
[07/11/2007 - 08:03:18 | N | 79888] C:\install.res.1042.dll
[07/11/2007 - 08:03:18 | N | 75792] C:\install.res.2052.dll
[07/11/2007 - 08:03:18 | N | 96272] C:\install.res.3082.dll
[27/08/2009 - 15:28:53 | D ] C:\Intel
[13/07/2010 - 13:18:48 | N | 0] C:\IO.SYS
[13/07/2010 - 13:18:48 | N | 0] C:\MSDOS.SYS
[30/09/2009 - 04:29:06 | RHD ] C:\MSOCache
[18/05/2012 - 19:14:22 | ASH | 1073741824] C:\pagefile.sys
[14/07/2009 - 04:37:05 | D ] C:\PerfLogs
[17/05/2012 - 21:51:50 | D ] C:\Program Files
[17/05/2012 - 21:51:54 | HD ] C:\ProgramData
[27/08/2009 - 15:44:28 | N | 1931] C:\RHDSetup.log
[18/05/2012 - 19:42:56 | SHD ] C:\System Volume Information
[12/04/2012 - 20:00:26 | D ] C:\Update
[18/05/2012 - 19:48:39 | D ] C:\UsbFix
[18/05/2012 - 19:18:28 | A | 10153] C:\UsbFix.txt
[25/12/2009 - 13:37:36 | D ] C:\Users
[07/11/2007 - 08:00:40 | N | 5686] C:\vcredist.bmp
[30/09/2009 - 04:51:10 | N | 411050] C:\vcredist_x86.log
[07/11/2007 - 08:09:22 | N | 1442522] C:\VC_RED.cab
[07/11/2007 - 08:12:28 | N | 232960] C:\VC_RED.MSI
[17/05/2012 - 16:47:52 | D ] C:\Windows
[17/05/2012 - 19:46:26 | D ] C:\ZHP
[30/09/2009 - 05:02:43 | D ] C:\_FS_SWRINFO
[18/05/2012 - 19:48:39 | SHD ] G:\$RECYCLE.BIN
[18/05/2012 - 17:20:27 | D ] G:\Films
[18/04/2008 - 16:00:46 | N | 41662] G:\ICON.ico
[01/01/1970 - 01:59:59 | | 524288] G:\MM_PLAY_TIME.ini
[18/05/2012 - 19:48:37 | SHD ] G:\RECYCLER
[23/07/2010 - 07:52:07 | SHD ] G:\System Volume Information
[13/07/2010 - 20:37:49 | ASH | 6144] G:\Thumbs.db
################## | Vaccin |
C:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
G:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
H:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
################## | E.O.F |
/!\ Je me suis aperçue qu'en fait je n'avais pas désactivé le guard d'avast pendant l'analyse précédente ! J'espère ne pas avoir fait de grosse boulette ! C'est grave ?