Aller au contenu

  • Pas encore inscrit ?

    Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
    Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
    De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs ! :wink:

[Résolu] PC infecté ?

Jibione

Par Jibione
dans Analyses et éradication malwares

 Partager

Messages recommandés

Jibione Member

Jibione

Posté(e)
  • Auteur
Posté(e)

Rapport HOST :

RogueKiller V8.2.3 [07/11/2012] by Tigzy

mail: tigzyRK<at>gmail<dot>com

Feedback: RogueKiller - Geeks to Go Forums

Website: RogueKiller

Blog: tigzy-RK

 

Operating System: Windows XP (5.1.2600 Service Pack 2) 32 bits version

Started in : Safe mode with network support

User : Jibione [Admin rights]

Mode : HOSTSFix -- Date : 07/11/2012 13:24:12

 

¤¤¤ Bad processes : 0 ¤¤¤

 

¤¤¤ Registry Entries : 0 ¤¤¤

 

¤¤¤ Driver : [NOT LOADED] ¤¤¤

 

¤¤¤ HOSTS File: ¤¤¤

--> C:\WINDOWS\system32\drivers\etc\hosts

 

127.0.0.1 localhost

 

 

¤¤¤ Resetted HOSTS: ¤¤¤

127.0.0.1 localhost

 

Finished : << RKreport[27]_H_07112012_132412.txt >>

RKreport[11]_S_06112012_212117.txt ; RKreport[12]_D_06112012_212127.txt ; RKreport[13]_S_06112012_212135.txt ; RKreport[14]_S_06112012_212922.txt ; RKreport[25]_S_07112012_132055.txt ;

RKreport[26]_D_07112012_132331.txt ; RKreport[27]_H_07112012_132412.txt ; RKreport[2]_D_06112012_133715.txt ; RKreport[3]_S_06112012_134138.txt ; RKreport[4]_D_06112012_134651.txt

 

Rapport PROXY :

 

RogueKiller V8.2.3 [07/11/2012] by Tigzy

mail: tigzyRK<at>gmail<dot>com

Feedback: RogueKiller - Geeks to Go Forums

Website: RogueKiller

Blog: tigzy-RK

 

Operating System: Windows XP (5.1.2600 Service Pack 2) 32 bits version

Started in : Safe mode with network support

User : Jibione [Admin rights]

Mode : ProxyFix -- Date : 07/11/2012 13:25:49

 

¤¤¤ Bad processes : 0 ¤¤¤

 

¤¤¤ Registry Entries : 0 ¤¤¤

 

¤¤¤ Driver : [NOT LOADED] ¤¤¤

 

Finished : << RKreport[28]_PR_07112012_132549.txt >>

RKreport[11]_S_06112012_212117.txt ; RKreport[12]_D_06112012_212127.txt ; RKreport[13]_S_06112012_212135.txt ; RKreport[14]_S_06112012_212922.txt ; RKreport[25]_S_07112012_132055.txt ;

RKreport[26]_D_07112012_132331.txt ; RKreport[27]_H_07112012_132412.txt ; RKreport[28]_PR_07112012_132549.txt ; RKreport[2]_D_06112012_133715.txt ; RKreport[3]_S_06112012_134138.txt ;

RKreport[4]_D_06112012_134651.txt

 

 

Rapport DNS :

RogueKiller V8.2.3 [07/11/2012] by Tigzy

mail: tigzyRK<at>gmail<dot>com

Feedback: RogueKiller - Geeks to Go Forums

Website: RogueKiller

Blog: tigzy-RK

 

Operating System: Windows XP (5.1.2600 Service Pack 2) 32 bits version

Started in : Safe mode with network support

User : Jibione [Admin rights]

Mode : DNSFix -- Date : 07/11/2012 13:26:11

 

¤¤¤ Bad processes : 0 ¤¤¤

 

¤¤¤ Registry Entries : 0 ¤¤¤

 

¤¤¤ Driver : [NOT LOADED] ¤¤¤

 

Finished : << RKreport[29]_DN_07112012_132611.txt >>

RKreport[11]_S_06112012_212117.txt ; RKreport[12]_D_06112012_212127.txt ; RKreport[13]_S_06112012_212135.txt ; RKreport[14]_S_06112012_212922.txt ; RKreport[25]_S_07112012_132055.txt ;

RKreport[26]_D_07112012_132331.txt ; RKreport[27]_H_07112012_132412.txt ; RKreport[28]_PR_07112012_132549.txt ; RKreport[29]_DN_07112012_132611.txt ; RKreport[2]_D_06112012_133715.txt ;

RKreport[3]_S_06112012_134138.txt ; RKreport[4]_D_06112012_134651.txt

 

Rapport RACCOURCI :

 

RogueKiller V8.2.3 [07/11/2012] by Tigzy

mail: tigzyRK<at>gmail<dot>com

Feedback: RogueKiller - Geeks to Go Forums

Website: RogueKiller

Blog: tigzy-RK

 

Operating System: Windows XP (5.1.2600 Service Pack 2) 32 bits version

Started in : Safe mode with network support

User : Jibione [Admin rights]

Mode : Shortcuts HJfix -- Date : 07/11/2012 13:29:33

 

¤¤¤ Bad processes : 0 ¤¤¤

 

¤¤¤ Driver : [NOT LOADED] ¤¤¤

 

¤¤¤ File attributes restored: ¤¤¤

Desktop: Success 0 / Fail 0

Quick launch: Success 0 / Fail 0

Programs: Success 0 / Fail 0

Start menu: Success 0 / Fail 0

User folder: Success 6 / Fail 0

My documents: Success 0 / Fail 0

My favorites: Success 0 / Fail 0

My pictures: Success 0 / Fail 0

My music: Success 0 / Fail 0

My videos: Success 0 / Fail 0

Local drives: Success 10 / Fail 0

Backup: [NOT FOUND]

 

Drives:

[C:] \Device\HarddiskVolume2 -- 0x3 --> Restored

[E:] \Device\Harddisk2\DP(1)0-0+a -- 0x2 --> Restored

[F:] \Device\Harddisk3\DP(1)0-0+b -- 0x2 --> Restored

[G:] \Device\Harddisk4\DP(1)0-0+c -- 0x2 --> Restored

[H:] \Device\Harddisk5\DP(1)0-0+d -- 0x2 --> Restored

[i:] \Device\HarddiskVolume3 -- 0x3 --> Restored

[J:] \Device\CdRom0 -- 0x5 --> Skipped

[L:] \Device\CdRom1 -- 0x5 --> Skipped

[M:] \Device\CdRom2 -- 0x5 --> Skipped

[N:] \Device\HarddiskVolume4 -- 0x3 --> Restored

 

Finished : << RKreport[30]_SC_07112012_132933.txt >>

RKreport[25]_S_07112012_132055.txt ; RKreport[26]_D_07112012_132331.txt ; RKreport[27]_H_07112012_132412.txt ; RKreport[28]_PR_07112012_132549.txt ; RKreport[29]_DN_07112012_132611.txt ;

RKreport[30]_SC_07112012_132933.txt

 

Rapport ADW Cleaner après recherche :

 

# AdwCleaner v2.007 - Logfile created 11/07/2012 at 13:32:59

# Updated 06/11/2012 by Xplode

# Operating system : Microsoft Windows XP Service Pack 2 (32 bits)

# User : Jibione - JB

# Boot Mode : Safe mode with networking

# Running from : C:\Documents and Settings\Jibione\Desktop\AdwCleaner.exe

# Option [search]

 

 

***** [services] *****

 

 

***** [Files / Folders] *****

 

 

***** [Registry] *****

 

Value Found : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\RelevantKnowledge\rlvknlg.exe]

 

***** [internet Browsers] *****

 

-\\ Internet Explorer v6.0.2900.2180

 

[OK] Registry is clean.

 

-\\ Mozilla Firefox v16.0.2 (fr)

 

Profile name : default

File : C:\Documents and Settings\Jibione\Application Data\Mozilla\Firefox\Profiles\3qb0duha.default\prefs.js

 

[OK] File is clean.

 

Profile name : default

File : C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\fi70phbz.default\prefs.js

 

[OK] File is clean.

 

-\\ Opera v12.2.1578.0

 

File : C:\Documents and Settings\Jibione\Application Data\Opera\Opera\operaprefs.ini

 

[OK] File is clean.

 

*************************

 

AdwCleaner[R1].txt - [5290 octets] - [06/11/2012 13:49:25]

AdwCleaner[R2].txt - [1127 octets] - [06/11/2012 13:55:45]

AdwCleaner[R3].txt - [1188 octets] - [06/11/2012 13:56:26]

AdwCleaner[R4].txt - [1370 octets] - [06/11/2012 14:01:07]

AdwCleaner[R5].txt - [1654 octets] - [06/11/2012 14:05:47]

AdwCleaner[R6].txt - [1714 octets] - [06/11/2012 21:23:26]

AdwCleaner[R7].txt - [1774 octets] - [06/11/2012 22:27:53]

AdwCleaner[R8].txt - [1651 octets] - [07/11/2012 13:32:59]

AdwCleaner[s1].txt - [5410 octets] - [06/11/2012 13:51:09]

AdwCleaner[s3].txt - [1248 octets] - [06/11/2012 13:56:48]

AdwCleaner[s4].txt - [1430 octets] - [06/11/2012 14:01:17]

AdwCleaner[s5].txt - [1594 octets] - [06/11/2012 14:03:59]

AdwCleaner[s7].txt - [1834 octets] - [06/11/2012 22:28:19]

 

########## EOF - C:\AdwCleaner[R8].txt - [2011 octets] ##########

Lien vers le commentaire
Partager sur d’autres sites

Jibione Member

Jibione

Posté(e)
  • Auteur
Posté(e)

Rapport ADW après suppression :

 

# AdwCleaner v2.007 - Logfile created 11/07/2012 at 13:34:25

# Updated 06/11/2012 by Xplode

# Operating system : Microsoft Windows XP Service Pack 2 (32 bits)

# User : Jibione - JB

# Boot Mode : Safe mode with networking

# Running from : C:\Documents and Settings\Jibione\Desktop\AdwCleaner.exe

# Option [Delete]

 

 

***** [services] *****

 

 

***** [Files / Folders] *****

 

 

***** [Registry] *****

 

Value Deleted : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files\RelevantKnowledge\rlvknlg.exe]

 

***** [internet Browsers] *****

 

-\\ Internet Explorer v6.0.2900.2180

 

[OK] Registry is clean.

 

-\\ Mozilla Firefox v16.0.2 (fr)

 

Profile name : default

File : C:\Documents and Settings\Jibione\Application Data\Mozilla\Firefox\Profiles\3qb0duha.default\prefs.js

 

[OK] File is clean.

 

Profile name : default

File : C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\fi70phbz.default\prefs.js

 

[OK] File is clean.

 

-\\ Opera v12.2.1578.0

 

File : C:\Documents and Settings\Jibione\Application Data\Opera\Opera\operaprefs.ini

 

[OK] File is clean.

 

*************************

 

AdwCleaner[R1].txt - [5290 octets] - [06/11/2012 13:49:25]

AdwCleaner[R2].txt - [1127 octets] - [06/11/2012 13:55:45]

AdwCleaner[R3].txt - [1188 octets] - [06/11/2012 13:56:26]

AdwCleaner[R4].txt - [1370 octets] - [06/11/2012 14:01:07]

AdwCleaner[R5].txt - [1654 octets] - [06/11/2012 14:05:47]

AdwCleaner[R6].txt - [1714 octets] - [06/11/2012 21:23:26]

AdwCleaner[R7].txt - [1774 octets] - [06/11/2012 22:27:53]

AdwCleaner[R8].txt - [2080 octets] - [07/11/2012 13:32:59]

AdwCleaner[s1].txt - [5410 octets] - [06/11/2012 13:51:09]

AdwCleaner[s3].txt - [1248 octets] - [06/11/2012 13:56:48]

AdwCleaner[s4].txt - [1430 octets] - [06/11/2012 14:01:17]

AdwCleaner[s5].txt - [1594 octets] - [06/11/2012 14:03:59]

AdwCleaner[s7].txt - [1834 octets] - [06/11/2012 22:28:19]

AdwCleaner[s8].txt - [2013 octets] - [07/11/2012 13:34:25]

 

########## EOF - C:\AdwCleaner[s8].txt - [2073 octets] ##########

Lien vers le commentaire
Partager sur d’autres sites
Jibione Member

Jibione

Posté(e)
  • Auteur
Posté(e)

Rapport après suppression Malware :

Malwarebytes Anti-Malware (Essai) 1.65.1.1000

www.malwarebytes.org

 

Version de la base de données: v2012.11.07.04

 

Windows XP Service Pack 2 x86 NTFS (Mode sans échec/Réseau)

Internet Explorer 6.0.2900.2180

Jibione :: JB [administrateur]

 

Protection: Désactivé

 

07/11/2012 13:43:04

mbam-log-2012-11-07 (13-43-04).txt

 

Type d'examen: Examen complet (C:\|E:\|F:\|G:\|H:\|I:\|J:\|L:\|M:\|N:\|)

Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM

Options d'examen désactivées: P2P

Elément(s) analysé(s): 393123

Temps écoulé: 45 minute(s), 48 seconde(s)

 

Processus mémoire détecté(s): 0

(Aucun élément nuisible détecté)

 

Module(s) mémoire détecté(s): 0

(Aucun élément nuisible détecté)

 

Clé(s) du Registre détectée(s): 0

(Aucun élément nuisible détecté)

 

Valeur(s) du Registre détectée(s): 0

(Aucun élément nuisible détecté)

 

Elément(s) de données du Registre détecté(s): 0

(Aucun élément nuisible détecté)

 

Dossier(s) détecté(s): 0

(Aucun élément nuisible détecté)

 

Fichier(s) détecté(s): 1

N:\programmes\Camtasia Studio 7 + Keygen\Camtasia_Studio_7_Keygen.exe (RiskWare.Tool.CK) -> Mis en quarantaine et supprimé avec succès.

 

(fin)

Lien vers le commentaire
Partager sur d’autres sites
Jibione Member

Jibione

Posté(e)
  • Auteur
Posté(e)

J'ai lancé USB fix, je colle les rappors à mon retour ce soir

 

Rapport USB fix après scan :

############################## | UsbFix V 7.097 | [Research]

 

User: Jibione (Administrator) # JB

Updated 02/09/2012 by El Desaparecido

Started at 14:34:46 | 07/11/2012

 

Website: http://eldesaparecido.com

Forum: SoSVirus • Portail

Suspicious file ? : http://eldesaparecido.com/upload.php

Contact: [email protected]

 

PC: Acer (Aspire M1610) (X86-based PC

CPU: Genuine Intel® CPU 2140 @ 1.60GHz (1600)

CPU: Genuine Intel® CPU 2140 @ 1.60GHz (1600)

RAM -> [Total : 1023 | Free : 620]

BIOS: Phoenix - AwardBIOS v6.00PG

BOOT: Fail-safe with network boot

 

OS: Microsoft Windows XP Professional (5.1.2600 32-Bit) # Service Pack 2

WB: Windows Internet Explorer 6.0.2900.2180

 

SC: Security Center Service [(!) Disabled]

WU: Windows Update Service [Enabled]

FW: Windows FireWall Service [Enabled]

 

C:\ (%systemdrive%) -> Fixed drive # 112 Gb (64 Mb free - 57%) [] # NTFS

I:\ -> Fixed drive # 111 Gb (189 Mb free - 0%) [DATA] # NTFS

J:\ -> CD-ROM

L:\ -> CD-ROM

M:\ -> CD-ROM

N:\ -> Fixed drive # 465 Gb (16 Mb free - 3%) [bibi] # NTFS

 

################## | Active Processes |

 

C:\WINDOWS\System32\smss.exe (472)

C:\WINDOWS\system32\winlogon.exe (688)

C:\WINDOWS\system32\services.exe (732)

C:\WINDOWS\system32\lsass.exe (744)

C:\WINDOWS\system32\svchost.exe (904)

C:\WINDOWS\system32\svchost.exe (1092)

C:\WINDOWS\Explorer.EXE (1456)

C:\Program Files\Mozilla Firefox\firefox.exe (1932)

C:\UsbFix\Go.exe (1956)

 

################## | Files # Infected Folders |

 

Found ! M:\autorun.inf

 

################## | Registry |

 

 

################## | Mountpoints2 |

 

 

 

################## | Vaccin |

 

C:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)

I:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)

N:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)

 

################## | E.O.F |

Lien vers le commentaire
Partager sur d’autres sites
Jibione Member

Jibione

Posté(e)
  • Auteur
Posté(e)

Et donc le rapport USB Fix après suppression :

 

############################## | UsbFix V 7.097 | [Deletion]

 

User: Jibione (Administrator) # JB

Updated 02/09/2012 by El Desaparecido

Started at 14:42:14 | 07/11/2012

 

Website: http://eldesaparecido.com

Forum: SoSVirus • Portail

Suspicious file ? : http://eldesaparecido.com/upload.php

Contact: [email protected]

 

PC: Acer (Aspire M1610) (X86-based PC

CPU: Genuine Intel® CPU 2140 @ 1.60GHz (1600)

CPU: Genuine Intel® CPU 2140 @ 1.60GHz (1600)

RAM -> [Total : 1023 | Free : 522]

BIOS: Phoenix - AwardBIOS v6.00PG

BOOT: Fail-safe with network boot

 

OS: Microsoft Windows XP Professional (5.1.2600 32-Bit) # Service Pack 2

WB: Windows Internet Explorer 6.0.2900.2180

 

SC: Security Center Service [(!) Disabled]

WU: Windows Update Service [Enabled]

FW: Windows FireWall Service [Enabled]

 

C:\ (%systemdrive%) -> Fixed drive # 112 Gb (64 Mb free - 57%) [] # NTFS

I:\ -> Fixed drive # 111 Gb (189 Mb free - 0%) [DATA] # NTFS

J:\ -> CD-ROM

L:\ -> CD-ROM

M:\ -> CD-ROM

N:\ -> Fixed drive # 465 Gb (16 Mb free - 3%) [bibi] # NTFS

 

################## | Active Processes |

 

C:\WINDOWS\System32\smss.exe (472)

C:\WINDOWS\system32\winlogon.exe (688)

C:\WINDOWS\system32\services.exe (732)

C:\WINDOWS\system32\lsass.exe (744)

C:\WINDOWS\system32\svchost.exe (904)

C:\WINDOWS\system32\svchost.exe (1092)

C:\WINDOWS\Explorer.EXE (1456)

C:\Program Files\Mozilla Firefox\firefox.exe (1932)

C:\UsbFix\Go.exe (1284)

 

################## | Stopped processes |

 

Stopped! C:\WINDOWS\Explorer.EXE (1456)

Stopped! C:\Program Files\Mozilla Firefox\firefox.exe (1932)

 

################## | Files # Infected Folders |

 

Deleted ! C:\Recycler\S-1-5-21-842925246-2139871995-1801674531-1003

Deleted ! I:\Recycler\S-1-5-21-842925246-2139871995-1801674531-1003

Deleted ! N:\Recycler\S-1-5-21-842925246-2139871995-1801674531-1003

Not deleted ! M:\autorun.inf

 

(!) Temporary files deleted.

 

################## | Registry |

 

 

################## | Mountpoints2 |

 

 

################## | Listing |

 

[11/03/2010 - 08:46:51 | N | 1024] C:\.rnd

[07/11/2012 - 13:33:05 | N | 2080] C:\AdwCleaner[R8].txt

[07/11/2012 - 13:34:30 | N | 2142] C:\AdwCleaner[s8].txt

[06/03/2008 - 18:18:09 | N | 0] C:\AILog.txt

[08/12/2007 - 21:05:24 | D ] C:\ATI

[06/12/2007 - 17:36:06 | N | 0] C:\AUTOEXEC.BAT

[06/11/2012 - 21:14:47 | RASD ] C:\Autorun.inf

[25/10/2008 - 12:03:11 | N | 223] C:\Boot.bak

[05/09/2011 - 09:55:46 | N | 293] C:\boot.ini

[23/06/2008 - 21:54:51 | N | 2544] C:\caisslog.txt

[05/03/2008 - 11:28:12 | N | 2275451] C:\CIMG5703.JPG

[05/07/2009 - 11:43:38 | N | 2765] C:\cleannavi.txt

[07/12/2007 - 06:17:55 | N | 96] C:\Clé.Microsoft.Office.2007.Professional.Plus.txt

[10/01/2009 - 14:33:39 | D ] C:\cmdcons

[03/08/2004 - 23:00:08 | N | 263488] C:\cmldr

[01/11/2012 - 17:51:37 | D ] C:\col1832

[11/01/2009 - 23:13:46 | N | 15020] C:\ComboFix.txt

[05/11/2012 - 14:56:51 | D ] C:\Config.Msi

[06/12/2007 - 17:36:06 | N | 0] C:\CONFIG.SYS

[13/01/2009 - 06:49:17 | N | 1749] C:\DealioAu.log

[08/03/2008 - 21:23:37 | N | 216] C:\DebugTrace-RockallDLL.log

[06/11/2012 - 13:59:10 | D ] C:\Documents and Settings

[31/05/2011 - 17:02:56 | D ] C:\Downloads

[11/05/2009 - 22:27:44 | D ] C:\Drivers

[06/05/2011 - 12:57:13 | D ] C:\ERDNT

[05/07/2009 - 10:51:57 | N | 2749] C:\fixnavi.txt

[06/12/2007 - 17:36:06 | N | 0] C:\IO.SYS

[01/11/2012 - 19:33:16 | N | 0] C:\Log.txt

[24/07/2010 - 22:14:32 | D ] C:\Mozilla

[31/05/2009 - 09:27:54 | N | 4245] C:\MP4debug.log

[06/12/2007 - 17:36:06 | N | 0] C:\MSDOS.SYS

[02/02/2009 - 17:54:54 | D ] C:\My Videos

[03/08/2004 - 21:38:34 | N | 47564] C:\NTDETECT.COM

[03/08/2004 - 21:59:34 | N | 250032] C:\ntldr

[24/01/2009 - 06:45:14 | N | 2284887] C:\P1030315.JPG

[07/11/2012 - 14:33:19 | ASH | 1610612736] C:\pagefile.sys

[06/11/2012 - 08:24:18 | N | 0] C:\PhysicalDisk0_MBR.bin

[08/12/2010 - 09:16:39 | N | 2617363] C:\pic 009.jpg

[08/12/2010 - 09:16:54 | N | 2531801] C:\pic 036.jpg

[08/12/2010 - 09:16:52 | N | 2608897] C:\pic 037.jpg

[06/11/2012 - 13:51:10 | D ] C:\Program Files

[07/11/2012 - 14:42:56 | SHD ] C:\RECYCLER

[01/11/2012 - 17:56:18 | D ] C:\sj645

[01/11/2012 - 19:32:20 | D ] C:\sj646

[02/04/2008 - 06:36:09 | N | 268] C:\sqmdata00.sqm

[01/05/2008 - 18:10:28 | N | 268] C:\sqmdata01.sqm

[15/05/2008 - 20:25:11 | N | 232] C:\sqmdata02.sqm

[15/06/2008 - 20:03:22 | N | 268] C:\sqmdata03.sqm

[30/06/2008 - 18:30:31 | N | 268] C:\sqmdata04.sqm

[14/07/2008 - 20:53:42 | N | 268] C:\sqmdata05.sqm

[11/09/2008 - 21:01:55 | N | 232] C:\sqmdata06.sqm

[11/09/2008 - 21:02:27 | N | 232] C:\sqmdata07.sqm

[11/09/2008 - 21:06:39 | N | 232] C:\sqmdata08.sqm

[11/09/2008 - 21:27:35 | N | 232] C:\sqmdata09.sqm

[12/10/2008 - 11:10:05 | N | 268] C:\sqmdata10.sqm

[26/10/2008 - 11:52:53 | N | 268] C:\sqmdata11.sqm

[24/11/2008 - 21:32:56 | N | 268] C:\sqmdata12.sqm

[10/12/2008 - 00:48:45 | N | 268] C:\sqmdata13.sqm

[25/12/2008 - 23:48:05 | N | 268] C:\sqmdata14.sqm

[28/12/2008 - 00:16:10 | N | 268] C:\sqmdata15.sqm

[28/12/2008 - 14:25:07 | N | 268] C:\sqmdata16.sqm

[02/04/2008 - 06:36:09 | N | 244] C:\sqmnoopt00.sqm

[01/05/2008 - 18:10:28 | N | 244] C:\sqmnoopt01.sqm

[15/05/2008 - 20:25:11 | N | 244] C:\sqmnoopt02.sqm

[15/06/2008 - 20:03:22 | N | 244] C:\sqmnoopt03.sqm

[30/06/2008 - 18:30:31 | N | 244] C:\sqmnoopt04.sqm

[14/07/2008 - 20:53:42 | N | 244] C:\sqmnoopt05.sqm

[11/09/2008 - 21:01:54 | N | 244] C:\sqmnoopt06.sqm

[11/09/2008 - 21:02:27 | N | 244] C:\sqmnoopt07.sqm

[11/09/2008 - 21:06:39 | N | 244] C:\sqmnoopt08.sqm

[11/09/2008 - 21:27:35 | N | 244] C:\sqmnoopt09.sqm

[12/10/2008 - 11:10:05 | N | 244] C:\sqmnoopt10.sqm

[26/10/2008 - 11:52:53 | N | 244] C:\sqmnoopt11.sqm

[24/11/2008 - 21:32:56 | N | 244] C:\sqmnoopt12.sqm

[10/12/2008 - 00:48:45 | N | 244] C:\sqmnoopt13.sqm

[25/12/2008 - 23:48:04 | N | 244] C:\sqmnoopt14.sqm

[28/12/2008 - 00:16:10 | N | 244] C:\sqmnoopt15.sqm

[28/12/2008 - 14:25:06 | N | 244] C:\sqmnoopt16.sqm

[07/07/2009 - 22:17:20 | SHD ] C:\System Volume Information

[13/01/2009 - 07:31:13 | N | 3845] C:\TB.txt

[15/10/2012 - 09:12:28 | ASH | 15872] C:\Thumbs.db

[07/11/2012 - 14:42:56 | D ] C:\UsbFix

[07/11/2012 - 14:42:56 | A | 2016] C:\UsbFix.txt

[11/05/2009 - 22:27:05 | D ] C:\USB_DRV

[20/04/2010 - 13:49:31 | D ] C:\vc_temp

[06/11/2012 - 23:54:03 | D ] C:\WINDOWS

[06/11/2012 - 23:38:24 | D ] C:\ZHP

[06/07/2009 - 20:40:39 | D ] C:\_OTM

[06/11/2012 - 21:05:02 | SHD ] I:\$RECYCLE.BIN

[22/08/2009 - 02:06:11 | D ] I:\72c7f392f529508c033e23

[11/11/2009 - 14:48:57 | D ] I:\853b11d5d668804da6b60dfa431c

[06/11/2012 - 21:14:50 | RASD ] I:\Autorun.inf

[12/03/2010 - 12:19:58 | D ] I:\EVG beber

[16/07/2010 - 09:00:02 | D ] I:\Films

[07/12/2007 - 04:59:22 | D ] I:\found.000

[01/04/2010 - 13:09:55 | RD ] I:\MSOCache

[05/11/2012 - 19:05:10 | D ] I:\My Music

[07/11/2012 - 14:42:56 | SHD ] I:\RECYCLER

[07/12/2007 - 04:59:29 | SHD ] I:\System Volume Information

[15/01/2010 - 08:46:59 | ASH | 17920] I:\Thumbs.db

[18/06/2009 - 22:12:18 | R | 88] M:\autorun.inf

[14/11/2009 - 01:33:06 | RD ] M:\Extras

[13/11/2009 - 20:25:22 | R | 3687200] M:\Unlock.exe

[13/11/2009 - 22:42:23 | RD ] M:\User Manuals

[14/11/2009 - 01:30:12 | R | 1456475] M:\Virtual CD Manager.exe

[14/11/2009 - 01:33:33 | RD ] M:\WD SmartWare

[13/11/2009 - 20:25:22 | R | 3280672] M:\WD SmartWare.exe

[18/06/2009 - 18:06:24 | R | 695] M:\What is this.html

[06/11/2012 - 21:05:51 | SHD ] N:\$RECYCLE.BIN

[06/11/2012 - 21:14:52 | RASD ] N:\Autorun.inf

[05/11/2012 - 12:35:01 | D ] N:\docs

[29/10/2012 - 11:10:19 | D ] N:\films

[20/12/2011 - 19:12:36 | D ] N:\iPod Photo Cache

[05/11/2012 - 14:23:34 | D ] N:\photos

[28/12/2011 - 17:33:54 | D ] N:\programmes

[07/11/2012 - 14:42:56 | SHD ] N:\RECYCLER

[28/12/2011 - 17:37:11 | D ] N:\sons

[18/04/2010 - 11:23:07 | SHD ] N:\System Volume Information

[25/02/2011 - 13:31:14 | ASH | 43520] N:\Thumbs.db

 

################## | Vaccin |

 

C:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)

I:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)

N:\Autorun.inf -> Vaccine created by UsbFix (El Desaparecido)

 

################## | Upload |

 

Please send the file: C:\UsbFix_Upload_Me_JB.zip

http://eldesaparecido.com/upload.php

Thank you for your contribution.

 

################## | E.O.F |

Lien vers le commentaire
Partager sur d’autres sites
  • Tonton a modifié le titre en [Résolu] PC infecté ?

Rejoindre la conversation

Vous pouvez publier maintenant et vous inscrire plus tard. Si vous avez un compte, connectez-vous maintenant pour publier avec votre compte.
Remarque : votre message nécessitera l’approbation d’un modérateur avant de pouvoir être visible.

Invité
Répondre à ce sujet…

×   Collé en tant que texte enrichi.   Coller en tant que texte brut à la place

  Seulement 75 émoticônes maximum sont autorisées.

×   Votre lien a été automatiquement intégré.   Afficher plutôt comme un lien

×   Votre contenu précédent a été rétabli.   Vider l’éditeur

×   Vous ne pouvez pas directement coller des images. Envoyez-les depuis votre ordinateur ou insérez-les depuis une URL.

×
 Partager
Aller sur la liste des sujets

  • En ligne récemment   0 membre est en ligne

    • Aucun utilisateur enregistré regarde cette page.
×
×
  • Créer...