rouslong

salut Apollo, Je te dis un très grand merci pour ton aide.

salut voici le nouveau rapport, toutes mes donnees sont la maintenant. ############################## [ UsbFix V3.029 | Scan ] # User : GIGABYTE (Administrators) # GFCPH_PC9 # Update on 05/06/09 by Chiquitine29, C_XX & Chimay8 # WebSite : http://pagesperso-orange.fr/NosTools/usbfix.html # Start at: 12:28:51 PM | 6/5/2009 # Intel® Pentium® 4 CPU 3.00GHz # Microsoft Windows XP Professional (5.1.2600 32-bit) # Service Pack 3 # Internet Explorer 7.0.5730.13 # Windows Firewall Status : Enabled # AV : McAfee VirusScan Enterprise 8.5.0.781 [ Enabled | Updated ] # A:\ # 3 1/2 Inch Floppy Drive # C:\ # Local Fixed Disk # 74.53 Go (57.59 Go free) # NTFS # D:\ # CD-ROM Disc # E:\ # Removable Disk # F:\ # Removable Disk # G:\ # Removable Disk # H:\ # Removable Disk # J:\ # CD-ROM Disc # 6.67 Mo (0 Mo free) [u3 System] # CDFS # K:\ # Removable Disk # 3.74 Go (2.7 Go free) [ELM_CRESFED] # FAT32 ############################## [ Processus actifs ] C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\McAfee\Common Framework\FrameworkService.exe C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe C:\Program Files\McAfee\Common Framework\naPrdMgr.exe C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\CyberLink\Shared files\RichVideo.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\alg.exe C:\WINDOWS\explorer.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Internet Explorer\iexplore.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Common Files\Microsoft Shared\Encarta Web Companion\2007\ENCWCSVR.EXE C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Documents and Settings\GIGABYTE\Application Data\U3\4320320CCB838BE2\LaunchPad.exe C:\WINDOWS\system32\wbem\wmiprvse.exe ################## [ Registre Startup ] HKCU_Main: "Local Page"="C:\\WINDOWS\\system32\\blank.htm" HKCU_Main: "Search Page"="http://www.google.com" HKCU_Main: "Start Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome" HKCU_Main: "Window Title"="" HKLM_logon: "Userinit"="C:\\WINDOWS\\system32\\userinit.exe," HKLM_logon: "DefaultUserName"="GIGABYTE" HKLM_logon: "AltDefaultUserName"="GIGABYTE" HKLM_logon: "LegalNoticeCaption"="" HKLM_logon: "LegalNoticeText"="" HKLM_Run: igfxtray=C:\WINDOWS\system32\igfxtray.exe HKLM_Run: igfxhkcmd=C:\WINDOWS\system32\hkcmd.exe HKLM_Run: igfxpers=C:\WINDOWS\system32\igfxpers.exe HKLM_Run: RTHDCPL=RTHDCPL.EXE HKLM_Run: SkyTel=SkyTel.EXE HKLM_Run: Alcmtr=ALCMTR.EXE HKLM_Run: RemoteControl="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" HKLM_Run: LanguageShortcut="C:\Program Files\CyberLink\PowerDVD\Language\Language.exe" HKLM_Run: NeroFilterCheck=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe HKLM_Run: ShStatEXE="C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE" /STANDALONE HKLM_Run: McAfeeUpdaterUI="C:\Program Files\McAfee\Common Framework\UdaterUI.exe" /StartedFromRunKey HKLM_Run: YSearchProtection="C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe" HKLM_Run: Babylon Client=C:\Program Files\Babylon\Babylon-Pro\Babylon.exe -AutoStart HKLM_Run: Adobe Reader Speed Launcher="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" HKLM_Run: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents= HKCU_Run: CTFMON.EXE=C:\WINDOWS\system32\ctfmon.exe HKCU_Run: BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" HKCU_Run: Yahoo! Pager="C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet HKCU_Run: YSearchProtection=C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe HKCU_Run: MsnMsgr="C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background HKCU_Run: MSMSGS="C:\Program Files\Messenger\msmsgs.exe" /background HKCU_Run: InternetCalls="C:\program files\internetcalls.com\internetcalls\internetcalls.exe" -nosplash -minimized HKCU_Run: Skype="C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized HKCU_Run: Search Protection=C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe HKCU_Run: swg=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe ################## [ Fichiers # Dossiers infectieux ] Found ! J:\autorun.inf ################## [ Registre # Clés Run infectieuses ] ################## [ Registre # Mountpoints2 ] HKCU\...\Explorer\MountPoints2\{0208361b-a138-11dd-ac1c-001d7d2bf2bd}\Shell\AutoRun\Command ################## [ ! Fin du rapport # UsbFix V3.029 ! ] ############################## [ UsbFix V3.029 | Cleaning ] # User : GIGABYTE (Administrators) # GFCPH_PC9 # Update on 05/06/09 by Chiquitine29, C_XX & Chimay8 # WebSite : http://pagesperso-orange.fr/NosTools/usbfix.html # Start at: 12:33:42 PM | 6/5/2009 # Intel® Pentium® 4 CPU 3.00GHz # Microsoft Windows XP Professional (5.1.2600 32-bit) # Service Pack 3 # Internet Explorer 7.0.5730.13 # Windows Firewall Status : Enabled # AV : McAfee VirusScan Enterprise 8.5.0.781 [ Enabled | Updated ] # A:\ # 3 1/2 Inch Floppy Drive # C:\ # Local Fixed Disk # 74.53 Go (57.6 Go free) # NTFS # D:\ # CD-ROM Disc # E:\ # Removable Disk # F:\ # Removable Disk # G:\ # Removable Disk # H:\ # Removable Disk # J:\ # CD-ROM Disc # 6.67 Mo (0 Mo free) [u3 System] # CDFS # K:\ # Removable Disk # 3.74 Go (2.7 Go free) [ELM_CRESFED] # FAT32 ############################## [ Processus actifs ] C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\WgaTray.exe C:\WINDOWS\Explorer.EXE C:\Program Files\McAfee\Common Framework\FrameworkService.exe C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\CyberLink\Shared files\RichVideo.exe C:\Program Files\McAfee\Common Framework\naPrdMgr.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\System32\alg.exe ################## [ Fichiers # Dossiers infectieux ] (!) Not Deleted ! J:\autorun.inf ################## [ Registre # Clés Run infectieuses ] ################## [ Registre # Mountpoints2 ] ################## [ Listing des fichiers présent ] [04/01/2008 05:49 AM|--a------|0] - C:\AUTOEXEC.BAT [04/02/2008 09:08 AM|--ahs----|210] - C:\boot.ini [04/01/2008 05:49 AM|--a------|0] - C:\CONFIG.SYS [04/01/2008 05:08 PM|--a------|58] - C:\csb.log [04/01/2008 05:49 AM|-rahs----|0] - C:\IO.SYS [01/09/2009 11:45 AM|--a------|0] - C:\Log.txt [04/01/2008 05:49 AM|-rahs----|0] - C:\MSDOS.SYS [08/04/2004 12:38 AM|-rahs----|47564] - C:\NTDETECT.COM [08/28/2008 03:21 PM|-rahs----|250048] - C:\ntldr [?|?|?] - C:\pagefile.sys [10/14/2008 07:23 PM|--a------|71863] - C:\Rescued document.txt [04/01/2008 05:06 PM|--a------|423] - C:\RHDSetup.log [06/04/2009 01:27 PM|--ah-----|232] - C:\sqmdata00.sqm [06/04/2009 01:58 PM|--ah-----|232] - C:\sqmdata01.sqm [05/06/2009 04:48 PM|--ah-----|268] - C:\sqmdata02.sqm [05/06/2009 07:11 PM|--ah-----|268] - C:\sqmdata03.sqm [05/22/2009 05:26 PM|--ah-----|268] - C:\sqmdata04.sqm [05/25/2009 05:29 PM|--ah-----|268] - C:\sqmdata05.sqm [05/26/2009 09:54 AM|--ah-----|268] - C:\sqmdata06.sqm [05/26/2009 05:32 PM|--ah-----|268] - C:\sqmdata07.sqm [05/27/2009 05:22 PM|--ah-----|268] - C:\sqmdata08.sqm [05/28/2009 04:43 PM|--ah-----|268] - C:\sqmdata09.sqm [05/29/2009 05:12 PM|--ah-----|268] - C:\sqmdata10.sqm [06/01/2009 05:03 PM|--ah-----|268] - C:\sqmdata11.sqm [06/02/2009 05:18 PM|--ah-----|268] - C:\sqmdata12.sqm [06/03/2009 05:53 PM|--ah-----|268] - C:\sqmdata13.sqm [06/04/2009 11:02 AM|--ah-----|268] - C:\sqmdata14.sqm [06/04/2009 11:50 AM|--ah-----|232] - C:\sqmdata15.sqm [06/04/2009 11:55 AM|--ah-----|232] - C:\sqmdata16.sqm [06/04/2009 12:18 PM|--ah-----|232] - C:\sqmdata17.sqm [06/04/2009 01:23 PM|--ah-----|232] - C:\sqmdata18.sqm [06/04/2009 12:20 PM|--ah-----|232] - C:\sqmdata19.sqm [06/04/2009 01:27 PM|--ah-----|244] - C:\sqmnoopt00.sqm [06/04/2009 01:58 PM|--ah-----|244] - C:\sqmnoopt01.sqm [05/06/2009 04:48 PM|--ah-----|244] - C:\sqmnoopt02.sqm [05/06/2009 07:11 PM|--ah-----|244] - C:\sqmnoopt03.sqm [05/22/2009 05:26 PM|--ah-----|244] - C:\sqmnoopt04.sqm [05/25/2009 05:29 PM|--ah-----|244] - C:\sqmnoopt05.sqm [05/26/2009 09:54 AM|--ah-----|244] - C:\sqmnoopt06.sqm [05/26/2009 05:32 PM|--ah-----|244] - C:\sqmnoopt07.sqm [05/27/2009 05:22 PM|--ah-----|244] - C:\sqmnoopt08.sqm [05/28/2009 04:43 PM|--ah-----|244] - C:\sqmnoopt09.sqm [05/29/2009 05:12 PM|--ah-----|244] - C:\sqmnoopt10.sqm [06/01/2009 05:03 PM|--ah-----|244] - C:\sqmnoopt11.sqm [06/02/2009 05:18 PM|--ah-----|244] - C:\sqmnoopt12.sqm [06/03/2009 05:53 PM|--ah-----|244] - C:\sqmnoopt13.sqm [06/04/2009 11:02 AM|--ah-----|244] - C:\sqmnoopt14.sqm [06/04/2009 11:50 AM|--ah-----|244] - C:\sqmnoopt15.sqm [06/04/2009 11:55 AM|--ah-----|244] - C:\sqmnoopt16.sqm [06/04/2009 12:18 PM|--ah-----|244] - C:\sqmnoopt17.sqm [06/04/2009 01:23 PM|--ah-----|244] - C:\sqmnoopt18.sqm [06/04/2009 12:20 PM|--ah-----|244] - C:\sqmnoopt19.sqm [06/04/2009 02:08 PM|--a------|2726] - C:\TB.txt [06/05/2009 12:35 PM|--a------|5011] - C:\UsbFix.txt [05/06/2008 08:26 AM|-r-------|309] - J:\autorun.inf [10/23/2007 03:45 AM|-r-------|1336632] - J:\LaunchU3.exe [05/06/2008 08:11 AM|-r-------|5600229] - J:\LaunchPad.zip [10/23/2007 10:45 AM|---------|1336632] - K:\LaunchU3.exe [06/04/2009 09:34 AM|---------|1542] - K:\BOOTEX.LOG [05/07/2009 11:56 AM|---------|1128960] - K:\~WRL1304.tmp [05/07/2009 11:57 AM|---------|1136128] - K:\~WRL1845.tmp [05/07/2009 11:59 AM|---------|1128960] - K:\~WRL2330.tmp [05/07/2009 11:59 AM|---------|1128960] - K:\~WRL0208.tmp [05/06/2009 08:38 PM|---------|36352] - K:\~WRL3839.tmp [05/07/2009 12:01 PM|---------|1128960] - K:\~WRL0438.tmp [05/07/2009 04:48 PM|---------|1136640] - K:\~WRL3213.tmp [05/07/2009 05:01 PM|---------|1132032] - K:\~WRL1941.tmp [05/07/2009 05:01 PM|---------|1131520] - K:\~WRL0360.tmp [05/07/2009 05:07 PM|---------|1131008] - K:\~WRL1035.tmp [05/07/2009 05:08 PM|---------|1131008] - K:\~WRL0190.tmp [05/07/2009 05:11 PM|---------|1131008] - K:\~WRL2404.tmp ################## [ Vaccination ] # C:\autorun.inf ( # Not infected ) -> Folder created by UsbFix. # K:\autorun.inf ( # Not infected ) -> Folder created by UsbFix. ################## [ ! Fin du rapport # UsbFix V3.029 ! ]

re voici le rapport et jái 1go de donnee masque sur la cle usb comment faire pour recuperer ces doc síl vous plait? ############################## [ UsbFix V3.029 | Cleaning ] # User : GIGABYTE (Administrators) # GFCPH_PC9 # Update on 05/06/09 by Chiquitine29, C_XX & Chimay8 # WebSite : http://pagesperso-orange.fr/NosTools/usbfix.html # Start at: 11:32:28 AM | 6/5/2009 # Intel® Pentium® 4 CPU 3.00GHz # Microsoft Windows XP Professional (5.1.2600 32-bit) # Service Pack 3 # Internet Explorer 7.0.5730.13 # Windows Firewall Status : Enabled # AV : McAfee VirusScan Enterprise 8.5.0.781 [ Enabled | Updated ] # A:\ # 3 1/2 Inch Floppy Drive # C:\ # Local Fixed Disk # 74.53 Go (57.6 Go free) # NTFS # D:\ # CD-ROM Disc # E:\ # Removable Disk # F:\ # Removable Disk # G:\ # Removable Disk # H:\ # Removable Disk # J:\ # CD-ROM Disc # 6.67 Mo (0 Mo free) [u3 System] # CDFS # K:\ # Removable Disk # 3.74 Go (2.7 Go free) [ELM_CRESFED] # FAT32 ############################## [ Processus actifs ] C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\svchost.exe C:\Program Files\McAfee\Common Framework\FrameworkService.exe C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe C:\Program Files\McAfee\Common Framework\naPrdMgr.exe C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\CyberLink\Shared files\RichVideo.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\System32\alg.exe ################## [ Fichiers # Dossiers infectieux ] (!) Not Deleted ! J:\autorun.inf ################## [ Registre # Clés Run infectieuses ] ################## [ Registre # Mountpoints2 ] ################## [ Listing des fichiers présent ] [04/01/2008 05:49 AM|--a------|0] - C:\AUTOEXEC.BAT [04/02/2008 09:08 AM|--ahs----|210] - C:\boot.ini [04/01/2008 05:49 AM|--a------|0] - C:\CONFIG.SYS [04/01/2008 05:08 PM|--a------|58] - C:\csb.log [04/01/2008 05:49 AM|-rahs----|0] - C:\IO.SYS [01/09/2009 11:45 AM|--a------|0] - C:\Log.txt [04/01/2008 05:49 AM|-rahs----|0] - C:\MSDOS.SYS [08/04/2004 12:38 AM|-rahs----|47564] - C:\NTDETECT.COM [08/28/2008 03:21 PM|-rahs----|250048] - C:\ntldr [?|?|?] - C:\pagefile.sys [10/14/2008 07:23 PM|--a------|71863] - C:\Rescued document.txt [04/01/2008 05:06 PM|--a------|423] - C:\RHDSetup.log [06/04/2009 01:27 PM|--ah-----|232] - C:\sqmdata00.sqm [06/04/2009 01:58 PM|--ah-----|232] - C:\sqmdata01.sqm [05/06/2009 04:48 PM|--ah-----|268] - C:\sqmdata02.sqm [05/06/2009 07:11 PM|--ah-----|268] - C:\sqmdata03.sqm [05/22/2009 05:26 PM|--ah-----|268] - C:\sqmdata04.sqm [05/25/2009 05:29 PM|--ah-----|268] - C:\sqmdata05.sqm [05/26/2009 09:54 AM|--ah-----|268] - C:\sqmdata06.sqm [05/26/2009 05:32 PM|--ah-----|268] - C:\sqmdata07.sqm [05/27/2009 05:22 PM|--ah-----|268] - C:\sqmdata08.sqm [05/28/2009 04:43 PM|--ah-----|268] - C:\sqmdata09.sqm [05/29/2009 05:12 PM|--ah-----|268] - C:\sqmdata10.sqm [06/01/2009 05:03 PM|--ah-----|268] - C:\sqmdata11.sqm [06/02/2009 05:18 PM|--ah-----|268] - C:\sqmdata12.sqm [06/03/2009 05:53 PM|--ah-----|268] - C:\sqmdata13.sqm [06/04/2009 11:02 AM|--ah-----|268] - C:\sqmdata14.sqm [06/04/2009 11:50 AM|--ah-----|232] - C:\sqmdata15.sqm [06/04/2009 11:55 AM|--ah-----|232] - C:\sqmdata16.sqm [06/04/2009 12:18 PM|--ah-----|232] - C:\sqmdata17.sqm [06/04/2009 01:23 PM|--ah-----|232] - C:\sqmdata18.sqm [06/04/2009 12:20 PM|--ah-----|232] - C:\sqmdata19.sqm [06/04/2009 01:27 PM|--ah-----|244] - C:\sqmnoopt00.sqm [06/04/2009 01:58 PM|--ah-----|244] - C:\sqmnoopt01.sqm [05/06/2009 04:48 PM|--ah-----|244] - C:\sqmnoopt02.sqm [05/06/2009 07:11 PM|--ah-----|244] - C:\sqmnoopt03.sqm [05/22/2009 05:26 PM|--ah-----|244] - C:\sqmnoopt04.sqm [05/25/2009 05:29 PM|--ah-----|244] - C:\sqmnoopt05.sqm [05/26/2009 09:54 AM|--ah-----|244] - C:\sqmnoopt06.sqm [05/26/2009 05:32 PM|--ah-----|244] - C:\sqmnoopt07.sqm [05/27/2009 05:22 PM|--ah-----|244] - C:\sqmnoopt08.sqm [05/28/2009 04:43 PM|--ah-----|244] - C:\sqmnoopt09.sqm [05/29/2009 05:12 PM|--ah-----|244] - C:\sqmnoopt10.sqm [06/01/2009 05:03 PM|--ah-----|244] - C:\sqmnoopt11.sqm [06/02/2009 05:18 PM|--ah-----|244] - C:\sqmnoopt12.sqm [06/03/2009 05:53 PM|--ah-----|244] - C:\sqmnoopt13.sqm [06/04/2009 11:02 AM|--ah-----|244] - C:\sqmnoopt14.sqm [06/04/2009 11:50 AM|--ah-----|244] - C:\sqmnoopt15.sqm [06/04/2009 11:55 AM|--ah-----|244] - C:\sqmnoopt16.sqm [06/04/2009 12:18 PM|--ah-----|244] - C:\sqmnoopt17.sqm [06/04/2009 01:23 PM|--ah-----|244] - C:\sqmnoopt18.sqm [06/04/2009 12:20 PM|--ah-----|244] - C:\sqmnoopt19.sqm [06/04/2009 02:08 PM|--a------|2726] - C:\TB.txt [06/05/2009 11:33 AM|--a------|4978] - C:\UsbFix.txt [05/06/2008 08:26 AM|-r-------|309] - J:\autorun.inf [10/23/2007 03:45 AM|-r-------|1336632] - J:\LaunchU3.exe [05/06/2008 08:11 AM|-r-------|5600229] - J:\LaunchPad.zip [10/23/2007 10:45 AM|---------|1336632] - K:\LaunchU3.exe [06/04/2009 09:34 AM|---------|1542] - K:\BOOTEX.LOG [05/07/2009 11:56 AM|---------|1128960] - K:\~WRL1304.tmp [05/07/2009 11:57 AM|---------|1136128] - K:\~WRL1845.tmp [05/07/2009 11:59 AM|---------|1128960] - K:\~WRL2330.tmp [05/07/2009 11:59 AM|---------|1128960] - K:\~WRL0208.tmp [05/06/2009 08:38 PM|---------|36352] - K:\~WRL3839.tmp [05/07/2009 12:01 PM|---------|1128960] - K:\~WRL0438.tmp [05/07/2009 04:48 PM|---------|1136640] - K:\~WRL3213.tmp [05/07/2009 05:01 PM|---------|1132032] - K:\~WRL1941.tmp [05/07/2009 05:01 PM|---------|1131520] - K:\~WRL0360.tmp [05/07/2009 05:07 PM|---------|1131008] - K:\~WRL1035.tmp [05/07/2009 05:08 PM|---------|1131008] - K:\~WRL0190.tmp [05/07/2009 05:11 PM|---------|1131008] - K:\~WRL2404.tmp ################## [ Vaccination ] # C:\autorun.inf ( # Not infected ) -> Folder created by UsbFix. # K:\autorun.inf ( # Not infected ) -> Folder created by UsbFix. ################## [ ! Fin du rapport # UsbFix V3.029 ! ] ############################## [ UsbFix V3.029 | Vaccination ] # User : GIGABYTE (Administrators) # GFCPH_PC9 # Update on 05/06/09 by Chiquitine29, C_XX & Chimay8 # WebSite : http://pagesperso-orange.fr/NosTools/usbfix.html # Start at: 11:38:41 AM | 6/5/2009 # Intel® Pentium® 4 CPU 3.00GHz # Microsoft Windows XP Professional (5.1.2600 32-bit) # Service Pack 3 # Internet Explorer 7.0.5730.13 # Windows Firewall Status : Enabled # AV : McAfee VirusScan Enterprise 8.5.0.781 [ Enabled | Updated ] # A:\ # 3 1/2 Inch Floppy Drive # C:\ # Local Fixed Disk # 74.53 Go (57.62 Go free) # NTFS # D:\ # CD-ROM Disc # E:\ # Removable Disk # F:\ # Removable Disk # G:\ # Removable Disk # H:\ # Removable Disk # J:\ # CD-ROM Disc # 6.67 Mo (0 Mo free) [u3 System] # CDFS # K:\ # Removable Disk # 3.74 Go (2.7 Go free) [ELM_CRESFED] # FAT32 ################## [ Vaccination ] # C:\autorun.inf ( # Not infected ) -> Folder created by UsbFix. # K:\autorun.inf ( # Not infected ) -> Folder created by UsbFix. ################## [ ! Fin du rapport # UsbFix V3.029 ! ]

salut voic les autres rapports Malwarebytes' Anti-Malware 1.37 Version de la base de données: 2229 Windows 5.1.2600 Service Pack 3 6/4/2009 4:07:19 PM mbam-log-2009-06-04 (16-07-19).txt Type de recherche: Examen complet (C:\|K:\|) Eléments examinés: 133759 Temps écoulé: 41 minute(s), 0 second(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 9:19:57 AM, on 6/5/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16827) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\McAfee\Common Framework\FrameworkService.exe C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\WINDOWS\RTHDCPL.EXE C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe C:\Program Files\CyberLink\Shared files\RichVideo.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE C:\Program Files\McAfee\Common Framework\UdaterUI.exe C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe C:\Program Files\McAfee\Common Framework\McTray.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe C:\Program Files\Messenger\msmsgs.exe C:\program files\internetcalls.com\internetcalls\internetcalls.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe C:\PROGRA~1\Yahoo!\MESSEN~1\ymsgr_tray.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\McAfee\Common Framework\McScript_InUse.exe C:\Program Files\Common Files\Microsoft Shared\Encarta Web Companion\2007\ENCWCSVR.EXE C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe C:\WINDOWS\system32\NOTEPAD.EXE C:\WINDOWS\system32\NOTEPAD.EXE C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/ R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll R3 - URLSearchHook: myBabylon Toolbar - {34ea1c70-42cc-42c5-aa29-ec58b95a343e} - C:\Program Files\myBabylon\tbmyB0.dll O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: myBabylon Toolbar - {34ea1c70-42cc-42c5-aa29-ec58b95a343e} - C:\Program Files\myBabylon\tbmyB0.dll O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan Enterprise\Scriptcl.dll O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Common Files\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Common Files\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll O3 - Toolbar: myBabylon Toolbar - {34ea1c70-42cc-42c5-aa29-ec58b95a343e} - C:\Program Files\myBabylon\tbmyB0.dll O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [skyTel] SkyTel.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [shStatEXE] "C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE" /STANDALONE O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\McAfee\Common Framework\UdaterUI.exe" /StartedFromRunKey O4 - HKLM\..\Run: [YSearchProtection] "C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe" O4 - HKLM\..\Run: [babylon Client] C:\Program Files\Babylon\Babylon-Pro\Babylon.exe -AutoStart O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet O4 - HKCU\..\Run: [YSearchProtection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [internetCalls] "C:\program files\internetcalls.com\internetcalls\internetcalls.exe" -nosplash -minimized O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [search Protection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Clock.LNK = E:\install\Themes\DameK UltraBlue\Longhorn Clock\Yzdock.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Translate with &Babylon - res://C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Translate.htm O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Common Files\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: McAfee Framework Service (McAfeeFramework) - McAfee, Inc. - C:\Program Files\McAfee\Common Framework\FrameworkService.exe O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe O23 - Service: McAfee Task Manager (McTaskManager) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe -- End of file - 9891 bytes

salut voici le rapport, -----------\\ ToolBar S&D 1.2.8 XP/Vista Microsoft Windows XP Professional ( v5.1.2600 ) Service Pack 3 X86-based PC ( Multiprocessor Free : Intel® Pentium® 4 CPU 3.00GHz ) BIOS : Award Modular BIOS v6.00PG USER : GIGABYTE ( Administrator ) BOOT : Normal boot Antivirus : McAfee VirusScan Enterprise 8.5.0.781 (Activated) A:\ (USB) C:\ (Local Disk) - NTFS - Total:74 Go (Free:57 Go) D:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go) E:\ (USB) F:\ (USB) G:\ (USB) H:\ (USB) "C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 ) Option : [2] ( Thu 06/04/2009|14:07 ) -----------\\ SUPPRESSION Echec ! - C:\Program Files\AskTBar\bar Supprime! - C:\Program Files\AskTBar\PopSwatr Supprime! - C:\Program Files\AskTBar\SrchAstt Supprime! - C:\Program Files\AskTBar\bar\1.bin Supprime! - C:\Program Files\AskTBar -----------\\ Recherche de Fichiers / Dossiers ... -----------\\ [..\Internet Explorer\Main] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Local Page"="C:\\WINDOWS\\system32\\blank.htm" "Start Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome" "Search Page"="http://www.google.com" "Search Bar"="http://www.google.com/ie" "SearchMigratedDefaultURL"="http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8" "Url"="http://go.microsoft.com/fwlink/?LinkId=68928" "Url"="http://go.microsoft.com/fwlink/?LinkId=68929" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"'>http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="http://www.msn.com/" --------------------\\ Recherche d'autres infections --------------------\\ Cracks & Keygens .. C:\DOCUME~1\GIGABYTE\My Documents\Elom\Back-Up_ELomHP\Stata10\Keygen C:\DOCUME~1\GIGABYTE\My Documents\Elom\Back-Up_ELomHP\Stata10\StatTransfer9\Crack C:\DOCUME~1\GIGABYTE\My Documents\Elom\Back-Up_ELomHP\Stata10\StatTransfer9\Crack\license.exe C:\DOCUME~1\GIGABYTE\My Documents\Elom\Stata10\Keygen C:\DOCUME~1\GIGABYTE\My Documents\Elom\Stata10\Keygen\keygen.exe C:\DOCUME~1\GIGABYTE\My Documents\Elom\Stata10\StatTransfer9\Crack C:\DOCUME~1\GIGABYTE\My Documents\Elom\Stata10\StatTransfer9\Crack\license.exe 1 - "C:\ToolBar SD\TB_1.txt" - Thu 06/04/2009|13:16 - Option : [1] 2 - "C:\ToolBar SD\TB_2.txt" - Thu 06/04/2009|14:08 - Option : [2] -----------\\ Fin du rapport a 14:08:49.53

salut voici le rapport -----------\\ ToolBar S&D 1.2.8 XP/Vista Microsoft Windows XP Professional ( v5.1.2600 ) Service Pack 3 X86-based PC ( Multiprocessor Free : Intel® Pentium® 4 CPU 3.00GHz ) BIOS : Award Modular BIOS v6.00PG USER : GIGABYTE ( Administrator ) BOOT : Normal boot Antivirus : McAfee VirusScan Enterprise 8.5.0.781 (Activated) A:\ (USB) C:\ (Local Disk) - NTFS - Total:74 Go (Free:57 Go) D:\ (CD or DVD) E:\ (USB) F:\ (USB) G:\ (USB) H:\ (USB) "C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 ) Option : [1] ( Thu 06/04/2009|13:15 ) -----------\\ Recherche de Fichiers / Dossiers ... C:\Program Files\AskTBar C:\Program Files\AskTBar\bar C:\Program Files\AskTBar\PopSwatr C:\Program Files\AskTBar\SrchAstt C:\Program Files\AskTBar\bar\1.bin C:\Program Files\AskTBar\bar\Cache C:\Program Files\AskTBar\bar\History C:\Program Files\AskTBar\bar\Settings C:\Program Files\AskTBar\bar\1.bin\A5POPSWT.DLL C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL C:\Program Files\AskTBar\bar\Cache\00036E5B C:\Program Files\AskTBar\bar\Cache\000CC885.bin C:\Program Files\AskTBar\bar\Cache\000CCF2C.bin C:\Program Files\AskTBar\bar\Cache\000CD2F5.bin C:\Program Files\AskTBar\bar\Cache\000CD779.bin C:\Program Files\AskTBar\bar\Cache\000CDC4C.bin C:\Program Files\AskTBar\bar\Cache\000CE4F6.bin C:\Program Files\AskTBar\bar\Cache\files.ini C:\Program Files\AskTBar\bar\History\search2 C:\Program Files\AskTBar\bar\Settings\prevcfg2.htm C:\Program Files\AskTBar\PopSwatr\History C:\Program Files\AskTBar\PopSwatr\History\allowed C:\Program Files\AskTBar\PopSwatr\History\notallow C:\Program Files\AskTBar\SrchAstt\1.bin C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL -----------\\ [..\Internet Explorer\Main] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Local Page"="C:\\WINDOWS\\system32\\blank.htm" "Start Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome" "Search Page"="http://www.google.com" "Search Bar"="http://www.google.com/ie" "SearchMigratedDefaultURL"="http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8" "Url"="http://go.microsoft.com/fwlink/?LinkId=68928" "Url"="http://go.microsoft.com/fwlink/?LinkId=68929" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"'>http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="http://fr.msn.com/" --------------------\\ Recherche d'autres infections --------------------\\ Cracks & Keygens .. C:\DOCUME~1\GIGABYTE\My Documents\Elom\Back-Up_ELomHP\Stata10\Keygen C:\DOCUME~1\GIGABYTE\My Documents\Elom\Back-Up_ELomHP\Stata10\StatTransfer9\Crack C:\DOCUME~1\GIGABYTE\My Documents\Elom\Back-Up_ELomHP\Stata10\StatTransfer9\Crack\license.exe C:\DOCUME~1\GIGABYTE\My Documents\Elom\Stata10\Keygen C:\DOCUME~1\GIGABYTE\My Documents\Elom\Stata10\Keygen\keygen.exe C:\DOCUME~1\GIGABYTE\My Documents\Elom\Stata10\StatTransfer9\Crack C:\DOCUME~1\GIGABYTE\My Documents\Elom\Stata10\StatTransfer9\Crack\license.exe 1 - "C:\ToolBar SD\TB_1.txt" - Thu 06/04/2009|13:16 - Option : [1] -----------\\ Fin du rapport a 13:16:22.25

salut tout le monde je suis noveau sur forum.zebulon.f. mon ordinateur est infecté, quand je mets une clé, tout mes dossiers sont masqué automatiquement. alors voici un rapport de HijackThis. Aide moi síl vous plait. Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 10:32:29 AM, on 6/4/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16827) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\WINDOWS\RTHDCPL.EXE C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE C:\Program Files\McAfee\Common Framework\UdaterUI.exe C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe C:\Program Files\McAfee\Common Framework\McTray.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\PROGRA~1\Yahoo!\MESSEN~1\ymsgr_tray.exe C:\Program Files\McAfee\Common Framework\FrameworkService.exe C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\CyberLink\Shared files\RichVideo.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Common Files\Microsoft Shared\Encarta Web Companion\2007\ENCWCSVR.EXE C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/ R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll R3 - URLSearchHook: myBabylon Toolbar - {34ea1c70-42cc-42c5-aa29-ec58b95a343e} - C:\Program Files\myBabylon\tbmyB0.dll R3 - URLSearchHook: (no name) - {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O2 - BHO: myBabylon Toolbar - {34ea1c70-42cc-42c5-aa29-ec58b95a343e} - C:\Program Files\myBabylon\tbmyB0.dll O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan Enterprise\Scriptcl.dll O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Common Files\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL O2 - BHO: Ask Search Assistant BHO - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Ask Toolbar BHO - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: Ask Toolbar - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Common Files\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll O3 - Toolbar: myBabylon Toolbar - {34ea1c70-42cc-42c5-aa29-ec58b95a343e} - C:\Program Files\myBabylon\tbmyB0.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [skyTel] SkyTel.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [shStatEXE] "C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE" /STANDALONE O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\McAfee\Common Framework\UdaterUI.exe" /StartedFromRunKey O4 - HKLM\..\Run: [YSearchProtection] "C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe" O4 - HKLM\..\Run: [babylon Client] C:\Program Files\Babylon\Babylon-Pro\Babylon.exe -AutoStart O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet O4 - HKCU\..\Run: [YSearchProtection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [internetCalls] "C:\program files\internetcalls.com\internetcalls\internetcalls.exe" -nosplash -minimized O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [search Protection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Clock.LNK = E:\install\Themes\DameK UltraBlue\Longhorn Clock\Yzdock.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Translate with &Babylon - res://C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Translate.htm O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Common Files\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: McAfee Framework Service (McAfeeFramework) - McAfee, Inc. - C:\Program Files\McAfee\Common Framework\FrameworkService.exe O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe O23 - Service: McAfee Task Manager (McTaskManager) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe -- End of file - 10377 bytes